Activity

30 days up to

User

Subprojects

Activity

From 07/13/2017 to 08/11/2017

08/11/2017

07:30 PM Revision 8150bd51: Fixed #7625: By:
Separating the source and destination onChange functions
Preventing the mask selector from being automatically up... Steve Beaver
06:59 PM Revision a0678b0b: Build FRR package instead of FRR directly: Jim Pingle
04:02 PM Feature #3718: radvd - enhancement proposal: ability to advertise routes and some fixes - patches attached: Updated the patch for version 2.3.4. Marc Posch
02:38 PM Revision b57a87b3: Refresh metadata before an upgrade: Renato Botelho
02:32 PM Revision 9d14b22c: Spelling :(: Steve Beaver
02:31 PM Bug #7625 (Feedback): When creating IPv6 firewall rule for single host, netmask improperly displays: Fixed JavaScript in firewall_rules_edit.php and pfSense.js Anonymous
12:26 PM Bug #7625: When creating IPv6 firewall rule for single host, netmask improperly displays: Steve will handle that Renato Botelho
02:30 PM Revision 979bbbd4: Improve comments: Steve Beaver
02:24 PM Revision e38ba356: Add AJAX version check: Steve Beaver
01:27 PM Revision cbaf07f4: Show user when pkg metadata was updated: Renato Botelho
12:58 PM Bug #7750: unbound refuses ipv6 queries after reboot: For the record, this problem is also present in 2.3.x for users of the "do not wait for RA" setting.
Daryl Morse
12:56 PM Bug #7750: unbound refuses ipv6 queries after reboot: Proposed fix - https://github.com/pfsense/pfsense/pull/3799 Renato Botelho
12:54 PM Bug #7750 (Assigned): unbound refuses ipv6 queries after reboot: Renato Botelho
12:39 PM Bug #7750: unbound refuses ipv6 queries after reboot: Martin Wasley wrote:
> Commit #3799
This fix works perfectly.
Thank you very much. Daryl Morse
01:47 AM Bug #7750: unbound refuses ipv6 queries after reboot: Commit #3799 Martin Wasley
12:46 PM Bug #3932: Captive portal with greater than 9000 permanent MAC addresses causes timeout in loading CP: It really needs to be re-engineered Renato Botelho
12:42 PM Revision 429091c8: Update cache when GUI successfully update pkg metadata: Renato Botelho
12:27 PM Revision a9ad771b: Change refresh link to icon: Steve Beaver
11:55 AM Revision 474b3a2f: Consider only last output line: Renato Botelho
10:34 AM Feature #7767 (Resolved): OCSP support for OpenVPN server: It would be great to have a possibility to enable OCSP checking for OpenVPN Server included in pfSense. It seems to b... Michael Voetter
09:57 AM Bug #6782 (Feedback): pkg update can trigger multiple updates per second: Many improvements were made to reduce the times pkg checks remote metadata. I looks much better now. Renato Botelho
09:52 AM pfSense Packages Bug #7766 (Feedback): ACME Package on 2.4 requires pecl-ssh2, which is not in base any longer: Version 0.1.19 should be fine Renato Botelho
09:28 AM pfSense Packages Bug #7766: ACME Package on 2.4 requires pecl-ssh2, which is not in base any longer: Looks like we'll have to make a new port for it since the current pecl-ssh2 is only compatible with php 7+ Jim Pingle
09:02 AM pfSense Packages Bug #7766 (Resolved): ACME Package on 2.4 requires pecl-ssh2, which is not in base any longer: commit af1ebe36a4787997f37a3cc1c1a9178e86286508 in the FreeBSD-ports repo removed pecl-ssh2 from the list of dependen... Jim Pingle
09:03 AM pfSense Packages Bug #7208: ACME ftpwebroot doesn't work: Dmitry Ivanov wrote:
> Fatal error: Call to undefined function pfsense_pkg\acme\ssh2_connect() in /usr/local/pkg/acm... Jim Pingle
12:33 AM pfSense Packages Bug #7208: ACME ftpwebroot doesn't work: PFSense 2.4.0
ACME 0.1.18
Fatal error: Call to undefined function pfsense_pkg\acme\ssh2_connect() in /usr/local/p... Dmitry Ivanov
07:42 AM Bug #7272: 6rd not functioning on 2.4.0-BETA: Luiz Souza wrote:
> The 6to4 tunnel regression was fixed in the latest snapshot. 6rd situation has improved too, pl... Ole-Henrik Jakobsen
02:17 AM Bug #7272: 6rd not functioning on 2.4.0-BETA: The 6to4 tunnel regression was fixed in the latest snapshot. 6rd situation has improved too, please retest. Luiz Souza
06:29 AM Revision 881fb186: Some systems - only one that I am aware of, complain that unbound is starting before dchp6 has completed leading to problems, this occurs only on boot.: Further examination did indeed show that the problem is caused by unbound starting before the dhcp6c - RTSOLD - rc.ne... Martin Wasley
01:54 AM Bug #7751: Duplicated traffic graphs: Hi!
New details posted here: https://forum.pfsense.org/index.php?topic=134506.0
Seems that it is pfSense bug sinc... Greg M
12:13 AM Revision 71d0b5f8: remove old logo from default page: Jared Dillard
12:02 AM pfSense Packages Bug #7729: pfBlockerNG orders NAT licked rules to the bottom of firewall rules: Fixed in *PR#390*:
https://github.com/pfsense/FreeBSD-ports/pull/390/files BBcan177 .

08/10/2017

10:25 PM Revision d4fbf5b7: Speedup get_system_pkg_version() considering only installed packages: Renato Botelho
08:26 PM Revision e8f8aeb6: Use cache file to show pfSense version information: Renato Botelho
08:26 PM Revision ca773220: Save pkg update return code: Renato Botelho
08:26 PM Revision c47f209b: Add a protection to prevent ending up with duplicate crontab entry: Renato Botelho
05:57 PM Revision c2e98b94: Revised Netgate Services and Support widget to use AJAX when refreshing the data: Steve Beaver
03:07 PM Revision 94bb17b2: dyndns: changed CloudFlare to Cloudflare - correct spelling: eyJhb
02:07 PM Revision 7dfb18da: Update interfaces.php: Updated as per style guidelines (??) I'm new here, please say if still not right! Joseph Reeves
02:01 PM Revision c2fae874: Update system_update_settings.php: Tidied the Dashboard update settings text Joseph Reeves
01:50 PM Revision 1371aa1a: Update translation files: Renato Botelho
01:45 PM Revision eb7b4235: Regenerate pot: Renato Botelho
01:45 PM Revision 3cf5ed75: Sort languages alphabetically (in English): Renato Botelho
01:44 PM Revision 0ced79ef: Add Dutch to GUI, it's over 75% complete: Renato Botelho
01:38 PM Revision ef863b31: Update interfaces.php: Updated description of "System / Advanced / Firewall & NAT settings" Joseph Reeves
01:31 PM Revision b58c1588: Run rc.update_pkg_metadata in background when repository changes: Renato Botelho
01:29 PM Revision 52e827ac: Remove dead code using in the past to migrate from pfSense-repo-devel to a single pkg called pfSense-repo: Renato Botelho
01:09 PM Revision e506cc8a: Make sure pkg metadata is updated at least once daily. It will be used to speedup GUI parts related to pkg update: Renato Botelho
10:42 AM Revision 5b194e16: dyndns: added password help text for cloudflare: eyJhb
08:35 AM Bug #7765 (Duplicate): Openvpn / WebGUI bug ?: The problem is unrelated to OpenVPN, that's a symptom of the actual bug, which is PHP getting wedged. Already covered... Jim Pingle
08:15 AM Bug #7765 (Duplicate): Openvpn / WebGUI bug ?: Hi,
i don´t really know where too look or how to debug my problem.
Six servers are connected to my local network vi... Oliver Winkler
07:18 AM pfSense Packages Bug #7764 (Not a Bug): Basic setup of squid + squidguard + ssl interception + transparent proxy produces https://http/* error.: It has to be something in your settings causing this. I can't reproduce it here. I have a working MITM transparent se... Jim Pingle
06:23 AM pfSense Packages Bug #7764 (Not a Bug): Basic setup of squid + squidguard + ssl interception + transparent proxy produces https://http/* error.: Check this serverfault question:
https://serverfault.com/questions/866660/pfsense-squid-https-filtering-error-url-ca... m m
02:12 AM Bug #7750: unbound refuses ipv6 queries after reboot: Patch a921c7da1d1a0529e2f490d3a2d7d19ddfc82036
Commit to main repo will happen once all O.K is given by UK testers. Martin Wasley

