Activity
From 03/12/2015 to 04/10/2015
04/10/2015
-
11:06 PM Bug #4310: Limiters + HA results in hangs on secondary
- this is better, though still the issue where the secondary may hit 100% CPU and hang in some circumstance. We'll revi...
-
09:53 PM Feature #4599: Traffic shaping - what is in each queue?
- Please use the forum to ask questions:
https://forum.pfsense.org/index.php -
02:30 PM Feature #4599 (Closed): Traffic shaping - what is in each queue?
- Sorry, I am a newbie in traffic shaping.
Everything is configured, and is working fine.
Still, I have a lot of ... - 07:27 PM Revision 398f5ef3: Fixed tabs
- 07:27 PM Revision c782b586: Setup ADI boards to boot only using serial to avoid duplicated output when VGA redirection is enabled
- 07:21 PM Revision 986e77a2: Setup ADI boards to boot only using serial to avoid duplicated output when VGA redirection is enabled
- 07:21 PM Revision 38af78d8: Converted
- Mostly by adding BS-3 classes to the existing tables, but also by
adding a nested table to display the states. -
05:43 PM pfSense Packages Feature #4581: Add dshield-sensor port to pfPorts
- I fixed a minor bug in the dependency declaration discovered using poudriere.
-
12:48 PM Feature #4598 (Closed): Multiple fibs/routing tables
- It seems straightforward to add options ROUTETABLES=16 to the kernel, but re-writing code to call setfibx for various...
-
- I've been playing with the new CARP implementation in 2.2.x The ability to float a single public CARP VIP on two node...
-
12:23 PM Feature #228: Multi-WAN support with same gateway on multiple WANs
- Jonathan Gibert wrote:
> Is there any way to make multiple wan use the same IPv4 upstream gateway ?
No, beyond ha... -
10:00 AM Feature #228: Multi-WAN support with same gateway on multiple WANs
- I know I'm reviving an old ticket here, but I'm facing the same issue.
Is there any way to make multiple wan use t... - 12:14 PM Revision 3490b8dd: Check for overlapping subnets when saving interface addresses
- This checks if a static IP address entered for an interface has a subnet
that overlaps with any other configured subn... -
06:53 AM Bug #4589: ue0 Interface Not Available During Console Interface Configuration
- Same results after changing the mode using the guide above.
The Pantech UML295 works fine when added through the ... -
04:10 AM Bug #4596 (Duplicate): NAT 1:1 vs VIP, limiters works on LAN, but on WAN breaks NAT
- I use this configuration on PfSense 2.1.5 and works very well, on PfSense 2.2.1 limiters on WAN breaks NAT 1:1.
- ...
04/09/2015
-
-
05:38 PM Bug #4310: Limiters + HA results in hangs on secondary
- A bit more info. See this thread:
https://forum.pfsense.org/index.php?topic=92128.0
Turning off the limiters m... -
- should just need the mode switch for that to work.
http://pcdn2-download.vzw.com/win/UML295/UML295_IPPT_UserGuide-v... - 12:21 PM Revision 5fba3e95: Merge pull request #1467 from PiBa-NL/php_errorlog
-
08:55 AM Bug #4595 (Resolved): Input validation for bridge creation does not prevent adding the same interface to multiple bridges
- When creating a bridge, it is possible to create multiple bridges which contain the same interface(s), which is inval...
-
08:27 AM pfSense Packages Bug #4560 (Feedback): apcupsd is missing support for SMTP TLS email and uses old check for SSL setting
- Pull request has been merged
-
- Pull request has been merged
- 05:34 AM Revision eae4f953: Skip reflection rdrs where the interface doesn't have an IP. Ticket #4564
- 05:30 AM Revision 5274ecf0: Skip reflection rdrs where the interface doesn't have an IP. Ticket #4564
- 04:43 AM Revision 3a292360: Allow single interface bridges. Useful with span port option, and when shuffling configuration around.
- 04:42 AM Revision b0c8f6de: Allow single interface bridges. Useful with span port option, and when shuffling configuration around.
- 02:43 AM Revision b48f6580: Allow disabling the APIPA block via hidden config option. Very rarely necessary or desirable, but Amazon VPC VPNs use that as their tunnel subnet with BGP setups.
- 02:42 AM Revision e636f373: Allow disabling the APIPA block via hidden config option. Very rarely necessary or desirable, but Amazon VPC VPNs use that as their tunnel subnet with BGP setups.
-
- this is still an issue in some circumstances. To me to better quantify the circumstances where it's an issue.
-
- It's not very easily replicable if you just let dhclient sit there, but if you 'ifconfig em0 inet 0.0.0.0 netmask 255...
04/08/2015
- 11:47 PM Revision 7c0c6355: Only restore rrd.tgz where platform is appropriate, or RAM disk being
- used, otherwise you're restoring a probably old backup file. Ticket #4531
- 11:45 PM Revision 05b7eef9: Only restore rrd.tgz where platform is appropriate, or RAM disk being
- used, otherwise you're restoring a probably old backup file. Ticket #4531
-
- I don't see where that got committed to RELENG_10_1 Renato, you sure that's in there?
-
- 2.2.2 is going to p9, what will have the fix
-
03:50 AM Bug #4592 (Resolved): FreeBSD 10.1-RELEASE-p6 signal handling problems with squid (FreeBSD bug 195802)
- I've posted a short comment on the support forums, but here's the FreeBSD Bug Report: https://bugs.freebsd.org/bugzil...
-
- patch merged that helps here, pushing forward for additional review of this circumstance in general
-
02:43 AM Bug #4566: Gateway marked as down not skipped when individually chosen with "Skip rules when gateway down" selected
- bytheway that state killing gateway failure is unticked
-
- yes but sip registration states still get created after i manually removed the existing states and even shutdown my s...
-
- When you force a gateway down, there might still be states that are functioning across that gateway - in this case th...
-
- i tried the patch, it works partially, first i have the rule to pass traffic to sip server through tunnel and next ru...
-
-
06:18 PM Bug #4594 (Resolved): Interface names can be too long for netstat to display in full
- Interface names can get too long for <notextile>netstat -rW</notextile> or for Diagnostics->Routes (in the GUI) to di...
-
- fixed, that restore is skipped now in this specific circumstance since it's unnecessary.
-
-
- Beat Siegenthaler wrote:
> mount
> /dev/ad4s1a on / (ufs, local)
> devfs on /dev (devfs, local)
> /dev/md0 on /va... - 03:37 PM Revision ad0bbc8b: Options for review
- A simple HTML version as well as a Form.class version (currently
commented out) are included in this version. Would a... - 12:37 PM Revision be18e4f3: Use get text on strings
- Use get text on strings
Compare strings with stristr() rather than ‘==‘ so we don’t need to
worry about padding paces. -
- The USB device is a Verizon UML295, which is listed in the list of Known Working 4G Modems: https://doc.pfsense.org/i...
-
- Not a bug, see #4284
-
07:38 AM Bug #4593 (Rejected): No ARP-Entry for windows networkloadbalanced IPs
- We have two windows webservers in networkloadbalance in multicast-mode. Those two NICs have a same virtual MAC for th...
-
- i figured out the reason for the F1/F2 prompts not showing, pfsense was set to serial baud rate of 115200 and alix bi...
-
- its an alix with nanobsd, serial console works fine and has always worked fine so far for me, actually im using a usb...
-
- what hardware is it? Can't think of ever hearing of a system that wouldn't boot without a serial console connected. a...
-
- when im logged into serial console and at that time the cronjob runs then it reboots fine but when serial console is ...
-
03:09 AM pfSense Packages Bug #4567: ntopNG Geo files missing
- Still some problems. See this topic were I made some remarks:
https://forum.pfsense.org/index.php?topic=91909.0
M... -
- I haven't seen anything else but please understand that this is on a test bench not in production and I am not stress...
-
-
- this is probably the same root cause as one or more of #1575, #1848, #3096 (pretty sure there's at least some overlap...
04/07/2015
-
11:53 PM Feature #4591 (New): IPSec Failover Support for IP Addresses instead of Dynamic DNS / Failover Group
- Allow for IPSec failover IP instead of using a dynamic dns name. Most routers allow for this and it is an easier setu...
-
- In 2.2.1 Nat Reflection (Proxy or Pure) do not work if limiters are setup on the default lan -> any rule. As soon as ...
-
- Chris: that still working fine for you?
After running for a few hours, the secondary still hangs in one of our te... - 09:00 PM Revision dfd6f179: Committed the wrong file :(
- 08:51 PM Revision 13867929: Converted to bootstrap
- nectar functionality moved to the $POST handler so that errors can be
reported before the form is drawn. -
-
- general issue with something to do with that card, it doesn't get picked up as a NIC after a reboot.
https://forums... -
- Note: The ue0 interface was successfully setup through the webGUI and was passing traffic, after a system reboot the ...
-
- USB LTE Modems prompt the Console Interface Configuration wizard to run at the next system boot. During the configura...
- 04:08 PM Revision 160ce959: Merge https://github.com/SjonHortensius/pfsense into diag_system_activity
- 02:34 PM Revision 4251f6ea: Remove nested tables
- 02:23 PM Revision 47b051eb: Converted to Bootstrap
- Converted
Added DEBUG define to allow testing without actually rebooting
Cleaned up spaces/tabs etc - 01:11 PM Revision cfbc8a26: final changes
- 01:02 PM Revision 989d0ba9: Updated to bootstrap
- Changes are mostly to table specifications and replacing spaces in
original file with tabs. -
- Kill Bill wrote:
>
> No idea how it got there?!
Guessing you put it there? Base code never touches shellcmd tag... -
- sounds like that might be enough to replicate, will give it a shot. The NTP issue is almost certainly #4155.
-
- the other thing is when booted ntp deamon is up and running but when i restarted openvpn, apinger starts but ntp daem...
-
- by the time its completely booted vpn is up and apinger dead even after 5mins but if i goto services and restart open...
-
- i didnt see any newwanip log messages but ill try that once more and let u know exactly.
once wan goes up, by the ti... -
- did it log for newwanip when the VPN connected? How long was it until it connected? Mostly curious if it had finished...
