Activity

30 days up to

User

Subprojects

Activity

From 12/19/2019 to 01/17/2020

01/17/2020

03:27 PM pfSense Docs Correction #10191 (Closed): Feedback on L2TP VPN — L2TP Server Configuration: *Page:* https://docs.netgate.com/pfsense/en/latest/book/l2tp/l2tp-server-configuration.html
*Feedback:*... Anonymous
03:11 PM Revision 52b392e6: Merge pull request #4166 from vktg/disablep1vti: Renato Botelho
02:14 PM Revision ce25d600: fix incorrect encrypted backup restore error handling. Issue #10179: (cherry picked from commit 153f78af168e81e89792a92dc81ed719ce86296b) Viktor Gurov
02:14 PM Revision 5472de68: Merge pull request #4160 from vktg/restoreerrors: Renato Botelho
02:13 PM Revision f269245b: Merge pull request #4157 from vktg/expaes: Renato Botelho
02:10 PM Revision de40fb33: XMLRPC: fix last shaper/limiter removing. Issue #9468-9469: (cherry picked from commit c9a96f16a4cb582884c8a09d42dd1a61c206b97d) Viktor Gurov
02:10 PM Revision 30f7da5d: Merge pull request #4156 from vktg/syncempty: Renato Botelho
02:03 PM Revision 903826b5: allow to disable IPsec P1 when P2 is disabled VTI. Issue #10190: Viktor Gurov
01:01 PM pfSense Packages Bug #10187: Insertion of ZERO_WIDTH_SPACE into IPv6 addresses make it impossible to use browser find functionality: Izaac Falken wrote:
> Bill Meeks wrote:
> > You are welcome to submit a modification to the PHP code that works bet... Bill Meeks
09:52 AM pfSense Packages Bug #10187 (Needs Patch): Insertion of ZERO_WIDTH_SPACE into IPv6 addresses make it impossible to use browser find functionality: Jim Pingle
09:27 AM pfSense Packages Bug #10187: Insertion of ZERO_WIDTH_SPACE into IPv6 addresses make it impossible to use browser find functionality: Bill Meeks wrote:
> You are welcome to submit a modification to the PHP code that works better.
'k. Izaac Falken
12:18 PM Revision d81ba885: Update help.php: update crash_reporter.php to a more useful resource
(cherry picked from commit eb10e3293ec967161b2dbb71bba3023e5f812... jamesdekker
12:16 PM Revision df331b7d: Merge pull request #4162 from jamesdekker/jamesdekker-patch-1: Renato Botelho
12:05 PM Revision b1ea180a: Merge pull request #4164 from vktg/nottagged: Renato Botelho
12:02 PM Revision e832eb98: Revert "add fe80::1:1 as an alias. Issue #9998": It's a 2.5.x only
This reverts commit a69c0e4e0f2337b956aa6dd2d0668d3c2b1a92b7. Renato Botelho
12:02 PM Revision a69c0e4e: add fe80::1:1 as an alias. Issue #9998: (cherry picked from commit 24da61c68c91ea1d1cb7214aeeddd6c9ae741ce5) Viktor Gurov
12:01 PM Revision 0b91a7f1: Merge pull request #4163 from vktg/fe8011alias: Renato Botelho
10:35 AM pfSense Packages Bug #9601 (Resolved): Status_Monitoring rrd_fetch_json.php does not encode errors returned by the RRD module.: This is OK on 2.4.5 and 2.5.0, the call returns the escaped version. Jim Pingle
10:12 AM pfSense Packages Bug #9583 (Feedback): Freeradius 3 auth error on OTP (only on PFSense 2.5-dev): I knew GA had a python 3.x issue but just hadn't got around to fixing it yet. It was a simple change:
2.5.0: https... Jim Pingle
03:15 AM pfSense Packages Bug #9583: Freeradius 3 auth error on OTP (only on PFSense 2.5-dev): mOTP is ok
this is python3.7 code issue:... Viktor Gurov
02:11 AM pfSense Packages Bug #9583: Freeradius 3 auth error on OTP (only on PFSense 2.5-dev): issue for both Google Authenticator and mOTP
on the latest 2.4.5 and 2.5... Viktor Gurov
09:11 AM Bug #10190 (Feedback): can't disable Phase 1 when Phase 2 is VTI: PR has been merged. Thanks! Renato Botelho
07:49 AM Bug #10190 (Pull Request Review): can't disable Phase 1 when Phase 2 is VTI: Jim Pingle
07:16 AM Bug #10190: can't disable Phase 1 when Phase 2 is VTI: https://github.com/pfsense/pfsense/pull/4166 Viktor Gurov
06:56 AM Bug #10190 (Resolved): can't disable Phase 1 when Phase 2 is VTI: If you have assigned VTI interface and try to disable P2 entry, you will get:... Viktor Gurov
08:17 AM Bug #9977 (Resolved): Enabling Captive Portal on 2.4.5 breaks network connectivity: Works well on CE 2.4.5.a.20200117.0757. Enabling Captive Portal does not affect traffic on interfaces not involved in... Jim Pingle
08:14 AM Bug #10179 (Feedback): incorrect encrypted backup restore error handling: PR has been merged. Thanks! Renato Botelho
08:13 AM Feature #1192 (Feedback): Certificate Manager - Ability to Encrypt Private Keys When Exporting: PR has been merged. Thanks! Renato Botelho
08:11 AM Bug #9469 (Feedback): Removing the last ATLQ traffic shaper queue does not sync to secondary via XMLRPC: PR has been merged. Thanks! Renato Botelho
08:11 AM Bug #9468 (Feedback): Removing the last limiter does not sync to secondary via XMLRPC: PR has been merged. Thanks! Renato Botelho
07:47 AM Bug #10189 (Feedback): pfsense calculates wrong ip header checksum when reassambling packages with different mtu: You'll need to try reproducing that on bare FreeBSD (and FreeBSD+pf) -- Odds are that isn't caused by anything specif... Jim Pingle
06:42 AM Bug #10189 (Resolved): pfsense calculates wrong ip header checksum when reassambling packages with different mtu: IP packages that are routed through pfsense are reassambled, if incoming packages are fragments and the MTU of outgoi... Stefan Mark
07:09 AM pfSense Packages Bug #9738 (Feedback): Client IP address validation disallows CIDR notation: PR has been merged. Thanks! Renato Botelho
06:06 AM Feature #10186 (Feedback): Ability to do inverse matching of tags in floating rules: PR has been merged. Thanks! Renato Botelho
06:03 AM Bug #9998 (Feedback): DHCP6c and Unbound DNS Server Boot-Up Configuration Failure: PR has been merged. Thanks Renato Botelho

01/16/2020

11:00 PM pfSense Packages Bug #10188: Reputation tab is not working: ... Viktor Gurov
10:46 PM pfSense Packages Bug #10188 (New): Reputation tab is not working: got error page after clicking on Reputation tab:... Viktor Gurov
10:15 PM Bug #9977 (Feedback): Enabling Captive Portal on 2.4.5 breaks network connectivity: Should be fixed in the next snapshot. Luiz Souza
08:44 PM pfSense Packages Bug #10187: Insertion of ZERO_WIDTH_SPACE into IPv6 addresses make it impossible to use browser find functionality: Izaac Falken wrote:
> No, I am not viewing raw HTML. I'm hitting Ctrl-F in Firefox. Find-in-page breaks on breaks.
... Bill Meeks
12:52 PM pfSense Packages Bug #10187: Insertion of ZERO_WIDTH_SPACE into IPv6 addresses make it impossible to use browser find functionality: No, I am not viewing raw HTML. I'm hitting Ctrl-F in Firefox. Find-in-page breaks on breaks.
While I appreciate t... Izaac Falken
09:34 AM pfSense Packages Bug #10187 (Not a Bug): Insertion of ZERO_WIDTH_SPACE into IPv6 addresses make it impossible to use browser find functionality: Jim Pingle
09:02 AM pfSense Packages Bug #10187: Insertion of ZERO_WIDTH_SPACE into IPv6 addresses make it impossible to use browser find functionality: This was done by design to preserve the page display asthetics. When you copy-paste using the pfSense GUI or do other... Bill Meeks
02:53 AM pfSense Packages Bug #10187 (Needs Patch): Insertion of ZERO_WIDTH_SPACE into IPv6 addresses make it impossible to use browser find functionality: Yes, seriously. For some bizarre reason a ZERO_WIDTH_SPACE is inserted after every colon in an IPv6 address on both ... Izaac Falken
03:52 PM Revision effb7266: inverse matching of tags. Issue #10186: Viktor Gurov
11:01 AM pfSense Packages Bug #9854: pfBlockerNG Message: Allowed memory size of 536870912 bytes exhausted: at the same time:... Viktor Gurov
08:15 AM Revision c297d257: set correct MTU for static and default IPv6 routes. Issue #6868: Viktor Gurov
07:57 AM Bug #9405 (Pull Request Review): IPsec IPv6 dynamic FQDN Remote Gateways / util.inc resolve_retry() IPv6 support: Jim Pingle
02:54 AM Bug #9405: IPsec IPv6 dynamic FQDN Remote Gateways / util.inc resolve_retry() IPv6 support: https://github.com/pfsense/pfsense/pull/4165 Viktor Gurov
07:36 AM Feature #10186 (Pull Request Review): Ability to do inverse matching of tags in floating rules: Jim Pingle
02:05 AM Feature #10186: Ability to do inverse matching of tags in floating rules: https://github.com/pfsense/pfsense/pull/4164 Viktor Gurov

01/15/2020

04:06 PM Feature #10186 (Resolved): Ability to do inverse matching of tags in floating rules: *Summary:*
I would love to be able to set up floating rules that match traffic on an interface that has NOT been t... Soren Petersen
12:28 PM pfSense Packages Bug #10185: Suricata 'Alert Log View Filter' undesirably port matches substrings instead of exact port: Sean McBride wrote:
> Or even just adding some text under the input fields to specify that it takes regexes.
Yeah... Bill Meeks
09:53 AM pfSense Packages Bug #10185: Suricata 'Alert Log View Filter' undesirably port matches substrings instead of exact port: Or even just adding some text under the input fields to specify that it takes regexes. Sean McBride
09:30 AM pfSense Packages Bug #10185: Suricata 'Alert Log View Filter' undesirably port matches substrings instead of exact port: The alerts log filtering tool uses Perl regular expression syntax. If you want to find say just Port 25, then try thi... Bill Meeks

01/14/2020

08:11 PM Revision 12ade1e2: Enable RUST on native build: Renato Botelho
08:11 PM Revision 78a6cfe3: Enable RUST on native build: Renato Botelho
06:39 PM Revision 84801cc2: Update repository info before checking for updates: (cherry picked from commit ff90ae73c35f293f370104c18d386c08e9e813c7) Steve Beaver
06:17 PM Revision 24da61c6: add fe80::1:1 as an alias. Issue #9998: Viktor Gurov
05:35 PM Revision c9a96f16: XMLRPC: fix last shaper/limiter removing. Issue #9468-9469: Viktor Gurov
05:28 PM Revision 8e4ad4c8: encrypt exported key with AES-256. Issue #1192: Viktor Gurov
05:13 PM Revision 153f78af: fix incorrect encrypted backup restore error handling. Issue #10179: Viktor Gurov
04:56 PM Revision d6138c50: Link to the book, not old OpenBSD docs. Fixes #10184: (cherry picked from commit 1bcc6e56e51b8ac1e329c9c0dd2bfc0f40983ead) Jim Pingle
04:56 PM Revision 1bcc6e56: Link to the book, not old OpenBSD docs. Fixes #10184: Jim Pingle
04:45 PM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: [[https://github.com/pfsense/FreeBSD-ports/pull/751]] Alexander Berkes
03:42 PM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: Alexander Berkes wrote:
> Renato Botelho wrote:
> > https://github.com/pfsense/FreeBSD-ports/blob/devel/sysutils/dh... Renato Botelho
03:02 PM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: Renato Botelho wrote:
> https://github.com/pfsense/FreeBSD-ports/blob/devel/sysutils/dhcpleases/files/dhcpleases.c
... Alexander Berkes
04:19 PM pfSense Packages Bug #10185 (Closed): Suricata 'Alert Log View Filter' undesirably port matches substrings instead of exact port: See attached screenshot. When I put a port number, like "25" in the 'destination port' field, I would expect to get ... Sean McBride
02:22 PM Revision 07060399: diag_packet_capture.php: Input and error checks. Fixes #10183: * Prevent selecting Address Family and ARP, it is not a valid
combination.
* Prevent PHP errors when the capture file... Jim Pingle
02:19 PM Revision 27f52f53: diag_packet_capture.php: Input and error checks. Fixes #10183: * Prevent selecting Address Family and ARP, it is not a valid
combination.
* Prevent PHP errors when the capture file... Jim Pingle
12:34 PM Bug #10184 (Resolved): Shaper Add Child Scheduler options Codel wrong description link: Looks good after a gitsync. Jim Pingle
11:05 AM Bug #10184 (Feedback): Shaper Add Child Scheduler options Codel wrong description link: Applied in changeset commit:1bcc6e56e51b8ac1e329c9c0dd2bfc0f40983ead. Jim Pingle
12:19 PM Bug #9998: DHCP6c and Unbound DNS Server Boot-Up Configuration Failure: https://github.com/pfsense/pfsense/pull/4163 Viktor Gurov
12:10 PM pfSense Packages Todo #9392 (Resolved): Status_Traffic_Totals needs updated for vnstat 2.0: Totals match up with expectations on pkg v 2.3.1. Jim Pingle
08:34 AM pfSense Packages Todo #9392 (Feedback): Status_Traffic_Totals needs updated for vnstat 2.0: Try again once pkg 2.3.1 is available with the next snapshot run. Jim Pingle
08:16 AM pfSense Packages Todo #9392: Status_Traffic_Totals needs updated for vnstat 2.0: I have a fix for this. Values are coming in Bytes by default, old base was KiB, so it needs adjusted to match. Jim Pingle
08:11 AM pfSense Packages Todo #9392 (In Progress): Status_Traffic_Totals needs updated for vnstat 2.0: I'm seeing that now as well. The command line shows what appears to be more accurate data.... Jim Pingle
01:35 AM pfSense Packages Todo #9392: Status_Traffic_Totals needs updated for vnstat 2.0: something is off in units on 2.5 at least since up date from 12:00 to 2:30 in morning and on 18M dsl its already show... Michael Kellogg
12:09 PM Bug #10183 (Resolved): diag_packet_capture.php: Capture for 'pfsync' fails: Works fine on 2.4.5.a.20200114.0923 Jim Pingle
08:30 AM Bug #10183 (Feedback): diag_packet_capture.php: Capture for 'pfsync' fails: Applied in changeset commit:27f52f5385a46f3896b08a7a90258be43fadb8de. Jim Pingle
07:43 AM Bug #10183 (In Progress): diag_packet_capture.php: Capture for 'pfsync' fails: Jim Pingle
06:44 AM Bug #10183: diag_packet_capture.php: Capture for 'pfsync' fails: With the combination Address family: IPv4 and ARP protocol i have the same warning Raul Ramos
12:09 PM Feature #9905: ospf / ospv3 packet capture: Works fine on 2.4.5.a.20200114.0923 Jim Pingle
12:08 PM Feature #9905 (Resolved): ospf / ospv3 packet capture: Jim Pingle wrote:
> Needs a quick re-test on 2.4.5 once it's in a snapshot.
tested on 2.4.5.a.20200114.0923
wo... Viktor Gurov
12:08 PM Feature #9766 (Resolved): diag_packet_capture.php: allow to input multiple tcp/udp ports: Works fine on 2.4.5.a.20200114.0923 Jim Pingle
12:03 PM Feature #9831 (Resolved): diag_packet_capture.php: print packet capture start time: Jim Pingle wrote:
> Needs a quick re-test on 2.4.5 once it's in a snapshot.
tested on 2.4.5.a.20200114.0923
wo... Viktor Gurov
12:00 PM Feature #9251 (Resolved): DNS Resolver (Unbound) Python Integration: Appears to work fine now on 2.4.5.a.20200114.0923 and 2.5.0.a.20200113.1543 Jim Pingle

