Activity

30 days up to

User

Subprojects

Activity

From 04/10/2017 to 05/09/2017

05/09/2017

11:52 PM Revision 49d9b45f: Make the changes suggested by jim-p and changed the way the disable function work to ensure the manually added host entries or DHCP reservations still work.: Robbert Rijkse
06:40 PM Revision bfafb65e: Disable Telegraf on i386: Renato Botelho
05:51 PM Bug #6087: Missmatching description to default value on net.inet.ip.random_id under system tunables: https://github.com/pfsense/pfsense/pull/3556 Kill Bill
05:34 PM Revision 47481881: Disable Telegraf build on ARM since lang/go14 doesn't build on it: Renato Botelho
04:53 PM Revision 3c2fff26: Merge branch 'master' into if-stats-widget-settings: Phillip Davis
04:44 PM Revision 22b18e36: Update interfaces.inc: Not defined pid file on starting choparp. The pfSense may not kill the program to reconfiguration.
(cherry picked fro... aLexander Panfilov
04:43 PM Revision 2615ef57: Merge pull request #3721 from aaa2ppp/patch-1: Renato Botelho
04:43 PM Revision 0673b7b8: Update dyndns.class: (cherry picked from commit 61c813f96de90e07bb63075847dabc041a5560b8) xygrec
04:43 PM Revision 20e0492b: Merge pull request #3723 from xygrec/dyndns-hover-ssl: Renato Botelho
04:37 PM Revision 7ba3a020: Fix APU2 with coreboot v4.x detection: See https://forum.pfsense.org/index.php?topic=106444.msg716558#msg716558
(cherry picked from commit 9457d0f616506bf0e... Doktor Notor
04:37 PM Revision 4dfcc5a5: Merge pull request #3724 from doktornotor/patch-1: Renato Botelho
10:59 AM pfSense Packages Bug #7533 (Feedback): HAProxy 1.7.3+ Breaks with DNS Resolvers configured (UNIX stats sockets fail): I committed a temporary fix for HAProxy to revert the problematic changes in HAProxy:
https://github.com/pfsense/F... Jim Pingle
10:42 AM pfSense Packages Bug #7533 (Resolved): HAProxy 1.7.3+ Breaks with DNS Resolvers configured (UNIX stats sockets fail): If HAProxy is enabled and has DNS Resolvers configured on its Settings tab, then the widget and stats page will fail.... Jim Pingle
09:29 AM Revision b079a611: Do not obsolete locale directories: Renato Botelho
07:30 AM Bug #7518 (Feedback): Not all language choices show selected text: Renato Botelho
04:59 AM Bug #7518: Not all language choices show selected text: Should be fixed by https://github.com/pfsense/pfsense/commit/b079a611c0b751012e1ac16db8eb43f21021df88
Needs testing ... Phillip Davis
07:05 AM Bug #7491 (Resolved): freeradius2 (1.7.8) incorrect ca+crl pem file output format: Jim Pingle
06:43 AM Bug #7491: freeradius2 (1.7.8) incorrect ca+crl pem file output format: Thanks for testing. Kill Bill
01:43 AM Bug #7491: freeradius2 (1.7.8) incorrect ca+crl pem file output format: Kill Bill wrote:
> https://github.com/pfsense/FreeBSD-ports/pull/344
OK! 1.7.8_1 now works, problem solved. Luca Moncelli
01:29 AM Bug #7532 (Resolved): SG-1000 autonegotiation 10baseT speed and duplex: During work on https://customercare.netgate.com/requests/show/index/id/19663 10baseT speed and duplex issue was found... Constantine Kormashev
12:31 AM Revision be291869: Enable Telegraf build: Renato Botelho
12:30 AM Revision c854db90: Enable Telegraf build: Renato Botelho

05/08/2017

07:44 PM Revision 130be4ea: Update translation files: Renato Botelho
07:32 PM Revision fd1b59f2: Regenerate pot: Renato Botelho
06:57 PM Feature #7531 (New): pkg behavior when encountering invalid SSL certificate: I just tried installing the acme package via the web interface. Output here:
> >>> Installing pfSense-pkg-acme... ... Nicholas Sielicki
03:20 PM Revision 1f3b7a9e: Only cache CP RADIUS Auth credentials when reauthentication is enabled. Fixes #7528: (cherry picked from commit d4e42c54a2b7d9c955b11ad3034a186a73159f1a)
(cherry picked from commit ed44d5fb36f1f69196417... Jim Pingle
03:20 PM Revision ed44d5fb: Only cache CP RADIUS Auth credentials when reauthentication is enabled. Fixes #7528: (cherry picked from commit d4e42c54a2b7d9c955b11ad3034a186a73159f1a) Jim Pingle
03:19 PM Revision d4e42c54: Only cache CP RADIUS Auth credentials when reauthentication is enabled. Fixes #7528: Jim Pingle
02:19 PM Bug #7530 (Not a Bug): Deleting an entry from the DNS Forwarder deletes wrong row: Can't duplicate this on 2.3.4 or later. Either it was already fixed, or something in your procedure was incorrect and... Jim Pingle
12:15 PM Bug #7530 (Not a Bug): Deleting an entry from the DNS Forwarder deletes wrong row: In the DNS Fowarder interface, if there are two rows with the same 'host' value, deleting one of the rows results in ... Tom Fite
12:04 PM Feature #7529: CPU Type: That does only show up if you have the module loaded. If you don't load the module, nothing shows up, even if the CPU... Jim Pingle
12:01 PM Feature #7529: CPU Type: Kindly look at the "Hardware Crypto" field. If you don't see it then you don't have it. Kill Bill
11:22 AM Feature #7529 (Resolved): CPU Type: In Cpu type can you have a AES Yes/No Philip Hadfield
10:30 AM Bug #7528 (Feedback): Captive Portal caches user RADIUS credentials inconsistently with needs/described behavior: Applied in changeset commit:d4e42c54a2b7d9c955b11ad3034a186a73159f1a. Jim Pingle
10:19 AM Bug #7528 (Resolved): Captive Portal caches user RADIUS credentials inconsistently with needs/described behavior: Captive Portal has to cache the user credentials for RADIUS Reauthentication to function, and it does not need to cac... Jim Pingle
08:06 AM Feature #7527 (Resolved): Sign CSRs - subjectAlternateNames: with #7383 PFSense got the ability to sign arbitrary CSRs.
With browsers moving to only use `subjectAlternateName`... Philip Hofstetter
12:32 AM Feature #2358: NAT64 support: Upvote. Even if just NAT64, as other have said Google has DNS64 and also BIND can be installed and it is pretty simpl... Brandon Jackson

05/07/2017

07:22 PM Bug #4310: Limiters + HA results in hangs on secondary: Experiencing this after updating from 2.1.5 to 2.3.4. Constant Kernel messages in system logs as: "pfsync_undefer_st... Sean Huggans
08:31 AM Bug #7526 (Not a Bug): boot menu selection console GUI broken on apu2: That comes from the system BIOS, not the operating system. It is likely performing some kind of VGA->serial redirecti... Jim Pingle
01:52 AM Bug #7526 (Not a Bug): boot menu selection console GUI broken on apu2: i have a apu2c4 running amd64 2.4 full with bios and pfsense both set to 115200 baud rate but when i boot i get the b... Bipin Chandra
08:17 AM Bug #7413: status_dhcpv6_leases.php: Some DHCPv6 leases are not displayed in the GUI: I can confirm adding an extra sed substitution for % to %% works!
Meaning changing https://github.com/pfsense/pfse... Anders Lind
04:41 AM Revision f14e891d: Make multi-widget optional by widget: Phil Davis

05/06/2017

08:50 PM Bug #7413: status_dhcpv6_leases.php: Some DHCPv6 leases are not displayed in the GUI: I think I found out what the problem is!
This commit changed how the lease file is handled:
https://github.com/pf... Anders Lind
07:23 PM Revision 409165fd: Unbound: Added ability to disable automatically added host entries: Robbert Rijkse
03:15 PM Feature #7525 (Resolved): Added ability to disable automatically added host entries in unbound: I needed to disable the host entries automatically enabled by pfSense since my zone is DNSSEC signed and this record ... Anonymous
11:14 AM Revision 9457d0f6: Fix APU2 with coreboot v4.x detection: See https://forum.pfsense.org/index.php?topic=106444.msg716558#msg716558 Doktor Notor
10:44 AM pfSense Packages Bug #7523: HAproxy widget settings panel does not open: I checked other packages that have a dashboard widget. The others all do stuff that is compatible with the multi-copi... Phillip Davis
10:43 AM pfSense Packages Bug #7523: HAproxy widget settings panel does not open: And for haproxy-devel PR https://github.com/pfsense/FreeBSD-ports/pull/351 Phillip Davis
06:35 AM pfSense Packages Bug #7524 (Resolved): Squid MITM/SSL-Bump broken with Chrome due to missing SAN in generated certificates: Upstream bug: http://bugs.squid-cache.org/show_bug.cgi?id=4711
Also, there were multiple other SSL-Bump fixes in 3... Kill Bill
06:08 AM pfSense Packages Bug #7161: pfSense-pkg-bind9 changelog pointing to non-existent location: Same issue with pfSense-pkg-Netgate_Coreboot_Upgrade - the changelog link points to https://github.com/pfsense/FreeBS... Kill Bill