-
- vpn was working fine in those 8hrs after which i manually started monitoring
-
- well i rebooted the alix and waited like 8hrs but still monitoring didnt start.
no it isnt assigned as static, just ... -
- When the VPN does connect, it'll kick off rc.newwanip, which will setup gateway monitoring. If the ovpnc interface is...
-
- on the nanobsd alix, i have one wan and one vpn connection, my wan is stable so i have disabled monitoring on it but ...
- 07:56 AM Revision c7c1f746: Merge pull request #60 from psophis/progress.md
- Updated Progress.md for files converted by psophis
-
- done
-
- according to this https://dev.openwrt.org/ticket/17058
"The error messages are caused by the missing IPv6 kernel mo... -
- that's an issue in miniupnpd, should be reported to them. If you search on that log, it happens on Linux to a number ...
-
- on the alix nanobsd using miniupnpd, when its rebooted a whole bunch of errors or just log gets outputted on the seri...
04/06/2015
-
- works
-
03:37 AM Feature #4359: IPsec controlling uniqueid value
- Hi,
Oops, just noticed that this has hopefully fixed with this PR: https://github.com/pfsense/pfsense/pull/1593.
... -
- Hi,
There appears to be a bug with pfSense 2.2.1. Following on from the initial topic:
https://forum.pfsense.or... -
- the behavior is back to where it was in 2.1.5 and previous versions, excluding source LAN subnet, destination LAN IP.
- 06:23 PM Revision bc09b90a: Add Super Micro C2758 to the list of known platforms
- 06:21 PM Revision fe29fe04: Add Super Micro C2758 to the list of known platforms
- 06:17 PM Revision c9ff4dff: Assign interfaces.php to psophis
- 06:16 PM Revision 8f66b13f: Added Completed files by psophis
- Remove trailing whitespace
-
04:44 PM Todo #4582 (Feedback): Update 80211 and ath bits from -CURRENT
- Merged.
-
- Looks good here. Not stressing it but enabling/disabling limiters on the cluster works, the limiters are doing what ...
-
12:44 PM Revision 946877fa: small correction of relative paths to icons
- 12:43 PM Revision 9f6d592f: Merge pull request #1595 from dneuhaeuser/patch-1
- 12:41 PM Revision ed005b20: Few minor text typos
- Note that advertise is spelt with an "s" in other places in the GUI, so
making it consistent in services_ntpd - but m... - 12:41 PM Revision 05391c58: Merge pull request #1597 from phil-davis/Common-typos
- 12:40 PM Revision 4f118b9a: Merge pull request #1598 from phil-davis/patch-1
-
12:38 PM Revision 5d7a0701: diag_sockets show sockets listening on localhost
- this helps pick a free port for services using sockets bound to localhost, and helps determine if the service has at ...
- 12:37 PM Revision 0c0bb4f4: Merge pull request #1599 from PiBa-NL/diag_sockets_show_localsockets
-
- Given the current state of apinger, it is certainly not worth it to try to enhance the existing apinger compiled code...
-
- Hmm... so I discovered this in config.xml:...
-
- Chris Buechler wrote:
> still not seeing any way that sleep can hold up anything. Do you have specific steps to repl...
04/05/2015
-
- IPsec widget does not show logged in 'Mobile Users'
The number stays '0' even when users are currently connected a... - 06:46 PM Revision c3c692a9: Converted system_gateways and system_gateways_edit
- 06:41 PM Revision 71ae7b7e: Input - for type=number, default to min=1 & step=1
-
- 03:28 PM Revision fee25d17: Group - add support for $params in setHelp
- 02:57 PM Revision 3ff70087: Group - only push placeholder if Input doesn't have it yet
- Input - introduce hasAttribute method
refs #56 -
- this helps pick a free port for services using sockets bound to localhost, and helps determine if the service has at ...
- 01:58 PM Revision 6ee37b41: diag_dns - TIL HTML, let's not barf out incomplete nodes
- 01:23 PM Revision 9673699e: removing unused maintable.inc
- 01:22 PM Revision 6c5d41c2: Converted status_dhcpv6_leases, 2 minor tweaks in status_dhcp_leases
- 12:26 PM Revision 8a5da2cc: Converted status_dhcp_leases.php
-
- I've submitted PR #847 to add the package once these changes have been made to pfPorts.
- 09:45 AM Revision cf3904bd: Code style
- Couple of spaces for new code merged from an old repo/branch
-
- Forum: https://forum.pfsense.org/index.php?topic=91391.msg508422#msg508422
Setup with LAN1 and LAN2 - 2 interfaces w... -
- It really should not patch core OS files at all, let alone in a way that breaks things.
https://forum.pfsense.org/... - 02:48 AM Revision 75f163f0: Un-screw-up merge
- 01:37 AM Revision 686e53c0: Include additional subnets for RAs in radvd.conf. Ticket #4468
- Conflicts:
etc/inc/services.inc - 01:36 AM Revision 38253ce6: Include additional subnets for RAs in radvd.conf. Ticket #4468
- 12:52 AM Revision c5292060: Fix up Ticket #4504 implementation. Match config style with other areas. Use a config setting to disable, rather than enable, this functionality since it's enabled by default so the tag isn't necessary in the default config. Remove now unnecessary config upgrade code.
- 12:50 AM Revision 0a9e6c85: Fix up Ticket #4504 implementation. Match config style with other areas. Use a config setting to disable, rather than enable, this functionality since it's enabled by default so the tag isn't necessary in the default config. Remove now unnecessary config upgrade code.
- 12:36 AM Revision c01f5dac: fix type. Ticket #4504
- 12:35 AM Revision 600b4c3b: fix type. Ticket #4504
-
- i believe this issue still persists as of 2.2.1 alix nanobsd when u have aliases with both ip and fqdn in more than o...
04/04/2015
-
- Adam Esslinger wrote:
> This appears to be a bug related to the drivers for the AR9350 WiFi Card. Once I removed it ... -
05:47 PM Bug #4392: OpenVPN daemon crashing with ath(4) card installed
- This appears to be a bug related to the drivers for the AR9350 WiFi Card. Once I removed it from my system these issu...
-
- Need to sync up the net80211 and ath code with latest from -CURRENT.
-
- fixed, thanks for the report.
-
- More specifically Im using HE.NET for IPv6 and DynDNS for Dynamic DNS. It would be nice for the dynamic DNS client to...
- 05:23 PM Revision d6fa899d: Few minor text typos
- Note that advertise is spelt with an "s" in other places in the GUI, so
making it consistent in services_ntpd - but m... - 12:19 PM Revision 81402045: Merge progress update from GH
- 12:18 PM Revision e469aa76: Merge branch 'master' into bootstrap
- 12:12 PM Revision 14de6e36: Merge branch 'master' of github.com:pfsense/pfsense
- 12:04 PM Revision b4b72564: Update PROGRESS.md
- Mark firewall_aliases* as completed refs #44
- 12:00 PM Revision 9a4f7ab0: Convert fw_alias_import, 2 minor bugfixes in other files
- fixes #44
- 12:00 PM Revision 1a87ef92: Bugfix; textarea needs form-control class too
- 11:51 AM Revision 14726356: Convert firewall_aliases_* to bootstrap, pending _import
- refs #44
- 11:50 AM Revision 47148a97: Inputs hidden by bindCollapseToOptions should be disabled
- fixes #57
- 11:42 AM Revision b2e6dd64: Initial enableDuplication javascript implementation, pending layout
- refs #45
- 11:17 AM Revision 7684a99e: Introduce Group::enableDuplication and Input::setIsRepeated
- also fix label-target, was based on name but should be ID instead. Also
make ID unique to facilitate functionality
r... - 10:35 AM Revision 467ff4d6: Multiple Inputs in group = copy Title to placeholder
- fixes #56
- 05:24 AM Revision 5e8e558c: add etc/inc/array_intersect_key.inc to obsoletedfiles
- 05:23 AM Revision bc395b18: Remove array_intersect_key here too, definitely not needed. add to obsoletedfiles
- 05:18 AM Revision 3ab15aaf: shouldn't need this as its own inc anymore, but only changing in master since 2_2 nearing release
- 05:12 AM Revision a8c07dc8: uploadbar dir no longer needed
- 05:11 AM Revision e4dcbe49: uploadbar dir no longer needed
- 05:07 AM Revision 72992b85: There is no longer any need to restrict protocols for IPv4+IPv6 rules, the appropriate ruleset is generated and problem scenarios that would otherwise break here are prevented by other input validation.
- 05:06 AM Revision 7dff06c4: There is no longer any need to restrict protocols for IPv4+IPv6 rules, the appropriate ruleset is generated and problem scenarios that would otherwise break here are prevented by other input validation.
- 04:57 AM Revision 6986b703: remove dead code, clean up excess white space a bit.
- 04:57 AM Revision dc17a9de: remove dead code, clean up excess white space a bit.
-
- I already have the package done. I'm just waiting for the port to be added before I submit the pfsense-packages PR.
-
- With the perl dependency it'll have to be a package, but we can get it added to ports and get a package built. It'll ...
04/03/2015
-
- I have developed a new package that processes the filter.log and submits reports to dshield.org. It includes a pfSen...
-
- fixed
-
- should be fixed
- 08:01 PM Revision 91957c42: verify certs by default here
-
-
-
-
-
-
-
-
-
-
-
-
-
-
05:06 PM Bug #4579: Upgrade from 2.1.5 to 2.2.1 stuck
- What a shame i didn't see the "Reinstall all packages" button in Diagnostics > Backup & Restore
Anyway, reinstalli... -
- None of my packages got reinstalled.
So every package i try to configure ends with something like this in the UI:
F... -
- Well, finally, after 15 hours, the pfSense rebooted and is up and ready !!!
-
- Hello,
This night i launched the upgrade from my production pfSense 2.1.5 to 2.2.2 x64.
The upgrade is running si... -
-
-
- associated commits for this since the ticket # was typoed:
https://redmine.pfsense.org/projects/pfsense/repository/... -
-
-
- The fix "Use proper variable to do calculations" is actually the fix for #4529 - bit confusing there with the numbers...
