Activity

30 days up to

User

Subprojects

Activity

From 03/03/2017 to 04/01/2017

04/01/2017

11:27 PM Bug #6340: fsck hangs boot in background, fails to produce any action, resulting in broken firewall: After power cycling an appliance running 2.4.0.b.20170401.1306 with UFS FS for over an hour, dozens of fsck's were tr... Anonymous
11:23 PM Bug #7443 (Resolved): Issues Creating IPv6 Static Mappings: There are a few issues creating IPv6 static mappings.
When entering the address for IPv4 static mapping, the entir... Daryl Morse
09:36 PM Bug #6594: Package reinstallation post-config restore hangs if no Internet connectivity: On 2.4.0.b.20170401.1306, when a backup from 2.4.0.b.20170328.1156 is restored with no WAN connectivity the attached ... Anonymous
08:14 PM Bug #7075: firewall states show negative value for total bytes processed: Can not duplicate this behavior in 2.4.0.b.20170401.1306, only positive numbers in the States column Anonymous
08:01 PM Bug #7231: Web UI does not properly remove priq shaping rules when deleting an interface which causes subsequent rule failures without warning in the UI: On 2.4.0.b.20170401.1306, when attempting to delete an interface with traffic shaping configured, there is a warning ... Anonymous
07:52 PM Bug #7254: Selection from long tab list that uses dropdown does not POST correctly: Could not reproduce this on 2.4.0.b.20170401.1306 with twelve interfaces configured Anonymous
07:41 PM Bug #7316: Fail Boostrap format port in: On 2.4.0.b.20170401.1306 when editing a port alias, hovering over the Port field shows 'A port number, port number ra... Anonymous
07:37 PM Bug #7422: Typo in OpenVPN NCP description: Today's latest snapshot 2.4.0.b.20170401.1306 also does not have the 'z'. Anonymous
07:33 PM Bug #7435: Cannot edit IP address in a host override: I am not able to reproduce this in DNS Resolver (unbound) on 2.4.0.b.20170401.1306. Anonymous
06:21 PM pfSense Packages Bug #7440: Tinc package WEB GUI not picking up changes made on filesystem: Ok. Thank you. I can understand it would be difficult to write a parser for these config files, especially since they... Stephen Walker-Weinshenker
06:19 PM pfSense Packages Bug #7440: Tinc package WEB GUI not picking up changes made on filesystem: Put the settings in the GUI. That's how every part of pfSense works. Manual changes to files will always be overwritt... Jim Pingle
06:16 PM pfSense Packages Bug #7440: Tinc package WEB GUI not picking up changes made on filesystem: I understand that this is not the approved way to do things, but now that I have done it, is there any way to get the... Stephen Walker-Weinshenker
06:12 PM pfSense Packages Bug #7440 (Rejected): Tinc package WEB GUI not picking up changes made on filesystem: That's not how it's meant to work. All settings must go into the GUI, and the filesystem contents are written out fro... Jim Pingle
05:51 PM pfSense Packages Bug #7440 (Rejected): Tinc package WEB GUI not picking up changes made on filesystem: I have been setting up a tinc VPN using a pfsense firewall/router as one of the nodes and everything is working fine,... Stephen Walker-Weinshenker
06:05 PM Feature #7442 (New): Suggestions for Diagnostics / ARP Table and Diagnostics / NDP Table: Add status to NDP Table.
Add delete to NDP Table.
Add ping to ARP Table and NDP Table.
Add selection box so ... Daryl Morse
06:05 PM Feature #7441 (New): Display start/end times for Static Mapping leases on DHCP Leases/DHCPv6 Leases: Display start and end for static leases. (Even if address is reserved, it's useful to know the status.)
Add ping t... Daryl Morse
02:29 PM pfSense Packages Feature #6651: Loopback interfaces: +1 for this request. The ability is there as Chris mentioned, but IPs can only be bound to lo0. Additionally, an opti... Anonymous

03/31/2017

01:01 PM Bug #7439 (Closed): IKE_SA (IKEv2) does not rekey on break before make startegy, just issues IKE_DELETE and connection is closed: h1. 2.4.0-BETA-amd64-20170228-0411
Both MSW 10 and macOS 10.12 does not rekey IKE_SA on _break-before-make_ starte... Reinis Adovics
11:02 AM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name: I'm also experiencing this bug with 2.3.3-RELEASE (amd64) using Unbound and no BIND. LAN (renamed "LAN1") serves regu... Hannes van Vuuren
07:51 AM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name: With Unbound and the newest release of pfSense ATM (2.3.3-RELEASE-p1 (amd64)) it isn't working for one of four interf... xander bron
08:14 AM pfSense Packages Bug #7437: Mail Report package 3.1 removed support for STARTTLS: Is it possible delete or replace attachment here?
Seems like I can edit message, but not delete or replace attached ... Dmitry Gromov
07:52 AM pfSense Packages Bug #7437: Mail Report package 3.1 removed support for STARTTLS: Of course, I tested it - see attached screenshot, in this case notifications cease to works as well as reports.
On... Dmitry Gromov
05:56 AM pfSense Packages Bug #7437: Mail Report package 3.1 removed support for STARTTLS: I'm telling you what to tick so that you have the mail reports working with STARTTLS without any changes needed in th... Kill Bill

03/30/2017

07:20 PM Revision ac24ac6b: ipsec overview, check label exists for interface including disabled ones, tell what was configured if not found.: Pi Ba
03:49 PM Revision e4e78af3: Don't use usepost on firewall_rules.php for the tabs.: Jim Pingle
09:53 AM pfSense Packages Bug #7437: Mail Report package 3.1 removed support for STARTTLS: Hi!
It looks like you do not understand the difference between SMTPS and STARTTLS.
If I check "Enable SMTP over... Dmitry Gromov
06:46 AM pfSense Packages Bug #7437: Mail Report package 3.1 removed support for STARTTLS: It works just fine on 2.3.3 when you tick the checkbox that you stubbornly refuse to tick for god knows what reason. ... Kill Bill
06:04 AM pfSense Packages Bug #7437: Mail Report package 3.1 removed support for STARTTLS: I am glad it works for you in 2.4, but last I checked 2.3.3-RELEASE-p1 is the current release and it does NOT work th... Dmitry Gromov
03:10 AM pfSense Packages Bug #7437: Mail Report package 3.1 removed support for STARTTLS: I must be speaking Chinese. Tick the "Enable SMTP over SSL/TLS" and it will work. Simple. (The "Enable STARTTLS" thin... Kill Bill
04:16 AM Revision 1d3510cf: Add user option to sort interface names: Phil Davis
03:56 AM Revision 6ff1f0f3: Updated help text to be more accurate as per jim-p suggestion.: → luckman212

03/22/2017

04:20 PM Bug #7419 (Duplicate): CloudFlare DDNS Not working for wildcard updates: It is not possible to update the record for a wildcard domain using Cloudflare DDNS, even if the wildcard checkbox is... Galen POSPISIL
04:07 PM Feature #7418: Dynamic dns should be sorted interface name: well looks like interfaces were fixed across gui I have a bunch of gateway groups due to 3 isps added at different ti... Michael Kellogg
12:00 PM Feature #7418: Dynamic dns should be sorted interface name: No matter how we choose to sort them someone else will probably want them sorted differently. Making the tables thems... Jim Pingle
11:53 AM Feature #7418: Dynamic dns should be sorted interface name: System/Routing/Gateway Groups
should be sorted by group name alphabetically also Michael Kellogg
11:47 AM Feature #7418 (New): Dynamic dns should be sorted interface name: Dynamic dns should be sorted interface name Michael Kellogg
01:21 PM Feature #2358: NAT64 support: I would like to see this important functionality EDUARDO CERQUEIRA DA SILVA
01:04 PM Feature #7193: NTP process PGRMF: I'm sorry, I think I was unclear. In my original config I had selected GGA in the “NMEA Sentences” menu, plus ticked ... Pär Wedin
12:33 PM Todo #7385: Sanitize PHP includes: I redid the write_config() stuff as a separate PR. If someone provides some ETA for "next QA run", I'll redo the incl... Kill Bill
11:07 AM Feature #7407: Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: The warning is for continuing to argue/discuss the issue here on redmine. This is not a discussion platform. I've sai... Jim Pingle
11:03 AM Feature #7407: Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: Jim Pingle wrote:
> Consider this a second warning.
A *WARNING*? For what?
With above attitude, thank you for o... ml 35
10:47 AM Feature #7407: Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: Discuss it on the forum. Consider this a second warning. Jim Pingle
10:41 AM Feature #7407: Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: Jim Pingle wrote:
> [...] unless the ISC DHCP daemon behavior is fixed.
Then are you suggesting that the manual f... ml 35
10:32 AM Feature #7407: Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: Yes, we know all of that. None of that helps the situation. It doesn't contradict anything, and if you read closer yo... Jim Pingle
10:29 AM Feature #7407: Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: Jim Pingle wrote:
> Static mappings express a preference for address assignment and do not prevent other devices fro... ml 35
10:27 AM Feature #7407: Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: If I understand right, wiki claims that ISC DHCP will happily lease a fixed-address definition to anyone in case that... ml 35
08:48 AM Feature #7407: Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: We are not that product. The DHCP daemon we use, the ISC DHCP Daemon does not support reservations. Static mappings e... Jim Pingle
08:42 AM Feature #7407: Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: Jim Pingle wrote:
> You can't static map addresses inside the pool, so this would just confuse users.
There is at... ml 35
10:41 AM Bug #4287: Wrong display for ppp in Interfaces page: I can't test the patch actually because since then I have changed my 3G usb key to an other huawei one, and there is ... Jo S
07:11 AM Bug #4287 (Feedback): Wrong display for ppp in Interfaces page: Jim Pingle
10:34 AM Feature #7392: Please allow syncing authorized_keys into config.xml: Kill Bill wrote:
> What's exactly difficult about CTRL+C, CTRL+V?
it takes more time and it's not just a CTRL-C C... ml 35
07:12 AM Feature #6841 (Feedback): reduce numeric precision in Gateways Widget: Jim Pingle
03:25 AM Feature #6841: reduce numeric precision in Gateways Widget: Merged. Kill Bill
07:12 AM pfSense Packages Bug #7417 (Rejected): Avahi ipv6(disabled) port 5353(local link ipv6) firewall log spam until avahi is stopped for a few secs and then restarted: Please discuss and diagnose the problem on the forum before opening a bug report with the precise details and specifi... Jim Pingle
02:40 AM pfSense Packages Bug #7417: Avahi ipv6(disabled) port 5353(local link ipv6) firewall log spam until avahi is stopped for a few secs and then restarted: This is a bug tracker, use forums for discussions and mystery stories please. Kill Bill
07:10 AM Bug #6890 (Feedback): PPP service name error: Jim Pingle
07:09 AM Bug #7399 (Feedback): getserviceproviders.php - lack of sanity checking in foreach(): Jim Pingle
12:44 AM Revision 11daee3f: Bump config rev for widget preference setting changes: This should have been bumped along with https://github.com/pfsense/pfsense/commit/071d8a610047fe1994c9fa28e339fe93f44... Phil Davis

03/21/2017

11:57 PM pfSense Packages Bug #7417: Avahi ipv6(disabled) port 5353(local link ipv6) firewall log spam until avahi is stopped for a few secs and then restarted: Just a small edit: I just noticed that the spam started again. My guess is its some device on my lan, I will turn off... rub man
11:02 PM pfSense Packages Bug #7417 (Rejected): Avahi ipv6(disabled) port 5353(local link ipv6) firewall log spam until avahi is stopped for a few secs and then restarted: Hi,
I have ipv6 disabled and have not changed anything major changed on my network that has ipv6 enabled. But when ... rub man
06:01 PM Revision 35481239: System Info Widget enable All button when disable firmware check is set: If system firmware disablecheck is set, then the click event for the filter "All" button is also not included in the ... Phil Davis
05:57 PM Revision a61e8f95: System Info Widget enable All button when disable firmware check is set: If system firmware disablecheck is set, then the click event for the filter "All" button is also not included in the ... Phil Davis
05:43 PM Revision 6a0e66bb: Merge pull request #3664 from phil-davis/gw-widget-RELENG_2_3_3: Steve Beaver
05:30 PM Revision 57a015f9: Fix #7317 Widget Filter All button gateways widget RELENG_2_3: Phil Davis
05:29 PM Revision 50418f97: Reduce numeric precision in gateways widget to single decimal place (Feature #6841): Doktor Notor
05:28 PM Revision f3ee7e05: Further internationalization: Steve Beaver
05:28 PM Revision 31a6c8eb: Add missing internationalization: Steve Beaver
05:26 PM Revision 9fcd168b: Revise gateway widget config form: Phil Davis
05:25 PM Revision 6c067722: Allow hiding of gateways in Gateways Widget: Sometimes there are gateways that I do not care about, so it is handy to
be able to save some space on the dashboard ... Phil Davis
05:11 PM Revision 493bdd35: Merge pull request #3663 from doktornotor/patch-7: Steve Beaver
04:48 PM Revision 954de84f: Add reason to write_config() call: Doktor Notor
04:47 PM Revision 2fbc1083: Add reason to write_config() call: Doktor Notor
04:45 PM Revision f832bfe0: Add reason to write_config() call: Doktor Notor
04:44 PM Revision 1c433611: Add reason to write_config() call: Doktor Notor
04:43 PM Revision d3f7f5d5: Add reason to write_config() call: Doktor Notor
04:42 PM Revision 1f372cf0: Add reason to write_config() call: Doktor Notor
04:41 PM Revision d398221a: Add reason to write_config() call: Doktor Notor
04:37 PM Revision 129f3e80: Add reason to write_config() calls: Doktor Notor
04:36 PM Revision 758281f0: Add reason to write_config() calls: Doktor Notor
04:34 PM Revision c90dcce1: Add reason to write_config() calls: Doktor Notor
04:32 PM Revision 2bee7c02: Add reason to write_config() call: Doktor Notor
04:31 PM Revision 3b99e916: Add reason to write_config() call: Doktor Notor
04:29 PM Revision fb1c4986: Add reason to write_config() call: Doktor Notor
04:26 PM Revision 7120557e: Add reason to write_config() calls: Doktor Notor
04:23 PM Revision fbaa7b66: Add reason to write_config() call: Doktor Notor
04:20 PM Revision 68eaa19f: Add reason to write_config() calls: Doktor Notor
02:35 PM Revision 361cb016: Merge pull request #3662 from phil-davis/widget-preferences-upgrade: Steve Beaver
02:34 PM Revision c081000f: Merge pull request #3661 from phil-davis/gw-widget-RELENG_2_3: Steve Beaver
02:34 PM Revision bdaba948: Merge pull request #3660 from phil-davis/patch-5: Steve Beaver
12:35 PM Revision 071d8a61: Upgrade widget settings for multiple copies of widgets: Phil Davis
12:06 PM Revision d7f9b606: Update translation files: Renato Botelho
11:57 AM Revision 9f1039c2: Regenerate pot: Renato Botelho
10:56 AM Bug #4287: Wrong display for ppp in Interfaces page: Merged. Kill Bill
10:56 AM Bug #6890: PPP service name error: Merged. Kill Bill
10:55 AM Bug #7399: getserviceproviders.php - lack of sanity checking in foreach(): Merged. Kill Bill
10:44 AM Bug #4479: Firewall rules won't match GRE interface after applying IPSEC transport encryption on GRE tunnel: This affects both GRE over IPSEC transport and IPSEC tunnel mode carrying a GRE
All traffic exiting the GRE tunnel... Brett Howard
09:36 AM Revision c8763391: Fix #7317 Widget Filter All button gateways widget RELENG_2_3: Phil Davis
09:27 AM Revision fdacd72b: Reduce numeric precision in gateways widget to single decimal place (Feature #6841): Doktor Notor
09:25 AM Revision a3176912: Further internationalization: Steve Beaver
09:24 AM Revision cdfd6c9b: Add missing internationalization: Steve Beaver
09:22 AM Revision faa6d21c: Revise gateway widget config form: Phil Davis
09:13 AM Feature #7416 (Needs Patch): DHCPv4 client does not support ``supersede`` statement for option 54: Changes to FreeBSD should first be submitted upstream to FreeBSD. Jim Pingle
08:55 AM Feature #7416 (Closed): DHCPv4 client does not support ``supersede`` statement for option 54: The German cable internet provider Unitymedia uses DHCP relays which only answer to broadcasts. Dhclient renews WAN l... Fabian Kurtz
08:58 AM Revision f3738015: Allow hiding of gateways in Gateways Widget: Sometimes there are gateways that I do not care about, so it is handy to
be able to save some space on the dashboard ... Phil Davis
08:58 AM Bug #7402: Inconsistent use of htmlentities validation checks: https://github.com/pfsense/pfsense/commit/11800cffd5bd0731596324cd4d26f829bf198174 allows users to put stuff like "&"... Phillip Davis
08:42 AM Bug #7415 (Resolved): favicon is not correctly implemented: favicon is implemented as a favicon.ico in the root of the webserver. This is one of the 2 possible methodes and favo... Leon Straathof
03:22 AM Revision 27d9b6dc: Remove siproxd from globals: It was accidentally put back by a dodgy merge that missed the commit that removed this line. Phil Davis

