Activity

30 days up to

User

Subprojects

Activity

From 08/28/2014 to 09/26/2014

09/26/2014

06:17 PM Bug #3898: Traffic Graph webpage freezes up after some time: my pfsense is:
2.1.5-RELEASE (i386)
built on Mon Aug 25 07:44:26 EDT 2014
FreeBSD 8.3-RELEASE-p16
You are on ... carl paulino
06:17 PM Bug #3898 (Closed): Traffic Graph webpage freezes up after some time: Anytime I leave the page up 'Status-->Traffic Graph' on my Mac 10.9.5 Safari 7.1 browser, eventually the whole page w... carl paulino
04:56 PM Revision adab585d: Merge pull request #1294 from phil-davis/patch-19: Renato Botelho
04:56 PM Revision 45cd176a: Merge pull request #1293 from phil-davis/patch-20: Renato Botelho
04:18 PM Revision bbd1f783: firewall_aliases_edit UI text changes: If type URL Table then the heading "Description" on the 3rd column gets suppressed (I am not really sure why that is,... Phil Davis
04:01 PM Revision c5cfa06b: Minor fixes to firewall_aliases_edit: for 2.1 branch Phil Davis
03:41 PM pfSense Packages Feature #3685: haproxy listener ip from alias: Hi Atıf are you using the haproxy-devel 1.5.x package?
If so could you share the <haproxy> part of a configfile yo... Pi Ba
03:11 PM pfSense Packages Bug #3892: Critical bash vulnerability CVE-2014-6271: Security Announcement posted:
https://www.pfsense.org/security/advisories/pfSense-SA-14_18.packages.asc Jim Pingle
07:36 AM pfSense Packages Bug #3892 (Feedback): Critical bash vulnerability CVE-2014-6271: Affected packages have been either updated or removed.
* FreeRADIUS2: Package updated with a patched version of ba... Jim Pingle
11:31 AM Feature #3897: recurring schedules: You can already make these, IMHO. e.g. I have one called OfficeTime that looks like:
OfficeTime
Mon - Thur 14:0... Phillip Davis
08:49 AM Feature #3897 (Rejected): recurring schedules: it would be great to have the possibility to create recurring schedules such as "working hours", ... Anonymous
11:22 AM Todo #3893: Alias -> IP: See https://github.com/pfsense/pfsense/pull/1293 for my suggested change, which also fixes up a little issue with the... Phillip Davis
03:17 AM Todo #3893 (Resolved): Alias -> IP: Hi !
In the Web-GUI under Alias - IP - Hosts only IP is shown when addng a new entry.
Perhaps there should also be ... Anonymous
10:13 AM Revision ace5483e: Merge pull request #1292 from phil-davis/patch-18: Renato Botelho
07:20 AM pfSense Packages Bug #3816 (Feedback): Bump FreeRADIUS to fix libssl version mismatch error: Please try latest version. Renato Botelho
06:21 AM Bug #3877: OpenVPN Client Connection routing Internettraffic: 1. There is no need to set *IPv4 Configuration Type* to "DHCP" at all. Ovpn client interfaces are autoconfigurable. S... Dmitriy K
06:12 AM Bug #3896 (Resolved): ipv6 pppoe ISP with static adress: Hi all,
Funny case In France Nerim provider doesn't affect IPV6 address in adsl PPPOE.
It is dual IPV4 / IPV6 acc... xavier Lemaire
06:11 AM Feature #3895 (New): Timeout for "Apply change": It would be nice to have a timeout when you applied changes to make it possible to revert changes back if no cofirmat... Dmitriy K
05:48 AM Bug #3894 (Resolved): OpenVPN client started multiple times when connecting to FQDN where connectivity to server is delayed: Requirements:
1. WAN connection should not be Static/DHCP!
Steps to reproduce:
1. Create an ovpn client instance... Dmitriy K
03:51 AM Bug #3205: Partial system freeze when disconnecting USB 3G stick: any fix for this as its still troubling me Bipin Chandra
02:40 AM Revision 62218b4d: Remove useless check for alias description matching an interface description: While looking at other checks in the code I noticed this check. It was not effective anyway, because the first line i... Phil Davis
02:18 AM Bug #3312: Gateway on IPsec rules is not functional in pf: hello,
I installed 2.1.5 and when I put a getaway on ipsec rules, traffic goes to the default.
Is it a bug?
Frédéric Pougnault

09/25/2014

07:39 PM pfSense Packages Bug #3892: Critical bash vulnerability CVE-2014-6271: Checking further: git, avahi, and ntopng use bash during the build but do not include it in the PBI for installation.... Jim Pingle
07:29 PM pfSense Packages Bug #3892: Critical bash vulnerability CVE-2014-6271: Update again:
More affected packages, full list is now:
git, avahi, freeradius2, ntopng, mailscanner Jim Pingle
05:49 PM pfSense Packages Bug #3892: Critical bash vulnerability CVE-2014-6271: Also: The mailscanner package appears to be affected along with FreeRADIUS2 Jim Pingle
05:37 PM pfSense Packages Bug #3892: Critical bash vulnerability CVE-2014-6271: [2.2-ALPHA][admin@apu.localdomain]/root(1): which bash
bash: Command not found.
[2.2-ALPHA][admin@apu.localdomain]/... Jim Pingle
05:36 PM pfSense Packages Bug #3892: Critical bash vulnerability CVE-2014-6271: 2.2 does not include bash. No base install includes bash. If you added it manually, it came from FreeBSD, or perhaps ... Jim Pingle
05:31 PM pfSense Packages Bug #3892 (Resolved): Critical bash vulnerability CVE-2014-6271: 2.2-beta appears vulnerable:... Steve Thomas
03:37 PM Bug #3891 (Resolved): ipfw, on pfSense 2.2 kernel dump caused by: ipfw zone 4096 create: ipfw is used by captive portal, and uses a cpzoneid to create a zone in ipfw using mwexec("/sbin/ipfw zone {$cpzonei... Pi Ba
01:04 PM Bug #3890 (Resolved): Aliases multiple CIDR ranges show error message: Hi
If you create a new IP alias for network white-listing with any CIDR ranges separated by a space, pfsense WILL ... Gio M
12:55 PM Revision 7ea27b0d: Be more strict on removing groups checking group id and group name, it avoids issues like happened to users on ticket #3856. While I'm here, replace GET by POST: Renato Botelho
12:29 PM Revision fbe0d698: Be more strict on user removal checking array id and also username to avoid removing wrong users when browser back button is used. It should fix #3856: Renato Botelho
11:18 AM Revision e45e3bf4: Merge pull request #1290 from jean-m-cyr/master: Renato Botelho
11:13 AM Revision b4db2d0e: Remove also old unbound startup script: Renato Botelho
07:41 AM Bug #3849: Compex WLE200NX wireless card stops responding: I had the same issue, with nearly the same setup (APU 1D4 engine).
What really helped me, was to set the Wireless ... Mischa De Pol
07:30 AM Bug #3856 (Feedback): Delete a user, edit another one and going back... delete the edited user: Applied in changeset commit:fbe0d6986aef1ce933f91ad34ba9393344693180. Renato Botelho
01:26 AM Revision 31377265: Support IPV6 in unbound.conf: IPv6 addresses are not included in unbound config and access list Jean Cyr

09/21/2014

07:50 PM Bug #3879 (Resolved): Unable to move widgets in GUI: As of 2.2 Beta snapshots, widgets within the GUI are unable to be moved around. This applies to all Themes. Forum s... Angel Torres
07:43 PM Todo #3874: Make miniupnpd config syntax compatible with new versions: UPnP is working again for my gaming consoles with Open NAT thanks to this fix. Angel Torres
08:35 AM Bug #3801: Captive Portal on 2.2 does not pass through logged-in users: It works ! :)
I can now login through captive portal. Rule is added into ipfw and I can navigate correctly. Gregory Poudrel
08:23 AM Bug #3878 (Rejected): OpenVPN Site to Site Connection HMAC Error: Please post in the forum for assistance until a bug has been confirmed.
OpenVPN defaults to a digest of SHA1, as d... Jim Pingle
08:18 AM Bug #3878 (Rejected): OpenVPN Site to Site Connection HMAC Error: on the 2.1 i have a site-to-site vpn to an other 2.1 machine. The other one is the Server.
Authentication is shared ... Christian Merges
08:12 AM Bug #3863: Supermicro IPMI Boot virtual CD-ROM: Since the last beta booting from iso functioning very well. Christian Merges
08:11 AM Bug #3877 (Rejected): OpenVPN Client Connection routing Internettraffic: In 2.1 i have configured a VPN-Provider as a OpenVPN Client Connectionl:
importing certificates, add openvpn clientc... Christian Merges

09/20/2014

02:55 PM Revision b446562b: Simplify logic: Renato Botelho
02:41 PM Revision ad970c21: Add missing <form> and require filter.inc for filter_configure(): Renato Botelho
06:22 AM Bug #3640: Sierra Wireless 3G Modem support driver: The Direct IP mode is Sierra Wireless only and provide and Ethernet virtual interface trough USB.
This mode is suppo... Nicolas Scheffer

