Activity

30 days up to

User

Subprojects

Activity

From 08/23/2018 to 09/21/2018

09/21/2018

10:57 PM Feature #8926: WOL page selects first interface alphabetically, instead of LAN: PR
https://github.com/pfsense/pfsense/pull/3989 → luckman212
12:27 AM Feature #8926 (Resolved): WOL page selects first interface alphabetically, instead of LAN: Small convenience fix. Currently when entering WOL page, the first interface (alphabetically) is selected. This is us... → luckman212
08:33 PM Feature #8929 (New): Scroll bar css dark theme: In my opinion the dark themes would be better if the white scroll bar would be changed to keep with the theme.
Addin... Logan Gilmore
03:10 PM Bug #8927 (Resolved): PFsense 2.4.4 FreeRadius and Captive Portal Quota Problems: Please I think the developers should look at the pfsense Captive Portal and FreeRadius Authentication very well. Apa... step network
01:11 PM Bug #8765 (Resolved): Per-user firewall rules for IPsec do not work: Looks good.
Added this to RADIUS user reply attributes:... Jim Pingle
07:53 AM Bug #8920 (Resolved): Adding a certificate to the first user (index 0) does not redirect back to user manager: Jim Pingle
07:53 AM Bug #8919 (Resolved): DHCP/DHPv6 Relay PHP Error on Save: Jim Pingle
07:19 AM Todo #7024 (Resolved): Replace copy of radius.inc by pear-Auth_RADIUS: The main move is done. Specific possible bugs found should have new tickets Renato Botelho
12:15 AM Bug #8925 (Not a Bug): IPv6 RA Prefix Doesn't Match Interface Prefix ID: To summarize:
I have one WAN and one LAN interface. The LAN (igb) interface also has an OPT interface for VLAN... Allen Balaj

09/20/2018

09:10 PM Bug #8527 (Resolved): VLANs losing parent interface on LAGG change: I tested this in 2.4.4r and was unable to replicate the issue.
I created and assigned a 3 interface LAGG and adde... Steve Wheeler
08:15 PM Bug #8910: DHCP default gateway undefined: Why would that matter now? What loss of functionality is there? You can select it specifically, or setup a gateway gr... Jim Pingle
06:30 PM Bug #8910: DHCP default gateway undefined: Sadly now i cant move my fiber gateway above the old adsl wan interface anymore.. I know i want it, but the gui wont ... Pi Ba
05:54 PM Feature #8908: setting default gateway using lower Tier in case gateway group is set as default: You did 'apply' the new settings? (And refresh the page perhaps once after.?, it might lag a little bit while setting... Pi Ba
04:56 PM Bug #8921: dpinger without .pid files.?. 'pending' status: This seems to fix it: https://github.com/pfsense/pfsense/pull/3987 Pi Ba
03:34 PM Bug #8921: dpinger without .pid files.?. 'pending' status: Added some logging:... Pi Ba
04:51 PM Bug #8911 (Resolved): Incorrect pkg repo set when restoring a config.: In a clean 2.4.4 saved the repo to give this config:... Steve Wheeler
02:57 PM Bug #8693: Filter rules error after deleting VIP: FYI, I just got caught by this same problem, also on 2.4.3-p1. However in my case it was on my WAN interface where I... Brian Candler
02:35 PM Bug #8924 (Resolved): FreeDNS Dynamic DNS update needs IP: FreeDNS currently is set for not needing ip, therefore pfSense just calls the update url with the user given record t... Lukas Wiest
01:14 PM Todo #6647: Enable Additional Security Headers: This 2016 presentation by two security researchers at Google might be useful when considering a CSP:
https://speak... James Vaughan
07:21 AM Bug #8923 (Duplicate): Very long boot delays if WAN interface address not available: Duplicate of #7604 which is fixed in 2.4.4. Jim Pingle
05:23 AM Bug #8923 (Duplicate): Very long boot delays if WAN interface address not available: This is with SG-3100 appliance, 2.4.3p1
For testing purposes, I want to restore config from XML where the WAN inte... Brian Candler
01:59 AM Bug #8922: Static routes set by system.inc for DNS gateway bindings are not removed: PR: https://github.com/pfsense/pfsense/pull/3985 → luckman212
01:42 AM Bug #8922 (Resolved): Static routes set by system.inc for DNS gateway bindings are not removed: I found some bugs with system.inc and system.php while troubleshooting a recent issue.
quick repro (2 different bu... → luckman212

09/19/2018

06:46 PM Bug #8921 (Resolved): dpinger without .pid files.?. 'pending' status: Using 2.4.4-RC (amd64) built on Tue Sep 18 17:52:29 EDT 2018
I've installed a new pfSense VM with 3 wan interfac... Pi Ba
06:44 PM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: Thanks for this nifty feature. It works well in most cases.
I've seen an issue with some DNS-Providers which are n... Markus Barckmann
12:55 PM Bug #8920 (Feedback): Adding a certificate to the first user (index 0) does not redirect back to user manager: Applied in changeset commit:e2f60597df488cf073d14913d8a523cbb447f733. Jim Pingle
12:50 PM Bug #8920 (Resolved): Adding a certificate to the first user (index 0) does not redirect back to user manager: Edit the first user in the list on system_usermanager.php and add a certificate. When finishing the certificate add, ... Jim Pingle
11:55 AM Feature #6240: vxlan driver: +1 Manfred Bongard
11:35 AM Bug #8919 (Feedback): DHCP/DHPv6 Relay PHP Error on Save: Applied in changeset commit:124ca365049368460598621f962ad0b4f5459d7a. Jim Pingle
11:29 AM Bug #8919 (Resolved): DHCP/DHPv6 Relay PHP Error on Save: When saving on DHCP or DHCPv6 relay when the settings tag is empty (e.g. @<dhcrelay></dhcrelay>@), PHP errors are enc... Jim Pingle
09:40 AM pfSense Packages Bug #8918 (Feedback): OpenVPN Client Export: First user does not get username added to filename: Fix coming in OpenVPN Client Export package version 1.4.17_2 Jim Pingle
09:39 AM pfSense Packages Bug #8918 (Resolved): OpenVPN Client Export: First user does not get username added to filename: When attempting to export a VPN configuration for a user, if that user's ID is 0 then the username is not added to th... Jim Pingle
08:00 AM Bug #8910 (Resolved): DHCP default gateway undefined: This looks good on current snaps. The case I had that broke repeatedly before now comes up with the expected WAN gate... Jim Pingle
07:45 AM Bug #8880 (Resolved): [PHP7] warning on system_gateways.php and extra item in gateways table: Renato Botelho
07:34 AM pfSense Packages Bug #8916 (Not a Bug): Package Shellcmd doesn't install: > 2.4.4-DEVELOPMENT (amd64)
> built on Tue Sep 04 10:04:12 EDT 2018
> FreeBSD 11.2-RELEASE-p2
That snapshot is v... Jim Pingle
07:22 AM Bug #8912: User Certificate error: It worked after a complete shutdown. Hamid B

09/18/2018

10:49 PM pfSense Packages Bug #8904: Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: Added *Shellcmd package* functionality to *pfBlockerNG-devel* here:
https://github.com/pfsense/FreeBSD-ports/pull/56... BBcan177 .
09:16 AM pfSense Packages Bug #8904 (Feedback): Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: A previous fix to shellcmd to address PHP errors changed it from using references to using a copy of the config, whic... Jim Pingle
09:29 PM pfSense Packages Bug #8916 (Not a Bug): Package Shellcmd doesn't install: 2.4.4-DEVELOPMENT (amd64)
built on Tue Sep 04 10:04:12 EDT 2018
FreeBSD 11.2-RELEASE-p2
PHP ERROR: Type: 1, F... BBcan177 .
04:45 PM Bug #8910 (Feedback): DHCP default gateway undefined: Applied in changeset commit:51c3546dd77b9efbd53ace478b991ea530bc0a98. Renato Botelho
02:18 PM Bug #8910 (In Progress): DHCP default gateway undefined: Renato Botelho
06:33 AM Bug #8910 (Resolved): DHCP default gateway undefined: If you have a DHCP dynamic gateway set as the default in 2.4.3 you may or may not have an entry for it in the <gatewa... Steve Wheeler
04:43 PM Bug #8905: status_logs_settings.php PHP errors on 2.4.4 snapshots: Perfect. That one liner fixes the issue I saw.
Jim, thanks for the quick fix!
Steve, thanks for the QA check! Jason Unovitch
03:53 PM Bug #8905 (Resolved): status_logs_settings.php PHP errors on 2.4.4 snapshots: Tested with an older version of 2.4.4 and was able to reproduce the error. Upgraded to 2.4.5 current and no longer se... Anonymous
09:10 AM Bug #8905 (Feedback): status_logs_settings.php PHP errors on 2.4.4 snapshots: Applied in changeset commit:508c66ace779a6021b217d055b53587fdb021fec. Jim Pingle
09:07 AM Bug #8905 (In Progress): status_logs_settings.php PHP errors on 2.4.4 snapshots: ...and as soon as I posted that, I managed to reproduce it with an empty syslog section here. The patch did fix it fo... Jim Pingle
08:58 AM Bug #8905: status_logs_settings.php PHP errors on 2.4.4 snapshots: I still can't reproduce that here but can you try the attached patch? Apply it either by making the edit by hand or u... Jim Pingle
04:37 PM Bug #8913 (Resolved): system_update_settings.php - PHP Error: Tried on latest with gitsync and no errors seen when toggling the disable dashboard check. Moving to resolved. Anonymous
01:15 PM Bug #8913 (Feedback): system_update_settings.php - PHP Error: Applied in changeset commit:30213bb09a6be9769352700e9bdf32f8be6f9b61. Jim Pingle
01:13 PM Bug #8913 (In Progress): system_update_settings.php - PHP Error: Jim Pingle
12:49 PM Bug #8913 (Resolved): system_update_settings.php - PHP Error: Getting PHP Error when I try disabling the dashboard check under System > Update > Update Settings.
Running 2.4.4 ... milk teeth
02:53 PM Bug #8915 (Resolved): After updating to 2.4.4-rc an empty crash report is shown: In some cases a crash report is presented at first login after upgrading but the report contains no crash data and no... Steve Wheeler
02:22 PM Bug #8868 (Not a Bug): multiple php errors on update: There is no easy way to prevent these warnings to show up on console. We are going to alert users about it in release... Renato Botelho
02:10 PM Bug #8914 (Resolved): Gateway switch events cause a huge amount of log spew: When a gateway failure/defgw switch event occurs, there seem to be some code paths that get iterated over dozens of t... → luckman212
11:40 AM Bug #8911 (Feedback): Incorrect pkg repo set when restoring a config.: Applied in changeset commit:0430b1b4ea7de0ce5d10b202af218140c59b9ecd. Renato Botelho
08:29 AM Bug #8911 (Resolved): Incorrect pkg repo set when restoring a config.: When restoring a config file from an older version of pfSense into a newer version it's possible to end up with the p... Steve Wheeler
11:33 AM Bug #8912 (Not a Bug): User Certificate error: Something in your config or parameters is incorrect, but more importantly, you are several versions out of date. Upda... Jim Pingle
11:31 AM Bug #8912 (Not a Bug): User Certificate error: Hello,
I'm trying to create a new user for VPN access, I have tried creating cert within user creation and from cert... Hamid B
11:28 AM Todo #8851: Change default CA/Cert action to "Create an internal...": Thanks, looks good to me, PR merged. Jim Pingle
11:17 AM Todo #8851: Change default CA/Cert action to "Create an internal...": on RC 2.4.4.r.20180917.0837 - there was a glitch with this. I created PR#3982 to fix:
https://github.com/pfsense/pfs... → luckman212
05:51 AM pfSense Packages Bug #8909 (New): tinc package makes /rc.newwanip looping forever: I just realizd that each time the tincd(8) daemon is started, pfSense detects the new IP address on its dedicated int... Andrew Hotlab
12:57 AM Feature #8908 (Closed): setting default gateway using lower Tier in case gateway group is set as default: *Current behavior.* I have 3 GW and create GW group from 2 them with different Tiers. E.g. GW3 is marked as @(default... Constantine Kormashev
12:35 AM Bug #8218: Changing an interface name will break the manual created gateway-group: Do not observe the issue on 245-dev... Constantine Kormashev
12:29 AM Todo #8743: Gateway Groups page should list gateways in tier order: And also GW obtained from DHCP are always at bottom regardless name. I mean *WAN_DHCP* is lower than manually added *... Constantine Kormashev
12:19 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: I've checked on 245, it works, I do not observe extra GW 0 and php warning:... Constantine Kormashev

