Activity

30 days up to

User

Subprojects

Activity

From 08/15/2019 to 09/13/2019

09/13/2019

05:43 PM pfSense Packages Bug #9760 (Resolved): FRR: "Log Adjacency Changes" Option in "OSPF Settings" not working.: When the option "Log Adjacency Changes" is selected in the GUI in "OSPF Settings" tab, no changes are made in frr con... Bruno Solal
02:40 PM Feature #9754 (Feedback): Add separate authentication log: I'm still not seeing a viable way to get the IPsec logs out when strongSwan handles the authentication internally (e.... Jim Pingle
01:34 PM Bug #9758 (Feedback): dhcpleases does not handle spaces in DHCP lease hostnames: dhcpleases 0.4 should fix it Renato Botelho
09:43 AM Bug #9758 (Resolved): dhcpleases does not handle spaces in DHCP lease hostnames: Some not-particularly-well-behaved DHCP clients put spaces in the hostname. For example:... Jim Pingle
12:05 PM pfSense Packages Bug #9759 (Duplicate): new vnstat doesn't work on latest 2.5, need script update: Duplicate of #9392 Jim Pingle
12:04 PM pfSense Packages Bug #9759 (Duplicate): new vnstat doesn't work on latest 2.5, need script update: After pressing "Enable Graphing" button got error:
Error: Unable to open database "/var/db/vnstat/vnstat.db": No s... Viktor Gurov
11:01 AM pfSense Packages Feature #9751 (Feedback): Need an "inclusive" and "exclusive" method of specifying ports: Implemented in Avahi pkg version 2.1. Jim Pingle
10:52 AM pfSense Packages Feature #9751: Need an "inclusive" and "exclusive" method of specifying ports: Looks like Avahi fails to parse the line when the total length of the line (including "allow-interfaces=") is greater... Jim Pingle
10:20 AM pfSense Packages Bug #8067 (Closed): Avahi can't be stopped from registering on unassigned interfaces: Since Avahi pkg version 2.0.x, it switched to using whitelisting, so this is no longer relevant. Jim Pingle
10:20 AM pfSense Packages Bug #7755 (Closed): Avahi package is not secure by default: Since Avahi pkg version 2.0.x, it switched to using whitelisting, so this is no longer relevant. Jim Pingle
10:10 AM Feature #9757 (Feedback): DH groups 25,26,27 not listed for phase1 & phase2: Applied in changeset commit:21bee0287caf76bb7ab63ec29b0ecf7435940a06. Jim Pingle
10:04 AM Feature #9757: DH groups 25,26,27 not listed for phase1 & phase2: Added them in and tried 26. Showed as working and in-use on both ends, so it looks OK, no extra plugins to enable or ... Jim Pingle
09:57 AM Feature #9757: DH groups 25,26,27 not listed for phase1 & phase2: Not a bug, but a missing feature. Jim Pingle
09:26 AM Feature #9757 (Resolved): DH groups 25,26,27 not listed for phase1 & phase2: groups 25 (ecp192), 26 (ecp224) and 27 (ecp224bp) is in list of supported by strongswan:... Viktor Gurov
09:44 AM Bug #3500: DHCP Leases List Not Showing Hostname in Some Cases: dhcpleases issue moved over to #9758 Jim Pingle
09:40 AM Bug #3500 (Resolved): DHCP Leases List Not Showing Hostname in Some Cases: OK, I'll make one shortly. Closing this. Jim Pingle
09:39 AM Bug #3500: DHCP Leases List Not Showing Hostname in Some Cases: Jim Pingle wrote:
> It looks like dhcpleases having the wrong name is the problem here. The page is only displaying ... Renato Botelho
09:36 AM Bug #3500: DHCP Leases List Not Showing Hostname in Some Cases: It looks like dhcpleases having the wrong name is the problem here. The page is only displaying the result it receive... Jim Pingle
07:51 AM Bug #3500 (In Progress): DHCP Leases List Not Showing Hostname in Some Cases: I'm not seeing any change here:
Lease DB:... Jim Pingle
07:22 AM Bug #9755: package description wrong link https://www.freshports.org/security/openvpn-client-export: There is no way for any package to control what those links do, so it's not a problem with the package, but in the ba... Jim Pingle
05:20 AM Bug #9755 (New): package description wrong link https://www.freshports.org/security/openvpn-client-export: Package Dependencies:
openvpn-client-export-2.4.7 - wrong link
https://www.freshports.org/security/open... Viktor Gurov
06:45 AM Bug #7958: Upgrade 2.4.0: IP alias with FQDN doesn't work any more: I believe this one's different from #9296 . I've 2 x 2.4.4-p3 in different locations but with similar configs and I'm... Netnewb net
06:00 AM Bug #9756 (Resolved): vpn_openvpn_(client|server).php: js issue when selecting multiple NCP: If you press and select multiple NCP algorithms it create separate string with selected algo
more clear here:
htt... Viktor Gurov

09/12/2019

05:56 PM Bug #8616 (Resolved): When reconfiguring a captiveportal, connected users get disconnected and can't login back: Renato Botelho
04:21 PM Bug #8616: When reconfiguring a captiveportal, connected users get disconnected and can't login back: I just tested, the PR is working well. Users are not disconnected anymore when updating captive portal.
This issue... A FL
08:21 AM Bug #8616 (Feedback): When reconfiguring a captiveportal, connected users get disconnected and can't login back: PR has been merged. Thanks! Renato Botelho
05:46 PM Bug #3500 (Feedback): DHCP Leases List Not Showing Hostname in Some Cases: Jim Pingle wrote:
> Looks OK for the most part, though I do have one weird device that doesn't match in the leases d... Renato Botelho
03:42 PM Feature #9754 (In Progress): Add separate authentication log: Still need to poke at IPsec a bit to see if there is another way to get just the auth messages out of it. Might not b... Jim Pingle
03:40 PM Feature #9754 (Feedback): Add separate authentication log: Applied in changeset commit:49967ae74aeb6ac116d7a0662bcbb1da70a09b8f. Jim Pingle
03:31 PM Feature #9754 (Resolved): Add separate authentication log: Would be nice to have a log dedicated to authentication events (ssh, gui, VPNs, etc).
Most things will be caught b... Jim Pingle
03:30 PM Bug #7198 (Feedback): nginx-error.log is not circular and can fill filesystem: This was fixed by #9714 -- there is no longer a dedicated nginx error log, it's all in nginx.log which now has rotation. Jim Pingle
03:12 PM pfSense Docs New Content #9753 (Closed): Feedback on Installing and Upgrading — Writing Disk Images: *Page:* https://docs.netgate.com/pfsense/en/latest/install/write-memstick.html
*Feedback:*
I believe the majority... Paighton Bisconer
02:53 PM pfSense Packages Bug #9752 (Resolved): ACME - Actions have no access to additionally generated certificate files.: The additionally generated certificate files are only available after the actions ("postscripts") have been run. This... Sebastian Fiebig
01:41 PM pfSense Packages Feature #9751 (Resolved): Need an "inclusive" and "exclusive" method of specifying ports: At this time, Avahi doesn't seem to like to run if the "allow-interfaces" config item contains more than 33 interface... George Phillips
11:29 AM pfSense Packages Bug #9750 (Resolved): squidguard_blacklist.php & squidguard_log.php wrong status icon link: If you are on page Package / SquidGuard / Blacklists or Package / SquidGuard / Logs
and press status icon
you got /... Viktor Gurov
10:33 AM pfSense Packages Feature #9749 (New): 95th percentile missing for quality in monitoring: 95th percentile missing for quality also old graphs use to draw a line for 95th percentile Michael Kellogg
09:45 AM Bug #9748 (Feedback): openvpn_wizard.xml: DH 15360 and 16384 fall back to 1024: Applied in changeset commit:52f686a97f77cfd00ddb69088bef7164676d4117. Jim Pingle
07:44 AM Bug #9748 (Confirmed): openvpn_wizard.xml: DH 15360 and 16384 fall back to 1024: Looking deeper at the code, "this is expected":https://docs.netgate.com/pfsense/en/latest/certificates/dh-parameters.... Jim Pingle
05:23 AM Bug #9748: openvpn_wizard.xml: DH 15360 and 16384 fall back to 1024: It shows correct number in config.xml:
<dh_length>16384</dh_length>
And on VPN / OpenVPN / Servers page
but it... Viktor Gurov
05:14 AM Bug #9748 (Resolved): openvpn_wizard.xml: DH 15360 and 16384 fall back to 1024: If you select DH Parameters Length above 8192, i.e. 15360 or 16384, it creates server instance with DH length 1024
A... Viktor Gurov
09:05 AM Feature #9590 (Feedback): RFE: Add additional prefix delegation size entries to dropdown-list: Applied in changeset commit:51dc008bfebef50bc4be9ff2a894e176ba013866. Andreas Bleischwitz
08:57 AM Feature #9030 (Feedback): Allow TLS Key Direction with OpenVPN: PR has been merged. Thanks Renato Botelho
07:11 AM Bug #8922 (Feedback): Static routes set by system.inc for DNS gateway bindings are not removed: PR has been merged. Thanks! Renato Botelho

09/11/2019

03:15 PM Bug #9747: IPsec widget - Missing escape of domain backslash: Pull request: https://github.com/pfsense/pfsense/pull/4085 Sebastian Fiebig
02:52 PM Bug #9747 (Resolved): IPsec widget - Missing escape of domain backslash: The IPSec widget does not work as soon as one user, e.g., from a windows domain with a username like "domain\user" ha... Sebastian Fiebig
02:45 PM Bug #1605: DHCP Server should group known clients by interface: I'll work on it Renato Botelho
02:41 PM Bug #9595 (Feedback): OpenVPN does not resync when running on a gateway group: PR has been merged. Thanks Renato Botelho
02:12 PM Feature #9302 (Pull Request Review): radvd always advertises DNS servers and Domain Search List regardless of M or O flag: Jim Pingle
02:12 PM Bug #9539 (Pull Request Review): HA: admin user's authorized key(s) won't get synced: Jim Pingle
02:09 PM Feature #790 (Pull Request Review): Advanced options for dnsclient (resolv.conf): Jim Pingle
02:09 PM Bug #8922 (Pull Request Review): Static routes set by system.inc for DNS gateway bindings are not removed: Jim Pingle
02:09 PM Feature #9688 (Pull Request Review): restartallwan - pfSsh.php script to restart all wan interfaces: Jim Pingle
02:09 PM Bug #3334 (Pull Request Review): Status/Traffic Graph isn't IPv6 ready: Jim Pingle
02:07 PM Feature #1257 (Pull Request Review): Handle encypted CA/Certificate private keys: Jim Pingle
02:07 PM Bug #9592 (Pull Request Review): VTI interface down because interface number created is greater than ipsec32768: Jim Pingle
02:07 PM Bug #8616 (Pull Request Review): When reconfiguring a captiveportal, connected users get disconnected and can't login back: Jim Pingle
10:46 AM Todo #9746 (Rejected): Openvpn user get disconnected at same time.: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
10:15 AM Todo #9746 (Rejected): Openvpn user get disconnected at same time.: Hello Team,
we have almost 10-15 users using OpenVPN get disconnected at a same time.
kindly help with this wha... ajinkya mulik
09:58 AM Bug #9745: can't add ECDSA certificate key when signing CSR: This is probably the check needing to recognize the EC key header text since it's different. Jim Pingle
09:46 AM Bug #9745 (Resolved): can't add ECDSA certificate key when signing CSR: If you try to sign CSR it not allow to add Key data with following errors:... Viktor Gurov
09:57 AM Bug #9744: fatal error if ECDH Curve not default: That's internal to OpenVPN/OpenSSL. The GUI presents the curves it claims to support exactly (From @/usr/local/sbin/o... Jim Pingle
09:11 AM Bug #9744 (Resolved): fatal error if ECDH Curve not default: If you select ECDH Curve server option other than default, <ecdh_curve>Oakley-EC2N-4</ecdh_curve> as example, you got... Viktor Gurov
08:40 AM Bug #6195 (Feedback): Cannot set Manual Outbound NAT when Language is pt_BR: Applied in changeset commit:bdaa5235d4c3f4e226e4e7ebee55fc7ff5fd4360. Renato Botelho
08:31 AM Bug #9743: Missing dependency check(s) on aliases in static routes: forgot the "pre" tags around the example so just ignore the strike-through ;) Can't edit the original ticket :/ Jens Groh
08:21 AM Bug #9743 (Duplicate): Missing dependency check(s) on aliases in static routes: Using aliases in static routes is a nice thing as it makes handling those a bit easier by grouping your networks firs... Jens Groh