05/05/2017

11:23 PM Revision 61c813f9: Update dyndns.class: xygrec
03:15 PM Feature #2676: Reply-to option in firewall rule: Hello,
I'm also interested in this feature, for another use.
I need this feature to allow sslh (https://github.... Jeremiejig .
12:32 PM Bug #7232 (Resolved): haproxy_pool_edit.php -- sprintf() too few arguments: Renato Botelho
12:32 PM pfSense Packages Bug #7310 (Resolved): Packages pre-deinstall script removes temporary files used by pkg: Works Renato Botelho
12:31 PM pfSense Packages Bug #7523: HAproxy widget settings panel does not open: I have no idea why I wrote 2.3.4 above. This is an issue with using the HAproxy widget on 2.4, due to enhancements in... Phillip Davis
12:30 PM pfSense Packages Bug #7523 (Resolved): HAproxy widget settings panel does not open: Install and enable the HAproxy package.
On the Dashboard for 2.3.4, add the HAproxy widget
In the HAproxy widget, c... Phillip Davis
12:09 PM Feature #7522: webGUI output settings directly to image or rich text: Jim Pingle wrote:
> See /status.php on the firewall.
>
> That's what it already does, and more, though not a summ... Daryl Morse
11:51 AM Feature #7522 (Rejected): webGUI output settings directly to image or rich text: See /status.php on the firewall.
That's what it already does, and more, though not a summary it sanitizes/removes ... Jim Pingle
11:46 AM Feature #7522 (Rejected): webGUI output settings directly to image or rich text: If someone wants to ask for help or provide help on the forum, a screen capture of settings is required. Creating a s... Daryl Morse
10:07 AM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: To "me too" this report from a different direction, I realized we were seeing this issue on our HA setup during the o... Steve Y
06:55 AM Bug #7334 (Resolved): SG-1000 Update failure: Fix confirmed Renato Botelho
03:01 AM Bug #5319: Error message "No config named" in charon daemon: Hello,
In 2.3.3 the bug is present.
After two months when ipsec tunnel are down they don't restart because of thi... Frédéric Pougnault

05/04/2017

10:13 PM Revision 8aefab64: Move users to 2.3.4 when it's available: Renato Botelho
08:21 PM Feature #7521 (New): Package Updates via Mirror: Since the upgrade to 2.3 systems that no longer can connect to the internet directly or via a proxy can not get updat... Mark Olliver
01:07 PM Bug #7520 (Not a Bug): importing SSL Root CA shows as "self signed" certificate: But it is, technically, self-signed. It's only trusted because the browsers and others trust it.... Jim Pingle
01:00 PM Bug #7520 (Not a Bug): importing SSL Root CA shows as "self signed" certificate: importing the Global Sign Alpha root certificate ( https://secure.globalsign.net/cacert/Root-R1.crt ) as a root CA sh... matt darcy
11:01 AM Feature #2358: NAT64 support: For those who'd like to do something now, I've finished testing a setup using TAYGA on a separate virtual machine wit... Arthur Wiebe
02:45 AM pfSense Packages Feature #7519 (Resolved): Add support for --listen-v6 to ACME standalone webserver: The ACME script allows passing "--listen-v6" to force IPv6 in standalone mode. In an environment with public IPv6 add... Michael Duller
01:48 AM Bug #7518: Not all language choices show selected text: And with a full install from the latest snapshot pfSense-CE-2.4.0-BETA-amd64-20170503-1659 there is the same list of ... Phillip Davis

05/03/2017

11:33 PM Bug #7518: Not all language choices show selected text: Same for me.
https://github.com/pfsense/pfsense/tree/master/src/usr/local/share/locale
has lots of language folders... Phillip Davis
12:24 PM Bug #7518 (Resolved): Not all language choices show selected text: Of the language translations available today, only English, German, and both Chinese appear to change the webgui text... Chris Linstruth
09:15 PM Revision 1ba64675: Subst Unique/Device in System INfo Widget: Steve Beaver
04:37 PM Revision 6f880c0f: Bump pfSense version to 2.3.5-DEVELOPMENT: Renato Botelho
04:36 PM Revision db2a45da: Welcome pfSense 2.3.4-RELEASE: Renato Botelho
12:30 PM Revision af0f961b: Fix #7508 stop write_config after reset_factory_defaults: (cherry picked from commit 3dcaae882cdfdd86826be4db9b38ce04389701ec) Phil Davis
12:29 PM Revision a49684fd: Merge pull request #3720 from phil-davis/factory-defaults: Renato Botelho
12:28 PM Revision b3a32a59: Typos in pkg management code comments: (cherry picked from commit 146dbf0139d1f3049131bdf7a7d96675e4ff00a4) Phil Davis
12:28 PM Revision 382385bd: Merge pull request #3718 from phil-davis/pacakge-typo: Renato Botelho
12:27 PM Revision c180fdbe: Let he user know if all selected interfaces are down: in the interface statistics widget.
At the moment, if all the selected interfaces are down, the widget will just disp... Phillip Davis
12:26 PM Revision e639325a: Fix interface down in interface statistics widget: If an interface is down, the widget would write the interface description in a column heading but then omit the stats... Phillip Davis
12:26 PM Revision 14c6cfa0: Redmine #7318 None button for widget filters: (cherry picked from commit fba53b438540eb544c43adf4598e07320a910347) Phil Davis
12:26 PM Revision 35c395e0: Handle widgets having no items selected for display: (cherry picked from commit 405dfaad144de90a6e401354b80b82baf5ae3d59) Phil Davis
12:22 PM Revision 2b9cfd9d: Merge pull request #3714 from phil-davis/patch-10: Renato Botelho
12:21 PM Revision 732b2358: Remove bonus end td tag in interface statistics widget: (cherry picked from commit 9795332b0e101b4c500c3c75a8ea02325364fc17) Phillip Davis
12:20 PM Revision b28da5a1: Merge pull request #3712 from phil-davis/patch-7: Renato Botelho
11:12 AM Feature #7513 (Resolved): Add the ability to delete an NDP entry: Jim Pingle
10:31 AM Feature #7513 (Resolved): Add the ability to delete an NDP entry: https://github.com/pfsense/pfsense/pull/3696
This is for tracking purposes. The PR has been merged. Jim Pingle
11:12 AM Feature #7514 (Resolved): Add expiration field to NDP listing: Jim Pingle
10:32 AM Feature #7514 (Resolved): Add expiration field to NDP listing: https://github.com/pfsense/pfsense/pull/3704
This is for tracking purposes. The PR has been merged. Jim Pingle
10:57 AM Feature #7517 (Resolved): system_usermanager.php: Add a status icon to indicate if the user is enabled/disabled: https://github.com/pfsense/pfsense/pull/3552
This is for tracking purposes. The PR has been merged. Jim Pingle
10:52 AM Bug #7516 (Resolved): Notify test buttons for smtp/growl should use new unsaved settings: https://github.com/pfsense/pfsense/pull/3691
This is for tracking purposes. The PR has been merged. Jim Pingle
10:42 AM Feature #7515 (Resolved): js/traffic-graphs.js: Divide bandwidth by time when statistics where gathered to smooth out bumps in the graphs: https://github.com/pfsense/pfsense/pull/3607
This is for tracking purposes. The PR has been merged. Jim Pingle
10:39 AM Bug #7493 (Resolved): Input handling/error detection is testing old data fields (which should be ignored) when user changes an interface IP in GUI: Jim Pingle
10:37 AM Feature #7318 (Resolved): Dashboard widget filters - provide a "None" option: Jim Pingle
10:16 AM Bug #7512 (Resolved): Link certificate to the proper CA after submitting the signed version of a CSR: When completing a CSR, it does not get linked to the proper CA.
https://github.com/pfsense/pfsense/pull/3586
Th... Jim Pingle
10:13 AM Feature #7511 (Resolved): Add support for the Dynamic DNS provider Hover (www.hover.com): https://github.com/pfsense/pfsense/pull/3549
This is for tracking purposes. The PR has been merged. Jim Pingle
10:10 AM Feature #7510 (Resolved): interfaces.php: WAN DHCP Client "reject leases from" option should accept a list of addresses: dhclient apparently, despite the man page text, accepts a list for rejecting leases rather than only supporting a sin... Jim Pingle
10:01 AM Bug #7294 (Resolved): Lenght of description of firewall rules: PR was merged and it has been working Jim Pingle
08:33 AM pfSense Packages Bug #7498 (Resolved): Deprecated option included in OpenVPN client export: Works Jim Pingle
08:32 AM Feature #7505 (Resolved): system_certmanager.php: Certificate list should show SANs, KU, and EKU for certificates: Yeah that did come out pretty nice. And since it's collapsible now, maybe we can stuff some more cert info in that bo... Jim Pingle
06:29 AM Feature #7505: system_certmanager.php: Certificate list should show SANs, KU, and EKU for certificates: Works pretty well here as well. Kill Bill
04:03 AM Feature #7505: system_certmanager.php: Certificate list should show SANs, KU, and EKU for certificates: Tested 2.4.0.b.20170502.2240
Info icon now showing for each certificate, infoblock contains SAN, KU and EKU inform... James Snell
08:12 AM Bug #7508 (Resolved): Reset to factory defaults not effective when there are CP vouchers: Fixed. Factory reset w/vouchers before the change failed as stated, but works after a gitsync to pick up the merged c... Jim Pingle
07:32 AM Bug #7508 (Feedback): Reset to factory defaults not effective when there are CP vouchers: PR has been merged. Thanks! Renato Botelho
08:06 AM Bug #7345 (Resolved): nanobsd upgrades still fail bacause of lacking resolv.conf: Fixed in 2.3.3-p1 Renato Botelho
07:24 AM Bug #7504 (Resolved): Info blocks do not work inside a table: Thanks for testing! Jim Pingle
04:10 AM Bug #7504: Info blocks do not work inside a table: Tested 2.4.0.b.20170502.2240 from:
- Microsoft Edge 38.14393.1066.0
- Internet Explorer 11.1066.14393.0
Info bl... James Snell
07:21 AM Bug #7509 (Needs Patch): Inconsistent stored line endings in CAs: It's been that way for years (since the 1.2.x days and before). OpenVPN doesn't care at all, it reads the data just f... Jim Pingle
07:08 AM Bug #7509: Inconsistent stored line endings in CAs: Phillip Davis wrote:
> Does that cause the OpenVPN client to not load the configuration/certificate?
> Or to break ... Diego Louzán
06:17 AM Bug #7509: Inconsistent stored line endings in CAs: Pretty much a duplicate of #5306. This should be fixed in 2.4 at least as far as XML packages are concerned by https:... Kill Bill
04:09 AM Bug #7509: Inconsistent stored line endings in CAs: "Now it gets really weird: if in some OpenVPN configuration I use the Client Export to get a config file for my clien... Phillip Davis
03:58 AM Bug #7509: Inconsistent stored line endings in CAs: I have just found that this seems to affect all input forms: if I enable "Enable authentication of TLS packets." in m... Diego Louzán
03:20 AM Bug #7509: Inconsistent stored line endings in CAs: As an addendum, I checked the release notes of the last versions and could not find anything related to this. The clo... Diego Louzán
03:19 AM Bug #7509 (Needs Patch): Inconsistent stored line endings in CAs: Hello guys,
First of all, I'm not an expert in certs/security by any means, so please be gentle. Also, I'm using t... Diego Louzán
07:15 AM Bug #7397 (Resolved): Backport factory.sh changes to 2.3: Works Renato Botelho
04:17 AM Revision 3dcaae88: Fix #7508 stop write_config after reset_factory_defaults: Phil Davis

