Activity
From 08/25/2016 to 09/23/2016
09/23/2016
-
07:52 PM Bug #6751: Route53 DynDNS Problems / Replace Route53 DynDNS Module
- Filed a pull request in Github
-
02:44 PM Bug #6811 (Resolved): pkg_edit.php rowhelper is broken with multiple distinct rowhelpers per page.
- A Row Helper Name is hardcoded in pkg_edit.php.
I don't know why, but the effect of this is that a single page can... -
11:19 AM Bug #6724 (Resolved): VLAN interface displayed wrong through interface assignment
- Works, following the example given it prints the interface name correctly.
-
-
- Fixed
-
- Please start a forum thread for discussion and troubleshooting, there isn't enough information here to classify it as...
-
- Works
-
- Done, working.
-
- Confirmed fixed by multiple sources.
-
-
- Fixed, per above feedback
-
- Fixed
-
- Fixed
-
- Works here.
-
- I fixed the description. The underlying daemon does not accept subnets, only IP addresses, so the description has bee...
-
10:14 AM Bug #6810 (Duplicate): bsnmpd logspam - hrPrinterTable: printcap entry for <noname?> has errors, skipping
- hrPrinterTable: printcap entry for <noname?> has errors, skipping
Been flooding the logs since 2007 at least. Perh... -
- New installs on snapshots are fine, fixes are on existing packages for current versions so it's addressed from a user...
-
- Resolved per above feedback
-
- Works.
-
07:54 AM pfSense Packages Bug #6807: Softflowd + multiplie interfaces
- OK, the project is dead
What are the alternatives? (netFlow) -
- That would be a bug in softflowd, not one we can fix. We are passing all of the correct parameters to it. If it's usi...
-
- There are problems in the softflowd.
Always send information only from one interface. And his number is always 0.
... -
- Please post on the forum for help diagnosing the issue until a definite bug can be identified. It could still be a co...
-
07:27 AM Bug #6809 (Rejected): IPSEC connection does not pass the state "CONNECTING"
- i have a have a IPSEC connection to fortigate, this connection not work after the upgrade to 2.3, 2.2 versions worked...
-
-
- Duplicate of #6762.
-
02:15 AM Bug #6808 (Duplicate): Can't add firewall rule
- Hi,
I can't add firewall rule when using Network or IP,alias distination.
The chrome console show me a regex er... -
06:16 AM Bug #5319: Error message "No config named" in charon daemon
- I can confirm this issue that is still present in 2.3.1-RELEASE-p5 :...
-
04:12 AM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available"
- Hey all,
Do we know exactly what causes this yet?
Reason i ask is i have just had a 2.2.6 machine have this (be...
09/22/2016
-
09:38 PM Bug #6762: "Please match the requested format" error in Chrome when editing certain form fields
- I made a suggestion that it is a good time to cut a 2.3.3 release:
https://forum.pfsense.org/index.php?topic=118670.... -
- Notably, this gets triggered on : as well, complete no go with IPv6.
-
- This needs to be released. Damn annoying and Chrome fix nowhere in sight - https://bugs.chromium.org/p/chromium/issue...
-
03:39 PM Bug #6803: CSRF timeout occurs when it (probably) shouldn't
- I was wondering about it too. I don't know if either of these ideas go anywhere.....
* The value set by csrf_conf(... -
- Yeah I see that now. I tested it earlier by setting $config['system']['webgui']['session_timeout']=2 at the top of th...
-
- @jimp - the fix above doesn't work, because $config only becomnes defined when authgui.inc is included, which is afte...
-
- One bug to be fixed at least - it's now clear why CSRF times out incorrectly:
In guiconfig.inc, csrf_startup() che... -
03:20 PM Bug #4418: IPsec mobile clients - bogus "p" appended to search domain
- Ok, I am using pfSense 2.3.2 (latest) and I get the silly p appended to the default domain. Can someone look into th...
-
12:00 AM Bug #6806: Form validation for DHCP NTP Servers does not allow hyphens
- https://github.com/pfsense/pfsense/pull/3151 (CLA was just signed so might not be labeled appropriately yet)
09/21/2016
-
- Form validation in the dashboard does not use the proper regex for FQDNs (it doesn't allow hyphens)...
-
- Chris Buechler wrote:
> works
Form validation does now allow hyphens in the NTP server name
Separate Issue Inc... -
09:41 PM pfSense Packages Bug #6805 (Duplicate): Freeradius + OTP sometimes auth failed when auth openvpn.
- Hello,
I have test freeradius + OTP to auth openvpn connect.It's can connect and auth it.But it's has sometimes auth... -
09:23 PM Feature #6804 (New): Add row counter into Diagnostics -> Edit File
- Will be extremely helpful if the rows in the Diagnostics -> Edit File window are presented with a number.
