Activity

30 days up to

User

Subprojects

Activity

From 06/19/2017 to 07/18/2017

07/18/2017

09:47 PM Bug #7697: NAT port forward rule using "WAN address" doesn't work as expected if router does not acquire a WAN address on startup: I'll try to test it out in the next couple of weeks hopefully. Thanks for the fix. Andy Wang
04:03 PM Revision 396a2796: Fix license: Jim Pingle
03:35 PM Revision e5aeaeb6: Add installer script to optionally recover config.xml off an existing drive. Implements #7708: Jim Pingle
01:49 PM Bug #7710 (Resolved): IGMP Proxy: IGMP Proxy failed on SG-1000, its been working O.K and for some reason the recent updates have caused it to fail agai... Jeremy Lewis
11:34 AM Bug #7709 (Needs Patch): raspberry pi or anything that can emulate ethernet gadget over usb mac id not read: If it's a FreeBSD bug, which it appears to be, report it upstream to FreeBSD. Once they fix it, the change will trick... Jim Pingle
11:23 AM Bug #7709 (Needs Patch): raspberry pi or anything that can emulate ethernet gadget over usb mac id not read: based on the discussion here
https://forum.pfsense.org/index.php?topic=133695.0
it seems like a freebsd issue whe... Bipin Chandra
10:50 AM Todo #7708 (Feedback): bsdinstall does not have a "Recover config.xml" option like the previous installer: Applied in changeset commit:e5aeaeb6a8b46c9532119285630f4e42d0e79b24. Jim Pingle
10:12 AM Todo #7708 (Resolved): bsdinstall does not have a "Recover config.xml" option like the previous installer: The new bsdinstall installer does not have an option to recover an existing config.xml from a previous installation.
... Jim Pingle
09:56 AM Feature #7707 (Resolved): Captive Portal - Radius Time out configuration field: Captive Portal Radius Server connection function has a hardcoded timeout value of '3' there are instances where it i... Kanthamohan Jeyaraman

07/17/2017

12:48 PM Revision ee8e4e73: Prevent iOS auto-capitalization on username field: Steve Beaver
12:14 PM Revision 376e6f67: Use attribute rekey_enable as usual but optionally allow to set margintime if rekeying is not disabled: hamnur
11:59 AM Revision c21d913d: Change login page links to absolute paths: Steve Beaver
10:30 AM pfSense Packages Feature #7706 (Resolved): Add option to write certificate to the filesystem after renew: In some cases it would be handy to have the certificate data written out to the filesystem so that action scripts cou... Jim Pingle
05:24 AM Revision f72f2fac: add "very": Stilez y
05:22 AM Revision 49bb19eb: slight further text/format improvement: Stilez y
05:11 AM Revision b0fc769a: Improve help text for promiscuous mode: "promiscuous mode" is often quoted but not always understood. Also its possible drawbacks (other than compatibility w... Stilez y

07/16/2017

10:04 AM Feature #7705 (Resolved): Support dynamic interface address for 1:1 NAT: Currently, in the 1:1 NAT UI, the "External subnet IP" field cannot be populated with options such as "WAN address" o... Riccardo Paolo Bestetti
09:42 AM Feature #7704 (Resolved): Destination port range "Any" in Port Forward UI doesn't work: If you set "Any" as the Destination port range for a Port Forward TCP or UDP entry, upon saving the new rule you get ... Riccardo Paolo Bestetti

07/15/2017

03:44 PM Bug #7702: Unattended Reboot Failing: OK, NP - thought it was best to capture ... I admit, not sure of the link between the forum and redmine. Sorry!
FY... Russell Morris
03:38 PM Bug #7702 (Not a Bug): Unattended Reboot Failing: This is not happening on any systems here. Please do not open bug reports until the problems have been properly evalu... Jim Pingle
03:12 PM Bug #7702 (Not a Bug): Unattended Reboot Failing: Hi,
I have been seeing this in recent v2.4 builds, thinking it's something that should be fixed. When I reboot (or... Russell Morris
03:39 PM Bug #7703 (Not a Bug): HW Acceleration in OpenVPN: This is a topic for a forum discussion, not a bug report. This is not a discussion or question/answer support platform. Jim Pingle
03:33 PM Bug #7703 (Not a Bug): HW Acceleration in OpenVPN: Hi,
This may be me, but just in case - likely good to log it, in case it's not.
Trying to use HW acceleration i... Russell Morris
02:13 PM Bug #4695: TAP (OpenVPN) Traffic Blocked: OK, thanks! Wasn't sure if that state was equal to closed or not. Sorry for the extra "traffic". Russell Morris
02:10 PM Bug #4695: TAP (OpenVPN) Traffic Blocked: It's already closed: "Not a bug".
Thanks. Jim Thompson
02:01 PM Bug #4695: TAP (OpenVPN) Traffic Blocked: Agreed, resolved - close this out (I don't know how, sorry!). Russell Morris
02:11 PM Bug #7701 (Rejected): Shell Command (daemon) Stops Other Services: Hi,
It may just be me (sorry if it is!), but similar to this thread ... I'm finding that some custom shell command... Russell Morris
02:08 PM Bug #7700 (Closed): Port Forwarding Failing - with Alias: Hi,
As captured in this thread - it seems that recently Port Forwarding / NAT is broken, when using aliases (works... Russell Morris
02:00 PM Bug #4696: OpenVPN Status / Client List: Working correctly in v2.4.0, so this one should be closed - I'd close it, not sure how ... :(.
Thanks! Russell Morris
01:58 PM pfSense Packages Feature #7699 (New): OpenVPN Client Export - Default Gateway: Hi,
Just a thought, but - it would be nice to be able to set this option in Client Export, not just in the server ... Russell Morris
07:41 AM Bug #7698 (Duplicate): Umlauts are no longer displayed properly: This has already been fixed, the 2.3.4-p1 release is about to come out and includes this correction.
https://doc.pfs... Jim Pingle
06:13 AM Bug #7698 (Duplicate): Umlauts are no longer displayed properly: In the newest Version on the DHCP Status Page (/status_dhcp_leases.php) Umlauts in the Description Field are no longe... Flole Systems