-
- Applied in changeset commit:ebb9469d4e7ccb1986a4c17f1cdb44caf6bb6ad8.
-
- Applied in changeset commit:9bbc482102d7a0a562a4368e9034e499651ac2e6.
-
- Which specific attribute?
It does have the EKU bits listed on there. Pay attention to the requirements in our docs... -
02:07 PM Bug #4580 (Resolved): IKEv2 certificate lacks [mumble] attribute required by Windows 7 Agile VPN client
- I ran into this problem: http://tiebing.blogspot.ca/2012/05/windows-7-ikev2-error-13806.html?m=1
Also documented her... -
- I pushed the messages under debug misc level and also another change to fix the root cause for it.
- 01:48 PM Revision efa66b4e: Add hidden input in a proper way
- Refs. #22
-
- I put a fix for this though more testing is needed.
-
- Applied in changeset commit:491c76c802097a50c26f36600325a7b2fc5607df.
-
- Applied in changeset commit:755b75c79f399e364d8afe22f1e8fa8d12644691.
-
- Applied in changeset commit:b8eeddeb2f51db206f15e16732e79758d140ca5b.
-
- Applied in changeset commit:9b7ca37d12d5e15026af946643f28517f731360d.
-
- Applied in changeset commit:0887e836c45242e5afb8840acf2de9262f65d27c.
-
- Applied in changeset commit:534753890c74d7ce1188fe9a7b6f5f1b153f802d.
-
-
01:04 PM Feature #4322: Add Google Domains DDNS
- https://forum.pfsense.org/index.php?topic=86900.0 explains exactly how to do it as well.
I second that it would be... -
- Applied in changeset commit:a9d7f2034af6a28287ef85682a2fa1b6c8e0d05b.
-
- Actually there was already a script to do that but it was being called by the wrong name.
Try running /usr/pbi/nto... - 08:28 AM Revision d30eac53: Merge pull request #55 from sbeaver-netgate/diag_dbs_revision
- “More information” and “timing” sections should display only after a lookup is attempted.
- 08:09 AM Revision 8b760d4b: Only use mobile clients PFS config with mobile ph2ent. Ticket #4538
- Conflicts:
etc/inc/vpn.inc - 08:07 AM Revision 490b6c4f: Only use mobile clients PFS config with mobile ph2ent. Ticket #4538
- 07:35 AM Revision 8841c0fd: disable SSL validation for selfhost since it fails. Ticket #4545
- 07:34 AM Revision 3dac50ab: disable SSL validation for selfhost since it fails. Ticket #4545
- 03:59 AM Revision db9e5154: enable ike_name for daemon facility as well, to add connection identifiers to logs.
- 03:57 AM Revision 963621f2: enable ike_name for daemon facility as well, to add connection identifiers to logs.
-
-
- Fixed, thanks.
-
- I disabled validation for selfhost since they still have a chain problem that openssl rejects. If/when they fix that,...
-
- still an issue with strongswan 5.3.0. I opened a bug ticket: https://wiki.strongswan.org/issues/921
-
- i think im suffering from the issue mentioned here https://redmine.pfsense.org/issues/4296#change-17784 as i have the...
-
- the last 2 patches for this would solve marked down gateway to be skipped or passed to default gateway but the other ...
- 12:46 AM Revision 717fc06b: Use real interface here for dhcrelay v6. Ticket #4572
- 12:46 AM Revision 83ccc864: Use real interface here for dhcrelay v6. Ticket #4572
-
- ill get u details shortly
- 12:11 AM Revision 35ff72fa: 0 could be valid for hostname aliases too. Ticket #4573
- 12:10 AM Revision 6d457361: Don't omit hosts specified as "0". Ticket #4573
- 12:07 AM Revision 052e4ee8: Don't omit hosts specified as "0". Ticket #4573
04/02/2015
- 11:44 PM Revision bcd938ef: Emulate existing logic
- “More information” and “timing” sections should display only after a
lookup is attempted.
Removed unused hidden form. -
- fixed, thanks
-
08:13 AM Bug #4572 (Resolved): dhcrely ipv6 uses invalid network name
- Hi,
i tried to setup dhcrelay für IPV6, but it didn't start.
The dhcp server in my case is outside the WAN inte... -
- It was omitting the 0 because that if check was wrong for values of 0. fixed, along with the same issue where alias n...
-
- ...
- 06:43 PM Revision 06da0d4e: Merge branch 'sbeaver-netgate-diag_dns' into bootstrap
- - refactored Form_Table to plain html
- put results below form
- reverted a few unintentional changes -
- 05:53 PM Revision 28e7026c: Merge branch 'diag_dns' of git://github.com/sbeaver-netgate/pfsense into sbeaver-netgate-diag_dns
- 04:40 PM Revision a4621273: Bug #4566 Only route-to a gateway if it is not force_down
- When generating policy-routing rules there was no check if a gateway had force-down set, so gateway with force_down s...
- 04:39 PM Revision e57f0e33: Merge pull request #1594 from phil-davis/patch-1
-
- upstream issue with checksum offloading, work around discussed here:
https://forum.pfsense.org/index.php?topic=88467... -
09:03 AM Bug #4574 (Rejected): pfsense 2.2.x on Citrix XenServer
- Greatings!
We discoverd a problem with pfsense 2.2.x.
We are using Citrix XenServer (V6.2-6.5) in our own company ... -
04:16 PM Bug #4345: Traffic Shaping doesn't work with Xen netfront driver
- Please, can somebody build an unofficial release (2.2.1+) without netfront. I don't have time to create a build envir...
-
- going to need more than this, it's certainly not as simple as a cron reboot crashes something.
-
- i have cron installed on all my firewall installs with an entry "/etc/rc.reboot" and scheduled to reboot firewall eve...
-
- Create a tool like freebsd-update to update base system components OR use pkg for base system
-
- This is still a problem. Some cases still work but with TONS of console/log spam about pfsync_undefer_state rendering...
-
- Convert upgrade code to use pkg
-
- Our current packages details are available on xml data from pfSense-packages repo.
Write a tool to read all these ... -
- xmlrpc will be dropped, replace code that list, install and update packages to use pkg.
Packages will have a prefi... - 09:34 AM Revision 26e9d96c: For PR
- 09:34 AM Revision d2467fe7: For PR
- 09:33 AM Revision 76f45c77: For PR
- 09:32 AM Revision 7ea87667: For PR
-
- OK, great. I didn't have time to dig into all that yet. Looks promising. That script would need to be a bit more robu...
-
- link to thread
https://forum.pfsense.org/index.php?topic=91392.0 -
- below are the screenshots of the openvpn tunnel being up, firewall rules on lan tab to send traffic out of tunnel and...
-
- Duplicate of #4504
-
03:46 AM Bug #4570 (Rejected): 2.2.1 Omits SPD entries for LAN traffic with Supernet IPSEC tunnel
- Under 2.1.5 creating an IPSEC tunnel with a supernet/subnet arrangement produces SPD rules like this:
$ setkey -DP...
04/01/2015
- 08:46 PM Revision 3e377f5a: IpAddress - make range go down instead of up
- 08:35 PM Revision 1845af7f: Input - better chaining plus added setPattern, IpAddress - chaining fix
- 07:09 PM Revision 156543ee: Combo changes to support diag_dns.php
- 07:04 PM Revision 6e23e8d5: Version allows button to be suppressed
-
04:26 PM Bug #4531: RRD data restored in edge case where it shouldn't be, causing gap in graph
- Did some investigation:
rc.shutdown does not match condition for my system.
PLATFORM cat /etc/platform
pfSense... -
04:20 PM pfSense Packages Bug #4567: ntopNG Geo files missing
- Perhaps they stopped distributing the files because they have introduced a new database format and don't want to doub...
-
- Hmmm, the "lite" data files are CC BY-SA 3.0 so there should be no problem with distributing those as long as you cre...
-
- Last July the GeoIP distribution stopped including the data files, they must be manually fetched and put in place. I ...
- 02:54 PM Revision e67a1fea: Updated conversion progress
- Now based on ‘grep Form.class’ since some pages had foot.inc but had
not actually been converted. - 02:53 PM Revision 286aa3f2: Converted to bootstrap
- HTML largely replaced by SH framework
- 02:53 PM Revision 8bf4d182: Add a table to a section by passing it a two-dimensional array
- Is there a better way to do this? Can the table position be controlled?
- 02:52 PM Revision 3e7e26c6: Allow "Save" button to be suppressed
- new Form(false) suppresses the “Save” button so that you can then add
your won custom button. -
12:58 PM Bug #1221: igb driver mbuf allocation problems on multicore machines aka Could not setup receive structures
- Why can't this be addressed in pfSense?
-
- if you need to reinstall something purchased from us, you need to get in touch with us to get the proper image to rei...
-
- The same problem occurs even when purchased from pfStore Store. A clean (re)install of pfSense is unreachable.
I d... -
- you need to follow the guidance here:
https://doc.pfsense.org/index.php/Tuning_and_Troubleshooting_Network_Cards
... -
- This is not resolved!
A fresh install of latest pfSense 2.2.1 (FreeBSD 10.1) on hardware with 8 CPU cores, 8 GB RA... -
- The current system_set_harddisk_standby() function in source:etc/inc/system.inc#L2049 uses invalid sysctl values and ...
-
08:34 AM Bug #4568: mlppp settings lost after save on interface page
- May be the same as #4378
-
- Everytime I click save on the interface page, the second Gateway-Address for the corresponding l2tp interface are los...
-
- The code after my change 1594 effectively removes the force_down gateway from the list, just like other gateways are ...
-
- ill try the other patch but i gues the skip rules isnt working as well because for voip to work i need to send it thr...
-
03:28 AM pfSense Packages Feature #4503: GNUGateKeeper H.323 Proxy Package
- Sorry for my English! I think I need to perform a test of the software!
-
- Thank you for your attention! I think you need to perform a test of the software! Maybe everything will work! How to ...
