Activity

30 days up to

User

Subprojects

Activity

From 09/17/2018 to 10/16/2018

10/16/2018

10:24 PM pfSense Packages Feature #8869: HAproxy should use RFC 7919 DH parameter files: I understand the intent behind the stock DH parameter files, however some SSL testers raise known DH parameters as so... Stéphane Lapie
08:16 PM pfSense Packages Feature #9046 (New): telegraf feature request: we want to monitor the ntp service in pfsense, Now I manully add lines into telegraf.conf then manually start it, it ... mrco chen
03:10 PM Bug #8956 (Feedback): traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: Applied in changeset commit:cd3cde526a9215e914c2f420c7e9c74b059a2ad0. Jim Pingle
02:47 PM Bug #8964: IPsec async cryptography advanced setting - TCP traffic not passing through: System -> Cryptographic:
AES-NI and BSD Crypto Device (aesni, cryptodev)
IPSec -> Advanced Settings -> Asynchrono... Clinton Cory
03:18 AM Bug #8964: IPsec async cryptography advanced setting - TCP traffic not passing through: @Jim I mean "AES-NI and BSD Crypro Device" Vladimir Lind
10:25 AM Bug #9045 (Feedback): Race condition in package reinstall/startup after restore can lead to no packages restored: Applied in changeset commit:84963037949aaf5225ae664cfe9b4e3b037beee0. Jim Pingle
10:12 AM Bug #9045 (Resolved): Race condition in package reinstall/startup after restore can lead to no packages restored: rc.bootup triggers a rc.package_reinstall_all in the background with a delay, to reinstall all packages in the config... Jim Pingle
10:10 AM Bug #9042 (Resolved): Web GUI does not recognise NVMe devices as SMART capable: Jim Pingle
08:00 AM pfSense Packages Feature #9008 (Resolved): Add Zabbix 4 (agent and proxy) packages: Jim Pingle
07:38 AM pfSense Packages Feature #9008: Add Zabbix 4 (agent and proxy) packages: This can be closed.
Thanks! Danilo Baio
07:34 AM Bug #8070: IKEv2 IPSec tunnel under load crashes pfSense when AES-NI is enabled: It's entirely possible that the fixes referenced in the original description were only fully/completely integrated in... Jim Pingle
01:27 AM Bug #8070: IKEv2 IPSec tunnel under load crashes pfSense when AES-NI is enabled: Interestingly, it is seemingly working in 2.4.4-RELEASE. /var/etc/ipsec/ipsec.conf included for your entertainment:
... Rachel Chen

10/15/2018

10:00 PM Bug #8964: IPsec async cryptography advanced setting - TCP traffic not passing through: @luke they’re not for sale yet
@clinton please be more specific
@vladimir please explain how you enabled aes-ni on ... Jim Thompson
04:20 PM Bug #8964: IPsec async cryptography advanced setting - TCP traffic not passing through: Whoa, SG-1100 is out? Where do I get one? → luckman212
04:17 PM Bug #8964: IPsec async cryptography advanced setting - TCP traffic not passing through: I see the same issues on a SG-1100. Clinton Cory
03:54 PM Bug #8956: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: Please re-read https://redmine.pfsense.org/issues/8956#note-3 and gather the requested information. Jim Pingle
01:55 PM Bug #9042 (Feedback): Web GUI does not recognise NVMe devices as SMART capable: Applied in changeset commit:5ae720be09a8976834cc424ead5c720f5fa2e64e. Jim Pingle
09:37 AM Bug #9042: Web GUI does not recognise NVMe devices as SMART capable: This should be a one-line fix but I had a follow-up question about the devices (nvd vs nvme) since their examples wer... Jim Pingle

10/14/2018

07:21 PM Bug #8956: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: I just wanted to add that I am experiencing an issue with my limiter as well after upgrading to 2.4.4, but im not sur... jake xanaro
09:34 AM Bug #9043 (Not a Bug): openvpn 2.4.3-p1 -> 2.4.4, failed: Not enough info here for a valid bug report.
Please post on the forum at https://forum.netgate.com/ -- There are s... Jim Pingle
06:38 AM Bug #9043 (Not a Bug): openvpn 2.4.3-p1 -> 2.4.4, failed: hi
After the update has stopped working normally openvpn for Pfsense + mikrotik v6.43.2 (Protocol TCP and Device mod... Ivan Zagorodko
09:00 AM pfSense Packages Feature #9044 (New): Add SoftEther: It would be nice if you can add SoftEther program. It supports OpenVPN and it has more functions than the simple Open... John Smith

10/13/2018

11:34 PM Bug #8959 (Resolved): Restoring a <2.4.4 config with legacy gold auto backup package re-adds the menu option under Diagnostics: On 2.4.5.a.20181012.2248, restoring a config with AutoConfigBackup installed does not result in a system with Diagnos... Anonymous
09:31 PM Bug #9004: Default gateway IPv4 set to a group fails after restart on 2.4.4: I thought I was going crazy, because I have this same configuration 2 wans (1 cable, 1 4G/LTE) in a gateway group. T... Travis McMurry
06:27 PM Bug #9042 (Resolved): Web GUI does not recognise NVMe devices as SMART capable: It looks like it's only looking for ad, ada or da devices:
https://github.com/pfsense/pfsense/blob/c0787ee92aeaa51ce... Steve Wheeler
02:32 PM Bug #8973: Traffic not going to Limiter queues: > Samir Patel wrote
> ...Try Codel/Round-Robin. This seems to work and has been stable a couple of days now.
Than... Terence Kent
01:28 PM Bug #8973: Traffic not going to Limiter queues: Samir Patel wrote:
> Terence Kent wrote:
> > At this point, I've just disabled the limiters / queues. It's better f... Victor Preatoni
01:34 PM pfSense Packages Todo #9041 (Resolved): update ntopng 3.6.0: update ntoping to 3.6.0
and enable activity map
the latest version of pfsense seems dos not enable activity ... mom aiaz
08:08 AM Bug #9040 (Not a Bug): Invalid status for OpenVPN Point-to-Point Links: Jim Pingle
07:03 AM Bug #9040: Invalid status for OpenVPN Point-to-Point Links: *Update*
- After trying on a fresh install on my VM, the issue seems to no longer be present.
Please disregard th... James Webb
06:44 AM Bug #9040 (Not a Bug): Invalid status for OpenVPN Point-to-Point Links: *Background:*
If one defines multiple OpenVPN servers in a tun point-to-point mode (i.e. use a /30 subnet in the IPv... James Webb

10/12/2018

08:46 PM Bug #8973: Traffic not going to Limiter queues: Terence Kent wrote:
> At this point, I've just disabled the limiters / queues. It's better for people to deal with t... Samir Patel
12:49 PM Bug #8973: Traffic not going to Limiter queues: A quick data point to confirm what Victor and Samir observed:
* I run two pfsense boxes at different locations. Th... Terence Kent
01:17 AM Bug #8973: Traffic not going to Limiter queues: Victor Preatoni wrote:
> I got that issue a few times too, syslog flooded, and then I had to manually reboot as pfSe... Samir Patel
06:29 PM Bug #9039 (Rejected): radvd (IPv6) is broken on systems with a USB ethernet interface: Bug 8429 addressed the regression that was introduced in 2.4.3 causing an error message such as "ioctl(SIOCGIFMEDIA) ... TJ Synkral
10:46 AM Todo #9026 (Resolved): PTI checkbox wording can be confusing, should give a little more detail and show current PTI status: Jim Pingle
08:52 AM Feature #9038 (New): Live view of any log file: Is it possible to make an option where you can see the log files of PfSense in the webgui scrolling like a tail on li... IT SIM-CI
05:09 AM Bug #9037: Unbound not logging to syslog after reboot: Restarting syslogd from Status -> Services in the web UI also causes unbound to stop logging. Anonymous
02:58 AM Bug #9037 (New): Unbound not logging to syslog after reboot: On my current installation (2.4.4-RELEASE (amd64)) unbound does not log to syslog after a reboot until unbound is res... Anonymous

10/11/2018

06:49 PM Todo #9026: PTI checkbox wording can be confusing, should give a little more detail and show current PTI status: Tested on 2.4.5.a.20181011.0014, text for *Kernel PTI* now reads:... Anonymous
11:34 AM pfSense Packages Feature #8769: Allow FreeRADIUS users to change their own Passwords and Pins: No, because there isn't a generic way to change a RADIUS password like that. It depends on the RADIUS server and its ... Jim Pingle
11:21 AM pfSense Packages Feature #8769: Allow FreeRADIUS users to change their own Passwords and Pins: Isn't this something that could be created as an add-on and not rely completely on the back end radius package? NCATS LAB
11:30 AM Bug #9036: The bypasslan feature should be configurable for any interface.: It is a duplicate of issue #5826 which covers the same request. Jim Pingle
11:20 AM Bug #9036: The bypasslan feature should be configurable for any interface.: I see this was changed to Duplicate
Can we change it to feature request? NCATS LAB
09:24 AM Bug #9036: The bypasslan feature should be configurable for any interface.: Thank-you, it is not easy to find the correct/applicable entries in the forum.
I am not attempting dialogue so much ... NCATS LAB
08:53 AM Bug #9036 (Duplicate): The bypasslan feature should be configurable for any interface.: Duplicate of #5826
Please post questions "on the forum":https://forum.netgate.com before opening issues, this isn'... Jim Pingle
08:49 AM Bug #9036 (Duplicate): The bypasslan feature should be configurable for any interface.: In StrongSwan, the bypasslan feature is configurable for any interface.
However, in pfsense we are limited to only t... NCATS LAB
11:18 AM Bug #9034: Firewall Rules Interface: I see this was changed to Not a Bug.
Can we change it to feature request? NCATS LAB
08:56 AM Bug #9034: Firewall Rules Interface: We will have to agree to disagree.
We find it less convenient that the interface toggles between two methods of di... NCATS LAB
08:43 AM Bug #9034 (Not a Bug): Firewall Rules Interface: It's done deliberately. Tabs are more convenient for short lists of interfaces. With longer lists of interfaces, drop... Jim Pingle
08:41 AM Bug #9034 (Not a Bug): Firewall Rules Interface: Request for feature change.
Why do the firewall rules list toggle between a URL list and a drop down? Why not just ... NCATS LAB
08:42 AM Bug #9035 (New): Inactive Interfaces are Hidden in Firewall Rules: Hiding the inactive interfaces makes it impossible to prestage configurations.
Please do not hide inactive interface... NCATS LAB
07:45 AM Bug #9033 (Resolved): bogons list outdated: This should be OK now, the public server wasn't picking up the latest copy of the content but we fixed the glitch.
... Jim Pingle

10/10/2018

05:05 PM Bug #9033 (Resolved): bogons list outdated: Hey all,
I've recently been allocated 103.123.164.0/22
it's on https://files.pfsense.org/lists/fullbogons-ipv4.txt
... Paul Willard
01:17 PM Bug #8791: Default IPv6 rules do not allow some devices to perform router or neighbor discovery: This fixed IPv6 on my Android phone (Moto G4). Previously the Internet connection test would always fail after about ... Corey Boyle
11:44 AM Bug #8973: Traffic not going to Limiter queues: Samir Patel wrote:
> Had to switch back to Taildrop/FIFO, though the limiters are no longer possible to monitor.
> ... Victor Preatoni
11:20 AM Bug #8998 (Feedback): All Captive Portal zones send only "CaptivePortal" as NAS Identifier: Applied in changeset commit:b1cc8f3143f7253bb3acdcdf8c18f9effaf3bce5. Jim Pingle
05:23 AM Feature #9032: RADIUS MAC Authentication: display the login page when MAC auth failed: Pull request : https://github.com/pfsense/pfsense/pull/4000
Forum thread: https://forum.netgate.com/topic/136138/af... A FL
05:12 AM Feature #9032 (Resolved): RADIUS MAC Authentication: display the login page when MAC auth failed: Since 2.4.4 the behavior of Radius MAC authentication changed.
In 2.4.3 user was redirected to the login page whe... A FL
01:45 AM Bug #9024: Ping packet loss under load when using limiters: I can confirm this bug. My testing seemed to show that the behaviour was the same no matter which scheduler I assign... Steven Brown
01:10 AM Bug #8938: Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: Thanks, Eduard, I will try it later this day. Dmitriy K

10/09/2018

11:54 PM Bug #8973: Traffic not going to Limiter queues: Can see that our traffic shaper is nonfunctional now as of 2.4.4 in terms of per-host dynamic bandwidth shaping.
W... Samir Patel
10:37 PM Bug #8973: Traffic not going to Limiter queues: Had to switch back to Taildrop/FIFO, though the limiters are no longer possible to monitor.
With QFQ, getting sudd... Samir Patel
01:43 AM Bug #8973: Traffic not going to Limiter queues: Seeing same as all the aforementioned comments. Taildrop and FIFO do work, but don't show under Diag > Limiter Info. ... Samir Patel
08:41 PM Bug #9000: Haproxy does not send ipv6 traffic to backend after updating to Pfsense 2.4.4: You should post on the Spanish language category of the forum -- https://forum.netgate.com/category/11/espa%C3%B1ol
... Jim Pingle
07:03 PM Bug #9000: Haproxy does not send ipv6 traffic to backend after updating to Pfsense 2.4.4: Jim Pingle wrote:
> Judging by this person's other reported issues, they have some general config/environment proble... Anonymous
12:28 PM Bug #9000 (Not a Bug): Haproxy does not send ipv6 traffic to backend after updating to Pfsense 2.4.4: Judging by this person's other reported issues, they have some general config/environment problem wholly unrelated to... Jim Pingle
12:25 PM Bug #9000: Haproxy does not send ipv6 traffic to backend after updating to Pfsense 2.4.4: Works for me.. at least with current version:... Pi Ba
03:43 PM pfSense Packages Bug #9031 (Resolved): Suricata fails to start with interface with /31 mask: I have discovered that Suricata will not start in blocking mode when an interface has a /31 subnet mask when using an... Aaron Morris
03:24 PM Feature #9030 (Resolved): Allow TLS Key Direction with OpenVPN: Provide the user the possibility to define the direction for the TLS key in the Open VPN configuration
A pull requ... Vito Piserchia
01:48 PM Bug #9029 (Resolved): Proxy authentication is not working for HTTPS: When a user enters proxy details on system_advanced_misc.php it should trigger the firewall to use the proxy for thin... Jim Pingle
01:17 PM Bug #8956: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: I think we should null-coalesce to "taildrop" for the AQM field to solve this issue, as that would be the default AQM... Matt _
02:11 AM Bug #8956: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: I reinstall 2.4.4 from the scratch did everything no changes now using 2.3.5 again until problems solved because i am... sib iqb
12:13 AM Bug #8956: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: Happened to me as well... really screwed here. Cannot see previous queues in the GUI (under Limiters) and cannot appl... Samir Patel
01:16 PM Bug #8998 (New): All Captive Portal zones send only "CaptivePortal" as NAS Identifier: I'm OK with the PR as a new default but I still think we should allow the user to override the NAS ID as was possible... Jim Pingle
01:03 PM Bug #8998 (Feedback): All Captive Portal zones send only "CaptivePortal" as NAS Identifier: PR merged Renato Botelho
01:05 PM Bug #8590: sshd does not allow agent forwarding: Applied in changeset commit:1d835d945349d3c7b65c88155948e607bcbfdf76. Anonymous
01:04 PM Bug #8590 (Feedback): sshd does not allow agent forwarding: PR merged Renato Botelho
01:03 PM Bug #9010 (Feedback): Captive Portal Unable to logout: PR merged Renato Botelho
11:43 AM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: Adding the tunable: net.isr.dispatch=deferred fixed it for me to reach the full rated speed of my link.
Read the F... L H
08:58 AM Bug #8938: Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: Dmitriy K wrote:
> I wonder why 2.4.3 wasnt included in the exclusion list? Unfortunately, now my home router is rui... Eduard Rozenberg
07:49 AM Bug #8938: Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: Dmitriy K wrote:
> I wonder why 2.4.3 wasnt included in the exclusion list? Unfortunately, now my home router is rui... Eduard Rozenberg
08:15 AM Bug #8915 (Resolved): After updating to 2.4.4-rc an empty crash report is shown: Those logs are expected, they are from PEAR and various other parts of PHP being upgraded. As long as the empty repor... Jim Pingle
07:58 AM pfSense Packages Bug #9027: HAProxy: Unknown keyword lua-load: Should be fixed now, thanks for reporting. Pi Ba
06:49 AM pfSense Packages Bug #9027 (Resolved): HAProxy: Unknown keyword lua-load: After upgrading pfSense from 2.4.3_1 to 2.4.4 our haproxy didn't started anymore.
The error we got was `Unknown ke... Karl Fritsche
07:40 AM Bug #9028 (Duplicate): Acme pkg upgrade caused pfSense to try upgrade 2.4.3 -> 2.4.4, failed: Duplicate of #8938 Jim Pingle
07:38 AM Bug #9028 (Duplicate): Acme pkg upgrade caused pfSense to try upgrade 2.4.3 -> 2.4.4, failed: I clicked on the update button next to the Acme package on the dashboard. This appears to have caused pfSense to try ... Eduard Rozenberg