09/10/2019

11:50 PM pfSense Packages Feature #8547: fwknop Port Knocking Package: Just started using pfSense recently and I'm really surprised fwknop is not available. I can install fwknop on OpenWrt... William Evans
04:24 PM Feature #895: PPP subsystem MPPE/MPPC support: Is there a .override file, or documentation I can follow to add this so that pfsense doesn't overwrite my .conf modif... Coenraad Loubser
01:14 PM Feature #9718: Make diag_states_summary table sortable: Looks like this will require redesigning the page a bit. The sortable library does not handle rowspan/colspan as they... Jim Pingle
11:00 AM Bug #9741 (Feedback): interfaces_ppps_edit.php: WebGUI don't show local ip / gateway ip values: Applied in changeset commit:d81f270454ec66680cb645c0d3c13f9431d9c026. Jim Pingle
10:38 AM Bug #9741 (Assigned): interfaces_ppps_edit.php: WebGUI don't show local ip / gateway ip values: Jim Pingle
10:30 AM Bug #9741: interfaces_ppps_edit.php: WebGUI don't show local ip / gateway ip values: The way the page is rendered is odd.
* The Local IP address, mask, and gateway are stored in an array indexed by a... Jim Pingle
10:12 AM Bug #9741 (Confirmed): interfaces_ppps_edit.php: WebGUI don't show local ip / gateway ip values: Jim Pingle
05:58 AM Bug #9741 (Resolved): interfaces_ppps_edit.php: WebGUI don't show local ip / gateway ip values: After adding L2TP / PPTP interfaces on Interfaces / PPPs pages
it add Local IP Address and Gateway IP or Hostname to... Viktor Gurov
10:48 AM pfSense Packages Feature #9742 (Resolved): Print Patch ID in log while patching: that would be very useful for support and security perspective.
for now it only run ACB backup while patching. Viktor Gurov
04:41 AM pfSense Packages Bug #9740 (Resolved): empty Status / Tinc VPN page on latest 2.5: Simple p2p connection between pfSense-2.4.4-p3 and pfSense-2.5.0
tinc-1.0.35 on both
nothing on Status / Tinc VPN... Viktor Gurov

09/09/2019

09:21 PM Bug #9739 (Rejected): Multiple ipsec connected to same destination.: Not enough information here, sounds more like a support request than a bug. Please post on the forum to discuss the p... Jim Pingle
09:18 PM Bug #9739 (Rejected): Multiple ipsec connected to same destination.: I have an ipsec set up with one of my clients, however for a while now, started to close ipsec connections to the sam... Heliton Martins
02:50 PM Bug #1375 (Feedback): Captive portal logs: mixed with logs from other sources (squid, php): Applied in changeset commit:a7a863a81cab694ccaaae6da74e45cfeee858a40. Jim Pingle
01:36 PM pfSense Packages Bug #9738 (Resolved): Client IP address validation disallows CIDR notation: Hi,
As specified in the FreeRADIUS documentation, `ipaddr` can be supplied in CIDR format when defining clients:
... Tom Whitwell
01:30 PM Todo #9734 (Feedback): Re-evaluate log size, line defaults, and limits: Applied in changeset commit:f9d9d054a6615a3ad2730ca2b7702daeafc63b25. Jim Pingle
10:41 AM Bug #9736 (Feedback): status.php: Sanitize oinkcode and etprocode of snort/surricata: Fixed in commit:17640476a57a41415fec579c40faebbfeff0022d Jim Pingle
05:45 AM Bug #9736 (Resolved): status.php: Sanitize oinkcode and etprocode of snort/surricata: config-sanitized.xml keep <oincmastercode> and <etpro_code> of snort package
and <oinkcode> and <etprocode> of suric... Viktor Gurov
09:30 AM Feature #8786: Wireguard VPN: They have made a secure and audited release.
We'd prefer to use pfSense but are using OpenWRT for wireguard support. Shannon Barber
08:23 AM Feature #9735: DHCP option 43 and 120 for Skype 4 Business phones: If it's still a problem, start a new forum thread and discuss it there. The fact that the forum thread is 6 years old... Jim Pingle
08:15 AM Feature #9735: DHCP option 43 and 120 for Skype 4 Business phones: Jim Pingle wrote:
> The linked message is over 6 years old. Use the GUI options to add custom DHCP option numbers. I... Chris Theodorakakos
08:07 AM Feature #9735 (Rejected): DHCP option 43 and 120 for Skype 4 Business phones: The linked message is over 6 years old. Use the GUI options to add custom DHCP option numbers. If you cannot express ... Jim Pingle
04:45 AM Feature #9735 (Rejected): DHCP option 43 and 120 for Skype 4 Business phones: Hi all, we moved our DHCP server to pfsense and we are currently trying to configure the VLAN in which we have our me... Chris Theodorakakos
06:35 AM Bug #9737 (New): traffic-graphs.js shows incorrect units inside the chart: https://github.com/pfsense/pfsense/blob/42839d824d51cad3a8a55fccb2dc96368568ce8e/src/usr/local/www/js/traffic-graphs.... Alex Kolesnik
04:01 AM Feature #9309: Allow manual selection of IPsec IKE Pseudo-Random Function (PRF): Jim Pingle wrote:
> Adding another selector to set the prf (with an option to automatically assume it based on Hash ... Viktor Gurov

09/08/2019

11:40 AM Todo #9734 (Resolved): Re-evaluate log size, line defaults, and limits: The current limits for log sizes, default lines to display, and maximum lines that can be shown are all from times wh... Jim Pingle
05:09 AM Bug #1375: Captive portal logs: mixed with logs from other sources (squid, php): I can also confirm that XMLRPC sync logs are still ending in Portal Auth logs.
Here is a screenshot of portal au... A FL
02:53 AM Bug #9733: MAC Address linked to IPv4 & IPv6: Jim Pingle wrote:
> No. A DUID identifies a machine. A MAC identifies a NIC. And by the time you add all the other s... Dean Attewell

09/07/2019

11:49 PM Bug #9733: MAC Address linked to IPv4 & IPv6: No. A DUID identifies a machine. A MAC identifies a NIC. And by the time you add all the other stuff in, all you've d... Jim Pingle
11:47 PM Bug #9733: MAC Address linked to IPv4 & IPv6: Jim Pingle wrote:
> IPv6 addresses are allocated by DUID, not by MAC, so this is not possible.
Can you not have
... Dean Attewell
10:57 PM Bug #9733 (Rejected): MAC Address linked to IPv4 & IPv6: IPv6 addresses are allocated by DUID, not by MAC, so this is not possible. Jim Pingle
10:53 PM Bug #9733 (Rejected): MAC Address linked to IPv4 & IPv6: Can you please enhance pfSense to allow MAC addresses to be the primary key for setting IPv4 & IPv6 addresses.
I wa... Dean Attewell
01:40 PM Bug #5999: IPv6 IP Alias prevents Track Interface from working with DHCPv6 and RA: I encountered this issue while attempting to host internal web services via IPv6 using a dynamic external IP address.... Allen Balaj

09/06/2019

08:38 PM Feature #9732 (New): System UTC time offset in DHCP Option 2: Please implement that the DHCP server can dynamically add DHCP Option 2 value based on the actual system UTC time off... David G
05:21 PM Feature #9693 (Closed): Bypass automatic backups: This was fixed moments after the original push Anonymous
04:27 PM Feature #9693 (New): Bypass automatic backups: Jim Pingle
04:04 PM Feature #9693: Bypass automatic backups: James Dekker wrote:
> Tested on 2.5.0.a.20190830.1941, works as expected.
There's a typo on line 190 (in src/etc/in... Gerwim F
03:07 PM Bug #1375 (New): Captive portal logs: mixed with logs from other sources (squid, php): Apparently still happening: https://forum.netgate.com/topic/146335/feedback-logging-2-5-snap Jim Pingle
12:05 PM Bug #9731: Path Traversal vulnerability in picture widget: Applied in changeset commit:42839d824d51cad3a8a55fccb2dc96368568ce8e. Anonymous
12:01 PM Bug #9731 (Feedback): Path Traversal vulnerability in picture widget: Validate widget key by regex before accepting new image Anonymous
10:13 AM Bug #9731 (Duplicate): Path Traversal vulnerability in picture widget: Vulnerability Description :- The `pfSense` firewall is vulnerable to Remote Code Execution due to `Path Traversal vul... Anonymous
10:54 AM Feature #7767: OCSP support for OpenVPN server: The link above seems to be dead, but there is an example script in https://github.com/OpenVPN/openvpn/blob/master/con... Jim Pingle
09:33 AM Todo #8350 (Feedback): Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: This should be ready for general feedback once the latest changes are in snapshots. Jim Pingle
09:33 AM Todo #9713 (Resolved): Review log rotation behavior: Everything looks OK here with the latest code. Packages may need other/individual attention but those can get their o... Jim Pingle
09:00 AM Bug #9730 (Feedback): newsyslog cron job not present after every upgrade: Applied in changeset commit:55beed7ef4a4730b46c43a705a8cc6392f85d365. Jim Pingle
08:52 AM Bug #9730 (Resolved): newsyslog cron job not present after every upgrade: Some systems do not have the newsyslog job after upgrade. Jim Pingle
08:37 AM Todo #9714 (Feedback): Add page to view "other" logs: Doing a general page for 'other' logs didn't work out, so I added the orphaned log files to their own individual tabs. Jim Pingle

09/05/2019

06:45 PM Bug #9720: vpn_ipsec_phase2.php - no remote network field in VTI mode: This appears to be true with all IPSEC vpn modes. If you delete the phase 2 section then create a new one the remote ... Gary Williams
04:57 PM Bug #6167: IPsec IPComp not working: I have this enabled with other firewall solutions and observed noticeable savings in bandwidth usage. I was hoping t... Adam Gibson
02:27 PM Bug #2218: CARP VIPs can become master too early at boot time: I agree with @BlackBinary. The second optional should be the normal operation. A reboot should automatically trigge... Greg Harris
01:00 PM Bug #9729 (Feedback): status.php: Sanitize zabbix-agent tlspsk key: Applied in changeset commit:60a7d1e1201f43ec48b0ad374ded1c15eb29e14e. Jim Pingle
11:47 AM Bug #9729 (Resolved): status.php: Sanitize zabbix-agent tlspsk key: config-sanitized.xml keep <tlspskfile> of zabbix-agent:
$ grep tlspsk config-sanitized.xml
... Viktor Gurov
11:40 AM Bug #9728 (Feedback): status.php: Sanitize tinc private key: Applied in changeset commit:8bc944bbcba57f74934b87dcea4e7621f0743584. Jim Pingle
11:21 AM Bug #9728: status.php: Sanitize tinc private key: This is in status.php, not the package. Jim Pingle
11:14 AM Bug #9728 (Resolved): status.php: Sanitize tinc private key: config-sanitized.xml keep <cert_key> of tinc package
2.5.0-DEVELOPMENT (amd64)
built on Wed Sep 04 20:39:01 E... Viktor Gurov
11:40 AM Bug #9727 (Feedback): status.php: Sanitize influx_pass: Applied in changeset commit:8bc944bbcba57f74934b87dcea4e7621f0743584. Jim Pingle
11:20 AM Bug #9727: status.php: Sanitize influx_pass: This is in status.php, not the package. Jim Pingle
11:03 AM Bug #9727 (Resolved): status.php: Sanitize influx_pass: config-sanitized.xml keep hash of influx_pass (Telegraf package):
$ grep influx config-sanitized.xml
... Viktor Gurov
08:29 AM Bug #9649: IPv6 6RD Tunnel: Ronald Schellberg wrote:
> Created a pull request to FreeBSD-src to apply the 6RD changes to 2.5
Updated the pull... Ronald Schellberg
06:32 AM pfSense Packages Bug #9724: pfblockerng-firewall-filter-service-will-not-start: PR https://github.com/pfsense/FreeBSD-ports/pull/670 Manuel Piovan

09/04/2019

03:12 PM Todo #9712: Add code for packages to set their own log rotation parameters: See also:
* Example of display-only log: https://github.com/pfsense/FreeBSD-ports/blob/devel/emulators/pfSense-pkg... Jim Pingle
02:08 PM Feature #9726 (Resolved): Hash Algorithm configured on child ESP/AH proposals using AES GCM though strongswan strips them: One might want to allow transform sets on a Phase 2 like this:
AES128/192/256-CBC with SHA256
AES128-GCM with no ... Chris Linstruth
06:17 AM pfSense Packages Bug #9724: pfblockerng-firewall-filter-service-will-not-start: affected version:
2.5.0-DEVELOPMENT (amd64)
built on Tue Sep 03 08:57:57 EDT 2019
FreeBSD 12.0-RELEASE-p10
... Manuel Piovan
05:20 AM pfSense Packages Bug #9724: pfblockerng-firewall-filter-service-will-not-start: a possible solution :
on /usr/local/etc/rc.d/pfb_filter.sh
from
/usr/local/sbin/clog_pfb -f /var/log/filter.log | ... Manuel Piovan
04:56 AM pfSense Packages Bug #9724 (New): pfblockerng-firewall-filter-service-will-not-start: pfblockerng service does not start - because clog is missing
https://forum.netgate.com/topic/146191/pfblockerng-f... Manuel Piovan
04:59 AM pfSense Packages Feature #9725 (New): Ability to use template variables in acme package: would be very helpful to be able to use variables in acme package action section
Using variables something like that... Tobi Miller
03:54 AM Bug #9723 (Not a Bug): DHCPv6 server for several interfaces isn't working on all interfaces: Hi,
I have a virtualized pfSense 2.4.4 p3 running with several downstream interfaces.
On some interfaces DHCPv6 s... Pim Pish