-
- Not on firewall, no. Though it implements features that can be make the *H.323 apps using h323plus* more tolerant of ...
-
- If I understand you correctly, the port does not add to the possibility of forwarding protocol h323 through NAT?
How... -
- Huh? Why would you install it on pfSense? These libraries will do absolutely nothing useful on your firewall.
-
- Hi All! Ports found to solve this problem, it is best suited h323plus-1.26.5_2 .
http://www.freebsd.org/cgi/ports.c... - 01:35 AM Revision 80e47bb0: call this RCC-VE rather than C2358
- 01:32 AM Revision d985cfa6: call this RCC-VE rather than C2358
-
12:33 AM pfSense Packages Bug #4553: BIND IPv6 Reverse Zone problem
- Created a pull-request to commit this fix. And probably this fix will be included in next update of BIND package.
ht...
03/31/2015
-
- The ntopNG package does not install the necessary GeoIP files. Form syslog:
Mar 31 20:51:26 ntopng: [Geolocation.c... -
- Thanks, that explains it.
In the base OS of 2.1.x and earlier versions, the system ignored traffic destined to mu... - 08:22 PM Revision 0b34a56c: Add a check for whether IPsec is enabled, so it doesn't spit out "IPsec
- daemon not running or has a problem!" when IPsec isn't enabled.
- 08:18 PM Revision 68e32206: Add a check for whether IPsec is enabled, so it doesn't spit out "IPsec
- daemon not running or has a problem!" when IPsec isn't enabled.
-
-
- 05:44 PM Revision 1d433e01: Bug #4566 Only route-to a gateway if it is not force_down
- When generating policy-routing rules there was no check if a gateway had force-down set, so gateway with force_down s...
-
-
-
- that just omits the route-to when the gateway is disabled, the "skip rules" option skips the rule entirely. that'll n...
-
- Should be fixed by https://github.com/pfsense/pfsense/pull/1594
There did not seem to be any code to handle the mark... -
- i have a openvpn client tunnel setup and i use it for voip as my isp blocks voip and that works fine, i was recently ...
-
02:03 PM Revision 0ca36ca3: Fix IPsec Advanced Settings uniqueids. It was neither set in strongswan config, nor picked up correctly in the UI.
-
-
-
-
- 12:36 PM Revision 89f64f0f: - Consistent table styles (table table-striped table-hover)
- - Wrap tables in table-responsive (excluding widgets)
Refs. #51 - 12:23 PM Revision 94404d94: - Consistent table styles (table table-striped table-hover)
- - Wrap tables in table-responsive
- Wrap action buttons in nav.action-buttons
- Removed unnecessary form from vpn_l2t... - 12:11 PM Revision 765b79f9: Tweak vpn_ipsec_keys layout
- - Better name for 'edit user' button
- Wrap action buttons
- Sprinkle some clears in CSS for table container and form... -
- Merged thx.
-
10:03 AM Feature #4359: IPsec controlling uniqueid value
- This pull request https://github.com/pfsense/pfsense/pull/1593 should fix the issue
-
- I found a workaround.
Here is the fixed files for BIND 9.9.6P1_3 pkg v 0.3.6
Just replace the content of original...
03/30/2015
- 10:11 PM Revision c7dc654f: Convert vpn_ipsec_keys_edit to bootstrap
- Refs. #22
- 09:59 PM Revision 5f85a1f2: Convert to bootstrap
- Refs. #22
-
- .0 is a valid, usable IP in that circumstance. The code there will set the address range to the network address for t...
- 09:18 PM Revision 447efafd: Fix todo, let checkbox toggle maxmss input
- Refs. #22
- 09:07 PM Revision 18957b59: Add debug settings as separate group
- Refs. #22
-
- manual outbound NAT is user-configured and never updated by the system. Automatic outbound NAT would update itself. M...
-
09:05 AM Bug #4563 (Rejected): Bug when repurposing a firewall to new location
- I took a Firewall from one customer and moved it to another and when I did so some of the rules did not change for th...
- 02:50 PM Revision 807cdae3: Fixed minor spelling error
- 02:49 PM Revision adf62c63: Merge pull request #1588 from Hanse00/master
- 02:49 PM Revision 82ab62fe: Merge pull request #1589 from phil-davis/patch-1
-
12:52 PM Bug #4565: Previously working IPsec broken by upgrading to 2.2.1
- Confirmed this was the cause - resolved by setting the DH group for phase2 on both ends.
Thanks! -
- Your end shows it has a pfs group set in Phase 2. Check the mobile clients tab, ensure pfs isn't set there as that ta...
-
- I previously had a site-to-site VPN up and working between two sites when one endpoint was 2.2 and the other was 2.1....
-
- If the following events happen, invalid rules may be generated:
* DHCP WAN has link but the interface cannot obtain ...
03/29/2015
- 07:44 PM Revision 60802fad: Return link-local address when we are only requesting IPv6 prefix only if there is no global IPv6 address. In some cases global SLAAC IPv6 address might be present when using DHCPv6. Fixes #4483
-
04:22 PM Bug #3656: "LAN network" in v6 rules doesn't work when assigning link-local address to LAN
- This also affects rules with "LAN Interface" not just "LAN Subnet" as source/destination. In order for the rules with...
-
- New pull request: https://github.com/pfsense/pfsense/pull/1590
- 01:16 PM Revision 66de8653: Add panels-hint
- 01:11 PM Revision 84c2d088: Added bulletpoint about changing backend-code
- fixes #33
- 12:55 PM Revision 50a93b16: Update link to Progress after move
- 12:54 PM Revision 89d591d8: actual changes, fixes icons
- 12:53 PM Revision d9c70e41: Updated & moved PROGRESS doc, fixes icons
- 12:41 PM Revision 5fd8513d: replace Input->column methods with generic Element plus fixes
- Form.class - fix adding offset to submit button
Checkbox - add class to column, not input. Fix displayAsRadio return
...
03/28/2015
-
- Attaching dhcp6 patch that enables it to log to syslog when daemonized. Upstream ticket: https://bugs.freebsd.org/bug...
-
- It will be easy if your go to https://github.com/pfsense/pfsense-packages
Find the file, click the pencil tool to ed... -
03:00 PM pfSense Packages Bug #4561: siproxd listening port redirect rule pulling wrong tag from <siproxdsettings> (config.xml)
- I have confirmed that changing Line 83 to:
$port = ($siproxd_conf['port'] ? $siproxd_conf['port'] : 5060);
corr... -
- I use siproxd a little differently than most. I set its listen port to 5070 and have all my SIP devices set to UDP on...
-
10:33 PM Bug #4562: PPPoe Server
- using latest version 64bit
-
- setting PPPoe server config for LAN
using built in user database
when changing remote address range to 172.168.60.1... - 02:33 PM Revision 1192840b: refactor attributes from Input to Element to make it a bit more generic
- * replaced Input::setAttribute with explicit setReadonly/setDisabled
* introduced Input::toggles
fixes #37, refs #21 - 02:16 PM Revision 14a6c356: Fix brackets
- that I broke - sorry, I did test on a 2.2.1 system but then had to make my changes into a master version to submit th...
- 12:45 PM Revision 6f256fe3: Merge branch 'psophis-form-element' into bootstrap
- 12:20 PM Revision df3b00ba: Merge branch 'form-element' of https://github.com/psophis/pfsense into psophis-form-element
- 12:07 PM Revision 214a9c33: Proof of concept for Form_IpAddress that shows a mask-selector too
- refs #23
-
11:54 AM pfSense Packages Bug #4560 (Resolved): apcupsd is missing support for SMTP TLS email and uses old check for SSL setting
- apcupsd_mail.php has the following code for the SMTP SSL setting...
- 09:06 AM Revision b904c4a5: Fixed minor spelling error
- 05:10 AM Revision 56effb56: Remove wireless cards from ALTQ-capable interfaces, since ALTQ is broken on wlandev in FreeBSD 10.x at the moment. Ticket #4406
- 05:09 AM Revision 4f00900c: Remove wireless cards from ALTQ-capable interfaces, since ALTQ is broken on wlandev in FreeBSD 10.x at the moment. Ticket #4406
-
02:41 AM Bug #4559: Sync States causes sessions to NOT be NATed with multicast mac
- Hmm, I found the cause of the problem. The multicast traffic is being flooded to the network and the secondary pfsen...
-
- To the NLB IP:...
-
- There's no problem with wildcard certs (if they're for the correct domain, of course).
2.2 enabled SSL certificat...
03/27/2015
-
-
- Tested, changes are working as expected.
Strangely for the change to show up package must be removed/installed rat... -
02:40 PM
pfSense Packages
Bug #4337 (Feedback): Multiple radiusd instances are launched upon WAN interface change
- Applied in changeset commit:00561b63b7171dafe5906abf17cb413e647cdecc.
-
- those who use these options are using raw config currently. It's maintained, just hasn't gotten many if any feature a...
-
06:40 PM pfSense Packages Feature #2825: OpenBGPd: Add options prepend-neighbor and prepend-self
- Two years since the ticket was open, these config options are both still missing from the GUI. Is this package no lo...
-
- you sure it's specific to multicast MACs? Not sure how that would affect it. It sounds like what's happening is the s...
-
- I am using Microsoft NLB for OWA. It uses a multicast MAC address for the cluster, which is fine as long as sync sta...
- 06:59 PM Revision 45c15a59: Merge pull request #1572 from jlduran/no-server-header
- 06:53 PM Revision 2c657294: Merge pull request #1578 from Robert-Nelson/rfc2136_ignore_ipv4_ipv6
- 03:35 PM Revision 3fbcaeb5: Completed Bootstrap conversion
- Added error message on lookup failure
- 03:32 PM Revision 5c6317da: print_input_errors() is now a wrapper around print_errors().
- print_errors() allows the caller to supply the error messages and the alert box heading.
-
- ...
-
- Essentially the same issue as Bug #3074 but for IPv4 (blocked by default deny rule IPv4). Contrary to https://forum.p...
03/26/2015
- 11:51 PM Revision e593bac7: add missing )
- 09:56 PM Revision 72371a3d: Include net.key.preferred_oldsa in the sysctl list, set to 0 (disable) so
- it doesn't fall through to the default (1).
