Activity

30 days up to

User

Subprojects

Activity

From 07/15/2014 to 08/13/2014

08/10/2014

06:25 PM Bug #3800 (Resolved): Disable source port rewriting - Auto created rule LAN to WAN missing?: Here's my original post https://forum.pfsense.org/index.php?topic=80326.new;topicseen#new in case it does not get see... Johnny Good
08:15 AM Bug #3791: Alias->URL Table (IPs): After looking around further creating an Alias of URLS in a URL_table(IPs) then creating Floating rules based on thes... Bill Crowder

08/09/2014

08:38 AM Bug #3799 (Resolved): dhcp6 logging goes to system log instead of dhcp log: I noticed the dhcp6 service logs data to the main system log instead of the dhcp log tab. I've added dhcp6 to line 58... Cino .
02:51 AM Bug #3784: Cannot enter hostname with a dot: How is "server.sub" considered a FQDN?
It's funny how we can do exactly the same thing if we use dynamic ip, yet i... Daniel Platt

08/08/2014

10:20 PM Revision a3331d72: Fix #3798 - 'IPsec phase 2 pinghost is not used if the source IP should be a virtual IP address': Matthew Smith
10:09 PM Revision dc63467f: Fix #3798 - 'IPsec phase 2 pinghost is not used if the source IP should be a virtual IP address': Matthew Smith
05:30 PM Bug #3798: IPsec phase 2 pinghost is not used if the source IP should be a virtual IP address: Applied in changeset commit:a3331d720c120a8d34d9c44a915ea070e424191d. Matthew Smith
05:30 PM Bug #3798 (Feedback): IPsec phase 2 pinghost is not used if the source IP should be a virtual IP address: Applied in changeset commit:dc63467f3f8910f9cad7be877274ce939fb7ec4f. Matthew Smith
04:58 PM Bug #3798 (Resolved): IPsec phase 2 pinghost is not used if the source IP should be a virtual IP address: Amazon VPC provides a /30 to use as "tunnel inside addresses". They are addresses that can be configured on the VPN e... Matthew Smith
04:56 PM Bug #3784 (Rejected): Cannot enter hostname with a dot: The input validation is correct. Hostname must not be a FQDN there. Chris Buechler
04:36 PM Revision ffb8e02f: Avoid generating an invalid racoon config if the user specified a mobile pool that is too small.: Jim Pingle
04:24 PM Revision 762e8cf9: Avoid a "Cannot use string offset as an array" error if the packages section of the config is missing.: Jim Pingle
04:22 PM Revision b21ad5d5: Avoid a "Cannot use string offset as an array" error if the packages section of the config is missing.: Jim Pingle
03:33 PM Revision b6513591: Require click-through POST confirmation when restoring or deleting a configuation from the backup history page.: Jim Pingle
03:22 PM Revision 889c83d7: Require click-through POST confirmation when restoring or deleting a configuation from the backup history page.: Jim Pingle
02:36 PM Revision ed2a6e89: Do not execute DNS resolution on GET, only pre-fill Host box so the user can press the button to execute. Turn alias creation links into submit buttons for POST. While here, remove some backticks and simplify a little.: Jim Pingle
02:26 PM Revision 8108b423: Remove javascript alert DNS resolution action from the firewall log view. It was already removed from 2.2, and it's better not to allow a GET action to perform that action.: Jim Pingle
02:21 PM Revision a9d6ac9a: Do not execute on GET, only pre-fill Host box so the user can press the button to execute. Turn alias creation links into submit buttons for POST. While here, remove some backticks and simplify a little.: Jim Pingle
01:40 PM Revision bf8aab82: Correct this so the dpdaction is created properly as restart: Ermal LUÇI
01:27 PM Bug #3369: Captive vouchers expire too quickly: I might found what is the reason behind force expire the active vouchers
in my case it is started exactly after I ch... maz nos
10:45 AM Bug #3369: Captive vouchers expire too quickly: I am facing same issue today
pfsense 2.1.3-RELEASE maz nos
06:32 AM Bug #3797 (Resolved): DHCP server restarted multiple times on secondary after config sync: dhcpd is restarted twice on the secondary system after every config sync. In at least some circumstance (ticket MPG-5... Chris Buechler
05:04 AM Revision 6f4a300b: Shorten the wait at "reload" in startup wizard to 5 seconds from 60. That's more than adequate for current systems, no need to make people sit there for 1 minute. Many likely click out via the logo and miss the last screen entirely.: Chris Buechler
05:02 AM Revision 67067ea3: Shorten the wait at "reload" in startup wizard to 5 seconds from 60. That's more than adequate for current systems, no need to make people sit there for 1 minute. Many likely click out via the logo and miss the last screen entirely.: Chris Buechler
01:13 AM Bug #3796 (Confirmed): States summary fails and is very slow with large state tables: One of the scenarios where the states summary would be most useful is when you have a large number of states, in help... Chris Buechler