09/19/2014

07:58 PM Revision 130a84c5: Do the proper action if Apply button is pressed even on the preshared keys page: Ermal LUÇI
07:53 PM Revision 8718669c: Recent versions of miniupnpd does not accept IPv4 address anymore, use interface name always. It fixes #3874: Renato Botelho
05:16 PM Revision 9ec8e1f2: Allow hostname to start with '@.' for namecheap. It fixes #3568: Renato Botelho
05:15 PM Revision de29dadc: Allow hostname to start with '@.' for namecheap. It fixes #3568: Renato Botelho
03:02 PM Bug #3191: Quality RRD inaccuracies and failure to update status in some circumstances: For the record, properly recover from disconnected sockets patch put in. Ermal Luçi
03:00 PM Todo #3874 (Feedback): Make miniupnpd config syntax compatible with new versions: Applied in changeset commit:8718669cafdb241a7b801489ba0d6dd20f8d1e7e. Renato Botelho
10:55 AM Todo #3874 (Resolved): Make miniupnpd config syntax compatible with new versions: After version 20140523, miniupnpd moved from warning to error the use of IP address for interface on config file, it ... Renato Botelho
02:22 PM Bug #3876 (Resolved): pfsync is not synchronizing states on 2.2: On 2.2, with a valid pfsync configuration, no state information is passed between the HA nodes.
From ifconfig on t... Jim Pingle
01:47 PM Bug #3853: DHCP Server failover_peerip is not synchronized on 2.2 with CARP: I upgraded my test VM and tried it again, it still works. If I remove the failover IP, it becomes blank on the second... Jim Pingle
12:53 PM Bug #3853: DHCP Server failover_peerip is not synchronized on 2.2 with CARP: Doesn't seem to have been fixed yet: https://forum.pfsense.org/index.php?topic=81948.0 Trond Vindenes
12:30 PM Bug #3568: DynDNS: Hostname '@' not accepted for Namecheap: Applied in changeset commit:9ec8e1f280c35667dcdacfd0ee09f4b3f7d5f5f3. Renato Botelho
12:20 PM Bug #3568 (Feedback): DynDNS: Hostname '@' not accepted for Namecheap: Applied in changeset commit:de29dadc20688daa579937fbd8b4dfdcae3587e6. Renato Botelho
11:59 AM Bug #3873 (Rejected): pfSense dyndns for Namecheap - unable to use '@.domain.com' as hostname: Duplicate of #3568 Renato Botelho
09:15 AM Bug #3873 (Rejected): pfSense dyndns for Namecheap - unable to use '@.domain.com' as hostname: As shown in the documentation to update an "@" record you have to use use "@.domain.com" as hostname. Without... T W
11:58 AM Bug #3875 (Resolved): interface reporting dscrepancy: Hi All,
2.1.4-RELEASE, we're experiencing an issue where pfSense reports interface statistics incorrectly.
Initia... Isaac (.ike) Levy
11:52 AM Bug #3634: Default gateway not restored after it comes back online: Hey guys, are there any plans to fix this for 2.2? Thanks! Oz Solomon
11:16 AM Revision 93ee78b7: Check if there are leases to show, it fixes warning when $mobile['pool'] is empty or not array: Renato Botelho
09:57 AM Revision beae652c: Correct evaluation for "Acct-Interim-Interval" from RADIUS: Setting "Acct-Interim-Interval :=600" in FreeRadius2 evaluates to 'random' values with PfSense 2.1.
Possibly a bug re... dariomas
09:56 AM Revision 880f44c1: Merge pull request ##1285 from dariomas/patch-1: Ermal LUÇI
09:43 AM Revision d2fdc707: Correct evaluation for "Acct-Interim-Interval" from RADIUS: Setting "Acct-Interim-Interval :=600" in FreeRadius2 evaluates to 'random' values with PfSense 2.1.
Possibly a bug re... dariomas
09:07 AM Bug #3872: Enabling a disabled VLAN subinterface with multiple CARP VIPs configured causes system crash: Sorry, just to reiterate this only happens when two or more CARP VIPs are configured on the VLAN interfaces.
Stuart Ridsdale
08:16 AM Bug #3872: Enabling a disabled VLAN subinterface with multiple CARP VIPs configured causes system crash: Hi,
No, I have not tried this in 2.2.
Yes, the VIPs are on the VLAN interfaces. I then disable the VLAN interf... Stuart Ridsdale
08:13 AM Bug #3872: Enabling a disabled VLAN subinterface with multiple CARP VIPs configured causes system crash: So to understand even more.
You say the vips are on the VLAN interfaces and you disable the vlan interface, right?
... Ermal Luçi
08:12 AM Bug #3872: Enabling a disabled VLAN subinterface with multiple CARP VIPs configured causes system crash: You have tried if you recieve this problem on 2.2? Ermal Luçi
07:25 AM Bug #3872 (Resolved): Enabling a disabled VLAN subinterface with multiple CARP VIPs configured causes system crash: When tagged VLAN interfaces have multiple CARP VIPs configured, disabling the interface via the GUI and then enabling... Stuart Ridsdale
08:31 AM Bug #3642 (Resolved): Can't reset to factory defaults: It was fixed on 2.1.4 Renato Botelho
07:30 AM pfSense Packages Bug #3839 (Resolved): Suricata resolve host pop up broken after upgarde: Renato Botelho
06:57 AM Bug #3834 (Rejected): dnsmasq isnt working anymore since upgrade to 2.1.5: dnsmasq is working as expected on 2.1.5, it's probably a local issue. You can use forums and mailing lists to discuss... Renato Botelho

09/18/2014

06:57 PM Revision e5b3335a: Do not call write_config() when click on Apply Changes because it was already done and it causes dhcpd to restart one more time on secondary nodes. It fixes #3797: Renato Botelho
05:31 PM Revision 0b42518d: fix syntax: Jim Pingle
05:08 PM Revision 565488c9: Do now call write_config() when click on Apply Changes because it was already done and it causes dhcpd to restart one more time on secondary nodes. It fixes #3797: Renato Botelho
04:27 PM Feature #3806: Strongswan and CARP, initiator options: It will be investigated on the future.
Ermal Luçi
04:25 PM Bug #3801 (Feedback): Captive Portal on 2.2 does not pass through logged-in users: It should be properluy fixed with tomorrows snapshots. Ermal Luçi
04:07 PM Todo #3871 (Resolved): Please document that Interface Groups not to be used with multi-wan: Hello,
I spent the better part of a day trying to figure out why some firewall rules I added to a WANS interface ... Eduard Rozenberg
03:59 PM Bug #3868: Problem with DNSmasq resolution when using multiple DNS suffixes: Thanks for the tips, had a brain freeze and didn't think to see where that mystery IP went :). I configured that Dyn ... Eduard Rozenberg
02:00 PM Bug #3797: DHCP server restarted multiple times on secondary after config sync: Applied in changeset commit:e5b3335ad921e072f20f052fd0e02a43aada700d. Renato Botelho
12:20 PM Bug #3797 (Feedback): DHCP server restarted multiple times on secondary after config sync: Applied in changeset commit:565488c9cf34c60eccf0f364acc8a0372af31569. Renato Botelho
01:50 PM Revision 24395438: Update jquery to 1.11.1: * Update jquery to latest version
* Use production version instead of development
* Rename file to have version on it... Renato Botelho
07:26 AM Bug #3870 (Closed): re(4) NICs on APU are unable to hardcode speed/duplex properly: The APU uses re(4) network interfaces. If one of these is configured to a specific speed/duplex such as 100BaseTX <fu... Jim Pingle
07:06 AM Bug #3869 (Rejected): Erro on captiveportal with custom login page.: It's not a Captive portal issue, but a problem on your custom pages. They have an input hidden called zone with value... Renato Botelho

09/17/2014

07:58 PM Bug #3868 (Rejected): Problem with DNSmasq resolution when using multiple DNS suffixes: This is a local config and upstream DNS issue, not a bug. Jim Pingle
07:43 PM Bug #3868: Problem with DNSmasq resolution when using multiple DNS suffixes: Go to 198.105.254.68 in your browser, it comes up with http://searchassist.dyndns.com
Somewhere you are using DynDNS... Phillip Davis
12:50 PM Bug #3868 (Rejected): Problem with DNSmasq resolution when using multiple DNS suffixes: Hello,
My pfSense DHCP server is configured to give out the following "Domain search list"
(names changed):
la... Eduard Rozenberg
05:32 PM Revision 1fd3903e: Fix typos: Jim Pingle
05:26 PM Revision c4372d3c: Restore id for cancel button to fix js error: Renato Botelho
04:29 PM Revision c07e853b: Add a basic command line password reset script.: Jim Pingle
02:10 PM Revision ac5934df: While I'm touching this file, replace GET by POST: Renato Botelho
01:34 PM Revision cc265e2e: Deduplicate <form>, fixes #3864: Renato Botelho
01:32 PM Revision 729b9f01: Deduplicate <form>, fixes #3864: Renato Botelho
12:59 PM Bug #3869 (Rejected): Erro on captiveportal with custom login page.: I have 2 instances of Captive Portal, each one on a different subnet.
In both of captive portals I have a custom lo... Jonis Maurin Ceara
10:27 AM Revision 75cf353b: It's time to move to 2.2-BETA: Renato Botelho
09:20 AM Bug #3864: /diag_dump_states.php has duplicate <form> element: Applied in changeset commit:cc265e2e59e0f2ce874d5446e1fa49cdaaae1cfb. Renato Botelho
09:20 AM Bug #3864 (Feedback): /diag_dump_states.php has duplicate <form> element: Applied in changeset commit:729b9f018d28d3823c8d653aab8d18114ce55437. Renato Botelho
08:07 AM Bug #3867 (Rejected): Fatal error: Allowed memory size of 134217728 bytes exhausted (tried to allocate 71 bytes) on diag_states_summary.php version 2.1.5: When visiting Diagnostics -> States Summary we get:
Fatal error: Allowed memory size of 134217728 bytes exhausted (t... Mike C.

