Activity

30 days up to

User

Subprojects

Activity

From 08/28/2018 to 09/26/2018

09/26/2018

09:55 PM Revision fe49c700: Use poudriere_bulk.$TARGET_ARCH instead of poudriere_bulk.$TARGET.$TARGET_ARCH for the arch bulk list.: (cherry picked from commit bd936941a3cb5e381c4bba8f9245a748cf93206d) Luiz Souza
09:55 PM Revision bd936941: Use poudriere_bulk.$TARGET_ARCH instead of poudriere_bulk.$TARGET.$TARGET_ARCH for the arch bulk list.: Luiz Souza
09:00 PM Revision 08159cce: Allow the use of poudriere_bulk.${ARCH} to list additional packages for a specific architecture.: (cherry picked from commit deb5f1dacf9579052dd275c93035adbf4ae1814e) Luiz Souza
08:55 PM Revision deb5f1da: Allow the use of poudriere_bulk.${ARCH} to list additional packages for a specific architecture.: Luiz Souza
08:15 PM Revision 1c28902c: Fix JSON encoding of gw/gwg params for firewall rule gw list. Fixes #8962: (cherry picked from commit 157aff9e256aa235ba68ccc2168c61fc61e90072) Jim Pingle
08:15 PM Revision 157aff9e: Fix JSON encoding of gw/gwg params for firewall rule gw list. Fixes #8962: Jim Pingle
07:54 PM Revision e71f4637: Fix a display bug in status_gateways.php: This bug causes the Monitor IP to appear even when a gateway
is unmonitored. The monitor IP from the last gateway in ... → luckman212
07:54 PM Revision b4d87269: Merge pull request #3992 from luckman212/status-gateways-fixup1: Renato Botelho
07:28 PM Revision 670bcc23: Underscores never hurt nobody: Also, i18n
(cherry picked from commit 42c059894a4a521415c35dc048952658f61fad65) → luckman212
07:27 PM Revision a5662a7a: Merge pull request #3980 from luckman212/underscores-on-outbount-nat: Renato Botelho
06:43 PM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": Just updated to 2.4.4 and lost IPv6...
I am also running pfsense as a Gen2 hyper-v guest.
My NIC is an Intel I... Kevin Morse
07:21 AM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": Hyper-V appears to be the common factor but as far as I can see, nobody has attempted to take the exact same config/e... Jim Pingle
12:47 AM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": More people get this bug now in the 2.4.4 release. It seems the common part is that pfsense is running as hyper-v VM.... Moritz Hartwig
06:41 PM Revision ebbc9e97: Default ACB schedule to every day at midnight: Steve Beaver
03:48 PM Revision e46ea2c6: Fixes #8949 Looks like there was 2 variable names for the same variable shownetboot and netboot. It now just uses the variable name netboot: Stephen Jones
03:28 PM Revision a1aa91de: Added scheduled config backup: Fixed: #8947 Steve Beaver
03:25 PM Bug #8962 (Feedback): firewall_rules.edit.php: Double quotes in Gateway description cause blank gateway drop-down: Applied in changeset commit:157aff9e256aa235ba68ccc2168c61fc61e90072. Jim Pingle
03:15 PM Bug #8962 (Resolved): firewall_rules.edit.php: Double quotes in Gateway description cause blank gateway drop-down: A gateway description with double quotes breaks the JSON used to form the gateway drop-down options, resulting in a b... Jim Pingle
02:55 PM Bug #8893 (Feedback): Outbound NAT page unnecessarily strips underscores from alias names: PR merged Renato Botelho
02:54 PM Bug #8953 (Feedback): Status > Gateways shows incorrect info: PR merged Renato Botelho
01:22 AM Bug #8953: Status > Gateways shows incorrect info: PR:
https://github.com/pfsense/pfsense/pull/3992 → luckman212
01:09 AM Bug #8953 (Resolved): Status > Gateways shows incorrect info: I found a bug and some cobwebs in *status_gateways.php*
The bug causes the *Monitor IP* to displayed incorrect inf... → luckman212
02:42 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: Johannes Wanink wrote:
>Thx!
>Tried the binary, and looks good! Seems to be working.
> (Binary is much bigger than... Tim Balmer
02:25 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: Tim Balmer wrote:
> I now replaced the default igmpproxy binary on pfSense 2.4.4 by this version https://pkg.opnsens... Johannes Wanink
12:52 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: I now replaced the default igmpproxy binary on pfSense 2.4.4 by this version https://pkg.opnsense.org/FreeBSD:11:amd6... Tim Balmer
09:18 AM Bug #8935: IGMP Proxy not starting with PPPoE IF: Alexandre Paradis wrote:
> Vlan/sub-interface are also affected.
Same issue with "bridge" interface.
benoit moreau
01:47 PM Bug #8961 (Duplicate): IPSEC issues with Asynchronous Cryptography: With the release of 2.4.4 we enabled `Asynchronous Cryptography` by default, we are seeing cases where traffic does n... Chris Macmahon
12:38 PM Revision b974f79a: garga changes: move conditional before platform_booting
and join w && instead of indenting → luckman212
12:08 PM Bug #8949 (Resolved): DHCPv6 Server Network Booting fails to be set: Renato Botelho
11:56 AM Bug #8949: DHCPv6 Server Network Booting fails to be set: I have confirmed that this now works as expected. Thank you for the quick fix. Andrew Stuart
10:50 AM Bug #8949 (Feedback): DHCPv6 Server Network Booting fails to be set: Applied in changeset commit:e46ea2c60986c62371966025ab3068466217fefa. Anonymous
08:42 AM Bug #8949 (Assigned): DHCPv6 Server Network Booting fails to be set: Anonymous
11:34 AM Bug #8957: Prefix ID for IPv6 tracked interfaces cannot be set: Ahh.. Sorry for the false bug. Trying to set this all up and I missed it. Jason McCormick
06:47 AM Bug #8957 (Not a Bug): Prefix ID for IPv6 tracked interfaces cannot be set: That means you did not set the WAN *DHCPv6 Prefix Delegation size* properly, it may be at the default of /64 when it ... Jim Pingle
06:43 AM Bug #8957 (Not a Bug): Prefix ID for IPv6 tracked interfaces cannot be set: After a painful, ultimately unsuccessful in-place upgrade to 2.4.4 from 2.4.3-p1, I needed to rebuild my config by ha... Jason McCormick
11:31 AM Bug #8960: VGA console won't boot in 2.4.4 upgrade - Bug: Please read the upgrade guide notes for 2.4.4, specifically the last few points:
https://www.netgate.com/docs/pfse... Jim Pingle
10:59 AM Bug #8960 (Resolved): VGA console won't boot in 2.4.4 upgrade - Bug: when upgrading to 2.4.4 the VGA console freezes, the system still boots in the background.
you can use webconfigurat... Christopher Kurilla
10:30 AM Feature #8947: Cron based ACB option: Applied in changeset commit:a1aa91dec887ba929be08c993170803396a669b2. Anonymous
10:28 AM Feature #8947 (Feedback): Cron based ACB option: Anonymous
10:27 AM Feature #8947 (In Progress): Cron based ACB option: Anonymous
09:15 AM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: Alexander Müller wrote:
> I found following workaround:
>
> * create whitelist file for sshguard following sshgua... Michael Reardon
05:39 AM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: I found following workaround:
* create whitelist file for sshguard following sshguards file format (https://www.ss... Alexander Müller
04:35 AM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: Well... I'm using the default check_ssh plugin of nagios. This plugin connects to the ssh server and checks before au... Nicki Messerschmidt
08:56 AM Bug #8959 (Resolved): Restoring a <2.4.4 config with legacy gold auto backup package re-adds the menu option under Diagnostics: I was forced to do a fresh install of 2.4.4 as updating packages before the base OS broke my system. After a fresh in... Matthew Drury
08:48 AM Feature #8958: Dynamic DNS - CARP Address: Eg:
Scenario with two firewalls in HA
Subnet x.x.x.224 / 27
CARP address: x.x.x.230 / 27
pfsense 1:
WAN ad... Michele D'Alessio
08:34 AM Feature #8958: Dynamic DNS - CARP Address: Currently the WAN also has the static address
In any case, I update the Dynamic from the PFSense so if I had to chan... Michele D'Alessio
08:32 AM Feature #8958: Dynamic DNS - CARP Address: In High Available it is useful when you want to update / modify DNS from a single point without having to move to the... Michele D'Alessio
08:24 AM Feature #8958 (Rejected): Dynamic DNS - CARP Address: CARP addresses will always be static. What purpose will this serve?
If it's for Multi-WAN failover, pick the CARP ... Jim Pingle
08:19 AM Feature #8958 (Rejected): Dynamic DNS - CARP Address: In the Dynamic DNS section It's not possible to update an address with the CARP address, IT's only possible to update... Michele D'Alessio
08:20 AM Bug #7605 (Duplicate): State Killing on Gateway Success: Duplicate of #855 Jim Pingle
07:54 AM Bug #7605: State Killing on Gateway Success: Just to reference the same issues / feature requests previously opened:
https://redmine.pfsense.org/issues/855
ht... Jo S
08:20 AM Feature #855: Ability to selectively kill states on gateway recovery: See also: #7605 Jim Pingle
07:24 AM Bug #8955 (Duplicate): Limiters after updating to 2.4.4: Duplicated by #8956 -- It was entered after this one, but has better details. Jim Pingle
02:07 AM Bug #8955 (Duplicate): Limiters after updating to 2.4.4: in 2.4.3 was created limiters with queues.
After updating to 2.4.4 there are no queues in the limiters.
just add th... Dmitry Ivanov
07:19 AM Bug #8954: hn0: driver does not support altq: See also: #7869 Jim Pingle
01:59 AM Bug #8954 (Resolved): hn0: driver does not support altq: hyper-v 2016
gen1 and gen2 Dmitry Ivanov
06:37 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: lahoucine El kamel wrote:
> Hello,
>
> When editing the Squid Guard Proxy Filter I noticed that the settings afte... Helio Candido
06:00 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: lahoucine El kamel wrote:
> Hello,
>
> When editing the Squid Guard Proxy Filter I noticed that the settings afte... Charles Melo
01:43 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: Hello,
I have updated Squid and the ACL issue is still there.
When editing the Squid Guard Proxy Filter I noticed... lahoucine El kamel
06:12 AM Revision c2f7d555: Fix a display bug in status_gateways.php: This bug causes the Monitor IP to appear even when a gateway
is unmonitored. The monitor IP from the last gateway in ... → luckman212
03:22 AM Bug #8956 (Resolved): traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter
i tried to create test limiter and added ... khaled osama
02:43 AM Feature #8936: QuickAssist in pfSense: I can't see any mention of QuickAssist on redmine. John S
01:29 AM Bug #7869: Hyper-v vm traffic shaper error: hn0: driver does not support altq: same error (hn0: driver does not support altq) after upgrade to 2.4.4 Dmitry Ivanov