01/13/2020

11:53 PM Bug #10182: BGP learned routes dropping from routing table: Hi Jim,
I used the patches commit:64c18f53 and commit:7ba8d654 which working around the issue by toggling the vti ... Luki TJ
12:15 PM Bug #10182: BGP learned routes dropping from routing table: Thank you Jim, going to test these patches on 2.4.4-p3 and will report back results soon. Luki TJ
11:24 AM Bug #10182 (Duplicate): BGP learned routes dropping from routing table: This is probably a duplicate of #9668 -- Please post on the forum to discuss if the problem is still observed on a 2.... Jim Pingle
11:21 AM Bug #10182 (Duplicate): BGP learned routes dropping from routing table: Hi,
I'm running pfSense as VPN Head-end with multiple Site-to-Site IPSEC Connections. Most of theses connection ar... Luki TJ
11:29 PM Bug #10184: Shaper Add Child Scheduler options Codel wrong description link: current link is https://web.archive.org/web/20160404153707/http://www.openbsd.org/faq/pf/queueing.html#ecn Constantine Kormashev
11:28 PM Bug #10184 (Resolved): Shaper Add Child Scheduler options Codel wrong description link: In Add Child web-page of Shaper interface Scheduler options checkbox Codel Active Queue leads to page which does not ... Constantine Kormashev
08:39 PM Revision 3f571682: Sync diag_packet_capture.php with master: * Adds multiple TCP/UDP port input. Issue #9766
* Adds packet capture start time info. Issue #9831
* Adds OSPF protoc... Jim Pingle
08:17 PM Revision 1d2dbda2: Use correct pfsync packet capture syntax. Fixes #10183: Jim Pingle
03:39 PM Feature #3178 (Duplicate): IPSec dynamic hosts for IPv6: Duplicated by #9405 but it has a proposed fix, so keep that one. Jim Pingle
02:50 PM Bug #10183 (Feedback): diag_packet_capture.php: Capture for 'pfsync' fails: Applied in changeset commit:1d2dbda287ecf650f5957689bd2346adb98f6360. Jim Pingle
02:00 PM Bug #10183 (In Progress): diag_packet_capture.php: Capture for 'pfsync' fails: Jim Pingle
01:59 PM Bug #10183 (Resolved): diag_packet_capture.php: Capture for 'pfsync' fails: On diag_packet_capture.php, attempting to capture traffic fails when the protocol is set to 'pfsync'.
This happens... Jim Pingle
02:43 PM Feature #9905 (Feedback): ospf / ospv3 packet capture: Needs a quick re-test on 2.4.5 once it's in a snapshot. Jim Pingle
02:43 PM Feature #9766 (Feedback): diag_packet_capture.php: allow to input multiple tcp/udp ports: Needs a quick re-test on 2.4.5 once it's in a snapshot. Jim Pingle
02:43 PM Feature #9831 (Feedback): diag_packet_capture.php: print packet capture start time: Needs a quick re-test on 2.4.5 once it's in a snapshot. Jim Pingle
11:25 AM Bug #9998: DHCP6c and Unbound DNS Server Boot-Up Configuration Failure: To review that properly for inclusion, it must be submitted as a pull request on Github: https://docs.netgate.com/pfs... Jim Pingle
11:22 AM Bug #9998: DHCP6c and Unbound DNS Server Boot-Up Configuration Failure: Patch file supplied to set fe80::1:1 as an IPv6 alias (and NOT remove the native IPv6 link-local), to clean up the in... Eric Veum
11:07 AM Bug #9469 (Pull Request Review): Removing the last ATLQ traffic shaper queue does not sync to secondary via XMLRPC: Jim Pingle
11:07 AM Bug #9468 (Pull Request Review): Removing the last limiter does not sync to secondary via XMLRPC: Jim Pingle
06:36 AM Feature #10174: Internet Bandwidth per USER: That is a support question. This site is not for support. Ask questions like that on the forum at https://forum.netga... Jim Pingle
06:27 AM Feature #10174: Internet Bandwidth per USER: Mohamed Abdelaal wrote:
> Dear All,
> I'm in-love with pfSense and really it's a great project BUT i'm facing a pro... Mohamed Abdelaal
05:36 AM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: Alexander Berkes wrote:
> Hi all,
>
> I have been looking at this issue for the last few days, because I am affec... Renato Botelho

01/12/2020

12:13 AM Revision eb10e329: Update help.php: update crash_reporter.php to a more useful resource jamesdekker

01/11/2020

06:33 PM pfSense Docs Correction #10181 (Closed): Feedback on Packages — Installing Packages: *Page:* https://docs.netgate.com/pfsense/en/latest/book/packages/managing-packages.html
*Feedback:* https://docs.n... Anonymous
06:04 PM pfSense Docs Correction #10180 (Resolved): Feedback on Development — Obtaining Panic Information for Developers: *Page:* https://docs.netgate.com/pfsense/en/latest/development/panic-information.html
*Feedback:* https://docs.net... Anonymous
04:30 PM Feature #6626: Support for IPv6 firewall entries with dynamic delegated prefix and static host address: The global prefix variable should be available to the Dynamic DNS tool as well. Currently the Dynamic DNS tool has an... B P
04:02 PM Bug #10179 (Pull Request Review): incorrect encrypted backup restore error handling: Jim Pingle
02:56 AM Bug #10179 (Resolved): incorrect encrypted backup restore error handling: If you trying to restore encrypted backup, but select invalid file, you got blank page after pressing "restore" ( cau... Viktor Gurov
03:59 PM Bug #9998: DHCP6c and Unbound DNS Server Boot-Up Configuration Failure: Once upon a time we started using fe80::1:1 as a predictable local address sort of like 192.168.1.1, but I don't thin... Jim Pingle
01:06 AM Bug #9998: DHCP6c and Unbound DNS Server Boot-Up Configuration Failure: I found that the interface_track6_configure() function switches original link-local address to fe80::1:1
Why do we n... Viktor Gurov
03:56 PM Bug #10159 (Resolved): nginx error " 48: Address already in use" sometimes displayed in the logs when reconfiguring captive portal: Jim Pingle
11:26 AM Bug #10159: nginx error " 48: Address already in use" sometimes displayed in the logs when reconfiguring captive portal: this issue can be marked as resolved A FL
01:36 PM Feature #2358: NAT64 support: Please add NAT64 we need this feature! Car F
08:51 AM Bug #10177 (Not a Bug): OpenVPN Server Compression option missing (No compression): Omitting the directive uses the OpenVPN default, which is what the option already says, and that was an intentional c... Jim Pingle
07:30 AM Bug #10177: OpenVPN Server Compression option missing (No compression): After reading your patch and the complete file, I got the fealing that the "default" value Line 135: '' => gettext("O... Cullen Trey
03:35 AM Bug #10177 (New): OpenVPN Server Compression option missing (No compression): That seems correct,
From openvpn(8):
If the algorithm parameter is empty, compression will be turned off, b... Viktor Gurov
02:46 AM Bug #10178 (Resolved): crypt.inc: crypt_data() legacy mode using wrong message digest: tested on 2.5.0.a.20200110.1822 with 2.4.4-p3 and 2.5 encrypted backups Viktor Gurov
01:20 AM pfSense Packages Bug #10146 (Resolved): squid4 obsolete options: tested on 2.5.0.a.20200110.1822 with squid-0.4.44_13
works as expected
Viktor Gurov

01/10/2020

08:21 PM Revision d83d2280: Mount devfs for unbound when python is enabled. Fixes #9251: (cherry picked from commit 741892ee23a9085b71fa94fcfb8375044fec6ee2) Jim Pingle
08:21 PM Revision 741892ee: Mount devfs for unbound when python is enabled. Fixes #9251: Jim Pingle
06:29 PM Revision ff383f32: Use correct md value in crypt_data(). Fixes #10178: Jim Pingle
06:17 PM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: Hi all,
I have been looking at this issue for the last few days, because I am affected by myself and would like th... Alexander Berkes
05:29 PM Revision 175f3ac6: Use correct syntax for /bin/sh for loop in ovpn_auth_verify Fixes #7767: It's not bash. Jim Pingle
05:28 PM Revision ffc44c36: openvpn.tls-verify.php syntax fixes. Issue #7767: Jim Pingle
05:28 PM Revision 3db11061: Fix openvpn.tls-verify.php whitespace. Issue #7767: Jim Pingle
02:45 PM pfSense Packages Todo #9392 (Resolved): Status_Traffic_Totals needs updated for vnstat 2.0: I've tried this on a variety of 2.4.5 and 2.5.0 systems both CE and Factory and with pkg version 2.3 it seems to be O... Jim Pingle
07:03 AM pfSense Packages Todo #9392 (Feedback): Status_Traffic_Totals needs updated for vnstat 2.0: Jared pushed the remaining required fixes yesterday, so it should be ready to test once that's in snapshots Jim Pingle
02:30 PM Feature #9251 (Feedback): DNS Resolver (Unbound) Python Integration: Applied in changeset commit:741892ee23a9085b71fa94fcfb8375044fec6ee2. Jim Pingle
02:22 PM Feature #9251: DNS Resolver (Unbound) Python Integration: Mounting devfs does fix the problem. I added some code to set that up as needed when the module is enabled. Jim Pingle
02:00 PM Revision b9f3dfd2: Reword option help text for issue #9302: Jim Pingle
01:18 PM Bug #10172 (Resolved): A few places in the UI still refer to "SSL" instead of "SSL/TLS": Looks good to me. All the places I noted use SSL/TLS now on 2.5.0 and where possible on 2.4.5. Jim Pingle
01:11 PM Feature #7767: OCSP support for OpenVPN server: Also working here after all patches applied - server and client logs are clean. Thanks for the quick fix Jim! Steve Wilson
01:11 PM Feature #7767: OCSP support for OpenVPN server: Great, thanks!
I'm leaving this on feedback for now since the original functionality added here (OCSP support) sti... Jim Pingle
01:03 PM Feature #7767: OCSP support for OpenVPN server: confirmed working now with all three patches. Ronald Schellberg
12:59 PM Feature #7767: OCSP support for OpenVPN server: You will need commit:3db110612dbf30cbb5855490525f03e4742dfe6e , commit:ffc44c36d9ac001bbebcc6334e014dde8a11c8f4 , and... Jim Pingle
12:55 PM Feature #7767: OCSP support for OpenVPN server: only saw one. I'll check again. Ronald Schellberg
12:46 PM Feature #7767: OCSP support for OpenVPN server: Did you apply all three commits? It works for me with all current changes. I tested it on three different lab boxes.... Jim Pingle
12:35 PM Feature #7767: OCSP support for OpenVPN server: hand applied the changeset, didn't fix the problem. Log now shows:
@Jan 10 11:32:51 openvpn 64931 xxx.xxx.xxx.... Ronald Schellberg
12:00 PM Feature #7767: OCSP support for OpenVPN server: See attached. The Certificate depth is set to One. The CA is a self signed pfsense with a number of certificates c... Ronald Schellberg
11:35 AM Feature #7767 (Feedback): OCSP support for OpenVPN server: Applied in changeset commit:175f3ac6b671182e2cf9968f5e820188d9e1573f. Jim Pingle
11:27 AM Feature #7767: OCSP support for OpenVPN server: I see the problems, push coming shortly. Jim Pingle
11:10 AM Feature #7767 (In Progress): OCSP support for OpenVPN server: OK, I see this now as well after updating a VM here. I'll look into it ASAP. Jim Pingle
10:58 AM Feature #7767: OCSP support for OpenVPN server: OpenVPN TLS handshake also failing here after update. OCSP Verify box is unchecked, Certificate Depth check set to "... Steve Wilson
09:23 AM Feature #7767 (New): OCSP support for OpenVPN server: Can you provide any additional detail about your settings and certificate structure? Jim Pingle
08:52 AM Feature #7767: OCSP support for OpenVPN server: I think this PR caused my OpenVPN TLS handshake to start failing. The openvpn.tls-verify.php call results in a "2" r... Ronald Schellberg
12:35 PM Bug #10178 (Feedback): crypt.inc: crypt_data() legacy mode using wrong message digest: Applied in changeset commit:ff383f323c0f8104e227d8af7401fdad6d383bbe. Jim Pingle
12:23 PM Bug #10178 (Resolved): crypt.inc: crypt_data() legacy mode using wrong message digest: On 2.4.x with OpenSSL 1.0.x, the default message digest (md) value was "md5" (eew). On 2.5.0 with OpenSSL 1.1.1 we ma... Jim Pingle
12:34 PM Bug #10177 (Not a Bug): OpenVPN Server Compression option missing (No compression): This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
12:24 PM Bug #10177: OpenVPN Server Compression option missing (No compression): Sorry it is the "compress" statement:
"Community edition: OpenVPN 2.3.x and OpenVPN 2.4.x
If a soft migration is ... Cullen Trey
12:18 PM Bug #10177 (Not a Bug): OpenVPN Server Compression option missing (No compression): Hi,
I was just wondering why the deactivate compression option within the OpenVpn Server config does not disable c... Cullen Trey
10:58 AM Todo #9245 (Resolved): Update copyright notices to 2020: Everything in the repos is good for CE and Factory on 2.4.5 and 2.5.0 as far as I can see. Packages look good in the ... Jim Pingle
08:01 AM Feature #9302: radvd always advertises DNS servers and Domain Search List regardless of M or O flag: Looks fine here in the latest Firefox and Chrome. Even so, I pushed a change to reword the help text a bit. Jim Pingle
01:44 AM Feature #9302: radvd always advertises DNS servers and Domain Search List regardless of M or O flag: tested on 2.5.0.a.20200109.0836
works as expected,
but WebGUI looks weird -
unchecked by default, but "Unchec... Viktor Gurov
07:10 AM pfSense Packages Bug #10146 (Feedback): squid4 obsolete options: This was merged a few days ago Jim Pingle
06:29 AM pfSense Packages Bug #10152 (Resolved): Squid: "unexpected operator" error in squid rc script: Jim Pingle
06:05 AM pfSense Packages Bug #10152: Squid: "unexpected operator" error in squid rc script: Hello
With the last merge and in a new fresh install... no issues. Stefano Mereghetti
06:28 AM Bug #10175 (Duplicate): VTI tunnels to AWS drop and do not automatically reconnect: Duplicate of #9767
Please post on the forum to discuss issues before opening bug reports, and search for existing ... Jim Pingle
05:08 AM Bug #10175: VTI tunnels to AWS drop and do not automatically reconnect: Note that in the above, the closing @</pre-shared-key>@ tag was mangled by redmine to just @</pre>@
Brian Candler
03:47 AM Bug #10175 (Duplicate): VTI tunnels to AWS drop and do not automatically reconnect: On a HA pair of XG-1537, I have four VTI tunnels to AWS - two each to two different accounts, with BGP failover on ea... Brian Candler
06:25 AM Bug #10176 (Duplicate): Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: If there is anything actionable here it's almost certainly solved by #9603 and needs tested on 2.5.0 snapshots.
If... Jim Pingle
05:04 AM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: I should add: these overlapping SAs _don't_ occur for VTI tunnels to AWS. I consistently get only a single phase2 SA... Brian Candler
04:27 AM Bug #10176 (Resolved): Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: This might be a configuration error, but if so, I can't see it. The problem occurs with VTI tunnels between:
- "A... Brian Candler
06:22 AM Feature #10174 (Rejected): Internet Bandwidth per USER: What is possible, is already possible. Jim Pingle
03:52 AM Feature #10174: Internet Bandwidth per USER: Mohamed Abdelaal wrote:
> Dear All,
> I'm in-love with pfSense and really it's a great project BUT i'm facing a pro... Viktor Gurov
03:15 AM Feature #10174 (Rejected): Internet Bandwidth per USER: Dear All,
I'm in-love with pfSense and really it's a great project BUT i'm facing a problem and looking for solution... Mohamed Abdelaal

