Activity
From 04/08/2017 to 05/07/2017
05/07/2017
-
07:22 PM Bug #4310: Limiters + HA results in hangs on secondary
- Experiencing this after updating from 2.1.5 to 2.3.4. Constant Kernel messages in system logs as: "pfsync_undefer_st...
-
08:31 AM Bug #7526 (Not a Bug): boot menu selection console GUI broken on apu2
- That comes from the system BIOS, not the operating system. It is likely performing some kind of VGA->serial redirecti...
-
01:52 AM Bug #7526 (Not a Bug): boot menu selection console GUI broken on apu2
- i have a apu2c4 running amd64 2.4 full with bios and pfsense both set to 115200 baud rate but when i boot i get the b...
-
08:17 AM Bug #7413: status_dhcpv6_leases.php: Some DHCPv6 leases are not displayed in the GUI
- I can confirm adding an extra sed substitution for % to %% works!
Meaning changing https://github.com/pfsense/pfse...
05/06/2017
-
- I think I found out what the problem is!
This commit changed how the lease file is handled:
https://github.com/pf... -
03:15 PM
Feature #7525 (Resolved): Added ability to disable automatically added host entries in unbound
- I needed to disable the host entries automatically enabled by pfSense since my zone is DNSSEC signed and this record ...
-
10:44 AM pfSense Packages Bug #7523: HAproxy widget settings panel does not open
- I checked other packages that have a dashboard widget. The others all do stuff that is compatible with the multi-copi...
-
- And for haproxy-devel PR https://github.com/pfsense/FreeBSD-ports/pull/351
-
06:35 AM pfSense Packages Bug #7524 (Resolved): Squid MITM/SSL-Bump broken with Chrome due to missing SAN in generated certificates
- Upstream bug: http://bugs.squid-cache.org/show_bug.cgi?id=4711
Also, there were multiple other SSL-Bump fixes in 3... -
- Same issue with pfSense-pkg-Netgate_Coreboot_Upgrade - the changelog link points to https://github.com/pfsense/FreeBS...
05/05/2017
-
03:15 PM Feature #2676: Reply-to option in firewall rule
- Hello,
I'm also interested in this feature, for another use.
I need this feature to allow sslh (https://github.... -
12:32 PM Bug #7232 (Resolved): haproxy_pool_edit.php -- sprintf() too few arguments
-
- Works
-
- I have no idea why I wrote 2.3.4 above. This is an issue with using the HAproxy widget on 2.4, due to enhancements in...
-
- Install and enable the HAproxy package.
On the Dashboard for 2.3.4, add the HAproxy widget
In the HAproxy widget, c... -
12:09 PM Feature #7522: webGUI output settings directly to image or rich text
- Jim Pingle wrote:
> See /status.php on the firewall.
>
> That's what it already does, and more, though not a summ... -
- See /status.php on the firewall.
That's what it already does, and more, though not a summary it sanitizes/removes ... -
- If someone wants to ask for help or provide help on the forum, a screen capture of settings is required. Creating a s...
-
10:07 AM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists
- To "me too" this report from a different direction, I realized we were seeing this issue on our HA setup during the o...
-
- Fix confirmed
-
03:01 AM Bug #5319: Error message "No config named" in charon daemon
- Hello,
In 2.3.3 the bug is present.
After two months when ipsec tunnel are down they don't restart because of thi...
05/04/2017
-
08:21 PM Feature #7521 (New): Package Updates via Mirror
- Since the upgrade to 2.3 systems that no longer can connect to the internet directly or via a proxy can not get updat...
-
- But it is, technically, self-signed. It's only trusted because the browsers and others trust it....
-
01:00 PM Bug #7520 (Not a Bug): importing SSL Root CA shows as "self signed" certificate
- importing the Global Sign Alpha root certificate ( https://secure.globalsign.net/cacert/Root-R1.crt ) as a root CA sh...
-
11:01 AM Feature #2358: NAT64 support
- For those who'd like to do something now, I've finished testing a setup using TAYGA on a separate virtual machine wit...
-
02:45 AM pfSense Packages Feature #7519 (Resolved): Add support for --listen-v6 to ACME standalone webserver
- The ACME script allows passing "--listen-v6" to force IPv6 in standalone mode. In an environment with public IPv6 add...
