Activity

30 days up to

User

Subprojects

Activity

From 03/04/2016 to 04/02/2016

04/02/2016

10:53 PM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: No, arguing about the merits of a solution is not what Redmine bug reports are for, so I won't be, as it just makes m... ky41083 -
09:54 PM Bug #6064 (Confirmed): non-fully qualified hostnames included in hosts file and Unbound local-data: Subject is the issue. You end up with a hosts file like: ... Chris Buechler
05:47 PM Bug #6064 (Resolved): non-fully qualified hostnames included in hosts file and Unbound local-data: mydomain: my.private
add test.my.private 127.0.0.1
add test.yours.private 127.0.0.2... Grischa Zengel
09:37 PM Bug #6063 (Resolved): RAs not configurable when DHCPv6 relay enabled: fixed Chris Buechler
05:07 AM Bug #6063 (Feedback): RAs not configurable when DHCPv6 relay enabled: fix pushed Chris Buechler
05:06 AM Bug #6063 (Resolved): RAs not configurable when DHCPv6 relay enabled: It's not possible to configure RAs when DHCPv6 relay is enabled.
https://forum.pfsense.org/index.php?topic=108866.0 Chris Buechler
08:59 PM Bug #6065 (Confirmed): unbound: Domain Overrides are not always working if using stub-zones: It looks like it would be preferable to use forward-zone rather than stub-zone in all cases for domain overrides. The... Chris Buechler
08:25 PM Bug #6065: unbound: Domain Overrides are not always working if using stub-zones: I forgot. From man page:
> The servers listed as forward-host: and forward-addr: have to handle further recursion ... Grischa Zengel
08:05 PM Bug #6065 (Resolved): unbound: Domain Overrides are not always working if using stub-zones: The most time Domain Overrides are used for private networks:
# The used DNS servers are not authoritative
# The au... Grischa Zengel
05:39 AM Bug #6054: Unbound first run errors: Just done yet another run. Here are steps to reproduce:
1. Do fresh install.
2. Check "Use RAM disks".
3. Reboot.
... Dmitriy K
03:28 AM Bug #6001 (Confirmed): Not all packages are started during boot time: Marc's going to pick up on this. We've discussed it at length.
TLDR version: The issue is when rc.start_packages ... Chris Buechler

04/01/2016

08:48 PM pfSense Packages Bug #6062 (Needs Patch): stunnel should use "WAN IP" to protect you from breaking stunnel config: Like some other services and firewall/NAT settings you can choose "WAN IP" that's a dynamic value that will always be... Derek Schrock
08:41 PM pfSense Packages Bug #6061 (Closed): stunnel package update request: If supported under 2.2.6 can the stunnel package be updated to the latest release? 5.31 (https://www.stunnel.org/down... Derek Schrock
08:40 PM pfSense Packages Bug #6060 (Closed): stunnel certs tab does update cert tab: under 2.2.6-RELEASE with stunnel 5.20.3 package installed the cert tab page never updates after adding a new cert. T... Derek Schrock
08:34 PM Bug #6056: DNS Resover after upgrade to RC: thanks, I'll check that. Chris Buechler
03:16 PM Bug #6056: DNS Resover after upgrade to RC: No, hadn't chosen "all" I had selected the specific interfaces.
i added a part of the 2.2.6 config (Hoping it is t... Pol Bettinger
03:03 PM Bug #6056: DNS Resover after upgrade to RC: Never bound to them specifically, that is. They were skipped in Unbound's config. #4021 has specifics on that.
If... Chris Buechler
02:58 PM Bug #6056: DNS Resover after upgrade to RC: Never bound before? Strange.
My Samba 4 Server does DNS forwarding to the local-link IP of the pfsense interface. An... Pol Bettinger
02:52 PM Bug #6056: DNS Resover after upgrade to RC: Unbound never bound to link local IPs before. The fact they're there now and work is because of fixes in 2.3. I suspe... Chris Buechler
02:39 PM Bug #6056: DNS Resover after upgrade to RC: upgrade from 2.2.6 of course not 2.3.6 :-( Pol Bettinger
02:36 PM Bug #6056 (Closed): DNS Resover after upgrade to RC: after upgrade from 2.3.6 to RC, DNS resolving didn't work from my machines in the LAN anymore.
As i looked into it i... Pol Bettinger
08:32 PM Bug #6055 (Confirmed): Menu items may remain from packages no longer installed: That can happen with any package in that circumstance (and has always been the case). Chris Buechler
02:01 PM Bug #6055 (Confirmed): Menu items may remain from packages no longer installed: I just upgraded to 2.3 RC as described here: https://forum.pfsense.org/index.php?topic=109104.0
Under Services the... Pim Pish
07:39 PM Bug #6053: remove ntpdate_sync_once.sh, ntpd -g suffices: Difference between timestamps is -9764. Assuming that's seconds, nearly 3 hours. Is it possible that NTP has come u... Jim Thompson
08:15 AM Bug #6053 (Resolved): remove ntpdate_sync_once.sh, ntpd -g suffices: >rc.bootup: The command '/usr/bin/nice -n20 /usr/local/bin/rrdtool update /var/db/rrd/lan-traffic.rrd N:U:U:U:U:U:U:U... Dmitriy K
06:44 PM Bug #6057: OpenVPN only working after restarting the service after the upgrade to RC: this is the issue: ... Chris Buechler
02:53 PM Bug #6057: OpenVPN only working after restarting the service after the upgrade to RC: Server
Server Mode: Peer2Peer (SSL/TLS)
Protocol UDP Pol Bettinger
02:40 PM Bug #6057 (Feedback): OpenVPN only working after restarting the service after the upgrade to RC: Client or server? What type of OpenVPN config? What was in the OpenVPN logs post-boot? Chris Buechler
02:39 PM Bug #6057 (Not a Bug): OpenVPN only working after restarting the service after the upgrade to RC: OpenVPN only working after restarting the service after the upgrade to RC Pol Bettinger
06:41 PM Bug #6059 (Not a Bug): Parse error /etc/inc/util.inc on line 869 during 2.2.6 upgrade to 2.3 RC: That's what will happen if you try to hit the GUI after most of the upgrade is complete but it hasn't rebooted into t... Chris Buechler
06:32 PM Bug #6059 (Not a Bug): Parse error /etc/inc/util.inc on line 869 during 2.2.6 upgrade to 2.3 RC: Performing upgrade from 2.2.6 amd64 to 2.3 RC amd64 using 'firmware update', after waiting enough time for a reboot t... Craig Gill
05:23 PM Bug #6058: New GUI does not keep navigation bar visible.: Damn, you're fast.... I found it just now and was about to come back and delete/close this. Apologies. Sam Bingner
05:22 PM Bug #6058 (Not a Bug): New GUI does not keep navigation bar visible.: System>General Setup, "Top Navigation". You can change it there. It's as it is by default because that's the only way... Chris Buechler
05:19 PM Bug #6058 (Not a Bug): New GUI does not keep navigation bar visible.: The old GUI allowed you to always switch to another section easily by keeping the top navigation menu visible. The n... Sam Bingner
03:53 PM Bug #6001 (New): Not all packages are started during boot time: I finally managed to reproduce this in a 100% reliable fashion. In my test case, WAN is static, WAN2 is DHCP. If WAN2... Jim Pingle
03:06 PM Bug #6054: Unbound first run errors: Yeah, it was a fresh installation. Dmitriy K
02:04 PM Bug #6054: Unbound first run errors: Was it a fresh install or upgrade? I did a fresh install here and unbound is up after boot, with no error messages. Renato Botelho
08:17 AM Bug #6054 (Resolved): Unbound first run errors: >Apr 1 08:32:51 unbound 42511:0 error: Error for server-cert-file: /var/unbound/unbound_server.pem
>Apr 1 08:3... Dmitriy K
11:44 AM pfSense Packages Bug #6048 (Closed): Can not install NUT package, wrong package URL: Renato Botelho
10:30 AM pfSense Packages Bug #6048: Can not install NUT package, wrong package URL: Looks like fixed now. Vladimir Suhhanov
03:59 AM Bug #5921 (Not a Bug): Freeze when Gateway goes down: Doesn't seem to be any bug here. If you find specifics showing otherwise, please follow up. Chris Buechler
03:39 AM Bug #5921: Freeze when Gateway goes down: It must be something with high priority because I am unable to operate a console. It just doesn't response to keyboar... Joel Linn
03:23 AM Bug #6052 (Confirmed): Update to RC: Error trying to get packages list. Aborting...: appears that's related to the change of package repo URLs Chris Buechler
02:38 AM Bug #6052: Update to RC: Error trying to get packages list. Aborting...: Confirming same on amd64 following upgrade from 28 March beta to RC using the GUI. Greg Siemon

03/31/2016

10:56 PM Bug #6052 (Resolved): Update to RC: Error trying to get packages list. Aborting...: Update from 3/30 beta to 3/31 RC using console option 13.

Near the end of the auto reboot, just after generati... NOYB NOYB
05:51 PM Bug #6051 (New): DHCPv6 Client Failure for additional WAN Address causes 2-seconds-service-restart-loop: When NOT setting "Request only an IPv6 prefix" with a provider that returns NoAddrAvail (see attached pcap), pfsense ... Timo Boettcher
05:07 PM Bug #5481 (Duplicate): HTML Status Codes not Processed Properly from download_file: I fixed this in #5848 Chris Buechler
03:09 PM Bug #6050 (Resolved): services_dhcp.php: "Network booting" section default style is confusing/easy to overlook: On services_dhcp.php the "Network Booting" options are in their own separate section which defaults to collapsed. Unl... Jim Pingle
02:39 PM Feature #6049 (Resolved): status_ipsec.php needs to be converted to update via AJAX: The information on status_ipsec.php should be updated via AJAX, rather than requiring the page to be reloaded. Jim Pingle
01:50 PM Bug #3976: VLAN Interfaces on LAGG get orphaned on LAGG change: Thanks Chris, the difference in my case is that rebooting the device yields the same issue ie. the vlans interfaces a... David Farrugia
01:44 PM Bug #3976: VLAN Interfaces on LAGG get orphaned on LAGG change: David Farrugia wrote:
> Any one else manage to reproduce this?
It regressed in 2.3 and was fixed there on a separ... Chris Buechler
11:44 AM Bug #3976: VLAN Interfaces on LAGG get orphaned on LAGG change: I can reproduce this at will on embedded alix2d13 running 2.2.6-RELEASE (i386):... David Farrugia
09:40 AM pfSense Packages Bug #6048 (Closed): Can not install NUT package, wrong package URL: ... Vladimir Suhhanov
03:28 AM pfSense Packages Bug #6047 (Resolved): syslog-ng does not logrotate: Hello,
I have syslog-ng 1.1.2_1 installed and configured to rotate my logs, but it obviously doesn't.
Checking fo... Orsiris de Jong
01:08 AM Bug #6046 (Not a Bug): Remote Desktop Frequent disconnects on Azure RDP: Please post to forum.pfsense.org or use one of our other available support resources. https://pfsense.org/support
... Chris Buechler
12:47 AM Bug #6046 (Not a Bug): Remote Desktop Frequent disconnects on Azure RDP: Dear All,
All is well when i connect RDP to an Azure Windows server. But it frequently disconnects every 5 minutes... Sivaprakash Ramasamy

