Activity
From 03/24/2017 to 04/22/2017
04/22/2017
-
06:30 AM Feature #7467: Add iPhone/Android/Generic USB tethering support
- Jessica Porter wrote:
> The urndis driver would be nice as well.
There's already #6293 for that. (See https://re... -
01:28 AM pfSense Packages Bug #7487: Status Traffic Totals doesnt persist through reboots.
- Sadly someone else will have to test, the system I am using as my router is 32 bit and 2.4 only seems to be available...
04/21/2017
-
08:28 PM Feature #7467: Add iPhone/Android/Generic USB tethering support
- The urndis driver would be nice as well. It would actually be nice if all USB modules were loadable kernel modules ...
-
06:41 PM pfSense Packages Bug #7486 (Rejected): Captive Portal (CP): MS Edge and IE have interner access despite CP
- Highly unlikely to be a captive portal problem, but something with your local configuration. Could be a package, coul...
-
04:50 PM pfSense Packages Bug #7486 (Rejected): Captive Portal (CP): MS Edge and IE have interner access despite CP
- Well.. This sounds a Little dumb and I dont know wtf is going on tbh.
Well. At first, I better tell you about the ... -
- /var and /tmp handling was changed significantly in 2.4, please re-test there.
-
- Forgot to add the effected version as I did not notice the field till after I submitted, but I am running 2.3.3-RELEA...
-
- The persistent data for vmstat is stored on /var and when you have var and tmp on ramdrives, the data isn't backed up...
-
- PR Was merged and tested
-
- When scrub is enabled, a set of valid fragments can be re-fragmented improperly by scrub when exiting the firewall. W...
-
01:50 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN
- Ah yes sorry, got some versions mixed up in my head..
-
01:44 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN
- Pi Ba wrote:
> You can wait, but its still 1.0.2..
>
> [2.4.0-BETA][root@pfSense.localdomain]/root: openssl versi... -
01:37 PM Bug #7469: local_sync_accounts() slowness can trigger GUI/XMLRPC failures with many accounts
- Pushing to 2.4.1 because the whole function should be changed to be optimized
-
09:54 AM Bug #7015: IPsec not working behind NAT
- As of 2.4.0.b.20170421.0857 I'm getting the same ping errors with a GIF. dpinger's attempts to ping do create a state...
-
- This would not be possible without a proxy being involved, in which case you need to setup access controls in the pro...
-
09:30 AM
Bug #7484 (Rejected): Firewall Destination "This Firewall" not blocking all traffic
- A rule blocking traffic from "any" to "This Firewall" does not work if you open an external domain in the browser whi...
-
06:10 AM Feature #4796: Support Multiple FIBs in pfSense
- I see only one on 2.3.3:
@sysctl -a | grep fib
net.my_fibnum: 0
net.add_addr_allfibs: 1
net.fibs: 1
@
04/20/2017
-
-
- Using the setup described above I’ve also been having issues when trying to use IPsec Transport mode with either a GR...
-
- You can wait, but its still 1.0.2..
[2.4.0-BETA][root@pfSense.localdomain]/root: openssl version
OpenSSL 1.0.2k-f... -
- Ok, thanks that makes sense.
I excitedly wait for pfSense 2.4, and an ALPN capable HAProxy then.
-
- Joshua Ruehlig wrote:
> Ok, just to clear up my understanding. Is the following correct?
>
> If we build a port w... -
- Ok, just to clear up my understanding. Is the following correct?
If we build a port with openssl from ports, it no... -
- It would only fail if your NPS policy requires a specific NAS Identifier rather than using the client address. You ca...
-
11:39 AM Bug #7483 (Not a Bug): After renaming a WAN Interface its looses his Tier
- Hello,
after renaming a WAN Interface its looses his tier in all GatewayGroups.
If you rename your primary WAN it w... -
11:31 AM pfSense Packages Bug #6690: SURICATA IPS Issue - Kills VLANS & Traffic Shaper
- Jim Thompson wrote:
> Steven Kreitzer wrote:
> > Sandeep K V wrote:
> > > Hi Steven Kreitzer and Jim Thompson isn'... -
- I can't reproduce this on 2.3.3-p1 or 2.4 snapshots. I can use an LDAP name 50+ characters long and it still works in...
-
03:25 AM Bug #6957: CARP arp reply with wrong src mac
- We have the same problems in our setup.
A switch is connected to two pfsense firewalls with a CARP setup. Since th...
04/19/2017
-
- It isn't a bug, it's a missing feature.
-
08:35 PM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic
- Could we please have this changed from "Feature" to "Bug"?
-
- I'm sorry you feel that way, but that does not mean you can open a bug report for what is most likely a configuration...
-
01:52 PM Bug #7482: found 1 matching config, but none allows pre-shared key authentication using Main Mode
- By the way, I'm not going to post anything on the forum, I'm coming from there, other people is experiencing similar ...
