Activity

30 days up to

User

Subprojects

Activity

From 01/03/2017 to 02/01/2017

02/01/2017

10:22 PM Bug #5993: dhcp6c not started until an RA received: J L wrote:
> Daryl Morse wrote:
> > J L wrote:
> >
> > > Alright. I doubt hardware matters too much, but I'll li... Daryl Morse
07:35 PM Bug #5993: dhcp6c not started until an RA received: Daryl Morse wrote:
> J L wrote:
>
> > Alright. I doubt hardware matters too much, but I'll list some facts.
> > ... J L
06:46 PM Bug #5993: dhcp6c not started until an RA received: J L wrote:
> Alright. I doubt hardware matters too much, but I'll list some facts.
> WAN gateway: Actiontec V2000... Daryl Morse
04:31 PM Bug #5993: dhcp6c not started until an RA received: Martin Wasley wrote:
> I'll pm you with my email address.
>
> Edit.. you're not showing yours either.. :)
jtl... J L
04:27 PM Bug #5993: dhcp6c not started until an RA received: Do you have Daryl's pm? Martin Wasley
04:24 PM Bug #5993: dhcp6c not started until an RA received: I'll pm you with my email address.
Edit.. you're not showing yours either.. :) Martin Wasley
09:57 PM pfSense Packages Bug #7190: pfSense-pkg-acme Bug - php errors on pages that list certificates when no LE Certs have been created yet (eg Cert. Manager - Certificates, OpenVPN - Servers): PR https://github.com/pfsense/FreeBSD-ports/pull/286 Phillip Davis
03:55 PM pfSense Packages Bug #7190 (Resolved): pfSense-pkg-acme Bug - php errors on pages that list certificates when no LE Certs have been created yet (eg Cert. Manager - Certificates, OpenVPN - Servers): I just installed pfSense-pkg-acme and went to the Cert. Manager - Certificates Page. I see the following output imme... Greg Siemon
08:12 PM pfSense Packages Bug #7192 (Resolved): ACME package cannot update more than one nsupdate type domain: With multiple domains in the "Domain SAN List" set to nsupdate, it only appears to use the last key entered, rather t... Jim Pingle
07:46 PM pfSense Packages Bug #7191 (Resolved): squid package EN-US grammar errors: In the Services > Squid Proxy Server > Antivirus > Enable Manual Configuration section, the warning "Warning: Only en... P Jones
05:11 PM pfSense Packages Feature #7189: Letsencrypt acme sync in HA environment: There are a couple considerations here to keep straight for GUI use as well.
* One cert with SANs for both hosts i... Jim Pingle
02:13 PM pfSense Packages Feature #7189 (Resolved): Letsencrypt acme sync in HA environment: Configure the letsencrypt package https://github.com/pfsense/FreeBSD-ports/tree/devel/security/pfSense-pkg-acme to sy... Adam Lawler
01:50 PM pfSense Packages Feature #4752 (Resolved): SQUID. Exception for speed limits: Renato Botelho
01:36 PM pfSense Packages Feature #4752: SQUID. Exception for speed limits: Works. Kill Bill
01:49 PM pfSense Packages Feature #2825 (Resolved): OpenBGPd: Add options prepend-neighbor and prepend-self: Renato Botelho
01:32 PM pfSense Packages Feature #2825: OpenBGPd: Add options prepend-neighbor and prepend-self: Fixed with https://github.com/pfsense/FreeBSD-ports/commit/df93449ea55537c48bca4304f72aa7ced243a116 - close please. Kill Bill
01:49 PM pfSense Packages Feature #6537 (Rejected): Suricata does not autopopulate IP Reputation list from Emerging Threats on rules update: Renato Botelho
01:12 PM pfSense Packages Feature #6537: Suricata does not autopopulate IP Reputation list from Emerging Threats on rules update: Can be closed. Feature misunderstanding. Kill Bill
01:44 PM pfSense Packages Feature #6022: Consider MLVPN for bonded VPN: This feature would bring high value to the product and really make it stand out from the crowd. Not many solutions a... mark rousseau
01:16 PM Bug #6363: AutoConfigBackup Restore Actions column missing due to long XMLRPC sync merge strings in the configuration description: Wraps just fine without any CSS, as seen on the screenshot. Close, please. Kill Bill
11:55 AM Feature #4405: Traffic shaping doesn't work when applied to a bridge interface: Any news on this? Issue still exists in 2.3.2. No Traffic shaper on bridge0 even with:
net.link.bridge.pfil_member=0... Daniel Greenwald
11:10 AM Revision 121dd971: Regenerate pot: Renato Botelho
11:10 AM Revision af7c08a5: Merge pull request #3462 from phil-davis/percent-s-www: Renato Botelho
10:58 AM Revision 702fa4d0: Code with multiple %s in usr/local/www: Phil Davis
10:31 AM pfSense Packages Bug #7188 (Closed): Squid update issue: Already fixed Renato Botelho
10:06 AM pfSense Packages Bug #7188: Squid update issue: ... Kill Bill
09:27 AM pfSense Packages Bug #7188 (Closed): Squid update issue: Hi, after updating (yesteray) squid my web ui is not working any more! Here is the error:
Parse error: syntax erro... Robert Weingardt
09:54 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: PR Pushed upstream as fix needed for dhcp6c PID issue - Redmine #7185. Martin Wasley
09:49 AM Revision 8a6aac94: diag_reseststate sourcetablehelp escape of double-quotes not needed: The backslash escaping of the double-quotes here displays the backslashes literal on the GUI. Escaping is not needed ... Phil Davis
09:49 AM Revision 935b826f: Merge pull request #3461 from phil-davis/patch-3: Renato Botelho
09:48 AM Revision 7881b720: Merge pull request #3460 from phil-davis/percent-s: Renato Botelho
09:47 AM Revision ab476790: get_service_status_icon fix description_state format: If "description_state" is requested here, there are too many "%s" substitutions in the string for sprintf().
Also, t... Phil Davis
09:47 AM Revision 4d362392: Merge pull request #3459 from phil-davis/patch-2: Renato Botelho
09:47 AM Bug #7066 (Resolved): vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: Thanks! Luiz Souza
09:46 AM Revision cf80bd5f: Redmine #7173 Do not allow pkg_ for If, IfGroup, Alias: (cherry picked from commit c9d93b62b0cc559d1ed4326212b6385cae2eb398) Phil Davis
09:46 AM Revision 98edca82: Merge pull request #3458 from phil-davis/ifname-nopkg: Renato Botelho
09:42 AM Revision 1767e1c6: Fix #7183 Do not allow Interface Groups with the same name: I should stop trying bad stuff, there seem to be so many holes to find in the validation :)
(cherry picked from commi... Phil Davis
09:42 AM Revision b9957749: Merge pull request #3456 from phil-davis/patch-1: Renato Botelho
09:40 AM Revision e8942021: Merge pull request #3455 from VPSrv/v2_3-patch-1: Renato Botelho
09:39 AM Revision 4cb6be62: Remove unused broken functions: Not sure what was the idea here, but these are not used anywhere, do nothing as they immediately call ```return false... Doktor Notor
09:39 AM Revision 3b90854d: Merge pull request #3454 from doktornotor/patch-1: Renato Botelho
09:31 AM Revision 4ede308c: diag_reseststate sourcetablehelp escape of double-quotes not needed: The backslash escaping of the double-quotes here displays the backslashes literal on the GUI. Escaping is not needed ... Phil Davis
08:33 AM Revision 1579e70f: Code with multiple %s in etc: Phil Davis
08:07 AM Revision b3119a61: get_service_status_icon fix description_state format: If "description_state" is requested here, there are too many "%s" substitutions in the string for sprintf().
Also, t... Phil Davis
07:43 AM Bug #7187: IPSec IKEv2 additional P2 not written to config: And it does not show in the routed connection of _statusall_... Lorenzo Milesi
07:30 AM Bug #7187 (Closed): IPSec IKEv2 additional P2 not written to config: I have a v2 tunnel with a second P2 NATting the OpenVPN subnet to the tunnel which is not working. The traffic from t... Lorenzo Milesi
05:57 AM Bug #6650: Option needed to disable HSTS: Bump here. This breaks even things running on pfSense itself, such as the darkstat package (HTTP only). It will break... Kill Bill
05:51 AM Bug #6624: changes in IPsec config should down the connection: As a sidenote: When using IPsec mobile clients with PSK keys it would be preferred not to take the entire IPsec servi... Lars Pedersen
05:00 AM Bug #7186 (Resolved): Unable to use national symbols in password fo ACB package: While using ACB package it is not possible to use national symbols in crypto password. I was trying to set password w... Denis Karpushin
04:51 AM Bug #7185 (Resolved): DHCP6c SIGTERM, SIGKILL: I have found that when issuing a SIGTERM to dhcp6c that it immediately deletes the pid file, however, if the WAN inte... Martin Wasley
04:39 AM Bug #7184 (Rejected): FW limits MTU to 1280 when using VPN tunnel to F5: If I'm using local network behind pfSense I get a tun0 device with MTU limited to 1280.
When using the tunnel behind... Martin Assarsson
04:14 AM Revision c9d93b62: Redmine #7173 Do not allow pkg_ for If, IfGroup, Alias: Phil Davis
04:14 AM Revision 5f3e94fb: More sanitising of ipprotocol and other input fields: $_POST['ipprotocol'] needs a bit more sanitising. Some conditions test if it's a zero-length string, other conditions... Stilez y
03:57 AM Revision 89ac71d3: Fix #7183 Do not allow Interface Groups with the same name: I should stop trying bad stuff, there seem to be so many holes to find in the validation :) Phil Davis
03:50 AM Bug #7183 (Feedback): Interface Groups can be entered with the same name: Applied in changeset commit:89ac71d38a4c49e1537e4afe2b34b2457d9817a7. Phillip Davis
03:25 AM Bug #7173: [2.3.3+] Interface groups with a '-' (dash) in name are not handled correctly, breaking firewall rules: Yeah, I think it should behave like the IPsec/OpenVPN ones, they don't let you mess with those either. :) (Well, exce... Kill Bill
02:49 AM Bug #7173: [2.3.3+] Interface groups with a '-' (dash) in name are not handled correctly, breaking firewall rules: I guess the package should be responsible for deleting the Interface Group as it uninstalls itself.
So the Interface... Phillip Davis
02:39 AM Bug #7173: [2.3.3+] Interface groups with a '-' (dash) in name are not handled correctly, breaking firewall rules: Heh, none that I'd know of ATM except tinc, but it simply needs to be something, so that some checking can be done fo... Kill Bill

01/31/2017

11:01 PM Bug #5993: dhcp6c not started until an RA received: Martin Wasley wrote:
> OK, I can see dhcp6c is doing its job and launching RTSOLD, which is launching rc.newwanipv6.... J L
10:39 PM Bug #7173: [2.3.3+] Interface groups with a '-' (dash) in name are not handled correctly, breaking firewall rules: What other packages use the "pkg_" prefix to generate names in this namespace? Phillip Davis
10:39 PM Bug #7173: [2.3.3+] Interface groups with a '-' (dash) in name are not handled correctly, breaking firewall rules: PR https://github.com/pfsense/pfsense/pull/3458
To fix validation of Interface, Interface Group and Alias names. Phillip Davis
09:55 AM Bug #7173: [2.3.3+] Interface groups with a '-' (dash) in name are not handled correctly, breaking firewall rules: To get this really fixed, it's needed to
1/ revert a bunch of other commits that allowed that stuff specifically ... Kill Bill
09:30 AM Bug #7173 (Feedback): [2.3.3+] Interface groups with a '-' (dash) in name are not handled correctly, breaking firewall rules: Applied in changeset commit:b835c2dd77a09ea46b5d6abd8d2271332bf52367. Phillip Davis
09:17 AM Bug #7173: [2.3.3+] Interface groups with a '-' (dash) in name are not handled correctly, breaking firewall rules: PR https://github.com/pfsense/pfsense/pull/3452
The char set allowed should be the same as for Interfaces and Aliases. Phillip Davis
09:58 PM Bug #7183: Interface Groups can be entered with the same name: Woo-hoo, I got allocated PR https://github.com/pfsense/pfsense/pull/3456
Phillip Davis
09:55 PM Bug #7183 (Resolved): Interface Groups can be entered with the same name: 1) Add an Interface Group named "abc"
2) Add an Interface Group named "def"
3) Edit Interface Group "def", change i... Phillip Davis
09:56 PM Revision 65e15a1a: vpn_openvpn_server: fix missing parameter: NewEraCracker
07:51 PM Revision 413cec31: Fixed #7180: Steve Beaver
07:50 PM Revision 070379bb: Fixed #7180: Steve Beaver
07:33 PM Feature #7182 (New): Break up System Widget on the Dashboard: The system widget is quite useful, however there is a lot of information in one place (and it is quite tall, so the s... Daniel Subert
07:30 PM Revision edba33b5: Remove unused broken functions: Not sure what was the idea here, but these are not used anywhere, do nothing as they immediately call ```return false... Doktor Notor
07:20 PM Feature #7181 (New): Add Top and Add Bottom on Seperator: Currently when separators are in use, to add a rule under the separator, you have to create the rule at the bottom of... Daniel Subert
06:57 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: Luiz Otavio O Souza wrote:
> Should work now: https://github.com/pfsense/FreeBSD-src/commit/91384809a74dc98ef0d2a173... Greg Siemon
06:18 PM Bug #7156: Change in 'Block bogon networks' or 'Block private netowrks' GUI options kills routing entries for OpenVPN interfaces.: As I've thought about this more, it seems to me that the correct behavior is for "Apply Changes" to trigger a restart... Karl Fife
04:08 PM pfSense Packages Bug #7009 (Resolved): syslog_ng Log Viewer page didn't get converted to the new 2.3 bootstrap: Anonymous
04:07 PM pfSense Packages Bug #7009: syslog_ng Log Viewer page didn't get converted to the new 2.3 bootstrap: Works, thanks for help. Kill Bill
12:51 PM pfSense Packages Bug #7009 (Feedback): syslog_ng Log Viewer page didn't get converted to the new 2.3 bootstrap: Anonymous
03:33 PM Revision 4181014a: Required fields for VPN pages: (cherry picked from commit 1bbdab13e436f5f2b9e381886be4d9c2d1a4e44f) Phil Davis
03:30 PM Revision 0a609a57: Merge pull request #3451 from phil-davis/required-fields-vpn: Renato Botelho
03:29 PM Revision 75e18196: Fix #7173 Interface Group Name cannot contain dash: Renato Botelho
03:27 PM Revision e4976ba0: Add .zanata-cache to .gitignore: Renato Botelho
03:26 PM Revision 1c505f17: Merge pull request #3452 from phil-davis/ifgroup-name: Renato Botelho
03:14 PM Revision b835c2dd: Fix #7173 Interface Group Name cannot contain dash: Phil Davis
02:09 PM Revision 581e88dd: Sync translations from Zanata: Renato Botelho
02:00 PM Bug #7180: Disabled OpenVPN clients are not shaded in the gui: Applied in changeset commit:070379bbc0cf84d82f52a0adfe2bdc6014695f7e. Anonymous
01:50 PM Bug #7180 (Feedback): Disabled OpenVPN clients are not shaded in the gui: Fixed copy/paste error.
Thanks for the report. Anonymous
01:19 PM Bug #7180 (Resolved): Disabled OpenVPN clients are not shaded in the gui: When I disable an openvpn client, it's not indicated in the clients page. All clients appear the same, active.
Lin... Mark Wiater
02:00 PM Revision 4c506e60: Remove broken items from japanese translation: Renato Botelho
01:55 PM Revision 1bbdab13: Required fields for VPN pages: Phil Davis
12:53 PM Revision 464186e3: Add zanata.xml and exclude it from base pkg: Renato Botelho
12:52 PM Revision 37ccf3c0: Update translation files: Renato Botelho
12:45 PM Revision 6d0a122c: Update pot PATH: Renato Botelho
12:44 PM Revision 08025068: Add .zanata-cache to .gitignore: Renato Botelho
12:32 PM Revision 33cf05ac: Move pot file out of locale languages directories: Renato Botelho
12:13 PM Revision 10eaf773: Re-generate pot: Renato Botelho
11:08 AM pfSense Packages Bug #6928 (Feedback): freeRADIUS, logging with "Access-Reject" not work in mysql table radpostauth: Renato Botelho
09:45 AM Bug #7178 (Feedback): pfSense themes don't handle package XML field without <description> tag properly: Unable to reproduce using:
Ubuntu Firefox
macOS Firefox, Safari, Chrome
Tried pfSense and Compact red themes. ... Anonymous
02:44 AM Bug #7178 (Rejected): pfSense themes don't handle package XML field without <description> tag properly: See
Compact-Red (working properly): https://forum.pfsense.org/index.php?topic=124759.msg689034#msg689034
pfSense (... Kill Bill
09:34 AM Todo #7160 (Feedback): Mark Required Fields on GUI Pages: Renato Botelho
09:19 AM Todo #7160: Mark Required Fields on GUI Pages: PR https://github.com/pfsense/pfsense/pull/3451 is the last set of changes for this. Phillip Davis
09:21 AM Feature #7122: Add filters to various dashboard widgets: I think that is it. Unless anyone has another favorite, the dashboard widgets can be given a last test and this can b... Phillip Davis
08:00 AM pfSense Packages Feature #7179: Package Filer into 2.3: Also did xmlrpc 2.4 adjustments:
https://github.com/pfsense/FreeBSD-ports/pull/277/commits/8d27c452ce42ca2ef0d65b65b... Mathias Möller
04:57 AM pfSense Packages Feature #7179 (Resolved): Package Filer into 2.3: Pull Request to include the filer package in pfSense >= 2.3
https://github.com/pfsense/FreeBSD-ports/pull/277 Mathias Möller
03:46 AM Bug #7166: During bandwidth test 4860 with 2.4 got Fatal trap 12: page fault while in kernel mode: Tests repeated as instructed by Constantine - SG4860 did not crash with 2.4 built on Mon Jan 30 22:08:41 CST 2017
Vladimir Lind
12:43 AM Bug #7149: igb driver queue related crashes: Updated to the lastest snapshot (Mon Jan 30 22:08:41 CST 2017), set queues to 2 and tried this on a DMZ host for a fe... Anonymous

01/30/2017

08:34 PM Bug #7177 (Duplicate): IPv6 Monitor IP does not seem to propagate: Duplicate with #7176. Let's close this one. Luiz Souza
08:24 PM Bug #7177: IPv6 Monitor IP does not seem to propagate: Duplicated Issue please close. Chris Palmer
08:20 PM Bug #7177 (Duplicate): IPv6 Monitor IP does not seem to propagate: 2.3.3 snaps work. This particular install uses a 6to4 tunnel from the ISP.
Setting "Gateway Monitor IP" in 2.4 sna... Chris Palmer
08:31 PM Bug #7149 (Feedback): igb driver queue related crashes: This commit fix a few obvious issues in igb: https://github.com/pfsense/FreeBSD-src/commit/215ddb035593bc4cee275b9dbb... Luiz Souza
08:30 PM Bug #7166 (Feedback): During bandwidth test 4860 with 2.4 got Fatal trap 12: page fault while in kernel mode: This commit fix a few obvious issues in igb: https://github.com/pfsense/FreeBSD-src/commit/215ddb035593bc4cee275b9dbb... Luiz Souza
12:28 AM Bug #7166: During bandwidth test 4860 with 2.4 got Fatal trap 12: page fault while in kernel mode: The FreeBSD PR also suggest that disabling the LEGACY_TX support (and ALTQ support altogether) would also fix the cra... Luiz Souza
12:21 AM Bug #7166: During bandwidth test 4860 with 2.4 got Fatal trap 12: page fault while in kernel mode: Seems like a know bug in FreeBSD (or sort of): https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=208409#c11
Also d... Luiz Souza
08:19 PM Bug #7176 (Resolved): IPv6 Monitor IP does not seem to propagate: 2.3.3 snaps work. This particular install uses a 6to4 tunnel from the ISP.
Setting "Gateway Monitor IP" in 2.4 sna... Chris Palmer
03:54 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: Luiz Otavio O Souza wrote:
> Should work now: https://github.com/pfsense/FreeBSD-src/commit/91384809a74dc98ef0d2a173... Greg Siemon
12:30 AM Bug #7066 (Feedback): vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: Should work now: https://github.com/pfsense/FreeBSD-src/commit/91384809a74dc98ef0d2a173718bd79bd77c13bb Luiz Souza
03:36 PM Revision 51685157: Required fields for System pages: (cherry picked from commit 153c3aa61fe65c51d584a57c032a4805048e3062) Phil Davis
03:35 PM Revision ac9759a2: Merge pull request #3449 from phil-davis/required-fields-system: Renato Botelho
03:33 PM Revision 7620266f: Misc cleanups at get_pkg_info(): * rename function args to be clearer what they do ($local_only was quite ambiguous, at first sight it could mean any ... Stilez y
03:33 PM Revision c6995b29: fix copy/paste - I think!: (cherry picked from commit 2f633b526075b2ed5e0e160ef6f0d025b509bd70) Stilez y
03:33 PM Revision 1f9edebb: use wrapped version of pkg info -e instead: (cherry picked from commit e5f96a2cb3c0cad0c828148bd7b8d45c130a9b17) Stilez y
03:33 PM Revision 5e446a25: get_pkg_info() fallback using pkg info if no local copy of repo catalog (resubmit): Resubmit of PR #3157 with fix.
The issue in #3157 was that `pkg info` and `pkg search`, undocumented in man pages, s... Stilez y
03:33 PM Revision 0f7f09f3: Merge pull request #3418 from stilez/patch-38: Renato Botelho
03:24 PM pfSense Packages Feature #2825: OpenBGPd: Add options prepend-neighbor and prepend-self: Hello,
I know it's been a long time since this thread was started, but we started using the openBGPd package and not... Lucas Jackson
02:57 PM Revision 153c3aa6: Required fields for System pages: Phil Davis
02:21 PM Bug #7157: Traffic graphs cause the tab to crash when run in the background: Think ive found the source of the background leak in a growing list of timer objects waiting for a 'requestAnimationF... Pi Ba
01:59 PM Revision 678c6a56: Fixed #7171: Moved setHelpText() to helpers file Steve Beaver
01:20 PM Bug #7174: OpenVPN Server and Client not detecting Hardware Cryto: Kill Bill wrote:
> I'd hope that is intentional fix, since enabling HW crypto there actually makes performance _sign... James Williams
12:51 PM Bug #7174: OpenVPN Server and Client not detecting Hardware Cryto: I'd hope that is intentional fix, since enabling HW crypto there actually makes performance _significantly_ worse.
... Kill Bill
12:48 PM Bug #7174 (Duplicate): OpenVPN Server and Client not detecting Hardware Cryto: PC Engines APU2C4, AMD GX412TC SOC CPU.
Cryptographic Hardware AES-NI CPU-based Acceleration enabled.
Dashboard sho... James Williams
01:04 PM Bug #7175 (Not a Bug): SIP MESSAGE UDP packets not passed despite rules & pcaps showing otherwise: I have two pfSense boxes in failover configuration both running NanoBSD 2.3.2-RELEASE (amd64) and a VoIP server on th... Sean Pappalardo
12:32 PM Revision 129a4370: More required fields for NAT pages: (cherry picked from commit 877be5e6205ada2608b364f57150010ba473e66d) Phil Davis
12:31 PM Revision 65b8c1ed: Required fields in NAT pages: (cherry picked from commit f2e58c16307795f572ff443e999c54eb6a9839e7) Phil Davis
12:31 PM Revision edfefd7e: Required fields in diagnostics: (cherry picked from commit 3e2028f4dca359e715058d2c35ae0df5b939657e) Phil Davis
12:29 PM Revision f25e48e4: More required fields for Interface pages: (cherry picked from commit fb572e810abe247c273c27ffafb129430b13be1f) Phil Davis
12:27 PM Revision eb75a6be: Use gettext on Username and Password: (cherry picked from commit e52b5a409faa41222a4ff0c917355eb66d0ff19a) Phil Davis
12:27 PM Revision 23f933df: Required fields in Interfaces pages: (cherry picked from commit 1095b20410963e748fe13268e6fa8f35ccce2319) Phil Davis
12:26 PM Revision 5c914c00: Required fields in Status pages: (cherry picked from commit f311d3ba11572364488ee25ca9df08a33e42a089) Phil Davis
12:26 PM Revision 927c0074: Remaining required fields for Diag pages: (cherry picked from commit fe54f09154f4116ceea6897bff54a624f1eb63bc) Phil Davis
12:26 PM Revision 5c9dcd19: Required fields for firewall*.php: (cherry picked from commit 8a1b5c561f93611b711eb4e7b58ccb4990577d8e) Phil Davis
12:26 PM Revision a6caa27e: Required fields for Captive Portal: (cherry picked from commit c06865be6de6b164d06ee9bb1768dfe6829d783c) Phil Davis
12:25 PM Revision 57965f9b: Required fields in Services pages: (cherry picked from commit 24b82516e0baac87316245427e870a36fbcda4ac) Phil Davis
12:14 PM Bug #7173 (Resolved): [2.3.3+] Interface groups with a '-' (dash) in name are not handled correctly, breaking firewall rules: To reproduce:
- Create an interface group named like @prefix-test@
- Try to add some firewall rule there and save.
... Kill Bill
11:13 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: Final version. Changed static chars to pointers for exit script call. As it's possible to have multiple interfaces on... Martin Wasley
06:52 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: Additions and changes to dhcp6c Martin Wasley
10:42 AM Revision 30cc3aec: Merge pull request #3448 from phil-davis/required-fields-services: Renato Botelho
10:05 AM Bug #7172 (New): Sorting by hostname in Services > DHCP Server > LAN should be "natural" (alphanumeric friendly): Under "Services > DHCP Server > LAN" if I sort the 'static mappings' table by the hostname column, I get results like... Sean McBride
09:35 AM Bug #7171 (Resolved): system_advanced_firewall.php: setHelpText is changing the field label also.: Anonymous
09:28 AM Bug #7171: system_advanced_firewall.php: setHelpText is changing the field label also.: Works, thanks Phillip Davis
08:10 AM Bug #7171: system_advanced_firewall.php: setHelpText is changing the field label also.: Applied in changeset commit:678c6a56bce239ac152e3d9fe051ad8508ab3ce3. Anonymous
08:01 AM Bug #7171 (Feedback): system_advanced_firewall.php: setHelpText is changing the field label also.: Newly added span element accommodated
Function moved to pfSenseHelpers.js Anonymous
04:16 AM Bug #7171 (Resolved): system_advanced_firewall.php: setHelpText is changing the field label also.: I suspect this is a side-effect of the recent changes for marking required fields.
e.g. in system_advanced_firewall.... Phillip Davis
09:27 AM Revision 24b82516: Required fields in Services pages: Phil Davis
08:37 AM pfSense Packages Bug #6928: freeRADIUS, logging with "Access-Reject" not work in mysql table radpostauth: Konstantin Ab wrote:
> Hmmm, it seems to work!
> records appear in Table
Thanks for testing. Added to this monst... Kill Bill
08:31 AM Bug #7147 (Resolved): pfsense-utils.inc - is_ipaddr_configured() does not work properly with some IPv6 formats: I'll close this ticket as the original issue was fixed by Phillip's commit.
The whole IPv6 input, store and output... Luiz Souza
06:15 AM Revision 04daf8b1: Misc cleanups at get_pkg_info(): * rename function args to be clearer what they do ($local_only was quite ambiguous, at first sight it could mean any ... Stilez y
03:47 AM Bug #7005: IPsec mss clamping not working for mobile clients: That was backported to RELENG_2_3 in commit https://github.com/pfsense/pfsense/commit/93ab5b34e4e0b20baaf10fdd52119dd... Phillip Davis
02:22 AM Bug #7005: IPsec mss clamping not working for mobile clients: Hi,
You've listed this as resolved in 2.4, what's the current timeframe for the release of 2.4? If it is some way ... Joe Tiedeman
03:06 AM Bug #5993: dhcp6c not started until an RA received: OK, I can see dhcp6c is doing its job and launching RTSOLD, which is launching rc.newwanipv6. As no-one else has repo... Martin Wasley
12:34 AM Bug #7143 (Confirmed): filterdns is triggering every 16 seconds for hosts even when the DNS record has not changed: Ooops, there is a loop in rc.newipsecdns, which triggers a filterdns reload, which runs rc.newipsecdns again (where y... Luiz Souza