08/07/2014

08:53 PM Revision 9f6a5b50: Do a reload on the cofniguration which is better than update. Also let the keyingtries to 3 rather than forever to avoid problems on recovery.: Ermal LUÇI
06:53 PM Revision 0b5fc1d1: Change the logic of the vpn config generation to make connectivity more stable especially ipsec. Also for IKEv1 just generate the policies and only on traffic start them.: Ermal LUÇI
03:52 PM Revision b31a2c76: Move the rekey to yes always to avoid issues.: Ermal LUÇI
03:09 PM Todo #3795 (Resolved): Update hostapd to support 802.11n: Please update hostapd to a recent version (current = v2.2). This way it can take advantage of the wireless-n support ... Martin Schurink
08:46 AM Bug #3785: strongswan config being generated with ike SA lifetime set to value of ipsec SA lifetime: I believe it was actually this change that caused the lifetime to be set to 0. https://github.com/pfsense/pfsense/com... Matthew Smith
03:24 AM Bug #3785: strongswan config being generated with ike SA lifetime set to value of ipsec SA lifetime: I think this change _might_ have caused an issue. On August snapshots, i'm not able to negotiate IKE with another dev... King J
02:38 AM Revision 959dc96b: Per the dhcpd.conf man page and other documentation from ISC, mclt must not be defined on the secondary.: Chris Buechler
02:37 AM Revision 8b8085ce: Per the dhcpd.conf man page and other documentation from ISC, mclt must not be defined on the secondary.: Chris Buechler

08/06/2014

07:57 PM Revision 88c24958: Encode interface/VIP descriptions before displaying them on the NTP daemon settings.: Jim Pingle
07:55 PM Revision c3e77841: Encode interface/VIP descriptions before displaying them on the GRE and GIF pages also;: While here, the GRE page was missing IP aliases from its list of bind IPs, add it in. Jim Pingle
07:53 PM Revision 978c71d2: Encode interface/VIP descriptions before displaying them on the GRE and GIF pages also;: While here, the GRE page was missing IP aliases from its list of bind IPs, add it in. Jim Pingle
07:52 PM Revision bf2fb3db: Encode interface/VIP descriptions before displaying them on the NTP daemon settings.: Jim Pingle
07:36 PM Revision 92ca4bc3: Encode the detail field of an alias entry before displaying its contents back to the user.: Jim Pingle
07:34 PM Revision 2276d743: Encode the detail field of an alias entry before displaying its contents back to the user.: Jim Pingle
07:27 PM Revision 071f6059: Escape the individual dnsmasq advanced/custom options: Jim Pingle
07:26 PM Revision 52c67bc2: Escape the individual dnsmasq advanced/custom options: Jim Pingle
07:18 AM Feature #3589 (Resolved): OpenVPN client: GUI option for "route-nopull": Jim Pingle
03:03 AM Feature #3589: OpenVPN client: GUI option for "route-nopull": This feature has been implemented by https://redmine.pfsense.org/projects/pfsense/repository/revisions/b9e9903ddb2166... Dmitriy K

08/05/2014

03:43 PM Revision 12c88700: Allow to add ipalias vip to lo0, it should fix #3773: Renato Botelho
03:41 PM Feature #893 (Closed): Re-orderable IPsec: Duplicate of #3328 (It's newer but already properly assigned and targeted) Jim Pingle
03:24 PM Feature #893: Re-orderable IPsec: This is going on 4 year now. Running in the same problem again. Unlike static routes IPsec routes are done by the o... Robert Middleswarth
03:40 PM Bug #3794 (Rejected): Re-orderable IPsec: Duplicate of #3328 Jim Pingle
03:31 PM Bug #3794 (Duplicate): Re-orderable IPsec: Allow IPSec tunnel order to be changed much like Firewall Rules can be re-ordered. The purpose is to give one tunnel ... Robert Middleswarth
01:09 PM Feature #3793 (New): Enable external authentication support for rules: Well, i am sad to see that pfSense doesn't handle external authentication support for rules, which means pfSense can'... Francisco Leon
01:01 PM Revision 8e2a4091: Use GPS type presets only to pre-set values then user can change it. After user changes, save type always as Custom to avoid overwriting values when user attempt to edit. It fixes #3782: Renato Botelho
12:19 PM Revision f9f3e44c: More non-functional changes to make code more readable: Renato Botelho
12:12 PM Feature #3792 (Resolved): Group name size limit too restrictive on Active Directory Users: The name size limit was changed to 16 chars, described as an OS limitation. In my case we use Active Directory and so... Francisco Leon
12:01 PM Revision 42b5c637: Fix indent and spaces: Renato Botelho
11:59 AM Revision 46f5ced5: This if is unecessary since input_errors is unset in the line above: Renato Botelho
11:52 AM Bug #3281 (Feedback): In certain cases, GRE interfaces are missing the "RUNNING" flag at bootup and will not function: I tried redmine-3281.xml on a 2.2 system and all GRE interfaces have RUNNING flag set on reboot. Renato Botelho
11:35 AM Revision 4c291f4c: Fix indent and whitespaces: Renato Botelho
10:50 AM Bug #3773 (Feedback): Can't add an IP alias on lo0 through the web GUI in 2.2: Applied in changeset commit:12c887006320a3d01a3f761eca2dfc8f64c41fa2. Renato Botelho
10:48 AM Revision 4c4c59b9: Make sure there are not empty options on dst select to avoid creating empty user or group. This issue was introduced by b4e9a4da: Renato Botelho
10:44 AM Revision 46f6eb78: Fix select name: Renato Botelho
08:20 AM Bug #3782 (Feedback): ntp/gps serial speed doesn't set: Applied in changeset commit:8e2a409171011bfc14149c5fa533d938f49eebba. Renato Botelho