01/09/2020

11:38 PM Bug #8922 (Resolved): Static routes set by system.inc for DNS gateway bindings are not removed: Renato Botelho wrote:
> PR has been merged. Thanks!
tested on 2.5.0.a.20200109.0836
both bugs are resolved
Viktor Gurov
01:35 PM Revision 84a80f54: Merge pull request #4158 from vktg/systemphproutedel: Renato Botelho
10:17 AM Feature #9816 (Resolved): firewall_aliases.php: add ability to export list of aliases: tested on 2.4.5.a.20200108.1746
works as expected
Viktor Gurov
08:36 AM pfSense Packages Feature #10165 (Pull Request Review): Add High-Availability tracking to avahi package.: Jim Pingle
08:18 AM pfSense Packages Feature #10165: Add High-Availability tracking to avahi package.: https://github.com/pfsense/FreeBSD-ports/pull/750 Viktor Gurov
08:01 AM Revision ded361f5: system.php: full route delete syntax: Viktor Gurov
07:35 AM Bug #10001 (Pull Request Review): incorrect route deletion on 2.5: Jim Pingle
07:35 AM Bug #10001: incorrect route deletion on 2.5: Viktor Gurov wrote:
> Renato Botelho wrote:
> > PR has been merged. Thanks!
>
> same fix for system.php:
> http... Renato Botelho
02:03 AM Bug #10001: incorrect route deletion on 2.5: Renato Botelho wrote:
> PR has been merged. Thanks!
same fix for system.php:
https://github.com/pfsense/pfsense/... Viktor Gurov
07:34 AM Feature #1192 (Pull Request Review): Certificate Manager - Ability to Encrypt Private Keys When Exporting: Jim Pingle
12:32 AM Bug #8531 (Resolved): URL Table aliases don't support FQDNs or names that return >1 IP: Renato Botelho wrote:
> PR has been merged. Thanks!
tested on 2.4.5.a.20200108.1746
works as expected Viktor Gurov

01/08/2020

09:28 PM Revision 7a5c4afb: Update SSL refs to SSL/TLS. Fixes #10172: Jim Pingle
09:19 PM Revision f764f63a: Update SSL refs to SSL/TLS. Fixes #10172: Jim Pingle
03:56 PM Revision ff90ae73: Update repository info before checking for updates: Steve Beaver
03:35 PM Bug #10172 (Feedback): A few places in the UI still refer to "SSL" instead of "SSL/TLS": Applied in changeset commit:f764f63a4d93b510bde92a5032a5792f4231f2b0. Jim Pingle
03:18 PM Bug #10172: A few places in the UI still refer to "SSL" instead of "SSL/TLS": The LDAP-related options will have to wait for 2.5.0 since it requires a configuration change. The others are cosmeti... Jim Pingle
02:23 PM Bug #10172: A few places in the UI still refer to "SSL" instead of "SSL/TLS": There are a few others in various places around the repo.... Jim Pingle
01:24 PM Bug #10172 (Resolved): A few places in the UI still refer to "SSL" instead of "SSL/TLS": SSL is of course the obsolete name for TLS.
Most UI refers to both, ex: System > Advanced > Notifications
But I... Sean McBride
03:18 PM pfSense Docs Correction #10173 (Closed): Feedback on Packages — Fixing a Broken pkg Database: *Page:* https://docs.netgate.com/pfsense/en/latest/troubleshooting/pkg-broken-database.html
*Feedback:*
On 2.4.4p... Steve Y
03:12 PM Revision c7417b14: switch to resolve_host_addresses() func: (cherry picked from commit 6e658d8dd1a3e05b2b0153651a5060ff9225e415) Viktor Gurov
03:12 PM Revision 97f78f0e: urltable can return >1 IPs: (cherry picked from commit 477d5b5f4d83ec01266d8db3a592192ca45efb5a) Viktor Gurov
03:11 PM Revision 775b4245: Merge pull request #4151 from vktg/urltablefeature: Renato Botelho
01:34 PM Revision 9896389b: Use central download function: Reduce duplicated/inconsistent code by using the new download function.
(cherry picked from commit ecb594d094ce0e11c... Jim Pingle
01:34 PM Revision f00e1450: Add central file download function for use throughout the GUI.: (cherry picked from commit 1342f80fb512cf2f6a5925f03e61930ac41445af) Jim Pingle
12:53 PM Bug #9148 (Closed): PPPoE over a VLAN fails to reconnect.: I still can't reproduce a problem here. I have PPPoE setup with a VLAN parent and if I take down the server and bring... Jim Pingle
12:14 PM Revision fac76b60: Merge pull request #4145 from vktg/ovpnocsp: Renato Botelho
12:11 PM Feature #9251: DNS Resolver (Unbound) Python Integration: If it's a required action, it should be done when setting up the environment. I'm mostly curious about why that isn't... Jim Pingle
11:34 AM Feature #9251: DNS Resolver (Unbound) Python Integration: For my python PHP include files, I added a mount to address random number generation:
/sbin/mount -t devfs dev... BBcan177 .
11:17 AM Feature #9251 (New): DNS Resolver (Unbound) Python Integration: This doesn't appear to be working on 2.4.5.
On 2.5.0 I can copy over netflix-no-aaaa.py (attached) and enable the ... Jim Pingle
12:09 PM Bug #10171 (Rejected): "Skip RRD data" / "Do not backup RRD data" should be *disabled* by default; err on side of backing up more fully: That is a deliberate choice that was made due to the size of the data, and the relative lack of importance of that da... Jim Pingle
11:48 AM Bug #10171 (Rejected): "Skip RRD data" / "Do not backup RRD data" should be *disabled* by default; err on side of backing up more fully: - Go to Diagnostics > Backup & Restore
- Notice option: "Skip RRD data [] Do not backup RRD data (NOTE: RRD Data can... Sean McBride
12:09 PM Revision 79bcd2d2: squashed commit: Viktor Gurov
10:55 AM Bug #9483 (Resolved): UFS filesystem is not being mounted noatime.: Fresh install of pfSense-CE-2.4.5-DEVELOPMENT-amd64-20200108-0835.iso and pfSense-CE-2.5.0-DEVELOPMENT-amd64-20200108... Jim Pingle
10:36 AM Bug #9975 (Resolved): PHP error on upgrade from 2.4.4-p3 to 2.4.5: No PHP errors observed after upgrading from 2.4.4-p3 to 2.4.5.a.20200108.0835 Jim Pingle
06:57 AM Bug #9975 (Feedback): PHP error on upgrade from 2.4.4-p3 to 2.4.5: pfSense-upgrade 0.70 should fix this Renato Botelho
10:34 AM Bug #9612 (Resolved): Run fsck with -z for ufs on upgrade to address FreeBSD-SA-19:10.ufs: Looks good on 2.4.5 and 2.5.0 now. I see the message when the rc package is upgraded, and the expected messages and f... Jim Pingle
10:27 AM Bug #9469: Removing the last ATLQ traffic shaper queue does not sync to secondary via XMLRPC: https://github.com/pfsense/pfsense/pull/4156
also fixes https://redmine.pfsense.org/issues/9468 Viktor Gurov
10:03 AM Todo #10157 (Resolved): Setup new redirect subdomain and processes: URLs in Help menu are good now on 2.5.0 and 2.4.5. Jim Pingle
09:49 AM Feature #4991 (Resolved): WebGUI does not support ECDSA certificates for IPSec Stage 1: Works fine now Jim Pingle
09:48 AM Bug #9745 (Resolved): can't add ECDSA certificate key when signing CSR: Jim Pingle
09:47 AM Feature #9923 (Resolved): Add select_source compatible output to cert_build_list(): Working for a while now. Jim Pingle
09:46 AM pfSense Packages Todo #9787 (Resolved): Update Mail Reports to deal with clog deprecation: Works Jim Pingle
09:44 AM Bug #9983 (Resolved): Reauth vs Rekey UI and behavior for swanctl: Seems to be working as intended for now. Can revisit if anything new comes up. Jim Pingle
09:34 AM Todo #9386 (Resolved): Deprecate built-in relayd Load Balancer: Looks better on current snaps. Nothing left that I can see. Jim Pingle
09:12 AM Bug #8531 (Feedback): URL Table aliases don't support FQDNs or names that return >1 IP: PR has been merged. Thanks! Renato Botelho
07:38 AM Feature #9816: firewall_aliases.php: add ability to export list of aliases: That function did not exist on 2.4.5. I picked back the changes which added and implemented the use of that function ... Jim Pingle
01:17 AM Feature #9816: firewall_aliases.php: add ability to export list of aliases: Renato Botelho wrote:
> PR has been merged. Thanks!
it's ok on latest 2.5.0.a.20200107.2225
but error on 2.4.5... Viktor Gurov
07:10 AM Revision 6e658d8d: switch to resolve_host_addresses() func: Viktor Gurov
07:02 AM Bug #9413: VLAN driver missing ALTQ support: That doesn't work for some cases like lagg and ix, which do not support ALTQ natively, and can't have it enabled for ... Jim Pingle
04:39 AM Bug #9413: VLAN driver missing ALTQ support: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=94182:
vlan driver does not directly support altq
but as packet... Viktor Gurov
06:22 AM pfSense Packages Bug #9322 (Resolved): telegraf "Additional configuration for Telegraf" lost configuration after reboot: Renato Botelho wrote:
> PR has been merged. Thanks!
tested on 2.4.5.a.20200107.1903 with Telegraf 0.9_1
ok now Viktor Gurov
06:15 AM Feature #7767 (Feedback): OCSP support for OpenVPN server: PR has been merged. Thanks! Renato Botelho
06:11 AM pfSense Packages Feature #9217 (Feedback): Squid LDAP Authentication - spaces in ldif values: PR has been merged. Thanks! Renato Botelho
03:46 AM Feature #6775 (Closed): Strongswan PKCS#11 Support: Please see https://redmine.pfsense.org/issues/9878 for details Viktor Gurov
03:31 AM Bug #6263 (Resolved): Encryption options for every P2 on a given P1 are written to each P2 individually inside ipsec.conf with multiple P2 entries + split conn entries: Renato Botelho wrote:
> I've cherry-picked it to 2.4.5
tested on 2.4.5.a.20200107.1903
works as expected Viktor Gurov
01:26 AM Bug #10168 (Resolved): firewall_rules_edit.php: Firewall GUI allows selecting 'not' and 'any' for source/destination which is invalid: Jim Pingle wrote:
> Applied in changeset commit:40baab141eb30b11b57efa0cf14521021aa7b4c7.
tested on 2.4.5.a.20200... Viktor Gurov
01:22 AM Feature #10166 (Resolved): Add DNS-over-TLS as option to source/destination port range when creating a firewall rule: Jim Pingle wrote:
> Applied in changeset commit:d2c6e89c40b1bff2deb1f0a8847a5199b317ba0f.
tested on 2.4.5.a.20200... Viktor Gurov
01:20 AM Bug #9829 (Resolved): NTP Status vs. parsing NTP Access Restrictions: Renato Botelho wrote:
> PR has been merged. Thanks!
works as expected on 2.4.5.a.20200107.1903
Viktor Gurov
12:04 AM pfSense Packages Feature #10002 (Closed): allow to use lo0 interface for web-server: BBcan177 said that the same function is already in the upstream Viktor Gurov

01/07/2020

06:58 PM Revision 261cf900: Merge pull request #4144 from vktg/exportaliases: Renato Botelho
06:58 PM Revision 6191e59c: change http to https for redirect link: (cherry picked from commit a3d92f1b47ca82707b5ba760bb31a8f21f9e4e28) Jared Dillard
06:57 PM Revision 1f240bd5: cosmetic: (cherry picked from commit 81157e5c9872594afd8238445299fb5a1ffc2030) Viktor Gurov
06:57 PM Revision f197839f: export aliases to txt file: (cherry picked from commit 0cdb5e9569f4be2aa5a42cb7f986b3c218ab3bf2) Viktor Gurov
06:57 PM Revision a3d92f1b: change http to https for redirect link: Jared Dillard
06:56 PM Revision 40c9ef15: update redirect to issue tracker: (cherry picked from commit 01e88604e991901dbd56fa4ed33ae9687d153d6c) Jared Dillard
06:54 PM Revision 01e88604: update redirect to issue tracker: Jared Dillard
06:26 PM Revision 74655a47: Fixed 10156: Fixed 10157
New redirects.netgate.com/whatever links set up and incorporated in menu system
(cherry picked from com... Steve Beaver
06:26 PM Revision dfd1c0e7: Revise survey wording: (cherry picked from commit ed6f2195b282008e7d84a087759dbc6b4fc23eed) Steve Beaver
06:26 PM Revision e0869ccd: Fixed #10154 by revising wizard text: (cherry picked from commit 3ac4b218bc493e004aaf60abdc4a39bdafada07a) Steve Beaver
05:36 PM Revision 8bf673f6: Merge pull request #4147 from vktg/expkeypasscheck: Renato Botelho
05:33 PM Revision 8fc4611c: Remove redundant DNSimple instructions: (cherry picked from commit 01a6ef7b28907021533df2b3a17ed05451bbbd31) surrural
05:33 PM Revision 0380c69c: Merge pull request #4154 from surrural/patch-1: Renato Botelho
05:32 PM Revision 8fdec971: check ntp acl only for localhost block: (cherry picked from commit 7faeec0727528d27afbcd1462d5f726985e951e7) Viktor Gurov
05:32 PM Revision 5f958d0d: Merge pull request #4152 from vktg/ntpstatlocheck: Renato Botelho
05:31 PM Revision ebe06422: Fix typo on last rename find loop: Incomplete deletion
(cherry picked from commit e4fe4666b2bc09e8ec0adf4a5b730e7177a5e328) Ronald Schellberg
05:31 PM Revision 24e76b50: Improve building of non pfSense builds: * Remove redirection on jail delete so user receives delete prompt
* Fix editing ports that don't contain a pkg-descr... Ronald Schellberg
05:30 PM Revision 95704e1f: Merge pull request #4153 from rschell/patch-1: Renato Botelho
05:27 PM Revision 7259edf0: Wait 0.2 seconds after stopping Nginx.: Redmine #10159
(cherry picked from commit 4ddcc5caa393c6478b62b76d7213c2af0c1dde7b) A FL
05:27 PM Revision 312908c4: Merge pull request #4149 from Augustin-FL/nginx: Renato Botelho
05:25 PM Revision 81003efd: Merge pull request #4155 from BBcan177/RELENG_2_4_5: Renato Botelho
05:24 PM Revision 1e8941fc: Do not allow 'invert match' and 'any' on firewall rules. Fixes #10168: The backend code ignores the invert in this case, and it makes the GUI
render confusingly (!* which could never match... Jim Pingle
05:24 PM Revision 40baab14: Do not allow 'invert match' and 'any' on firewall rules. Fixes #10168: The backend code ignores the invert in this case, and it makes the GUI
render confusingly (!* which could never match... Jim Pingle
02:51 PM Revision 0f880c80: Ticket #9612: Reboot early when needed: When fsck -z doesn't work on first attempt due to old binary, reboot
before configure the system to make it faster Renato Botelho
02:51 PM Revision 3f9f1892: Ticket #9612: Prevent infinite loop and skip zfs: * Detect when system does not contain any UFS partitions and skip it to
run fsck -z
* On a system with a broken fil... Renato Botelho
02:50 PM Revision 3d441e3d: Ticket #9612: Reboot early when needed: When fsck -z doesn't work on first attempt due to old binary, reboot
before configure the system to make it faster Renato Botelho
02:50 PM Revision e6074b00: Ticket #9612: Prevent infinite loop and skip zfs: * Detect when system does not contain any UFS partitions and skip it to
run fsck -z
* On a system with a broken fil... Renato Botelho
02:04 PM Revision 4861bddb: Add a few more common ports to list. Fixes #10166: (cherry picked from commit d2c6e89c40b1bff2deb1f0a8847a5199b317ba0f) Jim Pingle
02:04 PM Revision d2c6e89c: Add a few more common ports to list. Fixes #10166: Jim Pingle
01:03 PM Todo #10157: Setup new redirect subdomain and processes: Relevant commits:
master:
* commit:f07e6d64f0f94fe7f58fc7ada12d42bcf705dc88
* commit:01e88604e991901dbd56fa4ed33... Jim Pingle
01:00 PM Todo #10157 (Feedback): Setup new redirect subdomain and processes: I added the redirect for "Bug Database" using the new process and replaced the redirect in the code. Everything seems... Jared Dillard
12:29 PM Todo #10157: Setup new redirect subdomain and processes: There is still one remaining reference after commit:f07e6d64f0f94fe7f58fc7ada12d42bcf705dc88... Jim Pingle
12:58 PM Feature #9816 (Feedback): firewall_aliases.php: add ability to export list of aliases: PR has been merged. Thanks! Renato Botelho
12:46 PM Revision 1a72011e: Fix #9612: Reboot twice if needed and run fsck -z: After changing pfSense-rc to create /.fix_for_SA-19-10.ufs file to flag
system to run fsck -z during pre-install stag... Renato Botelho
12:38 PM Revision 24d53df7: Fix #9612: Reboot twice if needed and run fsck -z: After changing pfSense-rc to create /.fix_for_SA-19-10.ufs file to flag
system to run fsck -z during pre-install stag... Renato Botelho
11:37 AM Feature #1192 (Feedback): Certificate Manager - Ability to Encrypt Private Keys When Exporting: By default openssl export uses DES-EDE3-CBC for encryption
This is not necessary, but if we want to avoid using an... Renato Botelho
11:32 AM Bug #9829 (Feedback): NTP Status vs. parsing NTP Access Restrictions: PR has been merged. Thanks! Renato Botelho
11:30 AM Bug #10168 (Feedback): firewall_rules_edit.php: Firewall GUI allows selecting 'not' and 'any' for source/destination which is invalid: Applied in changeset commit:40baab141eb30b11b57efa0cf14521021aa7b4c7. Jim Pingle
10:45 AM Bug #10168 (Resolved): firewall_rules_edit.php: Firewall GUI allows selecting 'not' and 'any' for source/destination which is invalid: On firewall_rules_edit.php, the GUI allows selecting 'not' and 'any' together for source/destination which is invalid... Jim Pingle
11:27 AM Bug #10159 (Feedback): nginx error " 48: Address already in use" sometimes displayed in the logs when reconfiguring captive portal: PR has been merged. Thanks! Renato Botelho
11:26 AM Feature #9251: DNS Resolver (Unbound) Python Integration: PR 4155 has been merged to RELENG_2_4_5. Thanks Renato Botelho
11:23 AM pfSense Packages Bug #6339 (Feedback): OpenVPN Client Export package option for "Use Microsoft Certificate Storage" does not specify which certificate to use: PR has been merged. Thanks! Renato Botelho
11:17 AM pfSense Packages Bug #9652 (Feedback): Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: PR has been merged. Thanks! Renato Botelho
11:16 AM pfSense Packages Feature #9982 (Feedback): basic_ldap_auth TLS connection: PR has been merged. Thanks! Renato Botelho
10:28 AM Feature #8370 (Closed): Add port number to predefined port drop-down list in NAT Rules: The port numbers are already in the drop-down lists on firewall_nat_edit.php
firewall_nat_out_edit.php uses a diff... Jim Pingle
08:15 AM Feature #10166 (Feedback): Add DNS-over-TLS as option to source/destination port range when creating a firewall rule: Applied in changeset commit:d2c6e89c40b1bff2deb1f0a8847a5199b317ba0f. Jim Pingle
07:47 AM Feature #10166 (In Progress): Add DNS-over-TLS as option to source/destination port range when creating a firewall rule: Jim Pingle
07:11 AM pfSense Packages Bug #9981 (Pull Request Review): Suricata "Use IP Reputation Lists on this interface." actually defaults to ON, despite incorrect comment.: Jim Pingle
07:11 AM pfSense Packages Feature #9902 (Pull Request Review): add sticky filter for Alert Log please: Jim Pingle
12:32 AM Revision 09686eb7: Unbound python integration: BBcan177 .
12:11 AM Revision 6b79fe46: Unbound python integration: BBcan177 .
12:03 AM Revision bbc0f27b: Unbound python integration: BBcan177 .