01/29/2017

10:25 PM Bug #7143: filterdns is triggering every 16 seconds for hosts even when the DNS record has not changed: I'll take it, something is fishy here. Luiz Souza
09:46 PM Bug #7119 (Resolved): Changing LAGG attributes results in a panic/crash: Luiz Souza
09:46 PM Bug #7124 (Resolved): Kernel panic when configuring 6to4 on a interface: Yeah, that's a different issue, can you open a new ticket for it ?
Thanks! Luiz Souza
06:14 PM Bug #7124: Kernel panic when configuring 6to4 on a interface: Actually just shows "Pending".
Other (2.3) box works. Chris Palmer
06:12 PM Bug #7124: Kernel panic when configuring 6to4 on a interface: Seems right now I cannot monitor the gateway though if I ping from diagnostics the ping returns fine.
Gateway moni... Chris Palmer
04:51 PM Bug #7124: Kernel panic when configuring 6to4 on a interface: Confirmed working here as well. Thank You!
Chris Palmer
12:52 PM Bug #7124: Kernel panic when configuring 6to4 on a interface: Thanks, i can no longer reproduce the panic.
If 6to4 itself works properly now i cant tell, i have not used it bef... Pi Ba
09:45 PM Bug #7117 (Resolved): Bump sched buckets limiter log spam in console: Luiz Souza
09:27 PM pfSense Packages Bug #6928: freeRADIUS, logging with "Access-Reject" not work in mysql table radpostauth: Hmmm, it seems to work!
records appear in Table Konstantin Ab
03:46 AM pfSense Packages Bug #6928: freeRADIUS, logging with "Access-Reject" not work in mysql table radpostauth: Can you please test this patch? https://github.com/pfsense/FreeBSD-ports/commit/cdf9b05e966f311b8ae83c7a3158479bd5c9e... Kill Bill
12:15 AM pfSense Packages Bug #6928: freeRADIUS, logging with "Access-Reject" not work in mysql table radpostauth: i tryed diable SQL. No problem.
I'm watching the security problems in this table. Konstantin Ab
03:45 PM Bug #5993: dhcp6c not started until an RA received: Martin Wasley wrote:
> Just post the dropbox link here..
Fair enough. I looked through the pcap and there's nothi... J L
08:18 AM Bug #5993: dhcp6c not started until an RA received: Just post the dropbox link here.. Martin Wasley
08:45 AM Bug #3703: MTU not applied on reboot: Is it Resolved ?
2.3.2-RELEASE-p1 (amd64)
built on Fri Sep 30 14:36:56 CDT 2016
FreeBSD 10.3-RELEASE-p9
I hav... koo kim
08:38 AM pfSense Packages Feature #6022: Consider MLVPN for bonded VPN: +1
It's too bad that pfSense do not have this functionality yet
Many of us use multiple WANs please consider MLVP... koo kim
08:23 AM Bug #7169 (Duplicate): MAC address for an interface is not set back to the actual hardware value if a manually entered MAC value in General Configuration under Interfaces is cleared: Known limitation / Duplicate. See #7011 Jim Pingle
02:16 AM Bug #7169 (Duplicate): MAC address for an interface is not set back to the actual hardware value if a manually entered MAC value in General Configuration under Interfaces is cleared: Steps to reproduce
1) Set the MAC address to an interface manually in the General Configuration for an Interface
... Aleksanteri Aaltonen
08:16 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: OK, before I do a PR upstream for this, there is one issue left. This only applied in the default mode not dhcp6witho... Martin Wasley
05:20 AM pfSense Packages Bug #7170: FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: Added a huge deprecation warning to the page as part of https://github.com/pfsense/FreeBSD-ports/pull/272. Kill Bill
04:41 AM pfSense Packages Bug #7170 (Resolved): FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: I'd rather nuke this redundant thing altogether, however not sure how to handle the transition for unfortunate users ... Kill Bill

01/28/2017

10:30 PM Bug #5993: dhcp6c not started until an RA received: Martin Wasley wrote:
> Just upload them to a dropbox and send me a link.
Sure thing. Can I email you a private link? J L
08:09 AM Bug #5993: dhcp6c not started until an RA received: Just upload them to a dropbox and send me a link. Martin Wasley
08:21 PM Bug #7124 (Feedback): Kernel panic when configuring 6to4 on a interface: Fixed.
Relevant commit: https://github.com/pfsense/FreeBSD-src/commit/c050d42a2646d2e582c46cc6f61531150ffb6cb9 Luiz Souza
05:47 PM pfSense Packages Bug #6928: freeRADIUS, logging with "Access-Reject" not work in mysql table radpostauth: Does uncommenting this break things if SQL is *disabled*? The whole thing is a damn complex heap of code, not really ... Kill Bill
03:32 PM Bug #7168 (Closed): Vague kernel messages in system log: I'm running the a recent 2.4 beta snapshot. I'm periodically seeing vague kernel messages in the system log.
Some ... Daryl Morse
02:49 PM Revision b39cebf6: Fixed #7154: Remove duplication in javascript Steve Beaver
08:54 AM Bug #7154: firewall_nat_edit JS function check_for_aliases(): Yes, the code did nothing effective. I guess that someone had started thinking about what smarts to put in it, had "t... Phillip Davis
08:50 AM Bug #7154: firewall_nat_edit JS function check_for_aliases(): Applied in changeset commit:b39cebf6f09b7d110d810e3ccff0136751aa1718. Anonymous
08:44 AM Bug #7154 (Feedback): firewall_nat_edit JS function check_for_aliases(): Looks like that duplication (several times over) goes back to at least 2.0!
https://github.com/pfsense/pfsense/blo... Anonymous
08:12 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: Also added an EXIT as when the No-release flag it's useful to know that dhcp has exited. Would it be be useful to hav... Martin Wasley
07:16 AM Bug #7166: During bandwidth test 4860 with 2.4 got Fatal trap 12: page fault while in kernel mode: Adding "hw.igb.num_queues=1" to /boot/local.conf helps resolving this issue.
_sysctl hw.igb.num_queues
hw.igb.num_q... Constantine Kormashev

01/27/2017

09:04 PM Bug #7119: Changing LAGG attributes results in a panic/crash: Yes, the messages does not seem related with the original bug (crash at ifconfig laggX destroy).
Let's open a new ... Luiz Souza
06:53 PM Bug #7119: Changing LAGG attributes results in a panic/crash: Seems better now, it doesn't crash. Logs of activity in the log, though:... Jim Pingle
03:33 PM Bug #7119 (Feedback): Changing LAGG attributes results in a panic/crash: Fixed in latest snapshot.
Relevant commits:
https://github.com/pfsense/FreeBSD-src/commit/b5996bd8278c710ce6859... Luiz Souza
08:58 PM Bug #6099: igmpproxy does not recognize upstream interface: I downloaded the 2.3.3 nightly but this fix doesn't appear to be included there, so I built a copy of the proxy from ... Andy Shulman
07:18 PM Bug #7167 (Resolved): Error creating higher VLAN ID on SG-1000: SG-1000 connected to an Apple Airport Extreme ac on the LAN interface.
Created a VLAN interface with tag 1003 and as... Netnewb net
06:48 PM Bug #5993: dhcp6c not started until an RA received: Martin.
I got a packet capture from the WAN upon bootup (all looks good there), a copy of the system and DHCP logs... J L
02:33 PM Bug #6448 (Resolved): Mousing over aliases on disabled rules makes hint difficult to read: Jim Pingle
02:07 PM Bug #6448: Mousing over aliases on disabled rules makes hint difficult to read: Looks good here. Thanks! Chris Linstruth
01:24 PM Revision 19c25a53: Fix indentation: (cherry picked from commit c18d0d12b3e683f07b4bac933240332cd4d95829) Jack Booth
01:24 PM Revision d5f0b97e: Changed max repeat alert to use sprintf get text: (cherry picked from commit 950342400bdc75b35c01442c400bd53a18015818) Jack Booth
01:24 PM Revision 7533bdcf: Bug #7164 Limit NTP time source fields to the maximum number saved to configuration.: (cherry picked from commit 5a1d67b17d485697e19ef49d66e8e5f91e7e884d) Jack Booth
01:24 PM Revision 99a49467: Merge pull request #3446 from jskyboo/master: Renato Botelho
12:47 PM Bug #7143 (Feedback): filterdns is triggering every 16 seconds for hosts even when the DNS record has not changed: I've pushed a fix on filterdns 1.0_16 that will make it to run defined cmd only when IP address changes. Renato Botelho
09:14 AM Bug #7166: During bandwidth test 4860 with 2.4 got Fatal trap 12: page fault while in kernel mode: I can reproduce this bug.
It happens when I use especial traffic pattern for cisco t-rex which included several pcap... Constantine Kormashev
06:54 AM Bug #7166 (Resolved): During bandwidth test 4860 with 2.4 got Fatal trap 12: page fault while in kernel mode: During bandwidth test 4860 on today 2.4 got `Fatal trap 12: page fault while in kernel mode`
FreeBSD pfSense.localdo... Constantine Kormashev
08:33 AM pfSense Packages Bug #6404: FreeRADIUS Does Not Start After Upgrade: All merged. Please test with 1.7.5_1 when available; if it still does not work, describe exactly what actions make it... Kill Bill
07:25 AM Bug #7164 (Feedback): NTP page allows adding more time server rows than it saves to the configuration: PR has been merged, thanks! Renato Botelho
02:47 AM Bug #7116 (New): a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: Renato Botelho

01/26/2017

09:12 PM Bug #7165: NAT: Source: <port - range> -> Destination:<a single port from 'source' range> -> error message: The message is about Redirect Target Port (as Jim mentions) which is a field further down the page. The message came ... Phillip Davis
04:47 PM Bug #7165 (Rejected): NAT: Source: <port - range> -> Destination:<a single port from 'source' range> -> error message: Most likely what you're trying to do is invalid. Post on the forum for setup assistance.
Include the following inf... Jim Pingle
04:34 PM Bug #7165 (Rejected): NAT: Source: <port - range> -> Destination:<a single port from 'source' range> -> error message: For some reason latest pfSense version (2.3.2-RELEASE-p1) is not allowing me to forward NAT range 1100 - 65000 to the... Lemi Nah
04:42 PM Revision c18d0d12: Fix indentation: Jack Booth
04:28 PM Bug #6860 (Feedback): Monitoring (RRD) graphs return "unknown" step value: I added the missing step (43200) to the lookup table. Jared Dillard
04:27 PM pfSense Packages Bug #6748 (Feedback): rrd_fetch_json.php returns html when user is unauthorized (causes "Error: SyntaxError: Unexpected token <"): I added a better error message in the case that JSON doesn't get returned, but a hint for the user to check that they... Jared Dillard
04:26 PM Bug #6138 (Feedback): Long hostnames overlap the "time" title in the Monitoring graphs: The positions are hard coded at this time so it is hard to account for really long hostnames, but I moved the values ... Jared Dillard
02:36 PM Revision e8256d16: Fix indent and spaces: Renato Botelho
02:35 PM Revision 31677494: Escape $ to avoid replacing it by PHP variables: Renato Botelho
12:52 PM pfSense Packages Bug #6404: FreeRADIUS Does Not Start After Upgrade: See
- https://github.com/pfsense/FreeBSD-ports/pull/267
- https://github.com/pfsense/FreeBSD-ports/pull/268 Kill Bill
12:50 PM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: Without quick it didn't work either. Only changing it to 'pass' made it work. Pi Ba
11:25 AM Bug #7116 (Not a Bug): a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: According to docs you shouldn't use quick on match rules: https://doc.pfsense.org/index.php/What_are_Floating_Rules
... Renato Botelho
11:02 AM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: Have you tried to remove 'quick' from this match rule? Renato Botelho
12:35 PM Bug #6333: Bootup starts/restarts dpinger multiple times: Renato Botelho wrote:
> Luiz, when you are touching it, it would be nice to add code on PHP side to deal with interf... Renato Botelho
12:28 PM Feature #6591 (Duplicate): Configurable DDNS check IP services: This was actually a duplicate of #6373 which had more info. I noted the PR there. Jim Pingle
12:28 PM Feature #6373 (Resolved): RFC2136 DDNS could be more configurable to improve security: Items 1 and 2 were completed under #6591 which was resolved by PR https://github.com/pfsense/pfsense/pull/3037 Jim Pingle
12:25 PM Feature #6374: Provide sample server-side logic to report peer's IP address for use with DDNS: PHP Example:... Jim Pingle
12:18 PM Todo #6606: Adapt captive portal to work without multi-instance ipfw: Last I heard from Renato this is still missing some important pieces:
* Missing a mixed table with IP and MAC addr... Jim Pingle
12:13 PM Bug #6664 (Resolved): It's impossible to use HE.NET tunnel iface as a parent for OpenVPN instances: Between #6663 and commit:b42ccf1504eca5e40bfb49b0afb688fffe293a7a this is fixed. Jim Pingle
12:06 PM Bug #6833 (Resolved): Wifi channel change applies only on reboot: PR https://github.com/pfsense/pfsense/pull/3169 was merged back in October.
Tested on a system on 2.4 with wireles... Jim Pingle
11:54 AM Bug #7149: igb driver queue related crashes: See also:
#7079
#6257
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=148807
https://bugs.freebsd.org/bugzilla/... Jim Pingle
11:50 AM Bug #7079: ClamAV C-ICAP causing Kernel Panic and System Crash: I suspect this is not actually from clamav but that is what generates enough load in your environment to trigger it.
... Jim Pingle
11:45 AM Bug #7140 (Resolved): User with page-help-all as first priv is redirected to Dashboard Help: We merged PR for this and tested, should be fine now. Jim Pingle
11:36 AM Bug #6820 (Resolved): Configure WAN Interface Boot Delay: I'm also not seeing a long delay any more. I suspect the fix for #7042 might have also fixed this. The previous delay... Jim Pingle
11:35 AM Revision 7ae710d4: Merge pull request #3410 from marjohn56/RTSOLD-lock-creation,-dhcp6c-launch-&-kill-changes-#3: Renato Botelho
11:27 AM Revision 20290428: Typo in pppoe_subnet input error message: (cherry picked from commit 01799e5bd5f363e21c744752760ab0cc591713da) Phil Davis
11:26 AM Revision 6a987342: Merge pull request #3445 from phil-davis/patch-1: Renato Botelho
11:03 AM Bug #7150 (Resolved): shell option before 1st reboot/wizard - can't login: Works Renato Botelho
10:35 AM Bug #6938 (Duplicate): DNS with OpenVPN gateway specified is routed through wrong interface. 2.4 regression.: This is a duplicate of #6883 Renato Botelho
10:25 AM Bug #6880: Multiple DHCP6 WAN connections leads to multiple dhcp6c clients: Luke Hamburg wrote:
> Thanks. I first checked out master and didn't find that commit... then drank some coffee & re... Renato Botelho
08:08 AM Bug #6880: Multiple DHCP6 WAN connections leads to multiple dhcp6c clients: Thanks. I first checked out master and didn't find that commit... then drank some coffee & realized it's a PR still ... → luckman212
07:46 AM Bug #6880: Multiple DHCP6 WAN connections leads to multiple dhcp6c clients: If you update to the latest snapshot then you can try patch ID: cdb6c8ac8e65f98a2ac0fa469c963c055a5c522d
There are... Martin Wasley
10:10 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: This is cool... it works nicely. I'm still messing around with it but I've changed the strings to full reply words su... Martin Wasley
07:11 AM Revision 2f633b52: fix copy/paste - I think!: Stilez y
05:04 AM Bug #6630 (Resolved): Set Defaults for Graphs - Traffic/WAN + Packets/WAN doesn't work: Renato Botelho
05:03 AM Bug #6132 (Resolved): race condition in OpenVPN startup: Renato Botelho
05:01 AM Bug #7151 (Resolved): Interface Group Name hint is misleading: Renato Botelho
03:52 AM Revision 95034240: Changed max repeat alert to use sprintf get text: Jack Booth
03:22 AM Revision 5a1d67b1: Bug #7164 Limit NTP time source fields to the maximum number saved to configuration.: Jack Booth
03:19 AM Revision 01799e5b: Typo in pppoe_subnet input error message: Phil Davis
02:24 AM Bug #7164: NTP page allows adding more time server rows than it saves to the configuration: Most likely limited to 10 because historically anything above 10 best servers was discarded as a potential peer [1]. ... Kill Bill
12:02 AM Bug #7036: 2.4 ZFS on RCC-VE 2440 hangs: UFS was mentioned as an issue as well, but wasn't tested? J Harnick

01/25/2017

09:40 PM Bug #7164: NTP page allows adding more time server rows than it saves to the configuration: I can't answer the question of why other than it is generally not recommended to specify a large number of time serve... Jack Booth
09:30 PM Bug #7164: NTP page allows adding more time server rows than it saves to the configuration: Why is the page limited to 10 servers? Is this limitation enforced elsewhere in the system? Anonymous
09:28 PM Bug #7164: NTP page allows adding more time server rows than it saves to the configuration: PR https://github.com/pfsense/pfsense/pull/3446 Jack Booth
09:19 PM Bug #7164 (Resolved): NTP page allows adding more time server rows than it saves to the configuration: The NTP configuration page has a button to add more time servers to use as a time source. Only 10 servers are saved t... Jack Booth
06:48 PM Revision 32dcdc7c: Merge pull request #3442 from phil-davis/monitor-reload: Renato Botelho
06:47 PM Revision a634183d: Merge pull request #3441 from phil-davis/required-fields7: Renato Botelho
06:46 PM Revision 7efef9dd: Captive Portal auth method is required: When creating a new Captive Portal Zone the user can fail to select any of the Authorization Method radio buttons. No... Phil Davis
06:46 PM Revision e019f686: Merge pull request #3440 from phil-davis/patch-2: Renato Botelho
06:44 PM Revision c5a174c7: CP HTTPS Forwards setHelp format: Add full stop and spacing between sentences.
(cherry picked from commit 0046a7da59fb3015512ce181cba6b37516c0b76f) Phil Davis
06:44 PM Revision 9b70602d: Merge pull request #3439 from phil-davis/patch-1: Renato Botelho
06:43 PM Revision 3607eac5: Changed default state of GPS init command auto correct tool.: (cherry picked from commit 2559f37539cf37221f8fddd7c0b7928e8e3969a8) Jack Booth
06:43 PM Revision c977d6b1: Feature #7159 Add GPS initialization command auto correct tool: Corrects malformed NMEA sentences by calculating and appending the checksum and adding missing special characters "$"... Jack Booth
06:43 PM Revision 99515a18: Merge pull request #3433 from jskyboo/master: Renato Botelho
04:56 PM Bug #7149: igb driver queue related crashes: I also can confirm this issue on my box as well.
I have 6 igb (Intel pro 1000) interfaces (4 on the asus mainboard... Philipp Haefelfinger
03:42 PM Revision 89decc45: Merge pull request #3443 from phil-davis/patch-3: Renato Botelho
03:14 PM Bug #7157: Traffic graphs cause the tab to crash when run in the background: Pretty sure they will crash in the foreground also.. Think ive found a leak in the code though.
The nv.utils.inherit... Pi Ba
02:40 PM Bug #7075 (Feedback): firewall states show negative value for total bytes processed: Should be fixed now: https://github.com/pfsense/FreeBSD-ports/commit/2f5f4b5ac53ead4c12761273a3cc332b08806e26
Unfo... Luiz Souza
02:31 PM Bug #6630: Set Defaults for Graphs - Traffic/WAN + Packets/WAN doesn't work: Not seeing this issue either, Set as Defaults is working fine for me too. Malcolm Hussain-Gambles
02:29 PM Bug #6132: race condition in OpenVPN startup: Fresh install and one OpenVPN server seems to work fine for me with fresh install from Dec and no probs with latest b... Malcolm Hussain-Gambles
02:25 PM Bug #7151: Interface Group Name hint is misleading: "Only letters (A-Z), digits (0-9), '-' and '_' are allowed. The group name cannot end with a digit." appears in lates... Malcolm Hussain-Gambles
01:45 PM Revision 0e5ee5ae: Fix cut-paste error in Breadcrumb Links: Phil Davis
01:37 PM Bug #6820 (Feedback): Configure WAN Interface Boot Delay: I was seeing this issue on all my test VMs too but on recent snapshots it seems to be OK, probably some change have f... Renato Botelho
01:29 PM Bug #6811 (Resolved): pkg_edit.php rowhelper is broken with multiple distinct rowhelpers per page.: 3 months with no complains is like enough time to consider it fixed Renato Botelho
01:24 PM Bug #7036 (Not a Bug): 2.4 ZFS on RCC-VE 2440 hangs: After internal tests, we could install it successfully on 2440 using ZFS. Discussion will continue on forum thread li... Renato Botelho
01:22 PM Bug #6911 (Rejected): no network on hyperv-v 2012 R1: There is no much we can do at this point for a release that seems to be unsupported by Microsoft according https://su... Renato Botelho
01:20 PM Bug #6880: Multiple DHCP6 WAN connections leads to multiple dhcp6c clients: Ok great, I will definitely try 2.4b then. If you happen to know which commits are relevant to that fix I'd love to l... → luckman212
01:17 PM Bug #6880: Multiple DHCP6 WAN connections leads to multiple dhcp6c clients: Its not, it's a problem that appears from time to time and is quite intermittent. In 2.4b changes have been made whic... Martin Wasley
11:08 AM Bug #6880: Multiple DHCP6 WAN connections leads to multiple dhcp6c clients: I have a dual WAN 2.3.2-p1 system with only one of the WANs configured for DHCP6 (not PPPoE, just Ethernet) and I am ... → luckman212
12:44 PM Feature #7159 (Feedback): Auto correct checksum and missing special characters for NTP GPS initialization commands.: PR has been merged, thanks! Renato Botelho
11:08 AM Bug #5993: dhcp6c not started until an RA received: And the fixes are for dhcp6c the WAN client, not dhcpd the LAN server. Different things.
First, enable dhcp6c debu... Martin Wasley
10:52 AM Bug #7163: IGMP Proxy does not valid inputs: If someone confirms what the validation requirements are, I can make it so. Phillip Davis
10:51 AM Bug #7163 (Resolved): IGMP Proxy does not valid inputs: IGMP Proxy Edit
Threshold: no validation is done, I can put "abc" "-42"... - I think it must be a positive integer... Phillip Davis
09:05 AM Revision 815398fb: Standardize rules reloading message: Phil Davis
08:49 AM Bug #7143: filterdns is triggering every 16 seconds for hosts even when the DNS record has not changed: This only happens when config file uses the directive 'cmd', in this case, ipsec session is using it:... Renato Botelho
08:43 AM Bug #5319: Error message "No config named" in charon daemon: With 2.3.2, in a hub and spoke model of IPsec tunnels, when the hub was restarted, about 10 percent of the spoke mode... Alex Vergilis
07:58 AM pfSense Packages Bug #6988: SNORT Package PHP memory error: Your logs are way too huge! Configure something sane on Logs Mgmt tab. (You can override the memory limit in https://... Kill Bill
07:47 AM Bug #7162 (Rejected): XMLRPC lock in backup node if offline: That is not a supported configuration, in part due to the issues you have noted. Without connectivity for the seconda... Jim Pingle
03:45 AM Bug #7162 (Rejected): XMLRPC lock in backup node if offline: I have 2 Netgate SG-4860 installed with pfsense v. 2.3.2_1, with 1 carp vip on wan. The backup machine, however, rema... Stefano Aldeni
07:23 AM Bug #7124 (Confirmed): Kernel panic when configuring 6to4 on a interface: Renato Botelho
07:06 AM Revision c06865be: Required fields for Captive Portal: Phil Davis
06:36 AM Revision e5f96a2c: use wrapped version of pkg info -e instead: Stilez y
06:34 AM Revision 0ee22f36: Captive Portal auth method is required: When creating a new Captive Portal Zone the user can fail to select any of the Authorization Method radio buttons. No... Phil Davis
05:56 AM Bug #7123 (Resolved): Kernel panic when setting TCP MD5 Password in OpenBGP: Renato Botelho
05:10 AM Bug #7123: Kernel panic when setting TCP MD5 Password in OpenBGP: Renato Botelho wrote:
> Possible fix was cherry-picked to FreeBSD-src, please try again on next snapshot
Great, t... Rolf Sommerhalder
05:23 AM Revision 0046a7da: CP HTTPS Forwards setHelp format: Add full stop and spacing between sentences. Phil Davis
04:31 AM pfSense Packages Bug #6305: Quagga problems updating routes / mistakenly showing "kernel"-routes while they are not: https://github.com/pfsense/FreeBSD-ports/pull/265 - that's not a real solution obviously, so kindly leave this bug op... Kill Bill
01:47 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: Use this too, just makes the logging a little tidier. If this is implemented then the dhcp6withoutRA PR I have curren... Martin Wasley
01:04 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: Yes, attached..
As dhcp6c only calls the script function when the above reply states happen you don't get quite as... Martin Wasley

