Activity
From 03/26/2019 to 04/24/2019
04/24/2019
-
11:59 AM Feature #9104: Add a FAT32 partition to memstick installer images
- Just tried this rescuing a 2.4.4-p2 config.xml
System installed correctly, and config was restored, but packages t... -
12:29 AM Revision 6a4635fc: Unbound python mod - services.inc
- * Include any additional functions as defined by python script include file
* Add missing escapeshellarg()'s
* Make g...
04/23/2019
-
04:43 PM pfSense Packages Feature #9238: Add support for Zerotier
- I don't think my code would be of much use, I was just trying to get the package to work with the latest pfS version....
-
04:12 PM pfSense Packages Feature #9238: Add support for Zerotier
- Seconding this request!
It seems Corey has and ChanceM have already done most of the heavy lifting:
Ref: https... -
10:29 AM Bug #9431 (Feedback): Upgrading to 2.5.0 with devel/aws-sdk-php installed fails
- It should be fixed in pfSense-upgrade 0.67
-
- Greg M wrote:
> Great!
>
> Are you able to replicate?
>
> If not what else can we provide to help troubleshoot... -
07:29 AM Bug #9431: Upgrading to 2.5.0 with devel/aws-sdk-php installed fails
- Great!
Are you able to replicate?
If not what else can we provide to help troubleshoot it?
04/22/2019
- 06:49 PM Revision 40a8898b: Stop building zabbix 3.2 and 3.4 since they will be deprecated from FreeBSD ports tree in few days
-
- I'll work on it
-
02:00 PM Bug #9483 (Resolved): UFS filesystem is not being mounted noatime.
- On a clean CE install using the default options the / filesystem is not mounted noatime.
This is leading to increa... -
- Zabbix ports versions 3.2.x and 3.4.x will be removed from FreeBSD ports tree in Apr 2019. Remove them from pfSense
04/21/2019
-
09:27 AM pfSense Packages Bug #9451: Add Zabbix 4.2 (agent and proxy) packages
- We don't use precompiled binaries from other sites. It has to be in FreeBSD ports.
-
08:48 AM pfSense Packages Todo #9200: Add DNS support for Google domain to Acme manager
- I would also like to see Google Domains added into the list of supported validation methods.
04/20/2019
-
11:51 PM pfSense Packages Bug #9451: Add Zabbix 4.2 (agent and proxy) packages
- there is a freebsd package on official site https://www.zabbix.com/download_agents
04/18/2019
-
-
- Hi!
I have:
a) Removed all packages via GUI and upgraded, same error
b) Used command "pkg delete pfSense-pkg-... -
- PR: https://github.com/pfsense/pfsense/pull/4064
-
03:09 AM Revision 1ca156ea: Fix AzureV6 DynDNS client
- `AAAARecords` in the Azure DNS API is case sensitive
Documentation: https://docs.microsoft.com/en-us/rest/api/dns/re...
04/17/2019
-
03:24 PM pfSense Packages Bug #9481 (Closed): traffic totals documentation link goes to 404 page
- The question mark on the top right corner goes
Page not found: https://www.netgate.com/docs/pfsense/index.php/Traf... -
- Update: I was able to stop the warnings by disabling nat reflection.
Possible bug?
!https://forum.netgate.com/a... -
08:26 AM pfSense Packages Bug #9211: GeoIP broken in pfSense-pkg-ntopng-0.8.13_3
- It seems clear no one at Netgate is reading this ticket. :-(
-
- Try to replicate without the FQDNs. If the issue doesn't happen, then this can be closed in favor of the earlier ticket.
-
07:22 AM Bug #9479: Alias table not updated when adding new entry
- Yes, it does contain a couple of FQDNs in both cases.
-
- Does the alias contain any FQDNs? Or only IP addresses and subnets? If it contains FQDNs, this may be a duplicate of ...
-
- On 2.4.4-p2 CE and arm - tested on MBT2220 and SG3100:
I can't replicate it every time - I would say the majority ... -
- That's not a syslogd problem, just a symptom of your misconfiguration. It can't send the packet out due to your broke...