09/17/2018

09:30 PM Bug #8905: status_logs_settings.php PHP errors on 2.4.4 snapshots: > Does your config.xml have a @<syslog>...</syslog>@ section? If so, what is in it?
Hmm, this is rather strange. ... Jason Unovitch
08:06 AM Bug #8905 (Feedback): status_logs_settings.php PHP errors on 2.4.4 snapshots: I can't reproduce that here. I took a system that had never had syslog settings changed on it since the last factory ... Jim Pingle
07:40 PM Bug #8531: URL Table aliases don't support FQDNs or names that return >1 IP: Also, I should probably redo this patch in pure PHP and use *dns_get_record()* http://php.net/manual/en/function.dns-... → luckman212
07:14 PM Bug #7609: NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: Pull request https://github.com/pfsense/pfsense/pull/3981 Nano Caiordo
03:21 PM Bug #8070: IKEv2 IPSec tunnel under load crashes pfSense when AES-NI is enabled: Paul Youngberg wrote:
> Jan Jurkus wrote:
> > I want to refer you to this forumpost: https://forum.pfsense.org/inde... Rachel Chen
12:05 PM pfSense Packages Bug #8904: Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: On install, shellcmd imports the items from the earlyshellcmd tags and reformats them into the shellcmd package setti... Jim Pingle
11:54 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: This commit was not cherry-picked from master branch. Can you validate the fix on a 2.4.5 snapshot? I did the cherry-... Renato Botelho
11:05 AM Bug #8527: VLANs losing parent interface on LAGG change: Please check again with a newer image. Luiz Souza
09:09 AM Bug #8895 (Resolved): You MUST recompile PHP with a larger value of FD_SETSIZE. It is set to 2048, but you have descriptors numbered at least as high as 2161.: Done Renato Botelho
08:56 AM pfSense Packages Bug #8899 (Resolved): AWS-ipsec error: Fixed in commit:59e2c01227cc on factory-ports, aws-wizard pkg version 0.7_2 will contain the fix when it builds. Jim Pingle
07:43 AM Todo #7024: Replace copy of radius.inc by pear-Auth_RADIUS: A FL wrote:
> I found a small issue with RADIUS bw limits however : pfsense-Bandwidth-Max-Up/Down have to be written... Jim Pingle
07:34 AM Bug #8897: RADIUS WebUI login with RADIUS does not work: Tested it again here and it works.
User in FreeRADIUS has:... Jim Pingle
07:27 AM pfSense Packages Bug #8508 (Resolved): Haproxy: Selecting mode tcp with SSL in backend does not activate SSL in the server config: Jim Pingle
01:58 AM pfSense Packages Bug #8508: Haproxy: Selecting mode tcp with SSL in backend does not activate SSL in the server config: Yes, this seems to be fixed for a while now (the upgrade was fun since it broke my workaround :D)). Thanks! Florian Apolloner
05:43 AM pfSense Packages Bug #8903: pfBlockerNG: PHP error: Sorry, you're right, this is the -devel package. I'd forgotten I'd installed that.
I agree the earlyshellcmd issue... Steve Wheeler
04:22 AM pfSense Packages Feature #8523: make cookie inserted by haproxy secure: Thank you! I do see the secure option in haproxy version 0.59_9.
Where did you add another options? Alex Kolesnik

09/16/2018

11:14 PM Bug #8907 (Resolved): wizard.php - $field['type'] - "Select" doesn't have the attribute "Size" defined: The file wizard.php - $field['type'] option "Select" doesn't have the attribute "Size" defined.
From:... BBcan177 .
10:33 PM pfSense Packages Bug #8903: pfBlockerNG: PHP error: Posted two PR to fix these issues and add other improvements.
https://github.com/pfsense/FreeBSD-ports/pull/567
h... BBcan177 .
08:11 PM pfSense Packages Bug #8903: pfBlockerNG: PHP error: Steve, Are you sure this is not from pfBlockerNG-devel?
https://github.com/pfsense/FreeBSD-ports/blob/devel/net/pf... BBcan177 .
01:07 PM pfSense Packages Bug #8903: pfBlockerNG: PHP error: This error looks to be triggering an unrequired config update:... Steve Wheeler
10:51 AM pfSense Packages Bug #8903: pfBlockerNG: PHP error: Sorry clipped the line in the copy there. Actual warning is:... Steve Wheeler
10:50 AM pfSense Packages Bug #8903 (Resolved): pfBlockerNG: PHP error: Seeing this on a clean install of pfSense-2.4.4.r.20180914.1530 and restoring an existing config.... Steve Wheeler
02:45 PM Bug #8905 (Resolved): status_logs_settings.php PHP errors on 2.4.4 snapshots: Info:
Working on testing the latest snapshots and I'm unable to add remote syslog on 2.4.4 snapshot (pfSense-2.4.4... Jason Unovitch
01:08 PM pfSense Packages Bug #8904 (Resolved): Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: The Shellcmd package is incorrectly removing the pfBlocker early shellcmd entry at each boot.... Steve Wheeler
08:16 AM pfSense Packages Bug #8902: HAproxy package not use custom DNS for lookup on apply new config: Pi Ba wrote:
> Hmm, i suppose your right.
>
> You could add below to the 'global advanced pass thru', that should... DRago_Angel [InV@DER]
07:48 AM pfSense Packages Bug #8902: HAproxy package not use custom DNS for lookup on apply new config: Hmm, i suppose your right.
You could add below to the 'global advanced pass thru', that should solve the issue.
<... Pi Ba
06:02 AM pfSense Packages Bug #8902 (New): HAproxy package not use custom DNS for lookup on apply new config: Package Version:
haproxy-devel net 0.59_9
Package Dependencies:
haproxy-devel-1.8.13
cat /etc/version
2.4.3... DRago_Angel [InV@DER]
07:54 AM Todo #7024: Replace copy of radius.inc by pear-Auth_RADIUS: Well, I made some tests :
h2. Basic RADIUS auth (Diag > Auth test)
-> Good (working correctly)
h2. GUI RADI... A FL
02:53 AM Bug #8880 (Feedback): [PHP7] warning on system_gateways.php and extra item in gateways table: Keep it open until checking on next build, which contains current patch. Constantine Kormashev
01:04 AM Bug #8880 (Resolved): [PHP7] warning on system_gateways.php and extra item in gateways table: Constantine Kormashev
12:38 AM Bug #8880 (Assigned): [PHP7] warning on system_gateways.php and extra item in gateways table: Latest 14 Sep RC snapshot does not contain commit @a155dc5ec2278e0a344afa221127b8503d4e225e@ with this patch. But iss... Constantine Kormashev

09/15/2018

10:22 PM pfSense Packages Bug #8900: pfBlockerNG: Fixed: https://github.com/pfsense/FreeBSD-ports/pull/567 BBcan177 .
04:05 PM pfSense Packages Bug #8900 (Resolved): pfBlockerNG: Crash report begins. Anonymous machine information:
Current Base System 2.4.4.r.20180914.1544
amd64
11.2-RELE... Chris Macmahon
03:43 PM Bug #8502: main (top) menu items do not drop down in some cases: ran arpping package 1.2.2_1, executed ping to mac, hover menu's don't populate, no crash recorded
ran package iperf ... Chris Macmahon
02:53 PM pfSense Packages Bug #8899 (Resolved): AWS-ipsec error: 2.4.4-RC (amd64)
built on Fri Sep 14 15:45:39 EDT 2018
FreeBSD 11.2-RELEASE-p3
Factory install aws-wizard: F... Chris Macmahon
11:57 AM Bug #7892: AutoConfigBackup status reported incorrectly: This seems to be presenting in another way also, where System Log will show a successful backup, despite the backup n... Anonymous
09:20 AM pfSense Packages Feature #8523: make cookie inserted by haproxy secure: I've added a bunch of cookie options.. Does it work for you? Pi Ba
09:19 AM pfSense Packages Bug #8508: Haproxy: Selecting mode tcp with SSL in backend does not activate SSL in the server config: The server configuration now allows separate activation of ssl for regular traffic and for health-checks. That should... Pi Ba
07:02 AM pfSense Packages Bug #8670 (Resolved): HAProxy PHP error: Chris Macmahon
07:02 AM pfSense Packages Bug #8670: HAProxy PHP error: I am no longer seeing these errors.
Chris Macmahon

09/14/2018

12:08 PM Bug #8893 (New): Outbound NAT page unnecessarily strips underscores from alias names: You are right that one page is inconsistent with the rest. They should all be done the same way. Not going to hold ba... Jim Pingle
11:35 AM Bug #8896 (Not a Bug): Static routes are not added after reboot: I can't reproduce this. I setup a GRE interface and static routes, rebooted 10 times and every time the routes were t... Jim Pingle
01:35 AM Bug #8896 (Not a Bug): Static routes are not added after reboot: Hello,
Version tested: 2.4.3-RELEASE-p1 (amd64)
Steps to reproduce:
1. Add a GRE tunnel
2. Add some static ro... Dmitriy K
07:44 AM Bug #8897 (Not a Bug): RADIUS WebUI login with RADIUS does not work: RADIUS auth works fine when configured correctly. The subject is incorrect, or at least misleading. It works with the... Jim Pingle
04:19 AM Bug #8897 (Not a Bug): RADIUS WebUI login with RADIUS does not work: Hi all,
I setup FreeRADIUS as a RADIUS server and try to login to the WebUI then.
It is not working since the retur... Peter Baumann
06:35 AM Todo #8898 (Resolved): Update strongswan to 5.7.1: Update strongswan to 5.7.0 Renato Botelho
06:33 AM Bug #8845: Recompile PHP with a larger value of FD_SETSIZE.: Rajil Saraswat wrote:
> I am seeing the same crash on pfSense-CE-memstick-2.4.4-DEVELOPMENT-amd64-20180904-1004.img ... Renato Botelho
06:30 AM Bug #8895 (Feedback): You MUST recompile PHP with a larger value of FD_SETSIZE. It is set to 2048, but you have descriptors numbered at least as high as 2161.: Applied in changeset commit:352d49787dc5742ea53dd81ff82fef5f37b246db. Renato Botelho