01/24/2017

11:48 PM Revision 47f2a4b9: Revert change to css: Steve Beaver
10:03 PM Feature #4606: PKI : CA signing external CSR: I'd also love to see this functionality. Many Ubiquiti devices only support outputting a CSR instead of importing a k... Andy Sayler
06:07 PM Revision 2559f375: Changed default state of GPS init command auto correct tool.: Jack Booth
05:18 PM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: Got a source patch for that? If I do manage to try it, I am not keen on running binaries from outside sources. Jim Pingle
02:40 PM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: Try this...
These are pulled from the reply state, and are what is displayed in dhcp6c logs, well mine at least. T... Martin Wasley
12:31 PM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: It would probably be good enough if dhcp6c properly populated REASON with what actually happened. If it's a simple re... Jim Pingle
12:19 PM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: I can have a look at dhcp6c, easy enough to add something. What do you want it do do, set an env stating what trigger... Martin Wasley
05:04 PM Revision d6f1fbac: Require at least one tag value in a QinQ entry: (cherry picked from commit 4085eb055850e07540145c87fd6d3b5912a865dd) Phil Davis
05:04 PM Revision bb742516: Use is_intrange() to validate QinQ tag range: Note: is_intrange() only tells us that the range is good and might be delimited by a "-" or a ":", so if we want to t... Phil Davis
05:04 PM Revision 077474cd: QinQ Tag Value Validation: Tags must be in the range 1 to 4094
Flag the various input errors and only report them once each.
(cherry picked from... Phil Davis
05:04 PM Revision 2ae9fc67: QinQ Edit fix row add delete: 1) Make the row delete button actually work
2) Do not allow ranges that go backwards like 25-20 or just "-" or 1-side... Phil Davis
05:04 PM Revision ceaa7b0d: Merge pull request #3424 from phil-davis/patch-8: Renato Botelho
05:00 PM Revision b285836a: Merge pull request #3438 from phil-davis/required-fields-shaper-name: Renato Botelho
04:09 PM Revision 40dcb4b6: Require Name field in Shaper: Phil Davis
04:05 PM Revision 821a9e49: change opacity on disabled rows to fix #6448: Jared Dillard
04:04 PM Revision d9bad9e8: change opacity on disabled rows to fix #6448: Jared Dillard
03:48 PM Revision 4085eb05: Require at least one tag value in a QinQ entry: Phil Davis
03:42 PM Revision 71ff866c: Use is_intrange() to validate QinQ tag range: Note: is_intrange() only tells us that the range is good and might be delimited by a "-" or a ":", so if we want to t... Phil Davis
02:22 PM Revision f7d54cdd: Merge pull request #3435 from phil-davis/required-fields6: Renato Botelho
02:17 PM Revision 59455106: Introduce is_intrange() to validate a range of integers delimited by ':' or '-': Renato Botelho
02:17 PM Revision ee956d19: Introduce is_intrange() to validate a range of integers delimited by ':' or '-': Renato Botelho
01:54 PM Revision 61d1d189: Merge pull request #3436 from NOYB/System_Update_Settings_-_GitSync_Options_master: Renato Botelho
01:54 PM Revision c6e02f8b: Merge pull request #3166 from NOYB/System_Update_Settings_-_GitSync_Options: Renato Botelho
12:33 PM Revision c0f396d5: Merge pull request #3434 from phil-davis/required-fields5: Renato Botelho
12:32 PM Revision 3a8f123d: Merge pull request #3430 from phil-davis/required-fields3: Renato Botelho
12:31 PM Revision 55325215: Merge pull request #3419 from phil-davis/required-fields2: Renato Botelho
12:24 PM Revision cb4a6274: Validate POSTed interface description: Copy-paste error from code that used $_REQUEST. This is more correct to use $_POST.
(cherry picked from commit b07adc... Phil Davis
12:24 PM Revision 318f514f: Interface description should be required: I was blanking out stuff to see what input error messages came about fields that are required. I was surprised that t... Phil Davis
12:21 PM Revision 773ad30c: Merge pull request #3421 from phil-davis/patch-4: Renato Botelho
12:18 PM Revision 99a90e92: Interface Group Name should be required: Do not allow it to be blank. Do not bother with all the other checks on the group name if it is blank.
(At the moment... Phil Davis
12:14 PM Revision 259013c5: Merge pull request #3422 from phil-davis/patch-6: Renato Botelho
12:01 PM Revision 8a1b5c56: Required fields for firewall*.php: Phil Davis
10:21 AM Bug #6448: Mousing over aliases on disabled rules makes hint difficult to read: This is fixed in the following commit: https://github.com/pfsense/pfsense/commit/d9bad9e8863bb91cb568b3b41470e22a20d9... Jared Dillard
10:10 AM Bug #6448 (Feedback): Mousing over aliases on disabled rules makes hint difficult to read: Applied in changeset commit:d9bad9e8863bb91cb568b3b41470e22a20d9fa6e. Anonymous
09:49 AM Bug #7128: system_advanced_network.php - fugly IPv6 over IPv4 input field alignment: Hmmm? This just broke the vertical alignment altogether and did nothing with the input field?
!https://i.imgsafe.o... Kill Bill
09:43 AM Bug #7086: stale zfs file systems: Thank you. Vladimir Suhhanov
05:24 AM Bug #7086: stale zfs file systems: Vladimir Putin wrote:
> What are the risks to continue using updated versions without reinstall?
There are no ris... Renato Botelho
09:42 AM Bug #6836: Wrong queue length on "/status_queues.php" page under heavy traffic: Sorry, I see no reason, just outrage and not from my side. Vladimir Suhhanov
05:34 AM Bug #6836 (Rejected): Wrong queue length on "/status_queues.php" page under heavy traffic: rejected for reasons shown in-thread. Jim Thompson
09:41 AM Feature #6914: unbound access-control lists: Merged. Kill Bill
09:29 AM Revision f9a6f8a0: System Update Settings - GitSync Options: Add GitSync options selectors to post update GitSync.
Minimal, Diff, Show Files, Show Command, Dry Run
The GitSync o... NOYB NOYB
09:09 AM Revision ce66d4a4: Update interfaces.inc: Martin Wasley
08:49 AM pfSense Packages Bug #6490 (Rejected): Squid Reverse Proxy: Disabling an entry on the "Redirects" tab creates duplicate entries for the previous entry in the squid config: Jim Pingle
08:35 AM pfSense Packages Bug #6490: Squid Reverse Proxy: Disabling an entry on the "Redirects" tab creates duplicate entries for the previous entry in the squid config: Cannot reproduce, plus suspect it's more or less a duplicate of another non-reproducible issue filed by the same user... Kill Bill
07:25 AM pfSense Packages Bug #7161 (Resolved): pfSense-pkg-bind9 changelog pointing to non-existent location: The changelog link should point to https://github.com/pfsense/FreeBSD-ports/tree/devel/dns/pfSense-pkg-bind9 while it... Kill Bill
07:11 AM pfSense Packages Feature #3754 (Closed): Add APC Back-UPS CS to NUT: Jim Pingle
07:08 AM pfSense Packages Feature #3754: Add APC Back-UPS CS to NUT: No feedback, related to ancient package version, plus apparently not a pfSense issue either. Retest with current pack... Kill Bill
07:11 AM Revision fe54f091: Remaining required fields for Diag pages: Phil Davis
06:35 AM pfSense Packages Bug #5869: Squid non-functional in transparent mode in 2.3: Here’s the mail I got recently for my problem
I was not able to get to these sites at the time of my first post but ... john Smith
05:51 AM Revision fb572e81: More required fields for Interface pages: Phil Davis
05:06 AM Revision 877be5e6: More required fields for NAT pages: Phil Davis
04:04 AM Revision 8c23d92a: Feature #7159 Add GPS initialization command auto correct tool: Corrects malformed NMEA sentences by calculating and appending the checksum and adding missing special characters "$"... Jack Booth
03:49 AM Revision e0b7a2e7: QinQ Tag Value Validation: Tags must be in the range 1 to 4094
Flag the various input errors and only report them once each. Phil Davis
03:40 AM Bug #7149: igb driver queue related crashes: Rolf Sommerhalder wrote:
...
> This morning, we have added this potential work around on three systems. No crashes ... Rolf Sommerhalder
02:30 AM Revision f6b61e97: Build acme pkg: Jim Pingle
01:53 AM Revision e52b5a40: Use gettext on Username and Password: Phil Davis
01:50 AM Revision b101627a: Merge branch 'master' into patch-4: Phil Davis
01:46 AM Revision c1dc085b: Merge branch 'master' into patch-6: Phil Davis
01:39 AM Revision f311d3ba: Required fields in Status pages: Phil Davis

01/23/2017

11:28 PM Feature #7159: Auto correct checksum and missing special characters for NTP GPS initialization commands.: PR https://github.com/pfsense/pfsense/pull/3433 Jack Booth
09:30 PM Feature #7159 (Resolved): Auto correct checksum and missing special characters for NTP GPS initialization commands.: The current NTP GPS configuration has a field for users to customize the GPS initialization commands. These NMEA comm... Jack Booth
10:05 PM Todo #7160 (Resolved): Mark Required Fields on GUI Pages: Redmine 7083 provided the infrastructure to mark GUI fields as "required" and the UI implementation underlines fields... Phillip Davis
09:02 PM Revision 400d36cc: traffic-graphs, setting to keep updating them while invisible: - allow showing different graphs to be shown on different browser tabs (dont use localstorage for graphs to query)
- ... Pi Ba
08:59 PM Revision 5ac882de: Merge pull request #3384 from PiBa-NL/traficgraphs-backgroundupdates: Jared Dillard
08:24 PM Revision 43916e63: Parse GPS initialization commands, extended status for GPSs other than SureGPS and make optional.: - Parse GPS initialization commands for explicitly configured GPS commands
- Add extended GPS status if GPGSV or GPGG... Jack Booth
08:24 PM Revision 38dbf00d: Merge pull request #3426 from jskyboo/master: Renato Botelho
08:21 PM Revision 5e82a83a: Force compress for where_is_ipaddr_configured check_localip: (cherry picked from commit f0b1358dfe520ad3b771127127daed970ba2c0a0) Phil Davis
08:21 PM Revision c528a112: Force compress for where_is_ipaddr_configured: (cherry picked from commit cde28bfa0e11f268485ec1f6ccb73a3a2f66448f) Phil Davis
08:21 PM Revision 5050b792: Always force compress when calling Net_IPv6: (cherry picked from commit 587995fb57f91894d1f8eb6b296a9fe2fa111fac) Phil Davis
08:16 PM Revision c720e0ee: Merge pull request #3414 from phil-davis/ipv6-compress: Renato Botelho
08:15 PM Revision 5af7e158: Interface description must be unique including case: (cherry picked from commit 3692adec74d438eedb41a7be8eae9cd58f6fe5c1) Phil Davis
08:14 PM Revision 02356dff: Merge pull request #3431 from phil-davis/if-ifg-alias-name-validation: Renato Botelho
08:13 PM Revision a53cd6c8: Required fields in Load Balancer pages: (cherry picked from commit 275d769e0d99e02984e42e2328cbcb681f9b87fb) Phil Davis
08:13 PM Revision 71fcb8c7: Merge pull request #3432 from phil-davis/required-fields4: Renato Botelho
08:11 PM Revision 895ab5ce: firewal_nat_edit function name typo: This unrelated fix is in a big diff listing of other stuff related to a proposed RADIUS enhancement https://github.co... Phil Davis
08:11 PM Revision 1fe0b0d7: Merge pull request #3427 from phil-davis/patch-9: Renato Botelho
08:09 PM Revision 31fa9121: 6RD Border Relay input error message: This field is labelled "6RD Border Relay" on the main UI. It confused me for a moment when I got this message "6RD Bo... Phil Davis
08:09 PM Revision 0ffd8fcd: Merge pull request #3420 from phil-davis/patch-3: Renato Botelho
08:09 PM Revision 121a1ac2: Add required fields to firewall_aliases_import: (cherry picked from commit b6368b73d921a29e87cc1cd02ab912024ba66d0a) Phil Davis
08:08 PM Revision 5ea52460: Merge pull request #3417 from phil-davis/patch-2: Renato Botelho
08:08 PM Revision c9b688ae: Display input error when no aliases to import: Currently if you put nothing in the "Aliases to import" box and press Save then the page just reloads - nothing saves... Phil Davis
08:08 PM Revision c5fd6583: Merge pull request #3416 from phil-davis/patch-1: Renato Botelho
08:06 PM Revision b4a2199a: Merge pull request #3415 from phil-davis/required-fields1: Renato Botelho
07:59 PM Bug #7086: stale zfs file systems: What are the risks to continue using updated versions without reinstall? Vladimir Suhhanov
05:20 AM Bug #7086: stale zfs file systems: Tobias Wigand wrote:
> Fresh install worked without problems. Can't say anything about the original problem, not eno... Renato Botelho
07:59 PM Revision 28514a36: Remove unused variable $cfglckkeyconsumers: Renato Botelho
07:59 PM Revision 42ea8f9a: Remove unused variable $cfglckkeyconsumers: Renato Botelho
05:15 PM Revision 278eb7de: Fixed #7155 by replacing toggle with jQuery: Steve Beaver
04:50 PM Revision 81fd2101: Fixed #6958: Steve Beaver
04:34 PM Bug #6630 (Feedback): Set Defaults for Graphs - Traffic/WAN + Packets/WAN doesn't work: This is not longer an issue. It must have been fixed in a previous commit. Jared Dillard
04:00 PM Revision 07432828: Fix comment: Steve Beaver
03:52 PM Revision b33d32a5: Fixed #7128: Steve Beaver
03:45 PM Feature #7158 (Rejected): Captive Portal should have logs facilities for blocked sites: Whenever I have problems connecting to sites from client software that does not have proxy settings there is no way t... Jose Torres
03:11 PM Bug #7156: Change in 'Block bogon networks' or 'Block private netowrks' GUI options kills routing entries for OpenVPN interfaces.: It could probably be documented in a way that calls more attention to it, but it is mentioned in the documentation wh... Jim Pingle
03:06 PM Bug #7156: Change in 'Block bogon networks' or 'Block private netowrks' GUI options kills routing entries for OpenVPN interfaces.: How is one supposed to know that this is a requirement? It's exactly not self-evident that changing something as sim... Karl Fife
02:23 PM Bug #7156 (Rejected): Change in 'Block bogon networks' or 'Block private netowrks' GUI options kills routing entries for OpenVPN interfaces.: Any time you save/apply changes on an assigned OpenVPN interfaces you have to restart the VPN. It's always been that ... Jim Pingle
01:57 PM Bug #7156 (Rejected): Change in 'Block bogon networks' or 'Block private netowrks' GUI options kills routing entries for OpenVPN interfaces.: It appears that toggling in the 'Block bogon networks' and/or 'Block private netowrks' GUI option kills the automatic... Karl Fife
03:07 PM Bug #7157 (Resolved): Traffic graphs cause the tab to crash when run in the background: When the "Keep graphs updated when on inactive tab" option is selected for traffic graphs it can cause the tab to loc... Jared Dillard
03:05 PM Revision a4567aaa: Merge pull request #3428 from phil-davis/patch-10: Jim Pingle
03:03 PM Revision 378ed59b: Merge branch 'master' into if-ifg-alias-name-validation: Phil Davis
02:57 PM Revision 93abbfaa: Merge branch 'master' into patch-4: Phil Davis
02:46 PM Revision 8c164995: Interface groups setHelp message: Mention that it is not allowed to end in a digit. Phil Davis
02:20 PM Revision d24f8149: Merge pull request #3429 from phil-davis/patch-11: Jim Pingle
02:16 PM Revision 34891a27: firewal_nat_edit function name typo: This unrelated fix is in a big diff listing of other stuff related to a proposed RADIUS enhancement https://github.co... Phil Davis
01:48 PM Revision 0be9d722: Fixed #6967: Steve Beaver
01:19 PM Revision bea43151: Merge pull request #3412 from phil-davis/help-redirect: Jim Pingle
11:32 AM Revision 275d769e: Required fields in Load Balancer pages: Phil Davis
11:14 AM Bug #7155 (Resolved): services_dhcp_relay.php: Section hide/show gets out of synch with enable checkbox: Replace ->toggle code with jQuery for reliability Anonymous
11:11 AM Bug #5993: dhcp6c not started until an RA received: Barring unforeseen changes, you should not expect the behaviour to change between now and the release version. I've b... Daryl Morse
02:20 AM Bug #5993: dhcp6c not started until an RA received: Thanks.
I'm on the 2.4 snapshot and upon reboot I have to disable and enable the DHCPv6 server for it to properly ... J L
12:53 AM Bug #5993: dhcp6c not started until an RA received: J L wrote:
> Daryl Morse wrote:
> > I installed the additional patch that Martin provided to address the request fo... Daryl Morse
12:29 AM Bug #5993: dhcp6c not started until an RA received: Daryl Morse wrote:
> I installed the additional patch that Martin provided to address the request for changes. I've ... J L
11:00 AM Bug #6958 (Feedback): services_dhcp_relay.php: Needs to be converted to more recent rowhelper standard: Applied in changeset commit:81fd21019cd0de8300fa0480cff1973d58d28e03. Anonymous
10:22 AM pfSense Packages Bug #6350: Auto Config Backup - Uncaught Exception: Steve Beaver wrote:
> Fixed by populating version table when info request fails
I don't remember what package ver... Simon Trigona
09:10 AM pfSense Packages Bug #6350 (Feedback): Auto Config Backup - Uncaught Exception: Fixed by populating version table when info request fails Anonymous
10:00 AM Bug #7128: system_advanced_network.php - fugly IPv6 over IPv4 input field alignment: Applied in changeset commit:b33d32a500fe722035de3efc6a6d50c8cdae6f16. Anonymous
09:53 AM Bug #7128 (Feedback): system_advanced_network.php - fugly IPv6 over IPv4 input field alignment: Anonymous
09:24 AM Bug #6864 (Resolved): Error checking rejects IPv6 addresses with upper case A-F.: Anonymous
09:10 AM Bug #7151 (Feedback): Interface Group Name hint is misleading: Applied in changeset commit:351ef3ef2ac1bbcfb0643a5efc46a3970d06d78c. Phillip Davis
12:05 AM Bug #7151: Interface Group Name hint is misleading: Assuming the real requirement is what is in the validation code, I updated the front-end GUI text in:
https://github... Phillip Davis
09:07 AM Bug #7119: Changing LAGG attributes results in a panic/crash: Here, it still panics + dumps + reboots same as it did originally. Jim Pingle
01:01 AM Bug #7119: Changing LAGG attributes results in a panic/crash: To be more precise: pfSense does not exactly "crash", as it is still ping-able. And SSH shells that were open from be... Rolf Sommerhalder
09:06 AM pfSense Packages Bug #6968 (Rejected): Snort VRT Rules Fail to automatically update SSL read error: Jim Pingle
05:09 AM pfSense Packages Bug #6968: Snort VRT Rules Fail to automatically update SSL read error: Upstream server issue, has nothing to do with pfSense. Close please. Kill Bill
08:42 AM Revision 3692adec: Interface description must be unique including case: Phil Davis
08:32 AM Bug #7150 (Feedback): shell option before 1st reboot/wizard - can't login: It should be fixed on next round of snapshots Renato Botelho
07:50 AM Bug #6967: DH Groups 22, 23, 24 missing from Phase 2 selection GUI: Applied in changeset commit:0be9d722226790674bd35c8087286442e5766232. Anonymous
07:48 AM Bug #6967 (Feedback): DH Groups 22, 23, 24 missing from Phase 2 selection GUI: Anonymous
06:19 AM Revision 1095b204: Required fields in Interfaces pages: Phil Davis
05:43 AM Bug #7121 (Resolved): freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: Renato Botelho
05:13 AM Bug #7121: freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: All that could be done here is fixed with https://github.com/pfsense/FreeBSD-ports/pull/254 and https://github.com/pf... Kill Bill
05:18 AM Revision d799b943: interfaces.php display correct descr in group name message: Use the description that the user attempted to enter, not the original (and probably valid) description. Phil Davis
05:00 AM Revision 351ef3ef: Fix #7151 Misleading setHelp for Interface Group Name: Might as well use the same text as is given to the user in the error message already in this code. Phil Davis
04:51 AM Bug #7149: igb driver queue related crashes: On Supermicro SuperServers 5018D-FN8T with X10SDV-TP8F motherboards, that feature six igb and two ix NICs, we experie... Rolf Sommerhalder
03:00 AM Revision ada9b6bc: firewal_nat_edit function name typo: This unrelated fix is in a big diff listing of other stuff related to a proposed RADIUS enhancement https://github.co... Phil Davis
01:55 AM Revision d627983d: Parse GPS initialization commands, extended status for GPSs other than SureGPS and make optional.: - Parse GPS initialization commands for explicitly configured GPS commands
- Add extended GPS status if GPGSV or GPGG... Jack Booth