-
06:32 AM Bug #9480 (Not a Bug): sylogd crash with misconfigured static arp entries
- Hi,
h2. My setup
* 2 pfSense boxes running in HA setup
* Remote logging enabled
* DHCP servers with failover ...
04/16/2019
-
- When pfSense is set to use an upstream proxy with authentication, the update check fails to run from the GUI. It work...
04/15/2019
-
- This seems more like a configuration issue, such as not having a high enough mbuf allocation setup.
Please post to... -
04:18 PM Bug #9477 (Not a Bug): 2.4.4-RELEASE-p2 + XG-1537 SFP+ port issue - critical
- If something is installed in the SFP+ Ports on the XG-1537 then the interfaces ix0 and ix1 will not come up during bo...
-
-
- * Ensure firewall info is generated when run from the CLI
* For SG-1100, also include its public key -
01:53 PM Revision b0945941: Fix a typo.
- Reported by: jimt
-
-
- Fixed in lightsquid pkg version 3.0.6_6.
-
- Docs have been updated.
-
08:08 AM pfSense Packages Feature #6226: Add usb_modeswitch to the pfSense package repo
- Jim Pingle wrote:
> usb_modeswitch has been available from the pfSense (not FreeBSD) repo for months now, including ... -
- usb_modeswitch has been available from the pfSense (not FreeBSD) repo for months now, including in the latest release...
-
- khaled osama wrote:
> update for pfsense 2.4.4
>
> run the following command to support pfsense 2.4.4
>
> pkg ... -
- Duplicate of #9352
-
09:05 AM pfSense Packages Bug #9475 (Duplicate): Monitoring "add view" bug
- 1. Open Status/Monitoring
2. Expand Settings
3. Click Display Advanced
4. Click Add View and then Cancel (or Esc)
... -
09:12 AM Bug #9476 (Rejected): pfSense 2.4.x sending ARP replies with non-CARP source MAC address
pfSense 2.4.x will send ARP replies for CARP interfaces with the local system's "real" source MAC address, instead ...-
07:57 AM Bug #9474 (Not a Bug): no default gateway after changing the wan interface ipv4 configuration type from dhcp to fixed ip
- what started the problem
- ISP unexpectedly changed it's router configuration from dhcp to static ip but all IP ar...
04/14/2019
-
02:15 PM
Bug #8987: Web GUI main page very slow to load if wan interface is enabled but not connected.
- With WAN down and that being the only default route, this should result in an "No route to host" error, and no connec...
-
02:08 AM Bug #8987: Web GUI main page very slow to load if wan interface is enabled but not connected.
- Well I think it's only because ews.netgate.com is down. I've override the host to localhost and this solves the probl...
04/13/2019
-
10:38 PM pfSense Packages Bug #9473 (Resolved): Lightsquid 1.8_5 doesn't ensure line breaks between cert and key when generating cert.pem file
- similar to stunnel Bug #9118
If user imported key doesn't contain a trailing line break, the cert.pem will not con...
04/12/2019
-
05:18 PM Bug #9472 (Resolved): Unable to select QinQ interfaces for PPP interface
- After a QinQ interface has been created eg. vmx0.13.2 , this interface isn't available in the drop-down menu when sel...
-
03:23 PM
Bug #8987: Web GUI main page very slow to load if wan interface is enabled but not connected.
- Hello Gentlemen,
Been sandbagging this thread as I've ran into this issue several times and I think I have an easy... -
02:31 PM Bug #8987: Web GUI main page very slow to load if wan interface is enabled but not connected.
- https://ews.netgate.com/copyright is down right now (504 Gateway Timeout): all attempts at loading the dashboard are ...
-
01:09 PM Bug #8987: Web GUI main page very slow to load if wan interface is enabled but not connected.
- Speaking from some recent experience:
This behavior interferes with troubleshooting if the root cause is a WAN fai... -
- Since 3 hours I'm having the exact same issue!
-
02:52 PM Bug #9471 (Resolved): GIF tunnel not added to interface group after reboot
- Hello!
I have a GIF tunnel (gif0, opt4, TUN_6IN4_HE) configured as part of an interface group (PFORWARD_WAN). It g...
04/11/2019
-
- 12:00 PM Revision 503df8f6: Enable Telegraf build on ARMv7
-
- Applied in changeset commit:4b70a2006e6afb7813344eec8cafb8570e67256b.