09/16/2014

05:12 PM Revision 022fe5b0: Merge pull request #1284 from phil-davis/patch-17: Renato Botelho
05:12 PM Revision e5d2c660: Merge pull request #1283 from phil-davis/patch-16: Renato Botelho
04:13 PM Revision 0b857543: Fix #3866 Firewall Log Filtering: on master Phil Davis
04:11 PM Revision 9036e766: Fix #3866 Firewall Log Filtering: on 2.1 branch Phil Davis
02:20 PM pfSense Packages Bug #3711 (Feedback): bind package not starting after update: Applied in changeset commit:c77104440623b60b8fb2a1d2f09c8c554e3cba68. Renato Botelho
01:33 PM Revision 76266acd: Correct speeling as reported by: Phil Davis via github: Ermal LUÇI
12:41 PM Revision 8f097bdd: Merge pull request #1282 from ExolonDX/branch_master_06: Renato Botelho
12:40 PM Revision cc98be5a: Merge pull request #1281 from ExolonDX/branch_master_05: Renato Botelho
12:40 PM Revision 05bf20a3: Merge pull request #1280 from ExolonDX/branch_master_04: Renato Botelho
12:40 PM Revision 17b86608: Merge pull request #1279 from ExolonDX/branch_master_03: Renato Botelho
12:39 PM Revision 9ab5042e: Merge pull request #1278 from ExolonDX/branch_master_02: Renato Botelho
12:39 PM Revision a77b360c: Merge pull request #1277 from ExolonDX/branch_master_01: Renato Botelho
12:20 PM Bug #3866: firewall log filtering: Applied in changeset commit:0b85754309f89d867d60a6d81a707235418f9bac. Phillip Davis
12:20 PM Bug #3866 (Feedback): firewall log filtering: Applied in changeset commit:9036e7661e3e97944f8d329cc6fb24b8206a7326. Phillip Davis
11:10 AM Bug #3866: firewall log filtering: That was easy thing to fix - there was a double dollar sign starting a variable name:
https://github.com/pfsense/pfs... Phillip Davis
04:08 AM Bug #3684: Openvpn not routing incomming traffic correct when using tap device: I confirm this bug is present since 2.2.
Tested on 2 setups.
very first setup and results:
1. I have bridged t... Dmitriy K

09/15/2014

10:57 PM Bug #3866 (Resolved): firewall log filtering: in diag_logs_filter.php filtering of the firewall log does not work as expected any more.
in 2.1.4 when preceding an... Johannes Spanier
05:50 PM Bug #3865 (Rejected): With explicit block-everything rule in firewall it incorrectly blocks LAN to LAN DHCP broadcast 0.0.0.0 and 255.255.255.255: With no rules, the pfSense firewall blocks everything by default (default config includes pass-everything rules). Tho... badon _
10:02 AM Bug #3864 (Resolved): /diag_dump_states.php has duplicate <form> element: I believe line 74 of /usr/local/www/diag_dump_states.php should be removed:... Trevor Peacock
09:19 AM Bug #3450: DHCPv6 Lease Status shows no Leases: *Quick Update:* I am using RFC3849 (2001:db8::/32) address space here, but all IPv6 addresses I own to configure the ... Vinícius Zavam

09/14/2014

06:11 PM Bug #3863 (Resolved): Supermicro IPMI Boot virtual CD-ROM: Booting from the ISO is not possible with virtual CD-ROM. Typing Text with Keyboard is possible. Pluging in and out t... Christian Merges
01:19 PM Feature #3862 (New): Allow configuration of IGMP proxy's 'quickleave' parameter from the web interface: I have multiple set top boxes through my IPTV provider and it seems IGMP proxy's 'quickleave' parameter causes proble... Aaron Bauer
12:17 PM Revision d02491e6: Tidy up "status_rrd_graph.php" XHTML: "id" attributes cannot start with a numeric character, so change "8hour"
to "eighthour" and "4year" to "fouryear". Colin Fleming
12:06 PM Revision 8de8ff0f: Tidy up "diag_dns.php" XHTML: Tidy up the "=" sign properly!
Remove "=" sign from INPUT tag
Change alignment to the "middle" of the TD tag
Add miss... Colin Fleming
11:57 AM Revision 24e183cd: Tidy up "gateways.widget.php" XHTML: Remove invalid "summary" attribute from TD tag Colin Fleming
11:54 AM Revision 607e15db: Tidy up "interfaces.widget.php" XHTML: Remove duplicate closing TR tag
DIV tag cannot be enclosed in a B (bold) tag
Change class and style Colin Fleming
11:49 AM Revision e3e1f748: Tidy up "pkg_mgr_install.php" XHTML: While using the widescreen theme, when you update the firmware or add a
new package the TEXTAREAs are side-by-side wh... Colin Fleming
11:43 AM Revision c5709378: Tidy up "fbegin.inc" XHTML: "id" must be a unique attribute. Colin Fleming

09/13/2014

11:06 AM Bug #3807: Unable to edit existing Virtual IPs: Using "2.2-ALPHA (amd64) built on Sat Sep 13 00:05:21 CDT 2014" nanobsd, and I'm still not able to edit existing virt... Trond Vindenes
04:52 AM Bug #3861 (Rejected): PPPOE non-NAT config cannot ping attached hosts as packets go upstream: I have a system configured as a plain router for a /29 subnet (no NAT) with an upstream PPPoE link. This means that b... Nei Ka

09/12/2014

07:37 PM Revision 62424bdb: Remove almost all calls to history.back() and make Cancel button back to HTTP_REFERER, there are a couple of places I didn't touch on this commit because it requires more work: Renato Botelho
07:17 PM Revision 7e7f07ae: This really does not need the =: Ermal LUÇI
07:17 PM Revision e9a9e1a7: Remove wrongly used type: Ermal LUÇI
05:49 PM Revision 3d77ec5d: Ooops restore this: Ermal LUÇI
05:40 PM Revision 3b9ef0ef: Inverse the sense of the toggles to avoid configuration upgrades: Ermal LUÇI
05:34 PM Revision 16c02722: Actually use the new toggles: Ermal LUÇI
05:31 PM Revision 0e7aad67: Provide Advanced Options for controlling rekey and reauth, might be usable with iOS devices: Ermal LUÇI
05:23 PM Revision ac19d32a: Only for movile users: Ermal LUÇI
05:22 PM Revision fa4e059e: Provide a first implementation of EAP-TLS authentication with IKEv2. It is a start and might not work on all cases: Ermal LUÇI
04:33 PM Feature #3859: Make it possible to set the source IP address for gateway monitoring: Normally this should be fixed on gateways page to show the ip aliases as source interface rather than apinger itself. Ermal Luçi
04:28 PM Bug #3450: DHCPv6 Lease Status shows no Leases: *2.1.5-RELEASE (amd64)*
* DHCPv6 Server seems to be not in a good shape
** it works only if RA is enable, but RA... Vinícius Zavam
03:36 PM Bug #3692: apinger loss % gets stuck: Please update latest version of 2.2 of rebuilt apinger manually and retry. Ermal Luçi
03:34 PM Bug #3191 (Feedback): Quality RRD inaccuracies and failure to update status in some circumstances: Patched apinger, need some feedback if the issue is solved now. Ermal Luçi
03:22 PM Bug #2993 (Resolved): IPsec in transport mode, tunneled traffic does not flow through enc0: Seems to work properly now, thanks! Jim Pingle
03:16 PM Bug #3855 (Resolved): Deleting an IP Alias using a CARP VIP as its interface does not fully get remove the IP from the secondary node: I tested this with the fixes applied and confirmed that it did correct the issue. Jim Pingle
03:13 PM Revision e373e4cd: Make this work properly and not throw out errors.: Ermal LUÇI
03:09 PM Bug #3801: Captive Portal on 2.2 does not pass through logged-in users: I updated to 12th September snapshot.
As soon as the user logs into the captive portal, kernel crashes (probably a... Gregory Poudrel
08:51 AM Bug #3860 (Resolved): Selection of Enable STARTTLS disapears after clicking TEST SMTP on system_advanced_notifications.php: On page System: Advanced : Notifications (system_advanced_notifications.php) the check box STARTTLS is cleared after ... Janosch Jaegers