05/02/2017

11:20 PM Bug #7508: Reset to factory defaults not effective when there are CP vouchers: See PR https://github.com/pfsense/pfsense/pull/3720
Confirmed to fix the problem on a 2.3.4-DEV and 2.4-BETA system. Phillip Davis
11:16 PM Bug #7508 (Resolved): Reset to factory defaults not effective when there are CP vouchers: 1) Enable Captive Portal and create some vouchers
2) Do "Reset to Factory Defaults"
It is not effective - the sys... Phillip Davis
09:04 PM Revision b090c741: Switch the cert info to an infoblock now that #7505 is fixed. Issue #7505: Jim Pingle
09:03 PM Revision 666be0be: Per sbeaver, disable an IE workaround, which fixes #7504: Jim Pingle
08:18 PM Revision 42dfffcd: Add upgrade code to work around broken shaper rules from old wizard code. Ticket #7434: Jim Pingle
08:08 PM Revision acc7db22: Work around broken wizard rules for ticket #7434: Jim Pingle
07:52 PM Revision 7cfca820: Make sure that array exists before using foreach() (Bug #7399): (cherry picked from commit ce348731b63ea6980dc4f652e76d7c8c7432544c) Doktor Notor
07:41 PM Revision 8b3345dc: Detect SG-2320/SG-2340 models and set initial config for them: Renato Botelho
07:13 PM Revision 4906f4ee: Show SAN, KU, and EKU info in the certificate list. Implements #7505: While here, also fix "server" cert detection to key off of the EKU For "TLS Web Server Authentication" since nsCertTy... Jim Pingle
06:12 PM Revision 877b284d: Fix include and lib relative paths: Renato Botelho
06:12 PM Revision 74497894: Fix include and lib relative paths: Renato Botelho
06:08 PM Revision aad44c08: Fix include path: Renato Botelho
06:08 PM Revision 2c30dd7a: Fix include path: Renato Botelho
04:10 PM Bug #7504 (Feedback): Info blocks do not work inside a table: Applied in changeset commit:666be0be1b9d7caa92571c8ef781b73c095101a8. Jim Pingle
02:10 PM Bug #7504 (Resolved): Info blocks do not work inside a table: While attempting to make some collapsible info blocks in the certificates list, I found that the click event to show/... Jim Pingle
03:35 PM Bug #6594 (Resolved): Package reinstallation post-config restore hangs if no Internet connectivity: Renato Botelho
03:35 PM Todo #7507 (Resolved): Investigate and potentially add options for fast-io and sndbuf/rcvbuf tweaks to OpenVPN: Feedback from users suggests there is a great speed improvement to be had by using the following settings on certain ... Jim Pingle
03:33 PM Revision 53fa904d: save uniqueid during boot: Renato Botelho
03:33 PM Revision c70ddd16: Spelling: Steve Beaver
03:33 PM Revision e26ca3a5: space/tab: Steve Beaver
03:33 PM Revision 6042f9d3: Add Netgate ID display to system info widget: Steve Beaver
03:33 PM Revision 3e867e61: save uniqueid during boot: Renato Botelho
03:25 PM Feature #7506 (Resolved): Use "auth-retry nointeract" to prevent OpenVPN clients from exiting or attempting to prompt for passwords: We should use @auth-retry nointeract@ to prevent OpenVPN clients from exiting or attempting to prompt for passwords, ... Jim Pingle
03:22 PM Bug #7399 (Resolved): getserviceproviders.php - lack of sanity checking in foreach(): Works Jim Pingle
03:21 PM Bug #7434 (Resolved): Traffic shaper wizard: SMB choice uses invalid destination port range: To fix the broken wizard rules, I added a workaround in the filter reload process on 2.3.x because upgrade code would... Jim Pingle
02:50 PM Bug #4669 (Resolved): QinQ virtual interfaces available for assignment where they shouldn't be: I only see one QinQ interface available to assign for each tag now, and it does not cause a mismatch at boot when sel... Jim Pingle
02:41 PM Feature #6841 (Resolved): reduce numeric precision in Gateways Widget: Works Jim Pingle
02:41 PM Revision d258e30d: Read default language from globals.inc instead of hardcoding (it was already defined there): Jim Pingle
02:41 PM Revision 7b492a56: Set default anguage in General Setup to en_US: Since https://github.com/pfsense/pfsense/commit/fdcde31b4a910c4e058513c1e3f68a62e722da6b added German to the top of t... Phillip Davis
02:40 PM Revision 41817934: Read default language from globals.inc instead of hardcoding (it was already defined there): Jim Pingle
02:37 PM Revision 81ef2065: Merge pull request #3716 from phil-davis/patch-9: Jim Pingle
02:37 PM Bug #7497 (Resolved): status_dhcp_leases.php: DHCP Lease status does not encode hostname and some other data from leases file, leading to a potential XSS: Seems to be solid now. Jim Pingle
02:20 PM Feature #7505 (Feedback): system_certmanager.php: Certificate list should show SANs, KU, and EKU for certificates: Applied in changeset commit:4906f4ee6622c66a46d179cee6a2da963d962ca1. Jim Pingle
02:11 PM Feature #7505 (Resolved): system_certmanager.php: Certificate list should show SANs, KU, and EKU for certificates: The list of certificates should show at least the Subject Alt Names, Key Usage, and Extended Key Usage fields for a c... Jim Pingle
02:15 PM Revision 443ef349: Remove 2.4 only item: Renato Botelho
01:47 PM Bug #2800: OpenVPN doesn't work properly with intermediate/chained CAs: Hello guys, I have a very similar setup using v2.3.2 in AWS, I'm still hitting this issue, but in my case seems to be... Diego Louzán
01:47 PM Bug #7015: IPsec not working behind NAT: Me again. Here's some more state strangeness.
Today the GIF tunnel is working and I can route traffic from my test... David Myers
12:28 PM Revision b1b55221: Enable gnid build: Renato Botelho
12:27 PM Revision 7b774647: Use libcrypto and includes from MAKEOBJDIRPREFIX instead of the builder objects: Renato Botelho
12:26 PM Revision 125d2241: fix variable name: Renato Botelho
12:25 PM Revision ce3d4754: Build and install gnid on /usr/sbin: Renato Botelho
12:14 PM Revision a2e68d06: Enable gnid build: Renato Botelho
11:52 AM Revision 0874c8f5: Use libcrypto and includes from MAKEOBJDIRPREFIX instead of the builder objects: Renato Botelho
10:25 AM pfSense Packages Bug #7498 (Feedback): Deprecated option included in OpenVPN client export: I just pushed a change to use remote-cert-tls and also adjusted the code around it to test for the proper EKU before ... Jim Pingle
09:06 AM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: Adding that I found this while when upgrading from 2.3 to 2.4
My setup is : WAN -> VLAN10 -> pfsense computer with... John Holcomb
06:42 AM Revision dd6ecfa2: get_pkg_info improve installed_pkgs_only case: Phil Davis
03:55 AM Revision 146dbf01: Typos in pkg management code comments: Phil Davis
01:14 AM Revision 11db9c86: Merge branch 'master' of https://github.com/pfsense/pfsense into dyndns_dreamhost: Frank
01:07 AM Revision f2e702b1: Removed previous invalid conditionals and replaced with guard flags.: Also updated some comments based on review / feedback. frank
12:51 AM Revision 598c1d97: Aggregated case statements to avoid duplication.: frank
12:49 AM Revision e350558a: Changes tab levels for new case/switch blocks to match K&R BSD style.: https://www.freebsd.org/cgi/man.cgi?query=style&sektion=9 frank

05/01/2017

04:52 PM Revision 5ce6ce4b: Integrate various cloudflare changes: Phillip Davis
11:37 AM pfSense Packages Bug #7503 (Rejected): Web Interface and possible app configuration issue: Are you sure your scanner is hitting the firewall and not being redirected to another web service?
Looking at the ... Jim Pingle
11:07 AM Bug #7496 (Resolved): Chrome 58 added cert requirements which make it fail to accept the default self-signed certificates: Works OK in snapshots, reports of others showing it works as well. Seems to be solid. Closing. Jim Pingle
04:04 AM Revision 9d26673d: Added last tested date to DreamHost IPv4 record.: I cannot add a test date to IPv6 because my local ISP does not support
it yet. Dreamhost supports IPv6 records and I... frank