-
- And with a full install from the latest snapshot pfSense-CE-2.4.0-BETA-amd64-20170503-1659 there is the same list of ...
05/03/2017
-
- Same for me.
https://github.com/pfsense/pfsense/tree/master/src/usr/local/share/locale
has lots of language folders... -
12:24 PM Bug #7518 (Resolved): Not all language choices show selected text
- Of the language translations available today, only English, German, and both Chinese appear to change the webgui text...
-
-
- https://github.com/pfsense/pfsense/pull/3696
This is for tracking purposes. The PR has been merged. -
-
- https://github.com/pfsense/pfsense/pull/3704
This is for tracking purposes. The PR has been merged. -
- https://github.com/pfsense/pfsense/pull/3552
This is for tracking purposes. The PR has been merged. -
- https://github.com/pfsense/pfsense/pull/3691
This is for tracking purposes. The PR has been merged. -
- https://github.com/pfsense/pfsense/pull/3607
This is for tracking purposes. The PR has been merged. -
-
-
- When completing a CSR, it does not get linked to the proper CA.
https://github.com/pfsense/pfsense/pull/3586
Th... -
- https://github.com/pfsense/pfsense/pull/3549
This is for tracking purposes. The PR has been merged. -
- dhclient apparently, despite the man page text, accepts a list for rejecting leases rather than only supporting a sin...
-
- PR was merged and it has been working
-
- Works
-
- Yeah that did come out pretty nice. And since it's collapsible now, maybe we can stuff some more cert info in that bo...
-
- Works pretty well here as well.
-
04:03 AM Feature #7505: system_certmanager.php: Certificate list should show SANs, KU, and EKU for certificates
- Tested 2.4.0.b.20170502.2240
Info icon now showing for each certificate, infoblock contains SAN, KU and EKU inform... -
- Fixed. Factory reset w/vouchers before the change failed as stated, but works after a gitsync to pick up the merged c...
-
- PR has been merged. Thanks!
-
- Fixed in 2.3.3-p1
-
- Thanks for testing!
-
- Tested 2.4.0.b.20170502.2240 from:
- Microsoft Edge 38.14393.1066.0
- Internet Explorer 11.1066.14393.0
Info bl... -
- It's been that way for years (since the 1.2.x days and before). OpenVPN doesn't care at all, it reads the data just f...
-
07:08 AM Bug #7509: Inconsistent stored line endings in CAs
- Phillip Davis wrote:
> Does that cause the OpenVPN client to not load the configuration/certificate?
> Or to break ... -
- Pretty much a duplicate of #5306. This should be fixed in 2.4 at least as far as XML packages are concerned by https:...
-
- "Now it gets really weird: if in some OpenVPN configuration I use the Client Export to get a config file for my clien...
-
- I have just found that this seems to affect all input forms: if I enable "Enable authentication of TLS packets." in m...
-
- As an addendum, I checked the release notes of the last versions and could not find anything related to this. The clo...
-
- Hello guys,
First of all, I'm not an expert in certs/security by any means, so please be gentle. Also, I'm using t... -
- Works
05/02/2017
-
- See PR https://github.com/pfsense/pfsense/pull/3720
Confirmed to fix the problem on a 2.3.4-DEV and 2.4-BETA system. -
- 1) Enable Captive Portal and create some vouchers
2) Do "Reset to Factory Defaults"
It is not effective - the sys... -
- Applied in changeset commit:666be0be1b9d7caa92571c8ef781b73c095101a8.
-
- While attempting to make some collapsible info blocks in the certificates list, I found that the click event to show/...
-
-
- Feedback from users suggests there is a great speed improvement to be had by using the following settings on certain ...
-
- We should use @auth-retry nointeract@ to prevent OpenVPN clients from exiting or attempting to prompt for passwords, ...
-
- Works
-
- To fix the broken wizard rules, I added a workaround in the filter reload process on 2.3.x because upgrade code would...
-
- I only see one QinQ interface available to assign for each tag now, and it does not cause a mismatch at boot when sel...
-
- Works
-
- Seems to be solid now.
-
- Applied in changeset commit:4906f4ee6622c66a46d179cee6a2da963d962ca1.
-
- The list of certificates should show at least the Subject Alt Names, Key Usage, and Extended Key Usage fields for a c...