09/03/2019

03:38 PM Todo #9711: Add GUI options to control log rotation: The compression is configurable now but it is a global only option and NOT a per-log setting. While it may be possibl... Jim Pingle
03:37 PM Todo #9711 (Feedback): Add GUI options to control log rotation: The time, flags, pid/cmd, and signal fields are not necessary for the GUI, the others are sufficient. There is a mech... Jim Pingle
03:36 PM Todo #9712 (Feedback): Add code for packages to set their own log rotation parameters: Jim Pingle
03:32 PM Todo #9712: Add code for packages to set their own log rotation parameters: For reference, the supported fields are now:... Jim Pingle
12:04 PM Bug #9722 (Resolved): services_captiveportal_vouchers.php wrong status icon link: When you are at services_captiveportal_vouchers.php page, clicking on "Related status" icon redirects to
services_ca... Viktor Gurov
11:02 AM pfSense Packages Feature #9721 (Resolved): add squidclient -h 127.0.0.1 mgr:info output to Diagnostics / Squid and status.php: "squidclient -h 127.0.0.1 mgr:info" gives a very useful info for diagnostics:
like
Resource usage for squid:
UP T... Viktor Gurov
10:57 AM Bug #9522 (Resolved): Diagnostics > System Activity shows only the header: Looks good:... Steve Wheeler
10:23 AM Bug #9720 (Resolved): vpn_ipsec_phase2.php - no remote network field in VTI mode: under VPN / IPsec / Tunnels / Edit Phase 2
if you select Transport Mode
and then VTI mode
there is no "Remote Netw... Viktor Gurov
10:11 AM Bug #9719 (Resolved): system_certmanager.php - Descriptive name field disappeared when adding certificate for user: if under user manager / users / edit
you select add certificate,
then select "choose an existing certificate"
and... Viktor Gurov
08:45 AM Feature #9718 (New): Make diag_states_summary table sortable: Make diag_states_summary table sortable so users can chose the way they want to sort it.
Discussed at https://gith... Renato Botelho
08:38 AM Bug #9580 (Feedback): Dynamic DNS DNSimple client errors: PR has been merged. Thanks! Renato Botelho
08:25 AM Bug #9684 (Feedback): System Notifications: Asterisks over writing current password causing notifications to stop working.: PR has been merged. Thanks! Renato Botelho
08:12 AM Bug #8014 (Feedback): DynDNS wildcard option doesn't work for provider Loopia: PR has been merged. Thanks! Renato Botelho
08:09 AM Feature #9706 (Feedback): Increased number of colors for login screen: PR has been merged. Thanks! Renato Botelho
08:09 AM Bug #9133 (Feedback): "Show all configured leases" does not stay set after deleting a lease: PR has been merged. Thanks! Renato Botelho
07:21 AM Bug #8040 (Resolved): diag_dns.php - external links to DNSstuff: These links were all removed a while ago Jim Pingle
07:05 AM Feature #9717 (New): Search box for pfsense ?: I can never remember where things are within pfsense and wondered if a search box on the top bar would be a good idea... randombits b

09/01/2019

06:25 PM Bug #9715 (Feedback): Call to undefined function sort_related_log_files: Applied in changeset commit:a71b23dbc6ebc39c42586f98b3da05969c4724e5. Jim Pingle
06:31 AM Feature #9716 (Resolved): Italian translation: i've completed italian translation on zanata month ago
as soon as you can I would like to see it inserted also in or... Manuel Piovan
03:51 AM Bug #9595: OpenVPN does not resync when running on a gateway group: "Current Full Patch":https://github.com/pfsense/pfsense/pull/4072.patch James Webb
02:50 AM pfSense Packages Bug #8454: Arpwatch package break email notifications from other sources: This issue forced me to uninstall arpwatch, as I can't just handle receive tons of emails from other daemons (like Cl... Ter Ted

08/31/2019

06:13 PM Bug #9715 (Resolved): Call to undefined function sort_related_log_files: https://forum.netgate.com/topic/146189/crash-report-after-update
add ->
require_once("functions.inc");
ins... Manuel Piovan
04:18 PM Feature #9693 (Resolved): Bypass automatic backups: Tested on 2.5.0.a.20190830.1941, works as expected. Anonymous
04:13 PM Feature #9694 (Resolved): Redact ACB encryption password from status.php: Tested on 2.5.0.a.20190830.1941, encryption password is redacted. Anonymous
03:09 AM Bug #8207: 2.4 cannot boot as a Xen VM with more than 7 NICs: Same problem here with the newest Version (2.4.4-RELEASE-p3) of PFSense.
Any ideas or solutions?
Best regards Elias Seccom

08/30/2019

03:22 PM Todo #9714 (Resolved): Add page to view "other" logs: Add a GUI page to view log files in /var/log which do not have their own dedicated tabs. Primarily logs like nginx.lo... Jim Pingle
03:05 PM Todo #8350: Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: I split some of those into their own separate issues:
* #9711: Add GUI options to control log rotation
* #9712: A... Jim Pingle
01:22 PM Todo #8350: Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: Most of this is done but there are a few remaining issues:
* Needs wider testing (obviously)
* Log rotation may n... Jim Pingle
10:08 AM Todo #8350 (In Progress): Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: Jim Pingle
03:03 PM Todo #9713 (Resolved): Review log rotation behavior: Log rotation was added in #8350 but it needs more testing and adjusting to ensure that daemons are properly notified ... Jim Pingle
03:01 PM Todo #9712 (Resolved): Add code for packages to set their own log rotation parameters: Currently there is code for log rotation but there isn't a way for packages to influence how that rotation is handled... Jim Pingle
02:58 PM Todo #9711 (Resolved): Add GUI options to control log rotation: Some backend options are already supported as of #8350 but there should be GUI options to control log rotation parame... Jim Pingle
01:00 PM Feature #9639: Cloudflare DDNS "API Token": theodore adams wrote:
> Request to add support for new Cloudflare API Token to allow for managed access and permissi... theodore adams
10:33 AM Bug #9710 (Resolved): IPv6 RA: prefix option does not contain router address in spite of "R" flag being set: When setting router mode to "unmanaged" and not specifying any prefix, pfSense does not send the advertising interfac... Tim Wolter
08:32 AM pfSense Packages Feature #2925: "Monit" Monit for customized monitoring and alerting: Mahdi Hedhli wrote:
> I would really like to see Monit supported as an official package integrated into the WebGUI. ... Nicolas Wildner

08/29/2019

03:30 PM Bug #8443 (Feedback): DHCP relay not starting after ovpnc interface is unchecked - vm 2.4.3: Applied in changeset commit:c3667958a9e34dd0a4e4b736beb934ca55a0f82f. Jim Pingle
03:20 PM Bug #8051: XG-2758 - Wrong Interface Assignment: Applied in changeset commit:f301aa594787b4d44c6779df3c924fa724ffa3b8. Jim Pingle
03:12 PM Bug #8051 (Feedback): XG-2758 - Wrong Interface Assignment: Jim Pingle
03:12 PM Bug #8051 (Not a Bug): XG-2758 - Wrong Interface Assignment: Several models were only detected in Factory and setup with the correct NICs. I copied a few more CE-compatible devic... Jim Pingle
10:18 AM Bug #9709: OpenVPN "Peer to peer server Statistics" show wrong status of connection: I still can't reproduce anything like that here. pfSense only reports what the OpenVPN management daemon reports, tho... Jim Pingle
10:14 AM Bug #9709: OpenVPN "Peer to peer server Statistics" show wrong status of connection: It's very weird, that in Shared Key config status shows correctly link state.
In Peer to Peer ( SSL/TLS ) mode i hav... Dmitry Kuleshov
09:08 AM Bug #9709: OpenVPN "Peer to peer server Statistics" show wrong status of connection: Yes, that is the config I used. Maybe post on the forum to see if anyone else sees the same behavior. Jim Pingle
08:50 AM Bug #9709: OpenVPN "Peer to peer server Statistics" show wrong status of connection: I don't have 2.5 version runed on production environment, only stable versions (2.4.4-p3). Did you try it with Peer t... Dmitry Kuleshov
08:04 AM Bug #9709 (Not a Bug): OpenVPN "Peer to peer server Statistics" show wrong status of connection: I can't reproduce this as stated. No amount of restarting WAN, rebooting, or restarting OpenVPN on the client side re... Jim Pingle
07:11 AM Bug #9709 (Not a Bug): OpenVPN "Peer to peer server Statistics" show wrong status of connection: Server and client both on pfSense Version 2.4.4-RELEASE-p3 (amd64).
In Peer to Peer ( SSL/TLS ) OpenVPN there is p... Dmitry Kuleshov
05:39 AM pfSense Packages Feature #8878: Propagate user's description field into QR code for FreeRADIUS: Juraj Lutter wrote:
> Hi,
>
> it is often desirable (esp. when you have more than one identity added in your Goog... Juraj Lutter
05:39 AM pfSense Packages Feature #8878: Propagate user's description field into QR code for FreeRADIUS: Looks good to me. Juraj Lutter

08/28/2019

03:40 PM Bug #9708 (Feedback): /etc/inc/unbound.inc: Pfsense Default Unbound Configuration does not Prevent DNS Rebinding Attacks Against Localhost: Applied in changeset commit:afeb18ff0ecaec2e9d0da1801fe9cebf5b99a3ca. Jim Pingle
02:31 PM Bug #9708 (Resolved): /etc/inc/unbound.inc: Pfsense Default Unbound Configuration does not Prevent DNS Rebinding Attacks Against Localhost: By default Unbound attempts to prevent DNS rebinding attacks by stripping private (RFC1819) addresses out of DNS resp... Ben Tice
03:25 PM Feature #6787 (Feedback): NTP GUI sync/poll interval: Applied in changeset commit:8ef6844a34cd6765bfa09d2fdaf4f0609d6c59cb. Jim Pingle
03:18 PM Feature #6787 (Assigned): NTP GUI sync/poll interval: See also: #9439 Jim Pingle
03:19 PM Feature #9439 (Feedback): Poll Interval For GPS and PPS: The GUI part of this is I mentioned is in #6787
This can remain open to investigate whether or not values less tha... Jim Pingle
01:22 PM Feature #9439: Poll Interval For GPS and PPS: The documentation for ntpd says the minimum value is 4. Have you tried 3?
Though this value should probably be adj... Jim Pingle
01:05 PM Bug #9243 (Feedback): IPsec ID type keyid not explicitly set: Applied in changeset commit:3a73fc74ca54b1167fbecfb679d0e634f5f1ab2e. Jim Pingle
12:04 PM Todo #9603: Strongswan stroke is deprecated, move to swanctl/vici: Moving to swanctl means rewriting all the code that outputs the config to change from ipsec.conf to swanctl.conf styl... Jim Pingle
10:03 AM pfSense Packages Bug #9707 (New): Some networks already existing in deny Feeds are not stopped even if existing in custom deny list: Hi.
I have a Freepbx that use Fail2ban / IPtables that creates entries in IPtables for banned IP.
Using a little ... Laurent BONNIN
10:03 AM Feature #9706 (Pull Request Review): Increased number of colors for login screen: PR: https://github.com/pfsense/pfsense/pull/4084 Jim Pingle
09:54 AM Feature #9706 (Resolved): Increased number of colors for login screen: I use colors to quickly get an overview over which device I am logging in to.
I have used all the colors that are a... Mix Room