03/30/2016

07:27 PM Bug #6040 (Resolved): system_advanced_misc.php - RRD and DHCP lease backup field will not accept "0": fixed Chris Buechler
03:10 PM Bug #6043 (Resolved): RA handling with CARP support dropped: fixed Chris Buechler
12:39 AM Bug #6043 (Feedback): RA handling with CARP support dropped: all fixed, confirmed working on multiple systems. Will leave to feedback to check once it's in a snapshot. Chris Buechler
03:02 PM Bug #6042 (Resolved): Fatal error creating queues in traffic shaper settings: fixed Chris Buechler
12:28 AM Bug #6042 (Feedback): Fatal error creating queues in traffic shaper settings: Fixed! I missed this before, thanks! Luiz Souza
02:46 PM Bug #6037 (Resolved): missing $_REQUEST['zone'] in captive portal will break many upgraded systems: fixed Chris Buechler
07:06 AM Feature #6045 (Resolved): Updates that do not require a reboot should run reroot: Hit a situation last night that seems like it might be rare but worth accounting for in the future: I updated a VM to... Jim Pingle
06:46 AM Bug #6044 (Resolved): system>monitoring tooltip unit "null" for some graphs: https://github.com/pfsense/FreeBSD-ports/pull/88 jeroen van breedam
01:11 AM Bug #6039: Using DNS Lookup to create IPv6 alias: Not sure if it is useful, but here is how I made it.
I am runnind a bind with ipv6 and ipv4 entries. In the dns look... Michel Nolf

03/29/2016

08:46 PM Bug #6043 (Resolved): RA handling with CARP support dropped: The rainterface field in services_router_advertisements.php lost its rainterface field.
The rc.carpmaster/backup ... Chris Buechler
07:52 PM Bug #6042 (Resolved): Fatal error creating queues in traffic shaper settings: My version: 2.3.b.20160329.1925_1
On a fresh install. When attempting to configure an interface for the first time... Chris P
07:28 PM Bug #1310 (Resolved): Check pakcage .inc files before including to avoid potential breakage: the root issue here is addressed in 2.3 because it runs in a different PHP instance, so the breakage won't spread. Th... Chris Buechler
05:46 PM pfSense Packages Feature #5434: Let's Encrypt pfSense support: Got some basic functionality working.. Pullrequest send for hopefully the first working version of the acme package o... Pi Ba
04:30 PM Bug #6039 (Resolved): Using DNS Lookup to create IPv6 alias: works. Not sure how you'd end up with an IPv6 IP there currently given drill is doing an A record lookup, had to manu... Chris Buechler
10:00 AM Bug #6039 (Feedback): Using DNS Lookup to create IPv6 alias: Applied in changeset commit:97f42a0590c0bad9bd233b84d6f3173f6bd38c11. Renato Botelho
08:57 AM Bug #6039 (Resolved): Using DNS Lookup to create IPv6 alias: When creating an alias using the DNS Lookup (Diagnostics menu, the IPV6 address is created using /32 instead of /128
Michel Nolf
04:23 PM Bug #6012 (Resolved): Groups with spaces in names not handled correctly in group file: All good. Group scope "remote" is omitted from /etc/group, group names containing spaces are config upgraded to remot... Chris Buechler
01:08 AM Bug #6012: Groups with spaces in names not handled correctly in group file: We already have <scope> on groups for system groups. It'd be best to extend that to user-defined groups so they're co... Chris Buechler
10:50 AM Bug #6041 (Feedback): Status > Monitoring: Call to undefined function rrd_fetch() in rrd_fetch_json.php: Applied in changeset commit:475f0b6dbd9d93e96e58b4b54870c9aa760e99f7. Renato Botelho
10:26 AM Bug #6041 (Resolved): Status > Monitoring: Call to undefined function rrd_fetch() in rrd_fetch_json.php: Some users are getting the following error in their crash reports:... Jared Dillard
10:20 AM Bug #6040 (Feedback): system_advanced_misc.php - RRD and DHCP lease backup field will not accept "0": Applied in changeset commit:5c948e5422e0b8d3ce8063e431727271a7dae8a1. Jim Pingle
10:01 AM Bug #6040 (Resolved): system_advanced_misc.php - RRD and DHCP lease backup field will not accept "0": For RRD and DHCP lease backup a value of 0 signified "disable" on 2.2.x, and the code on the page still accounts for ... Jim Pingle
07:33 AM pfSense Packages Bug #6019: Squid service runs but doesn't process requests after reboot: I've been runnning various tests about this problem, and have updated to 2.3-BETA built on Tue Mar 29 01:50:40 CDT 20... Orsiris de Jong
03:16 AM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: Build 2.3-BETA (amd64) Tue Mar 29 01:50:40 CDT 2016 resolves my shapper issue with the queues sum being reported grea... Orsiris de Jong
01:54 AM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: Weird, all the calls to SetRoot() were removed from code, I'll double check. Thanks. Luiz Souza
01:38 AM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: This was fresh pfSense-CE-memstick-ADI-2.3-BETA-amd64-20160328-1625.img.gz after uploading a 2.2.6 config.
Configu... Chris Linstruth
01:00 AM Bug #4716: "DNS Resolver" lacks SOA for ".local" domain setups: "System Domain Local Zone Type" option was added to DNS Resolver in pfSense 2.3. This allows setting "The local-z... NOYB NOYB
12:11 AM Feature #6038 (New): Add ability to configure which interface is chosen for defining hostname IP in /etc/hosts: It would be useful to be able to define from which interface this hostname to IP mapping is defined, in the event tha... Andrew M

03/28/2016

08:01 PM Bug #6037 (Feedback): missing $_REQUEST['zone'] in captive portal will break many upgraded systems: Chris Buechler
08:00 PM Bug #6037 (Resolved): missing $_REQUEST['zone'] in captive portal will break many upgraded systems: An oddity in how lighttpd did redirects for captive portal meant the $PORTAL_ZONE$ in the portal page was optional, a... Chris Buechler
05:25 PM Bug #5721 (Feedback): ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: New fixes were committed to address the issues from previous commits.
Please test. Luiz Souza
04:23 PM Bug #4326: Limiters on firewall rules where NAT applies drop all traffic: Albert Yang wrote:
> Limiters work with squid proxy(transparent and WPAD)+squidguard
> Hopefully soon with Nat refl... Riroxi .
01:59 PM Bug #4326: Limiters on firewall rules where NAT applies drop all traffic: Limiters work with squid proxy(transparent and WPAD)+squidguard
Hopefully soon with Nat reflection :)
Thanks to R... Albert Yang
02:48 PM Bug #5674: pkg_edit - XML tag 'textarea' missing rows, cols and wrap options: Thanks... I sent Steve a message a few mins ago to ignore those comments... Sorry! :) BBcan177 .
02:46 PM Bug #5674: pkg_edit - XML tag 'textarea' missing rows, cols and wrap options: Resolved is a closed status, BBcan. Chris Buechler
02:33 PM Bug #5674: pkg_edit - XML tag 'textarea' missing rows, cols and wrap options: This can be closed. BBcan177 .
02:31 PM Feature #5814: pkg Installation log file name: This can be closed. BBcan177 .
02:31 PM Bug #5846: Click status Icon to enable/disable Firewall Rules: This can be closed. BBcan177 .
02:21 PM Bug #5684: Spacing issue with buttons that include a font-awesome icon: This can be closed. BBcan177 .
01:51 PM Bug #6035: Squid 0.4.16 do not start after reboot: No, read the other ticket and keep the discussion on the forum until something can be definitively identified. Jim Pingle
01:35 PM Bug #6035: Squid 0.4.16 do not start after reboot: So, I have to start packages manually every time router restarts? That's nice! Dmitriy K
11:44 AM Bug #6035 (Duplicate): Squid 0.4.16 do not start after reboot: Duplicate of #6001 Jim Pingle
11:41 AM Bug #6035: Squid 0.4.16 do not start after reboot: pfSense 2.3.b.20160328.0641. Dmitriy K
11:40 AM Bug #6035 (Duplicate): Squid 0.4.16 do not start after reboot: The subject do not start after reboot. Logs are "clean". Dmitriy K
01:38 PM Bug #1605: DHCP Server should group known clients by interface: assigned for eval (this thing is 5 year old) Jim Thompson
01:36 PM Bug #1310: Check pakcage .inc files before including to avoid potential breakage: seems outdated now. Close? assigned to Pingle Jim Thompson
01:35 PM Bug #3125: hifn on 2.1 breaks certain ciphers w/openssl: not sure that we shouldn't just close this. Assigned to cmb. Jim Thompson
01:33 PM Bug #5367: Safari repeatedly tries to reload dashboard: Assigned to Steve for eval Jim Thompson
01:31 PM Bug #3132: Gateway events for IPv6 affect IPv4 services and vice versa: Ermal -> Steve Beaver Jim Thompson
01:30 PM Bug #5539: rc.firmware - cut does not cut it...: assigned to Renato for eval (maybe we already fixed this?) Jim Thompson
11:44 AM Bug #6036 (Duplicate): freeradius2 1.7.3 do not start after reboot: Duplicate of #6001 Jim Pingle
11:42 AM Bug #6036 (Duplicate): freeradius2 1.7.3 do not start after reboot: The subject do not start after reboot. Logs are "clean".
pfSense 2.3.b.20160328.0641. Dmitriy K
08:33 AM Bug #6034 (Resolved): Error/Log spam from gateway groups during filter reload: Looks good after a gitsync. Jim Pingle
08:20 AM Bug #6034 (Feedback): Error/Log spam from gateway groups during filter reload: Applied in changeset commit:205ae110403d6b9f6f73d31bbe148126b8f5dadf. Jim Pingle
08:11 AM Bug #6034 (Resolved): Error/Log spam from gateway groups during filter reload: Getting this on a recent snap that did not have problems on a snap from 2 weeks ago:... Jim Pingle
06:30 AM Bug #6027: Captive portal 404 log spam: What you can do is, in the head of your custom captive portal page, add:... Jose Luis Duran
06:19 AM Bug #6027: Captive portal 404 log spam: Great, no more 404 error logs! PR #2799 created :) Orsiris de Jong
12:06 AM Feature #6033: ISO with enabled serial console.: Chris Buechler wrote:
> You should be able to install from the serial memstick in that situation no problem.
I su... Thomas Finstad Larsen