- 09:47 PM Revision 62dc93d1: Include net.key.preferred_oldsa in the sysctl list, set to 0 (disable) so
- it doesn't fall through to the default (1).
- 08:44 PM Revision 3fc58484: !! Do not merge!!
- Partially converted to bootstap.
Code rearranged and commented
Indenting made consistent
Fixed issue with adding ali... -
-
05:51 PM Revision 96e8a999: Voucher messages using wrong config field name
- https://forum.pfsense.org/index.php?topic=91168.msg505273#msg505273
$config['voucher'][$cpzone]['msgnoaccess']
and
$c... - 05:51 PM Revision 8f20b016: Merge pull request #1587 from Gertjanpfsense/master
-
04:57 PM pfSense Packages Feature #4368: [Unbound] Allow customized root.hints
- According to the unbound documentation at https://www.unbound.net/documentation/unbound.conf.html...
- 04:28 PM Revision 8e2a5adf: RRD Graph Custom Tab display friendly description
- The other tabs of Status:RRD Graphs put the friendly description of each interface into the drop-down list for select...
- 04:27 PM Revision 88f63af0: Merge pull request #1581 from phil-davis/patch-1
-
-
-
04:18 PM Bug #4557 (Closed): WebGui Error - Menu Help is displaced to below the menu System
- This is a duplicate of this ticket: https://redmine.pfsense.org/issues/3842
-
03:57 PM Bug #4557 (Duplicate): WebGui Error - Menu Help is displaced to below the menu System
- After updating the pfSense 2.1-RC0 to 2.1.5-Release the menu *Help* is displaced to below the menu *System*.
O.S: ... - 04:00 PM Revision 383dd72d: Always include general setup DNS servers in unbound.conf
- when forwarding mode is on.
The General Setup setting "Allow DNS server list to be overridden by DHCP/PPP on WAN" has... - 03:58 PM Revision 86feced0: Merge pull request #1586 from phil-davis/patch-6
-
03:05 PM pfSense Packages Bug #4554: BIND package: Problem generating zones
- Finally got my configuration working.
Tips & gotchas...
1. You must first create a View and select that in your... - 02:23 PM Revision 11fd072b: Only list nameservers once in resolv.conf
- I was on a test system and had an upstream DNS server IP specified in System-General Setup. WAN was setup with a stat...
- 02:22 PM Revision 9afdc939: Merge pull request #1584 from phil-davis/patch-2
- 02:20 PM Revision 33d40fb0: Merge pull request #1582 from k-paulius/fix-get_possible_traffic_source_addresses
- 02:13 PM Revision a5bc12f0: Merge pull request #1575 from k-paulius/misc-dhcp6c
- 02:08 PM Revision 6eb5191b: Status DHCP Leases handle expire never
- Note: We can let the code pass "never" (or any other unexpected stuff)
to adjust_gmt()
adjust_gmt() should anyway han... - 02:08 PM Revision 5385a5e1: Merge pull request #1559 from phil-davis/status-dhcp-leases
- 01:49 PM Revision 4a28ebef: Update README.md
- Add link to progress doc
- 01:46 PM Revision 295c4bc8: Merge pull request #41 from sbeaver-netgate/bootstrap
- Add conversion progress table as PROGRESS.md
- 01:42 PM Revision 231b1321: Corrected extension (.md vs .mo)
- 01:38 PM Revision 8e0139dd: GitHub markdown page listing the PHP files that have been converted to bootstrap.
-
- https://forum.pfsense.org/index.php?topic=91168.msg505273#msg505273
$config['voucher'][$cpzone]['msgnoaccess']
and
$c... -
08:49 AM pfSense Packages Feature #4548: syslog-ng interface doesn't allow rule ordering
- After a bit more research, I would now suggest simply changing the name of the default rules (i.e. "_DEFAULT) to "zDE...
-
05:11 AM pfSense Packages Bug #4420: warning: bad command startup -- throttling
- This should be updated to Version 2.2.x
and the package should either be removed from the packages list are marked a... -
04:56 AM pfSense Packages Bug #3986: BandwidthD can break php-fpm in unknown rare edge case
- I 'm having the same issues with bandwithd and would like to help to solve this.
Running release 2.2.1
# Instal... -
03:48 AM Bug #4545: dynDNS service 'selfhost' fails certificate validation
- News:
Here is a short summary of the answers from the provider:
Host carol.selfhost.de is the update host of pr... - 12:51 AM Revision a110a0cb: Always include general setup DNS servers in unbound.conf
- when forwarding mode is on.
The General Setup setting "Allow DNS server list to be overridden by DHCP/PPP on WAN" has... - 12:43 AM Revision 2400f545: Disable lighttpd server header
- Set the `server.tag` to an empty string to prevent lighttpd from
displaying the version number in the header. - 12:27 AM Revision 8fdeee58: Convert vpn_ipsec_settings
- Refs. #22
03/25/2015
-
- In v2.1.5 pfSense_getall_interface_addresses('em0') returns:...
- 11:30 PM Revision da228542: Execute commands one by one to be compatible with OS X's version of sed
- Refs. #39
- 11:28 PM Revision 5ddd7e7b: Convert vpn_ipsec
- Refs. #22
- 08:43 PM Revision feebcbfa: Make selector less specific to support other button types as well
- Refs. #19
- 08:37 PM Revision 9c878ec9: Add body padding on pages without menu (wizards, login page, etc.)
- Refs. #34
- 08:33 PM Revision df868fa2: Merge pull request #34 from sbeaver-netgate/bootstrap
- Allow top navbar to resize without overwriting the page
- 06:14 PM Revision 4ad1ddf2: Only list nameservers once in resolv.conf
- I was on a test system and had an upstream DNS server IP specified in System-General Setup. WAN was setup with a stat...
- 05:24 PM Revision d5b28fcf: Fixes an issue wherein an alias could be added only if some other alias already exists in the system.
-
- I'm using pfSense 2.2.1-RELEASE with the dns-server package 1.05_20-amd64.
I've tried starting the services, both ... -
- I'm using pfSense 2.2.1-RELEASE with the bind package 9.9.6P1_3-amd64.
I created a zone but there's no trace of an... -
- thanks
-
- It is not necessary to check, as the only times a gateway event should trigger the VPN to restart are when the curren...
-
- It is not necessary to check, as the only times a gateway event should trigger the VPN to restart are when the curren...
- 02:11 PM Revision f997432b: Remove another occurrence of 'Template'
- Replaced with 'file'
- 02:07 PM Revision 511b099d: Template > file
- Prevent misunderstandings that we refer to existing files
-
05:23 AM Bug #4310: Limiters + HA results in hangs on secondary
- We are seeing a number of reports that this is still an issue in 2.2.1. At least one customer ticket and also: https:...
-
- There is a problem with IPv6 Reverse zones in all bind and pfsense versions.
BIND can not reverse resolve IPv6 addre...
03/24/2015
-
- duplicate of #97
-
10:58 PM Feature #4552 (Rejected): Sync captive portal logged in state with CARP members
- Currently PFSYNC doesnt sync Captive Portal logged in user states in HA cluster using CARP settings. If failover occu...
-
- If the interface is the same, this test will fail, and that's the one case that should not need a resync.
The logic i... -
- If the interface is the same, this test will fail, and that's the one case that should not need a resync.
The logic i... -
-
- There appears to be a bug in this. The setting is written to the config.xml file but never ends up in ipsec.conf whic...
-
- System - General: Do not use the *DNS Forwarder* as a DNS server for the firewall (this at least is clarified to appl...
- 04:11 AM Revision ca12c204: Commit 89f171b changed result returned by get_possible_traffic_source_addresses() from indexed to associative array. Updating affected code.
03/23/2015
-
- updating subject to actual root issue. The correct PR is: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=198680
... - 09:32 PM Revision 9329ec08: Supress errors when opening custom DHCP config file and check if content was successfully retrieved. Prevents PHP from throwing error in case file does not exist.
-
09:23 PM
Bug #3290: IPV6 conectivity not restored after cablemodem reset
- Just adding that this is still an issue... modem rebooted last night, IPv6 prefix returned to my LAN (not sure if it ...
- 09:13 PM Revision fc1f2003: Log to syslog and get rid of useless variable.
-
07:30 PM Bug #4513: Change in IP Alias name causes no tables on reboot
- This issue is still present in pfSense v2.2.1.
-
-
- Tested on RELENG_2_2 branch and 0s are now accepted.
- 05:15 PM Revision 466e8ed7: RRD Graph Custom Tab display friendly description
- The other tabs of Status:RRD Graphs put the friendly description of each interface into the drop-down list for select...
-
05:05 PM Bug #4549: Backup before upgrade fills hard drive, can't find kernel
- I have a thread on this issue at https://forum.pfsense.org/index.php?topic=90995.0
So what happens is the backup... -
- After attempting an upgrade to 2.2.1 from 2.2, the system was left unable to boot. I had a 12GB drive with several G...
-
- thanks Bill
-
- thanks BBcan
-
- duplicate of #4147
- 02:50 PM Revision e0f5f6f4: Be consistent about Unbound service descriptive name
- Forum: https://forum.pfsense.org/index.php?topic=91075.0
For DNS Forwarder (dnsmasq)
1) dnsmasq is the name of the s... - 02:50 PM Revision b276b679: Merge pull request #1580 from phil-davis/patch-1
- 02:34 PM Revision a3fb1412: Be consistent about Unbound service descriptive name
- Forum: https://forum.pfsense.org/index.php?topic=91075.0
For DNS Forwarder (dnsmasq)
1) dnsmasq is the name of the s... -
02:13 PM Feature #3029: DHCPv6 Server/RA page should list interfaces that are configured to track DHCP-PD
- Would like to see this added to the product. I currently require the use of DHCPv6/RA so that I can use IPv6 on my L...
- 01:36 PM Revision 78317c25: Use is_numericint() instead of empty() to check if value has been entered because empty() does not allow 0, which is a valid value.