09/25/2018

10:47 PM Revision c818076d: default to the lan interface on WOL page, unless another if is: submitted in the form data. → luckman212
05:32 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: Vlan/sub-interface are also affected.
I had to use a physical interface to make igmp proxy to work.
do we h... Alexandre Paradis
03:52 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: Not sure this is the same issue as I reported in #8950, because in that bug IGMPProxy is not crashing (it runs untill... Tim Balmer
03:47 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: See also: #8950 (has more logs) Jim Pingle
05:28 PM Feature #8952 (Resolved): Dynamic DNS Copy Button: I request a Button to copy a DNS entry in the Dynamic DNS (for both, RFC 2136 and Dynamic DNS Clients) Function. When... Flole Systems
05:25 PM Bug #8951 (Duplicate): Dynamic DNS shows Hostname that is not define: If #8948 is not a bug, then this is:
In the overview there is a Hostname shown when you write one into the hostnam... Flole Systems
03:47 PM Bug #8950 (Duplicate): IGMPProxy broken after 2.4.4 upgrade: Duplicate of #8935 Jim Pingle
03:34 PM Bug #8950 (Duplicate): IGMPProxy broken after 2.4.4 upgrade: After upgrade from 2.4.3-p1 to 2.4.4 IGMPProxy (which is upgraded during the 2.4.4 upgrade) seems to be broken. When ... Tim Balmer
03:42 PM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: There isn't a way to set a whitelist currently. But if your monitoring system relies on a probe that is triggering an... Jim Pingle
03:11 PM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: I just want to chime in on this. I just updated my pfsense to 2.4.4 and very soon after I got notifications from my n... Nicki Messerschmidt
03:27 PM Bug #8949 (Resolved): DHCPv6 Server Network Booting fails to be set: Checking "Enable Network Booting" under "Display Advanced" and clicking Save doesn't record ... Andrew Stuart
02:42 PM Bug #8948: Dynamic NS Custom Option is missing Hostname Field: Should I open a Bug then instead, that in the overview there is a Hostname shown when you write one into the hostname... Flole Systems
02:39 PM Bug #8948 (Not a Bug): Dynamic NS Custom Option is missing Hostname Field: With custom types you form the entire query in the Update URL, it doesn't do parameter substitution. Jim Pingle
02:00 PM Bug #8948 (Not a Bug): Dynamic NS Custom Option is missing Hostname Field: When I add a custom URL for the Dynamic DNS Updater, I am unable to set the Hostname. Instead, I have to set it befor... Flole Systems
01:56 PM Feature #8947 (Resolved): Cron based ACB option: Provide a way to perform config backups via cron instead of on every change. Anonymous
01:54 PM Bug #8933: diagnostics -> backup/restore -> reinstall packages hangs: How should I test this? Florian Apolloner
01:53 PM Bug #8933 (Feedback): diagnostics -> backup/restore -> reinstall packages hangs: Fixed in updater version 0.54 Anonymous
06:43 AM Bug #8933 (In Progress): diagnostics -> backup/restore -> reinstall packages hangs: Anonymous
01:52 PM pfSense Packages Bug #8832 (Feedback): c-icap for Squid 5.1 on 2.4.4 Developer not starting: This should be fixed now. Update the squid package and it should pick up the c-icap update and then work as expected.... Jim Pingle
11:47 AM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: Attached is a patch to fix the c-icap FreeBSD port default config to use the correct current syntax. Jim Pingle
10:39 AM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: The upstream port is _not_ fine. See the file I linked. The FreeBSD port is explicitly adding the ListenAddress direc... Jim Pingle
10:33 AM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: Hi Jim,
the guy from the mailing list is me.
The "Listen" directive was removed from 0.4 to 0.5.
Upstream port... Michael M
12:29 PM Bug #8429: radvd/IPv6 broken in 2.4.3 when using a LAN bridge: This is still happening with 2.4.4 when using ue0 (USB ethernet) as the LAN interface.
ioctl(SIOCGIFMEDIA) failed on... TJ Synkral
12:01 PM Bug #8165 (Closed): Fragmented at source IPv6 packets (UDP + ICMP Ping) are not forwarded / v2.4.2 AMD64: Luiz Souza
06:51 AM Bug #8165 (Resolved): Fragmented at source IPv6 packets (UDP + ICMP Ping) are not forwarded / v2.4.2 AMD64: Fixed in 2.4.4 as reported by original submitter Renato Botelho
06:29 AM Bug #8165: Fragmented at source IPv6 packets (UDP + ICMP Ping) are not forwarded / v2.4.2 AMD64: Update - 25th September 2018 - applied upgrade to pfSense 2.4.4 which is built on FreeBSD v11.2. Confirmed that the ... Mike Nichols
11:09 AM Feature #8946 (Duplicate): Add field to show IA_PD to DHCP6 Server page: When DHCP6 is enabled on an interface and Prefix Delegation is requested, there is nowhere in the GUI to see:
* wh... → luckman212
08:43 AM Bug #8938 (Feedback): Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: pfSense-upgrade 0.53 will prevent users from installing / upgrading additional packages when there is a new major PHP... Renato Botelho
08:12 AM Bug #8938: Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: See also: #8944 Jim Pingle
08:12 AM pfSense Packages Bug #8944 (Duplicate): attemp of installing pfblocker brakes system on 2.4.3: Duplicate of #8938 Jim Pingle
04:47 AM pfSense Packages Bug #8944 (Duplicate): attemp of installing pfblocker brakes system on 2.4.3: Any attempt to install pfblocker on clean 2.4.3-p1 breaks system.
Errors during installation:... Constantine Kormashev
08:12 AM Bug #8868: multiple php errors on update: If you saw these errors while still on 2.4.3, it's more likely due to an issue such as #8938 and not these errors spe... Jim Pingle
01:20 AM Bug #8868: multiple php errors on update: Jim Pingle wrote:
> In nearly all cases the messages during the upgrade are harmless. There may be some actual probl... Petr Nosek
08:10 AM Bug #8941 (Not a Bug): After upgrading to 2.4.4, my primary gateway lost connectivity when used with Quad9 DNS: Not enough here for a valid bug report. Your WAN connectivity wouldn't have any correlation to DNS.
Start a post o... Jim Pingle
01:57 AM Bug #8941 (Not a Bug): After upgrading to 2.4.4, my primary gateway lost connectivity when used with Quad9 DNS: Hi there.
After upgrading to 2.4.4 I suddenly lost all internet access. However, I noticed that my secondary gate... Edvard Holst
08:08 AM Todo #8942 (Duplicate): DHCP config: Duplicate of #8849 Jim Pingle
03:36 AM Todo #8942: DHCP config: *Is it possible to adding own lines to the configuration file of the dhcp server directly in the configuration of the... k volk
03:32 AM Todo #8942 (Duplicate): DHCP config: In some cases, you may need to add additional partitions to the dhcpd configuration file. Now I do it through editing... k volk
07:39 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: The i-cap issue is covered under #8832 Jim Pingle
07:33 AM pfSense Packages Bug #8945 (Resolved): SquidGuard ACL blacklists: Hello,
When editing the Squid Guard Proxy Filter I noticed that the settings after saving are not loaded.
Example... lahoucine El kamel
05:04 AM Revision fd4dc22e: don't show drag message if roworderdragging is disabled: → luckman212
04:51 AM Feature #8943: Additions to wake on lan section: *3) it would be very convenient to divide the computers into groups in this menu in order to switch on the computers ... k volk
04:17 AM Feature #8943 (Resolved): Additions to wake on lan section: 1) In the WOL section I have about 200 lines. In order to add another entry (PC) you need to scroll down the entire l... k volk

09/24/2018

10:54 PM pfSense Packages Bug #8940 (Duplicate): ICAP Inteface for Squid and ClamAV integration - service not starting: Duplicate of #8832 Jim Pingle
10:18 PM pfSense Packages Bug #8940 (Duplicate): ICAP Inteface for Squid and ClamAV integration - service not starting: After the upgrade I had a crash report but it seemed to run. But on a new restart of the pcengines APU2 it would not ... Marcel Beerli
10:53 PM Bug #8915: After updating to 2.4.4-rc an empty crash report is shown: If it wasn't empty, then it was not this issue. This issue is specifically about an empty crash report. Jim Pingle
09:58 PM Bug #8915: After updating to 2.4.4-rc an empty crash report is shown: Just did the upgrade from 2.4.3-1 to 2.4.4 on a PC Engines APU2 and had this issue as well. Not an empty crash report... Marcel Beerli
09:30 PM Bug #8939 (Not a Bug): Error upgrading Netgate SG-3100 to 2.4.4: Harmless errors from the PHP 5.6 to 7.2 upgrade process. This was mentioned in the release announcement, the release ... Jim Pingle
09:21 PM Bug #8939 (Not a Bug): Error upgrading Netgate SG-3100 to 2.4.4: Error file generated after upgrade from 2.4.3-RELEASE-p1 to 2.4.4 on Netgate SG-3100 gateway device. The upgrade appe... Kenton Clyde
09:19 PM Bug #8938 (Resolved): Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: Install pfSense 2.4.3 and upgrade to 2.4.3_1, go to Available packages and see that the acme package version 0.3.2_3 ... Anonymous
08:05 PM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: If the FreeBSD port is wrong, though, it should be fixed upstream. Then we wouldn't need to make any changes.
Some... Jim Pingle
07:17 PM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: Suggested fix: https://github.com/stephenw10/FreeBSD-ports/commit/d21954ad3b4e44e4df6e43e88ac22d589d8cf1b7 Steve Wheeler
07:09 PM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: This is a problem in the FreeBSD c-icap port. The port itself contains a patch that adds the ListenAddress line.
h... Jim Pingle
04:33 PM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: Confirmed the above fix is still functional in 2.4.4r but the default package is still broken.
As a workaround you... Steve Wheeler
08:02 PM Bug #8831: Radvd causes latency spikes: This still exists in 2.4.4 Flole Systems
07:50 PM Bug #8937 (Resolved): LAGG shows wrong ether address: I am using a LACP Bond over 4 Interfaces. When I look into the LAGG configuration, I am seeing the ether instead of h... Flole Systems
06:02 PM Feature #8936 (Duplicate): QuickAssist in pfSense: Please add QuickAssist support to pfSense.
It has been coming soon for a while now and is even listed on SG-5100 pro... John S
03:55 PM Bug #8933: diagnostics -> backup/restore -> reinstall packages hangs: I can reproduce this here on a couple different systems. I don't see any sign of @pkg@ running or any log entries sug... Jim Pingle
03:46 PM Bug #8933 (Resolved): diagnostics -> backup/restore -> reinstall packages hangs: Trying to reinstall all system packages via diagnostic hangs at "Please wait while the update system initializes" in ... Florian Apolloner
03:52 PM Bug #8935 (Resolved): IGMP Proxy not starting with PPPoE IF: After upgrade from 2.4.3 to 2.4.4 IGMP Proxy will not start anymore.
Stops with following Error:... Johannes Wanink
03:50 PM Bug #8934 (Resolved): IPv6 fragment reassembly regression following FreeBSD-SA-18:10.ip: Need to pull in the patches from r338406
See https://lists.freebsd.org/pipermail/freebsd-net/2018-September/051681... Jim Pingle
03:45 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: Ah, I forgot that it automatically probes the "latest stable" repo which automatically points you to 2.4.4/RELENG_2_4... Jim Pingle
03:44 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: I can confirm that upgrading to 2.4.4 fixes it, as well as downgrading haproxy to 0.59_9 via: pkg add -f https://file... Florian Apolloner
03:41 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: I agree "it shouldnt be". But i'm seeing my 2.4.3 box offer to install haproxy 0.59_11 .. which at least isn't availa... Pi Ba
03:33 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: It shouldn't be, they are on different branches (RELENG_2_4_3 vs RELENG_2_4_4), the commit may have been manually che... Jim Pingle
03:17 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: It seems like 2.4.3 is automatically pulling in the 2.4.4 repository files..?? Even though the 2.4.3 files still exis... Pi Ba
02:09 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: Well it sounds as if https://github.com/pfsense/FreeBSD-ports/pull/555#discussion_r212271252 got into 2.4.3? Florian Apolloner
02:04 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: No, each release has its own branch. It's possible that an edit intended to only stay on 2.4.4 was picked back to 2.4... Jim Pingle
02:03 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: Are you saying that packages are served from one repo only and will more or less immediately break if a new release o... Florian Apolloner
01:58 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: Upgrade to 2.4.4 and try again. Jim Pingle
01:52 PM pfSense Packages Bug #8932 (Resolved): Upgrade to HaProxy 0.59_11 fails on 2.4.3: I cannot upgrade to haproxy 0.59_11 because getarraybyref() no longer exists:... Florian Apolloner
01:49 PM Bug #8868: multiple php errors on update: In nearly all cases the messages during the upgrade are harmless. There may be some actual problems discovered after ... Jim Pingle
11:47 AM Bug #8868: multiple php errors on update: Renato Botelho wrote:
> There is no easy way to prevent these warnings to show up on console. We are going to alert ... Petr Nosek
09:36 AM pfSense Packages Bug #8931 (Feedback): Service Watchdog PHP Errors: Fix committed in Service Watchdog pkg version 1.8.6, which will be up shortly after 2.4.4-RELEASE Jim Pingle
08:07 AM Bug #4584: Static Mapped clients on one LAN get a DHCP IP from another LAN even when Deny unknown clients is checked on the other LAN: Hi,
I would like to bring this bug from the grave.
This still applies in latest versions and it's definitely a bi... Jose Duarte
04:29 AM Bug #8925: IPv6 RA Prefix Doesn't Match Interface Prefix ID: Hi Jim,
Thanks for taking the time to try and reproduce this issue. I did create a forum issue last week (found he... Allen Balaj

09/23/2018

02:14 PM pfSense Packages Bug #8931: Service Watchdog PHP Errors: After hitting that uninstalling I'm unable to re-install:... Steve Wheeler
01:57 PM pfSense Packages Bug #8931 (Resolved): Service Watchdog PHP Errors: PHP errors
PHP ERROR: Type: 1, File: /usr/local/pkg/servicewatchdog.inc, Line: 83, Message: Uncaught Error: ... Chris Linstruth
01:46 PM Bug #7645: SG-1000 VLAN interfaces do not work without promisc mode: The symptoms may be similar but the issue is not the same. Post to the forum or pfSense subreddit to discuss in detail. Jim Pingle
01:45 PM Bug #7645: SG-1000 VLAN interfaces do not work without promisc mode: After forcing promisc on cpsw1 vlan routing starts working so it seems the same as the issue from the ticket.
I can ... Pawel Karoluk
01:24 PM Bug #7645: SG-1000 VLAN interfaces do not work without promisc mode: This specific issue was resolved over a year ago. If you are having an issue, it's not likely to be this problem.
... Jim Pingle
12:58 PM Bug #7645: SG-1000 VLAN interfaces do not work without promisc mode: Has this issue been resolved? I have the same problem in the latest stable version of my SG-1000:
2.4.3-RELEASE-p1... Pawel Karoluk
12:57 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: Just in case. So not see the issue on latest... Constantine Kormashev
12:15 AM Feature #8908: setting default gateway using lower Tier in case gateway group is set as default: Pi Ba wrote:
> You did 'apply' the new settings? (And refresh the page perhaps once after.?, it might lag a little b... Constantine Kormashev