08/09/2017

10:16 PM Bug #7116 (Resolved): a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: Luiz Souza
07:11 PM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: I can also confirm that the issue seems fixed. Steps taken:
* Deleted all shaping firewall rules
* Deleted traffi... Jakub Osika
05:13 PM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: I can now see traffic in all of the queues where there should be traffic. It does indeed seem to be fixed. Any chan... Greg Siemon
04:43 PM Bug #7116: a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: Seems to work properly for my test box. Thanks! Pi Ba
02:28 PM Bug #7116 (Feedback): a floating 'match' rule on LAN does not put traffic from a broswer on a clientpc into a shaper queue: Fixed in the latest snapshot. Luiz Souza
06:19 PM Revision e78d5940: Ensure the callback function exists before calling: Steve Beaver
03:41 PM Revision 8bf4cf1f: gateway, ntp, and openVPN widgets updated: Steve Beaver
03:34 PM Feature #5112: LDAP support for Captive Portal: https://github.com/pfsense/pfsense/pull/3117 implementation works on 2.4 BETA 09 Aug 2017 Oscar Francia
03:03 PM Revision 634bb06a: Remove ajax stuff from installed packages widget: Steve Beaver
02:50 PM Revision 67dd6c11: dd system information widget to central refresh system: Add ability for a widget to specify how often it wants to be updated Steve Beaver
02:23 PM Bug #7763 (Resolved): IX driver - fails to recognize media type with SFP after link drop: An issue was discovered by a customer running LAGG on ix0 and ix1 on the XG-2758. If a physical link to one of those ... Clinton Cory
01:24 PM Revision ec922197: Revise upgrade script to insert support widget at the top of column 2: Add old support widget to obsolete files list Steve Beaver
11:28 AM Revision ad950c6e: Update translation files: Renato Botelho
11:12 AM Bug #6318: IPsec dashboard widget causes GUI failure: Sounds like a fantastic change. Thanks Steve → luckman212
11:08 AM Bug #6318 (Feedback): IPsec dashboard widget causes GUI failure: I have done a LOT of research into this. I believe that since most dashboard widgets have their own timer, their own ... Anonymous
11:04 AM Revision 00def017: Regenerate pot: Renato Botelho
09:41 AM Todo #7762 (Resolved): Add uid check to pfSense-upgrade and exit unless it is run as uid=0: Running pfSense-upgrade as a non-root/admin user will produce errors that are not obviously related to lacking privil... Jim Pingle
07:31 AM Feature #7761 (New): Add a way to match on IPv6 proto=0 (hop-by-hop header extension): https://tools.ietf.org/html/draft-ietf-opsec-ipv6-eh-filtering-03#section-3.4.1
> Since this EH is required to be ... znerol znerol
02:07 AM Revision 4c05e19b: Repair broken AJAX response (POST vs GET): Steve Beaver

08/08/2017

08:00 PM Revision 60f485ed: interface_statistics widget added to central refresh system: Steve Beaver
07:51 PM Revision 53547a05: Add ipsec widget to new centralized refresh system: Steve Beaver
07:07 PM Revision 41799195: shaper, hfsc cannot use priority, as such don't show the field in the webgui.: Also for the other shapers 0 is a valid priority
While fairq causes a error loading rules with a priority above 7 so ... Pi Ba
05:42 PM Revision d7c2f4fe: Experimental centralized widget refresh system: Used by the interfaces.widget.php widget only for now Steve Beaver
05:40 PM Bug #7272: 6rd not functioning on 2.4.0-BETA: Luiz Otavio O Souza wrote:
> The 6rd patch was committed to 2.4 and is available on the latest snapshots. Tests are... Ole-Henrik Jakobsen
05:29 PM Bug #7605: State Killing on Gateway Success: It would be a good idea to have a second option to kill states on recovery to keep working states intact if desired. ... Clinton Cory
03:22 PM Bug #6099: igmpproxy does not recognize upstream interface: For the records:
Mr J wrote on https://forum.pfsense.org/index.php?topic=134795.0
> These instructions by james_h... Harald Gutmann
01:54 PM Bug #7604: Bug #6594 is not resolved: Waiting for Internet connection to update pkg metadata and finish package reinstallation: Just happened to me, moments ago.
Backup up a 2.3.4 machine (server is unstable) and replaced the server hardware ... chip br
11:53 AM pfSense Packages Bug #7756: suricata suricata_check_dir_size_limit() needs to be improved: Thanks! Another user had also submitted a fix for the EVE JSON log rotation issue. I asked him about incorporating ... Bill Meeks
11:43 AM pfSense Packages Bug #7756: suricata suricata_check_dir_size_limit() needs to be improved: Filed https://github.com/pfsense/FreeBSD-ports/pull/389 Orion Poplawski

08/07/2017

10:59 PM Revision 71783286: make css compatible with newer nvd3 version: Jared Dillard
10:16 PM pfSense Packages Bug #7756: suricata suricata_check_dir_size_limit() needs to be improved: I'm the volunteer package maintainer for Suricata on pfSense. Thank you for providing a patch to go along with your ... Bill Meeks
07:32 PM Bug #7412: rtsold will not run on VLAN interfaces: Has progress been made on this bug? Thanks. mike cross
06:10 PM Revision 5d336c75: Change IPsec widget tunnel status to handle newer strongSwan childid format. Fixes #7499: (cherry picked from commit 4de753e52d8bbc732f23f90dd77df1707fbc3912) Jim Pingle
05:56 PM pfSense Packages Bug #7267: Status Traffic Totals - Stacked Bar - Scale not high enough: This should be fixed in the newer versions of nvd3. I am attempting to upgrade, but there are some kinks to work out. Jared Dillard
03:04 PM Revision 2306b30e: Update config version: Steve Beaver
03:01 PM Revision 4918554d: Fix upgrade 166 to 167 script: Steve Beaver
02:28 PM Feature #7760 (Rejected): Reverse FQDN lookop from firewall rule: The method for tracking hostnames requires aliases. Using them in rules directly is not possible in pf, and rewriting... Jim Pingle
02:18 PM Feature #7760 (Rejected): Reverse FQDN lookop from firewall rule: Currently to use a FQDN in a firewall rule you need to add an alias for it. The alias documentation states:
"Hosts ... Gunnar -
02:19 PM Revision 2348f688: Rename support widget refresh link to match new widget name: Steve Beaver
01:31 PM Revision 640d1b64: pfSense 2.4 setHelp syntax was applied to v 2.3 - arguments should be provided in an array: Steve Beaver
12:59 PM Bug #7759 (Closed): No version control number showing when going to System > Update: I am currently on 2.4.0.b.20170802.0604
When I goto System > Update it shows the attached picture (just "Warning" ... Geoffrey Bricker
12:51 PM Bug #6099: igmpproxy does not recognize upstream interface: Some of these reports seem to miss one very important information: which version of IGMP is used.
IMHO igmpproxy d... Victor Toni
07:13 AM Bug #6099: igmpproxy does not recognize upstream interface: igmpproxy does indeed work 100% for UK BT TV, BT Sport 4K (IPTV over BT Infinity FTTC/P) in ver. 2.4.0-BETA (Version ... Mr J
07:08 AM Bug #6099: igmpproxy does not recognize upstream interface: Please take this discussion to the forum, mailing list, reddit, etc. If it runs for a few minutes then it is absolute... Jim Pingle
06:35 AM Bug #6099: igmpproxy does not recognize upstream interface: _
Mr J
03:43 AM Bug #6099: igmpproxy does not recognize upstream interface: The way I use igmpproxy it works properly. There are many posts above from other people who confirmed that IPTV works... Harald Gutmann
11:47 AM Todo #6885 (Feedback): Add vectorized logo in web interface: This was fixed in this commit: https://github.com/pfsense/pfsense/commit/b8047a1f1d5e5fb529e716a349f153ea3a78280a Jared Dillard
11:38 AM Bug #7415 (Feedback): favicon is not correctly implemented: This was fixed in the following: https://github.com/pfsense/pfsense/commit/e7d63f568c8e3982ee8f39387369778789593075 Jared Dillard
07:22 AM pfSense Packages Bug #7758 (Not a Bug): Error on squid: That is most likely due to either a compatibility issue with your cipher selection in squid and that site, or with sq... Jim Pingle
02:08 AM pfSense Packages Bug #7758 (Not a Bug): Error on squid: I deployed pfsense 2.3.4 and installed Squid 3.5.26. I config squid in transparent mode and enable HTTPS/SSL intercep... Phong Bui-Quang
06:49 AM Todo #6606 (Resolved): Adapt captive portal to work without multi-instance ipfw: Renato Botelho

08/06/2017

09:47 PM Bug #7750: unbound refuses ipv6 queries after reboot: This problem is also present in 2.3.4. I had not noticed it previously, because I never attempted to perform nslookup... Daryl Morse
03:11 PM Bug #7272: 6rd not functioning on 2.4.0-BETA: I believe a recent change here may have broke 6to4 tunnel on WAN..
https://forum.pfsense.org/index.php?topic=13474... Chris Palmer
03:05 PM Bug #6099: igmpproxy does not recognize upstream interface: _
Mr J
02:21 PM Bug #6099: igmpproxy does not recognize upstream interface: Mr J wrote:
> Maybe Luiz Otavio O Souza should just FIX the bug for version 2.40 ????!!!!
Probably its not the be... Harald Gutmann
09:24 AM Bug #6099: igmpproxy does not recognize upstream interface: _ Mr J
12:33 AM Todo #6606: Adapt captive portal to work without multi-instance ipfw: Spent a few minutes on it. Everything seems to be working again. Brian Caouette

08/05/2017

11:16 PM Todo #6606: Adapt captive portal to work without multi-instance ipfw: Will check it out and report back when I get to the house. Brian Caouette
11:05 PM Todo #6606 (Feedback): Adapt captive portal to work without multi-instance ipfw: Fixed in the latest snapshots. Luiz Souza
11:04 PM Bug #7272 (Feedback): 6rd not functioning on 2.4.0-BETA: The 6rd patch was committed to 2.4 and is available on the latest snapshots. Tests are much appreciate.
Luiz Souza
11:17 AM pfSense Packages Bug #7753 (Not a Bug): "Bypass Proxy for These Source IPs" does not seem to be working anymore: Jim Pingle
10:26 AM pfSense Packages Bug #7753: "Bypass Proxy for These Source IPs" does not seem to be working anymore: This ticket should be closed. "Bypass Proxy for These Source IPs" works as expected. Yuri Weinstein
03:50 AM Bug #7757 (Not a Bug): Auto Config Backup fails to upload unless Default Gateway is up: Auto Config Backup will not upload when a Secondary WAN is active and the Primary WAN is down and Failover/Load balan... Paighton Bisconer