09/13/2018

10:31 PM Bug #8895 (Resolved): You MUST recompile PHP with a larger value of FD_SETSIZE. It is set to 2048, but you have descriptors numbered at least as high as 2161.: Deleted issue #8894. This is similar to #8845 but insists on 3172, not 2048. Chris Linstruth
08:58 PM Bug #8893: Outbound NAT page unnecessarily strips underscores from alias names: The change above substitutes '_' with '_<wbr>' which is the same method used on other NAT pages. The '<wbr>' signals ... → luckman212
08:50 PM Bug #8893 (Not a Bug): Outbound NAT page unnecessarily strips underscores from alias names: It's done deliberately to avoid long aliases preventing wrapping. #7249 Jim Pingle
08:13 PM Bug #8893 (Resolved): Outbound NAT page unnecessarily strips underscores from alias names: I notice that underscores are being replaced with spaces in alias names on Firewall > NAT > Outbound.
It's not consi... → luckman212
08:26 PM Bug #8892 (Resolved): 2.3.5_2 does not offer update to 2.4.4-RC: Renato Botelho
07:59 PM Bug #8892: 2.3.5_2 does not offer update to 2.4.4-RC: Tested 2.3.5_2 -> 2.4.4-RC without any manual intervention. Looks good. Anonymous
01:41 PM Bug #8892 (Feedback): 2.3.5_2 does not offer update to 2.4.4-RC: pfSense-upgrade 0.51 (2.4.x) and 0.27_14 (2.3.5) are fixed Renato Botelho
01:29 PM Bug #8892: 2.3.5_2 does not offer update to 2.4.4-RC: After selecting stable 2.4.x updates:... Jim Pingle
01:26 PM Bug #8892 (Resolved): 2.3.5_2 does not offer update to 2.4.4-RC: A user on 2.3.5, who upgrades to 2.3.5_2, then tries to upgrade to 2.4.4-RC is not able to see 2.4.4-RC.
Even on t... Anonymous
07:04 PM Feature #1189: Gateway: Multiple monitor ips: Openwrt mwan3 package has multiple monitors which can be tracked, https://wiki.openwrt.org/doc/howto/mwan3#interface_... Rajil Saraswat
10:55 AM Feature #1189: Gateway: Multiple monitor ips: Just going to add to the chorus here.
We encountered routing issues (their side, whole country affected) with one ... Blaine Palmer
05:45 PM Bug #8845: Recompile PHP with a larger value of FD_SETSIZE.: I am seeing the same crash on pfSense-CE-memstick-2.4.4-DEVELOPMENT-amd64-20180904-1004.img running on Supermicro C35... Rajil Saraswat
10:24 AM Bug #8876 (Resolved): status_gateway_groups.php: PHP error when there is no gateways array: Can't reproduce any errors on gateway status in the latest RC build, even without @<gateway></gateway>@ tags in the c... Jim Pingle
10:22 AM Bug #8889 (Resolved): Setup Wizard PHP error when LAN has no DHCP configuration: Fix tests OK with a gitsync to RELENG_2_4_4, but the fix is not yet in the RC images, will be in -RELEASE. Jim Pingle
09:08 AM Bug #8891 (Resolved): PHP error with an empty CRL: Fixed on latest RC snap. Jim Pingle
09:07 AM Bug #8880 (Resolved): [PHP7] warning on system_gateways.php and extra item in gateways table: Blank entries are not displayed on current RC snap and they do not cause PHP errors. Jim Pingle
09:05 AM Bug #8877 (Resolved): VTI P2 can trigger an endless loop trying to form a P2 ID: Invalid combinations mentioned here are rejected on current RC snap Jim Pingle
09:03 AM Bug #8858 (Resolved): IPsec VTI cleanup can accidentally remove valid interfaces: Can't reproduce on RC snap on the same box where it happened previously. Looks good. Jim Pingle
08:45 AM Feature #8737 (Resolved): Let users configure PPPoE multilink over single link: Jim Pingle
08:44 AM pfSense Packages Bug #8631 (Resolved): syslog-ng - logrotate incorrectly configured to rotate TLS key: Jim Pingle
08:44 AM Bug #8499: IPv6 fragment logging causes panic in some circumstances: Still waiting on someone that can reproduce it to confirm if it still happens. May be fixed, but we won't know for ce... Jim Pingle
08:42 AM Bug #8071 (Resolved): DNSimple support for Dynamic DNS no longer working: No feedback after a month, we do not have accounts there to test. Assuming it's OK based on lack of complaints. Jim Pingle

09/12/2018

07:37 PM Bug #8890: Register DHCP leases in the DNS Resolver has no effect: Also content in /var/unbound/dhcpleases_entries.conf stays unchanged after uncheck the boxes and save, so unbound can... Ender L
07:34 PM Bug #8890: Register DHCP leases in the DNS Resolver has no effect: Jim Pingle wrote:
> Those directives are always present. The contents of those files are what matter.
OK, I looke... Ender L
02:58 PM Bug #8890 (Not a Bug): Register DHCP leases in the DNS Resolver has no effect: Those directives are always present. The contents of those files are what matter. Jim Pingle
02:48 PM Bug #8890 (Not a Bug): Register DHCP leases in the DNS Resolver has no effect: uncheck "DHCP Registration" and "Static DHCP" in WebGUI doesn't change unbound's behavior.
@# Static host entries... Ender L
05:31 PM Bug #8888: Memory Leak/loop 99% used Ramdisk band aid.: You should post in the forums.
Something else is wrong with your setup, this affects only you, thus us in the commun... Anonymous
11:24 AM Bug #8888: Memory Leak/loop 99% used Ramdisk band aid.: Jim Pingle wrote:
> Looks like it's all configuration issues there, not a memory leak, but there is not enough detai... Steven Nowak
10:47 AM Bug #8888 (Not a Bug): Memory Leak/loop 99% used Ramdisk band aid.: Looks like it's all configuration issues there, not a memory leak, but there is not enough detail to call it a bug by... Jim Pingle
10:01 AM Bug #8888: Memory Leak/loop 99% used Ramdisk band aid.: Sorry those screen shot above turned out like crap
Better one's.
[[https://ibb.co/fMe2X9]]
[[https://ibb.co/mUUf... Steven Nowak
09:46 AM Bug #8888 (Not a Bug): Memory Leak/loop 99% used Ramdisk band aid.: I am Ruining 2.4.3-p1. I have tried every thing from No Plugins, to Ramdisk Via var. I can Control it if I running a ... Steven Nowak
03:38 PM Bug #8891 (Resolved): PHP error with an empty CRL: If a CRL contains no certificates, a PHP error appears in the contents of the page... Jim Pingle
02:50 PM Bug #8889 (Feedback): Setup Wizard PHP error when LAN has no DHCP configuration: Applied in changeset commit:7c15c19d76eac725c42133012488cb97e4dcd885. Jim Pingle
02:44 PM Bug #8889 (Resolved): Setup Wizard PHP error when LAN has no DHCP configuration: If you remove LAN and then add it back, then run the Setup Wizard, a PHP error will result.
Removing the LAN remov... Jim Pingle
11:40 AM Bug #8868: multiple php errors on update: Upgrading to 2.4.4-RC from Sept 11, the php errors are still present.
https://netgate.slack.com/files/U32BGSZBP/FC... Anonymous

09/11/2018

08:16 PM Bug #8868: multiple php errors on update: A while ago I added a code on pfSense-upgrade to cleanup crash report when PHP major version changes. I couldn't repr... Renato Botelho
08:14 PM Bug #8868: multiple php errors on update: Steve Wheeler wrote:
> Still seeing one of those PHP warning updating to todays image:
>
> [...]
This one shou... Renato Botelho
05:42 PM Bug #8868: multiple php errors on update: Still seeing one of those PHP warning updating to todays image:... Steve Wheeler
05:18 PM pfSense Packages Bug #8887: Squid Proxy Interface not assignee to IPv6: For fix this issue maybe better not add IP at all if look to documentation: http://www.squid-cache.org/Versions/v3/3.... DRago_Angel [InV@DER]
05:06 PM pfSense Packages Bug #8887 (Resolved): Squid Proxy Interface not assignee to IPv6: Package Version:
squid www 0.4.43_1
Package Dependencies:
squid-3.5.27_3
cat /etc/version
2.4.3-RELEASE
c... DRago_Angel [InV@DER]
03:20 PM Todo #8886 (Not a Bug): Update downloads page once hybrid iso/img installers are implemented: Once hybrid iso/img installers are implemented, we can remove the ISO and just have the hybrid memstick option for t... Jared Dillard
02:37 PM Bug #8815 (New): IP addresses are removed from interfaces when link is lost and either IPv4 or IPv6 is dynamic: Luiz Souza
02:37 PM Bug #8815: IP addresses are removed from interfaces when link is lost and either IPv4 or IPv6 is dynamic: Luiz Souza
02:29 PM pfSense Packages Bug #8885: HAProxy "Log hostname parameter broke local syslog: Package Version:
haproxy-devel net 0.59_9
Package Dependencies:
haproxy-devel-1.8.13

cat /etc/version
2.4.... DRago_Angel [InV@DER]
02:14 PM pfSense Packages Bug #8885 (Closed): HAProxy "Log hostname parameter broke local syslog: DRago_Angel [InV@DER]
01:41 PM pfSense Packages Bug #8670 (Feedback): HAProxy PHP error: Jim Pingle
10:57 AM Bug #8859 (New): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Needs more thought/testing than we'll have time for to make 2.4.4. There are workarounds on the linked forum thread f... Jim Pingle
06:05 AM Bug #8859 (Feedback): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Applied in changeset commit:59c2e21d4f903ebaed3af861aeecab9b7e94d037. Jim Pingle
07:53 AM Bug #8883: Default route order set in Routing not honored: Though, as food for thought: ... Jaime Geiger
07:46 AM Bug #8883: Default route order set in Routing not honored: Thanks for your time. I'll just keep the changes locally. Jaime Geiger
07:45 AM Bug #8883: Default route order set in Routing not honored: It may appear to "work" for you but it is not a general fix that will work across all platforms, and may not behave c... Jim Pingle
07:29 AM Bug #8883: Default route order set in Routing not honored: I have created a fix (above) so clearly there can be something done in your code. The fix does not break current conf... Jaime Geiger
07:20 AM Bug #8883 (Not a Bug): Default route order set in Routing not honored: Having two interfaces in the same subnet is not supported, nor is having two interfaces with the same gateway.
The... Jim Pingle
07:16 AM Bug #8883: Default route order set in Routing not honored: I propose the following fix on /etc/int/system.inc line 755:... Jaime Geiger
06:20 AM Bug #8883: Default route order set in Routing not honored: this is on amd64, by the way. Jaime Geiger
06:20 AM Bug #8883 (Not a Bug): Default route order set in Routing not honored: I have two interfaces:
- xn0: 10.0.0.253, gateway 10.0.0.1 (WAN)
- xn1: 10.0.0.254, gateway 10.0.0.1 (WAN2)
If I... Jaime Geiger
06:05 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: Applied in changeset commit:a155dc5ec2278e0a344afa221127b8503d4e225e. Anonymous
06:05 AM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Applied in changeset commit:885cf6a751f076f43fa89167ba2a79f779244f1b. Jim Pingle
06:05 AM Bug #8876: status_gateway_groups.php: PHP error when there is no gateways array: Applied in changeset commit:b54a1af45c5add4e57253bfa0b562dadf3ae10f7. Jim Pingle

09/10/2018

08:31 PM Bug #8882 (Incomplete): Interface assignments lost on reboot: I'm running pfsense in AWS and I'm trying to route out of xn1 (second interface) instead of xn0 (using it as a sync i... Jaime Geiger
02:01 PM Bug #8880 (Feedback): [PHP7] warning on system_gateways.php and extra item in gateways table: Anonymous
06:33 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: Configs for reproducing bug _only Netgate has access_ https://drive.google.com/file/d/1N8hgWGgN4ccwUB0ldBpjGQFZdRo96m... Constantine Kormashev
06:24 AM Bug #8880 (Resolved): [PHP7] warning on system_gateways.php and extra item in gateways table: 244-RC... Constantine Kormashev
01:21 PM Bug #8815 (In Progress): IP addresses are removed from interfaces when link is lost and either IPv4 or IPv6 is dynamic: Anonymous
01:21 PM Bug #8815: IP addresses are removed from interfaces when link is lost and either IPv4 or IPv6 is dynamic: Anonymous
12:51 PM pfSense Packages Bug #8139: LADVD not working on LAGG interfaces: Based on the discussion in the repo (https://github.com/sspans/ladvd/issues/36), the FreeBSD port has been updated: h... Tom Cosmos
10:57 AM Bug #8859 (In Progress): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: This apparently fails despite previous reports of manual edits working. See
https://forum.netgate.com/post/788458
... Jim Pingle
04:37 AM pfSense Packages Feature #8232: different ssl options based on the sni name: Hi Pi Ba,
looks like this patch not work with the most recent version of pfsense 2.4.3 P1. Can you check please?... Zoltan Beck