10/08/2018

06:02 PM Bug #9024: Ping packet loss under load when using limiters: The conf attached to the example https://forum.netgate.com/topic/112527/playing-with-fq_codel-in-2-4/570 shows that t... Josh Chilcott
04:49 PM Bug #8915: After updating to 2.4.4-rc an empty crash report is shown: Tried to replicate getting PHP crush report on SG-3100:
from version 2.4.3_p1 to 2.4.4 - RELEASE / no crush repo... Danilo Zrenjanin
01:56 PM Bug #8994: Two RRDDATA Sections in Restored Config Breaks Unit: It should be removed by the restore as its last act, since the data is taken out of config.xml and converted back int... Jim Pingle
01:47 PM Bug #8994: Two RRDDATA Sections in Restored Config Breaks Unit: There was no rrd section in the resulting configuration at all. Chris Linstruth
12:50 PM Bug #8994 (Resolved): Two RRDDATA Sections in Restored Config Breaks Unit: Did you look far enough back in time on the graphs to see data from the date before the backup was taken?
I took a... Jim Pingle
01:09 PM Feature #9016 (Rejected): Ability to create vpn user groups: On 2.4.4 with IKEv2/EAP you can use multiple address pools based on the user name to effectively accomplish this. The... Jim Pingle
09:40 AM Todo #9026 (Feedback): PTI checkbox wording can be confusing, should give a little more detail and show current PTI status: Applied in changeset commit:2ba7026de2c08450fa40d5694f44cbe46a2262e2. Jim Pingle
08:31 AM Todo #9026 (Resolved): PTI checkbox wording can be confusing, should give a little more detail and show current PTI status: Now that there are "Intel CPUs in the wild unaffected by Meltdown":https://github.com/freebsd/freebsd/commit/9c0b8085... Jim Pingle
05:15 AM Bug #9023: is_fqdn() validation: Ulterior information on this patch:
As per php.net/manual/en/filter.filters.validate.php: FILTER_VALIDATE_DOMAIN
... Nano Caiordo
01:00 AM pfSense Packages Bug #9025 (New): SquidGard + Target categories: Hello,
An error occurs after applying the changes to SquidGard when:
Removing an unwanted target category from "T... Issa Jacaman

10/07/2018

02:44 PM Bug #8914: Gateway switch events cause a huge amount of log spew: Could you please check if you are also experiencing latency spikes on LAN Interface during a reconnect (run a ping to... Flole Systems
02:03 PM Bug #9024: Ping packet loss under load when using limiters: ok, so we just have a configuration guideline then: "Always put all traffic through the limiter". Do you have a conf ... Dave taht
01:50 PM Bug #9024: Ping packet loss under load when using limiters: I saw this when only TCP/UDP was being put into the limiter. As soon as I changed it to "all traffic" the loss went ... Anonymous
01:05 PM Bug #9024 (Closed): Ping packet loss under load when using limiters: I think https://forum.netgate.com/topic/112527/playing-with-fq_codel-in-2-4/595 we have confirmed an issue still exis... Dave taht
11:11 AM Bug #8998: All Captive Portal zones send only "CaptivePortal" as NAS Identifier: It would be better for all installations to set the field for the nas-identifier back to the previous version. Otherw... Hostmaster BI
10:46 AM Bug #8970 (Assigned): Queues Menu item ends with ":": I tested on 2.4.5.a.20181006.1421 and I still see ":" for Status/Queue menu in German translation (see in attach scre... Azamat Khakimyanov
10:14 AM Feature #8943 (Resolved): Additions to wake on lan section: Tested on 2.4.5.a.20181006.1421: after adding 25 device in the list, additional "Add" and "Wake All Devices" buttons ... Azamat Khakimyanov
05:21 AM Bug #9023 (Resolved): is_fqdn() validation: Hello,
current validation doesn't follow any RFC guideline and it's pretty much broken.... Nano Caiordo
12:50 AM Bug #8973: Traffic not going to Limiter queues: using limiters with queues works fine with codel and fq_codel its just that we r not able to see it in limiter info a... Bipin Chandra

10/06/2018

09:07 PM Bug #9022 (Not a Bug): Policy Routing an Exception to an IPsec Tunnel Drops Reply Traffic: Not a bug. You can't policy route around IPsec in tunnel mode. The stack will drop replies because they didn't come v... Jim Pingle
08:53 PM Bug #9022: Policy Routing an Exception to an IPsec Tunnel Drops Reply Traffic: -If the IPsec tunnel is disabled on site B, pings instantly start flowing. Enable and reconnect it, they stop again.-... Chris Linstruth
08:51 PM Bug #9022 (Not a Bug): Policy Routing an Exception to an IPsec Tunnel Drops Reply Traffic: Site A
Tunnel Local 172.25.234.0/24 Remote 192.168.223.0/24
Site B
Tunnel Local 192.168.223.0/24 Remote 172.25.2... Chris Linstruth
02:24 PM pfSense Packages Bug #9020: Impossible to register ACME wildcard certificate regardless documentation: Jim Pingle wrote:
> You have some kind of configuration error. I tried it again exactly as stated on the page and it... Sorin Sbarnea
01:08 PM pfSense Packages Bug #9020 (Not a Bug): Impossible to register ACME wildcard certificate regardless documentation: You have some kind of configuration error. I tried it again exactly as stated on the page and it works. Jim Pingle
09:59 AM pfSense Packages Bug #9020 (Not a Bug): Impossible to register ACME wildcard certificate regardless documentation: Documentation at https://www.netgate.com/docs/pfsense/certificates/acme-wildcard.html states what needs to be done to... Sorin Sbarnea
02:21 PM Bug #7609: NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: I would also add to not confuse or mix both issue. One was due PHP reading ACLs permissions but no setting them up fo... Nano Caiordo
01:27 PM Bug #9021 (Closed): FreeBSD 11.2 fails to boot on Celeron J1900: Did not see anything in recent issues covering this. Apologize in advance if duplicate.
On some systems, FreeBSD ... Elvis Impersonator
01:07 PM Bug #8973: Traffic not going to Limiter queues: Tried to set a very hard limit on my DownloadLimiter and seems to be shaping properly. Tested with testmy.net Victor Preatoni
12:43 PM pfSense Packages Todo #8682 (Resolved): ACME Account Key registration gives no indication of success or failure, assumes success: This is only about the icon on the button on the key registration page, and it is working properly now. Jim Pingle
09:54 AM pfSense Packages Todo #8682: ACME Account Key registration gives no indication of success or failure, assumes success: This is so true, the UI always gives the "green" response regardless what catastrophic failure occurred, confusing us... Sorin Sbarnea
07:44 AM Bug #8859: VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: #1 Seems to be OK but could use more confirmation. Traffic from the firewall itself still leaves via WAN as expected.... Jim Pingle
07:39 AM Bug #9019 (Resolved): Hyper-V hn NICs drop UDP6 traffic when transmit checksums are enabled: Due to a problem with FreeBSD 11.2, Hyper-V NICs can't send IPv6 UDP traffic when transmit checksums are enabled.
... Jim Pingle
07:35 AM Bug #9017 (Not a Bug): Policy based Routing is not working: Policy routing is working fine here. Most likely you have a problem with your configuration or rules. Please post on ... Jim Pingle
07:31 AM pfSense Packages Bug #8989 (Resolved): [Freeradius] not starting radiusd -X | Errors reading /usr/local/etc/raddb/dictionary: dict_init: /usr/local/etc/raddb/dictionary[6] invalid entry: Jim Pingle
03:12 AM pfSense Packages Bug #8989: [Freeradius] not starting radiusd -X | Errors reading /usr/local/etc/raddb/dictionary: dict_init: /usr/local/etc/raddb/dictionary[6] invalid entry: Seems good to me. It can be marked as resolved A FL
07:30 AM Bug #8927 (Resolved): PFsense 2.4.4 FreeRadius and Captive Portal Quota Problems: Jim Pingle
03:30 AM Bug #8927: PFsense 2.4.4 FreeRadius and Captive Portal Quota Problems: Seems good to me now. It can be marked as resolved A FL
07:30 AM Bug #9018 (Rejected): swap_pager_getswapspace(): failed: Something is running your system out of RAM. There is not enough detail here to say what, if anything, is to blame.
... Jim Pingle
05:34 AM Bug #9018 (Rejected): swap_pager_getswapspace(): failed: dns resolver filed , when i locked to console i found this message
swap_pager_getswapspace(1): failed
swap_page... mom aiaz
06:12 AM Bug #8954: hn0: driver does not support altq: This bug was also before, see isue #7869
https://redmine.pfsense.org/issues/7869#change-38548
Nadav Rak
05:26 AM Bug #8954: hn0: driver does not support altq: Having exactly the same issue. Fresh install of pfSense under Hyper-V on 2012R2. Dave Pone
06:09 AM Bug #7869: Hyper-v vm traffic shaper error: hn0: driver does not support altq: I haven't upgraded yet. I think you should open a new bug report. Nadav Rak
03:09 AM Bug #8998: All Captive Portal zones send only "CaptivePortal" as NAS Identifier: The reason this field was removed was to standardize how RADIUS authentication was done in each pfSense module. OpenV... A FL
02:04 AM Bug #9010: Captive Portal Unable to logout: This bug only affects the logout popup and not custom logout pages. I committed a fix: https://github.com/pfsense/pfs... A FL

10/05/2018

10:14 PM Bug #9017 (Not a Bug): Policy based Routing is not working: I have following setup on my firewall.
2 internet gateways
WGW1 and WGW2
2 Vlans
Vlan 10 and Vlan 20
Created ... Manny Janjua
08:36 PM Bug #7609: NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: As of ntp-4.2.6p5, it seems to require 'restrict -4 default' or to use 'restrict localhost' in ACL, what worked for m... Nano Caiordo
07:00 PM Feature #9016 (Rejected): Ability to create vpn user groups: With a variety of other firewall and vpn solutions, the user is given the ability to create groups of users and gover... Dan Tentler
06:35 PM Bug #9015: Default gateway doesn't switch as expected: After further testing this appeared to be functioning as expected. Chris Linstruth
06:06 PM Bug #9015 (Closed): Default gateway doesn't switch as expected: Anonymous
05:19 PM Bug #9015 (Closed): Default gateway doesn't switch as expected: After selecting Gateway Group (WANGW2 tier1 - WANGW1 tier2) under *System/Routing/Gateways* - *Default gateway sectio... Danilo Zrenjanin
05:36 PM Bug #8914: Gateway switch events cause a huge amount of log spew: Tried to replicate the issue in 2.4.4-RELEASE.
Under logs, I was getting only "Keep current gateway, its already ... Danilo Zrenjanin
04:08 PM Bug #8994: Two RRDDATA Sections in Restored Config Breaks Unit: Tested restoring the original problematic config.xml. It did restore successfully but there was no rrddata in the res... Chris Linstruth
02:34 PM Bug #9014 (Not a Bug): Unable to uninstall any Package via System -> Package Manager: Can't duplicate this here. Packages install and uninstall fine. Please post on the forum to discuss and diagnose the ... Jim Pingle
02:12 PM Bug #9014 (Not a Bug): Unable to uninstall any Package via System -> Package Manager: Trying to Uninstall any package via in the Package Manager hangs at "Please wait while the update system initializes" Peter Reinhardt
01:46 PM Bug #8452 (Closed): PPPoE :: Interfaces > WAN: [PPPoE Configuration] Service name :: colon not allowed (invalid character): Anonymous
01:40 PM Bug #8452 (Duplicate): PPPoE :: Interfaces > WAN: [PPPoE Configuration] Service name :: colon not allowed (invalid character): Jim Pingle
01:29 PM Bug #8452: PPPoE :: Interfaces > WAN: [PPPoE Configuration] Service name :: colon not allowed (invalid character): This issue can be closed as this has been resolved. Please see bug 9002. Thank you. Bouke Henstra
01:17 PM Feature #8976 (Resolved): Status -> Traffic Graph, provide SAVE button for graph settings.: Renato Botelho
12:40 PM Feature #8976: Status -> Traffic Graph, provide SAVE button for graph settings.: Very Cool! I just tried it out and it works great!
Thank you so much for implementing this feature, I really appre... jake xanaro
12:20 PM Feature #8976 (Feedback): Status -> Traffic Graph, provide SAVE button for graph settings.: Changes added. Commit hash: dd8a6d75e7a7cadc9a182c0306e8d04799a63338
It should now be able to save your settings to ... Anonymous
12:43 PM pfSense Packages Bug #9013 (Resolved): pfSense Crash: AVAHI_RCFILE undefined constant: This was fixed days ago. Update to the latest version of that package. Jim Pingle
12:24 PM pfSense Packages Bug #9013 (Resolved): pfSense Crash: AVAHI_RCFILE undefined constant: [04-Oct-2018 04:31:18 America/New_York] PHP Warning: Use of undefined constant AVAHI_RCFILE - assumed 'AVAHI_RCFILE'... P L
12:11 PM Bug #8933 (Resolved): diagnostics -> backup/restore -> reinstall packages hangs: Works now Jim Pingle
11:25 AM pfSense Packages Bug #9012 (New): Captive Portal authentication in Squid Proxy Server does not work: Version pfsense 2.4.4-RELEASE (amd64)
I have configured Authentication Method to "Captive Portal" in Squid Proxy Ser... Kevin Chou
10:26 AM Bug #8978: vidconsole is invalid for efi booted systems: Jim Pingle
08:39 AM Bug #8859: VTI: Some third-party vendors require rightsubnet to have a mask for VTI, rather than address: The attached patch adds @0.0.0.0/0@ to @rightsubnet@ and @leftsubnet@ which may make some third party devices happy, ... Jim Pingle
07:51 AM Bug #9009 (Resolved): Cannot create Schedule: Jim Pingle
12:09 AM Bug #9009: Cannot create Schedule: pat lechriss wrote:
> Hello, when attempting to add a shedule i always get this php errors. Thx
>
>
> Crash rep... pat lechriss
07:49 AM Bug #9011 (Not a Bug): Snort not showing in menu: There is no bug here that I can reproduce. I install snort, it's in the menu.
If there is a problem, it is specifi... Jim Pingle
02:38 AM Bug #9011 (Not a Bug): Snort not showing in menu: Hi
I have an HA setup and on the secondary netgate XG-2758 the snort menu button is not showing after installation... Tino Zidore
05:46 AM Bug #9006 (Resolved): Using umlauts in client specific overrides common names field causes restore of old config backup: Renato Botelho
12:01 AM Bug #9006: Using umlauts in client specific overrides common names field causes restore of old config backup: verified. Works. thank you! Stefan Bauer
05:29 AM Bug #8998: All Captive Portal zones send only "CaptivePortal" as NAS Identifier: We also need to get a unique NASID. Please fix this bug. Any solution will suit. WiFi SYS
04:02 AM Bug #9010: Captive Portal Unable to logout: Ming-Chang Cheng wrote:
> Version pfsense 2.4.4-RELEASE (amd64)
> I have configured captive portal with radius serv... Inder P. MEEL
01:51 AM Bug #9010 (Resolved): Captive Portal Unable to logout: Version pfsense 2.4.4-RELEASE (amd64)
I have configured captive portal with radius server. Enabled "Logout popup win... Ming-Chang Cheng