-
- Very helpful, Jim Pingle, thanks a lot.
-
- This is not a support ticket system. Please discuss the issue on the forum. If a specific bug is identified, only the...
-
- pfSense 2.3.2-RELEASE
We have many site-to-site vpn's configured in our pfSense, an i386 vm running on vmware.
T... -
- Reverted
-
- Already added to factory installed
-
- I've reviewed deinstall functions for all packages and removed commands that can cause this symptom. It still can hap...
-
12:51 PM Feature #2358: NAT64 support
- Upvote
-
12:12 PM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available"
- Has anyone been able to test this with 2.4? Unfortunately I don't have a good test environment with IPSEC + BGP.
-
- First, that isn't the way you set OpenSSL to use the port now. It would be:...
-
- Pi Ba wrote:
> The extra build flag should probably be added to: https://github.com/pfsense/pfsense/blob/master/tool... -
- I made some tests with simple DNS answer/reply and noticed problem with states overload (250 clients and 250 servers ...
04/18/2017
-
- There is no way to NOT configure EAP in the package. Simply said, configuring the certs in the CA manager is *mandato...
-
- You may not realize it is enabled, but it must be, or you wouldn't get that error. At this point it is not a bug, but...
-
11:34 AM pfSense Packages Bug #7479: freeRadius not started after update to 1.7.8
- Jim Pingle wrote:
> Given the error, you had to have used it in the past.
eap? no, i not used EAP, never.
this... -
- A server certificate is necessary for EAP. Given the error, you had to have used it in the past.
-
- i not use Cert Manager. And EAP.
It is necessary? -
- Support for the old and redundant certificate manager in FreeRADIUS was removed. Create or import a server certificat...
-
- I upgrade freeraius and freeraius not started now
In log:
Apr 18 23:21:00 radiusd 11844 rlm_eap: SSL error err... -
- The extra build flag should probably be added to: https://github.com/pfsense/pfsense/blob/master/tools/conf/pfPorts/m...
-
- Kill Bill wrote:
> Joshua Ruehlig wrote:
> > Is it possible to set build options for dependent ports?
>
> See th... -
12:26 PM Bug #7481: pkg-framework - rowhelper ignores <advancedfield/>
- its a pkg framework issue, not a squid related bug.
-
- rowhelpers itens ignores <advancedfield/>
-
- while using textarea on a rowhelperfield, it saves contents on xml but does not show on gui.
also, it ignores the ... -
03:04 AM Feature #4826: Allow configuration of multiple phase1 proposals
- this limitation of the pfSense GUI is getting more severe as older crypto gets more and more out of date. Right now, ...
-
02:32 AM Bug #7478 (Rejected): Diagnostic/Authentification test fails on Radius since 2.3.3
- since the changed NAS Identifier in v2.3.3 (https://redmine.pfsense.org/issues/6609) from systemname to "openVPN" the...
04/17/2017
-
- As stated on that page, the BNF is not complete. It isn't a specification, it is a rough guide.
-
10:09 PM Bug #7477 (Rejected): Log data does not match documented schema
- RE: https://doc.pfsense.org/index.php/Filter_Log_Format_for_pfSense_2.2
For example:
sequence-number="285519477... -
- I've identified numerous cases where log lines appear to contain extraneous data beyond the actual end of the line. F...
-
- See also: #7468
-
- Duplicate of #6293
-
06:57 AM Bug #7452: Adding a gateway from interfaces.php does not work
- See PR https://github.com/pfsense/pfsense/pull/3697 for the same fix for adding an IPv6 gateway.
-
- Joshua Ruehlig wrote:
> Is it possible to set build options for dependent ports?
See the previous comment.
-
- Is it possible to set build options for dependent ports?
Maybe we can add an OPTION to set 'WITH_OPENSSL_PORT= yes' ...
04/16/2017
-
06:25 PM Feature #7475 (Rejected): Status\System Logs\Firewall\Summary View
- Graphic by country - Traffic pass and block
-
- Edit an interface. Choose "Static IPv4" and/or "Static IPv6".
Click the "Add a new gateway" button.
Scenario 1: E... -
-
- Duplicate of #7394
-
- 1) Edit an existing Alias that is used in a Rule/NAT etc - e.g. oldaliasname
2) Change the name - e.g. newaliasname
... -
- See also: #7473
And PR at https://github.com/pfsense/pfsense/pull/3694
04/15/2017
-
10:02 AM Bug #7468: Add Android tethering support - add urndis driver
- Already requested here: https://redmine.pfsense.org/issues/6293
I tested this and it works OK with my Nexus 4.
... -
02:58 AM Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome
- Looks good here. Thank you.
