Activity
From 06/24/2017 to 07/23/2017
07/22/2017
-
07:26 AM Feature #7717 (Closed): DNS Resolver update to Unbound-1.6.4 to get RPZ / fastrpz support
- We'll pick it up automatically once it hits the proper ports branches used by 2.3.x and 2.4.x.
-
06:26 AM Feature #7717 (Closed): DNS Resolver update to Unbound-1.6.4 to get RPZ / fastrpz support
- We would like to be able to use Reverse Policy Zones (RPZ) using the "fastrpz" patch which Unbound has included into ...
07/21/2017
-
07:08 PM pfSense Packages Bug #7716 (Resolved): Suricata - Barnyard2 webui configuration updates result in base64-encoded value written to the config for the password
- Any changes to the Suricata barnyard configuration page requires that you update the password as well, otherwise the ...
-
11:47 AM Bug #7715: Update from 2.3.4 to -p1 mangled many config entries including users, patches, other config
- ok
-
- Please discuss a problem such as this on the forum or mailing list rather than jumping right to assuming it's a bug a...
-
- Logs
-
- I updated my test router 2.3.4 to 2.3.4-p1 and a load of config got wiped out in the process, including users reset a...
-
- Note: The time itself is correctly fetched from the firewall, but is being adjusted to the wrong time _zone_ when dis...
-
09:45 AM Bug #7714 (Resolved): NTP Widget Time Display
- NTP Widget on 2.3.4-RELEASE-p1 is showing a time other than the received NTP time. Timezone is set to Etc/UTC as per ...
-
- Start a new bug report for that. It may be using the local time _zone_ incorrectly but it is not using the local cloc...
-
- Jim Pingle wrote:
> The fix was in 2.3.4 and any release after that.
>
> It is not pulling local time. I just con... -
- The fix was in 2.3.4 and any release after that.
It is not pulling local time. I just confirmed it by loading the ... -
- This appears to still be pulling local time in 2.3.4-RELEASE-p1.
Was this fix part of 2.3.4 or am I misreading somet... -
- Please discuss the problem on the forum before opening a bug report.
It is highly unlikely that we will make speci... -
04:37 AM Bug #7713: APU2C4 + TRAFFIC SHAPER CBQ = KERNEL PANIC
- The issue occur with a simple install with at least 1 vlan (vlan number2).
Without VLAN the issue doesn't occur.
... -
- Hardware APU2C4
Pfsense 2.3.4_1
Coreboot 4.0.7
As soon as you activated traffic shaper with CBQ, there is a kern... -
04:19 AM Bug #4310: Limiters + HA results in hangs on secondary
- For those still with problems you can use limiters in HA with any version w/out kernel panic but for that you need ad...
07/20/2017
-
- Superseded by #7383
-
06:42 PM Feature #7712: Support NPt with Dynamic WAN Interfaces
- Jim Pingle wrote:
> Duplicate of #4881
Oops. My apologies, my search was incomplete. -
- Duplicate of #4881
-
- Currently, using Multi-WAN with IPv6 requires a static IPv6 address on all WAN connections. Mass market cable and DS...
-
- Ok, I will do more testing and keep you inform.
Thanks. -
- Like most other x86/x86-64 hardware, while it may work, we do not specifically test on that platform to ensure compat...
-
- Ok but APUC4 is a compatible pfsense hardware no?
-
- Please discuss the problem on the forum before opening a bug report.
It's entirely possible that even if it isn't ... -
- The stability of the APU2C4 was perfect for 5 months before traffic shapper testing...
Same issue with 3 other APU... -
- Hardware APU2C4 with SSD 16Gb
As soon as I configure traffic shapper (wizard or not), my pfsense is completely stu... -
04:23 AM Bug #7709: raspberry pi or anything that can emulate ethernet gadget over usb mac id not read
- i had filed a bug request on bugzilla on freebsd site and the devs there provided a patch to test but i have no clue ...
07/19/2017
-
- I still haven't been able to replicate the original problem here, but unbound appears to be restarting OK on WAN fail...
