Activity

30 days up to

User

Subprojects

Activity

From 09/18/2019 to 10/17/2019

10/17/2019

05:07 PM pfSense Packages Feature #9820 (Resolved): Add Zabbix 4.4 (agent and proxy) packages: Renato Botelho
04:40 PM pfSense Packages Feature #9820: Add Zabbix 4.4 (agent and proxy) packages: Works for me thanks! Pim Janssen
08:51 AM Revision 52a950a2: workaround if capture already exist: Viktor Gurov
08:27 AM Revision 438870df: check if time file exist: Viktor Gurov
07:53 AM Revision a2f56f9d: print capture start time: Viktor Gurov
03:55 AM Feature #9831: diag_packet_capture.php: print packet capture start time: https://github.com/pfsense/pfsense/pull/4101 Viktor Gurov
03:55 AM Feature #9831 (Resolved): diag_packet_capture.php: print packet capture start time: Prints packet capture start time in extra field Viktor Gurov

10/16/2019

06:34 PM Revision 88b88d2d: Enable zabbix 4.4 build: Renato Botelho
06:34 PM Revision c8865ef3: Enable zabbix 4.4 build: Renato Botelho
06:25 PM Revision ee74e2c3: Add Zabbix 4.4 config options: (cherry picked from commit 04677464cd4bf73588934277d7ff7eb2dd3d5ceb) Danilo Baio
06:25 PM Revision 3be451cd: Merge pull request #4100 from dbaio/zabbix44: Renato Botelho
04:56 PM Feature #9828: L2TP (long) username containing @ (realm separator): ok it's because it's late for me then ^^
don't worry, some dev will read and answer here asap, if they want a PR for... Manuel Piovan
04:24 PM Feature #9828: L2TP (long) username containing @ (realm separator): I need a server, not a client :-)
The username/realm mod is exactly wat is needed and should me incorporated in th... Arjan van der Oest
04:04 PM Feature #9828: L2TP (long) username containing @ (realm separator): sorry man didn't understand clearly what you where doing from the start..
revert back my mods, that page is for conf... Manuel Piovan
01:22 PM Feature #9828: L2TP (long) username containing @ (realm separator): Well, changing the script allows to add the desired realms in the username, however the establishing of the l2tp tunn... Arjan van der Oest
11:17 AM Feature #9828: L2TP (long) username containing @ (realm separator): I will try and report back ASAP, thanks for the ultrafast response, I truly appreciate it. Arjan van der Oest
11:05 AM Feature #9828: L2TP (long) username containing @ (realm separator): /usr/local/www/vpn_l2tp_users_edit.php
change line 82
if (preg_match("/[^a-zA-Z0-9\.\-_]/", $_POST['usern... Manuel Piovan
09:06 AM Feature #9828 (Resolved): L2TP (long) username containing @ (realm separator): Hi Team,
I’m trying to use pfSense as LNS via L2TP. However my LAC always includes a realm in the username.
Fo... Arjan van der Oest
02:04 PM pfSense Packages Feature #9820 (Ready To Test): Add Zabbix 4.4 (agent and proxy) packages: PR has been merged. Thanks! Renato Botelho
07:06 AM pfSense Packages Feature #9820 (In Progress): Add Zabbix 4.4 (agent and proxy) packages: Danilo (dbaio@FreeBSD.org) is working to integrate zabbix 4.4 on pfSense as well Renato Botelho
05:03 AM pfSense Packages Feature #9820: Add Zabbix 4.4 (agent and proxy) packages: https://svnweb.freebsd.org/ports/head/net-mgmt/zabbix44-proxy/
https://svnweb.freebsd.org/ports/head/net-mgmt/zabbix... Pim Janssen
11:59 AM pfSense Docs Correction #9822: specify XG-7100 does not support NVMe: In addition to the XG-7100's, the note has been added to all systems that have an M.2 SATA drive upgrade option. Seem... Doug McIntire
11:30 AM Bug #9830 (Resolved): NTP ACLs vs. NTP pools: Starting with /var/etc/ntpd.conf containing:... Edgar Wiesmann
11:16 AM Bug #9829 (Resolved): NTP Status vs. parsing NTP Access Restrictions: Status/NTP displays "Statistics unavailable because ntpq and ntpdc queries are disabled in the NTP service settings" ... Edgar Wiesmann

10/15/2019

11:00 PM Revision 04677464: Add Zabbix 4.4 config options: Danilo Baio
05:38 PM Todo #8350: Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: That is not related to this change, so it cannot be considered on this issue. TCP syslog is not yet supported by Free... Jim Pingle
05:36 PM Todo #8350: Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: Testing 2.5.0-dev, found UI does not provide support for TCP syslog forwarding. I believe this results in truncation... Mark Rodman

10/14/2019

01:27 PM pfSense Docs Correction #9822 (Closed): specify XG-7100 does not support NVMe: Added note to state that NVMe is not supported on both the XG-7100 DT & 1U.
https://docs.netgate.com/pfsense/en/la... Doug McIntire
10:16 AM pfSense Packages Bug #9135 (Rejected): Suricata in inline modus blocks some downloads: As pointed by Bill, it's not a pfSense bug. Renato Botelho
08:40 AM Feature #9827 (Duplicate): Add default route indicator to gateways dashboard widget to indicate which interface is currently selected as default in a gateways group scenario: In System > Routing > Gateways the default route is indicated based on the state of the gateway group.
It would be u... And Ritchie
06:40 AM pfSense Packages Feature #9521 (Pull Request Review): Upgrade to HAProxy 1.9: Renato Botelho
03:13 AM pfSense Packages Feature #9521: Upgrade to HAProxy 1.9: now that pfsense/FreeBSD-ports has been updated to ports 2019Q3 i think it would make sense to bump haproxy versions
... Torben Hørup

10/13/2019

02:42 PM Bug #9654: After reboot, the DNS resolver must be restarted before it will advertise the ipv6 DNS address of the router.: Further information: I have noted that during the period before first restart of the resolver, that the predefined al... Rick Coats
02:15 PM Bug #9826 (Rejected): No users displayed in user manager: 2.4.4-p3 does not include a fix for #9541 -- You are hitting that issue, not something new. Jim Pingle
12:06 PM Bug #9826 (Rejected): No users displayed in user manager: I am running 2.4.4_3 so I am assuming I already have the patch for https://redmine.pfsense.org/issues/9541. My admin ... robbie foster
08:17 AM Bug #9448 (In Progress): Dynamic DNS options showing in GUI for IPv6 when not in use: Jim Pingle
08:15 AM Feature #9825: Requirements for trusted certificates in iOS 13 and macOS 10.15: We have automatically filled in the SAN based on the CN for a while now. You can't make a new cert without a SAN, sin... Jim Pingle
02:47 AM Feature #9825 (Resolved): Requirements for trusted certificates in iOS 13 and macOS 10.15: Because Apple has shortened the maximum validity period of TLS server certificates to 825 days on iOS 13 & macOS Cata... Daniel Gutierrez