04/14/2017
-
08:53 PM
Bug #7444 (Resolved): pfSenseHelpers.js typo breaks captive portal stop/start/restart
-
08:52 PM
Bug #7445 (Resolved): pfSenseHelpers.js service naming restrictions plus lack of error handling
-
07:30 PM pfSense Packages Bug #7471: Cellular pkg errors on install
- Reassign to pkg author if this is specific to the cellular pkg
-
01:36 PM pfSense Packages Bug #7471 (Rejected): Cellular pkg errors on install
- Upgraded 2.3.3 to 2.3.3-p1, then installed cellular. Pkg install dialog:
> >>> Installing pfSense-pkg-cellular... ... -
06:16 PM Bug #6594: Package reinstallation post-config restore hangs if no Internet connectivity
- On 2.4.0.b.20170407.1403, backed up config, restored with no WAN connectivity, pfSense WEBGUI was accessible, console...
-
05:07 PM
Bug #7472 (Not a Bug): External Authentication servers with names longer than 48 characters fail to authenticate with OpenVPN server configured for TLS + User Auth
- Configure an external LDAP Authentication Server
Give it a name that exceeds 48 characters like 12345678901234567890... -
- We have seen that sort of thing in the past. A byproduct of how the weeks/months line up and perhaps a dash of DST in...
-
- Here's some better description: https://forum.pfsense.org/index.php?topic=127774.0
-
08:33 AM
pfSense Packages
Bug #7470 (Closed): Status Traffic Totals - March 2017 is missing
- March 2017 is missing in the Monthly view. Noticed by several users in the forum:
https://forum.pfsense.org/index.ph... -
- Renato Botelho wrote:
> I've found the way to reproduce it. It happens when you click on fa-trash icon. If you click... -
- This still has broken behaviour (to see Delete, you need to click Add), plus the whole thing needs backport to 2.3.x
... -
- Duplicate of #7310
-
- Over to Luiz
-
- A workaround was added on pkg for specific packages and versions when same situation happened there. In our case a co...
-
- After dig into it I found the root cause of the problem, which I will describe here and work on a fix later.
Durin... -
-
- Merged.
Note: This needs to go to 2.4 release notes. Configuring the certs is no longer optional, it's simply a re... -
12:53 AM Bug #7461: pftop no longer shows ALTQ "queue" view
- Can confirm this is resolved in version 2.4.0.b.20170412.1325
04/13/2017
-
06:03 PM
Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome
- Took care of that one too
-
- Testing using system patches on 2.3.3. Looks good for vpn_openvpn_client.php. Still needs a second click for dev_mode...
-
07:20 AM
Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome
- Applied in changeset commit:dd3c646fa5744a550f91524035a92f509d6162cf.
-
07:14 AM
Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome
- onchange handlers revised to correct this issue
-
07:05 AM
Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome
- I am able to reproduce this on MacOS & Chrome. Looking at it now.
-
- Looks like mode does the right thing on the vpn_openvpn_server.php but dev_mode also requires that second click to up...
-
- Hmm. That's frustrating. I know what I saw. Tested multiple times.
Currently when I select SSL/TLS I get the share... -
11:22 AM Bug #4310: Limiters + HA results in hangs on secondary
- Still Producing issues for me. Had to re-install pfSense on both devices in HA after encountering this bug.
-
- Queue view is working again
04/12/2017
-
06:06 PM Feature #7122: Add filters to various dashboard widgets
- Looks like the PR went in about 48hours after the last note.
Tested using build 2.4.0.b.20170412.1256
Checked... -
- I can't reproduce this at all here.
On 2.3.x the CRL field shows when it shouldn't, but that has been fixed on 2.4... -
- Confirmed here as well. Installing to eMMC (not mSATA) requires kern.cam.boot_delay="10000" and it is not added to lo...
-
- When a firewall has many local accounts, the time it takes for local_sync_accounts() to finish grows large enough to ...
-
10:39 AM pfSense Packages Bug #7438: Squid 0.4.36_2 Remote Cache Parent not working
- I had my linux guy edit the files with the lines you requested.
Same result
12.04.2017 11:36:14
10.24.1.70
TCP_... -
- I can't reproduce this on a fresh installation or upgraded firewall using the latest snapshot. Sounds like maybe your...
-
08:50 AM pfSense Packages Bug #7466 (Rejected): Status > Monitoring does not work
- When I got to Status > Monitoring I get this error: Error: JSON not returned. Check to make sure you have an active s...
-
- It works fine here when I test it. I don't have anything running on the target itself, but the connection and packets...
-
02:29 AM Bug #7463 (Rejected): FQDN Alias as "NAT Redirect target IP" fails to expand to IP
- When using a FQDN alias in the "Redirect target IP" field of a NAT rule, the rule will fail to work.
Steps to repr... -
- Please post on the forum or mailing list for discussion and diagnosis before opening a bug report. Once a specific bu...
-
03:06 AM Bug #7464 (Rejected): IPSec VPN - roadwarrior connexion - vpnc client
- Hi,
Whe have upgraded our pfSense to the latest version (2.3.3). Since, we have problems with IPSec VPN.