-
- Works. States get killed, client cannot make new connections.
-
- well the mac spoofing works in gui but the base mac id keeps changing so pfsense doesnt query for the new mac id when...
-
- That would be the same as setting a MAC address to spoof on the interface configuration in the GUI. If that doesn't w...
-
- there is a way mentioned here https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=174464
no idea if this can be implem... -
- Works!
07/18/2017
-
09:47 PM Bug #7697: NAT port forward rule using "WAN address" doesn't work as expected if router does not acquire a WAN address on startup
- I'll try to test it out in the next couple of weeks hopefully. Thanks for the fix.
-
01:49 PM Bug #7710 (Resolved): IGMP Proxy
- IGMP Proxy failed on SG-1000, its been working O.K and for some reason the recent updates have caused it to fail agai...
-
- If it's a FreeBSD bug, which it appears to be, report it upstream to FreeBSD. Once they fix it, the change will trick...
-
- based on the discussion here
https://forum.pfsense.org/index.php?topic=133695.0
it seems like a freebsd issue whe... -
- Applied in changeset commit:e5aeaeb6a8b46c9532119285630f4e42d0e79b24.
-
- The new bsdinstall installer does not have an option to recover an existing config.xml from a previous installation.
... -
09:56 AM Feature #7707 (Resolved): Captive Portal - Radius Time out configuration field
- Captive Portal Radius Server connection function has a hardcoded timeout value of '3' there are instances where it i...
07/17/2017
-
- In some cases it would be handy to have the certificate data written out to the filesystem so that action scripts cou...
07/16/2017
-
10:04 AM Feature #7705 (Resolved): Support dynamic interface address for 1:1 NAT
- Currently, in the 1:1 NAT UI, the "External subnet IP" field cannot be populated with options such as "WAN address" o...
-
- If you set "Any" as the Destination port range for a Port Forward TCP or UDP entry, upon saving the new rule you get ...
07/15/2017
-
03:44 PM Bug #7702: Unattended Reboot Failing
- OK, NP - thought it was best to capture ... I admit, not sure of the link between the forum and redmine. Sorry!
FY... -
- This is not happening on any systems here. Please do not open bug reports until the problems have been properly evalu...
-
- Hi,
I have been seeing this in recent v2.4 builds, thinking it's something that should be fixed. When I reboot (or... -
- This is a topic for a forum discussion, not a bug report. This is not a discussion or question/answer support platform.
-
- Hi,
This may be me, but just in case - likely good to log it, in case it's not.
Trying to use HW acceleration i... -
- OK, thanks! Wasn't sure if that state was equal to closed or not. Sorry for the extra "traffic".
-
02:10 PM Bug #4695: TAP (OpenVPN) Traffic Blocked
- It's already closed: "Not a bug".
Thanks. -
- Agreed, resolved - close this out (I don't know how, sorry!).
-
- Hi,
It may just be me (sorry if it is!), but similar to this thread ... I'm finding that some custom shell command... -
- Hi,
As captured in this thread - it seems that recently Port Forwarding / NAT is broken, when using aliases (works... -
- Working correctly in v2.4.0, so this one should be closed - I'd close it, not sure how ... :(.
Thanks! -
- Hi,
Just a thought, but - it would be nice to be able to set this option in Client Export, not just in the server ... -
- This has already been fixed, the 2.3.4-p1 release is about to come out and includes this correction.
https://doc.pfs... -
06:13 AM Bug #7698 (Duplicate): Umlauts are no longer displayed properly
- In the newest Version on the DHCP Status Page (/status_dhcp_leases.php) Umlauts in the Description Field are no longe...
07/14/2017
-
05:40 PM
Bug #7692: andwidthd date on daily report incorrect.
- I have created a report with bandwidthd here:
https://sourceforge.net/p/bandwidthd/bugs/50/ -
- I don't have it installed on either of my SG-1000s right now. It's possible there is an ARM-specific bug that affects...
-
02:58 PM
Bug #7692: andwidthd date on daily report incorrect.