09/09/2018

06:37 PM pfSense Packages Bug #8139: LADVD not working on LAGG interfaces: The creator of the LADVD package is saying this is likely fixed in his 1.1.2 implementation, and PFSense is still usi... Tom Cosmos
08:06 AM Bug #8527: VLANs losing parent interface on LAGG change: I still saw this issue on 2.4.4.r.20180905.2249 Azamat Khakimyanov

09/08/2018

11:15 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Should have something up on Monday to try with gitsync at least, hopefully an RC as well. Jim Pingle
03:36 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Okay thanks. So wait for a RC build now or gitsync to test.? Seems snapshots don't get updated a.t.m. . Pi Ba
03:16 PM pfSense Packages Bug #8139: LADVD not working on LAGG interfaces: Created issue to track in official repo:
https://github.com/sspans/ladvd/issues/36 Tom Cosmos

09/07/2018

04:29 PM Bug #8870: Webgui incorrectly reports "The system is on the latest version".: Yep I hit this one a couple of days ago, on whatever snap was latest as of 9/5
pkg goes braindead in some way if t... → luckman212
01:32 PM pfSense Packages Bug #8103 (Resolved): squid monitor using hard coded logs location: Jim Pingle
01:30 PM pfSense Packages Bug #8103: squid monitor using hard coded logs location: Issue can be closed, already merged on GitHub
https://github.com/pfsense/FreeBSD-ports/commit/b7c4da7878f8da6169c5... Nano Caiordo
09:14 AM Feature #8879: DHCP options ADD force options: pfSense uses ISC DHCPD for DHCP, not dnsmasq. ISC DHCPD doesn't have a way to force an option in quite that same mann... Jim Pingle
09:11 AM Feature #8879 (New): DHCP options ADD force options: DHCP server offer the possiblilty to add DHCP options.
Maybe add for options the possibility to force the options (w... jonathan MANTOVANI
07:13 AM Bug #8877 (Feedback): VTI P2 can trigger an endless loop trying to form a P2 ID: I just pushed another bit of input validation to prevent VTI from being selected on mobile IPsec. That should hopeful... Jim Pingle

09/06/2018

04:38 PM pfSense Packages Feature #8878 (Resolved): Propagate user's description field into QR code for FreeRADIUS: Hi,
it is often desirable (esp. when you have more than one identity added in your Google Auth mobile app) to dist... Juraj Lutter
04:27 PM Bug #8877 (In Progress): VTI P2 can trigger an endless loop trying to form a P2 ID: Yeah the mobile case is still a bit undefined. I can shut that down as well. I'm not sure that is feasible since VTI ... Jim Pingle
04:14 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: i could configure vti on a 'normal' site-to-site vpn so perhaps its just a 'user issue' :) if so then sorry for the n... Pi Ba
04:06 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Perhaps the issue was that i made my mobile-ipsec P2 use vti.. perhaps that does not actually make sense to do.?. it ... Pi Ba
03:35 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: I haven't tried setting one up this way but if someone were to have incorrectly selected something like "LAN Network"... Jim Pingle
03:07 PM Bug #8877 (Feedback): VTI P2 can trigger an endless loop trying to form a P2 ID: I can maybe see how some combination may lead to a loop here but I can't seem to make it happen on any of mine.
So... Jim Pingle
03:05 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Its about the vti and it looping around. see screenshot of a stacktrace. Pi Ba
02:34 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: I suspect it would have done the same for any other additional interface you add there and VTI was a coincidence. May... Jim Pingle
02:29 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: agreed that the lines don't 'directly' point to vti.. however only when i enable 'that' interface its runs for a minu... Pi Ba
02:22 PM Bug #8877 (Not a Bug): VTI P2 can trigger an endless loop trying to form a P2 ID: That doesn't look like it would have anything to do with VTI. The lines you reference are quite different, one is a g... Jim Pingle
02:03 PM Bug #8877 (Resolved): VTI P2 can trigger an endless loop trying to form a P2 ID: Enabling a vti OPT1 interface throws me the following errors after a minute while processing the 'apply' button.. lik... Pi Ba
03:00 PM Bug #8001: Invalid FQDN in alias causes alias table to fail *silently*: possibly related bug: https://redmine.pfsense.org/issues/8758 → luckman212
03:00 PM Bug #8758: filterdns stops working on a regular basis.: Ok, I've done that. For anyone else who wants an easy way, I made a patch that you can add via System Patches:
https... → luckman212
02:34 PM Bug #8527 (Feedback): VLANs losing parent interface on LAGG change: Waiting the next -RC build. Luiz Souza
07:14 AM Todo #6647: Enable Additional Security Headers: Fixed the subject to be more general since this is covering more than just CSP at this point.
We had someone askin... Jim Pingle

09/05/2018

09:26 PM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: You were probably kidding, but my ISP will propose exactly this (40 gig) in 2-3 years ... at least that's the plan.
... Alexandre Paradis
04:03 PM Bug #8876 (Feedback): status_gateway_groups.php: PHP error when there is no gateways array: Fix committed, will be in snaps when they are running again. Jim Pingle
03:08 PM Bug #8876 (Resolved): status_gateway_groups.php: PHP error when there is no gateways array: ... Jim Pingle
12:15 PM Feature #6742: OAuth2 authentication for OpenVPN (and for FreeRadius): +1 on my side as well. We need this in order to properly implement VPN/IPSec/FreeRadius for our remote workers to int... Patrick Monfette
04:03 AM Feature #8737: Let users configure PPPoE multilink over single link: Confirm option existing in GUI and in device config
!option.png!... Constantine Kormashev
12:56 AM Bug #8875 (Duplicate): Separator in DHCP Server: Hi. Having a seperator in DHCP Server would be nice to allocate ip addresses like in Firewall Rules. Elvin Mammadov

09/04/2018

09:43 PM Bug #6263: Encryption options for every P2 on a given P1 are written to each P2 individually inside ipsec.conf with multiple P2 entries + split conn entries: PJ Goodwin wrote:
> Looked into this and the attached patch appears to fix the issue in 2.4.2. The comparable chang... PJ Goodwin
02:44 PM Bug #8806 (Resolved): HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Anonymous
02:25 PM Bug #8806: HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Working correctly on the last snapshot
This issue can be marked as resolved. A FL
09:05 AM Bug #8806: HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Applied in changeset commit:7cab6335bb56d2ac372a195719be28c55b2cb252. Renato Botelho
09:01 AM Bug #8806 (Feedback): HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Renato Botelho
02:41 PM Bug #8874 (Not a Bug): IPSEC Phase 2 Duplicated: It's unlikely that is the cause of your problem. Please keep this kind of guesswork/debugging on the forum until a sp... Jim Pingle
02:38 PM Bug #8874 (Not a Bug): IPSEC Phase 2 Duplicated: We detect some network issues between some sites. Look at IPSEC status, we can see some of our tunnels with Phase 2 d... Alan Santos
02:36 PM pfSense Packages Bug #8873 (Feedback): PHP7 warning in squidguard: Fix pushed. 824d08577196346be0e7d24d925bf3338208bd89
also cherry-picked to 2.4.4 3c1f879caabe7f9059e0a0143689d2d0b3c... Anonymous
11:15 AM pfSense Packages Bug #8873 (Resolved): PHP7 warning in squidguard: [02-Sep-2018 21:00:29 Etc/UTC] PHP Warning: Use of undefined constant GIF_BODY - assumed 'GIF_BODY' (this will throw... Anonymous
02:31 PM pfSense Packages Bug #8872: PHP7 error in squid: Cherry-picked to 2.4.4 as well d47455c16c985d3d98fea422855a0dc7bf78c657 Anonymous
02:28 PM pfSense Packages Bug #8872 (Feedback): PHP7 error in squid: Fix Pushed 90c367bf2f2fcd61ed631bd3c4fd6634a253b5d6. Anonymous
11:14 AM pfSense Packages Bug #8872 (Resolved): PHP7 error in squid: [02-Sep-2018 21:45:02 Etc/UTC] PHP Fatal error: Uncaught Error: Call to undefined function split() in /usr/local/pkg... Anonymous
01:47 PM Bug #8758: filterdns stops working on a regular basis.: Luke Hamburg wrote:
> I have definitely hit this one - yes it is hard to reproduce. But, if I hit it again, is it wo... Renato Botelho
01:09 PM Bug #8758: filterdns stops working on a regular basis.: I have definitely hit this one - yes it is hard to reproduce. But, if I hit it again, is it worth sending any sort of... → luckman212
09:10 AM Bug #8758: filterdns stops working on a regular basis.: Currently unable to reproduce Anonymous
01:31 PM Feature #8160: Accomodate both RADIUS and pool IP addresses in IPsec: Implementation PR: https://github.com/pfsense/pfsense/pull/3976 Louis C
10:37 AM Bug #8721 (Resolved): DHCP High Availability - Statis assignement Issue on BackUP machine: Constantine Kormashev
10:35 AM Bug #8721: DHCP High Availability - Statis assignement Issue on BackUP machine: It works well on latest... Constantine Kormashev
10:18 AM Bug #8499: IPv6 fragment logging causes panic in some circumstances: Looks like this is PPPoE related issue. I do not see problem with fragmented IPv6 and logging on Ethernet IPv6 forwar... Constantine Kormashev
09:34 AM Bug #8499: IPv6 fragment logging causes panic in some circumstances: I've never been able to replicate that locally. It's going to be very difficult to test. Steve Wheeler
09:59 AM Bug #8863 (Resolved): amdtemp.ko module failed to load: Fixed... Renato Botelho
09:10 AM Bug #8863: amdtemp.ko module failed to load: Applied in changeset commit:2eeeec06d7b8d719a8913c69095675a695305918. Renato Botelho
09:04 AM Bug #8863 (Feedback): amdtemp.ko module failed to load: Renato Botelho
02:51 AM pfSense Packages Bug #8871: Suricata: input not validated properly in suricata_rulesets.php results in wrong argument passed to in_array(): Forgot to set Category -> Suricata.
Running b0703dcab3c(RELENG_2_4_4) (snapshot) with latest Suricata package availa... L H
02:50 AM pfSense Packages Bug #8871 (Resolved): Suricata: input not validated properly in suricata_rulesets.php results in wrong argument passed to in_array(): Spotted this today:... L H

09/03/2018

02:29 PM Bug #8870 (Resolved): Webgui incorrectly reports "The system is on the latest version".: In some circumstances the dashboard can report that the system is on the latest version when in fact the pkg system i... Steve Wheeler
01:25 PM Bug #8721: DHCP High Availability - Statis assignement Issue on BackUP machine: Applied in changeset commit:7fead243f9e6238e0098ea2bdc3c992fa071efeb. Renato Botelho
01:17 PM Bug #8721 (Feedback): DHCP High Availability - Statis assignement Issue on BackUP machine: Renato Botelho
01:18 PM Bug #8806 (In Progress): HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Renato Botelho
07:20 AM Bug #8866: cleaning backup cache can take VERY long: It does load/parse them to check that they are valid so it can clean out invalid/broken configurations.
It's behav... Jim Pingle
01:36 AM Bug #8866: cleaning backup cache can take VERY long: You were right as in i increased that setting. By a lot. We edit config quite often, so 30 backups wasn't feasible an... Militades Sunfire

09/02/2018

10:35 PM pfSense Packages Feature #8869: HAproxy should use RFC 7919 DH parameter files: It should not let you use a self-generated DH parameter file, but use the stock system DH parameter files which are f... Jim Pingle
10:20 PM pfSense Packages Feature #8869 (New): HAproxy should use RFC 7919 DH parameter files: It would be really nice to have a UI option to generate a custom DH parameter file for HAproxy to use.
The origina... Stéphane Lapie
06:33 AM Bug #8192: dpinger - Change in ISP link-local IPv6 address drops connectivity: One is for DHCPv6, one is for PPPoE. They could be different problems, they could be the same problem, needs more res... Jim Pingle
12:00 AM Bug #8192: dpinger - Change in ISP link-local IPv6 address drops connectivity: Is this a dupe of #8136? → luckman212