We can't u... -
- I can't reproduce this. There is nothing special about a /19 in a network alias. It works fine as a source and as a d...
-
05:44 AM Bug #7465 (Rejected): Firewall rules fail if using a /19 in an alias as destination
- Having a new phone system here so added in a /19 network into an alias and created the firewall rule so source intern...
-
09:10 AM Feature #7467: Add iPhone/Android/Generic USB tethering support
- Relevant https://forum.pfsense.org/index.php?topic=119419.msg660754#msg660754
-
- iPhone tethering driver is present in FreeBSD https://www.freebsd.org/doc/handbook/network-usb-tethering.html
Abou... -
Android tethering driver is present in FreeBSD https://www.freebsd.org/doc/handbook/network-usb-tethering.html
A...
04/11/2017
-
01:25 PM Bug #4218: Bridge does not have AUTO_LINKLOCAL flag
- I can confirm that this is still an issue with 2.3.3-RELEASE-p1 - although either adding the link-local address manua...
-
- I'm seeing this now as well on 2.4. Just a basic run through the shaper, tell it to prioritize a couple things like H...
-
08:02 AM pfSense Packages Bug #7462 (New): HAproxy not rebinding properly after WAN DHCP IP change
- Hi,
This is copy/pasted from the forum (https://forum.pfsense.org/index.php?topic=121345.0?) as i have the same is... -
01:35 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
- I am experiencing this issue with PFsense 2.3.2, running i386 nanobsd on an alix board.
Every time the upstream ro...
04/10/2017
-
- I'm not sure if this helps, but the bug persists when:
* Traffic shaper is deleted
* A new shaper is created using ... -
10:19 AM pfSense Packages Feature #7456: pfblockerNG add supportto add or modify self-modified easylist style rule
- The next version of the package will have all of the Language specific EasyList feeds hardcoded.
Unfortunately, al... -
10:02 AM Bug #7309: ZFS - Can't find zroot, error 5
- OK, I could fix the issue by adding kern.cam.boot_delay="10000" to /boot/loader.conf.local
The problem possibly af... -
- Same issue here with an SG-4860 running ADI image (build date 09-04-2017):
Root mount waiting for: usbus0
Root mo... -
- Applied in changeset commit:6e71610ea3d146df3e620fb062ca2569a4e96ebf.
-
- On 2.4 the pftop command no longer has a "queue" view.
The port had ALTQ changed into an option, and now defaults ... -
09:17 AM Bug #6318: IPsec dashboard widget causes GUI failure
- I am also seeing this on 2.3.3. Is there any known work around other than removing the ipsec widget? Maybe changing...
-
-
- Oops forget about this issue. I have been mislead by the rough ergonomy of the screen. I didn't figure I had to valid...
-
- During 2.4 beta installation (09-04-2017 build), when trying to select the keyboard type "French Macbook / Macbook pr...
04/09/2017
-
02:40 AM Feature #7459: "Refresh" button for Diagnostics/Tables display
- There is an Update button for some tables but it's unclear whether this means refesh the display or update the table
-
- When viewing a table, using the browser refresh produces a resend/resubmit dialog.
The only other way to refresh the...
04/08/2017
-
- I've made change 'a' on one of my installs to allow setting a default tab to display. I've attached a patch file and...
-
07:06 AM pfSense Packages Bug #7454: bridge is up after reboot while the enable interface box is not checked
- the system log is indeed limited to a fix size, however the suid service genarate cache log(path: /var/squid/logs/cac...
-
- giskard rt wrote:
> if a user want to disable squid service for some time, then he or she maybe think the service is...
04/07/2017
-
- maybe now I can only solve the ramfs related problem by completely backup /var and restore it on boot up, maybe with ...
-
- Kill Bill wrote:
> giskard rt wrote:
> > I uncheck the enable box in the interface configuration tab, it works for ... -
- Interfaces exist at the OS level even when they are not enabled. The GUI only controls settings applied to the interf...
-
- giskard rt wrote:
> I uncheck the enable box in the interface configuration tab, it works for the change. however wh... -
- the similar problem also exist with some other add-ons, like:
1,squid, though it's not enabled, it generate a lot or... -
- as described, I add an bridge to bind two different interface, but I do not want the bridge be brought up, so I unche...
-
- Kill Bill wrote:
> No idea what's this request about. If you are talking about the DNSBL feature, the "easylist styl... -
- Please post on the forum to discuss and confirm problems before opening issues here on Redmine.
-
- No idea what's this request about. If you are talking about the DNSBL feature, the "easylist style rule" support is a...
-
- easylist rule is so convinient and the specific language variant rules cover almost all I need,
But pfblockerNG seem... -
- I would also like to see this enhancement
-
- This looks much better now. Failures have a short and meaningful error message instead of a stack trace.
-
- Button shows as expected now, and works properly.