- It is not the browser cache, the date seems to change on every graph generation, and the software was installed just ...
-
- Most likely something is cached in your browser. Try ctrl+F5 or shift+click reload. It is fine on all of my systems w...
-
07:04 AM
Bug #7692 (Not a Bug): andwidthd date on daily report incorrect.
- Bandwidthd shows incorrect date (changing between graphs) in daily report.
See attachment for screenshot.
Env... -
04:28 PM Bug #7697: NAT port forward rule using "WAN address" doesn't work as expected if router does not acquire a WAN address on startup
- The pull-request was pulled yesterday. https://github.com/pfsense/pfsense/commit/40c09b6dadb04928dc9a279969193b620ff1...
-
- This forum post:
https://forum.pfsense.org/index.php?topic=127585.msg733528#msg733528
Describes what I'm seeing:
<... -
03:25 PM Bug #4479: Firewall rules won't match GRE interface after applying IPSEC transport encryption on GRE tunnel
- I don't see any target version on this bug. Is this being worked on? Any chances this could be fixed for 2.4?
-
- Looks good, multiple confirmations that it works.
-
- The contents of the password field are not being passed properly to the telegraf.conf file. The password is being en...
-
02:59 PM Bug #6529: dhcp6c fails to start with track6 on a bridge interface
- I am adding a sighting. My logs are as follows:
@Jul 12 06:23:21 pfSense dhcp6c[17300]: /var/etc/dhcp6c_wan.conf:13 ... -
- Applied in changeset commit:782453b4dbb77e5bc97a43f56b95a006c5434d65.
-
- Moving the sshlockout portion to #7695
-
- GUI portion is done. It also kills states if someone tries to access the GUI while in the table, so if it isn't feasi...
-
- The way that browsers and ssh clients work, it may be possible to exceed brute force protection limits enforced by ss...
07/13/2017
-
06:09 PM pfSense Packages Feature #7691 (New): Allow for custom icap services for squid
- We would like to integrate additional icap services into the pfsense squid configuration, but there is no way add the...
-
- This could help quite a bit imho :) https://github.com/pfsense/pfsense/pull/3768
-
01:32 PM Bug #7690 (Resolved): System Domain Local Zone Type option Redirect is broken
- Works
-
- Applied in changeset commit:021332fa29f0c08bff833ce1c7ddcb9ac9a769b1.
-
- Still needs the fix ported to 2.3.x, it did not cherry-pick cleanly.
-
- Applied in changeset commit:4541f84d12c86775022b0e49d527d6f4f9a6911f.
-
11:50 AM Bug #6318: IPsec dashboard widget causes GUI failure
- I think this bug's priority should be raised since it also breaks openvpn functionality.
-
07:14 AM Bug #5319: Error message "No config named" in charon daemon
- This bug is also present in 2.3.4, I have to kill the charon process every 2-3 days to keep the problem from appearing.
07/12/2017
-
- If user chose option 'Redirect' on 'System Domain Local Zone Type' in services_unbound.php unbound doesn't start with...
-
- Change committed to freebsd-src repo, should show up in snapshots soon.
-
- Feature is described here:
https://doc.pfsense.org/index.php/Automatically_Restore_During_Install
Basically: Loca... -
12:46 PM Bug #7615: User / Group Privileges for the "Status: Monitoring" page.
- Ok. It appears that when the package "Status_Traffic_Totals" is installed it replaces "Status: Monitoring" in the use...
-
- Relevant Commits:
2.4:
https://github.com/pfsense/FreeBSD-ports/commit/119d687658b46a0310a481c22f5a435e5de9625f
... -
- Works on both 2.4 and 2.3.x now.
07/11/2017
-
04:52 PM Bug #7604: Bug #6594 is not resolved: Waiting for Internet connection to update pkg metadata and finish package reinstallation
- A quick workaround:
Interrupt update process with ctrl+c and enter to a shell. Then:
vi /usr/local/etc/pkg/repos/... -
- Pushed a fix for 2.3.x versions now.