08/04/2017

07:32 PM Revision 43b3e9c3: Force the support widget to show when a user upgrades to this version: Steve Beaver
02:15 PM Revision ba43afdb: Remove .empty files from trusted/revoked directories: Renato Botelho
02:15 PM Revision f48b3573: Remove .empty files from trusted/revoked directories: Renato Botelho
12:29 PM Revision 8494a4f2: Merge pull request #3794 from PiBa-NL/20170803-compact-red-theme-logo: Renato Botelho
11:18 AM pfSense Packages Bug #7756 (Resolved): suricata suricata_check_dir_size_limit() needs to be improved: The cleanup process in suricata_check_dir_size_limit() is not very optimal. There are a couple issues:
- It immed... Orion Poplawski
05:11 AM pfSense Packages Bug #7755 (Closed): Avahi package is not secure by default: pfSense Avahi Plugin is insecure per default and may at least cause internal information leaking to wrong network zon... Roland Kletzing
03:57 AM Bug #7754 (Not a Bug): Cannot access "WebCfg - OpenVPN: Client Export Utility" without also granting access to "WebCfg - OpenVPN: Servers": I tried to create a local group for admins with limited access and I only want that group to be able to export OpenVP... tqwqllrm tqwqllrm

08/03/2017

09:28 PM Revision 6c173a22: Theme Compact-RED, adopt new logo for theme sizing navbar size: Pi Ba
08:09 PM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: All I have to do to cause this is just leave the dashboard web page open. The problem happens anywhere from 1 hour to... Alex Vergilis
07:01 PM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: Thanks for your offer. I have been working on this issue all week, sadly without getting very far because each diagno... Anonymous
06:51 PM Bug #6406: Web process becomes unresponsive producing 502 Bad Gateway nginx: pfsense team:
Why is this bug being pushed back to another release yet again to a date that has not been determine... Alex Vergilis
07:50 PM Feature #855: Ability to selectively kill states on gateway recovery: As echoed by others, I'm seeing the same thing for VOIP and other devices which auto negotiate VPN tunnels which main... Travis McMurry
07:06 PM pfSense Packages Bug #7753 (Not a Bug): "Bypass Proxy for These Source IPs" does not seem to be working anymore: I used to exclude two IPs using this option for Arlo Pro video cameras (by Netgear) and it used to work fine, but aft... Yuri Weinstein
05:30 PM pfSense Packages Bug #7674: Issue Downloading Snort Alert Log Download: This also appears to affect the downloading of the blocked hosts list. If you press the download button, it thinks a... Andrew -
04:20 PM Revision be76c9d6: update top nav bar logo: Jared Dillard
04:20 PM Revision b8047a1f: change login page logo to svg: Jared Dillard
04:20 PM Revision e8bb8200: remove image from rss widget: Jared Dillard
04:20 PM Revision e7d63f56: update favicon: Jared Dillard
02:11 PM pfSense Packages Bug #7752: Squid 3 reverse proxy - HTTPS==>HTTP fails: Jim Pingle wrote:
> Using an HTTP backend with an HTTPS frontend works fine in HAProxy if you need it to work right ... Seyed N
06:30 AM pfSense Packages Bug #7752 (Feedback): Squid 3 reverse proxy - HTTPS==>HTTP fails: Using an HTTP backend with an HTTPS frontend works fine in HAProxy if you need it to work right now. The reverse squi... Jim Pingle
05:53 AM pfSense Packages Bug #7752 (Not a Bug): Squid 3 reverse proxy - HTTPS==>HTTP fails: I configured the package Squid 3 (version 0.4.37 based on Squid-3.5.26) as reverse proxy.
On my pfSense virtual ma... Seyed N
11:27 AM Revision b36b36ee: improve README by full stop and link to github-help: (cherry picked from commit 47dc4743a81edb0ae316591f63d62767b56f6e69) Felix Wolfsteller
11:27 AM Revision 1fa79aba: Merge pull request #3793 from ecovillage/master: Renato Botelho
09:28 AM Bug #7751: Duplicated traffic graphs: It appears to be the same behavior as https://redmine.pfsense.org/issues/3314 that was previously fixed, although I d... Scott D
12:05 AM Bug #7751 (Resolved): Duplicated traffic graphs: When using VLANs traffic graph shows doubled traffic for out.
See discussion:https://forum.pfsense.org/index.php?to... Greg M
08:44 AM Revision 47dc4743: improve README by full stop and link to github-help: Felix Wolfsteller
03:48 AM Feature #5112: LDAP support for Captive Portal: Any chance an implementation as outlined above would make it into upstream? Would be happy to give the implementation... Felix Wolfsteller

08/02/2017

03:27 PM Bug #7750: unbound refuses ipv6 queries after reboot: Here is a link to a post on the forum which shows the wireshark capture of the PD process:
[https://forum.pfsense... Daryl Morse
01:54 PM Bug #7750 (Resolved): unbound refuses ipv6 queries after reboot: This issue first appeared when changes were made to reduce how often unbound restarts. It may have been present befor... Daryl Morse
11:04 AM Revision 1567f9f1: Update translation files: Renato Botelho
11:00 AM Revision 7b6ef15e: Regenerate pot: Renato Botelho
10:21 AM Bug #7625 (Assigned): When creating IPv6 firewall rule for single host, netmask improperly displays: Renato Botelho
08:26 AM Bug #7625: When creating IPv6 firewall rule for single host, netmask improperly displays: I have now updated to latest build but unfortunatly it still does not work. (2.4.0-BETA (amd64) built on Wed Aug 02 ... Dan Lundqvist
08:04 AM Feature #7749 (Resolved): Support ``0`` CIDR mask for IGMP Proxy networks: I don't know if this CiDR notation is appropriate from a security point of view. But it appears that you can not setu... Juan Abonia
02:54 AM Bug #7748 (Resolved): VLAN Priority: I have a 2.3 and a 2.4 pfSsense system
On both systems I can create a VLAN 832 with Priority 6 (Attachment 1)
... Kev Willers

08/01/2017

10:32 PM Feature #7537: Include mellanox mlx4 and mlx5 ethernet driver: edit : It seems it's supported by the freebsd base : https://www.freebsd.org/releases/11.1R/hardware.html#ethernet
... Alexandre Paradis
09:10 PM Bug #4494: axge bug - AX88179 chipset (network interface reseting): FYI, still happening in v2.4 - but is on the FreeBSD HW compatibility list. Anything I can do to help debug?
Thanks! Russell Morris
07:57 PM Revision a98daee3: Fix #7625: Auto select '128' as mask for IPv6: Renato Botelho
07:57 PM Revision 036b32b5: Fix #7625: Auto select '128' as mask for IPv6: Renato Botelho
04:03 PM Feature #7747 (New): Minor UI Tweak: Make hitting enter on the console (esp via SSH) should not log you out, but simply redraw the menu: When you don't have a password set on the console, the net effect is the same anyway. However, over SSH, this is ann... Dan Mahoney
03:40 PM Revision d08c1387: Fix VLAN Priority set pf syntax. Fixes #7744: Jim Pingle
03:13 PM Bug #7430: pfsense-utils.inc - where_is_ipaddr_configured() should account for loopback interface: It's a subject to be discussed but doesn't make sense to change where_is_ipaddr_configured() this way since it uses g... Renato Botelho
03:10 PM Bug #7625 (Feedback): When creating IPv6 firewall rule for single host, netmask improperly displays: Applied in changeset commit:036b32b57e88464d66e6e01e640178f68cf882ec. Renato Botelho
03:05 PM Feature #6293 (Duplicate): Include 'if_urndis.ko' kernel module for USB network tethering: Close it in favor of #7467 Renato Botelho
03:05 PM Feature #7467: Add iPhone/Android/Generic USB tethering support: Generalize the topic to be able to close older tickets Renato Botelho
03:02 PM Feature #7467: Add iPhone/Android/Generic USB tethering support: We need to make tests and it's too late for 2.4.0 Renato Botelho
02:59 PM pfSense Packages Bug #7578: Suricata -- Removing Hosts from Block Table via Alerts: It doesn't depend of a pfSense version and as soon as package is updated will be available for all supported versions Renato Botelho
01:10 PM Feature #7746: Proxy NDP: You can already use other types of VIPs to use additional addresses (IP Alias and CARP) just not for giant blocks of ... Jim Pingle
01:00 PM Feature #7746: Proxy NDP: I agree that it's horrible. But I still have a valid use case for such a feature because of *someone else's* preexis... Adam Thompson
12:36 PM Feature #7746 (Rejected): Proxy NDP: There isn't any such daemon. We've had it come up before and it's not possible at this time, possibly ever. It would ... Jim Pingle
12:22 PM Feature #7746: Proxy NDP: I can't find any evidence anywhere (including tcpdump) that "Proxy ARP" VIPs support NDP. I'm assuming they don't, s... Adam Thompson
12:21 PM Feature #7746 (Rejected): Proxy NDP: We have "Proxy ARP" VIPs, now we need "Proxy NDP" VIPs to allow pfSense to function with service providers such as OV... Adam Thompson
12:18 PM Bug #7745: 1:1 NAT is somehow broken for IPv6 (corner case??): Hmm. It's 100% trivially reproducible for me. When it's 100% reproducible for me, most of the time it's 100% reprod... Adam Thompson
11:55 AM Bug #7745: 1:1 NAT is somehow broken for IPv6 (corner case??): It shouldn't happen that way, but again, you have not yet identified a specific bug, only a symptom. We need a lot mo... Jim Pingle
11:51 AM Bug #7745: 1:1 NAT is somehow broken for IPv6 (corner case??): If this need to be better documented on the public Wiki, I can make those changes myself. I can't update the officia... Adam Thompson
11:49 AM Bug #7745: 1:1 NAT is somehow broken for IPv6 (corner case??): Perhaps I could have been clearer: the complaint here is that:
- creating a 1:1 NAT entry and then removing it someh... Adam Thompson
11:36 AM Bug #7745 (Not a Bug): 1:1 NAT is somehow broken for IPv6 (corner case??): I don't see a bug here. It works just like IPv4. IPv4 1:1 would also fail if you added a mapping for some other IP ad... Jim Pingle
11:30 AM Bug #7745: 1:1 NAT is somehow broken for IPv6 (corner case??): Update: it only breaks when the WAN interface is in the same "subnet" (possibly /64, haven't confirmed the affected p... Adam Thompson
11:24 AM Bug #7745 (Not a Bug): 1:1 NAT is somehow broken for IPv6 (corner case??): Steps to reproduce:
1. configure (e.g.) WAN interface as 2607:5300:79:501:167:114:147:49/56. Configure default gate... Adam Thompson
10:50 AM Bug #7744 (Feedback): VLAN Priority options cause pf syntax error: Applied in changeset commit:d08c13875483a81b6393f0127abe719e5734dea4. Jim Pingle
10:40 AM Bug #7744 (Resolved): VLAN Priority options cause pf syntax error: In FreeBSD 11, the syntax for matching and setting VLAN Priorities changed. See https://reviews.freebsd.org/D6786
... Jim Pingle