-
- If @/var/unbound/remotecontrol.conf@ is empty, it will not be rewritten. The code to write the file checks that the f...
04/10/2019
-
02:11 PM Feature #1189: Gateway: Multiple monitor ips
- Yep. I want that too. Just my Parents hadnt Phone, because my PoolDNS IP went down and it switched over to only Inter...
-
- With an HA cluster synchronizing settings via XMLRPC, when the last ATLQ traffic shaper queue is deleted that change ...
-
- With an HA cluster synchronizing settings via XMLRPC, when the last limiter is deleted that change is not reflected o...
-
- Shamelessly copied from #7066 since it's the same issue here.
Attempting to configure traffic shaping on a pfSense... -
- Once upon a time that was necessary to see the return traffic. The most recent version of @dhcrelay@ now supports a c...
-
- Hello!
Not sure if this is dhcrelay's intended behaviour, but it is listening on the upstream interface when it's ...
04/09/2019
-
06:31 PM Bug #9465 (Duplicate): Lost default gateway after recover from failover with CARP VIP and HA
- Hi all
This problem is still (or again) reproducable with 2.4.4p2.
https://redmine.pfsense.org/issues/8465
-
04:47 PM Feature #8645: Upload certificate file instead of pasting
- Just submitted: https://github.com/pfsense/pfsense/pull/4063
-
- check_reload_status 0.0.10 fixes the original issue, this can go back
the way it was.
This reverts commit ce76f29985...
04/08/2019
-
- check_reload_status 0.0.10 should fix it
-
- Tested a potential change from Renato and it appears to work as expected...
-
- Looks like the issue in fcgicli should be addressed as a better fix. Assigning to Renato per his request.
-
07:58 AM Feature #9464 (New): Marvell 6000 -- netgate hardware (e.g.: XG-7100, XG-3100) internal switch LACP support
- The Netgate Hardware with Marvell 6000 Series internal switch lack of the LACP feature on the external ports.
This b... -
- Duplicated by #9460 but it has the cause and fix there, so closing this one.
-
07:29 AM Bug #9463: Extremely Slow Performance with Chelsio NICs on Hyper-V (Only Pfsense Impacted)
- Thanks for the reply. In theory, I entirely understand where you are coming from. What I am struggling with signifi...
-
- If pfSense is connected to a virtual switch it has no way to know what kind of network adapter is tied into that swit...
-
- I have a multi-node Hyper-V cluster, each with an Intel X540 10G NIC and a Chelsio T540-BT 10G NIC. The Intel NICs a...
04/07/2019
-
10:38 PM Feature #7727: uPnP fails to properly give out subsequent reservations when multiple gaming systems are playing the same game/using the same port
- Hi All,
I have experienced the same issue as reported in the bug descrip.
I have also discovered when searching... -
03:21 PM Bug #9447: Configuring LAGG at XG-7100 Switch Ports Broken
- Daniele Palumbo wrote:
> +1 as i was about to report the same bug.
> I think the following is the fix, applicable t... -
- +1 as i was about to report the same bug.
I think the following is the fix, applicable to 2.4.4p2
https://forum.net... -
- This already works if you put the hostname in the alias to start with. If you have more questions, post on the forum.
-
09:50 AM Feature #9462 (Rejected): auto alias update
- I think it would be great to add a feature to update automatically the ip address lists for a dns record involved in ...
-
02:23 AM pfSense Packages Todo #9200: Add DNS support for Google domain to Acme manager
- Adding a request for this myself.
04/06/2019
-
10:18 PM pfSense Docs Correction #9461 (Closed): Feedback on Services — DNS — Configuring the DNS Resolver
- *Page:* https://docs.netgate.com/pfsense/en/latest/dns/unbound-dns-resolver.html
*Feedback:*
I think the explan... -
11:04 AM Bug #7918: Nightly error reloading rules
- Ok in my case the error was caused by me accidentally setting two queues to the same priority on FAIRQ.
So to avoi... -
09:47 AM Bug #9357: rc.newwanipv6 called regardless of REASON
- A dirty patch I am using for now is adding these lines in /var/etc/dhcp6c_wan_script.sh...