-
- This seems to behave much better now. On a DHCPv6 VM, before these changes I had a never-ending stream of rc.newwanip...
-
-
-
-
- Please post on the forum to discuss and confirm problems before opening issues here on Redmine.
-
07:28 AM Bug #7458 (Rejected): web interface very slow
- web interface very long open any menu item, if one gateway in gateway group is down or high loss
-
-
- Duplicate of Bug #6603
-
- I'd like to say, the var on ramfs is very useful, but the way to handle it is not well considered to back up the var ...
-
- Please post on the forum to discuss and confirm problems before opening issues here on Redmine. This is not a bug.
-
- This is a bug tracker, please use https://forum.pfsense.org/index.php?board=61.0 for performance tuning tips. The mem...
-
- first of all, As official wiki said, pfsense has removed layer7 packets filter feature after version 2.3 for the poor...
04/06/2017
-
09:13 PM
Bug #7413: status_dhcpv6_leases.php: Some DHCPv6 leases are not displayed in the GUI
- Yeah, my DHCPv6 status page is only showing one lease, which happens to be a static reservation. None of the rest of ...
-
10:54 AM pfSense Packages Bug #7453 (Closed): DNS-ovh need to save or display consumer key
- Consumer key is generated at the first connection to OVH ([Thu Apr 6 17:46:00 CEST 2017] OVH consumer key is empty, L...
-
- Applied in changeset commit:f3278171b199062279225631903685e608285d3a.
-
- PR https://github.com/pfsense/pfsense/pull/3689
-
- After pressing the Add button, actually the new gateway is not created.
It uses AJAX to system_gateways_edit but the...
04/05/2017
-
- In Chrome (Version 57.0.2987.133 (64-bit) Mac tested) when you edit an OpenVPN Client and switch to shared-key mode, ...
-
11:31 AM Bug #7450: Virtual IP replication before "applying" config
- Jim Pingle wrote:
> That is expected. "Apply changes" only affects the host you are configuring. Changes are applied... -
- That is expected. "Apply changes" only affects the host you are configuring. Changes are applied on sync to the secon...
-
- Hi;
the setup to reproduce is easy this is a HA cluster as described here : https://doc.pfsense.org/index.php/C... -
10:17 AM pfSense Packages Feature #7449 (New): feature request for openvpn-client-export package, add the support for openvpn up and down script, for mapping network drive
- Hi,
hope i write this to the right place. Someone on the IRC suggested me to post my idea here.
Here is the off... -
- The underlying program, rate, still doesn't work with IPv6 as far as I'm aware.
I'd love to see rate swapped out f... -
09:31 AM Bug #3334: Status/Traffic Graph isn't IPv6 ready
- When will this be resolved? This is a really old bug.
-
- We just moved to the new quarterly ports branch so there are a number of updates to various things there now or comin...
-
- ...
04/04/2017
-
10:19 PM pfSense Packages Bug #7437: Mail Report package 3.1 removed support for STARTTLS
- I just spent some time, installed pfSense 2.4 in Hyper-V and tested.
Yes, there is no STARTTLS setting anymore, wh... -
- Can you please try it again on recent snapshots? There were fixes in this area and I couldn't reproduce it at home wh...
-
- Applied in changeset commit:593f052172b0969dfe9e9db755a9a41200e67ab1.
-
- To me, I have a patch.
-
- On 2.4, if an XMLRPC sync attempt fails, a notice is displayed by the firewall but it contains a cURL exception error...
-
-
- I’m testing routing all IPv4 and IPv6 LAN traffic through a remote VPN server and am having issues with IPv6 that mig...
-
- That is a different problem as it involves remote parent proxies. It already has a ticket. If that is your problem, t...
-
11:16 AM Bug #7447: SquidGuard not filtered in Transparent Proxy mode
- Good morning,
It does not seem to me that it's just
[[https://forum.pfsense.org/index.php?topic=128019.0]]
[[http... -
- Please post on the forum for diagnosis and discussion. The current version works for others, there is not a general p...
-
- Good morning,
I realized that after a last update SquidGuard not filtered.
For safety, I made a clean machine and i... -
-
- Merged, please test with latest 2.3.4/2.4 snapshot.
-
-
- Merged, please test with latest 2.4 snapshot.
-
04:56 AM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name
- I don't know how tracert exactly works, but when using tracert it is resolving the "wrong" subdomain to the right one...
04/03/2017
-
- @OP: Need some feedback here.
-
11:27 AM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue
- Pass makes it work but of course it will also circumvent filtering on the firewall.
To make it work "and" not circum... -
10:23 AM Bug #7443: Issues Creating IPv6 Static Mappings
- This issue is with the 2.4 beta.