09/01/2018

03:57 PM Feature #8867: interfaces_vlan_edit.php does not display proper interface aliases: Jim Pingle wrote:
> That is because VLANs are a child of the physical interface, not an assigned interface. The assi... Xan Lorimer
02:43 PM Feature #8867 (Not a Bug): interfaces_vlan_edit.php does not display proper interface aliases: That is because VLANs are a child of the physical interface, not an assigned interface. The assignments and descripti... Jim Pingle
11:20 AM Feature #8867 (Confirmed): interfaces_vlan_edit.php does not display proper interface aliases: On /interfaces_vlan_edit.php (Interfaces>Assignments>VLANs>Add), when the parent interface drop-down list is clicked,... Xan Lorimer
02:44 PM Todo #8860 (Resolved): Change status.php to use "ifconfig -va" for more detail: Jim Pingle
01:11 PM Todo #8860: Change status.php to use "ifconfig -va" for more detail: On 2.4.4.a.20180831.2010, looks good.
Network-Intefaces shows module information for SFP+... Anonymous
01:20 PM Bug #8868 (Not a Bug): multiple php errors on update: Installed Current Factory System: 2.4.3_1
Added packages: Squid, squidguard, lightsquid, pfblockerng, and Snort
... Chris Macmahon
07:59 AM Bug #8859 (Resolved): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Jim Pingle
04:12 AM Bug #8859: VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: On Fri Aug 31 20:10:51 EDT 2018:
Created P2 with VTI remote network, then changed it to remote address - changes a... Vladimir Lind
07:50 AM Bug #8866 (Not a Bug): cleaning backup cache can take VERY long: By default it only keeps 30 backups. There is no way it would have as many files as you state without being manually ... Jim Pingle
04:26 AM Bug #8866 (Not a Bug): cleaning backup cache can take VERY long: Hi,
my pfSense is running on rather sparse CPU ressources (Atom N2800). Rebooting takes up to 30 minutes (actually c... Militades Sunfire
05:47 AM Bug #8857 (Resolved): PHP error when saving on vpn_ipsec_settings.php: Anonymous
04:58 AM Bug #8857: PHP error when saving on vpn_ipsec_settings.php: Reset sg2440 Fri Aug 31 20:10:51 EDT 2018 to factory and then opened vpn_ipsec_settings.php, clicked "save" - no erro... Vladimir Lind

08/31/2018

10:40 PM pfSense Docs Correction #8865 (Rejected): Feedback on Networking Concepts — IPv6 — IPv6 Subnetting: *Page:* https://www.netgate.com/docs/pfsense/book/network/ipv6-subnets.html
*Feedback:*
IPv6 Subnet Table
IPv6 ... Rick Coats
04:59 PM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: Sorry I meant to put 2.4.4.a.20180831.0830 in the topic after 'SSH Guard on 2.4.4.a.20180831.0830' Zachary McGibbon
04:58 PM Bug #8864 (Resolved): SSH Guard Sensitivity/Whitelist on 2.4.4: I am running 2.4.4.a.20180831.0830 and noticed that my Icinga monitoring started to show issues with SSH. When I loo... Zachary McGibbon
03:09 PM Bug #8863 (Resolved): amdtemp.ko module failed to load: amdtemp.ko module failed to load with the following error message
KLD amdtemp.ko: depends on amdsmn - not availabl... Cédric Caron
02:49 PM Bug #8856 (Resolved): IPsec not starting and getting PHP error: Jim Pingle
02:07 PM Bug #8856: IPsec not starting and getting PHP error: Yes, fsck fixed IPsec issue, now it works, thank you.
** Last Mounted on /
** Root file system
** Phase 1 - Chec... Vladimir Lind
08:25 AM Bug #8856 (Feedback): IPsec not starting and getting PHP error: Applied in changeset commit:b5a4633f9ffeb365aba1d8b451f3638b37452b23. Jim Pingle
08:06 AM Bug #8856 (In Progress): IPsec not starting and getting PHP error: I see some room for improvement in that area of the code, but that error appears to come from a disk issue.
Speaki... Jim Pingle
01:23 AM Bug #8856 (Resolved): IPsec not starting and getting PHP error: on SG3100 Thu Aug 30 00:38:38 EDT 2018
Crash report begins. Anonymous machine information:
arm
11.2-RELEASE-p... Vladimir Lind
11:52 AM pfSense Docs Correction #8862 (Resolved): [feedback form] Include configuration examples for IPv6 WANs: *Page:* https://docs.netgate.com/pfsense/en/latest/interfaces/configure-ipv6.html
*Feedback:* Examples would be ni... Jared Dillard
11:09 AM Bug #7604: Bug #6594 is not resolved: Waiting for Internet connection to update pkg metadata and finish package reinstallation: Repeated the same test with installed squid, bind packages - all good, no delay's in bootup. Vladimir Lind
10:03 AM Feature #8861 (Resolved): Show SFP module details on ``status_interfaces.php``: Looking at the output of @ifconfig -v@, there is more info we could be showing on status_interfaces.php.
At a mini... Jim Pingle
09:55 AM Todo #8860 (Feedback): Change status.php to use "ifconfig -va" for more detail: Applied in changeset commit:836ee3aaca674a84dec47dce9a1183b98352ba4f. Jim Pingle
09:47 AM Todo #8860 (Resolved): Change status.php to use "ifconfig -va" for more detail: @ifconfig -v@ will return more info than the @ifconfig@ alone. For @ix(4)@ interfaces it will print information about... Jim Pingle
09:15 AM Bug #8859 (Feedback): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Applied in changeset commit:da54e84ae79328a87b4a319239bb1b14d7ed2ce6. Jim Pingle
09:10 AM Bug #8859 (In Progress): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Jim Pingle
09:09 AM Bug #8859 (Resolved): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Some equipment that supports VTI requires the remote address be set to a network and not the default address, or else... Jim Pingle
09:05 AM Bug #8858 (Feedback): IPsec VTI cleanup can accidentally remove valid interfaces: Applied in changeset commit:74e4543842c47efda37e3b078b8e5cc3f54ce9ba. Jim Pingle
08:56 AM Bug #8858 (In Progress): IPsec VTI cleanup can accidentally remove valid interfaces: Jim Pingle
08:56 AM Bug #8858 (Resolved): IPsec VTI cleanup can accidentally remove valid interfaces: Then code that cleans up deleted/disabled IPsec VTI interfaces can, with certain configurations, delete a valid inter... Jim Pingle
07:35 AM Bug #8857 (Feedback): PHP error when saving on vpn_ipsec_settings.php: Applied in changeset commit:463b52b606d98b72cbaeb2f6d3c348689106c414. Jim Pingle
07:28 AM Bug #8857 (In Progress): PHP error when saving on vpn_ipsec_settings.php: Jim Pingle
07:26 AM Bug #8857 (Resolved): PHP error when saving on vpn_ipsec_settings.php: From a fresh install with no IPsec configuration, clicking Save on vpn_ipsec_settings.php gives a PHP error:... Jim Pingle
05:36 AM pfSense Packages Bug #8790 (Resolved): getting PHP error regarding HAproxy pkg: Anonymous
02:08 AM pfSense Packages Bug #8790: getting PHP error regarding HAproxy pkg: Hi!
All OK, thanks! Greg M

08/30/2018

09:53 PM pfSense Packages Bug #8829: Keep settings checkbox under Global Settings does not behave as expected: On a fresh install of 2.4.4.a.20180830.1356, when snort 3.2.9.7_2 is installed the output is :... Anonymous
09:30 PM pfSense Packages Bug #8829 (Resolved): Keep settings checkbox under Global Settings does not behave as expected: Anonymous
09:17 PM pfSense Packages Bug #8829: Keep settings checkbox under Global Settings does not behave as expected: On version 3.2.9.7_2, installed suricata, configured some settings, unchecked the Keep settings checkbox, uninstalled... Anonymous
11:37 AM pfSense Packages Bug #8829 (Feedback): Keep settings checkbox under Global Settings does not behave as expected: This should now work as expected. c5d12ed2814f7ed5c002fb71fae6d992708bc4f9
Snort version 3.2.9.7_2 Anonymous
09:49 PM pfSense Packages Bug #8828 (Resolved): Keep settings checkbox under Global Settings does not behave as expected: Anonymous
09:49 PM pfSense Packages Bug #8828: Keep settings checkbox under Global Settings does not behave as expected: On a fresh install of 2.4.4.a.20180830.1356, when suricata 4.0.13_8 is installed the output is :... Anonymous
05:50 PM pfSense Packages Bug #8828: Keep settings checkbox under Global Settings does not behave as expected: On version 4.0.13_8, installed suricata, configured some settings, unchecked the Keep settings checkbox, uninstalled ... Anonymous
11:17 AM pfSense Packages Bug #8828 (Feedback): Keep settings checkbox under Global Settings does not behave as expected: Anonymous
11:17 AM pfSense Packages Bug #8828: Keep settings checkbox under Global Settings does not behave as expected: I found that the code to remove the package forgot to use 'write_config()' after removing the Suricata configurations... Anonymous
04:49 PM pfSense Packages Bug #8670: HAProxy PHP error: This issues with haproxy should be fixed with current 0.59_11 version. If not please let me know the exact error you ... Pi Ba
04:47 PM pfSense Packages Bug #8790: getting PHP error regarding HAproxy pkg: Should be fixed with current 0.59_11 version. If not please let me know the exact error you get and when that happens. Pi Ba
04:47 PM pfSense Packages Bug #8833: haproxy getarraybyref error: Should be fixed with current 0.59_11 version. If not please let me know the exact error you get and when that happens. Pi Ba
09:39 AM Bug #8767 (Resolved): ID handling problem with DNS Forwarder host override management: Anonymous
08:43 AM Feature #8855 (Rejected): View Description field on widget for OpenVPN: Hi!!!
Its useful add on widget for OpenVpN, view the description field too , for get information about a user when c... Luis Garcia
07:59 AM Bug #8850 (Resolved): Packages that start on sync are started multiple times at boot: Jim Pingle
07:45 AM Bug #8850 (Feedback): Packages that start on sync are started multiple times at boot: Applied in changeset commit:880107d21f5e69201ba810d553d948ca9009f70d. Jim Pingle
07:39 AM Bug #8850: Packages that start on sync are started multiple times at boot: Looks like one line of the fix didn't make it into the final commit. Will push a correction momentarily after re-test... Jim Pingle
07:59 AM pfSense Packages Bug #8620 (Resolved): arpwatch database page is not accessible: Jim Pingle
07:59 AM pfSense Packages Bug #8620: arpwatch database page is not accessible: Gitsynced, retested - now looks good, no arpwatch duplicated processes Vladimir Lind
07:51 AM pfSense Packages Bug #8620: arpwatch database page is not accessible: OK to test again after a gitsync or an update to a snapshot which includes my last commit on #8850 Jim Pingle
07:40 AM pfSense Packages Bug #8620: arpwatch database page is not accessible: Looks like one line of my commit is missing, will push a correction momentarily. The package is OK, the problem is on... Jim Pingle
04:44 AM pfSense Packages Bug #8620: arpwatch database page is not accessible: Yup, seeing the same on Wed Aug 29 19:26:24 EDT 2018 with pfSense-pkg-arpwatch-0.1.1:
root 37039 0.0 0.3 ... Vladimir Lind
07:20 AM Bug #8726 (Resolved): Lack of input validation on custom GUI/dashboard settings leads to potential XSS: Jim Pingle
06:56 AM Todo #8851 (Resolved): Change default CA/Cert action to "Create an internal...": Jim Pingle
06:56 AM Todo #8851: Change default CA/Cert action to "Create an internal...": On factory 2.4.4.a.20180830.0038, SG-3100
Click System -> Cert. Manager, CAs
Default selection is 'Create an i... Chris Macmahon