07/31/2017

08:32 PM Revision f4c3483a: rc.gateway_alarm, add syslog message that shows that a alarm was raised/cleared and what the parameters were: This helps clarify why sometimes services are restarted when reading through the syslogs.
(cherry picked from commit... Pi Ba
08:32 PM Revision c71df82d: Merge pull request #3762 from PiBa-NL/20170624_gatewayalarm_log: Renato Botelho
08:32 PM Revision 2839bb13: Use correct wording for menu entry "Reset All States" in "System/Advanced Network": (cherry picked from commit ee7bdbe69b873544b960c159386971af42cba52d) Fernsehkind
08:32 PM Revision c5ad7e26: Use correct wording for log output when IP address has changed and states are killed accordingly: (cherry picked from commit 8e7d47feda1c56715304a3a381fc9495698179fb) Fernsehkind
08:32 PM Revision 0ffce5fd: Add GUI entry for ip_change_kill_states in Network/Advanced (See #1629): (cherry picked from commit 66a405929e61938c036005cca8fde0ba17554a27) Ralph Haussmann
08:32 PM Revision ba2500cf: Improve log output when ip_change_kill_states is set.: (cherry picked from commit a84da2286cc5353b5ce7161aa3d59ccd43ae3868) Ralph Haussmann
08:32 PM Revision f3d3a023: Merge pull request #3535 from fernsehkind/Redmine1629: Renato Botelho
08:01 PM Revision 9b18dc1b: Add pt_BR back to GUI since it's over 75% complete: Renato Botelho
07:41 PM Revision d33bdb27: Merge pull request #3774 from phil-davis/sort-if-names-RELENG_2_3: Renato Botelho
07:38 PM Revision ac789c95: ipsec, prevent simultaneous/repeated calling of vpn_ipsec_configure() by /etc/rc.newipsecdns: (cherry picked from commit 7c6f38e49a2005812e37fe5b365717edc0d5dd44) Pi Ba
07:38 PM Revision 23273a9b: Merge pull request #3773 from PiBa-NL/20170703-ipsec-sleep-lock: Renato Botelho
07:37 PM Revision 898d5161: Trafficshaper, show interface names for disabled interfaces, dont just show a kinda 'empty' spot..: (cherry picked from commit 725aee3f19ea01d48f14e65ac60e4189218b3834) Pi Ba
07:37 PM Revision 4b1d0e05: Merge pull request #3784 from PiBa-NL/20170713-shaper-show-disabled-interface-names: Renato Botelho
07:36 PM Revision 8f212c64: Correct typo's as per Jim's request: (cherry picked from commit 3e86fa9913091ded202854a931fa02320f7fa1a0) Martin Wasley
07:36 PM Revision 8420b944: Add Option to use static IPV6 over v4 parent ( PPPoE: A new option when setting a v6 static on the WAN to allow the connection to use the V4 interfaces i.e. PPPoE
(cherr... Martin Wasley
07:36 PM Revision 40f2618c: Merge pull request #3761 from marjohn56/master: Renato Botelho
07:35 PM Revision 024a1db6: Merge pull request #3789 from stilez/patch-69: Renato Botelho
07:35 PM Revision 514233ee: typo: "Networked" not "network" - "Internet of Things" especially.
(cherry picked from commit d751dee379b37da868efa837df55... Stilez y
07:35 PM Revision 23dcfc75: grammar fix: (cherry picked from commit 94ef78afa96f1870b453fab670754c01c6161665) Stilez y
07:35 PM Revision 83477771: format %1$s etc in help: (cherry picked from commit ef77e40e0c7b861cc268cd1f0e30600f573b807e) Stilez y
07:35 PM Revision 5c9bc798: Improve the HELP note about what will/won't work if TLD is set to ".local": For example, some people won't use mDNS and won't know other things might break; also it's not clear that while ".loc... Stilez y
07:35 PM Revision 76efa197: Merge pull request #3787 from stilez/patch-68: Renato Botelho
07:34 PM Revision a32a2d04: Add support for IPv6 AUTO_LINKLOCAL flag on bridge interfaces: (cherry picked from commit b060e08c9dd701b56b5163321b5e9a79f90b1f23) Lorenz Schori
07:34 PM Revision 8d478177: Merge pull request #3788 from znerol/feature/master/bridge-ipv6-auto-linklocal: Renato Botelho
07:33 PM Revision 64876ec1: Use attribute rekey_enable as usual but optionally allow to set margintime if rekeying is not disabled: (cherry picked from commit 376e6f6719e6463913045b233ca90d69254057ff) hamnur
07:33 PM Revision a69de2f6: Fix indent of if-block: (cherry picked from commit 9d472f01c31f2b56a95631dcd4f49e4685f55ea6) hamnur
07:33 PM Revision 8f03bc04: Check if margintime is numeric and smaller than P1 lifetime: (cherry picked from commit af729f53f3c838f91dffb6368b656ddece527e05) hamnur
07:33 PM Revision f7c409fe: Hide margintime if rekeying is disabled: (cherry picked from commit e18ddb38449b6463fabf5782284b206a355dbad7) hamnur
07:33 PM Revision 04c2c662: Activate RADIUS accounting for mobile ipsec if it was selected on the auth server view: (cherry picked from commit 1e0442e0612ecd289aa979bc945be0d8ead35f41) hamnur
07:33 PM Revision 9ca72a77: Add strongswan rekeymargin attribute to vpn ipsec phase1 view: (cherry picked from commit 9542011684a26e0b1b959d9b56d5fcfc12023893) hamnur
07:33 PM Revision 39194387: Merge pull request #3770 from hamnur/master: Renato Botelho
07:32 PM Revision ccf8bd86: dhcp6c Advanced Config prefix interface: Currently, when using dhcp6c advanced configuration the prefix interface is WAN, this is not very useful!
The change... Martin Wasley
07:32 PM Revision 16dec2f3: Merge pull request #3791 from marjohn56/PD-FIX: Renato Botelho
07:29 PM Revision 33048f25: Merge pull request #3585 from PiBa-NL/trafficgraphs-optimize: Renato Botelho
07:24 PM Revision 9d21b366: Merge pull request #3785 from stilez/patch-67: Renato Botelho
05:47 PM Bug #7743 (Not a Bug): Redmine does not allow slection of version 2.3.4_1 in "Affected version" field: Fixed (but not a bug) Jim Pingle
05:04 PM Bug #7743 (Not a Bug): Redmine does not allow slection of version 2.3.4_1 in "Affected version" field: My "Affected version" list goes 2.3, 2.3.3, 2.3.3_1, 2.3.4, 2.4, 2.4.x.
No 2.3.4_1 option is available, although I s... Adam Thompson
05:00 PM Bug #7742: 1:1 NAT for IPv6 applies wrong subnet mask to "Single Host": Also, when re-editing that 1:1 NAT rule, the GUI repeatedly resets the prefix length to "31". This, again, breaks al... Adam Thompson
04:55 PM Bug #7742: 1:1 NAT for IPv6 applies wrong subnet mask to "Single Host": (I believe this is why I thought IPv6 NAT was broken in #7740. Not 100% sure. Made enough mistakes today I'm not su... Adam Thompson
04:54 PM Bug #7742 (Resolved): 1:1 NAT for IPv6 applies wrong subnet mask to "Single Host": Adding an IPv6 1:1 NAT entry and choosing "Single Host" produces the resulting rule in /tmp/rules.debug:
binat on ... Adam Thompson
04:45 PM Feature #7741 (Resolved): warn me when shooting myself in the foot with NPt: When one configures IPv6 NPt (network prefix translation) to use a public prefix that *does* overlap with the interfa... Adam Thompson
12:41 PM pfSense Packages Feature #7548 (Resolved): Add absolute offset stat to NTP monitoring display: Jim Pingle
12:02 PM pfSense Packages Feature #7548: Add absolute offset stat to NTP monitoring display: Tested, working (2.4.0.b.20170731.0959) John Pettitt
12:39 PM Bug #7740 (Not a Bug): 1:1 NAT field allows IPv6 addresses: It's allowed because it's valid. Granted it's not as useful and NPt does the same thing, essentially. If it were brok... Jim Pingle
12:08 PM Bug #7740 (Not a Bug): 1:1 NAT field allows IPv6 addresses: The 1:1 NAT setup screen allows IPv6 addresses to be entered, even though they do not function. No warnings are emit... Adam Thompson
12:06 PM Revision 40d2cc71: Update translation files: Renato Botelho
11:49 AM Revision 01115630: Regenerate pot: Renato Botelho
07:51 AM pfSense Packages Bug #7736 (Feedback): Crahs with Quagga OSPF and the latest 2.4 Beta: I just pushed a fix, give it a try when the package update shows next (0.6.20) Jim Pingle
03:46 AM Bug #7734: Using opton ia pd0 does not renew prefix and prefix get dropped: Sorry - was looking for it but forgot about /var/etc:... Daniel Helgenberger