-
- Well, it works on 2.4, needs some adjustments for 2.3.x yet.
-
- I just pushed a new feature to the ACME package, it can now send service restart commands via XMLRPC using the system...
-
- I went through and tried a few of the packages and some did need the write, others did not. I didn't test the whole l...
-
12:11 PM Feature #7688 (Rejected): AutoConfigBackup - Info Icon - username only
- It would be beneficial to include a hover icon (info tip) on the AutoConfigBackup setup page that informs users to us...
-
- Thanks for testing!
-
07:43 AM
Bug #7675: Remove MSS clamping exclusions on pppoe, l2tp, pptp
- I have updated to the last few snapshots and I have not had any issues with the MSS clamping being set on the PPPOE c...
-
- It's also in /conf/config.xml where it can be read by anyone on the box.
At the moment, it's all a part of how the... -
05:11 AM Bug #7687 (Not a Bug): File permissions to open for /var/etc/mpd_wan.conf
- Considering this file has the clear text password to the ISP account it needs to have something less than world reada...
07/10/2017
-
- Works.
-
- Applied in changeset commit:4e4cac0dd53afcf26aa2b523dc16916730d92133.
-
- The fix seems to work but it could be better/simpler, see my comments on PR 3780.
-
- Fixed.
Only actual digest algorithms show now, and not their aliases. Configurations that referenced an alias are ... -
- I pushed a fix for this in commit:f49ef559060ec8cad5c7a3a548d509cf08b5549b but forgot to put this ticket number on th...
-
- This also appears to be confirmed by @openssl list-message-digest-algorithms@, which lists which names/aliases map to...
-
- The way "openvpn --show-digests" works it ends up listing several algorithms that are functionally equivalent but som...
-
09:44 AM pfSense Packages Bug #7681: OpenVPN client export utility - Exporting Android inline configuration can include incorrect client auth method in .ovpn file
- Thank you Jim! Makes sense.
-
- I made a different issue entry for the actual underlying problem here: https://redmine.pfsense.org/issues/7685
-
- It does appear that they are the same, but different versions of OpenSSL or different libraries that are OpenSSL-like...
-
08:29 AM pfSense Packages Feature #7686: Add option in HAProxy to configure SSL defaults based on the Mozilla SSL Configuration Generator
- oops, misspelled configure in the subject line
-
- Would be nice to have "Modern | Intermediate | Old" options in the configuration of HAProxy for SSL cipher suites, ba...
-
- If it's remote access, you need to give it a tunnel network. It is not valid for remote access without a tunnel netwo...
-
06:04 AM Bug #6559: OpenVPN 'mode server' directive missing
- Jim Pingle wrote:
> or you have to setup bridging, etc.
>
> It is only doing what it is told (or not told, as the...
07/09/2017
-
08:05 PM Bug #7684: Web Configurator - IP address is cutoff in the Gateways widget
- The gateway x.y.104.1 is the IP address of the router that is upstream from the pfSense WAN.
Dynamic DNS should set ... -
08:04 PM Bug #7684: Web Configurator - IP address is cutoff in the Gateways widget
- Jim Pingle wrote:
> They are not the same thing.
Oops. Where is the "embarassed" emoji when I need it?
-
- One of those is your upstream ISP gateway (gateways widget)
The other is your firewall's own IP address (Dynamic D... -
- I currently have an IP address that is XX.XX.XXX.XXX and in the Gateways widget the last 2 digits on the right are mi...
07/08/2017
-
10:50 PM pfSense Packages Feature #7683 (New): Splunk Universal Forwarder Package
- It would be nice to have a Splunk Universal Forwarder package so we can send logs and other monitor capable files e.g...
-
- master: https://github.com/pfsense/pfsense/pull/3780
RELENG_2_3:https://github.com/pfsense/pfsense/pull/3778
RELENG... -
- 1) In system_authservers, have a list of at least 3 extra auth servers defined, and Local Database will be at the end...
-
- Intro:
Hello this is my first bug entry. I hope I have done a good job reporting the specifics of what I believe to ...