03/27/2016

11:24 PM Feature #6033: ISO with enabled serial console.: You should be able to install from the serial memstick in that situation no problem. Chris Buechler
10:52 PM Feature #6033: ISO with enabled serial console.: Chris Palmer wrote:
> During the HD install process, if you choose "custom" install then the option to do embedded i... Thomas Finstad Larsen
10:26 PM Feature #6033 (Closed): ISO with enabled serial console.: there's a serial memstick for this purpose. The ISO generally fine without serial console with Proxmox too, though th... Chris Buechler
10:16 PM Feature #6033: ISO with enabled serial console.: During the HD install process, if you choose "custom" install then the option to do embedded install exists which t... Chris Palmer
09:14 PM Feature #6033 (Closed): ISO with enabled serial console.: An iso installer that uses serial console, and installs pfsense with serial console enabled by default would make it ... Thomas Finstad Larsen
09:51 AM Feature #6032 (Resolved): Show PPPoE uptime on the Dashboard - Interfaces Widget: Presently where it would show the NIC speed of an interface, PPPoE connections show nothing.
Think it would be qui... Bradley Jessnitz
01:54 AM Bug #6027 (Resolved): Captive portal 404 log spam: It's never had one, lighttpd just didn't log 404s there where nginx does. Turning this ticket into that issue since t... Chris Buechler
12:32 AM Bug #6024 (Resolved): IPv6 IPs with leading or trailing : incorrectly considered valid: works, thanks Phil! Chris Buechler
12:16 AM Bug #6015 (Resolved): 95th percentile numbers wrong in monitoring graph: looks good Chris Buechler

03/26/2016

09:58 PM Bug #6031: Anti-Lockoug Rule Not Effective Against Canned Interface Block Rules: LOL I'm not running block private or bogons on LAN. I was just looking at the firewall rules display order vs. th... NOYB NOYB
09:48 PM Bug #6031 (Confirmed): Anti-Lockoug Rule Not Effective Against Canned Interface Block Rules: Yeah the order isn't ideal there. You're probably the only person in the world running block private or bogon on LAN.... Chris Buechler
07:38 PM Bug #6031 (Closed): Anti-Lockoug Rule Not Effective Against Canned Interface Block Rules: The anti-lockout rule appears to be to low in the processing order to be effective against inadvertently enabling ... NOYB NOYB
09:33 PM Bug #5520: IPsec status seems to hang preventing access to the webgui.: Thanks for the follow up, Greg.
Phil: yes, RELENG_2_3 switch over isn't done yet, but when we switch to that we'l... Chris Buechler
09:19 PM Bug #5520: IPsec status seems to hang preventing access to the webgui.: I guess that commit https://github.com/pfsense/pfsense/commit/c5d8cbe07c9646f34afebd2610ac34bed090ced0 to master shou... Phillip Davis
05:53 AM Bug #5520: IPsec status seems to hang preventing access to the webgui.: Hi Chris!
You are correct. Now with your additional fix to background the commands everything is really smooth, thanks! Greg M
05:40 AM Bug #5520 (Resolved): IPsec status seems to hang preventing access to the webgui.: Deadlock confirmed fixed on another system this week by upgrading to 2.3. That's the issue this ticket started with, ... Chris Buechler
07:31 PM Bug #6030: Duplicated tracker IDs on block private networks rules: regressed in cc2cff0b, because of the counters shown on firewall_rules.php rely on those being static. Not a big deal. Chris Buechler
07:21 PM Bug #6030 (Confirmed): Duplicated tracker IDs on block private networks rules: they no longer have unique tracker IDs as they should and used to. Chris Buechler
05:33 PM Bug #6030 (Resolved): Duplicated tracker IDs on block private networks rules: @Mar 26 15:16:27 WAN Block ULA networks from WAN block fc00::/7 (12000) 192.168.2.21 192.168.2.42 ICMP@

Shou... NOYB NOYB
06:23 PM pfSense Packages Feature #5434: Let's Encrypt pfSense support: https://github.com/analogic/lescript has been working for a while. The part that needs work is making it into a prope... Pi Ba
05:45 AM Bug #6015: 95th percentile numbers wrong in monitoring graph: this appears to be sane now. I still need to verify some additional data sets. Chris Buechler

03/25/2016

11:57 PM Bug #6028 (Confirmed): no firewall rules loaded after reboot with invalid ruleset: Ought to keep a "last known good" rules.debug and apply that if it fails, and if that fails/is unavailable, maybe jus... Chris Buechler
11:27 PM Bug #6028: no firewall rules loaded after reboot with invalid ruleset: Pet peeve of mine that the system seems to be wide open by default until firewall rules get applied. Think I brou... NOYB NOYB
08:11 AM Bug #6028 (Resolved): no firewall rules loaded after reboot with invalid ruleset: not a single firewall rule loaded after reboot..
There should be some failsafe default ruleset that prohibits acce... Pi Ba
03:39 PM pfSense Packages Bug #3530: TinyDNS creates incorrect NS records: Not particularly weird, it's really the only way to do split DNS on one box.
The difficulty is how TinyDNS could k... Michael Hasse
03:33 PM Bug #6025 (Assigned): Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: Jim Pingle
03:33 PM Bug #6025: Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: Pushing this out a bit -- not a huge concern for now. If someone hits it they can easily work around it by adjusting ... Jim Pingle
02:41 PM Bug #6029 (New): Unhelpful error messages in xmlparse*.inc and generally: Although it shouldn't happen, a quick forum check shows that errors used to arise some years ago with bare GUI error ... Stilez y
09:07 AM Bug #5993: dhcp6c not started until an RA received: The interfaces.inc.patch attached was generated against 2.3.b.20160325.07**, I have applied it to my system and all ... Martin Wasley
08:40 AM Bug #6026: webinterface, firewall rules, wrapping of columns or visible (horizontal)scrollbar needed when contents doesnt fit: Well lets assume quite some people will still use a mouse to configure their firewall through its webgui..
The iss... Pi Ba
06:29 AM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: Having the same issues here, with Beta 2.3 from 22 March.
I'd be glad to test fixes :) Orsiris de Jong
06:08 AM Bug #6027 (Resolved): Captive portal 404 log spam: Hello,
Minor bug here, when opening the captive portal, there's no favicon.ico so nginx complains:
> nginx: 201... Orsiris de Jong
12:34 AM Bug #6011 (Confirmed): IPv6 link local fails HTTP REFERER check: Chris Buechler
12:20 AM Bug #6024: IPv6 IPs with leading or trailing : incorrectly considered valid: I also submitted a couple of other PRs to PEAR for:
a) Cleanup some comments (some of which are fixed in the pfSense... Phillip Davis
12:17 AM Bug #6024: IPv6 IPs with leading or trailing : incorrectly considered valid: Proposed fix for PEAR library: https://github.com/pear/Net_IPv6/pull/14
Same fix to the pfSense copy: https://github... Phillip Davis

03/24/2016

09:59 PM Bug #6025: Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: Phillip Davis wrote:
> All the rules that you quote look OK, so are you saying that the code that generates the rule... Jim Pingle
09:39 PM Bug #6025: Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: All the rules that you quote look OK, so are you saying that the code that generates the rules is OK, but somehow the... Phillip Davis
02:55 PM Bug #6025 (Resolved): Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: Strange one here:
Testing Load Balancing it seems there is an issue with weights. Given that there are two WANs ea... Jim Pingle
07:44 PM Bug #6026: webinterface, firewall rules, wrapping of columns or visible (horizontal)scrollbar needed when contents doesnt fit: Use a touch screen so you don't have to scroll to the bottom for access to the horizontal scroll bar. Just swipe ... NOYB NOYB
04:39 PM Bug #6026 (New): webinterface, firewall rules, wrapping of columns or visible (horizontal)scrollbar needed when contents doesnt fit: with some rulesets the 'action buttons' dont show on the screen, so first need to scroll down, then right, then back ... Pi Ba
06:43 PM Bug #6024 (Confirmed): IPv6 IPs with leading or trailing : incorrectly considered valid: Net_IPv6::checkIPv6 returns true where the IP ends or begins in : in that case. It's always done that.
Reported u... Chris Buechler
04:05 PM Bug #6024: IPv6 IPs with leading or trailing : incorrectly considered valid: Source and destination in webgui are both set to 1234:5678:90AB:CDEF:1234:5678:90AB:CDEF: please notice the last col... Pi Ba
02:59 PM Bug #6024: IPv6 IPs with leading or trailing : incorrectly considered valid: What is the actual IP address entered in the GUI?
And what is the actual rule found in /tmp/rules.debug that is fail... Jim Pingle
02:14 PM Bug #6024 (Resolved): IPv6 IPs with leading or trailing : incorrectly considered valid: Firewall rules, ip validation allows incorrect ip.
Webgui shows a error while rules are loaded..
There were error... Pi Ba
04:23 PM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: This change was reverted while I'm working on a proper fix.
Sorry for the breakage.
Luiz Souza
03:37 PM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: After making the wizard single Lan single Wan HFCS Scheduler type. Don't know if is related with this changes or not... Raul Ramos
03:56 PM Bug #6012 (New): Groups with spaces in names not handled correctly in group file: Kicking this back open due to the problem above.
I'm tempted to make the LDAP/RADIUS group check both _ and ' ' wh... Jim Pingle
11:10 AM Bug #6012: Groups with spaces in names not handled correctly in group file: Changing the group names with spaces to underscores breaks some working setups that relied on the groups to match ext... Jim Pingle
01:34 PM pfSense Packages Bug #6023 (New): Traffic Shaper (pfsense 2.3) Suricata V3.0 Inline Mode Operation: Gentleman:
Bill Meeks asked that I describe the issue. I have Pfsense 2.3 (beta) installed with the latest version... G. Howard Krauss
09:11 AM pfSense Packages Feature #6022: Consider MLVPN for bonded VPN: Right - I've been looking for an open-source equivalent of Peplink's Speedfusion for some time, and MLVPN is just the... Michael OBrien
01:49 AM pfSense Packages Feature #6022: Consider MLVPN for bonded VPN: +1 for this functionality, whatever the actual solution used.
There are cases where a client office wants VPN conn... Phillip Davis
12:19 AM pfSense Packages Feature #6022 (New): Consider MLVPN for bonded VPN: In a few different situations, I've had clients require Peplink's Speedfusion for multiple-link VPN aggregation betwe... Michael OBrien
08:20 AM pfSense Packages Bug #6021 (Not a Bug): Failed syslog-ng reinstall on 2.3: Stilez y wrote:
> And so it was. Thanks! I guess not a bug as it won't affect regular upgraders? Worth putting in no... Jim Pingle
08:10 AM pfSense Packages Bug #6021: Failed syslog-ng reinstall on 2.3: And so it was. Thanks! I guess not a bug as it won't affect regular upgraders? Worth putting in notes maybe? Stilez y