07/14/2017

07:36 PM Revision 3c05905d: Bump PRODUCT_REVISION to 2.3.4-p1: Renato Botelho
06:48 PM Revision db3b3afb: Use an alternate method to stop unbound and fix #7326: (cherry picked from commit 782453b4dbb77e5bc97a43f56b95a006c5434d65)
(cherry picked from commit 67fea036201f5af338338... Jim Pingle
06:47 PM Revision 67fea036: Use an alternate method to stop unbound and fix #7326: (cherry picked from commit 782453b4dbb77e5bc97a43f56b95a006c5434d65) Jim Pingle
06:46 PM Revision 782453b4: Use an alternate method to stop unbound and fix #7326: Jim Pingle
05:40 PM Bug #7692: andwidthd date on daily report incorrect.: I have created a report with bandwidthd here:
https://sourceforge.net/p/bandwidthd/bugs/50/ Anonymous
03:29 PM Bug #7692: andwidthd date on daily report incorrect.: I don't have it installed on either of my SG-1000s right now. It's possible there is an ARM-specific bug that affects... Jim Pingle
02:58 PM Bug #7692: andwidthd date on daily report incorrect.: It is not the browser cache, the date seems to change on every graph generation, and the software was installed just ... Anonymous
07:10 AM Bug #7692 (Not a Bug): andwidthd date on daily report incorrect.: Most likely something is cached in your browser. Try ctrl+F5 or shift+click reload. It is fine on all of my systems w... Jim Pingle
07:04 AM Bug #7692 (Not a Bug): andwidthd date on daily report incorrect.: Bandwidthd shows incorrect date (changing between graphs) in daily report.
See attachment for screenshot.
Env... Anonymous
04:28 PM Bug #7697: NAT port forward rule using "WAN address" doesn't work as expected if router does not acquire a WAN address on startup: The pull-request was pulled yesterday. https://github.com/pfsense/pfsense/commit/40c09b6dadb04928dc9a279969193b620ff1... Pi Ba
03:58 PM Bug #7697 (Resolved): NAT port forward rule using "WAN address" doesn't work as expected if router does not acquire a WAN address on startup: This forum post:
https://forum.pfsense.org/index.php?topic=127585.msg733528#msg733528
Describes what I'm seeing:
<... Andy Wang
03:25 PM Bug #4479: Firewall rules won't match GRE interface after applying IPSEC transport encryption on GRE tunnel: I don't see any target version on this bug. Is this being worked on? Any chances this could be fixed for 2.4? Jorge Albarenque
03:23 PM Todo #7689 (Resolved): bsdinstall does not automatically copy config.xml from USB drive like the previous installer: Looks good, multiple confirmations that it works. Jim Pingle
03:18 PM pfSense Packages Bug #7696 (Resolved): Telegraf Package Saving Incorrect Password: The contents of the password field are not being passed properly to the telegraf.conf file. The password is being en... Galen POSPISIL
02:59 PM Bug #6529: dhcp6c fails to start with track6 on a bridge interface: I am adding a sighting. My logs are as follows:
@Jul 12 06:23:21 pfSense dhcp6c[17300]: /var/etc/dhcp6c_wan.conf:13 ... Mathew Keith
02:00 PM Bug #7326 (Feedback): Unbound fails to start during rc.wanipchange when using large enough dns lists: Applied in changeset commit:782453b4dbb77e5bc97a43f56b95a006c5434d65. Jim Pingle
01:57 PM Revision 7505efe7: If a client address is in the webConfiguratorlockout table, do not allow them to access the GUI. Print an error and kill their states. Ticket #7693: Extra check to be sure that an existing open state cannot bypass lockout controls.
(cherry picked from commit cc9b0f... Jim Pingle
01:57 PM Revision f0da1eda: If a client address is in the webConfiguratorlockout table, do not allow them to access the GUI. Print an error and kill their states. Ticket #7693: Extra check to be sure that an existing open state cannot bypass lockout controls.
(cherry picked from commit cc9b0f... Jim Pingle
01:55 PM Revision cc9b0f76: If a client address is in the webConfiguratorlockout table, do not allow them to access the GUI. Print an error and kill their states. Ticket #7693: Extra check to be sure that an existing open state cannot bypass lockout controls. Jim Pingle
01:54 PM Bug #7693 (Feedback): Brute force protection does not kill states, so additional login attemps may be possible in some cases: Moving the sshlockout portion to #7695 Jim Pingle
10:29 AM Bug #7693: Brute force protection does not kill states, so additional login attemps may be possible in some cases: GUI portion is done. It also kills states if someone tries to access the GUI while in the table, so if it isn't feasi... Jim Pingle
07:46 AM Bug #7693 (Resolved): Brute force protection does not kill states, so additional login attemps may be possible in some cases: The way that browsers and ssh clients work, it may be possible to exceed brute force protection limits enforced by ss... Jim Pingle
10:44 AM Revision 9d472f01: Fix indent of if-block: hamnur
10:36 AM Revision 7683e057: Merge branch 'master' of https://github.com/hamnur/pfsense into HEAD: hamnur
10:29 AM Revision af729f53: Check if margintime is numeric and smaller than P1 lifetime: hamnur
09:58 AM Revision e18ddb38: Hide margintime if rekeying is disabled: hamnur
12:17 AM Revision 47914246: Fix typo: (cherry picked from commit 2c3b9ac554cc3940962e7f9b1799857583c394ab)
(cherry picked from commit 930914fd813130b0d1bd8... Jim Pingle
12:17 AM Revision 930914fd: Fix typo: (cherry picked from commit 2c3b9ac554cc3940962e7f9b1799857583c394ab) Jim Pingle
12:17 AM Revision 2c3b9ac5: Fix typo: Jim Pingle

07/13/2017

07:52 PM Revision 725aee3f: Trafficshaper, show interface names for disabled interfaces, dont just show a kinda 'empty' spot..: Pi Ba
07:49 PM Revision f6cf3687: dns, allow deleting last row for "Additional Names for this Host": Pi Ba
07:06 PM Revision 1fdecbe6: cron, fix job removal by index splice and write valid schedules for ramdrive backups: (cherry picked from commit ce3371fe969733c92cd91fe31d2acb69fc877986) Pi Ba
07:05 PM Revision aeb0e915: cron, dont write_config() when nothing changed.: Pi Ba
06:59 PM Revision ea7b8b00: Merge pull request #3771 from PiBa-NL/20170701-cron-fix: Renato Botelho
06:58 PM Revision bef8ce51: bootup, change message to "Checking config backups consistency..." to tell whats taking time, as there is usually little to cleanup involved: (cherry picked from commit c2530487978f68c46c663fee9c9049479f267925) Pi Ba
06:58 PM Revision d991f97b: Merge pull request #3772 from PiBa-NL/20170703-boot-config-check-message: Renato Botelho
06:58 PM Revision 04cd314b: nat, portforwards should not make up a new destination information when a configured dhcp interface does not currently have an address.: fixes: https://forum.pfsense.org/index.php?topic=127585.msg733528#msg733528
(cherry picked from commit 5a8a8bbea33ec2... Pi Ba
06:56 PM Revision 40c09b6d: Merge pull request #3782 from PiBa-NL/20170712-nat-configure-skip-no-dest: Renato Botelho
06:09 PM pfSense Packages Feature #7691 (New): Allow for custom icap services for squid: We would like to integrate additional icap services into the pfsense squid configuration, but there is no way add the... Orion Poplawski
05:58 PM Revision 324bbc3f: Restructure how unbound zone data is written to fix processing of "redirect" zone entries. Fixes #7690: Also corrects some other misc issues for formatting of zone data.
While here, add an option, not exposed in the GUI, ... Jim Pingle
05:58 PM Revision 021332fa: Restructure how unbound zone data is written to fix processing of "redirect" zone entries. Fixes #7690: Also corrects some other misc issues for formatting of zone data.
While here, add an option, not exposed in the GUI, ... Jim Pingle
04:37 PM Revision 4541f84d: Restructure how unbound zone data is written to fix processing of "redirect" zone entries. Fixes #7690: Also corrects some other misc issues for formatting of zone data.
While here, add an option, not exposed in the GUI, ... Jim Pingle
02:58 PM Bug #4031: Notifications mail bomb in some gateway failure circumstances: This could help quite a bit imho :) https://github.com/pfsense/pfsense/pull/3768 Pi Ba
01:32 PM Bug #7690 (Resolved): System Domain Local Zone Type option Redirect is broken: Works Renato Botelho
01:10 PM Bug #7690 (Feedback): System Domain Local Zone Type option Redirect is broken: Applied in changeset commit:021332fa29f0c08bff833ce1c7ddcb9ac9a769b1. Jim Pingle
11:50 AM Bug #7690 (Confirmed): System Domain Local Zone Type option Redirect is broken: Still needs the fix ported to 2.3.x, it did not cherry-pick cleanly. Jim Pingle
11:50 AM Bug #7690 (Feedback): System Domain Local Zone Type option Redirect is broken: Applied in changeset commit:4541f84d12c86775022b0e49d527d6f4f9a6911f. Jim Pingle
11:50 AM Bug #6318: IPsec dashboard widget causes GUI failure: I think this bug's priority should be raised since it also breaks openvpn functionality. Marcio Merlone
07:14 AM Bug #5319: Error message "No config named" in charon daemon: This bug is also present in 2.3.4, I have to kill the charon process every 2-3 days to keep the problem from appearing. Robert Olofsson

