Activity

30 days up to

User

Subprojects

Activity

From 06/06/2016 to 07/05/2016

07/05/2016

11:10 PM Revision 42d9ae11: Modernize make.conf: Renato Botelho
11:10 PM Revision 2c881e12: Modernize make.conf: Renato Botelho
07:59 PM Revision 0a3ac6e8: Rationalize System Update GUI messages: At present, when doing a System Update, there is a message box that says:
"Please wait while the installation of comp... Phil Davis
07:58 PM Revision 936b4560: Protect get_dir from causing PHP errors: https://forum.pfsense.org/index.php?topic=114570.0 NewEraCracker
07:58 PM Revision 68cf7ccb: Protect get_dir from causing PHP errors: https://forum.pfsense.org/index.php?topic=114570.0 NewEraCracker
07:58 PM Revision 20dc1d7f: Merge pull request #3042 from NewEraCracker/master: Chris Buechler
06:10 PM Bug #6579: IPv6 CARP VIPs lost upon config sync where they include non-significant zeros: Phillip Davis wrote:
> Firstly the back-end implementation code should Net_IPv6:compress all IPv6 addresses in order... Chris Buechler
05:48 PM Bug #6579: IPv6 CARP VIPs lost upon config sync where they include non-significant zeros: Firstly the back-end implementation code should Net_IPv6:compress all IPv6 addresses in order to make sure the addres... Phillip Davis
05:19 PM Bug #6579 (Resolved): IPv6 CARP VIPs lost upon config sync where they include non-significant zeros: If you have IPv6 CARP VIPs specified with non-significant zeros, such as fdaa:1234:0012::1, the secondary will see th... Chris Buechler
06:00 PM Revision db5f7d3b: Fix rsync pattern: Renato Botelho
06:00 PM Revision b282aa14: Fix rsync pattern: Renato Botelho
06:00 PM Revision c58e3e15: Fix rsync pattern: Renato Botelho
05:40 PM Bug #6580 (Confirmed): Bridge with down member interface sends ICMP unreachables where it shouldn't: Take the scenario of:
LAN: bridge0
OPT1: igb1
OPT2: igb2
where bridge0 has igb1 and igb2 members. The LAN IP ... Chris Buechler
04:03 PM Bug #6578 (Closed): Filter reload hangs with IPsec hostnames that don't resolve configured: If you have IPsec P1s configured with a FQDN as the remote endpoint, and those don't resolve, the filter reload proce... Chris Buechler
03:49 PM Bug #5737: Traffic Graph Table and Graph Inverted Values: I was just getting ready to report this as a bug myself.
I guess my question is: how is this not considered a bug... johnny inc
02:55 PM Bug #6260 (Resolved): Namecheap Dynamic DNS does not accept * for hostname even though it is valid: Thanks Luke.
The delay there is from dyndns's checkip service being very slow to respond, there is another ticket... Chris Buechler
02:53 PM Bug #6399 (Resolved): Alias type not available from config during alias url table creation: works.
Thanks NOYB Chris Buechler
01:05 PM Feature #6569: Support Rockwell ZODIAC binary protocol (Jupiter receiver) for high precision: This area could use some more work anyhow. I have to fight to get my USB GPS to be recognized at all. It appears we n... Jim Pingle
01:01 PM Feature #6573: /var/run/dmesg.boot: It was relocated because /var/run is a tiny memory disk used for some very volatile files to save disk writes, and th... Jim Pingle
12:59 PM Feature #6546: pfSense should support logging to e.g. ELK stacks: The Python prototype we have internally is now plug-and-play as filebeat and topbeat are. It uses the bulk posting AP... Bruce Simpson
09:03 AM Feature #6546: pfSense should support logging to e.g. ELK stacks: We have Python pushing log records to ELK as a rough prototype. The code is dog simple, and should be relatively easy... Bruce Simpson
11:20 AM Bug #6577 (Resolved): pkg_edit.php: rowhelper data not preserved on validation error: e.g.: Install pfBlockerNG and visit pkg_edit.php?xml=/pfblockerng/pfblockerng_v4lists.xml&id=2
Add an IPV4 list sour... Anonymous
08:07 AM Revision e4eca5a3: Protect get_dir from causing PHP errors: https://forum.pfsense.org/index.php?topic=114570.0 NewEraCracker

07/04/2016

02:06 PM Revision 81fb072c: webgui tables, doubleclick event to perform 'edit' action, part 2: (cherry picked from commit 1c10ce9750f3702f433a91754f79e637e1c3369b) Pi Ba
02:05 PM Revision 91677170: webgui tables, doubleclick event to perform 'edit' action, part 2: (cherry picked from commit 1c10ce9750f3702f433a91754f79e637e1c3369b) Pi Ba
02:05 PM Revision 86ac7cde: Merge pull request #3041 from PiBa-NL/webgui-table-dblclick: Stephen Beaver
11:23 AM Feature #6546: pfSense should support logging to e.g. ELK stacks: We have a candidate library. [[https://github.com/QHedgeTech/cpp-elasticsearch]] requires only libcurl, already in ba... Bruce Simpson
11:01 AM Feature #6546: pfSense should support logging to e.g. ELK stacks: Not as such, but we've raised CCLAs with ESF so we can get onto it.
Also, the relatively large binary footprint of... Bruce Simpson
09:54 AM Bug #6566: Cloudflare DnyDNS Update with subdomains: Looking at this again - I don't think this would work for a subdomain such as ip.test.example.com.
It might be pos... Euan Kerr
02:18 AM Bug #6572: Config sync hangs php-fpm on secondary: Hi Chris,
Also forgot to mention that both PFSense boxes are installed in a VMware environment. We followed the fo... Brian Stivala
01:54 AM Bug #6572: Config sync hangs php-fpm on secondary: Hi Chris,
We would like to thank you for your reply, please find my replies in line. Do not hesitate to contact us... Brian Stivala
12:10 AM Bug #6572 (Feedback): Config sync hangs php-fpm on secondary: The issue is php-fpm on the secondary is getting hung up on something. Going to need more info.
Does it happen on... Chris Buechler
01:18 AM Feature #6533: Allow configuration of Min and MaxRtrAdvInterval, AdvDefaultLifetime: Hi!
Can we also set the:
Router lifetime (now 60 seconds, this is way too low)
Route lifetime, also 60 seconds a... Greg M

07/03/2016

10:22 PM Revision 1c10ce97: webgui tables, doubleclick event to perform 'edit' action, part 2: Pi Ba
08:35 PM Revision d98272bc: webgui tables, doubleclick event to perform 'edit' action: (cherry picked from commit 54691fc663eae7c6e92e4eaad596906758d7ebea) Pi Ba
08:34 PM Revision f8cb8d65: webgui tables, doubleclick event to perform 'edit' action: (cherry picked from commit 54691fc663eae7c6e92e4eaad596906758d7ebea) Pi Ba
08:34 PM Bug #6575 (Closed): GEOM Mirror Status Change Re-sync notices: Every 1% re-sync creates a notice (and an email alert if configured as such).
Suggest re-sync start, re-sync error... Walt McDonald
08:34 PM Revision 6ad9271a: Merge pull request #3040 from PiBa-NL/webgui-table-dblclick: Stephen Beaver
08:18 PM Revision 54691fc6: webgui tables, doubleclick event to perform 'edit' action: Pi Ba
05:50 PM Revision 1380f023: ipsec widget, check for valid array: (cherry picked from commit 658180daffe0fe5f005b6fe6b528c758309dffef) Pi Ba
05:50 PM Revision 0e7148a1: ipsec widget, check for valid array: (cherry picked from commit 658180daffe0fe5f005b6fe6b528c758309dffef) Pi Ba
05:50 PM Revision 587be0aa: Merge pull request #3039 from PiBa-NL/ipsec-widget-arraycheck: Stephen Beaver
04:56 PM Revision 658180da: ipsec widget, check for valid array: Pi Ba
02:06 PM Feature #6574: Support USB RNDIS network interfaces: Here is the USB config descriptor as seen by Linux. Bruce Simpson
02:05 PM Feature #6574 (New): Support USB RNDIS network interfaces: TL;DR -- the FreeBSD urndis(4) driver needs some serious attention.
People cannot buy discrete ADSL2+ modem cards ... Bruce Simpson
11:33 AM Feature #6569: Support Rockwell ZODIAC binary protocol (Jupiter receiver) for high precision: Yup. I have the u-Blox 5 also in an ALIX 6D2 (older rev) and have the necessary leads soldered for 1PPS and UART. But... Bruce Simpson
11:22 AM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available": Chris Buechler wrote:
> Michael OBrien wrote:
> >
> > Still having this issue (running OpenBGPd + IPSec - transpo... Michael OBrien
09:41 AM Feature #6573 (Resolved): /var/run/dmesg.boot: Is it possible to have a @ln -s /var/log/dmesg.boot /var/run/dmesg.boot@? The @vm-bhyve@ package expects the file at ... Jose Luis Duran
08:45 AM Revision 9e899320: spdns.de renamed to spdyn.de: Forgot to update the select description and values exii1988
08:45 AM Revision 17d422c1: Merge pull request #3038 from exii1988/master: Chris Buechler

07/02/2016

11:25 PM Feature #6569: Support Rockwell ZODIAC binary protocol (Jupiter receiver) for high precision: Assigned to Pingle.
Note as well that we have a (I believe) U-blox GPS receiver that interfaces to the Minnowboard... Jim Thompson
08:29 PM Feature #6569: Support Rockwell ZODIAC binary protocol (Jupiter receiver) for high precision: I notice that there is no way to set the termios bits directly w/o hacking code. It's a possibility I may have to do ... Bruce Simpson
08:18 PM Feature #6569: Support Rockwell ZODIAC binary protocol (Jupiter receiver) for high precision: Swapped out PSU rail on my GPSDO for a discrete external PSU. I think it's still losing characters, however pfSense's... Bruce Simpson
07:57 PM Feature #6569: Support Rockwell ZODIAC binary protocol (Jupiter receiver) for high precision: See NTPD refclock 31 page: [[https://www.eecis.udel.edu/~mills/ntp/html/drivers/driver31.html]] Bruce Simpson
07:50 PM Feature #6569: Support Rockwell ZODIAC binary protocol (Jupiter receiver) for high precision: (This isn't working for me right now -- could be power or cabling issues)
This is just a quick and dirty patch to ... Bruce Simpson
07:32 PM Bug #6568: NanoBSD image unconditionally enables comconsole.: NanoBSD won't be around for much longer, you're better off with a full install anyhow in the long run. If you activat... Jim Pingle
07:09 PM Bug #6568: NanoBSD image unconditionally enables comconsole.: This isn't nearly as much of a problem for me right now -- the offending system has been upgraded to use mSATA, throu... Bruce Simpson
01:46 PM Bug #6572 (Duplicate): Config sync hangs php-fpm on secondary: Hi All,
We have 2x PFSense boxes with version 2.3.1-p5 configured with CARP protocol. We have noticed and this is ... Brian Stivala
12:11 PM pfSense Packages Bug #6571 (Resolved): NUT service can not start sometimes after boot when SNMP UPS interface is down: If NUT is started with SNMP UPS configured and UPS network or card is currently down, an error message appears
"ER... Vladimir Suhhanov
10:22 AM Revision fb66c35f: spdns.de renamed to spdyn.de: Forgot to update the select description and values exii1988
09:49 AM Revision 608090e8: spdns.de renamed to spdyn.de: The service renamed there addresses exii1988
09:47 AM Revision ea301b1b: Merge pull request #3036 from exii1988/master: Chris Buechler
09:39 AM Bug #6260: Namecheap Dynamic DNS does not accept * for hostname even though it is valid: Tested with pfSense-CE-2.3.2-DEVELOPMENT-amd64-20160702-0342 + Namecheap DDNS using `*` wildcard. Works! Testing was... → luckman212
09:29 AM Revision 1c2c08bd: spdns.de renamed to spdyn.de: The service renamed there addresses exii1988
09:20 AM Revision d35b6181: Clarify Negate option description on firewall_nat_out.php.: Chris Buechler
09:19 AM Revision ee3cc6d5: Clarify Negate option description on firewall_nat_out.php.: Chris Buechler
09:13 AM Revision 39d2f39d: Check IP Services: Configurable check IP services.
Used by Dynamic DNS services to check IP addresses.
Configure as many check IP servic... NOYB NOYB
08:41 AM Revision 65292972: Change button order on diag_dns.php so hitting enter in the field does a lookup rather than update alias. semi-related to Ticket #6561: Chris Buechler
08:40 AM Revision 7208f387: Change button order on diag_dns.php so hitting enter in the field does a lookup rather than update alias. semi-related to Ticket #6561: Chris Buechler
04:50 AM Bug #6399: Alias type not available from config during alias url table creation: It's fixed. NOYB NOYB
04:09 AM Bug #6399 (Feedback): Alias type not available from config during alias url table creation: PR was merged Chris Buechler
04:14 AM Bug #4544 (Confirmed): PD not requested if no interfaces set to track6: updated subject is the issue. That case shouldn't cause it to skip requesting PD, for cases where the PD is actually ... Chris Buechler
02:00 AM Bug #4639 (Feedback): NAT fails to correctly translate udp port numbers embedded in certain ICMP error packets: I believe this is the issue in FreeBSD PR 201519.
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201519
Luiz ... Chris Buechler
12:36 AM Bug #6505 (Resolved): dpinger - socket name too large: works Chris Buechler

07/01/2016

09:49 PM Revision cba6dcbb: Update system_usermanager_settings.php: Use of undefined constant min - assumed 'min' BBcan177 .
09:49 PM Revision 588486b8: Update system_crlmanager.php: Use of undefined constant min - assumed 'min'
Use of undefined constant max - assumed 'max' BBcan177 .
09:49 PM Revision 86a80b09: Fix undefined constant: Notice: Use of undefined constant min - assumed 'min'
Notice: Use of undefined constant max - assumed 'max' BBcan177 .
09:49 PM Revision c296b1fa: Update system_usermanager_settings.php: Use of undefined constant min - assumed 'min' BBcan177 .
09:49 PM Revision 467d7777: Update system_crlmanager.php: Use of undefined constant min - assumed 'min'
Use of undefined constant max - assumed 'max' BBcan177 .
09:49 PM Revision d07ae60c: Fix undefined constant: Notice: Use of undefined constant min - assumed 'min'
Notice: Use of undefined constant max - assumed 'max' BBcan177 .
09:48 PM Revision ea57c74b: Merge pull request #3035 from BBcan177/patch-1: Chris Buechler
09:21 PM Revision b2c4aaca: Update system_usermanager_settings.php: Use of undefined constant min - assumed 'min' BBcan177 .
09:20 PM Revision d0c62202: Update system_crlmanager.php: Use of undefined constant min - assumed 'min'
Use of undefined constant max - assumed 'max' BBcan177 .
09:11 PM Revision 6e78a06f: Fix undefined constant: Notice: Use of undefined constant min - assumed 'min'
Notice: Use of undefined constant max - assumed 'max' BBcan177 .
04:35 PM Bug #6570 (Confirmed): Unbound breaks DNSSEC for pfSense's own hostname: It probably shouldn't write out anything to /etc/hosts or host_entries.conf for the host's own hostname if DHCP Regis... Chris Buechler
05:14 AM Bug #6570 (Closed): Unbound breaks DNSSEC for pfSense's own hostname: During config update, pfSense writes its own FQDN in /etc/hosts, such as:... Mantas Mikulėnas
02:07 PM Bug #3369 (Not a Bug): Captive vouchers expire too quickly: appears to be a date/time issue within the VM in this case Chris Buechler
12:25 PM Feature #6561: diag_dns.php IPv6 support: seems that now ipv4/ipv6 reverse lookup is broken Luca Moncelli
10:56 AM Feature #6546: pfSense should support logging to e.g. ELK stacks: Have you made any progress on this? I am trying to get filebeat set up on pfsense right now and ran into CLOG. :-( Nathan Stocks
10:48 AM Feature #6155: shipment of logs using e.g. filebeat: Martin Hansen wrote:
> Hi, first ever bug report, bare with me.
>
> Running filebeat on a pfsense to ship logs to... Nathan Stocks
08:40 AM Feature #6569: Support Rockwell ZODIAC binary protocol (Jupiter receiver) for high precision: This is mentioned at [[http://support.ntp.org/bin/view/Support/ConfiguringJupiterRefclocks]] Bruce Simpson
03:54 AM Bug #6534: DNS resolver doesn't returns AAAA records: Resolved: now (tested on 2.3.2.a.20160630.1832) "Diagnostics / DNS Lookup" returns AAAA records.
Note: still on f... Luca Moncelli
01:10 AM Revision f3174943: startsWith Polyfill: Fixes hidding of custom individual settings when not in use on user manager page. NOYB NOYB
01:10 AM Revision 591b9184: Merge pull request #3034 from NOYB/startsWith_Polyfill: Chris Buechler
12:40 AM Revision b07f8f3f: startsWith Polyfill: Fixes hidding of custom individual settings when not in use on user manager page. NOYB NOYB
12:26 AM pfSense Packages Feature #6141: Convert apcupsd package to 2.3: I'm working on catching up on PRs, this one coming soon. Chris Buechler