03/20/2017

10:10 PM Feature #7318: Dashboard widget filters - provide a "None" option: Above PRs 3652 and 3653 have been merged to master. Phillip Davis
07:34 PM Revision c6481bdb: Merge pull request #3652 from phil-davis/allow-empty-widgets: Steve Beaver
07:34 PM Revision b3ae18e1: Merge pull request #3653 from phil-davis/widget-filter-none2: Steve Beaver
07:33 PM Revision c3695685: Merge pull request #3658 from phil-davis/multiple-copies-of-widgets-1: Steve Beaver
06:36 PM Revision 9f48e720: Integrate new interfaces widget AJAX: Phil Davis
05:25 PM Revision 65ff7b82: Merge branch 'master' into multiple-copies-of-widgets-1: Phil Davis
05:16 PM Revision 6784c0a1: Merge branch 'master' into widget-filter-none2: Phil Davis
05:13 PM Revision 6432cb56: Merge branch 'master' into allow-empty-widgets: Phil Davis
04:33 PM Revision 04b80934: Merge pull request #3639 from doktornotor/patch-26: Steve Beaver
04:32 PM Revision ac314828: Merge pull request #3642 from phil-davis/icmp-type-skip-redmine-7372: Steve Beaver
04:30 PM Revision 0cc9d499: Merge pull request #3644 from doktornotor/patch-27: Steve Beaver
04:24 PM Revision 11800cff: Merge pull request #3650 from phil-davis/nat-description: Steve Beaver
02:30 PM pfSense Packages Feature #7414 (New): snort needs automated refresh on ip change: if pppoe ip changes snort needs refreshed to deal with that ip change would be nice if it happened automatically Michael Kellogg
02:09 PM pfSense Packages Todo #7411: LADVD Devices not wide enough: Andy Kniveton wrote:
> The output is when run from a shell is fine , but the output is cut off via the web gui in th... Andy Kniveton
06:07 AM pfSense Packages Todo #7411 (New): LADVD Devices not wide enough: The output is when run from a shell is fine , but the output is cut off via the web gui in the top section :-
+GUI... Andy Kniveton
02:00 PM Revision 12507f35: Merge pull request #3657 from phil-davis/traffic-graph-widget-filter-none-button: Steve Beaver
02:00 PM Revision 84eb285c: Merge pull request #3656 from phil-davis/traffic-graph-widget-filter-handle-none-to-display: Steve Beaver
01:59 PM Revision 26bb4faf: Merge pull request #3655 from phil-davis/traffic-graph-widget-filter-checkboxes: Steve Beaver
01:53 PM Revision 4c4e7f83: Merge pull request #3649 from doktornotor/patch-31: Steve Beaver
01:53 PM Revision 0d49c912: Merge pull request #3648 from doktornotor/patch-30: Steve Beaver
01:52 PM Revision 44baf803: Merge pull request #3645 from phil-davis/patch-5: Steve Beaver
01:48 PM Revision 9302ff3f: Merge pull request #3643 from phil-davis/disable-alias-popup-in-rules-7381: Steve Beaver
01:41 PM Revision e88ba742: Merge pull request #3634 from doktornotor/patch-23: Steve Beaver
01:40 PM Revision 7dcf0f78: Merge pull request #3633 from doktornotor/patch-22: Steve Beaver
01:37 PM Revision 7452333f: Merge pull request #3563 from NOYB/GitSync_-_Remove_Personalizations: Steve Beaver
01:36 PM Revision 6a3d28f6: Merge pull request #3605 from doktornotor/patch-7: Steve Beaver
01:34 PM Revision 7879c382: Merge pull request #3610 from stilez/patch-57: Steve Beaver
01:32 PM Revision a0259536: Merge pull request #3628 from doktornotor/patch-17: Steve Beaver
01:31 PM Bug #7413 (Resolved): status_dhcpv6_leases.php: Some DHCPv6 leases are not displayed in the GUI: On status_dhcpv6_leases.php, only about half the leases in my /var/dhcpd/var/db/dhcpd6.leases file are displayed in t... Jim Pingle
01:31 PM Revision c6ddf837: Merge pull request #3630 from doktornotor/patch-19: Steve Beaver
01:30 PM Revision d07d7ba6: Merge pull request #3632 from doktornotor/patch-21: Steve Beaver
01:28 PM Revision f6585c8a: Merge pull request #3594 from doktornotor/patch-13: Steve Beaver
01:26 PM Revision e471eaaf: Merge pull request #3529 from Chrisc-c-c/Fix-List-Sort-Order: Steve Beaver
12:25 PM Bug #7412 (Resolved): rtsold will not run on VLAN interfaces: A VLAN interface for a WAN will not pull an IPv6 address via DHCPv6 with a default configuration.
In a default con... Jim Pingle
11:50 AM Revision 95319648: Revert "Lead users with Stable repo set to 2.3.3-RELEASE": This reverts commit aa5f397a16e2184d48c7c9cf32580caef735c7b6. Renato Botelho
11:40 AM Bug #7372 (Feedback): Cannot filter ICMP Type SKIP: Applied in changeset commit:bea1884125fdd9d8ef58afd97f53516b61adaf29. Phillip Davis
07:08 AM Revision 0172a197: Redmine 7182 Allow multiple copies of widgets on dashboard: Phil Davis
06:36 AM Feature #7410: IPSEC multiple dynamic IP remote clients: If it's possible, it will take some time/thought about how best to handle. Jim Pingle
01:41 AM Feature #7410 (Closed): IPSEC multiple dynamic IP remote clients: We are actually running version 2.3.2 using mainly pfsense as a IPSEC VPN server for multiple remote locations.
Remo... Sebastien WILD
03:30 AM Bug #4723: Can't forward UDP fragmented packets with scrubbing enabled.: Luiz Otavio O Souza wrote:
> Richard, which pfSense version are you running ?
Latest 2.3.3_1
Richard Gate

03/19/2017

10:46 PM Bug #7402: Inconsistent use of htmlentities validation checks: How about the use of filter_var: http://php.net/manual/en/filter.filters.php
filter_var($value, FILTER_SANIT... BBcan177 .
10:41 PM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: I think my bug is related too.
https://redmine.pfsense.org/issues/7409 Kristopher Kolpin
09:23 PM Bug #7409: Packets originating from the firewall itself do not enter the proper queue.: I just posted on the forum now but I believe the rule I am using is sound. I know just because I said I've been usin... Kristopher Kolpin
09:10 PM Bug #7409 (Rejected): Packets originating from the firewall itself do not enter the proper queue.: Please post on the forum for discussion. Shaping happens when a packet exits an interface, odds are your floating rul... Jim Pingle
08:58 PM Bug #7409 (Rejected): Packets originating from the firewall itself do not enter the proper queue.: I have a 25/10 DSL connection and for well over a year I've been able to setup queues successfully for regular intern... Kristopher Kolpin
08:16 PM Feature #7406: Ability to clear all dhcp leases at once: ml 35 wrote:
> Under Status - DHCP Leases I can clear all leases one by one.
> It would be useful if I had a button... Daryl Morse
10:46 AM pfSense Packages Bug #7310: Packages pre-deinstall script removes temporary files used by pkg: This is not a Snort bug. Beyond already linked #7229, there's another example of pkg being braindead junk here: https... Kill Bill
06:51 AM Revision c3b96e93: Redmine #7318 None button for Traffic Graphs Widget filter: Phil Davis
06:36 AM Revision 575b5c1c: Traffic Graphs Widget handle no items selected for display: Phil Davis
06:23 AM Revision 6e8777f2: Upgrade code to convert old Traffic Graphs Widget settings: Phil Davis
06:20 AM Revision 41c9f57e: Convert Traffic Graph Widget to use checkboxes for display selection: Phil Davis
06:01 AM Revision 605ce9be: Traffic Graphs Widget whitespace: Phil Davis
05:36 AM Revision fba53b43: Redmine #7318 None button for widget filters: Phil Davis
04:45 AM Feature #7122: Add filters to various dashboard widgets: Phillip Davis wrote:
> With the delay in reviewing/merging community-contributed PRs, I have split PR 3602 up into t... Kill Bill
04:23 AM Feature #7122: Add filters to various dashboard widgets: With the delay in reviewing/merging community-contributed PRs, I have split PR 3602 up into the various parts that ar... Phillip Davis
03:58 AM Feature #7318: Dashboard widget filters - provide a "None" option: Revised code in:
https://github.com/pfsense/pfsense/pull/3652 Handle widgets having no items selected for display
h... Phillip Davis
03:08 AM Revision 405dfaad: Handle widgets having no items selected for display: Phil Davis

03/18/2017

10:29 PM Feature #7193: NTP process PGRMF: I also have a Garmin 18x LVC and I've been trying to replicate your setup but I'm not really sure why you needed a fu... Jack Booth
02:55 PM pfSense Packages Bug #7170: FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: https://github.com/pfsense/FreeBSD-ports/pull/334
Should be pretty much complete now. Kill Bill

03/17/2017

05:48 PM Bug #7380: WAN DHCP Gateway Outside of Subnet Causing Route Issues: Thanks Jim. Apologies for not linking the diff the first time around.
I've signed the CLA and submitted a pull re... Doran Smestad
03:23 PM Feature #7408 (Duplicate): IGMPPROXY quickleave: Jim Pingle
03:10 PM Feature #7408: IGMPPROXY quickleave: Duplicate of #3862 Kill Bill
03:02 PM Feature #7408 (Duplicate): IGMPPROXY quickleave: Dear pfsense-team,
Can you add the possibility to activate or deactive the quickleave option of the igmpproxy?
ht... Thomas Levi
02:27 PM Feature #7383 (Feedback): system_certmanager.php?act=new: Add new select option to sign a CSR: Anonymous
01:08 PM Bug #4723: Can't forward UDP fragmented packets with scrubbing enabled.: Richard Gate wrote:
> Hi, I've hit this problem with UDP packets for RADIUS authentication when using a pfSense IPSe... Luiz Souza
11:46 AM Bug #4723: Can't forward UDP fragmented packets with scrubbing enabled.: Hi, I've hit this problem with UDP packets for RADIUS authentication when using a pfSense IPSec tunnel from an AP doi... Richard Gate
09:12 AM pfSense Packages Bug #7403: Captive Portal + freeradius2 + MySQL problems with German Umlaut: https://redmine.pfsense.org/issues/4497 John Wayne
09:08 AM pfSense Packages Bug #7403: Captive Portal + freeradius2 + MySQL problems with German Umlaut: http://lists.freeradius.org/pipermail/freeradius-users/2005-November/004818.html John Wayne
08:36 AM pfSense Packages Bug #7403: Captive Portal + freeradius2 + MySQL problems with German Umlaut: In the log files it seems all correct:
Mar 17 13:41:05 radiusd 74676 Login incorrect: [guest/müller] (from clie... John Wayne
05:02 AM pfSense Packages Bug #7403 (New): Captive Portal + freeradius2 + MySQL problems with German Umlaut: We have a setup using a Captive Portal and freeradius2 package + MySQL as database for authentication.
The freerad... John Wayne
07:40 AM Bug #7396 (Resolved): Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): Great, thanks for testing! Jim Pingle
07:35 AM Bug #7396: Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): Jim Pingle wrote:
> OK, try the later change here on the ticket now ( commit:31b1f1e1 )
This is all good now ! Th... Julien Petit
06:59 AM Bug #7396: Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): OK, try the later change here on the ticket now ( commit:31b1f1e1 ) Jim Pingle
07:30 AM Revision 24be73af: review point fixed: Stilez y
07:27 AM Revision cfb99f1c: typo: Stilez y
07:15 AM Feature #7407 (Rejected): Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: You can't static map addresses inside the pool, so this would just confuse users. Jim Pingle
07:14 AM Feature #7407 (Rejected): Ability to preserve currently allocated IP address when adding static entries from Status -> DHCP Leases: I go to "Status -> DHCP Leases"
I click the "+" sign to "Add static mapping" under the "Actions" column
The page ... ml 35
06:04 AM Feature #7406 (Resolved): Ability to clear all dhcp leases at once: Under Status - DHCP Leases I can clear all leases one by one.
It would be useful if I had a button to also clear all... ml 35
05:57 AM Feature #7405 (New): Ability to add dhcp host reservations from "Diagnostics -> ARP table": It can be very useful when you introduce pfsense into a lan where there are lots of static ip addresses.
This way ... ml 35
05:41 AM Revision f95d6bdc: No need to check for HTML in NAT 1to1 or NAT Out descr: Phil Davis
05:30 AM Revision 58e8a4fd: No need to check for HTML in NAT descr: Phil Davis
05:23 AM Feature #7392: Please allow syncing authorized_keys into config.xml: What's exactly difficult about CTRL+C, CTRL+V? Kill Bill
04:42 AM Feature #7392: Please allow syncing authorized_keys into config.xml: ok, can you instead at least add an option to not clear the authorized_keys at reboot? it is really difficult to have... ml 35
05:22 AM pfSense Packages Bug #7404 (Not a Bug): OpenVPN Client Export with custom DynDNS not working: When using the OpenVPN Client Export Utility with a custom DynDNS the Host name resolution combobox-value is empty.
... John Wayne
04:14 AM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: Forgot to say: Indeed, *Pass* rule will place packets into related queue but it will break traffic. Dmitriy K
12:56 AM Bug #7402 (New): Inconsistent use of htmlentities validation checks: Forum: https://forum.pfsense.org/index.php?topic=127350.0
Various pages have a loop through the input parameters (... Phillip Davis
12:23 AM Feature #4632: Support for Multipath TCP (MPTCP): when it's in FreeBSD. Jim Thompson