07/12/2017

08:16 PM Revision 5a8a8bbe: nat, portforwards should not make up a new destination information when a configured dhcp interface does not currently have an address.: fixes: https://forum.pfsense.org/index.php?topic=127585.msg733528#msg733528 Pi Ba
02:46 PM Bug #7690 (Resolved): System Domain Local Zone Type option Redirect is broken: If user chose option 'Redirect' on 'System Domain Local Zone Type' in services_unbound.php unbound doesn't start with... Renato Botelho
01:19 PM Todo #7689 (Feedback): bsdinstall does not automatically copy config.xml from USB drive like the previous installer: Change committed to freebsd-src repo, should show up in snapshots soon. Jim Pingle
01:14 PM Todo #7689 (Closed): bsdinstall does not automatically copy config.xml from USB drive like the previous installer: Feature is described here:
https://doc.pfsense.org/index.php/Automatically_Restore_During_Install
Basically: Loca... Jim Pingle
12:46 PM Bug #7615: User / Group Privileges for the "Status: Monitoring" page.: Ok. It appears that when the package "Status_Traffic_Totals" is installed it replaces "Status: Monitoring" in the use... Landon Wubbels
07:53 AM pfSense Packages Feature #7189: Letsencrypt acme sync in HA environment: Relevant Commits:
2.4:
https://github.com/pfsense/FreeBSD-ports/commit/119d687658b46a0310a481c22f5a435e5de9625f
... Jim Pingle
07:51 AM pfSense Packages Feature #7189 (Resolved): Letsencrypt acme sync in HA environment: Works on both 2.4 and 2.3.x now. Jim Pingle

07/11/2017

04:52 PM Bug #7604: Bug #6594 is not resolved: Waiting for Internet connection to update pkg metadata and finish package reinstallation: A quick workaround:
Interrupt update process with ctrl+c and enter to a shell. Then:
vi /usr/local/etc/pkg/repos/... Guillem Parera
03:59 PM pfSense Packages Feature #7189 (Feedback): Letsencrypt acme sync in HA environment: Pushed a fix for 2.3.x versions now. Jim Pingle
03:29 PM pfSense Packages Feature #7189 (Assigned): Letsencrypt acme sync in HA environment: Well, it works on 2.4, needs some adjustments for 2.3.x yet. Jim Pingle
03:11 PM pfSense Packages Feature #7189 (Feedback): Letsencrypt acme sync in HA environment: I just pushed a new feature to the ACME package, it can now send service restart commands via XMLRPC using the system... Jim Pingle
12:50 PM Bug #7146: install_cron_job() causes inexplicable issues when saving package configuration: I went through and tried a few of the packages and some did need the write, others did not. I didn't test the whole l... Jim Pingle
12:11 PM Feature #7688 (Rejected): AutoConfigBackup - Info Icon - username only: It would be beneficial to include a hover icon (info tip) on the AutoConfigBackup setup page that informs users to us... Clinton Cory
07:45 AM Bug #7675 (Resolved): Remove MSS clamping exclusions on pppoe, l2tp, pptp: Thanks for testing!
Jim Pingle
07:43 AM Bug #7675: Remove MSS clamping exclusions on pppoe, l2tp, pptp: I have updated to the last few snapshots and I have not had any issues with the MSS clamping being set on the PPPOE c... Anonymous
07:11 AM Bug #7687 (Not a Bug): File permissions to open for /var/etc/mpd_wan.conf: It's also in /conf/config.xml where it can be read by anyone on the box.
At the moment, it's all a part of how the... Jim Pingle
05:11 AM Bug #7687 (Not a Bug): File permissions to open for /var/etc/mpd_wan.conf: Considering this file has the clear text password to the ISP account it needs to have something less than world reada... Andrew Spurrier

07/10/2017

04:15 PM Revision 02068d31: Improve the way the auth server list is generated and account for a key being removed from the array when deleting. Fixes #7682: (cherry picked from commit fa628b1a15a1c03343caa2735e09de291ae4e382) Jim Pingle
04:15 PM Revision fa628b1a: Improve the way the auth server list is generated and account for a key being removed from the array when deleting. Fixes #7682: Jim Pingle
04:12 PM Revision 4e4cac0d: Improve the way the auth server list is generated and account for a key being removed from the array when deleting. Fixes #7682: Jim Pingle
03:34 PM Bug #7682 (Resolved): system_authservers delete UI bugs: Works. Jim Pingle
11:30 AM Bug #7682 (Feedback): system_authservers delete UI bugs: Applied in changeset commit:4e4cac0dd53afcf26aa2b523dc16916730d92133. Jim Pingle
08:35 AM Bug #7682: system_authservers delete UI bugs: The fix seems to work but it could be better/simpler, see my comments on PR 3780. Jim Pingle
03:24 PM Bug #7685 (Resolved): OpenVPN Auth Digest Algorithm list contains entries that are functionally identical and thus redundant: Fixed.
Only actual digest algorithms show now, and not their aliases. Configurations that referenced an alias are ... Jim Pingle
09:40 AM Bug #7685 (Feedback): OpenVPN Auth Digest Algorithm list contains entries that are functionally identical and thus redundant: I pushed a fix for this in commit:f49ef559060ec8cad5c7a3a548d509cf08b5549b but forgot to put this ticket number on th... Jim Pingle
08:52 AM Bug #7685: OpenVPN Auth Digest Algorithm list contains entries that are functionally identical and thus redundant: This also appears to be confirmed by @openssl list-message-digest-algorithms@, which lists which names/aliases map to... Jim Pingle
07:37 AM Bug #7685 (Resolved): OpenVPN Auth Digest Algorithm list contains entries that are functionally identical and thus redundant: The way "openvpn --show-digests" works it ends up listing several algorithms that are functionally equivalent but som... Jim Pingle
02:36 PM Revision f49ef559: Fix OpenVPN Auth Digest Algorithm selection so it does not use duplicate/alias names in the list, and fix existing entries on upgrade so they use the actual digest name and not an alias.: Jim Pingle
09:44 AM pfSense Packages Bug #7681: OpenVPN client export utility - Exporting Android inline configuration can include incorrect client auth method in .ovpn file: Thank you Jim! Makes sense. David Nuzik
07:37 AM pfSense Packages Bug #7681: OpenVPN client export utility - Exporting Android inline configuration can include incorrect client auth method in .ovpn file: I made a different issue entry for the actual underlying problem here: https://redmine.pfsense.org/issues/7685 Jim Pingle
07:36 AM pfSense Packages Bug #7681 (Not a Bug): OpenVPN client export utility - Exporting Android inline configuration can include incorrect client auth method in .ovpn file: It does appear that they are the same, but different versions of OpenSSL or different libraries that are OpenSSL-like... Jim Pingle
08:29 AM pfSense Packages Feature #7686: Add option in HAProxy to configure SSL defaults based on the Mozilla SSL Configuration Generator: oops, misspelled configure in the subject line Corey Boyle
08:27 AM pfSense Packages Feature #7686 (New): Add option in HAProxy to configure SSL defaults based on the Mozilla SSL Configuration Generator: Would be nice to have "Modern | Intermediate | Old" options in the configuration of HAProxy for SSL cipher suites, ba... Corey Boyle
06:25 AM Bug #6559: OpenVPN 'mode server' directive missing: If it's remote access, you need to give it a tunnel network. It is not valid for remote access without a tunnel netwo... Jim Pingle
06:04 AM Bug #6559: OpenVPN 'mode server' directive missing: Jim Pingle wrote:
> or you have to setup bridging, etc.
>
> It is only doing what it is told (or not told, as the... Geoff Jones

07/09/2017

08:05 PM Bug #7684: Web Configurator - IP address is cutoff in the Gateways widget: The gateway x.y.104.1 is the IP address of the router that is upstream from the pfSense WAN.
Dynamic DNS should set ... Phillip Davis
08:04 PM Bug #7684: Web Configurator - IP address is cutoff in the Gateways widget: Jim Pingle wrote:

> They are not the same thing.
Oops. Where is the "embarassed" emoji when I need it?
Michael Woffenden
07:59 PM Bug #7684 (Rejected): Web Configurator - IP address is cutoff in the Gateways widget: One of those is your upstream ISP gateway (gateways widget)
The other is your firewall's own IP address (Dynamic D... Jim Pingle
07:56 PM Bug #7684 (Rejected): Web Configurator - IP address is cutoff in the Gateways widget: I currently have an IP address that is XX.XX.XXX.XXX and in the Gateways widget the last 2 digits on the right are mi... Michael Woffenden
02:39 PM Revision 19be2fc2: Reduce complexity of checking whether system should be rebooted after RAM Disk option change.: Also fix the issue when RAM Disk option is changed, but there is an input error and thus on subsequent form submittin... Nazar Mokrynskyi

