Activity

30 days up to

User

Subprojects

Activity

From 10/19/2015 to 11/17/2015

11/17/2015

10:33 PM Bug #4718 (Closed): "BTX halted" error with 2.2.2: some have reported this is no longer an issue in 2.3. It's a FreeBSD issue regardless, even with stock 10.1 working, ... Chris Buechler
09:27 PM Bug #5476 (Needs Patch): Does not appear possible to use policy routing for traffic originating from the firewall (self): +Summary of the issue:+
- despite https://doc.pfsense.org/index.php/What_are_Floating_Rules stating that _"Floatin... → luckman212
09:24 PM Bug #3191: Quality RRD inaccuracies and failure to update status in some circumstances: things are still an issue on troublesome connections Michael Kellogg
09:08 PM Bootstrap Bug #5475 (Resolved): Gateways Dashboard widget should dynamically update: Doug Dimick
08:58 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never": Still an issue on 2.3 alpha. A somewhat ugly and not terribly secure workaround is to add a rule to outbound NAT disa... Doug Dimick
08:53 PM Feature #5474 (New): Add 802.1x configuration to wired interfaces.: pfSense already contains wpa_supplicant, which can also be used for wired interface 802.1x client authentication. Thi... Doug Dimick
08:34 PM Bug #4623: Carp not working under bhyve: Just checked with 2.3-alpha, it works there. I don't really know if it's because of fbsd 10.2 or some reversed custom... Matthias Breddin
07:58 PM pfSense Packages Bug #4526: Incorrect subnet is calculated for proxy server on WAN with "Allow users on interface": https://github.com/pfsense/pfsense-packages/pull/1181 - this will simply ignore invalid subnets and omit those from t... Kill Bill
07:04 AM pfSense Packages Bug #4526: Incorrect subnet is calculated for proxy server on WAN with "Allow users on interface": It's not that invalid subnet is calculated, it's that you *HAVE* invalid subnet on your WAN. This should be validated... Kill Bill
07:57 PM pfSense Packages Bug #4331: Issue with VPN interface within Squid 3.4 for Transparent Proxy: https://github.com/pfsense/pfsense-packages/pull/1181 - this will simply ignore invalid subnets and omit those from t... Kill Bill
07:16 PM Bug #5473 (Resolved): pf_test_state_tcp() crash: From ticket: MQC-14288
db:0:kdb.enter.default> bt
Tracing pid 12 tid 100070 td 0xfffff8000377b920
pf_test_state... Steve Wheeler
07:12 PM Bug #5472 (Resolved): ipsec_getpolicybyaddr() crash: From ticket: AUT-75761
Firewall has a large number of IPSec tunnels and is seeing unexplained crashes.
db:0:kdb... Steve Wheeler
06:37 PM Bug #5453: Wifi card using the ath driver running in hostap mode causes a panic when a client joins.: Jim Thompson wrote:
> Do I dare suggest that we attempt to re-import net80211 and friends here?
>
> Renato grabbe... Chris Buechler
06:16 PM Bug #5453: Wifi card using the ath driver running in hostap mode causes a panic when a client joins.: Do I dare suggest that we attempt to re-import net80211 and friends here?
Renato grabbed the last import a day aft... Jim Thompson
06:02 PM Bug #5453: Wifi card using the ath driver running in hostap mode causes a panic when a client joins.: here's a couple diff new ones. ... Chris Buechler
05:47 PM Bug #5453 (Confirmed): Wifi card using the ath driver running in hostap mode causes a panic when a client joins.: It's not just client association, it has to actually try to send some traffic destined to the host. Doesn't have to b... Chris Buechler
01:16 PM Bug #5453: Wifi card using the ath driver running in hostap mode causes a panic when a client joins.: Got a slightly different one today -- same scenario: Panic on client association:... Jim Pingle
11:54 AM Bug #5453: Wifi card using the ath driver running in hostap mode causes a panic when a client joins.: what panic string? seems blank.
Jim Thompson
06:07 PM Todo #5471 (Closed): Convert glyphicons to font awesome: So that we can get rid of glyphicons.
grep -rn "icon-" Jared Dillard
05:51 PM Bug #4403: Enabling SNMP causes kernel panic with APU with empty SD card slot: now reassigned to cmb Jim Thompson
05:48 PM Bug #4719: IKEv2 to Cisco ASA results in TS mismatch when initiation triggered by traffic: can you retry this with a recent version of strongswan?
Jim Thompson
05:34 PM pfSense Packages Bug #5468: iperf service won't shutdown: https://github.com/pfsense/pfsense/pull/2076 - plus, a bottom line: If nothing was stopped, the GUI shouldn't say som... Kill Bill
03:46 PM pfSense Packages Bug #5468: iperf service won't shutdown: Maybe this works: https://github.com/pfsense/pfsense-packages/pull/1180/files
Report back when it's merged. Kill Bill
02:46 PM pfSense Packages Bug #5468: iperf service won't shutdown: This thing was never designed to be run as a permanent service. You click in the GUI, run it while needed, then kill ... Kill Bill
02:24 PM pfSense Packages Bug #5468: iperf service won't shutdown: Thanks, that fixed it for now.
Still seems like a bug to me. Corey Boyle
02:19 PM pfSense Packages Bug #5468: iperf service won't shutdown: ... Kill Bill
12:15 PM pfSense Packages Bug #5468 (Closed): iperf service won't shutdown: After starting the iperf service, I am unable to stop it. When I click stop, I get "iperf has been stopped" flash mes... Corey Boyle
05:12 PM Bootstrap Bug #5470 (Resolved): Dashboard needs Breadcrumb: The Status: Dashboard page doesn't have a breadcrumb at the top. Jared Dillard
03:58 PM Bug #5469 (Confirmed): package.dtd XSD schema is a piece of pathetic, useless, unmaintained junk: Most of the XSD schema consists of:... Kill Bill
03:57 PM Bug #5428: Frequent IPv6 panic on 2.3 - May be log-related: I checked in a copy of a Packet capture containing traffic that crashes the firewall into the ESFprojects repo under ... Jim Pingle
02:46 PM Bug #5428: Frequent IPv6 panic on 2.3 - May be log-related: Not sure why yet but it appears to be tied to Bonjour traffic on the local network. Disabling or enabling the Bonjour... Jim Pingle
07:50 AM Bug #5428: Frequent IPv6 panic on 2.3 - May be log-related: I think the m->m_pkthdr.rcvif is undefined here. The interface name can't be NULL (because this is correctly handled ... Luiz Souza
01:30 PM Bootstrap Bug #5450: GUI issues in IE on DNS Resolver and Forwarder: * cries *
> The engines cannae take it, cap'n! << Stilez y
11:51 AM Bootstrap Bug #5450: GUI issues in IE on DNS Resolver and Forwarder: ya run Windows, you get to evaluate IE bugs. Jim Thompson
01:18 PM Bootstrap Bug #5465 (Resolved): vpn_ipsec.php - IPsec Phase 1 and Phase 2 relocation anchor icon should be moved over by the checkbox on the left: Much better there, thanks! Jim Pingle
11:00 AM Bootstrap Bug #5465: vpn_ipsec.php - IPsec Phase 1 and Phase 2 relocation anchor icon should be moved over by the checkbox on the left: Applied in changeset pfsense:commit:7abe8b3ed149bafa82e2803686898943065019ee. Anonymous
10:50 AM Bootstrap Bug #5465 (Feedback): vpn_ipsec.php - IPsec Phase 1 and Phase 2 relocation anchor icon should be moved over by the checkbox on the left: Moved as requested. Anonymous
10:13 AM Bootstrap Bug #5465 (Resolved): vpn_ipsec.php - IPsec Phase 1 and Phase 2 relocation anchor icon should be moved over by the checkbox on the left: Seems to make more sense to have the movement/relocation controls grouped on the left, and at least for me, the ancho... Jim Pingle
12:27 PM Bootstrap Bug #5467 (Resolved): firewall_nat.php - Linked firewall rule icon tooltip is missing the ID: Looks good now Jim Pingle
12:00 PM Bootstrap Bug #5467: firewall_nat.php - Linked firewall rule icon tooltip is missing the ID: Applied in changeset pfsense:commit:a088bcb5537b0680fba619da6bd96652ac08c0c2. Anonymous
11:59 AM Bootstrap Bug #5467 (Feedback): firewall_nat.php - Linked firewall rule icon tooltip is missing the ID: Looks like this predates pfSense 2.0 Variable used to print ID was not defined. Now set to $natent['associated-rule-id'] Anonymous
11:26 AM Bootstrap Bug #5467 (Resolved): firewall_nat.php - Linked firewall rule icon tooltip is missing the ID: When you create a port forward with a linked rule, it gets an icon to indicate that fact. When hovering the mouse poi... Jim Pingle
11:50 AM Feature #5461: Add RFC2307bis (LDAP) group membership support to user authentication: assigned to cmb for eval Jim Thompson
03:56 AM Feature #5461 (Resolved): Add RFC2307bis (LDAP) group membership support to user authentication: As layed out and implemented in Feature #4923 (https://redmine.pfsense.org/issues/4923), LDAP groups can be used if t... Felix Wolfsteller
11:48 AM Todo #5368: Review /etc/ttys for serial console: We still need to set which serial port the console is on.
Jim Thompson
11:20 AM Bootstrap Bug #5463: Cannot mark notices as read.: Applied in changeset pfsense:commit:329a1cd58f698c3d0b62da74e52e566b4883b39c. Anonymous
11:14 AM Bootstrap Bug #5463 (Feedback): Cannot mark notices as read.: Anonymous
10:56 AM Bootstrap Bug #5463 (Assigned): Cannot mark notices as read.: Ready to test Anonymous
10:41 AM Bootstrap Bug #5463 (Feedback): Cannot mark notices as read.: I have just pushed a simplified version of the header. It does the same thing but using a different mechanism. Would ... Anonymous
09:40 AM Bootstrap Bug #5463: Cannot mark notices as read.: I do most testing with FireFox (currently 43.0b3) and cannot reproduce. I'll experiment with different system and see... Anonymous
09:06 AM Bootstrap Bug #5463: Cannot mark notices as read.: Firefox 38.4.0ESR on Windows 10 has the problem.
Google Chrome Version 46.0.2490.86 m works.
So whatever the issu... Phillip Davis
08:27 AM Bootstrap Bug #5463: Cannot mark notices as read.: Tested against 32bit Nano and 64bit VM. Same result.
Steve Wheeler
08:07 AM Bootstrap Bug #5463: Cannot mark notices as read.: Still fails with a blank FF profile. Testing against a NanoBSD box, might be a difference there. Chromium works though. Jim Pingle
08:00 AM Bootstrap Bug #5463: Cannot mark notices as read.: Also fails for me in FF 42 on Mint+Cinnamon, Windows 10, and OS X 10.11.1. The FF install on OS X has no add-ons or e... Jim Pingle
07:18 AM Bootstrap Bug #5463: Cannot mark notices as read.: Confirmed. Some setting in FF 42 on Mint is preventing this though I can't find it.
FF 40 on GhpostBSD seems to have... Steve Wheeler
06:59 AM Bootstrap Bug #5463: Cannot mark notices as read.: Yes, looks like my failure to test with more than one browser!
Doesn't work in Firefox under Linux Mint. Cleared fin... Steve Wheeler
06:35 AM Bootstrap Bug #5463: Cannot mark notices as read.: Unable to reproduce.
Which browser/OS did you observe the problem with? Anonymous
06:15 AM Bootstrap Bug #5463: Cannot mark notices as read.: It is working OK for me. I go to Diagnostics->Command Prompt and execute some PHP like:
file_notice("xyz","stuff")... Phillip Davis
05:42 AM Bootstrap Bug #5463 (Resolved): Cannot mark notices as read.: Generate some notices such that they appear on the right hand side on the top bar in GUI, by generating SSH keys for ... Steve Wheeler
11:04 AM Bug #5448: Packages not being reinstalled after upgrade from 2.2.x: FWIW the files used for updates:
2.2.3 to 2.2.5: pfSense-Full-Update-2.2.5-RELEASE-amd64.tgz
2.2.5 to 2.3: pf... Stilez y
10:58 AM Bug #5448: Packages not being reinstalled after upgrade from 2.2.x: Added Stilez y
09:58 AM Bug #5448: Packages not being reinstalled after upgrade from 2.2.x: Please attach complete file.
Looks like it didn't extract upgrade image correctly, and ended up trying to load old... Renato Botelho
09:54 AM Bug #5448: Packages not being reinstalled after upgrade from 2.2.x: I have the full file. It's long but the key pieces seem to be these:
> tar: Failed to set default locale
> x ./t... Stilez y
03:04 AM Bug #5448: Packages not being reinstalled after upgrade from 2.2.x: 2.2 uses PBI and 2.3 uses pkg. There is a transition code written that does the following operations during upgrade f... Renato Botelho
10:29 AM pfSense Packages Feature #5466: inline config option for Viscosity: It does work, but it is missing these lines...
#viscosity startonopen false
#viscosity dhcp true
#viscosity dnss... Corey Boyle
10:15 AM pfSense Packages Feature #5466 (Feedback): inline config option for Viscosity: The "Other" type inline works for me on Viscosity on both last time I tried it. Does it fail in some way when you try... Jim Pingle
10:14 AM pfSense Packages Feature #5466 (Resolved): inline config option for Viscosity: It would be really nice if the OpenVPN Client Export Utility had an export option for “Inline Viscosity” that would w... Corey Boyle
07:32 AM Bug #5464 (Resolved): Unbound DNS Resolver doesn't listen on IP aliases even when selected in settings: I am using pfSense 2.2.5, recently upgraded from 2.2.4. I recently flipped over to using "DNS Resolver" instead of u... Paul Mather
06:40 AM Bootstrap Bug #5462 (Feedback): In diag_routes.php the top section is incorrectly labelled Traceroute: Applied in changeset pfsense:commit:e897f3043f2e2fcba0916d42e29c0129dcbeb25c. Phillip Davis
06:33 AM Bootstrap Bug #5462: In diag_routes.php the top section is incorrectly labelled Traceroute: Corrected by PR 2073 Anonymous
06:01 AM Bootstrap Bug #5462: In diag_routes.php the top section is incorrectly labelled Traceroute: Pull request https://github.com/pfsense/pfsense/pull/2073
I also found another mislabeled one in Packet Capture http... Phillip Davis
05:15 AM Bootstrap Bug #5462 (Resolved): In diag_routes.php the top section is incorrectly labelled Traceroute: Subject says it all really but that section really has nothing to do with Traceroute.
It's not labelled at all in th... Steve Wheeler
06:31 AM Bug #5134 (Feedback): The handling of base64 encoding in the package XML is insane: Addressed by PR 2071 now merged. Anonymous
04:25 AM Bug #5134: The handling of base64 encoding in the package XML is insane: https://github.com/pfsense/pfsense/pull/2071 Kill Bill
05:00 AM pfSense Packages Bug #5447: CSS/icon issues - system_patches.php 2.3 alpha: jeroen van breedam wrote:
> @renato
> so i understand,i can try convert it then? it has to be done at one point any... Renato Botelho
04:35 AM pfSense Packages Bug #5447: CSS/icon issues - system_patches.php 2.3 alpha: @renato
so i understand,i can try convert it then? it has to be done at one point anyways.
what branch of the ports... jeroen van breedam
03:06 AM pfSense Packages Bug #5447: CSS/icon issues - system_patches.php 2.3 alpha: Kill Bill wrote:
> jeroen van breedam wrote:
> > how would i go about migrating this package to bootstrap ?
>
> ... Renato Botelho
03:57 AM Feature #4923: Add LDAP support for RFC2307 style group membership: Felix Wolfsteller wrote:
> That makes sense to me. The code (and maybe RFC2307) assumes that the member attribute is... Felix Wolfsteller
03:17 AM Feature #4923: Add LDAP support for RFC2307 style group membership: I tried to find the code that does the ldap group lookup. If I am not mistaken, it is located at https://redmine.pfse... Felix Wolfsteller
02:29 AM Feature #4923: Add LDAP support for RFC2307 style group membership: Btw this is also featured in Feature #2869 iiuc. Felix Wolfsteller
02:11 AM Feature #4923: Add LDAP support for RFC2307 style group membership: It does not work for me as I expected, but I have to admit that I am a LDAP-noop.
My setup contains of ... Felix Wolfsteller
03:08 AM Todo #5430 (Feedback): Rename "Firmware" section to Upgrade: Done Renato Botelho
03:07 AM Todo #4577 (Feedback): Convert update mechanism (GUI) to pkg: Done Renato Botelho
03:03 AM pfSense Packages Bug #3525: Dansguardian Writing Script Garbage (CsrfMagic.end): That page is a XML template and the textarea is base64-encoded. This bug doesn't make any sense and does not exist as... Kill Bill
02:13 AM Bug #4365: ALTQ Traffic Shaping is not working in pfSense 2.2 when run on Hyper-V 2012 R2: Still not working at 2.2.5-RELEASE. Hypervisor is Hyper-V 2012, too. Needed to change shaper scheduler to PRIQ, which... Andrey Platonov
12:06 AM Bootstrap Feature #5458 (Resolved): Interface statistics widget needs to update dynamically: Good enough (for now)
Thanks
Jim Thompson

11/16/2015

10:39 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never": I'm experiencing the same issue on 2.2.5. For policy purposes I require redundant OpenVPN tunnnels, and I also need t... Doug Dimick
07:23 PM Bootstrap Bug #5460 (Feedback): firewall_rules_edit.php masks not updating for IPv6: Testing this tonight I found that once I enter an IPv6 address in the network, the full range (1 -> 127) becomes avai... Anonymous
06:57 PM Bootstrap Bug #5460 (Not a Bug): firewall_rules_edit.php masks not updating for IPv6: Add a new firewall rule, change protocol to IPv6, change source or dest to "Network", and you only have 1-32 for the ... Chris Buechler
04:30 PM Bug #5429: Logo badly cropped: Applied in changeset commit:b1fd554296494b5d771e263c664ee92c23fbb0fe. Anonymous
04:21 PM Bug #5429 (Feedback): Logo badly cropped: This is fixed (padding and glitch) if you want to review it now. Jared Dillard
03:28 PM Bug #5428: Frequent IPv6 panic on 2.3 - May be log-related: There are only two calls to log() in ip6_forward()
https://github.com/pfsense/FreeBSD-src/blob/13010d6b0da4d97e562... Jim Thompson
03:18 PM pfSense Packages Bug #4369 (Resolved): patch fetching doesn't work if pfsense is behind proxy: thanks Chris Buechler
08:07 AM pfSense Packages Bug #4369: patch fetching doesn't work if pfsense is behind proxy: Fixed in 1.0.7. Kill Bill
02:09 PM Bootstrap Bug #5440 (Resolved): system_usermanager_settings.php - When no Auth Server is defined, it should default to Local Database: Seems to DTRT now. Jim Pingle
01:01 PM Bootstrap Bug #5459 (Feedback): system_advanced_sysctl.php lacking input validation, output sanitation: Inputs validated
Error messages provided
htmlspecialchars() protection added where required Anonymous
01:01 PM Bootstrap Bug #5459 (Resolved): system_advanced_sysctl.php lacking input validation, output sanitation: system_advanced_sysctl.php has no input validation (in 2.2.x either). We should be safe to limit Tunable and Value fi... Anonymous
12:50 PM Todo #5457 (Feedback): Overwrite /etc/rc before reboot during upgrade: Applied in changeset commit:dab31392f9b80285c6d2e0c1d03b7b247939d653. Renato Botelho
07:29 AM Todo #5457 (Resolved): Overwrite /etc/rc before reboot during upgrade: During upgrade process, we do:
- Download all packages
- Upgrade kernel
- Reboot
- Upgrade other pkgs during bo... Renato Botelho
12:45 PM Todo #5123 (Resolved): Remove WEP: Seems to be OK here.
Ding, dong, the WEP is dead. Jim Pingle
12:10 PM Todo #5123 (Feedback): Remove WEP: Applied in changeset commit:16060c78acaebf12a533b8fdb1771df7b44e012f. Anonymous
12:02 PM Todo #5123: Remove WEP: Removed as requested.
Seems to have no adverse affects Anonymous
11:53 AM Todo #5123 (Assigned): Remove WEP: Looks good but now I'm also wondering if we can't get rid of all mentions of auth_algs from that page. It's listed as... Jim Pingle
11:50 AM Todo #5123 (Feedback): Remove WEP: Applied in changeset commit:8ac2fe8071a51012e21488894d07965603451930. Anonymous
11:39 AM Todo #5123: Remove WEP: Removed as requested.
JimP to close if appropriate. Anonymous
11:28 AM Todo #5123 (Assigned): Remove WEP: The upgrade code appears to work OK, I upgraded an ALIX I configured for WEP on 2.2.5 and post upgrade the interface ... Jim Pingle
12:05 PM Bug #5454 (Resolved): 2.3 alpha - system_advanced_admin.php - webgui redirect/reload test doesn't work, ignores port config unchanged: Code around: $_POST['webgui-redirect'] restarted the webgui if the value was 'yes', or if it was not :) Changed it to... Anonymous
04:56 AM Bug #5454: 2.3 alpha - system_advanced_admin.php - webgui redirect/reload test doesn't work, ignores port config unchanged: At the same time, maybe add a direct link "...or click here to immediately reload..." (or the link itself made a hype... Stilez y
10:31 AM pfSense Packages Bug #5446: System Patches doesn't auto-apply on upgrade from 2.2 to 2.3: I could not reproduce the issue. I added a patch, mark it to auto apply, rebooted after an upgrade and it was applied Renato Botelho
10:23 AM Bootstrap Feature #5458 (Feedback): Interface statistics widget needs to update dynamically: Now pdates dynamically every 5 seconds. Anonymous
07:47 AM Bootstrap Feature #5458 (Resolved): Interface statistics widget needs to update dynamically: Anonymous
09:44 AM Feature #3882: Add OUI database to the base system, remove dependency on nmap: Jim P wrote:
> I wouldn't want to rely on the end user boxes pulling from IEEE especially since they could move the ... Kill Bill
08:16 AM Feature #3882: Add OUI database to the base system, remove dependency on nmap: The main questions are:
* Do we ship with a file crafted from the IEEE data or build it dynamically on the box?
* D... Jim Pingle
08:05 AM Bug #5453: Wifi card using the ath driver running in hostap mode causes a panic when a client joins.: I turned on the ath interface in my APU and managed to replicate the crash multiple times as well. Same backtrace and... Jim Pingle
05:08 AM Bug #5453: Wifi card using the ath driver running in hostap mode causes a panic when a client joins.: crash dump actually shows that it's unrelated to ath
db:0:kdb.enter.default> bt
Tracing pid 12 tid 100030 td 0xf... Jim Thompson
08:03 AM Bug #5455 (Duplicate): pfsense-utils/load_mac_manufacturer_table() is lame due to missing nmap-mac-prefixes: Some more discussion/affirmation on #3882 may help there. I'll close this as a duplicate for now. Jim Pingle
03:52 AM Bug #5455: pfsense-utils/load_mac_manufacturer_table() is lame due to missing nmap-mac-prefixes: Well, this apparently has been lingering here for quite some time as #3882 - hopefully it could make it into 2.3... Kill Bill
02:47 AM Bug #5455 (Duplicate): pfsense-utils/load_mac_manufacturer_table() is lame due to missing nmap-mac-prefixes: So there's code for this MAC -> manufacturer mapping in multiple places introduced by https://github.com/pfsense/pfse... Kill Bill
07:21 AM Todo #5444 (Feedback): Update system information widget to use new base package update process: Done in commit:0582a6334fb43346b8aa3db9b44924ea4b184ceb Renato Botelho
06:06 AM Bug #5456: redmine filter bug?: Works just fine here. Perhaps your cookies are somehow screwed. Kill Bill
05:04 AM Bug #5456: redmine filter bug?: Adding screenshot Stilez y
05:02 AM Bug #5456 (Closed): redmine filter bug?: I don't know if this is due to the local implementation of Redmine here, or a bug to pass upstream to Redmine's autho... Stilez y
05:09 AM pfSense Packages Bug #5447: CSS/icon issues - system_patches.php 2.3 alpha: Assigned to sbeaver, who can give advice. Jim Thompson