-
- Hello guys, I have a very similar setup using v2.3.2 in AWS, I'm still hitting this issue, but in my case seems to be...
-
01:47 PM Bug #7015: IPsec not working behind NAT
- Me again. Here's some more state strangeness.
Today the GIF tunnel is working and I can route traffic from my test... -
- I just pushed a change to use remote-cert-tls and also adjusted the code around it to test for the proper EKU before ...
-
09:06 AM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue
- Adding that I found this while when upgrading from 2.3 to 2.4
My setup is : WAN -> VLAN10 -> pfsense computer with...
05/01/2017
-
- Are you sure your scanner is hitting the firewall and not being redirected to another web service?
Looking at the ... -
- Works OK in snapshots, reports of others showing it works as well. Seems to be solid. Closing.
04/30/2017
-
- The problem I'm seeing with a GIF might be a command ordering or race condition issue.
Using 20170428 I set up a n... -
01:41 AM Bug #4723: Can't forward UDP fragmented packets with scrubbing enabled.
- I'm having this issue with 2.4:
- v2.4.0.b.20170429.0121 running on both firewalls
- local pf is virtualized, off... -
12:31 AM pfSense Packages Bug #7503 (Rejected): Web Interface and possible app configuration issue
- Version: 2.3.3_1
Vulnerability Scanner: OpenVas
Possible Vulnerability #1: SSL/TLS: Missing `secure` Cookie Attribu...
04/29/2017
-
- Try PR https://github.com/pfsense/pfsense/pull/3715
That gives the option to:
1) Select just the interface stats it... -
04:19 AM Bug #7501 (Resolved): Interfaces statistics widget GUI + JSON (2 issues)
- Running 2.3.3-RELEASE-p1 using IE11 this widget has two issues:
1) If there are more than about 2 interfaces it sc... -
05:35 AM Bug #7502 (Resolved): Cannot set router lifetime to 0 in radvd
- In the Web GUI (services_router_advertisements.php), it is not possible to set the router lifetime to 0. The GUI enfo...
04/28/2017
-
- Sorry - Affected version is 2.3.3 & 2.3.3_p1, not 2.2.3.
-
- Existing installs and fresh installs of 2.3.3 & 2.3.3_p1 fail upgrade to 2.4 with the following errors:
Shared obj...
04/27/2017
-
- Done
-
11:06 AM pfSense Packages Bug #7498: Deprecated option included in OpenVPN client export
- That makes sense. As you stated - if certs are being signed with the correct KU/EKU from 2009 in my mind it seems lik...
-
- That should work fine for certificates made any time recently on pfSense.
The only potential problem I foresee is... -
- Okay that makes sense - thank you :)
However, surely by having the @ns-cert-type@ option included in all exports y... -
- The verification option you mentioned in the GUI controls verifying the name only, it does not verify the type, so it...
-
- As of OpenVPN 2.4 the directive: @ns-cert-type@ has been deprecated.
However, from my testing, the client export p... -
- IPsec tunnel status is shown correctly on Status > IPsec, but the IPsec widget on the dashboard does not show the cor...
-
07:53 AM Bug #7496: Chrome 58 added cert requirements which make it fail to accept the default self-signed certificates
- Hello!
Certificates work fine for Chrome 58 if you add CN also in 'Alternative Names' -> 'FQDN or Hostname'. -
05:24 AM Bug #6177: pkg update checking with no Internet access kills web GUI
- I can just say I have the same bug with 2.3.2 version. Forcing Ipv4 as indicated in comment 13 worked around this bug.
04/26/2017
-
03:47 PM Bug #6830: Chelsio T4/T5 CXGBE drivers not loaded as ALTq capable in the PfSense UI
- This bug does not appear to be fixed in 2.3.3-p1.
When I try to use altq with a Chelsio T520-SO-CR I still get an ... -
01:44 PM Bug #6400: assign_interfaces.php issues with large numbers of interfaces
- I'm seeing the same issue with a little over 200 VLAN interfaces on 2.3.3. Attached is the config I used.
-
- Applied in changeset commit:49a6769d99b4ea0306b0d619d14c3c0c841386e9.
-
- A client can send a hostname containing <script> tags and the DHCP daemon will accept it and add it to the leases fil...
-
- That's on my to-do list as well, I was thinking a "view certificate" icon/operation may be more useful, to print all ...