10/04/2018

08:58 PM Bug #8954: hn0: driver does not support altq: Windows 10 Pro w/latest updates + Hyper-V.
2.4.3 was/is flawless. Upgraded to 2.4.4 and got this error and can't use... Jon Gav
03:50 PM Bug #9009 (Feedback): Cannot create Schedule: Applied in changeset commit:4c3669ea8a9acf4657cd84e0ae22fb8809302756. Jim Pingle
02:29 PM Bug #9009 (Resolved): Cannot create Schedule: Hello, when attempting to add a shedule i always get this php errors. Thx
Crash report begins. Anonymous machin... pat lechriss
02:28 PM Bug #8999: Nat rules do not work in pfsense 2.4.4 on hypervisor xen: Chris Linstruth wrote:
> Right. And NAT works just fine on 2.4.4 on AWS. Please take this discussion to the pfSense ... Anonymous
02:11 PM Feature #8976: Status -> Traffic Graph, provide SAVE button for graph settings.: Anonymous
10:27 AM Feature #8976 (Assigned): Status -> Traffic Graph, provide SAVE button for graph settings.: A possible temporary workaround if you haven't tried it already. There is a traffic graphs widget that allows for sav... Anonymous
01:33 PM Bug #8938: Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: I wonder why 2.4.3 wasnt included in the exclusion list? Unfortunately, now my home router is ruined because of updat... Dmitriy K
11:51 AM pfSense Packages Feature #9008: Add Zabbix 4 (agent and proxy) packages: https://github.com/pfsense/pfsense/pull/3995
https://github.com/pfsense/FreeBSD-ports/pull/580 Danilo Baio
11:44 AM pfSense Packages Feature #9008 (Resolved): Add Zabbix 4 (agent and proxy) packages: What's new in Zabbix 4.0.0:
https://www.zabbix.com/documentation/4.0/manual/introduction/whatsnew400 Danilo Baio
11:25 AM Bug #9006 (Feedback): Using umlauts in client specific overrides common names field causes restore of old config backup: Applied in changeset commit:7a97d81d81afa7ea86c8ad79bff8e203bc9457a4. Jim Pingle
11:10 AM Bug #9006 (In Progress): Using umlauts in client specific overrides common names field causes restore of old config backup: Jim Pingle
10:49 AM Bug #9006 (Resolved): Using umlauts in client specific overrides common names field causes restore of old config backup: Clicking VPN -> OpenVPN -> Servers
selecting: CSC Overrides
add new client and set as Common Name a word with u... Stefan Bauer
10:45 AM Feature #9005: Allow to define allowed x509 client certs by having CN in openvpn server (tls-verify): Not a known issue I'm aware of but probably not difficult to solve in a future release. Open a new issue with the spe... Jim Pingle
10:43 AM Feature #9005: Allow to define allowed x509 client certs by having CN in openvpn server (tls-verify): Too bad. Pfsense has problems with common names containing umlauts (ö ä ü) this way. Is this a known problem and work... Stefan Bauer
10:11 AM Feature #9005: Allow to define allowed x509 client certs by having CN in openvpn server (tls-verify): Sir, you're awesome! This is exactly what i was looking for! ;) You deserve a cookie!
thank you very much! Stefan Bauer
10:08 AM Feature #9005: Allow to define allowed x509 client certs by having CN in openvpn server (tls-verify): You can still do that by making an override named @DEFAULT@ with blocking checked, and then define overrides for the ... Jim Pingle
10:03 AM Feature #9005: Allow to define allowed x509 client certs by having CN in openvpn server (tls-verify): Your overwrite idea is generally good, but a blacklisting makes no sense in this case. Only whitelisting is secure. W... Stefan Bauer
10:01 AM Feature #9005 (Rejected): Allow to define allowed x509 client certs by having CN in openvpn server (tls-verify): You can already do this with overrides.
**VPN > OpenVPN**, **Client Specific Overrides** tab. Add a new entry with... Jim Pingle
09:56 AM Feature #9005 (Rejected): Allow to define allowed x509 client certs by having CN in openvpn server (tls-verify): We're having enterprise internal CA and imported CA into pfsense. Having a single CA allows all certs that are not re... Stefan Bauer
10:10 AM Bug #8915 (Feedback): After updating to 2.4.4-rc an empty crash report is shown: Applied in changeset commit:6e150fc0d022d231c7dc243ba68f4784f58973d5. Jim Pingle
10:06 AM Bug #8915: After updating to 2.4.4-rc an empty crash report is shown: I just pushed a change that should hopefully take care of this, under the assumption that some mismatch in how index.... Jim Pingle
07:42 AM Bug #8915 (In Progress): After updating to 2.4.4-rc an empty crash report is shown: Jim Pingle
08:54 AM Bug #9004 (Resolved): Default gateway IPv4 set to a group fails after restart on 2.4.4: We set the default gateway IPv4 to be a group, called WAN_Failover. That group consists of WAN1 Fiber at tier 1 and ... Daniel Williams
08:25 AM Bug #8959: Restoring a <2.4.4 config with legacy gold auto backup package re-adds the menu option under Diagnostics: Applied in changeset commit:245bfa559b5d8ebcb13b21feceaa58257ee194da. Anonymous
08:24 AM Bug #8959 (Feedback): Restoring a <2.4.4 config with legacy gold auto backup package re-adds the menu option under Diagnostics: Diagnostics->AutoConfigBackup menu item suppressed Anonymous
08:18 AM Bug #9002 (Resolved): [Interfaces :: WAN :: PPPoE] The service name contains invalid characters: Anonymous
08:16 AM Bug #9002: [Interfaces :: WAN :: PPPoE] The service name contains invalid characters: Steve Beaver wrote:
> Service name may now contain ':' (and other non-alphanumerics)
I just edited the file on my... Bouke Henstra
07:30 AM Bug #9002: [Interfaces :: WAN :: PPPoE] The service name contains invalid characters: Applied in changeset commit:dac4cd09699bdafa5bcf1cf7b699438e5f669b26. Anonymous
07:27 AM Bug #9002 (Feedback): [Interfaces :: WAN :: PPPoE] The service name contains invalid characters: Service name may now contain ':' (and other non-alphanumerics) Anonymous
06:49 AM Bug #9002: [Interfaces :: WAN :: PPPoE] The service name contains invalid characters: Anonymous
05:43 AM Bug #9002 (Resolved): [Interfaces :: WAN :: PPPoE] The service name contains invalid characters: I am able to add a colon in the "service name" when I configure "PPPoE" using the "Setup Wizard".
I am not able to... Bouke Henstra
08:05 AM Feature #8943 (Feedback): Additions to wake on lan section: Top buttons are added if the table is > 24 rows
Items 2) and 3) may be addressed in a later release.
Anonymous
07:41 AM Bug #8970 (Feedback): Queues Menu item ends with ":": Error was in de_DE translation file. Fixed there and in Zanata Anonymous
07:37 AM Bug #8970 (In Progress): Queues Menu item ends with ":": Anonymous
07:34 AM Bug #8970 (Feedback): Queues Menu item ends with ":": Anonymous
07:35 AM Bug #8973: Traffic not going to Limiter queues: Far more likely is that it is working properly but just not showing the traffic in the queues in the diagnostic outpu... Jim Pingle
07:32 AM Bug #8995 (Feedback): MTU Trouble with Orange is back: Renato Botelho
06:41 AM Bug #8995: MTU Trouble with Orange is back: mpd5-5.8_8 imported Renato Botelho
06:51 AM pfSense Packages Feature #9003 (Resolved): Add 'Copy Running to Saved' option to the raw config: Would be possible to add these buttons to the raw config page as the Quagga package does, i'm slowly moving over to u... Ben Hughes
01:11 AM Bug #8998: All Captive Portal zones send only "CaptivePortal" as NAS Identifier: Another weight for the first Option: If i Restore a Backup from an old Version (also in case of update) the field is ... Hostmaster BI

10/03/2018

10:24 PM Bug #8999: Nat rules do not work in pfsense 2.4.4 on hypervisor xen: Right. And NAT works just fine on 2.4.4 on AWS. Please take this discussion to the pfSense forum at https://forum.net... Chris Linstruth
09:58 PM Bug #8999: Nat rules do not work in pfsense 2.4.4 on hypervisor xen: Chris Linstruth wrote:
> My entire test VM lab is currently XenServer 6.5. Nothing there changed from 2.4.3_1 to 2.4... Anonymous
03:24 PM Bug #8999: Nat rules do not work in pfsense 2.4.4 on hypervisor xen: My entire test VM lab is currently XenServer 6.5. Nothing there changed from 2.4.3_1 to 2.4.4 through the entire 2.4.... Chris Linstruth
02:58 PM Bug #8999: Nat rules do not work in pfsense 2.4.4 on hypervisor xen: just think for a moment that it may be the first report. in larger communities i had to make the first report before,... Anonymous
02:17 PM Bug #8999: Nat rules do not work in pfsense 2.4.4 on hypervisor xen: You need to post on the forum and discuss the issue in depth there before jumping to a conclusion that it's a bug and... Jim Pingle
01:59 PM Bug #8999: Nat rules do not work in pfsense 2.4.4 on hypervisor xen: Jim Pingle wrote:
> There is not enough data here to suggest it's actually a problem in pfSense. Please post on the ... Anonymous
10:24 AM Bug #8999 (Not a Bug): Nat rules do not work in pfsense 2.4.4 on hypervisor xen: There is not enough data here to suggest it's actually a problem in pfSense. Please post on the forum and discuss the... Jim Pingle
10:00 AM Bug #8999 (Not a Bug): Nat rules do not work in pfsense 2.4.4 on hypervisor xen: After upgrading from pfsense 2.4.3_1 to 2.4.4, nat rules in the firewall do not allow packets to pass through.
npt w... Anonymous
09:24 PM Bug #8973: Traffic not going to Limiter queues: This is weird, but if configuring Limiters with CoDel AQM and QFQ Scheduler, it works. Problems exists with default A... Victor Preatoni
06:11 PM Bug #8977: Dynamic DNS - Custom (V6) - Throws Error "php-fpm: /services_dyndns_edit.php: phpDynDNS: (ERROR!) No Hostname Provided.": I can provide some feedback, that I manually edited the file in the same manner as the patch on the same day I submit... Rick Coats
03:25 PM Bug #8977 (Feedback): Dynamic DNS - Custom (V6) - Throws Error "php-fpm: /services_dyndns_edit.php: phpDynDNS: (ERROR!) No Hostname Provided.": Applied in changeset commit:45ff6b8f1d574b3786d25286abc4978427675974. Jim Pingle
03:20 PM Bug #8977 (In Progress): Dynamic DNS - Custom (V6) - Throws Error "php-fpm: /services_dyndns_edit.php: phpDynDNS: (ERROR!) No Hostname Provided.": Jim Pingle
04:10 PM Bug #8994 (Feedback): Two RRDDATA Sections in Restored Config Breaks Unit: Applied in changeset commit:9386784480f27d6b04ebf013f691522130a7f013. Jim Pingle
04:06 PM Bug #8994: Two RRDDATA Sections in Restored Config Breaks Unit: The rrddata case is special because of the way the backup process injects the data into the config before serving the... Jim Pingle
12:01 AM Bug #8994: Two RRDDATA Sections in Restored Config Breaks Unit: I don't think this is limited to <rrddata>, any duplicate tag in the config will break imports, I've confirmed with <... Paighton Bisconer
02:34 PM Bug #8995: MTU Trouble with Orange is back: France Orange OK :)
pppoe2: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> metric 0 mtu 1492
inet 81.2... xavier Lemaire
11:52 AM Bug #8995: MTU Trouble with Orange is back: Eugene Grosbein - 2 hours ago
Thank you, these logs were very useful. Here is one more patch chunk missing from pr... xavier Lemaire
05:35 AM Bug #8995: MTU Trouble with Orange is back: pfSense 2.4.4 uses mpd5-5.8_7. You can check that running `pkg info mpd5` on console. The only differences from FreeB... Renato Botelho
12:37 AM Bug #8995 (Resolved): MTU Trouble with Orange is back: As discuss here https://sourceforge.net/p/mpd/bugs/62/?page=1 I have MTU trouble with the last 2.4.4.
Eugene is aski... xavier Lemaire
02:18 PM pfSense Packages Bug #8997 (Resolved): squidGuard Times does not accept more than one value: Confirmed fixed by other forum users who hit the same issue: https://forum.netgate.com/topic/136288/squidguard-and-mu... Jim Pingle
10:16 AM pfSense Packages Bug #8997 (Feedback): squidGuard Times does not accept more than one value: Fix pushed in squidGuard pkg version 1.16.18_1 which will be up shortly. Jim Pingle
08:49 AM pfSense Packages Bug #8997: squidGuard Times does not accept more than one value: Probably something similar to what I fixed yesterday in ACLs. I'll take a look. Jim Pingle
08:17 AM pfSense Packages Bug #8997 (Resolved): squidGuard Times does not accept more than one value: squidGuard Times does not accept more than one value. (PFSense 2.4.4, squid 0.4.44_5, squidGuard 1.16.18)
On the... Leonardo Simonato
11:12 AM Bug #8954: hn0: driver does not support altq: Dmitry Ivanov wrote:
> hyper-v 2016
> gen1 and gen2
same here, using windows server 2016 on pfsense 2.4.4 Gustavo Mello
10:21 AM Feature #9001 (Resolved): Add checkbox to disable SSL peer verification for SMTP notifications: Some mail servers do not use a certificate that can be validated by the current code (e.g. custom self-signed CA or c... Jim Pingle
10:06 AM Bug #9000 (Not a Bug): Haproxy does not send ipv6 traffic to backend after updating to Pfsense 2.4.4: After the update, the accesses from ipv6 addresses do not work in any case. Before the update worked perfectly.
Ac... Anonymous
09:46 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: I had to make a clean install, but it is working for me as well ! Thanks a lot for your support guys Andres Noriega
07:26 AM pfSense Packages Bug #8945 (Resolved): SquidGuard ACL blacklists: Jim Pingle
01:16 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: Works again. Thank you Marcel Beerli
12:33 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: Great Thanks a lot. It works fine in my pfsense Issa Jacaman
09:21 AM Bug #8998 (Resolved): All Captive Portal zones send only "CaptivePortal" as NAS Identifier: Before 2.4.4, each Captive Portal zone had a configurable NAS Identifier. With multiple zones, each instance could us... Jim Pingle
08:00 AM pfSense Packages Bug #8996 (Bogus): pfBlockerNG not like CloudFlare DNS: Jim Pingle
07:57 AM pfSense Packages Bug #8996: pfBlockerNG not like CloudFlare DNS: Sorry - issue already resolved in devel version. DRago_Angel [InV@DER]
04:21 AM pfSense Packages Bug #8996 (Bogus): pfBlockerNG not like CloudFlare DNS: Hi all, pfBlockerNG use IP 1.1.1.1 is list of IPs is NULL, so any time list is null CloudFlare DNS can be banned, fil... DRago_Angel [InV@DER]
07:08 AM Bug #8034: PHP crashes when trying to modify or add NAT rules in pfSense v.2.4.1: I got exactly the same error inside the crash reporter, including the max memory size even if my pfsense machine has ... Sorin Sbarnea
05:31 AM Bug #8935: IGMP Proxy not starting with PPPoE IF: New version merged to 2.4.4 branch Renato Botelho