-
10:10 AM
Bug #7178 (Closed): pfSense themes don't handle package XML field without <description> tag properly
-
10:10 AM
Bug #7154 (Resolved): firewall_nat_edit JS function check_for_aliases()
-
10:00 AM
Bug #7446 (Feedback): RFC2136 Dynamic DNS needs local directive so updates are sourced correctly
- Applied in changeset commit:1bf69a00b9f6c1b8e98ed6dc4c78c8cb8403dc68.
-
- Fixed by commit:45b4a966b4b0db69d32c697f683aef94e15f56a6
https://github.com/pfsense/FreeBSD-ports/commit/45b4a966b4b... -
09:50 AM
Bug #7445: pfSenseHelpers.js service naming restrictions plus lack of error handling
- Applied in changeset commit:21a8edd7836baf1e4ee2f347fdc1bafb4d96c9d9.
-
09:42 AM
Bug #7445 (Feedback): pfSenseHelpers.js service naming restrictions plus lack of error handling
- Now properly handles service names that contain hyphens
-
09:44 AM
Bug #7444 (Feedback): pfSenseHelpers.js typo breaks captive portal stop/start/restart
- Fixed via PR 3687
-
-
-
-
-
-
-
- Add release and renew to actions.
04/02/2017
-
- https://github.com/pfsense/pfsense/pull/3688
-
- RFC2136 nsupdatecmds0 lacks the local directive so updates from other than the WAN with the default gateway fail.
-
- Code in pfSenseHelpers.js [1] introduced probably in this commit [2]
[1] https://github.com/pfsense/pfsense/blob/ma... -
- https://github.com/pfsense/pfsense/pull/3687
04/01/2017
-
11:27 PM
Bug #6340: fsck hangs boot in background, fails to produce any action, resulting in broken firewall
- After power cycling an appliance running 2.4.0.b.20170401.1306 with UFS FS for over an hour, dozens of fsck's were tr...
-
- There are a few issues creating IPv6 static mappings.
When entering the address for IPv4 static mapping, the entir... -
09:36 PM
Bug #6594: Package reinstallation post-config restore hangs if no Internet connectivity
- On 2.4.0.b.20170401.1306, when a backup from 2.4.0.b.20170328.1156 is restored with no WAN connectivity the attached ...
-
08:14 PM
Bug #7075: firewall states show negative value for total bytes processed
- Can not duplicate this behavior in 2.4.0.b.20170401.1306, only positive numbers in the States column
-
08:01 PM
Bug #7231: Web UI does not properly remove priq shaping rules when deleting an interface which causes subsequent rule failures without warning in the UI
- On 2.4.0.b.20170401.1306, when attempting to delete an interface with traffic shaping configured, there is a warning ...
-
07:52 PM
Bug #7254: Selection from long tab list that uses dropdown does not POST correctly
- Could not reproduce this on 2.4.0.b.20170401.1306 with twelve interfaces configured
-
07:41 PM
Bug #7316: Fail Boostrap format port in
- On 2.4.0.b.20170401.1306 when editing a port alias, hovering over the Port field shows 'A port number, port number ra...
-
07:37 PM
Bug #7422: Typo in OpenVPN NCP description
- Today's latest snapshot 2.4.0.b.20170401.1306 also does not have the 'z'.
-
07:33 PM
Bug #7435: Cannot edit IP address in a host override
- I am not able to reproduce this in DNS Resolver (unbound) on 2.4.0.b.20170401.1306.
-
06:21 PM pfSense Packages Bug #7440: Tinc package WEB GUI not picking up changes made on filesystem
- Ok. Thank you. I can understand it would be difficult to write a parser for these config files, especially since they...
-
- Put the settings in the GUI. That's how every part of pfSense works. Manual changes to files will always be overwritt...
-
- I understand that this is not the approved way to do things, but now that I have done it, is there any way to get the...
-
- That's not how it's meant to work. All settings must go into the GUI, and the filesystem contents are written out fro...
-
- I have been setting up a tinc VPN using a pfsense firewall/router as one of the nodes and everything is working fine,...
-
- Add status to NDP Table.
Add delete to NDP Table.
Add ping to ARP Table and NDP Table.
Add selection box so ... -
- Display start and end for static leases. (Even if address is reserved, it's useful to know the status.)
Add ping t... -
02:29 PM
pfSense Packages
Feature #6651: Loopback interfaces
- +1 for this request. The ability is there as Chris mentioned, but IPs can only be bound to lo0. Additionally, an opti...
03/31/2017
-
01:01 PM Bug #7439 (Closed): IKE_SA (IKEv2) does not rekey on break before make startegy, just issues IKE_DELETE and connection is closed
- h1. 2.4.0-BETA-amd64-20170228-0411
Both MSW 10 and macOS 10.12 does not rekey IKE_SA on _break-before-make_ starte... -
11:02 AM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name
- I'm also experiencing this bug with 2.3.3-RELEASE (amd64) using Unbound and no BIND. LAN (renamed "LAN1") serves regu...
-
- With Unbound and the newest release of pfSense ATM (2.3.3-RELEASE-p1 (amd64)) it isn't working for one of four interf...