04/30/2017

08:15 AM Bug #7015: IPsec not working behind NAT: The problem I'm seeing with a GIF might be a command ordering or race condition issue.
Using 20170428 I set up a n... David Myers
01:41 AM Bug #4723: Can't forward UDP fragmented packets with scrubbing enabled.: I'm having this issue with 2.4:
- v2.4.0.b.20170429.0121 running on both firewalls
- local pf is virtualized, off... ryon m
12:31 AM pfSense Packages Bug #7503 (Rejected): Web Interface and possible app configuration issue: Version: 2.3.3_1
Vulnerability Scanner: OpenVas
Possible Vulnerability #1: SSL/TLS: Missing `secure` Cookie Attribu... Andrew Hardy

04/29/2017

05:23 PM Revision 27db3c75: Set default anguage in General Setup to en_US: Since https://github.com/pfsense/pfsense/commit/fdcde31b4a910c4e058513c1e3f68a62e722da6b added German to the top of t... Phillip Davis
04:26 PM Revision e6fa6784: Fix #7501 Add row-column prder option to interface stats widget: Phil Davis
03:32 PM Revision b22fceb2: Let he user know if all selected interfaces are down: in the interface statistics widget.
At the moment, if all the selected interfaces are down, the widget will just disp... Phillip Davis
03:17 PM Revision d87a9a1c: Fix interface down in interface statistics widget: If an interface is down, the widget would write the interface description in a column heading but then omit the stats... Phillip Davis
02:50 PM Revision 9795332b: Remove bonus end td tag in interface statistics widget: Phillip Davis
11:32 AM Bug #7501: Interfaces statistics widget GUI + JSON (2 issues): Try PR https://github.com/pfsense/pfsense/pull/3715
That gives the option to:
1) Select just the interface stats it... Phillip Davis
04:19 AM Bug #7501 (Resolved): Interfaces statistics widget GUI + JSON (2 issues): Running 2.3.3-RELEASE-p1 using IE11 this widget has two issues:
1) If there are more than about 2 interfaces it sc... Stilez y
10:52 AM Revision 06f41f2f: Allow selection of stats items in interface statistics widget: Phil Davis
05:35 AM Bug #7502 (Resolved): Cannot set router lifetime to 0 in radvd: In the Web GUI (services_router_advertisements.php), it is not possible to set the router lifetime to 0. The GUI enfo... Guido Schmitz

04/28/2017

07:54 PM Revision 74ddcdb2: Disable gnid for now: Renato Botelho
07:52 PM Revision 97a632c1: fix variable name: Renato Botelho
07:41 PM Revision 1af9fab9: Build and install gnid on /usr/sbin: Renato Botelho
04:24 PM Revision d126064d: Spelling: Steve Beaver
04:19 PM Revision a59c9835: space/tab: Steve Beaver
04:18 PM Revision cff0b00a: Add Netgate ID display to system info widget: Steve Beaver
01:22 PM Bug #7500: Upgrade From 2.3.3_p1 to 2.4 Fails (libssl.so.8 not found): Sorry - Affected version is 2.3.3 & 2.3.3_p1, not 2.2.3. ryon m
01:18 PM Bug #7500 (Resolved): Upgrade From 2.3.3_p1 to 2.4 Fails (libssl.so.8 not found): Existing installs and fresh installs of 2.3.3 & 2.3.3_p1 fail upgrade to 2.4 with the following errors:
Shared obj... ryon m

04/27/2017

03:47 PM Revision fd7049e7: Checks for DHCP Relay being enabled/disabled should be skipped when editting an additional pool: Renato Botelho
03:47 PM Revision 4b980701: Checks for DHCP Relay being enabled/disabled should be skipped when editting an additional pool: Renato Botelho
01:44 PM Revision 1e40bdeb: Fix comparisons for CDATA tags in config: Some length numbers here do not match the strings they are comparing with. That looks very odd.
Note that:
```
substr... Phillip Davis
01:43 PM Revision 77da3482: Merge pull request #3708 from phil-davis/patch-7: Renato Botelho
12:41 PM Bug #7397 (Feedback): Backport factory.sh changes to 2.3: Done Renato Botelho
11:06 AM pfSense Packages Bug #7498: Deprecated option included in OpenVPN client export: That makes sense. As you stated - if certs are being signed with the correct KU/EKU from 2009 in my mind it seems lik... James Webb
09:31 AM pfSense Packages Bug #7498: Deprecated option included in OpenVPN client export: That should work fine for certificates made any time recently on pfSense.

The only potential problem I foresee is... Jim Pingle
08:37 AM pfSense Packages Bug #7498: Deprecated option included in OpenVPN client export: Okay that makes sense - thank you :)
However, surely by having the @ns-cert-type@ option included in all exports y... James Webb
08:22 AM pfSense Packages Bug #7498: Deprecated option included in OpenVPN client export: The verification option you mentioned in the GUI controls verifying the name only, it does not verify the type, so it... Jim Pingle
08:19 AM pfSense Packages Bug #7498 (Resolved): Deprecated option included in OpenVPN client export: As of OpenVPN 2.4 the directive: @ns-cert-type@ has been deprecated.
However, from my testing, the client export p... James Webb
09:36 AM Bug #7499 (Resolved): ipsec.widget.php: Tunnel Status incorrect: IPsec tunnel status is shown correctly on Status > IPsec, but the IPsec widget on the dashboard does not show the cor... Jim Pingle
07:53 AM Bug #7496: Chrome 58 added cert requirements which make it fail to accept the default self-signed certificates: Hello!
Certificates work fine for Chrome 58 if you add CN also in 'Alternative Names' -> 'FQDN or Hostname'. Konstantin K
05:24 AM Bug #6177: pkg update checking with no Internet access kills web GUI: I can just say I have the same bug with 2.3.2 version. Forcing Ipv4 as indicated in comment 13 worked around this bug. José Jorge
04:13 AM Revision 0fc6d49d: Allow customize of dashboard widget names: Phil Davis
01:14 AM Revision 856514f5: Fix comparisons for CDATA tags in config: Some length numbers here do not match the strings they are comparing with. That looks very odd.
Note that:
```
substr... Phillip Davis

04/23/2017

10:47 PM Revision fec2c3b7: Add expiration field to NDP listing: Sergio Carlos Morales Angeles
08:08 PM Bug #7492 (Closed): SG-1000 occasionally loses Internet connectivity: Occassionally my SG-1000 is unable to communicate over the WAN. I can still log in over the LAN and the GUI is workab... R Minnich
12:23 PM pfSense Packages Bug #7479: freeRadius not started after update to 1.7.8: Added an install message and some input validation and other tweaks @ https://github.com/pfsense/FreeBSD-ports/pull/344. Kill Bill
09:39 AM Bug #7491: freeradius2 (1.7.8) incorrect ca+crl pem file output format: Kill Bill wrote:
> https://github.com/pfsense/FreeBSD-ports/pull/344
OK! It works! :-)
Luca Moncelli
09:22 AM Bug #7491: freeradius2 (1.7.8) incorrect ca+crl pem file output format: https://github.com/pfsense/FreeBSD-ports/pull/344 Kill Bill
08:05 AM Bug #7491 (Resolved): freeradius2 (1.7.8) incorrect ca+crl pem file output format: release 2.4.0.b.20170422.1955
configuring eap-tls ca and crl produce pem file output ( /usr/local/etc/raddb/certs/... Luca Moncelli
08:32 AM Bug #7490 (Rejected): Limitation on number of L2TP users: Having more is possible but not practical so the limit in the GUI is set at a reasonable maximum for most deployments... Jim Pingle
05:36 AM Bug #7490 (Rejected): Limitation on number of L2TP users: The number of L2TP user limited on 256 user
mohsen abbaspour
08:29 AM Todo #7488 (Rejected): IKE v2 Configuration and Test: There is nothing in this report except the subject, closing as invalid.
This a bug tracker, not a support system. ... Jim Pingle
05:30 AM Todo #7488 (Rejected): IKE v2 Configuration and Test: mohsen abbaspour
08:28 AM Feature #7489 (Rejected): اتصال L2TP کاربران از روی بستر اینترنت و بررسی کندی سرعت: This a bug tracker, not a support system. Please post on the forum at https://forum.pfsense.org/ , there are plenty o... Jim Pingle
07:38 AM Feature #7489: اتصال L2TP کاربران از روی بستر اینترنت و بررسی کندی سرعت: Agradecia que escrevessem numa Língua mais universal. Sim há tradutores, poderia usá-lo mas vós também o poderias faz... Raul Ramos
07:28 AM Feature #7489: اتصال L2TP کاربران از روی بستر اینترنت و بررسی کندی سرعت: म तपाइँको समस्या बुझेको छैन Phillip Davis
06:22 AM Feature #7489: اتصال L2TP کاربران از روی بستر اینترنت و بررسی کندی سرعت: 这是英文版的问题追踪器
Kill Bill
05:30 AM Feature #7489 (Rejected): اتصال L2TP کاربران از روی بستر اینترنت و بررسی کندی سرعت: اتصال L2TP کاربران از روی بستر اینترنت و بررسی کندی سرعت jafar tork

04/22/2017

06:37 PM Revision 8fa81c52: Reverted adding array() as second parameter to setHelp() calls.: This was reimplemented in error as the new sprintf-based setHelp() was
checked in after this initial merge request wa... frank
06:30 AM Feature #7467: Add iPhone/Android/Generic USB tethering support: Jessica Porter wrote:
> The urndis driver would be nice as well.
There's already #6293 for that. (See https://re... Kill Bill
04:40 AM Revision 9425f22e: last two tab changes.: frank
04:38 AM Revision 2ad654da: Added back the help text for DNS Made Easy.: Not sure how I removed that earlier. frank
04:36 AM Revision 1247e53c: Maybe we are done with tab spacing now. I think it's manageable.: frank
04:32 AM Revision 68246684: More tab space tweaks - maybe I'm done?: frank
04:28 AM Revision 9055c5e5: Finished resolving spacing / formatting issues.: This was clouding the real work done. It appears to have been a tab
reformatting issue that went berserk. frank
04:21 AM Revision 6c6daeae: Resolved some unusual formatting errors that crept into the request.: frank
02:59 AM Revision a741f6e8: Merge branch 'master' of https://github.com/pfsense/pfsense into: dyndns_dreamhost frank
01:28 AM pfSense Packages Bug #7487: Status Traffic Totals doesnt persist through reboots.: Sadly someone else will have to test, the system I am using as my router is 32 bit and 2.4 only seems to be available... Chris R