07/07/2017
-
- PR was merged months ago, no recent complaints. Should be OK.
https://github.com/pfsense/pfsense/pull/3608 -
- That's something that will need to be addressed by FreeBSD. If it's fixed in 11-STABLE, perhaps our next release afte...
-
- No additional confirmation or responses in several years/versions, and it wasn't clear it was ever a problem to begin...
-
-
- Seems to be good.
-
-
- It's working here as well, no problems with RFC2136 at boot on 2.4.
-
- The PHP extensions setup has been completely changed since this report, it's not valid any longer.
-
- Lots of upgrade issues have been fixed since this report. Most anything left is either cosmetic, caused by network co...
-
- No response or confirmation from anyone else seeing the issue on recent versions.
As stated before, it isn't that ... -
- No recent reports on supported versions, unless this can be reproduced on 2.4 it appears to be solved.
-
- No response or confirmation from anyone else seeing the issue on recent versions.
-
- No response or confirmation from anyone else seeing the issue on recent versions.
-
- This has been fixed for a while now
-
-
-
- Here is a patch to try, for those who had problems with the previous commit.
-
- BBcan177 . wrote:
> I would recommend the following command (And also for the other Unbound start/reload etc...)
> ... -
- Fixed
-
- Works
-
10:51 AM Bug #7680: Wrong IP address being entered against pfSense host name on a multi-interface system in /etc/hosts
- Jim Pingle wrote:
> There isn't any viable method to override that and adding one would be a lot of work for little ... -
- There isn't any viable method to override that and adding one would be a lot of work for little benefit. If someone w...
-
- I'm running pfSense 2.3.4 and it has multiple interfaces. It chooses one of its IP address and enters it in /etc/hos...
-
- Nicki Messerschmidt wrote:
> I stumbled over this problem also. In my case I have several LAN interfaces and the wro... -
07:14 AM Bug #7679: Dynamic DNS don't select GW, only default gateway from kernel
- It's ok!
Thank you =) -
- Please post on the forum for assistance with your Dynamic DNS problem. I, and many others, use Dynamic DNS with multi...
-
- Acredito que seja um bug, pois testei várias formas e realmente ele só assume o GW do kernel, quando utilizo tanto o ...
-
- This has already been fixed in 2.3.4-p1 (which is not yet released) and snapshot images.
https://doc.pfsense.org/i... -
12:38 AM Bug #7678 (Duplicate): Bad HTML-encoding on the status_dhcp_leases.php page
- It seems that the 2.3.4 release reintroduced an old bug, see #6079. The description column currently shows HTML entit...
07/06/2017
-
04:57 PM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists
- Instead of using this stop command
mwexec("echo '/usr/local/sbin/unbound-control stop' | /usr/bin/su -m unboun... -
-
- Applied in changeset commit:6e094e04f7d9634c7151bd9aa68ad93c71584d80.
-
- Several complaints of unbound not starting/stopping correctly after that last patch was added, so I backed it out for...
-
- Just import intermediates into the CAs tab directly. See #2800
-
- It works fine if you import the chain, see #2800, which would include the case of a public CA (which should still nev...
-
- Import the CA cert (cert only), any intermediate CA certs, and the signed cert. It will pick up the issuer correctly ...
-
- This has all been removed from FreeRADIUS. Cert handling in FreeRADIUS is 100% done in the Cert Manager now on 2.3.4 ...
-
- Works fine now.
-
01:34 PM Feature #7527: Sign CSRs - subjectAlternateNames
- wow. Great. I'll try this out first thing tomorrow morning. Thank you very much :-)
-
- Applied in changeset commit:0c82b8c2a77bba6b2b3ab42a880c0e478ebc70f6.
-
-
- Also, as of commit:0c82b8c2a77bba6b2b3ab42a880c0e478ebc70f6 I have changed how this operates slightly, there were a c...
-
- Larry Westfall wrote:
> Below is the request:
> -----BEGIN NEW CERTIFICATE REQUEST-----
That's the problem, it h... -
- Applied in changeset commit:0c82b8c2a77bba6b2b3ab42a880c0e478ebc70f6.