10/02/2018

10:03 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: I can say that the vlans are working again.
Thanks ! Alexandre Paradis
07:52 PM Bug #8914: Gateway switch events cause a huge amount of log spew: Replicated in 2.4.4-RELEASE
Steps to replicate:
Configure Gateway Group with 2 WANs
Start Tier 1 down, Tier 2 up... Paighton Bisconer
03:34 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: I added a note to the upgrade guide pointing back here and offering a workaround. Thanks for confirming the details! Jim Pingle
03:21 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: I suspect that might be happening to people. Thank you for being so attentive on this. Bennett Feitell
03:19 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: If you check the box and save, it will overwrite the default DHCP values with what is in the boxes for **Protocol Tim... Jim Pingle
03:15 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: Is it possible that just toggling the visibility of the advanced settings box to on and then saving and applying woul... Bennett Feitell
03:08 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: No, that setting would not do it on its own, as it is handled in a different way.
It only happens when @adv_dhcp_c... Jim Pingle
03:02 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: So a setting to reject leases from the cable modem itself in *DHCP Client Configuration* might cause this too, as wou... Bennett Feitell
02:57 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: No, I mean settings in the **DHCP Client Configuration** box on the WAN when **Advanced Configuration** is set, like ... Jim Pingle
02:47 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: Got it, thank you.
By advanced DHCP client options, do you mean specifying an MTU for the interface? If that wo... Bennett Feitell
02:43 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: It's @\t@ for a tab, then supersede. Jim Pingle
02:42 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: I think I see a typo in your diff. "tsupersede". Bennett Feitell
02:40 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: Looks like there may be two ways this could happen:
#1: If you used advanced DHCP client options that clobber the ... Jim Pingle
02:40 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: My copy of /etc/inc/interfaces.inc matches, and contains the line. Bennett Feitell
02:36 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: I suspect that a prior hard setting of MTU on the interface may be interfering with the propagation of the fix in dhc... Bennett Feitell
02:27 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: https://github.com/pfsense/pfsense/blob/master/src/etc/inc/interfaces.inc#L4990
The line should always be there by... Jim Pingle
02:25 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: All I know is that I needed to affirmatively set "supersede interface-mtu 0" in the option modifiers for the WAN conf... Bennett Feitell
02:19 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: We already set that (see the linked commit above).
My edge firewall failed horribly because my ISP sent the MTU ev... Jim Pingle
02:05 PM Bug #8507: FreeBSD 11.2-BETA dhclient always uses server MTU value: This is still causing problems in pfSense 2.4.4-RELEASE.
I believe that the upstream patches to FreeBSD introduce ... Bennett Feitell
02:32 PM pfSense Packages Bug #8945 (Feedback): SquidGuard ACL blacklists: Fixed in squidGuard pkg v 1.16.18 which will show up shortly. Jim Pingle
02:18 PM pfSense Packages Bug #8945 (In Progress): SquidGuard ACL blacklists: Jim Pingle
01:46 PM Feature #8976: Status -> Traffic Graph, provide SAVE button for graph settings.: Temporarily, If I wanted to edit the files that choose the default options for the graph, which file would I need to ... jake xanaro
12:38 PM Bug #8994 (Resolved): Two RRDDATA Sections in Restored Config Breaks Unit: Had a user present a configuration backup with two rrddata sections.
Looked like this:
<rrddata></rrddata>
<rr... Chris Linstruth
10:48 AM Bug #8938 (Resolved): Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: Renato Botelho
10:18 AM Bug #8938: Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: Tested on 2.4.3_1 - I was able to see Acme package which depends on php72 but wasn't able to install it.
Tested on ... Danilo Zrenjanin
10:24 AM Bug #8980: Disabling hardware checksums does not disable IPv6 transmit checksum: -- drive by coder --
What it looks like is that in pfSense.c (FreeBSD-Ports) the IFCAP_RXCSUM_IPV6 & IFCAP_TXCSUM_... Henry P
09:46 AM Feature #8947 (Resolved): Cron based ACB option: While there are more simple ways to configure the timing, there is no more flexible way than direct crontab entry. If... Anonymous
09:20 AM Feature #8947: Cron based ACB option: Functionality to perform config backups via cron instead of on every change is added and works as expected. Tested in... Danilo Zrenjanin
09:10 AM Bug #8993 (Feedback): PHP error from filter_rules_sort() when config.xml contains no rules: Applied in changeset commit:67807c9536ae1810a067155049c96e8d2b634777. Jim Pingle
09:01 AM Bug #8993 (Resolved): PHP error from filter_rules_sort() when config.xml contains no rules: ... Jim Pingle
08:54 AM Bug #8992: Captive Portal report lots of error: File: /usr/local/www/xmlrpc.php(140): It is not a bug because HA requires both nodes to be on matching versions, and this error could only happen if they d... Jim Pingle
08:53 AM Bug #8992: Captive Portal report lots of error: File: /usr/local/www/xmlrpc.php(140): Why is it not a bug?
I upgraded from 2.4.3 to 2.4.4 and directly (!) i get the errors on the dashboard. Every secord... Hostmaster BI
08:51 AM Bug #8992 (Not a Bug): Captive Portal report lots of error: File: /usr/local/www/xmlrpc.php(140): Your 2.4.3 system may have tried to call that function on the 2.4.4 system, where that function no longer exists.
... Jim Pingle
08:42 AM Bug #8992 (Not a Bug): Captive Portal report lots of error: File: /usr/local/www/xmlrpc.php(140): After Update go 2.4.4 i get a lot of errors shown:
PHP ERROR: Type: 1, File: /usr/local/www/xmlrpc.php(140) : eval... Hostmaster BI
08:51 AM Bug #8954: hn0: driver does not support altq: Das gleiche Problem mit Hyper-V 2012, gen1 Arthur Hirstein
08:36 AM Bug #8991: Codel limiter generating error in system log and console: If you read through https://forum.netgate.com/topic/112527/playing-with-fq_codel-in-2-4/ that appears to be harmless.... Jim Pingle
08:30 AM Bug #8991 (Not a Bug): Codel limiter generating error in system log and console: After configuring Codel limiters like shown on the Netgate YouTube video for 2.4.4 I noticed this message constantly ... Max N
07:55 AM Bug #8927: PFsense 2.4.4 FreeRadius and Captive Portal Quota Problems: To make sure someone doesn't get the wrong idea based on that last note:
The errors mentioned above are covered in... Jim Pingle
02:17 AM Bug #8927: PFsense 2.4.4 FreeRadius and Captive Portal Quota Problems: Multiple users have negative feedback (see #8989 ).
I submited another PR to fix the issue : https://github.com/p... A FL
07:50 AM Bug #8933: diagnostics -> backup/restore -> reinstall packages hangs: Steve Wheeler wrote:
> You can test this in a 2.4.5 snapshot. Just choose the development branch in Update Settings.... Renato Botelho
07:49 AM Bug #8933: diagnostics -> backup/restore -> reinstall packages hangs: Florian Apolloner wrote:
> I have acme, Cron, haproxy, Netgate_Coreboot_Upgrade and openvpn client export installed.... Renato Botelho
07:47 AM Bug #8933: diagnostics -> backup/restore -> reinstall packages hangs: I have acme, Cron, haproxy, Netgate_Coreboot_Upgrade and openvpn client export installed. Can you link me the patch? ... Florian Apolloner
07:04 AM Bug #8933: diagnostics -> backup/restore -> reinstall packages hangs: Nothing unusual on the boxes where I could reproduce this. Common things like ACME, nmap, OpenVPN client export, sudo... Jim Pingle
07:02 AM Bug #8933: diagnostics -> backup/restore -> reinstall packages hangs: You can test this in a 2.4.5 snapshot. Just choose the development branch in Update Settings.
However I was not ab... Steve Wheeler
05:46 AM pfSense Packages Bug #8989 (Feedback): [Freeradius] not starting radiusd -X | Errors reading /usr/local/etc/raddb/dictionary: dict_init: /usr/local/etc/raddb/dictionary[6] invalid entry: PR merged Renato Botelho
04:28 AM pfSense Packages Bug #8989: [Freeradius] not starting radiusd -X | Errors reading /usr/local/etc/raddb/dictionary: dict_init: /usr/local/etc/raddb/dictionary[6] invalid entry: See https://forum.netgate.com/topic/135894/solved-freeradius-doesn-t-start-after-a-pfsense-2-4-4-fresh-install-and-re... Gertjan KROEB
02:11 AM pfSense Packages Bug #8989: [Freeradius] not starting radiusd -X | Errors reading /usr/local/etc/raddb/dictionary: dict_init: /usr/local/etc/raddb/dictionary[6] invalid entry: This is my fault. I have to appologize for this error, sorry.
see #8927 -and https://github.com/pfsense/FreeBSD-p... A FL
01:51 AM pfSense Packages Bug #8989: [Freeradius] not starting radiusd -X | Errors reading /usr/local/etc/raddb/dictionary: dict_init: /usr/local/etc/raddb/dictionary[6] invalid entry: Same here - Radius won't start after Update anymore Hostmaster BI
02:48 AM Bug #8990 (Resolved): Additional BOOTP/DHCP Options per host: Hello,
I do not find option to add additional boottp option *per host*. I have system that get custom option via DHC... Valentin Deville

10/01/2018

10:24 PM pfSense Packages Bug #8989 (Resolved): [Freeradius] not starting radiusd -X | Errors reading /usr/local/etc/raddb/dictionary: dict_init: /usr/local/etc/raddb/dictionary[6] invalid entry: freeradius is not starting after latest update, i figured out the issue.
radiusd -X show:
@Errors reading /usr/... rub man
07:34 PM Bug #8956: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: Dir Jim,
i attached the requested data khaled osama
01:20 PM Bug #8956: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: This does not affect all users on 2.4.4, or all users who upgraded, and the priority reflects that. We intend to have... Jim Pingle
07:29 PM Bug #8988: just updated to latest version 2.4.4 Crash report!: Jim Pingle wrote:
> Either these are harmless errors from the upgrade process, or you might have a problem with the ... it sig
06:29 PM Bug #8988 (Not a Bug): just updated to latest version 2.4.4 Crash report!: Either these are harmless errors from the upgrade process, or you might have a problem with the pfBlockerNG package. ... Jim Pingle
06:19 PM Bug #8988 (Not a Bug): just updated to latest version 2.4.4 Crash report!: Crash report begins. Anonymous machine information:
amd64
11.2-RELEASE-p3
FreeBSD 11.2-RELEASE-p3 #17 e6b497fa0... it sig
06:14 PM Bug #7609 (Resolved): NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: Ok in both cases it was using v6 localhost as source, ::1/128.
Using that I was able to duplicate the original bug... Steve Wheeler
06:10 PM Bug #7609: NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: I'm unable to duplicate the original issue in 2.4.4 or 2.3.5p1.
In both 2.4.4 and 2.4.5 setting a custom ACL does ... Steve Wheeler
05:07 PM Bug #8893 (Resolved): Outbound NAT page unnecessarily strips underscores from alias names: Looks good.
Tested in:... Steve Wheeler
04:42 PM Bug #8953 (Resolved): Status > Gateways shows incorrect info: In 2.4.4 the monitor IP of another gateway is shown:... Steve Wheeler
04:36 PM Bug #8927 (Feedback): PFsense 2.4.4 FreeRadius and Captive Portal Quota Problems: PR merged. Thanks! Renato Botelho
07:51 AM Bug #8927: PFsense 2.4.4 FreeRadius and Captive Portal Quota Problems: As mentioned on the forum ( https://forum.netgate.com/topic/135679/pfsense-2-4-4-freeradius-mac-address-authenticatio... A FL
04:28 PM Bug #8962 (Resolved): firewall_rules.edit.php: Double quotes in Gateway description cause blank gateway drop-down: Fixed in:... Steve Wheeler
04:25 PM Bug #8935 (Feedback): IGMP Proxy not starting with PPPoE IF: I've cherry-picked recent changes from FreeBSD ports tree. 0.2.1_1,1 will be available in the next round of 2.4.5-DEV... Renato Botelho
04:24 PM Bug #8935 (In Progress): IGMP Proxy not starting with PPPoE IF: Renato Botelho
04:21 PM Bug #8967 (Resolved): PHP error in DNS Forwarder when config has no dnsmasq settings: Unable to replicate this in either 2.4.4 or in:... Steve Wheeler
12:33 PM Bug #8987: Web GUI main page very slow to load if wan interface is enabled but not connected.: There are several things on the dashboard that need working DNS and connectivity, like the update check, packages wid... Jim Pingle
12:22 PM Bug #8987 (Resolved): Web GUI main page very slow to load if wan interface is enabled but not connected.: Hi,
I noticed this annoying bug in pfSense 2.4.4:
by configuring the wan interface and leaving it disconnected,
t... Arnaldo Pirrone
12:27 PM Bug #8518: Rule Error On Upgrade 2.4.3 -> 2.4.3-p1: It looks like they are hitting #8945 -- but yes, it has nothing to do with this bug. Rather than opening a new issue,... Jim Pingle
12:22 PM Bug #8518: Rule Error On Upgrade 2.4.3 -> 2.4.3-p1: vishant kamboj wrote:
> am not able to set target rules in squidguard proxy filter. once we add rule after apply the... Ken Sim
12:12 PM Bug #8518: Rule Error On Upgrade 2.4.3 -> 2.4.3-p1: am not able to set target rules in squidguard proxy filter. once we add rule after apply then we check these rules it... vishant kamboj
11:13 AM pfSense Packages Bug #8986 (Duplicate): Clear SQUID GUARD: Nothing intelligible here. Most likely a duplicate of #8945
Post to the forum if that is not the case. Jim Pingle
11:06 AM pfSense Packages Bug #8986 (Duplicate): Clear SQUID GUARD: No set options list access squidguard
clear error !!! save button Raul Flores
10:56 AM pfSense Packages Bug #8984 (Feedback): stunnel: Illegal string offset and other PHP hiccups (due to PHP upgrade): This was corrected in stunnel 5.37 Anonymous
09:16 AM pfSense Packages Bug #8984: stunnel: Illegal string offset and other PHP hiccups (due to PHP upgrade): There is some ongoing work happening on the stunnel package, this is likely already fixed in the development version ... Jim Pingle
08:27 AM pfSense Packages Bug #8984 (Resolved): stunnel: Illegal string offset and other PHP hiccups (due to PHP upgrade): The last major upgrade of the PHP packages caused this: ... L H
09:14 AM pfSense Packages Bug #8871 (Resolved): Suricata: input not validated properly in suricata_rulesets.php results in wrong argument passed to in_array(): Jim Pingle
09:10 AM pfSense Packages Bug #8871: Suricata: input not validated properly in suricata_rulesets.php results in wrong argument passed to in_array(): The variable _$enabled_rulesets_array_ is populated by the PHP code as it reads the config.xml configuration for the ... Bill Meeks
08:25 AM pfSense Packages Bug #8871: Suricata: input not validated properly in suricata_rulesets.php results in wrong argument passed to in_array(): Seems to have been fixed silently, or through a different component or such, but no updates recorded here... L H
08:33 AM pfSense Packages Feature #8985 (New): Suricata: allow configuration for external/internal additional storage: At the moment, to support storing additional data in an array of disks or just a single storage media, we must levera... L H
07:29 AM Feature #8983 (Duplicate): Possibility of using alias/fqdn in the GRE tunnel peer identity: At the moment, one must define remote GRE peer by IP. Would it be possible to also use alias/fqdn? This would allow f... ioan stan
04:10 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: Marcel Beerli wrote:
> Then it looks like its in pfSense 2.4.4 not in the packages.
> Lets hope it gets addressed i... Issa Jacaman
03:39 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: Then it looks like its in either of the 2 packages. (squid or squidGuard), probably squidGuard Marcel Beerli
01:15 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: I was on release 2.4.3-RELEASE-p1 (amd64) and did package updates to
squidGuard -> 1.16.17_3
squid -> 0.4.44_5
... Issa Jacaman
03:22 AM pfSense Packages Feature #8982 (New): HAproxy ACL support for map in configuration UI: When defining ACLs with the GUI, it would be nice to have support for matching against a map for "Host matches:" type... Stéphane Lapie