01/22/2017

11:54 PM Revision 625dc217: System Update Settings - GitSync Options: Add GitSync options selectors to post update GitSync.
Minimal, Diff, Verbose, Dry Run
The GitSync options have utili... NOYB NOYB
10:33 PM Bug #7154: firewall_nat_edit JS function check_for_aliases(): I suspect the requirement might be:
If the user enters a port alias in any of destination from/to (dest begin, des... Phillip Davis
10:27 PM Bug #7154 (Resolved): firewall_nat_edit JS function check_for_aliases(): The code in this function seems to be ineffective. e.g. it has sequences like:
@
if ($('#dstbeginport_cust').val... Phillip Davis
05:26 PM Bug #7153 (Resolved): pkg-utils.inc - register_all_installed_packages() does not handle packages that are missing XML: After seeing "Running last steps of Status_Traffic_Totals installation" on every reboot, I did some digging into the ... Kill Bill
04:40 PM Revision 477d849b: QinQ Edit fix row add delete: 1) Make the row delete button actually work
2) Do not allow ranges that go backwards like 25-20 or just "-" or 1-side... Phil Davis
01:52 PM Revision 3effec3b: Interface Group Name should be required: Do not allow it to be blank. Do not bother with all the other checks on the group name if it is blank.
(At the moment... Phil Davis
01:37 PM Revision b07adc11: Validate POSTed interface description: Copy-paste error from code that used $_REQUEST. This is more correct to use $_POST. Phil Davis
12:30 PM Revision f57a3d90: Interface description should be required: I was blanking out stuff to see what input error messages came about fields that are required. I was surprised that t... Phil Davis
11:49 AM Revision 1a9ec5cc: 6RD Border Relay input error message: This field is labelled "6RD Border Relay" on the main UI. It confused me for a moment when I got this message "6RD Bo... Phil Davis
10:57 AM Bug #6852: Commit 8f86722 breaks DHCPv6 leases status page: does reverting this commit in 2.3.3 with a patch (i dont know how) fix this its really annoying not having this popul... Michael Kellogg
10:33 AM Revision 587988f6: get_pkg_info() fallback using pkg info if no local copy of repo catalog (resubmit): Resubmit of PR #3157 with fix.
The issue in #3157 was that `pkg info` and `pkg search`, undocumented in man pages, s... Stilez y
10:23 AM Revision f2e58c16: Required fields in NAT pages: Phil Davis
10:14 AM Revision b6368b73: Add required fields to firewall_aliases_import: Phil Davis
10:05 AM Revision f99bbf5e: Display input error when no aliases to import: Currently if you put nothing in the "Aliases to import" box and press Save then the page just reloads - nothing saves... Phil Davis
10:01 AM Bug #7147: pfsense-utils.inc - is_ipaddr_configured() does not work properly with some IPv6 formats: I'll take this one. Luiz Souza
03:52 AM Bug #7147: pfsense-utils.inc - is_ipaddr_configured() does not work properly with some IPv6 formats: Yes, option (c) is the most flexible - let users put in whatever format they like (within reason) and deal with it in... Phillip Davis
03:32 AM Bug #7147: pfsense-utils.inc - is_ipaddr_configured() does not work properly with some IPv6 formats: I'd rather avoid input validation here. Would just upset users for no good reason. Kill Bill
03:17 AM Bug #7147: pfsense-utils.inc - is_ipaddr_configured() does not work properly with some IPv6 formats: There are a few approaches to a full fix throughout the system:
a) Catch this at input validation, always store a "c... Phillip Davis
03:08 AM Bug #7147: pfsense-utils.inc - is_ipaddr_configured() does not work properly with some IPv6 formats: PR https://github.com/pfsense/pfsense/pull/3414 should fix the particular bug reported here and make a start on fixin... Phillip Davis
02:28 AM Bug #7147: pfsense-utils.inc - is_ipaddr_configured() does not work properly with some IPv6 formats: Yeah, they definitely should be compressed before comparing. I hit this case since I've copied the local LAN IP from ... Kill Bill
02:18 AM Bug #7147: pfsense-utils.inc - is_ipaddr_configured() does not work properly with some IPv6 formats: Net_IPv6 validation allows compressed addresses that are not strictly in the "correct" compressed form.
e.g.
2001:2... Phillip Davis
09:58 AM Bug #7152 (New): Unbound / DNS Resolver issue if "Register DHCP static mappings in the DNS Resolver" set before wildcard DNS custom options: Tested on:
2.3.2-RELEASE-p1 (amd64)
built on Tue Sep 27 12:13:07 CDT 2016
FreeBSD 10.3-RELEASE-p9
To create ... Rudolph Sand
09:49 AM Revision 3e2028f4: Required fields in diagnostics: Phil Davis
08:57 AM Revision f0b1358d: Force compress for where_is_ipaddr_configured check_localip: Phil Davis
08:52 AM Revision cde28bfa: Force compress for where_is_ipaddr_configured: Phil Davis
08:28 AM Revision 587995fb: Always force compress when calling Net_IPv6: Phil Davis
08:04 AM Bug #7151 (Resolved): Interface Group Name hint is misleading: On the Interface Groups Edit page, Group Name field, it says "No numbers or spaces are allowed. Only characters: a-zA... Phillip Davis
06:03 AM Bug #7150 (Resolved): shell option before 1st reboot/wizard - can't login: _(Posted "on forum":https://forum.pfsense.org/index.php?topic=124335.0 and confirmed by another user)_
Default cle... Stilez y
02:55 AM Bug #7149 (Resolved): igb driver queue related crashes: Some 2.4 installations tend to crash out of nowhere related to igb driver queues.
Setting... Anonymous

01/21/2017

05:41 PM Feature #4242: Two Factor or OTP Authentication for Admin Interface: Ping. I'd love this as a built in feature! I'm using the local database and dont want to get into managing another sy... Dan Journo
04:37 PM Revision 3903add3: Handle cases when help is the first priv a user has: Phil Davis
12:03 PM Bug #5993: dhcp6c not started until an RA received: I installed the additional patch that Martin provided to address the request for changes. I've tested both patches to... Daryl Morse
09:38 AM Bug #7086: stale zfs file systems: Fresh install worked without problems. Can't say anything about the original problem, not enough knowledge in that ar... Anonymous
08:50 AM Bug #7148 (Duplicate): Spoofed mac addresses on VLAN interfaces apply to the same physical interface: I was replacing a virtual machine with a physical pfSense box. In effort to minimize the change experienced by the ne... Øyvind Hvidsten
04:15 AM Bug #6099: igmpproxy does not recognize upstream interface: You can find the sources to build the FreeBSD/pfSense package at: https://github.com/pfsense/FreeBSD-ports/tree/devel... Harald Gutmann

01/20/2017

08:28 PM Revision 5c803c91: Changed logging calls and style correction.: Martin Wasley
07:13 PM Revision b2bb4970: Add a parameter to install_cron_job to stop it from performing its own write_config. Adjust base system calls to match. Ticket #7146: Packages may still need the old behavior but need tested individually. Once all function calls are confirmed to work ... Jim Pingle
07:10 PM Revision df1dcfa5: Merge pull request #3409 from phil-davis/interfaces-required-fields: Renato Botelho
06:57 PM Revision d22617f3: Internationalization (getttext): Please also backport to 2.3
(cherry picked from commit d0718a0f9031f9dc7c6eff3e47e472178c900ece) NOYB NOYB
06:57 PM Revision 4ccbceef: Merge pull request #3405 from NOYB/Internationalization: Renato Botelho
04:54 PM Bug #7147 (Resolved): pfsense-utils.inc - is_ipaddr_configured() does not work properly with some IPv6 formats: This one is working:... Kill Bill
04:28 PM Bug #6099: igmpproxy does not recognize upstream interface: Greg Myran wrote:
> > Where can I download the latest version of IGMPProxy? Or is the only way to upgrade my pfSense... Lars Veldcholte
04:20 PM Bug #6099: igmpproxy does not recognize upstream interface: > Where can I download the latest version of IGMPProxy? Or is the only way to upgrade my pfSense to the dev version... Greg Myran
03:23 PM Revision 5d81840b: Fix #7086: Copy files over from /var before umount it and move to MFS: Renato Botelho
03:09 PM Revision 32a85c63: Example of setting required items: Phil Davis
02:42 PM Bug #5993: dhcp6c not started until an RA received: Martin Wasley wrote:
> PR #3410
I've been testing this PR since this morning. I've found that pfsense reliably ac... Daryl Morse
12:52 PM Bug #5993: dhcp6c not started until an RA received: PR #3410 Martin Wasley
02:42 PM Revision cdb6c8ac: RTSOLD lock creation, dhcp6c launch & kill changes #3: Added lock file creation and check to RTSOLD script creation. This is to
prevent mutliple launches of dhcp6c, this ap... Martin Wasley
02:02 PM Bug #7119: Changing LAGG attributes results in a panic/crash: Snapshots from this morning still crash with igb hardware NICs. Rolf Sommerhalder
11:18 AM Bug #7119: Changing LAGG attributes results in a panic/crash: I couldn't reproduce it on a VM using em driver, probably something specific to igb as mentioned Renato Botelho
12:28 PM Revision c744b0de: Refinement to #7083: Provides setRequired() Javascript function to facilitate making an input required or not dynamically Steve Beaver
11:24 AM Bug #7146: install_cron_job() causes inexplicable issues when saving package configuration: Saw that, just merged+cherry-picked it all around.
FYI: Uses of install_cron_job in packages:... Jim Pingle
11:06 AM Bug #7146: install_cron_job() causes inexplicable issues when saving package configuration: Thanks for looking into this. Meanwhile, I did https://github.com/pfsense/FreeBSD-ports/pull/261 since it's generally... Kill Bill
10:52 AM Bug #7146: install_cron_job() causes inexplicable issues when saving package configuration: I don't see anything in the base system that would be affected by removing the write_config() from install_cron_job()... Jim Pingle
10:50 AM Bug #7146: install_cron_job() causes inexplicable issues when saving package configuration: The squid issue seems indeed fixed by nuking the @<custom_add_php_command>@ tag. Still would seem desirable to let ju... Kill Bill
10:28 AM Bug #7146: install_cron_job() causes inexplicable issues when saving package configuration: There may yet be a problem with install_cron_job() doing a write the way it does, but the squid problem appears to be... Jim Pingle
08:50 AM Bug #7146: install_cron_job() causes inexplicable issues when saving package configuration: I reproduced this on multiple 2.3.3 boxes.Anything but */$minutes * * * * causes the issue. E.g., tried just changing... Kill Bill
08:41 AM Bug #7146: install_cron_job() causes inexplicable issues when saving package configuration: Oddly enough I can't seem to reproduce this, at least on 2.4.
I suspect adding this just after the install_cron_jo... Jim Pingle
05:58 AM Bug #7146 (Closed): install_cron_job() causes inexplicable issues when saving package configuration: So, this commit https://github.com/pfsense/FreeBSD-ports/pull/254 caused Squid to be unable to save the configuration... Kill Bill
09:23 AM Bug #7086 (Feedback): stale zfs file systems: A fresh install using next round of snapshots is required to validate the fix. Thanks! Renato Botelho
05:30 AM Bug #7086 (Assigned): stale zfs file systems: Yes, it broke ZFS install and I see why. I'll push a fix soon Renato Botelho
02:55 AM Bug #7086: stale zfs file systems: Tried a fresh install, maybe there is a problem with this change?
It gave me... Anonymous
06:13 AM Revision d0718a0f: Internationalization (getttext): Please also backport to 2.3 NOYB NOYB
05:56 AM Bug #7083: Put back some visual hint for required fields: I have added a new function to pfSenseHelpers.js to allow an input to be dynamically set as required (or not). e.g.:
... Anonymous
01:06 AM Bug #7083: Put back some visual hint for required fields: Dependency between Dial On Demand checkbox and Idle Timeout field Phillip Davis
12:35 AM Bug #7083: Put back some visual hint for required fields: Sometimes the "required" status of a field is data dependent and needs to be set/cleared as the page loads depending ... Phillip Davis
05:22 AM Bug #7121: freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: The change broke saving General settings in Squid. https://forum.pfsense.org/index.php?topic=124218.0; will get that ... Kill Bill

01/19/2017

10:23 PM Bug #7075: firewall states show negative value for total bytes processed: Yes, that is true. It depends on what "long" does in the environment in which the C is compiled. When compiled in the... Phillip Davis
05:55 PM Bug #7075: firewall states show negative value for total bytes processed: This isn't a PHP problem. pfSense_get_pf_rules() is a PHP function written in C as part of php56-pfSense-module. It c... Matt Perry
09:06 AM Bug #7075: firewall states show negative value for total bytes processed: These are both 32-bit installs (i386). So MAXINT will be int(2147483647) (2 gig). The numbers are returned by:
$rule... Phillip Davis
09:20 PM Feature #4606: PKI : CA signing external CSR: +1 - I would very much like the ability to use the pfSense managed CA for signing my other internal CSRs within my ne... Ian Gallagher
06:55 PM Revision fcf164d6: Make sure all ZFS volumes are mounted during boot and only mount /var and /tmp when MFS is disabled. Fixes #7086: Renato Botelho
06:24 PM Revision 57602458: Merge pull request #3403 from phil-davis/no-empty-menu: Jim Pingle
06:15 PM Revision b29aa6e5: Allow external links to show in menus as they will never match privileges and they are not items that need to be restricted.: Jim Pingle
05:26 PM Revision 67ccbdd3: Add "required field" highlighting: Steve Beaver
05:19 PM Revision 1086b725: Merge pull request #3378 from phil-davis/patch-2: Jim Pingle
04:45 PM Revision 19fe69e6: fields with <required/> set now pre-pend an asterisk to the field title, thereby causing it to be displayed as a required field (currently an underline): Steve Beaver
04:23 PM Revision 57026d17: Fixed #7083: When composing an element with a form.class or via XML, prepend a '*' to the title to indicate a required field. This... Steve Beaver
03:36 PM Feature #5549 (Resolved): Additional DNS entries in General Setup would be good for 3 or more WAN's: This seems to work fine as-is. No need to check/validate someone's unintentional misconfiguration. At least it did er... Jim Pingle
03:25 PM Feature #6591 (Resolved): Configurable DDNS check IP services: Works well. I setup my own and tested it out, it queried the script as expected and used the result. Jim Pingle
03:10 PM Bug #7139 (Resolved): User with some pages plus Help cannot use page help: Works, thanks! Jim Pingle
06:30 AM Bug #7139 (Feedback): User with some pages plus Help cannot use page help: Applied in changeset commit:166540830275318c8dec9199d8a9ee0e605f606a. Phillip Davis
03:52 AM Bug #7139: User with some pages plus Help cannot use page help: The "?" or the Help menu item "About this page" point to a URL like:
help.php?page=services_dhcp.php
The code tha... Phillip Davis
03:48 AM Bug #7139 (Resolved): User with some pages plus Help cannot use page help: 1) Create a new user "u1". Give the user some page privs (e.g. Services-DHCP) plus "Help - all pages".
2) Logout of ... Phillip Davis
03:10 PM Bug #7141 (Resolved): There is no way to grant just access to Services->UPNP: Works, thanks! Jim Pingle
06:30 AM Bug #7141 (Feedback): There is no way to grant just access to Services->UPNP: Applied in changeset commit:a5a899e4388f2737a6d1cdc82c7325c20fb72ee4. Phillip Davis
05:52 AM Bug #7141: There is no way to grant just access to Services->UPNP: Mentioned in forum https://forum.pfsense.org/index.php?topic=123520.0
PR https://github.com/pfsense/pfsense/pull/3402 Phillip Davis
05:27 AM Bug #7141 (Resolved): There is no way to grant just access to Services->UPNP: If you add the privs for pkg.php, pkg_edit.php then all the various package menu items of packages that use package X... Phillip Davis
03:08 PM Bug #7136 (Resolved): OpenVPN not binding to IP Aliases -> NO LOGS generated: Failed without the new code, works fine with the fix in place. Looks good. Jim Pingle
06:30 AM Bug #7136 (Feedback): OpenVPN not binding to IP Aliases -> NO LOGS generated: Applied in changeset commit:ddf99718d5f1f4545483c39d3759fdfbb788b0fb. Phillip Davis
12:44 AM Bug #7136: OpenVPN not binding to IP Aliases -> NO LOGS generated: Yes, the code does not even try to start such an OpenVPN instance, thus there are no logs.
This PR fixes it on my te... Phillip Davis
02:51 PM Bug #7133 (Resolved): services_router_advertisements.php: Interface drop-down is not showing the user-configured interface name: Works now Jim Pingle
02:23 PM Bug #7112: Traffic Graphs resets graph when browser tab changes: https://github.com/pfsense/pfsense/pull/3384 Michael Kellogg
01:55 PM Bug #7112: Traffic Graphs resets graph when browser tab changes: Pablo Trincavelli wrote:
> The new traffic graphs resets graphs when the actual browser tab is changed, so the graph... Michael Newton
01:32 PM Bug #6099: igmpproxy does not recognize upstream interface: I have the same issue to IPTV as Alexandre, and have the same version. Is there anyway to update the patch fix for IG... Jeremy Lewis
01:19 PM Bug #6099: igmpproxy does not recognize upstream interface: Alexandre Paradis wrote:
> Is the change also available to 2.3.3 branch ?
I have the same question. Where can I f... Lars Veldcholte
01:29 PM Bug #2073: APIPA broadcasts forwarded by route-to: Jim Pingle wrote:
> There is no GUI knob to disable it, but there is a setting. You can set it in the config.xml dir... Brandon Jackson
12:59 PM Bug #7086 (Feedback): stale zfs file systems: I've reviewed which volumes are created during install on ZFS and also made changes on rc script to mount /var and /t... Renato Botelho
12:31 PM Revision 7c3f1189: Do not show empty menus: Phil Davis
12:28 PM Revision b1894db1: Fix #7141 Add a priv for UPNP: so users can grant access to Services->UPNP
Note: Status->UPNP already has a priv and it works.
(cherry picked from c... Phil Davis
12:28 PM Revision 173f1c0c: Merge pull request #3402 from phil-davis/patch-6: Renato Botelho
12:27 PM Revision 5a1afaa6: Fix #7139 Accessing help about this page: from a user that does not have admin or all page privilege.
(cherry picked from commit 166540830275318c8dec9199d8a9ee... Phil Davis
12:27 PM Revision 2677640d: Merge pull request #3400 from phil-davis/patch-4: Renato Botelho
12:26 PM Revision 9f8751b5: Fix #7136 Start OpenVPN on ordinary VIP: (cherry picked from commit ddf99718d5f1f4545483c39d3759fdfbb788b0fb) Phil Davis
12:26 PM Revision 2c1a810a: Merge pull request #3398 from phil-davis/is_carp_master: Renato Botelho
12:22 PM Revision af4ae33e: Fix copy-paste of ipsec.widget.php file name: Noticed while looking in widget code, might as well fix it.
(cherry picked from commit a80ce1a7e03ca4fa61f83166b747b4... Phil Davis
12:22 PM Revision 1ba100d4: Merge pull request #3397 from phil-davis/patch-3: Renato Botelho
12:21 PM Revision 59ffba2f: Fix #7134 Interface Stats widget ifdescrs not defined: When doing testing I had the Interfaces widget open as well as Interface Statistics. $ifdescrs was already populated ... Phil Davis
12:21 PM Revision 3f8932f8: Merge pull request #3396 from phil-davis/patch-1: Renato Botelho
12:21 PM Revision 6bdee4c1: Merge pull request #3390 from NOYB/Status_/_Interfaces_-_Relinquish_DHCP_Lease: Renato Botelho
12:20 PM Revision 18d05609: Merge pull request #3391 from NOYB/Status_/_Interfaces_-_Relinquish_DHCP_Lease_2_3: Renato Botelho
11:55 AM Bug #5993: dhcp6c not started until an RA received: As they say, this has been an experience.
This whole 5993 started because we needed dhcp6 before RA, and a quick f... Martin Wasley
11:28 AM Bug #7119 (Confirmed): Changing LAGG attributes results in a panic/crash: Still crashes on the latest factory snapshot: Wed Jan 18 19:49:46 CST 2017 Jim Pingle
11:28 AM Bug #7083 (Resolved): Put back some visual hint for required fields: Renato Botelho
11:02 AM Bug #7083: Put back some visual hint for required fields: Works nicely (tested with a recent 2.3.3 snapshot and bunch of packages - squid, ntopng, shellcmd, ftpproxy). Thanks. Kill Bill
10:51 AM Bug #7083: Put back some visual hint for required fields: !required.jpg! Anonymous
10:30 AM Bug #7083: Put back some visual hint for required fields: Applied in changeset commit:57026d17d43a096c3a594a248c183a6889e7956d. Anonymous
10:28 AM Bug #7083: Put back some visual hint for required fields: pkg_edit.php has been updated to automatically add the '*' if <required> is set Anonymous
10:26 AM Bug #7083 (Feedback): Put back some visual hint for required fields: Added:
When composing an element with a form.class or via XML, prepend a '*' to the title to indicate a required f... Anonymous
11:28 AM Revision a5a899e4: Fix #7141 Add a priv for UPNP: so users can grant access to Services->UPNP
Note: Status->UPNP already has a priv and it works. Phil Davis
11:18 AM Bug #7134 (Resolved): Crash in the gui related to widget: Your fix looks good, Phil. The system I could replicate this on is no longer producing errors after a gitsync.
Thanks! Jim Pingle
09:52 AM Revision 16654083: Fix #7139 Accessing help about this page: from a user that does not have admin or all page privilege. Phil Davis
09:32 AM Bug #7145 (Resolved): rc.newwanipv6 running in all cases, even for a renew: dhcp6c calls its script for every action, a new binding or a renew and so on. The problem is that rc.newwanipv6 is ru... Jim Pingle
09:23 AM Bug #7144: Intel NIC loosing connection until reboot: Either way -- driver or hardware (chip or that unit) -- it's not something we can address. It needs replicated in Fre... Jim Pingle
09:19 AM Bug #7144: Intel NIC loosing connection until reboot: Jim Pingle wrote:
> On the contrary, this is almost certainly a hardware issue, or at least a driver issue:
> "Jan ... Guy Van Sanden
09:17 AM Bug #7144 (Rejected): Intel NIC loosing connection until reboot: On the contrary, this is almost certainly a hardware issue, or at least a driver issue:
"Jan 19 12:09:14 kernel ... Jim Pingle
09:13 AM Bug #7144 (Rejected): Intel NIC loosing connection until reboot: Hi
I have a pfsense appliance from applianceshop.eu (https://www.applianceshop.eu/security-appliances/19-rack-app... Guy Van Sanden
08:28 AM Bug #7143 (Closed): filterdns is triggering every 16 seconds for hosts even when the DNS record has not changed: filterdns is triggering every 16 seconds whether the record has changed or not. It happens for IPsec entries and FQDN... Jim Pingle
08:15 AM Bug #7142 (Resolved): IPv6: Floating rules on 6rd enabled WAN interfaces doesn't get bound to wan_stf: Found a bug in the handling of floating rules when they need to be applied to 6rd enabled interfaces (which are split... Kewin Christensen
06:37 AM Revision ddf99718: Fix #7136 Start OpenVPN on ordinary VIP: Phil Davis
05:17 AM Revision a80ce1a7: Fix copy-paste of ipsec.widget.php file name: Noticed while looking in widget code, might as well fix it. Phil Davis
04:37 AM Revision 8f94fc33: Fix #7134 Interface Stats widget ifdescrs not defined: When doing testing I had the Interfaces widget open as well as Interface Statistics. $ifdescrs was already populated ... Phil Davis
04:26 AM Bug #7140 (Resolved): User with page-help-all as first priv is redirected to Dashboard Help: 1) Create a new user.
2) Add "WebCfg - Help pages" priv for the user.
3) Add some other page privs for the user.
4... Phillip Davis
02:47 AM Bug #7138 (Assigned): Pfsense wide dhcpv6 client doesn't recognise ifid statement: Right now a user cannot set a specific ipv6 address on a tracked interface. The interface id is autogenerated based o... Bogdan P