03/23/2016

04:04 PM Bug #6015: 95th percentile numbers wrong in monitoring graph: It was sorting alphabetically, instead of numerically, before calculating the percentile. It sorts appropriately now ... Jared Dillard
02:10 PM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: I have made a "huge" PR that may fix the problem.
See: https://github.com/pfsense/pfsense/pull/2785/files
It needs ... Jorge M. Oliveira
10:03 AM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: Also getting this when running through the wizard on a different system:... Jim Pingle
08:51 AM Bug #5721 (Assigned): ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: That commit seems to have broken one of my test setups that I've noticed so far, in a rather fatal way (skips most of... Jim Pingle

03/22/2016

11:40 PM Bug #5721 (Feedback): ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: The correct fix is specify the root queue bandwidth in GUI.
This makes the ruleset functional with any kind of med... Luiz Souza
10:50 PM pfSense Packages Bug #6021: Failed syslog-ng reinstall on 2.3: guessing that's a system you upgraded before the full PBI removal fixes were put in place. run: ... Chris Buechler
10:23 PM pfSense Packages Bug #6021 (Not a Bug): Failed syslog-ng reinstall on 2.3: Failed reinstall when initial; status was "configured but not installed" and "!". System is current 2.3b.
pkg manage... Stilez y
04:25 PM Bug #6020: OSCP stapling misconfiguration: Thank you! Jose Luis Duran
03:10 PM Bug #6020 (Resolved): OSCP stapling misconfiguration: that's more relevant for public web servers (which is where that got copy/pasted from), removed. Chris Buechler
11:43 AM Bug #6020 (Resolved): OSCP stapling misconfiguration: Reviewing @/var/log/nginx-error.log@ I found the following message:
> "ssl_stapling" ignored, no OCSP responder UR... Jose Luis Duran
12:29 PM Bug #6016: ovpn-linkup not populating IPv6 gateways: Jose Luis Duran wrote:
>
> It used to "work" (as in the same way IPv4 does) in 2.2.x
No, ovpn-linkup has never ... Chris Buechler
09:31 AM Bug #6016: ovpn-linkup not populating IPv6 gateways: Thanks!
It used to "work" (as in the same way IPv4 does) in 2.2.x Jose Luis Duran
12:02 PM Bug #6015: 95th percentile numbers wrong in monitoring graph: I added a CSV export option so we can double check the numbers if you want to give that a shot. Jared Dillard
10:03 AM Bug #5990: AES-GCM should be an allowed encryption algorithm for IKEv2 in P1: strongswan also got a test configuration using GCM in both "IKE" and "ESP" parameter
https://www.strongswan.org/test... Lars Pedersen
08:12 AM pfSense Packages Bug #6019: Squid service runs but doesn't process requests after reboot: Should have some sleep, forgot to mention essential:
Running 2.3-BETA (amd64) built on Tue Mar 22 02:17:00 CDT 2016 Orsiris de Jong
04:40 AM pfSense Packages Bug #6019: Squid service runs but doesn't process requests after reboot: I'm running captive portal too, which works great.
If I happen to disable transparent proxy and reboot pfSense, ever... Orsiris de Jong
04:26 AM pfSense Packages Bug #6019 (Closed): Squid service runs but doesn't process requests after reboot: Hello,
Strange problem here. I'm running Squid + squidguard in transparent mode.
Everything works find until I re... Orsiris de Jong
03:45 AM Bug #5520: IPsec status seems to hang preventing access to the webgui.: New way to repolicate.
Establish ipsec.
Reboot box A and wait 15 seconds (needs to be 100% down).
Now on box B dis... Greg M
03:32 AM Bug #5520: IPsec status seems to hang preventing access to the webgui.: I can replicate this everytime I do step 1 and 2 from above post.
So this is definitly not fixed. Greg M
02:26 AM Bug #5520: IPsec status seems to hang preventing access to the webgui.: Hi!
It still happens for me, I can`t always replicate. restarting php brings webgui back.
I have 2 pfsenses.
W... Greg M

03/21/2016

09:45 PM Bug #6018 (Resolved): "disable local logging" doesn't disable for filter.log: fixed Chris Buechler
09:44 PM Bug #6018 (Resolved): "disable local logging" doesn't disable for filter.log: The option to disable local logging skips filter.log. Chris Buechler
06:37 PM Bug #5918 (Resolved): IPsec dashboard widget: Tunnels tab shows hard-to-read alternating row color in dark theme: thanks Chris Buechler
04:44 PM Bug #6015 (Feedback): 95th percentile numbers wrong in monitoring graph: It turns out "outblock6" was missing and might have thrown things off. I fixed that issue and it may have fixed the 9... Jared Dillard
04:20 PM Bug #6012 (Resolved): Groups with spaces in names not handled correctly in group file: post-upgrade fixed too. Chris Buechler
03:56 PM Bug #6017 (Resolved): system_gateway_groups_edit.php: Gateway group that includes a deleted gateway in the first entry becomes uneditable: Looks good after gitsync and re-test. Jim Pingle
03:51 PM Bug #6017 (Feedback): system_gateway_groups_edit.php: Gateway group that includes a deleted gateway in the first entry becomes uneditable: This was a combination of a old bug that continued to display group members that no longer exist, and a newer one tha... Anonymous
12:37 PM Bug #6017 (Resolved): system_gateway_groups_edit.php: Gateway group that includes a deleted gateway in the first entry becomes uneditable: If a gateway group has a deleted gateway in the first position, no gateways are displayed when editing the group:
... Jim Pingle
01:14 PM Bug #6016 (Confirmed): ovpn-linkup not populating IPv6 gateways: it never has populated the v6 gateway. Judging by my perusal of the OpenVPN bug tracker as part of #5835, there are i... Chris Buechler

03/20/2016

05:34 AM Bug #6016 (Resolved): ovpn-linkup not populating IPv6 gateways: I'm not sure if this is the intended behavior.
When configured as an OpenVPN (dual stack) client, the @/tmp/ovpn1_... Jose Luis Duran
12:29 AM Feature #5835: Improve OpenVPN client gateway detection in edge cases where the remote does not send gateway information: Jim Pingle wrote:
>
> That said, I believe they do this deliberately. In this scenario if there are no pushed rout... Chris Buechler
12:18 AM Bug #6012: Groups with spaces in names not handled correctly in group file: That wasn't enough to prevent the problem post-upgrade as pw hits the never-ending loop when modifying users before i... Chris Buechler
12:18 AM Bug #6001: Not all packages are started during boot time: I was not having issues until the same snapshot timeframe as Greg. The workaround Greg mentioned works for Lightsquid... Chad Wagner

03/19/2016

11:56 PM Bug #6013 (Resolved): Renaming a group doesn't rename or update it in group file: fixed Chris Buechler
05:12 PM Bug #6013 (Feedback): Renaming a group doesn't rename or update it in group file: also never updated it because it used groupadd instead of groupmod.
fixed Chris Buechler
12:24 AM Bug #6013 (Resolved): Renaming a group doesn't rename or update it in group file: Renaming a group in the user manager leaves the former group name in /etc/group. groupmod -l $group_name should fix.
Chris Buechler
11:42 PM Bug #6014 (Resolved): Changing active LAGG configuration orphans VLANs on it: works Chris Buechler
06:38 PM Bug #6014 (Feedback): Changing active LAGG configuration orphans VLANs on it: fixed Chris Buechler
03:36 PM Bug #6014 (Confirmed): Changing active LAGG configuration orphans VLANs on it: Subject is root issue (at least as it stands today in 2.3, haven't looked back further but probably same previously) Chris Buechler
12:17 PM Bug #6014 (Resolved): Changing active LAGG configuration orphans VLANs on it: Test case:
1x Netgate SG-2440 (pfSense 2.2.6)
1x Cisco SG-30028 managed L2 switch
2x Client laptops, plugged int... Hiroki Yamamoto
11:41 PM Bug #5917 (Resolved): IPsec status widget border shows white edge on right side of dashboard widget in dark theme with Chrome: thanks Chris Buechler
11:31 PM Bug #5917: IPsec status widget border shows white edge on right side of dashboard widget in dark theme with Chrome: Confirmed resolved. Thank you! Andrew M
11:41 PM Bug #6015 (Resolved): 95th percentile numbers wrong in monitoring graph: status_monitoring.php's 95th percentile numbers are way off for at least inpass and outpass total. For instance, the ... Chris Buechler
11:31 PM Bug #5918: IPsec dashboard widget: Tunnels tab shows hard-to-read alternating row color in dark theme: Checked on both dark and light themes. Confirmed resolved. Thanks! Andrew M
05:40 PM Bug #5958: Stale Aliases - upstream DNS changes do not update firewall rules that are based on aliases: Mike Depot wrote:
> I waited until it happened again, and grabbed a log excerpt:
>
Which all looks correct. Did... Chris Buechler
05:09 PM Bug #5958: Stale Aliases - upstream DNS changes do not update firewall rules that are based on aliases: I waited until it happened again, and grabbed a log excerpt:
Mar 19 13:14:32 gateway filterdns: adding entry ... Mike Depot
05:28 PM Bug #6012 (Feedback): Groups with spaces in names not handled correctly in group file: still need to verify in the 2.2.x->2.3 upgrade situation once that makes it to a snapshot. Chris Buechler
04:25 PM Bug #6012 (Resolved): Groups with spaces in names not handled correctly in group file: fixed after e5ef7ae26b32d18b7aa1a117605ccbbfafefca14 Chris Buechler
08:59 AM Bug #6012: Groups with spaces in names not handled correctly in group file: Config upgrade function added to replace spaces with underscores in group names
This has been tested from the cmd ... Anonymous
08:00 AM Bug #6012 (Feedback): Groups with spaces in names not handled correctly in group file: Applied in changeset commit:78d168ceccff8a45da76df2a8487d0f1b1910779. Anonymous
07:52 AM Bug #6012: Groups with spaces in names not handled correctly in group file: Space removed from chars allowed in group name Anonymous
12:14 AM Bug #6012 (Resolved): Groups with spaces in names not handled correctly in group file: Group names that contain spaces are added to the group file with only the last word of the group name. So if you have... Chris Buechler
03:46 AM Bug #5993: dhcp6c not started until an RA received: Just a note to anyone who uses the patches, the patch does two files, interfaces.inc and interfaces.php. There is a n... Martin Wasley
02:28 AM Bug #6001: Not all packages are started during boot time: Ok, I understand. But still 10 days ago all was started just fine I don't know what changed, maybe package startup wa... Greg M
01:25 AM Bug #6001 (Not a Bug): Not all packages are started during boot time: Doesn't appear there is any general problem with package startup (that will be addressed with the status quo of packa... Chris Buechler
01:02 AM Bug #5520: IPsec status seems to hang preventing access to the webgui.: The deadlock in strongswan is confirmed fixed with 2.3 on one production system that was hitting it frequently. There... Chris Buechler