09/30/2018

09:45 PM Bug #8981 (Resolved): Uncheck DHCP registration does not clear entries: Uncheck the DHCP registration box in Unbound setting GUI should clear the contents of /var/unbound/dhcpleases_entri... Ender L
09:05 PM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: Is it possible to simply disable sshguard? dean hamstead
06:01 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: Tim Balmer wrote:
> I now replaced the default igmpproxy binary on pfSense 2.4.4 by this version https://pkg.opnsens... Patrick Monfette
04:26 PM Bug #8978: vidconsole is invalid for efi booted systems: Looks like we'd have to check like they did on FreeNAS, if @sysctl -n machdep.bootmethod@ returns UEFI then we can se... Jim Pingle
10:03 AM Bug #8978 (Resolved): vidconsole is invalid for efi booted systems: The loader values 'console="vidconsole"'or 'console="vidconsole,comconsole"'are invalid for systems booted UEFI where... Steve Wheeler
04:07 PM Bug #8979 (Duplicate): DNS Forwarder broken in 2.4.4: Duplicate of #8967, already fixed for the next release. Jim Pingle
11:36 AM Bug #8979 (Duplicate): DNS Forwarder broken in 2.4.4: After upgrading to 2.4.4 Services / DNS Forwarder seems broken:
Crash report begins. Anonymous machine information... Yuri Weinstein
04:03 PM Bug #8980 (Resolved): Disabling hardware checksums does not disable IPv6 transmit checksum: system_advanced_network.php, checking "Disable hardware checksum offload" disables most checksum options but not TXCS... Jim Pingle
02:27 PM Bug #8974 (Resolved): system_advanced_admin.php: Inconsistent placement of ssh options and lack of initialization: Looks good. Functions as expected:... Steve Wheeler
02:13 PM Feature #8926 (Resolved): WOL page selects first interface alphabetically, instead of LAN: Steve Wheeler
02:13 PM Feature #8926: WOL page selects first interface alphabetically, instead of LAN: This looks good now. Tested in:... Steve Wheeler
08:19 AM Bug #8971: filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: Your issue is different. You need to start a thread on the "forum":https://forum.netgate.com to discuss it and diagno... Jim Pingle
07:38 AM Bug #8971: filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: Not sure if this is the best place to post, but the symptom in the original poster’s screenshot is also what we’re se... Sandy Kim
06:59 AM Bug #7308: ZFS installer - check storage capabilities: error is still there for me on SG-2220 with 2.4.4 CE
Even when I reduce the swap to 0. Christoph Filnkößl
06:53 AM Bug #8956: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: Priority "Normal"? This issue is a desaster for the QoS of the complete network! Is there any workaround which can be... Marco Jakobs

09/29/2018

04:51 PM Bug #8977 (Resolved): Dynamic DNS - Custom (V6) - Throws Error "php-fpm: /services_dyndns_edit.php: phpDynDNS: (ERROR!) No Hostname Provided.": The Dynamic DNS - Custom (v6) when it runs, throws the following error, even though it successfully updated:
php-fpm... Rick Coats
03:16 PM Bug #7886 (Resolved): PRIQ, priority of 0 cannot be saved in GUI, GUI attempts to save a 0 value but actually ends up storing it as the default of 1: Jim Pingle
02:03 PM Bug #7886: PRIQ, priority of 0 cannot be saved in GUI, GUI attempts to save a 0 value but actually ends up storing it as the default of 1: I noticed that the GUI is now allowing me to save values higher than 7 for PRIQ! I also see that you can now save a v... jake xanaro
01:52 PM Feature #8976 (Resolved): Status -> Traffic Graph, provide SAVE button for graph settings.: I like to view the traffic graph often as a quick way to view which host is using bandwidth and how much.
Howe... jake xanaro
10:30 AM pfSense Packages Bug #8909: tinc package makes /rc.newwanip looping forever: I temporary blocked the loop by disabling the OPT interface associated with tap0:... Andrew Hotlab
07:40 AM Bug #8603: PPP WANs do not work on VLANs on current snapshots: Yes, the fix is in release and it is currently working on our test systems. If you still have a problem, start a thre... Jim Pingle
02:40 AM Bug #8603: PPP WANs do not work on VLANs on current snapshots: Did this fix made it in the 2.4.4 release? I just upgraded to 2.4.4 stock and it looks like i’m hitting this issue, m... Peter Bosgraaf
01:35 AM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": For the original issue,... Matt _
12:15 AM Bug #2218: CARP VIPs can become master too early at boot time: Hi there, is see the point of @Seb A,. I am prepare two pfsense with CARP IPs for our data center. We made some tests... Black BlackBinary

09/28/2018

11:35 PM pfSense Packages Bug #8975: c-icap not starting - ICAP Inteface for Squid and ClamAV integration: Just some additional feedback.
I reinstalled squid, did not work.
then I uninstalled squid.
then I installed squid... Marcel Beerli
09:48 PM pfSense Packages Bug #8975 (Not a Bug): c-icap not starting - ICAP Inteface for Squid and ClamAV integration: There is no longer a general problem here. Read the last comment on #8832 again.
Uninstall the package and then in... Jim Pingle
09:43 PM pfSense Packages Bug #8975 (Not a Bug): c-icap not starting - ICAP Inteface for Squid and ClamAV integration: Running on PC Engines APU2, pfSense 2.4.4, squid 0.4.44_5 and squidGuard 1.16.17_3
Service c-icap is not starting ... Marcel Beerli
09:23 PM pfSense Packages Bug #8945: SquidGuard ACL blacklists: Any indication when this is getting fixed?
Its in PackageProxy filter SquidGuard: Common Access Control List (ACL)Co... Marcel Beerli
03:00 PM Feature #8947: Cron based ACB option: And the ability to use both scheduled and automatic backup after each change. Chris Macmahon
02:59 PM Feature #8947: Cron based ACB option: Would be more intuitive if the configuration options for scheduling backups used dropdowns or some other input method... Anonymous
01:45 PM Bug #8974 (Feedback): system_advanced_admin.php: Inconsistent placement of ssh options and lack of initialization: Applied in changeset commit:ec439957ce0f70778d89f57eba9553e2afba874a. Jim Pingle
01:38 PM Bug #8974: system_advanced_admin.php: Inconsistent placement of ssh options and lack of initialization: A few other notes:
* @$config['system']['sshd']@ appears to be redundant, the setting stored under @$config['syste... Jim Pingle
10:44 AM Bug #8974 (Resolved): system_advanced_admin.php: Inconsistent placement of ssh options and lack of initialization: The @sshdkeyonly@ setting is a bit confused about where it should be. Some references have $config['system']['ssh'] a... Jim Pingle
11:22 AM Bug #8967: PHP error in DNS Forwarder when config has no dnsmasq settings: Typo fix for this as well commit:f31ef5aa0e777c236fb175778e63b9e26a9d2627 Jim Pingle
11:03 AM Bug #8868: multiple php errors on update: Jim Pingle wrote:
> If you saw these errors while still on 2.4.3, it's more likely due to an issue such as #8938 and... Petr Nosek
10:50 AM Bug #8971 (Not a Bug): filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: OK, so your issue is not with filterdns, and this is not a bug, it's a side effect of your real root issue.
We can... Jim Pingle
10:40 AM Bug #8971: filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: On my CE system running in a VM, /var/run/booting does not exist. filterdns did not show up in processes. when sav... Adrien Carlyle
09:33 AM Bug #8971 (Feedback): filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: I do not believe this is a widespread problem. In part due to the fact that if it were, we'd see a lot more feedback ... Jim Pingle
08:11 AM Bug #8971: filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: Adrien Carlyle wrote:
> I can add that I'm running 1 CE instance in a VM that appears to have the process running bu... Adrien Carlyle
08:07 AM Bug #8971: filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: So on my SG-3100, I tried to run the process manually and the following output happens. ... Adrien Carlyle
10:19 AM Bug #8973 (Resolved): Traffic not going to Limiter queues: This bug may be related to #8956
But it's a different situation...
To get around bug #8956 I just manually delete... Victor Preatoni
10:08 AM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": And to which other issue is it related?... Benjamin Rechsteiner
09:21 AM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": That's a different error than the others, and most likely a separate issue. Jim Pingle
09:19 AM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": i have the same problem since 2.4.3
my pfsense is running on bare metal
here a few logs:... Benjamin Rechsteiner
08:59 AM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: Renato Botelho
08:55 AM Todo #8898 (In Progress): Update strongswan to 5.7.1: Renato Botelho
08:55 AM Todo #8898: Update strongswan to 5.7.1: Renato Botelho
08:23 AM Bug #8910: DHCP default gateway undefined: The moment you give a user any control over 2, it starts trying to replace 3. 2 should just be completely hand-off au... Jim Pingle
08:20 AM pfSense Packages Bug #8832 (Resolved): c-icap for Squid 5.1 on 2.4.4 Developer not starting: Uninstall squid and then reinstall. If it still won't start, then it's not this issue. Start a new thread on the foru... Jim Pingle
08:08 AM Bug #8972 (Not a Bug): VLANs on LAN and no VLAN on WAN --> pfsense "crashes" respectivly not operable: This is most likely a hardware/chipset quirk on your environment and not a bug per se.
I run several boxes like th... Jim Pingle
02:35 AM Bug #8972: VLANs on LAN and no VLAN on WAN --> pfsense "crashes" respectivly not operable: Edit: Setting the network speed to a fixed value (100 half/full duplex or 1000 half/full duplex) on the ports at pfse... Peter Schovits
12:55 AM Bug #8972 (Not a Bug): VLANs on LAN and no VLAN on WAN --> pfsense "crashes" respectivly not operable: Maybe a bug, I don't know - found a solution too...
Hardware for pfsense (since 2.2.x):
Intel Celeron J1900 with ... Peter Schovits
06:12 AM pfSense Packages Bug #8966 (Resolved): Patches page uses GET instead of POST when performing actions: Renato Botelho
02:23 AM pfSense Packages Bug #8966: Patches page uses GET instead of POST when performing actions: It seems to be fixed now. Thanks for the quick turnaround. Anonymous
02:10 AM Bug #8964: IPsec async cryptography advanced setting - TCP traffic not passing through: Repeated the same tests with different combination of HW:
SG4860 <--> SG2440 with enabled Async crypto on both sid... Vladimir Lind