In this ... -
- Steve Allison wrote:
> FYI, this "[a-zA-Z0-9_.:]+" is the same as ".+". Perhaps only : or _ needs escaping?
No it... -
03:20 PM Bug #6762: "Please match the requested format" error in Chrome when editing certain form fields
- FYI, this "[a-zA-Z0-9_.:]+" is the same as ".+". Perhaps only : or _ needs escaping?
-
- It is not a bug in our code. It is a bug in Chrome that we have worked around by removing escaping from the regular e...
-
- So from Jon Gerdes explanation, this should be adjusted to "Bug" as pfSense is using invalid HTML5? Just not apparent...
-
12:50 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN
- That doesn't however allow access to new openssl 1.1 features like ALPN.
Haproxy used to build not using the freebsd... -
- We use the OpenSSL version provided in the base system of FreeBSD 10.3, which is maintained by FreeBSD. If/when FreeB...
-
12:17 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN
- This is not a HAProxy issue, this is an entire pfSense issue. Because openssl in pfSense was reverted from 1.0.2 to 1...
-
12:48 PM
Bug #6801 (Resolved): Rule separators are moving when multiple firewall rules are deleted together
- Thanks for confirming. Fix has now been applied to firewall_nat.php as well.
-
- Thank you Steve / Jim.
I found it safer to apply the changes through Diagnostics -> Edit file.
Confirming that ... -
- The wiki doc for the System Patches package explains how to use the commit ID from the above comment to apply the pat...
-
11:43 AM
Bug #6801: Rule separators are moving when multiple firewall rules are deleted together
- Probably easiest to just wait from the next snapshot and update. Alternatively you could access the updated file here...
-
- Steve Beaver wrote:
> Applied in changeset commit:00098bc80b6f85eb74f2f3bc2b4eb7430614110d.
Steve, would you prov... -
11:20 AM
Bug #6801: Rule separators are moving when multiple firewall rules are deleted together
- Applied in changeset commit:00098bc80b6f85eb74f2f3bc2b4eb7430614110d.
-
11:11 AM
Bug #6801 (Feedback): Rule separators are moving when multiple firewall rules are deleted together
- Fixed and tested. Please confirm.
-
- Steps to reproduce:
1. Select multiple firewall rules
2. Delete together
3. The rule separators changed their po... -
- +Expected behaviour and error+
A feature/change in release 2.1 was that CSRF timeout was changed to be the same as... -
11:25 AM Bug #6802 (Rejected): GUI does not respond and vpn stops working
- Since I update the firewall to 2.3.x (actualy 2.3.2) Some times GUI does't respond and VPN client are disconnected un...
-
- We used to do that, but ultimately decided against it as it was a potential security issue. We might be able to revis...
-
06:03 AM Feature #6800 (Rejected): Feature request: Logon to remember the URL that initiated the logon sequence and return to it
- When not logged on and entering my pfSense on a specific URL like https://192.168.99.254/status_dhcp_leases.php it sh...
09/20/2016
-
10:27 AM Bug #6799 (Resolved): Negating ``<interface> net`` when a VIP exists on the interface results in unintended behavior
- LAN Interface: 172.25.232.1/24
IP Alias VIP on LAN: 10.10.10.10/32
OPT1 Interface: 192.168.1.1/24
Some users lik... -
- Fix pushed, will show up next time the packages are built.
-
-
04:14 AM pfSense Packages Bug #6797 (Resolved): Shared Key Export - just one server in list
- There is a typo error in vpn_openvpn_export_shared.php line 191 that causes just one server to be displayed in the Sh...
-
04:49 AM Bug #6798 (Rejected): pevent_ctx_main: poll: Invalid argument
- After reboot PPPoE connection wasn't established. See attached log.
pfSense 2.3.2 x64.
09/19/2016
-
05:24 PM Feature #6796 (New): Allow hostnames as GRE and GIF endpoints
- Currently only IP endpoints are allowed. The hostnames need to be resolved and the interfaces updated on a regular ba...
-
10:02 AM Feature #6795 (Duplicate): User certificate for webGUI login
- It would be practical to allow the administrator to enable user certificate required for webGUI signin.
This would a... -
03:02 AM Feature #6794 (Resolved): Chinese Version Language Translation
- mkdir
/src/usr/local/share/locale/cn/LC_MESSAGES/
Dear Administrator
Given China's administrator easy to use, c...
09/18/2016
-
02:48 PM Bug #6725: DHCP Server > TFTP server name and custom dhcp options in GUI and in dhcpd.conf but missing on the wire
- Looks like there may have been a problem with my client not requesting the custom attribute. After messing with dhcli...
-
02:27 PM Feature #6793 (Resolved): Add pound package to the pfSense repository
- Dear devs,
Please add the "pound" package to the pfSense's own repository so that anyone can install it without ha... -
11:24 AM Bug #6099: igmpproxy does not recognize upstream interface
- Hi,
first of all, thank you very much for your hard work!