04/21/2017

08:28 PM Feature #7467: Add iPhone/Android/Generic USB tethering support: The urndis driver would be nice as well. It would actually be nice if all USB modules were loadable kernel modules ... Jessica Porter
06:41 PM pfSense Packages Bug #7486 (Rejected): Captive Portal (CP): MS Edge and IE have interner access despite CP: Highly unlikely to be a captive portal problem, but something with your local configuration. Could be a package, coul... Jim Pingle
04:50 PM pfSense Packages Bug #7486 (Rejected): Captive Portal (CP): MS Edge and IE have interner access despite CP: Well.. This sounds a Little dumb and I dont know wtf is going on tbh.
Well. At first, I better tell you about the ... Christopher Westburry
06:38 PM pfSense Packages Bug #7487 (Feedback): Status Traffic Totals doesnt persist through reboots.: /var and /tmp handling was changed significantly in 2.4, please re-test there. Jim Pingle
05:00 PM pfSense Packages Bug #7487: Status Traffic Totals doesnt persist through reboots.: Forgot to add the effected version as I did not notice the field till after I submitted, but I am running 2.3.3-RELEA... Chris R
04:58 PM pfSense Packages Bug #7487 (Resolved): Status Traffic Totals doesnt persist through reboots.: The persistent data for vmstat is stored on /var and when you have var and tmp on ramdrives, the data isn't backed up... Chris R
03:30 PM Bug #7394 (Resolved): firewall_aliases_edit.php: Renaming an alias after input errors fails to update references: PR Was merged and tested Jim Pingle
02:53 PM Bug #7485 (Resolved): scrub does not properly re-fragment unusual but valid IPv6 fragments, results in overlapping fragments: When scrub is enabled, a set of valid fragments can be re-fragmented improperly by scrub when exiting the firewall. W... Jim Pingle
01:59 PM Revision f56fb70c: Update services.inc: (cherry picked from commit 2e3768baa8e6e5793ce165f0d8f60b25bdbdb444) xygrec
01:59 PM Revision 6459f82b: Update services_dyndns_edit.php: (cherry picked from commit df4c21fc24cc6ff38988ca866928f2f73b97b744) xygrec
01:58 PM Revision f7118bc8: Update dyndns.class: (cherry picked from commit 74533d412818113372b7b1a4e46db48313fd965d) xygrec
01:58 PM Revision f290e28b: Update services.inc: (cherry picked from commit 1bfa06953e0f440c3d6b71bbb3d671ef524899d4) xygrec
01:58 PM Revision b7d2a3da: Merge pull request #3549 from xygrec/patch-dyndns-hover: Renato Botelho
01:56 PM Revision 7663fe00: trafficgraphs, divide bandwidth by time when statistics where gathered to smooth out bumps in the graphs: (cherry picked from commit eddb01316c7ad06c1798e629b6158db505a86118) Pi Ba
01:56 PM Revision fdf384a8: Merge pull request #3607 from PiBa-NL/trafficgraphs-smooth-20170304: Renato Botelho
01:50 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Ah yes sorry, got some versions mixed up in my head.. Pi Ba
01:44 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Pi Ba wrote:
> You can wait, but its still 1.0.2..
>
> [2.4.0-BETA][root@pfSense.localdomain]/root: openssl versi... Joshua Ruehlig
01:37 PM Bug #7469: local_sync_accounts() slowness can trigger GUI/XMLRPC failures with many accounts: Pushing to 2.4.1 because the whole function should be changed to be optimized Renato Botelho
09:54 AM Bug #7015: IPsec not working behind NAT: As of 2.4.0.b.20170421.0857 I'm getting the same ping errors with a GIF. dpinger's attempts to ping do create a state... David Myers
09:34 AM Bug #7484 (Rejected): Firewall Destination "This Firewall" not blocking all traffic: This would not be possible without a proxy being involved, in which case you need to setup access controls in the pro... Jim Pingle
09:30 AM Bug #7484 (Rejected): Firewall Destination "This Firewall" not blocking all traffic: A rule blocking traffic from "any" to "This Firewall" does not work if you open an external domain in the browser whi... Anonymous
06:10 AM Feature #4796: Support Multiple FIBs in pfSense: I see only one on 2.3.3:
@sysctl -a | grep fib
net.my_fibnum: 0
net.add_addr_allfibs: 1
net.fibs: 1
@
Constantine Kormashev

04/20/2017

09:28 PM Revision 2e3768ba: Update services.inc: xygrec
07:24 PM Revision bafd63b5: Merge pull request #3699 from PiBa-NL/20170417-certificatemanager-ca-crl-inuse: Renato Botelho
07:22 PM Revision 91dd40af: Merge pull request #3700 from phil-davis/ifgwadd: Renato Botelho
07:08 PM Revision d900c7f6: Merge pull request #3629 from doktornotor/patch-18: Renato Botelho
07:06 PM Revision e05283ad: Merge pull request #3554 from jeremyrnelson/patch-1: Renato Botelho
07:04 PM Revision 37b4ec4c: ipsec overview, check label exists for interface including disabled ones, tell what was configured if not found.: (cherry picked from commit ac24ac6bbb5b94e1eb8420404a9b7bd9daf998b7) Pi Ba
07:04 PM Revision fe91a918: ipsec webgui, move building the $iflabels array outside if the loop: (cherry picked from commit 11b9896609c2998106d5503fe2581bb3304b4a5f) Pi Ba
07:04 PM Revision 19544ce6: Merge pull request #3675 from PiBa-NL/20170326-ipsec-labels: Renato Botelho
06:57 PM Revision 4268377c: notify test buttons for smtp/growl should use new unsaved settings just made: (cherry picked from commit 64f8ec62ddd57241e4a8a755cade7ca8cd9196a6) Pi Ba
06:57 PM Revision 4c9fa4c6: Merge pull request #3691 from PiBa-NL/20170410-notify-testbuttons: Renato Botelho
06:49 PM Revision 89cce183: Merge pull request #3693 from PiBa-NL/20170416-certmanager-import-ecc-certs: Renato Botelho
06:48 PM Revision 79a2945a: Do input validation on the actual array passed in: I was tearing my hair out for a while. If do_input_validation() is passed some array of keys/values that has been ass... Phil Davis
06:48 PM Revision 338a2121: Merge pull request #3698 from phil-davis/patch-5: Renato Botelho
06:47 PM Revision 95996cd7: Merge pull request #3695 from phil-davis/refactor_if_list_functions: Renato Botelho
06:00 PM Revision a8bee7cc: Simplify indexing of gateways array: Phil Davis
05:16 PM Revision 7f8e4d5f: Escape IPv6 when passed to ndp delete command: (cherry picked from commit 1d92faa34f7c9aaa97b1983f273d2d73285befb5) Sergio Carlos Morales Angeles
05:16 PM Revision c14573f7: Add ability to delete NDP entry: (cherry picked from commit 13105d9c79fe3ac8be2b01c152fb9fb6a95147b4) Sergio Carlos Morales Angeles
05:16 PM Revision ab023407: Merge pull request #3696 from sergiocarlosmorales/delete-ndp-entry: Renato Botelho
05:03 PM Revision 726756de: Remember original alias name on edit input errors: (cherry picked from commit 1271754326fe648093204296652398b1edd24912) Phil Davis
05:03 PM Revision 9dfd9007: Refactor update_alias_names_upon_change: (cherry picked from commit 24807bfeaec218948937a1fdc2b4e863319e41a0) Phil Davis
05:02 PM Revision 33664d33: Merge pull request #3694 from phil-davis/update_alias_name: Renato Botelho
04:57 PM Revision 0847c6cb: Merge pull request #3701 from phil-davis/empty-operation-not-permitted: Renato Botelho
03:12 PM Bug #7178 (Rejected): pfSense themes don't handle package XML field without <description> tag properly: Jim Pingle
02:40 PM Revision 1d92faa3: Escape IPv6 when passed to ndp delete command: Sergio Carlos Morales Angeles
01:58 PM Bug #7015: IPsec not working behind NAT: Using the setup described above I’ve also been having issues when trying to use IPsec Transport mode with either a GR... David Myers
12:51 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN: You can wait, but its still 1.0.2..
[2.4.0-BETA][root@pfSense.localdomain]/root: openssl version
OpenSSL 1.0.2k-f... Pi Ba
11:32 AM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Ok, thanks that makes sense.
I excitedly wait for pfSense 2.4, and an ALPN capable HAProxy then.
Joshua Ruehlig
07:11 AM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Joshua Ruehlig wrote:
> Ok, just to clear up my understanding. Is the following correct?
>
> If we build a port w... Jim Pingle
05:12 AM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Ok, just to clear up my understanding. Is the following correct?
If we build a port with openssl from ports, it no... Joshua Ruehlig
11:44 AM Bug #7478 (Rejected): Diagnostic/Authentification test fails on Radius since 2.3.3: It would only fail if your NPS policy requires a specific NAS Identifier rather than using the client address. You ca... Jim Pingle
11:39 AM Bug #7483 (Not a Bug): After renaming a WAN Interface its looses his Tier: Hello,
after renaming a WAN Interface its looses his tier in all GatewayGroups.
If you rename your primary WAN it w... Marvin Klose
11:31 AM pfSense Packages Bug #6690: SURICATA IPS Issue - Kills VLANS & Traffic Shaper: Jim Thompson wrote:
> Steven Kreitzer wrote:
> > Sandeep K V wrote:
> > > Hi Steven Kreitzer and Jim Thompson isn'... Jens Leinenbach
09:03 AM Bug #7472 (Feedback): External Authentication servers with names longer than 48 characters fail to authenticate with OpenVPN server configured for TLS + User Auth: I can't reproduce this on 2.3.3-p1 or 2.4 snapshots. I can use an LDAP name 50+ characters long and it still works in... Jim Pingle
06:57 AM Revision a5c7f533: Fix a typo to add a missing space during the initial NIC setup on console.: Luiz Souza
03:25 AM Bug #6957: CARP arp reply with wrong src mac: We have the same problems in our setup.
A switch is connected to two pfsense firewalls with a CARP setup. Since th... Marc L.