08/04/2014

07:25 PM Revision 1de3a5dd: Fix input validation logic on diag_testport.php, escape more shell arguments for good measure: Jim Pingle
07:23 PM Revision 46d3f6a6: Fix input validation logic on diag_testport.php, escape more shell arguments for good measure: Jim Pingle
06:21 PM Feature #1361 (Resolved): DNSMasq, source interface and IPSec VPNs: this was implemented for 2.1 and works fine, just didn't get moved to "resolved" status.
Chris Buechler
06:19 PM Bug #3783 (Rejected): wan interface loses IP after carrier reconnect: that's most likely a ue driver issue, maybe in combination with what you're doing with VMware. People see those have ... Chris Buechler
03:34 PM Revision aeb44799: Fix #3790. Fix IPv6 Prefix ID check using interface user choose before save: Renato Botelho
10:50 AM Bug #3790 (Feedback): Input validation is too strict for IPv6 Prefix ID for Track Interface: Applied in changeset commit:aeb44799f3693c198c48926c85b4468a6dccb9f9. Renato Botelho

08/02/2014

01:24 PM Bug #3791 (Rejected): Alias->URL Table (IPs): Upon boot pfSense 2.2 takes 7 -10 minutes to load pfSense at the [Loading Firewall] line with 8 <Aliases>_<URLs> Type... Bill Crowder

08/01/2014

10:28 PM Bug #3787: Outbound NAT to VIP AMD64 not working from OPT1 interface: There are absolutely no such issues. Please use one of our support channels for assistance. https://pfsense.org/support Chris Buechler
06:21 AM Bug #3787: Outbound NAT to VIP AMD64 not working from OPT1 interface: Chris Buechler wrote:
> you have a config problem or a general network issue with that IP (stale upstream ARP cache,... Brian Jensen
06:16 AM Bug #3787: Outbound NAT to VIP AMD64 not working from OPT1 interface: Chris Buechler wrote:
> you have a config problem or a general network issue with that IP (stale upstream ARP cache,... Brian Jensen
06:01 AM Bug #3787 (Rejected): Outbound NAT to VIP AMD64 not working from OPT1 interface: you have a config problem or a general network issue with that IP (stale upstream ARP cache, IP conflict). outbound N... Chris Buechler
05:04 AM Bug #3787: Outbound NAT to VIP AMD64 not working from OPT1 interface: Its version 2.1.4
Not 2.2.
I know that 8.3 is EOL but basic FW functions are not working here, so needs urgent ... Brian Jensen
08:52 PM Revision f088b8cd: Do not try to rekey for IKEv1.: Ermal LUÇI
08:39 PM Revision 9b915686: Use a uniqid() to track phase2 entries to avoid confustion and various mistakes when modifying and editing them.: Ermal LUÇI
12:25 PM Bug #3790 (Resolved): Input validation is too strict for IPv6 Prefix ID for Track Interface: It is impossible to set both the track interface and an ID higher than 0 in one action, even if it is valid.
For e... Jim Pingle
08:48 AM Bug #3786 (Closed): Browser hangs when wireless card enabled: If you search around the web a bit, it's a common problem affecting lots of people with the current Lastpass add-on o... Jim Pingle
06:58 AM Bug #3784: Cannot enter hostname with a dot: Buster de wrote:
> Why you can't put only "server" into the hostname and "sub.domain.com" into the domain field?
... Owen Gerrard
06:12 AM Bug #3784: Cannot enter hostname with a dot: Why you can't put only "server" into the hostname and "sub.domain.com" into the domain field? Buster de
06:03 AM Bug #3789 (Resolved): rc.update_bogons.sh and login shell ignore http proxy settings: Hi,
I need to configure a http proxy for www access.
It seems that /etc/rc.update_bogons.sh ignores proxy setting... Buster de

07/31/2014

12:49 PM Bug #3788 (Resolved): NetBIOS h-node should be translated 8 instead of 5: Hallo everybody.
At line 182 of /usr/local/www/guiconfig.inc, nodetype value for h-node should be 8 instead than 5... Matteo Lunardi
11:59 AM Bug #3039: New vouchers doesn't sync with CARP slave: Same problem on 2.1.4 (x64)
Ermal Luçi wrote:
> The system log would be interesting to see here
---
h3. 1) ... sylvain g
11:40 AM Bug #3787 (Rejected): Outbound NAT to VIP AMD64 not working from OPT1 interface: No matter what I do and how I try to get it working, it doesnt work.
As long as I keep the WAN interface address t... Brian Jensen