09/22/2018

12:14 PM Bug #8925 (Not a Bug): IPv6 RA Prefix Doesn't Match Interface Prefix ID: I can't reproduce this here. I have three local interfaces all set to track WAN with index 0, 1, 2 from a /60 delegat... Jim Pingle

09/18/2018

10:49 PM pfSense Packages Bug #8904: Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: Added *Shellcmd package* functionality to *pfBlockerNG-devel* here:
https://github.com/pfsense/FreeBSD-ports/pull/56... BBcan177 .
09:16 AM pfSense Packages Bug #8904 (Feedback): Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: A previous fix to shellcmd to address PHP errors changed it from using references to using a copy of the config, whic... Jim Pingle
09:40 PM Revision c38de34b: Fix #8910: Restore older versions behaviour and consider 'wan' interface as primary default gateway: Renato Botelho
09:40 PM Revision 51c3546d: Fix #8910: Restore older versions behaviour and consider 'wan' interface as primary default gateway: Renato Botelho
09:29 PM pfSense Packages Bug #8916 (Not a Bug): Package Shellcmd doesn't install: 2.4.4-DEVELOPMENT (amd64)
built on Tue Sep 04 10:04:12 EDT 2018
FreeBSD 11.2-RELEASE-p2
PHP ERROR: Type: 1, F... BBcan177 .
06:52 PM Revision f406f896: reduce the tons of log spew that currently spit out during boot: and gateway failure events. Try to make the logs readable again,
while still allowing verbose logging if needed via a... → luckman212
06:27 PM Revision da266efd: Don't allow deletion when spoofing another userkey: (cherry picked from commit 3fd4f32c344573addea1dbb44dddef63b0e793e3) Steve Beaver
06:27 PM Revision b1aa3932: Fixed #8901: (cherry picked from commit d33560e8dcba496a553f33c50113877778c3274b) Steve Beaver
06:19 PM Revision 8c60e7ef: JimP already fixed it: Revert "Fixed #8913"
This reverts commit fc575f17b66cab903b1241a060180295788e4728. Steve Beaver
06:14 PM Revision fc575f17: Fixed #8913: Steve Beaver
06:14 PM Revision 702416aa: Fix dashboard update check & gitsync settings. Fixes #8913: Jim Pingle
06:14 PM Revision 30213bb0: Fix dashboard update check & gitsync settings. Fixes #8913: (cherry picked from commit 26e1525c153a672457a92d65f9c05d45b43a204d) Jim Pingle
04:45 PM Bug #8910 (Feedback): DHCP default gateway undefined: Applied in changeset commit:51c3546dd77b9efbd53ace478b991ea530bc0a98. Renato Botelho
02:18 PM Bug #8910 (In Progress): DHCP default gateway undefined: Renato Botelho
06:33 AM Bug #8910 (Resolved): DHCP default gateway undefined: If you have a DHCP dynamic gateway set as the default in 2.4.3 you may or may not have an entry for it in the <gatewa... Steve Wheeler
04:43 PM Bug #8905: status_logs_settings.php PHP errors on 2.4.4 snapshots: Perfect. That one liner fixes the issue I saw.
Jim, thanks for the quick fix!
Steve, thanks for the QA check! Jason Unovitch
03:53 PM Bug #8905 (Resolved): status_logs_settings.php PHP errors on 2.4.4 snapshots: Tested with an older version of 2.4.4 and was able to reproduce the error. Upgraded to 2.4.5 current and no longer se... Anonymous
09:10 AM Bug #8905 (Feedback): status_logs_settings.php PHP errors on 2.4.4 snapshots: Applied in changeset commit:508c66ace779a6021b217d055b53587fdb021fec. Jim Pingle
09:07 AM Bug #8905 (In Progress): status_logs_settings.php PHP errors on 2.4.4 snapshots: ...and as soon as I posted that, I managed to reproduce it with an empty syslog section here. The patch did fix it fo... Jim Pingle
08:58 AM Bug #8905: status_logs_settings.php PHP errors on 2.4.4 snapshots: I still can't reproduce that here but can you try the attached patch? Apply it either by making the edit by hand or u... Jim Pingle
04:37 PM Bug #8913 (Resolved): system_update_settings.php - PHP Error: Tried on latest with gitsync and no errors seen when toggling the disable dashboard check. Moving to resolved. Anonymous
01:15 PM Bug #8913 (Feedback): system_update_settings.php - PHP Error: Applied in changeset commit:30213bb09a6be9769352700e9bdf32f8be6f9b61. Jim Pingle
01:13 PM Bug #8913 (In Progress): system_update_settings.php - PHP Error: Jim Pingle
12:49 PM Bug #8913 (Resolved): system_update_settings.php - PHP Error: Getting PHP Error when I try disabling the dashboard check under System > Update > Update Settings.
Running 2.4.4 ... milk teeth
04:35 PM Revision 635ea24e: Fix #8911: Keep configured pkg repository when restoring config: Renato Botelho
04:34 PM Revision 0430b1b4: Fix #8911: Keep configured pkg repository when restoring config: Renato Botelho
04:27 PM Revision d43485a9: small change to fixup https://redmine.pfsense.org/issues/8851: without this, clicking edit on existing CA goes to wrong screen
and breaks Save button
(cherry picked from commit 33... → luckman212
04:27 PM Revision 27009a6c: Merge pull request #3982 from luckman212/cert-camanager-fix-1: Jim Pingle
04:02 PM Revision 3319f34d: small change to fixup https://redmine.pfsense.org/issues/8851: without this, clicking edit on existing CA goes to wrong screen
and breaks Save button → luckman212
02:53 PM Bug #8915 (Resolved): After updating to 2.4.4-rc an empty crash report is shown: In some cases a crash report is presented at first login after upgrading but the report contains no crash data and no... Steve Wheeler
02:22 PM Bug #8868 (Not a Bug): multiple php errors on update: There is no easy way to prevent these warnings to show up on console. We are going to alert users about it in release... Renato Botelho
02:10 PM Bug #8914 (Resolved): Gateway switch events cause a huge amount of log spew: When a gateway failure/defgw switch event occurs, there seem to be some code paths that get iterated over dozens of t... → luckman212
02:08 PM Revision 30a3c370: Init syslog settings before using the array. Fixes #8905: (cherry picked from commit 508c66ace779a6021b217d055b53587fdb021fec) Jim Pingle
02:05 PM Revision 508c66ac: Init syslog settings before using the array. Fixes #8905: Jim Pingle
11:40 AM Bug #8911 (Feedback): Incorrect pkg repo set when restoring a config.: Applied in changeset commit:0430b1b4ea7de0ce5d10b202af218140c59b9ecd. Renato Botelho
08:29 AM Bug #8911 (Resolved): Incorrect pkg repo set when restoring a config.: When restoring a config file from an older version of pfSense into a newer version it's possible to end up with the p... Steve Wheeler
11:33 AM Bug #8912 (Not a Bug): User Certificate error: Something in your config or parameters is incorrect, but more importantly, you are several versions out of date. Upda... Jim Pingle
11:31 AM Bug #8912 (Not a Bug): User Certificate error: Hello,
I'm trying to create a new user for VPN access, I have tried creating cert within user creation and from cert... Hamid B
11:28 AM Todo #8851: Change default CA/Cert action to "Create an internal...": Thanks, looks good to me, PR merged. Jim Pingle
11:17 AM Todo #8851: Change default CA/Cert action to "Create an internal...": on RC 2.4.4.r.20180917.0837 - there was a glitch with this. I created PR#3982 to fix:
https://github.com/pfsense/pfs... → luckman212
05:51 AM pfSense Packages Bug #8909 (New): tinc package makes /rc.newwanip looping forever: I just realizd that each time the tincd(8) daemon is started, pfSense detects the new IP address on its dedicated int... Andrew Hotlab
12:57 AM Feature #8908 (Closed): setting default gateway using lower Tier in case gateway group is set as default: *Current behavior.* I have 3 GW and create GW group from 2 them with different Tiers. E.g. GW3 is marked as @(default... Constantine Kormashev
12:35 AM Bug #8218: Changing an interface name will break the manual created gateway-group: Do not observe the issue on 245-dev... Constantine Kormashev
12:32 AM Revision 2e490732: Removed duplicate line :/: Nano Caiordo
12:30 AM Revision c2d8c3c8: Properly restrict a network when default is open.: Effectively override any default setting. Nano Caiordo
12:29 AM Todo #8743: Gateway Groups page should list gateways in tier order: And also GW obtained from DHCP are always at bottom regardless name. I mean *WAN_DHCP* is lower than manually added *... Constantine Kormashev
12:19 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: I've checked on 245, it works, I do not observe extra GW 0 and php warning:... Constantine Kormashev
12:00 AM Revision e0f12d6b: Removed is_ipaddr() as ip_in_subnet() does it already.: Nano Caiordo

09/17/2018

11:49 PM Revision d73918f2: Fixed NTP status page not honouring NTP ACLs: Reported in redmine https://redmine.pfsense.org/issues/7609 Nano Caiordo
09:30 PM Bug #8905: status_logs_settings.php PHP errors on 2.4.4 snapshots: > Does your config.xml have a @<syslog>...</syslog>@ section? If so, what is in it?
Hmm, this is rather strange. ... Jason Unovitch
08:06 AM Bug #8905 (Feedback): status_logs_settings.php PHP errors on 2.4.4 snapshots: I can't reproduce that here. I took a system that had never had syslog settings changed on it since the last factory ... Jim Pingle
09:00 PM Revision ac0e2bbf: Add 2.4.4-RC repo: Renato Botelho
08:22 PM Revision 3fd4f32c: Don't allow deletion when spoofing another userkey: Steve Beaver
08:05 PM Revision d33560e8: Fixed #8901: Steve Beaver
07:40 PM Bug #8531: URL Table aliases don't support FQDNs or names that return >1 IP: Also, I should probably redo this patch in pure PHP and use *dns_get_record()* http://php.net/manual/en/function.dns-... → luckman212
07:14 PM Bug #7609: NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: Pull request https://github.com/pfsense/pfsense/pull/3981 Nano Caiordo
04:55 PM Revision 23b2c59e: Revise async_crypto setting: Steve Beaver
04:53 PM Revision 382fa81d: Fixed #8880: Steve Beaver
03:21 PM Bug #8070: IKEv2 IPSec tunnel under load crashes pfSense when AES-NI is enabled: Paul Youngberg wrote:
> Jan Jurkus wrote:
> > I want to refer you to this forumpost: https://forum.pfsense.org/inde... Rachel Chen
02:36 PM Revision 9ed4813c: Fix an obvious mistake.: Reported by: stevew
Ticket: #8906
Pointy-hat to: loos
(cherry picked from commit 0285d8e5c721491c7e8ae8d... Luiz Souza
02:34 PM Revision 0285d8e5: Fix an obvious mistake.: Reported by: stevew
Ticket: #8906
Pointy-hat to: loos Luiz Souza
12:05 PM pfSense Packages Bug #8904: Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: On install, shellcmd imports the items from the earlyshellcmd tags and reformats them into the shellcmd package setti... Jim Pingle
11:54 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: This commit was not cherry-picked from master branch. Can you validate the fix on a 2.4.5 snapshot? I did the cherry-... Renato Botelho
11:05 AM Bug #8527: VLANs losing parent interface on LAGG change: Please check again with a newer image. Luiz Souza
09:09 AM Bug #8895 (Resolved): You MUST recompile PHP with a larger value of FD_SETSIZE. It is set to 2048, but you have descriptors numbered at least as high as 2161.: Done Renato Botelho
08:56 AM pfSense Packages Bug #8899 (Resolved): AWS-ipsec error: Fixed in commit:59e2c01227cc on factory-ports, aws-wizard pkg version 0.7_2 will contain the fix when it builds. Jim Pingle
07:43 AM Todo #7024: Replace copy of radius.inc by pear-Auth_RADIUS: A FL wrote:
> I found a small issue with RADIUS bw limits however : pfsense-Bandwidth-Max-Up/Down have to be written... Jim Pingle
07:34 AM Bug #8897: RADIUS WebUI login with RADIUS does not work: Tested it again here and it works.
User in FreeRADIUS has:... Jim Pingle
07:27 AM pfSense Packages Bug #8508 (Resolved): Haproxy: Selecting mode tcp with SSL in backend does not activate SSL in the server config: Jim Pingle
01:58 AM pfSense Packages Bug #8508: Haproxy: Selecting mode tcp with SSL in backend does not activate SSL in the server config: Yes, this seems to be fixed for a while now (the upgrade was fun since it broke my workaround :D)). Thanks! Florian Apolloner
05:43 AM pfSense Packages Bug #8903: pfBlockerNG: PHP error: Sorry, you're right, this is the -devel package. I'd forgotten I'd installed that.
I agree the earlyshellcmd issue... Steve Wheeler
04:22 AM pfSense Packages Feature #8523: make cookie inserted by haproxy secure: Thank you! I do see the secure option in haproxy version 0.59_9.
Where did you add another options? Alex Kolesnik