01/06/2020

11:25 PM Revision 8109a05c: Fix #9612: Flag fsck -z to run on pfSense-rc pre-install script: Renato Botelho
11:25 PM Revision c3f83348: rc.php_ini_setup: Replace backticks by $(): Renato Botelho
11:25 PM Revision 4e8c5dfa: Fix #9612: Flag fsck -z to run on pfSense-rc pre-install script: Renato Botelho
10:55 PM pfSense Packages Feature #9902: add sticky filter for Alert Log please: This feature has been added in the latest version of the Suricata GUI package posted to Pull Request #748 here: http... Bill Meeks
10:54 PM pfSense Packages Bug #9981: Suricata "Use IP Reputation Lists on this interface." actually defaults to ON, despite incorrect comment.: This issue is resolved in the latest Suricata GUI package update posted in Pull Request #748 here: https://github.co... Bill Meeks
10:10 PM pfSense Packages Bug #9981: Suricata "Use IP Reputation Lists on this interface." actually defaults to ON, despite incorrect comment.: Bill Meeks wrote:
> I'll look into this and add it to my internal bug tracking list for Suricata.
Sean McBrid... Bill Meeks
08:56 PM Revision f07e6d64: Fixed 10156: Fixed 10157
New redirects.netgate.com/whatever links set up and incorporated in menu system Steve Beaver
08:36 PM Feature #10166: Add DNS-over-TLS as option to source/destination port range when creating a firewall rule: Jim Pingle wrote:
> DNS over TLS may be OK, but adding DoH would give the false impression that it would match only ... Logan Marchione
08:33 PM Feature #10166: Add DNS-over-TLS as option to source/destination port range when creating a firewall rule: DNS over TLS may be OK, but adding DoH would give the false impression that it would match only DoH traffic. Plus the... Jim Pingle
08:23 PM Feature #10166 (Resolved): Add DNS-over-TLS as option to source/destination port range when creating a firewall rule: With the recent attention around DNS-over-TLS and DNS-over-HTTPS, would it be possible add these two entries as pre-p... Logan Marchione
08:29 PM Revision 67ecc6c3: Remove one lingering relayd related message. Issue #9386: Jim Pingle
08:24 PM Revision 0fc91722: Remove deprecated & unused option that wasn't displayed in the GUI.: (cherry picked from commit 839bf5a209274f9f2e8152815612fa9cd6f50e1a) Jim Pingle
08:24 PM Revision 839bf5a2: Remove deprecated & unused option that wasn't displayed in the GUI.: Jim Pingle
05:30 PM Bug #9612 (Feedback): Run fsck with -z for ufs on upgrade to address FreeBSD-SA-19:10.ufs: Applied in changeset commit:4e8c5dfa5be3f5a0725728cba2f7fa1d0f92e860. Renato Botelho
03:43 PM Bug #8987: Web GUI main page very slow to load if wan interface is enabled but not connected.: Just wanted to add, this is definitely still an issue. I have a troublesome gateway that I'm working with the vendor... Tom Cosmos
03:22 PM Bug #9449 (Resolved): Empty lines in various forms: Looks good, no more blank areas like there were before. Jim Pingle
03:20 PM Feature #9706 (Resolved): Increased number of colors for login screen: New colors are present in the list, and the ones that I tested worked as expected. Jim Pingle
03:18 PM Bug #9428 (Resolved): Unable to access "System: Authentication servers" if "WebCfg - System: User Password Manager" is set: The changes from the merged PR look good, the tab has the new name when appropriate.
Jim Pingle
03:14 PM Feature #9545: Enable Multipath Routing in the Kernel: There have been reports of instability with some routing scenarios since this was enabled. We shouldn't take any acti... Jim Pingle
03:14 PM Feature #9544: Enable ``ROUTE_MPATH`` multipath routing: There have been reports of instability with some routing scenarios since this was enabled. We shouldn't take any acti... Jim Pingle
03:10 PM Feature #9884 (Resolved): Add support for OpenVPN --x509-username-field: ... Jim Pingle
03:07 PM Todo #9915 (Resolved): Convert OpenVPN to CAPath: OpenVPN has been using capath on snapshots for a month and so far, no negative reactions. Everything is working as in... Jim Pingle
03:02 PM Bug #9388 (Resolved): Update ntpd: ... Jim Pingle
03:01 PM Todo #8821 (Resolved): Remove Growl Notifications: No active code for growl that I can see, other than the entries which are needed to remove it (obsolete files, upgrad... Jim Pingle
02:59 PM Todo #8350 (Resolved): Remove clog in favor of standard syslogd or syslogd alternative with rotation via newsyslog or logrotate: Jim Pingle
02:58 PM Bug #9715 (Resolved): Call to undefined function sort_related_log_files: Jim Pingle
02:58 PM Todo #9711 (Resolved): Add GUI options to control log rotation: This appears to be operating as expected. Can address any new problems in separate issues. Jim Pingle
02:58 PM Todo #9712 (Resolved): Add code for packages to set their own log rotation parameters: This appears to be operating as expected. Can address any new problems in separate issues. Jim Pingle
02:57 PM Todo #9714 (Resolved): Add page to view "other" logs: These all seem to be operating as expected. Can address any new problems in separate issues. Jim Pingle
02:42 PM Bug #9730 (Resolved): newsyslog cron job not present after every upgrade: Has been OK for a long time. Jim Pingle
02:41 PM Todo #9734 (Resolved): Re-evaluate log size, line defaults, and limits: These all seem to be OK for now. Can revisit if necessary. Jim Pingle
02:40 PM Bug #1375 (Resolved): Captive portal logs: mixed with logs from other sources (squid, php): No more crossover and the portal auth setup in the syslog config looks good now, too. It can only contain items from ... Jim Pingle
02:39 PM Revision e4fe4666: Fix typo on last rename find loop: Incomplete deletion Ronald Schellberg
02:35 PM Bug #7198 (Resolved): nginx-error.log is not circular and can fill filesystem: nginx-error.log is no longer referenced or used. nginx.log is being rotated as expected:... Jim Pingle
02:32 PM Todo #9808 (Resolved): status_logs_settings.php: Add GUI option for syslog format: This option has been in and working for a while. No negative side effects that I can see other than #10155 which is b... Jim Pingle
02:06 PM Todo #9603 (Resolved): Strongswan stroke is deprecated, move to swanctl/vici: This has been in for a while and working well. If any new problems come up they can be handled in their own separate ... Jim Pingle
02:03 PM Feature #9426 (Resolved): Show PPP uptime on the Dashboard - Interfaces Widget: This has been in the widget and working since it was merged. Looks good here. Jim Pingle
02:02 PM Bug #3956 (Resolved): Check for invalid CA on generating new certificate: Jim Pingle
02:01 PM Bug #9209 (Resolved): RADIUS: Set NAS Identifer to webConfigurator when logging in the UI: NAS-Identifier now includes webConfigurator and the hostname. See attached. Resolved. Jim Pingle
01:57 PM Feature #3258 (Resolved): Allow multiple certificates to be revoked in a single step: Can revoke multiple certs via selection or serial entry. Works fine. Jim Pingle
01:53 PM Bug #9483 (Feedback): UFS filesystem is not being mounted noatime.: I've modified bsdinstall to add noatime to UFS partitions during installation Renato Botelho
01:51 PM Todo #9856 (Resolved): Add certificate detail infoblock to CA list: Cert info block is there for CAs and has all the expected information Jim Pingle
01:50 PM Feature #7332 (Resolved): Provide certificate expiry warning: This has been working well for a while now. I've made a few short-lived certs and watched them trigger the notifcatio... Jim Pingle
01:11 PM pfSense Packages Feature #10165 (Resolved): Add High-Availability tracking to avahi package.: Add HA MASTER/BACKUP tracking for the avahi package to keep the daemon from running on both nodes and reflecting each... Chris Linstruth
12:16 PM Revision 8c73638e: Fix #6263: Deduplicate encryption options on ipsec.conf: On a configuration with multiple P2, all encryption options from all P2
are added to ipsec.conf. The list could have... Renato Botelho
10:08 AM Bug #6167: IPsec IPComp not working: Ping, Ping, Ping...
Is this thing working? It's been well over three years, different IPSec, kernel, BSD version,.... Ronald Antony
10:06 AM pfSense Packages Bug #10164: pfBlockerNG dashboard widget position is not maintained when updating: It's not a general pfSense dashboard/widget/package issue. pfSense doesn't change those widget positions. That's the ... Jim Pingle
10:03 AM pfSense Packages Bug #10164 (New): pfBlockerNG dashboard widget position is not maintained when updating: Subject says it all, when packages like e.g.pfBlockerNG are updated, they lose their assigned slot in the home screen... Ronald Antony
09:40 AM Bug #9303 (Pull Request Review): HA sync : disabling captive portal HA sync does remove all zones on slave: Jim Pingle
09:40 AM Bug #8807 (Pull Request Review): HA sync : files voucher_{$cpzone}.cfg and voucher_{$cpzone}.public are not created on save in /var/save when enabling vouchers on master.: Jim Pingle
09:23 AM Bug #10159 (Pull Request Review): nginx error " 48: Address already in use" sometimes displayed in the logs when reconfiguring captive portal: Jim Pingle
09:23 AM Feature #97 (Pull Request Review): Captive Portal should sync its database to other members of clusters: Jim Pingle
09:23 AM Bug #8809 (Pull Request Review): HA sync : changing a voucher roll on master does not reset active tickets on slave.: Jim Pingle
08:08 AM pfSense Packages Bug #9652: Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: In the branch RELENG_2.4.5 (GitHub) the file squid.inc still wrong.
https://github.com/pfsense/FreeBSD-ports/blob/... Stefano Mereghetti
07:49 AM pfSense Docs Correction #10163 (Closed): Feedback on VPN — OpenVPN — Routing Internet traffic through a site-to-site OpenVPN-connection in PfSense software version 2.1: *Page:* https://docs.netgate.com/pfsense/en/latest/vpn/openvpn/routing-internet-traffic-through-a-site-to-site-openvp... M G
06:17 AM Bug #6263 (Feedback): Encryption options for every P2 on a given P1 are written to each P2 individually inside ipsec.conf with multiple P2 entries + split conn entries: I've cherry-picked it to 2.4.5 Renato Botelho
05:34 AM Bug #6263: Encryption options for every P2 on a given P1 are written to each P2 individually inside ipsec.conf with multiple P2 entries + split conn entries: Nice to see that this issue got resolved.
Nevertheless, I'm wondering if the changes could be backported to the bran... Christoph Krapp

01/05/2020

01:54 PM Bug #9971 (Resolved): sshguard error: Logging subprocess <pid> (exec /usr/local/sbin/sshguard) exited with status 1.: Jim Pingle
01:20 PM Bug #9971: sshguard error: Logging subprocess <pid> (exec /usr/local/sbin/sshguard) exited with status 1.: Verified old behavior before upgrade.
Verified erroneous log messages are gone and sshguard properly blocks both w... Chris Linstruth
12:24 PM Bug #9971: sshguard error: Logging subprocess <pid> (exec /usr/local/sbin/sshguard) exited with status 1.: Verified old behavior before upgrade.
Verified erroneous log messages are gone and sshguard properly blocks both w... Chris Linstruth
09:11 AM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name: Using insults and profanity will not convince anyone to speed up work, nor will it convince anyone you are correct.
... Jim Pingle
05:31 AM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name: > Added by NOYB NOYB over 8 years ago.
Since then there were 10 interactions with developers regarding the state... xander bron