11/15/2015

06:56 PM Bug #5454 (Confirmed): 2.3 alpha - system_advanced_admin.php - webgui redirect/reload test doesn't work, ignores port config unchanged: I observed the same behavior last week before adding the "Web GUI CSS" selector and added it to my list. I should be ... Anonymous
01:23 PM Bug #5454 (Resolved): 2.3 alpha - system_advanced_admin.php - webgui redirect/reload test doesn't work, ignores port config unchanged: The page should only redirect when the IP, port or SSL status has changed, but it always redirects even when they don... Stilez y
01:35 PM pfSense Packages Bug #5447: CSS/icon issues - system_patches.php 2.3 alpha: jeroen van breedam wrote:
> how would i go about migrating this package to bootstrap ?
Waste of time while the pa... Kill Bill
11:48 AM pfSense Packages Bug #5447: CSS/icon issues - system_patches.php 2.3 alpha: how would i go about migrating this package to bootstrap ?
this isn't an xml-only package. it has several .php fil... jeroen van breedam
12:36 PM pfSense Packages Bug #5446: System Patches doesn't auto-apply on upgrade from 2.2 to 2.3: Frankly, I don't think anything at all changed here. Kill Bill
09:12 AM pfSense Packages Bug #5446: System Patches doesn't auto-apply on upgrade from 2.2 to 2.3: I hadn't noticed autoapply not happening after previous upgrades (2.2.3->2.2.4, 2.2.4->2.2.5) so it looks like someth... Stilez y
09:11 AM pfSense Packages Bug #5446: System Patches doesn't auto-apply on upgrade from 2.2 to 2.3: In which case the check for autoapply needs to trigger on post_install as well as earlyshellcmd...? Stilez y
05:40 AM pfSense Packages Bug #5446: System Patches doesn't auto-apply on upgrade from 2.2 to 2.3: Hmmm, and thinking about this, this could have never worked. You upgrade, the packages get removed, then you reboot, ... Kill Bill
05:24 AM pfSense Packages Bug #5446: System Patches doesn't auto-apply on upgrade from 2.2 to 2.3: Well, this uses earlyshellcmd in config.xml. Whatever broke there is an issue in pfSense core very likely, not in pac... Kill Bill
10:38 AM Todo #5445: Improve banner for "background activity": The progress system used in pkg_mgr_install.php will allow the user to navigate away from the page, then come back la... Anonymous
09:48 AM Todo #5445: Improve banner for "background activity": Not sure the details but would "something like this" work?
Yes, basically a combination of the existing components t... Phillip Davis
08:58 AM Todo #5445: Improve banner for "background activity": (sorry, I hit "submit" early)
... To expand a bit following PD's comment, part of the issue is that it shouldn't o... Stilez y
08:28 AM Todo #5445: Improve banner for "background activity": The "notices" in the banner in 2.3 alpha is an improvement on 2.2.x, in this area, for what it's worth. Stilez y
10:35 AM Bug #5453 (Resolved): Wifi card using the ath driver running in hostap mode causes a panic when a client joins.: I'm running 2.3alpha on an APU with the ath wifi card as an access point. Whenever I join the wifi network the APU cr... Steve Wheeler
09:03 AM pfSense Packages Bug #3442: Stunnel package $config issue?: Can't test - stunnel not yet showing as a pfSense package available on 2.3 . Stilez y
08:27 AM Bootstrap Bug #5450: GUI issues in IE on DNS Resolver and Forwarder: In my defence - usually I'm on firefox! ;-) Stilez y
08:27 AM Bootstrap Bug #5450: GUI issues in IE on DNS Resolver and Forwarder: this was IE 11 on Win 8.1, fresh install. I'll check for issues (microsoft's compatibility mode being on/off in parti... Stilez y
05:43 AM Bootstrap Bug #5440: system_usermanager_settings.php - When no Auth Server is defined, it should default to Local Database: and a suggested improvement to the diag_authentication.php for 2.3 https://github.com/pfsense/pfsense/pull/2066 Phillip Davis
05:29 AM Bootstrap Bug #5440: system_usermanager_settings.php - When no Auth Server is defined, it should default to Local Database: I added PR https://github.com/pfsense/pfsense/pull/2065 to backport the diag_authentication.php bit of this to RELENG... Phillip Davis
04:34 AM Bootstrap Bug #5440: system_usermanager_settings.php - When no Auth Server is defined, it should default to Local Database: In system_usermanager_settings.php in 2.2.5 it works OK for me, and looking at the code it does indeed select Local D... Phillip Davis
04:47 AM pfSense Packages Bug #5081: LADVD failing on LAGG INTERFACE: Hmmm, so I'm not blind at least :) Franly, I do not feel like inventing something from scratch since I'm definitely n... Kill Bill
04:30 AM pfSense Packages Bug #5081: LADVD failing on LAGG INTERFACE: Kill Bill wrote:
> @Chris - you have some good code example to check for bridge/lagg and drill down to physical ones... Chris Buechler
04:20 AM pfSense Packages Bug #5081: LADVD failing on LAGG INTERFACE: @Chris - you have some good code example to check for bridge/lagg and drill down to physical ones? Couldn't really fi... Kill Bill
04:12 AM pfSense Packages Bug #5081: LADVD failing on LAGG INTERFACE: The issue is in any situation with virtual interfaces (lagg or VLANs), the package should enable ladvd on the parent ... Chris Buechler
12:50 AM pfSense Packages Bug #5081: LADVD failing on LAGG INTERFACE: I'd like Jeremy to recheck this. Jim Thompson
04:34 AM Todo #4841 (Resolved): update AES-GCM/AES-NI bits from FreeBSD -HEAD: completed with no known issues. We'll open specific bugs if there are any found. Chris Buechler
01:08 AM Todo #4841: update AES-GCM/AES-NI bits from FreeBSD -HEAD: assigned to cmb for closure. Jim Thompson
04:23 AM Bug #4401: remove xen netfront driver until it can handle altq: Guessing Jim re-assigned target and to Renato to get 286999 implemented. Rejected is a closed status, so this won't s... Chris Buechler
04:22 AM Todo #5452 (Resolved): xen: allow disabling PV disks and nics: The changes here need to be added.
https://svnweb.freebsd.org/base?view=revision&revision=286999
were supposed t... Chris Buechler
03:50 AM pfSense Packages Bug #4288 (Resolved): inetd is missed by check_mk: thanks! Chris Buechler
03:38 AM pfSense Packages Bug #4288: inetd is missed by check_mk: Ok, managed to get one user (out of the two in total who use this :P) to test it on the forum - looks like it works.
... Kill Bill
03:00 AM pfSense Packages Bug #4288 (Feedback): inetd is missed by check_mk: Chris Buechler
02:20 AM pfSense Packages Bug #4288: inetd is missed by check_mk: Merged, please test with 0.1.6 and report back. I have no good way to test this, but it cannot be really more broken ... Kill Bill
03:00 AM pfSense Packages Bug #5406 (Resolved): FreeRADIUS will run with its default conf after being reinstalled by pfsense's upgrade process: thanks Chris Buechler
02:58 AM pfSense Packages Bug #5406: FreeRADIUS will run with its default conf after being reinstalled by pfsense's upgrade process: Should be fixed in 1.6.18 Kill Bill
02:57 AM pfSense Packages Bug #4561 (Resolved): siproxd listening port redirect rule pulling wrong tag from <siproxdsettings> (config.xml): thanks Chris Buechler
02:49 AM pfSense Packages Bug #4561: siproxd listening port redirect rule pulling wrong tag from <siproxdsettings> (config.xml): This is fixed in 1.0.6 package version.
https://github.com/pfsense/pfsense-packages/blob/master/config/siproxd/sip... Kill Bill
12:59 AM pfSense Packages Bug #4561: siproxd listening port redirect rule pulling wrong tag from <siproxdsettings> (config.xml): assigned to cmb, because this has been in feedback for 4 months now, and we've released since then.
I'd like to kn... Jim Thompson
02:56 AM pfSense Packages Feature #5052: Avahi Proxy Package: Add option to disable/control cache size.: Not exactly convinced that switching from Lennertware to BittenFruitWare is going to change anything for the better..... Kill Bill
12:55 AM pfSense Packages Feature #5052: Avahi Proxy Package: Add option to disable/control cache size.: avahi should be deprecated (it's also GPL, and mDNSresponder is Apache licensed, and in ports)
Jim Thompson
01:14 AM Bug #4061: dhcpd doesn't send client-hostname to peer, breaking DHCP lease registrations w/HA: Assigned to Steve Beaver (to give him a break from the GUI)
Jim Thompson
01:07 AM Todo #5123: Remove WEP: reassigned to pingle for verification and closure. Jim Thompson
01:06 AM Bug #3932: Captive portal with greater than 9000 permanent MAC addresses causes timeout in loading CP: bump
as much as I dislike cRaptive portals, this needs to be fixed. Jim Thompson
01:04 AM Bug #4418: IPsec mobile clients - bogus "p" appended to search domain: reassigned. (I know Matt has this working.) Jim Thompson
01:03 AM Bug #4329: OpenVPN Server returns an error message while validating selfsigned certificate with a deep of 2: Assigned to Matt, because of the lack of progress here. Jim Thompson
01:02 AM Bug #4327 (Closed): Package Manager issue behind proxy: I don't believe this was ever a (general) problem. It's been in feedback for 8 months. Assigning to cmb, and marki... Jim Thompson
12:57 AM pfSense Packages Bug #4926: Please update darkstat to 3.0.719: seems like another piece of useless GPL-ed bloatware, but .. whatever. Jim Thompson
12:23 AM Bug #3334 (Confirmed): Status/Traffic Graph isn't IPv6 ready: Chris Buechler
12:09 AM Bug #5451 (Feedback): Invalid ruleset generated with some AVPair-defined ACLs: missing space part's good Chris Buechler
12:06 AM Bug #5451 (Resolved): Invalid ruleset generated with some AVPair-defined ACLs: as discussed here:
https://forum.pfsense.org/index.php?topic=102009.0
an invalid ruleset can be generated for AV... Chris Buechler

11/14/2015

11:36 PM pfSense Packages Bug #3606 (Resolved): can't use content scanner in Dansguardian 2.12.0.3_2 pkg v.0.1.8 pfsense 2.1.2-RELEASE (amd64): thanks Chris Buechler
08:17 AM pfSense Packages Bug #3606: can't use content scanner in Dansguardian 2.12.0.3_2 pkg v.0.1.8 pfsense 2.1.2-RELEASE (amd64): Definitely fixed on 2.2.x (https://github.com/pfsense/pfsense-packages/blob/master/pkg_config.10.xml#L529) - as for 2... Kill Bill
11:34 PM Bootstrap Bug #5443 (Resolved): Package LADVD display wrong text in gui.: fixed, thanks Chris Buechler
01:36 PM Bootstrap Bug #5443 (Closed): Package LADVD display wrong text in gui.: Looks good. Fixed. Jeremy Porter
07:20 AM Bootstrap Bug #5443: Package LADVD display wrong text in gui.: Applied in changeset pfsense:commit:86c772239b30e11241d11e7804da765e99ccba0b. Anonymous
07:14 AM Bootstrap Bug #5443 (Feedback): Package LADVD display wrong text in gui.: Error rectified in checkbox generation func. Anonymous
02:59 AM Bootstrap Bug #5443: Package LADVD display wrong text in gui.: Chris Buechler wrote:
> a slew of instances of that "Show log entries" message in pkg_edit.php that looks like a wro... Kill Bill
12:36 AM Bootstrap Bug #5443: Package LADVD display wrong text in gui.: a slew of instances of that "Show log entries" message in pkg_edit.php that looks like a wrong copy/paste. Chris Buechler
12:32 AM Bootstrap Bug #5443 (Confirmed): Package LADVD display wrong text in gui.: Chris Buechler
12:32 AM Bootstrap Bug #5443: Package LADVD display wrong text in gui.: The screenshot Steve posted is from 2.2.x, where it's correct. Attached is from 2.3, where it's getting "Show log ent... Chris Buechler
11:33 PM Bootstrap Bug #5450 (Feedback): GUI issues in IE on DNS Resolver and Forwarder: haven't seen that anywhere either.
Stilez: what browser and OS are you running? Chris Buechler
06:45 PM Bootstrap Bug #5450: GUI issues in IE on DNS Resolver and Forwarder: I don't see these issues either. I have tried FireFox, Safari and Chrome on the desktop, plus Safari and Firefox on O... Anonymous
05:20 PM Bootstrap Bug #5450: GUI issues in IE on DNS Resolver and Forwarder: what browser is this?
can not replicate this using firefox or chromium. jeroen van breedam
03:05 PM Bootstrap Bug #5450: GUI issues in IE on DNS Resolver and Forwarder: Ditto "access lists" tab (see 2nd screenshot) Stilez y
03:02 PM Bootstrap Bug #5450 (Resolved): GUI issues in IE on DNS Resolver and Forwarder: See attached screenshot:
1) custom options scrollbar has up and down buttons but no moving viewport locator, so yo... Stilez y
10:45 PM Todo #5445: Improve banner for "background activity": Some activities output their text progress to a text box in the UI (e.g. package installation). If the user navigates... Phillip Davis
12:00 PM Todo #5445 (New): Improve banner for "background activity": A number of router functions involve background activity which is ongoing for a while before completing. (Examples: p... Stilez y
09:07 PM Feature #5190: Include scponly package as part of the base: Can it be considered for a future release? Alex Vergilis
12:57 PM pfSense Packages Bug #5449: Reinstall syslog-ng failed after upgrade to 2.3 alpha (couldn't install Perl: makewhatis not found): Also note - same happened on trying to reinstall Squid...
However, despite the error, the package was *successfully*... Stilez y
12:53 PM pfSense Packages Bug #5449: Reinstall syslog-ng failed after upgrade to 2.3 alpha (couldn't install Perl: makewhatis not found): Note that after this, syslog-ng was still shown as installed, despite "Deleting files for syslog-ng-3.6.4" ..... Stilez y
12:52 PM pfSense Packages Bug #5449 (Resolved): Reinstall syslog-ng failed after upgrade to 2.3 alpha (couldn't install Perl: makewhatis not found): Package install log as displayed:
>>> Installing pfSense-pkg-syslog-ng...
Checking integrity... done (0 conflict... Stilez y
12:45 PM Bug #5448: Packages not being reinstalled after upgrade from 2.2.x: Related 2nd bug - if you try to reinstall all packages to fix this, using the normal "reinstall all packages" functio... Stilez y
12:40 PM Bug #5448 (Resolved): Packages not being reinstalled after upgrade from 2.2.x: Example reproduction:
Start with 2.2.5 with (say) "System Patches" package installed.
Update to 2.3
Visit "Packa... Stilez y
12:22 PM pfSense Packages Bug #5447 (Closed): CSS/icon issues - system_patches.php 2.3 alpha: Screenshot below. All other pages (so far) are clear and on a white background. This one seems to be blue on dark gre... Stilez y
12:18 PM pfSense Packages Bug #5446 (Closed): System Patches doesn't auto-apply on upgrade from 2.2 to 2.3: Backed up my current 2.2.5, installed on a VM, updated to 2.3 alpha (14 Nov), and noticed that none of the patches th... Stilez y
09:07 AM pfSense Packages Bug #3942: bind - allow starting named with "-4" argument: As noted above, fixed over half year ago. Kill Bill
07:36 AM Bootstrap Bug #5440 (Feedback): system_usermanager_settings.php - When no Auth Server is defined, it should default to Local Database: PR 2063 applied
The error seems to go back to at least pfSense 2.0 so please test carefully. Anonymous
04:59 AM Bootstrap Bug #5440: system_usermanager_settings.php - When no Auth Server is defined, it should default to Local Database: this might to work: https://github.com/pfsense/pfsense/pull/2063
on a related note:... jeroen van breedam
03:38 AM Bug #4463: Fix the NTPD Access Restrictions / and other NTPD related issues, including GPS: ... Kill Bill
12:59 AM Bug #5441 (Confirmed): Unbound config does not bind to CARP IP: Unbound seems to have lost all knowledge of CARP IPs, they no longer show up in the interfaces list. Chris Buechler
12:54 AM Bug #5442 (Confirmed): Upgraded CARP IPs fail HTTP REFERER check: Chris Buechler

11/13/2015

11:59 PM Bootstrap Bug #5443: Package LADVD display wrong text in gui.: I have hard time understanding what "incorrect text" is shown where, even with the screenshot. Kill Bill
09:10 PM Bootstrap Bug #5443: Package LADVD display wrong text in gui.: After installing the LADVD package, its webpage (Services->LADVD) displays incorrect text.
The page is generated by ... Anonymous
01:34 PM Bootstrap Bug #5443: Package LADVD display wrong text in gui.: screenshots would be nice. Jim Thompson
01:32 PM Bootstrap Bug #5443 (Resolved): Package LADVD display wrong text in gui.: The second bit of text is correct, but the description appears wrong. This might impact multiple packages:
Enable L... Jeremy Porter
09:11 PM Todo #5444 (Resolved): Update system information widget to use new base package update process: Anonymous
03:54 PM Feature #4321: Enable IPv6 for miniupnpd: Looks like a bug in miniupnpd to me: https://github.com/miniupnp/miniupnp/issues/160 Daniel Becker
03:32 PM Feature #4321: Enable IPv6 for miniupnpd: There's this but it's commercial stuff, though they offer some trial:
http://www.qacafe.com/products/cdrouter/
ht... Kill Bill
02:54 PM Feature #4321: Enable IPv6 for miniupnpd: It's possible. I can't find a local client program that claims IPv6 UPnP support to test with aside from upnpc and it... Jim Pingle
02:25 PM Feature #4321: Enable IPv6 for miniupnpd: Could it be trying to prefix-match against the link-local address? Daniel Becker
02:16 PM Feature #4321: Enable IPv6 for miniupnpd: The daemon appears to have IPv6 active now and it sees an IPv6 SSDP message but it doesn't like it for some reason. M... Jim Pingle
01:43 PM Bug #5329: XMLRPC HA sync is not working with https: Tried turning off config sync over HTTPS, still get errors, will capture some traffic in a bit:
A communications err... Jeremy Porter
01:27 PM Bug #5378: Intel x710 10GbE NIC doesn't work (no carrier): status: no carrier persists in ifconfig after configuring and bringing up the interface.
I've purchased a support... Matt Bowman
01:08 PM Bug #5378: Intel x710 10GbE NIC doesn't work (no carrier): Can you provide details of what you are observing? If there an error message displayed when you try to bring the inte... Matthew Smith
12:35 PM Bug #5378: Intel x710 10GbE NIC doesn't work (no carrier): http://www.intel.com/support/network/adapter/x710/sb/CS-035281.htm
doesn't seem to like other SFP's but that doesn... Matt Bowman
12:29 PM Bug #5378: Intel x710 10GbE NIC doesn't work (no carrier): I've testing FreeBSD 10.2 with the same behavior. I do not have another SFP to try. Matt Bowman
01:26 PM Bug #5442 (Resolved): Upgraded CARP IPs fail HTTP REFERER check: Opening web browser to carp IP results in HTTP_REFERER error. This worked correctly in 2.2.5
An HTTP_REFERER was ... Jeremy Porter
01:23 PM Bug #5441 (Resolved): Unbound config does not bind to CARP IP: After upgrading a working 2.2.5 system, there was no name resolution on the LAN. Lan is set to query the Carp VIP fo... Jeremy Porter
12:58 PM Bug #3733 (Resolved): Certificate manager doesn't allow wildcards in Subject Alternative Names: Works. I can make an FQDN SAN and it ends up in the cert... Jim Pingle
12:50 PM Todo #5219 (Resolved): EAP-RADIUS selection for IKEv2 Mobile IPsec should warn if the selected authentication backend is not a RADIUS server.: Seems to be solid now, I can't coerce it into a broken configuration either way. Jim Pingle
12:46 PM Bug #3383 (Resolved): Web GUI becomes slow or unusable if the LDAP server used for GUI auth is unreachable: I've tested this on 2.2 and again now on 2.3, I think this is as close as we're going to get. With the server timeout... Jim Pingle
12:39 PM Bootstrap Bug #5440 (Resolved): system_usermanager_settings.php - When no Auth Server is defined, it should default to Local Database: On system_usermanager_settings.php when there is no Auth Server defined in config.xml, the drop-down for Authenticati... Jim Pingle
12:25 PM Bug #4178: IPsec leftsubnet changed to 0.0.0.0 with Cisco unity plugin active: Adding some analysis for the sake of documentation. The ticket was assigned to me and I'm not sure exactly how much... Matthew Smith
11:57 AM Bootstrap Bug #5433 (Resolved): diag_logs.php - Line wrapping issues with long unbroken lines: Looks good here now, wrapping is happening only where it should and there is no more horizontal scroll, thanks! Jim Pingle
09:42 AM Bootstrap Bug #5433 (Feedback): diag_logs.php - Line wrapping issues with long unbroken lines: Addressed in PR #2062 now merged. Anonymous
01:47 AM Bootstrap Bug #5433: diag_logs.php - Line wrapping issues with long unbroken lines: please check https://github.com/pfsense/pfsense/pull/2062
this works on my home setup, tested on chrome&firefox; n... jeroen van breedam
11:55 AM Bug #5438 (Resolved): Dashboard upgrade code is dropping all widgets in some cases: I updated a few systems here (and reverted a config and updated it again) and it seem to be retaining the widgets now... Jim Pingle
09:48 AM Bug #5438 (Feedback): Dashboard upgrade code is dropping all widgets in some cases: Upgrade script amended to accommodate 2.3-Alpha with config file versions < 12.7 Anonymous
07:08 AM Bug #5438 (Resolved): Dashboard upgrade code is dropping all widgets in some cases: Before the last upgrade:... Jim Pingle
09:35 AM Bootstrap Todo #5439 (Feedback): Revise installed package widget and page: Completed as described Anonymous
08:59 AM Bootstrap Todo #5439 (Resolved): Revise installed package widget and page: Need to accommodate packages that are configured but not fully installed
Change icons to font awesome
Add actions t... Anonymous
08:22 AM Bug #5421 (Resolved): IPsec traffic does not pass on enc0 unless pass rules are added for the external IP address of the far-side IPsec endpoint: Jim Thompson
08:16 AM pfSense Packages Bug #3343: (re)starting freeradius service throws "The command '/usr/local/etc/rc.d/radiusd.sh stop' returned exit code '1', the output was 'radiusd not running?'": Adrian Lewis wrote:
> this issue stops freeradius from starting back up.
No, it absolutely does not. You have dif... Kill Bill
08:10 AM pfSense Packages Bug #3343: (re)starting freeradius service throws "The command '/usr/local/etc/rc.d/radiusd.sh stop' returned exit code '1', the output was 'radiusd not running?'": I have this problem too.
Unfortunately this isn't a non-issue. In the scenario where pfsense panics or otherwise d... Adrian Lewis
06:30 AM Bug #5263 (Feedback): Installed Packages widget causes index.php to hang: Applied in changeset pfsense:commit:008d4dd8773978ffa7910b98549c23a951459336. Renato Botelho
02:11 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: Confirmed working here. Thank you!
Kill Bill: Actually, I chose the latest snapshot, the same day I got the repl... Jonatan Hazell