09/11/2014

09:22 PM Revision 1a6769a6: Replace GET by POST on system_usermanager.php and make necessary adjustments on necessary pages. It fixes #3856: Renato Botelho
09:22 PM Revision 7c2d0050: Back to referer instead of hard coded system_usermanager.php since this page is called from other places: Renato Botelho
09:22 PM Revision 111bea0d: Add a function to redirect to a page passing parameters through POST: Renato Botelho
09:22 PM Revision d83a4264: Add a cancel button for user and group edit page: Renato Botelho
07:57 PM Revision 415b71f1: Fixes #3666. Set the sysctl net.inet.icmp.reply_from_interface to 1 to use the incoming interface to send the icmp reply from. It uses another part of patch to pf to undo NAT if it was already performed before: Ermal LUÇI
06:31 PM Revision 77bf9d5e: Add security priviledge for new page: Ermal LUÇI
06:28 PM Revision 6ca4d471: Get rid of the /: Ermal LUÇI
06:27 PM Revision ca4e3e4c: Actually do not refer with Name but just pool: Ermal LUÇI
06:25 PM Revision bb55330a: Do not let the user mess with SAs from this page. The daemon and primary status page handles tat: Ermal LUÇI
06:24 PM Revision eb183863: Provide a page on IPSec:status t check the leases to mobile clients: Ermal LUÇI
06:01 PM Revision 6c2abb0f: Show friendly names: Ermal LUÇI
05:57 PM Revision 048dd7b9: Remove extra char: Ermal LUÇI
05:55 PM Revision 5e09285e: Correct widget displaying of status for tunnels: Ermal LUÇI
05:47 PM Revision 6f276cba: Properly display number of mobile users: Ermal LUÇI
05:28 PM Revision 7a668bd8: Fix path to xml and make sure the parser will see the custom tags: Ermal LUÇI
05:23 PM Revision 929dfb4c: Add pages missing from the Status > Traffic Graph privilege that are required for the full page to load: Jim Pingle
05:23 PM Revision 8a2f80b2: Add pages missing from the Status > Traffic Graph privilege that are required for the full page to load: Jim Pingle
04:33 PM Revision 6da9a160: Display all new information on ipsec:status and also fix displaying of some previous statistics: Ermal LUÇI
04:30 PM Bug #3856 (Feedback): Delete a user, edit another one and going back... delete the edited user: Applied in changeset commit:1a6769a630b73e20dc093df7d9b59e8bd4dfce74. Renato Botelho
07:15 AM Bug #3856: Delete a user, edit another one and going back... delete the edited user: Confirmed. Will work on a fix Renato Botelho
04:16 PM Bug #3854: pf on 2.2 should not have an upper table entry limit, but generates errors with large datasets: pfB_BTLevel1 Bill Crowder
04:08 PM Bug #3854: pf on 2.2 should not have an upper table entry limit, but generates errors with large datasets: https://www.iblocklist.com/lists.php Bill Crowder
01:30 PM Bug #3854: pf on 2.2 should not have an upper table entry limit, but generates errors with large datasets: Can you provide a link to this big list? Ermal Luçi
02:30 PM Bug #3666: PMTUD is broken for NATed traffic: Applied in changeset commit:415b71f1d41c886b06dfc83d8bc2cb906be78509. Ermal Luçi
02:19 PM Bug #3666 (Feedback): PMTUD is broken for NATed traffic: I think the sysctl that was activated should fix this. Ermal Luçi
02:17 PM Feature #3859: Make it possible to set the source IP address for gateway monitoring: You are right in saying that in most cases the correct IP can be easily deduced from the gateway IP address. However,... Patrick Bihan-Faou
11:07 AM Feature #3859: Make it possible to set the source IP address for gateway monitoring: I would think this can be automated to meet [most|all] use cases. The gateway has a gateway IP address. So the code t... Phillip Davis
09:40 AM Feature #3859 (New): Make it possible to set the source IP address for gateway monitoring: In some cases pfsense does not configure the correct source ip address for apinger checks.
One such scenario is wh... Patrick Bihan-Faou
01:10 PM Bug #3132: Gateway events for IPv6 affect IPv4 services and vice versa: This will not be possible to be fixed in 2.2
Many things need to change for this to happen. Ermal Luçi
11:38 AM Revision 4889b4c0: Merge pull request #1260 from DasTestament/master: Renato Botelho
11:26 AM Revision ee4da773: Merge pull request #1274 from phil-davis/patch-13: Renato Botelho
11:25 AM Revision b7063ed3: Merge pull request #1275 from phil-davis/patch-14: Renato Botelho
09:45 AM Bug #3801 (Resolved): Captive Portal on 2.2 does not pass through logged-in users: Looks good to me. I can now auth to the portal and then access other sites as expected. Jim Pingle
06:50 AM Feature #3515 (Feedback): Windows OpenVPN clients require register-dns to properly use a DNS server set by Pfsense: Applied in changeset commit:c38764dc0494463b06f70c7ef8e249629a922134. Anonymous
02:17 AM Revision 63673f3c: Standardise size of Duplicate Slice button: The Duplicate Slice button currently is displayed in smaller text and in a row of its own, separate from the row abov... Phil Davis
02:10 AM Revision ffda0775: Standardise size of Duplicate Slice button: The Duplicate Slice button currently is displayed in smaller text and in a row of its own, separate from the row abov... Phil Davis
01:37 AM Bug #3858 (Resolved): DynDNS errno 47: Address family not supported by protocol family: I'm on pfSense 2.1.3-RELEASE amd64 (seems to be missing from affected version). Upon configuring the custom (v4, not ... Robbie Trencheny

09/10/2014

08:39 PM Revision 45dbc75f: Try to make the ipsec widget usable again: Ermal LUÇI
08:39 PM Revision 7ab6ad70: Make use of the xml output from stroke leases command: Ermal LUÇI
08:02 PM Revision 9060f420: Change is_port() to only validate a single port, we have is_portrange() for specific cases. Make necessary adjustments after check all is_port() calls. It fixes #3857: Renato Botelho
06:39 PM Revision be32a003: Delete IP Alias on CARP VIP interface on secondary node when it's deleted on primary. It fixes #3855: Renato Botelho
06:39 PM Revision 7397f643: Fix operator: Renato Botelho
06:39 PM Revision 846dc21c: Fix operator: Renato Botelho
06:12 PM Bug #3854 (New): pf on 2.2 should not have an upper table entry limit, but generates errors with large datasets: Jim Pingle
05:00 PM Bug #3854: pf on 2.2 should not have an upper table entry limit, but generates errors with large datasets: To show that it works on 2.1.4... This is the same exact list being replaced on 2.1.4. The list has a different alias... Bill Crowder
04:25 PM Bug #3854: pf on 2.2 should not have an upper table entry limit, but generates errors with large datasets: Better more concise details with Table-entries set at 1,000,000, have also tried 10,000,000.
This list will load c... Bill Crowder
04:13 PM Bug #3854: pf on 2.2 should not have an upper table entry limit, but generates errors with large datasets: Ermal,
When I ran the tests shown in forum post I had tried from 1000000 to 20000000 in System: Advanced: Firewa... Bill Crowder
10:23 AM Bug #3854 (Closed): pf on 2.2 should not have an upper table entry limit, but generates errors with large datasets: The table entries limit is still there
maximumtableentries os system->Advanced.
What has changed is that there is... Ermal Luçi
05:34 PM Revision ed5fc757: Return something meaningful until the widget is made to work correctly: Ermal LUÇI
05:33 PM Revision 4881e5a9: Remove racoon references: Ermal LUÇI
05:33 PM Revision 537940c8: Remove all remnants of racoon from log page: Ermal LUÇI
05:32 PM Revision 5f875147: Correct status.php for new ipsec: Ermal LUÇI
05:23 PM Revision e952906e: Remove traces of older implementation still present: Ermal LUÇI
04:54 PM Bug #2993 (Feedback): IPsec in transport mode, tunneled traffic does not flow through enc0: Patch committed.
Needs to be confirmed fixed with newer snapshots. Ermal Luçi
04:38 PM Revision 3b977eff: Put some tuning on number of half open connection possible in one time.: Ermal LUÇI
04:36 PM Revision 816672f1: Provide some parallellizm on the IKESA lookups for heavy loaded boxes.: Ermal LUÇI
03:20 PM Bug #3857 (Feedback): is_port() validate a wrong port range: Applied in changeset commit:9060f420a9444c68fc8db926787d0bb37d77ed72. Renato Botelho
07:11 AM Bug #3857 (Resolved): is_port() validate a wrong port range: is_port() function should validate only a single port since there is is_portrange() available, but it actually valida... Renato Botelho
01:50 PM Bug #3855 (Feedback): Deleting an IP Alias using a CARP VIP as its interface does not fully get remove the IP from the secondary node: Applied in changeset commit:be32a003afd114098e8cfe7c18edae887810500f. Renato Botelho
08:30 AM Bug #3797 (New): DHCP server restarted multiple times on secondary after config sync: There is still a problem here, it is still getting restarted multiple times but it appears to be due to this behavior... Jim Pingle
06:55 AM Bug #3856 (Resolved): Delete a user, edit another one and going back... delete the edited user: In the user manager page, if you delete a user and then go to the edit page for another user, when you click the brow... Jerome Troussard