03/16/2017

10:23 PM Feature #4632: Support for Multipath TCP (MPTCP): Not sure where this is in development but this could really help me
so quick googling
http://blog.multipath-tcp.... Michael Kellogg
08:46 PM Revision 0d40b2cb: Don't process empty anchors as it could lead to flushing more than intended when cleaning up after relayd. Fixes #7396: Jim Pingle
08:46 PM Revision 3480105f: Don't process empty anchors as it could lead to flushing more than intended when cleaning up after relayd. Fixes #7396: Jim Pingle
08:44 PM Revision 31b1f1e1: Don't process empty anchors as it could lead to flushing more than intended when cleaning up after relayd. Fixes #7396: Jim Pingle
06:05 PM Revision 32e75b43: Run custom deinstall commands during the deinstall phase instead of post-deinstall, otherwise they will never get run. Fixes #7401: Jim Pingle
06:05 PM Revision 54f87601: Run custom deinstall commands during the deinstall phase instead of post-deinstall, otherwise they will never get run. Fixes #7401: Jim Pingle
06:04 PM Revision 59fada5c: Run custom deinstall commands during the deinstall phase instead of post-deinstall, otherwise they will never get run. Fixes #7401: Jim Pingle
03:48 PM Bug #7396: Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): Note that with your patch, tables are not deleted like before. Only our alias table "Trusted" is emptied. Without you... Julien Petit
03:44 PM Bug #7396: Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): I couldn't reproduce that but it gave me another idea of where to look for problems. I'll have another fix pushed her... Jim Pingle
03:29 PM Bug #7396: Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): Jim Pingle wrote:
> Nothing else should be required but the changes made in the patch.
>
> I can reproduce the pr... Julien Petit
02:10 PM Bug #7396: Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): Nothing else should be required but the changes made in the patch.
I can reproduce the problem without that fix ap... Jim Pingle
01:54 PM Bug #7396: Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): Jim Pingle wrote:
> That is not the usual way to operate relayd, however. Normally you would not need to stop/start ... Julien Petit
01:20 PM Bug #7401 (Feedback): custom_php_deinstall_command isn't being run during pkg post-deinstall because info.xml has already been removed by that step.: Applied in changeset commit:59fada5c1fb57f2896caae895c70dd10ef5d02da. Jim Pingle
10:58 AM Bug #7401 (Resolved): custom_php_deinstall_command isn't being run during pkg post-deinstall because info.xml has already been removed by that step.: A bit of a chicken/egg problem here:
The custom_php_deinstall_command function from a package is supposed to be ru... Jim Pingle
11:48 AM Revision c7471240: replace setHelp() on section with staticText() and textual change requested: Stilez y
11:46 AM Revision ce348731: Make sure that array exists before using foreach() (Bug #7399): Doktor Notor
11:45 AM Bug #5993 (Feedback): dhcp6c not started until an RA received: Jim Pingle
11:43 AM Bug #5993: dhcp6c not started until an RA received: This issue can be closed. It was fixed in 2.3.3 and 2.4. Daryl Morse
11:34 AM Revision 6485ffb9: Textual change as requested: Stilez y
11:32 AM Revision b9304b9a: Textual changes requested: Stilez y
11:12 AM Revision ae18c711: Remove input validation since there is no user input here.: Doktor Notor
10:59 AM pfSense Packages Bug #7319 (Rejected): Tinc uninstall leaves an entry in the firewall rules tab.: The code in the package is OK. Real problem is here: #7401 Jim Pingle
10:22 AM Bug #7400 (Assigned): Traffic Graphs show bad data on 2.3.3_1: Jared Dillard
07:28 AM Bug #7400 (Assigned): Traffic Graphs show bad data on 2.3.3_1: Hi!
i updated pfsense to version 2.3.3_1
Now, the traffic graph are showing wrong data. On Status/Traffic Graph... Luis Garcia
10:20 AM Bug #7378 (Feedback): pfctl: ix0: driver does not support altq: Fix committed to RELENG_2_4, RELENG_2_3 and RELENG_2_3_3: https://github.com/pfsense/FreeBSD-src/commit/f2504b01d55b5... Luiz Souza
09:18 AM Bug #4479: Firewall rules won't match GRE interface after applying IPSEC transport encryption on GRE tunnel: Confirmed still not working on 2.4 Phil Lavin
09:14 AM Bug #7145 (Feedback): rc.newwanipv6 running in all cases, even for a renew: Jim Pingle
09:13 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: This is fixed in 2.4. DHCP6C client modified to give REASONS and only call the update script when needed. Martin Wasley
04:17 AM Bug #7145: rc.newwanipv6 running in all cases, even for a renew: Having issues with this in 2.3.3
Every 30 minutes, my IPv6 address is refreshed, causing rc.newwanipv6 to fire on al... Øyvind Hvidsten
09:12 AM Todo #6944 (Closed): dhcp6c releasing allocation: Jim Pingle
09:12 AM Bug #7185 (Feedback): DHCP6c SIGTERM, SIGKILL: Jim Pingle
09:10 AM Bug #7185: DHCP6c SIGTERM, SIGKILL: Close this Issue. DHCP6C has been fixed. Martin Wasley
09:11 AM pfSense Packages Bug #7390 (Feedback): SquidGuard: Fix pushed. Will show up shortly in pfSense-pkg-squidGuard version 1.16.1. Jim Pingle
08:54 AM Bug #7330 (Resolved): IPv6 Prefix is deleted on PPPoe reset, but not reapplied.: Fixed by PR Jim Pingle
03:41 AM Bug #7330: IPv6 Prefix is deleted on PPPoe reset, but not reapplied.: Fixed - Close this one. Martin Wasley
08:06 AM pfSense Packages Bug #6763: Squid ClamAv wrong redirect URL: Solution:
when I installed pfSense with all packages I use, I gave it a domain name.
After some while, I changed th... Roma Golbraich
07:33 AM pfSense Packages Bug #7263 (Feedback): FreeRADIUS - complete lack of input validation: Jim Pingle
04:09 AM pfSense Packages Bug #7263: FreeRADIUS - complete lack of input validation: Merged. Kill Bill
06:46 AM Bug #7399: getserviceproviders.php - lack of sanity checking in foreach(): https://github.com/pfsense/pfsense/pull/3649 Kill Bill
06:45 AM Bug #7399 (Resolved): getserviceproviders.php - lack of sanity checking in foreach(): To reproduce:
- Go to Interfaces - Assign - PPPs - Add
- Choose PPP as Like Type
- Select country like Åland Isl... Kill Bill
06:31 AM Feature #7122: Add filters to various dashboard widgets: Once the PR has been reviewed (and hopefully merged) the new checkbox format (like other widgets) will be available. ... Phillip Davis
05:13 AM Feature #7122: Add filters to various dashboard widgets: James Snell wrote:
> Build 2.4.0.b.20170314.2306 showing a multi-select box for interfaces, was expecting checkboxes... Kill Bill
04:54 AM Feature #7122: Add filters to various dashboard widgets: Build 2.4.0.b.20170314.2306 showing a multi-select box for interfaces, was expecting checkboxes.
Cropped screensho... James Snell
06:02 AM Bug #6890: PPP service name error: Yeah, the input validation makes zero sense, there's no user input there in the first place.
https://github.com/pf... Kill Bill
05:29 AM Bug #6890: PPP service name error: Sorry for third answer, just found the service name check
/usr/local/www/interfaces_ppps_edit.php
Line 276
if ... Daniel Weeber
05:27 AM Bug #6890: PPP service name error: Problem is in /usr/local/share/mobile-broadband-provider-info/serviceproviders.xml
Line 3150 contains (),-
<name>... Daniel Weeber
05:05 AM Bug #6890: PPP service name error: Having the same problem. cannot add any ppp connection because it's saying "The service name contains invalid charact... Daniel Weeber
02:13 AM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: I pushed a commit for this (not a PR yet because I think there's more to be done) but in case anyone wants to use thi... → luckman212
01:15 AM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: I confirm this bug. In pfSense 2.4 no matter what you with *Match* floating rules do all traffic is being pushed into... Dmitriy K

03/15/2017

11:49 PM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: I too am seeing this bug. Fresh setup of traffic shaping using the wizard simply didn't work. All traffic was being p... Jakub Osika
07:02 PM Revision 9433cda2: Perform a filter reload after starting relayd so it does not leave the firewall without pf tables. Fixes #7396: Jim Pingle
07:02 PM Revision a8014f46: Perform a filter reload after starting relayd so it does not leave the firewall without pf tables. Fixes #7396: Jim Pingle
07:01 PM Revision 803ca43a: Perform a filter reload after starting relayd so it does not leave the firewall without pf tables. Fixes #7396: Jim Pingle
06:07 PM pfSense Packages Bug #7391: 0.4.36_1 localnet ACL missing: Kill Bill wrote:
> And FYI regarding the OpenVPN: https://redmine.pfsense.org/issues/4331 (IOW, it will never be aut... tqwqllrm tqwqllrm
03:30 PM pfSense Packages Bug #7391: 0.4.36_1 localnet ACL missing: And FYI regarding the OpenVPN: https://redmine.pfsense.org/issues/4331 (IOW, it will never be auto-added to localnet ... Kill Bill
09:39 AM pfSense Packages Bug #7391: 0.4.36_1 localnet ACL missing: No, it's not, noone touched the relevant code for years.
https://github.com/pfsense/FreeBSD-ports/blame/devel/www... Kill Bill
09:35 AM pfSense Packages Bug #7391: 0.4.36_1 localnet ACL missing: Kill Bill wrote:
> Look, you need either non-empty local interface, or fill in Allowed Subnets on the ACLs tab. Plea... tqwqllrm tqwqllrm
09:28 AM pfSense Packages Bug #7391: 0.4.36_1 localnet ACL missing: Look, you need either non-empty local interface, or fill in Allowed Subnets on the ACLs tab. Please, use forums for d... Kill Bill
09:25 AM pfSense Packages Bug #7391: 0.4.36_1 localnet ACL missing: Kill Bill wrote:
> Kindly tick "Allow local network(s) on interface(s)" if you want such ACL.
This is already tic... tqwqllrm tqwqllrm
09:23 AM pfSense Packages Bug #7391: 0.4.36_1 localnet ACL missing: Additional information: The pfSense box is running OpenVPN so this may be a problem with this version of squid not be... tqwqllrm tqwqllrm
09:23 AM pfSense Packages Bug #7391: 0.4.36_1 localnet ACL missing: Kindly tick "Allow local network(s) on interface(s)" if you want such ACL. Kill Bill
08:00 AM pfSense Packages Bug #7391 (Not a Bug): 0.4.36_1 localnet ACL missing: Version 0.4.36_1 of Squid on pfSense 2.3.3 does not provide the "localnet" acl anymore in /usr/local/etc/squid/squid.... tqwqllrm tqwqllrm
06:04 PM Feature #7398 (Assigned): Show average value of bandwidth in/out on Dashboard trafic graph: Jared Dillard
05:33 PM Feature #7398 (Assigned): Show average value of bandwidth in/out on Dashboard trafic graph: Show like the image in attach.
Elias Pereira
06:00 PM Revision 4594038a: Don't display the "export key" icon if there is no key to export. e.g. If hte cert was created from a pasted-in CSR: Steve Beaver
05:01 PM Bug #6993: OpenVPN status error during CARP state transition: James Webb wrote:
> Running two devices in HA and have stacked one IP Alias onto the CARP IP. If I bind a OpenVPN se... Mario Lener
04:51 PM Revision 258e3b02: Base64 encode private key: Steve Beaver
04:30 PM Revision 55047259: Add the ability to save a private key with the newly signed cert: Steve Beaver
03:49 PM Revision d520da31: Revised certificate selectors to use refid rather than index: Steve Beaver
03:45 PM pfSense Packages Bug #7390 (Confirmed): SquidGuard: Jim Pingle
06:44 AM pfSense Packages Bug #7390 (Resolved): SquidGuard: When a @'@ caracter is inserted in a comment, the "filter config" button in "Log" tab no longer works.
Javascript ca... Aurélien BONANNI
03:17 PM Bug #7397 (Resolved): Backport factory.sh changes to 2.3: Copy recently added factory.sh functionality to 2.3 Anonymous
03:08 PM Revision d6107e1a: Deleted CSR key textarea - No longer required: Steve Beaver
02:18 PM Revision 92005dd1: Merge pull request #3515 from marjohn56/master: Jim Pingle
02:18 PM Revision de79e1c5: Merge pull request #3583 from phil-davis/alias-hover-text: Jim Pingle
02:17 PM Revision 08f92b9f: Merge pull request #3457 from stilez/patch-38: Jim Pingle
02:14 PM Revision b078cd59: Revised error handling for CSR signing: Steve Beaver
02:10 PM Bug #7396 (Feedback): Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): Applied in changeset commit:803ca43a02863d2086f4affd8c1048c598475bf9. Jim Pingle
02:03 PM Bug #7396: Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): To me, I have a fix pushed. Jim Pingle
01:54 PM Bug #7396 (Confirmed): Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): Also affects 2.4.x.
That is not the usual way to operate relayd, however. Normally you would not need to stop/star... Jim Pingle
01:32 PM Bug #7396 (Resolved): Stopping and then starting again the load balancer clears out system tables (Bogons, sshlockout, aliases...): Hi there :)
This is reproducible on a brand new 2.3.3 or 2.3.3_1 pfsense 64 bits with following simple load balanc... Julien Petit
02:05 PM Bug #7393: Problem with static route when you have Two WAN with same Gateway: You can have multiple WANs with different gateways, yes.
You cannot have multiple WANs with the same gateway. If i... Jim Pingle
02:02 PM Bug #7393: Problem with static route when you have Two WAN with same Gateway: Jim Pingle wrote:
> Yes. And it works by chance, not by design. It's not a configuration we support.
No it works ... Anthony hesnaux
01:51 PM Bug #7393: Problem with static route when you have Two WAN with same Gateway: Yes. And it works by chance, not by design. It's not a configuration we support. Jim Pingle
01:46 PM Bug #7393: Problem with static route when you have Two WAN with same Gateway: Error Jim Pingle,my Both WAN are PPPoE link in IPVPN MPLS but there are a same gateway
I have 1 link PPPoE (ADS... Anthony hesnaux
12:25 PM Bug #7393: Problem with static route when you have Two WAN with same Gateway: It happens to work, that doesn't make it any more valid than if it were two non-PPPoE lines on the same network, just... Jim Pingle
12:23 PM Bug #7393: Problem with static route when you have Two WAN with same Gateway: wait I thought multi pppoe worked via your own comments and tests I just ordered a second pppoe ?
https://redmine.... Michael Kellogg
11:54 AM Bug #7393: Problem with static route when you have Two WAN with same Gateway: Having two interfaces on the same network is not a feature we support, and it is not a valid configuration. The probl... Jim Pingle
11:32 AM Bug #7393: Problem with static route when you have Two WAN with same Gateway: Hello Jim Pingle,
it's not a system-level limitation because when I add static route in CLi : /root: route add 192.1... Anthony hesnaux
10:36 AM Bug #7393 (Rejected): Problem with static route when you have Two WAN with same Gateway: Having two WANs with the same gateway is not a viable configuration. It's an operating system-level limitation, nothi... Jim Pingle
10:33 AM Bug #7393 (Rejected): Problem with static route when you have Two WAN with same Gateway: hello all,
We find a problem on pfsense Nanobsd 2.3.2
Hardware : Motherboard ALIX
we have 2 Wan interface with M... Anthony hesnaux
01:06 PM Feature #4372: dnscrypt support: +1 ml 35
12:54 PM Feature #6519: SSD TRIM option via GUI: Jim Pingle wrote:
> No, it is not. The option cannot be changed while the disk is mounted.
Could you add in the ... ml 35
11:04 AM pfSense Packages Bug #7170: FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: Thanks, can start killing some code now. :) Kill Bill
10:38 AM pfSense Packages Bug #7170: FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: FYI- I merged that PR, should be good to continue. Jim Pingle
10:44 AM Feature #7395 (Duplicate): IPv6: Display prefix assigned by ISP: *PROBLEM STATEMENT*
When using DHCPv6 PD on the WAN interface, there is no easy way to see what prefix the ISP assig... Tim Cappalli
10:36 AM Bug #7394 (Resolved): firewall_aliases_edit.php: Renaming an alias after input errors fails to update references: When renaming an alias the firewall normally checks for references in firewall/nat rules and updates the alias name w... Jim Pingle
10:28 AM Feature #2358: NAT64 support: UPVOTE!
I'd also like to voice my support for this integration
Scott Rosenberg
10:27 AM Feature #2358: NAT64 support: Joel Whitehouse wrote:
> Would like to see support for NAT64/DNS64 in pfsense. Deployment of DNS64 outside of the g... Scott Rosenberg
10:08 AM Feature #7392 (Rejected): Please allow syncing authorized_keys into config.xml: While I could maybe see a script made to import keys there is no way this would be automated in the way you describe.... Jim Pingle
10:05 AM Feature #7392 (Rejected): Please allow syncing authorized_keys into config.xml: For me it is a bit inconvenient to copy and paste ssh keys into UI.
I am usually doing this using ssh-copy-id whic... ml 35
09:30 AM Bug #7316 (Feedback): Fail Boostrap format port in: Applied in changeset commit:57dd76d15c66e5cd60839fe4b376153778de8904. Phillip Davis
09:29 AM Feature #7383: system_certmanager.php?act=new: Add new select option to sign a CSR: A fix for the Openssl library error is on the way.
Select Method->Sign a Certificate Signing Request
Use the "C... Anonymous
08:54 AM Feature #7383 (Assigned): system_certmanager.php?act=new: Add new select option to sign a CSR: I also get "openssl library returns: error:0906D06C:PEM routines:PEM_read_bio:no start line" when attempting to sign ... Jim Pingle
08:52 AM Feature #7383: system_certmanager.php?act=new: Add new select option to sign a CSR: Current Base System 2.4.0.b.20170315.0313
Option not available. What am I missing? Isn't this a later snapshot? ... John Murphy
08:27 AM Feature #7383: system_certmanager.php?act=new: Add new select option to sign a CSR: Build 2.4.0.b.20170314.2306
The option "Sign a Certificate Signing Request" is now present.
Created a signing r... James Snell
06:10 AM Bug #7389 (In Progress): Limiter does not work with transparent proxy: Good morning the limiter returned to present problems, identical to the other bug already reported and resolved and r... Nelson Junior
06:05 AM Bug #7345: nanobsd upgrades still fail bacause of lacking resolv.conf: Great, thank you very much Brett! Andrew Hotlab
05:17 AM pfSense Packages Bug #7388: Suricata does not property recognize MTU for PPPOE interfaces: See this: https://redmine.openinfosecfoundation.org/issues/1556#note-2 Kill Bill
04:01 AM Todo #7385: Sanitize PHP includes: Up to pfSense devs. If you prefer, I can do a single PR for all the write_config() stuff, however that shouldn't rot ... Kill Bill
03:06 AM Revision d0a8de18: Spelling fix in help text: Steve Beaver