11/12/2015

09:11 PM Feature #5437 (Closed): Auto Config Backup Stats display latest backup date-time: The stats page displays all the hosts for a customer and the number of backups currently stored.
It would be handy i... Phillip Davis
06:23 PM Bug #4780: max_input_vars limit reached with aliases having >1000 members: URL tables are not an option in some cases such as an outbound NAT pool where you have to use a Host Alias. If you ne... Steve Wheeler
06:19 PM Bootstrap Bug #5433: diag_logs.php - Line wrapping issues with long unbroken lines: One solution is to add word break opportunity tags every few character to allow the strings to break even though ther... Anonymous
06:15 PM Bootstrap Bug #5433 (Assigned): diag_logs.php - Line wrapping issues with long unbroken lines: The time column is good, still have a wrapping issue with long unbroken lines like these:... Jim Pingle
04:36 PM Bootstrap Bug #5433: diag_logs.php - Line wrapping issues with long unbroken lines: there's still the issue of the horizontal scrollbar.
i came across a PR for releng2_2 that had this solution for i... jeroen van breedam
04:00 PM Bootstrap Bug #5433: diag_logs.php - Line wrapping issues with long unbroken lines: Applied in changeset pfsense:commit:67bfaf25c99526f5934085b680f96a6aaac71737. Anonymous
03:56 PM Bootstrap Bug #5433 (Feedback): diag_logs.php - Line wrapping issues with long unbroken lines: Fixed as requested. Anonymous
11:32 AM Bootstrap Bug #5433 (Resolved): diag_logs.php - Line wrapping issues with long unbroken lines: Looks like if there is a log line long enough it causes the timestamp column to wrap, too, which negatively impacts t... Jim Pingle
06:17 PM Bootstrap Bug #5436 (Resolved): interfaces_groups_edit.php - Group members incorrectly stored as "Array, Array" when saving: Seems to work fine here now, thanks! Jim Pingle
03:45 PM Bootstrap Bug #5436 (Feedback): interfaces_groups_edit.php - Group members incorrectly stored as "Array, Array" when saving: Fixed as described Anonymous
02:00 PM Bootstrap Bug #5436 (Resolved): interfaces_groups_edit.php - Group members incorrectly stored as "Array, Array" when saving: When adding or editing an interface group on interfaces_groups_edit.php the group members are incorrectly stored as "... Jim Pingle
06:16 PM Bootstrap Bug #5435 (Resolved): interfaces_assign.php - "I/F" on page buttons is unnecessary: Looks better, thanks! Jim Pingle
03:45 PM Bootstrap Bug #5435 (Feedback): interfaces_assign.php - "I/F" on page buttons is unnecessary: Gone! Anonymous
01:56 PM Bootstrap Bug #5435 (Resolved): interfaces_assign.php - "I/F" on page buttons is unnecessary: The action buttons to Add and Delete on interfaces_assign.php all have "I/F" after them, and it doesn't appear to be ... Jim Pingle
03:02 PM pfSense Packages Bug #5250 (Resolved): ACB backup time should display local time: Seems fine all around here as well. Closing this out. Jim Pingle
02:58 PM pfSense Packages Bug #5250: ACB backup time should display local time: Works. I guess all set now. :) Kill Bill
02:50 PM pfSense Packages Bug #5250: ACB backup time should display local time: Applied in changeset commit:13fcabcbb24889a43afb3748bdda5e9905de1fe5. Jim Pingle
02:46 PM pfSense Packages Bug #5250: ACB backup time should display local time: Went ahead and fixed it up there, too. It wasn't difficult to accommodate, better off this way anyhow. Jim Pingle
02:00 PM pfSense Packages Bug #5250: ACB backup time should display local time: Yeah, deleting works now as well. Probably should nuke the {$_REQUEST['rmver']} from the savemsg on line 196, since i... Kill Bill
01:50 PM pfSense Packages Bug #5250 (Feedback): ACB backup time should display local time: Applied in changeset commit:a9caf736867d5df0ff3b82c9e8500318832fa537. Jim Pingle
01:43 PM pfSense Packages Bug #5250: ACB backup time should display local time: OK fix pushed. I tested and re-tested on 2.0.x and 2.1 as well, worked OK everywhere. Changing the firewall time zone... Jim Pingle
01:39 PM pfSense Packages Bug #5250 (Assigned): ACB backup time should display local time: Looks like a small-ish bug, when deleting it wants the old TS, I'll keep working on it. Jim Pingle
01:21 PM pfSense Packages Bug #5250: ACB backup time should display local time: Jim P wrote:
> went a fairly standard datestamp output format, feel free to submit suggestions for a different post-... Kill Bill
01:10 PM pfSense Packages Bug #5250: ACB backup time should display local time: Applied in changeset commit:683f9eced9675528b61558ed327be89168b5d33f. Jim Pingle
12:59 PM pfSense Packages Bug #5250: ACB backup time should display local time: I just pushed a fix, give it a shot. Went went a fairly standard datestamp output format, feel free to submit suggest... Jim Pingle
12:15 PM pfSense Packages Bug #5250: ACB backup time should display local time: LOLz... Well, unless you have had a DST switch in past two weeks, your server seems to be some sort of time travel ma... Kill Bill
12:05 PM pfSense Packages Bug #5250: ACB backup time should display local time: I meant I fixed the assignment :-)
Jim Pingle
11:56 AM pfSense Packages Bug #5250: ACB backup time should display local time: Jim P wrote:
> fixed now
It's now 7 hours off, instead of 6 previously.
!http://s24.postimg.org/4sark1kk5/Scr... Kill Bill
09:23 AM pfSense Packages Bug #5250: ACB backup time should display local time: That was when it was waiting for feedback from you, it should have been moved back after we got the additional info, ... Jim Pingle
09:21 AM pfSense Packages Bug #5250: ACB backup time should display local time: Uhm. No idea why this bug got assigned to me. Nothing I could fix here. Kill Bill
02:22 PM Bug #4166: filterdns generates floods of DNS requests when there are significant jumps in system time: The solution is likely to do something like this (moving the "collect the current time" part inside the loop)
The wa... Jim Thompson
01:12 PM pfSense Packages Feature #5434: Let's Encrypt pfSense support: Yeah, it looks like it needs to mature.
I will stay tuned and check what is going on once in a while.
Thanks a ... Federico Castagnini
01:02 PM pfSense Packages Feature #5434: Let's Encrypt pfSense support: We're in the Lets encrypt beta, but won't be looking at this until after 2.3. Jeremy Porter
12:55 PM pfSense Packages Feature #5434: Let's Encrypt pfSense support: Federico Castagnini wrote:
> Did anyone dig into it?
Yeah, I did.
- the automated thing lacks lighttpd suppo... Kill Bill
12:47 PM pfSense Packages Feature #5434 (Resolved): Let's Encrypt pfSense support: So there is this thing called https://letsencrypt.org and it is planned to launch in the week of November 16, 2015.
... Federico Castagnini
12:34 PM Bug #4268: changes in strongswan config don't apply to SAD or SPD: I'm not sure I see this as a bug. I don't think you >want< the behavior that SPD and SAD can change. Rather, you wi... Jim Thompson
12:29 PM Bug #5427: Crash reports submitted on 2.3 are empty on the server: we need an automated test for this as well.
because it breaks a lot. Jim Thompson
07:33 AM Bug #5427 (Resolved): Crash reports submitted on 2.3 are empty on the server: I submitted two crash reports from a 2.3 system, one last night and a test one this morning. GUI on the client claims... Jim Pingle
11:33 AM Bootstrap Bug #5400 (Resolved): diag_ping.php - Following link to pre-fill page results in an incorrect error: Looks good here, it's behaving as expected now. No errors on load and it does not take action until the form is submi... Jim Pingle
11:32 AM Bootstrap Feature #5422 (Resolved): Provide "Add to top" buttons where required: Looks good Jim Pingle
11:31 AM Todo #4225: Lets improve the webGUI: bump Jim Thompson
11:28 AM Bug #4422: /etc/rc.initial doesn't handle -c parameters: looks fine to me. assigned to renato. Jim Thompson
11:25 AM Feature #4321: Enable IPv6 for miniupnpd: assigned to cmb for followup Jim Thompson
11:25 AM Todo #5431: Change "Available Widgets" on dashboard to a icon with text rather than large black bar taking up a lot of space: But please don't change it yet :) Anonymous
11:23 AM Todo #5431 (Assigned): Change "Available Widgets" on dashboard to a icon with text rather than large black bar taking up a lot of space: Jim Thompson
11:22 AM Todo #5431: Change "Available Widgets" on dashboard to a icon with text rather than large black bar taking up a lot of space: assigning to jdillard, because this is CSS-land Jim Thompson
09:51 AM Todo #5431: Change "Available Widgets" on dashboard to a icon with text rather than large black bar taking up a lot of space: It is possible, but please remember that one of the biggest advantages to the Bootstrap GUI is standardization. Every... Anonymous
09:46 AM Todo #5431: Change "Available Widgets" on dashboard to a icon with text rather than large black bar taking up a lot of space: Can it perhaps be a floating panel instead of "embedded" one on the page?
Also, might as well remove "Status: Da... Ivor Kreso
09:41 AM Todo #5431 (Feedback): Change "Available Widgets" on dashboard to a icon with text rather than large black bar taking up a lot of space: The available widgets panel is a "standard" Bootstrap panel that gets its styling from CSS. It needs to remain a pane... Anonymous
09:36 AM Todo #5431 (Resolved): Change "Available Widgets" on dashboard to a icon with text rather than large black bar taking up a lot of space: Please change "Available Widgets" black bar to a small icon with "Available Widgets" or just "Widgets" I'd put the ic... Ivor Kreso
11:21 AM Bug #5408: broken TCP checksums with IPv6 and route-to/reply-to on gif interfaces: fixed here.
reassigning to cmb Jim Thompson
01:58 AM Bug #5408 (Feedback): broken TCP checksums with IPv6 and route-to/reply-to on gif interfaces: this looks to have fixed the remainder of this issue.
https://github.com/pfsense/FreeBSD-src/commit/2e02b14e19fd0fe... Chris Buechler
11:13 AM pfSense Packages Bug #4369: patch fetching doesn't work if pfsense is behind proxy: https://github.com/pfsense/pfsense-packages/pull/1156 should work with 2.1.x as well. Kill Bill
10:21 AM pfSense Packages Bug #4369: patch fetching doesn't work if pfsense is behind proxy: You can use this on pfSense 2.2 and newer:... Kill Bill
10:44 AM Bug #5426 (Duplicate): Widgets config lost after upgrade: Duplicate of #5432 Renato Botelho
07:03 AM Bug #5426: Widgets config lost after upgrade: Steve Beaver wrote:
> It looks like there was an attempt to accommodate that, but it must not be working as intend.
>... Renato Botelho
06:58 AM Bug #5426: Widgets config lost after upgrade: Jim P wrote:
> Interesting, on mine my widgets were all there post-upgrade, but some I had not added were also prese... Renato Botelho
06:57 AM Bug #5426: Widgets config lost after upgrade: It looks like there was an attempt to accommodate that, but it must not be working as intend.... Anonymous
06:42 AM Bug #5426: Widgets config lost after upgrade: Interesting, on mine my widgets were all there post-upgrade, but some I had not added were also present and collapsed. Jim Pingle
06:32 AM Bug #5426 (Duplicate): Widgets config lost after upgrade: After upgrade from 2.2 to 2.3, all widgets show up in closed state in dashboard. After change config and save I could... Renato Botelho
10:33 AM Bootstrap Bug #5432 (Resolved): Dashboard widget config breaks on upgrade: Migration script added to /etc/inc/upgrade_config.inc Anonymous
10:31 AM Bootstrap Bug #5432 (Resolved): Dashboard widget config breaks on upgrade: The widget config on 2.3 differs from previous config formats.
An upgrade script is required to migrate it on upgr... Anonymous
09:32 AM Todo #5430: Rename "Firmware" section to Upgrade: Firmware/update system is being replaced in the next day or two. We will probably drop the word "firmware" when doing... Anonymous
09:25 AM Todo #5430 (Resolved): Rename "Firmware" section to Upgrade: I'd rename System > Firmware section to Updates. That includes renaming all mentions of firmware to update / updates ... Ivor Kreso
09:19 AM Bug #5421: IPsec traffic does not pass on enc0 unless pass rules are added for the external IP address of the far-side IPsec endpoint: Works for me as well. Jim Thompson
08:12 AM Bug #5421 (Feedback): IPsec traffic does not pass on enc0 unless pass rules are added for the external IP address of the far-side IPsec endpoint: False alarm... seems it does work. Must have missed the last snap and not been picked up and applied after I synced u... Jim Pingle
06:39 AM Bug #5421 (Confirmed): IPsec traffic does not pass on enc0 unless pass rules are added for the external IP address of the far-side IPsec endpoint: Updated to the latest snap this morning and did a gitsync for good measure, I still needed the rule. I don't have any... Jim Pingle
03:42 AM Bug #5421 (Feedback): IPsec traffic does not pass on enc0 unless pass rules are added for the external IP address of the far-side IPsec endpoint: fixed with what I just pushed, leaving for additional confirmation. Chris Buechler
09:09 AM Bug #5429 (Resolved): Logo badly cropped: In 2.3 pfSense logo in upper left corner looks like it's interfering with window margin. However, it seems that the l... Ivor Kreso
07:44 AM Bug #5428 (Resolved): Frequent IPv6 panic on 2.3 - May be log-related: Hit a panic on 2.3 twice now, ping me for the full trace.... Jim Pingle
07:36 AM Feature #935: User manager RADIUS authentication method: I don't have that setup handy any more but IIRC it was something about making NPS send the Class as a string and not ... Jim Pingle
07:35 AM Feature #935: User manager RADIUS authentication method: Jim P wrote:
> Turned out to be a relatively minor/safe change. Unlike LDAP, RADIUS would fail to grab the groups if... Elliot Smith
06:36 AM pfSense Packages Bug #5117: HAVP fails to start after claimed to be successfull install 2.2.4: Fixed. Kill Bill
06:21 AM pfSense Packages Bug #3343: (re)starting freeradius service throws "The command '/usr/local/etc/rc.d/radiusd.sh stop' returned exit code '1', the output was 'radiusd not running?'": This is a complete non-issue. Restart = stop + start. If it's not running yet, then stop will "fail" ('radiusd not ru... Kill Bill
05:02 AM Todo #5370 (Assigned): Review usage of IPsec-related sysctl OIDs in GUI and backend code: I removed fastforwarding from config upgrade code. Looks like that was the last remnant of these.
We need config ... Chris Buechler

11/11/2015

11:51 PM Bootstrap Bug #5411 (Resolved): Lost source negation on firewall_nat_edit.php: works Chris Buechler
12:00 PM Bootstrap Bug #5411: Lost source negation on firewall_nat_edit.php: Applied in changeset pfsense:commit:0dbf9cbe3fe176427350efb615504115a2b6b9bb. Phillip Davis
06:50 AM Bootstrap Bug #5411: Lost source negation on firewall_nat_edit.php: Applied in changeset pfsense:commit:9a3b6f7fdda6057d3f3614223c0bb42ecd38be7a. Phillip Davis
06:39 AM Bootstrap Bug #5411 (Feedback): Lost source negation on firewall_nat_edit.php: Fixed y Phil Davis PR 5058 Anonymous
06:29 AM Bootstrap Bug #5411: Lost source negation on firewall_nat_edit.php: Pull request https://github.com/pfsense/pfsense/pull/2058
I made the "not" checkboxes have the label "Invert match" ... Phillip Davis
06:05 AM Bootstrap Bug #5411: Lost source negation on firewall_nat_edit.php: Source "not" is there on 2.2.5 - Firewall->NAT Port Forward, Edit an entry. Click the "Advanced" button to show the S... Phillip Davis
04:20 AM Bootstrap Bug #5411: Lost source negation on firewall_nat_edit.php: i cannot find the "not" option for source in 2.2.5 or 2.1.4
jeroen van breedam
11:33 PM Bug #4816 (Confirmed): Do not overwrite custom /etc/dh-parameters.* on upgrade: these are still appearing in the full update files. Chris Buechler
11:27 PM Bug #4850: RRDGraphs suddenly stop recording: Dave: is that something that's replicable on your system? The logs aren't in config backups. If it is replicable on y... Chris Buechler
11:12 PM Feature #2361 (Resolved): router adv. daemon only allows for one subnet / limited options: This was implemented quite some time ago in 2.2. Chris Buechler
11:01 PM Bug #5424 (Resolved): outbound state not created for TCP IPv6 traffic matching route-to rule: IPv6 TCP traffic passed in by a rule specifying route-to on the ingress interface doesn't get a state created on the ... Chris Buechler
10:54 PM Bug #5408: broken TCP checksums with IPv6 and route-to/reply-to on gif interfaces: The original issue is still applicable with gif interfaces, they have the same broken checksum on every TCP packet. I... Chris Buechler
03:08 PM Bug #5408 (Confirmed): broken TCP checksums with IPv6 and route-to/reply-to on gif interfaces: There is still a problem here. It works for traffic from the firewall itself but not for traffic flowing through that... Jim Pingle
08:24 AM Bug #5408: broken TCP checksums with IPv6 and route-to/reply-to on gif interfaces: Of two affected systems here both have been fixed by the merge. Leaving open for more feedback but it looks OK to me ... Jim Pingle
07:04 AM Bug #5408 (Feedback): broken TCP checksums with IPv6 and route-to/reply-to on gif interfaces: FYI, Kristof did the MFC at r290669. I've merged it into our FreeBSD-src repo and kicked off new builds. Could you pl... Renato Botelho
04:20 AM Bug #5408: broken TCP checksums with IPv6 and route-to/reply-to on gif interfaces: Kristof mentioned he is going to MFC 290161 today. After that happens I'm going to merge it into our branch and build... Renato Botelho
09:40 PM Bootstrap Bug #5347 (Resolved): firewall_nat_out_edit.php issues: fixed Chris Buechler
08:23 PM Bug #5409 (Rejected): rtsold not passing gateway, breaking DHCP6 and SLAAC WANs: this does actually work correctly, problem elsewhere. Chris Buechler
07:29 PM Bug #5409: rtsold not passing gateway, breaking DHCP6 and SLAAC WANs: in some circumstances, it does end up populating the file correctly, so the patch is there. It's failing to work in s... Chris Buechler
12:29 PM Bug #5409: rtsold not passing gateway, breaking DHCP6 and SLAAC WANs: I'll take a look, but patch was applied, https://github.com/pfsense/FreeBSD-src/commit/2ff6c3a5038c2d86e80402ae26d87e... Renato Botelho
08:11 PM Bug #5364 (Resolved): IPsec status pages show all time units as seconds: Looks good, thanks! Not a big deal but most people don't recognize tens of thousands of seconds at a glance, and it's... Chris Buechler
04:40 PM Bug #5364 (Feedback): IPsec status pages show all time units as seconds: Applied in changeset commit:00ae4060fadd581e8bea44fc2c45e9236615849d. Matthew Smith
12:36 PM Bug #5364: IPsec status pages show all time units as seconds: as suggested in chat, "xxxxxx seconds (hh:mm:ss)" seems best.
assigned
Jim Thompson
08:04 PM Bug #5415: pfSense attempts to display aliases on mouse over, which hangs the UI if there are significant numbers of IP addresses: That code should limit it to 100 entries. The limit is easily changed - I just picked 100 for no particular reason. Phillip Davis
12:04 PM Bug #5415: pfSense attempts to display aliases on mouse over, which hangs the UI if there are significant numbers of IP addresses: Thanks.
Phillip - the code you've linked to appears to limit the popup size to 200, which is along the lines of my... Andrew -
10:54 AM Bug #5415: pfSense attempts to display aliases on mouse over, which hangs the UI if there are significant numbers of IP addresses: I did some code for RELENG_2_2 pfSense 2.2.5 just because it turned out to be quite easy. The sample code is guiconfi... Phillip Davis
07:15 AM Bug #5415: pfSense attempts to display aliases on mouse over, which hangs the UI if there are significant numbers of IP addresses: My guess is that the pfBlocker widget will need to be updated for 2.3 and that would include a change to the jQuery a... Anonymous
07:03 AM Bug #5415: pfSense attempts to display aliases on mouse over, which hangs the UI if there are significant numbers of IP addresses: Thanks for your reply.
It certainly does it on 2.2.4 and 2.2.5, most probably other 2.2.x versions. I haven't tri... Andrew -
06:51 AM Bug #5415: pfSense attempts to display aliases on mouse over, which hangs the UI if there are significant numbers of IP addresses: Which version of pfSense is this on? If it's 2.2.x, have you tried 2.3? Jim Pingle
06:49 AM Bug #5415 (Resolved): pfSense attempts to display aliases on mouse over, which hangs the UI if there are significant numbers of IP addresses: Hi