09/16/2018

11:14 PM Bug #8907 (Resolved): wizard.php - $field['type'] - "Select" doesn't have the attribute "Size" defined: The file wizard.php - $field['type'] option "Select" doesn't have the attribute "Size" defined.
From:... BBcan177 .
10:33 PM pfSense Packages Bug #8903: pfBlockerNG: PHP error: Posted two PR to fix these issues and add other improvements.
https://github.com/pfsense/FreeBSD-ports/pull/567
h... BBcan177 .
08:11 PM pfSense Packages Bug #8903: pfBlockerNG: PHP error: Steve, Are you sure this is not from pfBlockerNG-devel?
https://github.com/pfsense/FreeBSD-ports/blob/devel/net/pf... BBcan177 .
01:07 PM pfSense Packages Bug #8903: pfBlockerNG: PHP error: This error looks to be triggering an unrequired config update:... Steve Wheeler
10:51 AM pfSense Packages Bug #8903: pfBlockerNG: PHP error: Sorry clipped the line in the copy there. Actual warning is:... Steve Wheeler
10:50 AM pfSense Packages Bug #8903 (Resolved): pfBlockerNG: PHP error: Seeing this on a clean install of pfSense-2.4.4.r.20180914.1530 and restoring an existing config.... Steve Wheeler
02:45 PM Bug #8905 (Resolved): status_logs_settings.php PHP errors on 2.4.4 snapshots: Info:
Working on testing the latest snapshots and I'm unable to add remote syslog on 2.4.4 snapshot (pfSense-2.4.4... Jason Unovitch
01:08 PM pfSense Packages Bug #8904 (Resolved): Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: The Shellcmd package is incorrectly removing the pfBlocker early shellcmd entry at each boot.... Steve Wheeler
08:16 AM pfSense Packages Bug #8902: HAproxy package not use custom DNS for lookup on apply new config: Pi Ba wrote:
> Hmm, i suppose your right.
>
> You could add below to the 'global advanced pass thru', that should... DRago_Angel [InV@DER]
07:48 AM pfSense Packages Bug #8902: HAproxy package not use custom DNS for lookup on apply new config: Hmm, i suppose your right.
You could add below to the 'global advanced pass thru', that should solve the issue.
<... Pi Ba
06:02 AM pfSense Packages Bug #8902 (New): HAproxy package not use custom DNS for lookup on apply new config: Package Version:
haproxy-devel net 0.59_9
Package Dependencies:
haproxy-devel-1.8.13
cat /etc/version
2.4.3... DRago_Angel [InV@DER]
07:54 AM Todo #7024: Replace copy of radius.inc by pear-Auth_RADIUS: Well, I made some tests :
h2. Basic RADIUS auth (Diag > Auth test)
-> Good (working correctly)
h2. GUI RADI... A FL
02:53 AM Bug #8880 (Feedback): [PHP7] warning on system_gateways.php and extra item in gateways table: Keep it open until checking on next build, which contains current patch. Constantine Kormashev
01:04 AM Bug #8880 (Resolved): [PHP7] warning on system_gateways.php and extra item in gateways table: Constantine Kormashev
12:38 AM Bug #8880 (Assigned): [PHP7] warning on system_gateways.php and extra item in gateways table: Latest 14 Sep RC snapshot does not contain commit @a155dc5ec2278e0a344afa221127b8503d4e225e@ with this patch. But iss... Constantine Kormashev

09/15/2018

10:22 PM pfSense Packages Bug #8900: pfBlockerNG: Fixed: https://github.com/pfsense/FreeBSD-ports/pull/567 BBcan177 .
04:05 PM pfSense Packages Bug #8900 (Resolved): pfBlockerNG: Crash report begins. Anonymous machine information:
Current Base System 2.4.4.r.20180914.1544
amd64
11.2-RELE... Chris Macmahon
03:43 PM Bug #8502: main (top) menu items do not drop down in some cases: ran arpping package 1.2.2_1, executed ping to mac, hover menu's don't populate, no crash recorded
ran package iperf ... Chris Macmahon
02:53 PM pfSense Packages Bug #8899 (Resolved): AWS-ipsec error: 2.4.4-RC (amd64)
built on Fri Sep 14 15:45:39 EDT 2018
FreeBSD 11.2-RELEASE-p3
Factory install aws-wizard: F... Chris Macmahon
11:57 AM Bug #7892: AutoConfigBackup status reported incorrectly: This seems to be presenting in another way also, where System Log will show a successful backup, despite the backup n... Anonymous
09:20 AM pfSense Packages Feature #8523: make cookie inserted by haproxy secure: I've added a bunch of cookie options.. Does it work for you? Pi Ba
09:19 AM pfSense Packages Bug #8508: Haproxy: Selecting mode tcp with SSL in backend does not activate SSL in the server config: The server configuration now allows separate activation of ssl for regular traffic and for health-checks. That should... Pi Ba
07:02 AM pfSense Packages Bug #8670 (Resolved): HAProxy PHP error: Chris Macmahon
07:02 AM pfSense Packages Bug #8670: HAProxy PHP error: I am no longer seeing these errors.
Chris Macmahon

09/14/2018

08:01 PM Revision 9c614946: Always pass the $local variabled to load_loader_conf(), it makes the code easier to read.: (cherry picked from commit 1ef4cbdbb03791f5c3541df44da5a61d00db6e46) Luiz Souza
08:01 PM Revision 6b3bff74: Sync the know variables with factory.: (cherry picked from commit fe7523cbbdee119bf71abb93009f44a9f8e47963) Luiz Souza
08:01 PM Revision f8d1fe02: Filter properly the know variables in loader.conf.: The know variables should be used as prefix not as literals.
(cherry picked from commit 21bacf010021d34012f6869ce1d5... Luiz Souza
07:59 PM Revision 1ef4cbdb: Always pass the $local variabled to load_loader_conf(), it makes the code easier to read.: Luiz Souza
07:58 PM Revision fe7523cb: Sync the know variables with factory.: Luiz Souza
07:53 PM Revision 21bacf01: Filter properly the know variables in loader.conf.: The know variables should be used as prefix not as literals. Luiz Souza
12:08 PM Bug #8893 (New): Outbound NAT page unnecessarily strips underscores from alias names: You are right that one page is inconsistent with the rest. They should all be done the same way. Not going to hold ba... Jim Pingle
11:35 AM Bug #8896 (Not a Bug): Static routes are not added after reboot: I can't reproduce this. I setup a GRE interface and static routes, rebooted 10 times and every time the routes were t... Jim Pingle
01:35 AM Bug #8896 (Not a Bug): Static routes are not added after reboot: Hello,
Version tested: 2.4.3-RELEASE-p1 (amd64)
Steps to reproduce:
1. Add a GRE tunnel
2. Add some static ro... Dmitriy K
11:28 AM Revision 9a904de8: Fix #8895: Increase FD_SETSIZE to 3172 on lang/php72: Renato Botelho
11:28 AM Revision 352d4978: Fix #8895: Increase FD_SETSIZE to 3172 on lang/php72: Renato Botelho
07:44 AM Bug #8897 (Not a Bug): RADIUS WebUI login with RADIUS does not work: RADIUS auth works fine when configured correctly. The subject is incorrect, or at least misleading. It works with the... Jim Pingle
04:19 AM Bug #8897 (Not a Bug): RADIUS WebUI login with RADIUS does not work: Hi all,
I setup FreeRADIUS as a RADIUS server and try to login to the WebUI then.
It is not working since the retur... Peter Baumann
06:35 AM Todo #8898 (Resolved): Update strongswan to 5.7.1: Update strongswan to 5.7.0 Renato Botelho
06:33 AM Bug #8845: Recompile PHP with a larger value of FD_SETSIZE.: Rajil Saraswat wrote:
> I am seeing the same crash on pfSense-CE-memstick-2.4.4-DEVELOPMENT-amd64-20180904-1004.img ... Renato Botelho
06:30 AM Bug #8895 (Feedback): You MUST recompile PHP with a larger value of FD_SETSIZE. It is set to 2048, but you have descriptors numbered at least as high as 2161.: Applied in changeset commit:352d49787dc5742ea53dd81ff82fef5f37b246db. Renato Botelho
12:08 AM Revision 42c05989: Underscores never hurt nobody: Also, i18n → luckman212

09/13/2018

10:31 PM Bug #8895 (Resolved): You MUST recompile PHP with a larger value of FD_SETSIZE. It is set to 2048, but you have descriptors numbered at least as high as 2161.: Deleted issue #8894. This is similar to #8845 but insists on 3172, not 2048. Chris Linstruth
08:58 PM Bug #8893: Outbound NAT page unnecessarily strips underscores from alias names: The change above substitutes '_' with '_<wbr>' which is the same method used on other NAT pages. The '<wbr>' signals ... → luckman212
08:50 PM Bug #8893 (Not a Bug): Outbound NAT page unnecessarily strips underscores from alias names: It's done deliberately to avoid long aliases preventing wrapping. #7249 Jim Pingle
08:13 PM Bug #8893 (Resolved): Outbound NAT page unnecessarily strips underscores from alias names: I notice that underscores are being replaced with spaces in alias names on Firewall > NAT > Outbound.
It's not consi... → luckman212
08:26 PM Bug #8892 (Resolved): 2.3.5_2 does not offer update to 2.4.4-RC: Renato Botelho
07:59 PM Bug #8892: 2.3.5_2 does not offer update to 2.4.4-RC: Tested 2.3.5_2 -> 2.4.4-RC without any manual intervention. Looks good. Anonymous
01:41 PM Bug #8892 (Feedback): 2.3.5_2 does not offer update to 2.4.4-RC: pfSense-upgrade 0.51 (2.4.x) and 0.27_14 (2.3.5) are fixed Renato Botelho
01:29 PM Bug #8892: 2.3.5_2 does not offer update to 2.4.4-RC: After selecting stable 2.4.x updates:... Jim Pingle
01:26 PM Bug #8892 (Resolved): 2.3.5_2 does not offer update to 2.4.4-RC: A user on 2.3.5, who upgrades to 2.3.5_2, then tries to upgrade to 2.4.4-RC is not able to see 2.4.4-RC.
Even on t... Anonymous
07:04 PM Feature #1189: Gateway: Multiple monitor ips: Openwrt mwan3 package has multiple monitors which can be tracked, https://wiki.openwrt.org/doc/howto/mwan3#interface_... Rajil Saraswat
10:55 AM Feature #1189: Gateway: Multiple monitor ips: Just going to add to the chorus here.
We encountered routing issues (their side, whole country affected) with one ... Blaine Palmer
05:45 PM Bug #8845: Recompile PHP with a larger value of FD_SETSIZE.: I am seeing the same crash on pfSense-CE-memstick-2.4.4-DEVELOPMENT-amd64-20180904-1004.img running on Supermicro C35... Rajil Saraswat
10:24 AM Bug #8876 (Resolved): status_gateway_groups.php: PHP error when there is no gateways array: Can't reproduce any errors on gateway status in the latest RC build, even without @<gateway></gateway>@ tags in the c... Jim Pingle
10:22 AM Bug #8889 (Resolved): Setup Wizard PHP error when LAN has no DHCP configuration: Fix tests OK with a gitsync to RELENG_2_4_4, but the fix is not yet in the RC images, will be in -RELEASE. Jim Pingle
09:08 AM Bug #8891 (Resolved): PHP error with an empty CRL: Fixed on latest RC snap. Jim Pingle
09:07 AM Bug #8880 (Resolved): [PHP7] warning on system_gateways.php and extra item in gateways table: Blank entries are not displayed on current RC snap and they do not cause PHP errors. Jim Pingle
09:05 AM Bug #8877 (Resolved): VTI P2 can trigger an endless loop trying to form a P2 ID: Invalid combinations mentioned here are rejected on current RC snap Jim Pingle
09:03 AM Bug #8858 (Resolved): IPsec VTI cleanup can accidentally remove valid interfaces: Can't reproduce on RC snap on the same box where it happened previously. Looks good. Jim Pingle
08:45 AM Feature #8737 (Resolved): Let users configure PPPoE multilink over single link: Jim Pingle
08:44 AM pfSense Packages Bug #8631 (Resolved): syslog-ng - logrotate incorrectly configured to rotate TLS key: Jim Pingle
08:44 AM Bug #8499: IPv6 fragment logging causes panic in some circumstances: Still waiting on someone that can reproduce it to confirm if it still happens. May be fixed, but we won't know for ce... Jim Pingle
08:42 AM Bug #8071 (Resolved): DNSimple support for Dynamic DNS no longer working: No feedback after a month, we do not have accounts there to test. Assuming it's OK based on lack of complaints. Jim Pingle