03/14/2017

11:02 PM Revision 915c934b: Sort the interface names.: No functional change. Luiz Souza
09:49 PM Todo #7385: Sanitize PHP includes: @Kill Bill - there are write_config(gettext()) things mixed together with include_once() changes in these PRs.
Would... Phillip Davis
09:25 PM Todo #7385: Sanitize PHP includes: Thanks for this. Given that JimP and others have a recollection that there is a reason for the seemingly odd includes... Anonymous
05:13 PM Todo #7385: Sanitize PHP includes: Hmmm well, I obviously left the filter.inc in places where stuff like @filter_configure()@ is being used (talking abo... Kill Bill
03:27 PM Todo #7385: Sanitize PHP includes: I seem to recall shaper.inc being in unexpected places because running a filter reload action fails without it. But t... Jim Pingle
03:21 PM Todo #7385: Sanitize PHP includes: Assigned to Steve Beaver, but this looks like it could be a hairball. Jim Thompson
04:00 AM Todo #7385: Sanitize PHP includes: Adding some related PRs here:
- https://github.com/pfsense/pfsense/pull/3624
- https://github.com/pfsense/pfsense... Kill Bill
03:39 AM Todo #7385 (New): Sanitize PHP includes: Includes are massively wrong across the entire pfSense code.
Sort of a reminder. Please, review functions used in ... Kill Bill
09:22 PM Bug #7345: nanobsd upgrades still fail bacause of lacking resolv.conf: I also ran into this issue, which broke my ability to update my NanoBSD 2.3.2_1 box to 2.3.3_1. The box in question ... Brett Keller
09:11 PM pfSense Packages Bug #7388 (New): Suricata does not property recognize MTU for PPPOE interfaces: Due to path MTU discovery (via ICMPv6) issues with some IPv6 TCP traffic I have to manually set MSS to 1452 in the WA... Kristopher Kolpin
08:56 PM Revision 65d735f0: Improve error detection in Openssl lib: Steve Beaver
06:43 PM Revision 2052d3e2: Added the ability to sign a CSR: Steve Beaver
06:01 PM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: I left the log message just for testing... Shouldn't be included in final code...
The function is_process_running... BBcan177 .
05:35 PM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: Could probably use @is_process_running()@ from util.inc instead of the @exec()@. That debug stuff should certainly be... Kill Bill
05:23 PM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: Its a 30x loop in 1 sec increments and breaks on Unbound being fully shutdown.
for ($i=1; $i <= 30; $i++) { BBcan177 .
05:21 PM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: note on my system it needs a lot more than one second to shutdown, probably around 10 seconds due to the over 1 milli... Chris Collins
01:49 PM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: The issue with the way pfSense stops Unbound, is that the Unbound service takes longer to shut down when there are ma... BBcan177 .
04:01 PM Feature #7383: system_certmanager.php?act=new: Add new select option to sign a CSR: Use a build from after the time the change was made. Your build was made at 0021 hrs, the new code was added at 1300 ... Anonymous
03:59 PM Feature #7383: system_certmanager.php?act=new: Add new select option to sign a CSR: Current Base System 2.4.0.b.20170314.0021
Option not displayed in Cert. Manager GUI. Checked CAs, Certificates, a... John Murphy
02:16 PM Feature #7383 (Feedback): system_certmanager.php?act=new: Add new select option to sign a CSR: Functionality has been added as requested
https://github.com/pfsense/pfsense/commit/2052d3e2ae3acf5564a460dad91966... Anonymous
03:36 PM Feature #7321: DynDNS - Add DreamHost DNS support: Whoops... I completely missed that the second red flag "CLA Missing" was a reversal.
Jim Thompson
02:28 PM Feature #7321: DynDNS - Add DreamHost DNS support: The Pull Request should show that I have already completed the CLA. Is there a separate one that I need to complete? Frank Gruman
02:01 PM Feature #7321: DynDNS - Add DreamHost DNS support: will need a signed CLA prior to integration. Jim Thompson
03:34 PM Bug #7232: haproxy_pool_edit.php -- sprintf() too few arguments: Seems like these changes should be reverted?
In webgui im seeing:... Pi Ba
02:25 PM Bug #4479: Firewall rules won't match GRE interface after applying IPSEC transport encryption on GRE tunnel: Has anyone managed to test on 2.4 yet? Experiencing this issue in 2.3 latest. Phil Lavin
02:19 PM Bug #7288 (Needs Patch): The field 'Distinguished name Organization' contains invalid characters: Looks like it may be possible to use UTF-8 but it would require significant work to ensure everything functions prope... Jim Pingle
02:02 PM pfSense Packages Bug #7319: Tinc uninstall leaves an entry in the firewall rules tab.: Assigned to Pingle for tracking. Jim Thompson
01:39 PM Bug #7380: WAN DHCP Gateway Outside of Subnet Causing Route Issues: Assigned to Renato for evaluation.
Actual diff is here:
https://github.com/doransmestad/pfsense/commit/d79a46... Jim Thompson
12:50 PM Bug #7387 (New): New Traffic Graph in dashboard resets inverted view to normal view: New Traffic Graph in Dashboard resets inverted view to overlapping view when switching tabs between Status-Monitoring... Carsten Lohrmann
09:30 AM Bug #7386 (Resolved): IPv6 not disabled in mpd.conf w/ IPv6 GUI option set to 'disabled': continuing from:
https://forum.pfsense.org/index.php?topic=126849.0
When my ISP (Fairpoint) apparently added some... Bill McGonigle

03/13/2017

04:29 PM Revision 32c38047: Add missing includes: Doktor Notor
04:28 PM Revision 227f3f2d: Fix missing includes: Doktor Notor
04:22 PM Revision fc0f1121: Fix broken includes: Doktor Notor
02:22 PM Bug #7384 (Resolved): DHCPv6 doesn't merge IPv6 prefix with the input submitted in DNS servers field when using Track Interface IPv6 configuration parameter for the LAN interface.: When using Track Interface as a IPv6 Configuration Type in the LAN interface, the DHCPv6 server doesn't merge the IA_... Hannu Tirkkonen
11:34 AM pfSense Packages Bug #7170: FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: OK, I'll figure something out and do a PR. Need https://github.com/pfsense/FreeBSD-ports/pull/308 merged first before... Kill Bill
08:20 AM pfSense Packages Bug #7170: FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: I agree, it could/should be killed for 2.4.
Not that far out, probably a few weeks. Jim Pingle
05:35 AM pfSense Packages Bug #7170: FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: Guys, any ETA for 2.4 release (not date, but weeks/months, that sort of thing)? Would be a good opportunity to get ri... Kill Bill
11:31 AM Revision fcf29c87: Fix comment typo in firewall_rules.php: while I notice it Phil Davis
10:58 AM Revision d2a919c8: Visually separate the package manager legend area (Bug #7203): Doktor Notor
08:51 AM Feature #7383 (Closed): system_certmanager.php?act=new: Add new select option to sign a CSR: Certificate Manager -> Certificates -> Add New: There would be a new select option 'Sign a Certificate Signing Reques... Anonymous
08:26 AM Revision d9058974: Redmine #7381 Disable detail in alias popup: Phil Davis
06:26 AM Feature #7381: Option to disable alias popups in rules: Well yes, it's already limited to 10K entries (they are all displayed if you have the patience to scroll down...)
... Kill Bill
06:20 AM Feature #7381: Option to disable alias popups in rules: In the 2.2.x days we only let the popup display 30 or so entries which seems saner than making an option. A huge alia... Jim Pingle
03:32 AM Feature #7381: Option to disable alias popups in rules: It seems a reasonable thing to me (for those running on crud hardware at either server or client end) and is easy to ... Phillip Davis
03:19 AM Feature #7381: Option to disable alias popups in rules: Huh, what kind of horrible HW/browser are you using? Takes about a second on a 10 years old laptop with an alias havi... Kill Bill
06:03 AM Bug #7203: pkg_mgr_installed.php - visually separate the legend: RELENG_2_3 backport - https://github.com/pfsense/pfsense/pull/3644 Kill Bill
04:11 AM Bug #7382 (Closed): DNS Forwarder does not resolve DNS names on first boot: "DNS Forwarder (dnsmasq)" service is running at first boot but i am get an error : "dhcpleases Could not deliver sign... Özgür Keleş

03/12/2017

11:24 PM Revision 7d316581: Update interfaces.inc: Not defined pid file on starting choparp. The pfSense may not kill the program to reconfiguration. aLexander Panfilov
10:25 PM Revision 72c34055: Fix Vars for Interface naming: Martin Wasley
08:41 PM Feature #7381 (Resolved): Option to disable alias popups in rules: An option to disable the popup of the aliases in the rules section would be very handy, hovering over a 20k+ list by ... Ken Sim
03:15 PM Bug #7379: Virtual IPs/Proxy ARP: Not defined pid file on starting choparp.: Yeah, it'd help to determine what's the actual bug before attempting to fix it.
P.S. Please, use GitHub for patche... Kill Bill
03:05 PM Bug #7379: Virtual IPs/Proxy ARP: Not defined pid file on starting choparp.: New Bug after applying the patch:
There are several PoxyARP VIPs. Open one of them to edit and change the type to an... aLexander Panfilov
12:44 PM Bug #7379 (Resolved): Virtual IPs/Proxy ARP: Not defined pid file on starting choparp.: Not defined pid file on starting choparp. The pfSense may not kill the program to reconfiguration.
@--- interfaces... aLexander Panfilov
01:47 PM Bug #7380 (Resolved): WAN DHCP Gateway Outside of Subnet Causing Route Issues: When deploying PFSense in OVH's public cloud, they assign a IPv4 address via DHCP in a /32 subnet. Naturally, with s... Doran Smestad
01:30 PM Bug #6344: Firewall rules being deleted when separators are added: I'm no longer seeing this behavior. This issue can be closed. Zetto Null
01:23 PM Bug #7249: firewall_rules.php & firewall_nat.php: Replaces underscores with spaces in aliase names: NOYB NOYB wrote:
> So what is the actual issue that replacing the underscore with space in the displaying of the rul... Zetto Null
11:03 AM Revision 07c304a5: WAN flap loss of IPv6: Some hardware is taking too long to set ACCEPT_RTADV on the Interface,
this results in RTSOLD exiting and this not se... Martin Wasley
07:21 AM Revision bea18841: Fix #7372 Cannot filter ICMP Type SKIP: Phil Davis
06:03 AM Bug #6732: interfaces_ppps_edit.php: L2TP and PPTP WAN-type interface editing has broken input validation: Can you give some detail of what you are entering. I can't (easily) reproduce it, so maybe there is some unusual/spec... Phillip Davis
05:42 AM Bug #6732: interfaces_ppps_edit.php: L2TP and PPTP WAN-type interface editing has broken input validation: It seems that it only works partially.
I just tried to paly around with the @interfaces_ppps_edit.php@-Settings on v... Thomas Rieschl
03:27 AM Bug #7330: IPv6 Prefix is deleted on PPPoe reset, but not reapplied.: It's my thread :)
And yeah, PR https://github.com/pfsense/pfsense/pull/3515 will resolve this one...
Thanks again! Greg M
03:13 AM Bug #7330: IPv6 Prefix is deleted on PPPoe reset, but not reapplied.: Michael Zieher wrote:
> Greg M wrote:
> > Hi!
> >
> > Very similar issue I think it`s connected: https://forum.p... Martin Wasley