If you hover over an alias on e.g. the dashboard within pfSense, pfSense attempts to display the IP addresses ... Andrew -
04:36 PM Bug #5423 (Resolved): open-vm-tools fails because of missing libglib-2.0.so.0: open-vm-tools on 2.3 fails with: ... Chris Buechler
03:44 PM Bootstrap Feature #5422 (Feedback): Provide "Add to top" buttons where required: Completed and tested. Anonymous
03:31 PM Bootstrap Feature #5422 (Resolved): Provide "Add to top" buttons where required: firewall_nat.php
firewall_nat_out.php Anonymous
03:43 PM Todo #4858: Finish/fix CARP uniqid changes: See Bug #4642 where i uploaded the rc.carpmaster and rc.carpbackup files, which should start or stop OpenVPN only on ... Cullen Trey
03:32 PM Bug #3556 (Resolved): WAN interface status missing data for pppoe ipv6 connection: thanks, thought that was fixed but didn't have a system handy to check at the time. Chris Buechler
05:51 AM Bug #3556: WAN interface status missing data for pppoe ipv6 connection: I just checked this on 2.2.5 and it is no longer an issue. Adrien Carlyle
03:28 PM Bootstrap Bug #5419 (Resolved): firewall_rules.php - Drag and drop of floating rules erases all rules on other interfaces: Seems to work now. Saves the intended order and doesn't remove other rules. Jim Pingle
03:27 PM Bootstrap Bug #5419 (Feedback): firewall_rules.php - Drag and drop of floating rules erases all rules on other interfaces: Removed debugging and tested. Anonymous
03:16 PM Bootstrap Bug #5419 (Assigned): firewall_rules.php - Drag and drop of floating rules erases all rules on other interfaces: It doesn't erase other rules now but it also appears to have no effect. Clicking Save reverts the rules to their orde... Jim Pingle
01:48 PM Bootstrap Bug #5419 (Feedback): firewall_rules.php - Drag and drop of floating rules erases all rules on other interfaces: Fixed by changing rule filter method. Anonymous
01:33 PM Bootstrap Bug #5419: firewall_rules.php - Drag and drop of floating rules erases all rules on other interfaces: Updating the title/descr to reflect that it happens on any interface. Jim Pingle
12:12 PM Bootstrap Bug #5419 (Resolved): firewall_rules.php - Drag and drop of floating rules erases all rules on other interfaces: Drag and drop to reorder rules on the Floating tab of firewall_rules.php will blow away rules for all other interface... Jim Pingle
03:26 PM Bug #5350 (Assigned): 2.3 IPsec logging - silent can't be configured, issues with defaults: Looks like this commit broke upgrade_config.inc:... Jim Pingle
03:20 PM Bug #5350 (Feedback): 2.3 IPsec logging - silent can't be configured, issues with defaults: Applied in changeset commit:c53e411fc458a59d39662e955b0677cdb37211c7. Matthew Smith
02:41 PM Bug #5257 (Feedback): tcpdump is not working with zerocopy enabled (net.bpf.zerocopy_enable=1): Workaround committed to 2.3.
Awaiting the next tcpdump release (and the hostapd fix) to enable the zero copy buffe... Luiz Souza
02:36 PM Bug #4692: CODELQ scheduler defaults to incorrect "target" and "interval" values.: The codel code (reviewed and) committed in FreeBSD is now backported to 2.3. Luiz Souza
02:10 PM Feature #5387: dhcp server RRD graph: thanks for merging both PR's.
i'll read about the flaws / bugs / problems when you folks find the time to check it... jeroen van breedam
01:01 PM Bootstrap Bug #5418 (Resolved): firewall_rules.php - Schedule value of "none" uses a value of 0 rather than blank: Looks good now, schedule goes back to empty/blank on save if it was 0, and a new rule doesn't show a schedule (as exp... Jim Pingle
01:00 PM Bootstrap Bug #5418: firewall_rules.php - Schedule value of "none" uses a value of 0 rather than blank: Applied in changeset pfsense:commit:9d713b38d11242b93b41831297a8084c66e6803b. Anonymous
12:49 PM Bootstrap Bug #5418 (Feedback): firewall_rules.php - Schedule value of "none" uses a value of 0 rather than blank: Fixed as described. Anonymous
12:08 PM Bootstrap Bug #5418 (Resolved): firewall_rules.php - Schedule value of "none" uses a value of 0 rather than blank: firewall_rules.php - Schedule value of "none" uses a value of 0 rather than blank, so rules show a schedule of "0" on... Jim Pingle
12:59 PM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: this is not showing up to be tracked for 2.3 or future Michael Kellogg
12:57 PM Bug #4081: Apinger reporting incorrect latency: this does not show up to be tracked for 2.3
Michael Kellogg
12:42 PM Bug #5416 (Resolved): system_usermanager.php - Mass delete button missing: Works Jim Pingle
11:50 AM Bug #5416: system_usermanager.php - Mass delete button missing: Applied in changeset commit:64c3161521991761dcfc9cb6ca0b648e552cdcd9. Anonymous
11:42 AM Bug #5416 (Feedback): system_usermanager.php - Mass delete button missing: Button added as requested Anonymous
07:43 AM Bug #5416 (Resolved): system_usermanager.php - Mass delete button missing: There are checkboxes in front of the users on system_usermanager.php to mark them for mass/multi delete but the actua... Jim Pingle
12:42 PM Bug #5386 (Resolved): Router Advertisements changing interface goes to DHCPv6 Server tab: Looks good here. If I'm viewing RA and switch interfaces it stays on RA on the other interfaces. DHCPv6 goes to DHCPv6. Jim Pingle
12:28 PM Bug #5386 (Feedback): Router Advertisements changing interface goes to DHCPv6 Server tab: Anonymous
12:39 PM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: Fixing this likely requires an in-kernel RSS (Toeplitz) implementation. Such a thing is coming for FreeBSD (Adrian ... Jim Thompson
12:35 PM Bug #4702: kernel panic with AES-NI: Ermal's patches didn't fix it, but my system at home (which was quite crashy, but I have a 1Gbps connection) seems mu... Jim Thompson
12:29 PM pfSense Packages Bug #5417 (Rejected): squid "refresh patterns" adding range_offset_limit -1 globally: refresh_patterns are gone in 2.3 Jim Thompson
10:39 AM pfSense Packages Bug #5417: squid "refresh patterns" adding range_offset_limit -1 globally: All predefined refresh_patterns crap will be gone from next version, as already noted on the forums. Meanwhile, simpl... Kill Bill
10:35 AM pfSense Packages Bug #5417 (Rejected): squid "refresh patterns" adding range_offset_limit -1 globally: On "local cache" tab, when you enable any of the hardcoded refresh patterns (windows update, symantec, avira, avast),... Heiler Bemerguy
12:29 PM Bug #5421 (Resolved): IPsec traffic does not pass on enc0 unless pass rules are added for the external IP address of the far-side IPsec endpoint: IPsec traffic does not pass on enc0 unless pass rules are added for the external IP address of the far-side IPsec end... Jim Pingle
09:20 AM Bootstrap Bug #5400 (Feedback): diag_ping.php - Following link to pre-fill page results in an incorrect error: Applied in changeset pfsense:commit:ed69a49666fa5f7e9fe1366d9f176ffba15536f1. Jim Pingle
09:08 AM Bootstrap Bug #5400: diag_ping.php - Following link to pre-fill page results in an incorrect error: I'll take this, looks like there is a similar problem with traceroute, I've got a fix. Jim Pingle
08:55 AM Bootstrap Bug #5400 (Confirmed): diag_ping.php - Following link to pre-fill page results in an incorrect error: This shouldn't be taking the action on following the link, it should only be pre-filling the form. Automatically taki... Jim Pingle
08:53 AM Bootstrap Bug #5392 (Resolved): status_rrd_graph.php - RRD graph tab "VPN" not showing when it should be active: VPN option is there on all tabs now when an RA OpenVPN is present, and it not there when there is no RA VPN. Working ... Jim Pingle
08:30 AM Bug #5351: Sanitze user input, even if restricted by html: Applied in changeset commit:9eb8cafaa7b720810a4c158061114e5f7951fefb. Anonymous
08:22 AM Bug #5351 (Feedback): Sanitze user input, even if restricted by html: Added input validation to this and other widgets that showed the same vulnerability. Anonymous
08:11 AM Todo #5338 (Resolved): Add -4 and -6 support to pfSense-upgrade script: This has been working fine for the last few weeks, I've used it regularly. Jim Pingle
07:52 AM Bootstrap Bug #5388 (Resolved): system_groupmanager_addprivs.php - Selection box should be much larger: Much better now, thanks! Jim Pingle
07:25 AM Bootstrap Bug #5388 (Feedback): system_groupmanager_addprivs.php - Selection box should be much larger: Merged Anonymous
07:45 AM Bootstrap Bug #5389 (Resolved): system_groupmanager.php & system_usermanager.php -- No means to remove assigned privileges: Removing individual privileges for users and groups works fine with that as far as I can see. Thanks!
Jim Pingle
07:41 AM Bug #4398 (Resolved): Userlist - No sorting anymore: List is definitely sorting in 2.3 now, tested it for that other ticket and again now.
The checkbox is there but th... Jim Pingle
07:38 AM Bug #4398 (Feedback): Userlist - No sorting anymore: Anonymous
07:35 AM Bug #4398: Userlist - No sorting anymore: User table (and many others throughout the system) now sortable.
See: #5405 Anonymous
07:29 AM Bootstrap Bug #5228 (Resolved): Empty space before (drop-down) field display value: Anonymous
07:28 AM Bootstrap Todo #5356 (Resolved): Refactor row toggle code in pages that use drag/drop sorting: Anonymous
07:27 AM Bootstrap Bug #5365 (Resolved): diag_logs_filter_dynamic.php not so dynamic: Anonymous
07:26 AM Bootstrap Bug #5385 (Resolved): guiconfig.inc display_top_tabs() breaks on long tab names: Anonymous
07:00 AM Bootstrap Bug #5412: Missing alias autocomplete on firewall_nat_edit.php source field: Applied in changeset pfsense:commit:3b05e7d9fbff571d3df0d95d134acf20b64fb335. Anonymous
06:57 AM Bootstrap Bug #5412 (Feedback): Missing alias autocomplete on firewall_nat_edit.php source field: Corrected a typo in the autocomplete spec Anonymous
06:40 AM Bootstrap Bug #5410 (Feedback): status_graph.php rate output blank most of the time: Function timer stepping on itself.
Fixed by Heper PR 2057 Anonymous
04:58 AM Bootstrap Bug #5410: status_graph.php rate output blank most of the time: https://github.com/pfsense/pfsense/pull/2057
jeroen van breedam
04:08 AM pfSense Packages Bug #4518: Pfsense 2.2 squid3 + negotiate_kerberos_auth: Cannot exactly see where's it missing?... Kill Bill
03:54 AM Todo #4672 (Feedback): Update igmpproxy to latest version: Done, igmpproxy-0.1_2,1 is available on 2.3 repo Renato Botelho
01:58 AM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: Can someone please add "DNS service interruption" to the portion of the title in brackets? It is also a main symptom,... ky41083 -
12:18 AM Bug #5413 (Confirmed): Reduce disruptions when changing DNS records from DHCP leases in Unbound: Chris Buechler
12:46 AM Bug #3163 (Feedback): XS4All IPv6 does not work: Can anyone on that ISP try with 2.2.5 and report back? Suspect this is something that's long since been fixed. Chris Buechler
12:44 AM Bug #4101 (Needs Patch): Mounting information lost upgrading from XenServer virtualized 2.1.5: Chris Buechler
12:36 AM Bug #5053 (Duplicate): Apinger Problem with VPN interface: duplicate of #4587 Chris Buechler
12:14 AM Bug #5053 (Confirmed): Apinger Problem with VPN interface: Chris Buechler
12:36 AM Bug #4587 (Confirmed): apinger doesnt come up when wan monitoring is disabled and vpn monitoring is on on boot: Chris Buechler
12:35 AM Bug #4636 (Closed): System - Firmware - Updater Settings - Firmware Branch behaviour is still completely braindead: this will be addressed in 2.3 as part of #5414, as the fields in question go away. Chris Buechler
12:34 AM Bug #5414 (Resolved): Update auto update URL options for pkg: The auto update URL settings on system_firmware_settings.php need updating for pkg. A custom URL is no longer applica... Chris Buechler
12:31 AM Bug #4805 (Feedback): Using FQDN and IP in alias causes static entries to be lost: this is probably fine in 2.2.5, please try and report back. Chris Buechler
12:27 AM Bug #4714 (Closed): syslogd unable to start with 'mixed' log types present: one of the log files in question was corrupt. if you encounter an affected log file again, please send it to me (cmb ... Chris Buechler
12:23 AM Bug #3306 (Resolved): a notification is not sent when a gateway is down: this definitely works (way too well in some cases, see #4031) Chris Buechler
12:21 AM Bootstrap Bug #5382 (Resolved): diag_ping.php source address selection not retained: fixed Chris Buechler
12:20 AM Bug #4396 (Duplicate): Lengthy unbound outage during restart when adding static DHCP leases: closing this in favor of #5413 which has better explanation of root cause. Chris Buechler
12:12 AM Bug #5319 (Feedback): Error message "No config named" in charon daemon: is this replicable for you? Not sure how a connection could go missing but actually be there in the conf file. Chris Buechler
12:07 AM pfSense Packages Bug #4862 (Needs Patch): HAVP won't start: HAVP has been removed from 2.3 Chris Buechler
12:05 AM Bug #5091 (Confirmed): In rule creation destination ports fields (from and to) are too small to read ports aliases names: this is much better in 2.3, though full length aliases (32 characters) still have about 8 characters cut off. Chris Buechler

11/10/2015

11:59 PM Bug #4993 (Confirmed): pf: divert(9) is not supported for IPv6: divert for IPv6 is missing in FreeBSD 10.x base versions. Until #4276 is fixed there isn't any point in fixing this a... Chris Buechler
11:54 PM Bug #4876 (Confirmed): Cannot define table: Cannot allocate memory with large table aliases: this seems to be even easier to replicate on 2.3. Take the attached config, restore it, and on boot it'll throw out:
... Chris Buechler
11:42 PM Bug #5413 (Resolved): Reduce disruptions when changing DNS records from DHCP leases in Unbound: The right way to handle local DNS changes, for Unbound at least, would basically be to do the opposite of what is bei... ky41083 -
11:06 PM Bootstrap Bug #5381 (Resolved): syntax error, unexpected ';' in /usr/local/www/wizard.php(156) : eval()'d code on line 3: Not sure how that never generated a crash report before. Works, thanks! Chris Buechler
11:01 PM Bootstrap Bug #5412 (Resolved): Missing alias autocomplete on firewall_nat_edit.php source field: The Source field on firewall_nat_edit.php doesn't autocomplete aliases. Chris Buechler
11:00 PM Bootstrap Bug #5411 (Resolved): Lost source negation on firewall_nat_edit.php: The "not" option for source on firewall_nat_edit.php no longer exists.
Chris Buechler
10:33 PM Todo #4672: Update igmpproxy to latest version: should be fine to switch to the stock FreeBSD port Chris Buechler
10:27 PM Bootstrap Bug #5410 (Resolved): status_graph.php rate output blank most of the time: The output of 'rate' to the right of the SVG graph on status_graph.php shows nothing most of the time. It does work t... Chris Buechler
10:10 PM Bug #5314 (Feedback): /etc/sshd script fails to restart SSH properly: there something atypical that triggers that? It appears the sigterm doesn't complete before starting it again, but no... Chris Buechler
09:59 PM Bug #5329 (Confirmed): XMLRPC HA sync is not working with https: Chris Buechler
08:00 PM Bug #4813 (Resolved): It's not possible to disable a static route that is set to use a gateway that is disabled using the edit dialogue.: works, thanks! Chris Buechler
07:56 PM Todo #4726 (Resolved): Remove zoneinfo.tgz, use stock FreeBSD's: Chris Buechler
07:55 PM Bug #5260 (Resolved): 2.3-ALPHA console option 13 upgrade hangs after installing the upgrade: Chris Buechler
07:52 PM Feature #4320 (Resolved): Enable port-in-use checking in miniupnpd: Chris Buechler
07:50 PM Feature #4411 (Resolved): add validation of Unbound advanced configuration: works, thanks! Chris Buechler
10:34 AM Feature #4411: add validation of Unbound advanced configuration: Thanks for your corrections. It looks like they were merged this morning.
Matthew Smith
07:43 PM Bug #5409 (Rejected): rtsold not passing gateway, breaking DHCP6 and SLAAC WANs: Looks like this patch for rtsol was dropped:
https://github.com/pfsense/pfsense-tools/blob/RELENG_2_2/patches/relen... Chris Buechler
06:36 PM Bootstrap Bug #5388: system_groupmanager_addprivs.php - Selection box should be much larger: would this be ok?
https://github.com/pfsense/pfsense/pull/2056 jeroen van breedam
06:21 PM Bug #5408: broken TCP checksums with IPv6 and route-to/reply-to on gif interfaces: Some relevant recent changes:
https://svnweb.freebsd.org/base?view=revision&revision=289703
https://svnweb.freebsd... Chris Buechler
05:27 PM Bug #5408 (Resolved): broken TCP checksums with IPv6 and route-to/reply-to on gif interfaces: TCP checksums on IPv6 traffic matching rules specifying route-to or reply-to end up with broken TCP checksums. Every ... Chris Buechler
05:51 PM Bootstrap Bug #5389 (Feedback): system_groupmanager.php & system_usermanager.php -- No means to remove assigned privileges: Merged and pushed. Anonymous
05:42 PM Bootstrap Bug #5389: system_groupmanager.php & system_usermanager.php -- No means to remove assigned privileges: its appears to be still 'open' on github jeroen van breedam
10:08 AM Bootstrap Bug #5389 (Assigned): system_groupmanager.php & system_usermanager.php -- No means to remove assigned privileges: Is that merged? This still isn't working Jim Pingle
09:19 AM Bootstrap Bug #5389 (Feedback): system_groupmanager.php & system_usermanager.php -- No means to remove assigned privileges: Fixed by PR 2047 Anonymous
05:43 PM Bootstrap Bug #5392 (Feedback): status_rrd_graph.php - RRD graph tab "VPN" not showing when it should be active: Anonymous
05:39 PM Bootstrap Bug #5392: status_rrd_graph.php - RRD graph tab "VPN" not showing when it should be active: should be ok for now, but needs a closer look. theres a work-around in one of my earlier commits:
https://github.c... jeroen van breedam
05:40 PM Bootstrap Bug #5400 (Feedback): diag_ping.php - Following link to pre-fill page results in an incorrect error: Fixed by heper:patch-2 PR: 1932 now merged. Anonymous
05:31 PM Bootstrap Bug #5400: diag_ping.php - Following link to pre-fill page results in an incorrect error: proposed fix:
https://github.com/pfsense/pfsense/pull/2055 jeroen van breedam
03:30 PM Feature #3410: Patch: Add Apple Open Directory memberUid support in group lookup: I have sense moved our system to Active Directory so I am unable to test #4923 against an Open Directory setup. I tho... Daniel Hazelbaker
02:43 PM Feature #3410 (Feedback): Patch: Add Apple Open Directory memberUid support in group lookup: I suspect this was actually solved by #4923 -- need feedback from OP or someone else with a similar setup. Jim Pingle
03:23 PM Todo #5370 (Feedback): Review usage of IPsec-related sysctl OIDs in GUI and backend code: 2.3 code was reviewed, no further use cases were found. Luiz Souza
03:09 PM Bug #4493 (Closed): Convert ipsec_transport_filterfix.diff to stable/10: I committed a different fix for issue #2993.
This patch isn't necessary anymore.
Fixed in 2.3. Luiz Souza
02:54 PM Bootstrap Bug #5405 (Resolved): Many pages - sorting missing: That one works now, too, thanks! Jim Pingle
02:50 PM Bootstrap Bug #5405: Many pages - sorting missing: Applied in changeset pfsense:commit:3eeb82dc97a29353c00f359de01604eb6558670e. Anonymous
02:48 PM Bootstrap Bug #5405 (Feedback): Many pages - sorting missing: status_lb_vs.php was missing thead/tbody tags. Now sorts correctly. Anonymous
02:33 PM Bootstrap Bug #5405 (Assigned): Many pages - sorting missing: All fixed but one now:
status_lb_vs.php - Column headers appear to be clickable but no sorting happens
I've got... Jim Pingle
02:10 PM Bootstrap Bug #5405: Many pages - sorting missing: Applied in changeset pfsense:commit:2f4e37b1196be724d00746eab5a1ff5ba6d27b00. Anonymous
02:04 PM Bootstrap Bug #5405 (Feedback): Many pages - sorting missing: Interestingly this sorting library only works correctly if the table is perfectly formatted with all of the proper ta... Anonymous
11:37 AM Bootstrap Bug #5405: Many pages - sorting missing: All static tables are working correctly, but tables that are populated dynamically via Javascript are not. Investigat... Anonymous
10:42 AM Bootstrap Bug #5405 (Assigned): Many pages - sorting missing: Most of them appear to be working OK, but a few issues yet:
diag_routes.php - Column headers appear to be clickabl... Jim Pingle
08:11 AM Bootstrap Bug #5405 (Feedback): Many pages - sorting missing: All three tickets completed.
Note that we still need to add IP address sorting (which is now alphanumeric). Making... Anonymous
02:51 PM Feature #5387 (Feedback): dhcp server RRD graph: merged, leaving for verification Chris Buechler
12:50 PM Feature #5387: dhcp server RRD graph: steve_b merged the PR above.
i've further improved the graph by adding dhcp-range as a value (= range_to - range_f... jeroen van breedam
02:49 PM Feature #1835 (Resolved): uPNP IPv6 support: Duplicated by #4321 but a fix was committed on that ticket rather than this one. It's already set to Feedback. Jim Pingle
02:47 PM Feature #5186 (Resolved): dhcp lease counter on status_dhcp_leases.php: This appears to be working as intended for me on 2.3. Lease count is accurate, interface/pool info looks good. Might ... Jim Pingle
02:41 PM Feature #4923 (Resolved): Add LDAP support for RFC2307 style group membership: This has been working for a while now. Jim Pingle
02:34 PM Bootstrap Bug #5402 (Resolved): diag_packet_capture.php - Output display scrolling issues: Looks much better now, thanks! Jim Pingle
02:20 PM Bootstrap Bug #5402: diag_packet_capture.php - Output display scrolling issues: Applied in changeset pfsense:commit:58a6b59a04fa41a9d89f921b6c0c5f11e3b58691. Anonymous
02:13 PM Bootstrap Bug #5402 (Feedback): diag_packet_capture.php - Output display scrolling issues: Fonts updated as suggested Anonymous
12:25 PM Bootstrap Bug #5402: diag_packet_capture.php - Output display scrolling issues: Also there is a stray "</font>" at the end of the capture output. Jim Pingle
11:14 AM Bootstrap Bug #5402 (Assigned): diag_packet_capture.php - Output display scrolling issues: No consolas here on Linux, maybe something like:
consolas,monaco,roboto mono,liberation mono,courier
Seems to w... Jim Pingle
11:00 AM Bootstrap Bug #5402: diag_packet_capture.php - Output display scrolling issues: Applied in changeset pfsense:commit:3963c87953671c9e608c48ce9a263de33e788ddc. Anonymous
10:50 AM Bootstrap Bug #5402: diag_packet_capture.php - Output display scrolling issues: Applied in changeset pfsense:commit:0e4b8bf75fc1fb8a42dca4ae824ffd5de2fdccc2. Anonymous
10:49 AM Bootstrap Bug #5402 (Feedback): diag_packet_capture.php - Output display scrolling issues: Font changed to consolas Anonymous
09:24 AM Bootstrap Bug #5402 (Assigned): diag_packet_capture.php - Output display scrolling issues: Scrolling is much better, thanks!
One last nit: It should be in a fixed-width font Jim Pingle
09:10 AM Bootstrap Bug #5402: diag_packet_capture.php - Output display scrolling issues: Applied in changeset pfsense:commit:756dc38e635243b2cb0fb38a1de888085344d408. Anonymous
09:07 AM Bootstrap Bug #5402 (Feedback): diag_packet_capture.php - Output display scrolling issues: Fixed as requested. Anonymous
01:53 PM Bug #5364: IPsec status pages show all time units as seconds: We do have a function for this: convert_seconds_to_hms($sec) source:src/etc/inc/pfsense-utils.inc#L1171 - shouldn't b... Jim Pingle
01:47 PM Bug #5364: IPsec status pages show all time units as seconds: I'm OK with 'seconds'. Jim Thompson
01:48 PM Bug #5350: 2.3 IPsec logging - silent can't be configured, issues with defaults: The 'fixes' for #5340 are kinda ugly, this needs rework. Jim Thompson
01:47 PM Bug #5378: Intel x710 10GbE NIC doesn't work (no carrier): It's FreeNAS 9.3 Jan-Marten Brüggemann
01:43 PM Bug #5378: Intel x710 10GbE NIC doesn't work (no carrier): Chris Buechler wrote:
> which FreeNAS version did it work on? We likely have newer Intel drivers than FreeNAS in 2.2... Matt Bowman
10:31 AM Bootstrap Bug #5393 (Resolved): vpn_ipsec.php - No way to save re-ordered Phase 2 entries: Looks OK the way it is after that commit Jim Pingle
10:30 AM Bootstrap Bug #5393: vpn_ipsec.php - No way to save re-ordered Phase 2 entries: Applied in changeset pfsense:commit:f34b7665264fd4e3e05c11fe87fbd68174030624. Anonymous
10:26 AM Bootstrap Bug #5393 (Feedback): vpn_ipsec.php - No way to save re-ordered Phase 2 entries: Fixed by reverting to "Move to here" control/icon
Bootstrap does not support dragging nested tables, so until this... Anonymous
09:15 AM Bootstrap Bug #5399 (Resolved): status_dhcp_leases.php - Output not sortable: Works, thanks! Jim Pingle
08:12 AM Bootstrap Bug #5399: status_dhcp_leases.php - Output not sortable: Completed Anonymous
06:57 AM Bootstrap Bug #5399: status_dhcp_leases.php - Output not sortable: Looks like all of them should be sortable Jim Pingle
06:29 AM Bootstrap Bug #5399 (Feedback): status_dhcp_leases.php - Output not sortable: Looks like there are three tables on this page:
Pool status
Leases
Leases in use
Which should be sortable? Anonymous
09:15 AM Bootstrap Bug #5398 (Resolved): diag_arp.php - Output is not sortable: Works, thanks! Jim Pingle
08:11 AM Bootstrap Bug #5398 (Feedback): diag_arp.php - Output is not sortable: Anonymous
08:44 AM Bug #4911 (Feedback): AES-NI hardware crypto not always displayed in information widget: Fixed in 2.3 (at least for AESNI - other types of hardware accelerators may need similar changes). Luiz Souza
08:40 AM Feature #5407: Sortable tables required IP address compare function: See also #469 and https://github.com/pfsense/pfsense/commit/bef28e2d569302e8f9e2caaf3493dca6523eb52c
Jim Pingle
08:15 AM Feature #5407 (Resolved): Sortable tables required IP address compare function: The table sorting library currently in use sorts using three different algorithms, none of which are suitable for IP ... Anonymous
08:34 AM pfSense Packages Bug #3986: BandwidthD can break php-fpm in unknown rare edge case: I have updated to 2.2.5 and reinstalled bandwithd. The problem still occurs.
Russell Morris wrote:
> Hi,
>
... Tom Peeters
02:56 AM pfSense Packages Bug #5406: FreeRADIUS will run with its default conf after being reinstalled by pfsense's upgrade process: That's because freeradius_modulesldap_resync() is not called anywhere on install.
https://github.com/pfsense/pfse... Kill Bill