03/18/2016

08:13 PM Bug #6005 (Resolved): CloudFlare dyndns API changes other record settings: this was fixed in December in e93a7c71db7b35512591028316f15f579cd57cf7 Chris Buechler
07:53 PM Bug #6008 (Duplicate): Can't create GRE tunnel on IP Alias VIP: duplicate of #4450, already fixed in 2.3. Chris Buechler
06:49 PM Bug #5993: dhcp6c not started until an RA received: attaching a patch version of the full files Martin posted. Chris Buechler
01:31 PM Bug #5993: dhcp6c not started until an RA received: Chris Buechler wrote:
> There are a number of potential race conditions in the patches here, the one Martin noted am... Martin Wasley
03:58 PM Bug #6010 (Resolved): interfaces_gre.php: Interface flags on GRE interfaces are incorrectly configured, always enabled when saving in GUI: Works Renato Botelho
11:20 AM Bug #6010 (Feedback): interfaces_gre.php: Interface flags on GRE interfaces are incorrectly configured, always enabled when saving in GUI: Applied in changeset commit:93520d92eb5d9627449c88cd9127868dcf0e2c1f. Jim Pingle
11:15 AM Bug #6010: interfaces_gre.php: Interface flags on GRE interfaces are incorrectly configured, always enabled when saving in GUI: gif had the same problem, pushed a fix for both. Jim Pingle
11:08 AM Bug #6010 (Resolved): interfaces_gre.php: Interface flags on GRE interfaces are incorrectly configured, always enabled when saving in GUI: When creating or editing a GRE interface the interface at the OS level (e.g. gre0) has all flags by default (LINK0, L... Jim Pingle
03:00 PM Todo #5994 (Resolved): Make Advanced Buttons work consistently: The rules case seems to be better after that, looks like this can be closed out. Jim Pingle
02:57 PM Todo #5994 (Feedback): Make Advanced Buttons work consistently: Both PRs had been merged. Thanks! Renato Botelho
11:34 AM Bug #6011: IPv6 link local fails HTTP REFERER check: Just a little correction to original post.
5) auth.inc line 208 - get_configured_ipv6_addresses() will return an arr... Jorge M. Oliveira
11:08 AM Bug #6011 (Confirmed): IPv6 link local fails HTTP REFERER check: On default configured pfSense, the LAN interface has the following IPv6 set by default: fe80::1:1
Trying to login ... Jorge M. Oliveira
08:40 AM Bug #6009 (Resolved): status_ipsec.php: IPsec Remote ID always "unknown" when the value is actually known/shown in console output: Confirmed the fix on two other boxes, looks good. Jim Pingle
08:30 AM Bug #6009 (Feedback): status_ipsec.php: IPsec Remote ID always "unknown" when the value is actually known/shown in console output: Applied in changeset commit:dc9d5657abbddc840c1e73bff7748bde4ff39449. Jim Pingle
08:16 AM Bug #6009 (Resolved): status_ipsec.php: IPsec Remote ID always "unknown" when the value is actually known/shown in console output: The remote ID is always printed as "Unknown" even when the correct ID is shown in "ipsec statusall" for example.
I... Jim Pingle
12:20 AM Bug #4310: Limiters + HA results in hangs on secondary: William St.Denis wrote:
> Does anyone have a work around to keep limiters and sync working? The only option I have c... Chris Buechler

03/17/2016

06:11 PM Bug #6003 (Resolved): interfaces_ppps_edit periodic reset settings not saved: Merged your most recent change too. Thanks. Anonymous
05:09 PM Bug #6003: interfaces_ppps_edit periodic reset settings not saved: Works.
I noticed that if the user chooses one of the pppoe_monthly... preset reset options, then when editing the ... Phillip Davis
03:00 PM Bug #6003: interfaces_ppps_edit periodic reset settings not saved: Applied in changeset commit:b00bbc0b56413690eab7e0314ab8725cf583af71. Anonymous
02:48 PM Bug #6003 (Feedback): interfaces_ppps_edit periodic reset settings not saved: Corrected showadv logic
Corrected old issue displaying reset times
Corrected improper save by adding hidden ptpid e... Anonymous
06:11 PM Bug #6007 (Resolved): JavaScript error in firewall_nat_edit.php for protocols that do not use ports: Anonymous
04:52 PM Bug #6007: JavaScript error in firewall_nat_edit.php for protocols that do not use ports: That was easily fixed - just remove the code altogether :)
I wasn't game to do that as I thought the code must have ... Phillip Davis
10:20 AM Bug #6007 (Feedback): JavaScript error in firewall_nat_edit.php for protocols that do not use ports: Applied in changeset commit:47d6bf69f05aad42b7bea8f44811df9ea57b7d96. Anonymous
10:00 AM Bug #6007 (Assigned): JavaScript error in firewall_nat_edit.php for protocols that do not use ports: Anonymous
08:05 AM Bug #6007: JavaScript error in firewall_nat_edit.php for protocols that do not use ports: Note: This happens in the existing firewall_rules_edit.php from master, and also just the same in the version where I... Phillip Davis
07:54 AM Bug #6007 (Resolved): JavaScript error in firewall_nat_edit.php for protocols that do not use ports: 1) Make a NAT Port Forward rule with some protocol that is not TCP or UDP - e.g. ICMP.
2) Turn on the developer stuf... Phillip Davis
05:12 PM Todo #5994: Make Advanced Buttons work consistently: Also since #6003 is fixed so that the periodic reset radio button setting is saved in interfaces_pps_edit.php #6003, ... Phillip Davis
04:46 PM Todo #5994: Make Advanced Buttons work consistently: It needed to fix the test for if a source port from/to fields were default or not, so it considers blank or "any" to ... Phillip Davis
09:43 AM Todo #5994 (Assigned): Make Advanced Buttons work consistently: They all look OK except for firewall_rules_edit.php -- When creating a brand new rule, which defaults to TCP, it show... Jim Pingle
09:37 AM Todo #5994: Make Advanced Buttons work consistently: to me for testing Jim Pingle
09:22 AM Todo #5994 (Feedback): Make Advanced Buttons work consistently: Thank you Phil! Renato Botelho
08:55 AM Todo #5994: Make Advanced Buttons work consistently: All now done and committed:
firewall_rules_edit.php - https://github.com/pfsense/pfsense/commit/c3ed121066c5ec2c201b... Phillip Davis
08:12 AM Todo #5994: Make Advanced Buttons work consistently: These have also now been done and committed:
services_ntpd.php - https://github.com/pfsense/pfsense/commit/c0d1ceda2... Phillip Davis
03:55 PM Bug #4310: Limiters + HA results in hangs on secondary: Does anyone have a work around to keep limiters and sync working? The only option I have come up with is to disable l... William St.Denis
02:13 PM Bug #6001: Not all packages are started during boot time: And found cause.
So I have snort running on 3 ifaces. It takes a long time to start it up. It starts before lights... Greg M
01:56 PM Bug #6001: Not all packages are started during boot time: BTW I guess package startup gets interrupted because after boot (like 10 minutes after) there is still /tmp/.rc.start... Greg M
08:12 AM Bug #6001: Not all packages are started during boot time: >2016/03/17 10:14:00 kid1| /var/run/squid/access.log: (2) No such file or directory
>/tmp/cache.log
>2016/03/17 1... Dmitriy K
07:59 AM Bug #6001: Not all packages are started during boot time: Squid does not start after boot too. Not only Squid.
https://forum.pfsense.org/index.php?topic=108425 Dmitriy K
11:43 AM Bug #6008 (Duplicate): Can't create GRE tunnel on IP Alias VIP: I need to create a tunnel with my local endpoint being a virtual IP. I initially created an IP Alias VIP on loopback... Ed Byrne
10:42 AM Bug #5972 (Resolved): DHCPv6 Server Advanced Settings not displayed on page load: I tested the LDAP field and a couple others, seems to work OK for me. Jim Pingle
09:34 AM Bug #5972 (Feedback): DHCPv6 Server Advanced Settings not displayed on page load: Thanks Phil! Renato Botelho
09:34 AM Bug #5520 (Feedback): IPsec status seems to hang preventing access to the webgui.: Renato Botelho
07:05 AM Bug #6006 (Not a Bug): Can not start on a hard drive after installing a managed: there are hardware compatibility issues with the net6501, though people have gotten them running. We don't support ha... Chris Buechler
04:26 AM Bug #6006 (Not a Bug): Can not start on a hard drive after installing a managed: Hello developer,
I have a trouble when i install pfSense version; of pfSense-memstick-serial-2.2.3-RELEASE-i386.im... Nicolas Rojo
04:37 AM Bug #5953 (Resolved): Widget alignment issues: thanks Chris Buechler
02:50 AM Bug #5953: Widget alignment issues: Looks like everything is fine now. Thanks! Dmitriy K
02:32 AM Bug #5993 (Confirmed): dhcp6c not started until an RA received: There are a number of potential race conditions in the patches here, the one Martin noted among other possibilities. ... Chris Buechler