03/11/2017

03:14 PM Bug #5999: IPv6 IP Alias prevents Track Interface from working with DHCPv6 and RA: Fixing this would help with the problems discussed in this forum post: https://forum.pfsense.org/index.php?topic=1269... Doug Twitchell
02:50 PM Bug #6233: Bootloop with Alix after 2.3 upgrade: Norm Sevilla wrote:
> I can confirm the issue on my setup as well, a Negate m1n1wall with pfSense 2.3.3_1 and a Hifn... Norm Sevilla
12:38 PM Bug #6233: Bootloop with Alix after 2.3 upgrade: I can confirm the issue on my setup as well, a Negate m1n1wall with pfSense 2.3.3_1 and a Hifn 7955 crypto accelerato... Norm Sevilla
02:12 PM Bug #6138 (Resolved): Long hostnames overlap the "time" title in the Monitoring graphs: Thanks, Malcolm. I'll mark this resolved. Jared Dillard
08:56 AM Bug #6138: Long hostnames overlap the "time" title in the Monitoring graphs: I've got a reasonably long fqdn hostname (32 characters) and it looks OK now and doesn't overlap. Malcolm Hussain-Gambles
12:59 PM Bug #7378 (Resolved): pfctl: ix0: driver does not support altq: Motherboard: Supermicro X10SDV-4C-TLN2F
using the onboard NIC: 2 RJ45 10GBase-T ports
2.3.3-RELEASE-p1 (amd64)
Fr... Omer Iqbal
11:30 AM Feature #3697: New backup/restore area: Certificates: Ah yeah, blindly replacing a config section is indeed absolutely no problem... Who cares that the GUI, VPNs and other... Kill Bill
11:14 AM Feature #3697: New backup/restore area: Certificates: OPNsense implemented it and it works like a charm. Few days ago I was prepping a replacement box and I though I would... Dmitriy K
10:58 AM Feature #3697: New backup/restore area: Certificates: Dmitriy K wrote:
> It would be nice if we could backup / restore all certificates only.
I don't think so. Imagine... Kill Bill
07:16 AM Bug #7334 (Assigned): SG-1000 Update failure: The progress bar issue is another matter. We are waiting for a fix from upstream. Anonymous
01:59 AM pfSense Packages Feature #7377 (Resolved): ACME Certificate DNS-Digitalocean Verification Method: It would be great to have a DNS verification method for DigitalOcean DNS API that is now natively in GitHub for acme.... the wer

03/10/2017

11:51 PM Bug #7334: SG-1000 Update failure: Renato Botelho wrote:
> Fixed on pfSense-upgrade 0.18
I'm still seeing 'failures' part way through the script. S... Greg Siemon
07:03 PM pfSense Packages Feature #7376 (Closed): ACME Package - Please add support Namecheap DNS service: Please add DNS support in the ACME Package for the Namecheap DNS service provider.
Namecheap API documentation
h... User Name
06:13 PM Bug #7375 (Assigned): User with restricted privileges can still delete all monitoring/graphing data: Jared Dillard
05:47 PM Bug #7375 (Resolved): User with restricted privileges can still delete all monitoring/graphing data: I attempted to create a "graph-viewing-only" user account that I could hand out to non-admin users so that they could... Brett Keller
11:59 AM Bug #6186: race conditions in service startup: I've run into this issue as well on my pfSense machines that have ovpn client interfaces set as the outgoing interfac... John Cairns
09:46 AM pfSense Packages Bug #7374: Barnyard2 package has incomplete install when installed as Suricata depedency: You can take it whereever you want. There's no reference to Snort in the config [1], and no useful information here.
... Kill Bill
09:43 AM pfSense Packages Bug #7374: Barnyard2 package has incomplete install when installed as Suricata depedency: I'll take it up with Netgate support if this is the attitude I get here.
Easy to be a dick when you don't use your r... Randy Terbush
09:42 AM pfSense Packages Bug #7374: Barnyard2 package has incomplete install when installed as Suricata depedency: I'll track this and contact Bill Meeks.
"Kill Bill", please find a way to interact with a more professional tone.... Jim Thompson
09:33 AM pfSense Packages Bug #7374: Barnyard2 package has incomplete install when installed as Suricata depedency: Like, read what? There is zero information here to determine anything and it has nothing to do with the PBI junk on <... Kill Bill
09:16 AM pfSense Packages Bug #7374: Barnyard2 package has incomplete install when installed as Suricata depedency: Maybe you can take a little different attitude and take time to read what I wrote since I took the time to search the... Randy Terbush
08:50 AM pfSense Packages Bug #7374: Barnyard2 package has incomplete install when installed as Suricata depedency: Randy Terbush wrote:
> This seems to be possible duplicate of #3756
No, absolutely not, plus completely unclear ... Kill Bill
08:12 AM pfSense Packages Bug #7374 (Closed): Barnyard2 package has incomplete install when installed as Suricata depedency: This seems to be possible duplicate of #3756 which was marked resolved 2 years ago, but still appears to be an issue.... Randy Terbush
07:59 AM Bug #7330: IPv6 Prefix is deleted on PPPoe reset, but not reapplied.: Hi!
I honestly believe that this one deservers a little higher priority than normal... Greg M
06:45 AM Feature #4606: PKI : CA signing external CSR: +1 for that rather basic feature!
it should be easy to implement, there is already a similar package, that handles... Tech Synedra
02:40 AM Revision c6c55ee7: Add unknown service for Bug #4287: Doktor Notor
02:37 AM Revision 2e4f5048: Do not report misleading 3G service status (Bug #4287): If the ^SIMST or ^SRVST info was never received from the device, report missing/unknown states instead. Doktor Notor
02:04 AM Revision 8fbe2ea4: status_interfaces.php - fix includes: Doktor Notor
12:54 AM Revision cd1ae328: Adds option to skip adding IPv6 entries in /etc/hosts for LANs: If a LAN interface's IPv6 configuration is set to Track, and the tracked interface loses connectivity, it can cause c... → luckman212
12:18 AM Revision 5ec2eb9b: Add QinQ interfaces to the list of interfaces not to check (Bug #4669): Doktor Notor

03/09/2017

08:40 PM Bug #4287: Wrong display for ppp in Interfaces page: https://github.com/pfsense/pfsense/pull/3639
Cannot see what else could be done here. If it's not reported, it's n... Kill Bill
07:09 PM Revision 0f1a5f2c: Add reason to write_config() call: Doktor Notor
07:07 PM Revision b290e10e: Add reason to write_config() call: Doktor Notor
06:58 PM Revision 8fcbf879: Update system_update_settings.php: Doktor Notor
06:53 PM Revision 9df2adfc: Add reason to write_config() call: Doktor Notor
06:52 PM Revision a29f2ee6: Add reason to write_config() call: Doktor Notor
06:48 PM Revision 4f36a53c: Add reason to write_config() calls: Doktor Notor
06:41 PM Revision 149816cb: Add reason to write_config() call: Doktor Notor
06:32 PM Revision 3bd33bd3: Add reason to write_config() call: Doktor Notor
06:30 PM Revision fb963e2c: Add reason to write_config() call: Doktor Notor
06:28 PM Revision 437d76fe: Add reason to write_config() call: Doktor Notor
06:26 PM Revision 9d43ef89: Add reason to write_config() call: Doktor Notor
06:24 PM Revision 3f533580: Add reason to write_config() calls: Doktor Notor
06:19 PM Bug #4669: QinQ virtual interfaces available for assignment where they shouldn't be: Timo Nieminen wrote:
> The patch 1. is missing on 2.3.2-RELEASE-p1. Booting system with QinQ interfaces assigned wil... Kill Bill
03:47 PM Revision 176026af: Add reason to write_config() call: Doktor Notor
03:44 PM Revision e5b8f4ad: Add reason to write_config() call: Doktor Notor
02:20 PM Revision 0baf52bb: Add reason to write_config() calls: Replace shell-style comments while here. Doktor Notor
02:03 PM Revision 5a433494: Add reason to write_config() call: Doktor Notor
01:59 PM Revision 9178eadc: Add reason to write_config() calls: Doktor Notor
01:51 PM Revision 85d1b87e: Add reason to write_config() call: Doktor Notor
01:32 PM Bug #7373 (New): Firewall schedules GUI needs to be redone from scratch: That thing is seriously horrible, the calendar is confusing like hell plus mostly useless - never heard of anyone sch... Kill Bill
01:17 PM Revision 2b359eda: Revert "C2758 is VGA only too": This reverts commit 3244266fd8a99a66611334b8ae945de61eb9a0da. Renato Botelho
01:17 PM Revision f962a59a: Revert "C2758 is VGA only too": This reverts commit 0a00b197976e638199ab88b823ec6c75ad9a99b2. Renato Botelho
01:16 PM Revision 5aa1ac92: Revert "C2758 is VGA only too": This reverts commit e4324dcebd54bfc498bffd6d02b0afd7d8c674b9. Renato Botelho
12:52 PM Revision e4324dce: C2758 is VGA only too: Renato Botelho
12:47 PM Revision 3244266f: C2758 is VGA only too: Renato Botelho
12:46 PM Revision 0a00b197: C2758 is VGA only too: Renato Botelho
11:34 AM Bug #7372: Cannot filter ICMP Type SKIP: An easier way to keep it would be to use the type number (39) instead of the name. The rule loads fine with 39 instea... Jim Pingle
03:14 AM Bug #7372: Cannot filter ICMP Type SKIP: If you want to block all "dodgy" ICMP types, then you should probably block ICMP type numbers that do not have a defi... Phillip Davis
02:50 AM Bug #7372: Cannot filter ICMP Type SKIP: Phillip Davis wrote:
> SKIP (type 39) has been deprecated:
> Is there a reason you (or anyone) need to particularly... Kill Bill