-
- Would be probably good to show the SANs in the Cert. Manager (in place/in addition to CN) -- somehow doesn't seem to ...
-
- This fix will be in 2.4 and 2.3.4 snapshots shortly. To apply the fix early, or to apply the fix to existing 2.3.3-p1...
-
- Applied in changeset commit:a636256cf9a7e27cf5d26c7677d0b7961e0fb143.
-
- You'll need to post on the forums in that case before there's some bug identified. The above patch is the only change...
04/25/2017
-
10:48 PM Bug #2800: OpenVPN doesn't work properly with intermediate/chained CAs
- Jim Pingle wrote:
> This works fine in the base system and in the export package. I can make a CA, then make an inte... -
07:31 PM Bug #7496 (Resolved): Chrome 58 added cert requirements which make it fail to accept the default self-signed certificates
- We have received the following report:
https://www.reddit.com/r/PFSENSE/comments/67kigf/pfsense_selfgenerates_cert... -
- Luiz will take care of it
-
- Applied in changeset commit:8c6190e82f83a7907ec2757e72d9a8eac496dd61.
-
- PR https://github.com/pfsense/pfsense/pull/3707 adds the ability to customize the widget title for widgets that have ...
04/24/2017
-
- PR https://github.com/pfsense/pfsense/pull/3705
On that PR I describe an easier way to quickly demonstrate the gen... -
- 2.3.3_p1
-
- What version?
(I made some changes to interfaces.php "workflow" recently in 2.4 - so it would be handy to know if I ... -
- Summary:
I'm trying out a new pfSense install for a home lab, in which I modified the interface IPv4 settings. Whe... -
08:52 PM Feature #7495 (New): Ability to set TTL for local for Unbound host overrides and dhcp leases
- The TTL for host overrides and DHCP leases appears to be using a default value of 3600, it would be useful to be able...
-
- pfSense-upgrade 0.22 should fix it
-
10:08 AM Bug #7494 (Closed): SG-1000 - WAN Status UP - Hosts no internet connection
- SG-1000 brought online 12/24/2016 with default config.
Windows 8/10 hosts lost internet connectivity within 24 hou...
04/23/2017
-
08:08 PM Bug #7492 (Closed): SG-1000 occasionally loses Internet connectivity
- Occassionally my SG-1000 is unable to communicate over the WAN. I can still log in over the LAN and the GUI is workab...
-
- Added an install message and some input validation and other tweaks @ https://github.com/pfsense/FreeBSD-ports/pull/344.
-
09:39 AM Bug #7491: freeradius2 (1.7.8) incorrect ca+crl pem file output format
- Kill Bill wrote:
> https://github.com/pfsense/FreeBSD-ports/pull/344
OK! It works! :-)
-
- https://github.com/pfsense/FreeBSD-ports/pull/344
-
- release 2.4.0.b.20170422.1955
configuring eap-tls ca and crl produce pem file output ( /usr/local/etc/raddb/certs/... -
- Having more is possible but not practical so the limit in the GUI is set at a reasonable maximum for most deployments...
-
05:36 AM Bug #7490 (Rejected): Limitation on number of L2TP users
- The number of L2TP user limited on 256 user
-
- There is nothing in this report except the subject, closing as invalid.
This a bug tracker, not a support system. ... -
-
- This a bug tracker, not a support system. Please post on the forum at https://forum.pfsense.org/ , there are plenty o...
-
07:38 AM Feature #7489: اتصال L2TP کاربران از روی بستر اینترنت و بررسی کندی سرعت
- Agradecia que escrevessem numa Língua mais universal. Sim há tradutores, poderia usá-lo mas vós também o poderias faz...
-
- म तपाइँको समस्या बुझेको छैन
-
- 这是英文版的问题追踪器
-
05:30 AM Feature #7489 (Rejected): اتصال L2TP کاربران از روی بستر اینترنت و بررسی کندی سرعت
- اتصال L2TP کاربران از روی بستر اینترنت و بررسی کندی سرعت
04/22/2017
-
- Jessica Porter wrote:
> The urndis driver would be nice as well.
There's already #6293 for that. (See https://re... -
01:28 AM pfSense Packages Bug #7487: Status Traffic Totals doesnt persist through reboots.