Due to missing IPTV (I just ordered it last week) I i... -
05:04 AM Bug #6507: GRE and GIF tunnels on dynamic IPv6 interface are not brought up during boot
- I've tried to dig into this again. There some things I've noticed.
1) it looks like the binary "check_reload_statu...
09/16/2016
-
03:05 PM Bug #6792: Cannot edit or add firewall rules, error: Please match the requested format
- No problem in latest Firefox 48.0.2.
Problem exists for me in latest Chrome Version 53.0.2785.116 m both normal an... -
- Duplicate of #6762 (applies to multiple pages)
It is a bug in Chrome's regex parsing that they let into their late... -
- Suddenly I'm getting an error of "Please match the requested format" when I try to use an alias or ip address for a t...
-
- Setting to Feedback since the relevant fix has already been committed.
-
- The bind credentials field is covered by #6759 and has already been fixed in the repository.
If your LDAP users ca... -
07:43 AM Bug #6791 (Rejected): Upgrade 2.2.6 > 2.3.2 had broken LDAP authentication
- Hi,
I jut want to declare the following bug that we had discovered:
We upgraded one of our test firewall from... -
- Already fixed in the repository. This is a duplicate of #6759
-
06:57 AM Bug #6790 (Duplicate): Password is in plain text under "System -> User -> ManagerAuthentication" Type LDAP under "Bind credentials"
- Hello,
There is a plain text box input for password field.
As such it's letting the password readable by anyone.
...
09/15/2016
-
- Works, thanks.
-
02:17 PM pfSense Packages Feature #6789 (New): disgest_ldap_auth
- We are deploying pfsense the company as proxy using squid + squidguard and authenticating in our openldap base (linux...
-
12:11 PM
Feature #6786: Sortable Description Captive Portal MACs list
- Click the column headers to sort the table as required.
Should be in the next snapshot -
12:10 PM
Feature #6786 (Feedback): Sortable Description Captive Portal MACs list
- Applied in changeset commit:e846d7f882d57331d7ead5fcf593e7e4daf7e247.
-
10:33 AM Bug #6760: Editing WAN bridge interface breaks routing until reboot
- I am having a similar issue whenever my WAN link goes down and then recovers. Basically I lose some kind of routing ...
-
08:00 AM Bug #4937: RRD graphs with mixed quantities are unreadable
- Hi, the issue is exactly the same on 2.3. Packet loss and latency still share the same scale, so one can definitely d...
09/14/2016
-
07:40 PM
Bug #6788: [2.3.3] Services - NTP - Settings: Prefer/No Select checkboxes invisible when adding entries
- Applied in changeset commit:d38d215d1d9429d3a1a15708f92b14cf3a15b247.
-
07:39 PM
Bug #6788 (Feedback): [2.3.3] Services - NTP - Settings: Prefer/No Select checkboxes invisible when adding entries
- Javascript revised to clear only the first label in the cloned row
-
- Best described with a picture:
!http://image.prntscr.com/image/73931c990d7f4757a8d5d62023e4db6a.png!
Note:
- ... -
- It does not look like the proper PID files are being created in /var/run. -p PIDFILE arguments are not being added to...
09/13/2016
-
09:03 PM Feature #6787 (Resolved): NTP GUI sync/poll interval
- Id like to be able to set the minpoll and maxpoll in the pfsense NTP service within the GUI. I noticed that prior to...
-
07:49 PM Feature #6786 (Resolved): Sortable Description Captive Portal MACs list
- Hi!
Pfsense is awesome. We use the Captive Portal MACs feature a lot, on top of the voucher system.
While the list... -
03:30 PM pfSense Packages Feature #6785 (Resolved): Allow setting of suricata's meta-field-limt libhtp parameter
- ...
-
- Applied in changeset commit:e89a17fbf04aae89f60f13baf293f397ca21c303.
-
12:40 PM
Feature #4898 (Feedback): Allow packages to request syslogd socket to be created inside chroot
- Applied in changeset commit:ab31acb937792bdedef11fcdbd1d98ad126ebc0b.
-
09:04 AM Feature #5825: Allow EAP-RADIUS for authentication servers
- Adam Thompson wrote:
> Supposedly this exists, per https://doc.pfsense.org/index.php/IKEv2_with_EAP-RADIUS, but I'm ...
09/12/2016
-
09:22 AM
Bug #6783 (Not a Bug): Bootstrap code compatibility/rendering failure with SELECT MULTIPLE boxes
- The jQuery "begins with" syntax works with this type of control. Try:...
-
05:01 AM Bug #6769: Crash PacketFilter in bridge mode
- Ok, without advanced settings set in the rules on the firewall not more crash. Now it's stable.