06/30/2016

11:49 PM pfSense Packages Feature #6141: Convert apcupsd package to 2.3: Apparently someone has updated the package and it's been waiting on approval here for over a month: https://github.co... Charles Sprickman
11:32 PM Revision 237eb3d9: Diag Tables Last Update: Use correct Thursday abbreviation (s/Thr/Thu/). NOYB NOYB
11:31 PM Revision 327052d0: Diag Tables Last Update: Use correct Thursday abbreviation (s/Thr/Thu/). NOYB NOYB
11:31 PM Revision d2f32464: Merge pull request #3033 from NOYB/Diag_Tables_Last_Updated: Chris Buechler
09:58 PM Revision 5ba0caa7: Diag Tables Last Update: Use correct Thursday abbreviation (s/Thr/Thu/). NOYB NOYB
09:14 PM pfSense Packages Bug #5511 (Feedback): quagga zebra.conf and openvpn interface: fix pushed Chris Buechler
09:02 PM Bug #6317 (Resolved): vlan/track interface generates error "Can't assign requested address" during boot: works Chris Buechler
08:57 PM Bug #6552 (Resolved): Invalid IPv6 address formats possible: looks good, validation is correct in those cases now, no apparent regressions. Thanks Phil! Chris Buechler
12:02 AM Bug #6552 (Feedback): Invalid IPv6 address formats possible: PR merged Chris Buechler
08:15 PM Bug #6530 (Resolved): Kill states doesn't work for 'in' direction: works Chris Buechler
08:15 PM Bug #6531 (Resolved): Kill states doesn't work for states with translated destination: works Chris Buechler
07:25 PM Feature #6560 (Resolved): Add php shell sessions to enable and disable Persistent CARP Maintenance Mode: works Chris Buechler
06:21 PM Feature #6569 (New): Support Rockwell ZODIAC binary protocol (Jupiter receiver) for high precision: (I will probably have a crack at doing this when time permits... I'm bedding in a GPSDO unit based on the Jupiter, wi... Bruce Simpson
06:05 PM Bug #6568 (Not a Bug): NanoBSD image unconditionally enables comconsole.: OK, first of all, I appreciate the hard work you guys have done on cleaning up the backend implementation.
However... Bruce Simpson
04:59 PM Bug #6538: tcpdump needs update -- cannot decode most IPv6 RA options: OK, so having run headfirst into the bsdconfig wall, I had a rethink about how to express what this ticket is really ... Bruce Simpson
09:09 AM Bug #6538: tcpdump needs update -- cannot decode most IPv6 RA options: (From a strictly "consumer of tech" point of view, relying on the base system for this is probably going to cause mor... Bruce Simpson
04:22 PM Bug #6553 (Resolved): net.inet.ip.dummynet.pipe_slot_limit can't be set manually, should be automatic: works Chris Buechler
02:40 PM Bug #6364 (Resolved): PHP Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 32 bytes) in /usr/local/www/status_carp.php on line 261: works.
Thanks for the additional confirmation, Zeev. Chris Buechler
02:14 AM Bug #6364: PHP Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 32 bytes) in /usr/local/www/status_carp.php on line 261: Hello,
i added your changes and looks like it works. Chris you are the king :) Zeev Zalessky
01:34 PM Bug #6564 (Duplicate): Alias URL TABLE(IP) failed loading when WebGUI set to HTTPS: duplicate of #4766 Chris Buechler
03:54 AM Bug #6564 (Duplicate): Alias URL TABLE(IP) failed loading when WebGUI set to HTTPS: After setting System -> Advanced -> Protocol to HTTPS
the download of Alias URL TABLES(ip) does not work anymore whe... Stefan Heck
01:26 PM Bug #2005 (Resolved): URL aliases need validation of fetched data: this was done in pieces across several releases since then, especially in 2.3x+. Chris Buechler
01:13 PM Bug #6567 (Not a Bug): Dual Wan Gateway Monitor is offline: probably just need to set the ping payload.
https://forum.pfsense.org/index.php?topic=110043.0
no indication of ... Chris Buechler
10:20 AM Bug #6567 (Not a Bug): Dual Wan Gateway Monitor is offline: Hello, i am running on pfsense 2.3.1_5_amd64 (latest) and when i switch on dual gateway, the gateways status is offli... Jacob Green
01:09 PM Feature #6561: diag_dns.php IPv6 support: The create alias stuff is still broken due to gethostbyname() usage. Kill Bill
12:24 PM Revision 48ebcd49: Fix firewall rules for PPPoE server: 1) PPPoE Clients are located within 'Remote Address Range' (sa) and not Server Address (ip), see lines 1194 and 1195.... NewEraCracker
11:08 AM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: Hi Chris,
system log added. :)
Thanks,
Mario (Marlenio) Mario Lener
09:05 AM pfSense Packages Feature #6555: Support IEEE 1588: See also [[https://redmine.pfsense.org/issues/6554]] Bruce Simpson
09:01 AM pfSense Packages Feature #6555: Support IEEE 1588: Here is how I get around the lack of GUI integration at the moment.
(Requires mode7 support on loopback is re-enable... Bruce Simpson
09:04 AM Feature #6554: Reintroduce NTP mode7 for IEEE 1588 PTPd interop: See attached hack. Bruce Simpson
07:18 AM Bug #6566 (Duplicate): Cloudflare DnyDNS Update with subdomains: If a host such as ip.example.co.uk is used for the cloudflare dynamic dns update the zone_id will fail to be returned... Euan Kerr
06:43 AM Revision 337f8296: Fix Redmine #6011: This will add linklocal fallback where no IPv6 is otherwise configured to allow login using this IPs NewEraCracker
06:42 AM Revision f5ba05cb: Merge pull request #2764 from NewEraCracker/redmine-6011: Chris Buechler
06:20 AM Revision a1d059c2: Allow wildcard for hostname with Namecheap DDNS. Ticket #6260: Chris Buechler
06:20 AM Revision 84a67bf4: Allow wildcard for hostname with Namecheap DDNS. Ticket #6260: Chris Buechler
06:11 AM Revision de8882d6: Whitespace cleanup: Josh Galvez
06:11 AM Revision dc2db4dc: Make model_number customizable: Josh Galvez
06:10 AM Revision abbd4150: Make presentation_url customizable: Josh Galvez
06:10 AM Revision 0015e84c: Merge pull request #2729 from zevlag/BountyRequestTopic106193: Chris Buechler
06:08 AM Revision 421a4bdb: GitSync Diff Only Option: Diff Option
--diff
SSD Friendlier
Same as default but only copies files that are different, instead of every thing ev... NOYB NOYB
06:05 AM Revision d691888e: Merge pull request #3031 from NOYB/GitSync_Diff_Only_Option: Chris Buechler
05:46 AM Revision d20f76bc: GitSync Diff Only Option: Diff Option
--diff
SSD Friendlier
Same as default but only copies files that are different, instead of every thing ev... NOYB NOYB
05:24 AM Revision add3c6c5: Get modulus keysize: Useful utility function when it's necessary to verify that existing keys meets current practices Stilez y
05:24 AM Revision 79299722: Merge pull request #2994 from stilez/patch-31: Chris Buechler
05:20 AM Revision 595b074d: Feature #6388 custom GUI preference settings per user: Phil Davis
05:20 AM Revision 50d36974: Merge pull request #3018 from phil-davis/usersettings: Chris Buechler
05:01 AM Revision d0acb088: Handle more invalid IPv6 formats: Phil Davis
05:00 AM Revision a77ed90d: Handle more invalid IPv6 formats: Phil Davis
05:00 AM Revision 7685fd4e: Merge pull request #3029 from phil-davis/IPv6colons: Chris Buechler
04:58 AM Revision 75b8611e: Rationalize System Update GUI messages: At present, when doing a System Update, there is a message box that says:
"Please wait while the installation of comp... Phil Davis
04:57 AM Revision bb5d3a43: Merge pull request #3030 from phil-davis/patch-1: Chris Buechler
04:32 AM Bug #6565: OpenVPN calculates incorrect TCP checksums when running in bridged/tap mode with 'mode server': Chris Buechler wrote:
> with tap I'm guessing? That's not the case with tun. Any IP assigned to the server itself is... Geoff Jones
04:31 AM Bug #6565: OpenVPN calculates incorrect TCP checksums when running in bridged/tap mode with 'mode server': with tap I'm guessing? That's not the case with tun. Any IP assigned to the server itself is affected (tap IP, LAN IP... Chris Buechler
04:17 AM Bug #6565 (Closed): OpenVPN calculates incorrect TCP checksums when running in bridged/tap mode with 'mode server': When a connected OpenVPN client attempts to establish a TCP connection with a pfSense OpenVPN server, the server resp... Geoff Jones
04:30 AM Revision 0b316bd1: Diagnostics - DNS Lookup, also query for IPv6 addresses: Pi Ba
04:30 AM Revision f4803487: Merge pull request #3028 from PiBa-NL/2.3_dnsV6: Chris Buechler
04:30 AM Revision 6bc8621f: Rationalize System Update GUI messages: At present, when doing a System Update, there is a message box that says:
"Please wait while the installation of comp... Phil Davis
04:09 AM Bug #6559: OpenVPN 'mode server' directive missing: Generated config:... Geoff Jones
04:06 AM Bug #6559: OpenVPN 'mode server' directive missing: Chris Buechler wrote:
> The config either ends up with "mode server" or "server-bridge" depending on the specifics o... Geoff Jones
03:26 AM Revision cd233828: Add playback files for disabling and enabling CARP maintenance mode. Ticket #6560: Chris Buechler
03:26 AM Revision a5297e81: Add playback files for disabling and enabling CARP maintenance mode. Ticket #6560: Chris Buechler
03:25 AM Revision 9a8b5401: Add playback files for disabling and enabling CARP maintenance mode. Ticket #6560: Chris Buechler
03:20 AM Revision 7e9349a5: Handle more invalid IPv6 formats: Phil Davis
02:59 AM Bug #6515 (Resolved): link_interface_to_vips slow with large numbers of VIPs: works Chris Buechler
02:48 AM Bug #6506 (Resolved): IPv6 static routes omit interface scope of link-local gateways: works Chris Buechler
02:46 AM pfSense Packages Bug #6562: Bug/Wrong description in the squid settings: Screenshot Author: http://docs.diladele.com/ Richard Eberhard
02:39 AM pfSense Packages Bug #6562 (Not a Bug): Bug/Wrong description in the squid settings: I think there is a wrong description or maybe a bug in the "certificate adapt" option in the squid https settings. He... Richard Eberhard
02:41 AM pfSense Packages Bug #6563 (Resolved): Squid still accepts sha1 certificates: Squid still accepts sha1 certificates.(Man in the middle proxy) I think this should be blocked by default for securit... Richard Eberhard
02:39 AM Bug #6558: Pf-sense 2.3 doesn't detect shutdow event with em driver and Intel Chipset 82574L: Chris Buechler wrote:
> subject isn't true in general, 82574L in the FW-7541 correctly detects link down and up. e10... Atlante Informatica
01:30 AM Feature #4044 (Resolved): Add UEFI support: exists and works in 2.4 Chris Buechler
01:23 AM Bug #6260 (Feedback): Namecheap Dynamic DNS does not accept * for hostname even though it is valid: merged a slightly modified fix from PR 2770
https://github.com/pfsense/pfsense/pull/2770
Not sure that suffices t... Chris Buechler
12:49 AM Revision 5f37baed: Omit <secret> tags from L2TP in status.php config.xml dump.: Chris Buechler
12:49 AM Revision 1799a969: Omit <secret> tags from L2TP in status.php config.xml dump.: Chris Buechler
12:49 AM Revision 8d1a6065: Omit <secret> tags from L2TP in status.php config.xml dump.: Chris Buechler
12:42 AM Revision c6060e22: Restore 2.2.x and prior means of obtaining pfsync nodes to avoid exhausting memory on systems with large state tables. Ticket #6364: Chris Buechler
12:42 AM Revision e38e1efd: Restore 2.2.x and prior means of obtaining pfsync nodes to avoid exhausting memory on systems with large state tables. Ticket #6364: Chris Buechler
12:41 AM Revision eef555b9: Restore 2.2.x and prior means of obtaining pfsync nodes to avoid exhausting memory on systems with large state tables. Ticket #6364: Chris Buechler
12:23 AM Feature #6388 (Feedback): Status / Dashboard save changes for all users: merged, thanks Phil Chris Buechler

06/29/2016

11:35 PM Feature #6561 (Resolved): diag_dns.php IPv6 support: diag_dns.php lacks IPv6 support. Merged from PR 3028
https://github.com/pfsense/pfsense/pull/3028
Thought we had ... Chris Buechler
10:46 PM Bug #6552: Invalid IPv6 address formats possible: Pull request https://github.com/pfsense/pfsense/pull/3029
Fixes handling of (what should be invalid) formats:
1:2... Phillip Davis
10:27 PM Feature #6560 (Feedback): Add php shell sessions to enable and disable Persistent CARP Maintenance Mode: added. Since it's a trivial addition and not a feature that can introduce regressions, merged to 2_3_1 as well. Chris Buechler
07:15 PM Feature #6560 (Resolved): Add php shell sessions to enable and disable Persistent CARP Maintenance Mode: It would be very useful to be able to do this from the CLI when the GUI is unavailable. Steve Wheeler
08:03 PM Revision ba40ee75: Diagnostics - DNS Lookup, also query for IPv6 addresses: Pi Ba
07:42 PM Bug #6364 (Feedback): PHP Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 32 bytes) in /usr/local/www/status_carp.php on line 261: restored 2.2.x and prior's method of obtaining the nodes, which will prevent it from running out of memory. Chris Buechler
07:31 PM Bug #6551 (Resolved): Invalid IPv6 address can be entered: This all looks good now. All the test cases that were wrong previously are correct now, and no apparent regressions. Chris Buechler
04:02 PM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: Hi Chris,
new update in thread-
--
Mario (Marlenio)
Mario Lener
02:50 PM Bug #6558 (Not a Bug): Pf-sense 2.3 doesn't detect shutdow event with em driver and Intel Chipset 82574L: subject isn't true in general, 82574L in the FW-7541 correctly detects link down and up. e1000 in VMware ESX and Work... Chris Buechler
10:24 AM Bug #6558 (Not a Bug): Pf-sense 2.3 doesn't detect shutdow event with em driver and Intel Chipset 82574L: Hi All,
as described in the title, with the 2.3 version of PF-Sense when you unplug an Ethernet cable from a gigab... Atlante Informatica
02:45 PM Bug #6559 (Feedback): OpenVPN 'mode server' directive missing: The config either ends up with "mode server" or "server-bridge" depending on the specifics of your config. That's in ... Chris Buechler
12:32 PM Bug #6559: OpenVPN 'mode server' directive missing: Jim Pingle wrote:
> What are the exact settings in use on the OpenVPN server that lead to it being omitted when yo... Geoff Jones
12:15 PM Bug #6559: OpenVPN 'mode server' directive missing: It's not quite that simple. There are cases when it must be omitted as well, such as some tap bridge scenarios, or Op... Jim Pingle
12:09 PM Bug #6559: OpenVPN 'mode server' directive missing: Workaround is to set 'mode server' in the advanced options section. Geoff Jones
12:01 PM Bug #6559 (Not a Bug): OpenVPN 'mode server' directive missing: When creating a new OpenVPN server, the "server mode" web interface drop down does not influence the written configur... Geoff Jones
01:19 PM Bug #6557: nanobsd upgrades may fail from lacking resolv.conf: The situation where they fail is where DNS Forwarder or Resolver are not bound to localhost. If resolv.conf doesn't e... Chris Buechler
08:15 AM Bug #6540: Virtual IPs -> Edit does not allow upper-case IPv6 digits: At the moment the user can input a "full" IPv6 address "uncompressed" and it is saved just like that, e.g.:
1:2:3:4:... Phillip Davis
05:57 AM Revision bfa8df8a: Flush link-local IPs so we do not get stale data and do not waste time deleting IP if it is already set to fe80::1:1: k-paulius
05:57 AM Revision 4400ad90: Merge pull request #2934 from k-paulius/patch-14: Chris Buechler
04:52 AM Feature #336: Option to create lagg under assign interfaces: Just to chime in, we're in the process of upgrading loads of our pfSense installs to use LAGG from single links; this... Rob Emery
03:36 AM Revision 31df78a8: Merge pull request #2944 from stilez/patch-23: Chris Buechler
03:33 AM Revision da1f0b2d: Rename item #12 in console menu: The console menu item #12 (_"pfSense/$product developer shell"_) has a pointless title that doesn't help users much. ... Stilez y
03:32 AM Revision 17315994: Merge pull request #3000 from stilez/patch-32: Chris Buechler
03:01 AM Revision 6dfb6b27: Update include() to include_once(): For safety, use include_once() when including various "side" files.
There are a couple of instances of include("guico... Phil Davis
03:01 AM Revision adcb1d08: Merge pull request #3024 from phil-davis/include_once: Chris Buechler
02:13 AM Revision 69eca02c: Shorten gwifip if whole socket path exceeds 100 chars: dpinger stopps with an error when the socketname exceeds over
(around) 100 characters. The dpinger will not start and... Daniel Hoffend
02:13 AM Revision dca9eafb: Use a different delimiter for dpinger socket names: Currently underscores are used to seperate gwifip, monitorip, etc, but
underscors are also used in vlan subinterfaces... Daniel Hoffend
02:12 AM Revision e8019bcd: Shorten gwifip if whole socket path exceeds 100 chars: dpinger stopps with an error when the socketname exceeds over
(around) 100 characters. The dpinger will not start and... Daniel Hoffend
02:12 AM Revision 74ed3a16: Use a different delimiter for dpinger socket names: Currently underscores are used to seperate gwifip, monitorip, etc, but
underscors are also used in vlan subinterfaces... Daniel Hoffend
02:12 AM Revision 5f93d5f1: Merge pull request #3027 from dhoffend/ticket-6505: Chris Buechler
12:59 AM Bug #6317 (Feedback): vlan/track interface generates error "Can't assign requested address" during boot: PR confirmed and merged Chris Buechler