03/16/2016

11:24 PM Bug #5999 (Confirmed): IPv6 IP Alias prevents Track Interface from working with DHCPv6 and RA: find_interface_ipv6 returns the first IP on the interface in that case, which might not be the intended one in that s... Chris Buechler
07:30 PM Bug #5918: IPsec dashboard widget: Tunnels tab shows hard-to-read alternating row color in dark theme: Applied in changeset commit:f1c27d6942b38de500be05b52e3cfa6bc8e8019c. Anonymous
07:22 PM Bug #5918 (Feedback): IPsec dashboard widget: Tunnels tab shows hard-to-read alternating row color in dark theme: I fixed this by taking out what looked like some old CSS rules. You may want to check it out on the light theme as we... Jared Dillard
07:23 PM Bug #5917 (Feedback): IPsec status widget border shows white edge on right side of dashboard widget in dark theme with Chrome: I was unable to replicate this, but I may have fixed it when I fixed #5918. Jared Dillard
04:32 PM Feature #5474: Add 802.1x configuration to wired interfaces.: Here's a hacked-together shell script that can be used in the meantime:... Doug Dimick
02:37 PM Bug #6005 (Resolved): CloudFlare dyndns API changes other record settings: The update to the CloudFlare API implemented in #4737 hardcodes the 'proxiable' and 'proxied' parameters to false.
... Jeffrey Dvornek
11:49 AM Bug #5993: dhcp6c not started until an RA received: Sorry just noticed patch I posted earlier is backwards!! Mea culpa! Martin Wasley
09:52 AM Bug #5993: dhcp6c not started until an RA received: Richard's patch although allowed dhcp6c to run and get a prefix delegation has issues with losing that prefix shortly... Martin Wasley
08:46 AM Bug #5993: dhcp6c not started until an RA received: Attached rudimentary patch for interfaces.inc proves that starting dhcp6c prior to rtsold is sufficient to trigger th... Richard Patterson
10:06 AM pfSense Packages Bug #6004 (Not a Bug): SquidGuard proxy denied error string doesn't allow special characters: That's a deliberate choice. That field does not have CDATA protection in XML and cannot contain such characters direc... Jim Pingle
10:03 AM pfSense Packages Bug #6004 (Not a Bug): SquidGuard proxy denied error string doesn't allow special characters: Hello,
I'm trying to configure squidGuard, in Common ACL.
When I enter a string for "Proxy Denied Error", the str... Orsiris de Jong
09:59 AM Bug #6003 (Resolved): interfaces_ppps_edit periodic reset settings not saved: Edit a PPPoE interface.
Advanced
1) Choose Periodic Reset = Custom
Enter an hour and minute in Reset Date/Time
Sa... Phillip Davis
08:48 AM Bug #4310: Limiters + HA results in hangs on secondary: I have the same issue.
ha-backup crashed after 7 min Mikhail Platonov
07:08 AM Feature #5997: Captive Portal - Create more then 1024 vouchers once: I responded on your other ticket, we try not to use this system for support type questions such as that. In short:
*... Jim Pingle
02:10 AM Feature #5997: Captive Portal - Create more then 1024 vouchers once: Hi Jim,
thanks for the reply.
To summarize this:
- what happens if we need more than 1023 total rolls some day? ... adminsnet adminsnet

03/15/2016

05:02 PM Bug #6001: Not all packages are started during boot time: After I manually run rc.start_packages file is created and it has content:
2016-03-15 22:59:48: (network.c.416) ca... Greg M
04:55 PM Bug #6001: Not all packages are started during boot time: I have no such file.
But I can see .rc.start_packages.running file which shouldnt be there right? Greg M
04:29 PM Bug #6001: Not all packages are started during boot time: what's in your /tmp/bootup_messages file? Chris Buechler
01:59 PM Bug #6001 (Resolved): Not all packages are started during boot time: Hi!
In snapshots from (I think so) 11. march some packages are not started durin boot/reboot.
Example is Lightsqu... Greg M
04:30 PM Bug #5953 (Feedback): Widget alignment issues: Applied in changeset commit:6fefbd485808f89dc1443fd177f3f807bf859abb. Anonymous
04:26 PM Bug #5953: Widget alignment issues: I just pushed a fix for this, once the builder picks it up let me know if this fixes it for you. Thanks for taking th... Jared Dillard
02:23 PM Feature #6002 (Resolved): UPNP presentation_url and model_number: Allow configuration of presentation_url and model_number via the web gui which would also be retained in the xml conf... Josh Galvez
01:23 PM Feature #6000 (Needs Patch): Possibility to order Virtual IPs: Chris Buechler
12:16 PM Feature #6000 (Needs Patch): Possibility to order Virtual IPs: Hi,
It would be nice to have the possibility to organise Virtual Ips with separators like in the rules tab. For ex... Gaetan Dos Santos
01:15 PM Feature #946: Allow aliases to be used to define IPsec phase 2 networks: It will be great see it in next release of pfSense.
Today I must create ~100 tunnels phase 2.
I had to create 5 my ... Grzegorz Sliwa
11:51 AM Feature #5616: Incorrect Wireless Channel: I am still having this problem on a number of pfSense devices.
ssid SSID1 channel 10 (2457 MHz 11g ht/40-) bssid 0... Jim Lohiser
11:34 AM Bug #5998 (Resolved): Double-digit alerts can cause the menu bar formatting to break: Looks good, thanks! Jim Pingle
11:30 AM Bug #5998 (Feedback): Double-digit alerts can cause the menu bar formatting to break: Applied in changeset commit:bfb82face7f2788f6a5e25f6956054f28236b121. Anonymous
10:00 AM Bug #5998 (Resolved): Double-digit alerts can cause the menu bar formatting to break: If you have more then 9 alerts, the formatting of the menu bar can break on most browsers.
!http://i.imgur.com/k4L... Jim Pingle
10:51 AM pfSense Packages Feature #5434: Let's Encrypt pfSense support: https://github.com/Neilpang/le !!!
now it works! Y N
10:29 AM Feature #5997 (Bogus): Captive Portal - Create more then 1024 vouchers once: You can already do this now by adjusting the bit counts in the voucher creation, for example, reduce the roll bits to... Jim Pingle
09:57 AM Feature #5997 (Bogus): Captive Portal - Create more then 1024 vouchers once: Hi,
regarding our conversation with "Steve" from pfsense-support, we would like to request the feature to create mor... adminsnet adminsnet
10:25 AM Bug #5999 (Resolved): IPv6 IP Alias prevents Track Interface from working with DHCPv6 and RA: I'm attempting to have GUA and ULA addresses provisioned to clients on the LAN interface by using DHCPv6 to provide G... Abuzer Rafey
10:23 AM Todo #5994: Make Advanced Buttons work consistently: Done so far:
services_dhcp.php - https://github.com/pfsense/pfsense/commit/afe62c2bbb892f053c8264f3c2bffa6a15111990
... Phillip Davis
10:14 AM Bug #5972: DHCPv6 Server Advanced Settings not displayed on page load: Pull request https://github.com/pfsense/pfsense/pull/2741
Commit https://github.com/pfsense/pfsense/commit/36e9994b1... Phillip Davis
05:39 AM Bug #5972: DHCPv6 Server Advanced Settings not displayed on page load: This one is a bit different, because it is the one page where there is no smart code to auto-open the relevant Advanc... Phillip Davis
05:04 AM Bug #5972: DHCPv6 Server Advanced Settings not displayed on page load: We can probably close this one in favor of #5994 Renato Botelho
06:40 AM Bug #5995: Button spacing on Diag > Edit file: Updated screenshot showing new buttons but spacing still cramped. Steve Wheeler
05:50 AM Bug #5995 (Resolved): Button spacing on Diag > Edit file: It's incredibly trivial but it grates on me every time I see it!
The spacing between the buttons and the main edit f... Steve Wheeler
06:26 AM pfSense Packages Bug #5996: Snort service does not start back after rules update: 5 mins later, Snort service did start the interfaces services, it just took it's time. Probably like 5 mins on APU. N... Ivor Kreso
06:24 AM pfSense Packages Bug #5996 (Closed): Snort service does not start back after rules update: After rules update service doesn't start back on. No errors in log. After manually starting the Snort service, I get ... Ivor Kreso
12:26 AM Bug #5983 (Resolved): Can no longer move multiple firewall rules simultaneously: looks good, thanks! Chris Buechler

03/14/2016

05:52 PM Todo #5994: Make Advanced Buttons work consistently: I can look at this tonight (my time) = Tuesday day US time. Phillip Davis
05:52 PM Todo #5994 (Resolved): Make Advanced Buttons work consistently: See forum for discussion: https://forum.pfsense.org/index.php?topic=108108.0
Where there is an Advanced section:
... Phillip Davis
05:20 PM Bug #5993 (Resolved): dhcp6c not started until an RA received: On a residential IPoE (not PPPoE) broadband line, a BNG will often require a subscriber to send a DHCPv6 SOLICIT in o... Richard Patterson
05:07 PM Bug #5992 (Resolved): interfaces_wireless_edit.php: Interface list only contains "None Available" when there are eligible interfaces: works Chris Buechler
05:00 PM Bug #5992 (Feedback): interfaces_wireless_edit.php: Interface list only contains "None Available" when there are eligible interfaces: Applied in changeset commit:8658cc0ed1127c2c7f1d84b4610db75675d914e7. Jim Pingle
04:55 PM Bug #5992: interfaces_wireless_edit.php: Interface list only contains "None Available" when there are eligible interfaces: I notice that I was the last one to change interfaces_wireless_edit.php and @Jimp committed it - https://github.com/p... Phillip Davis
04:52 PM Bug #5992: interfaces_wireless_edit.php: Interface list only contains "None Available" when there are eligible interfaces: n/m, I'll take it, I see the problem. Jim Pingle
04:45 PM Bug #5992 (Resolved): interfaces_wireless_edit.php: Interface list only contains "None Available" when there are eligible interfaces: The list on interfaces_wireless_edit.php is effectively empty even though there is in fact an appropriate wireless in... Jim Pingle
04:26 PM Feature #5498 (Resolved): RRD needs a makeover: It looks like all these issues have been addressed.
Unfortunately, the period data can't come back as it stands, i... Jared Dillard
04:24 PM Bug #5969 (Resolved): Missing settings for monitoring since replacing RRD graphs: Default settings are now in place. Jared Dillard
02:43 PM Bug #5983: Can no longer move multiple firewall rules simultaneously: Multiple rules may now be moved by clicking them to select, then clicking the anchor icon at the location you want th... Anonymous
02:30 PM Bug #5983 (Feedback): Can no longer move multiple firewall rules simultaneously: Applied in changeset commit:9ec9978267a5d1985d6da8ba35d52b7174239d2f. Anonymous
02:13 PM Bug #5981 (Resolved): OpenVPN gateways incorrectly handled with tap: OpenVPN only has route_vpn_gateway in its environment variables if a route is pushed, even when you push route_vpn_ga... Chris Buechler
02:12 PM Bug #5986: Multi wan problem with route: ruben rpuserh wrote:
> I found the case,
> I passes All VLANS (TRANK) to pfsense and then created 2 wan and 1 lan a... Chris Buechler
09:45 AM pfSense Packages Bug #5980 (Resolved): OpenVPN Client Export package Host Name Resolution option needs adjusted for new Namecheap Dynamic DNS settings: Pushed a fix, new version is up, confirmed working on multiple systems. Jim Pingle
06:50 AM Bug #5989 (Closed): OpenVPN status for multiple instance incorrectly works: Looks like it might be a part of #4642, but you'd have to try a 2.3 snapshot to confirm.
Give a 2.3 snapshot a shot... Jim Pingle
12:11 AM Bug #5989 (Closed): OpenVPN status for multiple instance incorrectly works: all tunnels work fine, but in status page some of them shown as down (printsreeen attached)
2.2.6-RELEASE (amd64) ... Mikhail Filimonov
06:44 AM Bug #5991 (Not a Bug): Voucher relogin on slave server on pfsense 2.3 beta: Please keep the discussion on your current open forum thread until a bug is confirmed, this ticket system is not for ... Jim Pingle
06:04 AM Bug #5991 (Not a Bug): Voucher relogin on slave server on pfsense 2.3 beta: With pfsense 2.3 beta
I have two server with Voucher database synchronization.
The primary server can sync good to ... biet dau ai
05:48 AM Bug #5990 (Resolved): AES-GCM should be an allowed encryption algorithm for IKEv2 in P1: Can see that GCM options for phase1 IPsec has been removed again at:
https://github.com/pfsense/pfsense/commit/76b... Lars Pedersen