-
04:53 AM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available"
- Applied attached patch, but that only pushes the problem in the near future. Still fails after x amount of days or ho...
09/11/2016
-
- Pull request: https://github.com/pfsense/pfsense/pull/3135
-
- (also it's not clear to me if all browsers add "[]" and if there's a remaining compatibility issue in here)
-
- For anyone needing a workaround, or if it's useful, I just googled "jquery square brackets" and found two syntaxes th...
-
- Source code:...
-
01:40 PM pfSense Packages Bug #6784 (New): HAProxy version .48 will not use URL Table Alias for front end listener
- I use HAProxy with an alias of ports to listen on. The backend has the ports set to blank so it just does a pass thro...
-
- Stilez y wrote:
> There is an active FreeBSD port of "mdns-repeater". Its args are a list of interfaces optionally p...
09/10/2016
-
- Forgot the links
Port is in usual place. If anyone's in a hurry and just wants the FreeBSD 10.x binary to upload t... -
- Much faster solution if anyone looks at this.
There is an active FreeBSD port of "mdns-repeater". Its args are a l...
09/09/2016
-
06:59 PM Bug #6782 (Resolved): pkg update can trigger multiple updates per second
- From Renato:
"I took a look on pkg src and did some tests. Every time a remote operation is executed (pkg search, pk... -
- Applied in changeset commit:ff1af69dd513b123238f149193d565f5d83658fb.
-
- The resolver, ppp, routing, and ntpd logs are not individually selectable on status_logs_settings.php, and the other ...
-
01:51 PM Bug #6781 (Resolved): OpenBSD description links are broken in Traffic Shaper
- Links made for some function/option descriptions in pfSense are broken.
For example "Random Early Detection" goes t... -
01:50 PM Bug #6099: igmpproxy does not recognize upstream interface
- Victor Toni wrote:
> This version does solve the interfaces issue already and some other minor bugs, too:
> https:/... -
- After using traffic shaper wizard when you completed it you can get decimals in "Max bandwidth for queue" and other v...
-
09:25 AM Bug #4326: Limiters on firewall rules where NAT applies drop all traffic
- Yes, it is exactly as you described.
ONLY PFSense 2.1.5 works fine on this configuration. I use several CRITICAL f... -
08:09 AM
Bug #6768: DNS Resolver entry for DHCPv6 static mapping has wrong IP address
- The issue isn't with DHCP... it's with DNS (unbound, in my case) resolution of a DHCPv6 static mapping.
Looking in... -
- I tried this in a VM. I delegated a /56 (out of the /48 I have from he.net) from my real router to the WAN of the VM ...
09/08/2016
-
04:43 PM Bug #6778 (Resolved): CloudFlare Dynamic DNS fails when domain name uses a Second Level TLD
- When using Dynamic DNS with CloudFlare if the domain name used has a second level TLD such as .co.uk the update will ...
-
12:09 AM pfSense Packages Bug #6777: squid cant redirect ssl website correctly to squidguard error page in a denied category
- here is the same error reported in pfsense forum without a solution
https://forum.pfsense.org/index.php?topic=1093...
09/07/2016
-
08:37 PM
Bug #6768: DNS Resolver entry for DHCPv6 static mapping has wrong IP address
- Likely reason for this is because in entering the DHCPv6 static mapping, you're entering ONLY the host portion of the...
-
- h1. When you use "squid" with "squidguard" set in *"NO"* transparent mode, any category denied previously (squidguard...
-
02:51 PM Feature #6776 (New): Allow disabling of "filter rule association" by default
- This setting is inherently insecure, as it opens a hole in your firewall for the world to get into. Fine for public-f...
-
- You'll have to post on the forum and find someone who is interested in looking into transparent SSL -- it isn't an of...
-
- Sorry for my english.
If I want to enable the next option in common acl, squidguard block all traffic from https
... -
- al tener el proxy en modo transparente usando tanto pfsense 2.3.2 y 2.3.3, e inspeccionando trafico ssl, si se activa...
-
12:04 PM Bug #6766: Docs give wrong method of disabling ixgbe flow control
- I just checked and dev.ix.0.fc=0 has no effect when placed in /boot/loader.conf.local. Also, sysctl -T -a doesn't li...
-
- That function is a part of the pfSense PHP module, so if it's missing, then either the PHP module package is missing,...
-
05:57 AM Bug #6758: 2 x Crash with "PHP Fatal error: Call to undefined function pfSense_interface_listget() in /etc/inc/interfaces.inc on line 80"
- I have seen the same error. I think in my case it was related to remove DHCP IPv6 from WAN interface.
-
- I confirm than crash if you set advanced parameter but randomly... for unknow reason. I have reboot five time pfsense...