- 01:36 PM Revision 0f7f6aa9: Make sure 'DHCPv6 Prefix Delegation size' is provided if 'Send IPv6 prefix hint' flag is checked to avoid generating invalid dhcp6c configuration file.
- 01:35 PM Revision a6299fd7: Merge pull request #1577 from k-paulius/fix-dhcp6-validation
- 01:18 PM Revision cd94a9a8: Add missing encoding, as suggested by yakar
-
- I hit this before working with a customer and tracked it down, it's an issue with relayd (even a current relayd) on F...
-
12:07 PM Bug #4550 (Rejected): relayd does not work with HTTPS monitor on FreeBSD 10.x and above with certain cipher combinations
- Load Balancer monitor when set to Type:https reports all nodes of the cluster as down, whereas other monitors (such a...
- 11:15 AM Revision 4e34cdf3: Handle release number in installer
- This code just looked wrong. It was considering 10.1-RELEASE-p6 to be release number "1" and comparing it to "9".
The... - 11:15 AM Revision e2173e06: Merge pull request #1576 from phil-davis/patch-1
-
- Summarized from the initial query over in the pfSense Forums (https://forum.pfsense.org/index.php?topic=91059.0):
... -
- I just opened a case at 'Selfhost' and sent them the link of this thread too. Will give you a feedback when I get any...
-
- Yes, 2.1.x does not check the certificates.
-
- @Phillip:
Just installed a virtual test environment with VMware:
With pfSense 2.1.5 i386 dyndns update definitely... -
- They have a wildcard certificate for *.selfhost.*de* used on *.selfhost.*eu*. No wonder it does not work. Not really ...
-
- Unless this is about to get fixed properly, can you hide the wireless interfaces from the shaper wizard at least? Pro...
03/22/2015
-
-
10:37 PM Todo #4543: 2.1.5 to 2.2.1 upgrade hangs on package reinstall - more info requested during package reinstall, post upgrade.
- Idea - as part of
webgui -> Diagnostics -> Backup/restore -> "Break package lock"
The pfsense firewall should... -
- I upgraded my home box from 2.1.5 straight to 2.2.1 and it was still "reinstalling packages" an hour later.
So I w... -
09:17 PM pfSense Packages Bug #4417: Ruleset link for GPLv2 Community rules on Categories tab is incorrect
- Thank you for the bug report. This has been corrected in the latest 2.9.7.2 pkg v3.2.4 version of the Snort package....
- 08:09 PM Revision 8a197e58: Move attribute to Form_Element
- - Removes redundant code
- Adds the ability to remove attributes
- Can now add attributes to Form
- getHtmlAttribute(... -
- Pull request: https://github.com/pfsense/pfsense-packages/pull/839
- 07:31 PM Revision 4c6d81ea: Use is_numericint() instead of empty() to check if value has been entered because empty() does not allow 0, which is a valid value.
- 07:00 PM Revision ddb4b472: Make sure 'DHCPv6 Prefix Delegation size' is provided if 'Send IPv6 prefix hint' flag is checked to avoid generating invalid dhcp6c configuration file.
- 04:59 PM Revision e6acc2ee: apply r/o state to name of system-groups
- refs #18
- 04:56 PM Revision 64600f94: Some bugfixes, converted addPrivs
- refs #18
- 04:55 PM Revision a8a4a7e3: Select - fix selected for multiple (again), correct order in js
-
03:41 PM pfSense Packages Bug #4373: pfBlockerNG: IPv4 aliases are not preserved when upgrading package
- "Keep Settings" has been defaulted to "on" in pfBlockerNG v1.05. This can be closed. (Latest version is v1.06)
-
- Pull request: https://github.com/pfsense/pfsense/pull/1577
-
- 0 is a valid value, but currently not accepted in:
* id-assoc na ID
* id-assoc pd ID
* sla-id
* sla-len
fiel... - 02:08 PM Revision 6a51614e: Merge branch 'master' of ssh://github.com/SjonHortensius/pfsense
-
02:08 PM Bug #4546 (Rejected): IPSec tunnel for IPv4 uses IPv6 address of Remote Gateway
- I have configured an IPSec tunnel with the IPv4 protocol and use an FQDN for the remote gateway.
The FQDN resolves t... - 01:55 PM Revision 46bb8a0b: Merge remote-tracking branch 'upstream/master' into origin/master
- 12:41 PM Revision 7818caff: Button - fix title when not <a>, Input - no need for tempvar
- 12:40 PM Revision d9575672: Add copyright headers to Form classes
- 12:37 PM Revision a0165602: Convert System > Auth servers
- refs #18
-
- I also thought about a short downgrade to test it ;-) but ... my whole family will kill me if I touch the router any ...
-
- Are you able to try it again with pfSense 2.1.5?
It would be good to know if it is something that changed with the p... -
- Since pfSense Update 2.2 and 2.2.1 it seems that the dynamic DNS update for the service provider 'selfhost' is broken...
-
- I have only a question for understanding: I just looked into a running pfSense 2.2.1 and found no symlink, no hardlin...
-
- indeed, i tried a reboot and it is the same problem. RRD save process is not invoked.
-
05:44 AM Bug #4544 (Resolved): PD not requested if no interfaces set to track6
- Bug #4436 disable prefix delegation requests when no tracking interface is defined. This causes a regression in combi...
03/21/2015
-
11:48 PM Bug #4459: Tzdata is too old (needs to be updated for Russia)
- Eugene Parfenov wrote:
> I confirm too: +1h offset in console (dashboard show correct time).
> [...]
dashboard: ... -
- I confirm too: +1h offset in console (dashboard show correct time)....
-
11:01 PM Feature #4542 (Resolved): Support for PPPoE with MTU/MRU > 1492 (i.e. 1500)
- pfSense v2.2.1 uses mpd v5.7 (Version 5.7 (root@pfSense_RELENG_2_2_amd64-pfSense-job-08 16:46 13-Feb-2015)) for pppoe...
-
- I'm only using Chrome. I will test with other browsers with the next snapshot (not really keen on doing pointless "up...
-
- can't replicate. That's a function of the browser as to whether it sends the specified file. Checking/unchecking that...
-
- When I tick the checkbox *before* selecting the image and hitting the Upgrade button, I get an error than no file was...
-
- not a bug, the gateways add routes there, though other things can override. Please post specifics to the forum for fu...
-
06:44 AM Bug #4540 (Rejected): DNS Resolver does not honors the "use gateway" option configured when Multiwan is enabled
- #4539, translated from spanish:
In release 2.2.1, taking active multiwan and 2 Nameservers for 2 ISP (configured i... -
- duplicate of #4540
-
- En la release 2.2.1, teniendo multiwan activo y 2 DNSs para cada ISP (configurado en System|General Setup), y con unb...
-
- Ermal Luçi wrote:
> A patch has been pushed which will fix limiters with ipv6.
Sorry, that did not help. Confirme... - 12:23 PM Revision 8fa074af: Handle release number in installer
- This code just looked wrong. It was considering 10.1-RELEASE-p6 to be release number "1" and comparing it to "9".
The... -
- This is specific to 32 bit versions only, and something beyond that which hasn't been narrowed down yet, as it's not ...
-
- thanks Bill
-
- saqi: where your IP changes multiple times in a very short period, as it did there, it'll miss killing states for som...
03/20/2015
- 07:04 PM Revision c2b03820: Use `none` instead of a whitespace in sshd_config
- Use the `none` keyword instead of a whitespace to disable the FreeBSD version in sshd_config.
- 07:03 PM Revision 90e5c03a: Merge pull request #1486 from jlduran/patch-1
-
- The latest 2.9.7.2 pkg v3.2.4 release of the Snort package corrects this bug. This issue can be closed.
-
05:50 PM pfSense Packages Bug #4304: pfflowd non-functional on 2.2.x versions
- Hello
First, many big thanks to team and contributors who build and maintain pfSense.
It happens that pfflowd ... -
- On *VPN > IPsec*, *Mobile Clients* tab, the _Phase2 PFS Group_ setting states "Provide the Phase2 PFS group to client...
- 04:12 AM Revision db0ec10e: Remove old dhcp6c and rtsold config scripts when bringing down interface.
- 03:47 AM Revision f31052c7: Supress errors when opening custom DHCP6 config file and check if content was successfully retrieved.
- Prevents PHP from throwing error in case file does not exist.
- 03:26 AM Revision ddd1f864: A mix of literal tabs, spaces and \t is used in dhcp6c config file code. Convert evertyhing to use \t.
- 03:05 AM Revision dd5d1a24: DHCP6 config file override, advanced and basic settings override each other so put them in single
- if/else statement rather than always generating all three setting types.
-
12:37 AM Bug #4266: Rekeying issues with IKEv1 and multiple P2s under some circumstances
- Feedback: with 2.2.1 the issue is also gone (for us).
I have updated several devices which we had to downgrade to 2....
03/19/2015
-
09:26 PM Bug #1629: invalid state table entries after WAN IP change
I have been hit by this bug as well. so I updated to 2.2 and it didnt take long for the ip to change and my iax2 tr...-
09:05 PM Bug #4537 (Resolved): Crash and reboot when accessing the web UI from the IPsec mobile client or over the tunnel on 32 bit
- Accessing the WebUI while over the IPSec mobile connection will crash the box.
The issue was fist discovered on 2.2.... -
- Pull request: https://github.com/pfsense/pfsense/pull/1574
-
- See this thread: https://forum.pfsense.org/index.php?topic=90897.0 (ugh!)
This should be outright refused to be sa... -
-
- So I believe this can be marked Resolved in 2.2
-
-
- This issue is resolved.
- 04:55 AM Revision d325e908: Add option for wireless standard "auto", to omit "mode" entirely from ifconfig. This shouldn't be necessary, but specifying mode has proven to trigger driver problems that don't exist if it's left unspecified (such as FreeBSD PR 198680). Chosing "auto" fixes ath(4) BSS mode issues otherwise preventing it from connecting.