- Sadly someone else will have to test, the system I am using as my router is 32 bit and 2.4 only seems to be available...
04/21/2017
-
08:28 PM Feature #7467: Add iPhone/Android/Generic USB tethering support
- The urndis driver would be nice as well. It would actually be nice if all USB modules were loadable kernel modules ...
-
- Highly unlikely to be a captive portal problem, but something with your local configuration. Could be a package, coul...
-
04:50 PM pfSense Packages Bug #7486 (Rejected): Captive Portal (CP): MS Edge and IE have interner access despite CP
- Well.. This sounds a Little dumb and I dont know wtf is going on tbh.
Well. At first, I better tell you about the ... -
- /var and /tmp handling was changed significantly in 2.4, please re-test there.
-
- Forgot to add the effected version as I did not notice the field till after I submitted, but I am running 2.3.3-RELEA...
-
- The persistent data for vmstat is stored on /var and when you have var and tmp on ramdrives, the data isn't backed up...
-
- PR Was merged and tested
-
- When scrub is enabled, a set of valid fragments can be re-fragmented improperly by scrub when exiting the firewall. W...
-
01:50 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN
- Ah yes sorry, got some versions mixed up in my head..
-
01:44 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN
- Pi Ba wrote:
> You can wait, but its still 1.0.2..
>
> [2.4.0-BETA][root@pfSense.localdomain]/root: openssl versi... -
- Pushing to 2.4.1 because the whole function should be changed to be optimized
-
- As of 2.4.0.b.20170421.0857 I'm getting the same ping errors with a GIF. dpinger's attempts to ping do create a state...
-
- This would not be possible without a proxy being involved, in which case you need to setup access controls in the pro...
-
09:30 AM
Bug #7484 (Rejected): Firewall Destination "This Firewall" not blocking all traffic
- A rule blocking traffic from "any" to "This Firewall" does not work if you open an external domain in the browser whi...
-
06:10 AM Feature #4796: Support Multiple FIBs in pfSense
- I see only one on 2.3.3:
@sysctl -a | grep fib
net.my_fibnum: 0
net.add_addr_allfibs: 1
net.fibs: 1
@
04/20/2017
-
-
- Using the setup described above I’ve also been having issues when trying to use IPsec Transport mode with either a GR...
-
- You can wait, but its still 1.0.2..
[2.4.0-BETA][root@pfSense.localdomain]/root: openssl version
OpenSSL 1.0.2k-f... -
- Ok, thanks that makes sense.
I excitedly wait for pfSense 2.4, and an ALPN capable HAProxy then.
-
- Joshua Ruehlig wrote:
> Ok, just to clear up my understanding. Is the following correct?
>
> If we build a port w... -
- Ok, just to clear up my understanding. Is the following correct?
If we build a port with openssl from ports, it no... -
- It would only fail if your NPS policy requires a specific NAS Identifier rather than using the client address. You ca...
-
11:39 AM Bug #7483 (Not a Bug): After renaming a WAN Interface its looses his Tier
- Hello,
after renaming a WAN Interface its looses his tier in all GatewayGroups.
If you rename your primary WAN it w... -
11:31 AM pfSense Packages Bug #6690: SURICATA IPS Issue - Kills VLANS & Traffic Shaper
- Jim Thompson wrote:
> Steven Kreitzer wrote:
> > Sandeep K V wrote:
> > > Hi Steven Kreitzer and Jim Thompson isn'... -
- I can't reproduce this on 2.3.3-p1 or 2.4 snapshots. I can use an LDAP name 50+ characters long and it still works in...
-
03:25 AM Bug #6957: CARP arp reply with wrong src mac
- We have the same problems in our setup.
A switch is connected to two pfsense firewalls with a CARP setup. Since th...
04/19/2017
-
- It isn't a bug, it's a missing feature.
-
08:35 PM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic
- Could we please have this changed from "Feature" to "Bug"?
-
- I'm sorry you feel that way, but that does not mean you can open a bug report for what is most likely a configuration...
-
01:52 PM Bug #7482: found 1 matching config, but none allows pre-shared key authentication using Main Mode
- By the way, I'm not going to post anything on the forum, I'm coming from there, other people is experiencing similar ...
-
- Very helpful, Jim Pingle, thanks a lot.