07/30/2017

12:53 PM Feature #7739 (Rejected): If there is already a gateway, retrieve data from the one that already exists?: Having the same gateway on more than one interface is not a supported configuration. Jim Pingle
11:56 AM Feature #7739 (Rejected): If there is already a gateway, retrieve data from the one that already exists?: Hi,
I have multiple gateway with the same ip and then it can not show them at the same time, but I had to mix with... Christoffer Öhman
12:14 PM Revision a0bd0a4f: important exclusion - update help text for packets dropped by NIC / offload: Say that non-promiscuous mode doesn't see packets dropped by NIC.
(promiscuous detection relies mainly on different r... Stilez y
11:06 AM Revision 52229047: trafficgraphs, move common code to 1 file, and remove usage of 'localstorage' which shares unwanted changes to graph settings between widget and stats: Pi Ba
10:58 AM Revision d3fd2bbe: traffic-graphs, optimize retrieval of data every x seconds to reduce spikes in the graphs and load on pfSense: also cleanup some old code. Pi Ba
09:20 AM Feature #7738 (New): Highlight which IPSec (or other VPN) crypto modes are hardware-accelerated in the UI: I've found it VERY difficult to determine precisely which combinations of ciphers and MACs will be hardware-accelerat... Adam Thompson
08:39 AM Bug #7737 (New): radvd error message: Perhaps this is a configuration issue, or a bug introduced during the 2.4 update.
I am now receiving the following... Juan Abonia
07:47 AM pfSense Packages Bug #7736 (Resolved): Crahs with Quagga OSPF and the latest 2.4 Beta: Crash report begins. Anonymous machine information:
amd64
11.0-RELEASE-p11
FreeBSD 11.0-RELEASE-p11 #193 d... Andreas Strub

07/29/2017

02:42 AM Bug #7734: Using opton ia pd0 does not renew prefix and prefix get dropped: If you are still running 2.3 then it's not related at all, 7330 was a 2.4 issues and was fixed and is closed. The iss... Martin Wasley

07/28/2017

07:54 PM Revision dc5fdeea: notices, background delivery of growl messages and combined mail messages from a queue so that in case of failure the timeout period for connecting does not impact the functionality of the calling scripts themselves: 1st message is delivered directly after it is queued.
2nd and following messages that are send within a 10 second win... Pi Ba
07:47 PM Revision f8ac4324: Comment fixes: Steve Beaver
05:59 PM Revision 2f162658: Revise default widget settings to accommodate new support widget name: Steve Beaver
04:58 PM Revision 2304e7b4: Add renamed support widget: Steve Beaver
04:56 PM Revision 1528ee4e: dns, allow deleting last row for "Additional Names for this Host": (cherry picked from commit f6cf3687d21c6ca6ba7a25605fafe249f866b439) Pi Ba
04:54 PM Revision 3f74acc7: Merge pull request #3783 from PiBa-NL/20170713-dns-delete-last-additional-name: Renato Botelho
02:20 PM Feature #3329: Allow creating "not" rules for IPsec Phase 2: Example implementation Markus Stockhausen
02:16 PM Feature #3329: Allow creating "not" rules for IPsec Phase 2: This feature wil be really helpful. Lets assume a office firewall connected to a HQ firewall. It serves sub multiple ... Markus Stockhausen
02:02 PM Bug #5826: Auto-exclude LAN address feature only works for the LAN interface: We have the same problem. For my reminder. Configuration is created by /etc/inc/vpn.inc in the following lines
i... Markus Stockhausen
12:43 PM Feature #7549: Enable Python support in Unbound: To use python with unbound the module also needs to be enabled in the configuration file with:... Doug Twitchell
11:43 AM Bug #7735 (Not a Bug): Switching to wildcard cert fails until reboot: Steps to reproduce:
1. manually add the Globalsign CA
2. manually add the AlphaSSL intermediate CA
3. manually add... Adam Thompson
09:32 AM Bug #7734: Using opton ia pd0 does not renew prefix and prefix get dropped: This might be related to #7330 Daniel Helgenberger
09:31 AM Bug #7734 (New): Using opton ia pd0 does not renew prefix and prefix get dropped: From my ISP i am getting a vl/rl of 14400 seconds
The prefix is not renewed and is dropped after 4hrs, see below.
... Daniel Helgenberger
09:04 AM Todo #6606 (Assigned): Adapt captive portal to work without multi-instance ipfw: I'll check it Renato Botelho
09:02 AM Todo #6606: Adapt captive portal to work without multi-instance ipfw: I tried this morning and my devices which use to work are still being directed to the logon page. I have a few device... Brian Caouette
09:03 AM Bug #7733 (Resolved): User Manager deletes non-selected users: The User Manager seems to delete non-selected (wrong) users when using the 'red' delete button on the bottom of the U... Tom Wijnroks
07:05 AM Revision 58a185ae: dhcp6c Advanced Config prefix interface: Currently, when using dhcp6c advanced configuration the prefix interface is WAN, this is not very useful!
The change... Martin Wasley
05:43 AM Bug #7732 (Not a Bug): Unable to connect remote system after upgrading to the latest version: This is a bug tracker, not a support system. Please post on the forum, reddit, mailing list, or another support chann... Jim Pingle
01:06 AM Bug #7732 (Not a Bug): Unable to connect remote system after upgrading to the latest version: Yesterday I was updated my pfsense to the latest version 2.3.4-RELEASE-p1 (amd64). After upgrading I am able to conne... Nagachandra Pavuluri

07/27/2017

05:42 PM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available": Jim Pingle wrote:
> Only in that we're making progress on replacing OpenBGPD with FRR
Well that's exciting! I ass... Michael OBrien
04:58 PM Revision 9968e384: Eliminate Gold menu item: Steve Beaver
04:58 PM Revision d85dc363: Rename support widget to "Netgate Services And Support": Steve Beaver
04:18 PM Revision 3e86fa99: Correct typo's as per Jim's request: Martin Wasley
04:18 PM Revision b7331383: Add Option to use static IPV6 over v4 parent ( PPPoE: A new option when setting a v6 static on the WAN to allow the connection to use the V4 interfaces i.e. PPPoE Martin Wasley
12:12 PM pfSense Packages Bug #7729: pfBlockerNG orders NAT licked rules to the bottom of firewall rules: @BBcan177
Looks like it worked !
Pls make it default. Yuri Weinstein
11:56 AM pfSense Packages Bug #7729: pfBlockerNG orders NAT licked rules to the bottom of firewall rules: @BBcan177
Thx for the clue.
What's the proper way to modify /usr/local/pkg/pfblockerng/pfblockerng.inc ?
I made c... Yuri Weinstein
11:32 AM pfSense Packages Bug #7729: pfBlockerNG orders NAT licked rules to the bottom of firewall rules: Can you edit */usr/local/pkg/pfblockerng/pfblockerng.inc*
and replace the line (-) with the new line (+):
Line 4... BBcan177 .
11:15 AM Bug #7731 (Duplicate): DynDNS fail to update after connection lose: Hi,
i experienced some problems with DynDNS update.
When the gateway is down (connection lost) and then come ba... Alessandro Mannini
08:16 AM Bug #7730: 2.3.4_1 greX: loop detected when hit save on filter rules or interfaces: to clarify previous cluster sync comment:
If we make the change as described above on secondary the tunnel stays up ... Richie M
07:16 AM Bug #7730 (New): 2.3.4_1 greX: loop detected when hit save on filter rules or interfaces: upgraded from 2.2.6
anytime we hit save in the GUI for interface or filter rules, even if no change was made, we sta... Richie M