-
03:46 AM
Feature #6775 (Closed): Strongswan PKCS#11 Support
- We developed a Smart Cards based authentication of StrongSwan-IPsec-VPN peers.
This already works on pfSense 2.2.6 b...
09/06/2016
-
- I tested this recently and it worked fine. Do you have a forum thread with more in-depth discussion/diagnosis? If not...
-
03:41 PM Bug #6773 (Rejected): Pfsense Version 2.3.2 doesn't handle rules when gateway is down - Skip rules when gateway is down
- Hello.
I have two vpn's configured between two pfsense's with the same versions.
I added a interface for every vpn'... -
- Jim Pingle wrote:
> Does that particular configuration involve a bridge?
> The "cannot forward" message reminds me ... -
- Just found it (it was from the IPv6 address):...
-
- Thanks; managed to find the related crash dump I submitted today? (Should be either from 188.75.x.x or 2001:470:6e:xx...
-
- Rather than reinvent the wheel I updated the description on this ticket instead.
-
- I don't think we have any left, unless you count 2.3.1 which isn't so helpful in that area. If you do still have a 2....
-
- @jimp: Well if you can link a pre-6355 binary for download, I can test that for sure with multiple boxes. I might hav...
-
- OK so the real issue of this ticket is actually DHCP Relay breaking. Given the info in the description and such I'm t...
-
- And finally - the DHCP relay issues are so bad that it actually crashes pfSense when reconfiguring the service. I sub...
-
- OK. After a lot of further testing and messing with various stuff, here is some mixed news:
- as for 2.3.x, the *DHC... -
- I'll make a fresh ticket for 2.4 with the above on it so it doesn't get lost here.
-
- Looks like on 11 you have to clone the interface. The wireless device (e.g. ath0) won't show in ifconfig.
Somehow ... -
- Anyone who can reproduce this: Try feeding the attached patch into the system patches package, which will add in the ...
-
- We don't recommend doing that for hardware directives. It may work, but depending on what is being done it's safer to...
-
- At the top of the section it says "All of these go in /boot/loader.conf.local", but dev... can be done in System Tuna...
-
- Fixed the doc referenced
-
- The problem with that "fix" is that with that sort of change, it no longer starts the daemon when it's stopped and th...
-
- Works
-
- Applied in changeset commit:caec0e97220d3702214c6b30f7008960f77a857e.
-
- If a backup count other than the default is entered on diag_confback.php it is not respected.
To me, I have a fix. -
- Looks good now, it's masked.
-
- I did that exactly as described, and the rules worked and there was no crash. Please discuss on the forum before open...
-
- For reproduce :
1. create alias with IPV6: one for source, one for destination
2. Create rules use alias created ... -
- I am unable to reproduce any of this. IPv6 rules using aliases or "this firewall" all work OK. Make sure you actually...
-
- And if after add your rules with alias created before with ipv6 and you try change this rule in replace alias by addr...
-
- And it's same if you select "This Firewall" with rules ipv6, doent work
-
- Hi,
If you create alias with ipv6 and use in the rules firewall doent work. -
- i think the problem is with all parameter set and the scenario most probability than is if number connexion over the ...
-
- Can you isolate it to just one of those options then? Or does it require them all? Can you disable/enable them to see...
-
- Synproxy is not the setting that problem because I left it on and I do not have the problem.
and for information syn... -
- Does it require that specific combination of settings? Or does it still crash with only one of them active? or two? o...
-
- Hi,
I have configured pfsense in bridge mode on the Vmware Vsphere. The VM of Pfsense have 8Go of memory and one s... -
- On FreeBSD 11 you have to clone the interface and the wireless device (e.g. ath0) does not show in ifconfig.
The l...
09/05/2016
-
08:38 PM pfSense Packages Bug #4731: softflowd process gets started twice during bootup
- I just wanted to chime in that the issue still exists with: pfSense 2.3.2 / softflow 1.2.1_2
I was having the same... -
- Redmine is still the issue tracker - the code (and pull requests...) is in GitHub.
-
02:43 AM Bug #6762: "Please match the requested format" error in Chrome when editing certain form fields
- OK thanks - you can close this issue.
(BTW: is redmine or github now the preferred tracker to use?) -
07:42 PM
Bug #6768: DNS Resolver entry for DHCPv6 static mapping has wrong IP address
- No, the asterisks aren't part of the address. Apparently bold text isn't supported here, despite the button above the...
-
07:40 PM
Bug #6768 (Resolved): DNS Resolver entry for DHCPv6 static mapping has wrong IP address
- I have added two DHCPv6 static mappings for two hosts on my network. But when resolving the hostname to IP address, t...
-
06:01 PM Todo #6767 (Resolved): Change logout from GET to POST request
- We currently use @index.php?logout@ instead of a POST request to log the current user out.