06/28/2016

11:21 PM Revision 40588fc4: Shorten gwifip if whole socket path exceeds 100 chars: dpinger stopps with an error when the socketname exceeds over
(around) 100 characters. The dpinger will not start and... Daniel Hoffend
11:14 PM Bug #6468: Firewall scheduler allows you to set invalid time range: @Erik: If someone puts the validation code in place to check text-entries in those boxes for validity, then they coul... Phillip Davis
04:07 PM Bug #6468: Firewall scheduler allows you to set invalid time range: @Philip: Even if it was not an intention, it was best what happened. It was definitively easier to modify one single ... Erik Ruedin
10:46 PM Revision b225d003: Use a different delimiter for dpinger socket names: Currently underscores are used to seperate gwifip, monitorip, etc, but
underscors are also used in vlan subinterfaces... Daniel Hoffend
10:00 PM Bug #6543: Some leases do not show up in DHCPv6 Lease status: Axel: could you email me an unsanitized copy of your dhcpd6.leases? cmb at pfsense dot org. Nothing immediately stick... Chris Buechler
04:26 PM Bug #6543: Some leases do not show up in DHCPv6 Lease status: I like to statically assign DHCPv6 addresses to some devices on my network. But finding the DUID can sometimes be cha... Axel Taferner
01:42 PM Bug #6543: Some leases do not show up in DHCPv6 Lease status: I'd have to get back to you on that -- e.g. putting a watch on the file contents. There have clearly been leases miss... Bruce Simpson
01:13 PM Bug #6543: Some leases do not show up in DHCPv6 Lease status: Need some examples, what's shown in dhcpd6.leases that doesn't show on the status page?
Chris Buechler
10:37 AM Bug #6543: Some leases do not show up in DHCPv6 Lease status: I've experienced this same issue, in my case it is not limited to mobile devices. I've had this happen with a Macbook... Axel Taferner
09:17 PM Bug #6557 (Resolved): nanobsd upgrades may fail from lacking resolv.conf: resolv.conf may not exist or be populated in the chroot of nanobsd upgrades on 2.3.x+. pkg uses that for fetching the... Chris Buechler
09:15 PM Bug #6505 (Feedback): dpinger - socket name too large: Thanks Daniel! Looks good, merged to all 3 branches. Chris Buechler
06:13 PM Bug #6505: dpinger - socket name too large: The bug has been traced down and fixed. Pull Request is up (ICLA already signed).
https://github.com/pfsense/pfsense... Daniel Hoffend
08:45 PM Revision ba2c8ed4: Set pipe_slot_limit to the maximum configured qlimit value. Move the set_sysctl out if the block where it only gets run if dummynet isn't already loaded. Ticket #6553: Chris Buechler
08:45 PM Revision fcd9f64c: Set pipe_slot_limit to the maximum configured qlimit value. Move the set_sysctl out if the block where it only gets run if dummynet isn't already loaded. Ticket #6553: Chris Buechler
08:44 PM Revision ef7c3a63: Set pipe_slot_limit to the maximum configured qlimit value. Move the set_sysctl out if the block where it only gets run if dummynet isn't already loaded. Ticket #6553: Chris Buechler
08:05 PM Revision 1b8aa9c8: Clean up limiter text. Remove old commented out bit.: Chris Buechler
08:05 PM Revision 3481524a: Clean up limiter text. Remove old commented out bit.: Chris Buechler
08:04 PM Revision cabb34e4: Clean up limiter text. Remove old commented out bit.: Chris Buechler
05:10 PM Feature #6556 (Duplicate): Support Duo Security two-factor authentication for local user database: We have started evaluating Duo Security, starting with the duo-unix PAM module package.
It would be extremely usef... Bruce Simpson
05:05 PM pfSense Packages Feature #6555 (New): Support IEEE 1588: pfSense should include a package (and GUI) for driving IEEE 1588 PTPd. This is currently available as a FreeBSD packa... Bruce Simpson
05:03 PM Feature #6554 (New): Reintroduce NTP mode7 for IEEE 1588 PTPd interop: It should be possible to selectively re-enable Mode 7 packets. This allows PTPd to take time from NTPd on the node. T... Bruce Simpson
03:46 PM Bug #6553 (Feedback): net.inet.ip.dummynet.pipe_slot_limit can't be set manually, should be automatic: fix pushed Chris Buechler
03:44 PM Bug #6553 (Resolved): net.inet.ip.dummynet.pipe_slot_limit can't be set manually, should be automatic: net.inet.ip.dummynet.pipe_slot_limit only exists after dummynet is kldloaded, which comes after the sysctls are appli... Chris Buechler
01:29 PM Bug #6551 (Feedback): Invalid IPv6 address can be entered: Chris Buechler
02:50 AM Bug #6551: Invalid IPv6 address can be entered: Pull request https://github.com/pfsense/pfsense/pull/3026 has a proposed fix and longer explanation. Phillip Davis
02:49 AM Bug #6551 (Resolved): Invalid IPv6 address can be entered: For example, add a host alias, in the IP Address or FQDN box of the 1st entry put:
1:2:3:xy:4:5:6:7:8
This is acc... Phillip Davis
12:52 PM Revision 426b7b0c: Fix matching of chars in IPv6 address segments: The existing regex here is wrong, it matches 0 or more of the hex digits but then there can be other rubbish in the s... Phil Davis
12:51 PM Revision 3ba22abd: Fix matching of chars in IPv6 address segments: The existing regex here is wrong, it matches 0 or more of the hex digits but then there can be other rubbish in the s... Phil Davis
12:51 PM Revision a495f6b3: Merge pull request #3026 from phil-davis/patch-2: Stephen Beaver
12:49 PM Revision a88f0ee6: Remove a-f from IPv4 address pattern: It seems to me that a through f should not be part of the pattern for the "V4" case.
(cherry picked from commit 1f49d... Phil Davis
12:49 PM Revision e4c5b7d4: Remove a-f from IPv4 address pattern: It seems to me that a through f should not be part of the pattern for the "V4" case.
(cherry picked from commit 1f49d... Phil Davis
12:48 PM Revision d16eec1f: Merge pull request #3025 from phil-davis/patch-1: Stephen Beaver
07:31 AM Bug #6552 (Resolved): Invalid IPv6 address formats possible: Add a host alias, in the IP Address or FQDN box of the 1st entry put:
1:2:3:::4:5:6:8 or 1:2:3:4:5:6:::8 or simila... Phillip Davis
06:51 AM Bug #6550 (Not a Bug): Bandwidth LAN IN/OUT reversed: As noted above, it is correct as-is. Jim Pingle
02:46 AM Bug #6550: Bandwidth LAN IN/OUT reversed: It is correct - there is ~10 MB/s of data (download) coming in WAN (from the internet) and then that ~10 MB/s is goin... Phillip Davis
02:20 AM Bug #6550 (Not a Bug): Bandwidth LAN IN/OUT reversed: See attached screen shot.
WAN IN 10.14 MB/s
LAN OUT 10.11 MB/s
LAN IN 292.99 KB/s
LAN IN should be 10.11 MB/s Byron Johnson
06:39 AM Revision 8a950b3c: Fix matching of chars in IPv6 address segments: The existing regex here is wrong, it matches 0 or more of the hex digits but then there can be other rubbish in the s... Phil Davis
04:50 AM Revision 1f49dd8a: Remove a-f from IPv4 address pattern: It seems to me that a through f should not be part of the pattern for the "V4" case. Phil Davis

06/22/2016

11:56 PM Bug #6506 (Confirmed): IPv6 static routes omit interface scope of link-local gateways: confirmed, thanks Chris Buechler
05:47 PM Bug #6506: IPv6 static routes omit interface scope of link-local gateways: No, with pushed to the system i mean: When the static route that you've added using the WebUI is getting added to the... Daniel Hoffend
10:55 PM Revision 332a64d0: Allow passing comma in string quoted DHCP client options: Daniel Wilhelm
08:37 PM Revision 4be27df6: add traffic totals package: Jared Dillard
08:35 PM Revision be53a482: add traffic totals package: Jared Dillard
08:08 PM Bug #6523 (Resolved): Firewall/Aliases/Ports: Unclear description and/or result of desired format: clarified hint Chris Buechler
08:06 PM Bug #6523 (Confirmed): Firewall/Aliases/Ports: Unclear description and/or result of desired format: It works as it always has, and as intended. Each box can only contain a single port or range.
I'll clarify the de... Chris Buechler
08:11 AM Bug #6523 (Resolved): Firewall/Aliases/Ports: Unclear description and/or result of desired format: Current hint is: "Enter as many ports as desired. Port ranges can be expressed by separating with a colon."
Expect... Prince Adam
07:01 PM Bug #6524 (Not a Bug): 192.168.100.0/24 subnet with Cable Modem WAN un-workable: it's workable just fine. You can't have the same subnet on two diff interfaces of any firewall/router. You have some ... Chris Buechler
06:12 PM Bug #6524 (Not a Bug): 192.168.100.0/24 subnet with Cable Modem WAN un-workable: So here is the scenario i ran into today.
Customer Subnet is 192.168.100.1/24
Customer WAN IP is 174.77.55.XX6/28... Xander Venterus
06:57 PM Bug #6509 (Resolved): Status monitoring not displaying graphs: No problem, thanks for checking. Marking as resolved. Jared Dillard
04:16 AM Bug #6509: Status monitoring not displaying graphs: Thx, todays snap is OK. Greg M
04:42 PM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: Just to let you know, unfortunately this hasn't solved my issue, and the line is dead again. Michael Knowles
01:29 PM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: Hi Chris,
> I'm not sure what circumstance triggers this, but judging by the number of reports in that thread ther... Mario Lener
06:57 AM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: Yep, it's static in as much as it's supposed not to alter, and is the way that most "static IP" addresses are dished ... Michael Knowles
05:30 AM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: Michael Knowles wrote:
> p.s. - The ADSL i'm using in this instance has a "static IP" delivered from the ISP via DHC... Mario Lener
05:13 AM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: p.s. - The ADSL i'm using in this instance has a "static IP" delivered from the ISP via DHCP (or whatever mechanism i... Michael Knowles
05:10 AM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: Hi,
I'm the author of Bug #6423. This bug sounds remarkably similar to my symptoms.
I'm going to get the onsit... Michael Knowles
04:32 PM Revision de1d4101: % and / are also allowed in values: Jim Pingle
04:32 PM Revision ee1e4177: % and / are also allowed in values: Jim Pingle
04:32 PM Revision edd4c633: % and / are also allowed in values: Jim Pingle
03:57 PM Revision bb44b41a: Fix Bug #6394 - Incorrect Output of Translation: Apparently gettext() does not behave correctly when passed an empty string, this commit ensures gettext() is called o... NewEraCracker
03:57 PM Revision 94b5eb1f: Fix Bug #6394 - Incorrect Output of Translation: Apparently gettext() does not behave correctly when passed an empty string, this commit ensures gettext() is called o... NewEraCracker
03:57 PM Revision 44de9a2d: Merge pull request #3011 from NewEraCracker/redmine-6394: Stephen Beaver
03:55 PM Revision a8ed54b4: Remove duplicate listtags() entry 'member'.: (cherry picked from commit 40d7e4bee91246db09cc88141869abcd37390bc7) NOYB NOYB
03:55 PM Revision f3d9f32b: Remove duplicate listtags() entry 'member'.: (cherry picked from commit 40d7e4bee91246db09cc88141869abcd37390bc7) NOYB NOYB
03:54 PM Revision c0643ee4: Merge pull request #3010 from NOYB/Remove_Duplicate_ListTags_Entry: Stephen Beaver
03:48 PM Revision 76a56fce: Remove subnet_expand(): Function isn't used in main or packages repo, and in any case would need a complete rewrite to handle IPv6.
(cherry p... Stilez y
03:48 PM Revision 7f493140: Remove subnet_expand(): Function isn't used in main or packages repo, and in any case would need a complete rewrite to handle IPv6.
(cherry p... Stilez y
03:47 PM Revision 24f97159: Merge pull request #3006 from stilez/patch-33: Stephen Beaver
03:45 PM Revision 8c512801: Fix #6482 OpenVPN Redirect Gateway Option Causes GUI Issue: This fixes the GUI inconsistency reported in the referenced bug. On edit of an OpenVPN server that has tun mode, not ... Phil Davis
03:45 PM Revision 8cec6ee6: Fix #6482 OpenVPN Redirect Gateway Option Causes GUI Issue: This fixes the GUI inconsistency reported in the referenced bug. On edit of an OpenVPN server that has tun mode, not ... Phil Davis
03:44 PM Revision 8a63f7f0: Merge pull request #3005 from phil-davis/patch-4: Stephen Beaver
03:43 PM Revision 4a89ba61: added missing div.content wrapper when reloading filters: (cherry picked from commit e8406abe627675db2c2f77a81c1bb883f5158bb6) hailthemelody
03:43 PM Revision 73578b77: added missing div.content wrapper when reloading filters: (cherry picked from commit e8406abe627675db2c2f77a81c1bb883f5158bb6) hailthemelody
03:43 PM Revision 6f054658: Merge pull request #3004 from hailthemelody/master: Stephen Beaver
03:41 PM Revision 2031be9c: Fix PHP Warning about invalid argument supplied for foreach: If _POST['members'] or _POST['groups'] is not set / none selected at GUI, it would give a warning on crash reporter (... NewEraCracker
03:41 PM Revision 0e5ebefd: Fix PHP Warning about invalid argument supplied for foreach: If _POST['members'] or _POST['groups'] is not set / none selected at GUI, it would give a warning on crash reporter (... NewEraCracker
03:40 PM Revision 1705d6ed: Merge pull request #3002 from NewEraCracker/patch-invalid-foreach: Stephen Beaver
03:39 PM Revision 50264b58: Fix bad escapeshellarg logic on mpd execution: With this change single-quotes are applied in correct places
(cherry picked from commit 08cd022545be58a46b860500ff81... NewEraCracker
03:39 PM Revision 631c29af: Fix bad escapeshellarg logic on mpd execution: With this change single-quotes are applied in correct places
(cherry picked from commit 08cd022545be58a46b860500ff81... NewEraCracker
03:38 PM Revision 6c94ebc3: Merge pull request #3001 from NewEraCracker/patch-pppoe-mpd: Stephen Beaver
03:32 PM Revision 4125445f: Do not allow deleting your own user name: Currently if you delete your own user name, then the config ends up with a blank user tag in it. Rather than fix that... Phil Davis
03:31 PM Revision 01a0385e: Do not allow deleting your own user name: Currently if you delete your own user name, then the config ends up with a blank user tag in it. Rather than fix that... Phil Davis
03:31 PM Revision 5522c61f: Merge pull request #2989 from phil-davis/patch-2: Stephen Beaver
03:23 PM Revision 07b8134d: missing "(": (cherry picked from commit 70381d4803b9424c1a3f3ef518d8243062452d77) Stilez y
03:23 PM Revision 3bea1321: optional arg for old behaviour: (cherry picked from commit cf63f1638aab685cc956502f5ddd862a10bf3ff8) Stilez y
03:23 PM Revision d65d58a7: function name hms -> dhms: to match edit to util.inc
(cherry picked from commit c57e936a6596550619f7261e85b633ca5016cbf2) Stilez y
03:23 PM Revision f2f86310: Simplify convert_seconds_to_hms() and show days for large numbers of hours: 1) Function can be simplified and all "if" statements removed, using intdiv (or casting result as int for PHP < 7) an... Stilez y
03:23 PM Revision 005097dd: missing "(": (cherry picked from commit 70381d4803b9424c1a3f3ef518d8243062452d77) Stilez y
03:22 PM Revision fedbe5af: optional arg for old behaviour: (cherry picked from commit cf63f1638aab685cc956502f5ddd862a10bf3ff8) Stilez y
03:22 PM Revision 11e09114: function name hms -> dhms: to match edit to util.inc
(cherry picked from commit c57e936a6596550619f7261e85b633ca5016cbf2) Stilez y
03:22 PM Revision 8c91c89f: Simplify convert_seconds_to_hms() and show days for large numbers of hours: 1) Function can be simplified and all "if" statements removed, using intdiv (or casting result as int for PHP < 7) an... Stilez y
03:22 PM Revision 2ed50d13: Merge pull request #2988 from stilez/patch-28: Stephen Beaver
03:17 PM Revision 53c20c17: Add "delete entry" for ARP table: Useful function in some circumstances - seems no reason not to have it.
Uses IP rather than hostname since not all A... Stilez y
03:17 PM Revision 17e3a05a: Add "delete entry" for ARP table: Useful function in some circumstances - seems no reason not to have it.
Uses IP rather than hostname since not all A... Stilez y
03:17 PM Revision dbef2183: Merge pull request #2987 from stilez/patch-27: Stephen Beaver
03:15 PM Revision d1626706: Fix NTP PPS. It had 'None' option available on 2.2.x.: (cherry picked from commit ceabd66d57f7199602d3a23cb8a60080bcfa67ea) NewEraCracker
03:14 PM Revision 2a68fcd3: Fix "Unable to remove NTP GPS from configuration": https://forum.pfsense.org/index.php?topic=112771.msg627573
(cherry picked from commit 55de528cbb177b4a1f40554ad1a5671... NewEraCracker
03:14 PM Revision 74d0b334: Fix NTP PPS. It had 'None' option available on 2.2.x.: (cherry picked from commit ceabd66d57f7199602d3a23cb8a60080bcfa67ea) NewEraCracker
03:14 PM Revision 8d179341: Fix "Unable to remove NTP GPS from configuration": https://forum.pfsense.org/index.php?topic=112771.msg627573
(cherry picked from commit 55de528cbb177b4a1f40554ad1a5671... NewEraCracker
03:14 PM Revision e786d286: Merge pull request #2986 from NewEraCracker/patch-ntp-gps: Stephen Beaver
03:13 PM Revision cfa9a5be: redundant check - is_numericint() tests for >= 0: (cherry picked from commit f208e9690e2ec4089cf3d3fe5f5f03fed5a36e6f) Stilez y
03:13 PM Revision caed0783: Use global backup count instead of hardcoded value and remove redundant function: (cherry picked from commit 01b5410ae8391998ba560d40f447c7f556472c5b) Stilez y
03:13 PM Revision 4e59bedb: fix logic and replace hard coded value by global: backups should be a numeric int.
text hint for number of backups can now refer to the global value for this platform ... Stilez y
03:13 PM Revision 3fd59575: set default_config_backup_count based on platform: At the same time the platform is being detected for PHP/GUI purposes, set the default number of backups. Also handle ... Stilez y
03:13 PM Revision cf2e697d: Give settings section a more helpful/standard title to match other GUI settings tabs: (cherry picked from commit ca55edc39342865816feef390616be8b770c889b) Stilez y
03:12 PM Revision 99affb57: redundant check - is_numericint() tests for >= 0: (cherry picked from commit f208e9690e2ec4089cf3d3fe5f5f03fed5a36e6f) Stilez y
03:12 PM Revision 3d256eb1: Use global backup count instead of hardcoded value and remove redundant function: (cherry picked from commit 01b5410ae8391998ba560d40f447c7f556472c5b) Stilez y
03:12 PM Revision 8537c4a6: fix logic and replace hard coded value by global: backups should be a numeric int.
text hint for number of backups can now refer to the global value for this platform ... Stilez y
03:12 PM Revision 6ba90672: set default_config_backup_count based on platform: At the same time the platform is being detected for PHP/GUI purposes, set the default number of backups. Also handle ... Stilez y
03:12 PM Revision fdda7af6: Give settings section a more helpful/standard title to match other GUI settings tabs: (cherry picked from commit ca55edc39342865816feef390616be8b770c889b) Stilez y
03:11 PM Revision 4c93645c: Merge pull request #2982 from stilez/patch-26: Stephen Beaver
03:07 PM Revision 81b38711: Self correcting - poor english: (cherry picked from commit b56769c30a23af9f575ee4a5f056558ef8322f95) Stilez y
03:07 PM Revision 1d423947: Accuracy: Large keys are not "slower to use" in many cases, since they are only used to validate or set up a session. An ongoin... Stilez y
03:07 PM Revision 90faa0a4: missed a comment I added and shouldn't have - removed: (cherry picked from commit 7c684f3b95f641134496bc1210cfb2d814468767) Stilez y
03:07 PM Revision 2fe2d194: Update OpenVPN Wizard to include missing key sizes: ...and add some useful info to guide the user.
(cherry picked from commit 49810252681df9bd553e2221c885ceffaa2c4c7f) Stilez y
03:07 PM Revision 27626198: Add missing recommended key lengths to OpenVPN options: Add key lengths to the OpenVPN options, for asymmetric keys of size 3072 (for current use), 7680, 15360 (for long ter... Stilez y
03:06 PM Revision 30f56eff: Self correcting - poor english: (cherry picked from commit b56769c30a23af9f575ee4a5f056558ef8322f95) Stilez y
03:06 PM Revision 34bf7dee: Accuracy: Large keys are not "slower to use" in many cases, since they are only used to validate or set up a session. An ongoin... Stilez y
03:06 PM Revision 1f80105d: missed a comment I added and shouldn't have - removed: (cherry picked from commit 7c684f3b95f641134496bc1210cfb2d814468767) Stilez y
03:06 PM Revision dd4e58aa: Update OpenVPN Wizard to include missing key sizes: ...and add some useful info to guide the user.
(cherry picked from commit 49810252681df9bd553e2221c885ceffaa2c4c7f) Stilez y
03:05 PM Revision bd1a4433: Add missing recommended key lengths to OpenVPN options: Add key lengths to the OpenVPN options, for asymmetric keys of size 3072 (for current use), 7680, 15360 (for long ter... Stilez y
03:05 PM Revision e98865a8: Merge pull request #2942 from stilez/patch-22: Stephen Beaver
03:03 PM Revision ef609a57: Added option to System > General Setup > webConfigurator to change the title of the Help menu in the navbar to either the system hostname or fqdn.: (cherry picked from commit 1d12996755ee6fb9b9e163d292bdba160a926e64) Christopher Fazendin
03:03 PM Revision cb0222b0: Added option to System > General Setup > webConfigurator to change the title of the Help menu in the navbar to either the system hostname or fqdn.: (cherry picked from commit 1d12996755ee6fb9b9e163d292bdba160a926e64) Christopher Fazendin
03:02 PM Revision 612e27ac: Merge pull request #2935 from cfazendin/hostname_menu: Stephen Beaver
02:55 PM Revision b8eb4e7f: Make QinQ interfaces work again: (cherry picked from commit 1322ee22354f1a6e184819fb7009a2996b63de97) Chris Rowe
02:55 PM Revision de1bacbc: Make QinQ interfaces work again: (cherry picked from commit 1322ee22354f1a6e184819fb7009a2996b63de97) Chris Rowe
02:55 PM Revision 253919a5: Merge pull request #2906 from Chrisc-c-c/Fix-QinQ-Interfaces: Stephen Beaver
02:50 PM Revision ab8c4106: Allow IGMP Proxy logging verbosity to be selected via system log settings (PR 2901): (cherry picked from commit 2bd0585e30e5ec8fc3b79ca3f579bf9a7c1bcbc8) Stephen Beaver
02:50 PM Revision 61d6a840: Allow IGMP Proxy logging verbosity to be selected via system log settings (PR 2901): (cherry picked from commit 2bd0585e30e5ec8fc3b79ca3f579bf9a7c1bcbc8) Stephen Beaver
02:49 PM Revision 2bd0585e: Allow IGMP Proxy logging verbosity to be selected via system log settings (PR 2901): Stephen Beaver
02:18 PM Revision 1ac8faed: adding privileges and separating DNS Resolver overrides from general settings: (cherry picked from commit fc76a1e390c8ce9579df31457c74d1d0e572b78d) Joe Palmer
02:18 PM Revision 54147cc6: adding privileges and separating DNS Resolver overrides from general settings: (cherry picked from commit fc76a1e390c8ce9579df31457c74d1d0e572b78d) Joe Palmer
02:18 PM Revision dbab5a7e: Merge pull request #2891 from gottaloveit/dns-overrides-privs: Stephen Beaver
02:14 PM Bug #6099: igmpproxy does not recognize upstream interface: As said my provider is using IGMPv3 which I cannot get to work (so I will stay on 2.2.6 for the time being).
I've ... Victor Toni
02:04 PM Bug #6099: igmpproxy does not recognize upstream interface: Greg Myran wrote:
> I want to thank you again for your efforts.
You're welcome,
> I've moved my multicast traffic... Victor Toni
02:07 PM Revision fe2b8de7: Force 4096 RSA keys: Add option `-b 4096` to force the keys to 4096-bit.
This parameter is ignored for Ed25519 keys.
(cherry picked from... Jose Luis Duran
02:07 PM Revision 1ffd4c51: Harden sshd_config: The changes are better explained in the following article:
https://stribika.github.io/2015/01/04/secure-secure-shell... Jose Luis Duran
02:06 PM Revision 088ffabc: Force 4096 RSA keys: Add option `-b 4096` to force the keys to 4096-bit.
This parameter is ignored for Ed25519 keys.
(cherry picked from... Jose Luis Duran
02:06 PM Revision a9274a80: Harden sshd_config: The changes are better explained in the following article:
https://stribika.github.io/2015/01/04/secure-secure-shell... Jose Luis Duran
02:05 PM Revision 90913bc7: Merge pull request #2783 from jlduran/harden-sshd_config: Stephen Beaver
12:47 PM Revision 384ffced: Fixed #6504 by making table sortable: (cherry picked from commit 55f67b5abd9b809807e328477779d97120908273) Stephen Beaver
12:47 PM Revision 4a4a4c41: Fixed #6504 by making table sortable: (cherry picked from commit 55f67b5abd9b809807e328477779d97120908273) Stephen Beaver
12:45 PM Revision 55f67b5a: Fixed #6504 by making table sortable: Stephen Beaver
11:45 AM Revision 76f6498f: jQuery datepicker added to interfaces.php and interfaces_ppps_edit.php for setting custom expirey date: (cherry picked from commit d85d82b7686d5899948e6ec4b1587e74937820cf) Stephen Beaver
11:45 AM Revision df38ab93: jQuery datepicker added to interfaces.php and interfaces_ppps_edit.php for setting custom expirey date: (cherry picked from commit d85d82b7686d5899948e6ec4b1587e74937820cf) Stephen Beaver
11:43 AM Revision d85d82b7: jQuery datepicker added to interfaces.php and interfaces_ppps_edit.php for setting custom expirey date: Stephen Beaver
11:27 AM Revision 246be5d3: Fixed #6516 by replacing HTML5 datepicker with jQuery widget: (cherry picked from commit 53c38ff16c1eb8743e69d506f69167c88cf34910) Stephen Beaver
11:27 AM Revision f11862a3: Fixed #6516 by replacing HTML5 datepicker with jQuery widget: (cherry picked from commit 53c38ff16c1eb8743e69d506f69167c88cf34910) Stephen Beaver
11:26 AM Revision 53c38ff1: Fixed #6516 by replacing HTML5 datepicker with jQuery widget: Stephen Beaver
08:23 AM Bug #6520: Time out when trying to look at interfaces_assign.php: Here are the logs :
Jun 22 15:21:51 fw2.ds nginx: 2016/06/22 15:21:51 [error] 21284#0: *121 upstream timed out (60: ... Axel Duez
04:34 AM Bug #6520 (Duplicate): Time out when trying to look at interfaces_assign.php: Hello,
Since the update in 2.3, I get a time out when trying to reach interfaces_assign.php. Then the whole web inte... Axel Duez
07:50 AM Feature #6504: services_dhcp.php: DHCP Static Mappings table should be sortable: Applied in changeset commit:55f67b5abd9b809807e328477779d97120908273. Anonymous
07:41 AM Feature #6504 (Feedback): services_dhcp.php: DHCP Static Mappings table should be sortable: Table is now sortable as requested Anonymous
07:39 AM Feature #6504 (Assigned): services_dhcp.php: DHCP Static Mappings table should be sortable: Anonymous
07:21 AM Bug #6522 (Not a Bug): Mobile IPSec with PSK does not supply option to provide PSK: With plain PSK auth you enter the Identifiers and keys on the PSK tab and/or in the PSK field on accounts in the user... Jim Pingle
06:52 AM Bug #6522 (Not a Bug): Mobile IPSec with PSK does not supply option to provide PSK: When I create the IPsec for the mobile clients, I choose PSK as Phase1 security. However, I cannot select any predefi... Alex Z
07:19 AM Feature #6519: SSD TRIM option via GUI: Hi Jim,
You made the right considerations. I'll continue to use the manual option.
Thanks in advance,
--
Mario Mario Lener
07:12 AM Feature #6519 (Rejected): SSD TRIM option via GUI: No, it is not. The option cannot be changed while the disk is mounted. Also, hardware support for TRIM is not univers... Jim Pingle
04:23 AM Feature #6519 (Rejected): SSD TRIM option via GUI: Hi,
It would be possible to add an option to enable TRIM SSD in the GUI instead of via command line? Mario Lener
06:30 AM Bug #6516: Calendar date picker on system_usermanager.php only works in Chrome: Applied in changeset commit:53c38ff16c1eb8743e69d506f69167c88cf34910. Anonymous
06:28 AM Bug #6516 (Feedback): Calendar date picker on system_usermanager.php only works in Chrome: HTML5 datepicker replaced with jQuery widget. It seems that Chrome and Opera are the only browsers that implement the... Anonymous
06:23 AM Feature #2358: NAT64 support: UPVOTE Alex Kolesnik
05:28 AM pfSense Packages Bug #6521 (New): pfsense 2.3.1 squidguard -> Groups ACL -> Target Rules List missing...: The clickable "Target Rules List" field in menu "Groups ACL" disappears if more than 3 "Target categories" are define... Lars Heer
02:58 AM Bug #6518 (Closed): IPsec phase 1 VPN not working with IPv6+DNS with "My IP Address" as identifier: Hi,
I'm running pfSense : ... Sébastien Boulet
02:37 AM Revision 9e680116: fix rowhelper select_source empty combo: while using $config['installedpackage']{['...'] as source Marcello Silva Coutinho
02:37 AM Revision 0aa18e14: fix rowhelper select_source empty combo: while using $config['installedpackage']{['...'] as source Marcello Silva Coutinho
02:37 AM Revision bc8b18a9: Merge pull request #3015 from marcelloc/patch-4: Chris Buechler
01:25 AM Revision cb74937f: add htop to poudriere_bulk: Chris Buechler
01:25 AM Revision e388275c: add htop to poudriere_bulk: Chris Buechler
01:25 AM Revision e9ac4800: add htop to poudriere_bulk: Chris Buechler
12:40 AM Revision ac3e3baa: Only call interfaces_vips_configure once if it's needed, rather than doing the same thing over and over for every VIP on an interface. Ticket #6515: Chris Buechler
12:40 AM Revision 6fd9645e: Only call interfaces_vips_configure once if it's needed, rather than doing the same thing over and over for every VIP on an interface. Ticket #6515: Chris Buechler
12:40 AM Revision d75c55fb: Only call interfaces_vips_configure once if it's needed, rather than doing the same thing over and over for every VIP on an interface. Ticket #6515: Chris Buechler
12:16 AM Bug #6499: pf fragment states not purged: Dmitriy K wrote:
> This fix wont be pushed in current stable?
Needed to be confirmed in 2.3.2 snapshots first.
... Chris Buechler
12:12 AM Bug #6476: Editing an IPSec phase 2 entry fails: Waldo Nell wrote:
>
> string(10) "10.200.1.1"
> int(16)
that's correct, and exactly what it's checking for the... Chris Buechler
12:01 AM pfSense Packages Feature #6502 (Closed): Add samba in the available packages: a firewall isn't a NAS, trying to be one isn't of interest. Chris Buechler