07/26/2017

11:44 PM pfSense Packages Bug #7729 (Resolved): pfBlockerNG orders NAT licked rules to the bottom of firewall rules: When I use pfBlockerNG and rules order as this https://snag.gy/yFQa5b.jpg after rules update my NAT linked non-pfBlo... Yuri Weinstein
10:25 PM Bug #7723 (Not a Bug): Cannot focus username or password input fields: Jim Pingle
06:45 PM Bug #7723: Cannot focus username or password input fields: I upgraded to 2.3.4p1 and can no longer reproduce. Thanks! Andornaut -
05:08 PM Revision 508a84ed: Enable REDIS option for suricata: Renato Botelho
05:08 PM Revision 6b473757: Enable REDIS option for suricata: Renato Botelho
05:08 PM Revision d1637ec2: Enable REDIS option for suricata: Renato Botelho
03:12 PM Bug #7728: 1:1 NAT: Destination IP Alias not displayed as web link: image of bad behaviour Markus Stockhausen
03:10 PM Bug #7728 (Resolved): 1:1 NAT: Destination IP Alias not displayed as web link: If you define a 1:1 NAT rule with a destination IP (source/destination match) this destination IP may be an alias. In... Markus Stockhausen
02:50 PM Revision 1fea5a2e: Fixed 7128: Steve Beaver
02:37 PM Bug #7629: FreeBSD PR affecting pfsense: Since JimP has confirmed 2.4.x will move to 11.1 then this bug is effectively resolved "after" that change occurs. Chris Collins
02:11 PM Revision 38af638a: Allow recheck on refresh if JSON not available: Steve Beaver
01:44 PM Revision e14c441b: Make rules that deal with IP+MAC pairs to be layer2 only: Renato Botelho
12:30 PM pfSense Packages Bug #7278 (Feedback): Suricata Service - Advanced Configuration Pass-Through not working: Merged, thanks! Renato Botelho
12:05 PM Feature #7593 (Rejected): Enable FreeBSD 11 pvclock module in 2.4 builds: pvclock is not a module, it's a standard piece of the kernel as you can see at original review at https://reviews.fre... Renato Botelho
11:48 AM Feature #7727: uPnP fails to properly give out subsequent reservations when multiple gaming systems are playing the same game/using the same port: the game in question is "For Honor", but im pretty sure it affects any game that uses peer to peer matchmaking. There... Anonymous
11:46 AM Feature #7727 (Resolved): uPnP fails to properly give out subsequent reservations when multiple gaming systems are playing the same game/using the same port: It's a bug with pfsense, at least in my eyes (nearly 15 years experience in IT and am a senior security engineer with... Anonymous
11:01 AM Bug #7474: Problems adding gateway from interface edit: Already in master by PR https://github.com/pfsense/pfsense/pull/3700
So it happens already in 2.4 - no need to push ... Phillip Davis
08:54 AM Bug #7474: Problems adding gateway from interface edit: Push to 2.4.1 Renato Botelho
10:32 AM Bug #7128 (Resolved): system_advanced_network.php - fugly IPv6 over IPv4 input field alignment: Looks good now Jim Pingle
09:52 AM Bug #7128 (Feedback): system_advanced_network.php - fugly IPv6 over IPv4 input field alignment: Changed layout to use two separate fields + JS hide/show Anonymous
09:09 AM Feature #7549 (Resolved): Enable Python support in Unbound: Anything we need to do on the OS side is done already, the rest is up to the actual scripts to setup mounts/libraries... Jim Pingle
08:55 AM Bug #7268 (Feedback): System Info Widget "All" button does not work with "Disable the automatic dashboard auto-update check": Merged Renato Botelho
08:54 AM pfSense Packages Feature #7548 (Feedback): Add absolute offset stat to NTP monitoring display: Merged, thanks! Renato Botelho
08:49 AM Todo #6606 (Feedback): Adapt captive portal to work without multi-instance ipfw: Work is now complete Renato Botelho
07:16 AM Bug #7724 (Rejected): Captive portal not blocking unauthorized MAC addresses: This is not a general problem that can be reproduced here, and there is not enough detail in your report to speculate... Jim Pingle
07:09 AM Bug #6400: assign_interfaces.php issues with large numbers of interfaces: See also: #7726 Jim Pingle
07:08 AM Bug #7726 (Duplicate): Many VLANS and php-fpm 100%CPU Hangs web gui: Duplicate of #6400 Jim Pingle
05:43 AM Bug #7726 (Duplicate): Many VLANS and php-fpm 100%CPU Hangs web gui: This problem was reported some time ago already:
https://forum.pfsense.org/index.php?topic=102607.0
https://forum... Markus Kötter
03:14 AM Feature #1219: Ship DTRACE enabled kernels in the images: +1
I would not even bother if dtrace kernel was an extra image for pfsense 2.4. Markus Kötter
12:05 AM Bug #7725 (Resolved): Support for iwm: FreeBSD 11-Current added support for the Intel Dual Band Wireless AC 3160/7260/7265 IEEE 802.11ac network adapters (h... Jamie Nadeau

07/25/2017

11:39 PM Bug #7724 (Rejected): Captive portal not blocking unauthorized MAC addresses: We are using pfSense
Serial: 57625aa6-71ba-11e7-8e29-0800275891eb
Netgate Device ID: f3ad8559b22bd5e94b4d
From... Gaurav Parashar
09:03 PM Revision 239b15fb: Add some info to HELP text (no code change otherwise): NTP background isn't going to be widely known. So provide a bit of info so that it's done properly if someone cares.
... Stilez y
06:55 PM Revision f6e6ff31: Restore calls to pfSense_ipfw_table_zerocnt(), it's fixed now: Renato Botelho
05:10 PM Revision f4c867e0: Remove unused parameters: Renato Botelho
05:08 PM Revision 5f6825bb: Do not associate IP and MAC on down table: Renato Botelho
05:04 PM Revision 75395abf: Fix syntax: Renato Botelho
04:56 PM Revision fa6ae0ea: Remove leftover debug: Renato Botelho
04:47 PM Revision 3c4fcd5b: Ressurrect nomacfilter option on CP now IPFW supports combined tables with IP and MAC address: Renato Botelho
02:53 PM Revision b060e08c: Add support for IPv6 AUTO_LINKLOCAL flag on bridge interfaces: Lorenz Schori
02:49 PM Revision d751dee3: typo: "Networked" not "network" - "Internet of Things" especially. Stilez y
02:48 PM Revision 94ef78af: grammar fix: Stilez y
02:37 PM Revision ef77e40e: format %1$s etc in help: Stilez y
02:33 PM Revision b45746a3: Improve the HELP note about what will/won't work if TLD is set to ".local": For example, some people won't use mDNS and won't know other things might break; also it's not clear that while ".loc... Stilez y
02:18 PM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available": Only in that we're making progress on replacing OpenBGPD with FRR, which hopefully will not suffer from the same issu... Jim Pingle
02:14 PM Bug #6223: IPsec + OpenBGPD fails with "PF_KEY socket: No buffer space available": Any progress on this? josue escalante
12:21 PM Bug #7723 (Feedback): Cannot focus username or password input fields: No problems here on Chrome with Android 7.1.2 and Chrome 59.0.3071.125 (Tablet) or Android 7.0 (Droid Turbot 2), in p... Jim Pingle
11:51 AM Bug #7723 (Not a Bug): Cannot focus username or password input fields: The username and password input fields cannot be focused when using Chrome on Android.
h2. Steps to reproduce
1... Andornaut -
12:04 PM Revision b40b4a3e: Re-introduce Captive Portal statistics: Renato Botelho
10:07 AM Bug #4218: Bridge does not have AUTO_LINKLOCAL flag: PR: https://github.com/pfsense/pfsense/pull/3788 (simple checkbox, does not detect whether or not ipv6 is configured ... znerol znerol
06:43 AM Bug #4218: Bridge does not have AUTO_LINKLOCAL flag: I think this feature could be implemented as follows:
* Provide a new advanced configuration option on the bridge ... znerol znerol
09:46 AM Bug #7500: Upgrade From 2.3.3_p1 to 2.4 Fails (libssl.so.8 not found): See also: #7722 Jim Pingle
09:46 AM Bug #7722 (Duplicate): PHP Startup: Unable to load dynamic library '/usr/local/lib/php/20131226/ssh2.so' - Shared object "libssl.so.7" not found, required by "libssh2.so.1" in Unknown on line 0: Duplicate of #7500 Jim Pingle
09:33 AM Bug #7722 (Duplicate): PHP Startup: Unable to load dynamic library '/usr/local/lib/php/20131226/ssh2.so' - Shared object "libssl.so.7" not found, required by "libssh2.so.1" in Unknown on line 0: Upgraded through WebGUI 2.3.4 to 2.4.0-BETA (amd64) everything seems to go smooth except I receive this error...
C... Geoffrey Bricker
06:02 AM Bug #7721 (Closed): NTPd stops using external peers if listening on one interface only in a muliwan setup: In a multiwan setup, when selecting only one listening interface (eg. LAN), NTPd does not select external peers as th... Daniel Helgenberger

07/24/2017

09:32 PM Feature #7720 (New): Add general watchdog kernel modules (like ichwd) and watchdogd support in the GUI.: Per this topic, enabling watchdogd seems to be harder than it should be: https://forum.pfsense.org/index.php?topic=10... Dan Mahoney
03:56 PM Bug #7719 (Resolved): Dynamic DNS updates not working on interface failover: I realized that dynamic DNS hostnames are not being updated on interface failover. When manually marking a gateway as... Jorge Albarenque
11:12 AM Revision eb0a2a94: Update translation files: Renato Botelho
11:04 AM Revision 46b206d7: Regenerate pot: Renato Botelho
10:05 AM Feature #7718 (New): Hostname for Custom DynDNS Updater.: Hi,
right now I'm using a custom DynDNS service for VPN connectivity. The problem is that you can't set the hostna... Oliver Loch
09:34 AM pfSense Packages Bug #7191 (Resolved): squid package EN-US grammar errors: Jim Pingle
09:29 AM pfSense Packages Bug #7191: squid package EN-US grammar errors: Also fixed in 0.4.37 so I am sure this bug can be closed now. Vincent Bentley
09:18 AM pfSense Packages Bug #7674: Issue Downloading Snort Alert Log Download: Ryan Eckenrode wrote:
> I have found that I am no longer able to download the Alert Logs from the snort_alerts.php p... Vincent Bentley
03:32 AM Bug #4310: Limiters + HA results in hangs on secondary: Jose Duarte wrote:
> For those still with problems you can use limiters in HA with any version w/out kernel panic bu... Lars Jorgensen