03/13/2016

07:54 PM Bug #5988 (Not a Bug): Missing link speed in interfaces widget: Your interface in the screenshot is a PPP type interface (pppoe?) and not igb0 directly. Unless the actual interface ... Jim Pingle
07:51 PM Bug #5988 (Not a Bug): Missing link speed in interfaces widget: In Dashboard/Interfaces widget, the link speed for WAN (Intel i211 nic/igb0) is empty
ifconfig:
igb0: flags=8843<... Razvan Constantin
04:09 PM Bug #5987 (Not a Bug): Oddity with new menu layouts: Disclaimer - this happened, but I'm not sure what caused it, or what exactly fixed it. Raising as issue in case it ha... Stilez y
11:42 AM Bug #5986: Multi wan problem with route: I found the case,
I passes All VLANS (TRANK) to pfsense and then created 2 wan and 1 lan and this problem happened
... ruben rpuserh
09:35 AM Bug #5986 (Not a Bug): Multi wan problem with route: Please post on the forum or use one of our available support resources for assistance with your configuration. Jim Pingle
06:51 AM Bug #5986 (Not a Bug): Multi wan problem with route: Hi,
I have 2 wan interfaces and 1 lan order (wan, lan, wan2)
I setted up interfaces gateways for each ISP.
When de... ruben rpuserh
09:22 AM Feature #5835: Improve OpenVPN client gateway detection in edge cases where the remote does not send gateway information: Feel free to open a bug upstream with OpenVPN if you'd like to see if they would be willing to accommodate this scena... Jim Pingle
01:38 AM Feature #5835: Improve OpenVPN client gateway detection in edge cases where the remote does not send gateway information: I've done experimenting with this (#5981) issue. Looks like it's the issue of OpenVPN itself. If I add this string in... Dmitriy K

03/12/2016

07:50 PM Feature #5985 (Resolved): ntp pool command: For future ntp (FreeBSD 10.2+ ntpd 4.2.8p3) usage would it be possible for the web interface to support the pool comm... Derek Schrock
08:25 AM Bug #5975: firewall rules, issues / requests about moving and selecting rules.: 1) ok thanks.
2) been always like that indeed.. isnt verry friendly though..
3) it might be by (current) design, bu... Pi Ba
01:20 AM Bug #5975 (Needs Patch): firewall rules, issues / requests about moving and selecting rules.: 1) yeah that will make certain things that used to be easy a real pain. opened #5983 for that
2) feature, always bee... Chris Buechler
08:12 AM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: Still happens on my APU, just run through the wizard using HFSC and plug in 900 Mbit/s for all the interfaces bandwid... Jim Pingle
03:06 AM Bug #5721: ALTQ fails with "bandwidth for q... higher than interface" in some circumstance: Anyone have a config that will reliably replicate this? I'm coming up empty on an APU, and with VLAN+lagg.
Steve ... Chris Buechler
08:05 AM Bug #5981: OpenVPN gateways incorrectly handled with tap: See the details I have in #5835 for that specific case which isn't quite the same as the original problem here. Jim Pingle
05:27 AM Bug #5981: OpenVPN gateways incorrectly handled with tap: Here is a config file. Nothing fancy is there. Dmitriy K
05:25 AM Bug #5981: OpenVPN gateways incorrectly handled with tap: I don't know why but $route_vpn_gateway is always empty here. I've added some debug info to the /usr/local/sbin/ovpn-... Dmitriy K
12:07 AM Bug #5981 (Feedback): OpenVPN gateways incorrectly handled with tap: works now Chris Buechler
02:07 AM Todo #5984 (Resolved): Disable TLSv1.0 for web GUI: Chris Buechler
02:07 AM Todo #5984 (Resolved): Disable TLSv1.0 for web GUI: While there are no known weaknesses in TLSv1.0 as we have it configured, it's increasingly triggering "vulnerability"... Chris Buechler
01:16 AM Bug #5983 (Resolved): Can no longer move multiple firewall rules simultaneously: firewall_rules.php used to have a "move here" button like vpn_ipsec.php added in 2.3. Currently there isn't a way to ... Chris Buechler

03/11/2016

11:47 PM Bug #5982 (Resolved): empty URL table alias file results in crash report: fixed Chris Buechler
11:46 PM Bug #5982 (Resolved): empty URL table alias file results in crash report: If you manage to get an empty file for a URL table alias, implode on a non-array ends up creating a crash report.
Chris Buechler
11:37 PM Bug #5952 (Resolved): dpinger doesn't start at times on OpenVPN interfaces: The issue I turned this into is fixed.
Dmitriy: your issue is #5981, fix for that coming on that ticket momentari... Chris Buechler
03:52 PM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: I turned this into something different from where it started having seen the same "pending" status on a couple other ... Chris Buechler
03:20 PM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: Jim Pingle wrote:
> Does that tun actually get a gateway sent by the far side?
>
> In lots of tun or topology sub... Dmitriy K
02:14 PM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: Does that tun actually get a gateway sent by the far side?
In lots of tun or topology subnet configs the server se... Jim Pingle
02:08 PM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: I have yet another an ovpn TLS TCP TUN net30 client connection and everything works fine. So TAP doesn't work and TUN... Dmitriy K
02:05 PM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: Tested on 2.3.b.20160311.1315 x64: Issue is not fixed, unfortunately; Dmitriy K
02:04 PM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: Well, this happens not only during boot. You can create a ovpn client in any time and you'll get the same result with... Dmitriy K
01:52 AM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: this looks to be working in all cases now, and the changes didn't result in any regressions that I can find. It also ... Chris Buechler
11:36 PM Bug #5981 (Resolved): OpenVPN gateways incorrectly handled with tap: ovpn-linkup skips config of gateways for non-tun instances. Chris Buechler
10:30 PM pfSense Packages Bug #5980 (Resolved): OpenVPN Client Export package Host Name Resolution option needs adjusted for new Namecheap Dynamic DNS settings: Since the settings split hostname and domain the export package needs to catch up to the change.
https://forum.pfs... Jim Pingle
04:51 PM Feature #4664 (Resolved): Separate Processor (CPU) and Processes graphs: Yeah I specifically mentioned this to Jared in the design process but had forgotten there was a ticket open on it. Ag... Chris Buechler
01:35 PM pfSense Packages Bug #5979 (Resolved): Remove RRD Graphs from the Mail Report package: Done. New version is up now with the graphs removed. Jim Pingle
12:25 PM pfSense Packages Bug #5979 (Resolved): Remove RRD Graphs from the Mail Report package: The Mail Reports package graphs cannot function with the current rrdtool, since it lacks the graph function. The code... Jim Pingle
10:59 AM pfSense Packages Bug #5973 (Resolved): FreeRADIUS settings error: This should be OK now in the package. The current version is up and works fine here. Jim Pingle
10:58 AM Bug #5978 (Resolved): status_captiveportal.php: Active user count is not shown on the page: Looks good. Jim Pingle
10:40 AM Bug #5978 (Feedback): status_captiveportal.php: Active user count is not shown on the page: Applied in changeset commit:4fb86e067c92c08f9603a110fed01a5bb537b9f2. Jim Pingle
10:26 AM Bug #5978 (Resolved): status_captiveportal.php: Active user count is not shown on the page: This used to be there at some point in time, now missing. Same for vouchers page.
Quick/easy fix, will push moment... Jim Pingle
10:30 AM Bug #5965 (Resolved): Icon inconsistencies: This is about as good as it's going to get for the base system. Packages may still need some nudging but those can be... Jim Pingle
10:29 AM Bug #5977 (Resolved): system_advanced_admin.php - foreach error when no certs are present on the system: OK now Jim Pingle
09:50 AM Bug #5977 (Feedback): system_advanced_admin.php - foreach error when no certs are present on the system: Applied in changeset commit:b95e3de4cb39e0b3ef6a0f042b2c96b041019522. Jim Pingle
09:42 AM Bug #5977 (Resolved): system_advanced_admin.php - foreach error when no certs are present on the system: When the config contains no certs (http mode, all certs deleted), a foreach error is shown on System > Advanced, Admi... Jim Pingle
09:32 AM Bug #4587 (Resolved): apinger doesnt come up when wan monitoring is disabled and vpn monitoring is on on boot: Renato Botelho
09:02 AM Bug #4587: apinger doesnt come up when wan monitoring is disabled and vpn monitoring is on on boot: ys its fixed, tried on a full and nanobsd install and monitoring comes up just fine on openvpn tunnel on bootup, u ca... Bipin Chandra
05:46 AM Bug #5976 (Resolved): Load cryptodev as a kernel module: Remove cryptodev from kernel and build it as a module Renato Botelho
02:15 AM Bug #5972 (Confirmed): DHCPv6 Server Advanced Settings not displayed on page load: You're welcome to it, Phil. Same as the v4 page would be fine, you know how it should work. :) Chris Buechler
01:58 AM Bug #5857 (Resolved): VLANs on interface with 1500 MTU PPPoE end up with 1508 MTU: fixed, and not seeing anything that regressed. Chris Buechler

03/10/2016

11:47 PM Bug #4587 (Feedback): apinger doesnt come up when wan monitoring is disabled and vpn monitoring is on on boot: this should be fixed in 2.3 as part of #5952, Bipin can you test with the first snapshot from March 11 or newer? Chris Buechler
07:14 PM Bug #5952 (Feedback): dpinger doesn't start at times on OpenVPN interfaces: This issue happens when OpenVPN instances aren't yet connected at the time setup_gateways_monitor runs during boot. T... Chris Buechler
10:13 AM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: Just updated 2nd router to latest snapshot and ran into the same issue. it's 100% reproducible on both routers. Dmitriy K
12:54 AM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: Maybe there is a way to turn on nice debug logs in pfSense which I could provide to you? Dmitriy K
12:28 AM Bug #5952: dpinger doesn't start at times on OpenVPN interfaces: This isn't as easily replicable as I figured. I know it exists in some form, from OP's description, another forum rep... Chris Buechler
04:25 PM Bug #5975 (Needs Patch): firewall rules, issues / requests about moving and selecting rules.: Some things i found to be 'strange'.
1) Ability to move multiple rows at once to a new location after selecting th... Pi Ba
03:59 PM pfSense Packages Bug #5973: FreeRADIUS settings error: To me for eval.
Looks like maybe it's unhappy if the config contains no certificates. I'll run some tests and try ... Jim Pingle
01:51 AM pfSense Packages Bug #5973 (Resolved): FreeRADIUS settings error: FreeRADIUS: EAP TAB... Paweł Wojciukiewicz
03:57 PM Bug #5965: Icon inconsistencies: This should be fairly well taken care of now. I kept finding more and more instances of things that needed fixes/adju... Jim Pingle
02:47 PM Bug #5974 (Not a Bug): PPP configuration: please use one of our available support resources. https://pfsense.org/support Chris Buechler
02:33 PM Bug #5974 (Not a Bug): PPP configuration: Hi all my name is Gianluca!
I've this error with my firewall:
ppp: [opt1_link0] MODEM: Fail to open serial port ... Gianluca Ginoble
11:49 AM Bug #5969: Missing settings for monitoring since replacing RRD graphs: I added the enable/disable and reset RRD data options, the builder will pick them up next time around. The default op... Jared Dillard
06:09 AM Feature #3859: Make it possible to set the source IP address for gateway monitoring: Thank you Chris, it works indeed. It feels messy to add a NAT rule just for that, but I can see how adding this optio... Nicolas Canceill
01:24 AM Bug #5972 (Resolved): DHCPv6 Server Advanced Settings not displayed on page load: Setup DHCPv6 Server, click on any of the Advanced boxes, the various subsets of advanced settings are displayed.
Ent... Phillip Davis