- 04:52 AM Revision c1ef7cfb: Add option for wireless standard "auto", to omit "mode" entirely from ifconfig. This shouldn't be necessary, but specifying mode has proven to trigger driver problems that don't exist if it's left unspecified (such as FreeBSD PR 198680). Chosing "auto" fixes ath(4) BSS mode issues otherwise preventing it from connecting.
-
- One possible implementation is here:
https://github.com/pfsense/pfsense/pull/1573
There a plenty of ways this cou... -
- At the moment only 1 set of specific device assignments for WAN+LAN can be in the factory default config.
For initia... -
- Sorry to revive this, but this has been totally no-op for years due to some completely broken commits. Also kindly se...
03/18/2015
-
- Even though dhcp6c is started with -d option the information it provides in the log leaves a lot to be desired.
It d... - 07:36 PM Revision 5a637574: Allow top navbar to resize without overwriting the page
-
-
-
- This is fixed and confirmed in the last 2.2.2 snapshot.
- 05:47 PM Revision 106f3451: Use `none` instead of a whitespace in sshd_config
- Use the `none` keyword instead of a whitespace to disable the FreeBSD version in sshd_config.
- 05:06 PM Revision 8f553334: Bump version to 2.2.2-DEVELOPMENT
- 01:58 PM Revision 5372d26d: Cleanup code path when adding a new user
- 1) Only attempt to delete the oldusername if it actually was non-empty - at the moment errors are logged in the syste...
- 01:58 PM Revision 86e41adf: Merge pull request #1571 from phil-davis/patch-2
- 01:57 PM Revision b13f7a8c: Do not allow VLAN tag zero
- At the moment you can make a VLAN with tag 0. The input validation does not catch it because when $_POST['tag'] = "0"...
- 01:57 PM Revision 2d78048e: Merge pull request #1569 from phil-davis/patch-1
- 12:03 PM Revision 926e0a2f: Cleanup code path when adding a new user
- 1) Only attempt to delete the oldusername if it actually was non-empty - at the moment errors are logged in the syste...
-
07:54 AM Bug #4533: atacontrol missing from bootable images
- Ah, sorry about that; it actually was the kern.geom.raid.enable switch that helped, thanks!
-
- The error is not related to your actual problem. Please start a forum thread for discussion/diagnosis.
The actual ... -
- Well, I kind of disagree on it not being in the repository: https://github.com/pfsense/bsdinstaller/blob/b847c4c01740...
-
- Where are you seeing atacontrol being used during the installer? I can find no trace of it in the repository.
atac... -
- Cheers,
when trying to install the system on some slightly older hardware, the installer uses @/sbin/atacontrol@.... -
- The root cause of this is the package script
/usr/pbi/open-vm-tools-amd64/local/share/vmware-tools/scripts/vmware/... -
03:47 AM Bug #4532 (Resolved): /var/spool/lock Directory missing on nanobsd
- We use ALIX Boxes for our OOB (Out of Band) Solution and connected USB-Serial Adapter to the Box.
For the Serial Con... -
- Hm, the reboot process post-upgrade (same as the normal reboot process) saves the RRD data, which worked during relea...
-
- Platform Alix/APU
You should trigger to write the RRD data to disk with the startup of the upgrade process.
Otherwi... -
03:12 AM Bug #4276: Layer 7 not working / ipfw-classifyd high load
- version 2.2.1 still have this bug
03/17/2015
-
- as noted here:
https://forum.pfsense.org/index.php?topic=90697.0
The path to ui-bg_inset-soft_50_c9c9c9_1x100.pn... -
06:17 PM Bug #4528: no DynDNS RFC2136 Updates are done on some pfSense-installations
- The hardware of the proxmox VE servers is different, but all are on actual version of proxmox VE - 3 Installed with V...
-
- it definitely works in general. what's different about the ones that don't work vs. the ones that do?
-
- We have 4 installations of pfSense on KVM and configured a existing bind9 server with rfc2136 with your how-to (https...
-
- it's a bug, but one in the older APU BIOS.
-
- Confirmed - this box was running ...
-
- feedback from Adrian Chadd:...
-
- Hey, you made me nervous. I had just pressed the upgrade button on a way remote Alix 2D13 that has an ath0 WiFi card ...
-
- So I feel stupid - a power off and a reseat of the wireless card, and it boots up fine.
For completeness, here's t... -
- Chris Buechler wrote:
> which specific card is this? Looks like some AR5008.
Looks like its this:
Compex W... -
- which specific card is this? Looks like some AR5008.
-
-
- I have an APU with an atheros wireless card.
When doing an update from 2.2.0 to 2.2.1 this morning, the reboot sto... -
- thought we'd gotten all those, this in particular still an issue
-
04:43 PM Bug #4529 (Resolved): Traffic Shaping Wizard - CBQ and PRIQ
- Self explanatory. Settings below to recreate error "Custom Bandwidths are greater than 30%. Please lower them for th...
-
10:22 AM pfSense Packages Bug #4525: ACLs: Allowed subnets. There is no way to input "all".
- Oops, forgot to mention: Latest squid package on pfSense 2.2
-
- One can use 0.0.0.0/0 instead of "all" but this will lead to:
@php-fpm[10007]: /status_services.php: The command '/u... -
- steps to rep:
1. WAN IP is a non-RFC1918 IP;
2. Proxy server is on WAN;
3. "Allow users on interface" checkbox is ... -
- Some scenarios, such as those using BGP, will have no gateways defined on interfaces (e.g. Interfaces > WAN or Interf...
03/16/2015
-
- the issue with wireless is #4406
-
- this issue exists with other wireless drivers as well, it's not ath-specific.
-
- Thanks for the report. I will put the fix in the next Snort package update.
Bill -
- we'll keep this one, it's more specific to the root problem at hand, closed other as duplicate
-
- I missed this being opened when I opened #4523, will close this in favor of that one since it's more specific to the ...
-
- I guess you had to power cycle the box some time after getting locked out, so maybe the group file missing on bootup ...
-
03:44 PM Bug #4424: Adding and removing shaper repeatedly causing interface crash
- About a month ago I tried to set up a shaper on the LAN interface and got a similar result. The web interface was blo...
-
05:12 PM Bug #4341: strongSwan fails to re-attach dynamic IPs where interfaces_use specified
- Tried with the patch.. still does NOT work. Charon still does not re-establish the IPsec connections on PPPoE
- 02:26 PM Revision e5d58b68: Do not allow VLAN tag zero
- At the moment you can make a VLAN with tag 0. The input validation does not catch it because when $_POST['tag'] = "0"...
- 12:59 PM Revision 3d7f31e2: Merge pull request #14 from psophis/interface-vlans
- Migrated Interface > VLANs
-
- pretty sure this is a problem on the Android side that's getting triggered. Android (at least some versions) suffers ...
- 11:21 AM Revision 08b02994: Use subnet address in OPT net rules
- Example: LAN IP 10.0.1.1/24 OPT1 IP 10.0.2.1/24
Rules with SRC or DST LANnet correctly have 10.0.0.0/24 (the subnet b... - 11:19 AM Revision e5549707: Merge pull request #1564 from phil-davis/patch-2
- 11:17 AM Revision b78655a9: Merge pull request #1562 from phil-davis/usr-review1
- 11:16 AM Revision 06144727: pfSsh.php readline function return value
- This just looks wrong. But I guess the code path never comes through here because function readline() already exists ...
- 11:15 AM Revision aa77c7ba: Merge pull request #1561 from phil-davis/patch-1
- 11:13 AM Revision bd17a303: Merge pull request #1560 from phil-davis/get_possible_traffic_source_addresses
- 04:32 AM Revision 465f17a3: Initial commit for Interface > VLANs bootstrap convert
-
- It looks like this fixed the issue for me. All of the vpn tunnels are still working (lifetime phase1 8h and phase2 1h...
-
12:35 AM Bug #1690: PPPoE Server not passing IP from RADIUS server
- Still not working as of 2.2
03/15/2015
-
09:11 PM pfSense Packages Bug #4420: warning: bad command startup -- throttling
- This is confirmed. Many people affected. Most had to revert to 2.1.5 Details this thread:
https://forum.pfsense.... - 09:09 PM Revision b52f76e9: remove custom data-toggle=disable in favor of working but ugly collapse
- fixes #24
- 08:59 PM Revision 845e459d: pfSense - unbreak javascripts, correct split into methods
- 08:50 PM Revision 4ee51131: Convert main Usermanager
- refs #18
- 08:47 PM Revision 0c843a9c: Minor fixes in forms, introduce Textarea
- Button - make sure we correctly escape link & text
Select - with multiple selected values; look at keys instead of va... -
01:55 PM Bug #4131: CP RADIUS accounting not working
- Using 2.2-RELEASE (amd64) and this bug still exists, its not counting.
-
- Sorry for not beeing that active here, forgot to watch this thread ;)
I will test this with the 2.2 RC device afte... -
11:02 AM Bug #3770: Some drivers not being built with altq support
- Hi i just changed to 2.2 and getting the same for run driver.
"There were error(s) loading the rules: pfctl: run0_...
03/14/2015
-
- Jeremy already put a similar bug report #4519 some hours ago.
-
- After a kernel panic, the passwd and/or group files may be corrupt. This seems to be a problem common to FreeBSD 10.1...
-
05:30 PM Bug #4522 (Not a Bug): ipsec mobile client not working on android
- Hi,
I had before pfsense 2.1.5 and ip sec on mobile clients was working fine. I reinstalled pfsense to ner version a... -
03:55 PM Bug #4521 (Closed): OpenVPN authentication and certificate validation fail due to size of data passed through ``fcgicli``
- There seems to be an issue in pfsense's custom certificate depth verification for OpenVPN connections. When long cert...
- 02:39 PM Revision 44b9fbdc: Use subnet address in OPT net rules
- Example: LAN IP 10.0.1.1/24 OPT1 IP 10.0.2.1/24
Rules with SRC or DST LANnet correctly have 10.0.0.0/24 (the subnet b... -
- When you go to IPsec advanced settings and change something there, you get this nifty logspam in system log...
-
09:58 AM Bug #4519 (Closed): Disk Corruption
- Full installs are suffering disk corruption on reboot/power loss. Symptom is particularly related to /etc/master_pas...