09/09/2014

10:43 PM Revision c966c7ec: Actually roll this back since it was a testing glitch: Ermal LUÇI
10:08 PM Revision eadda967: Also here be more strict on checking to return proper result. (some missed from previous commit): Ermal LUÇI
10:04 PM Revision fe06990e: Also here be more strict on checking to return proper result: Ermal LUÇI
09:56 PM Revision fe0430f7: Put some more statistics and the user that gets connected now that we can: Ermal LUÇI
08:55 PM Revision 76e656ba: Merge pull request #1273 from fsSnowboard/master: Renato Botelho
08:53 PM Revision 60ef0911: Make sure dhclient is not running before start it, it fixes console interface setup when interface is using dhcpv4. It should also help #3482: Renato Botelho
08:52 PM Revision d9d1bd20: Implement a function to kill dhclient process, sometimes it takes a little time to die, so use a sleep(1) there: Renato Botelho
08:50 PM Revision 397e40d5: find_dhclient_process() returns an int, not string: Renato Botelho
08:30 PM Revision 9e74f980: Be more explicit: Ermal LUÇI
08:26 PM Revision 9eb4257f: Correct log prepending value: Ermal LUÇI
08:12 PM Revision f049d544: Some device names are bigger now (eg vtnet, ixgbe, cxgbe): Renato Botelho
07:42 PM pfSense Packages Bug #3839: Suricata resolve host pop up broken after upgarde: This bug is fixed in the latest 2.0.3 v2.0.2 version of the Suricata package. This issue can be closed. Bill Meeks
07:38 PM Revision 38f5ac9b: Correct generating loglevels for startup through ipsec.conf: Ermal LUÇI
07:34 PM Revision aa352bb3: Fix minor typo to name and port range: Typo on the name of the FaceTime shape rule, and missing 1 from Google
Talk port range. Tyler Turner
05:07 PM Revision 572f6ccc: Fix guess_interface_from_ip() to account for differences in netstat output. Fixes #3853: Jim Pingle
04:53 PM Bug #3849: Compex WLE200NX wireless card stops responding: I have downgraded to 2.1.4 (i.e. reinstalled 2.1.4 from scratch and restored config). I noticed that after the first ... Michael von Glasow
04:45 PM Feature #3329: Allow creating "not" rules for IPsec Phase 2: Now these should be called specifc policies.
Since phase2 is totally managed by the ipsec daemon there can be what... Ermal Luçi
04:43 PM Bug #3661 (Feedback): xauth user is not displayed in IPsec status: Strongswan has been patched to have this information, also the diag_ipsec improved to display it. Ermal Luçi
03:57 PM Bug #3791 (Rejected): Alias->URL Table (IPs): See #3854 Renato Botelho
03:36 PM Bug #3791: Alias->URL Table (IPs): This should be closed in favor of #3854, #3854 describes the problem more clearly. Thanks, Bill. Bill Crowder
03:28 PM Revision 76fa9adb: Blah unconditionally set rightsourceip per https://forum.pfsense.org/index.php?topic=80300.0 Until pools can be supported properly.: Ermal LUÇI
02:54 PM Revision 3b0bc8c3: Import fix for http://bugs.jquery.com/ticket/9521: Renato Botelho
02:53 PM Revision ccefd603: Import fix for http://bugs.jquery.com/ticket/9521: Renato Botelho
12:48 PM Bug #3801 (Feedback): Captive Portal on 2.2 does not pass through logged-in users: Can you try on latest snapshots. Ermal Luçi
12:20 PM Bug #3853 (Feedback): DHCP Server failover_peerip is not synchronized on 2.2 with CARP: Applied in changeset commit:572f6cccd47f72fe64e84731cf4d12ccbef46da6. Jim Pingle
10:38 AM Bug #3853 (Resolved): DHCP Server failover_peerip is not synchronized on 2.2 with CARP: On 2.1.x and before, the failover_peerip is synchronized and adjusted for use by the secondary. On 2.2 the value is b... Jim Pingle
12:15 PM Bug #3855 (Resolved): Deleting an IP Alias using a CARP VIP as its interface does not fully get remove the IP from the secondary node: When you delete an IP Alias made using a CARP VIP as its interface, it does not get removed from the secondary node a... Jim Pingle
12:14 PM Revision b22ef160: As pointed out by Ermal, VIPs should go first in the list since NAT is first match. Ticket #983: Renato Botelho
11:06 AM Bug #3854 (Resolved): pf on 2.2 should not have an upper table entry limit, but generates errors with large datasets: On 2.2 (FreeBSD 10.x base), pf is not supposed to have an upper table size limit. The knob to set it has been removed... Jim Pingle
06:40 AM Bug #3852 (Resolved): IGMPPROXY still spamming the main systemlog: Renato Botelho
04:17 AM Bug #3852: IGMPPROXY still spamming the main systemlog: Thank you very much, Renato!
Case can be closed now.
Kind regards and sunny greatings from Berlin/Germany. Willy Tenner

09/08/2014

09:35 PM Revision d629f1ca: igmpproxy param -d doesn't like the space before optarg. Fixes #3852: Renato Botelho
09:35 PM Revision 354a1d3f: igmpproxy param -d doesn't like the space before optarg. Fixes #3852: Renato Botelho
09:31 PM Revision fd875a8d: Ticket #3826 correct point number 2) by showing not connected tunnels in the end of the status page: Ermal LUÇI
08:44 PM Revision a1b5f07b: Fixes #3664, actually make sense of this function to work properly: Ermal LUÇI
08:36 PM Revision 7c611a3e: Improvements on interfaces_assign.php:: - Let user select network port to add instead of pick the first
available, it fixes #3846
- While I'm here, drop GE... Renato Botelho
08:28 PM Revision fa9667d2: Fixes #3823 Properly parse auth tags as variables: Ermal LUÇI
08:24 PM Revision 1c4b1636: Convert this block into a function for later use: Renato Botelho
08:24 PM Revision e4034dcb: Fix indent: Renato Botelho
08:24 PM Revision eb2ab5eb: Remove unecessary var initialization: Renato Botelho
08:24 PM Revision 19498fbf: Replace mwexec() by unlink_if_exists() and respect global tmp_path: Renato Botelho
08:24 PM Revision 1b0e073e: Fix indent and whitespaces: Renato Botelho
08:19 PM Revision ea0efb36: Show properly a setting of any for Identifiers to use in the status page: Ermal LUÇI
06:42 PM pfSense Packages Feature #3511 (Feedback): IGMP Proxy - its own tab under system logs: Fix committed to #3852 should have fixed this one too. I don't think a new tab is necessary now that debug level has ... Renato Botelho
06:36 PM Feature #3699 (Resolved): Log pfsense version after bootup: Renato Botelho
06:17 PM Feature #3365: Implement package signing: Transfer to Jeremy who will work on necessary changes for the new key Renato Botelho
04:50 PM Bug #3852: IGMPPROXY still spamming the main systemlog: Applied in changeset commit:d629f1ca6949735dd0c766b09d122b3edd6e1169. Renato Botelho
04:50 PM Bug #3852 (Feedback): IGMPPROXY still spamming the main systemlog: Applied in changeset commit:354a1d3ffce75d1ed0c7405f50b7947251da1c54. Renato Botelho
07:36 AM Bug #3852 (Resolved): IGMPPROXY still spamming the main systemlog: This is a renewal from an old feature ticket #1477. Because the bug is still there (my current pfSense version is 2.1... Willy Tenner
04:04 PM Bug #3826 (Feedback): 2.2 diag_ipsec.php issues: Point 1) is fixed already.
Point 3) has been corrected by Renato though it does not show the local subnet in case of... Ermal Luçi
03:50 PM Bug #3846 (Feedback): Adding interface for new VLAN selects active WAN VIP address breaking connectivity: Applied in changeset commit:7c611a3ea06545427336cbd26f04e8db21dbdf07. Renato Botelho
02:38 PM Bug #3846: Adding interface for new VLAN selects active WAN VIP address breaking connectivity: it is basically an issue when adding a new interface, I do not think it is specifically related to CARP or VLANs . F... Brian Taber
02:22 PM Bug #3846: Adding interface for new VLAN selects active WAN VIP address breaking connectivity: Can you provide more information on this.
It seems rather strange that you see this since it is not related in general. Ermal Luçi
03:20 PM Bug #3664: "IPsec" not displayed in firewall log interface column: Applied in changeset commit:a1b5f07b047b3f27e6326c718eec43167e3bf6dd. Ermal Luçi
03:06 PM Bug #3664 (Feedback): "IPsec" not displayed in firewall log interface column: Ermal Luçi
03:00 PM Bug #3823 (Feedback): diag_ipsec.php fails with PSK+Xauth mobile client connected: Applied in changeset commit:fa9667d2b90c030aeffd896f5dd680c7f5ae677b. Ermal Luçi
02:56 PM Feature #3806: Strongswan and CARP, initiator options: For IKEv1 there are complication to adding this.
It will mean that if you have more than one phase2 for IKEv1 it wil... Ermal Luçi