-
04/05/2019
-
- Applied in changeset commit:ce76f299853dccb036de229f08a30013593c98fd.
-
- OpenVPN local auth is failing on 2.5.0, due to what appears to be a change in fcgicli output.
Testing with @set -x... -
- You are right. I could swear when I did that it was the other way, but I don't see any history of that being the para...
-
- I get pf warning spam non-stop
@pfr_update_stats: assertion failed.@
!1554493871691-a1c96692-b5ae-4d45-9f73-719... -
- Not enough information. This is most likely a configuration or environment issue. Please post on the forum to discuss...
-
11:03 AM Bug #9458 (Rejected): IPSec cannot use under more than 2 phase1 rules
- for example:
I have 4 pfsense devices, A,B,C,D
I add 3 phase 1 rules in device A in IKEv2 to connect B(con1000) C... -
- They have to be kept up-to-date or otherwise when someone chooses to enable bogons later, they could be very outdated...
-
03:21 AM Bug #9455 (Rejected): Disable fetching of bogon tables when not used
- If all interfaces has "Block bogon networks" unticked I would expect that periodic fetching of bogon tables was not n...
-
- Can't reproduce the problem as stated. When the form is filled in and saved, the values all stay as expected. Even wh...
-
03:38 AM Bug #9456 (Rejected): pfsense clears given smtp auth fields
- Configuring smtp-auth for smtp.gmail.com:
E-Mail-server: smtp.gmail.com
SMTP-Port: 465
Secure SMTP Connection: y... -
- There are no DHCP options available that work from the system tunables tab.
-
05:40 AM pfSense Docs Correction #9457 (Rejected): Feedback on Services — IPv4 DHCP Server
- *Page:* https://docs.netgate.com/pfsense/en/latest/book/services/ipv4-dhcp-server.html
*Feedback:*
Please add a... -
05:26 AM Feature #4632: Support for Multipath TCP (MPTCP)
- +1
would be great to have -
05:06 AM Feature #4632: Support for Multipath TCP (MPTCP)
- +1
Support for mptcp would be greatly appreciated
04/04/2019
-
11:06 PM pfSense Docs New Content #9454 (New): Add examples of Snort Suppression Lists to stop alerts based on source and destination IP addresses
- *Page:* https://docs.netgate.com/pfsense/en/latest/packages/snort/suppress-list.html
*Feedback:*
The documentat... -
- Environment: SG-1000
Not sure if this is valid in other environment.
Upon boot, all the VLANs get orphaned.
Th... -
03:57 PM pfSense Packages Bug #9020: Impossible to register ACME wildcard certificate regardless documentation
- Same Bug here:
Version: 2.4.4_2
Same Config: Issue/Renew --> Bug goes away!
I have see the Bug more then one (... -
02:55 PM Feature #1257: Handle encypted CA/Certificate private keys
- I made a preliminary PR that adds support for encrypted private keys to the CA, certificate, and user managers.
Woul... -
05:41 AM Feature #9452: Add Gandi LiveDNS DynDNS client.
- PR created https://github.com/pfsense/pfsense/pull/4061
-
- Add Gandi as a DynDNS client using the LiveDNS API (see doc https://doc.livedns.gandi.net/)
I will commit a PR in ...
04/03/2019
-
- It's not in FreeBSD ports yet.
-
04:38 PM pfSense Packages Bug #9451 (Resolved): Add Zabbix 4.2 (agent and proxy) packages
- https://www.zabbix.com/documentation/4.2/manual/introduction/whatsnew420
-
04:41 PM Revision cd39f5e7: Merge pull request #1 from Augustin-FL/patch-captiveportal-trim
- Also trim if() statement
-
- confirmed same problem here, never seen it before then out of nowhere suddenly no type of rule update can be carried ...
-
- 3 minutes sounds about right for a DNS-based changeover. It takes time for DNS updates to propagate and be noticed. T...
-
02:26 AM Bug #9444: Multi-WAN IPsec does not fail over with Gateway Group, needs restart
- Mouad Mimouni wrote:
> Jim Pingle wrote:
> > There isn't enough information here to speculate as to the cause or fi... -
06:01 AM Bug #9450 (Resolved): Multiwan gateway group fail-over not working as expected (possible race condition)
- Multiwan gateway group fail-over not working as expected. After a link state change is triggered by dpinger (rc.gatew...