08/29/2018

11:33 PM Bug #8726: Lack of input validation on custom GUI/dashboard settings leads to potential XSS: On 2.4.4.a.20180829.1926, tried a XSS injection example as the dashboardcolumns value in the pfSense config.xml, relo... Anonymous
11:16 PM Bug #8845 (Resolved): Recompile PHP with a larger value of FD_SETSIZE.: Anonymous
11:15 PM Bug #8845: Recompile PHP with a larger value of FD_SETSIZE.: On 2.4.4.a.20180829.1926, ... Anonymous
08:43 PM pfSense Packages Bug #7661: pfBlockerNG doesn't make a rule for Antarctica: I just tried the latest pfBlockerNG and the is has NOT been resolved!
Please re-open the bug.
Stuart Wyatt
08:25 PM pfSense Packages Bug #8620: arpwatch database page is not accessible: On 2.4.4.a.20180829.1926 (gitsync'd to master) with arpwatch version 0.1.1,
Seeing one instance of arpwatch for ea... Anonymous
02:10 PM pfSense Packages Bug #8620 (Feedback): arpwatch database page is not accessible: Should be improved by https://github.com/pfsense/FreeBSD-ports/commit/aa78e490fe92d5640a742bbe77012a5ba626b084 but th... Jim Pingle
07:45 PM Todo #8851: Change default CA/Cert action to "Create an internal...": On 2.4.4.a.20180829.1429 (gitsync'd to master), looks good. Create CA/Cert is the default behavior now. Anonymous
03:05 PM Todo #8851 (Feedback): Change default CA/Cert action to "Create an internal...": Applied in changeset commit:b0a5c280a407ac26af2e6f055ac1049304034672. Jim Pingle
02:58 PM Todo #8851 (Resolved): Change default CA/Cert action to "Create an internal...": When the certificate manager was first created, the most common user action was to import and not create. We are long... Jim Pingle
04:35 PM pfSense Docs Correction #8854 (Resolved): [feedback form] Define Broadcast Domain and switch loops: *Page:* https://docs.netgate.com/pfsense/en/latest/network/broadcast-domains.html
*Feedback:* The section tells w... Jared Dillard
04:32 PM pfSense Docs Correction #8853 (Resolved): [feedback form] Explain what 0:0 means: *Page:* https://www.netgate.com/docs/pfsense/book/monitoring/firewall-states-gui.html
*Feedback:* What does 0:0 me... Jared Dillard
04:30 PM pfSense Docs Correction #8852 (Resolved): Clarify purpose of "Client Identifier" in DHCP static mapping: *Page:* https://docs.netgate.com/pfsense/en/latest/services/dhcp/ipv4.html
*Feedback:* I am unclear about "Client ... Jared Dillard
03:23 PM Bug #8518: Rule Error On Upgrade 2.4.3 -> 2.4.3-p1: Steffen Wagner wrote:
> the above commands fixed it for me as well. An official patch for p1 would be good!
Can y... Jesse Alexander
03:03 PM Bug #8767: ID handling problem with DNS Forwarder host override management: Fixed the illegal string offset error described above. bc91bdffcefd009f4716cce59eab231c2245fb18
I did not notice a... Anonymous
02:58 PM Bug #8850 (Resolved): Packages that start on sync are started multiple times at boot: Tested with arpwatch installing fresh, configuring and multiple reboots Anonymous
01:34 PM Bug #8850: Packages that start on sync are started multiple times at boot: For an example of the change to make on packages, see https://github.com/pfsense/FreeBSD-ports/commit/aa78e490fe92d56... Jim Pingle
01:30 PM Bug #8850 (Feedback): Packages that start on sync are started multiple times at boot: Applied in changeset commit:5d4f49000654fae594144abc36fe8a588a028510. Jim Pingle
01:19 PM Bug #8850 (In Progress): Packages that start on sync are started multiple times at boot: Jim Pingle
01:19 PM Bug #8850 (Resolved): Packages that start on sync are started multiple times at boot: When @/etc/rc.start_packages@ is run, for example at boot time, it performs a package sync with @sync_package()@ and ... Jim Pingle
11:40 AM Feature #8849 (Duplicate): DHCP Custom configuration: I would suggest a field so we can use additional settings. There is the possibility of making several subnet with use... Thiago Gomes
09:44 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: The description and behavior are correct for POSIX style zones. See note 9 above. The "Etc/GMT+4" zone means 4 hours ... Jim Pingle
09:34 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: Although the description tells how it works, the GMTs are wrong.
The correct GMTs are "+" (before GMT) and "-" (af... Filipe Teixeira
09:40 AM Bug #8138 (Resolved): Option <spoofmac> is ignored on interfaces without hwaddr: Tested on a VM with CE:
2.4.4-DEVELOPMENT (amd64)
built on Wed Aug 29 00:38:57 EDT 2018
FreeBSD 11.2-RELEASE-p2
... Anonymous
09:34 AM Bug #8848: GMT timezones reversed: Although the description tells how it works, the GMT's on web interface are wrong.
The correct GMTs are "+" (befor... Filipe Teixeira
09:21 AM Bug #8848 (Rejected): GMT timezones reversed: The descriptions of the zones make this very clear, they explain the behavior and whether or not they are ahead of or... Jim Pingle
09:10 AM Bug #8848 (Rejected): GMT timezones reversed: On System > General Setup, timezones GMT[+-]X are reversed.
If set GMT-4 on web interface, it apllies GMT+4 on sys... Filipe Teixeira
08:08 AM Feature #8644 (Resolved): IPsec mobile clients DNS enhancement: I check this Bug on old 2.4.4.a.20180801.0114: DNS from /VPN/IPsec/Mobile Clients menu was set up into '/var/etc/ipse... Azamat Khakimyanov
07:34 AM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: Greg M wrote:
> I am on:
> 2.4.4-DEVELOPMENT (amd64)
> built on Wed Aug 29 00:38:57 EDT 2018
> FreeBSD 11.2-RELEA... Renato Botelho
06:32 AM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: I am on:
2.4.4-DEVELOPMENT (amd64)
built on Wed Aug 29 00:38:57 EDT 2018
FreeBSD 11.2-RELEASE-p2
The system is ... Greg M
05:34 AM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: Greg M wrote:
> Hi!
>
> Installed, when I open it:
>
> Fatal error: Uncaught Error: Call to undefined function... Renato Botelho
01:13 AM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: Hi!
Installed, when I open it:
Fatal error: Uncaught Error: Call to undefined function pfsense_pkg\acme\getarra... Greg M
01:14 AM pfSense Packages Bug #8790: getting PHP error regarding HAproxy pkg: Same here.
Haproxy is not installed after this error and services are down. Greg M

08/28/2018

09:55 PM pfSense Packages Bug #8620: arpwatch database page is not accessible: I'm interested in a fix for this as well. On 2.4.3-p1 I have the same issues -- multiple emails and nothing in the da... Dallas Haselhorst
05:45 PM Bug #8847 (Resolved): IPsec status "Show Child SA entries" button only expands and never collapses: I am using version 2.4.4, I noticed that in ipsec status when clicking (+) Show child SA entries is shown the details... Marcio Gomes
05:29 PM Feature #2358: NAT64 support: Another upvote. At some point in the future we're going to start having needs for v6-only networks. For some of the... Sean Harlow
04:51 PM Bug #8837 (Resolved): PHP error when creating alias URL Table (IPs): Anonymous
04:26 PM Bug #8837: PHP error when creating alias URL Table (IPs): This commit seems to have solved the issue. Steve Harrington
03:35 PM Bug #8837: PHP error when creating alias URL Table (IPs): The `[] operator not supported` error should be fixed in the next snap.
0a906fcc2e120e7dd290ce7faac1ba14a24f731b Anonymous
03:55 PM Bug #8683 (Resolved): Unable to add GIF interface (Hurricane Electric IPv6): Tested on 2.4.4-DEVELOPMENT (amd64)
built on Tue Aug 28 08:43:43 EDT 2018
FreeBSD 11.2-RELEASE-p2
Was able to... Anonymous
09:03 AM Bug #8683: Unable to add GIF interface (Hurricane Electric IPv6): Result for @gre@ also looks good. Jim Pingle
08:52 AM Bug #8683: Unable to add GIF interface (Hurricane Electric IPv6): ... Anonymous
03:22 PM Bug #8824 (Resolved): is_numeric() on PHP 7 no longer validates hexadecimal values: Tested on: 2.4.4-DEVELOPMENT (amd64)
built on Tue Aug 28 08:43:43 EDT 2018
FreeBSD 11.2-RELEASE-p2
Haven't ... Anonymous
03:12 PM Bug #8823 (Resolved): Dashboard Crash: Tested on 2.4.4-DEVELOPMENT (amd64)
built on Tue Aug 28 08:43:43 EDT 2018
FreeBSD 11.2-RELEASE-p2
No crashes ... Anonymous
02:58 PM pfSense Packages Feature #8613 (Feedback): pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: PR merged, should be ready for testing shortly Jim Pingle
02:47 PM Bug #8726: Lack of input validation on custom GUI/dashboard settings leads to potential XSS: As long as it doesn't lead to an XSS it should be OK. Try using a typical XSS injection string and then going to a pa... Jim Pingle
02:43 PM Bug #8726: Lack of input validation on custom GUI/dashboard settings leads to potential XSS: Tested the above inputs webguicss, webguifixedmenu, webguihostnamemenu, and dashboardcolumns. and was not able to use... Anonymous
01:25 PM Bug #8845 (Feedback): Recompile PHP with a larger value of FD_SETSIZE.: Applied in changeset commit:4f03ad7a36b6c2f9060f059f167a491b06739acf. Renato Botelho
01:18 PM Bug #8845 (In Progress): Recompile PHP with a larger value of FD_SETSIZE.: Renato Botelho
02:19 AM Bug #8845 (Resolved): Recompile PHP with a larger value of FD_SETSIZE.: Crash report begins. Anonymous machine information:
amd64
11.2-RELEASE-p2
FreeBSD 11.2-RELEASE-p2 #72 9d6b703bf... Chris Linstruth
01:12 PM Bug #8842 (Not a Bug): pfSense-pkg-aws-wizard-php72 sticks during install: In order to be able to install any of the PHP72 related packages you must upgrade to a PHP 7.2 based 2.4.4 snapshot. Renato Botelho
11:11 AM Feature #6384: Allow IPSEC P1 to have 2 peer remote gateway IP addresses to allow VPN failover faster without requiring DDNS: Your right. On our side we have our own IPs and BGP with FRR. But our Customers have only one IP from each ISP. Not i... Manfred Bongard
07:51 AM Feature #6384: Allow IPSEC P1 to have 2 peer remote gateway IP addresses to allow VPN failover faster without requiring DDNS: With 2.4.4 you can use routed IPsec and a routing protocol like OSPF or BGP to accomplish failover. You can build an ... Jim Pingle
07:45 AM Feature #6384: Allow IPSEC P1 to have 2 peer remote gateway IP addresses to allow VPN failover faster without requiring DDNS: Cloud is needed more and there is a reliable VPN connection very important. For this case a quick switch on failure i... Manfred Bongard
09:57 AM Bug #8519: pfSense update from the webGUI fails: All of my hosts that had issues before appear to be OK when upgrading from snaps from early yesterday to the latest a... Jim Pingle
07:43 AM Bug #8758 (In Progress): filterdns stops working on a regular basis.: Renato Botelho
06:12 AM Bug #8758: filterdns stops working on a regular basis.: Jim Pingle wrote:
> I had this happen on my edge firewall which is running a snapshot from earlier this week. The pf... Renato Botelho
07:43 AM Feature #1337 (Assigned): VLANs with different MAC address than parent interface: Renato Botelho
07:08 AM Feature #1337 (In Progress): VLANs with different MAC address than parent interface: Renato Botelho
07:15 AM Todo #8810 (Closed): HA sync : Vouchers sync settings should be moved to System->High Avaliablity: Jim Pingle
06:41 AM Todo #8810: HA sync : Vouchers sync settings should be moved to System->High Avaliablity: @jimp you can close this A FL
04:47 AM Bug #8846 (Resolved): Misleading error message when adding/editing static routes which use a gateway on a disabled interface: I was adding static route on disabled interface and got the following message:... Mario Harjac
01:00 AM Feature #8173: dhcp6c - RAW Options: The improvement request https://redmine.pfsense.org/issues/8173 is essential for IPv6 authentication for Orange (Fran... frederic lubrano