09/07/2014

11:17 AM Bug #3851 (Rejected): General Settings - DNS server settings don't get synced: The DNS servers and related settings are not supposed to sync. Jim Pingle
10:30 AM Bug #3851 (Rejected): General Settings - DNS server settings don't get synced: In General Settings - DNS servers settings to not get synced to our second firewall.
Neither the server names nor t... Eduard Rozenberg

09/06/2014

11:15 PM pfSense Packages Bug #3850: Snort "add a new interface based on this" creates a bad configuration: I am a volunteer maintainer for the Snort package on pfSense. Thank you for reporting this bug. It will be correcte... Bill Meeks
05:09 PM pfSense Packages Bug #3850: Snort "add a new interface based on this" creates a bad configuration: Apologies for not using /pre in my previous message.... Braden Del More
05:06 PM pfSense Packages Bug #3850 (Resolved): Snort "add a new interface based on this" creates a bad configuration: pfSense 2.1.5-RELEASE (amd64)
Snort 2.9.6.2 pkg v3.1.2
Using the "add a new interface based on this one" button ... Braden Del More
08:35 AM Bug #3845 (Rejected): Help Menu: Duplicate ot #3842 Renato Botelho
08:25 AM Bug #3845: Help Menu: I can confirm this and i'm running 1920x1080. Please fix this because i can't use the System menu :( G Ran Berg
06:48 AM Bug #3849: Compex WLE200NX wireless card stops responding: Update: after the last loss of WiFi I just left everything alone and the next morning I noticed the WiFi was back (th... Michael von Glasow

09/05/2014

06:59 PM Revision c245a846: Adjust states summary for new pfctl -ss output. Fixes #2121: Jim Pingle
05:24 PM Bug #3849: Compex WLE200NX wireless card stops responding: Wifi's gone again, after just 75 minutes of uptime. Wireless log attached. Michael von Glasow
04:12 PM Bug #3849: Compex WLE200NX wireless card stops responding: Just rebooted and WiFi is back again. I still get the stuck beacon message in the system log, but less frequently tha... Michael von Glasow
04:02 PM Bug #3849 (Rejected): Compex WLE200NX wireless card stops responding: Occasionally, my WiFi adapter will stop working. Clients lose their connection to it, and if I scan nearby WiFis with... Michael von Glasow
03:07 PM Revision 5ef7f751: Merge pull request #1271 from fsSnowboard/master: Renato Botelho
02:35 PM Bug #3369: Captive vouchers expire too quickly: I have a ready virtualbox image with this bug affecting the system.
who wants to check it out? maz nos
02:00 PM Bug #2121 (Feedback): pfctl -ss output has changed on FreeBSD 10: Applied in changeset commit:c245a8460ab318d527f1c51cfc53f76494208885. Jim Pingle
01:18 PM Bug #2121 (New): pfctl -ss output has changed on FreeBSD 10: Moving this back to New. The states table display is OK now but diag_states_summary.php breaks with the new formatting. Jim Pingle
12:27 PM Feature #3806 (New): Strongswan and CARP, initiator options: It does act as a responder now rather than an initiator, but it would be nice to have a selector on P1 to control tha... Jim Pingle
08:52 AM Bug #3848 (Resolved): enabling schedule on 2.1.5 causes page fault: Since enabling a scheduled rule my 2.1.5 installation I am observing daily kernel crashes due to a page fault. The c... Ernst den Broeder
04:41 AM Bug #3844: Captive Portal hard timeout does not work: Hello,
what kind of list?
It is strange. it works for 2 or 3 days or 3 weeks. you can only see the clients in t... Stilgar Home

09/04/2014

11:27 PM Revision b5bef5dc: Add more services and reorder: Add following shaping rules:
ARMA 3
WII
EA Origin
Games For Windows Live
Crysis 3
DeadSpace 2
DeadSpace 3
DragonAge2
... Tyler Turner
06:38 PM pfSense Packages Bug #3847 (Resolved): Squid3 Youtube Refresh Filter Broken: The Youtube refresh filter currently causes squid to stop caching for all domains OTHER than youtube. It adds the fol... Sam Bingner
04:00 PM Revision 232d404d: Make sure button 'move to the end' highlight last line: Renato Botelho
03:45 PM Revision 91ebc808: Do not collapse phase2 items every time an action occours: Renato Botelho
03:12 PM Revision 495c7f0c: Replace all GET use by POST: Renato Botelho
12:09 PM Revision 761882a1: More improvements on IPsec GUI (Ticket #3328):: * Allow to reorder P2 entries
* Allow to remove multiple P2 entries
* Add an icon to quickly toggle enable/disable st... Renato Botelho
11:33 AM Bug #3822: 2.2 boot hangs at "Synchronizing user settings": I still can't reproduce it here but in the config that user sent me, they do have an odd group tag.... Jim Pingle
10:57 AM Bug #3822 (New): 2.2 boot hangs at "Synchronizing user settings": There is apparently still a problem here (See https://forum.pfsense.org/index.php?topic=80247.msg444042#msg444042 ), ... Jim Pingle
10:53 AM Feature #3328 (Feedback): Allow reordering of IPsec Phase 1 and Phase 2 entries: Renato Botelho
10:47 AM Revision d1d3428a: Mark host as up or down before execute script, then script can use this information.: Submitted by: Jean Debogue <jean@wedebugyou.com> Renato Botelho
10:47 AM Revision 43083402: Remove wrong code left from copy/paste: Renato Botelho
10:47 AM Revision a6057836: Use array id to delete phase2, it will simplify changes I'm working on and will commit soon: Renato Botelho
10:47 AM Revision 63c058e7: Change functions from row_toggle.js to work with different field names, keeping the old behaviour as default. This is necessary to have more than one group of fields in the same page: Renato Botelho
10:47 AM Revision 1b5675a7: Mark host as up or down before execute script, then script can use this information.: Submitted by: Jean Debogue <jean@wedebugyou.com> Renato Botelho
07:54 AM Bug #3846 (Resolved): Adding interface for new VLAN selects active WAN VIP address breaking connectivity: I utilize CARP for failover on WAN and have multiple VLANS. When adding a new VLAN that works fine, but when adding ... Brian Taber

09/03/2014

11:11 PM Revision 2300ee35: fix menu wrap on non-default themes: Jared Dillard
09:56 PM Revision 6817c18a: fix menu wrap on pfense_ng and pfsense_ng_fs: Jared Dillard
09:43 PM Feature #1189: Gateway: Multiple monitor ips: Hello Chris,
Due to personal experience I now claim there are 0 always reliable monitor IP's. I just had 8.8.8.8 (... Eduard Rozenberg
09:02 PM Bug #3314: Traffic graph shows 2X the actual traffic on VLAN interfaces.: As Renato says, this is still present as of at least the Wed Sep 03 16:56:44 CDT 2014 2.2 Alpha snapshots. On my syst... Andy Sayler
06:10 PM Bug #3845 (Rejected): Help Menu: The Help Menu is under system menu on 1360x768 resolution.
So is it impossible use the System Menu roniram roniram
05:34 PM Bug #3844 (Rejected): Captive Portal hard timeout does not work: sounds like a config issue, please post to the forum or mailing list for troubleshooting assistance Chris Buechler
05:16 PM Feature #8: Clear states after failover: State Killing on Gateway Failure is great. is there a way to the the opposite, like State Killing on Gateway Success.... M Skenderian
01:13 PM Bug #3840: Disable (or give the option to disable) the OS addition to the SSH daemon banner: Personally I'd prefer to omit any extra information rather than announcing that willingly. Jim Pingle
01:12 PM Bug #3840: Disable (or give the option to disable) the OS addition to the SSH daemon banner: What about add pfSense version instead of FreeBSD's? Renato Botelho
12:46 PM Bug #3840 (Resolved): Disable (or give the option to disable) the OS addition to the SSH daemon banner: Tested on a current snapshot, FreeBSD version is gone now. Looks good.
Jim Thompson wrote:
> JimP, you realize th... Jim Pingle
01:09 PM Revision eca6f787: Improvements on IPsec GUI (Ticket #3328):: * Allow to reorder phase1 items
* Allow to remove multiple phase1 items
* Add an icon to quickly toggle enable/disabl... Renato Botelho
10:45 AM Revision 7ec7e24f: Remove uneeded variables: Renato Botelho
10:39 AM Revision 94528348: Remove unused variables: Renato Botelho
10:38 AM Revision e0fb12c1: Fix indent and whitespace: Renato Botelho
10:26 AM Feature #983: Improve/Enhance IP Alias VIP handling in GUI: @Renato,
you should make sure that VIPs are applied first in the rules since NAT is a first match, no? Ermal Luçi
06:42 AM Feature #3328: Allow reordering of IPsec Phase 1 and Phase 2 entries: I'm working on this Renato Botelho