10/12/2019

06:12 PM Feature #9695 (Resolved): Add Ability to Force NAT-T Encapsulation on IKEv2 Peers: Jim Pingle
02:58 PM Feature #9695: Add Ability to Force NAT-T Encapsulation on IKEv2 Peers: Jim Pingle wrote:
> Applied in changeset commit:9c4f5b95eed5534ab797f104ad9f687359bd4818.
Tested on 2.5.0.a.20191... Viktor Gurov
10:28 AM Bug #9448: Dynamic DNS options showing in GUI for IPv6 when not in use: Jim Pingle wrote:
> Applied in changeset commit:7ba6788b155b92ad8c488c2891c9fe2601fe5c14.
Tested on 2.5.0.a.20191... Viktor Gurov
09:28 AM pfSense Packages Feature #9824 (Resolved): Add support for DuckDuckGo's Safe Search: The switches managing the Safe Search are described in the "DuckDuckGo Help Pages":https://help.duckduckgo.com/duckdu... Markus *
08:31 AM Feature #9788 (Resolved): Display number of connections in status_openvpn.php: Jim Pingle
01:51 AM Feature #9788: Display number of connections in status_openvpn.php: Renato Botelho wrote:
> PR has been merged. Thanks!
Tested on 2.5.0.a.20191011.1853
Works, resolved
Viktor Gurov
08:31 AM Feature #9791 (Resolved): Ability to filter Diagnostics ARP Table by IP range (DHCP): Jim Pingle
02:00 AM Feature #9791: Ability to filter Diagnostics ARP Table by IP range (DHCP): Jim Pingle wrote:
> Applied in changeset commit:9297ad6504618c5ffcee9f8fe02535cb33f570c9.
Tested on 2.5.0.a.20191... Viktor Gurov
08:31 AM Bug #9708 (Resolved): /etc/inc/unbound.inc: Pfsense Default Unbound Configuration does not Prevent DNS Rebinding Attacks Against Localhost: Jim Pingle
02:07 AM Bug #9708: /etc/inc/unbound.inc: Pfsense Default Unbound Configuration does not Prevent DNS Rebinding Attacks Against Localhost: Jim Pingle wrote:
> Applied in changeset commit:afeb18ff0ecaec2e9d0da1801fe9cebf5b99a3ca.
Tested on 2.5.0.a.20191... Viktor Gurov
08:31 AM Bug #9586 (Resolved): Unbound Access List /31 UI Issue: Jim Pingle
02:13 AM Bug #9586: Unbound Access List /31 UI Issue: Steve Beaver wrote:
> Applied in changeset commit:7ec80e763f7e8357a4e5b0d2d57546cfd5d0f0f0.
Tested on 2.5.0.a.201... Viktor Gurov
08:31 AM Feature #6787 (Resolved): NTP GUI sync/poll interval: Jim Pingle
02:27 AM Feature #6787: NTP GUI sync/poll interval: Jim Pingle wrote:
> Applied in changeset commit:8ef6844a34cd6765bfa09d2fdaf4f0609d6c59cb.
Tested on 2.5.0.a.20191... Viktor Gurov
08:31 AM Bug #9258 (Resolved): Error deleting tunnel type P2 when mixed with VTI: Jim Pingle
02:36 AM Bug #9258: Error deleting tunnel type P2 when mixed with VTI: Jim Pingle wrote:
> Applied in changeset commit:37c6083084617e3fd079876352109ff38aa6613b.
Tested on 2.5.0.a.20191... Viktor Gurov
08:31 AM Feature #9302 (Resolved): radvd always advertises DNS servers and Domain Search List regardless of M or O flag: Jim Pingle
04:09 AM Feature #9302: radvd always advertises DNS servers and Domain Search List regardless of M or O flag: Renato Botelho wrote:
> PR has been merged. Thanks!
Tested on 2.5.0.a.20191011.1853
No RDNSS and DNSSL entries... Viktor Gurov
08:31 AM Feature #9285 (Resolved): Add an option to disable the ping-check in dhcpd: Jim Pingle
04:19 AM Feature #9285: Add an option to disable the ping-check in dhcpd: Renato Botelho wrote:
> Applied in changeset commit:5197e3e3a3b0ee048785e2ffb4222d7cba4e6c74.
Tested on 2.5.0.a.2... Viktor Gurov
05:06 AM pfSense Packages Bug #9012: Captive Portal authentication in Squid Proxy Server does not work: i solved this problem.
new captiveportal.inc file... mehmet yiğiter
04:31 AM Bug #9823: no l2tplink param in get_interface_info: this is why changes in "Show PPP uptime on the Dashboard - Interfaces Widget" https://redmine.pfsense.org/issues/9426... Viktor Gurov
03:44 AM Bug #9823: no l2tplink param in get_interface_info: config.xml:... Viktor Gurov
03:38 AM Bug #9823 (Closed): no l2tplink param in get_interface_info: For L2TP interfaces you can't see "Uptime" in interfaces widget due to function get_interface_info do not return link... Viktor Gurov

10/11/2019

03:48 PM pfSense Docs Correction #9822 (Closed): specify XG-7100 does not support NVMe: https://docs.netgate.com/pfsense/en/latest/solutions/xg-7100/m-2-sata-installation.html
Only specifies *a M.2 SATA... Anonymous
03:21 PM pfSense Packages Feature #9555: pimd package: Michael Pelley wrote:
> Folks - as it seems that IGMP Proxy is "broken" and pimd works is it possible to add (or rep... Pete Holzmann
02:44 PM Revision 6d3a6127: Merge pull request #4075 from bechaire/patch-1: Renato Botelho
01:37 PM Revision 4144a9f8: Merge pull request #4067 from crypto-powers/master: Renato Botelho
01:34 PM Revision 5489c0a8: Merge pull request #4030 from jalavoy/master: Renato Botelho
11:18 AM Bug #9821: pfSense IPsec not reload configs on connectivity issues with DDNS: At same time first end try communicate only over Tier1 IP and they can't do connection. Restart of strongswan fix thi... DRago_Angel [InV@DER]
11:16 AM Bug #9821: pfSense IPsec not reload configs on connectivity issues with DDNS: When My Tier1 goes offline on one end: IPsec begin to use Tier2 connection. But when Tier1 come back - second end sti... DRago_Angel [InV@DER]
11:05 AM Bug #9821 (Rejected): pfSense IPsec not reload configs on connectivity issues with DDNS: IPsec with DDNS works fine for many users (myself included) -- you haven't presented any evidence that there is an ac... Jim Pingle
10:52 AM Bug #9821 (Rejected): pfSense IPsec not reload configs on connectivity issues with DDNS: If you configure IPsec to use static IP or or static DNS - all fine.
But when you have multiWAN environment with DDN... DRago_Angel [InV@DER]
10:16 AM pfSense Packages Feature #9820 (Resolved): Add Zabbix 4.4 (agent and proxy) packages: New release from zabbix. Please add this new version.
https://www.zabbix.com/rn/rn4.4.0 Pim Janssen
09:48 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: I see similar effects with the old config which i attached in January. Ph. T
09:43 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: I have tried to reproduce the issue. Unfortently that was not possible. Now i just get complete empty tables.
I have... Ph. T
07:41 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: I will provide the data / config.xml . I could also provide a virtual-box pfsense-installation
which shows this pro... Ph. T
07:29 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: If anyone can come up with simple cases that reliably reproduce the problem, that would definitely help. That is, the... Jim Pingle
06:53 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: Ph. T wrote:
> I am *very,very* unhappy with the time it takes to deal and fix this problem.
> Is there any way to... Luiz Souza
01:39 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: I am *very,very* unhappy with the time it takes to deal and fix this problem.
Is there any way to speed up the proc... Ph. T
01:23 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: Angel Briceño wrote:
> I have removed all gigantic ranges of IPs and the problem is solved.
I have no ranges of... Gavin Stewart
09:45 AM Bug #9819 (Feedback): Captive portal: Change order redirect page is selected: PR has been merged Renato Botelho
09:44 AM Bug #9819 (Resolved): Captive portal: Change order redirect page is selected: If page is defined in query string, redirects user to that and let default page to be used only when it's not defined... Renato Botelho
09:13 AM Feature #9256: adjust frequency of geom rebuild notifications.: Renato Botelho wrote:
> PR has been merged. Thanks!
No sir, thank you. James Lavoy
08:35 AM Feature #9256 (Feedback): adjust frequency of geom rebuild notifications.: PR has been merged. Thanks! Renato Botelho
08:38 AM Feature #9527 (Feedback): Add ability for LDAP extended query on groups in RFC2307 containers.: PR has been merged. Thanks! Renato Botelho

10/10/2019

03:35 PM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: Ph. T wrote:
> If you are using FQDN-Aliases each FQDN can only be used once, if
> you use the alias twice, the ge... Angel Briceño
02:32 PM Bug #9577: radvd send_ra_forall failed on interface / can't join ipv6-allrouters: 2.5 will be moving to a 12.1 or stable/12 base, but that choice has not yet been made. It definitely will not stay on... Jim Pingle
02:26 PM Bug #9577: radvd send_ra_forall failed on interface / can't join ipv6-allrouters: There are multiple issues, some easily solved. The "disabled" logging message can be deleted, as it is just an indica... Ronald Schellberg
02:12 PM Bug #9818 (Rejected): bug status VPN: Not nearly enough information here. IPsec status works fine here, must be something specific to your configuration/se... Jim Pingle
02:02 PM Bug #9818 (Rejected): bug status VPN: Erro no status do tunel VPN na versão 2.5.0-DEVELOPMENT Alexandre morganti
12:35 PM Bug #9802 (Resolved): status_logs_settings.php: "Reset log files" does not clear all log files: Tested on 2.5.0.a.20191009.1906, works as expected. Anonymous
10:40 AM pfSense Packages Feature #9742: Print Patch ID in log while patching: https://github.com/pfsense/FreeBSD-ports/pull/685 Viktor Gurov
10:40 AM pfSense Packages Feature #9817 (Duplicate): logging of patching to syslog: Duplicate of #9742 Jim Pingle
10:39 AM pfSense Packages Feature #9817 (Duplicate): logging of patching to syslog: Add ability to log patch id to system log Viktor Gurov
08:04 AM Bug #9407: Update jQuery to current version (3.3.1 or later): Updating to version 3.4.1 is straightforward but we also use jQuery-UI which needs to be kept in step. Unfortunately ... Anonymous
07:10 AM Feature #9816 (Pull Request Review): firewall_aliases.php: add ability to export list of aliases: Jim Pingle
05:57 AM Feature #9816: firewall_aliases.php: add ability to export list of aliases: https://github.com/pfsense/pfsense/pull/4099 Viktor Gurov
05:55 AM Feature #9816 (Resolved): firewall_aliases.php: add ability to export list of aliases: adds ability to export list of aliases
opens white page with only aliases - to copy&paste and save to txt Viktor Gurov