09/12/2018

07:57 PM Revision 4868ef35: Initialize DHCP settings in setup wizard. Fixes #8889: Rather than assume they are present, create the arrays before use.
(cherry picked from commit 7c15c19d76eac725c42133... Jim Pingle
07:46 PM Revision 7c15c19d: Initialize DHCP settings in setup wizard. Fixes #8889: Rather than assume they are present, create the arrays before use. Jim Pingle
07:37 PM Bug #8890: Register DHCP leases in the DNS Resolver has no effect: Also content in /var/unbound/dhcpleases_entries.conf stays unchanged after uncheck the boxes and save, so unbound can... Ender L
07:34 PM Bug #8890: Register DHCP leases in the DNS Resolver has no effect: Jim Pingle wrote:
> Those directives are always present. The contents of those files are what matter.
OK, I looke... Ender L
02:58 PM Bug #8890 (Not a Bug): Register DHCP leases in the DNS Resolver has no effect: Those directives are always present. The contents of those files are what matter. Jim Pingle
02:48 PM Bug #8890 (Not a Bug): Register DHCP leases in the DNS Resolver has no effect: uncheck "DHCP Registration" and "Static DHCP" in WebGUI doesn't change unbound's behavior.
@# Static host entries... Ender L
06:17 PM Revision 3d9d84d4: Fix a PHP erorr when a CRL has no certificates: (cherry picked from commit d9064f0b92452daeaf0cb7f0a0e74561f246ed5b) Jim Pingle
06:16 PM Revision d9064f0b: Fix a PHP erorr when a CRL has no certificates: Jim Pingle
05:31 PM Bug #8888: Memory Leak/loop 99% used Ramdisk band aid.: You should post in the forums.
Something else is wrong with your setup, this affects only you, thus us in the commun... Anonymous
11:24 AM Bug #8888: Memory Leak/loop 99% used Ramdisk band aid.: Jim Pingle wrote:
> Looks like it's all configuration issues there, not a memory leak, but there is not enough detai... Steven Nowak
10:47 AM Bug #8888 (Not a Bug): Memory Leak/loop 99% used Ramdisk band aid.: Looks like it's all configuration issues there, not a memory leak, but there is not enough detail to call it a bug by... Jim Pingle
10:01 AM Bug #8888: Memory Leak/loop 99% used Ramdisk band aid.: Sorry those screen shot above turned out like crap
Better one's.
[[https://ibb.co/fMe2X9]]
[[https://ibb.co/mUUf... Steven Nowak
09:46 AM Bug #8888 (Not a Bug): Memory Leak/loop 99% used Ramdisk band aid.: I am Ruining 2.4.3-p1. I have tried every thing from No Plugins, to Ramdisk Via var. I can Control it if I running a ... Steven Nowak
03:38 PM Bug #8891 (Resolved): PHP error with an empty CRL: If a CRL contains no certificates, a PHP error appears in the contents of the page... Jim Pingle
02:50 PM Bug #8889 (Feedback): Setup Wizard PHP error when LAN has no DHCP configuration: Applied in changeset commit:7c15c19d76eac725c42133012488cb97e4dcd885. Jim Pingle
02:44 PM Bug #8889 (Resolved): Setup Wizard PHP error when LAN has no DHCP configuration: If you remove LAN and then add it back, then run the Setup Wizard, a PHP error will result.
Removing the LAN remov... Jim Pingle
11:40 AM Bug #8868: multiple php errors on update: Upgrading to 2.4.4-RC from Sept 11, the php errors are still present.
https://netgate.slack.com/files/U32BGSZBP/FC... Anonymous

09/11/2018

08:16 PM Bug #8868: multiple php errors on update: A while ago I added a code on pfSense-upgrade to cleanup crash report when PHP major version changes. I couldn't repr... Renato Botelho
08:14 PM Bug #8868: multiple php errors on update: Steve Wheeler wrote:
> Still seeing one of those PHP warning updating to todays image:
>
> [...]
This one shou... Renato Botelho
05:42 PM Bug #8868: multiple php errors on update: Still seeing one of those PHP warning updating to todays image:... Steve Wheeler
07:44 PM Revision cf669325: Fix typo: (cherry picked from commit 3b55fc639cdea2be20d55113055fd511ba193866) Jim Pingle
07:44 PM Revision 3b55fc63: Fix typo: Jim Pingle
06:59 PM Revision aaf6d7a6: Update translation files: Renato Botelho
06:59 PM Revision b9f02588: Regenerate pot: Renato Botelho
06:55 PM Revision 834b671f: Update translation files: Renato Botelho
06:51 PM Revision 8c5817a9: Regenerate pot: Renato Botelho
05:18 PM pfSense Packages Bug #8887: Squid Proxy Interface not assignee to IPv6: For fix this issue maybe better not add IP at all if look to documentation: http://www.squid-cache.org/Versions/v3/3.... DRago_Angel [InV@DER]
05:06 PM pfSense Packages Bug #8887 (Resolved): Squid Proxy Interface not assignee to IPv6: Package Version:
squid www 0.4.43_1
Package Dependencies:
squid-3.5.27_3
cat /etc/version
2.4.3-RELEASE
c... DRago_Angel [InV@DER]
03:20 PM Todo #8886 (Not a Bug): Update downloads page once hybrid iso/img installers are implemented: Once hybrid iso/img installers are implemented, we can remove the ISO and just have the hybrid memstick option for t... Jared Dillard
02:37 PM Bug #8815 (New): IP addresses are removed from interfaces when link is lost and either IPv4 or IPv6 is dynamic: Luiz Souza
02:37 PM Bug #8815: IP addresses are removed from interfaces when link is lost and either IPv4 or IPv6 is dynamic: Luiz Souza
02:29 PM pfSense Packages Bug #8885: HAProxy "Log hostname parameter broke local syslog: Package Version:
haproxy-devel net 0.59_9
Package Dependencies:
haproxy-devel-1.8.13

cat /etc/version
2.4.... DRago_Angel [InV@DER]
02:14 PM pfSense Packages Bug #8885 (Closed): HAProxy "Log hostname parameter broke local syslog: DRago_Angel [InV@DER]
01:41 PM pfSense Packages Bug #8670 (Feedback): HAProxy PHP error: Jim Pingle
10:57 AM Bug #8859 (New): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Needs more thought/testing than we'll have time for to make 2.4.4. There are workarounds on the linked forum thread f... Jim Pingle
06:05 AM Bug #8859 (Feedback): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Applied in changeset commit:59c2e21d4f903ebaed3af861aeecab9b7e94d037. Jim Pingle
07:53 AM Bug #8883: Default route order set in Routing not honored: Though, as food for thought: ... Jaime Geiger
07:46 AM Bug #8883: Default route order set in Routing not honored: Thanks for your time. I'll just keep the changes locally. Jaime Geiger
07:45 AM Bug #8883: Default route order set in Routing not honored: It may appear to "work" for you but it is not a general fix that will work across all platforms, and may not behave c... Jim Pingle
07:29 AM Bug #8883: Default route order set in Routing not honored: I have created a fix (above) so clearly there can be something done in your code. The fix does not break current conf... Jaime Geiger
07:20 AM Bug #8883 (Not a Bug): Default route order set in Routing not honored: Having two interfaces in the same subnet is not supported, nor is having two interfaces with the same gateway.
The... Jim Pingle
07:16 AM Bug #8883: Default route order set in Routing not honored: I propose the following fix on /etc/int/system.inc line 755:... Jaime Geiger
06:20 AM Bug #8883: Default route order set in Routing not honored: this is on amd64, by the way. Jaime Geiger
06:20 AM Bug #8883 (Not a Bug): Default route order set in Routing not honored: I have two interfaces:
- xn0: 10.0.0.253, gateway 10.0.0.1 (WAN)
- xn1: 10.0.0.254, gateway 10.0.0.1 (WAN2)
If I... Jaime Geiger
06:05 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: Applied in changeset commit:a155dc5ec2278e0a344afa221127b8503d4e225e. Anonymous
06:05 AM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Applied in changeset commit:885cf6a751f076f43fa89167ba2a79f779244f1b. Jim Pingle
06:05 AM Bug #8876: status_gateway_groups.php: PHP error when there is no gateways array: Applied in changeset commit:b54a1af45c5add4e57253bfa0b562dadf3ae10f7. Jim Pingle

09/10/2018

08:31 PM Bug #8882 (Incomplete): Interface assignments lost on reboot: I'm running pfsense in AWS and I'm trying to route out of xn1 (second interface) instead of xn0 (using it as a sync i... Jaime Geiger
07:00 PM Revision a155dc5e: Fixed #8880: Steve Beaver
06:58 PM Revision ccabd09f: Merge branch 'master' of gitlab.netgate.com:pfsense/pfsense: Steve Beaver
03:57 PM Revision 6ae28bc3: Revert "Default VTI remote to Address but allow it to change. Fixes #8859": This reverts commit da54e84ae79328a87b4a319239bb1b14d7ed2ce6. Jim Pingle
03:57 PM Revision 59c2e21d: Revert "Default VTI remote to Address but allow it to change. Fixes #8859": This reverts commit da54e84ae79328a87b4a319239bb1b14d7ed2ce6. Jim Pingle
02:01 PM Bug #8880 (Feedback): [PHP7] warning on system_gateways.php and extra item in gateways table: Anonymous
06:33 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: Configs for reproducing bug _only Netgate has access_ https://drive.google.com/file/d/1N8hgWGgN4ccwUB0ldBpjGQFZdRo96m... Constantine Kormashev
06:24 AM Bug #8880 (Resolved): [PHP7] warning on system_gateways.php and extra item in gateways table: 244-RC... Constantine Kormashev
01:21 PM Bug #8815 (In Progress): IP addresses are removed from interfaces when link is lost and either IPv4 or IPv6 is dynamic: Anonymous
01:21 PM Bug #8815: IP addresses are removed from interfaces when link is lost and either IPv4 or IPv6 is dynamic: Anonymous
12:51 PM pfSense Packages Bug #8139: LADVD not working on LAGG interfaces: Based on the discussion in the repo (https://github.com/sspans/ladvd/issues/36), the FreeBSD port has been updated: h... Tom Cosmos
10:57 AM Bug #8859 (In Progress): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: This apparently fails despite previous reports of manual edits working. See
https://forum.netgate.com/post/788458
... Jim Pingle
04:37 AM pfSense Packages Feature #8232: different ssl options based on the sni name: Hi Pi Ba,
looks like this patch not work with the most recent version of pfsense 2.4.3 P1. Can you check please?... Zoltan Beck

09/09/2018

06:37 PM pfSense Packages Bug #8139: LADVD not working on LAGG interfaces: The creator of the LADVD package is saying this is likely fixed in his 1.1.2 implementation, and PFSense is still usi... Tom Cosmos
08:06 AM Bug #8527: VLANs losing parent interface on LAGG change: I still saw this issue on 2.4.4.r.20180905.2249 Azamat Khakimyanov

09/08/2018

11:15 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Should have something up on Monday to try with gitsync at least, hopefully an RC as well. Jim Pingle
03:36 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Okay thanks. So wait for a RC build now or gitsync to test.? Seems snapshots don't get updated a.t.m. . Pi Ba
03:16 PM pfSense Packages Bug #8139: LADVD not working on LAGG interfaces: Created issue to track in official repo:
https://github.com/sspans/ladvd/issues/36 Tom Cosmos

09/07/2018

04:29 PM Bug #8870: Webgui incorrectly reports "The system is on the latest version".: Yep I hit this one a couple of days ago, on whatever snap was latest as of 9/5
pkg goes braindead in some way if t... → luckman212
01:32 PM pfSense Packages Bug #8103 (Resolved): squid monitor using hard coded logs location: Jim Pingle
01:30 PM pfSense Packages Bug #8103: squid monitor using hard coded logs location: Issue can be closed, already merged on GitHub
https://github.com/pfsense/FreeBSD-ports/commit/b7c4da7878f8da6169c5... Nano Caiordo
12:11 PM Revision 2ee829ae: Prevent a user from selecting VTI for mobile IPsec. Fixes #8877: (cherry picked from commit 885cf6a751f076f43fa89167ba2a79f779244f1b) Jim Pingle
12:10 PM Revision 885cf6a7: Prevent a user from selecting VTI for mobile IPsec. Fixes #8877: Jim Pingle
09:14 AM Feature #8879: DHCP options ADD force options: pfSense uses ISC DHCPD for DHCP, not dnsmasq. ISC DHCPD doesn't have a way to force an option in quite that same mann... Jim Pingle
09:11 AM Feature #8879 (New): DHCP options ADD force options: DHCP server offer the possiblilty to add DHCP options.
Maybe add for options the possibility to force the options (w... jonathan MANTOVANI
07:13 AM Bug #8877 (Feedback): VTI P2 can trigger an endless loop trying to form a P2 ID: I just pushed another bit of input validation to prevent VTI from being selected on mobile IPsec. That should hopeful... Jim Pingle