07/22/2017

07:26 AM Feature #7717 (Closed): DNS Resolver update to Unbound-1.6.4 to get RPZ / fastrpz support: We'll pick it up automatically once it hits the proper ports branches used by 2.3.x and 2.4.x. Jim Pingle
06:26 AM Feature #7717 (Closed): DNS Resolver update to Unbound-1.6.4 to get RPZ / fastrpz support: We would like to be able to use Reverse Policy Zones (RPZ) using the "fastrpz" patch which Unbound has included into ... Rolf Sommerhalder

07/21/2017

07:08 PM pfSense Packages Bug #7716 (Resolved): Suricata - Barnyard2 webui configuration updates result in base64-encoded value written to the config for the password: Any changes to the Suricata barnyard configuration page requires that you update the password as well, otherwise the ... Renaud Holcombe
11:47 AM Bug #7715: Update from 2.3.4 to -p1 mangled many config entries including users, patches, other config: ok
Stilez y
11:42 AM Bug #7715 (Rejected): Update from 2.3.4 to -p1 mangled many config entries including users, patches, other config: Please discuss a problem such as this on the forum or mailing list rather than jumping right to assuming it's a bug a... Jim Pingle
11:35 AM Bug #7715: Update from 2.3.4 to -p1 mangled many config entries including users, patches, other config: Logs Stilez y
11:35 AM Bug #7715 (Rejected): Update from 2.3.4 to -p1 mangled many config entries including users, patches, other config: I updated my test router 2.3.4 to 2.3.4-p1 and a load of config got wiped out in the process, including users reset a... Stilez y
09:49 AM Bug #7714 (Confirmed): NTP Widget Time Display: Note: The time itself is correctly fetched from the firewall, but is being adjusted to the wrong time _zone_ when dis... Jim Pingle
09:45 AM Bug #7714 (Resolved): NTP Widget Time Display: NTP Widget on 2.3.4-RELEASE-p1 is showing a time other than the received NTP time. Timezone is set to Etc/UTC as per ... Ben Montour
09:33 AM Feature #7245: NTP widget shows client time instead of server time: Start a new bug report for that. It may be using the local time _zone_ incorrectly but it is not using the local cloc... Jim Pingle
09:31 AM Feature #7245: NTP widget shows client time instead of server time: Jim Pingle wrote:
> The fix was in 2.3.4 and any release after that.
>
> It is not pulling local time. I just con... Ben Montour
09:29 AM Feature #7245: NTP widget shows client time instead of server time: The fix was in 2.3.4 and any release after that.
It is not pulling local time. I just confirmed it by loading the ... Jim Pingle
09:19 AM Feature #7245: NTP widget shows client time instead of server time: This appears to still be pulling local time in 2.3.4-RELEASE-p1.
Was this fix part of 2.3.4 or am I misreading somet... Ben Montour
06:31 AM Bug #7713 (Rejected): APU2C4 + TRAFFIC SHAPER CBQ = KERNEL PANIC: Please discuss the problem on the forum before opening a bug report.
It is highly unlikely that we will make speci... Jim Pingle
04:37 AM Bug #7713: APU2C4 + TRAFFIC SHAPER CBQ = KERNEL PANIC: The issue occur with a simple install with at least 1 vlan (vlan number2).
Without VLAN the issue doesn't occur.
... Julien REVERT
03:17 AM Bug #7713 (Rejected): APU2C4 + TRAFFIC SHAPER CBQ = KERNEL PANIC: Hardware APU2C4
Pfsense 2.3.4_1
Coreboot 4.0.7
As soon as you activated traffic shaper with CBQ, there is a kern... Julien REVERT
04:19 AM Bug #4310: Limiters + HA results in hangs on secondary: For those still with problems you can use limiters in HA with any version w/out kernel panic but for that you need ad... Jose Duarte

07/20/2017

10:59 PM Feature #4606 (Duplicate): PKI : CA signing external CSR: Superseded by #7383 Jim Pingle
06:42 PM Feature #7712: Support NPt with Dynamic WAN Interfaces: Jim Pingle wrote:
> Duplicate of #4881
Oops. My apologies, my search was incomplete. Galen POSPISIL
06:31 PM Feature #7712 (Duplicate): Support NPt with Dynamic WAN Interfaces: Duplicate of #4881 Jim Pingle
05:39 PM Feature #7712 (Duplicate): Support NPt with Dynamic WAN Interfaces: Currently, using Multi-WAN with IPv6 requires a static IPv6 address on all WAN connections. Mass market cable and DS... Galen POSPISIL
05:41 PM Revision a911c65a: Support widget visible by default: Steve Beaver
05:34 PM Revision b96b6d3b: Add customer support widget: Steve Beaver
05:04 PM Revision 629be5fd: Do not re-create core pkg repo when running with -r: Renato Botelho
05:04 PM Revision 47683c94: Do not re-create core pkg repo when running with -r: Renato Botelho
05:04 PM Revision 31fd94b3: Do not re-create core pkg repo when running with -r: Renato Botelho
09:53 AM Bug #7711: Traffic Shapper = Kernel Panic: Ok, I will do more testing and keep you inform.
Thanks. Julien REVERT
09:52 AM Bug #7711: Traffic Shapper = Kernel Panic: Like most other x86/x86-64 hardware, while it may work, we do not specifically test on that platform to ensure compat... Jim Pingle
09:40 AM Bug #7711: Traffic Shapper = Kernel Panic: Ok but APUC4 is a compatible pfsense hardware no? Julien REVERT
09:39 AM Bug #7711 (Rejected): Traffic Shapper = Kernel Panic: Please discuss the problem on the forum before opening a bug report.
It's entirely possible that even if it isn't ... Jim Pingle
09:34 AM Bug #7711: Traffic Shapper = Kernel Panic: The stability of the APU2C4 was perfect for 5 months before traffic shapper testing...
Same issue with 3 other APU... Julien REVERT
09:33 AM Bug #7711 (Rejected): Traffic Shapper = Kernel Panic: Hardware APU2C4 with SSD 16Gb
As soon as I configure traffic shapper (wizard or not), my pfsense is completely stu... Julien REVERT
04:23 AM Bug #7709: raspberry pi or anything that can emulate ethernet gadget over usb mac id not read: i had filed a bug request on bugzilla on freebsd site and the devs there provided a patch to test but i have no clue ... Bipin Chandra

07/16/2017

10:04 AM Feature #7705 (Resolved): Support dynamic interface address for 1:1 NAT: Currently, in the 1:1 NAT UI, the "External subnet IP" field cannot be populated with options such as "WAN address" o... Riccardo Paolo Bestetti
09:42 AM Feature #7704 (Resolved): Destination port range "Any" in Port Forward UI doesn't work: If you set "Any" as the Destination port range for a Port Forward TCP or UDP entry, upon saving the new rule you get ... Riccardo Paolo Bestetti

07/15/2017

03:44 PM Bug #7702: Unattended Reboot Failing: OK, NP - thought it was best to capture ... I admit, not sure of the link between the forum and redmine. Sorry!
FY... Russell Morris
03:38 PM Bug #7702 (Not a Bug): Unattended Reboot Failing: This is not happening on any systems here. Please do not open bug reports until the problems have been properly evalu... Jim Pingle
03:12 PM Bug #7702 (Not a Bug): Unattended Reboot Failing: Hi,
I have been seeing this in recent v2.4 builds, thinking it's something that should be fixed. When I reboot (or... Russell Morris
03:39 PM Bug #7703 (Not a Bug): HW Acceleration in OpenVPN: This is a topic for a forum discussion, not a bug report. This is not a discussion or question/answer support platform. Jim Pingle
03:33 PM Bug #7703 (Not a Bug): HW Acceleration in OpenVPN: Hi,
This may be me, but just in case - likely good to log it, in case it's not.
Trying to use HW acceleration i... Russell Morris
02:13 PM Bug #4695: TAP (OpenVPN) Traffic Blocked: OK, thanks! Wasn't sure if that state was equal to closed or not. Sorry for the extra "traffic". Russell Morris
02:10 PM Bug #4695: TAP (OpenVPN) Traffic Blocked: It's already closed: "Not a bug".
Thanks. Jim Thompson
02:01 PM Bug #4695: TAP (OpenVPN) Traffic Blocked: Agreed, resolved - close this out (I don't know how, sorry!). Russell Morris
02:11 PM Bug #7701 (Rejected): Shell Command (daemon) Stops Other Services: Hi,
It may just be me (sorry if it is!), but similar to this thread ... I'm finding that some custom shell command... Russell Morris
02:08 PM Bug #7700 (Closed): Port Forwarding Failing - with Alias: Hi,
As captured in this thread - it seems that recently Port Forwarding / NAT is broken, when using aliases (works... Russell Morris
02:00 PM Bug #4696: OpenVPN Status / Client List: Working correctly in v2.4.0, so this one should be closed - I'd close it, not sure how ... :(.
Thanks! Russell Morris
01:58 PM pfSense Packages Feature #7699 (New): OpenVPN Client Export - Default Gateway: Hi,
Just a thought, but - it would be nice to be able to set this option in Client Export, not just in the server ... Russell Morris
07:41 AM Bug #7698 (Duplicate): Umlauts are no longer displayed properly: This has already been fixed, the 2.3.4-p1 release is about to come out and includes this correction.
https://doc.pfs... Jim Pingle
06:13 AM Bug #7698 (Duplicate): Umlauts are no longer displayed properly: In the newest Version on the DHCP Status Page (/status_dhcp_leases.php) Umlauts in the Description Field are no longe... Flole Systems