-
- Is it possible delete or replace attachment here?
Seems like I can edit message, but not delete or replace attached ... -
- Of course, I tested it - see attached screenshot, in this case notifications cease to works as well as reports.
On... -
- I'm telling you what to tick so that you have the mail reports working with STARTTLS without any changes needed in th...
03/30/2017
-
- Hi!
It looks like you do not understand the difference between SMTPS and STARTTLS.
If I check "Enable SMTP over... -
- It works just fine on 2.3.3 when you tick the checkbox that you stubbornly refuse to tick for god knows what reason. ...
-
- I am glad it works for you in 2.4, but last I checked 2.3.3-RELEASE-p1 is the current release and it does NOT work th...
-
- I must be speaking Chinese. Tick the "Enable SMTP over SSL/TLS" and it will work. Simple. (The "Enable STARTTLS" thin...
03/29/2017
-
- Are we looking at different codebases?
There are two checkboxes on /usr/local/www/system_advanced_notifications.ph... -
- Dmitry Gromov wrote:
> And that is _exactly_ what version 3.1 does - it disables handling of STARTTLS if STARTTLS ch... -
- Hi!
Well, that is kind of strange way to treat the issue, let's not jump to conclusions that fast.
I had a bit ... -
- It was changed because phpmailer changed. It detects STARTTLS support automatically. If it can't, then the server isn...
-
- It was not removed, it's supposed to be used automatically when you tick SSL and the mailserver is advertising STARTT...
-
- I had pfSense configured to send mail reports via FastMail on port 587 with STARTTLS.
All worked great until recent ... -
- Test this: https://github.com/doktornotor/FreeBSD-ports/commit/d2d68063934e1474571e4ef3e0dfb713835b9b22.patch
-
- We had transparent mode proxy working with a Remote Cache parent working on 0.4.36
When we upgraded to 0.4.36_2 it... -
08:00 AM Bug #7425: dhclient not sending option 77
- I have issued a PR on this: pfsense/FreeBSD-src - Option 77 Additions to dhclient #8
-
- PR has been merged, thanks!
03/28/2017
-
08:13 PM Bug #7412: rtsold will not run on VLAN interfaces
- Ok, understood. Thanks for the explanation, I appreciate it. I'll lay low for a season and see how it goes.
-
- No, there is no default gateway because rtsold won't run. DHCPv6 on its own does not handle gateways. It's the same r...
-
- Jim Pingle wrote:
> A VLAN interface for a WAN will not pull an IPv6 address via DHCPv6 with a default configuration... -
- Duplicate of #7412
-
- I have an SG-1000 with 2.4.0.b.20170328.1156 installed. Comcast residential IPv6, DHCPv6 on the WAN interface gets a...
-
- Looks good. I managed to reproduce this late yesterday but left myself a note to check on it this morning again with ...
-
- PR with more stuff and a slightly different way to fix:
https://github.com/pfsense/pfsense/pull/3679
And this bug... -
- PR https://github.com/pfsense/pfsense/pull/3678
-
- Thanks!
03/27/2017
-
- Forum: https://forum.pfsense.org/index.php?topic=127835.0
In either of DNS Forwarder or Resolver:
a) Add some hos... -
- Tested on latest 2.4-BETA and 2.3.4-DEVELOPMENT and this is fixed. Using an empty port alias in a rule causes the rul...
-
- PRs merged:
https://github.com/pfsense/pfsense/pull/3670 - code needed for fix
https://github.com/pfsense/pfsense/p... -
- The fix looks OK to me and the PR fixes the problem, I just want to get at least one more person here to look it over...
-
- Applied in changeset commit:02c3646f36f84bfe1a65c54c38a05e100e8abd44.
-
- I pushed a fix, but now I'm wondering if we might want some upgrade code to fix the existing broken rules. Since it w...
-
- The ports for SMB used by the traffic shaper are defined in /etc/inc/wizardapp.inc, and they are defined incorrectly....
-
- Can the devs chime in on this issue please?
Are there other functions in the code that also need to be patched to ... -
09:27 AM pfSense Packages Bug #7431: BIND (9.11-2) Log shortcut needs to be updated.
- Updated to correct Repo (Hpefully) https://github.com/pfsense/FreeBSD-ports/pull/335
-
07:37 AM
Bug #6957: CARP arp reply with wrong src mac
- This also seems to have a negative effect on switches the pfSense gateway is not directly connected to. I.e. pfSense ...
-
07:28 AM Bug #7415: favicon is not correctly implemented
- As my humble contribution to the work of this team, i added all other formats in the existing favicon.ico file. Enjoy.
-
- Looks OK. Traffic hitting rules that failed before the first fix works OK still.
-
- I'll close this out and check out the other ticket/PR shortly. Thanks!
-
- See the other ticket, this one is a duplicate.