-
- This is not a support ticket system. Please discuss the issue on the forum. If a specific bug is identified, only the...
-
- pfSense 2.3.2-RELEASE
We have many site-to-site vpn's configured in our pfSense, an i386 vm running on vmware.
T... -
- Reverted
-
- Already added to factory installed
-
- I've reviewed deinstall functions for all packages and removed commands that can cause this symptom. It still can hap...
-
12:51 PM Feature #2358: NAT64 support
- Upvote
-
12:12 PM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available"
- Has anyone been able to test this with 2.4? Unfortunately I don't have a good test environment with IPSEC + BGP.
-
- First, that isn't the way you set OpenSSL to use the port now. It would be:...
-
- Pi Ba wrote:
> The extra build flag should probably be added to: https://github.com/pfsense/pfsense/blob/master/tool... -
- I made some tests with simple DNS answer/reply and noticed problem with states overload (250 clients and 250 servers ...
04/18/2017
-
- There is no way to NOT configure EAP in the package. Simply said, configuring the certs in the CA manager is *mandato...
-
- You may not realize it is enabled, but it must be, or you wouldn't get that error. At this point it is not a bug, but...
-
11:34 AM pfSense Packages Bug #7479: freeRadius not started after update to 1.7.8
- Jim Pingle wrote:
> Given the error, you had to have used it in the past.
eap? no, i not used EAP, never.
this... -
- A server certificate is necessary for EAP. Given the error, you had to have used it in the past.
-
- i not use Cert Manager. And EAP.
It is necessary? -
- Support for the old and redundant certificate manager in FreeRADIUS was removed. Create or import a server certificat...
-
- I upgrade freeraius and freeraius not started now
In log:
Apr 18 23:21:00 radiusd 11844 rlm_eap: SSL error err... -
- The extra build flag should probably be added to: https://github.com/pfsense/pfsense/blob/master/tools/conf/pfPorts/m...
-
- Kill Bill wrote:
> Joshua Ruehlig wrote:
> > Is it possible to set build options for dependent ports?
>
> See th... -
12:26 PM Bug #7481: pkg-framework - rowhelper ignores <advancedfield/>
- its a pkg framework issue, not a squid related bug.
-
- rowhelpers itens ignores <advancedfield/>
-
- while using textarea on a rowhelperfield, it saves contents on xml but does not show on gui.
also, it ignores the ... -
03:04 AM Feature #4826: Allow configuration of multiple phase1 proposals
- this limitation of the pfSense GUI is getting more severe as older crypto gets more and more out of date. Right now, ...
-
02:32 AM Bug #7478 (Rejected): Diagnostic/Authentification test fails on Radius since 2.3.3
- since the changed NAS Identifier in v2.3.3 (https://redmine.pfsense.org/issues/6609) from systemname to "openVPN" the...
04/17/2017
-
- As stated on that page, the BNF is not complete. It isn't a specification, it is a rough guide.
-
10:09 PM Bug #7477 (Rejected): Log data does not match documented schema
- RE: https://doc.pfsense.org/index.php/Filter_Log_Format_for_pfSense_2.2
For example:
sequence-number="285519477... -
- I've identified numerous cases where log lines appear to contain extraneous data beyond the actual end of the line. F...
-
- See also: #7468
-
- Duplicate of #6293
-
- See PR https://github.com/pfsense/pfsense/pull/3697 for the same fix for adding an IPv6 gateway.
-
- Joshua Ruehlig wrote:
> Is it possible to set build options for dependent ports?
See the previous comment.
-
- Is it possible to set build options for dependent ports?
Maybe we can add an OPTION to set 'WITH_OPENSSL_PORT= yes' ...
04/16/2017
-
06:25 PM Feature #7475 (Rejected): Status\System Logs\Firewall\Summary View
- Graphic by country - Traffic pass and block
-
- Edit an interface. Choose "Static IPv4" and/or "Static IPv6".
Click the "Add a new gateway" button.
Scenario 1: E... -
-
- Duplicate of #7394
-
- 1) Edit an existing Alias that is used in a Rule/NAT etc - e.g. oldaliasname
2) Change the name - e.g. newaliasname
... -
- See also: #7473
And PR at https://github.com/pfsense/pfsense/pull/3694
04/15/2017
-
10:02 AM Bug #7468: Add Android tethering support - add urndis driver
- Already requested here: https://redmine.pfsense.org/issues/6293
I tested this and it works OK with my Nexus 4.