11/09/2015

10:50 PM Feature #4411: add validation of Unbound advanced configuration: See https://github.com/pfsense/pfsense/pull/2048 for some fixups. Phillip Davis
08:10 PM Feature #4411 (Feedback): add validation of Unbound advanced configuration: Applied in changeset commit:932711c7ec2a6cdd19a4a71b9812b1811dae348e. Matthew Smith
02:58 PM Bug #5378: Intel x710 10GbE NIC doesn't work (no carrier): which FreeNAS version did it work on? We likely have newer Intel drivers than FreeNAS in 2.2.4 and newer. Chris Buechler
02:54 PM Bootstrap Bug #5395 (Resolved): diag_logs.php - Reading log text is difficult (Lack of line wrapping, bg color): That is much easier on the eyes, thanks! Jim Pingle
02:50 PM Bootstrap Bug #5395: diag_logs.php - Reading log text is difficult (Lack of line wrapping, bg color): Applied in changeset pfsense:commit:ba6c5357c5c9fd342678f8bad20066f1f56c31cd. Anonymous
02:42 PM Bootstrap Bug #5395 (Feedback): diag_logs.php - Reading log text is difficult (Lack of line wrapping, bg color): Log viewer changed to table layout to support wrapping. Anonymous
12:24 PM Bootstrap Bug #5395 (Resolved): diag_logs.php - Reading log text is difficult (Lack of line wrapping, bg color): The lack of wrapping on content displayed by diag_logs.php aligns better but it makes it really difficult to read lon... Jim Pingle
02:32 PM Bootstrap Bug #5404 (Resolved): diag_sockets.php - Info dump at the bottom of the screen could be wrapped in an info box: Looks much cleaner now, thanks! Jim Pingle
02:20 PM Bootstrap Bug #5404: diag_sockets.php - Info dump at the bottom of the screen could be wrapped in an info box: Applied in changeset pfsense:commit:b9a5448f314e05e808f8847fd2845d403a79bfe5. Anonymous
02:15 PM Bootstrap Bug #5404 (Feedback): diag_sockets.php - Info dump at the bottom of the screen could be wrapped in an info box: Fixed as described.
This page had a number of other shortcomings. I think it was the first page I ever converted :) Anonymous
01:03 PM Bootstrap Bug #5404 (Resolved): diag_sockets.php - Info dump at the bottom of the screen could be wrapped in an info box: There's a link at the top of diag_sockets.php and then a big block of info at the bottom that seems like it could be ... Jim Pingle
02:31 PM Bootstrap Bug #5403 (Resolved): diag_smart.php - Action buttons look funny outside of the groups: Much better, thanks! Jim Pingle
02:30 PM Bootstrap Bug #5403: diag_smart.php - Action buttons look funny outside of the groups: Applied in changeset pfsense:commit:d254b99e18e5a4924510c26f7dbcba90aea1e53e. Anonymous
02:26 PM Bootstrap Bug #5403 (Feedback): diag_smart.php - Action buttons look funny outside of the groups: Fixed Anonymous
01:02 PM Bootstrap Bug #5403 (Resolved): diag_smart.php - Action buttons look funny outside of the groups: Not sure if there is a way to group the buttons with their options here, if not just close this. It seems like it wou... Jim Pingle
02:24 PM pfSense Packages Bug #4934 (Resolved): OpenVPN Client Export Doesn't Include Full CA Chain: thanks Chris Buechler
02:23 PM pfSense Packages Bug #4793 (Closed): squidguard crashes squid when enabled: Chris Buechler
02:13 PM Bootstrap Bug #5388: system_groupmanager_addprivs.php - Selection box should be much larger: Forgot to reassign this one. Jim Pingle
01:26 PM Bootstrap Bug #5388: system_groupmanager_addprivs.php - Selection box should be much larger: Pic for reference:
!http://i.imgur.com/YULqzlo.png! Jim Pingle
01:25 PM Bootstrap Bug #5388 (Assigned): system_groupmanager_addprivs.php - Selection box should be much larger: Looks like the size of the group membership boxes was increased, those were fine before, what needs sized up is the p... Jim Pingle
12:50 PM Bootstrap Bug #5388: system_groupmanager_addprivs.php - Selection box should be much larger: Applied in changeset pfsense:commit:9c45111c9278a6c7f2a0b017e57ab93edee8dfb3. Anonymous
12:24 PM Bootstrap Bug #5388 (Feedback): system_groupmanager_addprivs.php - Selection box should be much larger: Multiselect boxes enlarged Anonymous
10:06 AM Bootstrap Bug #5388 (Resolved): system_groupmanager_addprivs.php - Selection box should be much larger: On system_groupmanager_addprivs.php the list is huge but the selection box is tiny.
The same control on system_use... Jim Pingle
02:00 PM Bootstrap Bug #5391 (Resolved): services_snmp.php - "Host Resources" requires mibII, JS/Input Validation missing: Behavior works as expected now, thanks! Jim Pingle
01:30 PM Bootstrap Bug #5391: services_snmp.php - "Host Resources" requires mibII, JS/Input Validation missing: Applied in changeset pfsense:commit:e49bf8fdce7438d7685c0106c654ecf2afbbde49. Anonymous
01:25 PM Bootstrap Bug #5391 (Feedback): services_snmp.php - "Host Resources" requires mibII, JS/Input Validation missing: Corrected. Anonymous
11:56 AM Bootstrap Bug #5391 (Resolved): services_snmp.php - "Host Resources" requires mibII, JS/Input Validation missing: On services_snmp.php when checking Host Resources, the mibII checkbox should also be automatically checked and it sho... Jim Pingle
01:48 PM pfSense Packages Bug #5406 (Resolved): FreeRADIUS will run with its default conf after being reinstalled by pfsense's upgrade process: Everytime I update pfsense, the freeradius package goes back to its default conf, even though the GUI keeps its previ... Heiler Bemerguy
01:34 PM Bootstrap Bug #5389: system_groupmanager.php & system_usermanager.php -- No means to remove assigned privileges: only a partial fix
https://github.com/pfsense/pfsense/pull/2047 jeroen van breedam
10:07 AM Bootstrap Bug #5389 (Resolved): system_groupmanager.php & system_usermanager.php -- No means to remove assigned privileges: On system_groupmanager.php & system_usermanager.php assigned privileges have no "delete" icon. Once a privilege is ad... Jim Pingle
01:29 PM Bootstrap Bug #5401 (Resolved): diag_packet_capture.php - "Level of detail" option has an extra entry for "Any": Spurious option is gone, all OK now. Thanks! Jim Pingle
01:10 PM Bootstrap Bug #5401: diag_packet_capture.php - "Level of detail" option has an extra entry for "Any": Applied in changeset pfsense:commit:b46dc238c6a3fe595c92882493879c0ae0df253b. Anonymous
01:02 PM Bootstrap Bug #5401 (Feedback): diag_packet_capture.php - "Level of detail" option has an extra entry for "Any": Fixed Anonymous
12:55 PM Bootstrap Bug #5401 (Resolved): diag_packet_capture.php - "Level of detail" option has an extra entry for "Any": On diag_packet_capture.php the "Level of detail" control has an extra entry for "Any" that shouldn't be there. It sho... Jim Pingle
01:28 PM Bootstrap Bug #5397 (Resolved): firewall_aliases.php - Weird change in line thickness: Looks consistent now, thanks! Jim Pingle
12:50 PM Bootstrap Bug #5397: firewall_aliases.php - Weird change in line thickness: Applied in changeset pfsense:commit:af5e730bad27b8ca99c7a21d3b1afc2176bba0d9. Anonymous
12:44 PM Bootstrap Bug #5397 (Feedback): firewall_aliases.php - Weird change in line thickness: Corrected Anonymous
12:34 PM Bootstrap Bug #5397 (Resolved): firewall_aliases.php - Weird change in line thickness: So nitpicky I almost didn't open a ticket. Saw this on a couple pages but the only one I could remember was Aliases. ... Jim Pingle
01:28 PM Bootstrap Bug #5396 (Resolved): diag_logs_filter.php - Minor display issues/fixes: Striping looks better, thanks! Jim Pingle
12:50 PM Bootstrap Bug #5396: diag_logs_filter.php - Minor display issues/fixes: Applied in changeset pfsense:commit:0be23c99ec3811bbee62ebda49521fc0b1a4b594. Anonymous
12:36 PM Bootstrap Bug #5396 (Feedback): diag_logs_filter.php - Minor display issues/fixes: Table striped.
I will center the icon in a later revision when I revise the CSS Anonymous
12:30 PM Bootstrap Bug #5396 (Resolved): diag_logs_filter.php - Minor display issues/fixes: * Looks like the Act icon could be centered in its column, it looks like it's too far to the left now. Not a huge dea... Jim Pingle
01:27 PM Bootstrap Bug #5394 (Resolved): diag_logs.php - blank line at the top of log display: Looks good! Jim Pingle
12:50 PM Bootstrap Bug #5394: diag_logs.php - blank line at the top of log display: Applied in changeset pfsense:commit:d1a5ed338b92f1bbb9ec5d70db1de624854d17e2. Anonymous
12:25 PM Bootstrap Bug #5394 (Feedback): diag_logs.php - blank line at the top of log display: Removed Anonymous
12:18 PM Bootstrap Bug #5394 (Resolved): diag_logs.php - blank line at the top of log display: On diag_logs.php there seems to be an extra blank line at the top of each log
!http://i.imgur.com/tFkJIW4.png! Jim Pingle
01:24 PM Bootstrap Bug #5390 (Resolved): firewall_schedule.php - "Schedule active" icon is not rendering on Linux: Looks great now everywhere, thanks! Jim Pingle
11:56 AM Bootstrap Bug #5390: firewall_schedule.php - "Schedule active" icon is not rendering on Linux: Icons converted to fonts awesome. Anonymous
11:50 AM Bootstrap Bug #5390 (Feedback): firewall_schedule.php - "Schedule active" icon is not rendering on Linux: Applied in changeset pfsense:commit:b96cb0a5a258acf660a8c04156b47855121b70c4. Anonymous
10:20 AM Bootstrap Bug #5390 (Resolved): firewall_schedule.php - "Schedule active" icon is not rendering on Linux: The icon to indicate an active schedule is not rendering on Linux in Firefox (left) or Chrome (right):
!http://i.i... Jim Pingle
01:13 PM Bootstrap Bug #5405 (Resolved): Many pages - sorting missing: The following pages/widgets had sortable output on 2.2.x but are not sortable on 2.3.x
carp_status.php - List of V... Jim Pingle
12:58 PM Bootstrap Bug #5402 (Resolved): diag_packet_capture.php - Output display scrolling issues: The length of the output display on diag_packet_capture.php isn't being limited which can make the page grow very lar... Jim Pingle
12:52 PM Bootstrap Bug #5400 (Resolved): diag_ping.php - Following link to pre-fill page results in an incorrect error: If you follow a link, such as one from Diag > DNS Lookup, to diag_ping.php similar to this:
diag_ping.php?host=goo... Jim Pingle
12:45 PM Bootstrap Bug #5399: status_dhcp_leases.php - Output not sortable: Also status_dhcpv6_leases.php Jim Pingle
12:45 PM Bootstrap Bug #5399 (Resolved): status_dhcp_leases.php - Output not sortable: The list of systems on status_dhcp_leases.php was sortable in JS on 2.2.x, and that is handy especially when tracking... Jim Pingle
12:44 PM Bootstrap Bug #5398 (Resolved): diag_arp.php - Output is not sortable: The list of systems on diag_arp.php was sortable in JS on 2.2.x, and that is handy especially when tracking down syst... Jim Pingle
12:08 PM Bootstrap Bug #5393 (Resolved): vpn_ipsec.php - No way to save re-ordered Phase 2 entries: The Phase 2 entries allow dragging/dropping but there is no Save icon inside the P2 and the state doesn't save when c... Jim Pingle
12:07 PM Bootstrap Bug #5392 (Resolved): status_rrd_graph.php - RRD graph tab "VPN" not showing when it should be active: The VPN tab on status_rrd_graph.php should be showing up when there is a remote access OpenVPN configured.
The tab... Jim Pingle
09:53 AM Bug #4835: Configuration changes are slow to save after upgrade: Nope. The correct understanding is that there will be no fix whatsoever for this. Run permanent RW, or get a full ins... Kill Bill
09:51 AM Bug #4835: Configuration changes are slow to save after upgrade: More likely you need a better/different CF card. See https://forum.pfsense.org/index.php?topic=96383.msg546892#msg546892 Jim Pingle
09:37 AM Bug #4835: Configuration changes are slow to save after upgrade: In reading the linked dupe bug above and its references, am I correct in understanding that I will need to re-flash m... Sean Pappalardo
09:26 AM Bug #4835: Configuration changes are slow to save after upgrade: No improvement in 2.2.5 either. Sean Pappalardo
08:02 AM Bug #4237: Error "macro IPsec not defined" once after firmware upgrade: This is still happening as of 2.2.5-RELEASE
It went away for a while, but came back after I tried to setup pfsens... Johannes Ullrich
07:40 AM Bootstrap Bug #5380: setup wizard timezone should default to GMT: Applied in changeset pfsense:commit:f8ae35862e05b1d5b43678144071a6e03ab8c3c5. Anonymous
07:25 AM Bootstrap Bug #5380: setup wizard timezone should default to GMT: The default config.xml used to contain "<timezone>"Etc/UDT"</timezone> but that was recently removed when changing fr... Anonymous
07:09 AM Bootstrap Bug #5380 (Feedback): setup wizard timezone should default to GMT: The 2.2 code seems to do the opposite! It creates a selector using the timezonelist, but removes GMT from that list.
... Anonymous
12:58 AM pfSense Packages Feature #4394: HAproxy and use ACLs from UI to perform a "block"/"http-request deny": Yes, I am using the automatic SSL redirect function, which does a reqadd :... Stéphane Lapie

11/08/2015

05:43 PM Bug #5377: Scheduled Rules: Sorry, here is the Bug report mentioned above - https://redmine.pfsense.org/issues/3558 Anonymous
05:41 PM Bug #5377: Scheduled Rules: Here is My Forum Thread - https://forum.pfsense.org/index.php?topic=101938.0
Second Forum Thread - https://forum.pfs... Anonymous
02:42 PM Feature #4542: Support for PPPoE with MTU/MRU > 1492 (i.e. 1500): The mpd5 changes have been merged into pfsense/FreeBSD-ports master (which will become 2.3). The pull request against... David Wood
11:05 AM Feature #5387 (Resolved): dhcp server RRD graph: after adding the lease_counter to status_dhcp_leases.php, i've tried to get the same data into RRD.
please check P... jeroen van breedam
11:01 AM Bug #4936: dhcpd sets wrong permissions on leases files: Chris Buechler wrote:
> Our code doesn't set permissions on dhcpd.leases anywhere I see. I can't find any system tha... James Brechtel

11/07/2015

09:42 PM Bug #5386: Router Advertisements changing interface goes to DHCPv6 Server tab: Merged. Thanks. Anonymous
09:34 PM Bug #5386: Router Advertisements changing interface goes to DHCPv6 Server tab: https://github.com/pfsense/pfsense/pull/2039 Phillip Davis
09:27 PM Bug #5386 (Resolved): Router Advertisements changing interface goes to DHCPv6 Server tab: Have multiple interfaces with IPv6 static IP (e.g. LAN and OPT1)
Select Services->DHCPv6 Server/RA
The valid interf... Phillip Davis
08:50 PM Bootstrap Bug #5385: guiconfig.inc display_top_tabs() breaks on long tab names: Applied in changeset pfsense:commit:02e2825a852bc0cd10cf0bc38b933a03c7da0a45. Anonymous
08:40 PM Bootstrap Bug #5385 (Feedback): guiconfig.inc display_top_tabs() breaks on long tab names: Fixed
Cherry picked from suggested code change in forum message Anonymous
08:23 PM Bootstrap Bug #5385 (Resolved): guiconfig.inc display_top_tabs() breaks on long tab names: https://forum.pfsense.org/index.php?topic=102059.msg569234#msg569234
Anonymous
08:10 PM Bootstrap Bug #5384 (Resolved): status_nptd.php - syntax error: Bonus */ removed. File tested. Anonymous
08:09 PM Bootstrap Bug #5384 (Resolved): status_nptd.php - syntax error: https://forum.pfsense.org/index.php?topic=102064.msg0#new Anonymous
08:10 PM Bootstrap Bug #5381: syntax error, unexpected ';' in /usr/local/www/wizard.php(156) : eval()'d code on line 3: Applied in changeset pfsense:commit:57cadb042dc133f1a3a671f4ff823589760574bf. Anonymous
08:03 PM Bootstrap Bug #5381: syntax error, unexpected ';' in /usr/local/www/wizard.php(156) : eval()'d code on line 3: php corrected and wrapped in <![CDATA[ ]]> Anonymous
07:50 PM Bootstrap Bug #5381: syntax error, unexpected ';' in /usr/local/www/wizard.php(156) : eval()'d code on line 3: Sure, but it's interesting that this problem has been in there since RELENG_2.0 Anonymous
04:18 PM Bootstrap Bug #5381: syntax error, unexpected ';' in /usr/local/www/wizard.php(156) : eval()'d code on line 3: And in general, all that entity crap in that file (like descriptions) would benefit from the same. Completely unreada... Kill Bill
04:13 PM Bootstrap Bug #5381: syntax error, unexpected ';' in /usr/local/www/wizard.php(156) : eval()'d code on line 3: Put that between CDATA. Kill Bill
01:10 PM Bootstrap Bug #5381 (Feedback): syntax error, unexpected ';' in /usr/local/www/wizard.php(156) : eval()'d code on line 3: I'm guessing this is the culprit: (line 3 of the PHP)... Anonymous
12:56 AM Bootstrap Bug #5381 (Resolved): syntax error, unexpected ';' in /usr/local/www/wizard.php(156) : eval()'d code on line 3: Go through the setup wizard, set the hostname and timezone, leave rest at defaults. Go back to the dashboard at the e... Chris Buechler
01:20 PM Bootstrap Bug #5382: diag_ping.php source address selection not retained: Applied in changeset pfsense:commit:3f91d34e5e20d9b110e50d9f9a82a14f6ebc5ec3. Anonymous
01:17 PM Bootstrap Bug #5382 (Feedback): diag_ping.php source address selection not retained: Initial value incorrectly obtained from $pconfig. Now corrected. Anonymous
01:17 AM Bootstrap Bug #5382 (Resolved): diag_ping.php source address selection not retained: On diag_ping.php, pick a source like "LAN", fill in an IP, and ping. The page that returns with the results used to r... Chris Buechler
12:42 PM Bug #4358 (Closed): w3.org: put nested table in td: This widget now (v 2.3+) employs Bootstrap table formatting so the subject HTML no longer exists. Anonymous
12:40 PM Bug #4356 (Closed): w3.org: <tfoot> used without thead and tbody: Anonymous
12:38 PM Bug #4356: w3.org: <tfoot> used without thead and tbody: This widget now (v 2.3+) employs Bootstrap table formatting so the subject HTML no longer exists. Anonymous
12:40 PM Bug #4357 (Closed): w3.org: value of attribute id must start with a letter, not a number: Anonymous
12:40 PM Bug #4357: w3.org: value of attribute id must start with a letter, not a number: This widget now (v 2.3+) employs Bootstrap table formatting so the subject HTML no longer exists. Anonymous
12:38 PM Bug #5383 (Closed): CODELQ Traffic Shaper Causes Panic and Reboot During Speed Test: I started receiving seemingly random kernel panics after upgrading to 150/150 internet service.
Crash reports were... Chad Wagner
12:36 PM Bug #4355 (Closed): w3.org: there is no attribute "sortableMultirow": This widget now (v 2.3+) employs Bootstrap table formatting so the subject HTML no longer exists. Anonymous
10:14 AM pfSense Packages Bug #4934: OpenVPN Client Export Doesn't Include Full CA Chain: > Is that all there is to do hear? Should this be marked resolved?
Yes. Kyle Johnston
06:54 AM pfSense Packages Bug #4934: OpenVPN Client Export Doesn't Include Full CA Chain: The pull request that was finally merged was https://github.com/pfsense/pfsense-packages/pull/1029
Is that all there... Phillip Davis
09:35 AM pfSense Packages Feature #4394: HAproxy and use ACLs from UI to perform a "block"/"http-request deny": hm i add a 'reqadd' in the package to when using forwardfor. ill check where that gets added.. Pi Ba
08:51 AM pfSense Packages Feature #4394: HAproxy and use ACLs from UI to perform a "block"/"http-request deny": Hi Stéphane,
The 'reqadd' i suppose is in your own textual 'advanced configuration' options? I don't think i should ... Pi Ba
08:41 AM pfSense Packages Bug #3986: BandwidthD can break php-fpm in unknown rare edge case: Hi,
Just following up - this still seems to cause a lot of grief in v2.2.5. Are others still seeing this?
Thanks! Russell Morris
07:21 AM pfSense Packages Bug #4608: squidGuard & pfsense RAM disk compatible: https://github.com/pfsense/pfsense-packages/pull/1144 has input validations to:
- force users to disable any ramdisk... Kill Bill
03:32 AM pfSense Packages Bug #4793: squidguard crashes squid when enabled: https://github.com/pfsense/pfsense-packages/pull/1143 adds some postinstall instructions with a link to the forum thr... Kill Bill
03:18 AM pfSense Packages Bug #4793: squidguard crashes squid when enabled: +1 to close this Bipin Chandra
03:15 AM pfSense Packages Bug #4793: squidguard crashes squid when enabled: Read this: https://forum.pfsense.org/index.php?topic=94312.0
Yet another unfixable PBI crap, can be closed. Kill Bill
03:02 AM pfSense Packages Bug #4676: Avahi & .local domain in config file: Kill Bill wrote:
> Works just fine here and works for every one but you. Cannot be reproduced at all.
interesti... Adrian Gschwend
02:56 AM pfSense Packages Bug #4676: Avahi & .local domain in config file: Works just fine here and works for every one but you. Cannot be reproduced at all. Kill Bill
12:47 AM Bootstrap Bug #5380 (Resolved): setup wizard timezone should default to GMT: The timezone in the setup wizard defaults to the first in the list. Should default to GMT as before. Chris Buechler