01/18/2017

10:38 PM Bug #7134: Crash in the gui related to widget: If you have just the Interface Statistics widget on the dashboard (and not the Interfaces widget also) then you still... Phillip Davis
02:00 PM Bug #7134 (Feedback): Crash in the gui related to widget: Applied in changeset commit:ffb0c1822875bc0ea1e2b7b73109fa0f97c0b6d2. Jim Pingle
01:43 PM Bug #7134 (Confirmed): Crash in the gui related to widget: This also happens on 2.3.3 Jim Pingle
01:41 PM Bug #7134 (Resolved): Crash in the gui related to widget: From thread : https://forum.pfsense.org/index.php?topic=124155.0
Other people seems to have the same bug.
My ... Alexandre Paradis
10:26 PM pfSense Packages Bug #7127: Authentication fail in AutoConfigBackup package: Confirmed. I just installed version 1.47 and it now works just fine with the mixed case ID. Thanks!!!
... um, y... Brian Davidson
08:41 PM Bug #7124: Kernel panic when configuring 6to4 on a interface: Just want to confirm that this appears to have kept my box from booting. But would restart over and over. No logs to... Chris Palmer
07:49 PM Revision 71d90bbf: Protect against forech errors if this function does not return an array. Fixes #7134: Jim Pingle
07:49 PM Revision ffb0c182: Protect against forech errors if this function does not return an array. Fixes #7134: Jim Pingle
07:28 PM Revision 718432f1: Status / Interfaces - Relinquish DHCP Lease: Send gratuitous DHCP release message to server.
Dependency:
To fully relinquish the DHCP lease, the "RELEASE" reason... NOYB NOYB
07:17 PM Revision 790e2a2f: Use friendly description for RA interface name. Fixes #7133: Jim Pingle
07:06 PM Revision db0a2efc: Status / Interfaces - Match Var Names: Match Form Input and Function Parameter Names with associated Var Name.
Use "ifdescr" as form input name instead of ... NOYB NOYB
05:45 PM Feature #7137 (Duplicate): Add support for Sierra MC7455: pleace add support for Sierra Wireless MC7455 card, thx
Details:
usbconfig -u 1 -a 4 dump_device_desc
ugen1.... Daniel Ziehmayer
05:26 PM Bug #7136 (Resolved): OpenVPN not binding to IP Aliases -> NO LOGS generated: Steps to replicate:
- Create an IP Alias on any interface e.g. 127.0.0.2 on Localhost
- Attempt to bind OpenVPN ser... James Webb
04:09 PM Revision 42f2c3e9: Fixup update_pot.sh adding --from-code to xgettext calls: Renato Botelho
04:09 PM Revision b9f18608: Fixup update_pot.sh adding --from-code to xgettext calls: Renato Botelho
04:08 PM Revision b160ee07: Regenerate pot: Renato Botelho
04:05 PM Revision cdf867ba: Regenerate pot: Renato Botelho
03:32 PM pfSense Packages Bug #7130 (Resolved): Lightsquid 3.0.4_2 HTTP 500: Works Jim Pingle
09:51 AM pfSense Packages Bug #7130: Lightsquid 3.0.4_2 HTTP 500: I'll grab this back for testing once the new package is available Jim Pingle
09:49 AM pfSense Packages Bug #7130 (Feedback): Lightsquid 3.0.4_2 HTTP 500: 3.0.4_3 should be fixed Renato Botelho
09:23 AM pfSense Packages Bug #7130: Lightsquid 3.0.4_2 HTTP 500: Looks like we're missing the latest change to the Makefile for www/lightsquid from earlier this week, CGI.pm was remo... Jim Pingle
09:17 AM pfSense Packages Bug #7130 (Confirmed): Lightsquid 3.0.4_2 HTTP 500: Jim Pingle
01:59 AM pfSense Packages Bug #7130 (Resolved): Lightsquid 3.0.4_2 HTTP 500: As title says, when one clicks on Open Lightsquid HTTP error 500 appers. Greg M
02:46 PM Bug #2073: APIPA broadcasts forwarded by route-to: There is no GUI knob to disable it, but there is a setting. You can set it in the config.xml directly or via PHP (e.g... Jim Pingle
02:40 PM Bug #2073: APIPA broadcasts forwarded by route-to: Except with no way to disable this rule, this can affect bridged interfaces, and since the rule is processed so far i... Brandon Jackson
02:44 PM Bug #7135: Crash in PHP widget module interface_statistics.widget.php: My bad, sorry for the duplicate. Phil Scarr
02:43 PM Bug #7135 (Duplicate): Crash in PHP widget module interface_statistics.widget.php: Duplicate of #7134 which has a fix already. Jim Pingle
02:38 PM Bug #7135 (Duplicate): Crash in PHP widget module interface_statistics.widget.php: When returning to the dashboard page, I frequently receive a PHP error warning:
[17-Jan-2017 14:53:51 America/Chic... Phil Scarr
01:20 PM Bug #7133 (Feedback): services_router_advertisements.php: Interface drop-down is not showing the user-configured interface name: Applied in changeset commit:790e2a2fad1da3fe6bdd6c858ede2d9e3f34a84a. Jim Pingle
01:16 PM Bug #7133 (Resolved): services_router_advertisements.php: Interface drop-down is not showing the user-configured interface name: On services_router_advertisements.php, for the "RA Interface" selection, the internal name (e.g. OPT1) is shown for t... Jim Pingle
12:57 PM Bug #6992 (Resolved): ZoneEdit DDNS does not update to CARP IP: I created a zoneedit account (it's free, and you can just make up a domain when testing without actually pointing any... Jim Pingle
12:43 PM Bug #7123 (Feedback): Kernel panic when setting TCP MD5 Password in OpenBGP: Possible fix was cherry-picked to FreeBSD-src, please try again on next snapshot Renato Botelho
12:28 PM Bug #6874 (Resolved): Dynamic DNS w/ DNSimple: Tested, works. Error and success conditions are logged properly. Jim Pingle
12:03 PM Bug #6751 (Resolved): Route53 DynDNS Problems / Replace Route53 DynDNS Module: Tested Route53, it updates records properly now. Jim Pingle
12:03 PM Bug #5054 (Resolved): Dynamic DNS - Route53 errors should probably be more verbose: Tested Route53, it updates records properly now. Jim Pingle
12:02 PM Bug #3973 (Resolved): Route 53 dynamic DNS provider fails to update record: Tested Route53, it updates records properly now. Jim Pingle
11:21 AM Revision 82e6d795: Add filter to SMART status widget: (cherry picked from commit 22e8fa1f6aec0b1536f0c07e1573ac78a291891f) Phil Davis
11:21 AM Revision 428304cc: Merge pull request #3395 from phil-davis/smart-widget-filter: Renato Botelho
11:03 AM Bug #7119 (Feedback): Changing LAGG attributes results in a panic/crash: I've cherry-picked FreeBSD-src patches that should fix it:
https://svnweb.freebsd.org/base?view=revision&revision=... Renato Botelho
10:26 AM Bug #7126 (Resolved): Dynamic DNS Widget links for RFC2136 entries are incorrect: Works Jim Pingle
09:42 AM Bug #7132 (Resolved): PPPoE IP Alias: If you create a new IP Alias on a PPPoE interface, alias address is never added to pppoe0 interface.
Gladiston Justini
09:36 AM Bug #7131 (Resolved): DHCP v4&v6 DDNS missing options: After revision 391d63da the dhcpv6 server settings allows the user to chose between allow, deny or ignore client upda... Bogdan P
09:08 AM Bug #7003 (Resolved): autoboot_delay on 2.4.0: Works fine now, it's there after install Jim Pingle
05:31 AM Bug #7003: autoboot_delay on 2.4.0: Confirmed fix on today's snapshot, keeping it as feedback to hear from JimP test results as well Renato Botelho
07:41 AM Revision 22e8fa1f: Add filter to SMART status widget: Phil Davis
07:09 AM Bug #6298 (Duplicate): OpenVPN IPv4/6 Local network(s) initial display state: I can't reproduce it even on 2.3.x. This appears to have been duplicated by #6482 which has been fixed. Jim Pingle
07:02 AM Bug #6298 (Feedback): OpenVPN IPv4/6 Local network(s) initial display state: I've tested it on 2.4.0 and didn't see the issue. Could you please try to replicate it on current snapshots and if yo... Renato Botelho
06:06 AM Bug #4310: Limiters + HA results in hangs on secondary: One more here, we always have limiters and HA and we are forced to use the queues. If someone makes a mistake of assi... Jose Duarte
05:22 AM Feature #7122 (Feedback): Add filters to various dashboard widgets: All PRs merged, thanks! Renato Botelho
01:44 AM Feature #7122: Add filters to various dashboard widgets: Bored enough :) PR https://github.com/pfsense/pfsense/pull/3395 Phillip Davis
04:33 AM Bug #7129 (Resolved): system_advanced_notifications.php - Cannot save settting - growl passwords must match: Renato Botelho
03:10 AM Bug #7129: system_advanced_notifications.php - Cannot save settting - growl passwords must match: Merged, can be closed. Thanks. Kill Bill
02:04 AM Feature #4470: RA page in GUI: Hello!
It would be great to implement those 2:
AdvRDNSSLifetime
AdvDNSSLLifetime
Thanks! Greg M

01/17/2017

10:18 PM Revision 8333e25c: Status / Interfaces - Relinquish DHCP Lease: Send gratuitous DHCP release message to server.
Dependency:
To fully relinquish the DHCP lease, the "RELEASE" reason... NOYB NOYB
10:18 PM Revision 873a236b: Status / Interfaces - Match Var Names: Match Form Input and Function Parameter Names with associated Var Name.
Use "ifdescr" as form input name instead of ... NOYB NOYB
09:57 PM Bug #7075: firewall states show negative value for total bytes processed: I'm also seeing this problem in the latest release.
2.3.2-RELEASE-p1 (i386)
built on Tue Sep 27 12:13:32 CDT 2016... Matt Perry
09:41 PM pfSense Packages Bug #7127 (Resolved): Authentication fail in AutoConfigBackup package: Had confirmation from others internally that it worked on the new version with mixed case login names. Jim Pingle
11:04 AM pfSense Packages Bug #7127 (Feedback): Authentication fail in AutoConfigBackup package: I pushed a fix for this just now. Once version 1.47 shows up for you, reinstall and test it again.
https://github.... Jim Pingle
09:40 PM Bug #6663 (Resolved): IPv6 OpenVPN client is down after reboot: Updated a VM that had two UPD6 OpenVPN servers on a HE.net GIF WAN and they were both running after the update. On ol... Jim Pingle
12:45 PM Bug #6663: IPv6 OpenVPN client is down after reboot: I've mispelled ticket # on commit:5280fd8d21c71c6997e1855f8b96265bd81ccb99 Renato Botelho
12:37 PM Bug #6663 (Feedback): IPv6 OpenVPN client is down after reboot: It happened in cases where specific IPv6 is selected to bind and interface is in 'tentative' state, as happened in th... Renato Botelho
09:21 PM Revision e7f4fb10: The confirmation checkboxes on diag_resetstate.php should not be checked by default.: Jim Pingle
09:21 PM Revision 66fb0bbe: The confirmation checkboxes on diag_resetstate.php should not be checked by default.: Jim Pingle
09:20 PM Revision 41a5ff1d: The confirmation checkboxes on diag_resetstate.php should not be checked by default.: Jim Pingle
06:48 PM Revision 9762d601: Remove get_openvpnent_key(): (cherry picked from commit 27bf84fc10d723deebb814a38ee9303014b41711) Phil Davis
06:48 PM Revision c72410a7: Add Filter to OpenVPN Widget: (cherry picked from commit a670560bf9a3de550e9e4e20df4ffe1ed2d4f05c) Phil Davis
06:48 PM Revision 821aec85: Merge pull request #3392 from phil-davis/openvpn-widget: Renato Botelho
06:47 PM Revision ab34907e: Do not nag people about passwords mismatch when SMTP notifications are disabled (Bug #7129): (cherry picked from commit 3988cfa7d281370500a7f58cb5f73f28a931f0ae) Doktor Notor
06:47 PM Revision 83ddceca: Do not nag people about passwords mismatch when growl is disabled (Bug #7129): These fields tend to get "helpfully" pre-filled with random crap by built-in browser password managers or extensions ... Doktor Notor
06:47 PM Revision 6d73934b: Merge pull request #3393 from doktornotor/patch-2: Renato Botelho
06:33 PM Revision 269677a9: Wait while interface is in 'tentative' state before try to bind dpinger to its address: Renato Botelho
06:33 PM Revision 5280fd8d: Fix #6603: Wait while interface is in 'tentative' state before try to bind OpenVPN to its address: Renato Botelho
06:06 PM Revision 3988cfa7: Do not nag people about passwords mismatch when SMTP notifications are disabled (Bug #7129): Doktor Notor
03:00 PM Revision 27bf84fc: Remove get_openvpnent_key(): Phil Davis
01:47 PM Feature #7122: Add filters to various dashboard widgets: @Phil: In case you are bored, could you do one for SMART Status? Did one originally for 2.2.x (https://github.com/pfs... Kill Bill
12:32 AM Feature #7122: Add filters to various dashboard widgets: OpenVPN Widget filtering in PR https://github.com/pfsense/pfsense/pull/3392 Phillip Davis
01:10 PM Bug #7003 (Feedback): autoboot_delay on 2.4.0: Fixed installer bits, it should be fine on next round of snapshots Renato Botelho
12:49 PM pfSense Packages Bug #6603 (Confirmed): pfblockerng's Unbound modifications leave system broken post-config restore: Jim Pingle
12:42 PM pfSense Packages Bug #6603: pfblockerng's Unbound modifications leave system broken post-config restore: Definitely wrong ticket reference in the above commit. Kill Bill
12:40 PM pfSense Packages Bug #6603 (Feedback): pfblockerng's Unbound modifications leave system broken post-config restore: Applied in changeset pfsense:commit:5280fd8d21c71c6997e1855f8b96265bd81ccb99. Renato Botelho
11:37 AM Revision a929acf0: Only show the DHCP Leases Status link if DHCP server is enabled: Does not make sense otherwise, can only contain stale data.
(cherry picked from commit 8ed692516534248e58a20aec70f8cf... Doktor Notor
11:37 AM Revision 3a2da5b8: Merge pull request #3389 from doktornotor/patch-1: Renato Botelho
11:36 AM Revision dafe20ef: Remove extra parenthesis and blank line: Renato Botelho
11:36 AM Revision 57fcd211: Simplify logic: Renato Botelho
11:36 AM Revision af0257cf: Remove extra parenthesis and blank line: Renato Botelho
11:36 AM Revision 51e7132e: Simplify logic: Renato Botelho
11:10 AM Bug #7117 (Feedback): Bump sched buckets limiter log spam in console: should be fixed in the latest snapshot.
https://github.com/pfsense/FreeBSD-src/commit/c941deabf9dd3d86632ccfdade9d... Luiz Souza
09:17 AM Revision 06f7d60e: Do not nag people about passwords mismatch when growl is disabled (Bug #7129): These fields tend to get "helpfully" pre-filled with random crap by built-in browser password managers or extensions ... Doktor Notor
07:21 AM Bug #5993: dhcp6c not started until an RA received: PR issued, should be the end of this one. Martin Wasley
06:29 AM Revision a670560b: Add Filter to OpenVPN Widget: Phil Davis
03:18 AM Bug #7129: system_advanced_notifications.php - Cannot save settting - growl passwords must match: Clearly caused by password management in browsers (or password management extensions such as LastPass) helpfully pre-... Kill Bill
02:48 AM Bug #7129 (Resolved): system_advanced_notifications.php - Cannot save settting - growl passwords must match: - I never enabled/configured/touched this (IOW, this should certainly default to disabled, I'd imagine the number of ... Kill Bill
02:30 AM Bug #7128 (Resolved): system_advanced_network.php - fugly IPv6 over IPv4 input field alignment: This really look stupid, is it possible to put it below the checkbox somehow? I'd personally just remove the form gro... Kill Bill

01/16/2017

10:57 PM Feature #7122: Add filters to various dashboard widgets: Dynamic DNS Widget filtering in PR https://github.com/pfsense/pfsense/pull/3386
Commit https://github.com/pfsense/pf... Phillip Davis
10:20 PM Revision 8ed69251: Only show the DHCP Leases Status link if DHCP server is enabled: Does not make sense otherwise, can only contain stale data. Doktor Notor
09:25 PM Revision 848c8779: Merge pull request #3385 from PiBa-NL/crashreport-deleted: Jim Pingle
07:03 PM Feature #4209: Releasing DHCP on WAN interface should send a release: PR
Status / Interfaces - Relinquish DHCP Lease
https://github.com/pfsense/pfsense/pull/3390 (2.4)
https://github.c... NOYB NOYB
06:46 PM Revision 8bb99bd1: Fix #7126 RFC2136 links: (cherry picked from commit 47b35618f025082b5504eae5518d89c772ae8bd5) Phil Davis
06:46 PM Revision 5932d9f5: Merge pull request #3388 from phil-davis/dyndns_widget_rfc2136_links: Renato Botelho
05:53 PM Revision 47b35618: Fix #7126 RFC2136 links: Phil Davis
05:35 PM Revision 7eba98e5: Add filter to Dynamic DNS Status Widget: (cherry picked from commit 5f8a3dc09e550f3aa2ef086c03e7133f78756913) Phil Davis
05:35 PM Revision 3437b37d: Merge pull request #3386 from phil-davis/dyndns-widget-filter: Renato Botelho
04:55 PM Revision 5f8a3dc0: Add filter to Dynamic DNS Status Widget: Phil Davis
01:55 PM Todo #7125 (Resolved): fullbogons ipv4 list not up to date: The list on the server was having a problem updating, which we have corrected. The hosted list is current now, shortl... Jim Pingle
09:44 AM Todo #7125 (Resolved): fullbogons ipv4 list not up to date: Pfsense bogons list is not up to date:
https://files.pfsense.org/lists/fullbogons-ipv4.txt - Tue Nov 22 04:50:02 ... Vladimir Lind
01:54 PM Revision e1568616: Fix #7118 icmp-type any: When 'any' is selected as the ICMP type, do not write 'icmp-type any' in the rule, just leave it out. Phil Davis
01:54 PM Revision 3661dfdc: Fix #7105: Old rules may not have ipprotocol defined, consider it icmp6-type only when ipprotocol is inet6: Renato Botelho
01:13 PM Revision 5887cf2b: Build the net-snmp package: Jim Pingle
12:50 PM Bug #7126 (Feedback): Dynamic DNS Widget links for RFC2136 entries are incorrect: Applied in changeset commit:47b35618f025082b5504eae5518d89c772ae8bd5. Phillip Davis
11:56 AM Bug #7126: Dynamic DNS Widget links for RFC2136 entries are incorrect: PR https://github.com/pfsense/pfsense/pull/3388 Phillip Davis
11:06 AM Bug #7126 (Resolved): Dynamic DNS Widget links for RFC2136 entries are incorrect: The Dynamic DNS Widget also displays RFC2136 entries these days. But it has an "ondblclick" for each row that always ... Phillip Davis
12:34 PM Revision 92b50e1a: Make sure /var/tmp permissions are correct. Fixes #7120: Renato Botelho
12:34 PM Revision fc1caa41: Make sure /var/tmp permissions are correct. Fixes #7120: Renato Botelho
11:54 AM pfSense Packages Bug #7127 (Resolved): Authentication fail in AutoConfigBackup package: When I sign in to the PFSense Gold web portal, I enter my ID as mix of upper and lower case letters: BrianKDav. To ... Brian Davidson
08:41 AM Bug #6625: firewall forwards all traffic through wan interface, via default gateway, even if alternative route had been installed: Jim Pingle wrote:
> That doesn't change the situation. You're posting on closed duplicate tickets and the floating r... Gaëtan SLONGO
08:35 AM Bug #6625: firewall forwards all traffic through wan interface, via default gateway, even if alternative route had been installed: That doesn't change the situation. You're posting on closed duplicate tickets and the floating rules do solve the pro... Jim Pingle
08:32 AM Bug #6625: firewall forwards all traffic through wan interface, via default gateway, even if alternative route had been installed: Jim Pingle wrote:
> This is a bug reporting system, not a support or discussion platform. Please post on the forum o... Gaëtan SLONGO
08:26 AM Bug #6625: firewall forwards all traffic through wan interface, via default gateway, even if alternative route had been installed: This is a bug reporting system, not a support or discussion platform. Please post on the forum or via some other supp... Jim Pingle
08:25 AM Bug #6625: firewall forwards all traffic through wan interface, via default gateway, even if alternative route had been installed: Jim Pingle wrote:
> We have, it is.
OK so what would be the solution? Because using floating rules has no effect.... Gaëtan SLONGO
08:23 AM Bug #6625: firewall forwards all traffic through wan interface, via default gateway, even if alternative route had been installed: We have, it is. Jim Pingle
08:22 AM Bug #6625: firewall forwards all traffic through wan interface, via default gateway, even if alternative route had been installed: Jim Pingle wrote:
> Duplicate of #1136
Note sure it is really a duplicate. And the #1136 is very old (and seems n... Gaëtan SLONGO
08:20 AM Bug #6625 (Duplicate): firewall forwards all traffic through wan interface, via default gateway, even if alternative route had been installed: Duplicate of #1136 Jim Pingle
08:19 AM Bug #6625: firewall forwards all traffic through wan interface, via default gateway, even if alternative route had been installed: Remko Lodder wrote:
> We have setup a new pfSense box that will route our VPN traffic between endpoints.
> That goe... Gaëtan SLONGO
07:57 AM Bug #7015: IPsec not working behind NAT: Vladimir Putin wrote:
> Could it be related to https://redmine.pfsense.org/issues/6937 ?
I believe not. We just f... Renato Botelho
07:34 AM Bug #6974: radvd enabled on a disconnected interface kills RA completely on all interfaces: Not really sure why's this assigned to me. Either it's a bug in radvd or in pfSense. Either way, I won't fix it. Also... Kill Bill
06:57 AM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: We upgraded 2 days ago from 2.2.x to 2.3.1p1.
Same issue and no pfB installed.
We have upgraded only one of our t... Romain Cabassot
06:40 AM Bug #7120 (Feedback): Wrong file permissions on /var/tmp and missing sticky bit when using /var as RAM disk: Applied in changeset commit:fc1caa413543c9a616ef08061a5861f57a1c0881. Renato Botelho
06:33 AM Bug #7033: Hidden rule break the policy routing: Jim Pingle wrote:
> Duplicate of #1136
>
> If you must have a second gateway on WAN, add floating rules to match ... Gaëtan SLONGO

01/15/2017

10:43 PM pfSense Packages Feature #6022: Consider MLVPN for bonded VPN: There appears to be a port for MLVPN now:
https://www.freshports.org/net/mlvpn/
This could be used as a basis for... Adam Gibson
10:34 PM Revision 71b80155: Remove redundant comment: Jim Pingle
06:52 PM Revision b1b0ab1f: crash-reporter, change text to tell crashreport has been deleted after uploading which already happened.. but only delete it when upload is successful.: Pi Ba
06:29 PM Revision fe5c31bb: traffic-graphs, setting to keep updating them while invisible: - allow showing different graphs to be shown on different browser tabs (dont use localstorage for graphs to query)
- ... Pi Ba
03:03 PM Bug #6982 (Resolved): Nested Aliases with FQDNs do not populate parent table in some cases: Jim Pingle
03:01 PM Bug #6982: Nested Aliases with FQDNs do not populate parent table in some cases: This looks good to me.
Thought there was still an issue but it just turns out one of my test fqdns (www.cnn.com) h... Chris Linstruth
02:53 PM pfSense Packages Feature #4461: Squid options too late in squid.conf: See... Volker Kuhlmann
02:44 PM pfSense Packages Feature #4461 (Rejected): Squid options too late in squid.conf: Jim Pingle
02:43 PM pfSense Packages Feature #4461: Squid options too late in squid.conf: No such luck needed, said deficient software is no longer involved, and no loss for me, no-one would have done anythi... Volker Kuhlmann
02:24 PM pfSense Packages Feature #4461: Squid options too late in squid.conf: Thanks for "feedback". Pull requests go to https://github.com/pfsense/FreeBSD-ports/, good luck. Kill Bill
02:08 PM pfSense Packages Feature #4461: Squid options too late in squid.conf: Services like plesk control panels do not run on a standard SSL port like 443. Rather than opening several other port... Volker Kuhlmann
07:41 AM pfSense Packages Feature #4461 (Feedback): Squid options too late in squid.conf: Jim Pingle
02:50 AM pfSense Packages Feature #4461: Squid options too late in squid.conf: I have hard time understanding what kind of exceptions is being requested here or what's being used by the OP that's ... Kill Bill
01:45 PM Bug #7124 (Resolved): Kernel panic when configuring 6to4 on a interface: Kernel panic when configuring 6to4 on a interface
pfSense on virtualbox: 2.4.0-BETA (amd64) built on Sat Jan 14 10:3... Pi Ba
11:59 AM Bug #7031 (Resolved): Cannot configure OpenVPN on a DHCP interface that has not received an IP address: Works Jim Pingle
11:57 AM Bug #6915 (Resolved): unbound logging not working after reboot or "Reset log files": Works Jim Pingle
10:13 AM Bug #7015: IPsec not working behind NAT: Could it be related to https://redmine.pfsense.org/issues/6937 ? Vladimir Suhhanov
09:18 AM pfSense Packages Feature #556 (Resolved): siproxd: add carp virtual IPs as interface candidates: Config looks right now Jim Pingle
06:54 AM Feature #5549: Additional DNS entries in General Setup would be good for 3 or more WAN's: So that sort of config should have failed the input validation already prior to his change. The code considers anythi... Phillip Davis
04:16 AM pfSense Packages Bug #5594: Captive portal patch does not work anymore: Orsiris de Jong wrote:
> Anyone willing to update the patch ?
Updating the patch is a waste of time. If such func... Kill Bill
02:18 AM Bug #7119: Changing LAGG attributes results in a panic/crash: Jim Pingle wrote:
> On 2.4, when changing attributes of an assigned LAGG such as the mode or membership, the firewal... Rolf Sommerhalder