-
- I'm in the middle of some certificate work. It should have been in an OK state when I left it yesterday but it's poss...
-
08:24 AM Bug #7677 (Resolved): Cert manager not creating server cert
- Current snap
2.4.0-BETA (amd64)
built on Thu Jul 06 07:22:07 CDT 2017
FreeBSD 11.0-RELEASE-p10
Cert Manager not... -
- Please discuss this on the forum for help diagnosing your issue. That is not a general problem, and more information ...
-
08:13 AM Bug #7676 (Rejected): L2TP Settings not retained
- Trying to configure L2TP VPN Server for a small company, we were able to login through L2TP but when checking again o...
-
- PR Merged
07/05/2017
-
07:12 PM Bug #6099: igmpproxy does not recognize upstream interface
- Diogo Quintela wrote:
> Rai Wol wrote:
> > Can someone confirm its working in 2.4?
> >
> > Doesn't stop after 3... -
06:12 PM
Bug #7675: Remove MSS clamping exclusions on pppoe, l2tp, pptp
- Pull request created to fix this:
https://github.com/pfsense/pfsense/pull/3777 -
05:43 PM
Bug #7675 (Resolved): Remove MSS clamping exclusions on pppoe, l2tp, pptp
- As per https://forum.pfsense.org/index.php?topic=132918.0
Creating an issue to track removing the exclusions setup... -
02:55 PM pfSense Packages Bug #7674 (Resolved): Issue Downloading Snort Alert Log Download
- I have found that I am no longer able to download the Alert Logs from the snort_alerts.php page. I have attempted di...
-
- Applied in changeset commit:b767fe6cdf7977916d2f245ea529f84f7e0d1f30.
-
11:02 AM Bug #7673 (Not a Bug): multi wan 0.0.0.0
- Hi,
Once it detects that there is the same ip address multiple times whenever you save something, the web server l...
07/04/2017
-
- Please discuss the problem on the forum to diagnose your problem and identify any potential bugs. If there is a repea...
-
01:33 PM Bug #7672 (Rejected): Enabling DNS Resolver returns erorr
- Hi
I am getting this error when I try to enable DNS Resolver. I haven't been using the DNS Resolver before because...
07/03/2017
-
- It works in master 2.4, but it never got backported to RELENG_2_3 or RELENG_2_3_4.
This was the PR in master: https:... -
12:04 PM Feature #6753: Interfaces list order not consistent
- Thank you guys for taking this into account. It works well, much better to use now!
May I ask for one last thing? Th... -
- many ISPs in India also do a similar thing and etisalat in UAE do a similar thing, if the bill isnt paid by the 15th ...
-
11:08 AM Feature #7671 (New): Gateway Monitoring Via Custom Script or Telnet.
- It would be very helpful to have the ability to monitor gateways via a custom script or telnet. ISPs are beginning to...
07/02/2017
-
04:53 PM pfSense Packages Bug #7670 (Not a Bug): Bind : Serial for slave zone is missing in IHM
- Using bind as slave server, the page https://localhost:8443/pkg.php?xml=bind_zones.xml does not display the zone seri...
07/01/2017
-
-
-
05:09 PM Bug #7452: Adding a gateway from interfaces.php does not work
- As mentioned by Philip Davis in #7659 the fix for the crash has now been implemented in https://github.com/pfsense/pf...
06/30/2017
-
- But we need to have a discussion -- on the forum -- about why that happened before it can be called a bug. The upgrad...
-
01:11 PM pfSense Packages Bug #7669: ACME Certificates
- I get that freeradius isn't related to acme. You just rejected the root of my problem which is no CA key for ACME gen...
-
- Please post on a new forum thread and discuss this before opening a bug report. It's possible something else went wro...
-
- version 2.4.0-beta. My letsencrypt certificates are about to expire and my certificates in acme certificates didn't m...