01/04/2020

10:10 PM Revision 01a6ef7b: Remove redundant DNSimple instructions: surrural
08:34 PM pfSense Packages Bug #10162: Cloudflare Challenge Alias: Jim Pingle wrote:
> Looks like you might be using the fields incorrectly or have something amiss in your config. Not... Ian Corbitt
07:50 PM pfSense Packages Bug #10162 (Not a Bug): Cloudflare Challenge Alias: Looks like you might be using the fields incorrectly or have something amiss in your config. Nothing in the code that... Jim Pingle
04:01 PM pfSense Packages Bug #10162 (Not a Bug): Cloudflare Challenge Alias: When utilizing Cloudflare DNS and challenge alias, the configuration file for the domain is set incorrectly. This cau... Ian Corbitt
07:57 PM Bug #8531 (Pull Request Review): URL Table aliases don't support FQDNs or names that return >1 IP: Jim Pingle
04:52 AM Bug #8531: URL Table aliases don't support FQDNs or names that return >1 IP: https://github.com/pfsense/pfsense/pull/4151 Viktor Gurov
07:54 PM Bug #9829 (Pull Request Review): NTP Status vs. parsing NTP Access Restrictions: Jim Pingle
09:01 AM Bug #9829: NTP Status vs. parsing NTP Access Restrictions: https://github.com/pfsense/pfsense/pull/4152 Viktor Gurov
07:52 PM pfSense Packages Bug #9738 (Pull Request Review): Client IP address validation disallows CIDR notation: Jim Pingle
10:46 AM pfSense Packages Bug #9738: Client IP address validation disallows CIDR notation: https://github.com/pfsense/FreeBSD-ports/pull/745 Viktor Gurov
07:51 PM Bug #10161 (Pull Request Review): Improve renaming of pfSense in non-pfSense builds.: Jim Pingle
12:53 PM Bug #10161 (Resolved): Improve renaming of pfSense in non-pfSense builds.: As discussed in "Minor issues with "non-pfSense" rename logic", having to rename pfSense files in non-netgate builds ... Ronald Schellberg
06:55 PM Revision 0436dfad: Improve building of non pfSense builds: * Remove redirection on jail delete so user receives delete prompt
* Fix editing ports that don't contain a pkg-descr... Ronald Schellberg
02:57 PM Revision 7faeec07: check ntp acl only for localhost block: Viktor Gurov
11:47 AM pfSense Packages Bug #9652: Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: Here this issue persists, even replacing squid.inc using the code of the last merge.... Fernando Barros
10:47 AM Revision 477d5b5f: urltable can return >1 IPs: Viktor Gurov
09:24 AM pfSense Packages Feature #8475 (Closed): syslog-ng TLS configuration support: syslog-ng >= 1.15_3 support it
see https://redmine.pfsense.org/issues/9563 Viktor Gurov
09:12 AM pfSense Packages Feature #9523 (Resolved): LADVD: Feature to enable setting interface descriptions: Renato Botelho wrote:
> PR has been merged. Thanks!
tested on pfSense 2.5.0.a.20200103.2159 with LADVD 1.2.2_1
... Viktor Gurov
09:11 AM Feature #8861: Show SFP module details on ``status_interfaces.php``: also add optional 'description' field,
like... Viktor Gurov
04:48 AM pfSense Packages Bug #9211: GeoIP broken in pfSense-pkg-ntopng-0.8.13_3: Solved Working now again!!
https://www.youtube.com/watch?v=GkPA4kb3Xoo Manjot Singh
02:55 AM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name: +1 on this as I am experiencing the same problem.
Confirmation that this fix is effectively targeted in 2.5 is hig... Gabriele Gino
01:59 AM Feature #9688 (Resolved): restartallwan - pfSsh.php script to restart all wan interfaces: Renato Botelho wrote:
> PR has been merged. Thanks!
tested on pfSense 2.5.0.a.20200103.2159
works as expected
Viktor Gurov
01:45 AM Feature #9972 (Resolved): cert_build_list(): by default don't show certs without prv key: Renato Botelho wrote:
> PR has been merged. Thanks!
tested on pfSense 2.5.0.a.20200103.2159
works as expected,... Viktor Gurov
01:39 AM Bug #10151 (Resolved): vpn_ipsec_phase1.php: webgui bugs on latest 2.5: tested on pfSense 2.5.0.a.20200103.2159
no bugs,
Resolved Viktor Gurov

01/03/2020

11:44 PM Revision 4ddcc5ca: Wait 0.2 seconds after stopping Nginx.: Redmine #10159 A FL
10:31 PM pfSense Packages Feature #10160: Dedicated Maxmind GeoIP package including license registration: It is something we have discussed internally. It's likely to happen, but no ETA. Jim Pingle
08:18 PM pfSense Packages Feature #10160 (New): Dedicated Maxmind GeoIP package including license registration: Given that MaxMind GeoIP package requires License Registration w.e.f. December 30 2019, this will impact all packages... YP Lo
09:59 PM Revision ed6f2195: Revise survey wording: Steve Beaver
08:41 PM Revision c443115a: Remove vestiges of legacy ACB system: (cherry picked from commit 8a6d9d7f82e7a992d2c48910fb4bb847b28f3f45) Steve Beaver
08:27 PM Revision 8a6d9d7f: Remove vestiges of legacy ACB system: Steve Beaver
08:09 PM Bug #9303: HA sync : disabling captive portal HA sync does remove all zones on slave: This issue is actually not fixed
Pull request : https://github.com/pfsense/pfsense/pull/4150 A FL
08:08 PM Bug #8809: HA sync : changing a voucher roll on master does not reset active tickets on slave.: Pull request : https://github.com/pfsense/pfsense/pull/4150 A FL
07:59 PM Feature #97: Captive Portal should sync its database to other members of clusters: Pull Request : https://github.com/pfsense/pfsense/pull/4150 A FL
07:42 PM pfSense Packages Bug #9211: GeoIP broken in pfSense-pkg-ntopng-0.8.13_3: As temporary solution I uploaded latest files on web server, and It seems to be working fine again. Manjot Singh
07:33 PM Revision 20818c23: Remove some outdated references. Issue #10156: (cherry picked from commit 26700efcdf3bbe62cc7893d0f7b765c1a70492fa) Jim Pingle
07:33 PM Revision 26700efc: Remove some outdated references. Issue #10156: Jim Pingle
07:29 PM Revision 2ebebc63: Remove some outdated references. Issue #10156: (cherry picked from commit e48255d5b36fdb953af8afeb775686c619c52500) Jim Pingle
07:29 PM Revision e48255d5: Remove some outdated references. Issue #10156: Jim Pingle
07:15 PM Revision 0865a626: Fix typo: Jim Pingle
07:14 PM Revision d86a9bf9: Fix typo: Jim Pingle
07:08 PM Revision 3ac4b218: Fixed #10154 by revising wizard text: Steve Beaver
05:52 PM Bug #10159: nginx error " 48: Address already in use" sometimes displayed in the logs when reconfiguring captive portal: Pull Request : https://github.com/pfsense/pfsense/pull/4149 A FL
05:50 PM Bug #10159 (Resolved): nginx error " 48: Address already in use" sometimes displayed in the logs when reconfiguring captive portal: This error is sometimes printed in the logs after a captive portal reconfiguration :... A FL
05:03 PM Revision 4eb12fbf: Fix sshguard config/command. Fixes #9971: Also requires sshguard patch Jim Pingle
04:51 PM Revision 77e9f60a: Fix sshguard config/command. Fixes #9971: Also requires sshguard patch Jim Pingle
04:37 PM Revision 0284d79e: This is 2020. Issue #9245: Jim Pingle
04:36 PM Revision 880ed461: This is 2020. Issue #9245: Jim Pingle
02:56 PM Todo #10157: Setup new redirect subdomain and processes: Sounds good. As soon as we get the OK on the subdomain from IT I'll update the URLs Anonymous
02:46 PM Todo #10157: Setup new redirect subdomain and processes: I don't think it actually uses the php file now but nginx redirects, so we might also want to take the opportunity to... Jim Pingle
11:47 AM Todo #10157 (Resolved): Setup new redirect subdomain and processes: We currently use pfsense.org to host a file "j.php" which redirects requests to the appropriate (usually help) resour... Anonymous
02:49 PM Revision 6b44352b: spaces to tabs: Viktor Gurov
02:23 PM Bug #9993 (Duplicate): invalid cipher specified in ipsec config: This is actually a symptom of the change in #9726 which has since been corrected. Jim Pingle
01:59 PM Revision 1cdd7dd2: Revert "strip hash algo if ealgo == *gcm": This reverts commit 1f8e92a30c1db4f96625b4591a65902492084eb3. Jim Pingle
01:25 PM Revision 4d962f1b: Fix IPsec page issues. Fixes #10151: Jim Pingle
01:12 PM Bug #10158 (Duplicate): Dhcp client hostname request does not go into master in a HA config: This is a known issue -- It's a limitation of ISC DHCPD. Nothing we can do. We are not going to put a full-featured a... Jim Pingle
12:57 PM Bug #10158 (Duplicate): Dhcp client hostname request does not go into master in a HA config: Setup:
two identical pfsense (7100 by netgate) firewalls, using multiple vlans. dhcp, static and dynamic work fine.... s w
12:19 PM pfSense Packages Bug #8062 (Resolved): Fixes to AWS VPC VPN wizard: This has been complete for >1yr now. See factory 342 Jim Pingle
11:56 AM Bug #10155: sshguard is not compatible with RFC 5424 log format: Brief review didn't turn up any options that might help, and I didn't see any similar format messages in the sshguard... Jim Pingle
11:14 AM Bug #10155 (Resolved): sshguard is not compatible with RFC 5424 log format: pfSense 2.5.0 has an option to change the syslog style from the default RFC 3154 format to the new RFC 5424 format. H... Jim Pingle
11:30 AM Todo #9245 (Feedback): Update copyright notices to 2020: This should all be correct now in the repos for CE and factory. Some ports/packages won't show the changes in images ... Jim Pingle
11:06 AM Bug #9971 (Feedback): sshguard error: Logging subprocess <pid> (exec /usr/local/sbin/sshguard) exited with status 1.: Pushed the changes to RELENG_2_4_5 and a variation of the same to master. Note that this needs to be tested on both 2... Jim Pingle
10:38 AM Bug #9971 (In Progress): sshguard error: Logging subprocess <pid> (exec /usr/local/sbin/sshguard) exited with status 1.: Jim Pingle
10:17 AM Bug #9971: sshguard error: Logging subprocess <pid> (exec /usr/local/sbin/sshguard) exited with status 1.: I took another run at this and found a potential fix without patching too much in sshguard. We can set LOGREADER to /... Jim Pingle
09:59 AM Feature #9726: Hash Algorithm configured on child ESP/AH proposals using AES GCM though strongswan strips them: Updated subject to clarify some ambiguity in the original description. Jim Pingle
09:41 AM Feature #9726: Hash Algorithm configured on child ESP/AH proposals using AES GCM though strongswan strips them: right,
fixed, phase 2 strip PR:
https://github.com/pfsense/pfsense/pull/4148 Viktor Gurov
09:05 AM Feature #9726: Hash Algorithm configured on child ESP/AH proposals using AES GCM though strongswan strips them: strongSwan won't load the connection with a valid selection of options with the change applied, so it apparently does... Jim Pingle
08:43 AM Feature #9726: Hash Algorithm configured on child ESP/AH proposals using AES GCM though strongswan strips them: Jim Pingle wrote:
> I reverted this commit. It broke some tunnels:
>
> GUI has:
> * Algo: AES128-GCM
> * Key L... Viktor Gurov
08:03 AM Feature #9726 (New): Hash Algorithm configured on child ESP/AH proposals using AES GCM though strongswan strips them: I reverted this commit. It broke some tunnels:
GUI has:
* Algo: AES128-GCM
* Key Length: 128 bit
* Hash: AES-X... Jim Pingle
09:53 AM Revision 28631275: check export key pass length: Viktor Gurov
08:54 AM Bug #10139 (Resolved): IGMPPROXY spamming the main systemlog: The verbose option is present on the main IGMP proxy config page and is working as expected.
The logs for igmpprox... Jim Pingle
08:28 AM pfSense Packages Bug #10152: Squid: "unexpected operator" error in squid rc script: No particural configurations have been placed.
I tried with and without MITM config, standard and no custom settings... Stefano Mereghetti
07:34 AM pfSense Packages Bug #10152: Squid: "unexpected operator" error in squid rc script: Stefano Mereghetti wrote:
> Hello
> with the last merge of Squid pkg for pf 2.4.5, if I do a manual restart using G... Viktor Gurov
03:41 AM pfSense Packages Bug #10152 (Resolved): Squid: "unexpected operator" error in squid rc script: Hello
with the last merge of Squid pkg for pf 2.4.5, if I do a manual restart using GUI interface, the service doesn... Stefano Mereghetti
08:06 AM pfSense Packages Bug #10146 (Pull Request Review): squid4 obsolete options: Jim Pingle
05:44 AM pfSense Packages Bug #10146: squid4 obsolete options: updated options:
sslproxy_capath - Replaced by tls_outgoing_options capath=.
sslproxy_cipher - Replaced by tls_outg... Viktor Gurov
08:05 AM Feature #1192 (Pull Request Review): Certificate Manager - Ability to Encrypt Private Keys When Exporting: Jim Pingle
03:58 AM Feature #1192: Certificate Manager - Ability to Encrypt Private Keys When Exporting: Renato Botelho wrote:
> PR merged
The password must be between 3 and 1023 characters long, otherwise you will get... Viktor Gurov
07:54 AM pfSense Packages Bug #9542 (Closed): FreeRadius with MySQL not started and require mysql-client packet: no such issue on pfSense 2.4.4-p3 and 2.4.5.a.20200102.0720
freeradius3 0.15.7_7
I can see MySQL/PostgreSQL conne... Viktor Gurov
07:35 AM Bug #10151 (Feedback): vpn_ipsec_phase1.php: webgui bugs on latest 2.5: Applied in changeset commit:4d962f1bc8fc1698d8c4c96a9adb28580e850640. Jim Pingle
07:25 AM Bug #10151 (In Progress): vpn_ipsec_phase1.php: webgui bugs on latest 2.5: The JS fails because the rekeychkbox_change() function listed there does not exist any longer. I've pushed a fix for ... Jim Pingle
03:07 AM Bug #10151 (Resolved): vpn_ipsec_phase1.php: webgui bugs on latest 2.5: Phase 1 Proposal (Encryption Algorithm) is doubled (see screenshot)
also, for some reason, the JavaScript code tha... Viktor Gurov
07:23 AM pfSense Packages Bug #9750 (Resolved): squidguard_blacklist.php & squidguard_log.php wrong status icon link: tested on pfSense 2.4.5.a.20200102.0720
squid 0.4.44_12 and squidGuard 1.16.18_3
Resolved Viktor Gurov
07:02 AM Bug #10153 (Rejected): The firewall has enountered an error: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
06:17 AM Bug #10153 (Rejected): The firewall has enountered an error: amd64
12.0-RELEASE-p10
FreeBSD 12.0-RELEASE-p10 fe839027797(RELENG_2_5) pfSense
Crash report details:
PHP Err... Claudiu Mihai
06:49 AM pfSense Packages Feature #10134 (Feedback): pfSense-pkg-softflowd: Add additional options available in softflowd-1.0.0: PR https://github.com/pfsense/FreeBSD-ports/pull/733 has been merged. Thanks! Renato Botelho
03:12 AM pfSense Packages Bug #7293 (Resolved): dns/bind911 requires TCP_RFC7413 in kernel: Renato Botelho wrote:
> TCP_RFC7413 is part of pfSense kernel on 2.5.0
tested on 2.5.0.a.20200102.0720... Viktor Gurov
02:56 AM Bug #10150 (New): IGMP Proxy does not scale to hundreds of streams: Attempts to use the pfSense software to distribute multicast streams are finding that igmpproxy consumes CPU to the p... Chris Linstruth