10/09/2019

02:57 PM Bug #9815: IPv6 policy routing selects wrong interface: output of @pfctl -sa | grep 2001:bbbb:bbbb:bbbb::1@... Bianco Veigel
02:56 PM Bug #9815 (Not a Bug): IPv6 policy routing selects wrong interface: Not enough evidence that there is a bug here. This site is not for support or diagnostic discussion.
For assistanc... Jim Pingle
02:43 PM Bug #9815 (Not a Bug): IPv6 policy routing selects wrong interface: I've a rather complex setup with multiple interfaces - some of them have an IPv6 Address and some also have an IPv6 G... Bianco Veigel
10:51 AM Feature #6240: vxlan driver: Created https://github.com/pfsense/FreeBSD-src/pull/27 Jose Luis Duran
10:33 AM Feature #6240: vxlan driver: +1 ... it there's any point Khamzet Shogenov

10/08/2019

10:55 AM Bug #9058: Kernel panic during L2TP retransmit: I've opened a bug at https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=241133 Bianco Veigel
06:29 AM Bug #9814 (Duplicate): User Manager: Duplicate of #9541 Jim Pingle
04:16 AM Bug #9814 (Duplicate): User Manager: Hi.
I think I found a little bug when using a created user with admin permissions to navigate to the User Manager.
... Norman Kühnberger

10/07/2019

06:16 PM Bug #9148: PPPoE over a VLAN fails to reconnect.: gek Johnson wrote:
> It's reproducing on 2.4.4-RELEASE-p3.
I'm also seeing the issue again in 2.4.4-RELEASE-p3.
... Anonymous
07:19 AM pfSense Packages Bug #9813 (Resolved): Fails saving accountkeys if name contains non-English characters: When trying to create a new set of account keys for use with ACME, and the name contains any special characters (such... Nikolaj Jørgensen

10/06/2019

02:05 PM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: Robert Gijsen wrote:
> It's been about 8 months now that we are unable to update / patch our firewalls because of th... John K
12:04 PM Bug #9812 (Not a Bug): High cpu load (php-fpm) on every VTI reload: There is not enough information here to classify this as a bug. Please start a post on the forum to discuss the issue... Jim Pingle
09:53 AM Bug #9812: High cpu load (php-fpm) on every VTI reload: The CPU load remains high for some minutes. Daniel Klinghofer
09:48 AM Bug #9812 (Not a Bug): High cpu load (php-fpm) on every VTI reload: Every event that reload the VTI interface(s) causes high cpu load with the process php-fpm.
The system also log th... Daniel Klinghofer
06:26 AM Todo #9808: status_logs_settings.php: Add GUI option for syslog format: Hi,
I have RFC 5424 manually running here, to export to my syslog collector. And you're right, the local syslog is... Russell Morris

09/29/2019

12:45 PM Bug #9801: VTI IPv6 addresses don't get assigned: It seems that the @is_ipaddrv6@ function checks for a "/" in the address and if so decides it can't possibly be a v6 ... Ben Hughes
12:02 PM Bug #9801 (Resolved): VTI IPv6 addresses don't get assigned: When a IPsec VPN has a v6 VTI phase 2assigned, the address is never assigned to the ipsecXXXX interface due to this e... Ben Hughes
06:18 AM Feature #9800 (New): Add toggle for net.isr.dispatch=deferred in GUI: [[Feature #4821]] has been closed with the guidance to add a _System Tunable_ or _loader.conf.local_ entry for _net.i... Olaf Welten

09/27/2019

06:38 PM Revision 85e0f980: Create custom CSRF Error page. Implements #9799: * Use formatting consistent with other GUI pages
* Warns the user about potential dangers of submitting form data
(c... Jim Pingle
06:37 PM Revision da7384c4: Create custom CSRF Error page. Implements #9799: * Use formatting consistent with other GUI pages
* Warns the user about potential dangers of submitting form data Jim Pingle
02:25 PM Revision a8449a68: Fix oinkmastercode tag in status.php. Fixes #9736: (cherry picked from commit 9adb7806cffdd1393fd9223c17d7a938a37944c4) Jim Pingle
02:24 PM Revision 9adb7806: Fix oinkmastercode tag in status.php. Fixes #9736: Jim Pingle
01:45 PM Todo #9799 (Feedback): Create custom CSRF callback page with proper theme & more warnings: Applied in changeset commit:da7384c4a42adbcb7c20beba05ff460d0f6da7b3. Jim Pingle
01:42 PM Todo #9799: Create custom CSRF callback page with proper theme & more warnings: I just pushed the first pass at this. It functions, but could use some design work.
I'm considering removing the r... Jim Pingle
12:12 PM Todo #9799: Create custom CSRF callback page with proper theme & more warnings: CSRF Magic prevents attacks like the one described at https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16667 -... Jim Pingle
12:09 PM Todo #9799 (Resolved): Create custom CSRF callback page with proper theme & more warnings: When a user triggers a CSRF error, either by accident (e.g. sitting on the login page for hours without submitting, t... Jim Pingle
10:55 AM Bug #9764 (Resolved): status.php: Sanitize barnyard_dbpwd: Jim Pingle
10:51 AM Bug #9764: status.php: Sanitize barnyard_dbpwd: Jim Pingle wrote:
> Applied in changeset commit:24994f9a9df9a44e36cb544586684a5fecd61cda.
<barnyard_dbpwd>xxxxx</... Viktor Gurov
09:35 AM Bug #9736 (Feedback): status.php: Sanitize oinkcode and etprocode of snort/surricata: Applied in changeset commit:9adb7806cffdd1393fd9223c17d7a938a37944c4. Jim Pingle
09:11 AM Bug #9736 (In Progress): status.php: Sanitize oinkcode and etprocode of snort/surricata: Jim Pingle
09:09 AM Bug #9736: status.php: Sanitize oinkcode and etprocode of snort/surricata: Jim Pingle wrote:
> Fixed in commit:17640476a57a41415fec579c40faebbfeff0022d... Viktor Gurov
09:11 AM Bug #9784 (Resolved): status.php: Sanitize bandwidthd db password: Jim Pingle
09:10 AM Bug #9784: status.php: Sanitize bandwidthd db password: Jim Pingle wrote:
> Applied in changeset commit:1f2be937ddbaf04a1704cac2aea3fc66bb196013.
<postgresqlpasswordenc>... Viktor Gurov
09:10 AM Feature #9757 (Resolved): DH groups 25,26,27 not listed for phase1 & phase2: Jim Pingle
08:53 AM Feature #9757: DH groups 25,26,27 not listed for phase1 & phase2: Jim Pingle wrote:
> Applied in changeset commit:21bee0287caf76bb7ab63ec29b0ecf7435940a06.
it's ok now
Resolved Viktor Gurov
09:10 AM Bug #9722 (Resolved): services_captiveportal_vouchers.php wrong status icon link: Jim Pingle
08:56 AM Bug #9722: services_captiveportal_vouchers.php wrong status icon link: Renato Botelho wrote:
> Applied in changeset commit:4baf532b5b834e659f484fc2b79e73fcfd169e46.
ok now
Resolved Viktor Gurov
09:10 AM Bug #9727 (Resolved): status.php: Sanitize influx_pass: Jim Pingle
08:59 AM Bug #9727: status.php: Sanitize influx_pass: Jim Pingle wrote:
> Applied in changeset commit:8bc944bbcba57f74934b87dcea4e7621f0743584.
<influx_pass>xxxxx</inf... Viktor Gurov
09:10 AM Bug #9728 (Resolved): status.php: Sanitize tinc private key: Jim Pingle
09:04 AM Bug #9728: status.php: Sanitize tinc private key: Jim Pingle wrote:
> Applied in changeset commit:8bc944bbcba57f74934b87dcea4e7621f0743584.
<prv>xxxxx</prv>
ok ... Viktor Gurov
09:09 AM Bug #9729 (Resolved): status.php: Sanitize zabbix-agent tlspsk key: Jim Pingle
09:07 AM Bug #9729: status.php: Sanitize zabbix-agent tlspsk key: Jim Pingle wrote:
> Applied in changeset commit:60a7d1e1201f43ec48b0ad374ded1c15eb29e14e.
<tlspskidentity>xxxxx</... Viktor Gurov
05:51 AM pfSense Packages Feature #9798 (New): add ipv4 and ipv6 dnscrypt-resolvers feeds: Lists of public DNSCrypt-enabled DNS resolvers:
https://raw.githubusercontent.com/dyne/dnscrypt-proxy/master/dnscr... Viktor Gurov