08/27/2018

10:07 PM pfSense Packages Bug #8844: PFBlockerNG-Dev: https://www.reddit.com/r/PFSENSE/comments/9a9o8k/php_pfblockerng_related_crashing_in_244development/e4trgk9/
https... BBcan177 .
10:28 AM pfSense Packages Bug #8844 (Duplicate): PFBlockerNG-Dev: Version: pfBlockerNG-devel 2.2.5_10
When enabling GeoIP the selection goes back to 'disabled'.
Firewall -> pfB... Chris Macmahon
06:14 PM Bug #8838 (Resolved): PHP warning when creating an OpenVPN client with invalid setting: Anonymous
06:14 PM Bug #8838: PHP warning when creating an OpenVPN client with invalid setting: On 2.4.4.a.20180827.1735, cannot reproduce. Anonymous
06:50 AM Bug #8838: PHP warning when creating an OpenVPN client with invalid setting: Applied in changeset commit:ce04950d94bab271a9904a8bd8cbbe40d7a7d718. Anonymous
06:43 AM Bug #8838 (Feedback): PHP warning when creating an OpenVPN client with invalid setting: Anonymous
02:37 PM Bug #8758: filterdns stops working on a regular basis.: Sounds good! → luckman212
02:30 PM Bug #8758: filterdns stops working on a regular basis.: It is at https://github.com/pfsense/FreeBSD-ports/blob/devel/net/filterdns/files/filterdns.c but Renato is already lo... Jim Pingle
02:17 PM Bug #8758: filterdns stops working on a regular basis.: Agree it's less than ideal. But until a proper fix can be found a kludge might be safer than nothing, since aliases n... → luckman212
02:00 PM Bug #8758: filterdns stops working on a regular basis.: That's a rather ugly hack/kludge and it would be better to find out why it's failing and fix it directly. Jim Pingle
01:58 PM Bug #8758: filterdns stops working on a regular basis.: Hmm. In that case, how about we add some tests to the alias edit php functions to query pfctl directly after a save a... → luckman212
01:54 PM Bug #8758: filterdns stops working on a regular basis.: That is a possible side effect. You can kill the @filterdns@ daemon and then trigger a filter reload from *Status > F... Jim Pingle
01:51 PM Bug #8758: filterdns stops working on a regular basis.: Would this affect IP alias lists getting "stuck" and not updating? I ran into this last week - editing an Alias, adde... → luckman212
01:47 PM Bug #8758: filterdns stops working on a regular basis.: Anonymous
01:42 PM Bug #8519: pfSense update from the webGUI fails: I had several hitting this in my lab but only just now getting them onto snaps which included the latest fix. Let's g... Jim Pingle
01:42 PM Bug #8519 (Resolved): pfSense update from the webGUI fails: Renato Botelho
01:30 PM Bug #8519: pfSense update from the webGUI fails: Not seen any update issues for a few snaps now on a number of boxes. Steve Wheeler
01:27 PM Bug #8683 (Feedback): Unable to add GIF interface (Hurricane Electric IPv6): Anonymous
01:26 PM Bug #8683: Unable to add GIF interface (Hurricane Electric IPv6): Steve is working on this one Renato Botelho
11:37 AM pfSense Packages Feature #8835 (Rejected): FreeRADIUS Package - Don't store passwords as cleartext in users file: Even if they were encrypted before being put in there, they are still in plain text in @config.xml@. If you don't lik... Jim Pingle
10:49 AM Bug #7547: Static routes using aliases are not automatically updated when alias content changes: Also, when you delete a subnet from the alias editing and saving the static alias route doesn't remove the route.
... Dave Kobel
10:28 AM Feature #5997: Captive Portal - Create more then 1024 vouchers once: "Bogus" is a closed/resolved status. It's already been dealt with. Jim Pingle
09:35 AM Feature #5997: Captive Portal - Create more then 1024 vouchers once: Is there any action from Netgate team requested here?
Can this ticket be marked as resolved? A FL
09:21 AM Feature #2358: NAT64 support: TRIPLE UPVOTE! Dmitriy K
09:00 AM Feature #1191 (Closed): Enable dynamic VLAN assignment at Captive Portal: Jim Pingle
08:59 AM Feature #1191: Enable dynamic VLAN assignment at Captive Portal: Well, what you are describing is a VLAN-Based captive portal.
There are two kinds of Captive portals in the world:... A FL
08:23 AM Bug #8842: pfSense-pkg-aws-wizard-php72 sticks during install: Looks like this affects all pkgs I got PHP crashes and errors for any pkg install process. Pkgs were installed proper... Constantine Kormashev
08:16 AM Bug #8842: pfSense-pkg-aws-wizard-php72 sticks during install: Uninstall finished well, but there were some errors during the process, see attachment. Constantine Kormashev
08:12 AM Bug #8842 (Not a Bug): pfSense-pkg-aws-wizard-php72 sticks during install: I tried to install pfSense-pkg-aws-wizard-php72 for 244 factory built on Wed May 30 14:47:02 EDT 2018 FreeBSD 11.2-BE... Constantine Kormashev
07:41 AM Feature #8841: Floating rules : add interface column: Indeed it has limitations.
Maybe this could be an on/off feature letting people liberty to activate it depending on... Alexandre DULCHE
07:17 AM Feature #8841: Floating rules : add interface column: This is not entirely feasible because the floating rule could apply to dozens of interfaces and trying to print them ... Jim Pingle
07:15 AM Feature #8841 (Duplicate): Floating rules : add interface column: To allow an easier management of floating rules : add the colum inyertrface in the floating rules tab.
For now, AFAI... Alexandre DULCHE
07:13 AM Feature #8840 (Duplicate): Copy multiples rules from one interface to another: Create a new button on firewall rules tab allowing to copy multiple firewall rules from one interface to another :
... Alexandre DULCHE
07:11 AM pfSense Packages Bug #8839 (Duplicate): 2.4.4 Squid/ClamAV C-ICAP 0.5.x not starting: Duplicate of #8832 Jim Pingle
06:31 AM pfSense Packages Bug #8839 (Duplicate): 2.4.4 Squid/ClamAV C-ICAP 0.5.x not starting: Workaround:
https://forum.netgate.com/topic/133774/2-4-x-squid-clamav-fix-for-c-icap-0-5-x-not-starting Thomas D
07:10 AM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: See also: https://forum.netgate.com/topic/133774/2-4-x-squid-clamav-fix-for-c-icap-0-5-x-not-starting Jim Pingle
06:23 AM pfSense Packages Bug #8790 (Assigned): getting PHP error regarding HAproxy pkg: On 2.4.4.a.20180801.0114 when I installed HAproxy I caught the same crash report.
But on 2.4.4.a.20180826.1232 whe... Azamat Khakimyanov
06:18 AM Feature #8173: dhcp6c - RAW Options: Hello,
view patch https://github.com/opnsense/dhcp6c
his is the WIDE-DHCPv6 client maintained by the OPNsense... frederic lubrano
05:23 AM Bug #8767: ID handling problem with DNS Forwarder host override management: I tried to reproduce this issue on 2.4.2:
- I added more then 120 DNS Forwarder host overrides
- I didn't see issue... Azamat Khakimyanov

08/26/2018

11:58 PM Bug #8519: pfSense update from the webGUI fails: Can't reproduce in VM from 2.4.3 CE to 2.4.3_1, or 2.4.3_1 to 2.4.4 latest snapshot. Is there a specific device, desi... Anonymous
11:00 PM Bug #8838 (Resolved): PHP warning when creating an OpenVPN client with invalid setting: On a recent 2.4.4 snapshot visit VPN > OpenVPN > Client > Add, change Server mode to "Peer to Peer ( Shared Key )" an... Anonymous
12:09 PM Bug #8837: PHP error when creating alias URL Table (IPs): I applied the changes, and I'm still receiving the following PHP error. It looks like the fix got rid of the count() ... Steve Harrington
11:35 AM Bug #8837: PHP error when creating alias URL Table (IPs): Applied in changeset commit:d6d46650d207cf0d37a2551a8a73a83aaf804672. Anonymous
11:31 AM Bug #8837 (Feedback): PHP error when creating alias URL Table (IPs): Anonymous
11:30 AM Bug #8837 (In Progress): PHP error when creating alias URL Table (IPs): Anonymous
11:15 AM Bug #8837 (Resolved): PHP error when creating alias URL Table (IPs): I was trying to follow the procedure described here to create a Netflix ipv6 alias.
https://forum.netgate.com/topi... Steve Harrington
10:10 AM Bug #8813 (Resolved): User login through proxy only logs proxy IP address, not X-Forwarded-For: On current 2.4.4-DEV (20180825) I'm able to see "X-Forwarded-For" option when remote client behind proxy connects to ... Azamat Khakimyanov
07:53 AM pfSense Packages Feature #8836 (New): Define ldap group vlan assignment in users file: There should be a solution to configure vlan-id's for ldap groups.
Something like this: http://lists.freeradius.or... vistalba none
07:49 AM pfSense Packages Feature #8835 (Rejected): FreeRADIUS Package - Don't store passwords as cleartext in users file: If a user is created in the FreeRadius GUI the password is stored as cleartext in "/usr/local/etc/raddb/users".
Th... vistalba none
05:09 AM Bug #8822 (Resolved): HTTP_REFERER check fails after changing interface IP address: I checked on 2.4.3_p1 - I saw HTTP_REFERER check fails after changing interface IP address
Then I checked it on 2.4.... Azamat Khakimyanov