-
10:00 AM Feature #7668: MAC Address spoofing
- https://forum.pfsense.org/index.php?topic=132947.msg730892#msg730892
-
- The wording under the Interface -> General Configuration -> MAC Address box could do with stating that if the interfa...
06/29/2017
-
- Duplicate of #1337
-
11:54 AM Bug #7326: Unbound fails to start during rc.wanipchange when using large enough dns lists
- ok thank you for fixing this, I will test the fix as soon as possible on my firewall.
-
- Be aware that if you attempt to add a patch for this manually, you also need to apply the patch from #7667 first.
-
- Applied in changeset commit:38d110824c87ff60c6289c0432d55009586ceee4.
-
- Back to me, I have some changes ready that appear to fix this.
-
- Applied in changeset commit:8a0aa42c197361ebb82387e5bdc8378e5440837f.
-
- Calls to unbound-control inside @do_as_unbound_user()@ in /etc/inc/unbound.inc do not pass the configuration file loc...
06/28/2017
-
- Hi Philip,
I updated the PF to 2.4.0-BETA (amd64) built on Wed Jun 28 16:02:43 CDT 2017 today and redid the proced... -
01:40 PM Feature #7666: Adding SAN DNS:username to User Certificates that are created via User Manager the same way as it is done via Cert. Manager
- Thank you sooo much!
I am constantly sitting on the 2.4 beta edge (currently 2.4.0.b.20170627.1443), just let me now... -
- Current certificate best practices are to have the CN be the first SAN, so it shouldn't be optional. That small initi...
-
- It could also be made optional in _User Manager_.
By default there is no SAN (just as now), but there would be possi... -
- h1. Adding SAN DNS:username to User Certificates that are created via User Manager same way as it is done via Cert. M...
-
11:41 AM Bug #7665 (New): Host range validation for Aliases is not strict enough
- Steps to reproduce:
1. Enter an invalid host range for an IP alias, such as 192.168.1.1-10, and click Save.
The... -
- What can be done, is already there. Splice to see domains or you have to install CA on clients. Post on the forum, do...
-
08:07 AM pfSense Packages Todo #7664 (Rejected): https filtering in pfsense without configuring proxy settings in client browser .
- https filtering in pfsense without configuring proxy settings in client web browser .
-
12:55 AM Bug #7641: Multiple reboots without error message
- I checked the freebsd bugreports and found a similar issue but with an amd system. I added a comment there so here is...
06/27/2017
-
02:56 PM Feature #7383: system_certmanager.php?act=new: Add new select option to sign a CSR
- Larry Westfall wrote:
> Build 2.4.0.b.20170527.2111
>
> External generated CSR failed with
> The following input... -
- Bryan Fehl wrote:
> Christoffer Öhman wrote:
> > I can not even use it before it locks.
> >
> > As soon as I try... -
10:59 AM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx
- Christoffer Öhman wrote:
> I can not even use it before it locks.
>
> As soon as I try to change something, it lo... -
- I can not even use it before it locks.
As soon as I try to change something, it loads a really long time before it... -
02:04 PM Bug #7663 (Closed): Persistent CARP Maintenance Mode doesn't work right in upgrade from 2.3.3-RELEASE-p1 to 2.3.4
- Upgrading the OS to 2.3.4 from 2.3.3-RELEASE-p1 with Persistent CARP Maintenance Mode selected, the OS rebooted with ...
-
10:25 AM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic
- As of the June 2, 2017 build, it does not look like it. Receiving over PPPoE is still limited to one queue.
-
10:23 AM Bug #7604: Bug #6594 is not resolved: Waiting for Internet connection to update pkg metadata and finish package reinstallation
- This is happening to me too, have a fresh 2.3.4 install. I will restore config from another 2.3.4 install. Sure enoug...
-
10:02 AM
Bug #7662 (Resolved): Missing close span in login page 2.4.0-BETA
- Fixed. Thanks for pointing that out.