09/27/2018

10:20 PM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: upgraded to squid 0.4.44_5 but c-icap is still not starting. Marcel Beerli
08:39 PM Bug #8971: filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: I'm not too sure on that, I'm running an intel based system here at my house which has similar problems.
Actual... Adrien Carlyle
08:24 PM Bug #8971: filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: Adrien Carlyle wrote:
> I can add that I'm running 1 CE instance in a VM that appears to have the process running bu... Anonymous
08:21 PM Bug #8971: filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: I can add that I'm running 1 CE instance in a VM that appears to have the process running but it's filterdns process ... Adrien Carlyle
08:02 PM Bug #8971: filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: I can't reproduce this on my setup (2.4.4 running x64 under KVM)
I added a test host, added a rule that allowed it... Anonymous
06:21 PM Bug #8971 (Not a Bug): filterdns doesn't start after upgrade from 2.4.3 to 2.4.4: After upgrading firewalls to 2.4.4 I'm noticing that any FW rules which use an alias with an FQDN name are not workin... Adrien Carlyle
07:32 PM pfSense Packages Bug #8966: Patches page uses GET instead of POST when performing actions: Yeah that was due to a syntax error I made in the previous commit. Fix has been pushed, update and try again Jim Pingle
06:42 PM pfSense Packages Bug #8966: Patches page uses GET instead of POST when performing actions: I'm not entirely sure this related, but I just upgraded a system to 2.4.4 which picked up the new System Patches v1.2... Anonymous
01:36 PM pfSense Packages Bug #8966 (Feedback): Patches page uses GET instead of POST when performing actions: Fixed in System Patches v1.2, which will show up shortly. Jim Pingle
11:53 AM pfSense Packages Bug #8966 (Resolved): Patches page uses GET instead of POST when performing actions: When the patches page system_patches.php is used to apply or revert a patch, the link in the cookie trail area of tha... Mitch Claborn
04:15 PM Bug #8910: DHCP default gateway undefined: Behavior of 1 and 3 are clearly defined (i think), no argument there.
But 2 'automatic' still needs some informati... Pi Ba
03:38 PM Bug #8910: DHCP default gateway undefined: Pi Ba wrote:
> Control over 'gateway switching' ~= 'automatic' is done by the order of the list. Not having control ... Jim Pingle
03:26 PM Bug #8910: DHCP default gateway undefined: Control over 'gateway switching' ~= 'automatic' is done by the order of the list. Not having control over that order ... Pi Ba
03:04 PM Bug #8910: DHCP default gateway undefined: Pi Ba wrote:
> Jim Pingle wrote:
> > Automatic should just be like the old gateway switching option going down the ... Jim Pingle
02:54 PM Bug #8910: DHCP default gateway undefined: Jim Pingle wrote:
> Automatic should just be like the old gateway switching option going down the list of gateways l... Pi Ba
02:32 PM Bug #8910: DHCP default gateway undefined: But that's what the gateway group is for. I don't see any good reason to have two mechanisms to do the same thing. Th... Jim Pingle
02:25 PM Bug #8910: DHCP default gateway undefined: I'm sure you remember the old 'gateway switching' option? It used the gateways in order they were listed as well.. (w... Pi Ba
01:59 PM Bug #8910: DHCP default gateway undefined: There shouldn't be an "order of importance" on the list of gateways though. That's what the default gateway group is ... Jim Pingle
01:44 PM Bug #8910: DHCP default gateway undefined: I'm not intending things to be 'alphabetically', i want them to be in the order of importance. As for saving things, ... Pi Ba
01:19 PM Bug #8910: DHCP default gateway undefined: But moving something to the top by ordering it alphabetically is a kludge. I don't think we should go out of our way ... Jim Pingle
12:46 PM Bug #8910: DHCP default gateway undefined: Forgot to 'watch' this issue, so replying a little late (thanks for the github question/copy i did get notified by).
... Pi Ba
03:43 PM Bug #8970 (Resolved): Queues Menu item ends with ":": At least in the German translation, the Status -> Queues Items (Warteschlangen) ends with a : sign. I would expect it... Flole Systems
03:06 PM Bug #8969 (Rejected): pfSense has detected a crash report or programming bug: Not enough info here. Probably you have hit an issue with pfBlockerNG-devel -- see https://forum.netgate.com/topic/13... Jim Pingle
03:03 PM Bug #8969 (Rejected): pfSense has detected a crash report or programming bug: After upgrade to version 2.4.4-RELEASE (amd64) appear errors:
Crash report begins. Anonymous machine information:... Dragomir Ananiev
02:29 PM Bug #8934 (Feedback): IPv6 fragment reassembly regression following FreeBSD-SA-18:10.ip: Patches imported from FreeBSD releng/11.2 into RELENG_2_4_4 Renato Botelho
02:21 PM pfSense Packages Bug #8968 (Duplicate): Proxy filter SquidGuard - not loading properly: ACL issue is a duplicate of #8945
icap issue is a duplicate of #8832 Jim Pingle
02:19 PM pfSense Packages Bug #8968 (Duplicate): Proxy filter SquidGuard - not loading properly: Hi,
running with pfsense 2.4.4 with squid 0.4.44_4 and squidguard 1.16.17_3
when Squid Guard Proxy Filter - Group A... Marcel Beerli
12:55 PM pfSense Packages Bug #8945: SquidGuard ACL blacklists: I had to rollback too... lahoucine El kamel
12:45 PM Bug #8967 (Feedback): PHP error in DNS Forwarder when config has no dnsmasq settings: Applied in changeset commit:651b4dcb4ed2dc1404cd532a2a53190e77cbcbc4. Jim Pingle
12:41 PM Bug #8967 (Resolved): PHP error in DNS Forwarder when config has no dnsmasq settings: https://www.reddit.com/r/PFSENSE/comments/9je1ar/244_php_error/... Jim Pingle
09:35 AM Feature #8965 (Resolved): GUI interface for switchable security mitigations: With the constellation of tunable workarounds for hardware-based security bugs, it might be helpful to build a table ... Ansley Barnes
06:55 AM Feature #8926 (Feedback): WOL page selects first interface alphabetically, instead of LAN: PR merged Renato Botelho
06:54 AM Bug #7609 (Feedback): NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: PR merged Renato Botelho
06:52 AM Bug #8924 (Feedback): FreeDNS Dynamic DNS update needs IP: PR merged Renato Botelho
06:51 AM Bug #8914 (Feedback): Gateway switch events cause a huge amount of log spew: PR merged Renato Botelho
02:25 AM Bug #8964 (New): IPsec async cryptography advanced setting - TCP traffic not passing through: Test setup:
Windows <-> SG2220 2.4.4-rel <---IPSEC---> SG3100 2.4.4-rel <-> Windows
IPsec (tunnel mode) with fo... Vladimir Lind
01:24 AM Bug #8963: 2.4.4 Limiters don't work after CARP fail-over: For those of us on WAN connections who pay for bandwidth consumed over our limit, bursting to my WAN circuit's 300Mbp... James Cornett
01:12 AM Bug #8963 (New): 2.4.4 Limiters don't work after CARP fail-over: Limiters are not applied when using HA, states are being synced with pfsync, and a CARP fail over occurs.
When Fir... James Cornett

09/26/2018

06:43 PM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": Just updated to 2.4.4 and lost IPv6...
I am also running pfsense as a Gen2 hyper-v guest.
My NIC is an Intel I... Kevin Morse
07:21 AM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": Hyper-V appears to be the common factor but as far as I can see, nobody has attempted to take the exact same config/e... Jim Pingle
12:47 AM Bug #8489: DHCPv6 Client Failure to Initialize with "Do not wait for RA": More people get this bug now in the 2.4.4 release. It seems the common part is that pfsense is running as hyper-v VM.... Moritz Hartwig
03:25 PM Bug #8962 (Feedback): firewall_rules.edit.php: Double quotes in Gateway description cause blank gateway drop-down: Applied in changeset commit:157aff9e256aa235ba68ccc2168c61fc61e90072. Jim Pingle
03:15 PM Bug #8962 (Resolved): firewall_rules.edit.php: Double quotes in Gateway description cause blank gateway drop-down: A gateway description with double quotes breaks the JSON used to form the gateway drop-down options, resulting in a b... Jim Pingle
02:55 PM Bug #8893 (Feedback): Outbound NAT page unnecessarily strips underscores from alias names: PR merged Renato Botelho
02:54 PM Bug #8953 (Feedback): Status > Gateways shows incorrect info: PR merged Renato Botelho
01:22 AM Bug #8953: Status > Gateways shows incorrect info: PR:
https://github.com/pfsense/pfsense/pull/3992 → luckman212
01:09 AM Bug #8953 (Resolved): Status > Gateways shows incorrect info: I found a bug and some cobwebs in *status_gateways.php*
The bug causes the *Monitor IP* to displayed incorrect inf... → luckman212
02:42 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: Johannes Wanink wrote:
>Thx!
>Tried the binary, and looks good! Seems to be working.
> (Binary is much bigger than... Tim Balmer
02:25 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: Tim Balmer wrote:
> I now replaced the default igmpproxy binary on pfSense 2.4.4 by this version https://pkg.opnsens... Johannes Wanink
12:52 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: I now replaced the default igmpproxy binary on pfSense 2.4.4 by this version https://pkg.opnsense.org/FreeBSD:11:amd6... Tim Balmer
09:18 AM Bug #8935: IGMP Proxy not starting with PPPoE IF: Alexandre Paradis wrote:
> Vlan/sub-interface are also affected.
Same issue with "bridge" interface.
benoit moreau
01:47 PM Bug #8961 (Duplicate): IPSEC issues with Asynchronous Cryptography: With the release of 2.4.4 we enabled `Asynchronous Cryptography` by default, we are seeing cases where traffic does n... Chris Macmahon
12:08 PM Bug #8949 (Resolved): DHCPv6 Server Network Booting fails to be set: Renato Botelho
11:56 AM Bug #8949: DHCPv6 Server Network Booting fails to be set: I have confirmed that this now works as expected. Thank you for the quick fix. Andrew Stuart
10:50 AM Bug #8949 (Feedback): DHCPv6 Server Network Booting fails to be set: Applied in changeset commit:e46ea2c60986c62371966025ab3068466217fefa. Anonymous
08:42 AM Bug #8949 (Assigned): DHCPv6 Server Network Booting fails to be set: Anonymous
11:34 AM Bug #8957: Prefix ID for IPv6 tracked interfaces cannot be set: Ahh.. Sorry for the false bug. Trying to set this all up and I missed it. Jason McCormick
06:47 AM Bug #8957 (Not a Bug): Prefix ID for IPv6 tracked interfaces cannot be set: That means you did not set the WAN *DHCPv6 Prefix Delegation size* properly, it may be at the default of /64 when it ... Jim Pingle
06:43 AM Bug #8957 (Not a Bug): Prefix ID for IPv6 tracked interfaces cannot be set: After a painful, ultimately unsuccessful in-place upgrade to 2.4.4 from 2.4.3-p1, I needed to rebuild my config by ha... Jason McCormick
11:31 AM Bug #8960: VGA console won't boot in 2.4.4 upgrade - Bug: Please read the upgrade guide notes for 2.4.4, specifically the last few points:
https://www.netgate.com/docs/pfse... Jim Pingle
10:59 AM Bug #8960 (Resolved): VGA console won't boot in 2.4.4 upgrade - Bug: when upgrading to 2.4.4 the VGA console freezes, the system still boots in the background.
you can use webconfigurat... Christopher Kurilla
10:30 AM Feature #8947: Cron based ACB option: Applied in changeset commit:a1aa91dec887ba929be08c993170803396a669b2. Anonymous
10:28 AM Feature #8947 (Feedback): Cron based ACB option: Anonymous
10:27 AM Feature #8947 (In Progress): Cron based ACB option: Anonymous
09:15 AM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: Alexander Müller wrote:
> I found following workaround:
>
> * create whitelist file for sshguard following sshgua... Michael Reardon
05:39 AM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: I found following workaround:
* create whitelist file for sshguard following sshguards file format (https://www.ss... Alexander Müller
04:35 AM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: Well... I'm using the default check_ssh plugin of nagios. This plugin connects to the ssh server and checks before au... Nicki Messerschmidt
08:56 AM Bug #8959 (Resolved): Restoring a <2.4.4 config with legacy gold auto backup package re-adds the menu option under Diagnostics: I was forced to do a fresh install of 2.4.4 as updating packages before the base OS broke my system. After a fresh in... Matthew Drury
08:48 AM Feature #8958: Dynamic DNS - CARP Address: Eg:
Scenario with two firewalls in HA
Subnet x.x.x.224 / 27
CARP address: x.x.x.230 / 27
pfsense 1:
WAN ad... Michele D'Alessio
08:34 AM Feature #8958: Dynamic DNS - CARP Address: Currently the WAN also has the static address
In any case, I update the Dynamic from the PFSense so if I had to chan... Michele D'Alessio
08:32 AM Feature #8958: Dynamic DNS - CARP Address: In High Available it is useful when you want to update / modify DNS from a single point without having to move to the... Michele D'Alessio
08:24 AM Feature #8958 (Rejected): Dynamic DNS - CARP Address: CARP addresses will always be static. What purpose will this serve?
If it's for Multi-WAN failover, pick the CARP ... Jim Pingle
08:19 AM Feature #8958 (Rejected): Dynamic DNS - CARP Address: In the Dynamic DNS section It's not possible to update an address with the CARP address, IT's only possible to update... Michele D'Alessio
08:20 AM Bug #7605 (Duplicate): State Killing on Gateway Success: Duplicate of #855 Jim Pingle
07:54 AM Bug #7605: State Killing on Gateway Success: Just to reference the same issues / feature requests previously opened:
https://redmine.pfsense.org/issues/855
ht... Jo S
08:20 AM Feature #855: Ability to selectively kill states on gateway recovery: See also: #7605 Jim Pingle
07:24 AM Bug #8955 (Duplicate): Limiters after updating to 2.4.4: Duplicated by #8956 -- It was entered after this one, but has better details. Jim Pingle
02:07 AM Bug #8955 (Duplicate): Limiters after updating to 2.4.4: in 2.4.3 was created limiters with queues.
After updating to 2.4.4 there are no queues in the limiters.
just add th... Dmitry Ivanov
07:19 AM Bug #8954: hn0: driver does not support altq: See also: #7869 Jim Pingle
01:59 AM Bug #8954 (Resolved): hn0: driver does not support altq: hyper-v 2016
gen1 and gen2 Dmitry Ivanov
06:37 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: lahoucine El kamel wrote:
> Hello,
>
> When editing the Squid Guard Proxy Filter I noticed that the settings afte... Helio Candido
06:00 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: lahoucine El kamel wrote:
> Hello,
>
> When editing the Squid Guard Proxy Filter I noticed that the settings afte... Charles Melo
01:43 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: Hello,
I have updated Squid and the ACL issue is still there.
When editing the Squid Guard Proxy Filter I noticed... lahoucine El kamel
03:22 AM Bug #8956 (Resolved): traffic shaper after upgrade to 2.4.4 not showing queue under each limiter: traffic shaper after upgrade to 2.4.4 not showing queue under each limiter
i tried to create test limiter and added ... khaled osama
02:43 AM Feature #8936: QuickAssist in pfSense: I can't see any mention of QuickAssist on redmine. John S
01:29 AM Bug #7869: Hyper-v vm traffic shaper error: hn0: driver does not support altq: same error (hn0: driver does not support altq) after upgrade to 2.4.4 Dmitry Ivanov