07/14/2017

07:36 PM Revision 3c05905d: Bump PRODUCT_REVISION to 2.3.4-p1: Renato Botelho
06:48 PM Revision db3b3afb: Use an alternate method to stop unbound and fix #7326: (cherry picked from commit 782453b4dbb77e5bc97a43f56b95a006c5434d65)
(cherry picked from commit 67fea036201f5af338338... Jim Pingle
06:47 PM Revision 67fea036: Use an alternate method to stop unbound and fix #7326: (cherry picked from commit 782453b4dbb77e5bc97a43f56b95a006c5434d65) Jim Pingle
06:46 PM Revision 782453b4: Use an alternate method to stop unbound and fix #7326: Jim Pingle
05:40 PM Bug #7692: andwidthd date on daily report incorrect.: I have created a report with bandwidthd here:
https://sourceforge.net/p/bandwidthd/bugs/50/ Anonymous
03:29 PM Bug #7692: andwidthd date on daily report incorrect.: I don't have it installed on either of my SG-1000s right now. It's possible there is an ARM-specific bug that affects... Jim Pingle
02:58 PM Bug #7692: andwidthd date on daily report incorrect.: It is not the browser cache, the date seems to change on every graph generation, and the software was installed just ... Anonymous
07:10 AM Bug #7692 (Not a Bug): andwidthd date on daily report incorrect.: Most likely something is cached in your browser. Try ctrl+F5 or shift+click reload. It is fine on all of my systems w... Jim Pingle
07:04 AM Bug #7692 (Not a Bug): andwidthd date on daily report incorrect.: Bandwidthd shows incorrect date (changing between graphs) in daily report.
See attachment for screenshot.
Env... Anonymous
04:28 PM Bug #7697: NAT port forward rule using "WAN address" doesn't work as expected if router does not acquire a WAN address on startup: The pull-request was pulled yesterday. https://github.com/pfsense/pfsense/commit/40c09b6dadb04928dc9a279969193b620ff1... Pi Ba
03:58 PM Bug #7697 (Resolved): NAT port forward rule using "WAN address" doesn't work as expected if router does not acquire a WAN address on startup: This forum post:
https://forum.pfsense.org/index.php?topic=127585.msg733528#msg733528
Describes what I'm seeing:
<... Andy Wang
03:25 PM Bug #4479: Firewall rules won't match GRE interface after applying IPSEC transport encryption on GRE tunnel: I don't see any target version on this bug. Is this being worked on? Any chances this could be fixed for 2.4? Jorge Albarenque
03:23 PM Todo #7689 (Resolved): bsdinstall does not automatically copy config.xml from USB drive like the previous installer: Looks good, multiple confirmations that it works. Jim Pingle
03:18 PM pfSense Packages Bug #7696 (Resolved): Telegraf Package Saving Incorrect Password: The contents of the password field are not being passed properly to the telegraf.conf file. The password is being en... Galen POSPISIL
02:59 PM Bug #6529: dhcp6c fails to start with track6 on a bridge interface: I am adding a sighting. My logs are as follows:
@Jul 12 06:23:21 pfSense dhcp6c[17300]: /var/etc/dhcp6c_wan.conf:13 ... Mathew Keith
02:00 PM Bug #7326 (Feedback): Unbound fails to start during rc.wanipchange when using large enough dns lists: Applied in changeset commit:782453b4dbb77e5bc97a43f56b95a006c5434d65. Jim Pingle
01:57 PM Revision 7505efe7: If a client address is in the webConfiguratorlockout table, do not allow them to access the GUI. Print an error and kill their states. Ticket #7693: Extra check to be sure that an existing open state cannot bypass lockout controls.
(cherry picked from commit cc9b0f... Jim Pingle
01:57 PM Revision f0da1eda: If a client address is in the webConfiguratorlockout table, do not allow them to access the GUI. Print an error and kill their states. Ticket #7693: Extra check to be sure that an existing open state cannot bypass lockout controls.
(cherry picked from commit cc9b0f... Jim Pingle
01:55 PM Revision cc9b0f76: If a client address is in the webConfiguratorlockout table, do not allow them to access the GUI. Print an error and kill their states. Ticket #7693: Extra check to be sure that an existing open state cannot bypass lockout controls. Jim Pingle
01:54 PM Bug #7693 (Feedback): Brute force protection does not kill states, so additional login attemps may be possible in some cases: Moving the sshlockout portion to #7695 Jim Pingle
10:29 AM Bug #7693: Brute force protection does not kill states, so additional login attemps may be possible in some cases: GUI portion is done. It also kills states if someone tries to access the GUI while in the table, so if it isn't feasi... Jim Pingle
07:46 AM Bug #7693 (Resolved): Brute force protection does not kill states, so additional login attemps may be possible in some cases: The way that browsers and ssh clients work, it may be possible to exceed brute force protection limits enforced by ss... Jim Pingle
10:44 AM Revision 9d472f01: Fix indent of if-block: hamnur
10:36 AM Revision 7683e057: Merge branch 'master' of https://github.com/hamnur/pfsense into HEAD: hamnur
10:29 AM Revision af729f53: Check if margintime is numeric and smaller than P1 lifetime: hamnur
09:58 AM Revision e18ddb38: Hide margintime if rekeying is disabled: hamnur
12:17 AM Revision 47914246: Fix typo: (cherry picked from commit 2c3b9ac554cc3940962e7f9b1799857583c394ab)
(cherry picked from commit 930914fd813130b0d1bd8... Jim Pingle
12:17 AM Revision 930914fd: Fix typo: (cherry picked from commit 2c3b9ac554cc3940962e7f9b1799857583c394ab) Jim Pingle
12:17 AM Revision 2c3b9ac5: Fix typo: Jim Pingle

07/13/2017

07:52 PM Revision 725aee3f: Trafficshaper, show interface names for disabled interfaces, dont just show a kinda 'empty' spot..: Pi Ba
07:49 PM Revision f6cf3687: dns, allow deleting last row for "Additional Names for this Host": Pi Ba
07:06 PM Revision 1fdecbe6: cron, fix job removal by index splice and write valid schedules for ramdrive backups: (cherry picked from commit ce3371fe969733c92cd91fe31d2acb69fc877986) Pi Ba
07:05 PM Revision aeb0e915: cron, dont write_config() when nothing changed.: Pi Ba
06:59 PM Revision ea7b8b00: Merge pull request #3771 from PiBa-NL/20170701-cron-fix: Renato Botelho
06:58 PM Revision bef8ce51: bootup, change message to "Checking config backups consistency..." to tell whats taking time, as there is usually little to cleanup involved: (cherry picked from commit c2530487978f68c46c663fee9c9049479f267925) Pi Ba
06:58 PM Revision d991f97b: Merge pull request #3772 from PiBa-NL/20170703-boot-config-check-message: Renato Botelho
06:58 PM Revision 04cd314b: nat, portforwards should not make up a new destination information when a configured dhcp interface does not currently have an address.: fixes: https://forum.pfsense.org/index.php?topic=127585.msg733528#msg733528
(cherry picked from commit 5a8a8bbea33ec2... Pi Ba
06:56 PM Revision 40c09b6d: Merge pull request #3782 from PiBa-NL/20170712-nat-configure-skip-no-dest: Renato Botelho
06:09 PM pfSense Packages Feature #7691 (New): Allow for custom icap services for squid: We would like to integrate additional icap services into the pfsense squid configuration, but there is no way add the... Orion Poplawski
05:58 PM Revision 324bbc3f: Restructure how unbound zone data is written to fix processing of "redirect" zone entries. Fixes #7690: Also corrects some other misc issues for formatting of zone data.
While here, add an option, not exposed in the GUI, ... Jim Pingle
05:58 PM Revision 021332fa: Restructure how unbound zone data is written to fix processing of "redirect" zone entries. Fixes #7690: Also corrects some other misc issues for formatting of zone data.
While here, add an option, not exposed in the GUI, ... Jim Pingle
04:37 PM Revision 4541f84d: Restructure how unbound zone data is written to fix processing of "redirect" zone entries. Fixes #7690: Also corrects some other misc issues for formatting of zone data.
While here, add an option, not exposed in the GUI, ... Jim Pingle
02:58 PM Bug #4031: Notifications mail bomb in some gateway failure circumstances: This could help quite a bit imho :) https://github.com/pfsense/pfsense/pull/3768 Pi Ba
01:32 PM Bug #7690 (Resolved): System Domain Local Zone Type option Redirect is broken: Works Renato Botelho
01:10 PM Bug #7690 (Feedback): System Domain Local Zone Type option Redirect is broken: Applied in changeset commit:021332fa29f0c08bff833ce1c7ddcb9ac9a769b1. Jim Pingle
11:50 AM Bug #7690 (Confirmed): System Domain Local Zone Type option Redirect is broken: Still needs the fix ported to 2.3.x, it did not cherry-pick cleanly. Jim Pingle
11:50 AM Bug #7690 (Feedback): System Domain Local Zone Type option Redirect is broken: Applied in changeset commit:4541f84d12c86775022b0e49d527d6f4f9a6911f. Jim Pingle
11:50 AM Bug #6318: IPsec dashboard widget causes GUI failure: I think this bug's priority should be raised since it also breaks openvpn functionality. Marcio Merlone
07:14 AM Bug #5319: Error message "No config named" in charon daemon: This bug is also present in 2.3.4, I have to kill the charon process every 2-3 days to keep the problem from appearing. Robert Olofsson

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

08/11/2017

08/10/2017

08/09/2017

08/08/2017

08/07/2017

08/06/2017

08/05/2017

08/04/2017

08/03/2017

08/02/2017

08/01/2017

07/31/2017

07/30/2017

07/29/2017

07/28/2017

07/27/2017

07/26/2017

07/25/2017

07/24/2017

07/22/2017

07/21/2017

07/20/2017

07/19/2017

07/18/2017

07/17/2017

07/16/2017

07/15/2017

07/14/2017

07/13/2017