07/08/2017

10:50 PM pfSense Packages Feature #7683 (New): Splunk Universal Forwarder Package: It would be nice to have a Splunk Universal Forwarder package so we can send logs and other monitor capable files e.g... Dennis Chow
10:01 PM Bug #7682: system_authservers delete UI bugs: master: https://github.com/pfsense/pfsense/pull/3780
RELENG_2_3:https://github.com/pfsense/pfsense/pull/3778
RELENG... Phillip Davis
09:46 PM Bug #7682 (Resolved): system_authservers delete UI bugs: 1) In system_authservers, have a list of at least 3 extra auth servers defined, and Local Database will be at the end... Phillip Davis
07:40 PM pfSense Packages Bug #7681 (Not a Bug): OpenVPN client export utility - Exporting Android inline configuration can include incorrect client auth method in .ovpn file: Intro:
Hello this is my first bug entry. I hope I have done a good job reporting the specifics of what I believe to ... David Nuzik

07/04/2017

02:40 PM Bug #7672 (Rejected): Enabling DNS Resolver returns erorr: Please discuss the problem on the forum to diagnose your problem and identify any potential bugs. If there is a repea... Jim Pingle
01:33 PM Bug #7672 (Rejected): Enabling DNS Resolver returns erorr: Hi
I am getting this error when I try to enable DNS Resolver. I haven't been using the DNS Resolver before because... Tino Zidore
02:57 AM Revision 3666d731: Add user option to sort interface names RELENG_2_3: Signed-off-by: Phil Davis <phil@jankaritech.com> Phil Davis

07/03/2017

10:24 PM Revision 7c6f38e4: ipsec, prevent simultaneous/repeated calling of vpn_ipsec_configure() by /etc/rc.newipsecdns: Pi Ba
10:04 PM Feature #6753: Interfaces list order not consistent: It works in master 2.4, but it never got backported to RELENG_2_3 or RELENG_2_3_4.
This was the PR in master: https:... Phillip Davis
12:04 PM Feature #6753: Interfaces list order not consistent: Thank you guys for taking this into account. It works well, much better to use now!
May I ask for one last thing? Th... robi robi
08:15 PM Revision c2530487: bootup, change message to "Checking config backups consistency..." to tell whats taking time, as there is usually little to cleanup involved: Pi Ba
11:19 AM Feature #7671: Gateway Monitoring Via Custom Script or Telnet.: many ISPs in India also do a similar thing and etisalat in UAE do a similar thing, if the bill isnt paid by the 15th ... Bipin Chandra
11:08 AM Feature #7671 (New): Gateway Monitoring Via Custom Script or Telnet.: It would be very helpful to have the ability to monitor gateways via a custom script or telnet. ISPs are beginning to... Bridgetowermedia IT

07/02/2017

04:53 PM pfSense Packages Bug #7670 (Not a Bug): Bind : Serial for slave zone is missing in IHM: Using bind as slave server, the page https://localhost:8443/pkg.php?xml=bind_zones.xml does not display the zone seri... Nicolas Marot

07/01/2017

09:01 PM Revision ce3371fe: cron, fix job removal by index splice and write valid schedules for ramdrive backups: Pi Ba
07:52 PM Bug #7659 (Resolved): Crash "Invalid argument supplied for foreach() in /etc/inc/gwlb.inc on line 1739" when defining a IPv4 or IPv6 IP + adding gateway.: Jim Pingle
07:52 PM Bug #7452 (Resolved): Adding a gateway from interfaces.php does not work: Jim Pingle
05:09 PM Bug #7452: Adding a gateway from interfaces.php does not work: As mentioned by Philip Davis in #7659 the fix for the crash has now been implemented in https://github.com/pfsense/pf... Dan Lundqvist

06/30/2017

01:58 PM pfSense Packages Bug #7669: ACME Certificates: But we need to have a discussion -- on the forum -- about why that happened before it can be called a bug. The upgrad... Jim Pingle
01:11 PM pfSense Packages Bug #7669: ACME Certificates: I get that freeradius isn't related to acme. You just rejected the root of my problem which is no CA key for ACME gen... robbie foster
12:18 PM pfSense Packages Bug #7669 (Rejected): ACME Certificates: Please post on a new forum thread and discuss this before opening a bug report. It's possible something else went wro... Jim Pingle
12:15 PM pfSense Packages Bug #7669 (Rejected): ACME Certificates: version 2.4.0-beta. My letsencrypt certificates are about to expire and my certificates in acme certificates didn't m... robbie foster
10:00 AM Feature #7668: MAC Address spoofing: https://forum.pfsense.org/index.php?topic=132947.msg730892#msg730892 Andy Kniveton
09:56 AM Feature #7668 (Closed): MAC Address spoofing: The wording under the Interface -> General Configuration -> MAC Address box could do with stating that if the interfa... Andy Kniveton
08:41 AM Revision ab95d1fa: Merge remote-tracking branch 'upstream/master': hamnur
08:41 AM Revision 1e0442e0: Activate RADIUS accounting for mobile ipsec if it was selected on the auth server view: hamnur

06/29/2017

04:34 PM Revision 863804a9: Change the way unbound is stopped when the process is being restarted, to give the old process enough time to exit cleanly. Fixes #7326: (cherry picked from commit 38d110824c87ff60c6289c0432d55009586ceee4) Jim Pingle
04:34 PM Revision cad82db7: unbound-control needs to know the config path or else it can't work properly. Fixes #7667: (cherry picked from commit 8a0aa42c197361ebb82387e5bdc8378e5440837f) Jim Pingle
04:34 PM Revision 0577d9df: Change the way unbound is stopped when the process is being restarted, to give the old process enough time to exit cleanly. Fixes #7326: (cherry picked from commit 38d110824c87ff60c6289c0432d55009586ceee4) Jim Pingle
04:34 PM Revision eb95f88c: unbound-control needs to know the config path or else it can't work properly. Fixes #7667: (cherry picked from commit 8a0aa42c197361ebb82387e5bdc8378e5440837f) Jim Pingle
04:32 PM Revision 38d11082: Change the way unbound is stopped when the process is being restarted, to give the old process enough time to exit cleanly. Fixes #7326: Jim Pingle
04:21 PM Revision 8a0aa42c: unbound-control needs to know the config path or else it can't work properly. Fixes #7667: Jim Pingle
02:18 PM Revision 95420116: Add strongswan rekeymargin attribute to vpn ipsec phase1 view: hamnur
02:02 PM Revision 1a96a3a9: Set a value for this variable in each case, so a previous value isn't re-used in a loop.: (cherry picked from commit faab657a256f9385d5e0ffb4084666e760b515a5)
(cherry picked from commit 86ab9eb54b30b591703e7... Jim Pingle
02:02 PM Revision 86ab9eb5: Set a value for this variable in each case, so a previous value isn't re-used in a loop.: (cherry picked from commit faab657a256f9385d5e0ffb4084666e760b515a5) Jim Pingle
02:01 PM Revision faab657a: Set a value for this variable in each case, so a previous value isn't re-used in a loop.: Jim Pingle
12:18 PM Bug #7148 (Duplicate): Spoofed mac addresses on VLAN interfaces apply to the same physical interface: Duplicate of #1337 Jim Pingle
12:09 PM Revision 39eeab69: Enable Python support for Unbound. Implements #7549: Jim Pingle
11:54 AM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: ok thank you for fixing this, I will test the fix as soon as possible on my firewall. Chris Collins
11:43 AM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: Be aware that if you attempt to add a patch for this manually, you also need to apply the patch from #7667 first. Jim Pingle
11:40 AM Bug #7326 (Feedback): Unbound fails to start during rc.wanipchange when using large enough dns lists: Applied in changeset commit:38d110824c87ff60c6289c0432d55009586ceee4. Jim Pingle
11:31 AM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists: Back to me, I have some changes ready that appear to fix this. Jim Pingle
11:40 AM Bug #7667 (Feedback): Calls to unbound-control are missing configuration path so they fail: Applied in changeset commit:8a0aa42c197361ebb82387e5bdc8378e5440837f. Jim Pingle
11:31 AM Bug #7667 (Resolved): Calls to unbound-control are missing configuration path so they fail: Calls to unbound-control inside @do_as_unbound_user()@ in /etc/inc/unbound.inc do not pass the configuration file loc... Jim Pingle