08/27/2019

03:35 PM Bug #8443: DHCP relay not starting after ovpnc interface is unchecked - vm 2.4.3: Probably need to at least prevent the OpenVPN interfaces from showing as choices for DHCP relay then if it won't run ... Jim Pingle
03:35 PM Bug #9522 (Feedback): Diagnostics > System Activity shows only the header: Applied in changeset commit:4b84c39dbed64f221a052ec5be1fa325f71a413b. Jim Pingle
03:14 PM pfSense Packages Feature #9588 (Pull Request Review): New package: node_exporter: Jim Pingle
03:09 PM Feature #9661 (Pull Request Review): Increase the number of DHCP/DHCPv6 NTP server options to three (or more): Jim Pingle
03:09 PM Bug #9595 (Pull Request Review): OpenVPN does not resync when running on a gateway group: Jim Pingle
03:09 PM Feature #9590 (Pull Request Review): RFE: Add additional prefix delegation size entries to dropdown-list: Jim Pingle
03:09 PM Bug #9580 (Pull Request Review): Dynamic DNS DNSimple client errors: Jim Pingle
03:09 PM Feature #9527 (Pull Request Review): Add ability for LDAP extended query on groups in RFC2307 containers.: Jim Pingle
03:09 PM Bug #9331 (Pull Request Review): Parallel Rekey fails for multiple Child SAs: Jim Pingle
03:09 PM Bug #9320 (Pull Request Review): Outbound NAT and multiple IPSEC IPs for mobile warriors: Jim Pingle
03:09 PM Feature #9256 (Pull Request Review): adjust frequency of geom rebuild notifications.: Jim Pingle
03:09 PM Feature #9206 (Pull Request Review): OpenVPN+RADIUS+Cisco AVPair ACL Enhancements/BugFixes: Jim Pingle
03:09 PM Feature #9152 (Pull Request Review): Sort diag_states_summary.php by states: Jim Pingle
03:09 PM Bug #9133 (Pull Request Review): "Show all configured leases" does not stay set after deleting a lease: Jim Pingle
03:09 PM Feature #9030 (Pull Request Review): Allow TLS Key Direction with OpenVPN: Jim Pingle
03:09 PM Feature #8645 (Pull Request Review): Upload certificate file instead of pasting: Jim Pingle
03:09 PM Feature #8160 (Pull Request Review): Accomodate both RADIUS and pool IP addresses in IPsec: Jim Pingle
03:09 PM Bug #8014 (Pull Request Review): DynDNS wildcard option doesn't work for provider Loopia: Jim Pingle
03:09 PM Feature #7304 (Pull Request Review): DHCP: Enable OMAPI Config: Jim Pingle
03:09 PM Bug #1605 (Pull Request Review): DHCP Server should group known clients by interface: Jim Pingle
02:49 PM Bug #9684 (Pull Request Review): System Notifications: Asterisks over writing current password causing notifications to stop working.: Jim Pingle
02:06 PM Todo #9417: Convert LDAP TLS setup from environment to LDAP_OPT_X_TLS_* set options: Taking this off 2.5.0. I backed the changes out. It appears to be an upstream problem in PHP still, and no movement o... Jim Pingle
01:15 PM Bug #7186 (Feedback): Unable to use national symbols in password fo ACB package: Applied in changeset commit:9d4ace0bf544b3190d31484cac684bca4dac2a0b. Jim Pingle
01:09 PM Bug #7146 (Closed): install_cron_job() causes inexplicable issues when saving package configuration: There haven't been any issues here for a while, and it's not worth rocking the boat with more changes at this point. Jim Pingle
01:00 PM Bug #9692 (Feedback): system_authservers.php: Descriptive name can be changed by removing read-only property via inspect element: Applied in changeset commit:24c4275d7882352330fafd517fc948cba27bb979. Jim Pingle
12:55 PM Feature #9695 (Feedback): Add Ability to Force NAT-T Encapsulation on IKEv2 Peers: Applied in changeset commit:9c4f5b95eed5534ab797f104ad9f687359bd4818. Jim Pingle
12:50 PM Feature #9705 (Feedback): Add kernel memory usage to status.php: Applied in changeset commit:df5862939e7449294305a4f270ebfdce2a99c42d. Jim Pingle
12:36 PM Feature #9705 (Resolved): Add kernel memory usage to status.php: The FreeBSD ZFS docs include some commands to calculate kernel memory (kmem) usage. Looks like it would be nice to ha... Jim Pingle
12:35 PM Feature #9694 (Feedback): Redact ACB encryption password from status.php: Applied in changeset commit:603764cbb089d2d0b6cd049d8ff8c8fae43d63d7. Jim Pingle
12:35 PM Bug #9448 (Feedback): Dynamic DNS options showing in GUI for IPv6 when not in use: Applied in changeset commit:7ba6788b155b92ad8c488c2891c9fe2601fe5c14. Jim Pingle
12:30 PM Bug #9259 (Feedback): User with "Deny Config Write" privilege is not fully prevented from creating accounts: Applied in changeset commit:acd7e5601ac6bc8b079bd6ea7f8b637a5ec89b5f. Jim Pingle
12:07 PM pfSense Packages Feature #9704 (New): Enable filter_username: Filtering the username passed into freeRadius can be beneficial in the case where the captive portal is authenticatin... Andrew Webster
10:25 AM Bug #9258 (Feedback): Error deleting tunnel type P2 when mixed with VTI: Applied in changeset commit:37c6083084617e3fd079876352109ff38aa6613b. Jim Pingle
09:55 AM Bug #9234 (Feedback): Wording consistency in Certificate Management notifications: Applied in changeset commit:0c51971bafc708dc034663f79c04c7d187ddeece. Jim Pingle
08:12 AM Feature #9703 (Duplicate): Certificate Manager Expiration Notification: It would be great if Certificate Manager will support expiration notification option for each existing certificate in... DRago_Angel [InV@DER]
02:54 AM pfSense Packages Feature #4503: GNUGateKeeper H.323 Proxy Package: I solved the problem with polycom videoconferencing, by installing this package, but it was on the old version. Of co... Aleksei Aksenov

08/26/2019

11:49 PM Feature #6960: Introduce Kea DHCP as an alternative DHCP server for IPv4 and IPv6: Hey Dan, we definitely know who you guys are. We use Kea on tnsr. Jim Thompson
08:27 PM Feature #6960: Introduce Kea DHCP as an alternative DHCP server for IPv4 and IPv6: For what it's worth, for my dayjob, run ISC's internal office network with a pair of pfsense boxen (official hardware... Dan Mahoney
03:50 PM Bug #9150 (Feedback): Web authentication RADIUS package shows PHP error if unable to resolve FQDN of RADIUS server: Applied in changeset commit:d832b6ce47a90fea03443401d072eb91906b6fc7. Jim Pingle
03:44 PM Bug #9150: Web authentication RADIUS package shows PHP error if unable to resolve FQDN of RADIUS server: I never could reproduce this with any combination of DNS failures (no server, server timeout, nxdomain, etc) but I ad... Jim Pingle
02:56 PM Bug #7848: NDP Table Sort by Expiration Error: The sortable library doesn't have a sorting type that can parse the duration in the format output by ndp and I didn't... Jim Pingle
02:35 PM Bug #4674 (Feedback): invalid state table entries after WAN IP change: Applied in changeset commit:86e6e0bcffcbb988dc7f80ac0aed25cad28d79eb. Jim Pingle
01:57 PM Bug #9550 (Resolved): New privilege matching method does not allow menu or tab links to anchors (#foo): Users with permissions for only traffic totals can see the tabs and change between them. Jim Pingle
01:51 PM Bug #9543 (Resolved): diag_dns.php: Reverse lookup of IPv6 fails with "Host must be a valid hostname or IP address.": Works fine now Jim Pingle
01:49 PM Bug #9582 (Resolved): PHP error setting up VLANs from the console: Jim Pingle
01:29 PM Bug #9447: Configuring LAGG at XG-7100 Switch Ports Broken: Patched attached for those who would like to test this against 2.4.4-p3. Jim Pingle
01:22 PM pfSense Packages Feature #9399 (Resolved): pkg support for SSH + sudo authentication via LDAP: requested package and options are present. Jim Pingle
01:21 PM Bug #9466 (Resolved): DHCP (IPv4) relay mistakenly listening on upstream interface: All feedback I have seen thus far has been positive. Jim Pingle
01:21 PM Feature #9531 (Resolved): [IPSEC] Add additional curve-based DH Groups (31+): Jim Pingle
01:20 PM Todo #9607 (Resolved): Update web server TLS versions for 2.5.0: This has been working fine, no reports of breakage that I've seen either. Jim Pingle
01:16 PM Bug #9584 (Resolved): Potential XSS in services_acb.php via hostname parameter with legacy settings: Legacy options are moot now, they have been removed. Jim Pingle
01:07 PM Bug #9564 (Resolved): Dynamic DNS Status - IPv4 format error for 'Cached IP': Still working fine with my Namecheap entries which failed before. Jim Pingle
01:05 PM Bug #9540 (Resolved): PHP Uncaught Error in Status/System Logs/Firewall/Dynamic View: Jim Pingle
01:04 PM Bug #9421 (Resolved): crypt_data() needs to support stronger key derivation: Jim Pingle
01:04 PM Bug #9408 (Resolved): OCSP stapling detection broken on 2.5.0: This has been fine since the fix I put in, no signs of it breaking again that I've noticed. Jim Pingle
01:02 PM Bug #9400 (Resolved): PHP scandir() error at boot: Jim Pingle
11:17 AM Bug #9699: WAN Interfaces Page - PPPoE breaks randomly when changes are made: That isn't enough. You need to start a forum thread to discuss the problem and provide a lot more detail, things like... Jim Pingle
11:07 AM Bug #9699: WAN Interfaces Page - PPPoE breaks randomly when changes are made: After the initial setup of a PPPoE connection on WAN interfaces page, changing settings on this page will randoml... Steven Cedrone
07:15 AM Bug #9699 (Not a Bug): WAN Interfaces Page - PPPoE breaks randomly when changes are made: Not enough information here for a valid bug report. I have several systems with PPPoE interfaces and none of them bre... Jim Pingle
02:53 AM Bug #9699: WAN Interfaces Page - PPPoE breaks randomly when changes are made: After the initial setup of a PPPoE connection on WAN interfaces page, changing settings on this page will randoml... Steven Cedrone
02:51 AM Bug #9699 (Not a Bug): WAN Interfaces Page - PPPoE breaks randomly when changes are made: After the initial setup of a PPPoE connection on WAN interfaces change changing settings on this page will randomly b... Steven Cedrone
09:37 AM Bug #9643: Limiters do not function properly on 2.5 snapshots: I experienced the same behavior as Greg M when updating from 2.4.4-p3 to 2.5.0. This was on a bare-metal install. Grant Peier
09:24 AM pfSense Packages Feature #4503: GNUGateKeeper H.323 Proxy Package: Hi guys!
I recently had the case of using a VSX 7000 polycom videoconferencing that necessarily uses the H323 or H46... Wesley Lucio dos Santos
07:50 AM pfSense Packages Bug #9681 (Feedback): [Monitoring] New views title are always in lower case.: PR has been merged. Thanks! Renato Botelho
07:13 AM pfSense Packages Feature #9701 (Rejected): Squid WPAD/PAC Settings: Since this would turn the firewall web server into a WPAD web server for the local network, it will never be added. T... Jim Pingle
04:48 AM pfSense Packages Feature #9701 (Rejected): Squid WPAD/PAC Settings: Adds a new tab to the Squid Server Web GUI to configure WPAD settings and setup a PAC file.
This would give users th... Kyle Klouzal
07:03 AM Feature #9702 (Resolved): OpenVPN "push-reset" option in Client Specific Override breaks "subnet" topology: Hi.
I have configured an OpenVPN server in Remote Access (SSL/TLS) mode with the "subnet" topology (preferred topo... Damien Gombault
03:32 AM pfSense Packages Feature #9700 (Feedback): Secure Squid HTTPS Proxy: As described here: https://forum.netgate.com/topic/145940/secure-squid-https-proxy
Squid Documentation: http://www.s... Kyle Klouzal
02:09 AM Bug #9698 (New): Monitoring graphs do not retain state after auto-refresh: When a monitoring graph is set to auto refresh it returns to its default configuration each time it refreshes. If ind... Christian Ullrich
01:58 AM pfSense Docs Correction #9697 (Resolved): Feedback on System Monitoring — Monitoring Graphs: *Page:* https://docs.netgate.com/pfsense/en/latest/monitoring/graphs/index.html
*Feedback:*
This page should me... Christian Ullrich

08/25/2019

07:23 AM Feature #2634: No IPv6 networks in firewall NAT rules: Thanks! Guy B

08/24/2019

06:29 PM Bug #9600 (Resolved): Add athp to wireless device regex list: This looks good:... Steve Wheeler
04:34 PM Bug #9669: dhcrelay stops working after certain time: Just rebooted the Server after ~15 Days uptime without any issues. I would say the fix is fine for that matter. Case ... Luki TJ

08/23/2019

01:36 PM Bug #9696 (Not a Bug): ACB fails if the Revision Reason contains 'Snort': Jim Pingle
01:34 PM Bug #9696 (Rejected): ACB fails if the Revision Reason contains 'Snort': Yeah, this is 'not a bug'. It deliberately does this to prevent Snort filling all the backup space with pointless ide... Steve Wheeler
01:22 PM Bug #9696 (Not a Bug): ACB fails if the Revision Reason contains 'Snort': If you run a manual 'Backup now' the back will fail if the Revision Reason field contains the word 'Snort'.
Howeve... Steve Wheeler

08/22/2019

12:16 PM Feature #9695: Add Ability to Force NAT-T Encapsulation on IKEv2 Peers: The code to handle that directive already there in the nat_traversal option but we disable that for IKEv2, looks like... Jim Pingle
11:49 AM Feature #9695 (Resolved): Add Ability to Force NAT-T Encapsulation on IKEv2 Peers: The strongswan documentation includes:
UDP encapsulation may also be forced, even if no NAT situation is detected,... Chris Linstruth
11:34 AM Feature #7671: Gateway Monitoring Via Custom Script or Telnet.: I do not know what I have to do here to help. I can help work on this (I can develop), but I have no idea how the co... Web Dawg
11:15 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: Ultimately it's not seeing any traction because the suggested solution isn't right. Essentially @dpinger@ is only a d... Jim Pingle
10:59 AM Feature #4354: Allow dpinger to ping more than one destination for a gateway.: I think that pfSense should use:
ping (ICMP)
https/http
DNS
You should be able to configure these dynamically... Web Dawg
10:19 AM Feature #7882 (Rejected): Seperator feature in DHCP Static mapping for this feature: The separator system was written for firewall rules which have selector checkboxes, have a specific order and draggab... Anonymous
08:30 AM Bug #8907 (Feedback): wizard.php - $field['type'] - "Select" doesn't have the attribute "Size" defined: Applied in changeset commit:7f486e5af62396622ca63b922ec6725de4df2bb5. Anonymous
06:59 AM Bug #8014: DynDNS wildcard option doesn't work for provider Loopia: Thanks! Jim Pingle
03:23 AM Bug #8014: DynDNS wildcard option doesn't work for provider Loopia: https://github.com/pfsense/pfsense/pull/4083 Kristoffer Ekenstam
02:24 AM Bug #9692: system_authservers.php: Descriptive name can be changed by removing read-only property via inspect element: I only figured this out because an auto-fill addon of the browser filled in that particular field, so yes I dont cons... Alex Z
01:04 AM Bug #9362: rc.dyndns.update: Cloudflare DDNS with proxy enabled doesn't work at all: Nathan Hand wrote:
> Underlying problem is /etc/inc/dyndns.class line 799. The value of dnsProxied is passed directl... Berzerker Berzerker