09/25/2018

05:32 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: Vlan/sub-interface are also affected.
I had to use a physical interface to make igmp proxy to work.
do we h... Alexandre Paradis
03:52 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: Not sure this is the same issue as I reported in #8950, because in that bug IGMPProxy is not crashing (it runs untill... Tim Balmer
03:47 PM Bug #8935: IGMP Proxy not starting with PPPoE IF: See also: #8950 (has more logs) Jim Pingle
05:28 PM Feature #8952 (Resolved): Dynamic DNS Copy Button: I request a Button to copy a DNS entry in the Dynamic DNS (for both, RFC 2136 and Dynamic DNS Clients) Function. When... Flole Systems
05:25 PM Bug #8951 (Duplicate): Dynamic DNS shows Hostname that is not define: If #8948 is not a bug, then this is:
In the overview there is a Hostname shown when you write one into the hostnam... Flole Systems
03:47 PM Bug #8950 (Duplicate): IGMPProxy broken after 2.4.4 upgrade: Duplicate of #8935 Jim Pingle
03:34 PM Bug #8950 (Duplicate): IGMPProxy broken after 2.4.4 upgrade: After upgrade from 2.4.3-p1 to 2.4.4 IGMPProxy (which is upgraded during the 2.4.4 upgrade) seems to be broken. When ... Tim Balmer
03:42 PM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: There isn't a way to set a whitelist currently. But if your monitoring system relies on a probe that is triggering an... Jim Pingle
03:11 PM Bug #8864: SSH Guard Sensitivity/Whitelist on 2.4.4: I just want to chime in on this. I just updated my pfsense to 2.4.4 and very soon after I got notifications from my n... Nicki Messerschmidt
03:27 PM Bug #8949 (Resolved): DHCPv6 Server Network Booting fails to be set: Checking "Enable Network Booting" under "Display Advanced" and clicking Save doesn't record ... Andrew Stuart
02:42 PM Bug #8948: Dynamic NS Custom Option is missing Hostname Field: Should I open a Bug then instead, that in the overview there is a Hostname shown when you write one into the hostname... Flole Systems
02:39 PM Bug #8948 (Not a Bug): Dynamic NS Custom Option is missing Hostname Field: With custom types you form the entire query in the Update URL, it doesn't do parameter substitution. Jim Pingle
02:00 PM Bug #8948 (Not a Bug): Dynamic NS Custom Option is missing Hostname Field: When I add a custom URL for the Dynamic DNS Updater, I am unable to set the Hostname. Instead, I have to set it befor... Flole Systems
01:56 PM Feature #8947 (Resolved): Cron based ACB option: Provide a way to perform config backups via cron instead of on every change. Anonymous
01:54 PM Bug #8933: diagnostics -> backup/restore -> reinstall packages hangs: How should I test this? Florian Apolloner
01:53 PM Bug #8933 (Feedback): diagnostics -> backup/restore -> reinstall packages hangs: Fixed in updater version 0.54 Anonymous
06:43 AM Bug #8933 (In Progress): diagnostics -> backup/restore -> reinstall packages hangs: Anonymous
01:52 PM pfSense Packages Bug #8832 (Feedback): c-icap for Squid 5.1 on 2.4.4 Developer not starting: This should be fixed now. Update the squid package and it should pick up the c-icap update and then work as expected.... Jim Pingle
11:47 AM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: Attached is a patch to fix the c-icap FreeBSD port default config to use the correct current syntax. Jim Pingle
10:39 AM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: The upstream port is _not_ fine. See the file I linked. The FreeBSD port is explicitly adding the ListenAddress direc... Jim Pingle
10:33 AM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: Hi Jim,
the guy from the mailing list is me.
The "Listen" directive was removed from 0.4 to 0.5.
Upstream port... Michael M
12:29 PM Bug #8429: radvd/IPv6 broken in 2.4.3 when using a LAN bridge: This is still happening with 2.4.4 when using ue0 (USB ethernet) as the LAN interface.
ioctl(SIOCGIFMEDIA) failed on... TJ Synkral
12:01 PM Bug #8165 (Closed): Fragmented at source IPv6 packets (UDP + ICMP Ping) are not forwarded / v2.4.2 AMD64: Luiz Souza
06:51 AM Bug #8165 (Resolved): Fragmented at source IPv6 packets (UDP + ICMP Ping) are not forwarded / v2.4.2 AMD64: Fixed in 2.4.4 as reported by original submitter Renato Botelho
06:29 AM Bug #8165: Fragmented at source IPv6 packets (UDP + ICMP Ping) are not forwarded / v2.4.2 AMD64: Update - 25th September 2018 - applied upgrade to pfSense 2.4.4 which is built on FreeBSD v11.2. Confirmed that the ... Mike Nichols
11:09 AM Feature #8946 (Duplicate): Add field to show IA_PD to DHCP6 Server page: When DHCP6 is enabled on an interface and Prefix Delegation is requested, there is nowhere in the GUI to see:
* wh... → luckman212
08:43 AM Bug #8938 (Feedback): Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: pfSense-upgrade 0.53 will prevent users from installing / upgrading additional packages when there is a new major PHP... Renato Botelho
08:12 AM Bug #8938: Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: See also: #8944 Jim Pingle
08:12 AM pfSense Packages Bug #8944 (Duplicate): attemp of installing pfblocker brakes system on 2.4.3: Duplicate of #8938 Jim Pingle
04:47 AM pfSense Packages Bug #8944 (Duplicate): attemp of installing pfblocker brakes system on 2.4.3: Any attempt to install pfblocker on clean 2.4.3-p1 breaks system.
Errors during installation:... Constantine Kormashev
08:12 AM Bug #8868: multiple php errors on update: If you saw these errors while still on 2.4.3, it's more likely due to an issue such as #8938 and not these errors spe... Jim Pingle
01:20 AM Bug #8868: multiple php errors on update: Jim Pingle wrote:
> In nearly all cases the messages during the upgrade are harmless. There may be some actual probl... Petr Nosek
08:10 AM Bug #8941 (Not a Bug): After upgrading to 2.4.4, my primary gateway lost connectivity when used with Quad9 DNS: Not enough here for a valid bug report. Your WAN connectivity wouldn't have any correlation to DNS.
Start a post o... Jim Pingle
01:57 AM Bug #8941 (Not a Bug): After upgrading to 2.4.4, my primary gateway lost connectivity when used with Quad9 DNS: Hi there.
After upgrading to 2.4.4 I suddenly lost all internet access. However, I noticed that my secondary gate... Edvard Holst
08:08 AM Todo #8942 (Duplicate): DHCP config: Duplicate of #8849 Jim Pingle
03:36 AM Todo #8942: DHCP config: *Is it possible to adding own lines to the configuration file of the dhcp server directly in the configuration of the... k volk
03:32 AM Todo #8942 (Duplicate): DHCP config: In some cases, you may need to add additional partitions to the dhcpd configuration file. Now I do it through editing... k volk
07:39 AM pfSense Packages Bug #8945: SquidGuard ACL blacklists: The i-cap issue is covered under #8832 Jim Pingle
07:33 AM pfSense Packages Bug #8945 (Resolved): SquidGuard ACL blacklists: Hello,
When editing the Squid Guard Proxy Filter I noticed that the settings after saving are not loaded.
Example... lahoucine El kamel
04:51 AM Feature #8943: Additions to wake on lan section: *3) it would be very convenient to divide the computers into groups in this menu in order to switch on the computers ... k volk
04:17 AM Feature #8943 (Resolved): Additions to wake on lan section: 1) In the WOL section I have about 200 lines. In order to add another entry (PC) you need to scroll down the entire l... k volk

09/24/2018

10:54 PM pfSense Packages Bug #8940 (Duplicate): ICAP Inteface for Squid and ClamAV integration - service not starting: Duplicate of #8832 Jim Pingle
10:18 PM pfSense Packages Bug #8940 (Duplicate): ICAP Inteface for Squid and ClamAV integration - service not starting: After the upgrade I had a crash report but it seemed to run. But on a new restart of the pcengines APU2 it would not ... Marcel Beerli
10:53 PM Bug #8915: After updating to 2.4.4-rc an empty crash report is shown: If it wasn't empty, then it was not this issue. This issue is specifically about an empty crash report. Jim Pingle
09:58 PM Bug #8915: After updating to 2.4.4-rc an empty crash report is shown: Just did the upgrade from 2.4.3-1 to 2.4.4 on a PC Engines APU2 and had this issue as well. Not an empty crash report... Marcel Beerli
09:30 PM Bug #8939 (Not a Bug): Error upgrading Netgate SG-3100 to 2.4.4: Harmless errors from the PHP 5.6 to 7.2 upgrade process. This was mentioned in the release announcement, the release ... Jim Pingle
09:21 PM Bug #8939 (Not a Bug): Error upgrading Netgate SG-3100 to 2.4.4: Error file generated after upgrade from 2.4.3-RELEASE-p1 to 2.4.4 on Netgate SG-3100 gateway device. The upgrade appe... Kenton Clyde
09:19 PM Bug #8938 (Resolved): Installation of a package that depends on php72 on a version of pfSense older than 2.4.4-RELEASE breaks the pfSense install: Install pfSense 2.4.3 and upgrade to 2.4.3_1, go to Available packages and see that the acme package version 0.3.2_3 ... Anonymous
08:05 PM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: If the FreeBSD port is wrong, though, it should be fixed upstream. Then we wouldn't need to make any changes.
Some... Jim Pingle
07:17 PM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: Suggested fix: https://github.com/stephenw10/FreeBSD-ports/commit/d21954ad3b4e44e4df6e43e88ac22d589d8cf1b7 Steve Wheeler
07:09 PM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: This is a problem in the FreeBSD c-icap port. The port itself contains a patch that adds the ListenAddress line.
h... Jim Pingle
04:33 PM pfSense Packages Bug #8832: c-icap for Squid 5.1 on 2.4.4 Developer not starting: Confirmed the above fix is still functional in 2.4.4r but the default package is still broken.
As a workaround you... Steve Wheeler
08:02 PM Bug #8831: Radvd causes latency spikes: This still exists in 2.4.4 Flole Systems
07:50 PM Bug #8937 (Resolved): LAGG shows wrong ether address: I am using a LACP Bond over 4 Interfaces. When I look into the LAGG configuration, I am seeing the ether instead of h... Flole Systems
06:02 PM Feature #8936 (Duplicate): QuickAssist in pfSense: Please add QuickAssist support to pfSense.
It has been coming soon for a while now and is even listed on SG-5100 pro... John S
03:55 PM Bug #8933: diagnostics -> backup/restore -> reinstall packages hangs: I can reproduce this here on a couple different systems. I don't see any sign of @pkg@ running or any log entries sug... Jim Pingle
03:46 PM Bug #8933 (Resolved): diagnostics -> backup/restore -> reinstall packages hangs: Trying to reinstall all system packages via diagnostic hangs at "Please wait while the update system initializes" in ... Florian Apolloner
03:52 PM Bug #8935 (Resolved): IGMP Proxy not starting with PPPoE IF: After upgrade from 2.4.3 to 2.4.4 IGMP Proxy will not start anymore.
Stops with following Error:... Johannes Wanink
03:50 PM Bug #8934 (Resolved): IPv6 fragment reassembly regression following FreeBSD-SA-18:10.ip: Need to pull in the patches from r338406
See https://lists.freebsd.org/pipermail/freebsd-net/2018-September/051681... Jim Pingle
03:45 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: Ah, I forgot that it automatically probes the "latest stable" repo which automatically points you to 2.4.4/RELENG_2_4... Jim Pingle
03:44 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: I can confirm that upgrading to 2.4.4 fixes it, as well as downgrading haproxy to 0.59_9 via: pkg add -f https://file... Florian Apolloner
03:41 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: I agree "it shouldnt be". But i'm seeing my 2.4.3 box offer to install haproxy 0.59_11 .. which at least isn't availa... Pi Ba
03:33 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: It shouldn't be, they are on different branches (RELENG_2_4_3 vs RELENG_2_4_4), the commit may have been manually che... Jim Pingle
03:17 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: It seems like 2.4.3 is automatically pulling in the 2.4.4 repository files..?? Even though the 2.4.3 files still exis... Pi Ba
02:09 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: Well it sounds as if https://github.com/pfsense/FreeBSD-ports/pull/555#discussion_r212271252 got into 2.4.3? Florian Apolloner
02:04 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: No, each release has its own branch. It's possible that an edit intended to only stay on 2.4.4 was picked back to 2.4... Jim Pingle
02:03 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: Are you saying that packages are served from one repo only and will more or less immediately break if a new release o... Florian Apolloner
01:58 PM pfSense Packages Bug #8932: Upgrade to HaProxy 0.59_11 fails on 2.4.3: Upgrade to 2.4.4 and try again. Jim Pingle
01:52 PM pfSense Packages Bug #8932 (Resolved): Upgrade to HaProxy 0.59_11 fails on 2.4.3: I cannot upgrade to haproxy 0.59_11 because getarraybyref() no longer exists:... Florian Apolloner
01:49 PM Bug #8868: multiple php errors on update: In nearly all cases the messages during the upgrade are harmless. There may be some actual problems discovered after ... Jim Pingle
11:47 AM Bug #8868: multiple php errors on update: Renato Botelho wrote:
> There is no easy way to prevent these warnings to show up on console. We are going to alert ... Petr Nosek
09:36 AM pfSense Packages Bug #8931 (Feedback): Service Watchdog PHP Errors: Fix committed in Service Watchdog pkg version 1.8.6, which will be up shortly after 2.4.4-RELEASE Jim Pingle
08:07 AM Bug #4584: Static Mapped clients on one LAN get a DHCP IP from another LAN even when Deny unknown clients is checked on the other LAN: Hi,
I would like to bring this bug from the grave.
This still applies in latest versions and it's definitely a bi... Jose Duarte
04:29 AM Bug #8925: IPv6 RA Prefix Doesn't Match Interface Prefix ID: Hi Jim,
Thanks for taking the time to try and reproduce this issue. I did create a forum issue last week (found he... Allen Balaj

09/23/2018

02:14 PM pfSense Packages Bug #8931: Service Watchdog PHP Errors: After hitting that uninstalling I'm unable to re-install:... Steve Wheeler
01:57 PM pfSense Packages Bug #8931 (Resolved): Service Watchdog PHP Errors: PHP errors
PHP ERROR: Type: 1, File: /usr/local/pkg/servicewatchdog.inc, Line: 83, Message: Uncaught Error: ... Chris Linstruth
01:46 PM Bug #7645: SG-1000 VLAN interfaces do not work without promisc mode: The symptoms may be similar but the issue is not the same. Post to the forum or pfSense subreddit to discuss in detail. Jim Pingle
01:45 PM Bug #7645: SG-1000 VLAN interfaces do not work without promisc mode: After forcing promisc on cpsw1 vlan routing starts working so it seems the same as the issue from the ticket.
I can ... Pawel Karoluk
01:24 PM Bug #7645: SG-1000 VLAN interfaces do not work without promisc mode: This specific issue was resolved over a year ago. If you are having an issue, it's not likely to be this problem.
... Jim Pingle
12:58 PM Bug #7645: SG-1000 VLAN interfaces do not work without promisc mode: Has this issue been resolved? I have the same problem in the latest stable version of my SG-1000:
2.4.3-RELEASE-p1... Pawel Karoluk
12:57 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: Just in case. So not see the issue on latest... Constantine Kormashev
12:15 AM Feature #8908: setting default gateway using lower Tier in case gateway group is set as default: Pi Ba wrote:
> You did 'apply' the new settings? (And refresh the page perhaps once after.?, it might lag a little b... Constantine Kormashev

09/22/2018

12:14 PM Bug #8925 (Not a Bug): IPv6 RA Prefix Doesn't Match Interface Prefix ID: I can't reproduce this here. I have three local interfaces all set to track WAN with index 0, 1, 2 from a /60 delegat... Jim Pingle

09/21/2018

10:57 PM Feature #8926: WOL page selects first interface alphabetically, instead of LAN: PR
https://github.com/pfsense/pfsense/pull/3989 → luckman212
12:27 AM Feature #8926 (Resolved): WOL page selects first interface alphabetically, instead of LAN: Small convenience fix. Currently when entering WOL page, the first interface (alphabetically) is selected. This is us... → luckman212
08:33 PM Feature #8929 (New): Scroll bar css dark theme: In my opinion the dark themes would be better if the white scroll bar would be changed to keep with the theme.
Addin... Logan Gilmore
03:10 PM Bug #8927 (Resolved): PFsense 2.4.4 FreeRadius and Captive Portal Quota Problems: Please I think the developers should look at the pfsense Captive Portal and FreeRadius Authentication very well. Apa... step network
01:11 PM Bug #8765 (Resolved): Per-user firewall rules for IPsec do not work: Looks good.
Added this to RADIUS user reply attributes:... Jim Pingle
07:53 AM Bug #8920 (Resolved): Adding a certificate to the first user (index 0) does not redirect back to user manager: Jim Pingle
07:53 AM Bug #8919 (Resolved): DHCP/DHPv6 Relay PHP Error on Save: Jim Pingle
07:19 AM Todo #7024 (Resolved): Replace copy of radius.inc by pear-Auth_RADIUS: The main move is done. Specific possible bugs found should have new tickets Renato Botelho
12:15 AM Bug #8925 (Not a Bug): IPv6 RA Prefix Doesn't Match Interface Prefix ID: To summarize:
I have one WAN and one LAN interface. The LAN (igb) interface also has an OPT interface for VLAN... Allen Balaj