09/26/2019

03:58 PM Revision de9df940: Trim bonus '$' added by devd bug. Works around issue #9384: Jim Pingle
02:41 PM pfSense Packages Bug #9772 (Resolved): can't enable Split ANY-ANY option: Jim Pingle
02:27 PM pfSense Packages Bug #9772: can't enable Split ANY-ANY option: This issue can be marked as RESOLVED. The identified problem is fixed in this pull request submitted against pfSense-... Bill Meeks
02:41 PM pfSense Packages Bug #9789 (Resolved): snort process stays active after deleting interface: Jim Pingle
02:26 PM pfSense Packages Bug #9789: snort process stays active after deleting interface: This issue can be marked as RESOLVED. Pull request 678 has been submitted to teh pfSense-2.5-DEVEL branch here: http... Bill Meeks
11:40 AM pfSense Packages Bug #9789: snort process stays active after deleting interface: Corresponded with Jim Pingle about this issue. There is no elegant or simple way for notifying a running package (An ... Bill Meeks
01:41 PM Revision 88863533: Fixes #9362: proxied value must be a boolean: Robert Resch
01:00 PM Revision 2db1578d: Fix #9674: Do not set duplicate-cn in p2p_shared_key mode: Renato Botelho
01:00 PM Revision 743d7fc4: Ticket #9674: Do not check password when using shared key: Renato Botelho
01:00 PM Revision db499864: Clarify that error message is about proxy password: Renato Botelho
01:00 PM Revision 4e42da90: Fix #9674: Do not set duplicate-cn in p2p_shared_key mode: Renato Botelho
12:51 PM Revision 4d29b2de: Ticket #9674: Do not check password when using shared key: Renato Botelho
12:48 PM Revision c46ab687: Clarify that error message is about proxy password: Renato Botelho
12:37 PM Revision 0b48a22c: Fix #9719: Fix descriptive name field behavior: Renato Botelho
12:36 PM Revision aafc3602: Fix #9719: Fix descriptive name field behavior: Renato Botelho
12:11 PM Feature #9797 (Pull Request Review): services_unbound_advanced.php: add prefer-ip6 option to dns resolver gui: What is the use case for this vs changing the global setting under System > Advanced, Networking tab?
The number o... Jim Pingle
11:57 AM Feature #9797: services_unbound_advanced.php: add prefer-ip6 option to dns resolver gui: https://github.com/pfsense/pfsense/pull/4094 Viktor Gurov
11:56 AM Feature #9797 (Closed): services_unbound_advanced.php: add prefer-ip6 option to dns resolver gui: from man unbound.conf(5):... Viktor Gurov
10:45 AM Bug #9384: devd putting "$" before variable contents when using single quotes: Adjusted title. This is a devd issue, not anything wrong with check_reload_status. Also affects other systems like Op... Jim Pingle
09:55 AM Bug #9362 (Pull Request Review): rc.dyndns.update: Cloudflare DDNS with proxy enabled doesn't work at all: Jim Pingle
08:57 AM Bug #9362: rc.dyndns.update: Cloudflare DDNS with proxy enabled doesn't work at all: Berzerker Berzerker wrote:
> Nathan Hand wrote:
> > Underlying problem is /etc/inc/dyndns.class line 799. The value... Robert R.
09:37 AM Revision 846dda21: removed changes of config.xml: Viktor Gurov
09:20 AM Bug #9796 (Resolved): kernel panic after removing interfaces: When I did some tests and ran miniupnp on the VTI or GIF interfaces and then deleted those interfaces.
after some ti... Viktor Gurov
08:10 AM Bug #9674 (Feedback): hidden OpenVPN settings are validated and written to file: Applied in changeset commit:4e42da90bd8fd2d4202782e8e0633c0e8e5e3045. Renato Botelho
07:45 AM Bug #9719 (Feedback): system_certmanager.php - Descriptive name field disappeared when adding certificate for user: Applied in changeset commit:aafc3602dc0f79462f515276f0b53cb5c2201cd4. Renato Botelho
04:02 AM Bug #9719: system_certmanager.php - Descriptive name field disappeared when adding certificate for user: more clean here: https://youtu.be/EdFOwFFuKOY Viktor Gurov
07:32 AM pfSense Packages Bug #9795 (Not a Bug): FRR add two or more ipv6 BGP Neighbors will system down: In my lab, I have two interconnected instances of FRR with the same ASN on two neighbor entries and it's stable. It's... Jim Pingle
12:12 AM pfSense Packages Bug #9795 (Not a Bug): FRR add two or more ipv6 BGP Neighbors will system down: I found that the problem recurred,If I add two or more ipv6 BGP Neighbors, the Remote AS is the same ASN number. like... yon Liu
06:57 AM Bug #9649 (Pull Request Review): IPv6 6RD Tunnel: Pull Request: https://github.com/pfsense/FreeBSD-src/pull/25 Renato Botelho
06:56 AM pfSense Packages Feature #6866: Suricata multiple interfaces: Idar Lund wrote:
> You are only covering the first half of the description - which is of no relevance except giving ... Bill Meeks
12:41 AM pfSense Packages Feature #6866: Suricata multiple interfaces: You are only covering the first half of the description - which is of no relevance except giving you some background ... Idar Lund
04:02 AM Bug #9720: vpn_ipsec_phase2.php - no remote network field in VTI mode: more clean here: https://youtu.be/avQWWjNl53o Viktor Gurov
04:00 AM Bug #9790: firewall aliases table with fqdn stays in system after deleting: more clean here: https://youtu.be/3IPwE6o3Pw4 Viktor Gurov