06/21/2016

11:57 PM Bug #6506: IPv6 static routes omit interface scope of link-local gateways: Daniel Hoffend wrote:
> when a static route gets pushed to the system
What do you mean by "pushed to", that via ... Chris Buechler
11:54 PM Bug #6516: Calendar date picker on system_usermanager.php only works in Chrome: It's probably similar to this: https://forum.pfsense.org/index.php?topic=112358.0.
It could be replaced with the ... Jared Dillard
08:05 PM Bug #6516 (Resolved): Calendar date picker on system_usermanager.php only works in Chrome: The calendar date picker on system_usermanager.php doesn't show up in any browser other than Chrome from the looks of... Chris Buechler
11:53 PM Bug #6507 (Confirmed): GRE and GIF tunnels on dynamic IPv6 interface are not brought up during boot: Chris Buechler
11:43 PM Feature #6365: Current images do not install on UEFI Machines: Tomas Ulicky wrote:
>
> Why deleted target version?
Duplicate closed tickets need that removed so it doesn't me... Chris Buechler
11:37 PM Bug #6510 (Resolved): Core files can fill up /var/run/: works Chris Buechler
10:30 AM Bug #6510 (Feedback): Core files can fill up /var/run/: Applied in changeset commit:a08208f81bcb2812bdda07e21b501447fb350408. Jim Pingle
10:23 AM Bug #6510 (Resolved): Core files can fill up /var/run/: In some cases, a process can crash and the resulting core file fills /var/run/ if that was the working directory for ... Jim Pingle
11:33 PM Bug #6514 (Resolved): services_captiveportal_zones_edit.php: Zone name cannot start with a number: works Chris Buechler
05:00 PM Bug #6514 (Feedback): services_captiveportal_zones_edit.php: Zone name cannot start with a number: Applied in changeset commit:f0a053846d6cde2724c47b5553e1395cfd21445c. Anonymous
03:29 PM Bug #6514 (Resolved): services_captiveportal_zones_edit.php: Zone name cannot start with a number: The zone name on services_captiveportal_zones_edit.php is used as an XML tag name and needs to follow the relevant st... Jim Pingle
11:24 PM Revision a5dee45b: update d3.js: Jared Dillard
11:24 PM Revision 85c7840f: update nvd3 files: Jared Dillard
11:09 PM Bug #6512: Upgrade to 2.3.1 causes network performance degradation (with High CPU usage by NIC kernel tasks): It's likely not one NIC driver that's in question, as there definitely aren't any issues with e1000, and probably not... Chris Buechler
04:30 PM Bug #6512: Upgrade to 2.3.1 causes network performance degradation (with High CPU usage by NIC kernel tasks): And perhaps this post has the same problem
https://forum.pfsense.org/index.php?topic=113529.0
Juan Gallego
03:46 PM Bug #6512: Upgrade to 2.3.1 causes network performance degradation (with High CPU usage by NIC kernel tasks): Obviously there's a performance regression. It may have to do with our hardware, but:
# This wasnt present on previ... Juan Gallego
03:36 PM Bug #6512 (Rejected): Upgrade to 2.3.1 causes network performance degradation (with High CPU usage by NIC kernel tasks): that's something to do with your combination of hardware, which isn't anything we support. There aren't any general p... Chris Buechler
03:22 PM Bug #6512 (Rejected): Upgrade to 2.3.1 causes network performance degradation (with High CPU usage by NIC kernel tasks): Hi,
Currently we have a 2-node pfsense system working in active/passive HA. This cluster was running pfsense v2.2.... Juan Gallego
11:04 PM Bug #6517 (Confirmed): Adding mobile IPsec phase 2 entries requires restart of strongswan: strongswan doesn't pick up the new leftsubnet config (though it's correctly shown in statusall) when doing a reload. ... Chris Buechler
10:06 PM Bug #6517 (Confirmed): Adding mobile IPsec phase 2 entries requires restart of strongswan: Using mobile IPsec on 2.3.1-RELEASE-p1 and using OS X 10.11.4 on the client side, I find that when I add additional P... Andreas Wintervold
10:55 PM Revision 68126224: update d3.js: Jared Dillard
10:55 PM Revision 6c43b7d3: update nvd3 files: Jared Dillard
10:23 PM Revision fb0ecb7a: Fix style: Chris Buechler
10:23 PM Revision 55a72d31: Fix style: Chris Buechler
10:23 PM Revision 616161d5: Fix style: Chris Buechler
10:11 PM Revision e08b45e4: require_once auth.inc in vpn.inc since it uses functions from there, though normal use of the system won't require that, those who run certain things manually/custom may require it: Chris Buechler
10:11 PM Revision e4f7da85: require_once auth.inc in vpn.inc since it uses functions from there, though normal use of the system won't require that, those who run certain things manually/custom may require it: Chris Buechler
10:10 PM Revision 87a898b1: require_once auth.inc in vpn.inc since it uses functions from there, though normal use of the system won't require that, those who run certain things manually/custom may require it: Chris Buechler
10:07 PM Bug #6498 (Resolved): firewall_nat_npt_edit.php: IPv4 addresses can be entered, but the page is only for IPv6: works Chris Buechler
01:40 PM Bug #6498: firewall_nat_npt_edit.php: IPv4 addresses can be entered, but the page is only for IPv6: Applied in changeset commit:3e4adb7139b4cddbb06a2aba7e0727d1762b35ee. Anonymous
01:28 PM Bug #6498 (Feedback): firewall_nat_npt_edit.php: IPv4 addresses can be entered, but the page is only for IPv6: A new optional argument is supported for inputs of type IpAddress. $type can be "BOTH", "V4" or "V6" and will enforce... Anonymous
10:24 AM Bug #6498 (Assigned): firewall_nat_npt_edit.php: IPv4 addresses can be entered, but the page is only for IPv6: Anonymous
09:56 PM Revision c513ef24: Fixed #6514 by requiring string starts with letter ot underscore: (cherry picked from commit f0a053846d6cde2724c47b5553e1395cfd21445c) Stephen Beaver
09:55 PM Revision 421431bc: Fixed #6514 by requiring string starts with letter ot underscore: (cherry picked from commit f0a053846d6cde2724c47b5553e1395cfd21445c) Stephen Beaver
09:55 PM Revision f0a05384: Fixed #6514 by requiring string starts with letter ot underscore: Stephen Beaver
09:32 PM Bug #6495 (Confirmed): No default route on PPPoE after reconnect or IP change in some cases: I'm not sure what circumstance triggers this, but judging by the number of reports in that thread there is something.... Chris Buechler
09:20 PM Revision b6a49ec3: fix rowhelper select_source empty combo: while using $config['installedpackage']{['...'] as source Marcello Silva Coutinho
08:25 PM Revision 7253e407: Only omit aggressive line from ipsec.conf where IKEv2. Ticket #6513: Chris Buechler
08:25 PM Revision 201b24e7: Only omit aggressive line from ipsec.conf where IKEv2. Ticket #6513: Chris Buechler
08:24 PM Revision 03de0c24: Only omit aggressive line from ipsec.conf where IKEv2. Ticket #6513: Chris Buechler
07:41 PM Bug #6515 (Feedback): link_interface_to_vips slow with large numbers of VIPs: fix pushed. Confirmed that still does all the necessary actions, and eliminates the delays by not doing the same thin... Chris Buechler
07:39 PM Bug #6515 (Resolved): link_interface_to_vips slow with large numbers of VIPs: link_interface_to_vips when called with the update parameter calls interfaces_vips_configure once per VIP on the inte... Chris Buechler
06:49 PM Revision 0891d12f: Fixed #6498 by providing new address type argument to Form_IpAddress(). In this case it is specified as "V6".: (cherry picked from commit 3e4adb7139b4cddbb06a2aba7e0727d1762b35ee) Stephen Beaver
06:47 PM Revision 2c4af48f: Fixed #6498 by providing new address type argument to Form_IpAddress(). In this case it is specified as "V6".: (cherry picked from commit 3e4adb7139b4cddbb06a2aba7e0727d1762b35ee) Stephen Beaver
06:46 PM Revision 28af9ca0: Create openssl.cnf symlink during boot: (cherry picked from commit 5051739d72d31f8bd250148dfa65213723275310) Renato Botelho
06:40 PM Revision 00a76884: Incorporated ssl changes: Stephen Beaver
06:29 PM Revision 3e4adb71: Fixed #6498 by providing new address type argument to Form_IpAddress(). In this case it is specified as "V6".: Stephen Beaver
06:28 PM pfSense Packages Bug #6511: In some circumstances the HAProxy clone front-end button can add blank list entries to the front end being cloned resulting in a config that cannot be applied.: It's not just that - the clone/duplicate/whatnot button is borked in general. E.g., when you "duplicate" an ACL, the ... Kill Bill
01:26 PM pfSense Packages Bug #6511 (Resolved): In some circumstances the HAProxy clone front-end button can add blank list entries to the front end being cloned resulting in a config that cannot be applied.: 1. The blank entries shouldn't be created.
2. The blank entries should be ignored on the backend.
See: RPL-94792 Steve Wheeler
05:27 PM Revision 5051739d: Create openssl.cnf symlink during boot: Renato Botelho
04:16 PM Bug #6509 (Feedback): Status monitoring not displaying graphs: Thanks for taking the time to make a detailed report!
It looks like I was able to fix both issues and just pushed ... Jared Dillard
03:57 AM Bug #6509 (Resolved): Status monitoring not displaying graphs: Hi!
On latest snaps monitoring is not displaying graphs correctly when both axes are selected.
See attached scree... Greg M
03:26 PM Bug #6513 (Feedback): IKE mode auto omits aggressive from ipsec.conf: fix pushed Chris Buechler
03:24 PM Bug #6513 (Resolved): IKE mode auto omits aggressive from ipsec.conf: IKE mode auto omits aggressive from ipsec.conf, leaving it always disabled Chris Buechler
03:24 PM Revision 4a304fbf: Set kern.corefile, fixes #6510: Jim Pingle
03:23 PM Revision 2e6a2bf5: Set kern.corefile, fixes #6510: Jim Pingle
03:23 PM Revision a08208f8: Set kern.corefile, fixes #6510: Jim Pingle
10:20 AM Revision 91039db4: Use synlink path for core repo and fix resume build: Renato Botelho
10:20 AM Revision efd95df7: Use synlink path for core repo and fix resume build: Renato Botelho
10:19 AM Revision 19930c25: Use synlink path for core repo and fix resume build: Renato Botelho
03:32 AM pfSense Packages Feature #6508 (Closed): OSPF v3 - Quagga OSPF6d: Hi,
Can you implement, in a future release, the OSPFv3 for IPv6?
In advance tank you Johann Vyncke
01:42 AM Bug #6496: Squid HTTPS Certificed enable Unable to determine IP address from host name http: Chris Buechler wrote:
> pretty sure that's a config issue, not a bug.
So what is the solution of this
I think it... Landforces turkuaz
01:29 AM Bug #3022: OpenVPN does not failover to the 2nd configured LDAP auth.server: Facing the same issue.
Currently we have 2 entries for 'Backend for authentication' selected (Active Directory domai... Sven Lennartz