08/21/2019

04:54 PM pfSense Docs Correction #9381 (Resolved): FreeRadius 2.X package documentation and CaptivePortal associated documentation are mostly outdated: Jim Pingle
04:29 PM pfSense Docs Correction #9381: FreeRadius 2.X package documentation and CaptivePortal associated documentation are mostly outdated: This issue can be now marked as resolved I think A FL
02:32 PM Feature #9694 (Resolved): Redact ACB encryption password from status.php: Currently the redacted config does not redact that particular password, other parts are redacted:... Steve Wheeler
01:55 PM Feature #9693 (Feedback): Bypass automatic backups: Applied in changeset commit:6f6299a3a6aca1b7baf5d80d6d24325100363939. Anonymous
01:45 PM Feature #9693 (Resolved): Bypass automatic backups: If the reason/description string of a config back contains the string "-NoReMoTeBaCkUp" no ACB will be performed. The... Anonymous
01:48 PM Feature #7077: Display negotiated data encryption algorithm in OpenVPN connection status: Looks like this was finally merged in but it's not slated to be in an OpenVPN release until they put out 2.5. Jim Pingle
01:18 PM Feature #9538 (Resolved): add support for athp(4) driver: Renato Botelho
11:20 AM Feature #9538: add support for athp(4) driver: athp now loads correctly with the modules present and loader variable set:... Steve Wheeler
11:17 AM Bug #4231 (Resolved): bridge or lagg of openvpn link down after reboot: As stated, bridge is OK, LAGG is not. Closing this in favor of #9183 which is specific to LAGG and has a proposed fix. Jim Pingle
11:17 AM pfSense Packages Bug #9691: Suricata ips_mode Legacy not blocking: This issue was resolved via the Netgate Forum. The user had bypassed the pfSense GUI package installation process and... Bill Meeks
11:11 AM pfSense Packages Bug #7595: suricata custom SID Mgmt configuration missing after full system restore: This is no longer an issue with either the Suricata or Snort packages. Both packages now have the SID MGMT lists stor... Bill Meeks
11:10 AM Bug #9558 (Resolved): GPS NTP source PHP errors: This is fixed.
Tested against:... Steve Wheeler
10:41 AM Feature #4242: Two Factor or OTP Authentication for Admin Interface: Charlie Ross wrote:
> Hi developers!
>
> In a never-ending quest to beef up security, it would be great to have t... Dan Journo
10:40 AM Feature #9496 (Duplicate): Include the athp(4) driver.: Duplicated by #9538 but it has been worked on, so close this one Jim Pingle
10:26 AM Bug #9630 (Duplicate): cannot config WAN down que (Codel limiters) in floating rule without blocking incoming traffic.: Duplicated by #9643, but it has more complete information Jim Pingle
10:24 AM pfSense Packages Bug #9352 (Resolved): Duplicate default views in Status Monitoring that can't be removed.: Fixed by #9679 Jim Pingle
09:59 AM Bug #7419 (Duplicate): CloudFlare DDNS Not working for wildcard updates: Duplicated by #9361 but it has a PR which has been merged. Jim Pingle
09:47 AM Bug #8492: Enable setting PKCS#12 export password in Certificate Manager: The other request mentions 3DES but it isn't about 3DES, it's about encrypting exported private keys, which covers th... Jim Pingle
09:13 AM Bug #8492: Enable setting PKCS#12 export password in Certificate Manager: Bug #1192 refers to 3DES encryption which should no longer be used. The need to encrypt / protect a private key on ex... Hyrum Smith
09:46 AM Bug #7892 (Closed): AutoConfigBackup status reported incorrectly: This affects only the legacy "Gold" ACB system which is no longer in use. Anonymous
09:39 AM Feature #5437 (Closed): Auto Config Backup Stats display latest backup date-time: This feature no longer applies to the current ACB system which accommodates only a single host. Anonymous
09:29 AM Feature #8378 (Duplicate): allow webconfigurator to be configured to listen on only specified interface[s]: Duplicate of #628 Jim Pingle
09:20 AM Feature #9122 (Duplicate): Custom (failover) lagg interface order (UI): Duplicate of #1019 Jim Pingle
09:14 AM Feature #8558: Add more table sorting in various UI pages: Certs have sorting (and searching) now, see #9412
The other two could still be useful Jim Pingle
09:12 AM Bug #8481 (Duplicate): Editing multiple entries in multiple browser tabs causes problems or doesn't work: Duplicate of #8285 Jim Pingle
09:11 AM Bug #8462 (Not a Bug): UI - small gear icon/animation not centered: That's all handled by Font Awesome (it's fa-cog, fa-spin) so if there is an issue, it needs to be raised upstream. Th... Jim Pingle
09:06 AM Bug #8111 (Resolved): Disabled 1:1 NATs are not passed the "disabled" class (not greyed out): This has been in place for some time now. Jim Pingle
09:05 AM Bug #8002 (Not a Bug): wan not connected, no updates check: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
09:01 AM Bug #7620 (Resolved): State table cannot be displayed because lack of PHP memory: This was addressed a while ago. System > General, tick Require State Filter. Then large state tables won't be loaded ... Jim Pingle
08:59 AM Feature #8284 (Duplicate): Add duplicate option next to OpenVPN servers and clients: Duplicate of #5851 Jim Pingle
08:56 AM Bug #3445 (Resolved): Proxy URL behaviour for package list - trailing slash: Jim Pingle
08:54 AM Feature #5083 (Duplicate): Allow bridge members to be hidden from menu: Jim Pingle
07:09 AM Bug #9692: system_authservers.php: Descriptive name can be changed by removing read-only property via inspect element: We can fix this, but it's not really what I'd consider a bug. We disable the field so the user can't do that easily a... Jim Pingle
03:06 AM Bug #9692 (Resolved): system_authservers.php: Descriptive name can be changed by removing read-only property via inspect element: +Steps to reproduce:+
* Go to System -> User Mgmt -> Authentication Servers
* Edit an existing entry
* Open sour... Alex Z
07:03 AM Feature #9590: RFE: Add additional prefix delegation size entries to dropdown-list: Thanks! Jim Pingle
02:43 AM Feature #9590: RFE: Add additional prefix delegation size entries to dropdown-list: Jim Pingle wrote:
> Can you submit that change as a pull request on Github?
>
> https://docs.netgate.com/pfsense/... Andreas Bleischwitz