11/06/2015

06:55 PM Bug #4585 (Resolved): IPsec widget does not show logged in 'Mobile Users': this was fixed some time ago Chris Buechler
06:42 PM Bug #4344 (Closed): package (re)installation loop after upgrading from 2.1.5-RELEASE to 2.2-RELEASE: It's not a loop, it can get stuck in the process because of issues in package code hanging up PHP. 2.3 changed the pa... Chris Buechler
06:40 PM pfSense Packages Bug #4216 (Closed): squidguard squidguard-dev issues: PBI issue that has either since been fixed in 2.2.x, or at a minimum no longer exists in 2.3. Chris Buechler
06:38 PM pfSense Packages Bug #4293 (Closed): Squid 2.7.9 pkg v.4.3.6 i386 won't start: PBI issue that doesn't exist in 2.3 Chris Buechler
06:35 PM pfSense Packages Bug #4348 (Closed): SquidGuard is not starting: this is probably PBI-related issue that's either been fixed since, or will go away in 2.3 regardless. Chris Buechler
06:28 PM Bug #5379 (Resolved): Installer runs out of RAM and fails with < ~600 MB RAM: If installing to a system with less than somewhere around 600 MB RAM, the installer fails in after_installation_routi... Chris Buechler
09:18 AM pfSense Packages Bug #4420: warning: bad command startup -- throttling: Please, test with v2.4.5 *after* undoing whatever manual hacks you did there (like symlinks and/or installing package... Kill Bill
04:12 AM Bug #5378: Intel x710 10GbE NIC doesn't work (no carrier): I tested it on 2.2.4 stable, 2.2.5 development, and 2.3 snapshot. Always the same problem. Jan-Marten Brüggemann
04:04 AM Bug #5378 (Feedback): Intel x710 10GbE NIC doesn't work (no carrier): what version? Does same happen on a 2.3 snapshot? Chris Buechler
03:44 AM Bug #5378 (Closed): Intel x710 10GbE NIC doesn't work (no carrier): I have a problem with the Intel x710 10GbE NIC. No connection is possible and ifconfig shows status "no carrier".
Th... Jan-Marten Brüggemann

11/05/2015

10:33 PM pfSense Packages Feature #4394 (Resolved): HAproxy and use ACLs from UI to perform a "block"/"http-request deny": Chris Buechler
09:03 PM pfSense Packages Feature #4394: HAproxy and use ACLs from UI to perform a "block"/"http-request deny": I just tested it out. Wow, this is awesome.
It works as intended and expected, it's just one just has to be carefu... Stéphane Lapie
02:18 PM pfSense Packages Feature #4394: HAproxy and use ACLs from UI to perform a "block"/"http-request deny": Checkout new haproxy-devel package v0.33, it is now be possible to create more elaborate acl/action items.
If you fi... Pi Ba
05:47 PM pfSense Packages Feature #4897 (Resolved): Use errorfiles with frontend(s) via UI: Thanks PiBa Chris Buechler
02:11 PM pfSense Packages Feature #4897: Use errorfiles with frontend(s) via UI: Checkout new haproxy-devel package v0.33, it is now be possible. Pi Ba
02:23 PM Bootstrap Bug #5375 (Resolved): diag_logs_filter.php Search functionality broken: Anonymous
11:21 AM Bootstrap Bug #5375: diag_logs_filter.php Search functionality broken: https://github.com/pfsense/pfsense/pull/2033 jeroen van breedam
10:06 AM Bootstrap Bug #5375 (Resolved): diag_logs_filter.php Search functionality broken: Installed 2.3-Alpha on my fpsense SG-2440... Used to sort firewall logs with "Block" checkmark to see whats blocked o... Anonymous
02:17 PM Bug #5377: Scheduled Rules: As shown in the screenshots, my rules are set in pairs, the allow rule with the schedule, then a block all for the sa... Anonymous
02:03 PM Bug #5377: Scheduled Rules: I don't think this has ever worked properly when you schedule block rules. What works is blocking by default and sche... Kill Bill
12:58 PM Bug #5377: Scheduled Rules: Do you have a forum thread that you started to discuss the issue? Did others confirm the issue there? If you have a t... Jim Pingle
12:53 PM Bug #5377: Scheduled Rules: I have been reading the forums for days to try and fix this issue that has seemingly gone on for years. This images s... Anonymous
12:47 PM Bug #5377 (Rejected): Scheduled Rules: System > Advanced, Misc tab, uncheck Schedule States, if that doesn't work, discuss on the forum for confirmation bef... Jim Pingle
12:33 PM Bug #5377 (Rejected): Scheduled Rules: Scheduled rules are only effective at blocking new connections, they do not terminate any active states. Anonymous
10:13 AM Bug #5376 (Rejected): Traffic Shaper Wizard not functioning in 2.2.4: Please post on the forum for assistance or use another support method. There is no bug here, but perhaps something ch... Jim Pingle
10:10 AM Bug #5376 (Rejected): Traffic Shaper Wizard not functioning in 2.2.4: The Traffic Shaper Wizard is not functioning in 2.2.4
Testing environment
1 - WAN connection
1 - LAN connection
... Nick Smith
07:28 AM Feature #5373: Advanced option to add separator or group firewall rules in web gui: Please move this request to the main pfSense category.
It was created under the Packages category by mistake.
TCI User
07:19 AM Bug #5372: Two rules created if double click the Save button (by mistake): I will move it later today (after you have had time to read this :) ) Anonymous
07:18 AM Bug #5372: Two rules created if double click the Save button (by mistake): Kill Bill wrote:
> This got misfiled under packages bugs.
Sorry about that. This was my first report and I did no... TCI User
04:45 AM Bug #5372: Two rules created if double click the Save button (by mistake): This got misfiled under packages bugs. Kill Bill
04:30 AM pfSense Packages Bug #5374 (Closed): postfix package is patching /etc/inc/system.inc (syslog configuration): Sigh... filing for tracking purposes.
https://github.com/pfsense/pfsense-packages/blob/master/config/postfix/post... Kill Bill

11/04/2015

08:29 PM Feature #5373: Advanced option to add separator or group firewall rules in web gui: Would also be very helpful to be able to add a label to the rule, beyond the description.
I've written some automati... Andrew Webster
09:22 AM Feature #5373 (Resolved): Advanced option to add separator or group firewall rules in web gui: Will be very helpful if we can add *separator* (and probably add a name) or *group* firewall rules in web GUI.
This ... TCI User
04:52 PM Bug #2762: PF drops IPv6 packets with fragment header followed by a last fragment only: PS: for those who want to test with a website that sends fragments try www.cbs.nl. It has an RFC 6145 SIIT box in fro... Sander Steffann
12:08 PM Bug #4345: Traffic Shaping doesn't work with Xen netfront driver: If I read #3670 I will this twice. I'm still on 2.1.5 and ipv6 didn't work with my ISP. Grischa Zengel
11:22 AM Bug #4345: Traffic Shaping doesn't work with Xen netfront driver: Please, put this to 2.2.5:
https://svnweb.freebsd.org/base?view=revision&revision=286999 Grischa Zengel
10:17 AM Bug #5372: Two rules created if double click the Save button (by mistake): I can replicate this by slowly clicking Save twice. If I purposely do a "double-click"speed double-click it does not ... Phillip Davis
09:00 AM Bug #5372 (Resolved): Two rules created if double click the Save button (by mistake): My browser is Chrome v.46.0.2490.80
When creating a +*new rule*+ and double click the *Save* button (by mistake) the... TCI User
06:42 AM Bug #5371 (Duplicate): Kernel Panic - Sleeping thread owns a non-sleepable lock on ALIX Firewall after 2.0.1-RELEASE config import: Please try a 2.2.5 snapshot (or 2.2.5 release which should be coming out soon) -- that's a known panic that has been ... Jim Pingle
06:16 AM Bug #5371: Kernel Panic - Sleeping thread owns a non-sleepable lock on ALIX Firewall after 2.0.1-RELEASE config import: Happy to send my running config to any of the pfsense team although I think Chris still has it ;) MF Mark
06:14 AM Bug #5371 (Duplicate): Kernel Panic - Sleeping thread owns a non-sleepable lock on ALIX Firewall after 2.0.1-RELEASE config import: After flashing the following image pfSense-2.2.4-RELEASE-2g-i386-nanobsd to a PCEngines Alix Firewall and importing o... MF Mark
05:23 AM Bug #5044: PHP-FPM Segmentation fault after Configuration Import of 2.0.1-RELEASE config: Chris Buechler wrote:
> Thanks for sending your config. It isn't replicable restoring to a 64 bit VM. It's from an A... MF Mark

11/03/2015

05:56 PM pfSense Packages Bug #3495: Zabbix2-Agent and Zabbix2-proxy upgrade.: Ultimately the issue is the fact that the 2.0.4 version used a shared utility file. If you uninstall one you can't u... Robert Middleswarth
04:28 PM pfSense Packages Bug #3495: Zabbix2-Agent and Zabbix2-proxy upgrade.: These versions don't even exist any more, cannot be fixed. Plus, the obvious solution is to simply uninstall both pac... Kill Bill
04:18 PM pfSense Packages Bug #2809: Reverse Proxy for ActiveSync / Real-Time Monitor: Not really sure what's the bug here? Yeah, so add it to custom config if you need it. Adding a gazillion of corner-ca... Kill Bill
03:58 PM Bug #4227 (Feedback): Too much logging for IPSec DPD: Matthew Smith
02:45 PM Bug #4227: Too much logging for IPSec DPD: The logging is done by strongswan. There are several ways to control the frequency of DPD-related messages. One is to... Matthew Smith
03:49 PM pfSense Packages Bug #5366: Binding transparent proxy with squid3 to openvpn interface disables proxy while service stays running: X-Forwarded-For and Via headers are configurable in the package GUI, plus - this is not a good way to debug things at... Kill Bill
02:14 PM pfSense Packages Bug #5366 (Not a Bug): Binding transparent proxy with squid3 to openvpn interface disables proxy while service stays running: thanks for the follow up. The package is exactly the same regardless of base version so something in your config. Chris Buechler
09:13 AM pfSense Packages Bug #5366: Binding transparent proxy with squid3 to openvpn interface disables proxy while service stays running: I just tried it using the daily snapshot from 2th November 2015 and it is now working. I did not follow the exact sam... steve wozniak
03:03 PM Bug #3317: ntpd sets stratum 16 (unsynced) when selected to listen on multiple interfaces: I have the same problem on one of my pfsense boxes today (virtual machine) ... Jesper Grann Laursen
02:15 PM pfSense Packages Bug #4525 (Resolved): ACLs: Allowed subnets. There is no way to input "all".: Chris Buechler
06:26 AM pfSense Packages Bug #4525: ACLs: Allowed subnets. There is no way to input "all".: Fixed in 0.4.2 Kill Bill
12:10 PM Todo #5370 (Resolved): Review usage of IPsec-related sysctl OIDs in GUI and backend code: 2.3 will have less sysctl OIDs with the various changes made to FreeBSD along the way. We need to review the sysctls ... Jim Pingle
11:20 AM Todo #5219 (Feedback): EAP-RADIUS selection for IKEv2 Mobile IPsec should warn if the selected authentication backend is not a RADIUS server.: Applied in changeset commit:6684d5944eacf4dbd717edba9d82c30001b5bc3b. Matthew Smith
11:06 AM Bootstrap Bug #5369 (Resolved): Thermal sensor widget no longer functions: Widget re-written to use correct 2.3 widget structure.
Now uses Bootstrap stacked progress bars that change color to ... Anonymous
11:04 AM Bootstrap Bug #5369 (Resolved): Thermal sensor widget no longer functions: Widget was converted to Bootstrap at some point, but it is no longer functional since the graphing library it uses ha... Anonymous
05:44 AM Todo #5368 (Resolved): Review /etc/ttys for serial console: FreeBSD current and stable/10 /etc/ttys now defaults to 3wire on serial tty setup, this means we don't need to force ... Renato Botelho

11/02/2015

09:04 PM Bootstrap Bug #5365: diag_logs_filter_dynamic.php not so dynamic: https://github.com/pfsense/pfsense/pull/2019
should help with the cross/tick button and getting the syntax correct f... Phillip Davis
12:51 PM Bootstrap Bug #5365 (Feedback): diag_logs_filter_dynamic.php not so dynamic: Dynamism has been restored.
etc/inc/filter_log.inc has been updated to use fa icon, but still needs work similar t... Anonymous
11:50 AM Bootstrap Bug #5365 (Resolved): diag_logs_filter_dynamic.php not so dynamic: There is no "dynamic" to Firewall Log Dynamic view.
diag_logs_filter_dynamic.php refers to /javascript/filter_log.js... Anonymous
05:43 PM Bug #4590 (Duplicate): Nat Reflection bug when using limiters: duplicate of #4326 Chris Buechler
02:46 PM Bug #5367 (New): Safari repeatedly tries to reload dashboard: When logging in as a user that does not have privileges configured to access one of the pages associated with a wid... Matthew Smith
11:59 AM pfSense Packages Bug #5366 (Not a Bug): Binding transparent proxy with squid3 to openvpn interface disables proxy while service stays running: Hello,
I was using Squid3 with C-ICAP and clamav, everyhting was working file.
I used squid3 as transparent proxy... steve wozniak
11:51 AM Bug #5149 (Resolved): memory leak(s) in strongswan: Switching to with-printf-hooks=vstr resolved the most significant memory leaks. Chris Buechler
11:32 AM Bug #4642: OpenVPN process status stopped... but its running: Hi again guys...
I can confirm that fact... I didn't put attention on that...
I use multiwan... and I'm also usin... Alejandro Olivan
11:30 AM Todo #5222: Default dashboard has lots of widgets displayed in closed state: Applied in changeset pfsense:commit:79da790bf34762693749e096d61517dc20a3d0f1. Anonymous
11:26 AM Todo #5222 (Feedback): Default dashboard has lots of widgets displayed in closed state: 2.2.x draws all of the widgets all of the time, but hides the ones you don't want to see via Javascript. 2.3 only dis... Anonymous
11:26 AM pfSense Packages Bug #3442 (Closed): Stunnel package $config issue?: Stilez: if there is some way to replicate this on 2.3, please follow up with details Chris Buechler
11:24 AM Bug #5364 (Resolved): IPsec status pages show all time units as seconds: The vici plugin outputs all status times in seconds, where SMP status output hours for times > 1 hour, minutes for ti... Chris Buechler
10:58 AM Bug #5363: Reject rules show as blocked on firewall log normal and dynamic views: Yes, sure.
Note that I have submitted a pull request https://github.com/pfsense/pfsense/pull/2014 to fix just the pr... Phillip Davis
10:51 AM Bug #5363 (Confirmed): Reject rules show as blocked on firewall log normal and dynamic views: There are performance concerns here (discussed on above pull request), that's how it's always worked, and we're proba... Chris Buechler
12:10 AM Bug #5363: Reject rules show as blocked on firewall log normal and dynamic views: See pull request https://github.com/pfsense/pfsense/pull/2012 for RELENG_2_2.
If this is acceptable, then the nece... Phillip Davis
12:08 AM Bug #5363 (Needs Patch): Reject rules show as blocked on firewall log normal and dynamic views: The icon shown for a firewall log entry that is for a "reject" rule is the red cross symbol.
It should display the y... Phillip Davis

11/01/2015

04:13 PM pfSense Packages Bug #4288: inetd is missed by check_mk: This is completely broken on pfSense 2.2.x. Please, test with files from here: https://github.com/doktornotor/pfsense... Kill Bill
09:35 AM Bug #4642: OpenVPN process status stopped... but its running: Perhaps we can apply the same flock in the file for switching the tier1-Wan tier2-Wan connection. Then, only one inst... Cullen Trey
07:00 AM Bug #4642: OpenVPN process status stopped... but its running: The CARP stuff is one source of this problem. But it also happens on systems without any CARP. I have it happen occas... Phillip Davis
04:39 AM Bug #4642: OpenVPN process status stopped... but its running: Hi,
I could fix all my problems with the attached changes in rc.carpmaster and rc.carpbackup.
1. Added more det... Cullen Trey
04:41 AM pfSense Packages Bug #3442: Stunnel package $config issue?: This bug simply doesn't exist anywhere on any sane pfSense version. End of story. Kill Bill
03:39 AM pfSense Packages Bug #4167: Lightsquid package does not remove crontab entries: Fixed. Kill Bill

10/31/2015

06:03 PM Bug #5361: PFSense Control Panel hangs: Correct. Rebooting fixed the DNS issue. Julian Zhou
06:00 PM Bug #5361: PFSense Control Panel hangs: OK thanks. So just to confirm rebooting solved your DNS issue, but the dashboard still hangs?
I will attempt to re... Anonymous
05:57 PM Bug #5361: PFSense Control Panel hangs: No, but a reboot fixed it.
It still hangs, the widgets I have loaded are System Information and Interfaces expand... Julian Zhou
05:25 PM Bug #5361: PFSense Control Panel hangs: So are you able to resolve the issue by changing that DNS name?
FYI I just pushed an updated version of the ipsec ... Anonymous
05:19 PM Bug #5361: PFSense Control Panel hangs: Although, it would appear that originally, the DNS name I gave it (something.tcn) would resolve. It no longer resolve... Julian Zhou
05:17 PM Bug #5361: PFSense Control Panel hangs: Still hangs here. Not fixed :| Julian Zhou
04:36 PM Bug #5361: PFSense Control Panel hangs: Updating as Renato suggested corrected the issue for me.
Julian - Would you do the same and report back please?
... Anonymous
04:27 PM Bug #5361 (Feedback): PFSense Control Panel hangs: Please update the system using console, option 13. This function os part of php56-pfSense-module version0.7 Renato Botelho
04:25 PM Bug #5361: PFSense Control Panel hangs: OK thanks. Fixing the IPSec widget fixed the issue for me, so once that change makes its way out I'll ask you to test... Anonymous
03:20 PM Bug #5361: PFSense Control Panel hangs: I trashed the IPSec widget, it still hangs. :| Julian Zhou
02:03 PM Bug #5361: PFSense Control Panel hangs: Recent change to ipsec widget breaks the dashboard when that widget is in use.
https://github.com/pfsense/pfsense/co... Anonymous
01:35 PM Bug #5361 (Resolved): PFSense Control Panel hangs: It would appear that the main page upon login to the control panel hangs and prevent other pages from loading. All th... Julian Zhou
05:23 PM Bug #5362 (Resolved): IPSec widget tab functionalit broken: <div>s were updated, tables reformatted and Javascript replaced. Tabs now work the same as 2.2.x Anonymous
04:55 PM Bug #5362 (Resolved): IPSec widget tab functionalit broken: The three tabs at the top of the ipsec widget do not function. Anonymous
12:46 PM Bug #5273: UMTS / 3G Connection reports wrong Gateway information (10.64.64.0) and no data is going through that connection.: Hello Chris, hello PFSense-Team,
I was not able to get it to work as it should. I decided to move to an old LTE-Rout... Thomas Burger
11:57 AM Todo #4847: NanoBSD Image Flash Block Misalignment: About time. Upstream:
Support for detecting and implementing aligning partitions on 1Mb boundaries has been added ... ky41083 -
09:35 AM Bootstrap Bug #5357 (Resolved): Simplify vpn_ipsec.php: Anonymous
04:36 AM pfSense Packages Bug #3439: TFTP - cannot start or restart from Status -> Services: Not doable from the package and not a package bug - tftpd used inetd. The only thing doable in the package is removin... Kill Bill
04:25 AM Feature #5360 (New): Add possibility to configure independent "UPnP & NAT-PMP" instances: I have the following setup:
1. WAN1 (GW1) + VLAN1 (main ethernet network)
2. WAN2 (GW2) + VLAN7 (wifi network)
B... Dmitriy K

10/30/2015

04:06 PM Bug #4642: OpenVPN process status stopped... but its running: Hi all,
I can only confirm this issue with CARP IPs and OpenVPN. The PIDs for nanobsd or full install without CARP... Cullen Trey
02:06 PM Bootstrap Bug #5359 (Resolved): Update UI pages to use copyright-master: Anonymous
09:06 AM Bootstrap Feature #5358 (Resolved): Setup wizard PPPoE password field should be type password, not text: Anonymous
09:03 AM Bootstrap Feature #5358 (Resolved): Setup wizard PPPoE password field should be type password, not text: Need to protect from prying eyes.
Also requires "Show password" button to allow checking for typos. Anonymous