09/25/2019

07:26 PM Revision 4a26ba22: Fix spacing of MAC OEM on ARP table: Jim Pingle
07:23 PM Revision 9297ad65: Add search/filter to DHCP/DHCPv6 leases, ARP, and NDP. Implements #9791: Jim Pingle
06:32 PM Bug #9794 (Duplicate): Users in Admins group cannot manage accounts in System => User Manager: Duplicate of #9541 Jim Pingle
06:28 PM Bug #9794 (Duplicate): Users in Admins group cannot manage accounts in System => User Manager: After upgrading pfSense to version 2.4.4-RELEASE-p3 users in the Admins group are unable to manage accounts or create... Tácio Andrade
02:42 PM pfSense Packages Feature #6785 (Resolved): Allow setting of suricata's meta-field-limt libhtp parameter: Jim Pingle
02:40 PM pfSense Packages Feature #6785: Allow setting of suricata's meta-field-limt libhtp parameter: This issue can be closed as RESOLVED. The requested change has been added to the Suricata GUI package in this pull re... Bill Meeks
02:35 PM Revision 51b6583d: fixes 25.09.19: Viktor Gurov
02:30 PM pfSense Packages Feature #6866 (Rejected): Suricata multiple interfaces: Jim Pingle
02:24 PM pfSense Packages Feature #6866: Suricata multiple interfaces: No, it is not possible to have Suricata see internal (post-NAT) addresses when it runs on the WAN. Suricata hooks int... Bill Meeks
02:30 PM Feature #9791 (Feedback): Ability to filter Diagnostics ARP Table by IP range (DHCP): Applied in changeset commit:9297ad6504618c5ffcee9f8fe02535cb33f570c9. Jim Pingle
10:07 AM Feature #9791: Ability to filter Diagnostics ARP Table by IP range (DHCP): I had requested an Alias feature which was pointed out to be already implemented (I have many configured - just forgo... John Weithman
07:25 AM Feature #9791 (Resolved): Ability to filter Diagnostics ARP Table by IP range (DHCP): It would be nice to be able to filter the ARP table to find a particular (new) device.
In my instance I have turne... John Weithman
02:27 PM pfSense Packages Bug #7223 (Resolved): IPv4 Rules not working in Inline Mode: Jim Pingle
02:20 PM pfSense Packages Bug #7223: IPv4 Rules not working in Inline Mode: This issue can be closed as "RESOLVED". It was caused by an overly broad automatic pass list mechanism that was initi... Bill Meeks
02:25 PM Revision 0263f8d1: Update openvpn.widget.php: d j
01:41 PM Revision cf9d29b2: Update openvpn.widget.php: d j
01:37 PM Revision 8ad987ee: Update status_openvpn.php: d j
01:06 PM pfSense Docs Correction #9783 (Resolved): Under "Gateway Settings" in the "Weight" paragraph there is a typo: Fixed Jim Pingle
12:57 PM Revision 92a9c71d: Fix #9488: Disable serial console on memstick images: Renato Botelho
12:57 PM Revision 4511fe40: Fix #9488: Disable serial console on memstick images: Renato Botelho
11:48 AM Revision e78de48d: Merge pull request #4085 from s-fiebig/master: Renato Botelho
08:13 AM pfSense Packages Feature #9793 (Resolved): Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: Currently pfBlockerNG is power tool to create any IP aliases you can imagine: from domain resolving, ASNs, parser of ... DRago_Angel [InV@DER]
08:05 AM Bug #9488 (Feedback): No console when booting CE Memstick UEFI.: Applied in changeset commit:4511fe40ac329e3aee594f934c27a9a47d63acec. Renato Botelho
05:50 AM Bug #9488 (In Progress): No console when booting CE Memstick UEFI.: Renato Botelho
07:34 AM pfSense Packages Bug #9789: snort process stays active after deleting interface: This behavior will impact Barnyard2 and also Suricata (and Barnyard2 in a Suricata setup).
This behavior is also g... Bill Meeks
05:41 AM pfSense Packages Bug #9789: snort process stays active after deleting interface: perhaps the same behavior with barnyard2 Viktor Gurov
07:33 AM Feature #9792 (Rejected): Create Alias for IP blocks/ranges: You can make whatever aliases you like, call them what you want, and have the contents you want.
Having custom def... Jim Pingle
07:31 AM Feature #9792 (Rejected): Create Alias for IP blocks/ranges: To keep things simple I typically have any all devices get their address by DHCP. For many of those devices I set a s... John Weithman
06:49 AM Bug #9747 (Feedback): IPsec widget - Missing escape of domain backslash: PR has been merged. Thanks Renato Botelho
06:41 AM Revision 8a785efa: Update openvpn.widget.php: d j
06:39 AM Feature #9309: Allow manual selection of IPsec IKE Pseudo-Random Function (PRF): Currently manual selection of PRF supported by:
Cisco IOS/IOS-XE/ASA, Huawei routers/firewalls and Google CloudVPN
... Viktor Gurov
06:39 AM pfSense Packages Bug #9752 (Feedback): ACME - Actions have no access to additionally generated certificate files.: Renato Botelho
06:35 AM pfSense Packages Bug #9752: ACME - Actions have no access to additionally generated certificate files.: PR has been merged. Thanks! Renato Botelho
06:38 AM Revision 8b689c4c: Update status_openvpn.php: d j
04:55 AM Bug #9790 (Resolved): firewall aliases table with fqdn stays in system after deleting: If you create Alias table under Firewall / Aliases / IP with FQDNs,
PF table with such name stays in system after yo... Viktor Gurov
01:43 AM Feature #9788: Display number of connections in status_openvpn.php: PR against pfsense/master https://github.com/pfsense/pfsense/pull/4092 d j

09/24/2019

05:42 PM Bug #9488: No console when booting CE Memstick UEFI.: Confirmed. Both images boot fine on the MBT-4220 using that line:... Steve Wheeler
05:20 PM Bug #9488: No console when booting CE Memstick UEFI.: Setting boot_serial=NO on loader.conf fix the problem. I'll think about how is the best way to deal with that Renato Botelho
02:23 PM Bug #9488: No console when booting CE Memstick UEFI.: Re-tested with:
pfSense-CE-memstick-2.5.0-DEVELOPMENT-amd64-20190924-1135.img.gz
and:
FreeBSD-13.0-CURRENT-amd64-2... Steve Wheeler
03:34 PM Revision 99d7e8c1: Fix OpenVPN keepalive default values. Fixes #3473: Jim Pingle
01:38 PM Feature #9768: IPsec for site-to-site scenario where one side has dynamic ip: It can be used for any number of tunnels. If you have support questions, please take them to the forum or pfSense sub... Jim Pingle
01:32 PM Feature #9768: IPsec for site-to-site scenario where one side has dynamic ip: Jim Pingle wrote:
> We have not ignored this. You can already do this now. Use DynDNS hostname for the peer, or othe... lama lord
11:33 AM pfSense Packages Bug #9789 (Resolved): snort process stays active after deleting interface: after deleting interface on Interfaces / Interface Assignments page,
snort process stays active and you can't disabl... Viktor Gurov
10:59 AM Feature #9788: Display number of connections in status_openvpn.php: https://github.com/pfsense/pfsense/pull/4091 d j
10:42 AM Feature #9788 (Pull Request Review): Display number of connections in status_openvpn.php: Jim Pingle
10:41 AM Feature #9788: Display number of connections in status_openvpn.php: https://github.com/pfsense/pfsense/pull/4090 d j
10:36 AM Feature #9788 (Resolved): Display number of connections in status_openvpn.php: Display number of connections in status_openvpn.php on top of each server d j
10:40 AM Feature #3473 (Feedback): Allow configuration of OpenVPN keepalive: Applied in changeset commit:99d7e8c10e96e6f22ad47973d07258cd02426fe6. Jim Pingle
09:53 AM Feature #3473 (In Progress): Allow configuration of OpenVPN keepalive: I have not changed anything in my configuration, and after upgrading to a snapshot with these changes, I am seeing er... Jim Pingle
10:12 AM pfSense Packages Todo #9787 (Feedback): Update Mail Reports to deal with clog deprecation: Fixed in Mail Reports pkg version 3.6, for 2.5.0 only. Jim Pingle
09:48 AM pfSense Packages Todo #9787 (Resolved): Update Mail Reports to deal with clog deprecation: Since clog is deprecated, the Mail Reports package needs adjusted to handle the new log functions.
See Also: #8350
Jim Pingle
10:12 AM pfSense Packages Bug #8315 (Feedback): Mail Report mail_report_send() behavior different than notify_via_smtp(): This may have already been fixed since the patch didn't match the current code, but I removed the explicit set of SMT... Jim Pingle
09:48 AM Todo #8350: Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: I moved that to its own issue, since it isn't relevant to the base system: #9787 Jim Pingle

09/23/2019

08:34 PM Revision 016b6625: Redact BandwidthD postgres db password. Fixes #9784: Jim Pingle
08:34 PM Revision 1f2be937: Redact BandwidthD postgres db password. Fixes #9784: (cherry picked from commit ca3129138b9866f5c82ff80d59eeed3f746367a1) Jim Pingle
06:25 PM Revision e8a1e9e1: Provide optional "enable" argument to enable/disable form submit button: Steve Beaver
05:40 PM Todo #8350: Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: This stops MailReports package from working
(not a big deal - just letting you know)
This is a periodic report fr... Matt Gilchrist
03:55 PM Revision c8954c9f: Removed escaping of CSS classes: Sebastian Fiebig
03:40 PM Bug #9784 (Feedback): status.php: Sanitize bandwidthd db password: Applied in changeset commit:1f2be937ddbaf04a1704cac2aea3fc66bb196013. Jim Pingle
05:18 AM Bug #9784 (Resolved): status.php: Sanitize bandwidthd db password: config-satinized.xml keeps <postgresqlpasswordenc>:... Viktor Gurov
03:39 PM Revision 6f2192d4: Initialize JSON data to avoid warning.: Avoid warning/error for not initialized JSON variable. Sebastian Fiebig
03:35 PM Revision 0c8faa81: removed unused code, switch default, print <pre> fixes: Viktor Gurov
03:28 PM Revision ce9eb0fb: Fixed #9785: Steve Beaver
02:49 PM Revision 0ba34702: renaming: Viktor Gurov
02:45 PM Revision b4b46b46: dropdown menu to select reboot method: Viktor Gurov
02:34 PM Bug #9786: pfSense GUI allows incorrect VIP alias subnet.: Same here, and it works fine for me. It is not repeatable as you state. That's why it needs moved to the forum to gat... Jim Pingle
02:32 PM Bug #9786: pfSense GUI allows incorrect VIP alias subnet.: Thank you Jim, but I tested this via GUI, Not via CLI, and have been able to reproduce this multiple times with today... Anonymous
02:29 PM Bug #9786 (Rejected): pfSense GUI allows incorrect VIP alias subnet.: It was true years ago that /32 was required but that has not been the case for many years.
I have several /24 VIPs... Jim Pingle
02:21 PM Bug #9786 (Rejected): pfSense GUI allows incorrect VIP alias subnet.: As of last weeks updates for 2.5 (about Sept 20th, 2019) my VIP aliases stopped working, however the issue does not a... Anonymous
12:44 PM Revision 3209e782: Add a blank line to prevent breaking make.conf when it has no newline at EOF: Renato Botelho
12:43 PM Revision 840a0d43: Restore newline at EOF: Renato Botelho
11:42 AM pfSense Packages Feature #9315: Add Package: dnscrypt-proxy: The package 'unbound', used by FreeBSD, supports and uses DNScrypt from version 1.9.1
See: https://github.com/NLne... Carlo Hoffmann
11:19 AM pfSense Packages Bug #9752 (Pull Request Review): ACME - Actions have no access to additionally generated certificate files.: Jim Pingle
11:17 AM pfSense Packages Bug #9752: ACME - Actions have no access to additionally generated certificate files.: Pull request: https://github.com/pfsense/FreeBSD-ports/pull/675 Sebastian Fiebig
10:35 AM Bug #9785 (Feedback): ACB permits manual backup attempt when disabled: Applied in changeset commit:ce9eb0fb8db618f652fc1598d17c63f2f2d80c41. Anonymous
10:19 AM Bug #9785 (Resolved): ACB permits manual backup attempt when disabled: * curl should be set to require cert verification
* Error log message refers to obsolete package
* Comment specifie... Anonymous
01:03 AM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name: Is this even still on the radar ? I saw it get pushed to 2.5 Lynn Dixon