There are several reaso... -
03:57 PM Bug #6099: igmpproxy does not recognize upstream interface
- Jorge M. Oliveira wrote:
> No, my purpose was only to fix this long standing bug and (attempt) to make it work again... -
- No, my purpose was only to fix this long standing bug and (attempt) to make it work again as it should.
I leave th... -
- Jorge M. Oliveira wrote:
> New version based on the reviewed patch. I believe my work in this area is complete (for ... -
- *EDIT:* This version is bugged. Please use the previous. kthxbye.
New version based on the reviewed patch. I belie... -
- *EDIT:* igmproxy_all.zip is somewhat good, except no IGMPv3 support. The version on pfSense 2.2 supported those packe...
-
- Richard Eberhard wrote:
> I also tried adding a redirect command in the custom squid config: no effect.
Why? It'... -
01:22 AM pfSense Packages Bug #6763 (Not a Bug): Squid ClamAv wrong redirect URL
- After changing the pfsense hostname the squid proxy still redirects to the old hostname if it finds a virus. I also t...
-
02:25 PM pfSense Packages Bug #5594: Captive portal patch does not work anymore
- Hello,
I've applied Marcello's patch to pfSense 2.3.2. The patch needs to be applied a couple of lines lower than ... -
- According to https://doc.pfsense.org/index.php/Tuning_and_Troubleshooting_Network_Cards#Flow_Control, to disable flow...
-
12:16 PM Bug #6765 (Resolved): CP: "Enable per-user bandwidth restriction"
- Hi all, in CP I see "Enable per-user bandwidth restriction" and:
- Default download (Kbit/s)
- Default upload (... -
- That thread is very old and likely irrelevant. Please start a new thread to diagnose your issue before opening a bug ...
-
05:45 AM Bug #6764: No traffic http with pfSense in VM PROXMOX and network interface VirtIO
- Topic related:
https://forum.pfsense.org/index.php?topic=87856.0 -
- Hello.
I have installed pfSense in VM on PROXMOX serveur with 2 networks interfaces.
I used 2 "virtIO" networks i...
09/04/2016
-
- That has been addressed by commit https://github.com/pfsense/pfsense/commit/8ea3fd0569ac2b1681de5ba3fbc2a2cc20981ad6
... -
- Looking at http://www.ecma-international.org/ecma-262/5.1/#sec-7.8.5 I'd say that Chrome is at fault:...
-
- I made the following patch to the live system, and now it works fine with Chrome....
-
- Interesting idea.
This is using Chrome 53 under OSX. By positioning the cursor at both ends of the string I can se... -
- Sounds like your browser is inserting whitespace junk or whatever on "autocomplete".
-
- I created an alias called "firewall_management"
There was an existing rule which said allow inbound SSH on WAN (fr... -
- Some brand new patches for the version that ships on freebsd-ports:
patch-src__os-freebsd.h is based on https://gi... -
11:03 AM Bug #6761: Limiter doesn't limit at correct bandwidth
- Michael Knowles wrote:
> Hi,
>
> As per my Reddit thread here (with the relevant screenshots), I am seeing reliab... -
- Hi,
As per my Reddit thread here (with the relevant screenshots), I am seeing reliable-but-wrong inbound bandwidth... -
- This PR has been merged a few months ago. Bug can be marked as resolved.
-
- This issue can be set to feedback.
This PR has been merged and should deal with the problem: https://github.com/pfse... -
- This PR has been merged on pfSense 2.3 branch: https://github.com/pfsense/pfsense/pull/3095
This ticket can be set t... -
-
05:04 AM Bug #6435: Unable to edit PPTP using interfaces_ppps_edit.php
- seems to be a duplicate of #6732
-
- And FWIW - this does not appear to be limited to AR9280. I managed to rescue some oldie 802.11a/b/g mini-PCIe card w...
-
- I temporarily installed 2.4 alpha on a test box, and the wireless is completely broken there, the entire interface go...
-
- Jim Pingle wrote:
> What do "netstat -rn" and "ifconfig -a" look like before and after? Any notable differences?
...
09/03/2016
-
07:27 PM Bug #6658: DHCP Relay not working on 2.3.2
- Hi Jim,
I have installed
https://snapshots.pfsense.org/amd64/pfSense_master/installer/pfSense-CE-memstick-serial-... -
02:29 PM Bug #6658: DHCP Relay not working on 2.3.2
- Could one or both of you try this on 2.4?
-
- I'm in the same Situation like described, except I have an "APU1" and my clients stay connected (they even authentica...
-
- By the way, I've coded a very hackish workaround (for version 2.3.3) that one can execute via Diagnostics > Command P...
-
- (I'm using original version of igmpproxy without any changes)
There is one thing I find very interesting.
On my t... -
- What do "netstat -rn" and "ifconfig -a" look like before and after? Any notable differences?