-
06:50 AM Bug #7433: led and sw bouton do not work in APU2
- hello JIM, Thank you but how I add this fix in pfsense 2.3.3 nanoBSD
-
-
- You already filed this as #7432
Anthony hesnaux wrote:
> Can you help me
Not here. Use https://forum.pfsense.o... -
- Hello ALL,
I test to install pfsense(2.3.X) in APU2
but I find a problem with led in front and switch reset bouton.... -
- When FreeBSD adds the drivers, we will get them naturally from upstream.
-
- Hello ALl,
I test to install pfsense(2.3.X) in APU2
but I find a problem with led in front and switch reset bouton.... -
01:31 AM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name
- I am having this same exact issue. Has there been any traction on this?
03/26/2017
-
- You have submitted this against completely wrong abandoned repo. Any fixes need to go to https://github.com/pfsense/F...
-
- The Shortcut to the BIND Logs (on page /pkg_edit.php?xml=bind.xml) currently points to /diag_logs_resolver.php
... -
- At least with @$check_localip = true@, this function should IMNSHO return the lo0 interface when you pass @127.0.0.1@...
-
- This has nothing to do with 10 leases or licensing. Your problem is "Interface igb0 matches multiple shared networks"...
-
05:44 AM Bug #7429 (Rejected): DHCP service error greater than 10 on shared network
- Getting this message:
rc.bootup: The command '/usr/local/sbin/dhcpd -user dhcpd -group _dhcp -chroot /var/dhcpd -cf ... -
- Changed code works also, and better - it allows port ranges through :)
While testing, I also entered an empty alia... -
- PR https://github.com/pfsense/pfsense/pull/3670
-
- 1) Create a port alias, but do not enter any ports in it (leave it empty)
2) Add a rule that uses that port alias
3...
03/25/2017
-
11:41 PM Bug #7303: ipv6 connectivity lost on pfSense reboot
- i can confirm this problem on 2.4 tired to bring up 3rd tunnel and couldn't but did find this happing too
-
- ^ What they said. Discuss on the forum, if there is a bug we can open a more specific ticket with detail.
-
- Post on the forum for help. Then later if there is some bug or good change to make to the software it can be opened a...
-
- Brother Jonathan wrote:
> The system is currently working fine but it's still bugging me.
It's hardly working fin... -
02:11 AM Bug #7427 (Rejected): Fatal error: Allowed memory size of 134217728 bytes exhausted (tried to allocate 127846801 bytes) in /usr/local/www/crash_reporter.php on line 142
- Good Day
Im new on the pfsense
Everything is work fine until i see this error.
The system is currently working ...
03/24/2017
-
09:33 PM Feature #5851: Add copy action to OpenVPN client / server
- +1
-
04:52 PM Bug #6991 (Feedback): IPv6 traffic hitting a rule with policy routing and NPt fails/disappears
- Our initial fix was reverted in favour of the upstream fix. This need to be tested again.
-
04:49 PM Bug #7426 (Resolved): UDP packet drops
- When doing an iperf test outside of pfsense there is a strange packet loss at the start of the test.
UDP packets d... -
- There was a problem with this code and validating port ranges. I pushed another fix that should cover that case as well.
-
- Great, thanks for testing!
-
- Applied in changeset commit:52a3580a200c9f37f33c2985852e68fc65f3266a.
-
- In some cases, through manual user intervention, the value of net.inet.carp.demotion can be negative. The GUI shows a...
-
- Not sure it's a bug, more of something missing. As reported on the forum 2.4 dhclient does not send option 77. This p...
-
- The only issue here is actually a duplicate of #5976 - closing.
-
09:32 AM
Feature #7383 (Closed): system_certmanager.php?act=new: Add new select option to sign a CSR
-
- Build 2.4.0.b.20170323.1221
I was able to create a signing request and sign it via the UI.
The CSR remained in ... -
08:46 AM Feature #4606: PKI : CA signing external CSR
- i see now, there might be another problem.
currently pfsense cannot handle certificates w/o a private key - so the... -
08:42 AM Bug #7423: Special characters in a password cause problems
- The Captive Portal login page is the default an it is not customized.
-
- Possible related to bug #6688:
When £ (pound) character is used in a password from an Active Directory account and a... -
08:17 AM Bug #7422: Typo in OpenVPN NCP description
- Current version 2.4.0.b.20170323.1013
No 'z' in text. http://imgur.com/vCa9QWo -
- PR Merged
-
07:58 AM Feature #2358: NAT64 support
- UPVOTE!!!
We are switching several of our subnets from dual-stack to pure IPv6 and NAT64/DNS64 is not optional for u... -
- Remaining "todo": Traffic Graphs widget code needs to be changed so that it will work with multiple Traffic Graphs wi...
-
- RELENG_2_3_3 and RELENG_2_3 have a consistent implementation of being able to filter the content displayed in various...
Also available in: Atom