-
09:43 AM Bug #7662 (Resolved): Missing close span in login page 2.4.0-BETA
- Using 2.4.0-BETA, the login page miss a close span
https://github.com/pfsense/pfsense/blob/master/src/etc/inc/authgu... -
- I didn't close the ticket and say it wouldn't be addressed eventually. When this old ticket was opened, maintenance m...
-
04:01 AM Bug #2218: CARP VIPs can become master too early at boot time
- Jim, what about if you have a power failure on the master firewall (and you have each firewall connected to different...
06/26/2017
-
05:53 PM Bug #2218: CARP VIPs can become master too early at boot time
- While true, it'll still fail at some point. I'm not sure this can be reasonably described as a non-issue with such se...
-
- Then focus on fixing the source of the crashes if they happen that often -- The avoidable cases are already avoidable.
-
- Sure, but I don't reboot my firewalls - they crash. See the issue?
-
- It's a non-issue if you put a node into maintenance mode from Status > CARP before updating or rebooting.
-
- This is still an issue as of 2.3.4.
-
11:42 AM pfSense Packages Bug #7661 (Resolved): pfBlockerNG doesn't make a rule for Antarctica
- If Antarctica entries with a count > 0 are added to the pfBlockerNG GeoIP, there won't be an Antarctica rule created....
-
10:27 AM pfSense Packages Todo #7658: BGP support in Quagga
- OK done. Please see https://redmine.pfsense.org/issues/7660
-
- This issue is for BGP only, not other features. Scope creep isn't helpful, that needs to be in a separate feature req...
-
- Right now, in the Quagga GUI, there's a single entry for a CARP address to monitor. If you're adding better GUI supp...
-
- That is unrelated to the topic on this ticket. It would be a separate feature request.
-
- We need to be able to monitor more than one CARP IP for failover. Our config has CARP on the inbound and outbound si...
-
- We need to be able to monitor more than one CARP IP for failover. Our config has CARP on the inbound and outbound sid...
-
03:13 AM pfSense Packages Feature #7655: Captive portal and squid non transparent
- I have readed all about that link and sorry, but i don't understand anything ?
06/25/2017
-
- Scott Baugher wrote:
> I'm using the nightly builds (2.4.0.b.20170522.1522 as of right now). I also use gigabit fib... -
07:39 AM Bug #3710: Adding static DHCP leases doesn't cause BIND zones to update
- David Horn wrote:
> Tried disabling config knob, enabling, etc. Works well at this point for static and dynamic DHC...
06/24/2017
-
- See PR https://github.com/pfsense/pfsense/pull/3764
-
- RUNNING ON: *pfSense-CE-2.4.0-BETA-amd64-20170623-1439.iso* fresh installed today 24/6.2017 in VirtualBox and no othe...
-
05:11 PM Bug #3710: Adding static DHCP leases doesn't cause BIND zones to update
- I tested this fix successfully against the 2.4-BETA snapshot: 2.4.0-BETA (amd64) built on Sat May 06 22:51:06 CDT 20...
-
03:03 PM Bug #6099: igmpproxy does not recognize upstream interface
- Jeremy Lewis wrote:
> The way I managed to get it working reliably was to turn off the IGMP snooping on my managed s... -
- I have tested the #7501 on fresh "pfSense-CE-2.4.0-BETA-amd64-20170623-1439.iso" install in Virtualbox on amd64
addi... -
- Hello,
I have tested both IPv4 and IPv6 PR corrections running on fresh "pfSense-CE-2.4.0-BETA-amd64-20170623-1439... -
- There is a PR to support using it via raw config, but no GUI yet.
https://github.com/pfsense/FreeBSD-ports/pull/356 -
10:07 AM pfSense Packages Todo #7658 (Resolved): BGP support in Quagga
- OpenBGPD pkg on pfsense doesn't seem to be up to date for years (since 2012 probably) - a lot of recently (and may be...
-
- UPD: Looks like some commands which are not present in webgui do work when pasting directly in bgp neighbor context i...
-
- Please add "local-as" feature in OpenBGPD webgui "neighbors" tab -> "Neighbor Parameters". This command is described ...
Also available in: Atom