-
- I noticed a couple of empty lines in some forms, which are caused by using @addInput@ instead of @addGlobal@ to add h...
04/02/2019
-
- Fixes a logic error introduced during Bootstrap conversion: the form and
section should always be created, because th... -
- Fixes a number of empty lines in forms by adding hidden inputs using
`addGlobal` on the form instead of `addInput` on... -
04:41 PM Bug #9442: Wrong route when using openvpn client and multiple subnet ?
- yes you are right. My brain was focused on a routing table problem, but all I had to do was to change rules, for the ...
-
08:21 AM Bug #9448: Dynamic DNS options showing in GUI for IPv6 when not in use
- Forgot to add, this is present in 2.4.4_2
-
- This bug is basically an IPv6 version of a similar bug that was fixed previously. (Bug #8469) When loading the DHCPv6...
-
- Jim Pingle wrote:
> There isn't enough information here to speculate as to the cause or fix. It isn't normal to need... -
- Jim Pingle wrote:
> There isn't enough information here to speculate as to the cause or fix. It isn't normal to need...
04/01/2019
-
08:08 PM Revision 451b6419: Remove star after page name
- Fix #9428
-
04:06 PM pfSense Packages Bug #9445: LCDProc PHP Fatal error
- That fixed the issue. Thanks so much for the fast work! :)
-
- I pushed a fix for this for 2.4.4-p2.
For 2.5.0 I removed all references to slbd/load balancer from lcdproc, since... -
- This is almost certainly a configuration issue, such as the LAN traffic hitting a policy routing rule and being force...
-
- See #9433 for an additional example of a problem case solved by this patch
-
- https://forum.netgate.com/user/stephenw10 said that this wass been fixed already in 2.5.
-
- XG-7100 Switch Ports Lagg Table https://pfsense/switch_ports.php is broken.
When user assign lagg1 on port 3,4 this ... -
- Rather than patching OpenSSL, we could use a pure PHP implementation of RSA to generate the voucher keys:
http://p... -
01:34 PM Bug #9433: User directory authentication over LDAPS fails in 2.4.4_2
- Awesome, thanks - this fixed it for me!!
Jim Pingle wrote:
> The Global Root CA is working fine here on 2.4.4-p2,... -
- The Global Root CA is working fine here on 2.4.4-p2, I can't reproduce the problem as stated.
Problems like this a... -
01:25 PM Bug #9438: USB 3.0 to RJ45 Gigabit[RTL8153 Chipset] problem
- update...
USB 3.0 to Gig adapter - Realtek 8153 ...... WORKS!!!
found this, it's just a question of setting c... -
- That device doesn't have a driver. Try it on a stock FreeBSD system and see if it's detected there, or try a 2.5.0 sn...
-
-
- There isn't enough information here to speculate as to the cause or fix. It isn't normal to need an IPsec restart in ...
-
- After some debug. I logged into the pfsense command line and found that the IPsec service does not restart when it ch...
-
- Done: https://github.com/pfsense/pfsense/pull/4059
-
- If the info can be obtained the same way, and it works, go ahead and submit a PR and link it back here.
-
- We are aware, and we have an internal issue setup to track this problem.
-
-
- That page is hidden on purpose. You should only give users that permission if they do not have access to the user man...
-
- Actually it isn't the PHP errors causing the problem, those are only a symptom. Updated the subject and description t...
-
- There is not enough information here.
What exact steps are needed to reproduce the problem?
What was the state ... -
-
- The page works fine on every 2.4.4-p2 system I can see. It may be a problem specific to the data in your leases file....
-
- Applied in changeset commit:8800ee6f90d2ac91ca9c2886bd260bc1a4e12893.
-
- Recent 2.5.0 snap, hit this on reboot:...
-
03:27 AM pfSense Packages Bug #9211: GeoIP broken in pfSense-pkg-ntopng-0.8.13_3
- I have just installed Ntop only to find only parts of it are working - would it be possible to update this please ?
03/31/2019
-
- Forgot to mention that I'm using the below and cant seem to edit the initial report. Sorry!