06/28/2017

09:01 PM Revision 626aefbe: Revise Dark gray color code for login page: Steve Beaver
06:48 PM Bug #7659: Crash "Invalid argument supplied for foreach() in /etc/inc/gwlb.inc on line 1739" when defining a IPv4 or IPv6 IP + adding gateway.: Hi Philip,
I updated the PF to 2.4.0-BETA (amd64) built on Wed Jun 28 16:02:43 CDT 2017 today and redid the proced... Dan Lundqvist
01:40 PM Feature #7666: Adding SAN DNS:username to User Certificates that are created via User Manager the same way as it is done via Cert. Manager: Thank you sooo much!
I am constantly sitting on the 2.4 beta edge (currently 2.4.0.b.20170627.1443), just let me now... Reinis Adovics
01:29 PM Feature #7666 (Assigned): Adding SAN DNS:username to User Certificates that are created via User Manager the same way as it is done via Cert. Manager: Current certificate best practices are to have the CN be the first SAN, so it shouldn't be optional. That small initi... Jim Pingle
01:24 PM Feature #7666: Adding SAN DNS:username to User Certificates that are created via User Manager the same way as it is done via Cert. Manager: It could also be made optional in _User Manager_.
By default there is no SAN (just as now), but there would be possi... Reinis Adovics
01:11 PM Feature #7666 (Resolved): Adding SAN DNS:username to User Certificates that are created via User Manager the same way as it is done via Cert. Manager: h1. Adding SAN DNS:username to User Certificates that are created via User Manager same way as it is done via Cert. M... Reinis Adovics
11:41 AM Bug #7665 (New): Host range validation for Aliases is not strict enough: Steps to reproduce:
1. Enter an invalid host range for an IP alias, such as 192.168.1.1-10, and click Save.
The... Re Load
08:09 AM pfSense Packages Todo #7664 (Rejected): https filtering in pfsense without configuring proxy settings in client browser .: What can be done, is already there. Splice to see domains or you have to install CA on clients. Post on the forum, do... Jim Pingle
08:07 AM pfSense Packages Todo #7664 (Rejected): https filtering in pfsense without configuring proxy settings in client browser .: https filtering in pfsense without configuring proxy settings in client web browser .
Ravi Kumar
12:55 AM Bug #7641: Multiple reboots without error message: I checked the freebsd bugreports and found a similar issue but with an amd system. I added a comment there so here is... Philipp Haefelfinger

06/27/2017

03:01 PM Revision a33ece86: Fix missing '>' on /span tag: Steve Beaver
02:56 PM Feature #7383: system_certmanager.php?act=new: Add new select option to sign a CSR: Larry Westfall wrote:
> Build 2.4.0.b.20170527.2111
>
> External generated CSR failed with
> The following input... Joseph McGuirl
02:45 PM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: Bryan Fehl wrote:
> Christoffer Öhman wrote:
> > I can not even use it before it locks.
> >
> > As soon as I try... Christoffer Öhman
10:59 AM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: Christoffer Öhman wrote:
> I can not even use it before it locks.
>
> As soon as I try to change something, it lo... Bryan Fehl
10:45 AM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: I can not even use it before it locks.
As soon as I try to change something, it loads a really long time before it... Christoffer Öhman
02:04 PM Bug #7663 (Closed): Persistent CARP Maintenance Mode doesn't work right in upgrade from 2.3.3-RELEASE-p1 to 2.3.4: Upgrading the OS to 2.3.4 from 2.3.3-RELEASE-p1 with Persistent CARP Maintenance Mode selected, the OS rebooted with ... Whit Blauvelt
12:28 PM Revision 79cd920c: Add "Dark Gray" login page color: Steve Beaver
10:40 AM Revision 50153f21: Update translation files: Renato Botelho
10:37 AM Revision 651ad331: Regenerate pot: Renato Botelho
10:25 AM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: As of the June 2, 2017 build, it does not look like it. Receiving over PPPoE is still limited to one queue. Scott Baugher
10:23 AM Bug #7604: Bug #6594 is not resolved: Waiting for Internet connection to update pkg metadata and finish package reinstallation: This is happening to me too, have a fresh 2.3.4 install. I will restore config from another 2.3.4 install. Sure enoug... Adam Piasecki
10:02 AM Bug #7662 (Resolved): Missing close span in login page 2.4.0-BETA: Fixed. Thanks for pointing that out. Anonymous
09:43 AM Bug #7662 (Resolved): Missing close span in login page 2.4.0-BETA: Using 2.4.0-BETA, the login page miss a close span
https://github.com/pfsense/pfsense/blob/master/src/etc/inc/authgu... d j
06:38 AM Bug #2218: CARP VIPs can become master too early at boot time: I didn't close the ticket and say it wouldn't be addressed eventually. When this old ticket was opened, maintenance m... Jim Pingle
04:01 AM Bug #2218: CARP VIPs can become master too early at boot time: Jim, what about if you have a power failure on the master firewall (and you have each firewall connected to different... Seb A

06/26/2017

09:53 PM Revision 418fdfb3: php-fpm, add status page for local usage from console/shell, this provides a way to check what scripts are currently running in the php-fpm processes.: For example the following can be executed from the local shell:
` fetch --no-verify-hostname --no-verify-peer "https:... Pi Ba
05:53 PM Bug #2218: CARP VIPs can become master too early at boot time: While true, it'll still fail at some point. I'm not sure this can be reasonably described as a non-issue with such se... Louis Hather
12:47 PM Bug #2218: CARP VIPs can become master too early at boot time: Then focus on fixing the source of the crashes if they happen that often -- The avoidable cases are already avoidable. Jim Pingle
12:39 PM Bug #2218: CARP VIPs can become master too early at boot time: Sure, but I don't reboot my firewalls - they crash. See the issue? Louis Hather
12:05 PM Bug #2218: CARP VIPs can become master too early at boot time: It's a non-issue if you put a node into maintenance mode from Status > CARP before updating or rebooting. Jim Pingle
12:03 PM Bug #2218: CARP VIPs can become master too early at boot time: This is still an issue as of 2.3.4. Louis Hather
01:16 PM Revision 68c614a7: Update diag_gmirror.php: Fix typo
(cherry picked from commit 55588e0ce32865568522e0afd0b577fdfabd3b74) BBcan177 .
01:16 PM Revision 882bb24e: Update diag_gmirror.php: Fix typo
(cherry picked from commit 55588e0ce32865568522e0afd0b577fdfabd3b74) BBcan177 .
01:16 PM Revision b720d27a: Merge pull request #3767 from BBcan177/patch-1: Renato Botelho
01:15 PM Revision 4fa10fc8: Merge pull request #3764 from phil-davis/gwlb-issue-7659: Renato Botelho
01:12 PM Revision f3f285d9: Issue #7659 foreach warning on adding gateway RELENG_2_3: Signed-off-by: Phil Davis <phil@jankaritech.com>
(cherry picked from commit 5c88dacbc259c668899d8127e9ad1ec74d12e565) Phillip Davis
01:12 PM Revision 02b661c8: Merge pull request #3766 from phil-davis/gwbl-issue-7659-RELENG_2_3_4: Renato Botelho
11:42 AM pfSense Packages Bug #7661 (Resolved): pfBlockerNG doesn't make a rule for Antarctica: If Antarctica entries with a count > 0 are added to the pfBlockerNG GeoIP, there won't be an Antarctica rule created.... Stuart Wyatt
10:27 AM pfSense Packages Todo #7658: BGP support in Quagga: OK done. Please see https://redmine.pfsense.org/issues/7660 Chris Zimman
10:25 AM pfSense Packages Todo #7658: BGP support in Quagga: This issue is for BGP only, not other features. Scope creep isn't helpful, that needs to be in a separate feature req... Jim Pingle
10:22 AM pfSense Packages Todo #7658: BGP support in Quagga: Right now, in the Quagga GUI, there's a single entry for a CARP address to monitor. If you're adding better GUI supp... Chris Zimman
10:11 AM pfSense Packages Todo #7658: BGP support in Quagga: That is unrelated to the topic on this ticket. It would be a separate feature request. Jim Pingle
10:10 AM pfSense Packages Todo #7658: BGP support in Quagga: We need to be able to monitor more than one CARP IP for failover. Our config has CARP on the inbound and outbound si... Chris Zimman
10:27 AM pfSense Packages Feature #7660 (Rejected): Please add the ability to monitor more than one CARP address to the Quagga GUI support: We need to be able to monitor more than one CARP IP for failover. Our config has CARP on the inbound and outbound sid... Chris Zimman
03:13 AM pfSense Packages Feature #7655: Captive portal and squid non transparent: I have readed all about that link and sorry, but i don't understand anything ?
Jose Perez