01/02/2020

03:29 PM pfSense Packages Todo #9392: Status_Traffic_Totals needs updated for vnstat 2.0: I committed my progress so far. All of the backend code should be OK now. See the commit message for details.
deve... Jim Pingle
11:25 AM pfSense Packages Todo #9392 (In Progress): Status_Traffic_Totals needs updated for vnstat 2.0: I'm looking at this. Needs a bit of work, lots of big changes between 1.x and 2.x. Jim Pingle
02:06 PM pfSense Packages Bug #9211: GeoIP broken in pfSense-pkg-ntopng-0.8.13_3: This now broken again due MaxMind require LicenseKeys usage now https://blog.maxmind.com/2019/12/18/significant-chang... DRago_Angel [InV@DER]
01:59 PM Revision 98c26939: Fix options for suricata4: Renato Botelho
01:59 PM Revision 1903de08: Fix options for suricata4: Renato Botelho
01:52 PM Revision 72602bda: Use default python from ports: Renato Botelho
01:45 PM Revision 4bdbb898: Fix syntax errors: Jim Pingle
01:36 PM Revision 13f9b0d2: Fix syntax error: Jim Pingle
12:19 PM Revision 0e4435fb: Bump Copyright to 2020: Renato Botelho
12:19 PM Revision 7a043ad0: Bump Copyright to 2020: Renato Botelho
11:00 AM pfSense Packages Feature #10141 (Feedback): pfBlockerNG - MaxMind License Registration: PR has been merged. Thanks! Renato Botelho
10:38 AM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: There is no patch here to apply. There are some general theories and wishes, but no code. If someone wants to take it... Jim Pingle
10:28 AM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: This is a big problem when using pfblockerng and also registering DHCP leases in the resolver as it causes unbound to... Nick B
09:56 AM Bug #10149 (Resolved): system_gateways.php: PHP error on line 169: Already fixed in commit:4bdbb8987eeb62a41ef6e92c1abf7a9befb90f20 Jim Pingle
09:52 AM Bug #10149 (Resolved): system_gateways.php: PHP error on line 169: Parse error: syntax error, unexpected ')' in /usr/local/www/system_gateways.php on line 169 Claudiu Mihai
09:24 AM Feature #7767 (Pull Request Review): OCSP support for OpenVPN server: Jim Pingle
09:14 AM Feature #7767: OCSP support for OpenVPN server: https://github.com/pfsense/pfsense/pull/4145 Viktor Gurov
09:02 AM Todo #10135: help.php: Update links: Moving this to 2.5.0, it is nice to have but not a release blocker. Jim Pingle
08:41 AM Revision 81157e5c: cosmetic: Viktor Gurov
08:37 AM Revision 0cdb5e95: export aliases to txt file: Viktor Gurov
07:21 AM Bug #10148 (Not a Bug): Pfsense VM restarting indefinitly: That is a filesystem problem in your VM, not a bug.
This site is not for support or diagnostic discussion.
For ... Jim Pingle
03:30 AM Bug #10148 (Not a Bug): Pfsense VM restarting indefinitly: Hi to all,
Please note that my Pfsense VM on VMWARE is still restarting indefinitly.
Enclosed the debug file.
Than... Appolinaire ouraga
07:20 AM Feature #10147 (Duplicate): Separators in Nat Outbound view: Duplicate of #7781 Jim Pingle
02:48 AM Feature #10147 (Duplicate): Separators in Nat Outbound view: I consider the use of separators in Rules and Nat very useful.
I would like to ask if it is possible to implement th... Stefano Mereghetti
07:17 AM pfSense Packages Bug #9652 (Pull Request Review): Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: Jim Pingle
02:44 AM pfSense Packages Bug #9652: Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: Ok, it works.
being the version of PORTREVISION still the 12, I copied the code of the last merge of squid.inc by ha... Stefano Mereghetti
12:13 AM pfSense Packages Bug #9652: Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: fixed:
https://github.com/pfsense/FreeBSD-ports/pull/740 Viktor Gurov
06:45 AM Feature #9639: Cloudflare DDNS "API Token": +1 as well to get it, I created workaround to get it work, but native will be better in many ways https://forum.netga... DRago_Angel [InV@DER]
04:40 AM Feature #9985: Build virtio_console.ko: Nux Ro wrote:
> Hello,
>
> Please include the virtio_console.ko kernel module, it's needed by the qemu-guest-agen... Suriname Clubcard
02:42 AM Feature #9816: firewall_aliases.php: add ability to export list of aliases: https://github.com/pfsense/pfsense/pull/4144 Viktor Gurov
12:32 AM pfSense Packages Bug #10146 (Resolved): squid4 obsolete options: got in squid logs on pfSense 2.4.5:... Viktor Gurov

01/01/2020

11:05 PM pfSense Packages Bug #7616 (Closed): Barnyard2 webui configuration updates result in ****** written to the config for the password: no such issue on latest snort 4.0_10
tested on pfSense 2.4.4-p3 and pfSense 2.5.0.a.20191230.2321 Viktor Gurov
10:14 PM pfSense Docs Correction #10145: Feedback on Packages — Installing FreeBSD Packages: Update:
That's correct for 2.3 but there is no 2.4 section for FreeBSD11 Paighton Bisconer
10:08 PM pfSense Docs Correction #10145 (Resolved): Feedback on Packages — Installing FreeBSD Packages: *Page:* https://docs.netgate.com/pfsense/en/latest/packages/installing-freebsd-packages.html
*Feedback:*
This is ... Paighton Bisconer
05:11 PM pfSense Packages Feature #10141: pfBlockerNG - MaxMind License Registration: https://forum.netgate.com/topic/149343/pfblockerng-maxmind-registration-required-to-continue-to-use-the-geoip-functio... BBcan177 .
04:52 PM pfSense Packages Feature #10141: pfBlockerNG - MaxMind License Registration: The PRs have not yet been merged, so nothing can be done yet. Soon. Jim Pingle
12:56 PM pfSense Packages Feature #10141: pfBlockerNG - MaxMind License Registration: where are those steps on how to migrate?! Julian G
04:51 PM Bug #9488 (Resolved): No console when booting CE Memstick UEFI.: OK, we'll mark this resolved for now, can revisit if it turns out to be a general issue. Jim Pingle
12:56 PM Bug #9488: No console when booting CE Memstick UEFI.: Updating the BIOS to MNW2MAX1.X64.0101.R01.1908071815 did not help.
The only thing different on that box is a 120G... Steve Wheeler
12:06 PM Bug #9488: No console when booting CE Memstick UEFI.: If course it helps if you test the right image.....
Tested: pfSense-CE-memstick-2.4.5-DEVELOPMENT-amd64-20191231-1... Steve Wheeler

12/31/2019

06:47 PM Feature #10144 (New): Default Sort Order, DHCP Leases: Hi,
Very minor issue, but it would be nice to have the DHCP Leases table sort by (ascending) IP address - as a def... Russell Morris
05:54 PM Revision 03f7009d: Fix syntax error: Jim Pingle
05:35 PM Bug #9488 (New): No console when booting CE Memstick UEFI.: Is the behavior the same on 2.5.0? Or is this only on 2.4.5? Jim Pingle
04:57 PM Bug #9488: No console when booting CE Memstick UEFI.: Tested: pfSense-netgate-memstick-2.4.5-DEVELOPMENT-amd64-20191231-1310 on MBT-4220
The installer image boots and p... Steve Wheeler
03:17 PM Bug #9778 (Resolved): Inconsistent update check results: This has been in and working for a while now. Jim Pingle
03:16 PM Bug #9747 (Resolved): IPsec widget - Missing escape of domain backslash: No feedback from OP but the widget is working fine in general, so likely fixed. Jim Pingle
03:15 PM Revision 5323ce24: Fix copyright header on rc.package_reinstall_all. Issue #9245: Jim Pingle
03:14 PM Feature #9452 (Resolved): Add Gandi LiveDNS DynDNS client.: Not a service we can test internally, and no response from OP or other consumers of the service in question, so closi... Jim Pingle
03:14 PM Bug #9602 (Resolved): Dynamic DNS with DigitalOcean not working: Not a service we can test internally, and no response from OP or other consumers of the service in question, so closi... Jim Pingle
03:14 PM Bug #9580 (Resolved): Dynamic DNS DNSimple client errors: Not a service we can test internally, and no response from OP or other consumers of the service in question, so closi... Jim Pingle
03:14 PM Bug #9362 (Resolved): rc.dyndns.update: Cloudflare DDNS with proxy enabled doesn't work at all: Not a service we can test internally, and no response from OP or other consumers of the service in question, so closi... Jim Pingle
03:14 PM Feature #9280 (Resolved): Add AAAA record type support for DynDNS with Digital Ocean: Not a service we can test internally, and no response from OP or other consumers of the service in question, so closi... Jim Pingle
03:14 PM Bug #9248 (Resolved): Dynamic dns updates on azure ipv6 service is not working properly: Not a service we can test internally, and no response from OP or other consumers of the service in question, so closi... Jim Pingle
03:14 PM Bug #8014 (Resolved): DynDNS wildcard option doesn't work for provider Loopia: Not a service we can test internally, and no response from OP or other consumers of the service in question, so closi... Jim Pingle
03:09 PM Bug #7601 (Resolved): Dynamic DNS - Hostname should not be required for DNS-O-Matic: Though I cannot confirm the DNS-O-Matic service accepts the request, the GUI no longer requires the hostname. Jim Pingle
03:08 PM Bug #9361 (Resolved): Cloudflare Not Allowing "*" Hostname Entry in Dynamic DNS: Jim Pingle
03:07 PM Revision b8e599fc: Add help for missing pages. Issue #10135: Jim Pingle
03:07 PM Bug #9720 (Resolved): vpn_ipsec_phase2.php - no remote network field in VTI mode: Looks good on current 2.4.5 snapshots Jim Pingle
03:06 PM Revision 0e73ead7: Add help for missing pages. Issue #10135: Jim Pingle
02:59 PM Bug #9612 (New): Run fsck with -z for ufs on upgrade to address FreeBSD-SA-19:10.ufs: This fix does not appear to be getting triggered. There is no sign of the expected messages during the upgrade process. Jim Pingle
02:56 PM Bug #9595 (Resolved): OpenVPN does not resync when running on a gateway group: Client changes WAN bindings at the expected times as gateways fail/recover on 2.4.5. Jim Pingle
02:52 PM Bug #4674 (Resolved): invalid state table entries after WAN IP change: No feedback from OP or previous commenters, and at least with a quick test here it appears to be doing the right thin... Jim Pingle
02:52 PM Revision e63373a6: Fix function case. Issue #10139: Jim Pingle
02:52 PM Revision 7fa8c0dd: Relocate IGMP proxy verbose setting. Fixes #10139: Jim Pingle
02:44 PM Revision 7f5cb422: Relocate IGMP proxy verbose setting. Fixes #10139: Jim Pingle
02:33 PM Bug #10143 (New): System hostname DNS entry is assigned to the wrong IP on multi-wan setups: According to the official "docs":https://docs.netgate.com/pfsense/en/latest/interfaces/interface-settings.html#interf... Daniel Pereira
02:27 PM Revision e50335e9: Move igmpproxy logs to routing.log. Fixes #10139: Jim Pingle
02:21 PM Revision d30d2108: Move igmpproxy logs to routing.log. Fixes #10139: Jim Pingle
02:11 PM Revision 1cd960a8: Merge pull request #4132 from vktg/hidenoprvcerts: Renato Botelho
02:10 PM Revision a5b927e5: Merge pull request #4142 from vktg/routedelete: Renato Botelho
01:58 PM Bug #10142 (Rejected): Using LAN interface for WAN leads to weird behaviors: The leases bit is likely not a bug, there may actually be a lease in the lease database that matches the stated confi... Jim Pingle
01:47 PM Bug #10142 (Rejected): Using LAN interface for WAN leads to weird behaviors: According to the official "docs":https://docs.netgate.com/pfsense/en/latest/interfaces/interface-settings.html#interf... Daniel Pereira
01:29 PM Bug #9610: picture.widget.php: Arbitrary file read/write: See also: #9731 Jim Pingle
01:28 PM Bug #9610 (Resolved): picture.widget.php: Arbitrary file read/write: Re-confirmed against 2.4.4-p3 and then confirmed fixed against 2.4.5 and 2.5.0. Jim Pingle
01:29 PM Bug #9731 (Duplicate): Path Traversal vulnerability in picture widget: Though this had a separate fix applied, I believe it's really the same issue as #9610 Jim Pingle
01:21 PM Feature #9693 (Resolved): Bypass automatic backups: Looks good now. Jim Pingle
01:20 PM Bug #9804 (Resolved): services_captiveportal.php: Image upload does not validate file type: That should be good enough. I also cannot upload anything but a valid image in those fields on 2.5.0, so it would app... Jim Pingle
01:14 PM Bug #9609 (Resolved): Reflective xss in services_captiveportal_mac.php: Looks good here. Re-verified against 2.4.4-p3 and confirmed fixed against 2.4.5 and 2.5.0:
2.4.4-p3:... Jim Pingle
11:48 AM pfSense Packages Bug #9652 (New): Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: Jim Pingle
11:39 AM pfSense Packages Bug #9652: Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: I tried to completely remove the squid package from gui and filesystem... probably thinking about some misconfigurati... Stefano Mereghetti
10:48 AM pfSense Packages Bug #9652: Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: Hello, thanks.
just tested with the last merge (2.4.5.a.20191231.0928) and squid package (0.4.44_12) and after the... Stefano Mereghetti
09:46 AM pfSense Packages Bug #6339 (Pull Request Review): OpenVPN Client Export package option for "Use Microsoft Certificate Storage" does not specify which certificate to use: Jim Pingle
09:37 AM pfSense Packages Bug #6339: OpenVPN Client Export package option for "Use Microsoft Certificate Storage" does not specify which certificate to use: https://github.com/pfsense/FreeBSD-ports/pull/739 Viktor Gurov
09:45 AM Todo #9245: Update copyright notices to 2020: Just pushed commits to bring everything up to 2019, which will then make it easy to match it all when changing to 202... Jim Pingle
09:17 AM Todo #9245 (In Progress): Update copyright notices to 2020: May as well re-use this to fix the headers for 2020 and packages. Jim Pingle
09:44 AM Bug #10139: IGMPPROXY spamming the main systemlog: When you toggle the setting on services_igmpproxy.php and save it will offer to apply changes as with any other chang... Jim Pingle
09:33 AM Bug #10139: IGMPPROXY spamming the main systemlog: Hello Jim Pingle,
Great to see that you already taken action. I have overlooked the option under Status > System L... Roy Krikke
09:00 AM Bug #10139 (Feedback): IGMPPROXY spamming the main systemlog: Applied in changeset commit:7f5cb42263a0d2e8f3b752cd8e0453874c117a86. Jim Pingle
08:39 AM Bug #10139 (In Progress): IGMPPROXY spamming the main systemlog: On second thought I'm also going to move the igmpproxy verbose logging option to services_igmpproxy.php since it make... Jim Pingle
08:35 AM Bug #10139 (Feedback): IGMPPROXY spamming the main systemlog: Applied in changeset commit:d30d2108d88f8270264b1eeaf353d60156a40c3f. Jim Pingle
07:45 AM Bug #10139: IGMPPROXY spamming the main systemlog: There is already a verbose setting for it under Status > System Logs on the Settings tab. Try unchecking the box ther... Jim Pingle
05:13 AM Bug #10139 (Resolved): IGMPPROXY spamming the main systemlog: Igmpproxy is massivly spamming the main systemlog making it "completly" unusable.
This bug is connected to:
https... Roy Krikke
08:56 AM pfSense Packages Feature #10141 (Resolved): pfBlockerNG - MaxMind License Registration: As per MaxMind:
https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases/
... BBcan177 .
08:12 AM Feature #9972 (Feedback): cert_build_list(): by default don't show certs without prv key: PR has been merged. Thanks! Renato Botelho
08:10 AM Bug #10001 (Feedback): incorrect route deletion on 2.5: PR has been merged. Thanks! Renato Botelho
12:07 AM Bug #10001: incorrect route deletion on 2.5: Jim Pingle wrote:
> It is possible this may fix itself once we move to a 12.1 base, it may be a problem specific to ... Viktor Gurov
07:35 AM pfSense Packages Feature #10140 (Pull Request Review): allow to select webserver certificate: Jim Pingle
05:54 AM pfSense Packages Feature #10140 (Closed): allow to select webserver certificate: This feature allow user to select certificate for internal webserver of pfBlocker (lighttpd)
It saves the old /var/u... Viktor Gurov
07:33 AM Bug #10138 (Duplicate): FW rules - Manual State timeout settings: It's already there for TCP, others are already mentioned in #1635 Jim Pingle
04:12 AM Bug #10138 (Duplicate): FW rules - Manual State timeout settings: Hi Team,
Any chance you could add a feature to specify/adjust the UDP and TCP state timeouts for a particular host... matt s
07:29 AM pfSense Packages Bug #9204 (Needs Patch): ospfd: GRE tunnels became unnumbered since 2.4.4: Looks like it's already been raised upstream with FRR, and the issue is still open: https://github.com/FRRouting/frr/... Jim Pingle
01:18 AM pfSense Packages Bug #9204: ospfd: GRE tunnels became unnumbered since 2.4.4: Jim Pingle wrote:
> Can you test this with the current version of FRR (preferably on 2.5.0, if 2.4.4 doesn't work)?
... Viktor Gurov
06:55 AM pfSense Packages Bug #9322 (Feedback): telegraf "Additional configuration for Telegraf" lost configuration after reboot: PR has been merged. Thanks! Renato Botelho
06:39 AM pfSense Packages Bug #9322: telegraf "Additional configuration for Telegraf" lost configuration after reboot: https://github.com/pfsense/FreeBSD-ports/pull/737 Viktor Gurov
06:46 AM Revision 5a24d994: fixes: Viktor Gurov
06:12 AM pfSense Packages Bug #9750 (Feedback): squidguard_blacklist.php & squidguard_log.php wrong status icon link: PR has been merged to 2.5.0 and 2.4.5
Thanks Renato Botelho
05:25 AM Revision 4e8cb2fc: parenthesis fix: Viktor Gurov