08/25/2018

09:38 PM Feature #6626: Support for IPv6 firewall entries with dynamic delegated prefix and static host address: Same issue as Frederick described - I can't seem to be able to effectively block inter-vlan traffic for IPv6 as the a... Lukas Kuzmiak
05:53 PM Feature #1337: VLANs with different MAC address than parent interface: James Dekker [6:49 PM]
With SG-5100 and XG-2758 on `2.4.4.a.20180824.1144` (which isn't the *latest* build, but shou... Anonymous
03:32 PM Bug #8834 (Resolved): NAT > NPt address fields do not match the hover text: Anonymous
03:32 PM Bug #8834: NAT > NPt address fields do not match the hover text: On 2.4.4.a.20180825.0917 (gitsync'd to master) looks good. Hover text accurately reflects the description (shown in t... Anonymous
03:25 PM Bug #8834 (Feedback): NAT > NPt address fields do not match the hover text: Applied in changeset commit:c1004c847324888fff7252607384f7f39926e815. Jim Pingle
03:08 PM Bug #8834 (Resolved): NAT > NPt address fields do not match the hover text: Visit Firewall > NAT > NPt, click add, hover over each Address field.
Notice that the first Address field descri... Anonymous
02:58 PM Feature #8812 (Resolved): Add "Select All" to Firewall/NAT rule lists: Anonymous
02:58 PM Feature #8812: Add "Select All" to Firewall/NAT rule lists: Select all works as expected on Firewall > NAT > Port Forward/1:1/Outbound/NPt and at Firewall > Rules on 2.4.4.a.201... Anonymous
08:16 AM Feature #8812 (Feedback): Add "Select All" to Firewall/NAT rule lists: Rule table given ID so selectall control can find it Anonymous
08:05 AM Feature #8812 (Assigned): Add "Select All" to Firewall/NAT rule lists: Steve Wheeler
08:04 AM Feature #8812: Add "Select All" to Firewall/NAT rule lists: The control is now present on NAT rules but does not seem to actually function. Clicking 'select all' does not select... Steve Wheeler
02:26 PM pfSense Packages Bug #8796 (Resolved): Enabling Automatic SID State Management causes php warning: Went to Suricata, went to SID management, Enable Automatic SID State Management, no error displayed
Current Base Sy... Chris Macmahon
02:06 PM Bug #8801 (Resolved): OpenVPN Wizard, User Manager, Cert Manager will place CA CN in the Country Code field of a Certificate: tested on image 2.4.4.a.20180825.0917 this is no longer happening,
Using the OpenVPN wizard as described in this i... Chris Macmahon
02:05 PM Bug #7425 (Resolved): dhclient not sending option 77: Anonymous
02:04 PM Bug #7425: dhclient not sending option 77: On 2.4.4.a.20180824.1144, DHCP option 77 (user-class) is sent successfully. Anonymous
11:19 AM Bug #8816 (Resolved): User login does not record the authentication source: Anonymous
11:18 AM Bug #8816: User login does not record the authentication source: On 2.4.4.a.20180825.0917, when the user logs in, the dashboard and console indicate the IP of the user logging in and... Anonymous
10:38 AM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: As i understood from Intel specification on various chipsets, non-ip traffic like pppoe can't be hashed for RSS to wo... Sebastian Foss
09:08 AM pfSense Packages Bug #8833: haproxy getarraybyref error: fix kinda pending.. but discussion raised is delaying it being pulled.
https://github.com/pfsense/FreeBSD-ports/pull... Pi Ba
07:03 AM pfSense Packages Bug #8833 (Resolved): haproxy getarraybyref error: On update to latest snapshot HA Proxy service fails to start.
Fatal error: Cannot redeclare getarraybyref() (previ... Chris Macmahon
07:42 AM Feature #8817 (Resolved): Display login info in System Information widget: Looks good to me in:... Steve Wheeler

08/24/2018

08:41 PM pfSense Packages Bug #8825: Unable to activate any of the GeoIP blocking lists - keeps getting reset to disabled with PHP errors: This will be fixed in the next pfBlockerNG-devel v2.2.5_11 once its merged.
https://github.com/pfsense/FreeBSD-por... BBcan177 .
07:30 PM pfSense Packages Bug #8832 (Resolved): c-icap for Squid 5.1 on 2.4.4 Developer not starting: See: https://forum.netgate.com/topic/133774/2-4-x-squid-clamav-fix-for-c-icap-0-5-x-not-starting.
Verified his fix w... Juan Abonia
06:07 PM Bug #8831 (Closed): Radvd causes latency spikes: As already mentioned in this thread https://forum.netgate.com/topic/123554/new-latency-every-30-seconds-with-2-4-2-ca... Flole Systems
05:59 PM pfSense Packages Bug #8830 (Resolved): Automatic flowbit resolution setting does not match description: On 2.4.4.a.20180824.1624, install snort (version 3.2.9.7_1), visit Global Settings, enable some rulesets, visit Updat... Anonymous
04:37 PM pfSense Packages Bug #8716 (Resolved): Suricata package does not survive pfSense upgrade.: Steve Wheeler
04:37 PM pfSense Packages Bug #8716: Suricata package does not survive pfSense upgrade.: Tested on ARM and x86. Looks good, Suricata running correctly after reboot.
pfSense-base: 2.4.4.a.20180823.1619 ->... Steve Wheeler
04:06 PM pfSense Packages Bug #8716: Suricata package does not survive pfSense upgrade.: I have done upgrade at SG-3100 to 2.4.4.a.20180824.1144 base system. Suricata has survived. Danilo Zrenjanin
04:23 PM pfSense Packages Bug #8829 (Resolved): Keep settings checkbox under Global Settings does not behave as expected: On 2.4.4.a.20180824.0955, install Snort, visit Services > Snort. Go to the Global Settings tab, enable some rulesets,... Anonymous
04:16 PM pfSense Packages Bug #8828 (Resolved): Keep settings checkbox under Global Settings does not behave as expected: On 2.4.4.a.20180824.0955, install Suricata, visit Services > Suricata. Go to the Global Settings tab, enable some rul... Anonymous
04:01 PM pfSense Packages Bug #8799 (Resolved): Automatic flowbit resolution setting does not match description: Anonymous
04:01 PM pfSense Packages Bug #8799: Automatic flowbit resolution setting does not match description: On suricata 4.0.13_17, works as expected. Anonymous
03:17 PM Bug #8721: DHCP High Availability - Statis assignement Issue on BackUP machine: Jim Pingle
03:16 PM Bug #8527: VLANs losing parent interface on LAGG change: Jim Pingle
03:15 PM Bug #8683: Unable to add GIF interface (Hurricane Electric IPv6): Jim Pingle
03:15 PM Bug #8683: Unable to add GIF interface (Hurricane Electric IPv6): This also affects GRE interfaces Jim Pingle
12:40 PM pfSense Packages Bug #8827 (New): Squidguard: ACL redirect modes 'redirect' and 'err page' send unresolvable URLs to the client.: Squid running in bump mode. Though that should not affect this.
When configuring Common or Group ACLs or applying ... Steve Wheeler
06:02 AM Bug #8826 (Closed): PHP7: ACB error at upgrade.: Anonymous
12:00 AM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: ix driver seems to be affected also :
dev.ix.0.queue1.rx_packets: 67
dev.ix.0.queue1.tx_packets: 4107155
dev.ix.... Alexandre Paradis

08/23/2018

08:03 PM Bug #3124 (Resolved): portal_reply_page called twice in specific circumstance: Jim Pingle
03:53 PM Bug #3124: portal_reply_page called twice in specific circumstance: Working fine for me with vouchers & with Authentication Server
This issue can be marked as resolved ! A FL
02:11 PM Bug #3124 (Feedback): portal_reply_page called twice in specific circumstance: PR merged Renato Botelho
08:02 PM Feature #3136 (Closed): Captive Portal Increment Id: Jim Pingle
03:54 PM Feature #3136: Captive Portal Increment Id: @jimP this can be closed A FL
08:02 PM Feature #7707 (Resolved): Captive Portal - Radius Time out configuration field: Jim Pingle
03:56 PM Feature #7707: Captive Portal - Radius Time out configuration field: https://github.com/pfsense/pfsense/pull/3640 fixes this
This issue can be marked as resolved A FL
07:07 PM pfSense Packages Bug #8716: Suricata package does not survive pfSense upgrade.: We probably need to test this across an upgrade where the suricata package version doesn't change to be sure. Steve Wheeler
05:04 PM pfSense Packages Bug #8716 (Feedback): Suricata package does not survive pfSense upgrade.: Chris Macmahon
05:04 PM pfSense Packages Bug #8716 (Resolved): Suricata package does not survive pfSense upgrade.: Chris Macmahon
06:58 AM pfSense Packages Bug #8716 (Feedback): Suricata package does not survive pfSense upgrade.: Added a call to ldconfig start on suricata startup script. It should be enough to make sure libraries cache will be u... Renato Botelho
06:54 PM Bug #8826 (Feedback): PHP7: ACB error at upgrade.: That's already been fixed but the fix didn't make it into a factory snapshot until after the image you're on. Next on... Jim Pingle
06:34 PM Bug #8826 (Closed): PHP7: ACB error at upgrade.: Upgrading pfSense-kernel-pfSense-SG-3100 from 2.4.4.a.20180822.1157 to 2.4.4.a.20180823.1533... Steve Wheeler
04:34 PM pfSense Packages Bug #8251: Captiveportal + FreeRadius "Last activity" resets to Session start: Thanks for the reply Augustin.
I'm still having this issue, perhaps I will try your idea when I upgrade the next tim... Frotty Zaoldyeck
04:29 PM pfSense Packages Bug #8251: Captiveportal + FreeRadius "Last activity" resets to Session start: This issue is likely comming from the way pfSense and FreeRadius are talking to each other when performing accounting... A FL
04:30 PM pfSense Packages Bug #8825 (Resolved): Unable to activate any of the GeoIP blocking lists - keeps getting reset to disabled with PHP errors: pfSense version 2.4.4.a.20180822.1157
pfBlockerNG-Deve version 2.2.5_10
Attempting to enable *any* of the GeoIP c... George Phillips
02:32 PM pfSense Packages Bug #8797 (Resolved): Visiting Flow/Stream causes a php error to be be shown: Confirmed, looks good in latest suricata package version. Anonymous
02:17 PM pfSense Packages Bug #8797: Visiting Flow/Stream causes a php error to be be shown: I have tested this issue at SG-4860 | 2.4.4.a.20180823.0720 base system. I can confirm that php warning doesn't appea... Danilo Zrenjanin
02:29 PM pfSense Packages Bug #8798 (Resolved): Visiting App Parsers causes a php error to be be shown: Anonymous
02:28 PM pfSense Packages Bug #8798: Visiting App Parsers causes a php error to be be shown: Looks good in the latest version of suricata. Anonymous
02:20 PM Bug #8138: Option <spoofmac> is ignored on interfaces without hwaddr: Applied in changeset commit:2c1d7c12fa4f41a69d6c9267a34b1b767a1da522. Renato Botelho
02:11 PM Bug #8138 (Feedback): Option <spoofmac> is ignored on interfaces without hwaddr: Renato Botelho
02:11 PM Feature #1337 (Feedback): VLANs with different MAC address than parent interface: Renato Botelho
02:08 PM Feature #1337: VLANs with different MAC address than parent interface: Renato Botelho
01:51 PM pfSense Packages Bug #8799 (Feedback): Automatic flowbit resolution setting does not match description: This should be fixed now. 53261ab40f32f234e3432e15f5633f149b36863d
Version 4.0.13_7 Anonymous
01:08 PM pfSense Packages Bug #8799 (In Progress): Automatic flowbit resolution setting does not match description: Anonymous
12:42 PM pfSense Packages Bug #8799: Automatic flowbit resolution setting does not match description: On a fresh install of pfSense-CE-memstick-2.4.4-DEVELOPMENT-amd64-20180823-0720, install suricata (version 4.0.13_5),... Anonymous
01:27 PM Bug #8800 (Resolved): Interface group member cannot be deleted, after it's been disabled: Anonymous
01:27 PM Bug #8800: Interface group member cannot be deleted, after it's been disabled: On 2.4.4.a.20180823.0720, the disabled interface is still shown in the interface group, rather than removed. Anonymous
12:08 PM Bug #8590: sshd does not allow agent forwarding: @ssbarnea@ please resubmit your PR to the master branch A FL
10:29 AM pfSense Packages Bug #8620: arpwatch database page is not accessible: Its been two months now.. are there any news? Sven L
09:01 AM pfSense Packages Bug #8795: PHP issues - illegal string; undef modules; init modules: Yes it does. Most of the work that is specific to 2.4.4, particularly accommodating PHP7, has been added to the -deve... Anonymous
08:58 AM pfSense Packages Bug #8795: PHP issues - illegal string; undef modules; init modules: pfB still shows latest as 2.1.4_8?
maybe your update hasn't pushed to be visible yet.
does pfB-devel work witho... ROB VANHOOREN

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

09/21/2018

09/20/2018

09/19/2018

09/18/2018

09/17/2018

09/16/2018

09/15/2018

09/14/2018

09/13/2018

09/12/2018

09/11/2018

09/10/2018

09/09/2018

09/08/2018

09/07/2018

09/06/2018

09/05/2018

09/04/2018

09/03/2018

09/02/2018

09/01/2018

08/31/2018

08/30/2018

08/29/2018

08/28/2018

08/27/2018

08/26/2018

08/25/2018

08/24/2018

08/23/2018