09/22/2019

09:13 AM Bug #9777 (Duplicate): DNS resolver crass possible DoS: Jim Pingle
05:38 AM Bug #9777: DNS resolver crass possible DoS: it seems similar or the same as https://redmine.pfsense.org/issues/8054
i can't reproduce it on my 2.5.0 probably al... Manuel Piovan
06:29 AM pfSense Docs Correction #9783 (Resolved): Under "Gateway Settings" in the "Weight" paragraph there is a typo: https://docs.netgate.com/pfsense/en/latest/book/routing/gateway-settings.html
Under "Gateway Settings" in the "We... DANIEL HARRINGTON

09/21/2019

04:04 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: It's been about 8 months now that we are unable to update / patch our firewalls because of this. Yeah I know, open so... Robert Gijsen
02:16 AM pfSense Packages Bug #8404: IPSec pre-shared key: I have tried 2.4.4_3 today, but it shows the same behavior.
Still need to disable the VPN dashboard plugin to access... Lasse not relevant

09/20/2019

05:35 PM Revision 73730497: Fix #9612: Run fsck -z once during upgrade: Renato Botelho
04:51 PM Revision e400549f: cosmetic fixes: Viktor Gurov
02:39 PM Bug #9782 (Resolved): XMLRPC auth error message format is inconsistent with GUI auth error message: Fix the format of XMLRPC auth error to match GUI auth error, so it can be picked up by sshguard
This is already fi... Jim Pingle
02:37 PM Bug #9781 (Resolved): Fix IPsec VTI interface creation logic: There is a logic error when creating VTI interfaces. Per Renato, "The logic was reversed, it must use @and@"
See a... Jim Pingle
02:35 PM Bug #9780 (Resolved): PHP warning in diag_dump_states.php: @for@ statement usage syntax is causing a PHP error in diag_dump_states.php
This is already fixed, adding issue fo... Jim Pingle
02:33 PM Bug #9779 (Resolved): Dynamic DNS class constructor uses deprecated function name: Fix Dynamic DNS class constructor name so it does not use the class name, PHP is deprecating support for that usage.
... Jim Pingle
02:31 PM Bug #9778 (Resolved): Inconsistent update check results: Revise update check to provide a more consistent version string in JSON format & make factory test case insensitive
... Jim Pingle
01:21 PM Bug #9777 (Duplicate): DNS resolver crass possible DoS: Hi I am running 2.4.3-RELEASE-p1 (amd64) (FreeBSD 11.1-RELEASE-p10) and have vlan for hotspot and Register DHCP lease... Vöggur Guðmundsson
12:45 PM Bug #9612 (Feedback): Run fsck with -z for ufs on upgrade to address FreeBSD-SA-19:10.ufs: Applied in changeset commit:7373049764f144b2ea7c891bd60760ab64b41160. Renato Botelho
11:00 AM Revision bdb6ef95: two generic functions: precheck_hostport, hostport_array_fixer: Viktor Gurov
10:25 AM Revision 2dcbb2bc: functions fixup_host and fixup_port merged to fixup_hostport: Viktor Gurov
09:52 AM pfSense Packages Bug #9776 (Resolved): Wrong function in squidguard_log.php: There is an error on squidguard_log.php
This function needs to be changed... 2S Suchorski GAPLS
09:19 AM Feature #9775 (New): AutoConfigBackup - Rolling per day/hour cap on changes, retention policy: Autoconfigbackup right now will keep a complete revision history. Unfortunately, when making bulk changes (such as tr... tasty ratz
07:37 AM Bug #9744: fatal error if ECDH Curve not default: Looks like https://community.openvpn.net/openvpn/ticket/1177
The initial title of the bug mentions FIPS but later ... Jim Pingle
04:39 AM Bug #9744: fatal error if ECDH Curve not default: Jim Pingle wrote:
> That's internal to OpenVPN/OpenSSL. The GUI presents the curves it claims to support exactly (Fr... Viktor Gurov
07:25 AM Bug #9577: radvd send_ra_forall failed on interface / can't join ipv6-allrouters: Hi!
Can someone PLEASE take a look at this one.
Thanks! Greg M
04:25 AM Feature #1683: PF scrub min-ttl option: Sorry,i mean "max-mss" - Enforces a maximum segment size (MSS) for matching TCP packets. Nikolay Stoyanov
03:52 AM pfSense Packages Feature #9774 (New): Squid logs / remote logs: it would be nice to have a button for downloading squid logs like access.log
and / or
it would be nice to have it ... Manuel Piovan