09/02/2014

05:58 PM Revision 060c3ac0: Fix subnet display for IPsec status. Ticket #3826: Renato Botelho
05:57 PM Revision 55d6f48b: id changes every time ipsec tunnel disconnects and reconnect, need to use peerconfig to get correct description. Ticket #3826: Renato Botelho
02:01 PM Bug #3665 (Feedback): IPsec tunnel description not displayed on status output: Should be fixed by commit:55d6f48bc8f5b24f0756e52a121b26c2a57fe186 Renato Botelho
05:36 AM Bug #3692: apinger loss % gets stuck: Denny Page wrote:
> Apinger is such an important service and appears to be growing non-functional. Is there anything... Doktor Notor
04:57 AM Bug #3844 (Rejected): Captive Portal hard timeout does not work: Hard timeout does not work on all three of our pfsense machines.
Running pfSense-2.1.4-RELEASE with squid and squidG... Stilgar Home

09/01/2014

07:43 PM Bug #3692: apinger loss % gets stuck: Since upgrading to 2.1.5, I've also had two instances of apinger getting stuck on elevated latency rather than loss. ... Denny Page
01:38 PM Revision dfae7a8b: Merge pull request #1270 from phil-davis/patch-12: Renato Botelho
01:13 PM Revision 1b53d5f2: Fix traffic graph widget default autoscale: so the radio buttons selection allows only 1 to be selected and the setting is then saved.
Forum: https://forum.pfsen... Phil Davis
01:03 PM Todo #2565 (Resolved): Update code for PHP 5.4, fix pass-by-reference: Renato Botelho
01:03 PM Bug #2126 (Resolved): Build package binaries for FreeBSD 10.x: Packages were built some time ago, this can be closed and possible bugs can have individual tickets. Renato Botelho
12:56 PM Bug #3822 (Rejected): 2.2 boot hangs at "Synchronizing user settings": I restored that config file twice in different snapshots, could not reproduce. It happened in the past when, due to a... Renato Botelho
11:46 AM Feature #3410: Patch: Add Apple Open Directory memberUid support in group lookup: pushed to post-2.2 Jim Thompson
11:42 AM Bug #3840: Disable (or give the option to disable) the OS addition to the SSH daemon banner: JimP, you realize this does nothing, right? Jim Thompson
11:39 AM Bug #3842: Verdana font from the Linux package ttf-mscorefonts-installer causes rendering issues with pfSense WebGUI: assigned to jimp, but it really should be Jared.
Of course, Jared isn't in the list. Jim Thompson
09:54 AM Bug #3842: Verdana font from the Linux package ttf-mscorefonts-installer causes rendering issues with pfSense WebGUI: Note before downloading and doing the above, install this package:
ttf-mscorefonts-installer
Harry Coin
09:51 AM Bug #3842: Verdana font from the Linux package ttf-mscorefonts-installer causes rendering issues with pfSense WebGUI: The safest workaround is to go to the bother of downloading and installing the Tahoma font. Other workarounds are g... Harry Coin
07:39 AM Feature #3832 (Feedback): change default update URL to https: Fixed Renato Botelho

08/31/2014

04:49 PM Bug #3842: Verdana font from the Linux package ttf-mscorefonts-installer causes rendering issues with pfSense WebGUI: Check the forum, https://forum.pfsense.org/index.php?topic=81049.30 in particular. Jim Pingle
04:48 PM Bug #3842: Verdana font from the Linux package ttf-mscorefonts-installer causes rendering issues with pfSense WebGUI: Is there a workaround until an update?
This issue is urgent. Grischa Zengel
11:06 AM Bug #3842 (Resolved): Verdana font from the Linux package ttf-mscorefonts-installer causes rendering issues with pfSense WebGUI: After some digging, it's been found that the cause of the menu wrapping issue on Linux is due to the presence of the ... Jim Pingle
04:39 PM Bug #3843 (Rejected): Menu wraps around since new menu entry "gold": Duplicate of #3842 Jim Pingle
04:38 PM Bug #3843 (Rejected): Menu wraps around since new menu entry "gold": Since update to 2.1.5 and the new menu item gold the menu wraps around.
"help" is now below "system" and the items f... Grischa Zengel
03:33 PM Bug #3841: WebGUI 'help' menu displays beneath 'System', blocking system menu choices. regression in 2.1.5: Please use the current/open ticket #3842 and not this incorrect/old ticket. Be sure to read it first, along with othe... Jim Pingle
03:27 PM Bug #3841: WebGUI 'help' menu displays beneath 'System', blocking system menu choices. regression in 2.1.5: Neither a hard refresh nor clearing the cache seems to fix the issue for me atop Ubuntu 14.04 in either Chrome or Fir... Andy Sayler
12:01 PM Bug #3841: WebGUI 'help' menu displays beneath 'System', blocking system menu choices. regression in 2.1.5: I cleared the issue by doing a hard refresh of the page
Ctrl-F5
While this doesn't fix the initial cause of iss... nonaya business
12:18 AM Bug #3841: WebGUI 'help' menu displays beneath 'System', blocking system menu choices. regression in 2.1.5: I'm using Ubuntu 14.04 and have this issue with both Chrome and Firefox. Caches have been cleared, etc.
See https:... Andy Sayler

08/30/2014

04:38 PM Revision 990162e3: Remove some redundancy and simplify changes made on last commit: Renato Botelho
04:38 PM Revision a03fb095: Remove some redundancy and simplify changes made on last commit: Renato Botelho
02:38 PM Bug #3841: WebGUI 'help' menu displays beneath 'System', blocking system menu choices. regression in 2.1.5: We did test it quite a lot, but we don't have a copy of every Linux distro out there to test against. It worked fine ... Jim Pingle
12:00 PM Bug #3841: WebGUI 'help' menu displays beneath 'System', blocking system menu choices. regression in 2.1.5: Tahoma missing is NOT a Linux issue. You must be kidding. The Tahoma font is not freely licensed in the first place. ... Doktor Notor
12:45 PM Bug #3330: Load Balancer showing wrong Status when using aliases for the port: I confirm that this is the case in the latest version (2.1.5).
Also there seems to be something wrong with monitor... Daniel Onisoru
05:33 AM pfSense Packages Bug #3838 (Rejected): Suricata loses all settings after pfsense upgrade: Renato Botelho
12:30 AM pfSense Packages Bug #3838: Suricata loses all settings after pfsense upgrade: Thanks, I was unaware that this package re-installation behavior happens on upgrades. That setting was indeed off. (I... Cool Fire