12/30/2019

11:02 PM Revision 1b492ac7: Ignore the flash devices during the scan for config files at boot.: (cherry picked from commit 99a641df363bfc9c1e62474180598a770ff22385) Luiz Souza
11:02 PM Revision 99a641df: Ignore the flash devices during the scan for config files at boot.: Luiz Souza
09:48 PM Revision eeaf998c: Update some old doc URLs: (cherry picked from commit b9c73e94fecf41e6d3a8854ba51d8e3bbc7dd5d4) Jim Pingle
09:48 PM Revision b9c73e94: Update some old doc URLs: Jim Pingle
09:21 PM Revision daa19dce: help.php book URL updates. Issue #10135: Jim Pingle
09:19 PM Revision eeae77c9: help.php book URL updates. Issue #10135: Jim Pingle
09:04 PM Revision db1f9fe5: Merge pull request #4143 from vktg/ipsecgcmnoah: Renato Botelho
09:03 PM Revision f6d8ae5a: Merge pull request #4129 from luckman212/dns-v6-options-patch-2: Renato Botelho
08:59 PM Revision 7682eeeb: Merge pull request #4137 from vktg/multicrl: Renato Botelho
08:58 PM Revision 309e5f11: fix vti localid hiding in WebGUI: (cherry picked from commit 16ed13478daeceb1ad6a2b180dba7506574d4480) Viktor Gurov
08:58 PM Revision defdc5a5: Merge pull request #4140 from vktg/unhidevtiremoteid: Renato Botelho
08:43 PM Revision 3b7d8533: Another layer of help.php URL redirects. Issue #10135: Like an onion.
Also remove some non-existent pages. Jim Pingle
08:42 PM Revision 0fca685f: Another layer of help.php URL redirects. Issue #10135: Like an onion.
Also remove some non-existent pages. Jim Pingle
08:11 PM Revision 21abbc87: Update help.php current post-redirect URLs. Issue #10135: URLs were still pointing at the retired docs server URLs, update to
current targets after redirecting. Jim Pingle
08:10 PM Revision ebed725a: Update help.php current post-redirect URLs. Issue #10135: URLs were still pointing at the retired docs server URLs, update to
current targets after redirecting. Jim Pingle
06:26 PM Bug #10136: PHP Warning: PHP Startup: Unable to load dynamic library 'readline.so' & 'intl.so': Indeed after another reboot the message is gone. Sean McBride
03:20 PM Bug #10136 (Duplicate): PHP Warning: PHP Startup: Unable to load dynamic library 'readline.so' & 'intl.so': That is the same issue. The errors are harmless side effects of the upgrade process unless they recur after the next ... Jim Pingle
03:01 PM Bug #10136 (Duplicate): PHP Warning: PHP Startup: Unable to load dynamic library 'readline.so' & 'intl.so': I updated from 2.4.4-p3 to 2.4.5-devel and got this:
-------------
Crash report begins. Anonymous machine inform... Sean McBride
05:16 PM Feature #10137 (New): net-mgmt/arpwatch: Update to 3.0: This is needed for this pull request: https://github.com/pfsense/FreeBSD-ports/pull/730 Craig Leres
03:41 PM Todo #10135 (In Progress): help.php: Update links: The concerns raised in #10011 - #10133 should all be addressed now, though there are still >200 URLs that point to th... Jim Pingle
12:59 PM Todo #10135 (Resolved): help.php: Update links: Most page-specific links in source:src/usr/local/www/help.php point to old URLs and not the new URLs.
This replace... Jim Pingle
03:13 PM pfSense Packages Bug #9652 (Feedback): Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: PR has been merged. Thanks! Renato Botelho
03:04 PM Feature #9726 (Feedback): Hash Algorithm configured on child ESP/AH proposals using AES GCM though strongswan strips them: PR has been merged. Thanks Renato Botelho
09:22 AM Feature #9726 (Pull Request Review): Hash Algorithm configured on child ESP/AH proposals using AES GCM though strongswan strips them: Jim Pingle
03:03 PM Feature #9302 (Feedback): radvd always advertises DNS servers and Domain Search List regardless of M or O flag: PR has been merged. Thanks! Renato Botelho
02:59 PM Feature #3258 (Feedback): Allow multiple certificates to be revoked in a single step: PR has been merged. Thanks! Renato Botelho
02:58 PM Bug #9720 (Feedback): vpn_ipsec_phase2.php - no remote network field in VTI mode: PR has been merged. Thanks Renato Botelho
08:40 AM Bug #9720 (Pull Request Review): vpn_ipsec_phase2.php - no remote network field in VTI mode: Jim Pingle
02:52 PM pfSense Packages Feature #9563 (Feedback): Syslog-ng TLS support: PR has been merged. Thanks! Renato Botelho
08:42 AM pfSense Packages Feature #9563 (Pull Request Review): Syslog-ng TLS support: Jim Pingle
02:50 PM pfSense Packages Feature #9523 (Feedback): LADVD: Feature to enable setting interface descriptions: PR has been merged. Thanks! Renato Botelho
08:56 AM pfSense Packages Feature #9523 (Pull Request Review): LADVD: Feature to enable setting interface descriptions: Jim Pingle
12:55 PM Feature #10034 (Closed): Update interfaces_gif_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10033 (Closed): Update interfaces_gif.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10032 (Closed): Update interfaces_gre_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10031 (Closed): Update interfaces_gre.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10030 (Closed): Update interfaces_ppps_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10029 (Closed): Update interfaces_ppps.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10028 (Closed): Update interfaces_qinq.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10027 (Closed): Update interfaces_qinq.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10026 (Closed): Update interfaces_vlan_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10025 (Closed): Update interfaces_vlan.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10024 (Closed): Update interfaces_wireless_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10023 (Closed): Update interfaces_wireless.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10022 (Closed): Update interfaces_groups_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10021 (Closed): Update interfaces_groups.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10020 (Closed): Update interfaces_groups.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10019 (Closed): Update interfaces.php?if= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10018 (Closed): Update interfaces_assign.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10017 (Closed): Update system_advanced_sysctl.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10016 (Closed): Update system_advanced_sysctl.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10015 (Closed): Update system_advanced_misc.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10014 (Closed): Update system_advanced_network.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10013 (Closed): Update system_advanced_network.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10012 (Closed): Update system_advanced_firewall.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:55 PM Feature #10011 (Closed): Update system_advanced_admin.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10133 (Closed): Update status_carp.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10132 (Closed): Update status_captiveportal_vouchers.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10131 (Closed): Update status_captiveportal.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10130 (Closed): Update wizard.php?xml=openvpn_wizard.xml to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10129 (Closed): Update vpn_openvpn_csc.php?act=new to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10128 (Closed): Update vpn_openvpn_csc.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10127 (Closed): Update vpn_openvpn_client.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10126 (Closed): Update vpn_openvpn_server.php?act=new to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10125 (Closed): Update vpn_openvpn_server.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10124 (Closed): Update vpn_l2tp_users.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10123 (Closed): Update vpn_l2tp.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10122 (Closed): Update vpn_ipsec_settings.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10121 (Closed): Update vpn_ipsec_keys.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10120 (Closed): Update vpn_ipsec_mobile.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10119 (Closed): Update vpn_ipsec_phase2.php?ikeid= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10118 (Closed): Update vpn_ipsec_phase1.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10117 (Closed): Update vpn_ipsec.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10116 (Closed): Update services_wol_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10115 (Closed): Update services_wol_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10114 (Closed): Update services_wol.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10113 (Closed): Update pkg_edit.php?xml=miniupnpd.xml to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10112 (Closed): Update services_snmp.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10111 (Closed): Update services_pppoe_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10110 (Closed): Update services_pppoe.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10109 (Closed): Update services_ntpd_pps.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10108 (Closed): Update services_ntpd_gps.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10107 (Closed): Update services_ntpd_acls.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10106 (Closed): Update services_ntpd.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10105 (Closed): Update load_balancer_setting.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:54 PM Feature #10104 (Closed): Update load_balancer_monitor_edit.php?id= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10103 (Closed): Update load_balancer_monitor.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10102 (Closed): Update load_balancer_virtual_server_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10101 (Closed): Update load_balancer_virtual_server.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10100 (Closed): Update load_balancer_pool_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10099 (Closed): Update load_balancer_pool.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10098 (Closed): Update services_igmpproxy_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10097 (Closed): Update services_igmpproxy.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10096 (Closed): Update services_checkip_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10095 (Closed): Update services_checkip.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10094 (Closed): Update services_rfc2136_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10093 (Closed): Update services_rfc2136.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10092 (Closed): Update services_dyndns_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10091 (Closed): Update services_dyndns.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10090 (Closed): Update services_unbound_acls.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10089 (Closed): Update services_unbound_advanced.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10088 (Closed): Update services_unbound.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10087 (Closed): Update services_dnsmasq.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10086 (Closed): Update services_router_advertisements.php?if= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10085 (Closed): Update services_dhcpv6.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10084 (Closed): Update services_dhcpv6_relay.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10083 (Closed): Update services_dhcp.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10082 (Closed): Update services_dhcp_relay.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10081 (Closed): Update services_captiveportal_filemanager.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10080 (Closed): Update services_captiveportal_vouchers.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10079 (Closed): Update services_captiveportal_hostname_edit.php?zone=&act=add to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10078 (Closed): Update services_captiveportal_hostname.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10077 (Closed): Update services_captiveportal_ip_edit.php?zone=&act=add to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10076 (Closed): Update services_captiveportal_ip.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10075 (Closed): Update services_captiveportal_mac_edit.php?zone=&act=add to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10074 (Closed): Update services_captiveportal_mac.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10073 (Closed): Update services_captiveportal_zones_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10072 (Closed): Update services_captiveportal_zones.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10071 (Closed): Update services_acb_backup.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10070 (Closed): Update services_acb_backup.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10069 (Closed): Update services_acb.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10068 (Closed): Update services_acb_settings.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10067 (Closed): Update firewall_virtual_ip_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10066 (Closed): Update firewall_virtual_ip.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10065 (Closed): Update wizard.php?xml=traffic_shaper_wizard*.xml to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10064 (Closed): Update firewall_shaper_wizards.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10063 (Closed): Update firewall_shaper_vinterface.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10062 (Closed): Update firewall_shaper_queues.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10061 (Closed): Update firewall_shaper.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10060 (Closed): Update firewall_schedule_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10059 (Closed): Update firewall_schedule.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10058 (Closed): Update firewall_rules_edit.php?id= to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10057 (Closed): Update firewall_rules.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10056 (Closed): Update firewall_nat_npt_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10055 (Closed): Update firewall_nat_npt.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10054 (Closed): Update firewall_nat_out_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10053 (Closed): Update firewall_nat_out.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10052 (Closed): Update firewall_nat_1to1_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10051 (Closed): Update firewall_nat_1to1.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10050 (Closed): Update firewall_nat_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10049 (Closed): Update firewall_nat.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10048 (Closed): Update firewall_aliases_import.php?tab=all to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10047 (Closed): Update firewall_aliases_edit.php?tab=all to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10046 (Closed): Update firewall_aliases_edit.php?tab=url to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10045 (Closed): Update firewall_aliases.php?tab=url to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10044 (Closed): Update firewall_aliases_import.php?tab=port to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10043 (Closed): Update firewall_aliases_edit.php?tab=port to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10042 (Closed): Update firewall_aliases.php?tab=port to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10041 (Closed): Update firewall_aliases_import.php?tab=ip to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10040 (Closed): Update firewall_aliases_edit.php?tab=ip to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10039 (Closed): Update firewall_aliases.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10038 (Closed): Update interfaces_lagg_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:53 PM Feature #10037 (Closed): Update interfaces_lagg.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:52 PM Feature #10036 (Closed): Update interfaces_bridge_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:52 PM Feature #10035 (Closed): Update interfaces_bridge.php to include a link to The pfSense Book, rather than the community maintained documentation: Jim Pingle
12:16 PM Bug #9270: "Remove all states to and from the filtered address" does not remove all states: It is still in a "new" state, so no, it has not yet been addressed. Jim Pingle
12:01 PM Bug #9270: "Remove all states to and from the filtered address" does not remove all states: Is this fix part of current development snapshot ? Yuri Weinstein
11:06 AM pfSense Packages Feature #10134 (Resolved): pfSense-pkg-softflowd: Add additional options available in softflowd-1.0.0: *DEPENDS* on FreeBSD ports issue https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=242960
pfSense PR: https://gith... Ross Williams
10:06 AM Bug #9993 (Feedback): invalid cipher specified in ipsec config: Can you check what changed in your config.xml between the non-working and working configuration?
And can you possi... Jim Pingle
09:34 AM pfSense Packages Feature #10002 (Pull Request Review): allow to use lo0 interface for web-server: Jim Pingle
09:20 AM Bug #10001 (Pull Request Review): incorrect route deletion on 2.5: It is possible this may fix itself once we move to a 12.1 base, it may be a problem specific to 12.0. Jim Pingle
09:00 AM Bug #6868 (Pull Request Review): Interface MTU Setting not applied to all IPv6 routes: Jim Pingle
08:44 AM pfSense Packages Feature #9217 (Pull Request Review): Squid LDAP Authentication - spaces in ldif values: Jim Pingle
08:39 AM pfSense Packages Bug #9750 (Pull Request Review): squidguard_blacklist.php & squidguard_log.php wrong status icon link: Jim Pingle
08:35 AM Bug #7609: NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: The original problem was resolved, the later report is a slightly different edge case. The new issue is not the origi... Jim Pingle