06/25/2017

05:58 PM Revision 55588e0c: Update diag_gmirror.php: Fix typo BBcan177 .
09:45 AM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: Scott Baugher wrote:
> I'm using the nightly builds (2.4.0.b.20170522.1522 as of right now). I also use gigabit fib... Julien REVERT
07:39 AM Bug #3710: Adding static DHCP leases doesn't cause BIND zones to update: David Horn wrote:
> Tried disabling config knob, enabling, etc. Works well at this point for static and dynamic DHC... Kill Bill
02:42 AM Revision 5c88dacb: Issue #7659 foreach warning on adding gateway RELENG_2_3: Signed-off-by: Phil Davis <phil@jankaritech.com> Phillip Davis
02:20 AM Revision d540ed34: Issue #7659 foreach warning on adding gateway: Signed-off-by: Phil Davis <phil@jankaritech.com> Phillip Davis

06/24/2017

09:32 PM Bug #7659: Crash "Invalid argument supplied for foreach() in /etc/inc/gwlb.inc on line 1739" when defining a IPv4 or IPv6 IP + adding gateway.: See PR https://github.com/pfsense/pfsense/pull/3764 Phillip Davis
10:54 AM Bug #7659 (Resolved): Crash "Invalid argument supplied for foreach() in /etc/inc/gwlb.inc on line 1739" when defining a IPv4 or IPv6 IP + adding gateway.: RUNNING ON: *pfSense-CE-2.4.0-BETA-amd64-20170623-1439.iso* fresh installed today 24/6.2017 in VirtualBox and no othe... Dan Lundqvist
06:09 PM Revision 29fa6f0f: gateway monitoring, give apinger some time to properly 'initialize' before using its results: Pi Ba
05:25 PM Revision 48196bf0: rc.gateway_alarm, add syslog message that shows that a alarm was raised/cleared and what the parameters were: This helps clarify why sometimes services are restarted when reading through the syslogs. Pi Ba
05:11 PM Bug #3710: Adding static DHCP leases doesn't cause BIND zones to update: I tested this fix successfully against the 2.4-BETA snapshot: 2.4.0-BETA (amd64) built on Sat May 06 22:51:06 CDT 20... David Horn
03:03 PM Bug #6099: igmpproxy does not recognize upstream interface: Jeremy Lewis wrote:
> The way I managed to get it working reliably was to turn off the IGMP snooping on my managed s... Mr B
11:15 AM Bug #7501: Interfaces statistics widget GUI + JSON (2 issues): I have tested the #7501 on fresh "pfSense-CE-2.4.0-BETA-amd64-20170623-1439.iso" install in Virtualbox on amd64
addi... Dan Lundqvist
10:34 AM Bug #7452: Adding a gateway from interfaces.php does not work: Hello,
I have tested both IPv4 and IPv6 PR corrections running on fresh "pfSense-CE-2.4.0-BETA-amd64-20170623-1439... Dan Lundqvist
10:14 AM pfSense Packages Todo #7658: BGP support in Quagga: There is a PR to support using it via raw config, but no GUI yet.
https://github.com/pfsense/FreeBSD-ports/pull/356 Jim Pingle
10:07 AM pfSense Packages Todo #7658 (Resolved): BGP support in Quagga: OpenBGPD pkg on pfsense doesn't seem to be up to date for years (since 2012 probably) - a lot of recently (and may be... Vladimir Lind
07:40 AM pfSense Packages Feature #7657: OpenBGPD local-as feature in neighbors context: UPD: Looks like some commands which are not present in webgui do work when pasting directly in bgp neighbor context i... Vladimir Lind
02:26 AM pfSense Packages Feature #7657 (Rejected): OpenBGPD local-as feature in neighbors context: Please add "local-as" feature in OpenBGPD webgui "neighbors" tab -> "Neighbor Parameters". This command is described ... Vladimir Lind

06/23/2017

05:28 PM Revision 4eb92692: Respect GUI Login autocomplete preference setting: Steve Beaver
01:16 PM Revision b3875714: Fix some other outdated links: Jim Pingle
12:58 PM Revision 58d471e9: Restyle autocomplete on webkit browsers to remove the yellow background used by Chrome: Steve Beaver
12:46 PM Revision 81b22639: Correct intenting: Steve Beaver
12:42 PM Revision 10ba62c2: Code style cleanup: Steve Beaver
12:39 PM Revision e7908ab5: Fix interface groups link: (cherry picked from commit c0dd390b666d86b6b9ea61438c95b1370adda052) Jim Pingle
12:39 PM Revision c0dd390b: Fix interface groups link: Jim Pingle
12:38 PM Revision 85180bd6: Fix interface groups link.: Jim Pingle
12:32 PM Bug #7645 (Resolved): SG-1000 VLAN interfaces do not work without promisc mode: Fixed in current snapshots Jim Pingle
12:25 PM Revision 44a94b03: Minor positioning tweak to login page: Steve Beaver
11:32 AM pfSense Packages Bug #6129: zabbix agent/proxy 2.4 not ported to pfSense 2.3: Pim Janssen wrote:
> 4.0 LTS Will be added in september 2017. I think having only LTS releases would be enough.
Y... James Lavoy
11:27 AM pfSense Packages Bug #6129: zabbix agent/proxy 2.4 not ported to pfSense 2.3: 4.0 LTS Will be added in september 2017. I think having only LTS releases would be enough. Pim Janssen
11:24 AM pfSense Packages Bug #6129: zabbix agent/proxy 2.4 not ported to pfSense 2.3: James Lavoy wrote:
> Therefore this change has caused pfSense to be unable to be used as a proxy if someone is using... James Lavoy
11:20 AM pfSense Packages Bug #6129: zabbix agent/proxy 2.4 not ported to pfSense 2.3: I apologize, in the future I will be sure to track every version of software released everywhere and update my bug re... James Lavoy
11:18 AM pfSense Packages Bug #6129: zabbix agent/proxy 2.4 not ported to pfSense 2.3: Information in a ticket needs to be precise and specific no matter when it's read. It is unreasonable to expect anyon... Jim Pingle
11:14 AM pfSense Packages Bug #6129: zabbix agent/proxy 2.4 not ported to pfSense 2.3: Jim Pingle wrote:
> If that is the case, it was not stated clearly anywhere on the problem description or even in th... James Lavoy
11:06 AM pfSense Packages Bug #6129 (New): zabbix agent/proxy 2.4 not ported to pfSense 2.3: If that is the case, it was not stated clearly anywhere on the problem description or even in the comments. Maybe if ... Jim Pingle
10:52 AM pfSense Packages Bug #6129: zabbix agent/proxy 2.4 not ported to pfSense 2.3: @Jim
The issue is here because the 3.0 proxy is NOT backwards compatible. For that reason it would be good to have a... Pim Janssen
10:44 AM pfSense Packages Bug #6129 (Resolved): zabbix agent/proxy 2.4 not ported to pfSense 2.3: Jim Pingle
10:26 AM pfSense Packages Bug #6129: zabbix agent/proxy 2.4 not ported to pfSense 2.3: Looks like a done case.
Currently zabbix agent and proxy 3.0 LTS is available in pfsense-2.3 Heðin Ejdesgaard Møller
10:57 AM Feature #5825: Allow EAP-RADIUS for authentication servers: Related: https://redmine.pfsense.org/issues/7111
Although it's not EAP, MSCHAPv2 is better than PAP Joe McNolan