... -
- Looks good here. Thank you.
04/14/2017
-
08:53 PM
Bug #7444 (Resolved): pfSenseHelpers.js typo breaks captive portal stop/start/restart
-
08:52 PM
Bug #7445 (Resolved): pfSenseHelpers.js service naming restrictions plus lack of error handling
-
07:30 PM pfSense Packages Bug #7471: Cellular pkg errors on install
- Reassign to pkg author if this is specific to the cellular pkg
-
- Upgraded 2.3.3 to 2.3.3-p1, then installed cellular. Pkg install dialog:
> >>> Installing pfSense-pkg-cellular... ... -
06:16 PM Bug #6594: Package reinstallation post-config restore hangs if no Internet connectivity
- On 2.4.0.b.20170407.1403, backed up config, restored with no WAN connectivity, pfSense WEBGUI was accessible, console...
-
05:07 PM
Bug #7472 (Not a Bug): External Authentication servers with names longer than 48 characters fail to authenticate with OpenVPN server configured for TLS + User Auth
- Configure an external LDAP Authentication Server
Give it a name that exceeds 48 characters like 12345678901234567890... -
- We have seen that sort of thing in the past. A byproduct of how the weeks/months line up and perhaps a dash of DST in...
-
- Here's some better description: https://forum.pfsense.org/index.php?topic=127774.0
-
08:33 AM
pfSense Packages
Bug #7470 (Closed): Status Traffic Totals - March 2017 is missing
- March 2017 is missing in the Monthly view. Noticed by several users in the forum:
https://forum.pfsense.org/index.ph... -
- Renato Botelho wrote:
> I've found the way to reproduce it. It happens when you click on fa-trash icon. If you click... -
- This still has broken behaviour (to see Delete, you need to click Add), plus the whole thing needs backport to 2.3.x
... -
- Duplicate of #7310
-
- Over to Luiz
-
- A workaround was added on pkg for specific packages and versions when same situation happened there. In our case a co...
-
- After dig into it I found the root cause of the problem, which I will describe here and work on a fix later.
Durin... -
-
- Merged.
Note: This needs to go to 2.4 release notes. Configuring the certs is no longer optional, it's simply a re... -
12:53 AM Bug #7461: pftop no longer shows ALTQ "queue" view
- Can confirm this is resolved in version 2.4.0.b.20170412.1325
04/13/2017
-
06:03 PM
Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome
- Took care of that one too
-
- Testing using system patches on 2.3.3. Looks good for vpn_openvpn_client.php. Still needs a second click for dev_mode...
-
07:20 AM
Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome
- Applied in changeset commit:dd3c646fa5744a550f91524035a92f509d6162cf.
-
07:14 AM
Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome
- onchange handlers revised to correct this issue
-
07:05 AM
Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome
- I am able to reproduce this on MacOS & Chrome. Looking at it now.
-
- Looks like mode does the right thing on the vpn_openvpn_server.php but dev_mode also requires that second click to up...
-
- Hmm. That's frustrating. I know what I saw. Tested multiple times.
Currently when I select SSL/TLS I get the share... -
- Still Producing issues for me. Had to re-install pfSense on both devices in HA after encountering this bug.
-
- Queue view is working again
04/12/2017
-
- Looks like the PR went in about 48hours after the last note.
Tested using build 2.4.0.b.20170412.1256
Checked... -
- I can't reproduce this at all here.
On 2.3.x the CRL field shows when it shouldn't, but that has been fixed on 2.4... -
- Confirmed here as well. Installing to eMMC (not mSATA) requires kern.cam.boot_delay="10000" and it is not added to lo...
-
- When a firewall has many local accounts, the time it takes for local_sync_accounts() to finish grows large enough to ...
-
10:39 AM pfSense Packages Bug #7438: Squid 0.4.36_2 Remote Cache Parent not working
- I had my linux guy edit the files with the lines you requested.
Same result
12.04.2017 11:36:14
10.24.1.70
TCP_... -
- I can't reproduce this on a fresh installation or upgraded firewall using the latest snapshot. Sounds like maybe your...
-
08:50 AM pfSense Packages Bug #7466 (Rejected): Status > Monitoring does not work
- When I got to Status > Monitoring I get this error: Error: JSON not returned. Check to make sure you have an active s...