09/19/2019

07:46 PM Revision 657b6b32: Remove old code commented out in 2014: Renato Botelho
04:57 PM Revision bf8aa114: Initialize array properly: (cherry picked from commit d4393366bc0c30437c234652a2f124e08281acd5) Renato Botelho
04:57 PM Revision 9b32254c: Redirect to status_captiveportal.php: (cherry picked from commit 15e8ee8621a552eb7d1b1a7749816846a24ae724) Renato Botelho
04:57 PM Revision 875b28f1: Fix #9722: Change voucher shortcut to point to voucher status page: (cherry picked from commit 4baf532b5b834e659f484fc2b79e73fcfd169e46) Renato Botelho
04:41 PM Revision 4baf532b: Fix #9722: Change voucher shortcut to point to voucher status page: Renato Botelho
04:41 PM Revision d4393366: Initialize array properly: Renato Botelho
04:41 PM Revision 15e8ee86: Redirect to status_captiveportal.php: Renato Botelho
04:27 PM Revision 1836b0c2: Enable Multipath in FRR 7. Implements #9545: Jim Pingle
01:04 PM Bug #6263 (Resolved): Encryption options for every P2 on a given P1 are written to each P2 individually inside ipsec.conf with multiple P2 entries + split conn entries: This looks good to me, duplicate items are no longer present. Jim Pingle
06:35 AM Bug #6263 (Feedback): Encryption options for every P2 on a given P1 are written to each P2 individually inside ipsec.conf with multiple P2 entries + split conn entries: Applied in changeset commit:e9c0484340a54b650dd6d9e78650ff01c9d91428. Renato Botelho
01:00 PM Revision 11f166d8: Ticket #6775: Enable strongswan pkcs11 plugin: Renato Botelho
12:54 PM pfSense Packages Feature #9773 (Duplicate): pimd to replace IGMP Proxy: Duplicate of #9555 Jim Pingle
12:19 PM pfSense Packages Feature #9773 (Duplicate): pimd to replace IGMP Proxy: I have had zero luck with IGMP proxy and have been told/found out that it is busted on the later releases of PFSense.... Forrest McMean
12:25 PM Revision 93da47e6: Fix #9756: Fix NCP multiple selection: (cherry picked from commit b0595985418416de4fe87063a1e21ffa1d2d5532) Renato Botelho
12:13 PM Revision bdb3bb8b: Fix #9716: Enable Italian translation: Renato Botelho
12:13 PM Revision 47254a66: Update a couple of Chinese locale codes: Renato Botelho
12:04 PM Revision 1455535b: Update translation files: Renato Botelho
11:56 AM Revision b8226867: Regenerate pot: Renato Botelho
11:50 AM Bug #9722 (Feedback): services_captiveportal_vouchers.php wrong status icon link: Applied in changeset commit:4baf532b5b834e659f484fc2b79e73fcfd169e46. Renato Botelho
11:45 AM Revision b0595985: Fix #9756: Fix NCP multiple selection: Renato Botelho
11:40 AM pfSense Packages Bug #9772 (Resolved): can't enable Split ANY-ANY option: If you enable *Split ANY-ANY* option on interface page is not enabled,
and it's disabled in config.xml:... Viktor Gurov
11:35 AM Feature #9545 (Feedback): Enable Multipath Routing in the Kernel: Applied in changeset pfsense:commit:1836b0c237efdf9bf2ce9fab798f2718f0fd6028. Jim Pingle
11:24 AM Revision e9c04843: Fix #6263: Deduplicate encryption options on ipsec.conf: On a configuration with multiple P2, all encryption options from all P2
are added to ipsec.conf. The list could have... Renato Botelho
11:05 AM Revision 7bd9419d: add ability to reroot and reboot with fsck to WebGUI: Viktor Gurov
11:04 AM Feature #9544 (Feedback): Enable ``ROUTE_MPATH`` multipath routing: option added to amd64/arm/arm64 kernels Renato Botelho
10:54 AM Revision 3bfecc81: Fix #3743: Allow OpenVPN keepalive configuration: - Remove hardcoded 'keepalive 10 60' configuration
- Added 'inactive seconds' option
- Let user configure 'keepalive ... Renato Botelho
10:52 AM Bug #9747 (Pull Request Review): IPsec widget - Missing escape of domain backslash: Jim Pingle
10:51 AM Feature #9766 (Pull Request Review): diag_packet_capture.php: allow to input multiple tcp/udp ports: Jim Pingle
10:40 AM Feature #9771 (Pull Request Review): diag_reboot.php: add ability to reroot and reboot with fsck to WebGUI: Jim Pingle
06:10 AM Feature #9771: diag_reboot.php: add ability to reroot and reboot with fsck to WebGUI: https://github.com/pfsense/pfsense/pull/4089 Viktor Gurov
06:08 AM Feature #9771 (Resolved): diag_reboot.php: add ability to reroot and reboot with fsck to WebGUI: Adds extra buttons for Reroot and Reboot with fsck to Diagnostics / Reboot
code mostly taken from /etc/rc.initial.... Viktor Gurov
10:39 AM Feature #9769 (Pull Request Review): listallcerts - pfSsh.php script to show all certificates in console: Jim Pingle
10:36 AM Revision 4de6f04d: Fix #6846: Properly detect Super Micro C2558/C2758: Renato Botelho
10:15 AM Bug #9756 (Resolved): vpn_openvpn_(client|server).php: js issue when selecting multiple NCP: This looks good now. Selecting multiples on either side has the intended effect. Jim Pingle
06:55 AM Bug #9756 (Feedback): vpn_openvpn_(client|server).php: js issue when selecting multiple NCP: Applied in changeset commit:b0595985418416de4fe87063a1e21ffa1d2d5532. Renato Botelho
08:05 AM Feature #6775 (Feedback): Strongswan PKCS#11 Support: Plugin support was added to strongswan port on pfSense 2.5.0
I still don't know exactly what to do on GUI Renato Botelho
07:20 AM pfSense Packages Bug #7293 (Feedback): dns/bind911 requires TCP_RFC7413 in kernel: TCP_RFC7413 is part of pfSense kernel on 2.5.0 Renato Botelho
07:20 AM Feature #9716 (Feedback): Italian translation: Applied in changeset commit:bdb3bb8b3c7a2c9f42b3ed82d70a53079eea2c0f. Renato Botelho
06:12 AM Feature #3473 (Feedback): Allow configuration of OpenVPN keepalive: Done. I used wrong ticket number in commit:3bfecc81db500415a6d61df318513ccb82f47a8c Renato Botelho
05:45 AM Bug #6846: System misreporting Super Micro C2558 platform as Super Micro C2758: Applied in changeset commit:4de6f04d5f4eb69e9293dad6f47ce66f7d3baec1. Renato Botelho