06/22/2017

06:13 PM Bug #6099: igmpproxy does not recognize upstream interface: The way I managed to get it working reliably was to turn off the IGMP snooping on my managed switch, then the timing ... Jeremy Lewis
04:18 PM Bug #6099: igmpproxy does not recognize upstream interface: Hi,
This still isn't working for me on 2.4 - 2.4.0.b.20170622.0342 - keep getting the cut off after 4 minutes.
... Mr B
06:01 PM Feature #1189: Gateway: Multiple monitor ips: Hadn't noticed this issue before...
With regard to dpinger itself, please see #4354#note-18
Denny Page
08:30 AM Feature #1189: Gateway: Multiple monitor ips: So I put in a feature request @ the dpinger github here: https://github.com/dennypage/dpinger/issues/24
Here is wh... Web Dawg
10:28 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: Dpinger using multiple targets has been discussed. See updates 18-21. Denny Page
08:30 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: So I put in a feature request @ the dpinger github here: https://github.com/dennypage/dpinger/issues/24
Here is w... Web Dawg
05:46 AM Bug #7499 (Resolved): ipsec.widget.php: Tunnel Status incorrect: Jim Pingle
04:49 AM Bug #7499: ipsec.widget.php: Tunnel Status incorrect: Seems fixed. Working good for on
2.4.0-BETA (amd64)
built on Thu Jun 22 03:42:40 CDT 2017
Thanks. Hugo Sousa

06/21/2017

07:08 PM Bug #7656 (Closed): TypeError: n is undefined JavaScript error in status_monitoring.php: I'm using 2.3.4-RELEASE (i386) and when I open the Staus->Monitoring page, I get a JavaScript error (below). It appe... Blinking Man
05:56 PM Revision 751f2a7f: Add more checks to eliminate empty config tags in package settings. Fixes #7624: Jim Pingle
04:18 PM pfSense Packages Feature #7655: Captive portal and squid non transparent: Kindly read https://redmine.pfsense.org/issues/5594#note-11. Kill Bill
01:39 AM pfSense Packages Feature #7655 (Bogus): Captive portal and squid non transparent: Hi.
When we configure squid in non-transparent mode and in the browser we configure the proxy address and the port, ... Jose Perez
02:20 PM Revision f1db0b56: Use recently added hwaddr field to restore original MAC address: Renato Botelho
02:19 PM Revision f660ac5b: Revert "Use specific branch for gnid": It's not necessary anymore after 97b5bfe35a
This reverts commit 97b5bfe35a46651762f9037b113ed72de7fc1c27. Renato Botelho
01:59 PM Revision 8f144450: Removed htmlspecialchars when loading leases from config: (cherry picked from commit 2322e9f3cb6dea9203d63a17c6a27de3a2c6b8bc)
(cherry picked from commit b4ff414aef9f43dce093... Yoann Lecuyer
01:56 PM Revision aaf137f8: Add missing break for cloudflare case: (cherry picked from commit d900381c9384676462c91c0b2e7e59ec42723237)
(cherry picked from commit 2c4865e3fa05cf589891... Phillip Davis
01:56 PM Revision a5ea2254: Integrate various cloudflare changes: (cherry picked from commit 5ce6ce4b1ad850e70d5a2fe218317b1a1b545907)
(cherry picked from commit 543ea703f2dd41e53a74... Phillip Davis
01:55 PM Revision 4a5faec6: Add more checks to eliminate empty config tags in package settings. Fixes #7624: (cherry picked from commit de147d3d614c877df2022d85d37256a93047764c) Jim Pingle
01:55 PM Revision cab08bfb: pkg_edit, fix empty config tag check: (cherry picked from commit 6bf2a65086f7664c870a9565b70c39655c2a3dcf)
(cherry picked from commit eb65e543b4d04b29ee494... Pi Ba
01:55 PM Revision b66865b5: Change paid support help link to new support URL: (cherry picked from commit 16bf962333c3897170defb6bf95a2d69c7fdf506) Steve Beaver
01:54 PM Revision 7e78fa71: virtualips, ability to sort the table: (cherry picked from commit 77c53e65fb7d4f40baec5c01a796a637c9cc5034)
(cherry picked from commit 3af287f33a0ccf9de34e6... Pi Ba
01:54 PM Revision 254fb5b4: Diag DNS disable Add Alias button when host field is changed: (cherry picked from commit 45eafdbd7b958bd4f9459d90a6a63ff8202eec3b)
(cherry picked from commit 2e294992e4151a80a7d57... Phillip Davis
01:54 PM Revision 137196e7: Diag DNS fix update alias button text after add alias: 1) Lookup a name with Diag DNS
2) Press "Add Alias"
The alias is added, but the button still says "Add Alias".
Actua... Phillip Davis
01:54 PM Revision d9f7babc: Diag DNS do not show Add Alias if no priv to add alais: (cherry picked from commit 7fcccc8f09afd7f4a524ff598b43e15d678905eb)
(cherry picked from commit f54a3ede59ee819500f27... Phillip Davis
01:54 PM Revision 7de0b827: Diag DNS do not create an empty alias if name does not resolve: (cherry picked from commit f445385114c43cb46b8188a7cea425648f7647f2)
(cherry picked from commit 14e90f2e5d34ca34cf226... Phillip Davis
01:53 PM Revision 1965f662: Remove stray debug-code (/tmp/script): (cherry picked from commit a29361a2d94eed754255e75d63d511e7889d6c9f)
(cherry picked from commit 12ca33f4dc915c37eeee4... Lorenz Schori
01:53 PM Revision 314e05bc: Fix net.inet.ip.random_id tunable description (Bug #6087): (cherry picked from commit 77408e612de12311d9fd517b2de2de586f4c0ddb)
(cherry picked from commit df0b717d364ac3743ae6... Doktor Notor
01:53 PM Revision f2c3dceb: Fix APU2 with coreboot v4.x detection: See https://forum.pfsense.org/index.php?topic=106444.msg716558#msg716558
(cherry picked from commit 9457d0f616506bf0e... Doktor Notor
01:52 PM Revision 1ea6736f: Make consistent rule information section: (cherry picked from commit f0dc8b688c2b7d973bc18769579ee8cc6d3d2dad)
(cherry picked from commit 4c4504b1e785396d92be8... Phillip Davis
01:51 PM Revision f4f220a7: Use is_numeric() to make sure $prefix is not 0: Jim Pingle
01:50 PM Revision 317d00df: Update interfaces.inc: Not defined pid file on starting choparp. The pfSense may not kill the program to reconfiguration.
(cherry picked fro... aLexander Panfilov
01:50 PM Revision a0a8590c: Request PD even if no interfaces are set to track6 (Bug #4544): See https://redmine.pfsense.org/issues/4544#note-4
(cherry picked from commit b0837cebf9836c4cdd5873b3e463f1afb840381... Doktor Notor
01:50 PM Revision 9d0d51e5: Update dyndns.class: (cherry picked from commit 61c813f96de90e07bb63075847dabc041a5560b8)
(cherry picked from commit 0673b7b8eccfdd1d7aa8... xygrec
01:06 PM Bug #7638 (Resolved): Carp Status incorrect - visual bug in webconfigurator interface: Fixed Jim Pingle
10:41 AM Bug #4544 (Resolved): PD not requested if no interfaces set to track6: Jim Pingle
03:13 AM Revision 980af015: Add support to CESA crypto accelerator in pfSense GUI.: Luiz Souza