09/06/2018

09:57 PM Revision af656615: Changes on the parent interfaces will create new interfaces and the existing VLANs needs to be redone.: Ticket #8527
(cherry picked from commit 6fd6b8536b80316caf0f3b9221ed6af0b3453571) Luiz Souza
09:55 PM Revision 6fd6b853: Changes on the parent interfaces will create new interfaces and the existing VLANs needs to be redone.: Ticket #8527 Luiz Souza
08:32 PM Revision 39504035: IPsec VTI requires a manually specified network/address. Issue #8877: Prevent a user from selecting an interface macro like "LAN Network"
which cannot be used with VTI since it does not w... Jim Pingle
08:32 PM Revision 02af1494: IPsec VTI requires a manually specified network/address. Issue #8877: Prevent a user from selecting an interface macro like "LAN Network"
which cannot be used with VTI since it does not w... Jim Pingle
04:38 PM pfSense Packages Feature #8878 (Resolved): Propagate user's description field into QR code for FreeRADIUS: Hi,
it is often desirable (esp. when you have more than one identity added in your Google Auth mobile app) to dist... Juraj Lutter
04:27 PM Bug #8877 (In Progress): VTI P2 can trigger an endless loop trying to form a P2 ID: Yeah the mobile case is still a bit undefined. I can shut that down as well. I'm not sure that is feasible since VTI ... Jim Pingle
04:14 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: i could configure vti on a 'normal' site-to-site vpn so perhaps its just a 'user issue' :) if so then sorry for the n... Pi Ba
04:06 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Perhaps the issue was that i made my mobile-ipsec P2 use vti.. perhaps that does not actually make sense to do.?. it ... Pi Ba
03:35 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: I haven't tried setting one up this way but if someone were to have incorrectly selected something like "LAN Network"... Jim Pingle
03:07 PM Bug #8877 (Feedback): VTI P2 can trigger an endless loop trying to form a P2 ID: I can maybe see how some combination may lead to a loop here but I can't seem to make it happen on any of mine.
So... Jim Pingle
03:05 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: Its about the vti and it looping around. see screenshot of a stacktrace. Pi Ba
02:34 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: I suspect it would have done the same for any other additional interface you add there and VTI was a coincidence. May... Jim Pingle
02:29 PM Bug #8877: VTI P2 can trigger an endless loop trying to form a P2 ID: agreed that the lines don't 'directly' point to vti.. however only when i enable 'that' interface its runs for a minu... Pi Ba
02:22 PM Bug #8877 (Not a Bug): VTI P2 can trigger an endless loop trying to form a P2 ID: That doesn't look like it would have anything to do with VTI. The lines you reference are quite different, one is a g... Jim Pingle
02:03 PM Bug #8877 (Resolved): VTI P2 can trigger an endless loop trying to form a P2 ID: Enabling a vti OPT1 interface throws me the following errors after a minute while processing the 'apply' button.. lik... Pi Ba
04:27 PM Revision 1884979a: Fix a PHP error when upgrading gateways: (cherry picked from commit bd670efef4c642ebb03b844ef0c38258740a37a1) Jim Pingle
04:27 PM Revision bd670efe: Fix a PHP error when upgrading gateways: Jim Pingle
03:00 PM Bug #8001: Invalid FQDN in alias causes alias table to fail *silently*: possibly related bug: https://redmine.pfsense.org/issues/8758 → luckman212
03:00 PM Bug #8758: filterdns stops working on a regular basis.: Ok, I've done that. For anyone else who wants an easy way, I made a patch that you can add via System Patches:
https... → luckman212
02:34 PM Bug #8527 (Feedback): VLANs losing parent interface on LAGG change: Waiting the next -RC build. Luiz Souza
07:14 AM Todo #6647: Enable Additional Security Headers: Fixed the subject to be more general since this is covering more than just CSP at this point.
We had someone askin... Jim Pingle

09/05/2018

09:26 PM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: You were probably kidding, but my ISP will propose exactly this (40 gig) in 2-3 years ... at least that's the plan.
... Alexandre Paradis
08:17 PM Revision 7d80bbbe: Init gateway group array before use. Fixes #8876: (cherry picked from commit b54a1af45c5add4e57253bfa0b562dadf3ae10f7) Jim Pingle
08:17 PM Revision b54a1af4: Init gateway group array before use. Fixes #8876: Jim Pingle
04:03 PM Bug #8876 (Feedback): status_gateway_groups.php: PHP error when there is no gateways array: Fix committed, will be in snaps when they are running again. Jim Pingle
03:08 PM Bug #8876 (Resolved): status_gateway_groups.php: PHP error when there is no gateways array: ... Jim Pingle
12:15 PM Feature #6742: OAuth2 authentication for OpenVPN (and for FreeRadius): +1 on my side as well. We need this in order to properly implement VPN/IPSec/FreeRadius for our remote workers to int... Patrick Monfette
04:03 AM Feature #8737: Let users configure PPPoE multilink over single link: Confirm option existing in GUI and in device config
!option.png!... Constantine Kormashev
02:58 AM Revision 577afc43: Fix default repo: Renato Botelho
12:56 AM Bug #8875 (Duplicate): Separator in DHCP Server: Hi. Having a seperator in DHCP Server would be nice to allocate ip addresses like in Firewall Rules. Elvin Mammadov

09/04/2018

09:43 PM Bug #6263: Encryption options for every P2 on a given P1 are written to each P2 individually inside ipsec.conf with multiple P2 entries + split conn entries: PJ Goodwin wrote:
> Looked into this and the attached patch appears to fix the issue in 2.4.2. The comparable chang... PJ Goodwin
04:28 PM Revision 569b8f21: Use proper variables on pkg repos: Renato Botelho
04:26 PM Revision 3a00b1b2: Rename 2.4.4-RC repo to pfSense-repo-244: Renato Botelho
04:26 PM Revision 3c5d8241: Rename 2.4.4-RC repo to pfSense-repo-244: Renato Botelho
04:25 PM Revision 7241fea9: Rename 2.4.4-RC repo to pfSense-repo-244: Renato Botelho
04:24 PM Revision e500235b: Fix branches: Renato Botelho
04:00 PM Revision 74fefca1: Add 2.4.4-RC repository: Renato Botelho
03:59 PM Revision 3cdfaf4e: Welcome pfSense 2.4.4-RC: Renato Botelho
03:58 PM Revision 834c6697: Bump version to 2.4.5-DEVELOPMENT and add 2.4.4 RC repository: Renato Botelho
02:44 PM Bug #8806 (Resolved): HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Anonymous
02:25 PM Bug #8806: HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Working correctly on the last snapshot
This issue can be marked as resolved. A FL
09:05 AM Bug #8806: HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Applied in changeset commit:7cab6335bb56d2ac372a195719be28c55b2cb252. Renato Botelho
09:01 AM Bug #8806 (Feedback): HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Renato Botelho
02:41 PM Bug #8874 (Not a Bug): IPSEC Phase 2 Duplicated: It's unlikely that is the cause of your problem. Please keep this kind of guesswork/debugging on the forum until a sp... Jim Pingle
02:38 PM Bug #8874 (Not a Bug): IPSEC Phase 2 Duplicated: We detect some network issues between some sites. Look at IPSEC status, we can see some of our tunnels with Phase 2 d... Alan Santos
02:36 PM pfSense Packages Bug #8873 (Feedback): PHP7 warning in squidguard: Fix pushed. 824d08577196346be0e7d24d925bf3338208bd89
also cherry-picked to 2.4.4 3c1f879caabe7f9059e0a0143689d2d0b3c... Anonymous
11:15 AM pfSense Packages Bug #8873 (Resolved): PHP7 warning in squidguard: [02-Sep-2018 21:00:29 Etc/UTC] PHP Warning: Use of undefined constant GIF_BODY - assumed 'GIF_BODY' (this will throw... Anonymous
02:31 PM pfSense Packages Bug #8872: PHP7 error in squid: Cherry-picked to 2.4.4 as well d47455c16c985d3d98fea422855a0dc7bf78c657 Anonymous
02:28 PM pfSense Packages Bug #8872 (Feedback): PHP7 error in squid: Fix Pushed 90c367bf2f2fcd61ed631bd3c4fd6634a253b5d6. Anonymous
11:14 AM pfSense Packages Bug #8872 (Resolved): PHP7 error in squid: [02-Sep-2018 21:45:02 Etc/UTC] PHP Fatal error: Uncaught Error: Call to undefined function split() in /usr/local/pkg... Anonymous
02:03 PM Revision 2eeeec06: Fix #8863: Add missing kernel module amdsmn, required by amdtemp: Renato Botelho
01:56 PM Revision 7cab6335: Fix #8806: Configure captive portal on secondary identical as master HA node: Renato Botelho
01:47 PM Bug #8758: filterdns stops working on a regular basis.: Luke Hamburg wrote:
> I have definitely hit this one - yes it is hard to reproduce. But, if I hit it again, is it wo... Renato Botelho
01:09 PM Bug #8758: filterdns stops working on a regular basis.: I have definitely hit this one - yes it is hard to reproduce. But, if I hit it again, is it worth sending any sort of... → luckman212
09:10 AM Bug #8758: filterdns stops working on a regular basis.: Currently unable to reproduce Anonymous
01:31 PM Feature #8160: Accomodate both RADIUS and pool IP addresses in IPsec: Implementation PR: https://github.com/pfsense/pfsense/pull/3976 Louis C
10:37 AM Bug #8721 (Resolved): DHCP High Availability - Statis assignement Issue on BackUP machine: Constantine Kormashev
10:35 AM Bug #8721: DHCP High Availability - Statis assignement Issue on BackUP machine: It works well on latest... Constantine Kormashev
10:18 AM Bug #8499: IPv6 fragment logging causes panic in some circumstances: Looks like this is PPPoE related issue. I do not see problem with fragmented IPv6 and logging on Ethernet IPv6 forwar... Constantine Kormashev
09:34 AM Bug #8499: IPv6 fragment logging causes panic in some circumstances: I've never been able to replicate that locally. It's going to be very difficult to test. Steve Wheeler
09:59 AM Bug #8863 (Resolved): amdtemp.ko module failed to load: Fixed... Renato Botelho
09:10 AM Bug #8863: amdtemp.ko module failed to load: Applied in changeset commit:2eeeec06d7b8d719a8913c69095675a695305918. Renato Botelho
09:04 AM Bug #8863 (Feedback): amdtemp.ko module failed to load: Renato Botelho
02:51 AM pfSense Packages Bug #8871: Suricata: input not validated properly in suricata_rulesets.php results in wrong argument passed to in_array(): Forgot to set Category -> Suricata.
Running b0703dcab3c(RELENG_2_4_4) (snapshot) with latest Suricata package availa... L H
02:50 AM pfSense Packages Bug #8871 (Resolved): Suricata: input not validated properly in suricata_rulesets.php results in wrong argument passed to in_array(): Spotted this today:... L H

09/03/2018

06:17 PM Revision 7fead243: Fix #8721: Call proper filter_configure function from this class: Renato Botelho
02:29 PM Bug #8870 (Resolved): Webgui incorrectly reports "The system is on the latest version".: In some circumstances the dashboard can report that the system is on the latest version when in fact the pkg system i... Steve Wheeler
01:25 PM Bug #8721: DHCP High Availability - Statis assignement Issue on BackUP machine: Applied in changeset commit:7fead243f9e6238e0098ea2bdc3c992fa071efeb. Renato Botelho
01:17 PM Bug #8721 (Feedback): DHCP High Availability - Statis assignement Issue on BackUP machine: Renato Botelho
01:18 PM Bug #8806 (In Progress): HA sync : Starting captiveportal doesn't fire ipfw rules on slave, even if HA is enabled.: Renato Botelho
07:20 AM Bug #8866: cleaning backup cache can take VERY long: It does load/parse them to check that they are valid so it can clean out invalid/broken configurations.
It's behav... Jim Pingle
01:36 AM Bug #8866: cleaning backup cache can take VERY long: You were right as in i increased that setting. By a lot. We edit config quite often, so 30 backups wasn't feasible an... Militades Sunfire

09/02/2018

10:35 PM pfSense Packages Feature #8869: HAproxy should use RFC 7919 DH parameter files: It should not let you use a self-generated DH parameter file, but use the stock system DH parameter files which are f... Jim Pingle
10:20 PM pfSense Packages Feature #8869 (New): HAproxy should use RFC 7919 DH parameter files: It would be really nice to have a UI option to generate a custom DH parameter file for HAproxy to use.
The origina... Stéphane Lapie
06:33 AM Bug #8192: dpinger - Change in ISP link-local IPv6 address drops connectivity: One is for DHCPv6, one is for PPPoE. They could be different problems, they could be the same problem, needs more res... Jim Pingle
12:00 AM Bug #8192: dpinger - Change in ISP link-local IPv6 address drops connectivity: Is this a dupe of #8136? → luckman212

09/01/2018

03:57 PM Feature #8867: interfaces_vlan_edit.php does not display proper interface aliases: Jim Pingle wrote:
> That is because VLANs are a child of the physical interface, not an assigned interface. The assi... Xan Lorimer
02:43 PM Feature #8867 (Not a Bug): interfaces_vlan_edit.php does not display proper interface aliases: That is because VLANs are a child of the physical interface, not an assigned interface. The assignments and descripti... Jim Pingle
11:20 AM Feature #8867 (Confirmed): interfaces_vlan_edit.php does not display proper interface aliases: On /interfaces_vlan_edit.php (Interfaces>Assignments>VLANs>Add), when the parent interface drop-down list is clicked,... Xan Lorimer
02:44 PM Todo #8860 (Resolved): Change status.php to use "ifconfig -va" for more detail: Jim Pingle
01:11 PM Todo #8860: Change status.php to use "ifconfig -va" for more detail: On 2.4.4.a.20180831.2010, looks good.
Network-Intefaces shows module information for SFP+... Anonymous
01:20 PM Bug #8868 (Not a Bug): multiple php errors on update: Installed Current Factory System: 2.4.3_1
Added packages: Squid, squidguard, lightsquid, pfblockerng, and Snort
... Chris Macmahon
07:59 AM Bug #8859 (Resolved): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Jim Pingle
04:12 AM Bug #8859: VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: On Fri Aug 31 20:10:51 EDT 2018:
Created P2 with VTI remote network, then changed it to remote address - changes a... Vladimir Lind
07:50 AM Bug #8866 (Not a Bug): cleaning backup cache can take VERY long: By default it only keeps 30 backups. There is no way it would have as many files as you state without being manually ... Jim Pingle
04:26 AM Bug #8866 (Not a Bug): cleaning backup cache can take VERY long: Hi,
my pfSense is running on rather sparse CPU ressources (Atom N2800). Rebooting takes up to 30 minutes (actually c... Militades Sunfire
05:47 AM Bug #8857 (Resolved): PHP error when saving on vpn_ipsec_settings.php: Anonymous
04:58 AM Bug #8857: PHP error when saving on vpn_ipsec_settings.php: Reset sg2440 Fri Aug 31 20:10:51 EDT 2018 to factory and then opened vpn_ipsec_settings.php, clicked "save" - no erro... Vladimir Lind