06/20/2016

05:52 PM Revision 5cc9858e: Fix typo: Jim Pingle
05:52 PM Revision 93955a58: Fix typo: Jim Pingle
05:52 PM Revision 8c2b65f8: Fix typo: Jim Pingle
05:48 PM Bug #6507: GRE and GIF tunnels on dynamic IPv6 interface are not brought up during boot: My test setup contains 2 gre tunnels, but to reproduce the issue 1 gre tunnel is sufficient.
*Tunnel1*
* Local ... Daniel Hoffend
05:43 PM Bug #6507 (Closed): GRE and GIF tunnels on dynamic IPv6 interface are not brought up during boot: *Setup*
The WAN Interface of my pfsense firewall is connected to our homenetwork. The "real" wan connection (dsl r... Daniel Hoffend
05:37 PM Bug #4479: Firewall rules won't match GRE interface after applying IPSEC transport encryption on GRE tunnel: I can confirm this still happens with both GRE and GIF tunnels over IPsec on pfSense 2.3.1 Jorge Albarenque
05:11 PM Bug #6505: dpinger - socket name too large: With redunced Gateway name (max 5 chars) I could make the dpinger work and start properly. I even can see the icmp6 r... Daniel Hoffend
03:11 PM Bug #6505 (Resolved): dpinger - socket name too large: The combination of gateway name + link-local dhcp6 address + vlan interface name create a very long socket name. In m... Daniel Hoffend
05:02 PM Bug #6099: igmpproxy does not recognize upstream interface: I want to thank you again for your efforts. I've moved my multicast traffic onto it's own physical interface on my P... Greg Myran
11:53 AM Bug #6099: igmpproxy does not recognize upstream interface: Greg Myran wrote:
> [...] I am now starting to suspect the new method of finding network interfaces may see the addi... Victor Toni
04:53 PM Bug #6506 (Resolved): IPv6 static routes omit interface scope of link-local gateways: When getting an address assigned from a DHCPv6 Server pfSense automatically creates a gateway to monitor using the li... Daniel Hoffend
03:25 PM Revision e8c11099: Fix redundant phrasing.: Jim Pingle
03:25 PM Revision 25bbf8a1: Fix redundant phrasing.: Jim Pingle
03:25 PM Revision 2c5579ce: Fix redundant phrasing.: Jim Pingle
02:56 PM Feature #6504 (Resolved): services_dhcp.php: DHCP Static Mappings table should be sortable: Currently the `DHCP Static Mappings table` inside `Services->DHCP Server` isn't sortable where it should be.
Aside... Prince Adam
02:04 PM Feature #4606: PKI : CA signing external CSR: +1 for this feature -- it's pretty much essential for implementing PKI across an infrastructure.
So I wanted to en... Bruce Simpson
11:59 AM Revision b0d0498c: Add the hability of building images with custom logos on build scripts: Renato Botelho
11:54 AM Revision 6beef1bf: Add NYI custom_logos: Renato Botelho
11:54 AM Revision ce9056f6: Teach rc script to copy custom_logos over default one: Renato Botelho
11:53 AM Revision d86b249b: Add the hability of building images with custom logos on build scripts: Renato Botelho
11:53 AM Revision b81cda57: Add NYI custom_logos: Renato Botelho
11:53 AM Revision 233884c9: Teach rc script to copy custom_logos over default one: Renato Botelho
11:52 AM Revision 39cc232b: Add the hability of building images with custom logos on build scripts: Renato Botelho
11:52 AM Revision a7457d5b: Add NYI custom_logos: Renato Botelho
11:51 AM Revision f7765452: Teach rc script to copy custom_logos over default one: Renato Botelho
08:43 AM Feature #1682: second MAC address for one IP address: I'd like to request to reopen this issue.
IMHO it's not semantic to use different hostnames for the same host. A h... Prince Adam
08:15 AM Bug #6503 (Resolved): rrd graph for ntp monitoring does not reflect freq when neg (-) value.: Seems when frequency is negative (-) It is not graphed.
Thread here asking for confirmation
https://forum.pfsense... JohnPoz _
01:43 AM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: Hi Chris,
> followed up in your forum thread.
In the past weekend i made more test with different ISP: i live i... Mario Lener
12:31 AM Revision 419af712: Add include of functions.inc for declaration of gettext: Denny Page

06/19/2016

05:40 PM Revision 6ae99aba: Fix Bug #6394 - Incorrect Output of Translation: Apparently gettext() does not behave correctly when passed an empty string, this commit ensures gettext() is called o... NewEraCracker
04:33 PM pfSense Packages Feature #6502 (Closed): Add samba in the available packages: Hello
I don't know if I'm writing this in the right place if not then I apologise.
My request is that add in the av... John Smith
03:01 PM Todo #6501: Tightening up subnet expansion: 4. Is IPv6 catered for by its own functionality, if not does this need an IPv6 equivalent and what would that look li... Stilez y
03:00 PM Todo #6501 (New): Tightening up subnet expansion: A couple of days ago I put a PRE into Github to remove the subnet_expand() function. It isn't used anywhere in the co... Stilez y
12:42 PM Bug #6394: INCORRECT OUTPUT OF TRANSLATION: This PR should fix the issue:
https://github.com/pfsense/pfsense/pull/3011
Apparently gettext() does not behave c... Jorge M. Oliveira
08:41 AM Bug #6099: igmpproxy does not recognize upstream interface: I did some more troubleshooting and here are some additional details.
If I start igmpproxy with IPv6 disabled, the... Greg Myran
04:48 AM Feature #6365: Current images do not install on UEFI Machines: Chris Buechler wrote:
> duplicate of #4044
Why deleted target version? Tomas Ulicky
01:48 AM Bug #6499: pf fragment states not purged: This fix wont be pushed in current stable? Dmitriy K

06/18/2016

09:07 PM Bug #6099: igmpproxy does not recognize upstream interface: I understand igmpproxy only supports IPv4 / IGMP. In both cases above the STB is IPv4 only and speaks IGMPv2. The ... Greg Myran
05:22 PM Bug #6099: igmpproxy does not recognize upstream interface: It is not supposed to work! igmpproxy supports only IPv4 / IGMP.
Regarding multicast IGMP is for "pure" IPv4, MLD ... Victor Toni
10:57 AM Bug #6099: igmpproxy does not recognize upstream interface: Victor Toni wrote:
> Could you please give it one more try to avoid regressions?
This latest version has been wor... Greg Myran
09:37 AM Revision 40d7e4be: Remove duplicate listtags() entry 'member'.: NOYB NOYB

06/17/2016

05:47 PM Bug #6315: tftp-proxy is not functioning properly through xinetd: Data point: I'm seeing similar behaviour with daytime-dgram on 2.3.1-p1.
Why bring this up in 2016? Well, we need ... Bruce Simpson
05:34 PM Feature #6500 (New): Should be a way to determine which packages are available without having to update/install: Since one or more packages are often a "show-stopper" requirement for pfSense users, there should be a way to authori... B. Derman
05:06 PM Bug #6476: Editing an IPSec phase 2 entry fails: Chris Buechler wrote:
> go to Diag>Command, in PHP Commands box, paste in:
>
> [...]
>
> and hit Execute, wha... Waldo Nell
03:51 PM Bug #6499 (Feedback): pf fragment states not purged: fix pushed Chris Buechler
03:50 PM Bug #6499 (Resolved): pf fragment states not purged: pf_purge_expired_fragments doesn't purge, leaving users with "PF frag entries limit reached" where fragmentation is c... Chris Buechler
02:32 PM Bug #6496 (Not a Bug): Squid HTTPS Certificed enable Unable to determine IP address from host name http: pretty sure that's a config issue, not a bug. Chris Buechler
10:05 AM Bug #6496 (Not a Bug): Squid HTTPS Certificed enable Unable to determine IP address from host name http: Squid HTTPS filitering enable and problem
The following error was encountered while trying to retrieve the URL: ... Landforces turkuaz
02:31 PM Bug #6495 (Feedback): No default route on PPPoE after reconnect or IP change in some cases: followed up in your forum thread. Chris Buechler
11:22 AM Bug #6495: No default route on PPPoE after reconnect or IP change in some cases: Mario Lener wrote:
> Hi, i found a strange error from release 2.3 on default route on PPPoE interface. I write a pos... Mario Lener
07:04 AM Bug #6495 (Resolved): No default route on PPPoE after reconnect or IP change in some cases: Hi, i found a strange error from release 2.3 on default route on PPPoE interface. I write a post with print screen in... Mario Lener
02:24 PM Revision b02ae57a: Remove tab_array from interfaces_groups_edit.php to be consistent with other *_edit files: Renato Botelho
02:24 PM Revision ad516a50: Remove tab_array from interfaces_groups_edit.php to be consistent with other *_edit files: Renato Botelho
02:10 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Right - openssl is now 1.0.1s where it is 1.0.2c on 2.2.6.
Openssl was downgraded at https://redmine.pfsense.org/p... Sam Bingner
10:46 AM Bug #6466: Host overrides do not appear to work with DNS Resolver in forwarding mode: I'm having a similar issue. I just upgraded from a 2.2.x revision and have been unable to get the resolver to work. I... Stephen Switzer
10:25 AM Bug #6498 (Resolved): firewall_nat_npt_edit.php: IPv4 addresses can be entered, but the page is only for IPv6: Both "Address" fields on firewall_nat_npt.php allow entry of IPv4 addresses, but they should be restricted to only IP... Jim Pingle
10:18 AM pfSense Packages Bug #6497 (Closed): Squid3 web GUI page not saving settings for users in custom system privileged groups in v 2.2.2: In v 2.2.2, if a web UI administrator is in a custom user group that has a subset of system privileges including the ... tqwqllrm tqwqllrm
06:14 AM Bug #6110: Default gateway switching not always working with PPP: +1 for me on this issue.
Related to https://redmine.pfsense.org/issues/5090 I think
Multiple posts on this here:... James M
05:16 AM Bug #6099: igmpproxy does not recognize upstream interface: @Victor Toni
I'm not quite sure if this might be relevant. But it seems like there is a repository at Github attempt... Prince Adam
04:12 AM Revision 0987677a: simplify subnet_size(): is_ipaddr() returns the type of IP if valid. Use this to simplify the function Stilez y
04:08 AM Revision 6215902c: Remove subnet_expand(): Function isn't used in main or packages repo, and in any case would need a complete rewrite to handle IPv6. Stilez y
03:43 AM Bug #6493: Dynamic DNS clients slow page load: Configurable check ip service solution to this can be found here.
https://github.com/pfsense/pfsense/pull/3008
Su... NOYB NOYB

06/16/2016

05:42 PM Revision 941c4c5d: Bump revision to 5 to match internal releases that never went public: Renato Botelho
05:11 PM Bug #6494: Hang during bootup on lock('filter.lock'): you're doing something far more atypical than having a site to site VPN. GUI windows in the browser being left open c... Chris Buechler
04:54 PM Bug #6494: Hang during bootup on lock('filter.lock'): The only thing I can think of that's unusual about this install is that it starts a site-site vpn client, which takes... Harry Coin
04:52 PM Bug #6494: Hang during bootup on lock('filter.lock'): Notice too that filterlog re-spawns on its own after having been killed.
Harry Coin
04:50 PM Bug #6494: Hang during bootup on lock('filter.lock'): I haven't figured out yet why two php-fpm processes hold filter.lock open during the bootup. I wonder if it has som... Harry Coin
04:47 PM Bug #6494: Hang during bootup on lock('filter.lock'): Just happened again on a clean install of 2.3.1-p5
It deadlocks HARD on lock('filter.lock'). 100% of the time, to... Harry Coin
03:49 PM Bug #6494 (Feedback): Hang during bootup on lock('filter.lock'): there's no magic about whether the lock file exists, its presence isn't a lock on its own. It's never deleted, outsid... Chris Buechler
12:48 PM Bug #6494 (Resolved): Hang during bootup on lock('filter.lock'): Hang during bootup 3 of 5 tries on lock('filter.lock')
Why does filterlog hold /tmp/filter.lock open for writing?
... Harry Coin
04:28 PM Bug #6422: PHP Fatal error: Call to undefined function gettext() in /etc/inc/rrd.inc on line 60: I've also just come across this error.
*Call to undefined function gettext() in /etc/inc/rrd.inc on line 60*
S... Jeff Hanks
12:47 AM Bug #6364: PHP Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 32 bytes) in /usr/local/www/status_carp.php on line 261: Hello,
Any ETA? Zeev Zalessky

06/15/2016

10:53 PM Revision 9640f8b7: Correct value for 9600. Ticket #6416: Chris Buechler
10:52 PM Revision 9c403919: Correct value for 9600. Ticket #6416: Chris Buechler
09:22 PM Bug #6493: Dynamic DNS clients slow page load: Hard coded my service https://url... along with curl auth into services.inc and it works. Much faster too. Would... NOYB NOYB
08:53 PM Bug #6493 (Confirmed): Dynamic DNS clients slow page load: yeah they don't reply to the first SYN (guessing the service is under near-constant DDoS, it's been that way for some... Chris Buechler
08:16 PM Bug #6493: Dynamic DNS clients slow page load: Did some network sniffing and their is sporadic TCP retransmissions of the initial SYN to the various checkup.dynd... NOYB NOYB
07:20 PM Bug #6493 (Confirmed): Dynamic DNS clients slow page load: Dynamic DNS RFC 2136 Clients page is slow to load with entries for interfaces that have private address and the optio... NOYB NOYB
08:06 PM Bug #6429: DHCP: makeing dynamic entry static does not work: After rebooting it works.
I add an other Nexus 5X to static and it worked as expected.
I don't know why a reboot wa... Grischa Zengel
07:16 PM Bug #6429: DHCP: makeing dynamic entry static does not work: Remember I did restart DHCP without success.... Grischa Zengel
06:42 PM Bug #6429: DHCP: makeing dynamic entry static does not work: > delete the lease from the pool if you don't want it to appear in the list immediately, otherwise it'll go away on i... Grischa Zengel
06:37 PM Bug #6429: DHCP: makeing dynamic entry static does not work: Is it normal to have a lot of such old entries:... Grischa Zengel
06:13 PM Bug #6429: DHCP: makeing dynamic entry static does not work: I changed it 15 days ago and I still get the wrong IP.
If I do this with Windows dhcp and disable and enable WLAN I ... Grischa Zengel
05:18 PM Bug #6429 (Not a Bug): DHCP: makeing dynamic entry static does not work: works fine. ... Chris Buechler
06:23 PM pfSense Packages Bug #6492 (Resolved): Syslog-ng configuration file warning is treated as syntax error: The syslog-ng package is warning about an old configuration file format. Pfsense is interpreting any warning message ... Thomas Blaschke
05:53 PM Bug #6416 (Feedback): wrong number for speed in /usr/local/www/services_ntpd_gps.php: fix pushed Chris Buechler
05:51 PM Bug #6420 (Assigned): Monitoring graphs last sample being zero: NOYB NOYB wrote:
> Umm, no it wasn't. Not sure where feedback was coming from that said it was fixed. But it is no... Chris Buechler
05:46 PM Bug #6099: igmpproxy does not recognize upstream interface: Greg Myran wrote:
>
> IGMPv2 working for me with this latest version. Thanks for all your time and effort Victor ... Victor Toni
05:35 PM Bug #6476: Editing an IPSec phase 2 entry fails: go to Diag>Command, in PHP Commands box, paste in: ... Chris Buechler
05:32 PM Bug #6476: Editing an IPSec phase 2 entry fails: Chris Buechler wrote:
> Either get_interface_ip or get_interface_subnet has to return empty for that to happen. The ... Waldo Nell
05:32 PM Bug #6476: Editing an IPSec phase 2 entry fails: Chris Buechler wrote:
> guessing your LAN is set to IPv4 "none"?
Yes - IPv4 and no IPv6.
Waldo Nell
05:32 PM Bug #6417 (Not a Bug): PHP startup errors: you changed something that broke the libraries Chris Buechler
05:29 PM Bug #6458 (Resolved): DHCP6 is enabled on AWS EC2 instance: wasn't overlap because the interface assignment process isn't user-initiated in that case. Fixed to have that unset b... Chris Buechler
04:37 PM Feature #6362 (Confirmed): Allow specifying the client identifier hardware type: that is indeed the case. Appears it just doesn't work in dhcpd unless I'm missing something. Config is correct, and t... Chris Buechler
04:21 PM Feature #6452 (Rejected): Restrict Login by subnet: Chris Buechler
02:52 PM Bug #6055: Menu items may remain from packages no longer installed: Adrien Carlyle wrote:
> Is there any way to manually correct this?
Edit the <menu> tag(s) out of the config manua... Chris Buechler
02:14 PM Bug #6055: Menu items may remain from packages no longer installed: Is there any way to manually correct this? Adrien Carlyle
02:22 PM Feature #3933 (Closed): Limiter burst doesn't have any effect: Chris Buechler
02:21 PM Bug #6280 (Not a Bug): OpenVPN issue after upgrade to 2.3 version: nothing to go on here and no such issues reported. Please post to the forum with specifics Chris Buechler
02:20 PM Bug #6121 (Resolved): enabling "Use memory file system for /tmp and /var" and then save force a reboot right away: this was fixed in a later 2.3x release Chris Buechler
02:05 PM Bug #6491 (Duplicate): Package menus exist for packages that are not installed: duplicate of #6055 Chris Buechler
02:01 PM Bug #6491 (Duplicate): Package menus exist for packages that are not installed: I believe this is the result of upgrading when packages are not available for a new version.
I am on 2.3.1-releas... Adrien Carlyle
11:29 AM Bug #4286: State killing on gateway change: I too need this feature and the platform is unuseable for reliable VoIP traffic with failover without it.
I have co... James M
11:20 AM Bug #5090: Wan failover fails to recover normal behaviour when all wans work again: *Also* if you Kill the 2 States for each VoIP phone in the Diagnostics > States section, they re-appear straight away... James M
11:04 AM Bug #5090: Wan failover fails to recover normal behaviour when all wans work again: Hi Chris
I note your previous comment. However, how would the state killing feature work? I don't fully understand... James M
11:16 AM Feature #855: Ability to selectively kill states on gateway recovery: This would be especially useful for VOIP, where there are often frequent registrations or other SIP traffic that keep... → luckman212
11:07 AM Feature #855: Ability to selectively kill states on gateway recovery: Julien REVERT wrote:
> Is it still plan to have "states killing" on gateway failback?
>
> I have the issue that U... James M
08:56 AM Revision 08cd0225: Fix bad escapeshellarg logic on mpd execution: With this change single-quotes are applied in correct places NewEraCracker
08:12 AM Revision ceabd66d: Fix NTP PPS. It had 'None' option available on 2.2.x.: NewEraCracker
08:12 AM Revision 55de528c: Fix "Unable to remove NTP GPS from configuration": https://forum.pfsense.org/index.php?topic=112771.msg627573 NewEraCracker
08:11 AM Revision 6a53de6f: Fix Redmine #6011: This will add linklocal fallback where no IPv6 is otherwise configured to allow login using this IPs NewEraCracker
04:10 AM Bug #6488: HAProxy looses CARP VIPs: Thanks, updated node1 and now it is working again Kilian Ries
02:57 AM Bug #6383: Manual Update via WebGUI not working in 2.3.x: ...is there a chance for getting this back in any way?
My problem is that I'm forced to keep some FWs in highly se... Michael Schmid
01:43 AM pfSense Packages Bug #6484: pfsense 2.3.1_1 does not accept haproxy advanced parameters: Thank You. Dziugas Bareikis
01:15 AM Revision fa20dac1: Fix #6482 OpenVPN Redirect Gateway Option Causes GUI Issue: This fixes the GUI inconsistency reported in the referenced bug. On edit of an OpenVPN server that has tun mode, not ... Phil Davis