-
- Say you have a setup like this:...
09/02/2016
-
- Have a look at the end of https://github.com/pfsense/pfsense/blob/master/src/etc/inc/upgrade_config.inc
You can add ... -
05:05 PM Bug #6688: Special characters in a password cause problems
- Although I don't really know PHP, I can dive into the code and poke around. It looks like it's pretty easy to do base...
-
03:20 PM
Bug #6759: system_authservers.php - LDAP "Bind Credentials" password is not masked
- Applied in changeset commit:1c1f08f92e8841f7282280caeed7613edd810453.
-
03:14 PM
Bug #6759 (Feedback): system_authservers.php - LDAP "Bind Credentials" password is not masked
-
- On system_authservers.php when configuring an LDAP server, uncheck "Bind Anonymous" and there is a username and passw...
-
02:36 PM Bug #6747: pfctl - getting high cpu usage
- Remove one widget at a time from the Dashboard and test with:
top -SH
Then see which is causing the high cp... -
08:38 AM Bug #6747: pfctl - getting high cpu usage
- It only happens with firewall log widget and pfblockerng widget. The resources consumption (I'm not 100% sure if it's...
-
02:07 PM Feature #4606: PKI : CA signing external CSR
- +1, would love to be able to sign external CSRs from within pfSense. (For both certificates and intermediate-CAs)
-
11:34 AM pfSense Packages Bug #6740: https filtering with squid + squidguard error (ssl bump)
- Looks like Diladele filter also has a problem with pfsense/squid combo.
[[https://groups.google.com/forum/#!topic/... -
11:09 AM Bug #6758 (Resolved): 2 x Crash with "PHP Fatal error: Call to undefined function pfSense_interface_listget() in /etc/inc/interfaces.inc on line 80"
- I have a second installation running on i386 10.3-RELEASE-p5 FreeBSD 10.3-RELEASE-p5 v2.3.2 on AMD Athlon(tm) 64 X2 D...
-
11:06 AM Bug #6099: igmpproxy does not recognize upstream interface
- Victor Toni wrote:
> It's the way the interfaces are looked up (internally) so its not directly related to your conf... -
- Using the firewall for that many certificates is an atypical use case for which it was not designed. From reading the...
-
05:32 AM Bug #6757 (Not a Bug): nginx 504 Gateway Time-out when acces to system_certmanager.php
- Sorry for my english ...
It's now impossible for us to acces our certificat listing. php-fpm use 100% of 1CPU and ... -
03:11 AM pfSense Packages Bug #6756 (Resolved): Updating cloned backend in WebGUI updates the original backend instead of the cloned backend
- This bug has appeared for me 3 times now when I clone an existing https to a new backend.
I have multiple SSL sites ...
09/01/2016
-
- Applied in changeset commit:2ce5cd33ef6434d3eb265c59f06e6ffb4930f0d9.
-
- Since 2.4 will not support i386, any references to glxsb in the GUI and build scripts can be removed as that was spec...
-
02:08 AM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available"
- I recommend changing this to a high priority bug as it impacts anyone using IPsec and BGP together which are two ubiq...
08/31/2016
-
10:10 PM Bug #4326: Limiters on firewall rules where NAT applies drop all traffic
- Using pfsense 2.3.2-RELEASE (amd64)
I can confirm disabling the upload limiter solves an issue with limiters and 1... -
- Have a read of https://redmine.pfsense.org/issues/2668
It is a similar feature request I put in a while ago. -
- OpenVPN has options where network groups can be specified. See these:
- Tunnel Settings > IPv4 Local Network/s and I... -
- egrep is very memory aggressive...
The pfBlockerNG widget runs this line which doesn't use egrep:
pfctl -vv... -
- Pi Ba, does this edition include pfblockerng widget problem too?
-
- The order the interfaces are listed in several places:
- Status > Interfaces
- Dashboard Interfaces widget
- Inter... -
- Hi, sorry for the late answer.
The download speed of everything that goes through the CP isn't enforced when in brid... -
- Lars Veldcholte wrote:
> What is the status on this? I believe I have the same issue (pfSense 2.3).
>
> [...]
>
... -
05:07 AM pfSense Packages Todo #6752 (New): Traffic Totals Data Summary Graph
- Please can you change the Time header in the data summary to Date for the monthly & top 10 days, its not a time it's ...
08/30/2016
-
- Figured out my bug and an XML tag error. This now works so far in my testing - https://github.com/pfsense/pfsense/com...
-
- The code is at https://github.com/jxmx/pfsense/commit/cc5adcaa679686e54e4035fa5bc283b1cac085a2. The code has an AWS s...
-
- Okay. I'm hoping to finish the original replacement code tonight and I will pass along a GitHub repo. I guess a diffe...