07/30/2014

06:46 PM Bug #3786: Browser hangs when wireless card enabled: Ok clearing the highlight input boxes didn't fix it for me, but disabling lastpass completely did. Not sure why this... Jeremy Porter
02:50 PM Bug #3786: Browser hangs when wireless card enabled: All pages or only the interface page for the wireless interface?
I can sort of reproduce this in Firefox but only ... Jim Pingle
02:18 PM Bug #3786 (Closed): Browser hangs when wireless card enabled: As soon as the interface is enabled in assign interfaces, web page refreshes hang/are slow. Theory: problems loadin... Jeremy Porter
03:57 PM Revision fa0a1411: Fix for #3785 - 'strongswan config being generated with ike SA lifetime set to value of ipsec SA lifetime': Matthew Smith
02:57 PM Bug #2144: pfSense dyndns for Namecheap doesn't work with hostnames containing ".": Pardon me for re-opening this old bug, but I've finally gotten tired of manually updating my "dynamic" DNS entry host... Lance Cotton
12:50 PM Bug #3785: strongswan config being generated with ike SA lifetime set to value of ipsec SA lifetime: Fixed by commit fa0a1411026bcbf173fbe6d573dfc260ee883102.
https://git.pfmechanics.com/pfsense/pfsense/commit/fa0a1... Matthew Smith
10:53 AM Bug #3785 (Resolved): strongswan config being generated with ike SA lifetime set to value of ipsec SA lifetime: Connection entries in /var/etc/ipsec/ipsec.conf are being generated with ikelifetime set to 3600s when the GUI shows ... Matthew Smith
05:39 AM Feature #1361: DNSMasq, source interface and IPSec VPNs: maybe now this will get fixed. Jim Thompson
04:52 AM Bug #3784: Cannot enter hostname with a dot: I guess to enforce the message on the page to only use the host and not the domain part, checking for a dot was seen ... Owen Gerrard
04:37 AM Bug #3784: Cannot enter hostname with a dot: was looking on github.
The issue it relates to is: https://redmine.pfsense.org/issues/159 Daniel Platt
04:33 AM Bug #3784: Cannot enter hostname with a dot: introduced in commit https://github.com/pfsense/pfsense/commit/46c5b763ef26269b50d303fc62793c58a42eefb1
I can't se... Daniel Platt
04:27 AM Bug #3784 (Rejected): Cannot enter hostname with a dot: We want the hostname name of our server to be server.sub.domain.com, but pfsense doesn't recognise server.sub as a va... Daniel Platt

07/29/2014

10:28 PM Revision 63dd9f08: Remove even the config.cache from /tmp to avoid issues while here: Ermal LUÇI
06:55 PM Bug #3783: wan interface loses IP after carrier reconnect: Here is an annotated log showing the strange dhclient restart behavior. Jonathon Reinhart
06:49 PM Bug #3783 (Rejected): wan interface loses IP after carrier reconnect: *Summary:* My WAN interface successfully gets an IP address via DHCP after reconnecting the Ethernet connection. Howe... Jonathon Reinhart
06:43 PM Bug #3782: ntp/gps serial speed doesn't set: The speed is set correctly (to "16") in the config file, and the ntpd.log seems to show the correct speed:
Jul 29 23... Jeremy Porter
06:39 PM Bug #3782: ntp/gps serial speed doesn't set: Happens in chrome and Firefox. Firebug output shows that speed 9600 is selected. although 4800 shows in the box.
" ... Jeremy Porter
05:08 PM Bug #3782 (Resolved): ntp/gps serial speed doesn't set: https://172.27.44.136/services_ntpd_gps.php
Changing the serial port and speed does not actually save the speed. Jeremy Porter
03:59 PM Revision 9280a998: Fix #3781 - 'strongswan dpdtimeout value not generated correctly': Matthew Smith
02:15 PM Bug #3760 (Feedback): reply-to with TCP and IPv6 generates broken checksums: Merged a patch to correct the regression. Ermal Luçi
11:20 AM Bug #3781 (Feedback): strongswan dpdtimeout value not generated correctly: Applied in changeset commit:9280a998704d182bc3a559163126e290edafbb26. Matthew Smith
08:23 AM Bug #3781: strongswan dpdtimeout value not generated correctly: I'm going to go with the first approach of converting the value in the config.xml/GUI to (number of retries + 1) * DP... Matthew Smith

07/28/2014

04:13 PM Bug #3781 (Resolved): strongswan dpdtimeout value not generated correctly: When you enter a value in the retries field of the "Dead Peer Detection" row in the edit form on vpn_ipsec_phase1.php... Matthew Smith
02:08 PM Bug #3692: apinger loss % gets stuck: And again. Is there any diagnostic information that we can gather to help with this??? Denny Page
10:01 AM Bug #3780 (Closed): VLAN on LAGG may loose their MAC addresses if the LAGG membership is changed.: Configuration:
* PFSense 2.1.3
* Watchguard X750e
* LAGG0 consisting of sk2,sk3,msk0,msk1
* VLAN10, VLAN100 on LA... Ashley Brandwood
09:42 AM pfSense Packages Bug #3779 (Resolved): Zabbix Agent 1.x - ZABBIX_AGENT_BASE not defined: Problem:
Zabbix 1.x agent does not start automatically and complains on boot that it cannot find ZABBIX_AGENT_BASE/e... Andrew Bauer

07/27/2014

05:38 AM Bug #3737: Incoming VLAN traffic fails to reach VLAN interface if PCP not 0: I've finally managed to put together a fully working environment and take a deeper look at this.
The problem is th... Clement Barnier

07/26/2014

03:37 PM Bug #3778 (Resolved): Destination port range not displayed when it's an associated NAT rule and "other" ports: firewall_rules_edit.php doesn't display Destination Port Range when it's an associated NAT rule and From and To are "... Patrik Lundquist
12:27 PM Bug #2800: OpenVPN doesn't work properly with intermediate/chained CAs: Ran into the same issue today with version 2.1.4.
The hack to copy the full chain into the certmanager solves the p... Oliver Welter