06/14/2016

08:35 PM Bug #6420: Monitoring graphs last sample being zero: Chris Buechler wrote:
> last of that fixed in
> https://github.com/pfsense/FreeBSD-ports/commit/6555d100423fc7b913f... NOYB NOYB
05:41 PM Bug #6420 (Resolved): Monitoring graphs last sample being zero: last of that fixed in
https://github.com/pfsense/FreeBSD-ports/commit/6555d100423fc7b913ff3976feba5c756fbb0251
Chris Buechler
07:44 PM Bug #6133 (Resolved): Firewall Rull Using !LAN address Error: this definitely looks to have been fixed in 2.3.1 with the validation of config.cache Chris Buechler
07:38 PM pfSense Packages Bug #6250 (Needs Patch): Sarg frame.php memory size: this package has been deprecated Chris Buechler
06:55 PM pfSense Packages Bug #3766 (Closed): Unhashed plain passwords saved by 2 packages (one a shell login package): Chris Buechler
06:54 PM pfSense Packages Bug #4498 (Closed): SSHDCond - dropdown font unreadable: this package has been deprecated Chris Buechler
06:52 PM Feature #2609 (Needs Patch): Support for ActiveDNS: Chris Buechler
06:52 PM Feature #2912 (Resolved): Updater handles unsigned updates poorly when used on beta/snapshot releases: fixed with >=2.3 Chris Buechler
06:51 PM Feature #3014 (Needs Patch): Add Variomedia to Dyndns providers: if someone would like to submit a pull request we can add it Chris Buechler
06:51 PM Bug #3928 (Duplicate): lagg and its VLANs must have same MAC address: duplicate of #1337 Chris Buechler
06:49 PM Todo #750 (Closed): No explanation of schedulers in the config screens: Chris Buechler
06:49 PM Feature #573 (Needs Patch): Multiple gateways via DHCP: Chris Buechler
06:46 PM Feature #2859 (Duplicate): Allow to configure different mac addresses for multiple VLANs on same physical interface: duplicate of #1337 Chris Buechler
06:43 PM Feature #3453 (Duplicate): Management GUI (lighttpd) interface binding control: duplicate of #628 Chris Buechler
06:41 PM Feature #3265 (Closed): PATCH: auto-scale ramdisks on embedded platform based on RAM size: it's user-configurable, and nano's on the way out Chris Buechler
06:39 PM Feature #4758 (Closed): DNS Resolver - Add GUI to configure reverse zone overrides: Chris Buechler
06:39 PM Feature #3448 (Needs Patch): add additional dyndns providers dyndns.fr, dyndnspro.com, dynamicdomain.net: if someone would like to submit a PR, we can add those and others Chris Buechler
06:32 PM Feature #3071 (Resolved): build server: link to the last build: been done for a while now. Chris Buechler
06:31 PM Feature #6199 (Closed): NAT Disable does not match firewall disable method: Chris Buechler
06:30 PM Feature #2622 (Needs Patch): Allow DHCP without a range so that only static mappings may be used on an interface: Chris Buechler
06:29 PM Feature #5119 (Resolved): Unbound allow configuration of forward-zone in UI: stub-zone was changed to forward-zone in 2.3 Chris Buechler
06:29 PM Feature #1016 (Resolved): dyndns support for eurodns.com: added some time ago Chris Buechler
06:28 PM Feature #593 (Closed): Preserve interface assignments based on last MAC address (possibly optionally): not a good idea Chris Buechler
06:27 PM Feature #3398 (Needs Patch): Notifications - information about errors: Chris Buechler
06:26 PM Feature #3068 (Needs Patch): Notifications/Alerts - custom script: Chris Buechler
06:26 PM Feature #6365 (Duplicate): Current images do not install on UEFI Machines: duplicate of #4044 Chris Buechler
06:14 PM pfSense Packages Feature #3144 (Closed): Package info - Wiki: Chris Buechler
06:14 PM Bug #3125 (Closed): hifn on 2.1 breaks certain ciphers w/openssl: not sure this is still an issue. if it is and anyone cares, report upstream to FreeBSD. Chris Buechler
06:12 PM pfSense Packages Feature #6462 (Resolved): Add the php-pgsql module to the pfSense repo.: available on 2.3.1+ Chris Buechler
06:10 PM pfSense Packages Bug #5374 (Closed): postfix package is patching /etc/inc/system.inc (syslog configuration): this package has been deprecated Chris Buechler
06:10 PM pfSense Packages Bug #4926 (Closed): Please update darkstat to 3.0.719: this package has been deprecated Chris Buechler
06:08 PM pfSense Packages Feature #1973 (Closed): Update siproxd to v0.8.1: done some time ago Chris Buechler
06:05 PM pfSense Packages Feature #4368 (Closed): [Unbound] Allow customized root.hints: not desirable, it's correct as-is. Chris Buechler
05:59 PM pfSense Packages Feature #4347 (Closed): Recent Version of Asterisk: this package has been deprecated Chris Buechler
05:58 PM pfSense Packages Feature #2220 (Closed): Varnish 3 does not have the ability to change vcl_deliver function: this package has been deprecated Chris Buechler
05:58 PM pfSense Packages Feature #2576 (Closed): Monitor Multiple Interfaces on "bandwidthd" Packege: this package has been deprecated Chris Buechler
05:57 PM pfSense Packages Bug #2879 (Closed): uninstalling Postfix Forwarder leaves widget: package has been removed Chris Buechler
05:55 PM pfSense Packages Bug #6194 (Not a Bug): SSL inspection not working: appears to be a config problem Chris Buechler
05:55 PM pfSense Packages Bug #5821 (Closed): Asterisk - shared object libperl.so not found: package has been removed Chris Buechler
05:55 PM pfSense Packages Bug #5780 (Closed): phpservice.inc - variables between EOF not escaped.: package has been removed Chris Buechler
05:54 PM pfSense Packages Bug #3942 (Resolved): bind - allow starting named with "-4" argument: Chris Buechler
05:54 PM pfSense Packages Feature #3485 (Closed): Log rotation for mod_security: package has been removed Chris Buechler
05:54 PM pfSense Packages Bug #450 (Closed): Some packages do not use authentication for their web interface: the packages in question have all been removed. Chris Buechler
05:48 PM pfSense Packages Todo #6190 (Resolved): Convert and add NUT package to pfsense 2.3: merged several weeks ago Chris Buechler
05:48 PM pfSense Packages Bug #6248 (Resolved): Feedback for NUT package: this has been merged Chris Buechler
05:48 PM pfSense Packages Bug #6247 (Rejected): Feedback for TeamSpeak 3 package: redistribution of TeamSpeak is not permitted, so we can't offer it as a package. Chris Buechler
05:46 PM pfSense Packages Feature #6379 (Closed): Please reinstate nameserver package: BIND package has been back for a bit. Chris Buechler
05:43 PM pfSense Packages Bug #3363 (Needs Patch): TinyDNS does not respond to IPv6 subnet: this package has been deprecated Chris Buechler
05:43 PM pfSense Packages Bug #3530 (Needs Patch): TinyDNS creates incorrect NS records: this package has been deprecated Chris Buechler
05:43 PM pfSense Packages Bug #6062 (Needs Patch): stunnel should use "WAN IP" to protect you from breaking stunnel config: our stunnel package has been deprecated Chris Buechler
05:37 PM Bug #6460 (Resolved): Interface Mismatch warning - Apply Changes button is missing: fixed Chris Buechler
05:32 PM Bug #6463 (Resolved): Firewall > NAT, Outbound Network destination field incorrectly displays port aliases: fixed Chris Buechler
05:31 PM Bug #3069 (Confirmed): traceroute6 fails to timeout and hangs the webconfigurator GUI: Denny Page tracked down the source of this issue and opened this FreeBSD PR with a patch.
https://bugs.freebsd.or... Chris Buechler
01:24 PM Bug #6476 (Not a Bug): Editing an IPSec phase 2 entry fails: Either get_interface_ip or get_interface_subnet has to return empty for that to happen. The only way either of those ... Chris Buechler
12:41 PM pfSense Packages Bug #6490 (Rejected): Squid Reverse Proxy: Disabling an entry on the "Redirects" tab creates duplicate entries for the previous entry in the squid config: If you disable an redirect entry by disabling the "If checked, then this redirect will be available for reverse confi... Stefan Partner
12:37 PM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: Xander Venterus wrote:
> Confirming this has happenned again on my unit, and this time without any attacks having hi... Kill Bill
12:33 PM pfSense Packages Bug #6489 (Not a Bug): Squid Reverse Proxy: Deleting an entry on the "Redirects" tab does not reload config: Deleting an entry on page "Package / Reverse Proxy Server: Redirects / Redirects" does not affect the running squid c... Stefan Partner
11:22 AM Feature #6483: Add OpenVPN redirect-gateway option for IPv6: Greg M wrote:
>
> Not true.
> This is NOT working, you have to add *push "route-ipv6 2000::/3";* to get it workin... Chris Buechler
01:23 AM Feature #6483: Add OpenVPN redirect-gateway option for IPv6: Chris Buechler wrote:
> You can just add a 'push "redirect-gateway-ipv6 def1"' to the server's advanced options to a... Greg M
11:20 AM Bug #6488 (Not a Bug): HAProxy looses CARP VIPs: you're breaking your VIPs by config syncing between incompatible versions. Chris Buechler
07:14 AM Bug #6488 (Not a Bug): HAProxy looses CARP VIPs: Hi,
the second node of my pfsense HA-Cluster looses the VIPs in the HAProxy-Frontend config. I'm unable to add the... Kilian Ries
10:47 AM Bug #6099: igmpproxy does not recognize upstream interface: >
> This version should work with IGMPv2 (which I cannot test myself because I am on IGMPv3).
> IGMPv3 is not expe... Greg Myran
01:59 AM Bug #6099: igmpproxy does not recognize upstream interface: There were some issue with the logging on startup in some corner cases. Hopefully these are fixed in:
https://github... Victor Toni
07:38 AM pfSense Packages Bug #6486: Squid fails in transparent proxy mode: This is a configuration issue, not a bug. If your client protocol does not work properly, it's probably not speaking ... Jim Pingle
07:35 AM pfSense Packages Bug #6486: Squid fails in transparent proxy mode: I reread the forum articles about this bug. The general consensus was that Squid has been broken in the past. My beli... Allan Levene
04:32 AM Bug #6422: PHP Fatal error: Call to undefined function gettext() in /etc/inc/rrd.inc on line 60: Hey Chris,
We've faced this issue as well.
We upgraded to 2.3.1 and we're seeing this error in menu:... Momcilo Medic
03:26 AM Bug #6422: PHP Fatal error: Call to undefined function gettext() in /etc/inc/rrd.inc on line 60: Hey Chris, I am running two R330 Dell server, bare metal. Anyway, I reinstalled the setup and for now I'm not seeing ... Jose Duarte
03:58 AM Bug #6478: Master not sending XML RPC sync data to Backup node: Thanks chris for pointing me on this!
I placed a little helper script that sends the program to the background:
<... Michael Schmid
03:41 AM Bug #6487: PfSense crashes during boot at configuring LAGG interfacess: Kilian H wrote:
> Chris Buechler wrote:
> > subject certainly isn't true in any general sense. How is the lagg conf... Kilian H
02:48 AM Bug #6487: PfSense crashes during boot at configuring LAGG interfacess: Chris Buechler wrote:
> subject certainly isn't true in any general sense. How is the lagg configured? How many are ... Kilian H
02:36 AM Revision e8406abe: added missing div.content wrapper when reloading filters: hailthemelody

06/13/2016

10:05 PM Bug #3946 (Resolved): Disabling RAM Disk doesn't remove schedule from /etc/crontab if schedules aren't disabled: this was fixed in an earlier 2.3x version. Chris Buechler
10:04 PM Bug #6468 (Resolved): Firewall scheduler allows you to set invalid time range: fixed Chris Buechler
09:40 PM Bug #4808 (Closed): Unbound segfaults: haven't seen any reports of this in >=2.3. The root cause is an issue in unbound itself, and several potential segfau... Chris Buechler
09:36 PM Bug #3305 (Resolved): RRD graphs - the graphs legends use original interface name (OPT1) instead of the renamed version (LAN2): no longer the case in >= 2.3. Chris Buechler
09:34 PM Bug #2234 (Confirmed): Status: Traffic Graph - only shows interface's subnet: Chris Buechler
09:34 PM Bug #3263 (Duplicate): status_graph.php IP list is limited to interface subnet: duplicate of #2234 Chris Buechler
09:29 PM Bug #6057 (Not a Bug): OpenVPN only working after restarting the service after the upgrade to RC: no other reports of same, it's likely along the lines of any number of other reports of same issue with OpenVPN itsel... Chris Buechler
09:27 PM Bug #5472 (Resolved): ipsec_getpolicybyaddr() crash: several confirmations this isn't an issue in >=2.3. Chris Buechler
09:26 PM Bug #5218 (Closed): CSRF magic modifies content in pfSense interface: not an issue in >=2.3 Chris Buechler
09:24 PM Bug #6422 (Feedback): PHP Fatal error: Call to undefined function gettext() in /etc/inc/rrd.inc on line 60: are you running in Hyper-V or Azure by chance? That's the only place I've seen that, which occurs because it ends up ... Chris Buechler
08:28 PM Revision 9f472202: Fix PHP Warning about invalid argument supplied for foreach: If _POST['members'] or _POST['groups'] is not set / none selected at GUI, it would give a warning on crash reporter (... NewEraCracker
06:12 PM Bug #6334: No data periods in monitoring are represented as 0 (zero). Skewing averages.: Appears to be fixed. Thanks. NOYB NOYB
11:51 AM Bug #6334 (Feedback): No data periods in monitoring are represented as 0 (zero). Skewing averages.: fixed here: https://github.com/pfsense/FreeBSD-ports/commit/364a0ddf7034f0b22681bbe3b82e0838c4d33a4e Jared Dillard
05:24 PM Bug #6487 (Feedback): PfSense crashes during boot at configuring LAGG interfacess: subject certainly isn't true in any general sense. How is the lagg configured? How many are there? What are the membe... Chris Buechler
04:15 PM Bug #6487 (Not a Bug): PfSense crashes during boot at configuring LAGG interfacess: PfSense crashes during boot at configuring LAGG interfacess. It stays for a few second there, then it just resets the... Kilian H
01:17 PM Bug #6482 (Not a Bug): OpenVPN Redirect Gateway Option Causes GUI Issue: that is correct, though it should be protocol-specific. something to be addressed as part of #6483, added note there. Chris Buechler
08:17 AM Bug #6482: OpenVPN Redirect Gateway Option Causes GUI Issue: Yes, I'm using tun and Remote Access (SSL/TLS + User Auth).
It also appears that the redirect gateway option doesn... Steve Matos
07:14 AM Bug #6482: OpenVPN Redirect Gateway Option Causes GUI Issue: I think it is right that the Local Network(s) boxes should be hidden.
From what I can see, the Local Network(s) boxe... Phillip Davis
01:16 PM Feature #6483: Add OpenVPN redirect-gateway option for IPv6: also should fix the show/hide of "remote networks" fields accordingly while doing this, so only v4 shows/hides with t... Chris Buechler
01:13 PM Feature #6483: Add OpenVPN redirect-gateway option for IPv6: the existing option only adds the redirect-gateway def1, for IPv6 OpenVPN needs redirect-gateway-ipv6. That ought to ... Chris Buechler
08:18 AM Feature #6483: Add OpenVPN redirect-gateway option for IPv6: If I add something like push "route-ipv6 2000::/3"; to my custom options it will get IPv6 to work though the tunnel, ... Steve Matos
01:15 PM Bug #6478 (Not a Bug): Master not sending XML RPC sync data to Backup node: what you did prevented the system from completing bootup, and while the system is booting, it doesn't (and shouldn't)... Chris Buechler
10:47 AM Bug #6478: Master not sending XML RPC sync data to Backup node: Hi Chris,
I found the bug.
It's not directly Pfsense related, it happens when I start the 3rd party binary... Michael Schmid
12:41 PM pfSense Packages Bug #6484: pfsense 2.3.1_1 does not accept haproxy advanced parameters: Yeah, it just does not belong there at all; put the stuff to "Advanced pass thru". Kill Bill
07:02 AM pfSense Packages Bug #6484: pfsense 2.3.1_1 does not accept haproxy advanced parameters: Not enough information here about what are you putting where; the entire generated configuration is available under t... Kill Bill
04:00 AM pfSense Packages Bug #6484 (Rejected): pfsense 2.3.1_1 does not accept haproxy advanced parameters: Hi!
pfsense 2.3.1_1 does not accept haproxy advanced parameters. I can use redirect in version 2.2.6-RELEASE.
(... Dziugas Bareikis
12:37 PM Bug #3330: Load Balancer showing wrong Status when using aliases for the port: Confirmed still in 2.3_1. Use of ip alias in address field of virtual server cause " causes status "Unknown - relay... Harry Coin
11:51 AM Bug #6464: X axis ticks don't respond to resolution for custom time periods: fixed here: https://github.com/pfsense/FreeBSD-ports/commit/e812a02a75518ec046d2b7f7606ae83fee7f6e65 Jared Dillard
11:50 AM Bug #6464 (Feedback): X axis ticks don't respond to resolution for custom time periods: Jared Dillard
10:54 AM pfSense Packages Bug #6486 (Not a Bug): Squid fails in transparent proxy mode: Not a bug. Post on the forum for help with your configuration. Jim Pingle
10:13 AM pfSense Packages Bug #6486 (Not a Bug): Squid fails in transparent proxy mode: Squid 0.4.18 offers transparent proxy capability under 2.3.1-RELEASE-p1 (latest version) by checking a box - Enable t... Allan Levene
10:05 AM Bug #6099: igmpproxy does not recognize upstream interface: Hello,
I tested the Version from ViToni that Stefan Heck posted in the ZIP.
And for me with old Telekom infrastru... J.B. BERLIN
08:11 AM pfSense Packages Bug #6485 (Rejected): Squid garbage collection is a blocking thread and stops all network traffic: Squid garbage collection is a blocking thread and stops all network traffic when using ram cache.
https://forum.pf... ageekhere ageekhere
02:09 AM Bug #4218: Bridge does not have AUTO_LINKLOCAL flag: I have the same problem, i can't get IPv6 working (using 2.3.1-RELEASE-p1).
Can you please fix that? Matthias Lohr