08/31/2018

10:40 PM pfSense Docs Correction #8865 (Rejected): Feedback on Networking Concepts — IPv6 — IPv6 Subnetting: *Page:* https://www.netgate.com/docs/pfsense/book/network/ipv6-subnets.html
*Feedback:*
IPv6 Subnet Table
IPv6 ... Rick Coats
08:02 PM Revision b9c2164c: Revert "Attempt to re-enable Telegraf for armv6": This reverts commit 46043cbc5a1dd205bcbe53cc31341d27ac06276e. Renato Botelho
07:35 PM Revision 46043cbc: Attempt to re-enable Telegraf for armv6: Renato Botelho
04:59 PM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: Sorry I meant to put 2.4.4.a.20180831.0830 in the topic after 'SSH Guard on 2.4.4.a.20180831.0830' Zachary McGibbon
04:58 PM Bug #8864 (Resolved): SSH Guard Sensitivity/Whitelist on 2.4.4: I am running 2.4.4.a.20180831.0830 and noticed that my Icinga monitoring started to show issues with SSH. When I loo... Zachary McGibbon
03:09 PM Bug #8863 (Resolved): amdtemp.ko module failed to load: amdtemp.ko module failed to load with the following error message
KLD amdtemp.ko: depends on amdsmn - not availabl... Cédric Caron
02:49 PM Bug #8856 (Resolved): IPsec not starting and getting PHP error: Jim Pingle
02:07 PM Bug #8856: IPsec not starting and getting PHP error: Yes, fsck fixed IPsec issue, now it works, thank you.
** Last Mounted on /
** Root file system
** Phase 1 - Chec... Vladimir Lind
08:25 AM Bug #8856 (Feedback): IPsec not starting and getting PHP error: Applied in changeset commit:b5a4633f9ffeb365aba1d8b451f3638b37452b23. Jim Pingle
08:06 AM Bug #8856 (In Progress): IPsec not starting and getting PHP error: I see some room for improvement in that area of the code, but that error appears to come from a disk issue.
Speaki... Jim Pingle
01:23 AM Bug #8856 (Resolved): IPsec not starting and getting PHP error: on SG3100 Thu Aug 30 00:38:38 EDT 2018
Crash report begins. Anonymous machine information:
arm
11.2-RELEASE-p... Vladimir Lind
02:47 PM Revision 836ee3aa: Change status.php to use "ifconfig -v". Implements #8860: Jim Pingle
02:26 PM Revision d145caa8: Revise async_crypto setting: Steve Beaver
02:12 PM Revision da54e84a: Default VTI remote to Address but allow it to change. Fixes #8859: Jim Pingle
02:08 PM Revision d08e8255: Make async_crypto explicit enabled/disabled rather than current isset: Steve Beaver
01:54 PM Revision 74e45438: Move IPsec VTI interface cleanup list. Fixes #8858: Generate the cleanup list before the P1 loop but after the initial
interface configuration. Jim Pingle
01:22 PM Revision b5a4633f: Use safe_mkdir() for IPsec dirs. Fixes #8856: Simplifies the process of making IPsec dirs, though it may not correct
the original reported issue since that appears... Jim Pingle
12:29 PM Revision 463b52b6: Initialize IPsec logging array before use. Fixes #8857: Jim Pingle
11:52 AM pfSense Docs Correction #8862 (Resolved): [feedback form] Include configuration examples for IPv6 WANs: *Page:* https://docs.netgate.com/pfsense/en/latest/interfaces/configure-ipv6.html
*Feedback:* Examples would be ni... Jared Dillard
11:09 AM Bug #7604: Bug #6594 is not resolved: Waiting for Internet connection to update pkg metadata and finish package reinstallation: Repeated the same test with installed squid, bind packages - all good, no delay's in bootup. Vladimir Lind
10:03 AM Feature #8861 (Resolved): Show SFP module details on ``status_interfaces.php``: Looking at the output of @ifconfig -v@, there is more info we could be showing on status_interfaces.php.
At a mini... Jim Pingle
09:55 AM Todo #8860 (Feedback): Change status.php to use "ifconfig -va" for more detail: Applied in changeset commit:836ee3aaca674a84dec47dce9a1183b98352ba4f. Jim Pingle
09:47 AM Todo #8860 (Resolved): Change status.php to use "ifconfig -va" for more detail: @ifconfig -v@ will return more info than the @ifconfig@ alone. For @ix(4)@ interfaces it will print information about... Jim Pingle
09:15 AM Bug #8859 (Feedback): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Applied in changeset commit:da54e84ae79328a87b4a319239bb1b14d7ed2ce6. Jim Pingle
09:10 AM Bug #8859 (In Progress): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Jim Pingle
09:09 AM Bug #8859 (Resolved): VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: Some equipment that supports VTI requires the remote address be set to a network and not the default address, or else... Jim Pingle
09:05 AM Bug #8858 (Feedback): IPsec VTI cleanup can accidentally remove valid interfaces: Applied in changeset commit:74e4543842c47efda37e3b078b8e5cc3f54ce9ba. Jim Pingle
08:56 AM Bug #8858 (In Progress): IPsec VTI cleanup can accidentally remove valid interfaces: Jim Pingle
08:56 AM Bug #8858 (Resolved): IPsec VTI cleanup can accidentally remove valid interfaces: Then code that cleans up deleted/disabled IPsec VTI interfaces can, with certain configurations, delete a valid inter... Jim Pingle
07:35 AM Bug #8857 (Feedback): PHP error when saving on vpn_ipsec_settings.php: Applied in changeset commit:463b52b606d98b72cbaeb2f6d3c348689106c414. Jim Pingle
07:28 AM Bug #8857 (In Progress): PHP error when saving on vpn_ipsec_settings.php: Jim Pingle
07:26 AM Bug #8857 (Resolved): PHP error when saving on vpn_ipsec_settings.php: From a fresh install with no IPsec configuration, clicking Save on vpn_ipsec_settings.php gives a PHP error:... Jim Pingle
05:36 AM pfSense Packages Bug #8790 (Resolved): getting PHP error regarding HAproxy pkg: Anonymous
02:08 AM pfSense Packages Bug #8790: getting PHP error regarding HAproxy pkg: Hi!
All OK, thanks! Greg M

08/30/2018

09:53 PM pfSense Packages Bug #8829: Keep settings checkbox under Global Settings does not behave as expected: On a fresh install of 2.4.4.a.20180830.1356, when snort 3.2.9.7_2 is installed the output is :... Anonymous
09:30 PM pfSense Packages Bug #8829 (Resolved): Keep settings checkbox under Global Settings does not behave as expected: Anonymous
09:17 PM pfSense Packages Bug #8829: Keep settings checkbox under Global Settings does not behave as expected: On version 3.2.9.7_2, installed suricata, configured some settings, unchecked the Keep settings checkbox, uninstalled... Anonymous
11:37 AM pfSense Packages Bug #8829 (Feedback): Keep settings checkbox under Global Settings does not behave as expected: This should now work as expected. c5d12ed2814f7ed5c002fb71fae6d992708bc4f9
Snort version 3.2.9.7_2 Anonymous
09:49 PM pfSense Packages Bug #8828 (Resolved): Keep settings checkbox under Global Settings does not behave as expected: Anonymous
09:49 PM pfSense Packages Bug #8828: Keep settings checkbox under Global Settings does not behave as expected: On a fresh install of 2.4.4.a.20180830.1356, when suricata 4.0.13_8 is installed the output is :... Anonymous
05:50 PM pfSense Packages Bug #8828: Keep settings checkbox under Global Settings does not behave as expected: On version 4.0.13_8, installed suricata, configured some settings, unchecked the Keep settings checkbox, uninstalled ... Anonymous
11:17 AM pfSense Packages Bug #8828 (Feedback): Keep settings checkbox under Global Settings does not behave as expected: Anonymous
11:17 AM pfSense Packages Bug #8828: Keep settings checkbox under Global Settings does not behave as expected: I found that the code to remove the package forgot to use 'write_config()' after removing the Suricata configurations... Anonymous
05:53 PM Revision 255eae76: Remove sshguard and fail2ban: Renato Botelho
05:51 PM Revision b89270b7: Fix #7694: Replace sshlockout_pf by sshguard: Renato Botelho
04:49 PM pfSense Packages Bug #8670: HAProxy PHP error: This issues with haproxy should be fixed with current 0.59_11 version. If not please let me know the exact error you ... Pi Ba
04:47 PM pfSense Packages Bug #8790: getting PHP error regarding HAproxy pkg: Should be fixed with current 0.59_11 version. If not please let me know the exact error you get and when that happens. Pi Ba
04:47 PM pfSense Packages Bug #8833: haproxy getarraybyref error: Should be fixed with current 0.59_11 version. If not please let me know the exact error you get and when that happens. Pi Ba
12:41 PM Revision 880107d2: Missing line to fix #8850: Jim Pingle
09:39 AM Bug #8767 (Resolved): ID handling problem with DNS Forwarder host override management: Anonymous
08:43 AM Feature #8855 (Rejected): View Description field on widget for OpenVPN: Hi!!!
Its useful add on widget for OpenVpN, view the description field too , for get information about a user when c... Luis Garcia
07:59 AM Bug #8850 (Resolved): Packages that start on sync are started multiple times at boot: Jim Pingle
07:45 AM Bug #8850 (Feedback): Packages that start on sync are started multiple times at boot: Applied in changeset commit:880107d21f5e69201ba810d553d948ca9009f70d. Jim Pingle
07:39 AM Bug #8850: Packages that start on sync are started multiple times at boot: Looks like one line of the fix didn't make it into the final commit. Will push a correction momentarily after re-test... Jim Pingle
07:59 AM pfSense Packages Bug #8620 (Resolved): arpwatch database page is not accessible: Jim Pingle
07:59 AM pfSense Packages Bug #8620: arpwatch database page is not accessible: Gitsynced, retested - now looks good, no arpwatch duplicated processes Vladimir Lind
07:51 AM pfSense Packages Bug #8620: arpwatch database page is not accessible: OK to test again after a gitsync or an update to a snapshot which includes my last commit on #8850 Jim Pingle
07:40 AM pfSense Packages Bug #8620: arpwatch database page is not accessible: Looks like one line of my commit is missing, will push a correction momentarily. The package is OK, the problem is on... Jim Pingle
04:44 AM pfSense Packages Bug #8620: arpwatch database page is not accessible: Yup, seeing the same on Wed Aug 29 19:26:24 EDT 2018 with pfSense-pkg-arpwatch-0.1.1:
root 37039 0.0 0.3 ... Vladimir Lind
07:20 AM Bug #8726 (Resolved): Lack of input validation on custom GUI/dashboard settings leads to potential XSS: Jim Pingle
06:56 AM Todo #8851 (Resolved): Change default CA/Cert action to "Create an internal...": Jim Pingle
06:56 AM Todo #8851: Change default CA/Cert action to "Create an internal...": On factory 2.4.4.a.20180830.0038, SG-3100
Click System -> Cert. Manager, CAs
Default selection is 'Create an i... Chris Macmahon