10/29/2015

08:25 PM Bug #5353 (Resolved): Add leftsendcert=always to ipsec.conf for mobile profiles using IKEv2 and EAP to better accommodate iOS 9/OS X 10.11: Jim Pingle
05:54 PM Bug #5346: 2.2.4 WLAN on WAN causes Kernel Crash: This bug can be closed. The resolution is indeed found in #4740 Ramon Buckland
05:53 PM Bug #4740: Intel wireless kernel panic in infrastructure mode with WPA: Yes, moving the sleep(1) line from above to below the wpa_supplicant loading line resolved the issue.
I now have p... Ramon Buckland
03:00 PM Bootstrap Bug #5228 (Feedback): Empty space before (drop-down) field display value: A combination of the suggested methods seems to produce the best display. Select padding has been reduced from 12 to ... Anonymous
01:48 PM Bootstrap Bug #5357 (Resolved): Simplify vpn_ipsec.php: This page is a mess of buttons, icons and sortable rows. It really needs to be completely re-written using a jQuery l... Anonymous
10:25 AM Bug #5354 (Not a Bug): IPSec VPN tunnel with Cisco ASA - Able to only establish 1 SA: thanks for the follow up Chris Buechler
09:15 AM Bootstrap Todo #5356 (Feedback): Refactor row toggle code in pages that use drag/drop sorting: Refactor completed and tested. Anonymous
09:10 AM Bootstrap Todo #5356 (Resolved): Refactor row toggle code in pages that use drag/drop sorting: Move row toggle code to jquery/pfSenseHelpers.js to make hte pages consistent and reduce code size.
usr/local/www/... Anonymous
03:42 AM Bug #5355: on Dynamic WAN IP (DHCP Client) it takes 10 minutes before Phase1 reconnects: add config file with cleared pw Vitali Kari
03:37 AM Bug #5355 (New): on Dynamic WAN IP (DHCP Client) it takes 10 minutes before Phase1 reconnects: 2.2.4-RELEASE (i386)
built on Sat Jul 25 19:56:41 CDT 2015
FreeBSD 10.1-RELEASE-p15
It seems that charon do not ... Vitali Kari

10/28/2015

04:38 PM Bug #5354: IPSec VPN tunnel with Cisco ASA - Able to only establish 1 SA: Resolved.
Changed Configure Unique IDs as: to KEEP
Eddie Gossett
04:02 PM Bug #5354 (Not a Bug): IPSec VPN tunnel with Cisco ASA - Able to only establish 1 SA: I recently upgraded to 2.2.4. After the upgrade, One of the VPN tunnels is acting very strange. The VPN tunnel will n... Eddie Gossett
03:28 PM Bootstrap Bug #5228: Empty space before (drop-down) field display value: to clarify myself: google found a way to fix.....
i'm just idiot with some spare time ;) jeroen van breedam
03:25 PM Bootstrap Bug #5228: Empty space before (drop-down) field display value: found a way to fix it without having to manually add classes to the option fields
https://github.com/pfsense/pfsen... jeroen van breedam
03:07 PM Bootstrap Bug #5228: Empty space before (drop-down) field display value: Thanks. If we really need to do this, I think your second scheme "create a new entry in pfsense.css ".form-select-opt... Anonymous
02:49 PM Bootstrap Bug #5228: Empty space before (drop-down) field display value: <select class=form-control> form-control has padding enabled
the class is not applied to it's <option>'s
so... jeroen van breedam
12:50 PM Bug #5353: Add leftsendcert=always to ipsec.conf for mobile profiles using IKEv2 and EAP to better accommodate iOS 9/OS X 10.11: Applied in changeset commit:76827b9cedc8a816023aa2b882844b883a7fa8c8. Jim Pingle
12:50 PM Bug #5353 (Feedback): Add leftsendcert=always to ipsec.conf for mobile profiles using IKEv2 and EAP to better accommodate iOS 9/OS X 10.11: Applied in changeset commit:50de9fa88581b487918faddefd286caccc14b28c. Jim Pingle
12:42 PM Bug #5353 (Resolved): Add leftsendcert=always to ipsec.conf for mobile profiles using IKEv2 and EAP to better accommodate iOS 9/OS X 10.11: The IKEv2 client on iOS 9 and OS X wants strongSwan to use leftsendcert=always when using a manual configuration. A V... Jim Pingle
12:48 PM Bug #3883: Changing SNMP Bind Interface does not change actual bind interface of SNMP service.: I am guessing that the OP has (had) the old "snmp" "bindlan" set in config.xml
With the code in 2.2.4 or before, tha... Phillip Davis
12:32 PM Bug #3883: Changing SNMP Bind Interface does not change actual bind interface of SNMP service.: This should fix it:
https://github.com/pfsense/pfsense/pull/2000 Phillip Davis
10:44 AM Bug #3883: Changing SNMP Bind Interface does not change actual bind interface of SNMP service.: There is a report of a problem with 2.2.4 at https://forum.pfsense.org/index.php?topic=101538 David Wood
11:40 AM Bootstrap Bug #5352 (Resolved): interfaces_vlan_edit.php produces errors related to the "interfaces" selector.: Anonymous
10:20 AM Bootstrap Bug #5352: interfaces_vlan_edit.php produces errors related to the "interfaces" selector.: Applied in changeset pfsense:commit:ed7f3bbcda1767494e90d779fa92a4d8fcac2524. Anonymous
10:17 AM Bootstrap Bug #5352 (Feedback): interfaces_vlan_edit.php produces errors related to the "interfaces" selector.: Replaced complex and unsafe options generation code with a safer function. Anonymous
10:15 AM Bootstrap Bug #5352 (Resolved): interfaces_vlan_edit.php produces errors related to the "interfaces" selector.: https://forum.pfsense.org/index.php?topic=101537.0 Anonymous
09:21 AM Bug #5351 (Resolved): Sanitze user input, even if restricted by html: The following XSS can be eleminated, by checking if the input is a number, but I think there are more attacks possibl... Marcel Hellwig
04:59 AM Bug #5149: memory leak(s) in strongswan: 2.2.5-DEVELOPMENT (amd64) built on Tue Oct 27 10:31:57 CDT 2015
Not completely definitive yet but the graph I post... Jon Gerdes
03:48 AM Bug #5327 (Resolved): generation of split tunnel attribute in strongswan charon.plugins.attr breaks iOS IKEv2 clients: this is specified correctly now.
The inclusion of split-include in strongswan.conf with iOS clients with IKEv1 PS... Chris Buechler
12:44 AM Bug #5259: firewall_aliases_edit.php: Switch to a URL Table type when you already have multiple rows: Hide the "Delete" button when less than two rows exist - that is working nicely, thanks.
I think everything here i... Phillip Davis

10/27/2015

08:26 PM Bug #5345 (Resolved): IPv6 captive portal allowed hostnames added as /32s: fixed, thanks! Chris Buechler
11:08 AM Bug #5345 (Feedback): IPv6 captive portal allowed hostnames added as /32s: Fixed in latest port revision (filterdns-1.0_6) for 2.2.x and 2.3.
Luiz Souza
06:56 PM Bug #5340 (Resolved): IPsec logging - silent can't be configured, issues with defaults: fixed Chris Buechler
06:55 PM Bug #5350 (Resolved): 2.3 IPsec logging - silent can't be configured, issues with defaults: Need to apply fixes from #5340 to 2.3. Closed #5340 with target 2.2.5 for tracking purposes.
A complication here ... Chris Buechler
06:07 PM Bug #5323 (Resolved): My Certificate Authority is displayed/saved for authentication methods where it is not needed: all good Chris Buechler
10:47 AM Bootstrap Bug #5349 (Resolved): wake_on_line.widget.php - Layout needs to be improved: Widget table Bootstrap formatted.
Icons changed to more suitable font-awesome icons.
Tool-tips added. Anonymous
10:09 AM Bootstrap Bug #5349 (Resolved): wake_on_line.widget.php - Layout needs to be improved: Current layout is unattractive and uninformative. Anonymous
10:01 AM Bootstrap Bug #5348 (Resolved): Viewing on mobile device: Anonymous
09:55 AM Bootstrap Bug #5348: Viewing on mobile device: I have just tried it and works fine now thanks Jake Rote
09:35 AM Bootstrap Bug #5348: Viewing on mobile device: You can git-sync now to get it. It will also be in the next image, but I'm not sure what time today that will be gene... Anonymous
08:48 AM Bootstrap Bug #5348: Viewing on mobile device: Ok cool what build will this be in? Jake Rote
07:32 AM Bootstrap Bug #5348: Viewing on mobile device: Great. Thank you. I will start testing in that way too.
I have added the metadata tag Anonymous
07:22 AM Bootstrap Bug #5348: Viewing on mobile device: This happens on my note 4 it's due to the PPI but the viewport header fixes this. I managed to replicate in chrome de... Jake Rote
07:08 AM Bootstrap Bug #5348 (Feedback): Viewing on mobile device: Thanks Jake.
I have been testing device compatibility using Safari in "Responsive design mode" like this, and have n... Anonymous
06:36 AM Bootstrap Bug #5348 (Resolved): Viewing on mobile device: Bootstrap is not displaying correctly on mobile as the following metadata is missing from the top of the <head> secti... Jake Rote
09:02 AM Bug #5259: firewall_aliases_edit.php: Switch to a URL Table type when you already have multiple rows: jquery/pfSenseHelpers.js has been further amended to hide the "Delete" button when less than two rows exist.
The n... Anonymous
04:50 AM Bug #5259: firewall_aliases_edit.php: Switch to a URL Table type when you already have multiple rows: 2.3-ALPHA (amd64)
built on Mon Oct 26 19:32:58 CDT 2015
FreeBSD 10.2-STABLE
I played with various ways to try ... Phillip Davis
07:14 AM Bug #4326: Limiters on firewall rules where NAT applies drop all traffic: I just want to update that this bug is still present. Any developments? I have tested with 2.2.2. Bryan Bercero
07:00 AM Bootstrap Bug #5347: firewall_nat_out_edit.php issues: Applied in changeset pfsense:commit:9fc6233a19532421c5ff8f88745d6345cb978fc5. Anonymous
06:52 AM Bootstrap Bug #5347 (Feedback): firewall_nat_out_edit.php issues: The two missing elements had been provided, but were hidden unless the protocol was set to TCP, UDP or TCP/UDP.
I ... Anonymous
12:37 AM Bootstrap Bug #5347: firewall_nat_out_edit.php issues: thanks Phil, merged that. Chris Buechler
04:38 AM Bug #5291: Difficult to be sure that a package install has ended: General install, remove, reinstall and reinstall all seems good now. I just tried all the combinations on:
2.3-ALPHA... Phillip Davis
01:51 AM Bug #5207 (Resolved): Hybrid RSA + xauth doesn't appear to configure strongswan correctly for hybrid auth: fixed Chris Buechler
01:14 AM Bootstrap Bug #5288: After Execute PHP Commands with bad code, menus do not work: I can understand that! I am happy to see the results of the crud code that I typed, and press "No" to not submit the ... Phillip Davis
12:46 AM Bootstrap Bug #5288: After Execute PHP Commands with bad code, menus do not work: Phillip Davis wrote:
>
> It still gives the "crash report" stuff, which is good
This part, I'm not sure that's ... Chris Buechler
12:35 AM Bootstrap Bug #5288 (Resolved): After Execute PHP Commands with bad code, menus do not work: thanks Phil.
The general issue Steve discussed earlier today as part of this, where PHP getting stuck making the ... Chris Buechler
01:01 AM Bug #5313 (Resolved): Intermediate internal CA's are created without a reference to the signing internal CA: works Chris Buechler
12:47 AM Bug #5343 (Resolved): Cannot upload or download from exec.php when in non-English language: fixed Chris Buechler
12:40 AM Bug #5343: Cannot upload or download from exec.php when in non-English language: 2.2.5-DEVELOPMENT (i386)
built on Mon Oct 26 18:12:44 CDT 2015
FreeBSD 10.1-RELEASE-p23
Works Phillip Davis
12:46 AM Bug #5342 (Resolved): Cannot change outbound NAT modes when using non-English translation: also confirmed on 2.2.5. thanks Phil! Chris Buechler
12:39 AM Bug #5342: Cannot change outbound NAT modes when using non-English translation: 2.2.5-DEVELOPMENT (i386)
built on Mon Oct 26 18:12:44 CDT 2015
FreeBSD 10.1-RELEASE-p23
Works Phillip Davis

10/26/2015

11:28 PM Bug #5343: Cannot upload or download from exec.php when in non-English language: 2.3-ALPHA (amd64)
built on Mon Oct 26 19:32:58 CDT 2015
FreeBSD 10.2-STABLE
Works Phillip Davis
09:10 AM Bug #5343: Cannot upload or download from exec.php when in non-English language: Applied in changeset commit:bd8eeef99c49ac278d9c21e0304911715f7b1e35. Anonymous
09:02 AM Bug #5343 (Feedback): Cannot upload or download from exec.php when in non-English language: Updated as suggested above.
Also added Javascript to scroll the page to the PHP section when a PHP command is executed. Anonymous
11:26 PM Bug #5342: Cannot change outbound NAT modes when using non-English translation: 2.3-ALPHA (amd64)
built on Mon Oct 26 19:32:58 CDT 2015
FreeBSD 10.2-STABLE
Works Phillip Davis
08:30 AM Bug #5342: Cannot change outbound NAT modes when using non-English translation: Applied in changeset commit:11a6f29cde1331c5e31204d3794c6f4f9a32aa57. Anonymous
08:25 AM Bug #5342 (Feedback): Cannot change outbound NAT modes when using non-English translation: I see no need to test the value of the $_POST['save'] parameter so have removed the test.
There were a couple of o... Anonymous
11:23 PM Bootstrap Bug #5288: After Execute PHP Commands with bad code, menus do not work: 2.3-ALPHA (amd64)
built on Mon Oct 26 19:32:58 CDT 2015
FreeBSD 10.2-STABLE
That works nicely now. It still gi... Phillip Davis
03:10 PM Bootstrap Bug #5288: After Execute PHP Commands with bad code, menus do not work: Applied in changeset pfsense:commit:3e115dbf716a9bdb6b972a367c0f0a44f183f6ab. Anonymous
03:09 PM Bootstrap Bug #5288 (Feedback): After Execute PHP Commands with bad code, menus do not work: Changed the code to write the user's PHP to a file and execute it with a new instance of PHP.
Seems to fix the pro... Anonymous
02:34 PM Bootstrap Bug #5288: After Execute PHP Commands with bad code, menus do not work: My testing has not uncovered an answer to this yet. Basically fatal PHP errors (as opposed to syntax errors) cause th... Anonymous
11:15 PM Bootstrap Bug #5347: firewall_nat_out_edit.php issues: Part (1) should be fixed by https://github.com/pfsense/pfsense/pull/1989
I will leave parts (2) and (3) for Mr Bea... Phillip Davis
10:14 PM Bootstrap Bug #5347 (Resolved): firewall_nat_out_edit.php issues: 1) The source field loses its value upon editing an existing rule.
2) the static port checkbox has gone missing
3... Chris Buechler
10:56 PM Bug #4326: Limiters on firewall rules where NAT applies drop all traffic: I just wanted to re-add to what zuber ahmed, and that NAT reflection gets broken while having limiters on the LAN
... Albert Yang
09:59 PM Bug #5346 (Duplicate): 2.2.4 WLAN on WAN causes Kernel Crash: duplicate of #4740. The sleep there might work around the issue, if you could try that and report back on #4740 it'd ... Chris Buechler
07:52 PM Bug #5346 (Duplicate): 2.2.4 WLAN on WAN causes Kernel Crash: Setup:
- 4G WiFi modem / 802.11g/n Channel 2 / WPA2 Personal / AES Encryption
pfsense: 2.2.4

Dell Lattitu... Ramon Buckland
08:39 PM Bug #5149 (Feedback): memory leak(s) in strongswan: the next snapshot build run should have strongswan compiled with --with-printf-hooks=vstr, which is the best option w... Chris Buechler
02:58 PM Bug #5149: memory leak(s) in strongswan: If this seems to be working i can test on my box, Just need to know how i can edit the strongswan.conf without it bei... Adam Piasecki
05:39 PM Bug #5340 (Feedback): IPsec logging - silent can't be configured, issues with defaults: Thanks Matt, got both those too.
This seems to be ok now. Chris Buechler
03:32 PM Bug #5340: IPsec logging - silent can't be configured, issues with defaults: If you are shifting the scale to the range 1..6, the statement where you set the default value to 2 is incorrect. Whe... Matthew Smith
02:55 PM Bug #5340 (Confirmed): IPsec logging - silent can't be configured, issues with defaults: better, couple remaining things I'm fixing now Chris Buechler
12:19 AM Bug #5340 (Feedback): IPsec logging - silent can't be configured, issues with defaults: should work in 2.2.5 now. Needs review, and merging to 2.3. Chris Buechler
05:23 PM Bug #4746 (Resolved): captive portal allowed hostnames not loaded into table at boot time: Kill Bill: be nice, please.
Jonatan: use the newest available 2.2.5 snapshot and this will work.
Confirmed fi... Chris Buechler
07:25 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: You need a snapshot that had a chance of including the patch; i.e., the one built AFTER the patch was committed. I th... Kill Bill
05:05 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: Updated to 2.2.2-DEVELOPMENT (20151019-1916), it is still not working. Only a few of the Allowed Hostnames are workin... Jonatan Hazell
05:22 PM Bug #5345 (Resolved): IPv6 captive portal allowed hostnames added as /32s: Now that adding of table entries in ipfw works (#4746), this problem is apparent. Add a hostname with an AAAA (like p... Chris Buechler
04:07 PM Bug #4825 (Resolved): Mobile client IPsec config omits peer identifier: this is fine as is in 2.2.4 and newer. Chris Buechler
02:06 PM Bug #4825 (Feedback): Mobile client IPsec config omits peer identifier: This works in 2.2.4 and 2.2.5 for non-PSK authentication types.
Matthew Smith
02:44 PM Bug #5245 (Resolved): iOS IPsec PSK mismatches: That's true of main mode only, as aggressive sends the ID in the clear, but agree that this is fine now. The group do... Chris Buechler
02:17 PM Bug #5245 (Feedback): iOS IPsec PSK mismatches: This is fine. According to this document https://wiki.strongswan.org/projects/strongswan/wiki/IpsecSecrets you cann... Matthew Smith
12:21 AM Bug #5245: iOS IPsec PSK mismatches: Thread where issue is discussed for reference:
https://forum.pfsense.org/index.php?topic=97530.0
Matthew Smith w... Chris Buechler
01:41 PM Bug #5241 (Resolved): rightca should be specified in ipsec.conf: it's set correctly now, and things still work Chris Buechler
07:29 AM Bug #5241: rightca should be specified in ipsec.conf: rightca is set correctly on an EAP-TLS connection using pfSense-Full-Update-2.2.5-DEVELOPMENT-amd64-20151025-1504.tgz... David Wood
01:37 PM Bug #5344 (Duplicate): OpenVPN Peer to Peer - wrong status after reconnection: duplicate of #4642 Chris Buechler
03:32 AM Bug #5344: OpenVPN Peer to Peer - wrong status after reconnection: This sounds a lot like https://redmine.pfsense.org/issues/4642
The OpenVPN tunnel is actually running fine, passing ... Phillip Davis
02:18 AM Bug #5344 (Duplicate): OpenVPN Peer to Peer - wrong status after reconnection: I have created VPN tunnel. It is SiteToSite OpenVPN.
Both side have CARP Cluster with 2 ISP each.
ServerA1 (FW-A... Grzegorz Sliwa
01:14 PM Bug #5297 (Resolved): ppp-linkdown and ppp-linkup do not handle SLAAC, DHCP6 and DHCP-PD correctly: Thanks David. Works fine in all my tests too. Chris Buechler
07:19 AM Bug #5297: ppp-linkdown and ppp-linkup do not handle SLAAC, DHCP6 and DHCP-PD correctly: Tested and confirmed working correctly in pfSense-Full-Update-2.2.5-DEVELOPMENT-amd64-20151025-1504.tgz David Wood
12:56 PM Bug #5341: dnsmasq 2.75 exits with signal 11: There was nothing remarkable in the resolver log. The line
kernel: pid 28880 (dnsmasq), uid 65534: exited on signa... Nei Ka
12:47 PM pfSense Packages Bug #5250: ACB backup time should display local time: So the missing information here is that you are talking about a package. I didn't realize that until I asked another ... Anonymous
12:17 PM pfSense Packages Bug #5250: ACB backup time should display local time: These are the exact same backup; the Backup History shows correct local time, the ACB list shows unknown TZ junk. (Ev... Kill Bill
12:05 PM pfSense Packages Bug #5250: ACB backup time should display local time: Just to avoid more confusion: CET=GMT+1. (And CEST=GMT+2 -- that's the daylight saving TZ which was used until last S... Kill Bill
11:58 AM pfSense Packages Bug #5250: ACB backup time should display local time: It really is easy. If you find yourself outside of the unknown backup server timezone, the diplayed backup times are ... Kill Bill
11:32 AM pfSense Packages Bug #5250 (Feedback): ACB backup time should display local time: I must be misunderstanding the issue.
Would you clarify with step by step instructions to reproduce please? Anonymous
11:29 AM pfSense Packages Bug #5250 (Assigned): ACB backup time should display local time: Anonymous
10:59 AM pfSense Packages Bug #5250: ACB backup time should display local time: Not sure where's this fixed? Cannot see any update to the package, and just to be sure I made a backup and the time d... Kill Bill
09:08 AM pfSense Packages Bug #5250 (Feedback): ACB backup time should display local time: Fixed Anonymous
09:10 AM pfSense Packages Bug #5239 (Closed): Quagga webgui on 2.3-alpha errors on addInput(): Anonymous
06:10 AM Bug #4642: OpenVPN process status stopped... but its running: hi. I report bug as https://redmine.pfsense.org/issues/5344#change-21849 ,but it looks like this same.
Today i in... Grzegorz Sliwa
03:50 AM Feature #4320 (Feedback): Enable port-in-use checking in miniupnpd: Applied in changeset commit:7d790fc310e3273122659b3d96186f16ac300972. Renato Botelho
03:50 AM Feature #4321 (Feedback): Enable IPv6 for miniupnpd: Applied in changeset commit:679c4ac73f8d5c5fe71a9edb3ccdb1f955d616cd. Renato Botelho

10/25/2015

11:21 PM Bug #5341 (Feedback): dnsmasq 2.75 exits with signal 11: What does it log in the resolver log?
Anything relevant in the system log?
Did it just happen once, or is recurri... Chris Buechler
07:41 PM Bug #5340: IPsec logging - silent can't be configured, issues with defaults: let's see if we can't find a work-around, or just push this to 2.3.
PHP is fucking stupid. Jim Thompson
10:02 AM Bug #5343: Cannot upload or download from exec.php when in non-English language: Thanks Phil. I will address this later today. I agree that passing language dependent terms in a POST request is bad.... Anonymous
12:34 AM Bug #5343: Cannot upload or download from exec.php when in non-English language: Pull request for master: https://github.com/pfsense/pfsense/pull/1987
The fix is actually needed in master as well... Phillip Davis
12:21 AM Bug #5343: Cannot upload or download from exec.php when in non-English language: Pull request for RELENG_2_2: https://github.com/pfsense/pfsense/pull/1986 Phillip Davis
12:18 AM Bug #5343 (Resolved): Cannot upload or download from exec.php when in non-English language: e.g. set language to Turkish (which has "Download" and "Upload" translations).
Diagnostics->Command Prompt
Try to d... Phillip Davis
08:29 AM Bug #5328: Unable to Edit Interface due to DHCPV6 Bug: Chris,
That fixed it after I got my dhcp v6 scopes working again.
Thanks Wesley Kirkland