08/20/2019

03:49 PM Feature #6908: Alias copy, sort, search/replace functions: Sorting is possible now (click column headers) but the copy and search/replace are still desirable features to add. Jim Pingle
03:48 PM Feature #3506 (Duplicate): Firewall:Aliases - Sort/Move Function: Sorting aliases in the GUI can be done now (click column headers), other parts are covered by #6908 Jim Pingle
03:45 PM Bug #6588 (Closed): PHP suhosin max value length prevents Quagga OSPF from storing a very large zebra.conf: That limitation shouldn't be present these days (no suhosin on current PHP versions) Jim Pingle
03:41 PM Bug #6525 (Resolved): Mobile web interface can't scroll down all items in sub-menus: Linked PR has been merged, and the other parts appear to be covered by #6361 Jim Pingle
03:37 PM Feature #2049: Show Auto Generated Rules and Use them to turn features on/off when applicable: See also: #4828 Jim Pingle
03:37 PM Feature #4828 (Duplicate): Advanced option to show hidden firewall rules in web gui: Duplicate of #2049 Jim Pingle
03:35 PM Feature #1405 (Duplicate): Show interface in the Floating Rules list: Duplicated by #4629 but it had a PR, so keep it instead. Jim Pingle
03:34 PM Feature #4194 (Duplicate): Mass maintenance tools :-): Some of this we already have and the other parts are covered by other more specific (and individual) feature requests... Jim Pingle
03:29 PM Feature #4789 (Resolved): user interface / text fields are too short to display long alias names: After the Bootstrap change this doesn't appear to be an issue. Jim Pingle
03:28 PM Bug #4431 (Duplicate): Bandwidth not reported correctly in "Status: Traffic shaper: Queues": Duplicate of #4467 Jim Pingle
03:26 PM Feature #3508 (Closed): DNS Lookup - Additional links: We removed all tools links from the DNS lookup page a while ago. Third party sites are not reliable to link to in thi... Jim Pingle
03:24 PM Bug #3467 (Resolved): pfTop [Queue] doesn't show P/S or B/S: Fixed a few years ago, probably with commit:9a9661252aa6115d0fd0243bf303436d53afaaa3 Jim Pingle
03:17 PM Bug #6749 (Duplicate): Still responds to ARP after removing one of several Virtual IP - choparp not reconfigured: Duplicated by #7379 but it has a proposed fix Jim Pingle
03:16 PM Feature #7554 (Resolved): Sort list of Virtual-IPs: PR was merged two years ago Jim Pingle
03:15 PM Bug #9539: HA: admin user's authorized key(s) won't get synced: Fixing this may also fix #9622 Jim Pingle
03:15 PM Bug #9622: Changing admins membership does not replicate correctly to HA slave: Probably related to #9539 Jim Pingle
03:13 PM Bug #8051: XG-2758 - Wrong Interface Assignment: Looks like the 'RCC' model detection for mapping cards is not present in source:src/etc/inc/config.console.inc on CE.... Jim Pingle
03:10 PM Bug #8051: XG-2758 - Wrong Interface Assignment: Verified this is still different on 2.4.4-p3 CE Clinton Cory
03:05 PM Feature #7369 (Duplicate): user privileges - refine users rights to prevent admins to tamper with other admins accounts but still manage to the configuration: Duplicate of #5850 Jim Pingle
03:04 PM Feature #6794 (Resolved): Chinese Version Language Translation: We've had Chinese translations for some time now (zh_CN, zh_Hans_CN, zh_HK, zh_TW) Jim Pingle
03:01 PM Feature #997 (Closed): Add per-user setting for activating menu: Since many of the menu functions would require elevated privileges, I don't see this being as useful as I thought it ... Jim Pingle
02:57 PM Feature #8109 (Duplicate): UPnP & NAT-PMP ACL Aliases: Duplicate of #4265 Jim Pingle
02:57 PM Feature #4265: UPNP allow use of alias and schedule: The PR above for multiple ACLs was merged a long time ago, but there is still no support for Aliases for schedules. M... Jim Pingle
02:52 PM Bug #8135 (Closed): pfSense deletes itself after upgrade from 2.2.6 to 2.3.5 with haproxy installed: IIRC This was due to some of the dependencies involved, and it's been fixed for quite a while now. Jim Pingle
02:51 PM Bug #8016 (Closed): 1 pfsense out of several shows 2.4.0 available, not 2.4.1: Probably an issue with the local pkg environment. We have several documented workarounds in the upgrade guide for how... Jim Pingle
02:51 PM Bug #7955 (Closed): Upgrade in 2.4 GUI appears to fail when it actually succeeded (no D/L completion or reboot message, or sign of completion): This hasn't happened in quite a long time. Jim Pingle
02:50 PM Bug #7873 (Closed): When upgrading, some services/packages do not come back online on the first reboot (but do on the second): Either it was solved in the last couple years or was something local. I can't reproduce it here. The packages mention... Jim Pingle
02:49 PM pfSense Packages Bug #7595 (Not a Bug): suricata custom SID Mgmt configuration missing after full system restore: Jim Pingle
02:48 PM Bug #6233 (Closed): Bootloop with Alix after 2.3 upgrade: Problem is with 32-bit hardware which is no longer a supported architecture. Jim Pingle
02:47 PM Feature #2523 (Closed): Prompt for confirmation before upgrading to different architecture: This is no longer a concern. Jim Pingle
02:44 PM Bug #8468 (Rejected): Status / Queues show mostly NaN: Not enough information here for a valid bug report. Jim Pingle
02:43 PM Bug #8282 (Resolved): Enabling CODELQ on virtual interface VLAN crashes appliance: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
02:42 PM Bug #8061 (Resolved): LAN WAN Interfaces missing in Traffichshaper: These all appear to be old driver-specific instances of ALTQ support not being present for specific drivers at the time. Jim Pingle
02:39 PM Bug #4424 (Closed): Adding and removing shaper repeatedly causing interface crash: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
02:38 PM Feature #2960 (Closed): Add queue length adjustment capabilities to traffic shaper based on network size: As noted, it doesn't appear to be viable. Jim Pingle
02:22 PM Feature #3156: Grouping rules: Then it's a duplicate of #8365
There isn't anything unique here, it's covered by other existing feature requests, ... Jim Pingle
01:18 PM Feature #3156: Grouping rules: Wrong. It's not a duplicate.
I want to create a group like templates and than assign it to one or more interfaces. Grischa Zengel
12:46 PM Feature #3156 (Duplicate): Grouping rules: Duplicate of #1937 Jim Pingle
01:43 PM Bug #6799 (New): Negating ``<interface> net`` when a VIP exists on the interface results in unintended behavior: OK, I was going mostly off the subject + comments which didn't mention the negate specifically. Updated subject. Jim Pingle
01:29 PM Bug #6799: Negating ``<interface> net`` when a VIP exists on the interface results in unintended behavior: I believe that the negate address match rules not "blocking" any traffic is worth a deeper look. This wasn't really a... Chris Linstruth
01:16 PM Bug #6799 (Not a Bug): Negating ``<interface> net`` when a VIP exists on the interface results in unintended behavior: Adding alias nets to the interface macros was deliberate, so I'd say the only problem here is that pfBlocker won't le... Jim Pingle
01:39 PM Bug #3334: Status/Traffic Graph isn't IPv6 ready: See also: #7224 Jim Pingle
01:39 PM Feature #7224 (Duplicate): Abandon rate in favor of iftop: There is a PR for this which is under #3334 Jim Pingle
01:38 PM Bug #8217 (Resolved): Traffic Graph widget can not handle more than 4 interfaces: Jim Pingle
01:36 PM Bug #7312 (Not a Bug): Trafic Graph Widget Bug: Sounds like you had an interface there before and then removed it. The old interfaces will still show up, since pfSen... Jim Pingle
01:34 PM Feature #9587 (Duplicate): ZFS Mirror status dashboard widget: Duplicate of #7974 Jim Pingle
01:33 PM pfSense Packages Bug #9233 (Duplicate): Error adding new status monitoring view: Probably the same issue as #9679 which has been resolved. Jim Pingle
01:31 PM Feature #5922 (Closed): SNMP - enable SNMP v3 functionality: SNMPv3 (and IPv6!) is possible using the NET-SNMP package. Jim Pingle
01:30 PM Bug #4930 (Closed): IPSec interface missing in SNMP: Not sure what OP is referring to here. It was never a choice for binding, and it's there in the interface table from ... Jim Pingle
01:28 PM Feature #1169 (Closed): Add load balancer status in SNMP: Those who want to do this can set it up using the NET-SNMP package and custom extended commands. Jim Pingle
01:23 PM Feature #806 (Duplicate): Add private networks to rules dropdown: Duplicated by #1979 but it has more up-to-date info (IPv6, etc) Jim Pingle
01:22 PM Feature #8841 (Duplicate): Floating rules : add interface column: Duplicate of #4629 Jim Pingle
01:20 PM Feature #8713 (Duplicate): Allow user to disable/enable multiple firewall rules at one time: Duplicate of #2505 Jim Pingle
01:18 PM Bug #8636 (Resolved): pfSense_kill_states function does not parse protocol parameter correctly: PR was merged several months ago. Jim Pingle
01:13 PM Bug #8247 (Not a Bug): When in bridge / transparent mode, pfSense blocks UDP/4500 & ESP traffic regardless of origin: I don't see a bug here, but quirky remote equipment that needs special rules to handle those quirks. Of course a fire... Jim Pingle
01:11 PM Bug #8327 (Not a Bug): VLAN net, Default Deny and spoofed packets: There is not enough information here to classify this as a bug. Interfaces all have an implicit deny. If that is not ... Jim Pingle
01:09 PM Feature #1947: Option to kill all states when creating a block rule: See also: #8171 Jim Pingle
01:09 PM Feature #8171 (Duplicate): Close TCP connections if associated rule just has been disabled: Duplicate of #1947 Jim Pingle
12:58 PM Feature #7381 (Resolved): Option to disable alias popups in rules: PR at https://github.com/pfsense/pfsense/pull/3643 was merged long ago. Jim Pingle
12:56 PM Feature #7361 (Duplicate): 2.3.4 - Add possibility to modify UDP (First, Single, Multiple) and TCP Timeouts per rule and not only per global parameter: Duplicate of #1635 Jim Pingle
12:55 PM Feature #6392 (Duplicate): Allow folding based on separators in firewall rules: Duplicate of #1937 Jim Pingle
12:53 PM Feature #8140 (Duplicate): Feature Request: Zone Firewall between interfaces: Duplicate of #4165 Jim Pingle
12:52 PM Feature #4629: Rules Floating tab doesn't display interfaces: Though the PR at https://github.com/pfsense/pfsense/pull/1616 was merged a long time ago, it doesn't look like this s... Jim Pingle
12:44 PM Feature #2634 (Resolved): No IPv6 networks in firewall NAT rules: Last I saw, this was working for rdr, you just need to make sure everything you specify is the same address family. Jim Pingle
12:42 PM Feature #1937: Support for rule groupings: We have rule separators for this now, though being able to collapse items between separator bars may still be useful. Jim Pingle
12:41 PM Feature #1683: PF scrub min-ttl option: The pf @scrub@ directive supports the @min-ttl@ option, but there is no @max-ttl@. Jim Pingle
12:39 PM Feature #1064 (Closed): VoIP - Dynamic Pinholes for RTP: As stated, not something we will implement natively, and the third party code never appeared. People have been using ... Jim Pingle
12:36 PM Bug #7818 (Duplicate): NTP clock frequency not plotting on monitor graph: Duplicate of #6503 Jim Pingle
12:35 PM Bug #9266 (Not a Bug): status_monitoring.php : failed to have quality graph: Sounds like some kind of local system corruption in that RRD file. Resetting the RRD contents should fix it. Post on ... Jim Pingle
12:31 PM Bug #8151: Changing name on a gateway is not allowed: See also: #8218 Jim Pingle
12:31 PM Bug #8218 (Duplicate): Changing an interface name will break the manual created gateway-group: Gateways do not support being renamed, which is what happens if you rename a WAN with dynamic gateways. See #8151 Jim Pingle
12:27 PM Bug #9474 (Not a Bug): no default gateway after changing the wan interface ipv4 configuration type from dhcp to fixed ip: Sounds like a config issue but there isn't enough detail to say for certain.
For assistance in solving problems, p... Jim Pingle
12:20 PM pfSense Packages Feature #6508 (Closed): OSPF v3 - Quagga OSPF6d: It won't happen for Quagga, but it's in FRR now and works. Jim Pingle
12:19 PM Bug #5833 (Closed): OpenVPN reports "no route to host" although a GW Group is selected for failover: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
11:04 AM Feature #6384 (Duplicate): Allow IPSEC P1 to have 2 peer remote gateway IP addresses to allow VPN failover faster without requiring DDNS: Jim Pingle
11:03 AM Bug #7536 (Duplicate): <sendpacket> sendmsg on cpsw0: Permission denied: Duplicate of #8271 Jim Pingle
10:59 AM Feature #9590: RFE: Add additional prefix delegation size entries to dropdown-list: Can you submit that change as a pull request on Github?
https://docs.netgate.com/pfsense/en/latest/development/sub... Jim Pingle
10:47 AM Bug #8271 (Closed): <sendpacket> sendmsg on cpsw0: Permission denied: I can't reproduce this here and the report is a bit old. If you can come up with a way to reliably reproduce the erro... Jim Pingle
10:43 AM Bug #8081 (Closed): NICs malfunction: This report is from a few pfSense and FreeBSD versions ago. Please re-test this on a current release. If there is sti... Jim Pingle
10:35 AM Bug #7673 (Not a Bug): multi wan 0.0.0.0: Old report and I'm not sure there is a bug here. The description says the same IP address is used multiple times, and... Jim Pingle
10:32 AM Bug #7639 (Not a Bug): NAT does not work between OpenVPN and IPsec tunnels: NAT for IPsec must be done using P2 NAT entries not NAT rules. Jim Pingle
10:30 AM Bug #7534 (Not a Bug): gif interface with /64 subnet gets configured as /128: Having /128 on the gifX interface is normal and expected. The other things here appear to be fixed. Users are not all... Jim Pingle
10:26 AM Feature #4209 (Resolved): Releasing DHCP on WAN interface should send a release: PR was merged years ago. Jim Pingle
10:26 AM Bug #6921 (Not a Bug): Poor speed with Chelsio T420-CR: There isn't enough information here to prove a bug and it's been several years (and pfSense versions) since the initi... Jim Pingle
10:20 AM Feature #3162: MLPPP Status of connections: See also: #9633 Jim Pingle
10:14 AM Bug #781 (Resolved): Entering sim code problem on a Huawei E1752: Please re-test on a current version and report back. I recall this being worked on and fixed several years ago. Jim Pingle
10:12 AM Bug #8882 (Incomplete): Interface assignments lost on reboot: There is not enough information here for a valid bug report, and this site is not for support or diagnostic discussio... Jim Pingle
10:05 AM Bug #2754 (Duplicate): PPP and 3G: Setting PIN in advanced options not working, stick works after removing SIM PIN: Jim Pingle
09:55 AM pfSense Packages Bug #7107 (Resolved): IPv6 blocklists generate IPv4 auto-rules: Jim Pingle
09:08 AM pfSense Packages Bug #7107: IPv6 blocklists generate IPv4 auto-rules: This is resolved in pfBlockerNG-devel and can be closed. BBcan177 .
08:56 AM pfSense Packages Bug #7993 (Closed): zabbix 3.4 agent: Outdated report. Stated version is EOL, and the stated version of Zabbix is no longer available either. Jim Pingle
08:44 AM Bug #8960 (Resolved): VGA console won't boot in 2.4.4 upgrade - Bug: Probably a duplicate of #9021, and if not, then it's most likely solved on 2.5.0 (FreeBSD 12.x) Jim Pingle
08:42 AM Bug #8336 (Closed): ESXi 6.5u1 displays superfluous error message with Netgate OVA iamge: OVA was discontinued some time ago, and this particular error has been solved in recent ESX/vmware tools versions any... Jim Pingle
08:39 AM Feature #7962 (Resolved): Support for Intel 553 network card: FreeBSD appears to have added support for that card a while back. Re-test on a current version (2.4.4-p3 or later), a... Jim Pingle
08:30 AM pfSense Packages Bug #9691 (Rejected): Suricata ips_mode Legacy not blocking: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
08:09 AM pfSense Packages Bug #9691 (Rejected): Suricata ips_mode Legacy not blocking: Good Morning.
I running suricata in pfSense 2.4.4 - p3 in "Legacy" mode, but not blocking.
I noticed in suricata lo... Wesley Peres
07:18 AM Bug #8294: Icmp redirect doesn't use CARP IP: ICMP is connectionless, the OS will reply from whichever address is "closest" to the target. The firewall cannot tell... Jim Pingle
02:35 AM Bug #8294: Icmp redirect doesn't use CARP IP: Not sure it is the same thing.
I am not talking about some devices that check the src mac address, I am talking abou... Denis Grilli
07:14 AM Bug #8014 (New): DynDNS wildcard option doesn't work for provider Loopia: OK, can you submit that change as a pull request on Github then? Thanks!
https://docs.netgate.com/pfsense/en/lates... Jim Pingle
03:48 AM Bug #8014: DynDNS wildcard option doesn't work for provider Loopia: PR 3753 didn't solve this problem, have checked the latest version.
$this->_dnsWildcard is either ON or 1. Never O... Kristoffer Ekenstam
01:40 AM Bug #9362: rc.dyndns.update: Cloudflare DDNS with proxy enabled doesn't work at all: Nathan Hand wrote:
> Underlying problem is /etc/inc/dyndns.class line 799. The value of dnsProxied is passed directl... Emmanuel Cardenas