2.4.4-RELEASE-p2 (amd6... -
- Hey all,
I keep getting the errors below:... -
11:38 AM Bug #9443: Captive Portal Vouchers feature is broken in 2.5.0
- The change has been made in OpenSSL here : https://github.com/openssl/openssl/commit/cac19d19e7d6f252ff9aea60d85e0c0f...
-
- Hello,
When enabling vouchers on 2.5.0, fields "Voucher Public Key" and "Voucher Private Key" are empty, and click... -
- When a gateway group is configured on IPsec interface and pfSense loses connection on its primary WAN, the internet f...
-
-
- VMX0 is LAN1, 192.168.62.100
VMX1 is WAN, 192.168.10.1
VMX2 is LAN2, 192.168.40.1 -
- I'm using 2.4.4 version
I setup an openvpnclient, nordvpn, using this tutorial :
https://nordvpn.com/fr/tutorials... -
- PLEASE update the ntopng package -- surely this can't be that big of a deal!
03/29/2019
-
04:50 PM Bug #9441 (Rejected): Setting Crypto HW breaks IPSec CBC
- On the latest 2.5 snapshot from today (Mar 29th), I found IPSec CBC does not properly work if the "Cryptographic Hard...
-
08:45 AM Bug #9440 (Duplicate): Update to 2.5 corrupts SG-1100 & erases serial
- Upon upgrading from 2.4.4-P2 to 2.5, the SG-1100 will not boot. I have attached the initial upgrade via serial. The u...
03/28/2019
-
05:37 PM Feature #9439 (Resolved): Poll Interval For GPS and PPS
- The default minpoll and maxpoll for GPS and PPS in /etc/inc/system.inc is set to 4. These should both be set to 3. T...
-
- having a problem with USB 3.0 to RJ45 Gigabit[RTL8153 Chipset], it shows up in connected USB devices, it is determine...
-
- The integration could be very similar to OpenVPN. An OpenVPN client or server, shows up as a virtual NIC, the same wa...
03/27/2019
-
07:58 PM Bug #9437 (Resolved): Captive Portal Bandwidth Limiter application issue (Credentials Vs. MacAddr Validation)
- We're encountering a truly odd anomaly, and I'm not sure what to make of it. We are running 2.4.2_2, (also an issue w...
-
07:54 PM Feature #9436 (New): Unbound: enable dnstap support
- "dnstap":http://dnstap.info/ support in Unbound would allow for query logging from pfSense with minimal performance i...
-
10:47 AM Bug #9383: dhcpleases kqueue error
- this appears on a vanilla install with only DHCP / DNS Resolver turned on in 2.4.4_p2 on a J1900 NanoPC box
"DNS Q... -
- Fix #9428
-
02:30 AM pfSense Packages Feature #8613: pfSense-pkg-acme: acme_certificates_edit.php - Add support for --challenge-alias acme.sh flag
- Jim Pingle wrote:
> I added a checkbox to use challenge-domain instead of challenge-alias in ACME pkg version 0.5.2
...
03/26/2019
-
11:14 PM Bug #9435 (Resolved): Dynamic DNS Update events do not occur after certain failover event cases
- This test was done on a lab HA pair behind a NAT router (so check_ip service is needed.)
Failover group FAILOVER
... -
09:12 PM Bug #9434: DHCP Static IP Leases Stop Working after upgrade to 2.4.4-RELEASE-p2 (amd64)
- I got a workarround manualy deleting entries in arp the table
-
- Client Devices (iPhone and Macbook) can’t get the static IP from the static mapping and when the staic mapping ommits...
- 06:35 PM Revision 1f606f11: Point 2.4.x snaps repo to armv6
- 06:34 PM Revision fa4a3124: Point 2.5.0 snaps repo to armv7
-
05:40 PM Bug #9311: Captive Portal continues to limit per-user bandwidth when not enabled
I have two routers running on 2.4.4-RELEASE-p2 (amd64) and they have radically different configurations-- one with ...-
- Hello,
I was unable to reproduce. Disabling "Enable per-user bandwidth restriction" without clearing the two field... -
- Pull request : https://github.com/pfsense/pfsense/pull/4058
Also available in: Atom