09/18/2019

11:22 PM Bug #6846: System misreporting Super Micro C2558 platform as Super Micro C2758: A1SAi Travis Erdmann
07:03 AM Bug #6846: System misreporting Super Micro C2558 platform as Super Micro C2758: Travis Erdmann wrote:
> hw.model: Intel(R) Atom(TM) CPU C2558 @ 2.40GHz
And what is the output of:... Renato Botelho
08:23 PM Revision 3abcd547: Setup shortcuts for packages. Fixes #9770: Jim Pingle
08:23 PM Revision f14ab2c6: Setup shortcuts for packages. Fixes #9770: (cherry picked from commit 37213abe96e83884b4a8ffbbbb7cc759cd2799ec) Jim Pingle
05:10 PM Revision 9f2a58b5: Remove variable from gettext string: Renato Botelho
05:10 PM Revision 4597011d: Remove line commented out in 2015: Renato Botelho
05:01 PM Revision 1889f3e7: Remove code commented out in 2008: Renato Botelho
03:42 PM Revision bf03bee2: Allow Dynamic DNS wildcards for Route53 #9053: (cherry picked from commit 0b230bb2957d32059ea4610965a9507346a1d3e9) Tom Embt
03:39 PM Revision 9133e01d: Fix #9285: Move ping-check option from global to per-subnet: (cherry picked from commit 5197e3e3a3b0ee048785e2ffb4222d7cba4e6c74) Renato Botelho
03:38 PM Revision 13980a4f: Add IPsec DH/PFS groups 25/26/27. Implements #9757: (cherry picked from commit 21bee0287caf76bb7ab63ec29b0ecf7435940a06) Jim Pingle
03:38 PM Revision a033a446: Add wizard select_source & use for OpenVPN DH. Fixes #9748: (cherry picked from commit 52f686a97f77cfd00ddb69088bef7164676d4117) Jim Pingle
03:38 PM Revision a4bcbc3e: Add additional DHCPv6 prefix delegation size options to dropdown list on interface settings.: - implements #9590
(cherry picked from commit 51dc008bfebef50bc4be9ff2a894e176ba013866) Andreas Bleischwitz
03:38 PM Revision 789b545b: openvpn: cleaning default case handling in switch statements: (cherry picked from commit f93ec3853fc0c01760606994422e9e8fc0d645c9) Vito Piserchia
03:38 PM Revision 83011d13: change after review: (cherry picked from commit f08369ec248f2733eb2b69db23aa042e27ec04de) Vito Piserchia
03:38 PM Revision 83929cea: Update text: (cherry picked from commit cef01bcb95add6acc13edb16739e10d7ed8ba6e2) Vito Piserchia
03:38 PM Revision 45d6f551: Added tlsauth keydir options to openvpn client and server: (cherry picked from commit 8698f918d170d3836037d3a39b4e1f8aa6389f6d) Vito Piserchia
03:38 PM Revision 6c203c2f: Deduplicate code in openvpn.inc: (cherry picked from commit f7335af377d41262654bdbd7d7cf0e2993fb71d1) Renato Botelho
03:38 PM Revision 22ee846c: Remove unnecessary variable: (cherry picked from commit 1d13560cb36db0d5f7cec9fa9d6295445333ba95) Renato Botelho
03:37 PM Revision 1bcb05e4: Improve efficiency of resync checks.: GW Group changes are checked iff the interface is not the empty string or the interface in question is not the same a... James Webb
03:37 PM Revision f5e2f7dc: Add ability for OpenVPN instances to resync on IP changes and on boot.: OpenVPN instances resync if interface IP change occurs.
At boot, the interface is the empty string, so resync is mand... James Webb
03:37 PM Revision 2b909be9: Add else clause for cases when OpenVPN interface file does not exist.: - Prevents potential race condition at startup resulting in failure to start OpenVPN instances.
- In cases where inte... James Webb
03:37 PM Revision c3b023f5: Update openvpn.inc to allow OpenVPN instances to resync when running on a gateway group.: Implementation now checks if OpenVPN client/server running on gateway group should resync when IP changes occur or if... James Webb
03:37 PM Revision 86040ba2: Remove deprecated comments since username tag got CDATA: (cherry picked from commit 1dcaf2d816721704bfb05ae2587c09e37c873e71) Renato Botelho
03:37 PM Revision 994f803f: Ticket #6195: Use CDATA on username tag: After discuss with JimP we agreed it would be a better approach than
bdaa5235d4 if we add username tag to the list of... Renato Botelho
03:37 PM Revision b0f317fd: Fix interface/config alignment on interfaces_ppps_edit.php. Fixes #9741: (cherry picked from commit d81f270454ec66680cb645c0d3c13f9431d9c026) Jim Pingle
03:37 PM Revision 88a41391: Fix handing of DNSimple API response: It seems DNSimple started using HTTP/2, which broke the regex the dnsimple updater was using to check for success. I ... Paul Sadauskas
03:37 PM Revision 9f36302e: Was failing the check if clicking test notifications twice in a row. So it was saving the asterisks and overwriting the current password.: (cherry picked from commit 6176862f98749e15524e02ccaa705b65c498ceed) John Forte
03:36 PM Revision 535b07f7: Do not use constructor with the same name of class, it's going to be deprecated: (cherry picked from commit d43154fee7d7c2a5a007f36da7d86a94bd197a85) Renato Botelho
03:36 PM Revision 0ffbf1e7: Fix PHP warning: (cherry picked from commit b94eb4b90540dfb294376d6578aa9e9cbec63be9) Renato Botelho
03:36 PM Revision 15d4aede: Fixed #8014: Fixed wildcard variable not being set correctly.
Updated CURLOPT_URL according to provider's documentation.
Added sup... kristoffer-ekenstam
03:36 PM Revision 7112400e: Add more color choices for login screen: (cherry picked from commit 1fe82d1dc90969fad058819ce6e7b6001382191e) Mix Room
03:36 PM Revision 5725f53c: Make factory test case insensitive: (cherry picked from commit 552a41fbd37aa61f50e62f29876485c9775345cc) Steve Beaver
03:36 PM Revision e553d3d0: Revise update check to provide a more consistent version string, and to provide it in JSON format: (cherry picked from commit 819165020041ee46f423a7ead5aca855dac28cdb) Steve Beaver
03:36 PM Revision 8c501800: IPsec ID type parsing changes. Fixes #9243: * Move code to function to avoid unnecessary duplication of code
* Clean up the logic to avoid further redundancies
*... Jim Pingle
03:36 PM Revision a00fcaa6: Fix CA/Cert search description. Issue #9412: (cherry picked from commit f30da999bc135fe80eda2eeddcc0cc1350a989d3) Jim Pingle
03:36 PM Revision 886a03a4: Fix bonus closing tag. Issue #9412: (cherry picked from commit dd4fb72cfa8c0904d3cc7eae6ec01c2493f113f7) Jim Pingle
03:36 PM Revision ebfbb362: Add sorting and search to CA/Certs. Implements #9412: (cherry picked from commit 14973058752f8b19f63af5c45b3f7b42560ae432) Jim Pingle
03:36 PM Revision df40c93b: Routing, actually show the "(default)" mark on the default route as it is present on the OS: Most obvious problem was when manually switching from WANGW1 to WANGW2 it showed both as (default) after saving the s... PiBa-NL
03:36 PM Revision ef2e3b5d: Also trim if() statement: (cherry picked from commit d6601c8f0012f8eb784a285636ba9cca19d37f89) A FL
03:36 PM Revision a9a90af6: add trim() to $_POST['auth_user'] & $_POST['auth_user2']: (cherry picked from commit 28a5469e25229ee0b922c7cd976cf510b73b5c7d) jeroen van breedam
03:35 PM Revision 1ef5b31b: Bug #9218: (cherry picked from commit adc6ddbdbbb465fd3cb58d931465ac93b1fdedb6) d j
03:35 PM Revision 399e1385: Only apply group size restriction to local groups. Implements #3792: (cherry picked from commit 8d4f79cd5fdfe1c5c47f39bc0f92f63268b4593e) Jim Pingle
03:35 PM Revision 3184695e: Fixed #9693: Allow ACB to be suppressed by including magic string in the backup description
Transmit max number of manual backups ... Steve Beaver
03:35 PM Revision de209dea: Fixed #9687: Remove all referenes to legact/Gold ABC system
(cherry picked from commit f01c09914d50618b29f17853d4a69ed6973330cd) Steve Beaver
03:35 PM Revision 7ba8d654: Instead of restarting pkgs, add an IPsec reload hook they can use instead. Fixes #9668: (cherry picked from commit a264f870479c36ac1599b936bbdd547f0f8a99ec) Jim Pingle
03:34 PM Revision 64c18f53: Restart packages at the end of rc.newipsecdns. Fixes #9668: Not an ideal solution but it does ensure that FRR routes function after
an IPsec event.
(cherry picked from commit 1... Jim Pingle
03:34 PM Revision aa08527d: Fixed #9586 by detecting if option list includes /0 or not: (cherry picked from commit 7ec80e763f7e8357a4e5b0d2d57546cfd5d0f0f0) Steve Beaver
03:33 PM Revision 2c29eaf9: Allow Dynamic DNS wildcards for Cloudflare #9361: (cherry picked from commit acfc36435c5a06e188917d11598f999a37f78469) Tom Embt
03:33 PM Revision 65916f88: Update dyndns.class: (cherry picked from commit 0c43f8256edf08e473caae8c7dad0936ada2fd90) Matthew Fine
03:33 PM Revision a7a19a8b: Update services.inc: (cherry picked from commit 443a8b1beca07d1490f170c972c1c00ecb39baa7) Matthew Fine
03:33 PM Revision 8c6b6ea2: Update services_dyndns_edit.php: (cherry picked from commit 8b3e2e26f3082c78979842992acd1849ba42fcb3) Matthew Fine
03:33 PM Revision 98375c63: Azure DDNS whitespace only: (cherry picked from commit ed5b58a752a2241ce052851def2a7c846361146d) Tom Embt
03:32 PM Revision d94886a8: Linode Dynamic DNS syntax fixes: (cherry picked from commit bd0a29ea21d0a5230b74410a7a4c1289fef38e89) Tom Embt
03:32 PM Revision e77f993f: Add Dynamic DNS support for Linode #9268: (cherry picked from commit b923a8251ca4b899936156db48fb9253745c41e3) Tom Embt
03:30 PM Bug #9770 (Feedback): XML-based Packages do not activate shortcuts: Applied in changeset commit:f14ab2c616e12e083143de458af67ebd08aa1636. Jim Pingle
03:23 PM Bug #9770 (Resolved): XML-based Packages do not activate shortcuts: When using XML-based packages like stunnel or iperf, shortcuts are not activated as the package does not have a way t... Jim Pingle
03:27 PM Revision 2fb3b9bd: Fix AzureV6 DynDNS client: `AAAARecords` in the Azure DNS API is case sensitive
Documentation: https://docs.microsoft.com/en-us/rest/api/dns/re... Tyler Szabo
03:05 PM Revision 5beb11e6: Fixed #8907: Support field size option in select control
(cherry picked from commit 7f486e5af62396622ca63b922ec6725de4df2bb5) Steve Beaver
09:35 AM pfSense Packages Feature #9751 (Resolved): Need an "inclusive" and "exclusive" method of specifying ports: Jim Pingle
09:31 AM pfSense Packages Feature #9751: Need an "inclusive" and "exclusive" method of specifying ports: Works great now! Thanks! George Phillips
01:08 AM pfSense Packages Feature #9751: Need an "inclusive" and "exclusive" method of specifying ports: Good change Jim Denny Page
07:34 AM Bug #9478 (Resolved): Unable to check for updates from the GUI when using a proxy with authentication: Nice!
It works from the GUI and shell now. Jim Pingle
06:14 AM Feature #9769: listallcerts - pfSsh.php script to show all certificates in console: https://github.com/pfsense/pfsense/pull/4088 Viktor Gurov
06:13 AM Feature #9769 (Closed): listallcerts - pfSsh.php script to show all certificates in console: Show you all certificates in console, like System / Certificate Manager / Certificates
code mostly taken from syst... Viktor Gurov

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

10/17/2019

10/16/2019

10/15/2019

10/14/2019

10/13/2019

10/12/2019

10/11/2019

10/10/2019

10/09/2019

10/08/2019

10/07/2019

10/06/2019

10/05/2019

10/04/2019

10/03/2019

10/02/2019

10/01/2019

09/30/2019

09/29/2019

09/27/2019

09/26/2019

09/25/2019

09/24/2019

09/23/2019

09/22/2019

09/21/2019

09/20/2019

09/19/2019

09/18/2019