03/06/2016

06:02 PM Bug #5958: Stale Aliases - upstream DNS changes do not update firewall rules that are based on aliases: A potential workaround for manual update may be to edit and save the alias. Haven't tried it but maybe that would... NOYB NOYB
04:23 PM Bug #5958: Stale Aliases - upstream DNS changes do not update firewall rules that are based on aliases: If the whole TTL tracking bit is too complicated, how about just a periodic refresh every so many hours.
Also, i... Mike Depot
04:17 PM Bug #5958 (Not a Bug): Stale Aliases - upstream DNS changes do not update firewall rules that are based on aliases: I'm seeing a problem where pfSense starts blocking connections that it had previously been allowing through. When th... Mike Depot
02:40 PM Bug #5957 (Resolved): Fix for missing route creation during reboot for delegated prefixes (given by DHCPv6 to sub-routers before the reboot): I have noticed that if pfSense reboots then routes to sub-routers are not re-created.
Meaning subnets given by DHCPv... Anders Lind
01:28 PM Bug #5953: Widget alignment issues: Reproducible with any widget. Right now I've an error while playing with widgets and pfSense offered to upload crash ... Dmitriy K
04:37 AM Bug #5953: Widget alignment issues: It's in Opera 35.0.2066.92 on Win10 1511 x64. Dmitriy K
12:14 PM Bug #5520: IPsec status seems to hang preventing access to the webgui.: Hello!
On my 2.3 latest snap it happened again today.
Had to kill php and restart webconfigurator to gain access ... Greg M
09:20 AM Bug #5956 (Resolved): nanobsd builds broken: Renato Botelho
08:40 AM Bug #5956 (Feedback): nanobsd builds broken: Applied in changeset commit:96f22d875b8a8e20de3ee89447e7d8dd11fc336d. Renato Botelho

03/05/2016

10:02 PM Bug #5953: Widget alignment issues: what browser and OS? Anything else to replicating? I can move the gateways widget around anywhere without seeing that... Chris Buechler
06:44 AM Bug #5953: Widget alignment issues: Sorry, I've uploaded invalid file! Dmitriy K
06:44 AM Bug #5953 (Resolved): Widget alignment issues: See pfsn2.3widgets_bug.mp4 for more information Dmitriy K
09:57 PM Bug #5956 (Resolved): nanobsd builds broken: nanobsd builds are coming out broken, file size much too small. Chris Buechler
09:42 PM Bug #5945 (Resolved): save and apply on interfaces.php removes v6 IP from track6 interfaces: works Chris Buechler
05:17 AM Bug #5945 (Feedback): save and apply on interfaces.php removes v6 IP from track6 interfaces: fix pushed Chris Buechler
09:41 PM Bug #4936 (Resolved): dhcpd sets wrong permissions on leases files: It's very intermittent. I believe this was fixed by dhcpd 4.3 upgrade in 2.3, no has seen it happen on 2.3. Chris Buechler
09:39 PM Bug #4150 (Resolved): Captive Portal doesn't work with > 120 VLAN interfaces: fixed Chris Buechler
09:05 PM Bug #5951 (Resolved): save on interfaces_vlan_edit.php leaves VLAN without IP config: works Chris Buechler
04:47 PM Bug #5951: save on interfaces_vlan_edit.php leaves VLAN without IP config: Thanks Chris! Luiz Souza
03:34 AM Bug #5951 (Feedback): save on interfaces_vlan_edit.php leaves VLAN without IP config: IPs and VIPs now added back after recreation Chris Buechler
03:18 AM Bug #5951: save on interfaces_vlan_edit.php leaves VLAN without IP config: regressed in 329b8d92573ca6682b74b05f0feaaa8d5470108c. Chris Buechler
03:00 AM Bug #5951 (Resolved): save on interfaces_vlan_edit.php leaves VLAN without IP config: Save a VLAN on interfaces_vlan_edit.php on an assigned interface, and you end up with that VLAN interface missing all... Chris Buechler
08:58 PM Bug #5955 (Assigned): dhcp6c drops interface IP after renewal in some circumstances: works with the updated _7 package.
Renato: please review and let's get that change upstreamed. Chris Buechler
08:17 PM Bug #5955 (Feedback): dhcp6c drops interface IP after renewal in some circumstances: pushed a change to omit that patch. System that used to fall apart within minutes is solid now. Chris Buechler
08:13 PM Bug #5955 (Resolved): dhcp6c drops interface IP after renewal in some circumstances: In some circumstances, dhcp6c causes the WAN IPv6 IP to be lost after renewal, in circumstances that work fine with 2... Chris Buechler
06:39 PM Bug #4876 (Closed): Cannot define table: Cannot allocate memory with large table aliases: Luiz tracked down the root cause to actual memory allocation failures. "it uses memory from the uma allocator, the um... Chris Buechler
12:24 PM Feature #5954 (Duplicate): Show implicite rules: Duplicate of #4828 Jim Pingle
12:03 PM Feature #5954 (Duplicate): Show implicite rules: Hi,
It will be nice to show the implicite block rule in the rules tab.
Best regards
Gaetan Gaetan Dos Santos
09:16 AM Feature #5498: RRD needs a makeover: I think 95th percentile would be useful in quality graph maybe not for systems that your familiar with but in a syste... Michael Kellogg
07:08 AM Bug #5952 (Confirmed): dpinger doesn't start at times on OpenVPN interfaces: ran into this on Friday, there is some kind of issue with dpinger on OpenVPN interfaces. I haven't had a chance to lo... Chris Buechler
06:13 AM Bug #5952 (Resolved): dpinger doesn't start at times on OpenVPN interfaces: Hello.
I have an openvpn TLS UDP TAP subnet client connection in pfSense 2.3.b.20160305.0255. After successful con... Dmitriy K

03/04/2016

11:35 PM Feature #5498: RRD needs a makeover: Jeff Wischkaemper wrote:
> Is there some way we could get the old RRD put in as well, to do some side-by-side compar... Chris Buechler
09:49 PM Feature #5498: RRD needs a makeover: Thanks for the reply, Chris. If this is still a work in progress, that makes me feel a lot better.
Is there some w... Jeff Wischkaemper
07:54 PM Feature #5498: RRD needs a makeover: Jeff Wischkaemper wrote:
>
> The new graphs appear to downsample significantly, particularly on larger time scales ... Chris Buechler
07:44 PM Feature #5498: RRD needs a makeover: some notes from things we were reviewing.
Quality graph: always show % values for fractions of a percent, rather tha... Chris Buechler
04:55 PM Feature #5498: RRD needs a makeover: While more aesthetically pleasing, this release is a serious regression in functionality from the old RRD graphing.
... Jeff Wischkaemper
02:29 PM Feature #5498: RRD needs a makeover: Thanks Greg. I removed the code, but unfortunately the builder already picked it up: https://github.com/pfsense/FreeB... Jared Dillard
01:09 PM Feature #5498: RRD needs a makeover: Hello!
On last snap there is an issue, see attached image. Greg M
03:19 PM Bug #4719 (Resolved): IKEv2 to Cisco ASA results in TS mismatch when initiation triggered by traffic: fixed, thanks to Tobias Brunner on the strongswan ticket for pointing out a charon config option I missed. Chris Buechler
12:57 PM pfSense Packages Bug #3343 (Closed): (re)starting freeradius service throws "The command '/usr/local/etc/rc.d/radiusd.sh stop' returned exit code '1', the output was 'radiusd not running?'": At this point unless it can be reproduced on the current version of FreeRADIUS on pfSense 2.3, it won't be addressed ... Jim Pingle
12:48 PM pfSense Packages Bug #3343: (re)starting freeradius service throws "The command '/usr/local/etc/rc.d/radiusd.sh stop' returned exit code '1', the output was 'radiusd not running?'": I have the same problem as Adrian Lewis. pfsense 2.2.6 amd64 radiusd keeps crashing down. My pfsense setup ran very w... Pim Pish
10:10 AM Bug #4310: Limiters + HA results in hangs on secondary: Sorry wrong log. Here is the correct one William St.Denis
10:07 AM Bug #4310: Limiters + HA results in hangs on secondary: I have noticed this issue as well. We have to disable sync when using limiters because it's crashing the system. I ha... William St.Denis
07:57 AM Bug #4387 (Resolved): Installer does not offer choices for keymap, screenmap or video font: Works, all selections are populated with choices and appear to work (font changes once selected and so on) Jim Pingle
02:54 AM pfSense Packages Bug #5594: Captive portal patch does not work anymore: Hi,
We use this great functionnality to block access to our local squid before authentication.
We use pfsense2.2.6... Frederic Soulier
12:59 AM Feature #3029 (Resolved): DHCPv6 Server/RA page should list interfaces that are configured to track DHCP-PD: This all works correctly now. The range and static mappings are supported.
prefix6 support for PD of PD-obtained ... Chris Buechler
12:58 AM Feature #5950 (New): DHCPv6 Server support for PD of PD-obtained networks: It should be possible to configure the DHCPv6 server to use PD-obtained networks for its PD config (prefix6). It curr... Chris Buechler

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

04/02/2016

04/01/2016

03/31/2016

03/30/2016

03/29/2016

03/28/2016

03/27/2016

03/26/2016

03/25/2016

03/24/2016

03/23/2016

03/22/2016

03/21/2016

03/20/2016

03/19/2016

03/18/2016

03/17/2016

03/16/2016

03/15/2016

03/14/2016

03/13/2016

03/12/2016

03/11/2016

03/10/2016

03/09/2016

03/08/2016

03/07/2016

03/06/2016

03/05/2016

03/04/2016