-
- It works fine here when I test it. I don't have anything running on the target itself, but the connection and packets...
-
02:29 AM Bug #7463 (Rejected): FQDN Alias as "NAT Redirect target IP" fails to expand to IP
- When using a FQDN alias in the "Redirect target IP" field of a NAT rule, the rule will fail to work.
Steps to repr... -
- Please post on the forum or mailing list for discussion and diagnosis before opening a bug report. Once a specific bu...
-
03:06 AM Bug #7464 (Rejected): IPSec VPN - roadwarrior connexion - vpnc client
- Hi,
Whe have upgraded our pfSense to the latest version (2.3.3). Since, we have problems with IPSec VPN.
We can't u... -
- I can't reproduce this. There is nothing special about a /19 in a network alias. It works fine as a source and as a d...
-
05:44 AM Bug #7465 (Rejected): Firewall rules fail if using a /19 in an alias as destination
- Having a new phone system here so added in a /19 network into an alias and created the firewall rule so source intern...
-
- Relevant https://forum.pfsense.org/index.php?topic=119419.msg660754#msg660754
-
- iPhone tethering driver is present in FreeBSD https://www.freebsd.org/doc/handbook/network-usb-tethering.html
Abou... -
Android tethering driver is present in FreeBSD https://www.freebsd.org/doc/handbook/network-usb-tethering.html
A...
04/11/2017
-
01:25 PM Bug #4218: Bridge does not have AUTO_LINKLOCAL flag
- I can confirm that this is still an issue with 2.3.3-RELEASE-p1 - although either adding the link-local address manua...
-
- I'm seeing this now as well on 2.4. Just a basic run through the shaper, tell it to prioritize a couple things like H...
-
08:02 AM pfSense Packages Bug #7462 (New): HAproxy not rebinding properly after WAN DHCP IP change
- Hi,
This is copy/pasted from the forum (https://forum.pfsense.org/index.php?topic=121345.0?) as i have the same is... -
01:35 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
- I am experiencing this issue with PFsense 2.3.2, running i386 nanobsd on an alix board.
Every time the upstream ro...
04/10/2017
-
- I'm not sure if this helps, but the bug persists when:
* Traffic shaper is deleted
* A new shaper is created using ... -
10:19 AM pfSense Packages Feature #7456: pfblockerNG add supportto add or modify self-modified easylist style rule
- The next version of the package will have all of the Language specific EasyList feeds hardcoded.
Unfortunately, al... -
10:02 AM Bug #7309: ZFS - Can't find zroot, error 5
- OK, I could fix the issue by adding kern.cam.boot_delay="10000" to /boot/loader.conf.local
The problem possibly af... -
- Same issue here with an SG-4860 running ADI image (build date 09-04-2017):
Root mount waiting for: usbus0
Root mo... -
- Applied in changeset commit:6e71610ea3d146df3e620fb062ca2569a4e96ebf.
-
- On 2.4 the pftop command no longer has a "queue" view.
The port had ALTQ changed into an option, and now defaults ... -
09:17 AM Bug #6318: IPsec dashboard widget causes GUI failure
- I am also seeing this on 2.3.3. Is there any known work around other than removing the ipsec widget? Maybe changing...
-
-
- Oops forget about this issue. I have been mislead by the rough ergonomy of the screen. I didn't figure I had to valid...
-
- During 2.4 beta installation (09-04-2017 build), when trying to select the keyboard type "French Macbook / Macbook pr...
04/09/2017
-
02:40 AM Feature #7459: "Refresh" button for Diagnostics/Tables display
- There is an Update button for some tables but it's unclear whether this means refesh the display or update the table
-
- When viewing a table, using the browser refresh produces a resend/resubmit dialog.
The only other way to refresh the...
04/08/2017
-
- I've made change 'a' on one of my installs to allow setting a default tab to display. I've attached a patch file and...
-
07:06 AM pfSense Packages Bug #7454: bridge is up after reboot while the enable interface box is not checked
- the system log is indeed limited to a fix size, however the suid service genarate cache log(path: /var/squid/logs/cac...
-
- giskard rt wrote:
> if a user want to disable squid service for some time, then he or she maybe think the service is...
Also available in: Atom