03/08/2017

10:03 PM Revision 5eab8157: Add missing includes to config.console.inc: Doktor Notor
10:01 PM Bug #7372: Cannot filter ICMP Type SKIP: I figured it was likely a parser issue when I was narrowing it down to SKIP - I initially tried the types with parent... Marc 05
09:53 PM Bug #7372: Cannot filter ICMP Type SKIP: Hmmm - pf seems to know about "skip":
https://github.com/pfsense/FreeBSD-src/blob/devel/sbin/pfctl/pfctl_parser.c#L8... Phillip Davis
08:48 PM Bug #7372: Cannot filter ICMP Type SKIP: No reason for me, just found the bug and reporting it. Marc 05
08:43 PM Bug #7372: Cannot filter ICMP Type SKIP: SKIP (type 39) has been deprecated:
https://www.iana.org/assignments/icmp-parameters/icmp-parameters.xml#icmp-parame... Phillip Davis
04:19 PM Bug #7372 (Resolved): Cannot filter ICMP Type SKIP: When adding a rule to filter ICMP traffic of type SKIP, the following error shows under Status / System Logs / System... Marc 05
08:27 PM Revision 19b3f5bc: Add a deprecation notice: Doktor Notor
08:07 PM Revision 4b67b75c: Add error handling to AJAX call: Doktor Notor
07:59 PM Revision d149a316: It's time for 2.3.3-RELEASE-p1: Renato Botelho
07:55 PM Revision a97b8740: Add error handling to AJAX call: Doktor Notor
07:10 PM Revision 7da4e896: Add missing include: Doktor Notor
07:09 PM Revision 8d53c0b9: Add missing include: Doktor Notor
07:08 PM Revision 73acc25d: Add missing include: Doktor Notor
07:07 PM Revision 922273bf: Add missing include: Doktor Notor
07:07 PM Revision e22b3080: Add missing include: Doktor Notor
07:06 PM Revision 096ae765: Add missing include: Doktor Notor
07:06 PM Revision 394bb9d4: Add missing include: Doktor Notor
07:05 PM Revision 43e07671: Add missing include: Doktor Notor
07:04 PM Revision 15c74b5b: Add missing include: Doktor Notor
07:04 PM Revision 0661622a: Add missing include: Doktor Notor
07:03 PM Revision fdd8fafc: Add missing include: Doktor Notor
07:02 PM Revision e2f8257d: Add missing include: Doktor Notor
07:02 PM Revision f5e4ee03: Add missing include: Doktor Notor
07:01 PM Revision b4097bca: Add missing include: Doktor Notor
07:00 PM Revision b51cb63f: Add missing include: Doktor Notor
06:59 PM Revision afb7b75e: Add missing include: Doktor Notor
06:57 PM Revision 059e1bd2: Add missing include: Doktor Notor
06:53 PM Revision e1ac4a84: Remove duplicate pfSenseHeader() function: Sort includes while here. Doktor Notor
06:46 PM Revision c35d1294: Relocate pfSenseHeader() function to pfsense-utils.inc: Doktor Notor
06:40 PM Revision bbd36e2d: Relocate pfSenseHeader() function to pfsense-utils.inc: Sort includes while here. Doktor Notor
06:36 PM Revision 31c0fa8b: Fix #7317 Widget Filter All button: (cherry picked from commit 7067e174c27a1fe9b23d13806f1e52ce9bc2aaee) Phil Davis
06:35 PM Revision f070cc7a: System Information widget filter gettext(): (cherry picked from commit f5d762f90924510c097a9065dff135dab01f46f0) Phil Davis
06:35 PM Revision a1211630: System Information Widget Filter: (cherry picked from commit 718b3b0b1b75de09a87866cb37b5a0752643283a) Phil Davis
06:34 PM Revision 7df63e98: Fix #7317 Widget Filter All button: (cherry picked from commit 7067e174c27a1fe9b23d13806f1e52ce9bc2aaee) Phil Davis
05:40 PM Revision f3de1be0: Fix #7364 Console assigned VLAN disappears after reboot: (cherry picked from commit 75a1149e0104561446e6f90f98d98c6c13c52996) Phil Davis
05:40 PM Revision 25d8c2ce: Fix #7364 Console assigned VLAN disappears after reboot: (cherry picked from commit 75a1149e0104561446e6f90f98d98c6c13c52996) Phil Davis
05:39 PM Revision 209e95d6: Merge pull request #3626 from phil-davis/trigger-initial-wizard-7364: Renato Botelho
04:55 PM Revision 11a0c763: Fix #7306 Correctly filter log widget entries by interface description: (cherry picked from commit 27bc5848cfea95f97f70a4fe0c30da6319794a9a) Phil Davis
04:55 PM Revision 5bc83b28: Fix #7306 Correctly filter log widget entries by interface description: (cherry picked from commit 27bc5848cfea95f97f70a4fe0c30da6319794a9a) Phil Davis
04:54 PM Revision b25977ab: Merge pull request #3577 from phil-davis/patch-10: Renato Botelho
04:42 PM Revision ceb90928: Use the same cache filename pattern for RFC2136 IPv6 items as used by dyndns: Renato Botelho
04:42 PM Revision 458f5aee: Use | to separate dyndns IPv4 fields on cache file as done by rfc2136 items and for all IPv6 items: Renato Botelho
04:41 PM Revision aa3e0749: Setup XG-154x console to VGA only: Renato Botelho
04:40 PM Revision 57c616e2: Setup XG-154x console to VGA only: Renato Botelho
04:40 PM Revision c7300778: Setup XG-154x console to VGA only: Renato Botelho
04:36 PM Feature #2358: NAT64 support: Google offers a public DNS64 resolver https://developers.google.com/speed/public-dns/docs/dns64 so if we could get NA... Arthur Wiebe
03:06 PM Revision a49317dc: Add AJAX to interfaces widget: Do some whitespace fixes while here. Doktor Notor
03:05 PM Revision 37f95208: Remove whirlpool from the list of CA/Cert digest algorithms as it does not work properly. OpenSSL claims it's not valid ("unknown signature algorithm"). Fixes #7370: While I'm here, stop needlessly repeating the algo list, it's a global in certs.inc, so use that single copy of the l... Jim Pingle
03:05 PM Revision cfc0d396: Remove whirlpool from the list of CA/Cert digest algorithms as it does not work properly. OpenSSL claims it's not valid ("unknown signature algorithm"). Fixes #7370: While I'm here, stop needlessly repeating the algo list, it's a global in certs.inc, so use that single copy of the l... Jim Pingle
03:03 PM Revision 84141846: Remove whirlpool from the list of CA/Cert digest algorithms as it does not work properly. OpenSSL claims it's not valid ("unknown signature algorithm"). Fixes #7370: While I'm here, stop needlessly repeating the algo list, it's a global in certs.inc, so use that single copy of the l... Jim Pingle
02:58 PM Revision 505c0863: Fix display of openssl errors when working with CA or certificate entries. Found this while looking into ticket #7370: Jim Pingle
02:58 PM Revision ddfa8daa: Fix display of openssl errors when working with CA or certificate entries. Found this while looking into ticket #7370: Jim Pingle
02:57 PM Revision 5ce9bcf5: Fix display of openssl errors when working with CA or certificate entries. Found this while looking into ticket #7370: Jim Pingle
02:53 PM Bug #7343 (Resolved): On 2.3.3, Updater reports that the latest version is 0.18_1: Jim Pingle
02:34 PM Revision 27c86938: Set new blog URL (https://www.netgate.com/blog/) as default for RSS widget: (cherry picked from commit 294f14f7897f973f1fa2a1506cfdd9117b5daf65) Steve Beaver
02:11 PM pfSense Packages Bug #7237: ACME - first table row on certs tab does not autoexpand the fields: Should get fixed/changed with this: https://github.com/pfsense/FreeBSD-ports/pull/329 Pi Ba
02:09 PM pfSense Packages Bug #7342: Acme Certificates option to change the order of certificates is broken: @Sam, thanks for clarifying, should get fixed with this: https://github.com/pfsense/FreeBSD-ports/pull/329 Pi Ba
12:36 AM pfSense Packages Bug #7342: Acme Certificates option to change the order of certificates is broken: I found what causes it. If I set the name to be the domain name with "."s eg: test.domain.com it won't let me click ... Sam Bingner
02:09 PM pfSense Packages Bug #7302 (Resolved): Acme AWS/Route 53 DNS Verification fails: Jim Pingle
02:08 PM pfSense Packages Bug #7302: Acme AWS/Route 53 DNS Verification fails: I can confirm that 0.1.14 works with AWS. Doug Twitchell
02:02 PM pfSense Packages Bug #7302: Acme AWS/Route 53 DNS Verification fails: Can you check if 0.1.14 fixes this? Pi Ba
02:08 PM pfSense Packages Feature #7340: Acme Client nsupdate interface forces a different key-ID for every domain: The way the code works now the key name/id is the domain name. While you could copy the key to a bunch of names on th... Jim Pingle
02:06 PM pfSense Packages Feature #7340: Acme Client nsupdate interface forces a different key-ID for every domain: Seems to me if you can set 1 update key in bind you can reuse that key in acme package for each domain?
p.s. ive nev... Pi Ba
01:20 PM Bug #7306 (Resolved): Log widget filter interface selection does not work when interface description is not the default: works Renato Botelho
10:55 AM Bug #7306 (Feedback): Log widget filter interface selection does not work when interface description is not the default: PR has been merged, thanks! Renato Botelho
01:12 PM Bug #7299 (Resolved): Error loading rules for old rule with ICMP type specified: Renato Botelho
01:12 PM Bug #7300 (Resolved): Error displaying selected ICMP types for old rules without ipprotocol: Renato Botelho
12:39 PM Bug #7301 (Resolved): Dynamic DNS status widget formatting for medium with browser window.: Works Renato Botelho
10:53 AM Bug #7301 (Feedback): Dynamic DNS status widget formatting for medium with browser window.: PR has been merged Renato Botelho
12:37 PM Bug #7317 (Resolved): Widget Filter All button effects all widgets: Cherry-picked necessary commits to RELENG_2_3 and RELENG_2_3_3 Renato Botelho
12:11 PM Bug #7354 (Resolved): /etc/rc.initial.password: Expiration date for admin user is not removed when resetting the account: Renato Botelho
12:10 PM Bug #7356 (Resolved): pfsense 2.3.4: TCP State Timeout cannot be higher than 3600s within a rule - global configuration allows higher values: Works Renato Botelho
12:08 PM Bug #7370 (Resolved): Whirlpool Digest Algorithm on 2.3.3 and 2.4: Works Renato Botelho
09:20 AM Bug #7370 (Feedback): Whirlpool Digest Algorithm on 2.3.3 and 2.4: Applied in changeset commit:841418461212fd2eb985553122642a5cc758246b. Jim Pingle
09:05 AM Bug #7370 (Confirmed): Whirlpool Digest Algorithm on 2.3.3 and 2.4: Jim Pingle
05:48 AM Bug #7370 (Resolved): Whirlpool Digest Algorithm on 2.3.3 and 2.4: CA certificate creation fails when using DA: Whirlpool with any key length from 512 to 16384.
No related errors in s... Vladimir Lind
11:52 AM Bug #7357 (Resolved): CloudFlare DDNS Not working for domain-only updates (@ record for domain): Confirmed fixed Renato Botelho
11:50 AM Bug #7364 (Resolved): VLAN disappears after reboot - assigned through shell: Works Renato Botelho
11:50 AM Bug #7364 (Feedback): VLAN disappears after reboot - assigned through shell: Applied in changeset commit:75a1149e0104561446e6f90f98d98c6c13c52996. Phillip Davis
11:34 AM Bug #7364: VLAN disappears after reboot - assigned through shell: The previous error was due to a CE patch being applied to a factory image. Renato created a factory patch and I was a... Clinton Cory
11:20 AM Bug #7364: VLAN disappears after reboot - assigned through shell: patch fails on 2.3.3 and 2.4
2.3:... Clinton Cory
03:17 AM Bug #7364: VLAN disappears after reboot - assigned through shell: The initial setup wizard has other stuff for setting interface IPs, DNS servers and so on. So if someone sets their i... Phillip Davis
02:36 AM Bug #7364: VLAN disappears after reboot - assigned through shell: Should have looked at your patch first. That is why I say IANAProgrammer. Chris Linstruth
02:34 AM Bug #7364: VLAN disappears after reboot - assigned through shell: Right.
This is probably not the place for this discussion but if a manual assignment is done in the web menu/CLI p... Chris Linstruth
02:19 AM Bug #7364: VLAN disappears after reboot - assigned through shell: I could reproduce after doing a "reset to factory defaults" in the VM
PR https://github.com/pfsense/pfsense/pull/362... Phillip Davis
12:16 AM Bug #7364: VLAN disappears after reboot - assigned through shell: I can confirm this using an RCC-VE 2440 and both netgate factory and CE 2.3.3 images.
I believe this is due to run... Chris Linstruth
11:14 AM Feature #1181: Allow a way to add protocols (such as udp) to a load balancer: unfortunately, to have working loadbalanced dns nowadays, you need to balance udp + tcp aswell. see http://www.networ... Roland Kletzing
10:46 AM Bug #7358 (Resolved): XG-1540/1 - wrong console type breaks single-user mode: Renato Botelho
10:45 AM Bug #7358: XG-1540/1 - wrong console type breaks single-user mode: Fix on commit:aa3e0749204a7f80c4717d86a2d44c4825888543 confirmed to work Renato Botelho
10:45 AM Bug #7371: pfsense load balancer relayd does not load balance dns with udp+tcp: please see my last comment in #6870 Roland Kletzing
10:44 AM Bug #7371 (Closed): pfsense load balancer relayd does not load balance dns with udp+tcp: i would have reopened https://redmine.pfsense.org/issues/6870 , but unfortunately i can`t
relayd is unusable in it... Roland Kletzing
10:44 AM Bug #7290 (Resolved): Dynamic DNS Widget, RFC2136 entries show red even when the cached IP address is correct: Fixed by commit:5be33f49c5d5d70d9a11822f77eff3a312b43545 and commit:877676ee199a399ae5495543b080527bd34037f7 Renato Botelho
09:40 AM Bug #7330: IPv6 Prefix is deleted on PPPoe reset, but not reapplied.: Greg M wrote:
> Hi!
>
> Very similar issue I think it`s connected: https://forum.pfsense.org/index.php?topic=1268... Michael Zieher
09:36 AM Bug #7330: IPv6 Prefix is deleted on PPPoe reset, but not reapplied.: Martin Wasley wrote:
> Michael Zieher wrote:
> > Ah... Sorry!
> > The interesting Logs are all 04:* ... I somehow ... Michael Zieher
08:00 AM Bug #7330: IPv6 Prefix is deleted on PPPoe reset, but not reapplied.: Michael Zieher wrote:
> Ah... Sorry!
> The interesting Logs are all 04:* ... I somehow missed to truncate the 19:* ... Martin Wasley
04:57 AM Bug #7330: IPv6 Prefix is deleted on PPPoe reset, but not reapplied.: Hi!
Very similar issue I think it`s connected: https://forum.pfsense.org/index.php?topic=126828.0 Greg M
09:39 AM Bug #7352: pfSense IPv6 static route is dumped after a WAN flap: What happens if you just open a page (WAN Interface maybe), click 'save' without changing anything and 'apply'? Michael Zieher
09:34 AM Bug #7079: ClamAV C-ICAP causing Kernel Panic and System Crash: Yeah, that'd be the one. OT: The ntopng thing is a disaster, can you bump it to 2.4.2017.01.20_1? It keeps crashing o... Kill Bill
09:30 AM Bug #7079: ClamAV C-ICAP causing Kernel Panic and System Crash: Nothing from that address but I see one at the right time that came in over IPv6 (2001:470:6e prefix). That looks to ... Jim Pingle
05:20 AM Bug #7079: ClamAV C-ICAP causing Kernel Panic and System Crash: I just submitted a crash dump related to this (IP: 85.70.xx.xx) Kill Bill
08:56 AM Bug #7368: PPPoE uptime incorrect on pfSense reboot: I'll add some Ajax to the widget. https://github.com/pfsense/pfsense/pull/3628
Otherwise, WFM as said above. Kill Bill
08:13 AM Bug #7368 (Not a Bug): PPPoE uptime incorrect on pfSense reboot: It works fine here, too. I have a test VM with two PPPoE WANs and an L2TP WAN and the uptime is correct in the widget... Jim Pingle
07:46 AM Bug #7368: PPPoE uptime incorrect on pfSense reboot: The comment on widget was that the widget is working as it should, it's showing the interface uptime be it correct wi... Bradley Jessnitz
07:36 AM Bug #7368: PPPoE uptime incorrect on pfSense reboot: Cannot reproduce any such issue. In fact, it's working for multiple users, see #6032. (The widgets uses pretty much t... Kill Bill
07:29 AM Bug #7368: PPPoE uptime incorrect on pfSense reboot: Typically a PPPoE connection should have been established during the reboot and be ready by the time one sees the con... Bradley Jessnitz
08:42 AM Revision 718cbc2d: New dhcp6c features REASONS and signals: This PR takes advantage of modifications and additions to dhcp6c.
Firstly, a fix has been made to dhcp6c where the p... Martin Wasley
08:12 AM Revision 75a1149e: Fix #7364 Console assigned VLAN disappears after reboot: Phil Davis
07:30 AM pfSense Packages Bug #6748: rrd_fetch_json.php returns html when user is unauthorized (causes "Error: SyntaxError: Unexpected token <"): ... Kill Bill
07:09 AM Bug #6870: Load balancer DNS (relayd) can't handle fragmented udp, breaks DNSSEC: notes from my findings:
1. relay can not do udp layer7 relaying besides "special case" dns
2. despite other inf... Roland Kletzing
06:53 AM Feature #3567: Option to disable NTP: -https://github.com/pfsense/pfsense/pull/3627-
(If someone still wishes to have this feature, feel free to recycle... Kill Bill
04:15 AM Feature #6032 (Resolved): Show PPPoE uptime on the Dashboard - Interfaces Widget: Renato Botelho
01:00 AM Feature #7369 (Duplicate): user privileges - refine users rights to prevent admins to tamper with other admins accounts but still manage to the configuration: to prevent admins to mess around with other users admins passwords/accounts/access but still have access to the rest ... david stievenard