08/19/2019

06:45 PM Bug #9690 (New): Ethernet flow control should be disabled by default: Ethernet flow control has no place on a firewall except in very rare scenarios and should be disabled by default.
... Chris Linstruth
04:30 PM Bug #9689: DHCP server should be able to advertise interface IP automatically even with alternative DNS service: The comments did not accurately reflect the feature request, and once rejected, experience suggested the issue would ... Chaos215 Bar2
01:26 PM Bug #9689 (Duplicate): DHCP server should be able to advertise interface IP automatically even with alternative DNS service: Duplicate of #8234
Making a new issue doesn't change the previous comments. Jim Pingle
12:57 PM Bug #9689 (Duplicate): DHCP server should be able to advertise interface IP automatically even with alternative DNS service: The text below the "DNS servers" fields on the DHCP server configuration reads "Leave blank to use the system default... Chaos215 Bar2
03:41 PM Bug #8541 (Rejected): pf blocking OpenVPN connection causing OpenVPN fail repeatedly and then connecting successfully when connection is no longer being blocked: Not enough information here for a valid bug report. This site is not for support or diagnostic discussion.
For ass... Jim Pingle
03:40 PM Feature #3474 (Duplicate): Openvpn client-specific-overrides ip conflicts: Duplicate of #4728 Jim Pingle
03:36 PM Bug #8225 (Not a Bug): wrong gateway/monitor address for OpenVPN IPv6 gateway?: For a remote access server there is no "gateway", so it tried to guess (incorrectly). Probably not a great solution h... Jim Pingle
03:28 PM Bug #7286 (Incomplete): OpenVPN client is unreliable when you have multiple tunnels: Not enough information here for a valid bug report.
For assistance in solving problems, please post on the "Netgat... Jim Pingle
03:27 PM Bug #6936 (Closed): OpenVPN client boot race causes intermittent dependent rule failure.: No feedback, and likely fixed by other work (see previous comments) Jim Pingle
03:26 PM Bug #3022 (Resolved): OpenVPN does not failover to the 2nd configured LDAP auth.server: This has been working for a while now. Jim Pingle
03:21 PM Bug #7818: NTP clock frequency not plotting on monitor graph: Still happening on 2.5. Other values are OK, but freq is always @0.00@ Jim Pingle
03:19 PM Feature #7201: NTP Support multiple GPS reference clocks: PR was closed due to a timeout -- Requested changes were not made in a timely manner. Jim Pingle
03:18 PM Feature #7287: NTP add support for ACTS ref clock: PR was closed due to a timeout -- Requested changes were not made in a timely manner. Jim Pingle
03:18 PM Feature #7284: NTPd Autoset GPS device baud rate: PR was closed due to a timeout -- Requested changes were not made in a timely manner. Jim Pingle
03:13 PM Feature #7910 (Duplicate): Notification GUI: Duplicate of #4128 Jim Pingle
03:12 PM Bug #8535 (Duplicate): SMTP fails to work with STARTTLS and TLS: Some of this appears to be a duplicate of #8313 and others may be a settings issue. If you still have problems, post ... Jim Pingle
03:11 PM Bug #7106 (Not a Bug): TLS SMTP notification messages fail with expired certificate: There are options to ignore invalid certificates, but honestly it did the right thing here. If an expired certificate... Jim Pingle
03:10 PM Feature #606 (Rejected): Alert administrator on new pfSense versions or package versions: You can subscribe to the announcement list to get an e-mail when upgrades are available. This kind of notification wo... Jim Pingle
02:58 PM Todo #8350: Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: As a part of this, make sure to check other logs that were not displayed in the GUI before, such as the nginx logs, t... Jim Pingle
02:57 PM Bug #9629 (Duplicate): block bogon IPv4 flagged as IPv6: Technically a duplicate of #9140 -- Same root cause. Jim Pingle
02:54 PM Bug #8448 (Closed): Log size modification broken: Issue will be moot once #8350 is implemented. Jim Pingle
02:54 PM Feature #7926 (Closed): limit clog -f look-back size: Issue will be moot once #8350 is implemented. Jim Pingle
02:52 PM Feature #6155 (Closed): shipment of logs using e.g. filebeat: Issue will be moot once #8350 is implemented. Jim Pingle
02:49 PM Feature #4591: IPSec Failover Support for IP Addresses instead of Dynamic DNS / Failover Group: See also: #6384 Jim Pingle
02:49 PM Feature #6384: Allow IPSEC P1 to have 2 peer remote gateway IP addresses to allow VPN failover faster without requiring DDNS: Duplicate of #4591 Jim Pingle
02:47 PM Feature #9605 (Duplicate): Support custom CIDR on IPSEC Auto-Exclude LAN Address: Duplicate of #3329 Jim Pingle
02:44 PM Bug #9444 (Closed): Multi-WAN IPsec does not fail over with Gateway Group, needs restart: Jim Pingle
02:42 PM Feature #9309: Allow manual selection of IPsec IKE Pseudo-Random Function (PRF): Adding another selector to set the prf (with an option to automatically assume it based on Hash choice) seems best, b... Jim Pingle
02:36 PM Bug #9243: IPsec ID type keyid not explicitly set: In fixing #4811 (and #4792) the prefix was dropped from keyid identifiers, see commit:d44e7dc081d01eb106cbc5d4871a88b... Jim Pingle
02:27 PM Bug #9049 (Not a Bug): IPSec statuspage shows both connected and connecting tunnel: The GUI displays what strongSwan reports. If we suppress information in the suggested way, it would make diagnosing p... Jim Pingle
02:22 PM Bug #6370: IPSEC bound to WAN gateway group and Dynamic DNS doesn't to fail back tunnel to WAN on DDNS update: See also: #8286 Jim Pingle
02:22 PM Feature #8286 (Duplicate): IPsec on Multiwan fail back to Tier1 WAN after it is back UP: Duplicate of #6370 Jim Pingle
01:44 PM Bug #7420 (Closed): ipsec status freezing: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
01:42 PM Feature #4826 (Resolved): Allow configuration of multiple phase1 proposals: Added a while ago in #8186 (PR https://github.com/pfsense/pfsense/pull/3711 ) Jim Pingle
01:40 PM Bug #7325 (Closed): IPsec VPN Phase2 assigned with idem reqid routing a other VPN Phase2: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
01:39 PM Bug #7187 (Closed): IPSec IKEv2 additional P2 not written to config: Jim Pingle
01:37 PM Feature #5919 (Duplicate): Add a control to the web gui to allow the setting of leftsendcert in IPSec: This appears to be a duplicate of #6082 but if it's not, which scenarios still do not work?
In the code as it is t... Jim Pingle
01:32 PM Feature #2776 (Resolved): Unknown Radius-Attributes: This has been possible (as much as it can be) since pfSense switched to strongSwan years ago. Jim Pingle
01:23 PM Bug #8294 (Not a Bug): Icmp redirect doesn't use CARP IP: That's expected behavior and not something we can easily rectify (past attempts have been unsuccessful) -- See #6957 Jim Pingle
01:17 PM Feature #7395 (Duplicate): IPv6: Display prefix assigned by ISP: Duplicated by #8946 but it has better info and a PR with a proposed solution. Jim Pingle
01:14 PM Bug #1605: DHCP Server should group known clients by interface: Re-targeting due to pending PR Jim Pingle
01:14 PM Bug #4584 (Duplicate): Static Mapped clients on one LAN get a DHCP IP from another LAN even when Deny unknown clients is checked on the other LAN: Duplicate of #1605 Jim Pingle
01:12 PM Feature #8849 (Duplicate): DHCP Custom configuration: Duplicate of #5080 Jim Pingle
01:11 PM Bug #8875 (Duplicate): Separator in DHCP Server: Duplicate of #7882 Jim Pingle
01:07 PM Feature #8496 (Duplicate): Allow user to backup multiple sections of their configuration: Duplicate of #3696 Jim Pingle
01:02 PM Bug #6337 (Closed): Pfsense 2.3 on MS hyperV: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
12:57 PM Feature #8234: DHCP server should be able to advertise interface IP automatically even with alternative DNS service: https://redmine.pfsense.org/issues/9689 Chaos215 Bar2
12:55 PM Feature #8234: DHCP server should be able to advertise interface IP automatically even with alternative DNS service: Apologies, but I'm going to file this issue again. The request is for a checkbox to tell the DHCP server to advertise... Chaos215 Bar2
10:18 AM Feature #8234 (Rejected): DHCP server should be able to advertise interface IP automatically even with alternative DNS service: There is no way for a the base system to know such a service is available from a package, and since you can just type... Jim Pingle
12:55 PM Bug #5558 (Duplicate): Infinite cycling with Wifi configure in Infrastructure mode + WPA2 + DHCP.: Duplicate of #7960 (which has been fixed for a couple years now) Jim Pingle
12:50 PM Feature #410 (Resolved): Eliminate the interface mismatch prompt and try to do the right thing automatically: There have been changes for this in recent years to do the right/expected things on recognized (and common) hardware ... Jim Pingle
12:47 PM Bug #9097: ECL can't locate config.xml unless device is MBR-partitioned: Changing category, ECL is in base, not the installer, so it doesn't need changes to the ISO to test. You can leave th... Jim Pingle
12:42 PM Bug #9232 (Duplicate): pfSense cant connect to hosts on the internet using non-local gateway via interface specific route after reboot: Duplicate of #7380 Jim Pingle
12:41 PM Bug #7483 (Not a Bug): After renaming a WAN Interface its looses his Tier: Gateways do not support being renamed, which is what happens if you rename a WAN with dynamic gateways. See #8151 Jim Pingle
12:38 PM Bug #7380: WAN DHCP Gateway Outside of Subnet Causing Route Issues: PR was closed due to timeout, requested changes were not made in a timely manner. Jim Pingle
12:36 PM Feature #3370 (Resolved): Permit reorder gateways: This has been solved in recent versions by the ability to set a default gateway group. Jim Pingle
12:36 PM Feature #2985 (Resolved): Default gateway switching switches to lan gateway if multi lan config: This has been solved in recent versions by the ability to set a default gateway group. Jim Pingle
12:34 PM Bug #7052 (Rejected): Fails to monitor ipv6 gateway: Not enough information here for a valid bug report. Jim Pingle
12:33 PM Bug #9631 (Closed): Multicast-Routing realy supported in actual pfSense !!??: After reading the thread I don't see a bug here. Looks like the "fix" is for someone to make a package for pimd to se... Jim Pingle
12:30 PM Bug #9606 (Not a Bug): Realtek 8168/8111 NIC unstable driver: You need to lobby FreeBSD to include that newer driver in a release. We try not to maintain local changes of that nat... Jim Pingle
12:28 PM Bug #9021 (Closed): FreeBSD 11.2 fails to boot on Celeron J1900: Upstream problem, appears to be fixed by FreeBSD 11.3 / 12.1, nothing for us to do here, whichever version we use for... Jim Pingle
12:24 PM Bug #9435: Dynamic DNS Update events do not occur after certain failover event cases: See also: #9667, #7731 Jim Pingle
12:24 PM Bug #7731 (Duplicate): DynDNS fail to update after connection lose: Duplicated by #9435 but it has a more accurate description. Jim Pingle
12:23 PM Bug #7597 (Duplicate): DynDNS fail to update after connection lose: Duplicate of #7731 Jim Pingle
12:21 PM Bug #9667 (Duplicate): Dynamic DNS is not updated when used with a Multi WAN gateway group: Duplicate of #9435 Jim Pingle
12:20 PM Bug #9362: rc.dyndns.update: Cloudflare DDNS with proxy enabled doesn't work at all: Can you submit that change as a pull request on github?
Thanks. Jim Pingle
12:19 PM Bug #9210 (Not a Bug): dnsmadeeasy not working on PPPoE interface: A connection timeout sounds more like a routing issue than anything specific to PPPoE or DynDNS. If you can still rep... Jim Pingle
12:18 PM Bug #9306 (Duplicate): DNS Made Easy client on PPPoE interface not working: Duplicate of #9210 Jim Pingle
12:16 PM Bug #8951 (Duplicate): Dynamic DNS shows Hostname that is not define: What's left here is a duplicate of #7718 Jim Pingle
12:14 PM Bug #8014 (Resolved): DynDNS wildcard option doesn't work for provider Loopia: PR was merged a long time ago.
https://github.com/pfsense/pfsense/pull/3753 Jim Pingle
12:13 PM Bug #7027 (Resolved): Dynamic DNS dyndns.org no longer updates: Jim Pingle
12:12 PM Feature #1825 (Resolved): Dynamic DNS client IPv6 support: Various providers have working IPv6 support, there is no longer a general issue here. Jim Pingle
12:10 PM Bug #6566 (Duplicate): Cloudflare DnyDNS Update with subdomains: Duplicate of #6778 which was fixed years ago in commit:2446fffa5932e8debcaf165bfaf5492cea429c60 Jim Pingle
12:08 PM Feature #4644 (Resolved): Dyndns Loopia Wildcard: PR was merged a long time ago.
https://github.com/pfsense/pfsense/pull/3753 Jim Pingle
11:52 AM Feature #9688: restartallwan - pfSsh.php script to restart all wan interfaces: https://github.com/pfsense/pfsense/pull/4086 Viktor Gurov
11:49 AM Feature #9688 (Resolved): restartallwan - pfSsh.php script to restart all wan interfaces: This script looks for all WAN interfaces by checking which has gateways
and then it simply disable / enable them
us... Viktor Gurov
10:52 AM Feature #7525 (Resolved): Added ability to disable automatically added host entries in unbound: PR was merged a long time ago.
https://github.com/pfsense/pfsense/pull/3725 Jim Pingle
10:51 AM Bug #7557 (Rejected): Unbound (DNS Resolver) Domain Overrides need "." at the end to work: Jim Pingle
10:51 AM Feature #4399 (Closed): Expose more of the DNSSEC-related hardening options in the GUI: Jim Pingle
10:37 AM Bug #8086 (Closed): DHCPv6 no longer working: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
10:37 AM Bug #6852 (Duplicate): Commit 8f86722 breaks DHCPv6 leases status page: Jim Pingle
10:32 AM Feature #8777 (Duplicate): DHCPD - WebGUI Permit Classes and Matches If: Duplicate of #2983 Jim Pingle
10:32 AM Feature #2983: DHCPD: Add vendor-class-identifier and MAC-OIDs: See also: #8777 Jim Pingle
10:27 AM Feature #2323: GUI doesn't allow to configure DHCP server to serve IP addresses belonging to subnets wich are not associated with an interface: See also: #2774 Jim Pingle
10:27 AM Feature #2774: Extend DHCP Pools code to allow using different subnets: See also: #2323 Jim Pingle
10:25 AM Feature #8632 (Duplicate): dhcpd ipv4 - fix gui config to accept multiple subnets and/or answer requests from relay servers: Duplicate of #2323 Jim Pingle
10:25 AM Feature #5544 (Rejected): DHCP static mapping from RADIUS: Unlikely there will be a way to make this happen. There isn't a way for DHCP to send the request off to a RADIUS serv... Jim Pingle
10:17 AM Bug #7429 (Rejected): DHCP service error greater than 10 on shared network: Jim Pingle
10:16 AM Bug #6725 (Rejected): DHCP Server > TFTP server name and custom dhcp options in GUI and in dhcpd.conf but missing on the wire: The server sends the options requested by the client. If the client doesn't request it, it won't be in the packets. Jim Pingle
10:13 AM Feature #4291 (Rejected): combined dynamic/static ARP: This is expected (as per the other comment here). Either that or the request is unclear. There have also been changes... Jim Pingle
10:11 AM Bug #4408 (Closed): Changes to DHCP-services crashes GUI and DHCP daemon when many leases are in use: This was most likely from the duplicate lease cleanup which was removed years ago in commit:306b9d003078f40999d352803... Jim Pingle
10:10 AM Bug #3233 (Closed): DHCP options slow to save with large lease files: This was most likely from the duplicate lease cleanup which was removed years ago in commit:306b9d003078f40999d352803... Jim Pingle
10:10 AM Feature #4413 (Duplicate): Vendor specific option spaces: Duplicate of #2983 Jim Pingle
07:27 AM pfSense Docs Correction #9686: Feedback on Firewall — Floating Rules: To simplify: Please call out that "Without Quick checked, the rule will only take effect if no other rules match the... David G
04:44 AM pfSense Docs Correction #9686 (Duplicate): Feedback on Firewall — Floating Rules: *Page:* https://docs.netgate.com/pfsense/en/latest/book/firewall/floating-rules.html
*Feedback:*
Nice page howe... David G
07:19 AM pfSense Docs Correction #9685: Processing order of ``match`` action for Floating Rules is ambiguous: To furhter simlpify (and if my understaning is correct) can be said that: MATCH rule applies immediately, it doesn't ... David G
06:52 AM pfSense Docs Correction #9685: Processing order of ``match`` action for Floating Rules is ambiguous: I have to correct myself.
Processing order remains the same regardless Quick or non Quick
1. Floating rules (Quick ... David G
04:44 AM pfSense Docs Correction #9685 (Closed): Processing order of ``match`` action for Floating Rules is ambiguous: *Page:* https://docs.netgate.com/pfsense/en/latest/firewall/floating-rules.html
*Feedback:*
Nice page however M... David G
07:05 AM Feature #9532 (Resolved): GUI indication and options for MDS mitigation: Jim Pingle
07:04 AM Bug #9420 (Resolved): crypt_data() uses deprecated openssl syntax for passphrase: Jim Pingle
07:04 AM Feature #9323 (Resolved): Option to hide 'Kernel PTI' from sysinfo widget: Jim Pingle
07:04 AM Bug #9218 (Resolved): SNMP sysDescr does not display hostname and patch version: Jim Pingle
07:01 AM Bug #9292 (Resolved): Default route as indicated by "(Default)" does not match the actual default route on the OS.: Renato Botelho