06/12/2016

05:38 PM Feature #6483 (Duplicate): Add OpenVPN redirect-gateway option for IPv6: When the OpenVPN Redirect Gateway (Force all client generated traffic through the tunnel) option is checked for an Op... Steve Matos
04:21 PM Bug #6482 (Not a Bug): OpenVPN Redirect Gateway Option Causes GUI Issue: When editing the settings for an OpenVPN server and checking off the Redirect Gateway (Force all client generated tra... Steve Matos
11:00 AM pfSense Packages Bug #6449: Email Reports not wait a long command end to send the report.: hi guys ,
any questions or anything I can do to help solve this bug? Luis Couto
12:07 AM pfSense Packages Feature #6480 (Closed): pfBlockerNG - add ability to force download of a list: Chris Buechler

06/11/2016

04:43 PM Bug #6481 (New): loading EAP_RADIUS method failed: pfSense 2.3.1-RELEASE (i386)
Enabled EAP-MSCHAPv2 per https://doc.pfsense.org/index.php/IKEv2_with_EAP-MSCHAPv2, g... Adam Thompson
04:25 PM Feature #5825: Allow EAP-RADIUS for authentication servers: Supposedly this exists, per https://doc.pfsense.org/index.php/IKEv2_with_EAP-RADIUS, but I'm not 100% convinced that ... Adam Thompson
02:59 PM pfSense Packages Feature #6480: pfBlockerNG - add ability to force download of a list: OK, got it. I don't think I would have found it had you not pointed me to it - but that's what I was looking for, th... Andrew -
02:46 PM pfSense Packages Feature #6480: pfBlockerNG - add ability to force download of a list: Goto the "Log Browser" Tab and view the Feed in the "Deny" folder... There is a delete Icon there... BBcan177 .
05:04 AM pfSense Packages Feature #6480 (Closed): pfBlockerNG - add ability to force download of a list: At the moment, there's no way through the GUI to force a re-download of a particular list. The only way to do it is ... Andrew -
12:04 AM Bug #6476 (Feedback): Editing an IPSec phase 2 entry fails: guessing your LAN is set to IPv4 "none"? Chris Buechler

06/10/2016

11:38 PM Bug #6451 (Not a Bug): IPv6 GIF tunnels to HE broken since 2.3-RELEASE: thanks for the feedback Chris Buechler
09:20 PM Bug #6451: IPv6 GIF tunnels to HE broken since 2.3-RELEASE: Blew away all GIF and interface configuration, re-configured on both of the affected firewalls. One now works, one s... Adam Thompson
09:22 PM pfSense Packages Bug #4736: ladvd crashes, dumps core: Since 2.3-RELEASE, LADVD no longer crashes, but results on i386 are still inconsistent - one firewall sees the switch... Adam Thompson
06:40 PM pfSense Packages Todo #6443: Add ntopng package back into pfSense 2.3.x: I submitted a pull request to add GeoIP as a dependency of ntopng:
https://github.com/pfsense/FreeBSD-ports/pull/1... Rich Murphey
06:00 PM pfSense Packages Todo #6443: Add ntopng package back into pfSense 2.3.x: There is a missing dependency on GeoIP-1.6.9.
I tried to restart the service, which failed.
Then logged in and tr... Rich Murphey
05:40 PM Revision f68dc9f4: Use correct format for REVISION on image filenames: Renato Botelho
05:39 PM Revision eade1a57: Add PRODUCT_REVISION to image filenames: Renato Botelho
05:36 PM Revision 5123944d: Use correct format for REVISION on image filenames: Renato Botelho
05:36 PM Revision 3a46d8a8: Add PRODUCT_REVISION to image filenames: Renato Botelho
05:35 PM Revision 5b7cc4e2: Use correct format for REVISION on image filenames: Renato Botelho
05:35 PM Revision d5166c7c: Add PRODUCT_REVISION to image filenames: Renato Botelho
05:26 PM Revision 100dc6dd: Bump to revision _3: Jeremy Porter
04:34 PM Bug #4637: system unreachable after deleting VLAN: Ah, I see. By "overlapping", I meant that igb0 had VLANs defined directly on it, *and* it was part of an LACP group ... Adam Thompson
01:16 PM Bug #4637 (Assigned): system unreachable after deleting VLAN: No problem, I'll keep the bug report open and check if we can reproduce it here.
I was misguided by 'Two overlappi... Luiz Souza
12:41 PM Bug #4637: system unreachable after deleting VLAN: Luiz,
You've misunderstood the problem, and it is definitely a bug.
I don't have the lab equipment or time to rep... Adam Thompson
04:10 PM Revision 5d4a0e84: Bump PRODUCT_REVISION to 2 for 2.3.1_2: Jeremy Porter
02:00 PM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: Confirming this has happenned again on my unit, and this time without any attacks having hit us, i just had to restar... Xander Venterus
12:08 PM Bug #6478: Master not sending XML RPC sync data to Backup node: Chris Buechler wrote:
> almost certainly not a bug. where no traffic, probably set to an IP other than what is corre... Michael Schmid
09:18 AM Bug #6478 (Feedback): Master not sending XML RPC sync data to Backup node: almost certainly not a bug. where no traffic, probably set to an IP other than what is correct Chris Buechler
01:17 AM Bug #6478 (Not a Bug): Master not sending XML RPC sync data to Backup node: I noticed that my backup node is out of XML sync although it's activated on master.
State sync is working fine.
T... Michael Schmid
12:01 PM pfSense Packages Feature #6479 (Rejected): Add OpenBGPD config to High Availability Sync option to sync: I believe this functionality would be very intersting in a high avaliabity environment. Deivid Tesch
10:10 AM Bug #6442 (Not a Bug): DNS Resolver - error: not a replicable problem outside problems writing to disk in general Chris Buechler
08:06 AM Feature #855: Ability to selectively kill states on gateway recovery: Is it still plan to have "states killing" on gateway failback?
I have the issue that UDP connections of ip phones ... Julien REVERT
05:02 AM Bug #6423: WAN doesn't reconnect on dropped PPPoE session: Goddammit, no, the rebuild of VMware wasn't the problem, as it's just gone down AGAIN.
Strangely enough, the RADIU... Michael Knowles
03:27 AM Bug #6420: Monitoring graphs last sample being zero: Feedback:

Time period is 1 resolution too long.

Using larger (later) of left/right updated, instead of sma... NOYB NOYB

06/09/2016

10:44 PM Bug #6475 (Resolved): Potential command injection vulnerability in auth.inc via system_groupmanager.php: all looks good now Chris Buechler
09:25 AM Bug #6475 (Feedback): Potential command injection vulnerability in auth.inc via system_groupmanager.php: Additional commits address the other uses of commands in auth.inc mentioned above (and some others). I also added inp... Jim Pingle
08:27 AM Bug #6475: Potential command injection vulnerability in auth.inc via system_groupmanager.php: I pushed some input validation which prevents the reported vector but the backend code needs some more work. The foll... Jim Pingle
07:58 AM Bug #6475 (Resolved): Potential command injection vulnerability in auth.inc via system_groupmanager.php: The members[] array in system_groupmanager.php is not properly validated, and is only protected by single quotes in a... Jim Pingle
10:28 PM Bug #6428 (Resolved): firewall_rules.php wrong link to schedule edit: works Chris Buechler
10:15 PM Bug #6442: DNS Resolver - error: Hi Chris,
Chris Buechler wrote:
> Rene: you running in Azure or Hyper-V by chance?
I run pfSense on a VMware 5... Rene Schrauwen
03:49 PM Bug #6442: DNS Resolver - error: I can make this happen in Azure reliably because it fails to write files in some circumstance(s). It might also be an... Chris Buechler
09:43 PM Bug #6413 (Resolved): dhcpd.conf DDNS PTR zone wrong with third octet of 0: works Chris Buechler
09:07 PM Revision bcd856f5: Fix #6468 Do not allow edit of day and times: in rows of time ranges for a schedule.
The code was always intended that the user uses the calendar pad and start hou... Phil Davis
09:07 PM Revision 09cd43a8: Fix #6468 Do not allow edit of day and times: in rows of time ranges for a schedule.
The code was always intended that the user uses the calendar pad and start hou... Phil Davis
09:07 PM Revision 480100df: Merge pull request #2999 from phil-davis/patch-6: Chris Buechler
04:38 PM Bug #6458: DHCP6 is enabled on AWS EC2 instance: I think there's overlap here with something I already fixed in a diff ticket but will verify. Chris Buechler
04:20 PM Bug #6468: Firewall scheduler allows you to set invalid time range: Applied in changeset commit:a9dafcba7543ee455bc3999f655010d9e2aa35ed. Phillip Davis
04:08 PM Bug #6468 (Feedback): Firewall scheduler allows you to set invalid time range: PR merged, thanks Phil Chris Buechler
04:17 PM Bug #6423: WAN doesn't reconnect on dropped PPPoE session: I actually visited site today to deal with pfSense. I have a couple of interesting observations and did get partway ... Michael Knowles
03:42 PM Bug #6423: WAN doesn't reconnect on dropped PPPoE session: no apparent issues here, awaiting feedback from OP Chris Buechler
04:17 PM Bug #6420: Monitoring graphs last sample being zero: I created a new ticket for the issues with the custom time period since they will require a little more tweaking than... Jared Dillard
03:43 PM Bug #6420 (Feedback): Monitoring graphs last sample being zero: something similar to that PR was merged Chris Buechler
04:15 PM pfSense Packages Bug #6305: Quagga problems updating routes / mistakenly showing "kernel"-routes while they are not: seems like someone has found a way to reproduce consistenly. (this is currently not verified by others)
https://fo... jeroen van breedam
04:13 PM Bug #6477 (Resolved): Sample bounds can jump around for custom timer periods on Status > Monitoring: Due to the way rrd_fetch tries to find the best fit for a time period, the custom time period can move around slightl... Jared Dillard
03:48 PM pfSense Packages Todo #6443: Add ntopng package back into pfSense 2.3.x: Thanks for working on this, It's good to have ntopng back.
I didn't have any install issues (though it looks from... Andrew -
02:49 PM pfSense Packages Todo #6443: Add ntopng package back into pfSense 2.3.x: deleted
/usr/local/share/ntopng
that fixed install Michael Kellogg
12:30 PM pfSense Packages Todo #6443: Add ntopng package back into pfSense 2.3.x: Kill Bill wrote:
> Rich Murphey wrote:
> Every case of this I've seen on the 2.2.x ntopng package was a password m... Phil Freeman
03:06 AM pfSense Packages Todo #6443: Add ntopng package back into pfSense 2.3.x: Rich Murphey wrote:
> After setting the password via the ntopng settings page in the pfsense UI, the ntopng admin pa... Kill Bill
02:08 PM Revision 4bf17edc: One more escapeshellarg for auth.inc on 2.4. Ticket #6475: Jim Pingle
02:06 PM Revision 0a39f78f: Use escapeshellarg on shell calls in auth.inc. Ticket #6475: Jim Pingle
02:06 PM Revision e63321a5: Validate submitted groups when editing a user. Ticket #6475: Jim Pingle
02:06 PM Revision 34bc249f: Use escapeshellarg on shell calls in auth.inc. Ticket #6475: Jim Pingle
02:06 PM Revision 6314397f: Validate submitted groups when editing a user. Ticket #6475: Jim Pingle
02:05 PM Revision 1929acf1: Use escapeshellarg on shell calls in auth.inc. Ticket #6475: Jim Pingle
02:05 PM Revision b2267ff9: Validate submitted groups when editing a user. Ticket #6475: Jim Pingle
01:36 PM Bug #6476: Editing an IPSec phase 2 entry fails: Priority can be changed to medium Waldo Nell
01:36 PM Bug #6476 (Not a Bug): Editing an IPSec phase 2 entry fails: I just set up an IPSec site to site bridge between two pfSense machines. It worked perfectly. However, editing the ... Waldo Nell
01:26 PM Revision 2095e91f: Add input validation to system_groupmanager.php to prevent invalid members from being submitted. Ticket #6475: Jim Pingle
01:26 PM Revision 9630ba1f: Add input validation to system_groupmanager.php to prevent invalid members from being submitted. Ticket #6475: Jim Pingle
01:25 PM Revision 5bef2407: Add input validation to system_groupmanager.php to prevent invalid members from being submitted. Ticket #6475: Jim Pingle
09:26 AM Bug #6474 (Resolved): Command injection vulnerability in pkg_mgr_install.php, id parameter: It appears to be fixed. I could exploit it before, but not after. Jim Pingle
07:58 AM Bug #6474: Command injection vulnerability in pkg_mgr_install.php, id parameter: To me for confirmation that it's fixed Jim Pingle
07:55 AM Bug #6474 (Resolved): Command injection vulnerability in pkg_mgr_install.php, id parameter: Command injection is possible using the id parameter on pkg_mgr_install.php... Jim Pingle
02:51 AM Bug #6451: IPv6 GIF tunnels to HE broken since 2.3-RELEASE: Adam Thompson wrote:
> If you have definite, concrete knowledge of 32-bit systems that had HE tunnels up and working... Kill Bill
01:38 AM pfSense Packages Bug #6473 (Resolved): OpenVPN Client Export package - depends on vulnerable p7zip version (CVE-2016-2334, CVE-2016-2335): This depends on p7zip version vulnerable to heap-buffer-overflow (CVE-2016-2334) and out-of-bounds read (CVE-2016-233... Kill Bill
12:19 AM Bug #6459: AWS EC2 Instance should skip interface config in setup wizard: oh, for LAN. Every additional interface defaults to "none", which is most appropriate. Yeah #6457 will address the re... Chris Buechler

06/08/2016

11:29 PM Revision 00ad6390: Fix #6463 Dest net alias matching on page load: Do not set destination field to use customarray
Note: dstbeginport_cust does not exist on this page, so I got removed... Phil Davis
11:29 PM Revision 8a6261b3: Fix #6463 Dest net alias matching on page load: Do not set destination field to use customarray
Note: dstbeginport_cust does not exist on this page, so I got removed... Phil Davis
11:29 PM Revision 33872ac0: Merge pull request #2998 from phil-davis/patch-5: Chris Buechler
11:15 PM Revision bee62d27: Add resetwebgui to developer shell: This might be helpful to people if they have set the theme to something
that they are having trouble displaying, read... Phil Davis
11:15 PM Revision 50957283: Merge pull request #2997 from phil-davis/resetwebgui: Chris Buechler
11:15 PM Revision 21c18c3d: Fix #6460 Interface mismatch apply changes button: Phil Davis
11:12 PM Revision d9f088f5: Fix #6460 Interface mismatch apply changes button: Phil Davis
11:12 PM Revision f4ede227: Fix #6460 Interface mismatch apply changes button: Phil Davis
11:03 PM Revision 9fd4b658: Rework pkg_mgr_install.php:: - Stop using id parameter for additional packages, keep using it only
for firmware upgrades
- Created to control va... Renato Botelho
11:03 PM Revision 78fd804c: Implement pkg_valid_name(): Renato Botelho
11:03 PM Revision 1cdaa0dd: Fix variable name s/POST/_POST/ and also parameter name s/complete/completed/: Renato Botelho
11:03 PM Revision 3187d056: Fix indent: Renato Botelho
11:03 PM Revision 8b769240: Improve readability: Renato Botelho
11:03 PM Revision 6f5cef53: Improve readability: Renato Botelho
11:03 PM Revision b926fb22: Simplify mode parameter validation: Renato Botelho
11:03 PM Revision d38ccd2b: Remove redundant check since pkgcancel is never set: Renato Botelho
11:03 PM Revision 7e1f301e: Validate mode parameter and use sanitized variable on other places: Renato Botelho
11:02 PM Revision 756ef4df: Rework pkg_mgr_install.php:: - Stop using id parameter for additional packages, keep using it only
for firmware upgrades
- Created to control va... Renato Botelho
11:02 PM Revision c078dd89: Implement pkg_valid_name(): Renato Botelho
11:02 PM Revision a915cb4c: Fix variable name s/POST/_POST/ and also parameter name s/complete/completed/: Renato Botelho
11:02 PM Revision 5fd5f7e7: Fix indent: Renato Botelho
11:02 PM Revision 5b216d25: Improve readability: Renato Botelho
11:02 PM Revision af0a2a75: Improve readability: Renato Botelho
11:02 PM Revision ddbe2c0c: Simplify mode parameter validation: Renato Botelho
11:02 PM Revision d85e29b7: Remove redundant check since pkgcancel is never set: Renato Botelho
11:02 PM Revision 56218db2: Validate mode parameter and use sanitized variable on other places: Renato Botelho
10:53 PM Feature #6457: Allow ability to configure AWS EC2 AMI via userdata: Thinking through this, it may be easier to supply a userdata dictionary who's value is an S3 object that is a recorde... Danny Schuh
10:50 PM Revision c87deb1a: Rework pkg_mgr_install.php:: - Stop using id parameter for additional packages, keep using it only
for firmware upgrades
- Created to control va... Renato Botelho
10:46 PM Bug #6459: AWS EC2 Instance should skip interface config in setup wizard: I believe that that was the case. I think that when I manually created the LAN interface, the addressing method was ... Danny Schuh
05:51 PM Bug #6459: AWS EC2 Instance should skip interface config in setup wizard: Danny Schuh wrote:
> Actually, I had skipped the initial setup wizard.
Then your WAN would be DHCP, that's the o... Chris Buechler
09:30 AM Bug #6459: AWS EC2 Instance should skip interface config in setup wizard: Actually, I had skipped the initial setup wizard. I'm looking to eventually deploy this AMI w/o user interaction. Danny Schuh
10:08 PM Revision 1a6fc86d: Implement pkg_valid_name(): Renato Botelho
06:52 PM Revision 0067c9a7: Fix variable name s/POST/_POST/ and also parameter name s/complete/completed/: Renato Botelho
06:40 PM Bug #6463: Firewall > NAT, Outbound Network destination field incorrectly displays port aliases: Applied in changeset commit:d4d8f29373f8d7396dfd0d1ead8b50cb713b1208. Phillip Davis
06:30 PM Bug #6463 (Feedback): Firewall > NAT, Outbound Network destination field incorrectly displays port aliases: merged, thanks! Chris Buechler
03:19 AM Bug #6463: Firewall > NAT, Outbound Network destination field incorrectly displays port aliases: Pre-Feedback feedback. Phil's fix seems to work for me. Thanks. Chris Linstruth
06:36 PM Revision 88689d02: Fix indent: Renato Botelho
06:27 PM Bug #6227 (Confirmed): LAGG MTU not set correctly when it has child QinQ interfaces: that PR seems fine to merge. Luiz, please review and merge if agreed. Chris Buechler
06:27 PM Revision a6885d24: Improve readability: Renato Botelho
06:25 PM Bug #6206 (Confirmed): Default icmp6 pass-rules are added even when ipv6 is "disabled" by user: Chris Buechler
06:24 PM Bug #6472 (Confirmed): Disabling NAT (port forward) rule does not disable the associated firewall rule: It never has. Rule doesn't do anything since there's no matching NAT. I thought there was already a ticket for this, ... Chris Buechler
05:59 PM Bug #6472 (Resolved): Disabling NAT (port forward) rule does not disable the associated firewall rule: As per subject. Worked just fine with 2.2.x.
NAT:
!http://image.prntscr.com/image/d5f3d6fc93424ef69b9dff46be019ba... Kill Bill
06:20 PM Bug #6460: Interface Mismatch warning - Apply Changes button is missing: Applied in changeset commit:f4ede22769baab85577ff95da98f544d1b67a9f1. Phillip Davis
06:13 PM Bug #6460 (Feedback): Interface Mismatch warning - Apply Changes button is missing: PR merged, thanks! Chris Buechler
06:17 PM Revision 12e90cdc: Improve readability: Renato Botelho
06:10 PM Revision a42bea4a: Simplify mode parameter validation: Renato Botelho
06:07 PM Revision 689c4eb8: Remove redundant check since pkgcancel is never set: Renato Botelho
06:03 PM Revision 3b5af712: Validate mode parameter and use sanitized variable on other places: Renato Botelho
05:31 PM Bug #4326: Limiters on firewall rules where NAT applies drop all traffic: For me is that bug a big problem.
The traffic shaping feature was one decision to use pfsense.
I baught a XG-1540 w... Roman Spörk
04:03 PM pfSense Packages Bug #6471 (New): pfsense 2.3.1 squidguard -> common ACL -> Target Rules List missing...: The clickable "Target Rules List" field in menu "common ACL" disappears if more than 7 "Target categories" are defined. Lars Heer
02:23 PM Revision 3946be40: Add pgsql PHP module to the list of available ports. Fixes #6462: Renato Botelho
02:23 PM Revision f7b60968: Add pgsql PHP module to the list of available ports. Fixes #6462: Renato Botelho
02:23 PM Revision 4a374da4: Add pgsql PHP module to the list of available ports. Fixes #6462: Renato Botelho
11:56 AM pfSense Packages Feature #6470 (New): CloudFlare Integration Module: I would be interested in assisting with the development of a super simple cloudflare integration module.
It would ... Xander Venterus
11:40 AM Bug #6446 (Resolved): Hyper-V "runtime went backwards" logs: fixed Chris Buechler
10:45 AM Bug #6467: DNS Resolver in forwarder mode should automatically disable DNSSEC: You are right Chris. OpenDNS are the upstream servers and they do not support DNSSEC, but Google DNS servers do. It... Marco Novielli
09:30 AM pfSense Packages Feature #6462 (Feedback): Add the php-pgsql module to the pfSense repo.: Applied in changeset pfsense:commit:4a374da4778f8d94bca07f19cdc37d40208833b9. Renato Botelho
08:55 AM pfSense Packages Todo #6443: Add ntopng package back into pfSense 2.3.x: install fails on 2.3.2a here is log
\>>> Installing pfSense-pkg-ntopng...
Updating pfSense-core repository catalo... Michael Kellogg
08:36 AM Bug #4637 (Not a Bug): system unreachable after deleting VLAN: This is the expected behaviour for overlapping networks.
When you remove the IP from NIC/VLAN (this is not specifi... Luiz Souza
03:28 AM pfSense Packages Bug #6456: vm-bhyve not correctly detecting the modules in kernel: This was fixed in vm-bhyve v0.12.3.
(https://github.com/churchers/vm-bhyve/commit/a74ef7e04a5fa5ce256fe2f213dec6f5... Jose Luis Duran
02:49 AM Revision 02705019: Rename item #12 in console menu: The console menu item #12 (_"pfSense/$product developer shell"_) has a pointless title that doesn't help users much. ... Stilez y
02:34 AM Revision a9dafcba: Fix #6468 Do not allow edit of day and times: in rows of time ranges for a schedule.
The code was always intended that the user uses the calendar pad and start hou... Phil Davis
01:53 AM Revision d4d8f293: Fix #6463 Dest net alias matching on page load: Do not set destination field to use customarray
Note: dstbeginport_cust does not exist on this page, so I got removed... Phil Davis
01:40 AM pfSense Packages Feature #6436: Add Stunnel binaries to the pfSense repository: Latest package is in:
http://pkg.freebsd.org/freebsd:10:x86:64/latest/All/stunnel-5.31,1.txz Taha Jahangir