08/29/2018

11:33 PM Bug #8726: Lack of input validation on custom GUI/dashboard settings leads to potential XSS: On 2.4.4.a.20180829.1926, tried a XSS injection example as the dashboardcolumns value in the pfSense config.xml, relo... Anonymous
11:16 PM Bug #8845 (Resolved): Recompile PHP with a larger value of FD_SETSIZE.: Anonymous
11:15 PM Bug #8845: Recompile PHP with a larger value of FD_SETSIZE.: On 2.4.4.a.20180829.1926, ... Anonymous
08:43 PM pfSense Packages Bug #7661: pfBlockerNG doesn't make a rule for Antarctica: I just tried the latest pfBlockerNG and the is has NOT been resolved!
Please re-open the bug.
Stuart Wyatt
08:25 PM pfSense Packages Bug #8620: arpwatch database page is not accessible: On 2.4.4.a.20180829.1926 (gitsync'd to master) with arpwatch version 0.1.1,
Seeing one instance of arpwatch for ea... Anonymous
02:10 PM pfSense Packages Bug #8620 (Feedback): arpwatch database page is not accessible: Should be improved by https://github.com/pfsense/FreeBSD-ports/commit/aa78e490fe92d5640a742bbe77012a5ba626b084 but th... Jim Pingle
07:59 PM Revision b0a5c280: Set default new CA/Cert action to Create Internal. Implements #8851: Jim Pingle
07:45 PM Todo #8851: Change default CA/Cert action to "Create an internal...": On 2.4.4.a.20180829.1429 (gitsync'd to master), looks good. Create CA/Cert is the default behavior now. Anonymous
03:05 PM Todo #8851 (Feedback): Change default CA/Cert action to "Create an internal...": Applied in changeset commit:b0a5c280a407ac26af2e6f055ac1049304034672. Jim Pingle
02:58 PM Todo #8851 (Resolved): Change default CA/Cert action to "Create an internal...": When the certificate manager was first created, the most common user action was to import and not create. We are long... Jim Pingle
06:24 PM Revision 5d4f4900: Allow packages to opt out of a forced start. Fixes #8850: If a package performs its own service start during its sync process,
then add <starts_on_sync/> to its service defini... Jim Pingle
04:35 PM pfSense Docs Correction #8854 (Resolved): [feedback form] Define Broadcast Domain and switch loops: *Page:* https://docs.netgate.com/pfsense/en/latest/network/broadcast-domains.html
*Feedback:* The section tells w... Jared Dillard
04:32 PM pfSense Docs Correction #8853 (Resolved): [feedback form] Explain what 0:0 means: *Page:* https://www.netgate.com/docs/pfsense/book/monitoring/firewall-states-gui.html
*Feedback:* What does 0:0 me... Jared Dillard
04:30 PM pfSense Docs Correction #8852 (Resolved): Clarify purpose of "Client Identifier" in DHCP static mapping: *Page:* https://docs.netgate.com/pfsense/en/latest/services/dhcp/ipv4.html
*Feedback:* I am unclear about "Client ... Jared Dillard
03:23 PM Bug #8518: Rule Error On Upgrade 2.4.3 -> 2.4.3-p1: Steffen Wagner wrote:
> the above commands fixed it for me as well. An official patch for p1 would be good!
Can y... Jesse Alexander
03:03 PM Bug #8767: ID handling problem with DNS Forwarder host override management: Fixed the illegal string offset error described above. bc91bdffcefd009f4716cce59eab231c2245fb18
I did not notice a... Anonymous
02:58 PM Bug #8850 (Resolved): Packages that start on sync are started multiple times at boot: Tested with arpwatch installing fresh, configuring and multiple reboots Anonymous
01:34 PM Bug #8850: Packages that start on sync are started multiple times at boot: For an example of the change to make on packages, see https://github.com/pfsense/FreeBSD-ports/commit/aa78e490fe92d56... Jim Pingle
01:30 PM Bug #8850 (Feedback): Packages that start on sync are started multiple times at boot: Applied in changeset commit:5d4f49000654fae594144abc36fe8a588a028510. Jim Pingle
01:19 PM Bug #8850 (In Progress): Packages that start on sync are started multiple times at boot: Jim Pingle
01:19 PM Bug #8850 (Resolved): Packages that start on sync are started multiple times at boot: When @/etc/rc.start_packages@ is run, for example at boot time, it performs a package sync with @sync_package()@ and ... Jim Pingle
02:26 PM Revision bc91bdff: Fixes #8767 PHP7 syntax error: Stephen Jones
11:40 AM Feature #8849 (Duplicate): DHCP Custom configuration: I would suggest a field so we can use additional settings. There is the possibility of making several subnet with use... Thiago Gomes
09:44 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: The description and behavior are correct for POSIX style zones. See note 9 above. The "Etc/GMT+4" zone means 4 hours ... Jim Pingle
09:34 AM Bug #7089: Opposite of + or - is occurring when selecting time zone: Although the description tells how it works, the GMTs are wrong.
The correct GMTs are "+" (before GMT) and "-" (af... Filipe Teixeira
09:40 AM Bug #8138 (Resolved): Option <spoofmac> is ignored on interfaces without hwaddr: Tested on a VM with CE:
2.4.4-DEVELOPMENT (amd64)
built on Wed Aug 29 00:38:57 EDT 2018
FreeBSD 11.2-RELEASE-p2
... Anonymous
09:34 AM Bug #8848: GMT timezones reversed: Although the description tells how it works, the GMT's on web interface are wrong.
The correct GMTs are "+" (befor... Filipe Teixeira
09:21 AM Bug #8848 (Rejected): GMT timezones reversed: The descriptions of the zones make this very clear, they explain the behavior and whether or not they are ahead of or... Jim Pingle
09:10 AM Bug #8848 (Rejected): GMT timezones reversed: On System > General Setup, timezones GMT[+-]X are reversed.
If set GMT-4 on web interface, it apllies GMT+4 on sys... Filipe Teixeira
08:08 AM Feature #8644 (Resolved): IPsec mobile clients DNS enhancement: I check this Bug on old 2.4.4.a.20180801.0114: DNS from /VPN/IPsec/Mobile Clients menu was set up into '/var/etc/ipse... Azamat Khakimyanov
07:34 AM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: Greg M wrote:
> I am on:
> 2.4.4-DEVELOPMENT (amd64)
> built on Wed Aug 29 00:38:57 EDT 2018
> FreeBSD 11.2-RELEA... Renato Botelho
06:32 AM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: I am on:
2.4.4-DEVELOPMENT (amd64)
built on Wed Aug 29 00:38:57 EDT 2018
FreeBSD 11.2-RELEASE-p2
The system is ... Greg M
05:34 AM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: Greg M wrote:
> Hi!
>
> Installed, when I open it:
>
> Fatal error: Uncaught Error: Call to undefined function... Renato Botelho
01:13 AM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: Hi!
Installed, when I open it:
Fatal error: Uncaught Error: Call to undefined function pfsense_pkg\acme\getarra... Greg M
01:14 AM pfSense Packages Bug #8790: getting PHP error regarding HAproxy pkg: Same here.
Haproxy is not installed after this error and services are down. Greg M

08/28/2018

09:55 PM pfSense Packages Bug #8620: arpwatch database page is not accessible: I'm interested in a fix for this as well. On 2.4.3-p1 I have the same issues -- multiple emails and nothing in the da... Dallas Haselhorst
08:24 PM Revision 47979f66: Update translation files: Renato Botelho
08:18 PM Revision b2347104: Regenerate pot: Renato Botelho
07:30 PM Revision 45fbd1bd: Fix Minnowboard Turbot model names. SG-2320 -> MBT-2220, SG-2340 -> MBT-4220: Renato Botelho
07:06 PM Revision 0a906fcc: fixes #8837 part 2, initialize as array instead of string for PHP7: Stephen Jones
06:18 PM Revision 4f03ad7a: Fix #8845: Increase PHP FD_SETSIZE: Renato Botelho
05:45 PM Bug #8847 (Resolved): IPsec status "Show Child SA entries" button only expands and never collapses: I am using version 2.4.4, I noticed that in ipsec status when clicking (+) Show child SA entries is shown the details... Marcio Gomes
05:29 PM Feature #2358: NAT64 support: Another upvote. At some point in the future we're going to start having needs for v6-only networks. For some of the... Sean Harlow
04:51 PM Bug #8837 (Resolved): PHP error when creating alias URL Table (IPs): Anonymous
04:26 PM Bug #8837: PHP error when creating alias URL Table (IPs): This commit seems to have solved the issue. Steve Harrington
03:35 PM Bug #8837: PHP error when creating alias URL Table (IPs): The `[] operator not supported` error should be fixed in the next snap.
0a906fcc2e120e7dd290ce7faac1ba14a24f731b Anonymous
03:55 PM Bug #8683 (Resolved): Unable to add GIF interface (Hurricane Electric IPv6): Tested on 2.4.4-DEVELOPMENT (amd64)
built on Tue Aug 28 08:43:43 EDT 2018
FreeBSD 11.2-RELEASE-p2
Was able to... Anonymous
09:03 AM Bug #8683: Unable to add GIF interface (Hurricane Electric IPv6): Result for @gre@ also looks good. Jim Pingle
08:52 AM Bug #8683: Unable to add GIF interface (Hurricane Electric IPv6): ... Anonymous
03:49 PM Revision 6a2461f0: Bug was fixed in pfsense module and this code is no longer needed so removing.: Stephen Jones
03:22 PM Bug #8824 (Resolved): is_numeric() on PHP 7 no longer validates hexadecimal values: Tested on: 2.4.4-DEVELOPMENT (amd64)
built on Tue Aug 28 08:43:43 EDT 2018
FreeBSD 11.2-RELEASE-p2
Haven't ... Anonymous
03:12 PM Bug #8823 (Resolved): Dashboard Crash: Tested on 2.4.4-DEVELOPMENT (amd64)
built on Tue Aug 28 08:43:43 EDT 2018
FreeBSD 11.2-RELEASE-p2
No crashes ... Anonymous
02:58 PM pfSense Packages Feature #8613 (Feedback): pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: PR merged, should be ready for testing shortly Jim Pingle
02:47 PM Bug #8726: Lack of input validation on custom GUI/dashboard settings leads to potential XSS: As long as it doesn't lead to an XSS it should be OK. Try using a typical XSS injection string and then going to a pa... Jim Pingle
02:43 PM Bug #8726: Lack of input validation on custom GUI/dashboard settings leads to potential XSS: Tested the above inputs webguicss, webguifixedmenu, webguihostnamemenu, and dashboardcolumns. and was not able to use... Anonymous
01:25 PM Bug #8845 (Feedback): Recompile PHP with a larger value of FD_SETSIZE.: Applied in changeset commit:4f03ad7a36b6c2f9060f059f167a491b06739acf. Renato Botelho
01:18 PM Bug #8845 (In Progress): Recompile PHP with a larger value of FD_SETSIZE.: Renato Botelho
02:19 AM Bug #8845 (Resolved): Recompile PHP with a larger value of FD_SETSIZE.: Crash report begins. Anonymous machine information:
amd64
11.2-RELEASE-p2
FreeBSD 11.2-RELEASE-p2 #72 9d6b703bf... Chris Linstruth
01:12 PM Bug #8842 (Not a Bug): pfSense-pkg-aws-wizard-php72 sticks during install: In order to be able to install any of the PHP72 related packages you must upgrade to a PHP 7.2 based 2.4.4 snapshot. Renato Botelho
12:43 PM Revision 57639ced: $wancfg is not a reference to $config. Set $random_mac properly on config and break long lines while here: Renato Botelho
12:41 PM Revision 4cd8424a: Revert ticket #1337: FreeBSD is not happy with simple set VLAN to use a different MAC
address. Revert it for now and prevent users to chan... Renato Botelho
11:11 AM Feature #6384: Allow IPSEC P1 to have 2 peer remote gateway IP addresses to allow VPN failover faster without requiring DDNS: Your right. On our side we have our own IPs and BGP with FRR. But our Customers have only one IP from each ISP. Not i... Manfred Bongard
07:51 AM Feature #6384: Allow IPSEC P1 to have 2 peer remote gateway IP addresses to allow VPN failover faster without requiring DDNS: With 2.4.4 you can use routed IPsec and a routing protocol like OSPF or BGP to accomplish failover. You can build an ... Jim Pingle
07:45 AM Feature #6384: Allow IPSEC P1 to have 2 peer remote gateway IP addresses to allow VPN failover faster without requiring DDNS: Cloud is needed more and there is a reliable VPN connection very important. For this case a quick switch on failure i... Manfred Bongard
09:57 AM Bug #8519: pfSense update from the webGUI fails: All of my hosts that had issues before appear to be OK when upgrading from snaps from early yesterday to the latest a... Jim Pingle
07:43 AM Bug #8758 (In Progress): filterdns stops working on a regular basis.: Renato Botelho
06:12 AM Bug #8758: filterdns stops working on a regular basis.: Jim Pingle wrote:
> I had this happen on my edge firewall which is running a snapshot from earlier this week. The pf... Renato Botelho
07:43 AM Feature #1337 (Assigned): VLANs with different MAC address than parent interface: Renato Botelho
07:08 AM Feature #1337 (In Progress): VLANs with different MAC address than parent interface: Renato Botelho
07:15 AM Todo #8810 (Closed): HA sync : Vouchers sync settings should be moved to System->High Avaliablity: Jim Pingle
06:41 AM Todo #8810: HA sync : Vouchers sync settings should be moved to System->High Avaliablity: @jimp you can close this A FL
04:47 AM Bug #8846 (Resolved): Misleading error message when adding/editing static routes which use a gateway on a disabled interface: I was adding static route on disabled interface and got the following message:... Mario Harjac
01:00 AM Feature #8173: dhcp6c - RAW Options: The improvement request https://redmine.pfsense.org/issues/8173 is essential for IPv6 authentication for Orange (Fran... frederic lubrano

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

09/26/2018

09/25/2018

09/24/2018

09/23/2018

09/22/2018

09/21/2018

09/20/2018

09/19/2018

09/18/2018

09/17/2018

09/16/2018

09/15/2018

09/14/2018

09/13/2018

09/12/2018

09/11/2018

09/10/2018

09/09/2018

09/08/2018

09/07/2018

09/06/2018

09/05/2018

09/04/2018

09/03/2018

09/02/2018

09/01/2018

08/31/2018

08/30/2018

08/29/2018

08/28/2018