08/18/2019

10:33 PM Feature #9532: GUI indication and options for MDS mitigation: Dashboard reflects chosen MDS settings. Looks good. Chris Linstruth
10:19 PM Bug #9420: crypt_data() uses deprecated openssl syntax for passphrase: Code uses new command line options to openssl. Encrypted backups result. Looks good. Chris Linstruth
10:00 PM Feature #9323: Option to hide 'Kernel PTI' from sysinfo widget: Tested disabling both PTI and MDS in the widget. Works. Chris Linstruth
09:57 PM Bug #9292: Default route as indicated by "(Default)" does not match the actual default route on the OS.: I tested this several ways. Looks good. Chris Linstruth
09:44 PM Bug #9218: SNMP sysDescr does not display hostname and patch version: $ snmpget -c public -v1 172.25.228.13 iso.3.6.1.2.1.1.1.0
SNMPv2-MIB::sysDescr.0 = STRING: pfSense pfSense-c.lab.ex... Chris Linstruth
03:46 PM Bug #9072: RRD graph mouseover information shows up as Mb when unit size is set to MB: Jared Dillard wrote:
> Thanks for digging into the problem and for testing the fix!
I'm running 2.4.4-RELEASE-p3 ... Axel Taferner

08/17/2019

07:31 PM Bug #9684 (Resolved): System Notifications: Asterisks over writing current password causing notifications to stop working.: When you double click the Test SMTP Setting Button, it would the statement that would catch it from overwriting saved... John Forte

08/16/2019

03:13 PM Bug #8492 (Duplicate): Enable setting PKCS#12 export password in Certificate Manager: Duplicate of #1192 Jim Pingle
03:13 PM Feature #8634 (Duplicate): Enhance the certificate manager to support private keys with passphrases: Duplicate of #1257 Jim Pingle
03:07 PM Feature #1761 (Rejected): Allow packages files and configuration synchronization for CARP: Packages are too different and may not be viable for this scenario. It's up to the individual packages to implement H... Jim Pingle
03:03 PM Bug #9465 (Duplicate): Lost default gateway after recover from failover with CARP VIP and HA: Duplicate of #9358 Jim Pingle
03:02 PM Bug #8420 (Not a Bug): Not possible setting up voucher configuration. On save, the form is asking to fill in the synchronization data.: Jim Pingle
03:01 PM Bug #9303 (Resolved): HA sync : disabling captive portal HA sync does remove all zones on slave: Jim Pingle
02:45 PM pfSense Packages Bug #9355 (Bogus): Telegraf Package - https for InfluxDB Server: Jim Pingle
02:45 PM pfSense Packages Bug #8425 (Resolved): telegraf not reporting memory: PR at https://github.com/pfsense/FreeBSD-ports/pull/522 was merged a long time ago. Jim Pingle
02:34 PM pfSense Packages Bug #9403 (Resolved): Suricata - Checkbox 'Traffic Flows' enables logging for both logging formats: Jim Pingle
01:42 PM pfSense Packages Bug #3708 (Closed): Error with order field while creating the first entry in "groups ACL" for squidGuard package: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
01:42 PM pfSense Packages Bug #6301 (Closed): Error on squidGuard's Common ACL tab after enabling blacklists: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
01:42 PM pfSense Packages Bug #7780 (Closed): Blacklist update doesn't work on Firefox: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
01:38 PM pfSense Packages Bug #7610 (Closed): Squid use all memory ram.: Jim Pingle
01:38 PM pfSense Packages Bug #7438 (Closed): Squid 0.4.36_2 Remote Cache Parent not working: Jim Pingle
01:35 PM pfSense Packages Feature #8345 (Resolved): pfSense-pkg-softflowd: Added additional options now available in softflowd-0.9.9_1: PR was merged a long time ago. Jim Pingle
01:35 PM pfSense Packages Bug #7674 (Resolved): Issue Downloading Snort Alert Log Download: Jim Pingle
01:34 PM pfSense Packages Bug #9164 (Resolved): Snort barnyard2 / pfSense 2.4.4-p1 issue: Jim Pingle
01:32 PM pfSense Packages Feature #8190 (Resolved): Enhance RRD_Summary package with historical reporting: PR was merged a long time ago. Jim Pingle
01:31 PM pfSense Packages Bug #4996 (Closed): Quagga not coming up after pfSense restart on OpenVPN tunnels: Old report and no recent recurrences. Lots of things in this area have changed, so most likely it's either fixed no l... Jim Pingle
01:31 PM pfSense Packages Feature #6844 (Closed): Web configuration for quagga ospf6d: If you need OSPF6, use the FRR package. It is in the GUI and works well there. Jim Pingle
01:31 PM pfSense Packages Bug #5732 (Closed): Qagga: Different output in ospfd.conf based on order of interfaces.: One of many issues that are handled better in the FRR package. If you still have problems, migrate to FRR. Jim Pingle
01:29 PM pfSense Packages Bug #8811 (Resolved): in pfblockerng when change Rule Order generates duplicate all rules.: Jim Pingle
01:29 PM pfSense Packages Bug #9050 (Resolved): Antartica does not make a rule: Jim Pingle
01:29 PM pfSense Packages Bug #8903 (Resolved): pfBlockerNG: PHP error: PR was merged a long time ago. Jim Pingle
01:29 PM pfSense Packages Bug #8844 (Duplicate): PFBlockerNG-Dev: Jim Pingle
01:29 PM pfSense Packages Bug #8825 (Resolved): Unable to activate any of the GeoIP blocking lists - keeps getting reset to disabled with PHP errors: PR was merged a long time ago. Jim Pingle
01:29 PM pfSense Packages Bug #8318 (Resolved): PFBlockerNG removes alias file when using advanced inverted rule: Jim Pingle
01:29 PM pfSense Packages Bug #8699 (Resolved): 3x PHP in pfblockerng.inc (912/915/4687): Jim Pingle
01:26 PM pfSense Packages Bug #7404 (Not a Bug): OpenVPN Client Export with custom DynDNS not working: All you have to do is choose "Other" from the drop-down and then you can put in whatever hostname you like. Jim Pingle
01:26 PM pfSense Packages Feature #2050 (Closed): Add IPv6 support to the openbgp package: I doubt this will ever materialize, but you can do IPv6 BGP in the FRR package now. Jim Pingle
01:22 PM pfSense Packages Bug #8550 (Closed): OpenBGPd: bgpd is not started at boot: This hasn't been happening for a long time now. Jim Pingle
01:22 PM pfSense Packages Bug #7067 (Closed): usbhid-ups - no such file or directory: Jim Pingle
01:17 PM pfSense Packages Bug #9185 (Resolved): Mailreport - Cant sending repports if multiple emails addresses in smtpnotifyemailaddress: PR was merged a long time ago. Jim Pingle
01:17 PM pfSense Packages Feature #8416 (Resolved): Mailreport - Minute of the Hour: PR was merged a long time ago. Jim Pingle
01:16 PM Feature #9203 (Closed): CRAM-MD5 for IMAP/SMTP: You can use STARTTLS or SMTP over SSL/TLS, which makes this a bit of a moot point. Besides that, it's up to whatever ... Jim Pingle
01:13 PM pfSense Packages Feature #8196: pfSense-pkg-LCDproc: add a shutdown/reboot control menu: PR was closed due to timeout - Requested changes were not made. Jim Pingle
01:13 PM pfSense Packages Feature #8198: pfSense-pkg-LCDproc: Add a link status screen for each interface: PR was closed due to timeout - Requested changes were not made. Jim Pingle
01:11 PM pfSense Packages Bug #6756 (Resolved): Updating cloned backend in WebGUI updates the original backend instead of the cloned backend: Jim Pingle
01:11 PM pfSense Packages Bug #6511 (Resolved): In some circumstances the HAProxy clone front-end button can add blank list entries to the front end being cloned resulting in a config that cannot be applied.: Jim Pingle
01:10 PM pfSense Packages Bug #6182 (Resolved): HAProxy not supporting ALPN: Jim Pingle
01:10 PM pfSense Packages Bug #7523 (Resolved): HAproxy widget settings panel does not open: 2.3.x is no longer supported, so the issue is moot. Jim Pingle
01:08 PM pfSense Packages Bug #8307 (Resolved): HAproxy in pfsense 2.42-p1 creating a new frontend with a Shared Frontend issues invalid ip error: Jim Pingle
01:07 PM pfSense Packages Feature #8523 (Resolved): make cookie inserted by haproxy secure: Jim Pingle
01:06 PM pfSense Packages Bug #8932 (Resolved): Upgrade to HaProxy 0.59_11 fails on 2.4.3: Jim Pingle
01:05 PM pfSense Packages Bug #8833 (Resolved): haproxy getarraybyref error: Jim Pingle
01:01 PM pfSense Packages Feature #8031: FreeRADIUS copy entry function: Updated subject to reflect the request Jim Pingle
12:59 PM pfSense Packages Bug #8047 (Resolved): XG-2758 - Coreboot Upgrade - Different ROM size: Jim Pingle
12:58 PM pfSense Packages Bug #8193 (Resolved): Cellular Package Update: PR was merged long ago. Jim Pingle
12:57 PM pfSense Packages Bug #8189 (Resolved): JavaScript does not work to disable/enable form elements: PR was merged long ago. Jim Pingle
12:55 PM pfSense Packages Bug #8366 (Resolved): Avahi: "Publish DNS Servers" option does nothing: PR was merged long ago. Jim Pingle
12:47 PM Bug #7757: Auto Config Backup fails to upload unless Default Gateway is up: ACB moved to base a while back, updating issue accordingly. Jim Pingle
12:47 PM Bug #7892: AutoConfigBackup status reported incorrectly: ACB moved to base a while back, updating issue accordingly. Jim Pingle
12:46 PM Feature #4035: AutoConfigBackup - selective deletion of automatic and manual backups: ACB moved to base a while back, updating issue accordingly. Jim Pingle
12:46 PM Feature #4681: AutoConfigBackup make a way to easily download a saved backup: ACB moved to base a while back, updating issue accordingly. Jim Pingle
12:46 PM Feature #5437: Auto Config Backup Stats display latest backup date-time: ACB moved to base a while back, updating issue accordingly. Jim Pingle
07:03 AM pfSense Packages Bug #9211: GeoIP broken in pfSense-pkg-ntopng-0.8.13_3: Added how to https://forum.netgate.com/topic/141150/ntop-geo-map/6 DRago_Angel [InV@DER]

08/15/2019

05:43 PM Bug #7653: 3gstats.php holding open the cuaU0.3 device: saving this for posterity
https://twitter.com/PerlDean/status/1161417191809376257
"We don't support unplugging... Jim Thompson
04:22 PM pfSense Packages Bug #9681: [Monitoring] New views title are always in lower case.: PR https://github.com/pfsense/FreeBSD-ports/pull/662 Manuel Piovan

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

09/13/2019

09/12/2019

09/11/2019

09/10/2019

09/09/2019

09/08/2019

09/07/2019

09/06/2019

09/05/2019

09/04/2019

09/03/2019

09/01/2019

08/31/2019

08/30/2019

08/29/2019

08/28/2019

08/27/2019

08/26/2019

08/25/2019

08/24/2019

08/23/2019

08/22/2019

08/21/2019

08/20/2019

08/19/2019

08/18/2019

08/17/2019

08/16/2019

08/15/2019