-
03:41 PM Feature #6728: Route53 API mod and Geolocation
- I agree; r53.class is overkill compared to the updated API. I've been busy at work and haven't finished rewriting. If...
-
- Here is a diff against the current master for the change: https://github.com/pfsense/pfsense/compare/master...jxmx:67...
-
- With pfSense 2.3.2, the DynDNS system does not work with Amazon Route53 services. In looking through the logs and the...
-
12:03 PM Bug #6750 (Resolved): dhcpleases shouldn't start when DHCP Relay is configured
- As well, unbound's config page (Services->"DNS Resolver"->"General Settings") shouldn't allow the "register DHCP leas...
-
01:15 AM Bug #6749: Still responds to ARP after removing one of several Virtual IP - choparp not reconfigured
- Actually, I found two more choparp processes:
root 22202 0.0 0.1 14604 2248 - S Tue04PM 0:05.67 /u... -
- At the start, there were four Virtual IPs defined in pfSense. I removed two of them through the GUI, yet the machine ...
08/29/2016
-
10:41 PM pfSense Packages Bug #6748 (Resolved): rrd_fetch_json.php returns html when user is unauthorized (causes "Error: SyntaxError: Unexpected token <")
- The rrd_fetch_json.php endpoint should always return json, as it normally is being requested by js or something that ...
-
- I started looking through the dyndns.class and the Route53 is really non-standard for how pfSense is trying to do thi...
-
- Does this require an updated r53.class file? Keeping what looks like an unmaintaned (upstream) legacy file seems like...
-
- As discussed on IRC, his original pfctl usage was caused by the line below:...
-
- When pfblockerng counter widget is enabled too.
`-- sh -c /sbin/pfctl -vv -sr | /usr/bin/grep 'pfB_'
-
- In case anyone need:
pfctl -sr | wc -l
8707
-
- When firewall logs is enabled on dashboard and update interval is set to a small time (5 seconds, ie), pfctl starts t...
-
- Applied in changeset commit:285987208f31f38abe35b984b08645d43c11b001.
-
01:05 PM Bug #6720 (Feedback): DHCPD Options in "Sub-"Pools ignored, dhcpd.conf does not contain informations, dhcpd therefore not serving
- Pull request has been merged. Thanks!
-
08/28/2016
-
07:29 PM Feature #4606: PKI : CA signing external CSR
- +1. Some applications will generate a new private key internally, and only export the CSR, these applications do thi...
-
- I'm running into this also. I have a root-ca, with different intermediate CAs. the intermediate CAs allow me to seg...
-
- What is the status on this? I believe I have the same issue (pfSense 2.3).
All my interfaces are VLANs. I just mov... -
- When a dark theme is selected, the large "blob" of white color in
the Traffic Graphs widget feels inapropriate when ...
08/27/2016
-
- Looks like formatting messed up the JSON encoding on that policy; be sure syntax is correct before using; {zone} = yo...
-
- Diff file:
https://github.com/williamsmt/pfsense/commit/d96a547cc722d04880d50f7b6a1308c0d9575123
This works for... -
- Duplicate of #6669
-
- Then if it's already handled for 2.3.3 this bugreport could be closed.
08/26/2016
-
- That is fixed by Redmine 6669. It should all work in 2.3.3-DEVELOPMENT snapshots already.
-
- I now saw that it looses picture config even when a totally separate widget is moved and saved.
//Danne -
- I also checked the the exported config.xml and I could see that when the fault occurs, the following is missing
<pic... -
- I have managed to reproduce a problem, somewhat intermittent but frequent,
with Picture Widget where the picture is ...
08/25/2016
-
- Just to confirm my issue was not an IAM Policy problem, I gave my IAM user full permissions and created a new record ...
-
- Matt Williams wrote:
> The previous version works for me on a non-policy subdomain. What type of permission policy d... -
- The previous version works for me on a non-policy subdomain. What type of permission policy do you have set in IAM fo...
-
- Also, I think this tracker type should be bug not feature? I see it tagged for 2.3.3 but as "Feature". In my testing,...
-
- I'm interested in this bug now too as I've just discovered that 2.3.2 + AWS Route53 is inoperable. With 2.3.2 I can n...
-
06:14 PM Feature #6743 (Resolved): Packet Capture - Filter MAC
- Under Diagnostics -> Packet Capture, there is no option to filter by partial or full MAC address. This should be fair...
-
12:51 PM Feature #3377: OAuth2 authentication in captive portal
- > My preference is to keep this limited to CP for now.
>
> That said, your idea has merit, and I'd appreciate it i... -
- I have two use-cases I want to enable and corresponding ideas.
*A) OpenVPN server use OAuth2 as backend.*
*Use-ca... -
- I found a problem with trap mechanism in /etc/rc.initial that does not trap CTRL-C back to ssh/cli console menu.
Ins...
Also available in: Atom