06/20/2017

06:49 PM Revision ee7bdbe6: Use correct wording for menu entry "Reset All States" in "System/Advanced Network": Fernsehkind
06:42 PM Revision 8e7d47fe: Use correct wording for log output when IP address has changed and states are killed accordingly: Fernsehkind
05:20 PM Revision 91614f03: Update translation files: Renato Botelho
05:17 PM Revision 1e161fd0: Regenerate pot: Renato Botelho
02:49 PM Revision ff4034ed: Match whitespace after $vhid when checking CARP status to avoid partial matches. Fixes #7638: While here, fix variable references with braces and combine the two calls to grep into a single pattern.
(cherry pic... Jim Pingle
02:49 PM Revision 8cb09b29: Match whitespace after $vhid when checking CARP status to avoid partial matches. Fixes #7638: While here, fix variable references with braces and combine the two calls to grep into a single pattern.
(cherry pic... Jim Pingle
02:48 PM Revision fd4e14b8: Match whitespace after $vhid when checking CARP status to avoid partial matches. Fixes #7638: While here, fix variable references with braces and combine the two calls to grep into a single pattern. Jim Pingle
02:24 PM Revision 07ef7e79: Merge pull request #3756 from PiBa-NL/20170613-wol: Steve Beaver
02:14 PM Bug #7642 (Resolved): Redact BGP keying from status output: Works
Jim Pingle
02:08 PM pfSense Packages Bug #7524 (Resolved): Squid MITM/SSL-Bump broken with Chrome due to missing SAN in generated certificates: This works for me now. I can browse secure sites through squid HTTPS MITM with Chrome and there are no certificate er... Jim Pingle
01:46 PM Revision 8046f683: Merge pull request #3745 from stilez/patch-64: Steve Beaver
01:30 PM Revision 097efc7d: Merge pull request #3638 from doktornotor/patch-25: Steve Beaver
01:29 PM Revision c8fa7e0a: Merge pull request #3631 from doktornotor/patch-20: Steve Beaver
01:28 PM Revision 0e4500e7: Fix spelling in comment: Steve Beaver
12:06 PM Revision ef1e838b: Use more informative IDs in login page HTML: Steve Beaver
11:53 AM Revision 7f4b697f: Don't display login CSS files in theme list: Steve Beaver
10:00 AM Bug #7638 (Feedback): Carp Status incorrect - visual bug in webconfigurator interface: Applied in changeset commit:fd4e14b8853e7a30ee23532d686270cb40d84d03. Jim Pingle
08:07 AM Bug #7649: pkg_edit.php - The last row cannot be deleted with ntopng.xml: Works (just edited manually for a quick test). Kill Bill
07:36 AM Bug #7649 (Feedback): pkg_edit.php - The last row cannot be deleted with ntopng.xml: New version of ntopng with a renamed ID is building now. Jim Pingle
07:20 AM pfSense Packages Bug #7654 (Resolved): Can't use a LDAP search filter containing an accent: Hi,
I use a virtual machine with pfSense 2.3.4 (amd64) with Squid package v0.4.37 (including squid 3.5.26).
I h... mr xhark
04:34 AM Feature #7598: Static IPv6 using IPv4 PPPoE as parent interface: PR issued 3761 Martin Wasley
04:08 AM Bug #7634: When restoring from USB during install, if the config file contains RRD data, the final config.xml on the system will also contain all the RRD infomation: OK, I vote for it to be re-implemented in future versions, this is a very handy feature to have. robi robi

06/19/2017

08:46 PM Revision bb61608d: Added orange login page choice: Steve Beaver
08:18 PM Revision 05ae8524: Correct spacing for extra small view portal (phone): Steve Beaver
06:46 PM Revision 2d933f5a: Restore MITM warning: Steve Beaver
06:08 PM Revision 377f2570: Include host name if so configured: Steve Beaver
05:46 PM Revision f902a15c: Restore cookie warning via pop-up: Steve Beaver
05:19 PM Revision 1eca4f60: Ignore loginpage color values from previous version that used the file name: Steve Beaver
05:15 PM Revision d58a7378: Improved login page graphic: Steve Beaver
03:49 PM Bug #7634: When restoring from USB during install, if the config file contains RRD data, the final config.xml on the system will also contain all the RRD infomation: robi robi wrote:
> Is this feature left out intentionally from the future versions?
The installer was changed com... Jim Pingle
03:42 PM Bug #7634: When restoring from USB during install, if the config file contains RRD data, the final config.xml on the system will also contain all the RRD infomation: Is this feature left out intentionally from the future versions?
It's very handy. It allowed me to restore a firew... robi robi
01:14 PM Bug #7634: When restoring from USB during install, if the config file contains RRD data, the final config.xml on the system will also contain all the RRD infomation: Looks like there isn't any code to handle restoring RRD in that PFI path, only when diag_backup.php is used.
The f... Jim Pingle
02:36 PM pfSense Packages Bug #7524: Squid MITM/SSL-Bump broken with Chrome due to missing SAN in generated certificates: Packages are up for 2.4 and 2.3.4, 2.3.x snapshots will be up next time a snapshot runs. Test and let us know if it i... Jim Pingle
01:58 PM pfSense Packages Bug #7524 (Feedback): Squid MITM/SSL-Bump broken with Chrome due to missing SAN in generated certificates: Jim Pingle
01:54 PM pfSense Packages Bug #7524: Squid MITM/SSL-Bump broken with Chrome due to missing SAN in generated certificates: I'm getting 3.5.26 pulled into the package branches right now, should be building and up soon. Jim Pingle
02:01 PM Bug #7650 (Resolved): vendor/filebrowser/browser.php: Filename parameter is unencoded which can lead to a potential XSS: Fixed Jim Pingle
02:00 PM Bug #7651 (Resolved): firewall_nat_edit.php: dst_change JS can cause XSS with an invalid interface name: Fixed Jim Pingle
01:59 PM Bug #7652 (Resolved): diag_tables.php: 'type' parameter can lead to XSS: Fixed Jim Pingle
01:53 PM Bug #7649: pkg_edit.php - The last row cannot be deleted with ntopng.xml: It doesn't like that the element id has "delete" in it and it isn't part of a repeatable/rowhelper control.
If you... Jim Pingle
07:22 AM Feature #7598: Static IPv6 using IPv4 PPPoE as parent interface: No it's a patch in my repo. I wanted it tested before sending it on to the main repo. If you think it will be a usefu... Martin Wasley
07:17 AM Feature #7598: Static IPv6 using IPv4 PPPoE as parent interface: Is there a PR for that patch? I'm not seeing anything in the repo currently with that hash/id. Jim Pingle
06:17 AM Feature #7598: Static IPv6 using IPv4 PPPoE as parent interface: Appears it will never work for Greg as his ISP requires he must send a dhcp6 request.
For those of us who can use... Martin Wasley
07:16 AM Bug #5993 (Resolved): dhcp6c not started until an RA received: Jim Pingle
06:13 AM Bug #5993: dhcp6c not started until an RA received: This one should be closed Jim, it's been rock solid for months now.
Fixed - Resolved. Martin Wasley
06:29 AM Bug #7653 (Closed): 3gstats.php holding open the cuaU0.3 device: if the usb 3g/4g modem is unplugged then reconnected or itself rebooted (via AT commands) it comes up as ttyU1 (aka c... dean hamstead

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

07/18/2017

07/17/2017

07/16/2017

07/15/2017

07/14/2017

07/13/2017

07/12/2017

07/11/2017

07/10/2017

07/09/2017

07/08/2017

07/07/2017

07/06/2017

07/05/2017

07/04/2017

07/03/2017

07/02/2017

07/01/2017

06/30/2017

06/29/2017

06/28/2017

06/27/2017

06/26/2017

06/25/2017

06/24/2017

06/23/2017

06/22/2017

06/21/2017

06/20/2017

06/19/2017