10/24/2015

11:05 PM Bug #5342: Cannot change outbound NAT modes when using non-English translation: Note: PR for master currently breaks the behavior in master, because there are other issues with the (non) translatio... Phillip Davis
09:27 PM Bug #5342: Cannot change outbound NAT modes when using non-English translation: Pull request for RELENG_2_2: https://github.com/pfsense/pfsense/pull/1984
Pull request for master: https://github.co... Phillip Davis
09:05 PM Bug #5342 (Resolved): Cannot change outbound NAT modes when using non-English translation: Forum: https://forum.pfsense.org/index.php?topic=101276.0
"Save" is not being translated when checking the $_POST ... Phillip Davis
07:24 AM Todo #5333 (Feedback): Remove/replace all references to "theme": Removed.
Thanks Anonymous
03:52 AM Todo #5333 (Assigned): Remove/replace all references to "theme": Almost there, still missing src/usr/local/www/widgets/widgets/carp_status.widget.php Renato Botelho
06:48 AM Bug #5341 (Resolved): dnsmasq 2.75 exits with signal 11: Several users have seen frequent dnsmasq crashes since upgrading to versions with dnsmasq 2.75. dnsmasq 2.76test bina... Nei Ka
04:24 AM pfSense Packages Bug #3779 (Resolved): Zabbix Agent 1.x - ZABBIX_AGENT_BASE not defined: thanks Chris Buechler
04:23 AM pfSense Packages Bug #3779: Zabbix Agent 1.x - ZABBIX_AGENT_BASE not defined: No such issue with current packages. Kill Bill
04:17 AM Bug #5328: Unable to Edit Interface due to DHCPV6 Bug: need to remove the config. Disable it as I described earlier after temporarily setting a static v6 IP, manually edit ... Chris Buechler
04:04 AM Bug #5340 (Resolved): IPsec logging - silent can't be configured, issues with defaults: Silent logging can't actually be configured on vpn_ipsec_settings.php, because 0 isn't stored in the config (PHP cons... Chris Buechler
03:56 AM Bug #4874 (Resolved): pf crash related to source tracking: pf_hashsrc: unknown address family 0: fix from FreeBSD applied Chris Buechler

10/23/2015

09:43 PM Bug #5149: memory leak(s) in strongswan: disabling all logging, with the following in strongswan.conf: ... Chris Buechler
06:36 PM Todo #5333 (Resolved): Remove/replace all references to "theme": Thanks Renato. Don't know how I missed those. Now fixed. Anonymous
04:48 PM Bug #5039 (Not a Bug): Multiple PPPoE WANs no longer connect simultaneously after upgrade to 2.2.4: thanks for the feedback Michael, glad it's resolved Chris Buechler
04:32 PM pfSense Packages Bug #3936 (Resolved): Proxy state tab of lightsquid: thanks Chris Buechler
04:32 PM pfSense Packages Bug #2903 (Not a Bug): Lightsquid realtime stat 403 error: Chris Buechler
04:31 PM Feature #5244 (Closed): Allow configuring both leftca and rightca: Agree, this is unnecessary since it's implied. Chris Buechler
02:36 PM Todo #5219 (New): EAP-RADIUS selection for IKEv2 Mobile IPsec should warn if the selected authentication backend is not a RADIUS server.: The warning is given when the user saves on the Mobile IPsec Phase 1, but it is still possible to break by selecting ... Jim Pingle
12:20 PM Todo #5338 (Feedback): Add -4 and -6 support to pfSense-upgrade script: Applied in changeset commit:54d0cd74ea3690a8e589dfde15602a9a0ce492a9. Renato Botelho
08:43 AM Todo #5338 (Resolved): Add -4 and -6 support to pfSense-upgrade script: It's useful to be able to nudge things over IPv4 or IPv6 if connectivity of one type or the other is having trouble. ... Jim Pingle
11:20 AM Bug #5339: IPSec with 2 phases 2: some sort of mismatch with the other end. Can't help with that here, please use the forum or other support resources. Chris Buechler
11:17 AM Bug #5339: IPSec with 2 phases 2: This is the correct configuration on my pfsense.
Please, could you provide me where is the configuration error.
<... Marco Messina
11:12 AM Bug #5339 (Not a Bug): IPSec with 2 phases 2: That's a config problem, please use one of our available support resources for assistance. https://pfsense.org/suppor... Chris Buechler
11:08 AM Bug #5339 (Not a Bug): IPSec with 2 phases 2: Good morning,
I tried to create an IPSec tunnel with 2 Phase 2, but I received the following error: ... Marco Messina
09:16 AM Bootstrap Bug #5336 (Resolved): Page must be refreshed after pkg install to show new menu items: Works Jim Pingle
09:14 AM Feature #5324 (Resolved): Add search capability to Available Packages list to filter packages by keywords: Works great as far as I can tell. I tried various combinations of keywords and regex for the name, description, and b... Jim Pingle
04:21 AM Feature #5324 (Feedback): Add search capability to Available Packages list to filter packages by keywords: Done Renato Botelho
07:15 AM Bug #4326: Limiters on firewall rules where NAT applies drop all traffic: Hi
Traffic limiter still not working with squid3 (transparent mode) + squidgaurd on version 2.2.4.
Is there any t... zuber ahmed
07:02 AM Bug #5337 (Duplicate): Traffic limiter not working with squid3 (transparent mode) + squidgaurd.: Duplicate of #4326 Jim Pingle
06:16 AM Bug #5337 (Duplicate): Traffic limiter not working with squid3 (transparent mode) + squidgaurd.: Hi
Traffic limiter not working with squid3 (transparent mode) + squidgaurd. It blocks all traffic on http.
this... zuber ahmed

10/22/2015

10:15 PM Bug #5334 (Resolved): unbound root.key file corruption can prevent unbound from starting: fixed
Unbound fixed the missing fsync for a future release Chris Buechler
09:51 PM Bug #4931 (Resolved): dhcpleases misses some DHCP lease changes: works now, across many changes of the leases file and subsequent updates. Chris Buechler
09:49 PM Bug #5242 (Resolved): IPsec debug log settings not applied after stop/start or restart: fixed Chris Buechler
03:50 PM Bootstrap Bug #5311 (Feedback): vpn_openvpn_*.php: export tabs not installed after installing openvpn client export package: Applied in changeset pfsense:commit:a2b0d90982e6d0e2b6e36cf3cf2b258628244ca3. Renato Botelho
03:26 PM Todo #5333 (Assigned): Remove/replace all references to "theme": It's not complete yet, following files still references to theme:
src/usr/local/www/guiconfig.inc
src/usr/local/w... Renato Botelho
07:52 AM Todo #5333 (Resolved): Remove/replace all references to "theme": The "themes" system is dead and gone for ever. May it rest in peace. Anonymous
02:20 PM pfSense Packages Bug #4634 (Feedback): Still broken openbgpd config generation logic in 2.2: Applied in changeset commit:901d4b81be5f518f4481e487f5568901ef60ac51. Matthew Smith
01:45 PM pfSense Packages Bug #4634: Still broken openbgpd config generation logic in 2.2: I tested this on 2.2.4 and confirmed that it it's broken for neighbors that aren't part of a group.
I will apply t... Matthew Smith
01:26 PM pfSense Packages Bug #4634: Still broken openbgpd config generation logic in 2.2: Adam Thompson wrote:
> See #3227. Still broken when neighbours aren't part of a group.
That should be #3772. Matthew Smith
01:20 PM Todo #5123 (Feedback): Remove WEP: Applied in changeset commit:b061a3c61ced43cf746a4439b2370a03efccab0d. Matthew Smith
11:30 AM Bootstrap Bug #5336: Page must be refreshed after pkg install to show new menu items: Applied in changeset pfsense:commit:db1cc32f5ad36be20896e5688a810065efd7e6bc. Anonymous
11:21 AM Bootstrap Bug #5336 (Feedback): Page must be refreshed after pkg install to show new menu items: Page performs a sneaky refresh after a successful install/remove. Menu changes now take effect immediately. Anonymous
11:18 AM Bootstrap Bug #5336 (Resolved): Page must be refreshed after pkg install to show new menu items: After a new package is installed new menu items may be installed. You can't see them, however, until you refresh the ... Anonymous
10:20 AM Feature #5330 (Feedback): Kernel debug symbols: Applied in changeset commit:a9ae8dac693b33f166530276638df1501c5ab4cd. Renato Botelho

10/21/2015

10:17 PM Bootstrap Bug #5315 (Resolved): System->advanced->Settings cannot save alternate URL: this is fine now. The functionality in general needs work as the alternate URL is no longer applicable, but that's se... Chris Buechler
10:17 PM Todo #5335 (Resolved): system_firmware_settings.php needs updates for pkg: The update URL on system_firmware_settings.php is no longer applicable with pkg. Need to adapt that accordingly, prob... Chris Buechler
08:45 PM Bug #5334: unbound root.key file corruption can prevent unbound from starting: reported upstream here:
https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=712 Chris Buechler
07:52 PM Bug #5334 (Feedback): unbound root.key file corruption can prevent unbound from starting: should be fixed by the fsync alone, and the sanity check will fix any other occurrence of invalid file contents that ... Chris Buechler
07:21 PM Bug #5334 (Resolved): unbound root.key file corruption can prevent unbound from starting: Unbound's root.key can end up containing parts of another file in /var/ such as the circumstances in this thread:
h... Chris Buechler
03:45 PM Todo #5333 (Resolved): Remove/replace all references to "theme": These files still refer to "theme" in some way. Might just be comments though.
src/etc/inc/authgui.inc
src/etc/in... Anonymous
12:07 PM Todo #4841 (Feedback): update AES-GCM/AES-NI bits from FreeBSD -HEAD: The -head IPSEC code was merged into 2.3 repo. Please let me know of any regressions. Luiz Souza
11:32 AM Bug #3614: dhcpd: send_packet: No buffer space available: Same happens on my Soekris net6501-70:
* Release "2.2.5-DEVELOPMENT (i386) built on Tue Oct 20 09:14:46 CDT 2015".
... Anonymous
10:53 AM Bootstrap Bug #5332 (Resolved): Firewall Log Widget - IPv6 log entries spill out and break formatting: Very nice! Jim Pingle
10:51 AM Bootstrap Bug #5332: Firewall Log Widget - IPv6 log entries spill out and break formatting: !pfSense_localdomain_-_Status__Dashboard.jpg! Anonymous
10:48 AM Bootstrap Bug #5332 (Feedback): Firewall Log Widget - IPv6 log entries spill out and break formatting: <wbr> (word break opportunity) tags have been inserted into the displayed address string at every ':' to allow the wo... Anonymous
09:44 AM Bootstrap Bug #5332 (Resolved): Firewall Log Widget - IPv6 log entries spill out and break formatting: When firewall log entries are present with IPv6 addresses, the log entries spill out and break formatting.
Example... Jim Pingle
09:07 AM Bug #5328: Unable to Edit Interface due to DHCPV6 Bug: Chris,
I am just trying to enable the interface and it will not let me enable it due to the error above. I tried m... Wesley Kirkland
09:06 AM Feature #5331 (New): IPSec table for tuning strongswan.conf: Tried to add retransmission strategy in a pull request https://github.com/pfsense/pfsense/pull/1860 and is now consid... Lars Pedersen
09:04 AM Feature #5330 (Resolved): Kernel debug symbols: Please add the kernel debug symbols to all builds (except the nano builds).
This makes easier for us to debug kern... Luiz Souza
09:02 AM Bug #5329 (Resolved): XMLRPC HA sync is not working with https: To reproduce setup 2 pfSense boxes using https and then set HA XMLRPC sync and Notices like this will popup:
A com... Renato Botelho
08:30 AM Bug #5327: generation of split tunnel attribute in strongswan charon.plugins.attr breaks iOS IKEv2 clients: Applied in changeset commit:f3ee8205e6332d4895e93f4f2831cc65ab98d0c0. Matthew Smith
08:30 AM Bug #5327 (Feedback): generation of split tunnel attribute in strongswan charon.plugins.attr breaks iOS IKEv2 clients: Applied in changeset commit:41f7b662932422f176151532a97858e683f50abd. Matthew Smith

10/20/2015

11:52 PM Bug #5129 (Resolved): OpenVPN - incorrect netmask sent to client with static IP set in RADIUS: fixed Chris Buechler
10:27 PM Bug #5243 (Resolved): only CAs specified in a P1 should be written out to cacerts: fixed Chris Buechler
09:58 PM Bug #5328 (Not a Bug): Unable to Edit Interface due to DHCPV6 Bug: you had that interface assigned at some point and enabled DHCPv6 server on it. It's not relevant to #2065. You can pu... Chris Buechler
09:26 PM Bug #5328 (Not a Bug): Unable to Edit Interface due to DHCPV6 Bug: I am trying to build a openvpn tunnel and I keep getting the following error when enabling the interface
"The follow... Wesley Kirkland
07:54 PM Bug #5294 (Resolved): System users and groups not fully protected from deletion: fixed Chris Buechler
07:44 PM Bug #5242 (Feedback): IPsec debug log settings not applied after stop/start or restart: log duplication fixed Chris Buechler
03:28 PM Bug #5320 (Resolved): IPSec NAT rules are not removed when a tunnel is disabled: fixed Chris Buechler
12:54 PM Bug #5320 (Feedback): IPSec NAT rules are not removed when a tunnel is disabled: should be good Chris Buechler
03:24 PM Bug #4558 (Resolved): DHCP traffic getting blocked with DHCP Relay enabled: fixed Chris Buechler
03:15 PM Bug #5327 (Resolved): generation of split tunnel attribute in strongswan charon.plugins.attr breaks iOS IKEv2 clients: When there is an IPv4 address pool configured for mobile IPSec clients, strongswan.conf is generated with the setting... Matthew Smith
01:20 PM Bug #4924 (Feedback): Package manager - the version comparison code not comparing versions properly: Applied in changeset commit:effd9be7626f1b23debb9282d97cdb71eaaa902e. Renato Botelho
12:34 PM Bootstrap Feature #5326 (Resolved): Add "Top of page" links at bottom of every page: Anonymous
12:34 PM Bootstrap Feature #5326 (Resolved): Add "Top of page" links at bottom of every page: Anonymous
12:23 PM Bug #5323: My Certificate Authority is displayed/saved for authentication methods where it is not needed: To paraphrase an offline discussion between JimP and me about this ticket...
In 2.2.4, the caref attribute that wa... Matthew Smith
12:10 PM Bug #5323: My Certificate Authority is displayed/saved for authentication methods where it is not needed: Applied in changeset commit:ca35be37bf73efc5fd98a473bdc3a8b4fc6b90ca. Matthew Smith
12:10 PM Bug #5323 (Feedback): My Certificate Authority is displayed/saved for authentication methods where it is not needed: Applied in changeset commit:3f0b8a959dd6109b29379f9fb93d392bcd57e15b. Matthew Smith
10:09 AM Bug #5323: My Certificate Authority is displayed/saved for authentication methods where it is not needed: EAP-MSCHAPv2 and EAP-RADIUS do still use the Certificate Authority/Server Certificate, it fails if the CA is not pres... Jim Pingle
09:59 AM Bug #5323 (Resolved): My Certificate Authority is displayed/saved for authentication methods where it is not needed: On the IPSec phase 1 settings page (vpn_ipsec_phase1.php), the field "My Certificate Authority" is displayed for all... Matthew Smith
12:05 PM Bug #5322 (Not a Bug): ARP problem detected: you have an IP conflict. Chris Buechler
09:20 AM Bug #5322 (Not a Bug): ARP problem detected: Hi Team,
Since this morining, I don't know if it is a real conflict address but I see this log in my pfSense:
-02... Jean Yves RANDRIANIAINA
12:03 PM Bug #5321 (Confirmed): rxcsum6, txcsum6 not considered by "Disable hardware checksum offload": Chris Buechler
05:30 AM Bug #5321 (Resolved): rxcsum6, txcsum6 not considered by "Disable hardware checksum offload": On pfsense 2.2.4 installed on ESXi 6.0 with vmxnet NICs, I noticed that disabling hardware checksum offloading via We... tok red
12:01 PM pfSense Packages Bug #5318 (Confirmed): Upgrade FreeRadius to 2.2.9: Chris Buechler
11:59 AM pfSense Packages Bug #5318: Upgrade FreeRadius to 2.2.9: Renato said it had a problem building due to OpenSSL errors. He wanted it assigned to him since it'll take some resea... Jim Pingle
11:50 AM Bug #5045: advanced fields not expanded automatically where such options are configured: Applied in changeset pfsense:commit:df6cb8fe852baa5788f68918b0b742a40b6cf874. Anonymous
11:45 AM Bug #5045 (Feedback): advanced fields not expanded automatically where such options are configured: Anonymous
09:04 AM Bug #5045: advanced fields not expanded automatically where such options are configured: Not all of the pages that sport "Advanced" buttons require this behavior. Looking through the 2.2.x codebase it looks... Anonymous
11:39 AM Bug #5325 (Closed): Traffic shaping wizard creates an unloadable rule-set if using HFSC on a LAN interface that is not up when the rules are loaded.: If you choose HFSC in the wizard (multiwan/multilan) on a LAN interface that is not connected when the wizard complet... Steve Wheeler
10:00 AM Feature #5324 (Resolved): Add search capability to Available Packages list to filter packages by keywords: It would be a great help to have a search box on the Available Packages tab to filter the packages as you type. The p... Jim Pingle
05:30 AM Todo #5221 (Feedback): Cleanup PBI before upgrade: Applied in changeset commit:9ace8a736a7bcb833ae829c6748d5a3c47d1de01. Renato Botelho

10/19/2015

04:30 PM Bug #5257: tcpdump is not working with zerocopy enabled (net.bpf.zerocopy_enable=1): I am disabling the zero copy buffers in pfSense until all the raised issues are fixed in FreeBSD. Luiz Souza
02:07 PM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: @wayne - will certainly do that when I come up against the issue again, but like I said it's not that often it occurs... Michael Knowles
02:02 PM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: Additionally, it seems your web UI does not properly surface these errors, assuming "Reload Filters" is doing somethi... Wayne Huang
02:00 PM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: @Michael, I'd be curious to see the output of running "pfctl -f /tmp/rules.debug" when you experience the problem to ... Wayne Huang
01:59 PM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: In my case, it is exactly due to some interfaces being down. It must receive an interface bandwidth of 0 when the int... Wayne Huang
12:50 PM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: Just to add, as I've been watching this conversation go on today, I've never seen an interface speed change be relate... Michael Knowles
11:54 AM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: Is it because some of the configured interfaces do not have a link at the time of bootup? Wayne Huang
11:07 AM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: Does it make sense that 100 Mb becomes 104857.6 Kb? That calculation seems incorrect - if I take the latter value and... Wayne Huang
11:01 AM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: shaper and ezshaper sections of config.xml: https://gist.github.com/wayne530/beb4da84ecaa3b19bf2d Wayne Huang
10:51 AM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: I'll need to extract out the Traffic Shaper sections for config.xml, but here's the rest.
igb0: flags=8843<UP,BROA... Wayne Huang
10:48 AM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: Then you'll need to attach a copy of config.xml (or at least the shaper section and shaper wizard section) along with... Jim Pingle
10:29 AM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: Yes, I know - the issue is that the link speed has not dropped. The interface is 1Gbps and has not changed.
igb1: ... Wayne Huang
10:25 AM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: Wayne Huang wrote:
> In my case, it appears the traffic shaper config as written by pfSense wizard has a problem:
>... Jim Pingle
10:17 AM Bug #4856: Traffic Shaper blocks traffic when the config is otherwise changed: In my case, it appears the traffic shaper config as written by pfSense wizard has a problem:
Diagnostics > Command... Wayne Huang
12:38 PM Bootstrap Bug #5316 (Resolved): OpenVPN wizard fails on manually created CA: A line of HTML from the old version was accidentally left in place. Now removed. Anonymous
11:21 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: Obviously it will NOT be working in a version released *months* before the fix?! Use the latest 2.2.5 snapshot. Kill Bill
11:07 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: Actually, pfSense has loaded ONE of hostnames, but no more (we got about 10 hostnames listed).
Jonatan Hazell
11:02 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: Thanks.
We're running 2.2.4 and it is still not working, can't add Allowed Hostnames: they are listed in GUI but no... Jonatan Hazell
10:46 AM Bug #4746 (Feedback): captive portal allowed hostnames not loaded into table at boot time: Fixed in 2.3 and 2.2.x.
There were two bugs here:
- A few malformed rules in the initialisation rules (at syste... Luiz Souza
10:32 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: Jonatan Hazell wrote:
> Sorry for spamming. I have not added any IPv6 addresses so it's very strange that they are a... Luiz Souza
08:17 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: Sorry for spamming. I have not added any IPv6 addresses so it's very strange that they are added at all?
This might ... Jonatan Hazell
07:16 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: If we try to delete Allowed hostnames, this is the result I get in the logs: (the list is empty in GUI though...)
... Jonatan Hazell
07:04 AM Bug #4746: captive portal allowed hostnames not loaded into table at boot time: We got the same issue. I can add/delete allowed hostnames but they are not loaded, not even by reloading the service.... Jonatan Hazell
11:20 AM Todo #5219: EAP-RADIUS selection for IKEv2 Mobile IPsec should warn if the selected authentication backend is not a RADIUS server.: Applied in changeset commit:fce93905bf73265546803ca961fc60135a8b95a9. Matthew Smith
11:20 AM Todo #5219 (Feedback): EAP-RADIUS selection for IKEv2 Mobile IPsec should warn if the selected authentication backend is not a RADIUS server.: Applied in changeset commit:0e8674d0db51dd7f7ae8a5e5640b7cea7ccd2c64. Matthew Smith
10:30 AM Bug #4150: Captive Portal doesn't work with > 120 VLAN interfaces: Applied in changeset commit:28c54319caab5374fd87973e304ef083aa46653e. Luiz Souza
09:57 AM Feature #5244 (Feedback): Allow configuring both leftca and rightca: I don't think that this needs to be done. There is an existing field to select a server certificate which dictates wh... Matthew Smith
09:45 AM Bug #5245: iOS IPsec PSK mismatches: Chris Buechler wrote:
> iOS PSK mismatches are happening in some cases. Going back to pre-2.2.4 behavior works, done... Matthew Smith
09:01 AM Bug #5320 (Confirmed): IPSec NAT rules are not removed when a tunnel is disabled: Jim Pingle
09:01 AM Bug #5320: IPSec NAT rules are not removed when a tunnel is disabled: It appears the code in filter.inc is not checking for a disabled P1 or P2 when creating the NAT rules:
https://red... Jim Pingle
08:13 AM Bug #5320 (Resolved): IPSec NAT rules are not removed when a tunnel is disabled: After disabling an IPSec tunnel in the GUI the NAT rules in the phase2 entries are not removed and are still applied ... Steve Wheeler
03:07 AM Bug #5319 (Closed): Error message "No config named" in charon daemon: Hello,
I migrated my pfsense last week from 2.1.5 to 2.2.4.
After the migtration all tunnels was up.
But after f... Frédéric Pougnault

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

11/17/2015

11/16/2015

11/15/2015

11/14/2015

11/13/2015

11/12/2015

11/11/2015

11/10/2015

11/09/2015

11/08/2015

11/07/2015

11/06/2015

11/05/2015

11/04/2015

11/03/2015

11/02/2015

11/01/2015

10/31/2015

10/30/2015

10/29/2015

10/28/2015

10/27/2015

10/26/2015

10/25/2015

10/24/2015

10/23/2015

10/22/2015

10/21/2015

10/20/2015

10/19/2015