-
- This does not appear to be directly related to 801. The installer is intentionally configured to skip those steps. ...
-
06:31 AM Feature #1205: VPN: User-based / Group-based firewall rules
- +1
I even have that in my local ZyXEL router... it's a must have do define firewall rules by LDAP / local groups an...
03/13/2015
-
- thanks for the follow up.
- 05:43 PM Revision 7d61beba: Code Style sbin tmp usr
- Bits and pieces from sbin tmp and usr but not yet usr/local/www
-
- 05:25 PM Revision 6fee314b: pfSsh.php readline function return value
- This just looks wrong. But I guess the code path never comes through here because function readline() already exists ...
- 01:14 PM Revision 54aac080: It's time for 2.2.1-RELEASE
- 08:45 AM Revision a08d5055: Update get_possible_traffic_source_addresses returned array format
- With this change it looks to me like the way it is intended to be, based
on what was done to get_possible_listen_ips(... - 08:33 AM Revision 39894ed4: Status DHCP Leases handle expire never
- Note: We can let the code pass "never" (or any other unexpected stuff)
to adjust_gmt()
adjust_gmt() should anyway han... - 08:16 AM Revision f2f34088: txpower was disabled for good reason it would appear, it triggers syntax errors in some configurations. Disable it again since it's been disabled for years, and comment out the user-facing config portion for now since it doesn't do anything. Ticket #4516
- 08:15 AM Revision ae2db699: txpower was disabled for good reason it would appear, it triggers syntax errors in some configurations. Disable it again since it's been disabled for years, and comment out the user-facing config portion for now since it doesn't do anything. Ticket #4516
- 08:07 AM Revision 9b65fdd0: Apply WME input validation to all modes, not just hostap. Ticket #4516
- 08:06 AM Revision 0a950c4b: Apply WME input validation to all modes, not just hostap. Ticket #4516
- 07:56 AM Revision 141d316c: Default to 11ng if an option hasn't been configured. Previously we let the browser pick the first in the list (the first the card reported as available), which ended up being 802.11b. Ticket #4516
- 07:54 AM Revision e4909df4: Default to 11ng if an option hasn't been configured. Previously we let the browser pick the first in the list (the first the card reported as available), which ended up being 802.11b. Ticket #4516
- 07:31 AM Revision d31517e5: Default to WPA2, AES for new wireless interface configs. Ticket #4516
- 07:29 AM Revision 771ca94f: Default to WPA2, AES for new wireless interface configs. Ticket #4516
- 06:51 AM Revision 69a17c90: Use Modal class for notices
- 06:51 AM Revision e97e9aca: Generate dropdown menus in PHP
- 06:51 AM Revision e259607f: clean.sh and add brackets to if and for(each) blocks
- 06:51 AM Revision 65866f79: Initial commit for Modal class
- 06:20 AM Revision 3fdd9cfa: Auto-size the interface box on the bridge edit page.
- 06:19 AM Revision 4d84e323: Auto-size the interface box on the bridge edit page.
- 05:15 AM Revision 1188cdc8: touch up interfaces.php text
- 05:15 AM Revision 1cabb79c: touch up interfaces.php text
- 04:44 AM Revision 310ea4e2: Require WPA PSK where WPA-PSK is enabled. Clean up some other text. Ticket #4516
- 04:43 AM Revision 33e85f85: Require WPA PSK where WPA-PSK is enabled. Clean up some other text. Ticket #4516
-
- Dmitriy K wrote:
> afaik, NPt does this, no?
No. NPt is like 1:1 NAT (globally routable prefix => ULA prefix). It... -
- Dmitriy K wrote:
> afaik, NPt does this, no?
No, that's only prefix translation. This specifically is referring t... -
- afaik, NPt does this, no?
- 04:26 AM Revision 4958ca9e: clean up input errors text
- 04:25 AM Revision 3c53b38b: clean up input errors text
-
- Input validation added to most of the wireless config pieces, preventing configuration of a variety of wrong config c...
-
03:48 AM pfSense Packages Bug #4518: Pfsense 2.2 squid3 + negotiate_kerberos_auth
- kid1| ERROR: Negotiate Authentication validating user. Error returned ‘BH gss_accept_sec_context() failed: Miscellane...
-
- After a lot of digging around i cant get squid3 authenticate with kerberos... i have done it with squid2 with the sam...
- 03:06 AM Revision e2d36ad6: add missing double == in ipsec.inc
- 03:05 AM Revision 664aef0b: correct missing == in ipsec.inc
- 03:03 AM Revision 580f4f3f: Missin double equals in captiveportal.inc
- Looking at where this is nested inside various if statements, I do not think this error did too much harm - only to t...
- 03:01 AM Revision d045f380: Merge pull request #1557 from phil-davis/patch-3
-
- this is fixed. It appears there may be some issue during package reinstallation, judging by what Jim P saw in testing...
- 02:02 AM Revision a819eab2: Fix up text, remove "only for Atheros" since the option is only shown if a compatible card exists.
- 02:01 AM Revision ec253cd5: Fix up text, remove "only for Atheros" since the option is only shown if a compatible card exists.
- 01:56 AM Revision f5fb15b9: "Auto" channel with hostap doesn't work correctly at the moment, force choosing a specific channel with hostap mode for now.
- 01:55 AM Revision 6f5607f5: "Auto" channel with hostap doesn't work correctly at the moment, force choosing a specific channel with hostap mode for now.
- 01:47 AM Revision ac0c4355: Set txpower since that seems to work fine now. Explicitly set authmode wpa here, though it's also handled by the supplicant/authenticator. Ticket #4516
- Conflicts:
etc/inc/interfaces.inc - 01:45 AM Revision cc229ee9: Missin double equals in captiveportal.inc
- Looking at where this is nested inside various if statements, I do not think this error did too much harm - only to t...
- 01:45 AM Revision 1483a813: Set txpower since that seems to work fine now. Explicitly set authmode wpa here, though it's also handled by the supplicant/authenticator. Ticket #4516
- 12:09 AM Revision e691957f: Do not start filterdns during boot until a proper fix is done. Ticket #4296
- 12:09 AM Revision f087d453: Do not start filterdns during boot until a proper fix is done. Ticket #4296
03/12/2015
- 11:53 PM Revision 80271fb3: add more wireless validation. Ticket #4516
- 11:53 PM Revision aec55f9a: add more wireless validation. Ticket #4516
- 11:22 PM Revision 6cd14b43: Add more validation for wireless config settings. Ticket #4516
- 11:22 PM Revision 22ec33b9: Add more validation for wireless config settings. Ticket #4516
-
- FreeBSD PR open on this per Adrian's request.
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=198556
opening a... - 09:49 PM Revision 95df2de5: Add more input validation for wireless parameters. Ticket #4516
- 09:48 PM Revision bda6c6bf: Add more input validation for wireless parameters. Ticket #4516
- 08:07 PM Revision b00b6c06: Touch up wifi text
- 08:07 PM Revision 89e6f7af: Touch up wifi text
- 07:50 PM Revision 6a2eb517: If we bail not being able to find the P1 source, log an error.
- Conflicts:
etc/inc/vpn.inc - 07:49 PM Revision ad073d9a: If we bail not being able to find the P1 source, log an error.
-
- Input validation on interfaces.php for wireless is lacking. About to push fixes, ticket for tracking.
-
- Workaround has been put in place.
-
-
- fixed for me also
-
11:47 AM Todo #4514: upgrade to Unbound 1.5.3
- that fixed unbound user not found for me
-
- Done
-
- On a system where it is not giving the "user unbound does not exist" message, the problem can be exhibited by:
unbou... -
- Unbound 1.5.2 has a regression on FreeBSD:
https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=650
which causes... - 06:32 AM Revision 7f951c63: White space in ipsec.inc
- 06:31 AM Revision 167087b8: Merge pull request #1556 from phil-davis/patch-5
- 06:29 AM Revision 4385f870: White space in filter.inc
- Conflicts:
etc/inc/filter.inc - 06:28 AM Revision 2991a949: Merge pull request #1554 from phil-davis/patch-3
- 06:17 AM Revision 47360140: White space in ipsec.inc
-
06:06 AM Feature #1357: captive portal informations throught SNMP
- It would be great to add this feature :)
-
06:03 AM Bug #4515 (Resolved): Unable To Set MTU on LAGG Interface If No VLANs Assigned
- We've spent some time troubleshooting our inability to set an MTU value on a LAGG interface and have found what we be...
- 05:53 AM Revision 38b3fab7: use-compression is no longer a valid config option in lighttpd, it can't be enabled. This just throws an error in the log, remove it.
- 05:52 AM Revision 524a0140: use-compression is no longer a valid config option in lighttpd, it can't be enabled. This just throws an error in the log, remove it.
- 05:10 AM Revision 486d7278: Fix IPsec on CARP IPs, broken when fixing IPsec with gateway groups and VIPs.
- 05:09 AM Revision 74c749be: Fix IPsec on CARP IPs, broken when fixing IPsec with gateway groups and VIPs.
-
- Generally driver bug fixes only are made in FreeBSD-STABLE, so they hit the next release (10.2 in about 6 months, for...
-
- This should probably be added to System-Advanced Network then so people can actually find this to fix it
- 03:01 AM Revision b8c3654c: clean up unique IDs text a bit.
- 03:00 AM Revision 3d67c650: clean up unique IDs text a bit.
-
- it at least only restarts when something is actually changed, and the HUP doesn't seem to apply things it should with...
-
- Chris Buechler wrote:
> that definitely fixed the remaining issue, both 32 and 64 bit.
Confirmed. Thanks. ;) - 01:41 AM Revision 1ca17c45: Move libstrongswan-unity.so when Unity plugin is disabled so it can't modify the P2. Workaround for Ticket #4178
- Conflicts:
etc/inc/vpn.inc - 01:38 AM Revision c014babd: Move libstrongswan-unity.so when Unity plugin is disabled so it can't modify the P2. Workaround for Ticket #4178
- 12:44 AM Revision a2c2c3b4: White space in filter.inc
Also available in: Atom