08/29/2014

09:01 PM Revision ce3ef2e7: Replace GET by POST, it fixes #3833: Renato Botelho
09:00 PM Revision 7c9710fc: Replace GET by POST, it fixes #3833: Renato Botelho
08:52 PM Revision 2412990a: Fix comment in css: Renato Botelho
08:26 PM Revision 2b56c7da: Hide FreeBSD version from sshd banner. It fixes #3840: Renato Botelho
08:13 PM Revision 729ca302: Hide FreeBSD version from sshd banner. It fixes #3840: Renato Botelho
06:34 PM pfSense Packages Bug #3838: Suricata loses all settings after pfsense upgrade: Should not have happened. Did you verify that you had "_Keep Settings on Deinstall_" checked on the GLOBAL SETTINGS ... Bill Meeks
01:31 PM pfSense Packages Bug #3838 (Rejected): Suricata loses all settings after pfsense upgrade: Updating from 2.1.4-RELEASE (i386) to 2.1.5-RELEASE (i386) caused all suricata configuration to be lost. It's unknown... Cool Fire
06:28 PM pfSense Packages Bug #3839: Suricata resolve host pop up broken after upgarde: This is due to an improvement in security around the DNS Diagnostics page in pfSense. An updated Suricata package is... Bill Meeks
01:37 PM pfSense Packages Bug #3839 (Resolved): Suricata resolve host pop up broken after upgarde: Updating from 2.1.4-RELEASE (i386) to 2.1.5-RELEASE (i386) broke the 'Resolve host via reverse DNS quick pop-up. Cool Fire
05:41 PM Revision 7486c1f6: Do not reconfigure dhcpd twice on secondary after config sync. Fixes #3797: Renato Botelho
05:30 PM Revision 85b3c597: Do not reconfigure dhcpd twice on secondary after config sync. Fixes #3797: Renato Botelho
04:20 PM Bug #3833: DHCP "release" action can be triggered via GET, should only be via POST: Applied in changeset commit:ce3ef2e7c97c1781ed87567a563127d52869b59e. Renato Botelho
04:20 PM Bug #3833 (Feedback): DHCP "release" action can be triggered via GET, should only be via POST: Applied in changeset commit:7c9710fca5508e7fde82e56a9980173eae958c15. Renato Botelho
08:49 AM Bug #3833 (Resolved): DHCP "release" action can be triggered via GET, should only be via POST: Actions on Status > Interfaces such as DHCP release/renew and PPP disconnect/connect happen via GET links that appear... Jim Pingle
03:52 PM Bug #3841: WebGUI 'help' menu displays beneath 'System', blocking system menu choices. regression in 2.1.5: Same thing happens in Google's Chromium browser as Mozilla's Firefox on Xubuntu Long Term Support v 14.04 'Trusty'. ... Harry Coin
02:59 PM Bug #3841 (Rejected): WebGUI 'help' menu displays beneath 'System', blocking system menu choices. regression in 2.1.5: Please see the other existing (closed) tickets and forum threads. It's almost always a browser cache issue but occasi... Jim Pingle
02:48 PM Bug #3841 (Rejected): WebGUI 'help' menu displays beneath 'System', blocking system menu choices. regression in 2.1.5: Note the attached screenshot. With the addition of the 'Gold' menu item, the 'Help' menu item is displayed beneath t... Harry Coin
03:30 PM Bug #3840: Disable (or give the option to disable) the OS addition to the SSH daemon banner: Applied in changeset commit:2b56c7da667daaba0e34720138e105de7f7bf7e5. Renato Botelho
03:20 PM Bug #3840 (Feedback): Disable (or give the option to disable) the OS addition to the SSH daemon banner: Applied in changeset commit:729ca302e389f63e0bc3432f57424123312f3e63. Renato Botelho
02:33 PM Bug #3840 (Resolved): Disable (or give the option to disable) the OS addition to the SSH daemon banner: By default ssh on FreeBSD adds a VersionAddendum of the FreeBSD version in use. It would be best to hide that to avoi... Jim Pingle
01:31 PM Bug #3837 (Rejected): Menu item 'Help' dropped under 'System' because of 'Gold' option.: Answered multiple times on the forum, other tickets, and the mailing list. Clear your cache. Jim Pingle
01:28 PM Bug #3837 (Rejected): Menu item 'Help' dropped under 'System' because of 'Gold' option.: The Help menu item is pushed down onto the next line because there's not enough space on the menu row since the Gold ... Cool Fire
01:13 PM Bug #3836 (Resolved): field redirect target port must be quit in a specific way to keep conntent: When in
* @Firewall: NAT: Port Forward: Edit@
and trying to add/edit a rule, the value in the @Redirect target p... Stefan Beckers
01:09 PM Revision 985ed11c: Merge pull request #1258 from yarick123/master: Renato Botelho
12:50 PM Bug #3797: DHCP server restarted multiple times on secondary after config sync: Applied in changeset commit:7486c1f6c1951435b98d30b0533496065c826f9b. Renato Botelho
12:50 PM Bug #3797 (Feedback): DHCP server restarted multiple times on secondary after config sync: Applied in changeset commit:85b3c597865c13cc7c6253332936ac266c74f164. Renato Botelho
12:47 PM Bug #3835: System Menu Item in the Web Interface is inaccessible using Firefox after "Gold" Menu Item has been added: Many Thanks Jim P - Apologies for not figuring this out for myself. Can dles
12:38 PM Bug #3835 (Rejected): System Menu Item in the Web Interface is inaccessible using Firefox after "Gold" Menu Item has been added: There was a change to the pfSense GUI CSS files and menu during the update to pfSense 2.1.5, and your browser has lik... Jim Pingle
12:35 PM Bug #3835 (Rejected): System Menu Item in the Web Interface is inaccessible using Firefox after "Gold" Menu Item has been added: It appears in the administration GUI starts a new line after the addition of a *> Gold* menu item, but this only appe... Can dles
10:57 AM Bug #3834 (Rejected): dnsmasq isnt working anymore since upgrade to 2.1.5: Hi,
i cant lookup www.google.com or other external DNS since i upgrade my System to 2.1.5.... Florian Asche
10:36 AM pfSense Packages Bug #3816: Bump FreeRADIUS to fix libssl version mismatch error: Same problem with a freshly updated 2.1.5 AMD64 install:... Anonymous
08:00 AM Bug #3830 (Rejected): My friend scanned my network for open ports and even though I don't have a rule for ports 525,853, 48976-49127 but activity on my network was picked up...: You can start a thread on the forum to discuss, but there likely isn't a bug here. Those ports could have been opened... Jim Pingle
03:58 AM Bug #3830: My friend scanned my network for open ports and even though I don't have a rule for ports 525,853, 48976-49127 but activity on my network was picked up...: I scanned 99.250.154.21 using Nmap.
result: All ports are filtered, none are open (thus OK) jeroen van breedam
05:50 AM Feature #3832 (New): change default update URL to https: Renato Botelho
05:43 AM Feature #3832: change default update URL to https: could it be the http-link in
https://updates.pfsense.org/manifest J. Haupt.
05:39 AM Feature #3832: change default update URL to https: i've got the same setting in globals.inc, still it shows a http-link at the update-settings and a tcpdump while downl... J. Haupt.
05:22 AM Feature #3832 (Rejected): change default update URL to https: Default update URL points to https as you can see at:
https://github.com/pfsense/pfsense/blob/RELENG_2_1/etc/inc/g... Renato Botelho
05:09 AM Feature #3832 (Resolved): change default update URL to https: the default update URL used in my pfsense 2.1.4-RELEASE (i386) is
http://updates.pfsense.org/_updaters
why not ... J. Haupt.
04:58 AM Bug #2585 (Resolved): FreeDNS.afraid.org DDNS client sends in clear text: Renato Botelho
04:11 AM Bug #2585: FreeDNS.afraid.org DDNS client sends in clear text: With the fix "Use HTTPS for dyndns providers that support it " included in the 2.1.5 release, this bug can be conside... Anonymous
12:57 AM Bug #3831: VPN PPTP, RADIUS issued IPs and secondary RADIUS server: Forgot to mention. Checked this behaviour on 2.1.4-release and 2.2-ALPHA (20 Aug 2014). Vyachelav B
12:55 AM Bug #3831 (Closed): VPN PPTP, RADIUS issued IPs and secondary RADIUS server: I have two AD DC with NAP role installed (RADIUS) and two pfSense gateways (CARP configuration). We use VPN PPTP conn... Vyachelav B

08/28/2014

10:29 PM Bug #3830 (Rejected): My friend scanned my network for open ports and even though I don't have a rule for ports 525,853, 48976-49127 but activity on my network was picked up...: ugh this might be a severe problem so I'll do my best to explain and the problem can be replicated on v2.1.4 only.
... James Morgan
04:59 PM Bug #3778 (Resolved): Destination port range not displayed when it's an associated NAT rule and "other" ports: Renato Botelho
04:45 PM Bug #3778: Destination port range not displayed when it's an associated NAT rule and "other" ports: Found the problem. I renamed the old file to firewall_rules_edit.js.bak but didn't realize that both script files wou... Patrik Lundquist
03:42 PM Bug #3829 (Resolved): Widget Firewall: Reverse Resolve with DNS Issues: The widget Firewall has issues with Reverse Resolve with DNS. When you click on an ip under the Destination column, t... M Skenderian
02:49 PM Bug #3828 (Rejected): 2.1.5 update blocks system tab on webconfig w/ Firefox 31: Be sure to clear your browser cache after any firmware update, or reload the page using Ctrl-F5 or Shift-click Reload. Jim Pingle
02:46 PM Bug #3828: 2.1.5 update blocks system tab on webconfig w/ Firefox 31: Close bug. Restart webconfig fixed. Eric S
02:43 PM Bug #3828 (Rejected): 2.1.5 update blocks system tab on webconfig w/ Firefox 31: The system tab on webconfiguration is blocked. The 2.1.5 update put the help tab directly under it. Which makes the s... Eric S
11:48 AM Revision b0473447: Merge pull request #1261 from CharlieMarshall/improveInter: Renato Botelho
11:38 AM Revision dd574822: Remove blank line if only an ipv6 address is in use: CharlieMarshall
11:32 AM Revision 56d23722: Fix match for help pages privileges, it fixes #3777: Renato Botelho
10:40 AM Revision 552e8f5c: Merge pull request #1268 from CharlieMarshall/gatewayWidget: Renato Botelho
09:41 AM Revision bd9c9cb1: improve/tidy up interfaces widget: CharlieMarshall
06:50 AM Bug #3777 (Feedback): User with "WebCfg - Help pages " permission listed first gets a bogus redirect: Applied in changeset commit:56d237224ffcc565115814b8e25e70e1031684a1. Renato Botelho

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

09/26/2014

09/25/2014

09/24/2014

09/23/2014

09/22/2014

09/21/2014

09/20/2014

09/19/2014

09/18/2014

09/17/2014

09/16/2014

09/15/2014

09/14/2014

09/13/2014

09/12/2014

09/11/2014

09/10/2014

09/09/2014

09/08/2014

09/07/2014

09/06/2014

09/05/2014

09/04/2014

09/03/2014

09/02/2014

09/01/2014

08/31/2014

08/30/2014

08/29/2014

08/28/2014