07/25/2014

07:42 PM Revision f84b7bff: Add message about Gold to setup wizard and menu/link to Gold signup.: Matthew Smith
06:20 PM pfSense Packages Feature #3768 (Closed): Snort IPS/IDS: Chris Buechler
03:48 PM Revision f3d88511: Fix #3575, do not allow user to set IPs for GRE interfaces on interface edit page.: Renato Botelho
01:32 PM Revision 75de6b29: Fix redirect after editing permissions: Jim Pingle
12:15 PM Revision 6141a91b: Disable bandwidth checks for PRIQ, it should fix #3537: Renato Botelho
11:58 AM Revision c8f89a40: Fix field name that cannot contain spaces, and use displayname: Renato Botelho
11:57 AM Revision cdcbc988: Fix scheduler field name: Renato Botelho
11:35 AM Revision 6f1d690c: Fix field name that cannot contain spaces, and use displayname: Renato Botelho
11:34 AM Revision 52cacff8: Fix field name: Renato Botelho
11:00 AM Bug #3575 (Feedback): OPT interfaces on GRE tunnels do not accept IPv6 or IPv4 addresses to be set.: Applied in changeset commit:f3d8851136156c14fbce86489f99043bf20423a6. Renato Botelho
08:34 AM Bug #3777 (Resolved): User with "WebCfg - Help pages " permission listed first gets a bogus redirect: If a user has "WebCfg - Help pages" in their personal permissions (not inherited) and it is listed first, then after ... Jim Pingle
07:30 AM Bug #3537 (Feedback): Bandwidth values are forced by the Traffic Shaper Wizard but are not required nor used for PRIQ: Applied in changeset commit:6141a91b4606b9fec2edf8b55e352c33a68875f8. Renato Botelho

07/24/2014

11:40 PM Bug #3747: Route uses wrong interface (lo0) when tun local and remote are the same: I wrote up what looks to be a similar issue here in the forums:
https://forum.pfsense.org/index.php?topic=79305.0
... Greg B
09:28 PM Revision 260a6901: Strict checks for number of WANs and LANs on wizard: Renato Botelho
09:28 PM Revision e75a787f: Fix number of WAN / LAN interfaces detection for dedicated wizard: Renato Botelho
09:28 PM Revision 46cbc96e: Try to guess number of WANs: Renato Botelho
09:28 PM Revision 3ab6aff7: Try to guess number of WANs and LANs: Renato Botelho
09:28 PM Revision dad05dac: Fix number of WAN and LAN connections check: Renato Botelho
09:28 PM Revision 070aeff3: Just show right type of interfaces (LAN/WAN) on traffic shapper wizards, it fixes #3535: Renato Botelho
09:28 PM Revision c1d09bfe: Remove 'multi lan/single wan' and 'multi wan/single lan' traffic shaper wizards, multi lan/wan can be used to replace any of them: Renato Botelho
09:28 PM Revision 71802285: Replace exec() and system() calls by internal functions: Renato Botelho
09:28 PM Revision ba782be2: Fix indent and whitespaces: Renato Botelho
09:28 PM Revision 4844813b: Fix indent and whitespaces: Renato Botelho
09:28 PM Revision d6933213: Fix indent and whitespaces: Renato Botelho
06:41 PM Bug #3775 (Feedback): Installer installs incorrect gettytab/ttys: I pushed a fix, next round of snapshots should be fine. Renato Botelho
06:31 PM Bug #3775 (Resolved): Installer installs incorrect gettytab/ttys: Running a fresh install from http://snapshots.pfsense.org/FreeBSD_stable/10/amd64/pfSense_HEAD/livecd_installer/pfSen... Jeremy Porter
05:34 PM Bug #3774: MTU Interface Settings Ignored when Assigned to LAGG Ports: It seems like a simular issue has been resolved for VLANS: https://redmine.pfsense.org/issues/2786. Although it's unc... Andy Sayler
05:26 PM Bug #3774 (Closed): MTU Interface Settings Ignored when Assigned to LAGG Ports: In pfSense 2.2 (and I believe 2.1 and earlier as well), there is no way to properly set the MTU when assigning a LAGG... Andy Sayler
04:30 PM Bug #3535 (Feedback): Selecting "LAN" as "WAN" in Multi-WAN Traffic Shaper wizard breaks the ruleset: Applied in changeset commit:070aeff3b72fb2a5627f933b6595b2489f946b71. Renato Botelho
04:05 PM Bug #3773 (Resolved): Can't add an IP alias on lo0 through the web GUI in 2.2: In 2.2, if you go to Firewall->Virtual IPs and try to add an IP alias on the loopback interface, when you click the s... Matthew Smith
02:47 PM Bug #3624: "ppp: OpenConfFile: Can't open file '/var/etc/mpd_wan.conf': No such file or directory": Follow-up to say my problems are partly resolved ... I replaced the network cable to the ADSL2 modem (Vigor 120). Now... Gareth Davies
09:19 AM Feature #1388: 3G outbound failover connection with auto dial-up and hang-up: +1 for this. Mattew Panz
09:00 AM pfSense Packages Bug #3772 (Feedback): Broken openbgpd config generation logic in 2.2: Applied in changeset commit:02dcf3888c643fcbd6b7f01d92eec2f9b5dc5955. Matthew Smith
08:25 AM pfSense Packages Bug #3772 (Resolved): Broken openbgpd config generation logic in 2.2: Under Services -> OpenBGPD, under the neighbors tab, if you add a neighbor and set the Neighbor Parameter called "Loc... Matthew Smith
08:52 AM Bug #3769: Only the first phase 2 entry is used when multiple entries are present for an IPsec tunnel in 2.2: The change included in the next snapshot worked fine. Matthew Smith
07:52 AM pfSense Packages Feature #3768: Snort IPS/IDS: This feature already exists in the Snort package, but the setting is global and is located on the GLOBAL SETTINGS tab... Bill Meeks
06:47 AM Bug #3771 (Feedback): Webinterface and dhcpdcrashes with 500+ static leases: I was not supposed to close it yet, will wait more details from submitter about how to reproduce Renato Botelho
06:46 AM Bug #3771 (Rejected): Webinterface and dhcpdcrashes with 500+ static leases: I have test environments with 1000+ static mappings working perfectly on 2.1.4 and on 2.2-snapshots. You can discuss ... Renato Botelho
03:34 AM Bug #3771 (New): Webinterface and dhcpdcrashes with 500+ static leases: I'm using pfSense 2.1.3 in a HA setup with CARP, pfsync, and dhcp failover.
I've got about 500+ static leases in m... Niels Gassen