01/14/2017

09:53 PM Bug #7123: Kernel panic when setting TCP MD5 Password in OpenBGP: Rolf Sommerhalder wrote:
> Setting a TCP6 MD5 password in OpenBGP package triggers a panic in pfSense-2.4 amd64 snap... Rolf Sommerhalder
08:50 AM Bug #7123 (Resolved): Kernel panic when setting TCP MD5 Password in OpenBGP: Setting a TCP6 MD5 password in OpenBGP package triggers a panic in pfSense-2.4 amd64 snapshot from yesterday (Fri 13.... Rolf Sommerhalder
04:33 PM Revision 63586f71: Merge pull request #3383 from doktornotor/patch-1: Jim Pingle
04:30 PM Bug #6896: unbound root.key file corruption possibly related to full file system: I just had the same issue. /var/ was at 100%. After trying to recreate the root.key, and noticing that dhcpd.conf cou... Thaddeus Covert
03:43 PM Revision 4aefa6f2: Restart unbound after clearing logs (Bug #6915): Handle clearing the individual log as well. Doktor Notor
03:35 PM Feature #5549: Additional DNS entries in General Setup would be good for 3 or more WAN's: ok already had manually added staic route for 8.8.8.8 and 8.8.4.4 causes failure in error checking Michael Kellogg
03:08 PM Feature #5549: Additional DNS entries in General Setup would be good for 3 or more WAN's: that error happens re-saving current setup with 4 dns servers Michael Kellogg
03:06 PM Feature #5549: Additional DNS entries in General Setup would be good for 3 or more WAN's: getting this error whe trying to add more dns servers
A gateway can not be assigned to DNS '8.8.8.8' server which ... Michael Kellogg
01:07 AM Feature #5549: Additional DNS entries in General Setup would be good for 3 or more WAN's: Note: I kept this in the General Setup page where it has been since eternity. Just made it so a variable number of DN... Phillip Davis
11:00 AM pfSense Packages Feature #556: siproxd: add carp virtual IPs as interface candidates: Good catch, thanks. Kill Bill
09:42 AM pfSense Packages Feature #556: siproxd: add carp virtual IPs as interface candidates: The PR was close but it needed some backend changes as well, otherwise it was putting blank values in the configurati... Jim Pingle
10:48 AM Bug #7121: freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: safebrowsing was never enabled in my setup. I also didn't investigate further. Alexander Berkes
10:37 AM Bug #7121: freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: Alexander Berkes wrote:
> That really makes no sense in the minute crontab column and it definitely leads to multipl... Kill Bill
10:27 AM Bug #7121: freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: Thanks for the git link. That makes things more clear.
Sorry I couldn't remember the exact value of the crontab en... Alexander Berkes
07:36 AM Bug #7121: freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: This hopefully makes things more obvious: https://github.com/pfsense/FreeBSD-ports/pull/254
@OP: No, the above PR ... Kill Bill
06:52 AM Bug #7121: freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: "Checks" in freshclam.conf is not using/configuring cron, at all. Switching to manual config and changing freshclam.c... Kill Bill
05:35 AM Bug #7121: freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: Yeah you are right, I am talking about the squid package, but especially the freshclam component. Freshclam is execut... Alexander Berkes
02:27 AM Bug #7121: freshclam.conf advanced editing, configuring value of "Checks" has no effect on crontab entry: Assuming you are talking about Squid, it's not supposed to do anything with cron. You are totally on your own, this f... Kill Bill
10:34 AM Bug #6915 (Feedback): unbound logging not working after reboot or "Reset log files": PR merged, works fine. Will wait for it to be in snaps before one last test. Jim Pingle
09:44 AM Bug #6915: unbound logging not working after reboot or "Reset log files": Jim Pingle wrote:
> It works from the Settings tab if you reset all log files, but it doesn't work if you clear the ... Kill Bill
10:11 AM pfSense Packages Feature #3303 (Resolved): Allow quagga ospf stub, not so stub and totally stub areas: Seems to work Jim Pingle
09:20 AM pfSense Packages Feature #7000: ntopng historical data needs to be reworked: PR to hide this defunct stuff from GUI meanwhile: https://github.com/pfsense/FreeBSD-ports/pull/255 Kill Bill
08:57 AM pfSense Packages Bug #4736 (Resolved): ladvd crashes, dumps core: Problem on the ticket no longer happens, anything else belongs on a new ticket. Closing. Jim Pingle
08:57 AM pfSense Packages Bug #6346 (Rejected): Squid Proxy Server Service randomly stops: Jim Pingle
08:56 AM pfSense Packages Bug #5534 (Resolved): Captive Portal stop sending accounting updates to free radius: Unable to reproduce, lack of feedback, closing. Jim Pingle
08:55 AM pfSense Packages Bug #5614 (Resolved): mailreport - emails are going out when manually triggered, but not via cron: Unable to reproduce, lack of feedback, closing. Jim Pingle
08:31 AM Bug #6927 (Resolved): 1 to 1 NAT allows entry of mixed IP addresses: Yes, this should have a 2.4 target. And it's already been tested, but I tested it again on a current snapshot and it'... Jim Pingle
01:45 AM Bug #6927: 1 to 1 NAT allows entry of mixed IP addresses: Target version could be set to 2.4.0 and then some independent person test. Phillip Davis
08:09 AM pfSense Packages Feature #4752 (Feedback): SQUID. Exception for speed limits: Jim Pingle
08:03 AM pfSense Packages Feature #4752: SQUID. Exception for speed limits: Merged; test please and report back. Kill Bill
08:08 AM pfSense Packages Feature #6965 (Resolved): suricata + snort - making custom passlist additive to the default one: Jim Pingle
08:05 AM pfSense Packages Feature #6965: suricata + snort - making custom passlist additive to the default one: Apparently the issue was not with the package, nested aliases now work. Close please. Kill Bill
06:25 AM Revision 8ad8e9ab: Format of username in Logout: Phil Davis
01:42 AM pfSense Packages Feature #5052: Avahi Proxy Package: Add option to disable/control cache size.: This has a target version of 2.4.0 - is that really intended? Phillip Davis
01:37 AM Bug #6864: Error checking rejects IPv6 addresses with upper case A-F.: interfaces.php also has addrtolower() Phillip Davis
01:28 AM Bug #7031: Cannot configure OpenVPN on a DHCP interface that has not received an IP address: This just needs an independent person to test it. Phillip Davis
01:24 AM Feature #7122: Add filters to various dashboard widgets: The following are completed:
Services Widget UI changes: https://github.com/pfsense/pfsense/pull/3370
Interfaces Wi... Phillip Davis
01:14 AM Feature #7122 (Resolved): Add filters to various dashboard widgets: Some dashboard widgets can end up with a lot of rows or columns of data to display on bigger systems. It would be nic... Phillip Davis

01/10/2017

08:29 PM Bug #4310: Limiters + HA results in hangs on secondary: I would agree with Vladimir. Just would like to know if this will be definitely be fixed in 2.4 or pushed out furthe... James Kohout
08:27 PM Revision 6a9a7595: Merge pull request #3343 from phil-davis/retval1: Renato Botelho
08:21 PM Bug #7110 (Resolved): Empty custom NTP ACL produces syntax error in /var/etc/ntpd.conf: On the NTPD ACL tab [Services/NTP/ACLs] the blank default entry under Custom Access Restrictions results in addition ... John Silva
07:59 PM Bug #6986 (Resolved): reply-to is not functioning on pfSense 2.4: I tested this on two systems that previously reproduced the problem 100% of the time, and now they both work. Looks g... Jim Pingle
07:22 PM Bug #6986 (Feedback): reply-to is not functioning on pfSense 2.4: Fixed by https://github.com/pfsense/FreeBSD-src/commit/114dc4a89011a560c32421ca842ca73f5b29d449 Luiz Souza
05:03 PM Revision a271ed3d: Make sure file exists before try to open it: Renato Botelho
05:03 PM Revision 4f3fc80d: Fix style: Renato Botelho
04:30 PM Revision ada6bfa7: Services widget filter checkboxes: Phil Davis
02:48 PM Revision edcd7535: Breadcrumb links: Phil Davis
02:46 PM Revision 3870dcb7: Move checkbox styling to the beta file since it produces results that are not consistent across browsers and OS: Steve Beaver
11:04 AM Revision 155769f2: Revert "get_pkg_info() fallback using pkg info if no local copy of repo catalog": This reverts commit 46237e23f35db70a917939609061dce7b7f955f9. Renato Botelho
11:04 AM Revision 1e85a9ed: Revert "get_pkg_info() fallback using pkg info if no local copy of repo catalog": This reverts commit e47af756de79d4e8b0356cf22f72f62f09e9ad7d. Renato Botelho
09:17 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: definitely like the idea of adding a decision layer the would then open options to create a daemon for other method... Michael Kellogg
06:48 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: I posted a bounty: https://forum.pfsense.org/index.php?topic=123741.0 → luckman212
08:56 AM pfSense Packages Bug #7104: Rules created by traffic shaper wizard dont do anything: Jim if you want to test these new findings up to you but here is an update.
I have discovered the match rules crea... Chris Collins
08:23 AM Feature #7098 (Resolved): RAM Disk Management: Seems to work alright on a couple test boxes here. Jim Pingle
06:57 AM pfSense Packages Bug #7109: Squid 0.4.29_1 not Exist: Tank you,
now all is ok Claudio Berselli
06:52 AM pfSense Packages Bug #7109 (Rejected): Squid 0.4.29_1 not Exist: This sort of error will clear up on its own after a few moments, or run "pkg update -f" if it keeps happening.
Whe... Jim Pingle
06:45 AM pfSense Packages Bug #7109 (Rejected): Squid 0.4.29_1 not Exist: If tray to install Squid 0.4.29_1 I have this error:... Claudio Berselli
06:50 AM pfSense Packages Bug #6878: how to use snort, squid and squid_guard with a ram disk: The thinking was: Without NanoBSD, more people will be running a full install on unreliable media like CF/SD, so we n... Jim Pingle
04:24 AM pfSense Packages Bug #6878: how to use snort, squid and squid_guard with a ram disk: Jim Pingle wrote:
> Seems to be working.
Yeah, this seems to be working, except that noone is getting the fixes. ... Kill Bill
06:30 AM Bug #5993: dhcp6c not started until an RA received: Richard Patterson asked me by email to explain in more detail why I want to make these changes, here is my email to h... Martin Wasley
05:22 AM Bug #5993: dhcp6c not started until an RA received: OK, it seems we have a solution. It involves a change to dhcp6c, another new flag is added!
The flag, currently 'x... Martin Wasley

01/09/2017

10:21 PM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: I agree that the "right" way to handle this would be to have dpinger remain dumb (for lack of a better term) and simp... → luckman212
08:28 PM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: I agree with this analysis. To make this happen, there needs to be a layer between groups of dpinger process(es) and ... Phillip Davis
07:42 PM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: Luke opened an issue with dpinger. For reference, I've copied the response here.
-----
Hey Luke,
I understan... Denny Page
10:06 PM pfSense Packages Bug #6305: Quagga problems updating routes / mistakenly showing "kernel"-routes while they are not: Affected me too. I tried settings with OpenVPN server + OpenVPN client.
Both:
Pfsense 2.3.2-RELEASE-p1
Quagga_OS... winmasta winmasta
09:37 PM Revision a1b39e94: openvpn, check for valid pid using isvalidpid(): Pi Ba
09:22 PM Feature #7098: RAM Disk Management: Upgraded RAM disk enabled system. Working fine.
Thanks NOYB NOYB
08:01 AM Feature #7098 (Feedback): RAM Disk Management: PR has been merged, thanks! Renato Botelho
09:17 PM Bug #7108: ntp does not keep time on virtualized pfsense: Trying with TSC-low now. That seems to have done the trick! The time offset is staying relatively stable now. Tha... John Silva
07:50 PM Bug #7108 (Not a Bug): ntp does not keep time on virtualized pfsense: OpenNTPD isn't better, it's worse. Jim Thompson
06:53 PM Bug #7108: ntp does not keep time on virtualized pfsense: Try with TSC or TSC-low. Anyway, this ain't a pfSense bug, needs to go upstream. Kill Bill
05:45 PM Bug #7108: ntp does not keep time on virtualized pfsense: Relevant logs:... John Silva
05:40 PM Bug #7108 (Not a Bug): ntp does not keep time on virtualized pfsense: I run pfsense virtualized under FreeBSD bhyve. I've read all of the normal advice and have implemented the usual wor... John Silva
07:55 PM pfSense Packages Bug #7107: IPv6 blocklists generate IPv4 auto-rules: I'll wait for a confirmed fix for the 'vtype' bug. The aliases are working fine for me, especially since I really on... John Silva
07:44 PM pfSense Packages Bug #7107: IPv6 blocklists generate IPv4 auto-rules: *Update:* Its going to be a little more involved to fix this issue... Best to use "Alias type" rules, until the next... BBcan177 .
07:22 PM pfSense Packages Bug #7107: IPv6 blocklists generate IPv4 auto-rules: Thanks for the report... I can confirm that there is a bug for the IPv6 Tab. The GeoIP tab doesn't have this issue th... BBcan177 .
06:32 PM pfSense Packages Bug #7107: IPv6 blocklists generate IPv4 auto-rules: Yes. I configured the list in the IPv6 tab of pfBlockerNG. When "List Action" is set to "Deny Both" the firewall ru... John Silva
06:21 PM pfSense Packages Bug #7107: IPv6 blocklists generate IPv4 auto-rules: Did you add these Lists in the IPv6 pfBlockerNG Tab? BBcan177 .
05:35 PM pfSense Packages Bug #7107 (Resolved): IPv6 blocklists generate IPv4 auto-rules: I set up some IPv6 blocklists with pfblocker and noticed that the autorules it created were created as IPv4 protocol ... John Silva
06:54 PM Bug #6257: Kernel panic with ALTQ: Also experiencing a very similar crash every few days in the igb driver queue thread after updating to 2.4.0 as long ... Nash Kaminski
06:34 PM Revision fc47d47a: Fix a case where the ALTQ capability warning was showing incorrectly. Fixes #7102: Jim Pingle
05:25 PM Bug #7106 (Not a Bug): TLS SMTP notification messages fail with expired certificate: Am using pfsense 2.3.3 development snapshot 2017-01-08.
When configuring SMTP notifications using STARTTLS over tc... John Silva
04:50 PM Revision 09744f3a: Merge branch 'RELENG_2_3' of git.netgate.com:pfsense/pfsense into RELENG_2_3: Steve Beaver
04:49 PM Revision 2813a467: Further refine checkbox styling: Steve Beaver
03:11 PM Bug #7105 (Resolved): ICMP type selection is assuming IPv6 when it should assume IPv4: I had an older rule which did not have an ipprotocol type set inside, which is quite common with configurations that ... Jim Pingle
02:46 PM Bug #6986: reply-to is not functioning on pfSense 2.4: It's still not working here. Port forwards only work on the WAN with the default gateway. Configuration is unchanged ... Jim Pingle
02:15 PM Bug #6986: reply-to is not functioning on pfSense 2.4: JimP, I cannot reproduce this bug with todays snapshot. This is a fresh install with two WANs (DHCP) and two port fo... Luiz Souza
02:18 PM Bug #7102: This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: ok thanks for taking the time to find the cause.
I respect you want to sort of filter things out on the forum firs... Chris Collins
12:40 PM Bug #7102 (Feedback): This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: Applied in changeset commit:fc47d47ae50e6b549b2ac38ded2576106be66504. Jim Pingle
12:34 PM Bug #7102 (Assigned): This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: I found a way to reproduce this one, it's a different problem. If all of the ALTQ-capable interfaces were assigned an... Jim Pingle
02:00 PM Revision 6a004f6f: Merge pull request #2902 from NOYB/RAM_Disk_Management: Renato Botelho
01:56 PM Revision eaa55106: Crash Reporter report when no data found: The glob for $crash_files always returns an array - an empty one in the case when there are no matching crash files. ... Phil Davis
01:56 PM Revision af469a9f: Merge pull request #3368 from phil-davis/patch-2: Renato Botelho
01:54 PM Revision 376c71bc: Merge pull request #3365 from phil-davis/format_duid: Renato Botelho
01:52 PM Revision fd2e503a: format_DUID array_walk: Phil Davis
01:42 PM Revision 5bd45966: format_DUID use str_pad: Phil Davis
01:22 PM Revision febfd592: format_DUID review: Phil Davis
12:35 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: OK I put that back on #7102, it's all unrelated to this ticket. This ticket is now (again) only for vmx(4) lacking AL... Jim Pingle
12:26 PM Revision 66dba4d7: clarify type of firewall rule needed: A comment on the original PR says that it's not clear if the rule for this needs to be IPv6 or IPv4 with protocol IPv... Stilez y
12:26 PM Revision 2f93ba9e: change as commented and remove redundant help text: (cherry picked from commit 16fbe9b7ee1abfb8b9504a8d1e90dcd7592f9fe2) Stilez y
12:26 PM Revision b11927df: left label as comment above: (cherry picked from commit a0052ea3a5fe74246795d90bcacadd025801134a) Stilez y
12:26 PM Revision efeea350: Various wording changes: (cherry picked from commit a075265e0a076419813622e0d69556915b6f40f2) Stilez y
12:26 PM Revision df82227e: Improve labels + help text for IPv6 tunneling options: * Move the help message to be on the group as a whole not just the IP input field
* Clarify the IP field (label state... Stilez y
12:26 PM Revision cfa4a410: Merge pull request #3330 from stilez/patch-54: Renato Botelho
12:24 PM Revision bf68dc41: Remove unusued $heading in genhtmltitle(): It came into use in https://github.com/pfsense/pfsense/commit/45eebe10a93fa1e2399c6cdf133ad88dc21ee6e7 but genhtmlti... Phil Davis
12:24 PM Revision 0d2e7de8: Merge pull request #3363 from phil-davis/patch-1: Renato Botelho
10:38 AM Bug #7050 (Resolved): Limiter with PFsense 2.4 transparent proxy: Renato Botelho
10:25 AM Bug #7050: Limiter with PFsense 2.4 transparent proxy: Luiz Otavio O Souza wrote:
> Fixed in the latest snapshot.
>
> https://github.com/pfsense/FreeBSD-src/commit/994e... Nelson Junior
10:30 AM Bug #6882 (Needs Patch): bsnmpd uses all available CPU with hostres module active in some cases: The workaround is present and prevents the problem case from causing harm.
Rather than close this out, I'll leave... Jim Pingle
10:09 AM Bug #6835 (Resolved): firewall_nat_out_edit.php Translation section hidden: Jim Pingle
10:09 AM Bug #6711 (Resolved): diag_states_summary # States and # States twice (explain one is per protocol): Jim Pingle
09:54 AM Bug #6949 (Resolved): username/password not used by proxy support: Works on the latest snap including the patch. Jim Pingle
05:49 AM Bug #6949 (Feedback): username/password not used by proxy support: Done. Last commit was cherry-picked Renato Botelho
08:34 AM pfSense Packages Bug #7104: Rules created by traffic shaper wizard dont do anything: I did not explain how they work because this is not a support system, nor is it a discussion platform. All of this be... Jim Pingle
08:32 AM pfSense Packages Bug #7104: Rules created by traffic shaper wizard dont do anything: Jim Pingle wrote:
> The forum is the best place to discuss this until a real bug is identified. It is not about keep... Chris Collins
04:35 AM Revision cb6b7189: Crash Reporter report when no data found: The glob for $crash_files always returns an array - an empty one in the case when there are no matching crash files. ... Phil Davis
03:14 AM Revision ef5c0a3e: RAM Disk Management - Config Upgrade: NOYB NOYB
03:14 AM Revision 029d6129: RAM Disk Management - Update II - Restore RAM Disk Soon as it is Created and Include Logs: Restoring the RAM disk as soon as it is available will make it easier to include additional content that needs to per... NOYB NOYB
03:14 AM Revision 08696051: RAM Disk Management - Update I - Eliminate RRD XML Dump/Restore & Alias Tables Backup Age Logic: Eliminate rrd dump/restore to/from xlm file. Backup and restore the entire /var/db/rrd/ to/from the RAM Disk Store.
... NOYB NOYB
03:14 AM Revision 257d2fd6: RAM Disk Management: 1) Treat the RAM disk more like a permanent storage device with content managed/restored by the system and made avail... NOYB NOYB
02:40 AM Revision c50f228a: Breadcrumb links support: Phil Davis
02:39 AM Revision 70719baf: Add requirestatefilter. Implements #7069.: derelict-pf
02:36 AM Revision 88081ea2: Add requirestatefilter. Implements #7069.: derelict-pf
02:03 AM Revision 0a315089: Add requirestatefilter. Implements #7069.: derelict-pf

01/08/2017

11:35 PM Bug #6990: DDNS IPs not updating after a system restart: Hi,
yesterday, January 8, my customers router shut down due to a power loss.
When the power returned the router boo... Muchacha Grande
09:01 PM Feature #7069: Provide knob to disable state display in Diagnostics > States until a filter has been submitted.: New pull request: https://github.com/pfsense/pfsense/pull/3367 Chris Linstruth
08:02 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: Firewall-Traffic Shaper-By Interface. I didn't check the others. If I see traffic in the queues then AltQ should be ... Greg Siemon
07:50 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: What page does the error show on, exactly? I can't replicate any problem where that error shows up on a firewall that... Jim Pingle
07:13 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: Jim Pingle wrote:
> If there is any issue with igb, I can't replicate it here. On an SG-8860 with igb running 2.4, I... Greg Siemon
10:36 AM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: If there is any issue with igb, I can't replicate it here. On an SG-8860 with igb running 2.4, I can use ALTQ and it ... Jim Pingle
09:18 AM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: Chris Collins wrote:
> Jim ALTQ does looks its on the a downward path but still pfSense uses it and the traffic shap... Jim Thompson
04:57 PM pfSense Packages Bug #7104: Rules created by traffic shaper wizard dont do anything: Yeah exactly, this is to file bug reports. Not "ooops something somehow won't work for me, definitely must be a bug" ... Kill Bill
04:54 PM pfSense Packages Bug #7104 (Rejected): Rules created by traffic shaper wizard dont do anything: The forum is the best place to discuss this until a real bug is identified. It is not about keeping ticket counts dow... Jim Pingle
04:43 PM pfSense Packages Bug #7104: Rules created by traffic shaper wizard dont do anything: Kill Bill wrote:
> May I suggest using https://forum.pfsense.org/index.php?board=26.0 until you have a *real* bug? '... Chris Collins
04:42 PM pfSense Packages Bug #7104: Rules created by traffic shaper wizard dont do anything: I see match mentioned on this page https://home.nuug.no/~peter/pf/en/altqintro.html
But FreeBSD never updated PF t... Chris Collins
04:38 PM pfSense Packages Bug #7104: Rules created by traffic shaper wizard dont do anything: May I suggest using https://forum.pfsense.org/index.php?board=26.0 until you have a *real* bug? 'cos this one ain't a... Kill Bill
04:26 PM pfSense Packages Bug #7104: Rules created by traffic shaper wizard dont do anything: Ok some more information. Step by step of my diagnostics.
1 - Run the wizard and choose the first option, keep as... Chris Collins
04:12 PM pfSense Packages Bug #7104 (Rejected): Rules created by traffic shaper wizard dont do anything: The rules are created as match rules which is not passing them onto the specific queue.
I am talking about the rul... Chris Collins
03:20 PM Bug #7050 (Feedback): Limiter with PFsense 2.4 transparent proxy: Fixed in the latest snapshot.
https://github.com/pfsense/FreeBSD-src/commit/994e779f035e9ed49909936d5773f930adfc40... Luiz Souza
03:08 PM Revision f4bbec8b: Helper format_duid() for DUID input: Phil Davis
03:05 PM pfSense Packages Feature #4752: SQUID. Exception for speed limits: This is what 'Unrestricted IPs' on the ACLs tab was intended for; except that it never worked due a wrong check. Fixe... Kill Bill
02:36 PM Revision 286ed246: Fix typo. Ticket #7007: Jim Pingle
01:21 PM Bug #7093: "Outgoing Network Interfaces" is broken in dns resolver settings: The configuration is not enough on its own because your interfaces are DHCP. We need to see the addresses on the inte... Jim Pingle
12:53 PM Bug #7093: "Outgoing Network Interfaces" is broken in dns resolver settings: is it sufficient to do a backup of the config and send you that backup?
The setup is this.
Dns resolver enabled... Chris Collins
12:53 PM Bug #7102: This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: The ticket was rejected because I attempted the same configuration and found no problem on current 2.4 snapshots. I h... Jim Pingle
12:43 PM Bug #7102: This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: It is a bit of a wow that you have rejected a clear report telling you that there is a misleading message in the GUI.... Chris Collins
10:19 AM Bug #7102 (Rejected): This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: Then you'll need to provide a lot more detail about your NICs & the drivers they use (dmesg, ifconfig output, GUI ass... Jim Pingle
10:17 AM Bug #7102: This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: I can confirm 100% now ALTQ is working.
1 - if I apply the rules on cli is no error, if altq was broken it would s... Chris Collins
09:03 AM Bug #7102: This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: The only place I see this message appear is when a NIC is in use that does NOT have ALTQ support (e.g. lagg, cpsw, et... Jim Pingle
11:06 AM pfSense Packages Bug #7103 (Rejected): Security issue regarding traffic shaper created by wizard: There is no security issue except the one you made by changing the rules. If there is a problem with the shaper rules... Jim Pingle
11:04 AM pfSense Packages Bug #7103 (Rejected): Security issue regarding traffic shaper created by wizard: So take this into consideration
The default dns resolver settings listen on "all" interfaces.
If I follow the... Chris Collins
10:53 AM Feature #7007 (Resolved): Change default IPsec/strongswan log levels: Works Jim Pingle
09:25 AM Bug #6836: Wrong queue length on "/status_queues.php" page under heavy traffic: So show me what is applied here and please remove all not applicable redmine "Ts & Cs" links from this site also. Vladimir Suhhanov
09:21 AM Bug #6836: Wrong queue length on "/status_queues.php" page under heavy traffic: The Ts & Cs of the redmine project don't apply here Jim Thompson
01:50 AM Revision e470f721: Rework how IPsec log settings are stored/retreived, adjust the default values. Implements #7007: Jim Pingle