04/19/2017

09:15 PM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: It isn't a bug, it's a missing feature. Jim Pingle
08:35 PM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: Could we please have this changed from "Feature" to "Bug"? Chris Allen
04:04 PM Revision 563478f6: Revise row helper delete class: Steve Beaver
02:35 PM Revision 1059fc88: Fixed various issues with adding/deleting ACLs: Steve Beaver
01:55 PM Bug #7482: found 1 matching config, but none allows pre-shared key authentication using Main Mode: I'm sorry you feel that way, but that does not mean you can open a bug report for what is most likely a configuration... Jim Pingle
01:52 PM Bug #7482: found 1 matching config, but none allows pre-shared key authentication using Main Mode: By the way, I'm not going to post anything on the forum, I'm coming from there, other people is experiencing similar ... Emmanux .
01:51 PM Bug #7482: found 1 matching config, but none allows pre-shared key authentication using Main Mode: Very helpful, Jim Pingle, thanks a lot. Emmanux .
01:44 PM Bug #7482 (Rejected): found 1 matching config, but none allows pre-shared key authentication using Main Mode: This is not a support ticket system. Please discuss the issue on the forum. If a specific bug is identified, only the... Jim Pingle
01:41 PM Bug #7482 (Rejected): found 1 matching config, but none allows pre-shared key authentication using Main Mode: pfSense 2.3.2-RELEASE
We have many site-to-site vpn's configured in our pfSense, an i386 vm running on vmware.
T... Emmanux .
01:20 PM Bug #7232: haproxy_pool_edit.php -- sprintf() too few arguments: Reverted Renato Botelho
01:07 PM Bug #7309 (Feedback): ZFS - Can't find zroot, error 5: Already added to factory installed Renato Botelho
01:06 PM pfSense Packages Bug #7310 (Feedback): Packages pre-deinstall script removes temporary files used by pkg: I've reviewed deinstall functions for all packages and removed commands that can cause this symptom. It still can hap... Renato Botelho
12:51 PM Feature #2358: NAT64 support: Upvote Landon Wubbels
12:12 PM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available": Has anyone been able to test this with 2.4? Unfortunately I don't have a good test environment with IPSEC + BGP. Michael OBrien
11:39 AM pfSense Packages Bug #6182: HAProxy not supporting ALPN: First, that isn't the way you set OpenSSL to use the port now. It would be:... Jim Pingle
11:12 AM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Pi Ba wrote:
> The extra build flag should probably be added to: https://github.com/pfsense/pfsense/blob/master/tool... Joshua Ruehlig
11:32 AM Revision 54e2da9e: Remove redundant check, get_pkg_info() call uses a parameter to return only installed packages: Renato Botelho
11:32 AM Revision 8ad6e375: Fix installation of extra packages at build time relaxing check for running PHP instance and moving it to the top before any require_once() attempt runs: Renato Botelho
11:32 AM Revision 961e2e68: Fix indent and spaces: Renato Botelho
11:32 AM Revision 188f8aee: Use correct function (is_pkg_installed) and unbreak get_pkg_info(): Renato Botelho
11:32 AM Revision c9cdf7d1: Remove redundant check, get_pkg_info() call uses a parameter to return only installed packages: Renato Botelho
11:32 AM Revision b4f3beec: Fix installation of extra packages at build time relaxing check for running PHP instance and moving it to the top before any require_once() attempt runs: Renato Botelho
11:32 AM Revision 4333564a: Fix indent and spaces: Renato Botelho
11:32 AM Revision bdb86f67: Use correct function (is_pkg_installed) and unbreak get_pkg_info(): Renato Botelho
11:31 AM Revision 2733475f: Remove redundant check, get_pkg_info() call uses a parameter to return only installed packages: Renato Botelho
11:30 AM Revision 8b1963b4: Fix installation of extra packages at build time relaxing check for running PHP instance and moving it to the top before any require_once() attempt runs: Renato Botelho
11:29 AM Revision f34d8024: Fix indent and spaces: Renato Botelho
11:25 AM Revision 5d6af983: Use correct function (is_pkg_installed) and unbreak get_pkg_info(): Renato Botelho
03:34 AM Revision 3e20b9ca: Fix var/empty operation not permitted: Phil Davis
01:24 AM Bug #7426: UDP packet drops: I made some tests with simple DNS answer/reply and noticed problem with states overload (250 clients and 250 servers ... Constantine Kormashev

04/18/2017

01:08 PM Revision ce62d035: Do not re-sign core repo when running --rsync-repos: Renato Botelho
01:08 PM Revision 2f20d4dc: Do not re-sign core repo when running --rsync-repos: Renato Botelho
01:03 PM pfSense Packages Bug #7479: freeRadius not started after update to 1.7.8: There is no way to NOT configure EAP in the package. Simply said, configuring the certs in the CA manager is *mandato... Kill Bill
11:35 AM pfSense Packages Bug #7479: freeRadius not started after update to 1.7.8: You may not realize it is enabled, but it must be, or you wouldn't get that error. At this point it is not a bug, but... Jim Pingle
11:34 AM pfSense Packages Bug #7479: freeRadius not started after update to 1.7.8: Jim Pingle wrote:
> Given the error, you had to have used it in the past.
eap? no, i not used EAP, never.
this... Konstantin Ab
11:30 AM pfSense Packages Bug #7479: freeRadius not started after update to 1.7.8: A server certificate is necessary for EAP. Given the error, you had to have used it in the past. Jim Pingle
11:29 AM pfSense Packages Bug #7479: freeRadius not started after update to 1.7.8: i not use Cert Manager. And EAP.
It is necessary? Konstantin Ab
11:27 AM pfSense Packages Bug #7479 (Rejected): freeRadius not started after update to 1.7.8: Support for the old and redundant certificate manager in FreeRADIUS was removed. Create or import a server certificat... Jim Pingle
11:26 AM pfSense Packages Bug #7479 (Rejected): freeRadius not started after update to 1.7.8: I upgrade freeraius and freeraius not started now
In log:
Apr 18 23:21:00 radiusd 11844 rlm_eap: SSL error err... Konstantin Ab
12:58 PM Revision 2f666d34: Do not sign core repo when resuming build: Renato Botelho
12:58 PM Revision 5f7c49a4: Use pkg binary from target system and not from host: Renato Botelho
12:58 PM Revision 69bb39ba: Do not sign core repo when resuming build: Renato Botelho
12:58 PM Revision 2065473e: Use pkg binary from target system and not from host: Renato Botelho
12:57 PM Revision 8c96e513: Do not sign core repo when resuming build: Renato Botelho
12:56 PM Revision fdecb50e: Use pkg binary from target system and not from host: Renato Botelho
12:27 PM pfSense Packages Bug #6182: HAProxy not supporting ALPN: The extra build flag should probably be added to: https://github.com/pfsense/pfsense/blob/master/tools/conf/pfPorts/m... Pi Ba
11:35 AM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Kill Bill wrote:
> Joshua Ruehlig wrote:
> > Is it possible to set build options for dependent ports?
>
> See th... Joshua Ruehlig
12:26 PM Bug #7481: pkg-framework - rowhelper ignores <advancedfield/>: its a pkg framework issue, not a squid related bug. Marcello Silva Coutinho
12:25 PM Bug #7481 (Rejected): pkg-framework - rowhelper ignores <advancedfield/>: rowhelpers itens ignores <advancedfield/> Marcello Silva Coutinho
12:23 PM Bug #7480 (Closed): pkg framework - textarea on rowhelperfield errors: while using textarea on a rowhelperfield, it saves contents on xml but does not show on gui.
also, it ignores the ... Marcello Silva Coutinho
04:40 AM Revision b4538739: Add new IPv6 gateway to correct selectbox: Phil Davis
04:22 AM Revision e8113404: Reload new gateway params after input errors: Phil Davis
03:17 AM Revision de145400: Remove obsolete isAjax array key handling: Phil Davis
03:04 AM Feature #4826: Allow configuration of multiple phase1 proposals: this limitation of the pfSense GUI is getting more severe as older crypto gets more and more out of date. Right now, ... Philip Hofstetter
02:32 AM Bug #7478 (Rejected): Diagnostic/Authentification test fails on Radius since 2.3.3: since the changed NAS Identifier in v2.3.3 (https://redmine.pfsense.org/issues/6609) from systemname to "openVPN" the... Marc Eymann