09/20/2018

09:10 PM Bug #8527 (Resolved): VLANs losing parent interface on LAGG change: I tested this in 2.4.4r and was unable to replicate the issue.
I created and assigned a 3 interface LAGG and adde... Steve Wheeler
08:15 PM Bug #8910: DHCP default gateway undefined: Why would that matter now? What loss of functionality is there? You can select it specifically, or setup a gateway gr... Jim Pingle
06:30 PM Bug #8910: DHCP default gateway undefined: Sadly now i cant move my fiber gateway above the old adsl wan interface anymore.. I know i want it, but the gui wont ... Pi Ba
05:54 PM Feature #8908: setting default gateway using lower Tier in case gateway group is set as default: You did 'apply' the new settings? (And refresh the page perhaps once after.?, it might lag a little bit while setting... Pi Ba
04:56 PM Bug #8921: dpinger without .pid files.?. 'pending' status: This seems to fix it: https://github.com/pfsense/pfsense/pull/3987 Pi Ba
03:34 PM Bug #8921: dpinger without .pid files.?. 'pending' status: Added some logging:... Pi Ba
04:51 PM Bug #8911 (Resolved): Incorrect pkg repo set when restoring a config.: In a clean 2.4.4 saved the repo to give this config:... Steve Wheeler
02:57 PM Bug #8693: Filter rules error after deleting VIP: FYI, I just got caught by this same problem, also on 2.4.3-p1. However in my case it was on my WAN interface where I... Brian Candler
02:35 PM Bug #8924 (Resolved): FreeDNS Dynamic DNS update needs IP: FreeDNS currently is set for not needing ip, therefore pfSense just calls the update url with the user given record t... Lukas Wiest
01:14 PM Todo #6647: Enable Additional Security Headers: This 2016 presentation by two security researchers at Google might be useful when considering a CSP:
https://speak... James Vaughan
07:21 AM Bug #8923 (Duplicate): Very long boot delays if WAN interface address not available: Duplicate of #7604 which is fixed in 2.4.4. Jim Pingle
05:23 AM Bug #8923 (Duplicate): Very long boot delays if WAN interface address not available: This is with SG-3100 appliance, 2.4.3p1
For testing purposes, I want to restore config from XML where the WAN inte... Brian Candler
01:59 AM Bug #8922: Static routes set by system.inc for DNS gateway bindings are not removed: PR: https://github.com/pfsense/pfsense/pull/3985 → luckman212
01:42 AM Bug #8922 (Resolved): Static routes set by system.inc for DNS gateway bindings are not removed: I found some bugs with system.inc and system.php while troubleshooting a recent issue.
quick repro (2 different bu... → luckman212

09/19/2018

06:46 PM Bug #8921 (Resolved): dpinger without .pid files.?. 'pending' status: Using 2.4.4-RC (amd64) built on Tue Sep 18 17:52:29 EDT 2018
I've installed a new pfSense VM with 3 wan interfac... Pi Ba
06:44 PM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag: Thanks for this nifty feature. It works well in most cases.
I've seen an issue with some DNS-Providers which are n... Markus Barckmann
12:55 PM Bug #8920 (Feedback): Adding a certificate to the first user (index 0) does not redirect back to user manager: Applied in changeset commit:e2f60597df488cf073d14913d8a523cbb447f733. Jim Pingle
12:50 PM Bug #8920 (Resolved): Adding a certificate to the first user (index 0) does not redirect back to user manager: Edit the first user in the list on system_usermanager.php and add a certificate. When finishing the certificate add, ... Jim Pingle
11:55 AM Feature #6240: vxlan driver: +1 Manfred Bongard
11:35 AM Bug #8919 (Feedback): DHCP/DHPv6 Relay PHP Error on Save: Applied in changeset commit:124ca365049368460598621f962ad0b4f5459d7a. Jim Pingle
11:29 AM Bug #8919 (Resolved): DHCP/DHPv6 Relay PHP Error on Save: When saving on DHCP or DHCPv6 relay when the settings tag is empty (e.g. @<dhcrelay></dhcrelay>@), PHP errors are enc... Jim Pingle
09:40 AM pfSense Packages Bug #8918 (Feedback): OpenVPN Client Export: First user does not get username added to filename: Fix coming in OpenVPN Client Export package version 1.4.17_2 Jim Pingle
09:39 AM pfSense Packages Bug #8918 (Resolved): OpenVPN Client Export: First user does not get username added to filename: When attempting to export a VPN configuration for a user, if that user's ID is 0 then the username is not added to th... Jim Pingle
08:00 AM Bug #8910 (Resolved): DHCP default gateway undefined: This looks good on current snaps. The case I had that broke repeatedly before now comes up with the expected WAN gate... Jim Pingle
07:45 AM Bug #8880 (Resolved): [PHP7] warning on system_gateways.php and extra item in gateways table: Renato Botelho
07:34 AM pfSense Packages Bug #8916 (Not a Bug): Package Shellcmd doesn't install: > 2.4.4-DEVELOPMENT (amd64)
> built on Tue Sep 04 10:04:12 EDT 2018
> FreeBSD 11.2-RELEASE-p2
That snapshot is v... Jim Pingle
07:22 AM Bug #8912: User Certificate error: It worked after a complete shutdown. Hamid B

09/18/2018

10:49 PM pfSense Packages Bug #8904: Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: Added *Shellcmd package* functionality to *pfBlockerNG-devel* here:
https://github.com/pfsense/FreeBSD-ports/pull/56... BBcan177 .
09:16 AM pfSense Packages Bug #8904 (Feedback): Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: A previous fix to shellcmd to address PHP errors changed it from using references to using a copy of the config, whic... Jim Pingle
09:29 PM pfSense Packages Bug #8916 (Not a Bug): Package Shellcmd doesn't install: 2.4.4-DEVELOPMENT (amd64)
built on Tue Sep 04 10:04:12 EDT 2018
FreeBSD 11.2-RELEASE-p2
PHP ERROR: Type: 1, F... BBcan177 .
04:45 PM Bug #8910 (Feedback): DHCP default gateway undefined: Applied in changeset commit:51c3546dd77b9efbd53ace478b991ea530bc0a98. Renato Botelho
02:18 PM Bug #8910 (In Progress): DHCP default gateway undefined: Renato Botelho
06:33 AM Bug #8910 (Resolved): DHCP default gateway undefined: If you have a DHCP dynamic gateway set as the default in 2.4.3 you may or may not have an entry for it in the <gatewa... Steve Wheeler
04:43 PM Bug #8905: status_logs_settings.php PHP errors on 2.4.4 snapshots: Perfect. That one liner fixes the issue I saw.
Jim, thanks for the quick fix!
Steve, thanks for the QA check! Jason Unovitch
03:53 PM Bug #8905 (Resolved): status_logs_settings.php PHP errors on 2.4.4 snapshots: Tested with an older version of 2.4.4 and was able to reproduce the error. Upgraded to 2.4.5 current and no longer se... Anonymous
09:10 AM Bug #8905 (Feedback): status_logs_settings.php PHP errors on 2.4.4 snapshots: Applied in changeset commit:508c66ace779a6021b217d055b53587fdb021fec. Jim Pingle
09:07 AM Bug #8905 (In Progress): status_logs_settings.php PHP errors on 2.4.4 snapshots: ...and as soon as I posted that, I managed to reproduce it with an empty syslog section here. The patch did fix it fo... Jim Pingle
08:58 AM Bug #8905: status_logs_settings.php PHP errors on 2.4.4 snapshots: I still can't reproduce that here but can you try the attached patch? Apply it either by making the edit by hand or u... Jim Pingle
04:37 PM Bug #8913 (Resolved): system_update_settings.php - PHP Error: Tried on latest with gitsync and no errors seen when toggling the disable dashboard check. Moving to resolved. Anonymous
01:15 PM Bug #8913 (Feedback): system_update_settings.php - PHP Error: Applied in changeset commit:30213bb09a6be9769352700e9bdf32f8be6f9b61. Jim Pingle
01:13 PM Bug #8913 (In Progress): system_update_settings.php - PHP Error: Jim Pingle
12:49 PM Bug #8913 (Resolved): system_update_settings.php - PHP Error: Getting PHP Error when I try disabling the dashboard check under System > Update > Update Settings.
Running 2.4.4 ... milk teeth
02:53 PM Bug #8915 (Resolved): After updating to 2.4.4-rc an empty crash report is shown: In some cases a crash report is presented at first login after upgrading but the report contains no crash data and no... Steve Wheeler
02:22 PM Bug #8868 (Not a Bug): multiple php errors on update: There is no easy way to prevent these warnings to show up on console. We are going to alert users about it in release... Renato Botelho
02:10 PM Bug #8914 (Resolved): Gateway switch events cause a huge amount of log spew: When a gateway failure/defgw switch event occurs, there seem to be some code paths that get iterated over dozens of t... → luckman212
11:40 AM Bug #8911 (Feedback): Incorrect pkg repo set when restoring a config.: Applied in changeset commit:0430b1b4ea7de0ce5d10b202af218140c59b9ecd. Renato Botelho
08:29 AM Bug #8911 (Resolved): Incorrect pkg repo set when restoring a config.: When restoring a config file from an older version of pfSense into a newer version it's possible to end up with the p... Steve Wheeler
11:33 AM Bug #8912 (Not a Bug): User Certificate error: Something in your config or parameters is incorrect, but more importantly, you are several versions out of date. Upda... Jim Pingle
11:31 AM Bug #8912 (Not a Bug): User Certificate error: Hello,
I'm trying to create a new user for VPN access, I have tried creating cert within user creation and from cert... Hamid B
11:28 AM Todo #8851: Change default CA/Cert action to "Create an internal...": Thanks, looks good to me, PR merged. Jim Pingle
11:17 AM Todo #8851: Change default CA/Cert action to "Create an internal...": on RC 2.4.4.r.20180917.0837 - there was a glitch with this. I created PR#3982 to fix:
https://github.com/pfsense/pfs... → luckman212
05:51 AM pfSense Packages Bug #8909 (New): tinc package makes /rc.newwanip looping forever: I just realizd that each time the tincd(8) daemon is started, pfSense detects the new IP address on its dedicated int... Andrew Hotlab
12:57 AM Feature #8908 (Closed): setting default gateway using lower Tier in case gateway group is set as default: *Current behavior.* I have 3 GW and create GW group from 2 them with different Tiers. E.g. GW3 is marked as @(default... Constantine Kormashev
12:35 AM Bug #8218: Changing an interface name will break the manual created gateway-group: Do not observe the issue on 245-dev... Constantine Kormashev
12:29 AM Todo #8743: Gateway Groups page should list gateways in tier order: And also GW obtained from DHCP are always at bottom regardless name. I mean *WAN_DHCP* is lower than manually added *... Constantine Kormashev
12:19 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: I've checked on 245, it works, I do not observe extra GW 0 and php warning:... Constantine Kormashev

09/17/2018

09:30 PM Bug #8905: status_logs_settings.php PHP errors on 2.4.4 snapshots: > Does your config.xml have a @<syslog>...</syslog>@ section? If so, what is in it?
Hmm, this is rather strange. ... Jason Unovitch
08:06 AM Bug #8905 (Feedback): status_logs_settings.php PHP errors on 2.4.4 snapshots: I can't reproduce that here. I took a system that had never had syslog settings changed on it since the last factory ... Jim Pingle
07:40 PM Bug #8531: URL Table aliases don't support FQDNs or names that return >1 IP: Also, I should probably redo this patch in pure PHP and use *dns_get_record()* http://php.net/manual/en/function.dns-... → luckman212
07:14 PM Bug #7609: NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: Pull request https://github.com/pfsense/pfsense/pull/3981 Nano Caiordo
03:21 PM Bug #8070: IKEv2 IPSec tunnel under load crashes pfSense when AES-NI is enabled: Paul Youngberg wrote:
> Jan Jurkus wrote:
> > I want to refer you to this forumpost: https://forum.pfsense.org/inde... Rachel Chen
12:05 PM pfSense Packages Bug #8904: Shellcmd: pfBlocker's earlyshellcmd is being removed at boot: On install, shellcmd imports the items from the earlyshellcmd tags and reformats them into the shellcmd package setti... Jim Pingle
11:54 AM Bug #8880: [PHP7] warning on system_gateways.php and extra item in gateways table: This commit was not cherry-picked from master branch. Can you validate the fix on a 2.4.5 snapshot? I did the cherry-... Renato Botelho
11:05 AM Bug #8527: VLANs losing parent interface on LAGG change: Please check again with a newer image. Luiz Souza
09:09 AM Bug #8895 (Resolved): You MUST recompile PHP with a larger value of FD_SETSIZE. It is set to 2048, but you have descriptors numbered at least as high as 2161.: Done Renato Botelho
08:56 AM pfSense Packages Bug #8899 (Resolved): AWS-ipsec error: Fixed in commit:59e2c01227cc on factory-ports, aws-wizard pkg version 0.7_2 will contain the fix when it builds. Jim Pingle
07:43 AM Todo #7024: Replace copy of radius.inc by pear-Auth_RADIUS: A FL wrote:
> I found a small issue with RADIUS bw limits however : pfsense-Bandwidth-Max-Up/Down have to be written... Jim Pingle
07:34 AM Bug #8897: RADIUS WebUI login with RADIUS does not work: Tested it again here and it works.
User in FreeRADIUS has:... Jim Pingle
07:27 AM pfSense Packages Bug #8508 (Resolved): Haproxy: Selecting mode tcp with SSL in backend does not activate SSL in the server config: Jim Pingle
01:58 AM pfSense Packages Bug #8508: Haproxy: Selecting mode tcp with SSL in backend does not activate SSL in the server config: Yes, this seems to be fixed for a while now (the upgrade was fun since it broke my workaround :D)). Thanks! Florian Apolloner
05:43 AM pfSense Packages Bug #8903: pfBlockerNG: PHP error: Sorry, you're right, this is the -devel package. I'd forgotten I'd installed that.
I agree the earlyshellcmd issue... Steve Wheeler
04:22 AM pfSense Packages Feature #8523: make cookie inserted by haproxy secure: Thank you! I do see the secure option in haproxy version 0.59_9.
Where did you add another options? Alex Kolesnik

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

10/16/2018

10/15/2018

10/14/2018

10/13/2018

10/12/2018

10/11/2018

10/10/2018

10/09/2018

10/08/2018

10/07/2018

10/06/2018

10/05/2018

10/04/2018

10/03/2018

10/02/2018

10/01/2018

09/30/2018

09/29/2018

09/28/2018

09/27/2018

09/26/2018

09/25/2018

09/24/2018

09/23/2018

09/22/2018

09/21/2018

09/20/2018

09/19/2018

09/18/2018

09/17/2018