01/07/2017

11:57 PM Revision 43de8397: Don't allow SNMP hostres module to be selected or used with VMware VMs that have a CD/DVD Drive device. Fixes #6882: Jim Pingle
11:55 PM Revision 9a548240: Add VMware detection to system_identify_specific_platform(). Ticket #6882: Jim Pingle
11:10 PM Bug #6836: Wrong queue length on "/status_queues.php" page under heavy traffic: Please point me to the some redmine EULA or law, why I can not use this name anymore like it was used for the 5 last ... Vladimir Suhhanov
12:26 PM Bug #6836 (Assigned): Wrong queue length on "/status_queues.php" page under heavy traffic: please close and reopen this as someone other than "Vladimir Putin".
not kidding. Jim Thompson
10:55 PM Bug #7102: This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: Jim seems it is working, and its a GUI bug.
the command line doesnt give any errors, however I am not 100% sure as... Chris Collins
10:11 PM Bug #7102: This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: Possibly yes as it seems also broken on realtek.
I tried to move both cables to the reX ports but it seems my re1 ... Chris Collins
09:05 PM Bug #7102 (Duplicate): This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: Probably a duplicate of #7066 which appears to be a more general issue. Jim Pingle
09:04 PM Bug #7102 (Resolved): This firewall does not have any interfaces assigned that are capable of using ALTQ traffic shaping for igb interface: Is intel i350 interface
According to this url it can be patched to work. Can the patches please be made on the pf... Chris Collins
10:28 PM Bug #7093 (Rejected): "Outgoing Network Interfaces" is broken in dns resolver settings: I cannot reproduce this on current 2.4 snapshots. I have tried a variety of outgoing and other interface configuratio... Jim Pingle
10:18 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: Jim ALTQ does looks its on the a downward path but still pfSense uses it and the traffic shaper is an established key... Chris Collins
12:13 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: Personally, I think ALTQ is dead. Jim Thompson
10:02 PM Bug #7037: CPU frequency in System Information: The info might well be redundant, but dynamic resizing from different values is poor design. Aslak Sande
08:55 PM Revision 3509ad4f: clarify type of firewall rule needed: A comment on the original PR says that it's not clear if the rule for this needs to be IPv6 or IPv4 with protocol IPv... Stilez y
08:00 PM Feature #7007 (Feedback): Change default IPsec/strongswan log levels: Applied in changeset commit:e470f72139ed54972465e653e27536687ce58b23. Jim Pingle
12:12 PM Feature #7007: Change default IPsec/strongswan log levels: assigned to Pingle for resolution. Jim Thompson
06:48 PM Revision 877b5e10: Merge branch 'RELENG_2_3' of git.netgate.com:pfsense/pfsense into RELENG_2_3: Steve Beaver
06:45 PM Revision ba61a00b: Fix #7100: Steve Beaver
06:44 PM Revision 6d55e876: Fix #7100: Steve Beaver
06:09 PM Bug #6949: username/password not used by proxy support: Looks like the patch on the FreeBSD bug entry was committed. We should be able to pull it in from there. Jim Pingle
06:00 PM Bug #6882 (Feedback): bsnmpd uses all available CPU with hostres module active in some cases: Applied in changeset commit:43de83978ed93c9a4886e2844e341af0f3fe9a05. Jim Pingle
02:26 PM Revision f93e9098: Remove unusued $heading in genhtmltitle(): It came into use in https://github.com/pfsense/pfsense/commit/45eebe10a93fa1e2399c6cdf133ad88dc21ee6e7 but genhtmlti... Phil Davis
01:15 PM Bug #7100 (Resolved): pkg_edit.php - $("#showadv").prop('value') not working: Anonymous
01:01 PM Bug #7100: pkg_edit.php - $("#showadv").prop('value') not working: Works! ;) Thanks. Kill Bill
12:50 PM Bug #7100 (Feedback): pkg_edit.php - $("#showadv").prop('value') not working: Applied in changeset commit:6d55e876755d422e97bacb336f52f577087aa71c. Anonymous
08:36 AM Bug #7100 (Resolved): pkg_edit.php - $("#showadv").prop('value') not working: This code somehow does not work: https://github.com/pfsense/pfsense/blob/master/src/usr/local/www/pkg_edit.php#L1521 ... Kill Bill
12:35 PM Revision 7e33d908: Further internationalization: Steve Beaver
12:23 PM Bug #6974: radvd enabled on a disconnected interface kills RA completely on all interfaces: There is code in radvd to stop sending on interfaces that are no longer transmitting.
I don't know how difficult... Jim Thompson
12:10 PM Bug #7013: Changing group scope to remote does not remove it from group file: you would have to teach each affected process to re-run initgroups(3); setgroups(2); in order for them all to have a ... Jim Thompson
12:08 PM Revision 0a6273e2: Add missing internationalization: Steve Beaver
12:05 PM Todo #7084: Intel IEEE 802.11ac wireless network driver: I don't think we have any hardware to test this with. Jim Thompson
11:06 AM Bug #7101: services_dyndns.php not updating via gateway group, ok with the interface: Sorry, a mistake in line 1...
"with 2 PPPoE connection I have defined 3 DDNS: DDNS1.selfip.net for WADSL, DDNS2.se... Riccardo Di Sarcina
11:03 AM Bug #7101 (Duplicate): services_dyndns.php not updating via gateway group, ok with the interface: Hi,
with 2 connection I have defined 3 DDNS: DDNS1.selfip.net for WADSL, DDNS2.selfip.net for VDSL and DDNS.selfip... Riccardo Di Sarcina
09:10 AM Feature #7099: Make breadcrumbs clickable: I wondered about that also, at the time of the bootstrap conversion, but there was enough going on that I never follo... Phillip Davis
06:54 AM Feature #7099 (Resolved): Make breadcrumbs clickable: Dunno if it's just me, but the entire feature is very much pointless when it's unusable for navigation. Seems pretty ... Kill Bill
08:40 AM Feature #7077: Display negotiated data encryption algorithm in OpenVPN connection status: Great news!
We'll keep an eye out for it Jim Pingle
08:27 AM Feature #7077: Display negotiated data encryption algorithm in OpenVPN connection status: The proposal to add the info to status 2 / 3 has been accepted, and may make it into OVPN 2.4.1. I'll update this whe... Jeff Wischkaemper
06:30 AM Bug #7096: Unbound fails to start on boot if specific network devices are configured in the "Network Interfaces": I have a proposal which should make it easier for development.
I suggest removing the interface selection as is (f... Chris Collins
05:46 AM Feature #7098 (Resolved): RAM Disk Management: RAM Disk Management
https://github.com/pfsense/pfsense/pull/2902
1) Treat the RAM disk more like a permanent stor... NOYB NOYB
05:14 AM Revision c7df3de8: Merge pull request #3346 from scherma/reverting: Jim Pingle
05:14 AM Revision 1a86beff: Merge pull request #3359 from phil-davis/admin_notices: Jim Pingle
02:26 AM Revision a5d486e9: Revise gateway widget config form: Make non-checked checkboxes more visible by adding an outline Steve Beaver
02:24 AM Revision b2daca76: Fix username reference: Phil Davis
01:20 AM Bug #5993: dhcp6c not started until an RA received: The removal of the extra dhc6c_interface_script call does cause a problem for some, those who use dhcpwithoutra and w... Martin Wasley

01/06/2017

11:20 PM Feature #7097 (Feedback): Authentication cache for LDAP and RADIUS: PR merged Jim Pingle
02:41 PM Feature #7097 (Resolved): Authentication cache for LDAP and RADIUS: Currently PFSense does not remember LDAP or RADIUS authentication to the admin portal between requests. This results ... Joash Lewis
11:17 PM Revision 8845e137: openvpn, make sure config is written and not overwritten while starting openvpn, and wait for pid of child process to be written before exiting function: Pi Ba
11:16 PM Feature #7051 (Feedback): Allow control of what users can view and/or clear notices: PR merged Jim Pingle
11:54 AM Feature #7051: Allow control of what users can view and/or clear notices: This should fix it:
https://github.com/pfsense/pfsense/pull/3359
assuming it should be "fixed" Phillip Davis
11:23 AM Feature #7051: Allow control of what users can view and/or clear notices: Ditto, but that VM had apparently been broken in that way for some time and I never noticed until this morning when I... Jim Pingle
11:17 AM Feature #7051: Allow control of what users can view and/or clear notices: The code checks for having the specific new privs to view/clear notices or the "all pages" access. If the "root" user... Phillip Davis
11:05 AM Feature #7051: Allow control of what users can view and/or clear notices: More info: This appears to have happened because the 'admin' user on that VM was somehow not a member of the 'admins'... Jim Pingle
11:02 AM Feature #7051 (Assigned): Allow control of what users can view and/or clear notices: The notice alert/bell isn't displayed to the admin user when this code is in place. If I revert it, they show up. Jim Pingle
05:42 PM Revision fce3edc0: Allow admin to clear notices: Phil Davis
04:51 PM Revision 0fa3348b: Merge branch 'master' of git.netgate.com:pfsense/pfsense: Steve Beaver
04:11 PM Revision 49683e45: Etc/GMT timezone text using ngettext(): (cherry picked from commit 88de4ab06c8a330a3cedf474b3e218a941f6db66) Phil Davis
04:11 PM Revision b31208c1: Merge pull request #3358 from phil-davis/timezone_ngettext: Renato Botelho
02:48 PM Revision 88de4ab0: Etc/GMT timezone text using ngettext(): Phil Davis
02:28 PM Feature #6045: Updates that do not require a reboot should run reroot: Looks like reroot doesn't work with ZFS without changing vfs.root.mountfrom
https://bugs.freebsd.org/bugzilla/show... Renato Botelho
12:56 PM Feature #6045 (Assigned): Updates that do not require a reboot should run reroot: reroot crashes with ZFS. We will have to detect that case and fall back to a traditional reboot (or see if we can get... Jim Pingle
01:49 PM Revision d4fbcb9f: Merge pull request #3356 from phil-davis/gw_widget_filter: Steve Beaver
01:43 PM Bug #7096 (Resolved): Unbound fails to start on boot if specific network devices are configured in the "Network Interfaces": It starts fine if default ALL is selected.
But if specific interfaces are selected instead it prints bind errors a... Chris Collins
01:32 PM Revision 0612d7ca: Make the emphasis stronger when encouraging use of a geographic location time zone.: Jim Pingle
11:59 AM Revision c9911976: Ticket #7089 Enhance Etc/GMT timezone descriptions: These work opposite to the way mere mortals expect.
Read: https://github.com/eggert/tz/blob/master/etcetera
Based on... Renato Botelho
11:58 AM Revision e5f4c829: Ticket #7089 Enhance Etc/GMT timezone descriptions: These work opposite to the way mere mortals expect.
Read: https://github.com/eggert/tz/blob/master/etcetera
Based on... Renato Botelho
11:51 AM pfSense Packages Todo #7055 (Feedback): Update OpenVPN Client Export package with OpenVPN 2.4: This is now live for 2.3.2_1 users as well. What little feedback I received was positive. We'll move forward from her... Jim Pingle
11:46 AM Revision 50af3592: Redmine #7089 Add extra help about timezone: We could also add some text like this to encourage users to choose the "Continent/City" time zones.
(cherry picked fr... Phil Davis
11:46 AM Revision 84adeb8c: Merge pull request #3355 from phil-davis/patch-1: Renato Botelho
11:35 AM Feature #7095 (Resolved): Improve Remote Gateway field description for IPSec VPN Phase 1: I think it would be nice if it would be mentioned that 0.0.0.0 is a valid value for that field
So... Philippe Schnyder
11:33 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: Luke Hamburg wrote:
> _"8.8.8.8 is not a good target"_ huhhh? Then why does https://doc.pfsense.org/index.php/Multi-... Kill Bill
10:29 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: this is from the manual
Connection Health Check: Uses the following methods to check if the WAN interfaces are stil... Michael Kellogg
10:20 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: let me add to this talk past experiences (as i have a couple of maybe the worst isps anywhere ) I had a old dual wan ... Michael Kellogg
10:05 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: Luiz:
_"If you monitor a couple of IPs and one of them is really down, the one you really need access, how you are... → luckman212
09:45 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: Phillip Davis wrote:
> I would like to see something like this also. I had been meaning to look at it a long time ag... Luiz Souza
09:24 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: "excess traffic" -- a 0 byte payload ICMP? I don't think we can call that excess traffic :)
"too much time before... → luckman212
09:23 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: I would like to see something like this also. I had been meaning to look at it a long time ago! Maybe I will play wit... Phillip Davis
09:19 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: No matter how multiple targets are handled, it is worse off in some way (excess traffic, too much time before an outa... Jim Pingle
08:35 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: Can we get this one re-opened? This "bit" me badly yesterday at a customer site. Monitor IP of 8.8.8.8 started "flap... → luckman212
11:30 AM Bug #7034 (Resolved): NTP Orphan Mode stratum setting is not displayed in input field: Jim Pingle
11:22 AM Bug #7034: NTP Orphan Mode stratum setting is not displayed in input field: Just tested again with @2.4.0-BETA (amd64) built on Fri Jan 06 01:41:07 CST 2017, FreeBSD 11.0-RELEASE-p5@ and it's w... Thomas Rieschl
11:09 AM Bug #7094 (Duplicate): Unbound startup syntax is incorrect: This one is perhaps complicated to fix.
Currently if a unbound-control reload is issued then unbound will shutdown... Chris Collins
11:05 AM Bug #7093 (Rejected): "Outgoing Network Interfaces" is broken in dns resolver settings: The "Outgoing Network Interfaces" incorrectly applies the WAN ipv6 link-local when ALL is not selected and also when ... Chris Collins
10:59 AM Feature #7092 (Closed): Kernel modules for alternate congestion control algorithms: These are provided via kernel modules cc_cubic and cc_htcp
I am aware pfsense when its not the endpoint these are ... Chris Collins
10:38 AM Todo #7091 (Not a Bug): Write upgrade code to rename igb devices to em: As announced at [1] igb devices will become em devices on FreeBSD 12. We need to have some upgrade code ready to dete... Renato Botelho
10:27 AM Revision d2b1c52f: Allow hiding of gateways in Gateways Widget: Sometimes there are gateways that I do not care about, so it is handy to
be able to save some space on the dashboard ... Phil Davis
10:17 AM Bug #6837: Gateway Failover does not failback: Wait, _what?_ Default gateway switching is an experimental feature? That checkbox has been there since at least 2.0.... → luckman212
09:12 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: The thing needs to be kept in-line with what the "standard" tz-database distribution is doing. Otherwise, as Jim says... Phillip Davis
08:49 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: pfSense is not other products. And the Etc zones are NOT what you want, likely ever. We have been tempted to remove o... Jim Pingle
08:37 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: In every other environment I've worked in that I can think of, you can pick the -5 and it's correct. Why is this any ... Geoffrey Bricker
07:52 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: You should not be picking what you think is an offset (but is really a special-use time zone). Pick a geographic zone... Jim Pingle
07:51 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: Just so I can be clear, you're saying the intended behavior is that - is + and + is minus? Every other device I've ev... Geoffrey Bricker
06:01 AM Bug #7089 (Feedback): Opposite of + or - is occurring when selecting time zone: Changes were added to let user know about how it works, as proposed by Phil. Renato Botelho
12:59 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: Suggested enhancement to UI:
https://github.com/pfsense/pfsense/pull/3354 Phillip Davis
08:51 AM Bug #6936: OpenVPN client boot race causes intermittent dependent rule failure.: There is a good chance this has been fixed by #6132 so it's worth trying on a current 2.4 snapshot. Jim Pingle
08:43 AM Bug #6936: OpenVPN client boot race causes intermittent dependent rule failure.: Gavin
Have you retested on a recent 2.4 snap? → luckman212
07:20 AM Revision 0436b9a5: Redmine #7089 Add extra help about timezone: We could also add some text like this to encourage users to choose the "Continent/City" time zones. Phil Davis
06:32 AM Bug #7090 (Not a Bug): Firewall rule is ignored when action is pass: Configuration error. Post on the forum for discussion. Jim Pingle
12:17 AM Revision 1794ecbb: Handle the RA Search Domain List when writing out the RADVD config. Fixes #7081: Jim Pingle

01/05/2017

11:38 PM Bug #7089: Opposite of + or - is occurring when selecting time zone: Also, 99.9% of users should be selecting a timezone based on a continent/city in their area. This makes summer time c... Phillip Davis
11:21 PM Bug #7089: Opposite of + or - is occurring when selecting time zone: https://en.wikipedia.org/wiki/Tz_database#Area
"The special area of "Etc" is used for some administrative zones, par... Phillip Davis
08:22 PM Bug #7089: Opposite of + or - is occurring when selecting time zone: Oh and Yes, the time is also incorrect not just the + and the - Geoffrey Bricker
08:09 PM Bug #7089 (Resolved): Opposite of + or - is occurring when selecting time zone: I select ETC/GMT-5 on the web interface, and typing 'date' in shell shows the opposite, +5. I changed to -4, it went ... Geoffrey Bricker
11:21 PM Bug #7090 (Not a Bug): Firewall rule is ignored when action is pass: Hi,
I've got a firewall rule that reads:
States Protocol Source Port Destination Port Gateway Queue Schedule De... Walter Steinlein
11:18 PM Revision 80e7011f: Return partial MAC address matching support to is_macaddr(). Fixes #7088: Jim Pingle
06:30 PM Bug #7081 (Feedback): Search Domains not populating from RA using SLAAC: Applied in changeset commit:1794ecbb8b37fc97bd1d2fe6ab7ecc19d87a9a68. Jim Pingle
10:45 AM Bug #7081: Search Domains not populating from RA using SLAAC: The field "radomainsearchlist" in the GUI is not referenced anywhere in the backend. Needs some research/testing Jim Pingle
10:40 AM Bug #7081 (Resolved): Search Domains not populating from RA using SLAAC: When I enter nameservers in the DNS list for Router Advertisements in unmanaged mode the client will populate with th... Matthew Fine
05:30 PM Bug #7088 (Feedback): DHCP does not accept input into MAC Control Fields.: Applied in changeset commit:80e7011fddd29a387c4c84b68c8c49dce4494729. Jim Pingle
05:19 PM Bug #7088: DHCP does not accept input into MAC Control Fields.: This affects the main DHCP settings page not just the pools
is_macaddr() lost its $partial parameter/support require... Jim Pingle
04:15 PM Bug #7088 (Confirmed): DHCP does not accept input into MAC Control Fields.: Jim Pingle
04:03 PM Bug #7088 (Resolved): DHCP does not accept input into MAC Control Fields.: "If a mac allow list is specified, it must contain only valid partial MAC addresses."
Attempted input (I also trie... Shane Poteet
05:21 PM Revision 1d3fbcc7: Remove redundancy, more indentation cleanup: Joash Lewis
05:19 PM Revision 47f96785: Captive portal: make captiveportal_disconnect_all() faster: captiveportal_disconnect_all() removes the users one at a time and in some cases, when many hundreds of users are con... Caio Plumbeo
04:35 PM Revision bbb28670: Corrected indentation style: Joash Lewis
04:09 PM pfSense Packages Bug #7087 (Rejected): DNSBL service does not start: Is pfBlocker actually installed, enabled, and properly configured?
Please post on the forum in the pfBlockerNG boa... Jim Pingle
03:51 PM pfSense Packages Bug #7087: DNSBL service does not start: Other errors:... Brenden Smerbeck
03:48 PM pfSense Packages Bug #7087 (Rejected): DNSBL service does not start: Noticed this while configuring 2.4. dnsbl service does not start, and the .pid file has no value. Brenden Smerbeck
02:14 PM Revision ea02e3cf: Completes fix for #6972: Steve Beaver
01:10 PM Bug #7053 (Resolved): OpenVPN Client Specific Overrides - GUI Omissions and Errors: Jim Pingle
12:47 PM Revision e551eed0: Correctly report unmonitored gateway status: If an alternate monitor IP has been entered and saved, then the user
checks "Disable Gateway Monitoring" and saves, t... Phil Davis
12:47 PM Revision b6a107ac: Merge pull request #3353 from phil-davis/gw_status_umonitored: Renato Botelho
12:44 PM Revision 46237e23: get_pkg_info() fallback using pkg info if no local copy of repo catalog: *Current behaviour*
At the moment, get_pkg_info() is used to get all information on packages. The parameter _$local... Stilez y
12:44 PM Revision e47af756: get_pkg_info() fallback using pkg info if no local copy of repo catalog: *Current behaviour*
At the moment, get_pkg_info() is used to get all information on packages. The parameter _$local... Stilez y
12:37 PM Bug #7086 (Resolved): stale zfs file systems: I am not sure if this is a bug or a feature. Seems the 'Auto install'-values are used from the native FreeBSD while p... Ekki Gehm
12:29 PM Feature #7085 (New): Edit Firewall Rules Seperator: Once a Firewall Rule Separator is added you cannot edit it. You have to delete and add it again to make any changes. Adam Piasecki
12:02 PM Todo #7084 (Resolved): Intel IEEE 802.11ac wireless network driver: Hey folks,
I wonder if it would be possible to include the if_iwm.ko and related firmware .kos. They are new as of... Ekki Gehm
11:35 AM Bug #7083 (Resolved): Put back some visual hint for required fields: Pretty sure the convention was that the @<fielddescr>@ for a @<required/>@ field was shown in bold in pfSense before ... Kill Bill
11:15 AM Bug #7082: pkg_edit.php - impossible to use default_value with rowhelperfield: I'm kinda unsure that the <default_value> works like that even for non-rowhelperfield fields. :-) What I see in packa... Kill Bill
11:04 AM Bug #7082: pkg_edit.php - impossible to use default_value with rowhelperfield: I will investigate.
I presume the desired functionality is that if the element has no current (stored) value, the ... Anonymous
11:00 AM Bug #7082 (New): pkg_edit.php - impossible to use default_value with rowhelperfield: I mean, things like:... Kill Bill
10:52 AM Bug #5673: pkg_edit - Rowhelper descriptions are not printing: So, is it possible to have the @<description>@ tag printed somehow? (As a hover on the @<fielddescr>@ or whatever?) W... Kill Bill
10:48 AM Bug #6972 (Resolved): "Are you sure you wish to?" prompts and other issues with deleting networks from network-type aliases: Renato Botelho
10:34 AM Bug #6972: "Are you sure you wish to?" prompts and other issues with deleting networks from network-type aliases: Looks all good here. Thanks. ;) Kill Bill
08:15 AM Bug #6972: "Are you sure you wish to?" prompts and other issues with deleting networks from network-type aliases: Fixed. Please retest. Anonymous
10:45 AM Bug #7080 (Resolved): pkg_edit.php - rowhelper fielddescr disappears when last row is deleted: Jim Pingle
10:38 AM Bug #7080: pkg_edit.php - rowhelper fielddescr disappears when last row is deleted: Well, this was apparently another manifestation of Bug #6972. The issue seems gone with ea02e3cf5d54c9f1ebbe09d9fa552... Kill Bill
08:25 AM Bug #7080 (Feedback): pkg_edit.php - rowhelper fielddescr disappears when last row is deleted: Unable to reproduce with Safari, Firefox or Chrome. Am I doing something wrong?
!rowhelper.gif! Anonymous
08:10 AM Bug #7080 (Resolved): pkg_edit.php - rowhelper fielddescr disappears when last row is deleted: An example: https://github.com/pfsense/FreeBSD-ports/blob/devel/www/pfSense-pkg-squid/files/usr/local/pkg/squid_rever... Kill Bill
10:38 AM Bug #7050: Limiter with PFsense 2.4 transparent proxy: yeah, sort of. this is a fallout of 4326 not being properly tested under all conditions (nat, binat and rdr) - they ... Luiz Souza
08:00 AM Feature #7077: Display negotiated data encryption algorithm in OpenVPN connection status: "verbosity 4"? As in the system logs? Sure, it's in the logs, sure, but scraping logs isn't proper status output. It ... Jim Pingle
07:52 AM Feature #7077: Display negotiated data encryption algorithm in OpenVPN connection status: Their initial reply is that it's available if you use verbosity 4... which is correct, but not entirely useful. I'm a... Jeff Wischkaemper
07:57 AM Revision 0c5d4e8d: Correctly report unmonitored gateway status: If an alternate monitor IP has been entered and saved, then the user
checks "Disable Gateway Monitoring" and saves, t... Phil Davis
07:49 AM pfSense Packages Bug #6950 (Resolved): Auto Config Backup always reports success: Renato Botelho
04:04 AM pfSense Packages Bug #6950: Auto Config Backup always reports success: Works (at least for cases where write_config() returns false, and there's not really much else that could be done here.) Kill Bill
07:20 AM Bug #7033: Hidden rule break the policy routing: Jim Pingle wrote:
> Duplicate of #1136
>
> If you must have a second gateway on WAN, add floating rules to match ... Maxence Sartiaux
06:17 AM pfSense Packages Feature #6951 (Resolved): Disable Auto Config Backup without uninstalling: Renato Botelho
04:01 AM pfSense Packages Feature #6951: Disable Auto Config Backup without uninstalling: Merged and works, can be closed. Kill Bill
03:09 AM Revision cd45956e: Fix label for consistency.: Jim Pingle
03:04 AM Revision 09b2a4ce: Merge pull request #3351 from phil-davis/patch-2: Jim Pingle
03:03 AM Revision 383bbc17: vpn_openvpn_client comment typo: Same stuff was copied here Phil Davis
03:01 AM Revision 531c3486: Correct the method used for input validation of NTP Orphan mode. Fixes #7034: Jim Pingle
02:55 AM Revision c6945de7: Merge pull request #3350 from phil-davis/patch-1: Steve Beaver
02:52 AM Revision 20fb094c: vpn_openvpn_server comment typo: Phil Davis
01:51 AM Revision b6dd335e: Fix up OpenVPN CSC page help text, add IPv6 tunnel network. Fixes #7053: Jim Pingle