06/07/2016

11:29 PM Bug #6460 (Confirmed): Interface Mismatch warning - Apply Changes button is missing: Chris Buechler
12:37 AM Bug #6460: Interface Mismatch warning - Apply Changes button is missing: Pull request https://github.com/pfsense/pfsense/pull/2996 Phillip Davis
12:29 AM Bug #6460 (Resolved): Interface Mismatch warning - Apply Changes button is missing: Reported in the forum https://forum.pfsense.org/index.php?topic=113172.0
When restoring a configuration and the inte... Phillip Davis
11:28 PM Bug #6463 (Confirmed): Firewall > NAT, Outbound Network destination field incorrectly displays port aliases: Chris Buechler
08:54 PM Bug #6463: Firewall > NAT, Outbound Network destination field incorrectly displays port aliases: This is a genuine little bonus bug. Thanks for reporting.
Pull request https://github.com/pfsense/pfsense/pull/2998 Phillip Davis
11:18 AM Bug #6463: Firewall > NAT, Outbound Network destination field incorrectly displays port aliases: Sorry. Search fail. This is very similar to https://redmine.pfsense.org/issues/6287. This is still showing port alias... Chris Linstruth
11:12 AM Bug #6463 (Resolved): Firewall > NAT, Outbound Network destination field incorrectly displays port aliases: Create an outbound NAT rule with a source and destination network and save.
Re-edit the rule.
Type in the desti... Chris Linstruth
11:26 PM Bug #6461 (Confirmed): firewall rules lose limiter association when limiter renamed: Chris Buechler
07:44 AM Bug #6461 (Duplicate): firewall rules lose limiter association when limiter renamed: this issue has been there since many older pfsense versions where suppose if u have some floating rules which had lim... Bipin Chandra
11:23 PM Bug #6459 (Confirmed): AWS EC2 Instance should skip interface config in setup wizard: I presume updated subject is what you're referring to, as it does default to DHCP. It ought to not prompt users in th... Chris Buechler
11:14 PM Bug #6465 (Not a Bug): No 'Apply Chnges' button in 2.3.1_1: thanks for the follow up Chris Buechler
11:06 PM Bug #6465: No 'Apply Chnges' button in 2.3.1_1: Experimented a bit and it seemed that for whatever reason I had a problem with uBlock origin. Apparently uBlock block... Anonymous
09:24 PM Bug #6465 (Feedback): No 'Apply Chnges' button in 2.3.1_1: not seeing that here on Firefox on Windows or Linux, nor has anyone else reported same. At least hundreds and likely ... Chris Buechler
02:16 PM Bug #6465 (Not a Bug): No 'Apply Chnges' button in 2.3.1_1: After upgrade to pfsense 2.3.1_p suddenly 'Apple Changes' button disappears in Firefox 46 and 47. Everything works gr... Anonymous
09:57 PM Bug #6466: Host overrides do not appear to work with DNS Resolver in forwarding mode: Strange - just did a test to override ca.yahoo.com to point to my local server and it is working. Now testing SafeSe... Marco Novielli
09:47 PM Bug #6466: Host overrides do not appear to work with DNS Resolver in forwarding mode: Shows the configured host override section. I have resolver disabled right now, but it was definitely checked and DN... Marco Novielli
09:44 PM Bug #6466: Host overrides do not appear to work with DNS Resolver in forwarding mode: Sorry - I should have been more clear: yes I put the overrides under the proper section under DNS Resolver. I have t... Marco Novielli
09:40 PM Bug #6466: Host overrides do not appear to work with DNS Resolver in forwarding mode: I have thought about putting a button to copy all overrides from Forwarder into Resolver (and vice-versa). It is part... Phillip Davis
09:12 PM Bug #6466 (Not a Bug): Host overrides do not appear to work with DNS Resolver in forwarding mode: What Phil said is exactly what I was writing when he posted it. Forwarder's overrides are for it only, Resolver's for... Chris Buechler
08:59 PM Bug #6466: Host overrides do not appear to work with DNS Resolver in forwarding mode: Did you put the host overrides into the DNS Resolver section?
Resolver won't use the Host Overrides from the DNS F... Phillip Davis
07:29 PM Bug #6466: Host overrides do not appear to work with DNS Resolver in forwarding mode: I am using 2.3.1-RELEASE-p1 on SG-2440. Marco Novielli
07:29 PM Bug #6466 (Not a Bug): Host overrides do not appear to work with DNS Resolver in forwarding mode: I have a dedicated pfSense VM setup as a DNS server with packet filtering disabled and only one NIC, and I'm trying t... Marco Novielli
09:55 PM Feature #6469 (New): Improve help + self documentation in console PHP shell: Thoughts on this:
# Expand the "help" function:
> help - _brief_ help and lists the options below
>
> help she... Stilez y
09:37 PM Bug #6468: Firewall scheduler allows you to set invalid time range: It was never intended that users should be able to edit the day and time range in each of the rows of a schedule. If ... Phillip Davis
07:41 PM Bug #6468 (Resolved): Firewall scheduler allows you to set invalid time range: For example, it will accept 06:00-52:00. See screenshot Marco Novielli
08:20 PM Bug #6467 (Not a Bug): DNS Resolver in forwarder mode should automatically disable DNSSEC: only if your forwarding servers don't support DNSSEC. It isn't required and wouldn't be appropriate to automatically ... Chris Buechler
07:32 PM Bug #6467 (Not a Bug): DNS Resolver in forwarder mode should automatically disable DNSSEC: DNS Resolver configured in forwarding mode needs DNSSEC disabled to work correctly. Perhaps selecting forwarder chec... Marco Novielli
08:08 PM pfSense Packages Todo #6443: Add ntopng package back into pfSense 2.3.x: I've installed snapshot 2.3.2.a.20160606.1543, and ntopng via the web UI package manager.
I see only one possible ... Rich Murphey
04:44 PM pfSense Packages Todo #6443: Add ntopng package back into pfSense 2.3.x: Hi Renato. Many thanks for adding it back. I suspect the answer may be no, but is there any way to run the package ... Andrew -
04:19 PM pfSense Packages Todo #6443 (Feedback): Add ntopng package back into pfSense 2.3.x: I've added it back to 2.3.2 snapshots, that can be downloaded at https://snapshots.pfsense.org
Note that it was no... Renato Botelho
04:47 PM Bug #6044 (Feedback): system>monitoring tooltip unit "null" for some graphs: This should be fixed in PR141 https://github.com/pfsense/FreeBSD-ports/pull/141 Jared Dillard
01:03 PM Bug #4326: Limiters on firewall rules where NAT applies drop all traffic: +1 I have dozens of 2.1.5 boxes because of this critical bug.
Crossed my fingers but seems 2.3 still not productio... Matt Smith
12:35 PM Bug #6402 (Feedback): Monitoring won't save default configuration of 8 hours with 1 minute resolution, resets resolution to 5 minutes when switching from 1 hour, 1 minute resolution: merged PR 137 for the fix. Thanks Justin Rittenhouse and NOYB! Jared Dillard
12:13 PM Bug #6464 (Resolved): X axis ticks don't respond to resolution for custom time periods: The X axis ticks don't respond to resolution for custom time periods. Possible fix to is to use the resolution that i... Jared Dillard
10:51 AM pfSense Packages Feature #6462 (Resolved): Add the php-pgsql module to the pfSense repo.: The php-pgsql module was previously installable in 2.2.X and earlier and some users are using it in custom captive po... Steve Wheeler
07:27 AM Revision 9202151e: Add resetwebgui to developer shell: This might be helpful to people if they have set the theme to something
that they are having trouble displaying, read... Phil Davis
04:50 AM Bug #6167: IPsec IPComp not working: Chris Buechler wrote:
> We'll leave this as-is for 2.3.1 to avoid introducing any regressions for something that's l... Ronald Antony
02:05 AM pfSense Packages Feature #6176: Privilege for OpenVPN Client Export: it would be very cool to be able to limit access for users to their own client configs. users don't need to have acce... bearsh bearsh
01:48 AM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: BBcan177 . wrote:
> By any chance, did you use the "view" button in the Update Tab? Something has recently changed t... Kill Bill

06/06/2016

11:04 PM Bug #6459 (Resolved): AWS EC2 Instance should skip interface config in setup wizard: AWS EC2 instances should default to DHCP. EC2 instances are assigned IP addresses via DHCP. If you want to give the... Danny Schuh
10:58 PM Bug #6458 (Resolved): DHCP6 is enabled on AWS EC2 instance: The DHCPv6 service is enabled on the AWS EC2 instance. This normally wouldn't be an issue except when you attempt ad... Danny Schuh
09:43 PM Feature #6457: Allow ability to configure AWS EC2 AMI via userdata: Missed a pretty important one:
Interfaces - Allow the end-user to supply an array to configure the interfaces Danny Schuh
08:50 PM Feature #6457 (New): Allow ability to configure AWS EC2 AMI via userdata: Most AWS EC2 AMIs allow you to configure many aspects of the instances that you are launching via the 'userdata'. Cu... Danny Schuh
06:41 PM Bug #6455 (Confirmed): Can't delete Virtual IP "referenced by a least one gateway" if gateway outside interface subnet: The issue is where you have a gateway that isn't within the interface's primary IP subnet (unusual), no VIPs within t... Chris Buechler
05:27 PM Bug #6455: Can't delete Virtual IP "referenced by a least one gateway" if gateway outside interface subnet: Hi @Tobi Miller Many of the firewall services use virtual IPs for load balancing. So suddenly removing the virtual IP... Sandeep K V
02:50 PM Bug #6455: Can't delete Virtual IP "referenced by a least one gateway" if gateway outside interface subnet: Okay, in case that this is better in the forum, I will open a thread there :-)
Just to answer your qestions:
* its ... Tobi Miller
09:56 AM Bug #6455 (Feedback): Can't delete Virtual IP "referenced by a least one gateway" if gateway outside interface subnet: Not enough info to go by. Ideally this should be in a forum thread until a bug can be confirmed.
Is this an IP Ali... Jim Pingle
09:38 AM Bug #6455 (Duplicate): Can't delete Virtual IP "referenced by a least one gateway" if gateway outside interface subnet: I have pfsense 2.3.1 (amd64) running and the issue [[#3075]] seems to be present again. I have setup a main virtual I... Tobi Miller
06:21 PM Revision 0771de32: This needs a newline: Jim Pingle
06:21 PM Revision 36990b1f: This needs a newline: Jim Pingle
05:21 PM Bug #6453: Auto-created certs not updated as needed by system, nor viewed/fixed easily by user: Useful and detailed answer.
One way to resolve it that your comment _almost_ suggests but doesnt. Itr sounds like ... Stilez y
07:57 AM Bug #6453 (Rejected): Auto-created certs not updated as needed by system, nor viewed/fixed easily by user: The problem, as stated, is not a good idea, but could be handled better in a few separate tasks and not this directly... Jim Pingle
01:03 AM Bug #6453 (Rejected): Auto-created certs not updated as needed by system, nor viewed/fixed easily by user: I happened to be checking the certs on my router, and noticed the main webconfigurator cert was 1024 bits, which has ... Stilez y
03:16 PM pfSense Packages Bug #6456 (Not a Bug): vm-bhyve not correctly detecting the modules in kernel: Trying to run bhyve in pfsense 2.3.1. I have install vm-bhyve. But I found it is not working properly when executing ... Pedro Ramos
01:47 PM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: Kill Bill wrote:
> Well, while the original issue with the dashboard seems indeed gone, I managed to make the GUI co... BBcan177 .
10:50 AM Revision bcf850fa: Re-enable ntopng: Renato Botelho
10:50 AM Revision 311d4732: Re-enable ntopng: Renato Botelho
09:23 AM Bug #6099: igmpproxy does not recognize upstream interface: To be sure the 10.x address is not messing everything up I removed the address from the interface.
Sadly it didn't... Andre Vink
08:35 AM Bug #6099: igmpproxy does not recognize upstream interface: Just to compare with the same Version on my System:
MY router (192.168.1.254) periodily sends a Membership query (... Stefan Heck
08:33 AM Bug #6099: igmpproxy does not recognize upstream interface: Just a hunch, but I suspect the second query coming from 10.10.10.1 is part of the problem. It's querying the same m... Andrew -
07:37 AM Bug #6099: igmpproxy does not recognize upstream interface: To check the IGMP Membership I made two traces on the firewall.
The first is made with the IGMP daemon I used on ver... Andre Vink
06:34 AM Bug #6099: igmpproxy does not recognize upstream interface: @Andrew
yes indeed
While the IP 192.168.1.35 sends a Membership request to 224.0.252.15211:56:36,591: Should ins... Stefan Heck
05:52 AM Bug #6099: igmpproxy does not recognize upstream interface: It looks to me that, for whatever reason, the replies to the membership query aren't getting back to igmpproxy. Igmp... Andrew -
05:05 AM Bug #6099: igmpproxy does not recognize upstream interface: @Stefan Heck
The version you provided shows the same route exipration problem. See the log below.... Andre Vink
03:51 AM Bug #6099: igmpproxy does not recognize upstream interface: I'll check it today. Andre Vink
03:42 AM Bug #6099: igmpproxy does not recognize upstream interface: @Andre Vink
Did you try the Version I have mentioned above? It is the same as the current Version from ViToni plus e... Stefan Heck
03:08 AM Bug #6099: igmpproxy does not recognize upstream interface: In my opinion the mixup is a result of IGMPproxy not recognizing vlan and PPPoE interfaces.
The version from ViToni ... Andre Vink
02:53 AM Bug #6099: igmpproxy does not recognize upstream interface: Agree, it's what I see as well.
Looking at the logs you'll see the aging counter decrementing and the route removed ... Andre Vink
02:49 AM Bug #6099: igmpproxy does not recognize upstream interface: You mix up different issues in this thread.
The robustness if igmpproxy has nothing to do with "not recognize upst... Stefan Heck
02:33 AM Bug #6099: igmpproxy does not recognize upstream interface: Andre Vink wrote:
> It looks like it has something to to with route aging.
Having looked at the code and at the l... Chris Coleman
06:30 AM Bug #3075: Can't delete unused Virtual IP "referenced by a least one gateway": I have pfsense 2.3 (amd64) running and this issue seems to be present again. I have setup a main virtual IP which I u... Tobi Miller
06:27 AM Bug #6454 (Resolved): services_ntpd_acls.php: Can't change default options without setting custom access restriction: It's impossible to modify ONLY the 'Default Access Restriction' section without compiling the section 'Custom Access ... Riccardo Di Sarcina
05:52 AM Revision 4945841d: Get modulus keysize: Useful utility function when it's necessary to verify that existing keys meets current practices Stilez y
12:22 AM Bug #6364: PHP Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 32 bytes) in /usr/local/www/status_carp.php on line 261: Hello,
Any news with this bug? Zeev Zalessky

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

07/05/2016

07/04/2016

07/03/2016

07/02/2016

07/01/2016

06/30/2016

06/29/2016

06/28/2016

06/27/2016

06/26/2016

06/25/2016

06/24/2016

06/23/2016

06/22/2016

06/21/2016

06/20/2016

06/19/2016

06/18/2016

06/17/2016

06/16/2016

06/15/2016

06/14/2016

06/13/2016

06/12/2016

06/11/2016

06/10/2016

06/09/2016

06/08/2016

06/07/2016

06/06/2016