03/07/2017

10:52 PM Bug #7364: VLAN disappears after reboot - assigned through shell: I tried exactly this on a 2.3.3 VM and it works fine - I made em1_vlan42 and it got assigned to LAN and came back aft... Phillip Davis
09:50 AM Bug #7364 (Resolved): VLAN disappears after reboot - assigned through shell: When a VLAN interface is created and assigned as the LAN interface through the shell menu, it will disappear from con... Clinton Cory
08:49 PM pfSense Packages Bug #7342: Acme Certificates option to change the order of certificates is broken: Maybe a browser cache of old JavaScript for the page? Try force refreshing the page (ctrl-F5) to make sure it is runn... Phillip Davis
06:11 PM pfSense Packages Bug #7342: Acme Certificates option to change the order of certificates is broken: I just updated from 0.1.12 to 0.1.14 as it had been updated since I submitted this and verified that it still does no... Sam Bingner
05:53 PM pfSense Packages Bug #7342 (Rejected): Acme Certificates option to change the order of certificates is broken: Works here, too. Jim Pingle
05:02 PM pfSense Packages Bug #7342: Acme Certificates option to change the order of certificates is broken: Works for me.. Check the box on the second certificate, click the anchor on the first one. After which the second cer... Pi Ba
06:43 PM Revision 8724b1ad: Some small improvements to help with ticket #7256: They don't fix the problem but avoid some pitfalls that could contribute to it. Jim Pingle
06:25 PM Bug #7368: PPPoE uptime incorrect on pfSense reboot: PPPoE uptime on reboot is zero. Not exactly sure what "proportion" are you expecting. Kill Bill
04:45 PM Bug #7368 (Not a Bug): PPPoE uptime incorrect on pfSense reboot: PPPoE uptime doesn't immediately reflect the actual uptime once pfSense has been rebooted, seems to be proportional t... Bradley Jessnitz
06:02 PM Revision de34683a: Redmine #7301 Put dot after the word break: Signed-off-by: Phil Davis <phil.davis@inf.org>
(cherry picked from commit 81b1b44ad7e4d7abc635b08533359b9df45b54b2) Phil Davis
06:02 PM Revision b77ddf68: Redmine #7301 Provide word-break opportunity for dynamic DNS host names: Signed-off-by: Phil Davis <phil.davis@inf.org>
(cherry picked from commit 138e79d42cb1771e3b8fcc727270187f5c7ee7db) Phil Davis
06:01 PM Revision a095b039: Merge pull request #3574 from phil-davis/wrap-host-domain-names: Renato Botelho
06:01 PM Revision 3aa941d0: Merge pull request #3606 from PiBa-NL/igmp_apply-20170303: Renato Botelho
05:59 PM Revision 96d243a5: Merge pull request #3603 from NOYB/RAM_Disk_Settings_GUI: Renato Botelho
05:33 PM Feature #4826: Allow configuration of multiple phase1 proposals: That would be great, because currently you have to select the lowest common denominator, which generally results in p... Sean McBride
05:33 PM Feature #6242: Use local user datebase for IKEv2 EAP-Charpv2: +1 from me :) Sean McBride
04:50 PM Revision 939e4b6a: Set new blog URL (https://www.netgate.com/blog/) as default for RSS widget: (cherry picked from commit 294f14f7897f973f1fa2a1506cfdd9117b5daf65) Steve Beaver
04:49 PM Revision 294f14f7: Set new blog URL (https://www.netgate.com/blog/) as default for RSS widget: Steve Beaver
04:28 PM Feature #6032: Show PPPoE uptime on the Dashboard - Interfaces Widget: Thanks for adding this, upgraded to 2.4 just to test this and all looks good. Bradley Jessnitz
02:16 PM Feature #6032: Show PPPoE uptime on the Dashboard - Interfaces Widget: Lovely, showing uptime on my WAN interface on PPPoE! Malcolm Hussain-Gambles
02:50 PM Revision ad401906: Test fix for hanging check_reload_status: After killing php-fpm (console opt 16) check_reload_status would sometimes hang, consuming 100% of 1 cpu core. I foun... → luckman212
12:35 PM Bug #7256: syslogd is not running after installing or uninstalling a package with logging (e.g. tinc, haproxy): Worked on this a bit more but still haven't nailed down the reason. It is executing the command to run syslog, it's j... Jim Pingle
12:04 PM Bug #7366 (Rejected): 2.3.4: Connections (States) with proto "icmp" show a source and a destination port: Those are not ports. It's the ICMP request ID.
Example:... Jim Pingle
11:40 AM Bug #7366 (Rejected): 2.3.4: Connections (States) with proto "icmp" show a source and a destination port: Hi,
as you can see in the screenshot the state has a source and a destination port - both are equal.
Should ICMP ... Alexander Wilke
12:01 PM pfSense Packages Feature #7367 (New): Wizard for Squid: I know its easy to install a Proxy Server but is there a way of having a Wizard to set it up.
Using Hardware spec ... Philip Hadfield
11:27 AM Revision b268e2f4: Merge pull request #3623 from doktornotor/patch-24: Renato Botelho
11:24 AM Revision 8901d6e7: Add reason to write_config() call: Doktor Notor
11:23 AM Revision 9460a588: Merge pull request #3615 from doktornotor/patch-17: Renato Botelho
11:22 AM Revision 830cafe8: Add reason to write_config() calls: Doktor Notor
11:22 AM Revision 18e2c82c: Merge pull request #3611 from doktornotor/patch-10: Renato Botelho
11:21 AM Revision 0c12cd8f: Merge pull request #3612 from doktornotor/patch-14: Renato Botelho
11:17 AM Revision ca9a1621: Merge pull request #3622 from doktornotor/patch-23: Renato Botelho
11:16 AM Revision 2ff475b7: Add reasons to write_config() calls: (cherry picked from commit 919a43a7caa551cb14e72a5cd82ec1629b3a9aa5) Doktor Notor
11:16 AM Revision 7d41bdb8: Remove unused base_packages variable from globals: (cherry picked from commit 40f5b3e22effc3319afea306a7d691a5e6934c37) Doktor Notor
11:16 AM Revision 06321cfb: Remove useless add_base_packages_menu_items() function: Not really sure what was the idea 7+ years ago, but the code just doesn't make sense now.
(cherry picked from commit ... Doktor Notor
11:16 AM Revision e0b5d158: Merge pull request #3616 from doktornotor/patch-18: Renato Botelho
11:15 AM Revision 1eab8134: Add reason to write_config() call: Doktor Notor
11:14 AM Revision 9f1b6537: Add reason to write_config() call: Doktor Notor
11:14 AM Revision 777a9446: Merge pull request #3619 from phil-davis/write_config_openvpn: Renato Botelho
11:13 AM Revision 2d4422d9: Merge pull request #3618 from doktornotor/patch-20: Renato Botelho
11:12 AM Revision 0308b456: Add reason to write_config() call: Doktor Notor
11:12 AM Revision f6e32e2b: Merge pull request #3617 from doktornotor/patch-19: Renato Botelho
11:12 AM Revision 3b179f61: Merge pull request #3620 from doktornotor/patch-21: Renato Botelho
11:10 AM Revision a4ce26c3: Merge pull request #3621 from doktornotor/patch-22: Renato Botelho
11:05 AM Revision 4734cf7f: Add reason to write_config() call: Doktor Notor
11:01 AM Bug #7276 (Resolved): 2.3.3 upgrade does not upgrade: I've upgraded internal docs and next time a new version is RELEASED this won't happen anymore Renato Botelho
10:51 AM Bug #7276: 2.3.3 upgrade does not upgrade: Now I understood what happened here. RC packages were held at beta.pfsense.org instead of pkg.pfSense.org and this ca... Renato Botelho
10:42 AM Bug #7276: 2.3.3 upgrade does not upgrade: just upgrade last nite from 2.3.4 snapshot no problem Michael Kellogg
11:00 AM Revision b525d581: Add reason to write_config() call: Doktor Notor
10:52 AM Revision 16922d7c: Add reason to write_config() call: Doktor Notor
10:50 AM Revision 99124e3a: Add reason to write_config() call: Doktor Notor
10:48 AM Revision fb3a8352: Add reason to write_config() calls: Doktor Notor
10:44 AM Feature #7365 (New): Pass firewall/filter rule set through logging for centralized loggers to key on: Not sure what the best way to go about this would be but it would be nice to put the filter rule set contents (like w... Chris Linstruth
10:44 AM Revision 18278432: Add reason to write_config() calls: Doktor Notor
10:43 AM pfSense Packages Bug #7310: Packages pre-deinstall script removes temporary files used by pkg: upgrade from 2.3.4 with snort no problem here Michael Kellogg
10:33 AM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: this also affects 2.3.3 and 2.3.4 moved to 2.4 to get limiters fix Michael Kellogg
08:03 AM pfSense Packages Bug #7319: Tinc uninstall leaves an entry in the firewall rules tab.: Tough cookies, not a package bug. Kill Bill
07:13 AM pfSense Packages Bug #7319: Tinc uninstall leaves an entry in the firewall rules tab.: Still seerms to leave pkg_tinc in the interface groups.
>>> Installing pfSense-pkg-tinc...
Updating pfSense-core... Andy Kniveton
07:03 AM pfSense Packages Bug #7319 (Feedback): Tinc uninstall leaves an entry in the firewall rules tab.: Jim Pingle
07:01 AM pfSense Packages Bug #7319: Tinc uninstall leaves an entry in the firewall rules tab.: Merged, test with 1.0.28_3 please. Kill Bill
07:03 AM Bug #7305 (Feedback): widget "squid antivirus status": Jim Pingle
07:02 AM Bug #7305: widget "squid antivirus status": https://github.com/pfsense/FreeBSD-ports/pull/313 merged. Kill Bill
06:58 AM pfSense Packages Bug #7363 (Duplicate): pfsense 2.3.4 - Tinc Package - Interface still visible after uninstallation of package.: Jim Pingle
06:49 AM pfSense Packages Bug #7363: pfsense 2.3.4 - Tinc Package - Interface still visible after uninstallation of package.: Duplicate of Bug #7319 Kill Bill
06:38 AM pfSense Packages Bug #7363 (Duplicate): pfsense 2.3.4 - Tinc Package - Interface still visible after uninstallation of package.: Did an installation of tinc and then did an uninstallation and the interface still remains visible in "Firewall --> R... Alexander Wilke
06:32 AM Feature #7362 (Resolved): Add the default values of the TCP and UDP Timeouts on the WebUI depending on the "Firewall Optimization Options": Hello,
when you go to System --> Advanced --> Firewall & NAT then you have the possibility to modify the different... Alexander Wilke
06:28 AM Feature #7361 (Duplicate): 2.3.4 - Add possibility to modify UDP (First, Single, Multiple) and TCP Timeouts per rule and not only per global parameter: Hello,
it would be usefull to have the possibility per rule to modify the Timeout of UDP connections (First, Singl... Alexander Wilke
05:09 AM Todo #204: All write_config() statements should include a reason of some sort: Not sure about bounty, but I did a couple more of them since I find the lack of info about what caused the configurat... Kill Bill
04:10 AM Bug #6666: IPV6 Log Spam?: Thanks, Kill Bill
Rgds
Rick Rick Strangman
02:27 AM Bug #7338: ME909u-521 missing serial port: Jim Pingle wrote:
> Did you read and try what the second to last post on the thread suggested?
>
> We support the... Giuseppe Ferraiolo

03/06/2017

09:53 PM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: I too am seeing this bug Michael Kellogg
09:50 PM Feature #7360 (Duplicate): WebGUI Prevent state table from displaying all states at launch: Jim Pingle
09:43 PM Feature #7360: WebGUI Prevent state table from displaying all states at launch: Duplicate of #7069
This is already implemented and is present in 2.3.3-RELEASE and 2.4 snapshots.
See Also: Sys... Chris Linstruth
08:57 PM Feature #7360 (Duplicate): WebGUI Prevent state table from displaying all states at launch: Sites with very large state tables make the WebGUI hang until it's done loading.
It should not display all the sta... Adam Piasecki
06:37 PM Revision 2a988052: Update translation files: Renato Botelho
06:34 PM Revision f8184cd0: Regenerate pot: Renato Botelho
06:34 PM Revision aa4d7205: Deduplicate code: Renato Botelho
06:34 PM Revision 55f9e4b0: Deduplicate code: Renato Botelho
05:47 PM Revision a3d6987e: Allow CloudFlare DDNS entries to use "@" or "@." for the hostname portion of the domain in the GUI to update the domain's @ record. Then in the backend code, remove that from the FQDN since CloudFlare doesn't like that to be sent explicitly. Fixes #7357: Fix is confirmed to work by two forum users: https://forum.pfsense.org/index.php?topic=122099.msg699763#msg699763 Jim Pingle
05:47 PM Revision f751b20a: Allow CloudFlare DDNS entries to use "@" or "@." for the hostname portion of the domain in the GUI to update the domain's @ record. Then in the backend code, remove that from the FQDN since CloudFlare doesn't like that to be sent explicitly. Fixes #7357: Fix is confirmed to work by two forum users: https://forum.pfsense.org/index.php?topic=122099.msg699763#msg699763 Jim Pingle
05:45 PM Revision 6534026b: Allow CloudFlare DDNS entries to use "@" or "@." for the hostname portion of the domain in the GUI to update the domain's @ record. Then in the backend code, remove that from the FQDN since CloudFlare doesn't like that to be sent explicitly. Fixes #7357: Fix is confirmed to work by two forum users: https://forum.pfsense.org/index.php?topic=122099.msg699763#msg699763 Jim Pingle
05:40 PM Revision a1518c96: Do not enforce a max limit on state timeout when editing a firewall rule. Fixes #7356: Jim Pingle
05:40 PM Revision 858c011d: Do not enforce a max limit on state timeout when editing a firewall rule. Fixes #7356: Jim Pingle
05:40 PM Revision 12210bd4: Do not enforce a max limit on state timeout when editing a firewall rule. Fixes #7356: Jim Pingle
04:04 PM Revision 33b1fa56: While I'm here, fix the case when the admin account has been removed.: Jim Pingle
04:04 PM Revision 33d625f1: While I'm here, fix the case when the admin account has been removed.: Jim Pingle
04:04 PM Revision af1e16c2: While I'm here, fix the case when the admin account has been removed.: Jim Pingle
03:58 PM Revision bdde9bb1: When resetting admin account via /etc/rc.initial.password, Check if the admin account is expired and reset if needed. Fixes #7354: Jim Pingle
03:58 PM Revision 41e32578: When resetting admin account via /etc/rc.initial.password, Check if the admin account is expired and reset if needed. Fixes #7354: Jim Pingle
03:57 PM Revision 9c20c034: When resetting admin account via /etc/rc.initial.password, Check if the admin account is expired and reset if needed. Fixes #7354: Jim Pingle
01:45 PM Bug #7359 (Resolved): Status/OpenVPN Page Sorts Incorrectly: The bytes sent and byte received columns in the OpenVPN status page sort alphabetically and not by size.
Notes:
R... Mat Richmond
01:34 PM Bug #7358 (Resolved): XG-1540/1 - wrong console type breaks single-user mode: Single-user mode is not accessible on the XG-1540 and XG-1541 because single-user mode is trying to use the first con... Clinton Cory
11:50 AM Bug #7357 (Feedback): CloudFlare DDNS Not working for domain-only updates (@ record for domain): Applied in changeset commit:6534026bc1b0d9dcc9ac8c85b16d2fc2860db1f1. Jim Pingle
11:45 AM Bug #7357 (Resolved): CloudFlare DDNS Not working for domain-only updates (@ record for domain): Since the CloudFlare DDNS code was changed to split hostname and domain, it is not possible to properly update the @ ... Jim Pingle
11:50 AM Bug #7356 (Feedback): pfsense 2.3.4: TCP State Timeout cannot be higher than 3600s within a rule - global configuration allows higher values: Applied in changeset commit:12210bd40d60757e09e09f433f7ce5536f686c97. Jim Pingle
11:39 AM Bug #7356 (Confirmed): pfsense 2.3.4: TCP State Timeout cannot be higher than 3600s within a rule - global configuration allows higher values: You're right, that should not be limited in that way.
It affects 2.4 as well.
Easy fix, I'll push it momentar... Jim Pingle
11:15 AM Bug #7356 (Resolved): pfsense 2.3.4: TCP State Timeout cannot be higher than 3600s within a rule - global configuration allows higher values: Hi,
whe I am within a firewall rule and change the "TCP State Timeout" under "Advaced options" within that specifi... Alexander Wilke
10:55 AM Bug #7338: ME909u-521 missing serial port: Did you read and try what the second to last post on the thread suggested?
We support the hardware supported by Fr... Jim Pingle
02:19 AM Bug #7338: ME909u-521 missing serial port: Jim Pingle wrote:
> That's what a proper discussion will determine.
On forum more people have same problem! Is ke... Giuseppe Ferraiolo
10:32 AM Bug #7355: ME909u-521 missing serial port: Jim Pingle wrote:
> Duplicate of #7338
>
> Please do not open multiple tickets for the same issue.
please can ... Giuseppe Ferraiolo
10:30 AM Bug #7355 (Rejected): ME909u-521 missing serial port: Duplicate of #7338
Please do not open multiple tickets for the same issue. Jim Pingle
10:26 AM Bug #7355 (Rejected): ME909u-521 missing serial port: Hi,
before upgrading pfsense I was using properly Huawei ME909u-521.
pFsense was create for modem port (/dev/cuaU0.... Giuseppe Ferraiolo
10:00 AM Bug #7354 (Feedback): /etc/rc.initial.password: Expiration date for admin user is not removed when resetting the account: Applied in changeset commit:9c20c0344bda14ee89d27e8cab4a5400262c4ee5. Jim Pingle
09:57 AM Bug #7354 (Resolved): /etc/rc.initial.password: Expiration date for admin user is not removed when resetting the account: When resetting the admin password, the /etc/rc.initial.password script checks if the account is disabled and resets t... Jim Pingle
07:39 AM Feature #7353 (Closed): Openvpn Logins page: Hello,
i would like to monitor per user when he/she connected/disconnected.
in Pfsense 2.1.5 we used the PPTP L... ton wittenberg
07:28 AM Revision 8725f4a5: Add reason to write_config() calls for OpenVPN: Phil Davis
01:56 AM Todo #204: All write_config() statements should include a reason of some sort: By doktornotor:
https://github.com/pfsense/pfsense/pull/3617
https://github.com/pfsense/pfsense/pull/3618
By phi... Phillip Davis