01/04/2017

11:16 PM pfSense Packages Todo #7055: Update OpenVPN Client Export package with OpenVPN 2.4: I just pushed this to 2.3.3 as well for more testing. Jim Pingle
07:58 AM pfSense Packages Todo #7055: Update OpenVPN Client Export package with OpenVPN 2.4: A new version of OpenVPN client export for pfSense 2.4 with OpenVPN 2.4 is up now for testing.
Key changes:
* Ope... Jim Pingle
10:50 PM Bug #6962 (Resolved): GUI allows selecting missing diffe-helman Paremeters for OpenVPN: I fixed this up among the other OpenVPN improvements this week. Jim Pingle
09:15 PM Revision d31a02b8: Fix a probably copy/paste error: Renato Botelho
09:14 PM Revision a1650bb7: Fix a probably copy/paste error: Renato Botelho
09:14 PM Revision 5fbb0cd7: As done on OpenVPN Server, delete tunnel when dev_mode changes so new device is created accordingly: Renato Botelho
09:14 PM Revision 21504a52: As done on OpenVPN Server, delete tunnel when dev_mode changes so new device is created accordingly: Renato Botelho
09:11 PM Revision 16fbe9b7: change as commented and remove redundant help text: Stilez y
09:10 PM Todo #7054 (Resolved): Update OpenVPN to 2.4.0: Jim Pingle
09:10 PM Bug #7034 (Feedback): NTP Orphan Mode stratum setting is not displayed in input field: Applied in changeset commit:531c348639adb8b7e7d190e8fdab709fea61f61a. Jim Pingle
09:00 PM Bug #7034 (Confirmed): NTP Orphan Mode stratum setting is not displayed in input field: Yep, something isn't quite right with how it's doing validation. Jim Pingle
03:45 PM Bug #7034: NTP Orphan Mode stratum setting is not displayed in input field: I just tested it with the current nightly (@2.4.0-BETA (amd64) built on Wed Jan 04 13:38:53 CST 2017; FreeBSD 11.0-RE... Thomas Rieschl
09:06 PM Revision 3b1642ff: Destroy tun/tap device when delete OpenVPN tunnel: Renato Botelho
09:06 PM Revision 9272a448: Remove unnecessary reference: Renato Botelho
09:06 PM Revision d37d7c3a: Fix conditional to work as expected when $id == 0: Renato Botelho
09:06 PM Revision 65bb2289: Remove unnecessary reference: Renato Botelho
09:06 PM Revision 99969821: Fix conditional to work as expected when $id == 0: Renato Botelho
08:57 PM Revision b191e31e: No longer add "null" to the selector when clicking a blank area: Steve Beaver
08:57 PM Revision 54c90c35: Minor help text change: Steve Beaver
08:55 PM Revision a0052ea3: left label as comment above: Stilez y
08:53 PM Revision 636a410c: Remove direct calls to /sbin/ifconfig destroy by pfSense_interface_destroy(): Renato Botelho
08:53 PM Revision 414aa359: Remove direct calls to /sbin/ifconfig destroy by pfSense_interface_destroy(): Renato Botelho
08:52 PM Revision ef703804: Revert "Destroy tun/tap device when delete OpenVPN tunnel": This reverts commit 0a07be0287189cda229fab27ad733e9de3dc12f5. Renato Botelho
08:52 PM Revision a075265e: Various wording changes: Stilez y
08:38 PM Revision 0a07be02: Destroy tun/tap device when delete OpenVPN tunnel: Renato Botelho
08:35 PM Revision 625b688c: Fix NCP breaking save on a new server/client. Ticket #7072: Jim Pingle
08:28 PM Revision e2f0ad13: Some improvements to the NCP validation. Ticket #7072: Jim Pingle
08:00 PM Bug #7053 (Feedback): OpenVPN Client Specific Overrides - GUI Omissions and Errors: Applied in changeset commit:b6dd335e6b81c89f2e4dd63cbd638853ebe2a275. Jim Pingle
07:51 PM Feature #7061 (Resolved): OpenVPN 2.4 supports pushing IPv6, allow the GUI to define IPv6 OpenVPN DNS servers to push to clients.: Jim Pingle
07:45 PM Revision fa351dd3: Add NCP options to OpenVPN client. Fixes #7072: Jim Pingle
07:45 PM Revision 9423ff32: Whitespace fixes. Ticket #7072: Jim Pingle
07:34 PM Bug #6099: igmpproxy does not recognize upstream interface: Is the change also available to 2.3.3 branch ? Alexandre Paradis
09:00 AM Bug #6099: igmpproxy does not recognize upstream interface: Luiz Otavio O Souza wrote:
> Ooops. Sorry for the breakage.
>
> Fixed in the latest version.
>
> Thanks for t... Lars Veldcholte
05:51 AM Bug #6099 (Resolved): igmpproxy does not recognize upstream interface: Renato Botelho
07:14 PM Feature #7077: Display negotiated data encryption algorithm in OpenVPN connection status: I'll see what I can do and report back. Jeff Wischkaemper
07:09 PM Feature #7077: Display negotiated data encryption algorithm in OpenVPN connection status: Nothing in particular comes to mind, it would be nice to see all of the known parameters for connecting clients/serve... Jim Pingle
06:45 PM Feature #7077: Display negotiated data encryption algorithm in OpenVPN connection status: Will do. Is there something specific I can ask for over there that would make it easier for you? Jeff Wischkaemper
05:31 PM Feature #7077 (Needs Patch): Display negotiated data encryption algorithm in OpenVPN connection status: We have no way to detect that currently. OpenVPN does not report that in any of their status output. Open a feature r... Jim Pingle
03:59 PM Feature #7077 (Resolved): Display negotiated data encryption algorithm in OpenVPN connection status: NCP is great. Not knowing what cipher NCP negotiated is less great.
It would be excellent to add something on the... Jeff Wischkaemper
07:13 PM Revision a095e8b2: Load current saved value to display in GUI: Joash Lewis
07:10 PM Revision d66cfa3d: Validate the submitted Encryption Algorithm and NCP Algorithm list. Ticket #7072: Jim Pingle
06:58 PM Revision a5978b9a: Server side validation and description amendment: Joash Lewis
06:57 PM Revision c73367d2: Add backend support to OpenVPN for NCP. Ticket #7072: Jim Pingle
06:55 PM Revision 280f0009: Set default in 'else' of if block: Joash Lewis
06:48 PM Bug #7079 (Closed): ClamAV C-ICAP causing Kernel Panic and System Crash: Running ClamAV causes sporadic kernel panics and resets with the following syntax:... Brenden Smerbeck
06:44 PM Feature #7078: Allow reordering of client specific overrides in OpenVPN: Organization, primarily. I have about 100 of them which are are generally speaking associated with different sites. I... Jeff Wischkaemper
05:27 PM Feature #7078: Allow reordering of client specific overrides in OpenVPN: For what purpose? They are all mutually exclusive. Jim Pingle
05:02 PM Feature #7078 (New): Allow reordering of client specific overrides in OpenVPN: It would be useful to rearrange the client specific overrides in OpenVPN. Jeff Wischkaemper
06:36 PM Revision 9d773c17: Fix NCP defaults when editing an OpenVPN server, some help changes/fixes for NCP as well.: Jim Pingle
06:22 PM Feature #7072 (Resolved): vpn_openvpn_server.php / vpn_openvpn_client.php : Add controls to OpenVPN for Negotiable Crypto Parameters: Looks good Jim Pingle
04:26 PM Feature #7072 (Feedback): vpn_openvpn_server.php / vpn_openvpn_client.php : Add controls to OpenVPN for Negotiable Crypto Parameters: Fixed Anonymous
03:38 PM Feature #7072 (Assigned): vpn_openvpn_server.php / vpn_openvpn_client.php : Add controls to OpenVPN for Negotiable Crypto Parameters: There's one little problem left with the NCP list control. Clicking in empty area on the right side adds a "null" ent... Jim Pingle
01:50 PM Feature #7072 (Feedback): vpn_openvpn_server.php / vpn_openvpn_client.php : Add controls to OpenVPN for Negotiable Crypto Parameters: Applied in changeset commit:fa351dd3c13e65dfabfb0f2ac2ed72b332276892. Jim Pingle
01:12 PM Feature #7072: vpn_openvpn_server.php / vpn_openvpn_client.php : Add controls to OpenVPN for Negotiable Crypto Parameters: See also:
* commit:bd07fbdb4b81fc358b8fa55b06469dde7a3870df
* commit:6c00adf3316d2c5214f7e9cf2e5f138c32845d58
* co... Jim Pingle
06:17 PM Revision 6c00adf3: Fix copy/paste error: Jim Pingle
06:16 PM Revision d6c4d9a0: Fix ntp gps status: - trim sat in use
- gps ok for GPGLL
- lat & lon direction for GPGGA & GPGLL
- sat in use text position fixed
(cherr... Jack Booth
06:16 PM Revision 03faed2b: Merge pull request #3326 from jskyboo/master: Renato Botelho
06:12 PM Revision bd07fbdb: Partial solution to #7072: Requires "Back-end" stuff to actually use this, and should be copied to the client page too Steve Beaver
04:37 PM Revision 414d2720: Captive portal: rework logging and RADIUS accounting when disabling a zone or rebooting: Make captiveportal_radius_stop_all() log the disconnections in the system log and fix it so that it works with the zo... Caio Plumbeo
04:36 PM Revision 364d473b: Merge pull request #3315 from plumbeo/accounting-on-disable-reboot: Renato Botelho
04:25 PM Revision 8ebf7ce7: Captive portal: use locking to avoid race conditions between rc.prunecaptiveportal and captiveportal_disconnect_all(): Convert rc.prunecaptiveportal to lock()/unlock()/try_lock() and use the lock to ensure that there aren't race conditi... Caio Plumbeo
04:25 PM Revision 2795722b: Captive portal: work around race condition between captiveportal_disconnect_all() and captiveportal_prune_old(): Captiveportal_disconnect_all() loops through the active users and disconnects them immediately but doesn't remove the... Caio Plumbeo
04:24 PM Revision 91ba532c: Merge pull request #3316 from plumbeo/fix-disconnect-all: Renato Botelho
04:17 PM Revision 7f799b0b: Make appropriate success or danger boxes in system_crlmanager: When there is a problem, the messages should be in a "danger" box.
Note: It is a bit difficult to actual get the dang... Phil Davis
04:17 PM Revision 9622df3f: Merge pull request #3348 from phil-davis/patch-2: Renato Botelho
04:15 PM Revision 0349ebaa: Remove unused print_info_box($savemsg): These are files that make no use of $savemsg.
May as well remove the print_info_box($savemsg) to avoid future
confusi... Phil Davis
04:15 PM Revision 65c02630: Merge pull request #3349 from phil-davis/unused_savemsg: Renato Botelho
04:08 PM Revision 6b680dac: dyndns.class, fix json curl body parsing for Cloudflare by not including headers: (cherry picked from commit 15dcf1320c08eb9339eda3e6fdf04599c51694b7) Pi Ba
04:08 PM Revision b628775d: Merge pull request #3342 from PiBa-NL/dyndns.class_json_body: Renato Botelho
04:07 PM Revision 8323e1d7: Change wording: (cherry picked from commit 6c1e85e544814d336b47fbc782a6aff77ea7301f) Doktor Notor
04:07 PM Revision ff2c0021: Update format: (cherry picked from commit 3d116b5c8d5c6474821d3a6607f9fa929df2f481) Doktor Notor
04:07 PM Revision 1d0322b5: Improve Unbound forwarding mode description: Make this consistent with System - General Setup - DNS Server Settings.
(cherry picked from commit 58523c575f9d075f0a... Doktor Notor
04:07 PM Revision 9e0fab88: Improve - System - General - DNS Server Settings descriptions: - Add missing DNS Resolver references
- Nuke PPTP VPN mentions
- Use letter case consistently.
The "Disable DNS Forw... Doktor Notor
04:07 PM Revision c1510eda: Merge pull request #3338 from doktornotor/patch-1: Renato Botelho
04:05 PM Revision 930b2110: firewall_rules_edit stop Floating field displaying: Seems to fix https://redmine.pfsense.org/issues/7057
But I have not looked underneath the hood - just copied the way ... Phil Davis
04:05 PM Revision 956be41c: Merge pull request #3329 from phil-davis/patch-1: Renato Botelho
03:48 PM Revision 23bd0f9d: Added support for CloudFlares Proxy.: Included a checkbox to enable and disable this feature when CloudeFlare
type is selected.
Included proxied variable i... CarlGill
03:48 PM Revision 901acd1f: Merge pull request #3132 from WorldTech-Solutions/master: Renato Botelho
02:37 PM Bug #6972: "Are you sure you wish to?" prompts and other issues with deleting networks from network-type aliases: To reproduce:
1/ Edit some alias
*2/ Add some rows*
3/ Now, try to delete them (or the previously existing rows)... Kill Bill
02:33 PM Bug #6972: "Are you sure you wish to?" prompts and other issues with deleting networks from network-type aliases: I am unable to reproduce this in the updated version. Clicking the trash can icon previously did not delete for me, b... Anonymous
02:08 PM Bug #6972 (Assigned): "Are you sure you wish to?" prompts and other issues with deleting networks from network-type aliases: Renato Botelho
01:35 PM Bug #6972: "Are you sure you wish to?" prompts and other issues with deleting networks from network-type aliases: OK, got to testing. As a good news, the annoying prompt is gone. The second symptom (unable to delete added rows when... Kill Bill
01:53 PM Revision f69e098f: Fix #7074: Fix automatic port number guessing: Rework openvpn_port_used() to take care of following conflicts after
ticket #7062 was committed:
* "UDP" is dual sta... Renato Botelho
01:40 PM Revision feec858c: Remove this extra comma. It's not causing a syntax error but it's also not necessary.: Jim Pingle
01:07 PM Revision 32771b5a: Rework openvpn_vpnid_next() and remove duplicated code: Renato Botelho
01:07 PM Revision 65d0277d: Rework openvpn_vpnid_next() and remove duplicated code: Renato Botelho
12:14 PM Bug #7074 (Resolved): Due to OpenVPN protocol selection changes, automatic port number guessing/adjustment is not working: I tried a few combinations and it all worked. Creating a new instance or using the wizard properly guessed the next h... Jim Pingle
08:00 AM Bug #7074 (Feedback): Due to OpenVPN protocol selection changes, automatic port number guessing/adjustment is not working: Applied in changeset commit:f69e098f41bb3937b244b557969009535a911ef4. Renato Botelho
06:48 AM Bug #7074: Due to OpenVPN protocol selection changes, automatic port number guessing/adjustment is not working: I'll work on it Renato Botelho
12:13 PM pfSense Packages Bug #6527 (Feedback): Squid 3.5 - Deprecated "ssl_bump server-first all" don't allow SNI in transparent mode with HTTPS/SSL Interception: PR has been merged to 2.4.0 and 2.3.3 snapshots Renato Botelho
11:32 AM Feature #7071 (Resolved): Add TLS Encryption (--tls-crypt) as an optional TLS Key usage type for OpenVPN 2.4: Works Jim Pingle
11:24 AM Revision c6aca57d: Remove duplicated if block: Joash Lewis
10:54 AM Bug #7076 (Duplicate): Packets accepted by IP but rejected because "Allow IP options" is disabled are not logged: Hi,
I added a rule to allow multicast traffic by IP without "Allow IP options" enabled (because I did not yet know... JJ Meijer
10:46 AM Bug #6906 (Resolved): Issues with /tmp and /var in RAM on 2.4: Works fine on two different systems here, thanks! Jim Pingle
08:13 AM Bug #6906 (Feedback): Issues with /tmp and /var in RAM on 2.4: The issue was happening on ZFS and should be fixed after commit:b712dd529e2445fc20e983815a80a4e8ea109760 Renato Botelho
10:19 AM Bug #5993: dhcp6c not started until an RA received: OK, had a look around that bit of code. This is what I have found:
1. RTSOLD still launches multiple dhcp6c client... Martin Wasley
02:41 AM Bug #5993: dhcp6c not started until an RA received: The dhcpc before RA was originally my fix for an issue we have with Sky ISP in the U.K. I got very busy with work and... Martin Wasley
09:55 AM Bug #6856 (Duplicate): "Force Config Settings" buton on master causes slave to loss IP alises on lo0: Duplicate of #7010 which is already fixed. Jim Pingle
09:52 AM Revision 24a4f2ef: Remove unused print_info_box($savemsg): These are files that make no use of $savemsg.
May as well remove the print_info_box($savemsg) to avoid future
confusi... Phil Davis
09:45 AM Revision 61d1ca3e: Make appropriate success or danger boxes in system_crlmanager: When there is a problem, the messages should be in a "danger" box.
Note: It is a bit difficult to actual get the dang... Phil Davis
02:35 AM Revision b743ea87: Add some more help text to OpenVPN pages.: Jim Pingle
01:14 AM Bug #4310: Limiters + HA results in hangs on secondary: Dear Luiz! Can we expect real fix in 2.4? We are waiting for it too long, and this is a really critical problem, sinc... Vladimir Usov
12:42 AM Revision cc38ae2d: Build net-snmp for experimentation purposes.: Jim Pingle

01/03/2017

11:31 PM Revision 4034876f: Fix indentation: Joash Lewis
11:30 PM Bug #7050: Limiter with PFsense 2.4 transparent proxy: Luiz Otavio O Souza wrote:
> The issue here is limiter (dummynet) and pf redir on the same interface.
> The transpa... Kill Bill
05:45 PM Bug #7050 (Confirmed): Limiter with PFsense 2.4 transparent proxy: The issue here is limiter (dummynet) and pf redir on the same interface.
The transparent proxy adds a rdr rule to ... Luiz Souza
11:24 PM Revision 79e18c9f: Merge branch 'master' into reverting: Joash Lewis
11:23 PM Revision 47ec605d: Enable setting auth refresh time in GUI: Joash Lewis
11:16 PM Revision 457c4151: GUI auth refresh timer preference: Joash Lewis
11:06 PM Revision 6240c8fe: Override default timer if set in system config: Joash Lewis
10:26 PM Revision 02b8b883: Cache authentication for a short time: Currently there is an authentication lookup for every GET; a single page load can cause dozens of lookups and hundred... Joash Lewis
10:18 PM Revision 745b8095: Cache authentication for a short time: Currently there is an authentication lookup for every GET; a single page load can cause dozens of lookups and hundred... Joash Lewis
09:23 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: I also see this on Hyper-V virtual NICs (not legacy). Perhaps this is a more generalized issue?
Michael OBrien
05:14 PM Bug #7066: vmx(4) interfaces do not have ALTQ support on pfSense 2.4, they had ALTQ support on 2.3: This appears to be caused by r263259 in FreeBSD 11 - Add Tx/Rx multiqueue support to vmx(4).
I believe that ALTQ d... Greg Siemon
08:59 PM Revision 9416a5a3: SESSION remembers authentication instead of checking for every HTTP request: Joash Lewis
08:52 PM Revision b399d623: SESSION remembers authentication instead of checking for every HTTP request: Joash Lewis
05:46 PM Bug #6594: Package reinstallation post-config restore hangs if no Internet connectivity: I was just hit by this as well. In my case I am preparing to replace a device at a remote site. I used pfsense's rest... Pig Monkey
04:47 PM Revision 4cfd15a9: Replace "client-cert-not-required" with "verify-client-cert none". Fixes #7073: Jim Pingle
04:44 PM Bug #6099: igmpproxy does not recognize upstream interface: No problem, sh** happens ;-)
I updated my box today to version 2.4.0.b.20170103.0147.
Checked igmpproxy for new b... Philipp Haefelfinger
03:39 PM Revision b8b6a303: Add some help text to OpenVPN client/server for encryption and auth digest.: Jim Pingle
03:29 PM Revision c854afcc: Add --tls-crypt support for OpenVPN servers and clients. Implements #7071: Jim Pingle
02:27 PM Revision b712dd52: Make sure ZFS partiion is mounted read-write before try to change items in filesystem: Renato Botelho
01:50 PM Revision 23adb26d: Break some long lines, no functional changes: Renato Botelho
01:39 PM Revision 858e0d8d: Rework logic and reduce indent levels. No functional changes: Renato Botelho
01:34 PM Revision 3a92e10c: Fix #6357: Validate if RFC2136 dyndns updates succeeded: Renato Botelho
01:34 PM Revision 3bfb38f9: Fix #6357: Validate if RFC2136 dyndns updates succeeded: Renato Botelho
01:03 PM pfSense Packages Bug #6987: ntopng needs Google API key for GeoIP map: It is working on 2.3.3 snapshots as well. Kill Bill
11:21 AM pfSense Packages Bug #6987: ntopng needs Google API key for GeoIP map: Thanks, that's the information I was missing.
Stuart Wyatt
08:29 AM pfSense Packages Bug #6987: ntopng needs Google API key for GeoIP map: ntopng 2.4 is available on pfSense 2.4, and it works there. If/when the package is updated on other branches it will ... Jim Pingle
08:16 AM pfSense Packages Bug #6987: ntopng needs Google API key for GeoIP map: The bug referenced the need for ntopng version 2.4 to resolve the problem, so why is it being closed when version 2.2... Stuart Wyatt
05:28 AM pfSense Packages Bug #6987 (Closed): ntopng needs Google API key for GeoIP map: Renato Botelho
03:46 AM pfSense Packages Bug #6987: ntopng needs Google API key for GeoIP map: Apparently no patching required with ntopng-2.4.2016.10.14 - you can configure the API key in Preferences - Users - G... Kill Bill
11:53 AM Bug #7075 (Resolved): firewall states show negative value for total bytes processed: As seen in the screenshot, the "Firewall >> Rules >> LAN" page shows a negative number for total bytes processed by a... Bryan Stenson
11:42 AM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: According to this
https://lists.freebsd.org/pipermail/freebsd-net/2013-May/035564.html
Script that can solve CPU 1... Vladimir Suhhanov
11:10 AM Bug #7073 (Resolved): OpenVPN 2.4: client-cert-not-required is deprecated, replace with "verify-client-cert none": Works Jim Pingle
11:10 AM Bug #7073 (Feedback): OpenVPN 2.4: client-cert-not-required is deprecated, replace with "verify-client-cert none": Applied in changeset commit:4cfd15a94a97445d1334ad87bddf0c3700f74bf2. Jim Pingle
10:38 AM Bug #7073 (Resolved): OpenVPN 2.4: client-cert-not-required is deprecated, replace with "verify-client-cert none": In OpenVPN 2.4 "client-cert-not-required" is deprecated, the new functional equivalent directive is "verify-client-ce... Jim Pingle
11:10 AM Bug #7068 (Resolved): Prevent GCM encryption from being selected for Shared Key modes in OpenVPN: Works Jim Pingle
11:09 AM Feature #7064 (Resolved): Add LZO4 options for OpenVPN 2.4: Seems to work in every combination I've thrown at it. Jim Pingle
10:58 AM Bug #7074 (Resolved): Due to OpenVPN protocol selection changes, automatic port number guessing/adjustment is not working: After the protocol selection changes needed for #7062, the OpenVPN server page is not adjusting the port numbers like... Jim Pingle
09:56 AM Feature #7072 (Resolved): vpn_openvpn_server.php / vpn_openvpn_client.php : Add controls to OpenVPN for Negotiable Crypto Parameters: OpenVPN 2.4 automatically attempts to negotiate crypto between the client and server, due to this, the tunnel can end... Jim Pingle
09:40 AM Feature #7071 (Feedback): Add TLS Encryption (--tls-crypt) as an optional TLS Key usage type for OpenVPN 2.4: Applied in changeset commit:c854afcc3d7830414a2514a640248a5b239569a3. Jim Pingle
09:27 AM Feature #7071 (Resolved): Add TLS Encryption (--tls-crypt) as an optional TLS Key usage type for OpenVPN 2.4: OpenVPN 2.4 added --tls-crypt which works similar to --tls-auth, but also encrypts the control channel. It does not r... Jim Pingle
08:20 AM Revision 3cb0c7c3: vpn_ipsec_settings - do not redirect on save: When the user presses save, and there are no input errors, the data is
saved - good. But the page redirects away to i... Phil Davis
08:16 AM Revision 32973108: Ignore return from system_syslogd_start: system_syslogd_start returns the retrn value from mwexec_bg, which is
the PID of the background process. It is not an... Phil Davis
08:00 AM Bug #6357 (Feedback): Dynamic DNS (RFC2136) updates always considered successful: Applied in changeset commit:3bfb38f99cd1c15b5d502b3dbabc913226550d9c. Renato Botelho
07:24 AM Bug #6357 (Assigned): Dynamic DNS (RFC2136) updates always considered successful: Renato Botelho
05:30 AM Todo #7054 (Feedback): Update OpenVPN to 2.4.0: Basic updates are complete, now dealing with specific changes in separate tickets Renato Botelho
05:26 AM Bug #7070 (Duplicate): Sync username for xmlrmc seems considerate: Already fixed on 2.4.0 - see #809 Renato Botelho
05:01 AM Bug #7070 (Duplicate): Sync username for xmlrmc seems considerate: On master I do the folowing configuration:
!pfsense.png!
I have the folowing log on master :
@/rc.filter_sync... Lilian Deloche
05:05 AM Revision 44c42356: Report problems applying changes: 1) Strictly keep track of the accumulating $retval from calls to various
functions that apply changes.
2) Use new fun... Phil Davis
03:49 AM pfSense Packages Bug #7067: usbhid-ups - no such file or directory: There is no such thing needed, simply reboot after installing the package. Kill Bill
03:35 AM Revision 46c06ade: Fix typo. Ticket #7068: Jim Pingle
03:29 AM Feature #7069: Provide knob to disable state display in Diagnostics > States until a filter has been submitted.: https://github.com/pfsense/pfsense/pull/3344 Chris Linstruth
12:53 AM Feature #7069 (Resolved): Provide knob to disable state display in Diagnostics > States until a filter has been submitted.: Diagnostics > States becomes cumbersome on systems with large state tables. Provide a mechanism to suppress the displ... Chris Linstruth
03:18 AM Revision c13c0fd0: Reject the invalid OpenVPN combination of static key + GCM. Fixes #7068: Jim Pingle
02:24 AM Revision a4b36246: Bring compression options in line with OpenVPN 2.4. Note that the old style options are deprecated/legacy but don't remove yet, for compatibility. Implements #7064: Jim Pingle
12:10 AM Feature #2358: NAT64 support: UPVOTE!
First of all, thank you for the great open source firewall product. As Apple starts to require all the new... DB Tsai

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

02/01/2017

01/31/2017

01/30/2017

01/29/2017

01/28/2017

01/27/2017

01/26/2017

01/25/2017

01/24/2017

01/23/2017

01/22/2017

01/21/2017

01/20/2017

01/19/2017

01/18/2017

01/17/2017

01/16/2017

01/15/2017

01/14/2017

01/13/2017

01/12/2017

01/11/2017

01/10/2017

01/09/2017

01/08/2017

01/07/2017

01/06/2017

01/05/2017

01/04/2017

01/03/2017