07/23/2014

11:23 PM pfSense Packages Bug #3767: Ntop Problem.: Ok, thanks for the prompt response.
I do not think there is a need for any development, just correct recompilation... Dmitry Gromov
11:14 PM pfSense Packages Bug #3767: Ntop Problem.: because any efforts we're going to put towards ntop in general will be on ntopng, we're not going to put dev time int... Chris Buechler
10:54 PM pfSense Packages Bug #3767: Ntop Problem.: Chris Buechler wrote:
> there's nothing broken in general with ntop
I would not be so sure about that - if there ... Dmitry Gromov
06:08 PM pfSense Packages Bug #3767 (Rejected): Ntop Problem.: there's nothing broken in general with ntop. it needs to be deprecated and replaced with ntopng regardless. Chris Buechler
05:45 PM Bug #3761 (Rejected): Disable interface where Captive portal is mapped you cannot login anymore: it's not an issue on any stable release version I've seen. If you can replicate, let us know exactly how. Chris Buechler
12:45 PM Bug #3761: Disable interface where Captive portal is mapped you cannot login anymore: Hello, thank you for your information, propably it is fixed in version 2.1.4, because I had this problem in 2.1.1
... Paul Pedro
05:42 PM Bug #3191: Quality RRD inaccuracies and failure to update status in some circumstances: There are a few descriptions of problems in tickets in Kayako under the apinger-badstats tag. Chris Buechler
04:51 PM Bug #3198: IPSEC, when nating to a different size subnet a invalid natting rule is made.: Forgot to add that the VPNs work after the patch, binat is perfect, but my firewall is useless. Christian Renault
04:48 PM Bug #3198: IPSEC, when nating to a different size subnet a invalid natting rule is made.: I have this bug on 2.1.4 and after applying the patch described in https://github.com/pfsense/pfsense/pull/784, I hav... Christian Renault
04:19 PM Revision 1f2acda1: Fix for bug 3769: Matthew Smith
03:48 PM Bug #3770 (Resolved): Some drivers not being built with altq support: The Intel igb driver is currently not being built with altq support enabled. This leads to a situation where the use... Jeff Rapp
11:19 AM Bug #3769: Only the first phase 2 entry is used when multiple entries are present for an IPsec tunnel in 2.2: pushed the patch to master. Will test in next snapshot.
Matthew Smith
11:13 AM Bug #3769 (Resolved): Only the first phase 2 entry is used when multiple entries are present for an IPsec tunnel in 2.2: See the attached config.xml file. The ipsec phase 1 peers with ikeid's 2 and 3 are active. Each of them have 3 phase ... Matthew Smith

07/22/2014

08:31 PM Bug #3723 (Rejected): URL Table based rules may pass blocked IP: Chris Buechler
07:28 AM Bug #3723: URL Table based rules may pass blocked IP: My bad, it was a configuration mistake. I'm sorry. Feel free to close the ticket. Dmitriy K
08:30 PM Bug #3482 (Resolved): Initial Setup disables WAN: This looks to be fixed already in 2.2.
The scenario where it's replicable in 2.1x is easy to duplicate. This is t... Chris Buechler
03:45 PM Bug #3482: Initial Setup disables WAN: I couldn't reproduce it on similar setup using virtualbox. Let me know if I can have access to this box. Renato Botelho
02:02 PM Bug #3482: Initial Setup disables WAN: It's fairly easy to reproduce on a fresh install in VMware workstation.
1. Connect a client to the WAN network (or... Jim Pingle
06:01 AM Bug #3482: Initial Setup disables WAN: I can't assign this until we know how to duplicate it. Jim Thompson
07:39 PM Revision bc53fec6: Use SERVER_NAME instead of HTTP_HOST env var, it doesn't have port, then it avoids wizard end point to wrong IPv6 address. It should fix #3550: Renato Botelho
04:18 PM Bug #3601 (Feedback): Assigning a PPP Interface failed: Can you confirm it's still happening on new snapshots? I couldn't replicate it on my test systems. Renato Botelho
04:13 PM Revision 1b37ae46: Fix #983 - Add IP aliases subnets to interface subnet macro on GUI, since I'm here also fix not rules for PPTP clients macro.: Renato Botelho
02:50 PM Bug #3550 (Feedback): [IPv6] wizard not pointing to the right IPv6 address after first setup.: Applied in changeset commit:bc53fec62dd3e40c8f6c1d65baeb12a40b1167cf. Renato Botelho
02:30 PM Bug #3586 (Rejected): Gateway monitoring issue when 2 PPPoE WANs share the same gateway: That type of configuration would require a custom monitor IP address configuration so leaving it on 'auto' is definit... Jim Pingle
06:06 AM Bug #3586: Gateway monitoring issue when 2 PPPoE WANs share the same gateway: assigned to pingle for eval Jim Thompson
11:20 AM Feature #983 (Feedback): Improve/Enhance IP Alias VIP handling in GUI: Applied in changeset commit:1b37ae46e73fed8db8ca6c5cc67988a369a738b8. Renato Botelho
11:12 AM Feature #983: Improve/Enhance IP Alias VIP handling in GUI: Jim Thompson wrote:
> assigned to Renato.
>
> see other comments on possible security issues in the Alias code.
... Renato Botelho
06:03 AM Bug #3191: Quality RRD inaccuracies and failure to update status in some circumstances: need more info on 'when' this happens (why would be great) Jim Thompson