03/05/2017

09:37 PM Revision bb5b7532: Add reason to write_config() call: Doktor Notor
09:32 PM Revision fddb303a: Add reason to write_config() calls: Doktor Notor
09:20 PM Revision b05c860c: Add reason to write_config() call: Doktor Notor
09:04 PM Bug #7352 (New): pfSense IPv6 static route is dumped after a WAN flap: In our pfSense setup, we receive a /56 prefix delegation (PD) from our ISP on the WAN. Two of our interfaces track t... JC Denton
09:03 PM Revision 919a43a7: Add reasons to write_config() calls: Doktor Notor
08:23 PM Revision 4fe75c8e: Add reason to write_config() call: Doktor Notor
08:18 PM Revision 32fb5ce7: Add reason to write_config() call: Doktor Notor
08:12 PM Revision 1044256f: Add reason to write_config() calls: Doktor Notor
06:52 PM Revision 40f5b3e2: Remove unused base_packages variable from globals: Doktor Notor
06:51 PM Revision 94503103: Remove useless add_base_packages_menu_items() function: Not really sure what was the idea 7+ years ago, but the code just doesn't make sense now. Doktor Notor
05:05 PM Revision ba67d223: Remove unused functions: Doktor Notor
04:32 PM Revision d0bb84f7: Remove dummy config_lock() and config_unlock() functions: Been no-op for ages (https://github.com/pfsense/pfsense/commit/0027de0a544438f146cfc94f005fd6f4ba9f94d7). Doktor Notor
04:29 PM Revision 9bfb115b: Remove useless config_lock()/config_unlock() calls: Doktor Notor
04:25 PM Bug #7349 (Rejected): Autocomplete seems to have broken in 2.3.3?: I can't reproduce it either, even with a rule and alias exactly as stated. +1 for dumping the browser cache and tryin... Jim Pingle
03:45 AM Bug #7349: Autocomplete seems to have broken in 2.3.3?: 2.3.3-RELEASE (amd64)
built on Thu Feb 16 06:59:53 CST 2017
FreeBSD 10.3-RELEASE-p16
It all works for me:
- add... Phillip Davis
02:39 AM Bug #7349 (Rejected): Autocomplete seems to have broken in 2.3.3?: Steps:
After upgrading 2.3.2 to 2.3.3 via GUI, I created a new alias "New_boxes" with two hosts, 192.168.1.5 + 192... Stilez y
04:22 PM Bug #7348 (Resolved): Import certificate doesn't verify syntax resulting in loss of web gui: #1685 is something different.
We already protect against importing such bad combinations on 2.4. You can't import ... Jim Pingle
08:18 AM Bug #7348: Import certificate doesn't verify syntax resulting in loss of web gui: Duplicate of Bug #1685.
(Note - there's no need for manual messing with config.xml, see the other bug.) Kill Bill
04:22 PM Bug #1685 (Resolved): Web configurator silently fails when "Private key does not match the certificate public key": We already protect against importing such bad combinations on 2.4, that's probably sufficient. Jim Pingle
04:14 PM Bug #7351: Traffic Shaper on VLan, breaks PFSense Completely does not boot correctly.: On 2.4 it is. Check the closed issues on 2.4. If you have more questions, post them on the forum. Jim Pingle
04:11 PM Bug #7351: Traffic Shaper on VLan, breaks PFSense Completely does not boot correctly.: Jim Pingle wrote:
> Looks the same as #6257. If it's not, it's probably your hardware. Try 2.4, if it doesn't work, ... Jonny Proud
03:50 PM Bug #7351 (Duplicate): Traffic Shaper on VLan, breaks PFSense Completely does not boot correctly.: Looks the same as #6257. If it's not, it's probably your hardware. Try 2.4, if it doesn't work, we can't fix your har... Jim Pingle
03:26 PM Bug #7351: Traffic Shaper on VLan, breaks PFSense Completely does not boot correctly.: This is the device I brought which runs PFSense, http://www.qotom.net/goods-129-QOTOM-Q190G4+4+LAN+Mini+PC.html
Do... Jonny Proud
10:36 AM Bug #7351: Traffic Shaper on VLan, breaks PFSense Completely does not boot correctly.: Traffic Shaping Type I'm trying to use is HSFC Jonny Proud
10:34 AM Bug #7351 (Duplicate): Traffic Shaper on VLan, breaks PFSense Completely does not boot correctly.: Hi Guys,
I've had this issue since 2.3.2 but was waiting to 2.3.3 to see if it gets fixed. It still an issue so I ... Jonny Proud
03:41 PM Bug #6913: install on Hyper-v R2: Kill Bill wrote:
> Broken again.
>
> https://forum.pfsense.org/index.php?topic=124915.0
Here is some further inf... Daryl Morse
03:27 PM Revision f11ac397: Remove no longer needed split() re-implementation: Doktor Notor
02:43 PM Revision fd7e2c0e: Remove deprecated unused function: Not used anywhere and deprecated for ages (https://github.com/pfsense/pfsense/commit/fe9afce65fc36f278e18edf8959669de... Doktor Notor
01:47 PM Bug #7343: On 2.3.3, Updater reports that the latest version is 0.18_1: Yeah, the answer is still the same. Run @pkg upgrade pfSense-upgrade@ from shell. Kill Bill
01:20 PM Bug #7343: On 2.3.3, Updater reports that the latest version is 0.18_1: I have the XG-1540 with 10GB addon NIC and I'm seeing the same thing as Denny Page
System Information page: !https... Mark Jeremy
11:27 AM Revision e22ca5a2: v4 or v6: Stilez y
11:25 AM Revision 40e21a7f: change "returned" -> "to return": Stilez y
11:20 AM Revision eb267378: better title: Stilez y
11:18 AM Revision de55303c: Clearer narrative for domain override on main resolver config page: Stilez y
11:11 AM Revision 619d8ac8: Clearer narrative for host override edit page: Stilez y
11:05 AM Revision 51deda53: incorrect escape \: Stilez y
10:50 AM Revision 1eb759ab: Clearer narrative for domain override on main resolver config page: Stilez y
10:42 AM Revision 638a7947: Clearer narrative for domain override edit page: Stilez y
06:46 AM Bug #6594: Package reinstallation post-config restore hangs if no Internet connectivity: Renato Botelho wrote:
> Kill Bill wrote:
> > Someone test this, perhaps? https://github.com/pfsense/pfsense/pull/35... Kill Bill
06:29 AM Feature #7350: Unbound host/domain override needs better IPv4/IPv6 handling?: Stilez y wrote:
> * Domain Override should allow a list of IPs rather than just one so a mix of IPv4/IPv6/alternativ... Kill Bill
05:34 AM Feature #7350 (Duplicate): Unbound host/domain override needs better IPv4/IPv6 handling?: At the moment the IP for a host or lookup server can be entered as IPv4 or IPv6, but not both, nor can multiple/fallb... Stilez y
12:11 AM Bug #7015 (Resolved): IPsec not working behind NAT: Fixed (also confirmed by JimP on #6937 which was caused by the same issue). Luiz Souza

03/04/2017

09:46 PM Bug #7206: Authentication Method Used in Bug 6751 Removed by Amazon: Applied the patch. It works. Thanks! Doug Twitchell
07:45 PM Revision eddb0131: trafficgraphs, divide bandwidth by time when statistics where gathered to smooth out bumps in the graphs: Pi Ba
05:11 PM Bug #6937 (Resolved): Inbound traffic on enc0 is not creating a state with mobile IPsec: Works great on the latest snapshot, thanks! Jim Pingle
03:11 PM Bug #7348 (Resolved): Import certificate doesn't verify syntax resulting in loss of web gui: Web GUI doesn't check syntax when importing SSL certificates resulting in loss of web gui.
Steps to reproduce:
1.... Isaac McDonald
12:31 PM Bug #7347 (Closed): Config Sync - Breaks on null value: When setting up config sync on a new box. If a config section is selected, in this example Virtual IPs, but nothing i... Clinton Cory
09:55 AM Bug #7343: On 2.3.3, Updater reports that the latest version is 0.18_1: I also see an issue on factory 2.3.3. I see "The system is on a later version than the official release" in the syste... Denny Page
01:51 AM Bug #7343: On 2.3.3, Updater reports that the latest version is 0.18_1: Hi guys,
I don't know if this is related or not, but thought I'd throw it out.
I have a vm running 2.3.3. I ove... Will Wainwright
01:47 AM Revision 56632443: use right var for zoneid: Jason McCormick

03/03/2017

10:53 PM Bug #6937 (Feedback): Inbound traffic on enc0 is not creating a state with mobile IPsec: New changes were made to handle this issue. Waiting on JimP comments. Luiz Souza
10:51 PM Bug #7015 (Feedback): IPsec not working behind NAT: Fixed in latest update. Luiz Souza
07:57 PM Bug #7272: 6rd not functioning on 2.4.0-BETA: Hi guys,
I'm just chiming in to ask for this as well. I'm using Charter's 6rd service and was about to open a tick... Will Wainwright
07:56 PM Bug #7206: Authentication Method Used in Bug 6751 Removed by Amazon: Pull #3608 Jason McCormick
07:53 PM Bug #7206: Authentication Method Used in Bug 6751 Removed by Amazon: It helps if I completely reverted the items I changed for the region being added to the zone. Just needed to step awa... Jason McCormick
04:22 PM Bug #7206: Authentication Method Used in Bug 6751 Removed by Amazon: Okay I've done more testing with this and I'm getting more random errors that don't make any sense to me. The same co... Jason McCormick
07:24 PM Revision 1cd02ef7: igmp, fix apply button, remove save button: Pi Ba
03:40 PM Revision adb19456: Adjust fix for ticket #7294 for 2.3.x, it used a setHelp change that was only valid on 2.4.: Jim Pingle
02:17 PM Todo #6944: dhcp6c releasing allocation: Close this one. Martin Wasley
01:16 PM Bug #7339: Dyndns RFC2136 client, don't send updates via TCP.: Tks Jim.. it is clear now...
Eduardo Silva
12:56 PM Bug #7339: Dyndns RFC2136 client, don't send updates via TCP.: You have broken the update by blocking UDP. It performs the _update_ via TCP, but it performs other parts of the acti... Jim Pingle
12:45 PM Bug #7339: Dyndns RFC2136 client, don't send updates via TCP.: Jim:
The packets in the filter log (pfsense 167.61.xxx.xx) shows port 53 UDP output packets insteads TCP.
I make ... Eduardo Silva
07:16 AM Bug #7339 (Rejected): Dyndns RFC2136 client, don't send updates via TCP.: That is an error from your DNS server, not the client.
TCP updates work well from here on 2.3.3.
Search for tha... Jim Pingle
10:15 AM Revision 1008f6fd: Sanitize linebreaks for textarea fields in packages on save (Bug #5306): Doktor Notor
08:19 AM Bug #7334: SG-1000 Update failure: I still see a failure on update as the PID file is deleted, but it now happens later in the update process.... Anonymous
07:20 AM pfSense Packages Bug #7211 (Resolved): DNS Made Easy ACME script not parsing domain IDs properly: Jim Pingle
12:10 AM pfSense Packages Bug #7211: DNS Made Easy ACME script not parsing domain IDs properly: I got a notification in my install that 0.1.13 was available and saw that those changes were merged into it. After t... Chris Gelatt
06:08 AM Bug #7344: Pfsense should be able to PXE boot directly from ISO file: Jim Pingle wrote:
> If it still doesn't work on 2.4, it will have to wait until FreeBSD fixes it upstream, and then ... Elias Pereira
05:05 AM Bug #7346 (Rejected): favicon is horrible: It's a bugtracker for pfSense software Renato Botelho
01:40 AM Bug #7346 (Rejected): favicon is horrible: you have a nice responsive design website . one of the major points of a responsive design website is phones and tabl... John Doe
04:15 AM Bug #5306: textarea fields should have linebreaks sanitized automatically on save: This is for XML packages:
https://github.com/pfsense/pfsense/pull/3605 Kill Bill
03:50 AM Bug #7338: ME909u-521 missing serial port: Jim Pingle wrote:
> That's what a proper discussion will determine.
On doc.pFsense.com this card is supported but... Giuseppe Ferraiolo
02:19 AM Revision c06d1448: Revert addition of region to zone field: Jason McCormick
02:18 AM Revision b2cb7364: revert parsing of config field for region: Jason McCormick
01:59 AM Revision 42565652: Fix parsing "::/0" as "::/128" on OpenVPN IPv6 Tunnel Remote network: enukane
01:11 AM Revision f51eab94: RAM Disk Settings GUI: Update notice re: log data loss. The log directory is now also backed up.
Group settings to consolidate. NOYB NOYB

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

04/01/2017

03/31/2017

03/30/2017

03/29/2017

03/28/2017

03/27/2017

03/26/2017

03/25/2017

03/24/2017

03/23/2017

03/22/2017

03/21/2017

03/20/2017

03/19/2017

03/18/2017

03/17/2017

03/16/2017

03/15/2017

03/14/2017

03/13/2017

03/12/2017

03/11/2017

03/10/2017

03/09/2017

03/08/2017

03/07/2017

03/06/2017

03/05/2017

03/04/2017

03/03/2017