04/17/2017

10:20 PM Bug #7477 (Rejected): Log data does not match documented schema: As stated on that page, the BNF is not complete. It isn't a specification, it is a rough guide. Jim Pingle
10:09 PM Bug #7477 (Rejected): Log data does not match documented schema: RE: https://doc.pfsense.org/index.php/Filter_Log_Format_for_pfSense_2.2
For example:
sequence-number="285519477... Ted Lum
09:51 PM Bug #7476 (New): Dirty buffer used to build log messages?: I've identified numerous cases where log lines appear to contain extraneous data beyond the actual end of the line. F... Ted Lum
06:51 PM Revision a9dbf4df: Merge branch 'master' into ifgwadd: Phil Davis
06:42 PM Revision f1bb5c7f: Validate gateway and interface together: Phil Davis
06:40 PM Revision 6d6ba660: certificate manager, allow importing of ECC certificates, change multiple 'if' to 'switch': Pi Ba
06:32 PM Revision 3bde5cdd: certificate manager, show 'in use' also for CA and CRL where certificates are in use by packages.: Pi Ba
03:32 PM Revision 4df266f5: Do input validation on the actual array passed in: I was tearing my hair out for a while. If do_input_validation() is passed some array of keys/values that has been ass... Phil Davis
03:24 PM Revision 71e8fe30: Merge pull request #3697 from phil-davis/patch-5: Jim Pingle
01:06 PM Revision 196188e5: Update translation files: Renato Botelho
01:03 PM Revision 4dc935ff: Regenerate pot: Renato Botelho
12:27 PM Revision dfafd8c2: Refactor IPv4 gateway add so field names are consistent with the IPv6 code: Phil Davis
12:24 PM Revision 36ac7244: Fix IPv6 gateway add: Phil Davis
11:56 AM Revision 1ede6e4d: Fix #7452 save new IPv6 gateway: This is also needed, just like for IPv4 in commit https://github.com/pfsense/pfsense/commit/f3278171b1990622792256319... Phil Davis
11:02 AM Revision 7e45af77: Refactor gateway save: Phil Davis
07:33 AM Feature #6293: Include 'if_urndis.ko' kernel module for USB network tethering: See also: #7468 Jim Pingle
07:33 AM Bug #7468 (Duplicate): Add Android tethering support - add urndis driver: Duplicate of #6293 Jim Pingle
07:20 AM Revision 161cd113: Refactor gateway parameter validation: Phil Davis
06:57 AM Bug #7452: Adding a gateway from interfaces.php does not work: See PR https://github.com/pfsense/pfsense/pull/3697 for the same fix for adding an IPv6 gateway. Phillip Davis
04:44 AM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Joshua Ruehlig wrote:
> Is it possible to set build options for dependent ports?
See the previous comment.
Kill Bill
02:25 AM pfSense Packages Bug #6182: HAProxy not supporting ALPN: Is it possible to set build options for dependent ports?
Maybe we can add an OPTION to set 'WITH_OPENSSL_PORT= yes' ... Joshua Ruehlig

04/16/2017

10:48 PM Revision 13105d9c: Add ability to delete NDP entry: Sergio Carlos Morales Angeles
06:25 PM Feature #7475 (Rejected): Status\System Logs\Firewall\Summary View: Graphic by country - Traffic pass and block
5E ☃
05:32 PM Revision 1746c5ce: certificate manager, allow importing of ECC certificates: Pi Ba
11:19 AM Revision 80fe8369: Refactor get_configured_interface_list remove unused parameter: Phil Davis
10:23 AM Revision f625f76c: Refactor get_configured_interface_list_by_realif remove unused parameter: Phil Davis
10:18 AM Revision f593f80b: Refactor get_configured_interface_with_descr remove unused parameter: Phil Davis
09:21 AM Revision 12717543: Remember original alias name on edit input errors: Phil Davis
09:14 AM Revision 24807bfe: Refactor update_alias_names_upon_change: Phil Davis
07:59 AM Bug #7474 (Resolved): Problems adding gateway from interface edit: Edit an interface. Choose "Static IPv4" and/or "Static IPv6".
Click the "Add a new gateway" button.
Scenario 1: E... Phillip Davis
07:35 AM Bug #7473 (Duplicate): Alias name change after input errors does not work: Jim Pingle
07:34 AM Bug #7473: Alias name change after input errors does not work: Duplicate of #7394 Jim Pingle
04:45 AM Bug #7473 (Duplicate): Alias name change after input errors does not work: 1) Edit an existing Alias that is used in a Rule/NAT etc - e.g. oldaliasname
2) Change the name - e.g. newaliasname
... Phillip Davis
07:34 AM Bug #7394: firewall_aliases_edit.php: Renaming an alias after input errors fails to update references: See also: #7473
And PR at https://github.com/pfsense/pfsense/pull/3694 Jim Pingle

04/15/2017

10:02 AM Bug #7468: Add Android tethering support - add urndis driver: Already requested here: https://redmine.pfsense.org/issues/6293
I tested this and it works OK with my Nexus 4.
... Steve Wheeler
02:58 AM Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome: Looks good here. Thank you. Chris Linstruth

04/14/2017

08:53 PM Bug #7444 (Resolved): pfSenseHelpers.js typo breaks captive portal stop/start/restart: Anonymous
08:52 PM Bug #7445 (Resolved): pfSenseHelpers.js service naming restrictions plus lack of error handling: Anonymous
07:30 PM pfSense Packages Bug #7471: Cellular pkg errors on install: Reassign to pkg author if this is specific to the cellular pkg Jim Thompson
01:36 PM pfSense Packages Bug #7471 (Rejected): Cellular pkg errors on install: Upgraded 2.3.3 to 2.3.3-p1, then installed cellular. Pkg install dialog:
> >>> Installing pfSense-pkg-cellular... ... Stilez y
06:16 PM Bug #6594: Package reinstallation post-config restore hangs if no Internet connectivity: On 2.4.0.b.20170407.1403, backed up config, restored with no WAN connectivity, pfSense WEBGUI was accessible, console... Paighton Bisconer
05:07 PM Bug #7472 (Not a Bug): External Authentication servers with names longer than 48 characters fail to authenticate with OpenVPN server configured for TLS + User Auth: Configure an external LDAP Authentication Server
Give it a name that exceeds 48 characters like 12345678901234567890... Anonymous
09:03 AM pfSense Packages Bug #7470: Status Traffic Totals - March 2017 is missing: We have seen that sort of thing in the past. A byproduct of how the weeks/months line up and perhaps a dash of DST in... Jim Pingle
08:44 AM pfSense Packages Bug #7470: Status Traffic Totals - March 2017 is missing: Here's some better description: https://forum.pfsense.org/index.php?topic=127774.0
Kill Bill
08:33 AM pfSense Packages Bug #7470 (Closed): Status Traffic Totals - March 2017 is missing: March 2017 is missing in the Monthly view. Noticed by several users in the forum:
https://forum.pfsense.org/index.ph... Anonymous
07:53 AM Bug #6972: "Are you sure you wish to?" prompts and other issues with deleting networks from network-type aliases: Renato Botelho wrote:
> I've found the way to reproduce it. It happens when you click on fa-trash icon. If you click... Kill Bill
07:51 AM Bug #6984: NTP/ACLs - Delete button partially invisible + rowhelper handling broken: This still has broken behaviour (to see Delete, you need to click Add), plus the whole thing needs backport to 2.3.x
... Kill Bill
07:32 AM pfSense Packages Bug #7229 (Duplicate): Package Manager Update "Suricata" failed: Duplicate of #7310 Renato Botelho
07:31 AM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: Over to Luiz Renato Botelho
07:29 AM pfSense Packages Bug #7310: Packages pre-deinstall script removes temporary files used by pkg: A workaround was added on pkg for specific packages and versions when same situation happened there. In our case a co... Renato Botelho
06:57 AM pfSense Packages Bug #7310: Packages pre-deinstall script removes temporary files used by pkg: After dig into it I found the root cause of the problem, which I will describe here and work on a fix later.
Durin... Renato Botelho
07:14 AM pfSense Packages Bug #7170 (Feedback): FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: Jim Pingle
02:29 AM pfSense Packages Bug #7170: FreeRADIUS built-in certificate manager defaults to MD5 (!!!), no support for SHA2: Merged.
Note: This needs to go to 2.4 release notes. Configuring the certs is no longer optional, it's simply a re... Kill Bill
12:53 AM Bug #7461: pftop no longer shows ALTQ "queue" view: Can confirm this is resolved in version 2.4.0.b.20170412.1325 Jakub Osika

04/13/2017

11:05 PM Revision ef6e941e: Revise dev_mode change handler: (cherry picked from commit 8a0af41adc9c29ccf7b8dabb3b7658abf46054a6) Steve Beaver
11:04 PM Revision 8a0af41a: Revise dev_mode change handler: Steve Beaver
06:03 PM Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome: Took care of that one too Anonymous
12:46 PM Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome: Testing using system patches on 2.3.3. Looks good for vpn_openvpn_client.php. Still needs a second click for dev_mode... Chris Linstruth
07:20 AM Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome: Applied in changeset commit:dd3c646fa5744a550f91524035a92f509d6162cf. Anonymous
07:14 AM Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome: onchange handlers revised to correct this issue Anonymous
07:05 AM Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome: I am able to reproduce this on MacOS & Chrome. Looking at it now. Anonymous
02:08 AM Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome: Looks like mode does the right thing on the vpn_openvpn_server.php but dev_mode also requires that second click to up... Chris Linstruth
01:42 AM Bug #7451: vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome: Hmm. That's frustrating. I know what I saw. Tested multiple times.
Currently when I select SSL/TLS I get the share... Chris Linstruth
12:13 PM Revision 3290b312: Fixed #7451: Revised onchage handlers to obviate need for second click in Chrome on MacOS
(cherry picked from commit dd3c646fa574... Steve Beaver
12:12 PM Revision dd3c646f: Fixed #7451: Revised onchage handlers to obviate need for second click in Chrome on MacOS Steve Beaver
11:22 AM Bug #4310: Limiters + HA results in hangs on secondary: Still Producing issues for me. Had to re-install pfSense on both devices in HA after encountering this bug. James Webb
07:54 AM Bug #7461 (Resolved): pftop no longer shows ALTQ "queue" view: Queue view is working again Jim Pingle