07/21/2014

10:01 PM pfSense Packages Feature #3768 (Closed): Snort IPS/IDS: Hello Everyone,
I would like ask add timer (in minutes) for blocked IP in snort.
That timer will drop the drop rul... Slava Bendersky
09:57 PM Revision ef74c9e4: Concat var before call escapeshellarg: Renato Botelho
09:56 PM Revision 604623a1: Make dhcpleases use unbound pid when it's configured: Renato Botelho
09:54 PM Revision 9d83d01f: Fix shell script syntax, it should fix #3361: Renato Botelho
05:00 PM Bug #3361 (Feedback): DHCP6 WAN is not obtaining a default gateway: Applied in changeset commit:9d83d01ff26b259bf149acedf2761cc4b09828db. Renato Botelho
08:19 AM Bug #3361: DHCP6 WAN is not obtaining a default gateway: Added the patch to rtsol, next round of snapshots will have it in Renato Botelho
04:29 PM Bug #3761 (Feedback): Disable interface where Captive portal is mapped you cannot login anymore: this isn't true in general, went through a couple scenarios last week on 2.1.4 with disabling an interface where CP i... Chris Buechler
07:26 AM Bug #3747: Route uses wrong interface (lo0) when tun local and remote are the same: Ermal is checking routing issue, here are some details:... Renato Botelho

07/19/2014

10:25 PM Bug #2335: IGMPProxy and CARP Results in System Instability Upon Reboot: Is this issue still present or is there a target on when it will be possibly resolved? J P
09:18 PM pfSense Packages Bug #3767 (Rejected): Ntop Problem.: Hello,I have install ntop latest version.When I want see IP information.It's will show this screenshot on ip_informat... akong wu
11:56 AM Revision 9775c69d: Merge pull request #1252 from N0YB/XHTML_Compliance_System_Menu: Renato Botelho
07:28 AM pfSense Packages Bug #3766 (Closed): Unhashed plain passwords saved by 2 packages (one a shell login package): In the saved config.xml, user passwords are (?salted and) hashed, and so are PPP passwords.
But passwords for Anyt... Stilez y
07:19 AM Bug #3765 (Resolved): Port alias creation and expansion leaves white space padding, causes is_numeric() tests on port validity to fail.: I entered a port alias ("Myport" defined as 999) through the 2.1.4 FW->"Alias"->"Port" UI, as part of a test. Using s... Stilez y
04:01 AM Revision de467f00: System: Firmware: Settings: Updater Settings Tab
system_firmware_settings.php
Line 488, Column 43: value of attribute "type" cannot be "input"; ... N0YB
12:23 AM Bug #3692: apinger loss % gets stuck: Just got bit with this again. Different symptoms this time... Gateway status (home page) showed 102% loss. RRD graphs... Denny Page

07/18/2014

05:18 PM Revision dd030de9: Detect when protocol changes and invalidate session to get a new cookie with secure flag set according. It fixes #3714: Renato Botelho
04:32 PM Bug #3692: apinger loss % gets stuck: i have the same problem on two pfsense machines. Ralf Hauptmann
04:21 PM Revision 639567b8: Merge pull request #1247 from DasTestament/master: Renato Botelho
01:33 PM Revision d806061c: Merge pull request #1232 from N0YB/Widget_Gateways: Renato Botelho
01:32 PM Revision f4b75912: Merge pull request #1235 from N0YB/Mixed_Case_Hostname: Renato Botelho
01:31 PM Revision 5847917c: Merge pull request #1236 from N0YB/Widget_Services_Status: Renato Botelho
01:29 PM Revision 34bb3ffc: Merge pull request #1237 from N0YB/XHTML_Compliance_System_Menu: Renato Botelho
12:30 PM Bug #3714 (Feedback): Session cookie inconsistent behavior when switching GUI protocols: Applied in changeset commit:dd030de935c500d9c3698969b985fbf068ab6ef8. Renato Botelho
11:30 AM Bug #3713: Gateways missing for OpenVPN server (shared key or /30s): Applied in changeset commit:8ff231b430864a08040c22518fde9bdfff54be0a. Anonymous
11:29 AM Bug #3713 (Feedback): Gateways missing for OpenVPN server (shared key or /30s): Pull request has been merged Renato Botelho
10:43 AM Bug #3713: Gateways missing for OpenVPN server (shared key or /30s): This should be an easy fix. Where you have a tap OpenVPN server configured, a dynamic gateway is added that has no IP... Chris Buechler
10:18 AM pfSense Packages Bug #3764 (Rejected): ntop can't see IP detail information: the package works in general, there is no indication of an actual bug here. Please post to the forum or mailing list ... Chris Buechler
05:32 AM pfSense Packages Bug #3764: ntop can't see IP detail information: It's can't see any ip detail information. akong wu
05:16 AM pfSense Packages Bug #3764 (Rejected): ntop can't see IP detail information: Hello,I install pfsense 2.1.4 and install ntop package.I can access ntop web gui.But when I see any IP detail informa... akong wu
09:28 AM Todo #2109 (Feedback): pfSense on FreeBSD 10.x: Renato Botelho
09:27 AM Bug #2124 (Feedback): Package system updates for FreeBSD 10.x: Renato Botelho

07/17/2014

06:36 PM pfSense Packages Bug #3756 (Resolved): PBI package for Snort does not properly configure the barnyard2 support binary: Renato Botelho
06:31 PM pfSense Packages Bug #3756: PBI package for Snort does not properly configure the barnyard2 support binary: Tested newly built PBI and it installs all the dependent components correctly. I believe this ticket can now be closed. Bill Meeks
06:25 PM pfSense Packages Bug #3756 (Feedback): PBI package for Snort does not properly configure the barnyard2 support binary: Should be fixed now Renato Botelho
11:35 AM Revision bee27ca1: Merge pull request #1234 from agibson2/master: Renato Botelho
09:29 AM Feature #3365 (Feedback): Implement package signing: It's working with BETA key, let it as feedback while the final key is not ready Renato Botelho
09:13 AM Bug #3491 (Feedback): Improper input validation on firewall rules when using a numerical alias name: Renato Botelho
07:11 AM Bug #3713: Gateways missing for OpenVPN server (shared key or /30s): Maybe you were seeing issues like #3475? Renato Botelho
07:10 AM Bug #3713: Gateways missing for OpenVPN server (shared key or /30s): Can you please add more information about what issue you are trying to get fixed here? Renato Botelho

07/16/2014

06:01 PM Bug #3692: apinger loss % gets stuck: I just got bit by this again running 2.1.4. For me, it happens every few weeks. and is always associated with an elev... Denny Page
02:13 PM Revision 615ae81f: Review all parameters on unbound main GUI, fix boolean params and add missing ones. Also make it work properly with 'apply': Renato Botelho
02:12 PM Revision f7e6c49a: Use the apply trigger for unbound acls to avoid restart unbound every time: Renato Botelho
12:58 PM Revision a88ec513: Fix indent and whitespaces: Renato Botelho
12:56 PM Revision c538f864: Some GUI tweaks on unbound main screen: Renato Botelho
12:42 PM Revision dbf81496: Improve unbound ACL edit page to use correct classes and jquery.ipv4v6ify.js: Renato Botelho
12:17 PM Revision cb79dc0d: Fix acl item removal: Renato Botelho
11:48 AM Revision 026f3639: Few GUI tweaks on unbound ACL page: Renato Botelho
11:27 AM Feature #3763 (Rejected): GUI: Packages: add 'non supported' or 'experimental' field: G'day,
Based on my journey here:
https://forum.pfsense.org/index.php?topic=79367.0
I installed squid3-dev, c... Hollander Hollander
06:43 AM Bug #3762 (Closed): web interface ajax updates do not work after upgrade: I have two pfsense boxes:
gw-1 - nanobsd (4g) vga (boots from usb flash drive) platform
gw-2 - generic pfsense (boo... Alex Kolesnik
04:03 AM Bug #3761 (Rejected): Disable interface where Captive portal is mapped you cannot login anymore: When Captive Portal is configured to work on WLAN-interface (not tested on other interfaces) and you go to "Interface... Paul Pedro

07/15/2014

09:48 PM Revision 18eb5d0e: Fix multiple issues on unbound advanced options GUI:: - Drop many wrong key assignments to pconfig
- Add missing keys to pconfig
- Deal fine with boolean parameters
- Mark... Renato Botelho
07:08 PM Bug #3755 (Rejected): XML error: "X cannot occur more than once" kills the frontends: don't create invalid config files is the lesson here. Always test on an unimportant system before restoring. And neve... Chris Buechler
07:07 PM Bug #3753 (Rejected): OpenVPN changing protocol/port Firewall rule ain't updated: it ain't linked and ain't designed to be updated. it only gets added at all as part of the wizard Chris Buechler
06:43 PM Bug #3760: reply-to with TCP and IPv6 generates broken checksums: Had default block logging disabled. Turned it back on and saw the reply packets being dropped attempting to exit anot... Jim Pingle
06:31 PM Bug #3760 (Resolved): reply-to with TCP and IPv6 generates broken checksums: With two WANs, reply-to will normally ensure connections that enter via alternate WANs return back via the expected p... Jim Pingle
06:30 PM Bug #3737: Incoming VLAN traffic fails to reach VLAN interface if PCP not 0: source is freely accessible, info here:
https://forum.pfsense.org/index.php?topic=76132.0 Chris Buechler
02:34 PM Revision dca795b7: Use cron.pid to get pid number and avoid kill minicron processes. It fixes #3757: Renato Botelho
09:50 AM Bug #3757 (Feedback): Minicron process inexplicaly terminated: Applied in changeset commit:dca795b7cf6136c010adc50b268b62cef2f7ead1. Renato Botelho

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

08/13/2014

08/12/2014

08/11/2014

08/10/2014

08/09/2014

08/08/2014

08/07/2014

08/06/2014

08/05/2014

08/04/2014

08/02/2014

08/01/2014

07/31/2014

07/30/2014

07/29/2014

07/28/2014

07/27/2014

07/26/2014

07/25/2014

07/24/2014

07/23/2014

07/22/2014

07/21/2014

07/19/2014

07/18/2014

07/17/2014

07/16/2014

07/15/2014