04/12/2017

06:06 PM Feature #7122: Add filters to various dashboard widgets: Looks like the PR went in about 48hours after the last note.
Tested using build 2.4.0.b.20170412.1256
Checked... James Snell
05:54 PM Revision 8769058c: Properly hide TLS Key / TLS Type fields when changing to Shared Key mode for OpenVPN clients.: Jim Pingle
05:10 PM Revision a9348c49: Fix stunnel category: Renato Botelho
12:54 PM Bug #7451 (Feedback): vpn_openvpn_client.php - Fields not hidden/processed correctly in chrome: I can't reproduce this at all here.
On 2.3.x the CRL field shows when it shouldn't, but that has been fixed on 2.4... Jim Pingle
12:45 PM Revision ae3f7150: Enable stunnel package: Renato Botelho
11:31 AM Bug #7309 (Confirmed): ZFS - Can't find zroot, error 5: Confirmed here as well. Installing to eMMC (not mSATA) requires kern.cam.boot_delay="10000" and it is not added to lo... Jim Pingle
11:17 AM Bug #7469 (Resolved): local_sync_accounts() slowness can trigger GUI/XMLRPC failures with many accounts: When a firewall has many local accounts, the time it takes for local_sync_accounts() to finish grows large enough to ... Jim Pingle
10:39 AM pfSense Packages Bug #7438: Squid 0.4.36_2 Remote Cache Parent not working: I had my linux guy edit the files with the lines you requested.
Same result
12.04.2017 11:36:14
10.24.1.70
TCP_... Robert Siegman
09:56 AM pfSense Packages Bug #7466 (Rejected): Status > Monitoring does not work: I can't reproduce this on a fresh installation or upgraded firewall using the latest snapshot. Sounds like maybe your... Jim Pingle
08:50 AM pfSense Packages Bug #7466 (Rejected): Status > Monitoring does not work: When I got to Status > Monitoring I get this error: Error: JSON not returned. Check to make sure you have an active s... Alex Marino
09:34 AM Bug #7463 (Rejected): FQDN Alias as "NAT Redirect target IP" fails to expand to IP: It works fine here when I test it. I don't have anything running on the target itself, but the connection and packets... Jim Pingle
02:29 AM Bug #7463 (Rejected): FQDN Alias as "NAT Redirect target IP" fails to expand to IP: When using a FQDN alias in the "Redirect target IP" field of a NAT rule, the rule will fail to work.
Steps to repr... Eric Kincl
09:16 AM Bug #7464 (Rejected): IPSec VPN - roadwarrior connexion - vpnc client: Please post on the forum or mailing list for discussion and diagnosis before opening a bug report. Once a specific bu... Jim Pingle
03:06 AM Bug #7464 (Rejected): IPSec VPN - roadwarrior connexion - vpnc client: Hi,
Whe have upgraded our pfSense to the latest version (2.3.3). Since, we have problems with IPSec VPN.
We can't u... Aurélien BONANNI
09:15 AM Bug #7465 (Rejected): Firewall rules fail if using a /19 in an alias as destination: I can't reproduce this. There is nothing special about a /19 in a network alias. It works fine as a source and as a d... Jim Pingle
05:44 AM Bug #7465 (Rejected): Firewall rules fail if using a /19 in an alias as destination: Having a new phone system here so added in a /19 network into an alias and created the firewall rule so source intern... Andy Friar
09:10 AM Feature #7467: Add iPhone/Android/Generic USB tethering support: Relevant https://forum.pfsense.org/index.php?topic=119419.msg660754#msg660754 Ivor Kreso
08:59 AM Feature #7467 (Resolved): Add iPhone/Android/Generic USB tethering support: iPhone tethering driver is present in FreeBSD https://www.freebsd.org/doc/handbook/network-usb-tethering.html
Abou... Ivor Kreso
09:03 AM Bug #7468 (Duplicate): Add Android tethering support - add urndis driver: Android tethering driver is present in FreeBSD https://www.freebsd.org/doc/handbook/network-usb-tethering.html
A... Ivor Kreso

04/11/2017

07:44 PM Revision a6f3daf0: Enable Russian translation since it's over 75%: Renato Botelho
07:41 PM Revision 7bd78a37: Update translation files: Renato Botelho
07:36 PM Revision 6b82932e: Regenerate pot: Renato Botelho
05:42 PM Revision 3a10f23b: Revert "Restore CSRF customizations": This reverts commit 1d7a414705794f2527dc1b7b3bb5419db1024bb6. Renato Botelho
05:42 PM Revision 8e1b1f95: Revert "CSRF: Close session before exit": This reverts commit d2495e5893baa63b2973b66f7c1b9787fada2e30. Renato Botelho
01:25 PM Bug #4218: Bridge does not have AUTO_LINKLOCAL flag: I can confirm that this is still an issue with 2.3.3-RELEASE-p1 - although either adding the link-local address manua... John Bayly
12:45 PM Bug #7116 (Confirmed): a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: I'm seeing this now as well on 2.4. Just a basic run through the shaper, tell it to prioritize a couple things like H... Jim Pingle
08:02 AM pfSense Packages Bug #7462 (New): HAproxy not rebinding properly after WAN DHCP IP change: Hi,
This is copy/pasted from the forum (https://forum.pfsense.org/index.php?topic=121345.0?) as i have the same is... Mr B
01:35 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only: I am experiencing this issue with PFsense 2.3.2, running i386 nanobsd on an alix board.
Every time the upstream ro... John Wilkes

04/10/2017

08:48 PM Revision 64f8ec62: notify test buttons for smtp/growl should use new unsaved settings just made: Pi Ba
07:33 PM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: I'm not sure if this helps, but the bug persists when:
* Traffic shaper is deleted
* A new shaper is created using ... Jakub Osika
06:23 PM Revision fcf751a4: Enable HYPERSCAN option for suricata: Renato Botelho
06:22 PM Revision f1244593: Enable HYPERSCAN option for suricata: Renato Botelho
06:22 PM Revision 23c4e67e: Enable HYPERSCAN option for suricata: Renato Botelho
06:19 PM Revision 5d1031db: start sending files direct to NFS1: Renato Botelho
06:07 PM Revision d2495e58: CSRF: Close session before exit: On CSRF, call phpsession_end() before exit to avoid syslog warning
about open session
Submitted by: PiBa-NL Renato Botelho
06:07 PM Revision 1d7a4147: Restore CSRF customizations: Renato Botelho
06:07 PM Revision f860a1ea: Update CSRF to latest version from github: Renato Botelho
06:06 PM Revision 6710097e: CSRF: Close session before exit: On CSRF, call phpsession_end() before exit to avoid syslog warning
about open session
Submitted by: PiBa-NL Renato Botelho
06:05 PM Revision 48da62b4: Restore CSRF customizations: Renato Botelho
06:04 PM Revision dc668baa: Update CSRF to latest version from github: Renato Botelho
04:53 PM Revision 98ba645a: Fix UTF8 in base64 decode: (cherry picked from commit 557e082696823ea5fa09a36d98f01775bf1e0c77) Steve Beaver
04:53 PM Revision 557e0826: Fix UTF8 in base64 decode: Steve Beaver
02:25 PM Revision ee1e73d0: Enable ALTQ for pftop build. Fixes #7461: Jim Pingle
02:24 PM Revision 6e71610e: Enable ALTQ for pftop build. Fixes #7461: Jim Pingle
10:19 AM pfSense Packages Feature #7456: pfblockerNG add supportto add or modify self-modified easylist style rule: The next version of the package will have all of the Language specific EasyList feeds hardcoded.
Unfortunately, al... BBcan177 .
10:02 AM Bug #7309: ZFS - Can't find zroot, error 5: OK, I could fix the issue by adding kern.cam.boot_delay="10000" to /boot/loader.conf.local
The problem possibly af... Alban Cousinié
08:31 AM Bug #7309: ZFS - Can't find zroot, error 5: Same issue here with an SG-4860 running ADI image (build date 09-04-2017):
Root mount waiting for: usbus0
Root mo... Alban Cousinié
09:40 AM Bug #7461 (Feedback): pftop no longer shows ALTQ "queue" view: Applied in changeset commit:6e71610ea3d146df3e620fb062ca2569a4e96ebf. Jim Pingle
09:23 AM Bug #7461 (Resolved): pftop no longer shows ALTQ "queue" view: On 2.4 the pftop command no longer has a "queue" view.
The port had ALTQ changed into an option, and now defaults ... Jim Pingle
09:17 AM Bug #6318: IPsec dashboard widget causes GUI failure: I am also seeing this on 2.3.3. Is there any known work around other than removing the ipsec widget? Maybe changing... Chris Baker
07:51 AM Bug #7460 (Rejected): Cannot select French Macbook keyboard type in installer: Jim Pingle
07:40 AM Bug #7460: Cannot select French Macbook keyboard type in installer: Oops forget about this issue. I have been mislead by the rough ergonomy of the screen. I didn't figure I had to valid... Alban Cousinié
07:36 AM Bug #7460 (Rejected): Cannot select French Macbook keyboard type in installer: During 2.4 beta installation (09-04-2017 build), when trying to select the keyboard type "French Macbook / Macbook pr... Alban Cousinié

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

05/09/2017

05/08/2017

05/07/2017

05/06/2017

05/05/2017

05/04/2017

05/03/2017

05/02/2017

05/01/2017

04/30/2017

04/29/2017

04/28/2017

04/27/2017

04/26/2017

04/25/2017

04/24/2017

04/23/2017

04/22/2017

04/21/2017

04/20/2017

04/19/2017

04/18/2017

04/17/2017

04/16/2017

04/15/2017

04/14/2017

04/13/2017

04/12/2017

04/11/2017

04/10/2017