12/28/2019

10:59 PM Feature #10133 (Closed): Update status_carp.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at status_carp.php, there is a help button (circle with question mark inside of it) that links to the publ... Anonymous
10:58 PM Feature #10132: Update status_captiveportal_vouchers.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: The above applies for all Tabs under Status > Captive Portal (Active Users, Active Vouchers, Voucher Rolls, Test Vouc... Anonymous
10:58 PM Feature #10132 (Closed): Update status_captiveportal_vouchers.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at status_captiveportal_vouchers.php?zone=, there is a help button (circle with question mark inside of it... Anonymous
10:58 PM Feature #10131 (Closed): Update status_captiveportal.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at wizard.php?xml=openvpn_wizard.xml, there is a help button (circle with question mark inside of it) that... Anonymous
10:57 PM Feature #10130 (Closed): Update wizard.php?xml=openvpn_wizard.xml to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at wizard.php?xml=openvpn_wizard.xml, there is a help button (circle with question mark inside of it) that... Anonymous
10:57 PM Feature #10129 (Closed): Update vpn_openvpn_csc.php?act=new to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_openvpn_csc.php?act=new, there is a help button (circle with question mark inside of it) that links... Anonymous
10:57 PM Feature #10128 (Closed): Update vpn_openvpn_csc.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_openvpn_csc.php, there is a help button (circle with question mark inside of it) that links to the ... Anonymous
10:57 PM Feature #10127 (Closed): Update vpn_openvpn_client.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_openvpn_client.php, there is a help button (circle with question mark inside of it) that links to t... Anonymous
10:56 PM Feature #10126 (Closed): Update vpn_openvpn_server.php?act=new to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_openvpn_server.php?act=new, there is a help button (circle with question mark inside of it) that li... Anonymous
10:56 PM Feature #10125 (Closed): Update vpn_openvpn_server.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_openvpn_server.php, there is a help button (circle with question mark inside of it) that links to t... Anonymous
10:56 PM Feature #10124 (Closed): Update vpn_l2tp_users.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_l2tp_users.php, there is a help button (circle with question mark inside of it) that links to the p... Anonymous
10:56 PM Feature #10123 (Closed): Update vpn_l2tp.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_l2tp.php, there is a help button (circle with question mark inside of it) that links to the public,... Anonymous
10:55 PM Feature #10122 (Closed): Update vpn_ipsec_settings.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_ipsec_settings.php, there is a help button (circle with question mark inside of it) that links to t... Anonymous
10:55 PM Feature #10121 (Closed): Update vpn_ipsec_keys.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_ipsec_keys.php, there is a help button (circle with question mark inside of it) that links to the p... Anonymous
10:54 PM Feature #10120 (Closed): Update vpn_ipsec_mobile.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_ipsec_mobile.php, there is a help button (circle with question mark inside of it) that links to the... Anonymous
10:54 PM Feature #10119 (Closed): Update vpn_ipsec_phase2.php?ikeid= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_ipsec_phase2.php?ikeid=, there is a help button (circle with question mark inside of it) that links... Anonymous
10:54 PM Feature #10118 (Closed): Update vpn_ipsec_phase1.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_ipsec_phase1.php, there is a help button (circle with question mark inside of it) that links to the... Anonymous
10:54 PM Feature #10117 (Closed): Update vpn_ipsec.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at vpn_ipsec.php, there is a help button (circle with question mark inside of it) that links to the public... Anonymous
10:54 PM Feature #10116 (Closed): Update services_wol_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_wol_edit.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:53 PM Feature #10115 (Closed): Update services_wol_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_wol_edit.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:53 PM Feature #10114 (Closed): Update services_wol.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_wol.php, there is a help button (circle with question mark inside of it) that links to the pub... Anonymous
10:53 PM Feature #10113 (Closed): Update pkg_edit.php?xml=miniupnpd.xml to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at pkg_edit.php?xml=miniupnpd.xml, there is a help button (circle with question mark inside of it) that li... Anonymous
10:52 PM Feature #10112 (Closed): Update services_snmp.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_snmp.php, there is a help button (circle with question mark inside of it) that links to the pu... Anonymous
10:52 PM Feature #10111 (Closed): Update services_pppoe_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_pppoe_edit.php, there is a help button (circle with question mark inside of it) that links to ... Anonymous
10:52 PM Feature #10110 (Closed): Update services_pppoe.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_pppoe.php, there is a help button (circle with question mark inside of it) that links to the p... Anonymous
10:52 PM Feature #10109 (Closed): Update services_ntpd_pps.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_ntpd_pps.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:52 PM Feature #10108 (Closed): Update services_ntpd_gps.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_ntpd_gps.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:51 PM Feature #10107 (Closed): Update services_ntpd_acls.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_ntpd_acls.php, there is a help button (circle with question mark inside of it) that links to t... Anonymous
10:51 PM Feature #10106 (Closed): Update services_ntpd.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_ntpd.php, there is a help button (circle with question mark inside of it) that links to the pu... Anonymous
10:51 PM Feature #10105 (Closed): Update load_balancer_setting.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at load_balancer_setting.php, there is a help button (circle with question mark inside of it) that links t... Anonymous
10:50 PM Feature #10104 (Closed): Update load_balancer_monitor_edit.php?id= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at load_balancer_monitor_edit.php?id=, there is a help button (circle with question mark inside of it) tha... Anonymous
10:50 PM Feature #10103 (Closed): Update load_balancer_monitor.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at load_balancer_monitor.php, there is a help button (circle with question mark inside of it) that links t... Anonymous
10:50 PM Feature #10102 (Closed): Update load_balancer_virtual_server_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at load_balancer_virtual_server_edit.php, there is a help button (circle with question mark inside of it) ... Anonymous
10:50 PM Feature #10101 (Closed): Update load_balancer_virtual_server.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at load_balancer_virtual_server.php, there is a help button (circle with question mark inside of it) that ... Anonymous
10:49 PM Feature #10100 (Closed): Update load_balancer_pool_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at load_balancer_pool_edit.php, there is a help button (circle with question mark inside of it) that links... Anonymous
10:49 PM Feature #10099 (Closed): Update load_balancer_pool.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at load_balancer_pool.php, there is a help button (circle with question mark inside of it) that links to t... Anonymous
10:49 PM Feature #10098 (Closed): Update services_igmpproxy_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_igmpproxy_edit.php, there is a help button (circle with question mark inside of it) that links... Anonymous
10:48 PM Feature #10097 (Closed): Update services_igmpproxy.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_igmpproxy.php, there is a help button (circle with question mark inside of it) that links to t... Anonymous
10:48 PM Feature #10096 (Closed): Update services_checkip_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_checkip_edit.php, there is a help button (circle with question mark inside of it) that links t... Anonymous
10:47 PM Feature #10095 (Closed): Update services_checkip.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_checkip.php, there is a help button (circle with question mark inside of it) that links to the... Anonymous
10:47 PM Feature #10094 (Closed): Update services_rfc2136_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_rfc2136_edit.php, there is a help button (circle with question mark inside of it) that links t... Anonymous
10:47 PM Feature #10093 (Closed): Update services_rfc2136.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_rfc2136.php, there is a help button (circle with question mark inside of it) that links to the... Anonymous
10:46 PM Feature #10092 (Closed): Update services_dyndns_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_dyndns_edit.php, there is a help button (circle with question mark inside of it) that links to... Anonymous
10:46 PM Feature #10091 (Closed): Update services_dyndns.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_dyndns.php, there is a help button (circle with question mark inside of it) that links to the ... Anonymous
10:45 PM Feature #10090 (Closed): Update services_unbound_acls.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_unbound_acls.php, there is a help button (circle with question mark inside of it) that links t... Anonymous
10:45 PM Feature #10089 (Closed): Update services_unbound_advanced.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_unbound_advanced.php, there is a help button (circle with question mark inside of it) that lin... Anonymous
10:45 PM Feature #10088 (Closed): Update services_unbound.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_unbound.php, there is a help button (circle with question mark inside of it) that links to the... Anonymous
10:45 PM Feature #10087 (Closed): Update services_dnsmasq.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_dnsmasq.php, there is a help button (circle with question mark inside of it) that links to the... Anonymous
10:44 PM Feature #10086 (Closed): Update services_router_advertisements.php?if= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_router_advertisements.php?if=, there is a help button (circle with question mark inside of it)... Anonymous
10:44 PM Feature #10085 (Closed): Update services_dhcpv6.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_dhcpv6.php, there is a help button (circle with question mark inside of it) that links to the ... Anonymous
10:44 PM Feature #10084 (Closed): Update services_dhcpv6_relay.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_dhcpv6_relay.php, there is a help button (circle with question mark inside of it) that links t... Anonymous
10:44 PM Feature #10083 (Closed): Update services_dhcp.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_dhcp.php, there is a help button (circle with question mark inside of it) that links to the pu... Anonymous
10:43 PM Feature #10082 (Closed): Update services_dhcp_relay.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_dhcp_relay.php, there is a help button (circle with question mark inside of it) that links to ... Anonymous
10:43 PM Feature #10081 (Closed): Update services_captiveportal_filemanager.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_filemanager.php?zone=, there is a help button (circle with question mark inside ... Anonymous
10:43 PM Feature #10080 (Closed): Update services_captiveportal_vouchers.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_vouchers.php?zone=, there is a help button (circle with question mark inside of ... Anonymous
10:43 PM Feature #10079 (Closed): Update services_captiveportal_hostname_edit.php?zone=&act=add to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_hostname_edit.php?zone=, there is a help button (circle with question mark insid... Anonymous
10:42 PM Feature #10078 (Closed): Update services_captiveportal_hostname.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_hostname.php?zone=, there is a help button (circle with question mark inside of ... Anonymous
10:42 PM Feature #10077 (Closed): Update services_captiveportal_ip_edit.php?zone=&act=add to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_ip_edit.php?zone=&act=add, there is a help button (circle with question mark ins... Anonymous
10:42 PM Feature #10076 (Closed): Update services_captiveportal_ip.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_ip.php?zone=, there is a help button (circle with question mark inside of it) th... Anonymous
10:42 PM Feature #10075 (Closed): Update services_captiveportal_mac_edit.php?zone=&act=add to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_mac_edit.php?zone=&act=add, there is a help button (circle with question mark in... Anonymous
10:41 PM Feature #10074 (Closed): Update services_captiveportal_mac.php?zone= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_mac.php?zone=, there is a help button (circle with question mark inside of it) t... Anonymous
10:41 PM Feature #10073 (Closed): Update services_captiveportal_zones_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_zones_edit.php, there is a help button (circle with question mark inside of it) ... Anonymous
10:41 PM Feature #10072 (Closed): Update services_captiveportal_zones.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_captiveportal_zones.php, there is a help button (circle with question mark inside of it) that ... Anonymous
10:41 PM Feature #10071 (Closed): Update services_acb_backup.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_acb_backup.php, there is a help button (circle with question mark inside of it) that links to ... Anonymous
10:40 PM Feature #10070 (Closed): Update services_acb_backup.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_acb_backup.php, there is a help button (circle with question mark inside of it) that links to ... Anonymous
10:40 PM Feature #10069 (Closed): Update services_acb.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at services_acb.php, there is a help button (circle with question mark inside of it) that links to the pub... Anonymous
10:40 PM Feature #10068 (Closed): Update services_acb_settings.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_virtual_ip_edit.php, there is a help button (circle with question mark inside of it) that link... Anonymous
10:39 PM Feature #10067 (Closed): Update firewall_virtual_ip_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_virtual_ip_edit.php, there is a help button (circle with question mark inside of it) that link... Anonymous
10:39 PM Feature #10066 (Closed): Update firewall_virtual_ip.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_virtual_ip.php, there is a help button (circle with question mark inside of it) that links to ... Anonymous
10:39 PM Feature #10065 (Closed): Update wizard.php?xml=traffic_shaper_wizard*.xml to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at wizard.php?xml=traffic_shaper_wizard*.xml, there is a help button (circle with question mark inside of ... Anonymous
10:38 PM Feature #10064 (Closed): Update firewall_shaper_wizards.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_shaper_wizards.php, there is a help button (circle with question mark inside of it) that links... Anonymous
10:38 PM Feature #10063 (Closed): Update firewall_shaper_vinterface.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_shaper_vinterface.php, there is a help button (circle with question mark inside of it) that li... Anonymous
10:38 PM Feature #10062 (Closed): Update firewall_shaper_queues.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_shaper_queues.php, there is a help button (circle with question mark inside of it) that links ... Anonymous
10:38 PM Feature #10061 (Closed): Update firewall_shaper.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_shaper.php, there is a help button (circle with question mark inside of it) that links to the ... Anonymous
10:37 PM Feature #10060 (Closed): Update firewall_schedule_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_schedule_edit.php, there is a help button (circle with question mark inside of it) that links ... Anonymous
10:37 PM Feature #10059 (Closed): Update firewall_schedule.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_schedule.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:37 PM Feature #10058 (Closed): Update firewall_rules_edit.php?id= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_rules_edit.php?id=, there is a help button (circle with question mark inside of it) that links... Anonymous
10:37 PM Feature #10057 (Closed): Update firewall_rules.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_rules.php, there is a help button (circle with question mark inside of it) that links to the p... Anonymous
10:36 PM Feature #10056 (Closed): Update firewall_nat_npt_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_nat_npt_edit.php, there is a help button (circle with question mark inside of it) that links t... Anonymous
10:36 PM Feature #10055 (Closed): Update firewall_nat_npt.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_nat_npt.php, there is a help button (circle with question mark inside of it) that links to the... Anonymous
10:36 PM Feature #10054 (Closed): Update firewall_nat_out_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_nat_out_edit.php, there is a help button (circle with question mark inside of it) that links t... Anonymous
10:35 PM Feature #10053 (Closed): Update firewall_nat_out.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_nat_out.php, there is a help button (circle with question mark inside of it) that links to the... Anonymous
10:35 PM Feature #10052 (Closed): Update firewall_nat_1to1_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_nat_1to1_edit.php, there is a help button (circle with question mark inside of it) that links ... Anonymous
10:35 PM Feature #10051 (Closed): Update firewall_nat_1to1.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_nat_1to1.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:35 PM Feature #10050 (Closed): Update firewall_nat_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_nat_edit.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:34 PM Feature #10049 (Closed): Update firewall_nat.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_nat.php, there is a help button (circle with question mark inside of it) that links to the pub... Anonymous
10:34 PM Feature #10048 (Closed): Update firewall_aliases_import.php?tab=all to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases_import.php?tab=all, there is a help button (circle with question mark inside of it) th... Anonymous
10:34 PM Feature #10047 (Closed): Update firewall_aliases_edit.php?tab=all to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases_edit.php?tab=all, there is a help button (circle with question mark inside of it) that... Anonymous
10:34 PM Feature #10046 (Closed): Update firewall_aliases_edit.php?tab=url to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases_edit.php?tab=url, there is a help button (circle with question mark inside of it) that... Anonymous
10:32 PM Feature #10045 (Closed): Update firewall_aliases.php?tab=url to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases.php?tab=url, there is a help button (circle with question mark inside of it) that link... Anonymous
10:32 PM Feature #10044 (Closed): Update firewall_aliases_import.php?tab=port to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases_import.php?tab=port, there is a help button (circle with question mark inside of it) t... Anonymous
10:32 PM Feature #10043 (Closed): Update firewall_aliases_edit.php?tab=port to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases_edit.php?tab=port, there is a help button (circle with question mark inside of it) tha... Anonymous
10:32 PM Feature #10042 (Closed): Update firewall_aliases.php?tab=port to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases.php?tab=port, there is a help button (circle with question mark inside of it) that lin... Anonymous
10:31 PM Feature #10041 (Closed): Update firewall_aliases_import.php?tab=ip to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases_import.php?tab=ip, there is a help button (circle with question mark inside of it) tha... Anonymous
10:24 PM Feature #10040 (Closed): Update firewall_aliases_edit.php?tab=ip to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases_edit.php?tab=ip, there is a help button (circle with question mark inside of it) that ... Anonymous
10:24 PM Feature #10039 (Closed): Update firewall_aliases.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at firewall_aliases.php, there is a help button (circle with question mark inside of it) that links to the... Anonymous
10:23 PM Feature #10038 (Closed): Update interfaces_lagg_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_lagg_edit.php, there is a help button (circle with question mark inside of it) that links to... Anonymous
10:23 PM Feature #10037 (Closed): Update interfaces_lagg.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_lagg.php, there is a help button (circle with question mark inside of it) that links to the ... Anonymous
10:23 PM Feature #10036 (Closed): Update interfaces_bridge_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_bridge_edit.php, there is a help button (circle with question mark inside of it) that links ... Anonymous
10:22 PM Feature #10035 (Closed): Update interfaces_bridge.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_bridge.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:22 PM Feature #10034 (Closed): Update interfaces_gif_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_gif_edit.php, there is a help button (circle with question mark inside of it) that links to ... Anonymous
10:22 PM Feature #10033 (Closed): Update interfaces_gif.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_gif.php, there is a help button (circle with question mark inside of it) that links to the p... Anonymous
10:22 PM Feature #10032 (Closed): Update interfaces_gre_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_gre_edit.php, there is a help button (circle with question mark inside of it) that links to ... Anonymous
10:21 PM Feature #10031 (Closed): Update interfaces_gre.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_gre.php, there is a help button (circle with question mark inside of it) that links to the p... Anonymous
10:21 PM Feature #10030 (Closed): Update interfaces_ppps_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_ppps_edit.php, there is a help button (circle with question mark inside of it) that links to... Anonymous
10:21 PM Feature #10029 (Closed): Update interfaces_ppps.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_ppps.php, there is a help button (circle with question mark inside of it) that links to the ... Anonymous
10:20 PM Feature #10028 (Closed): Update interfaces_qinq.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_qinq_edit.php, there is a help button (circle with question mark inside of it) that links to... Anonymous
10:20 PM Feature #10027 (Closed): Update interfaces_qinq.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_qinq.php, there is a help button (circle with question mark inside of it) that links to the ... Anonymous
10:20 PM Feature #10026 (Closed): Update interfaces_vlan_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_vlan_edit.php, there is a help button (circle with question mark inside of it) that links to... Anonymous
10:19 PM Feature #10025 (Closed): Update interfaces_vlan.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_vlan.php, there is a help button (circle with question mark inside of it) that links to the ... Anonymous
10:19 PM Feature #10024 (Closed): Update interfaces_wireless_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_wireless_edit.php, there is a help button (circle with question mark inside of it) that link... Anonymous
10:19 PM Feature #10023 (Closed): Update interfaces_wireless.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_wireless.php, there is a help button (circle with question mark inside of it) that links to ... Anonymous
10:18 PM Feature #10022 (Closed): Update interfaces_groups_edit.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_groups_edit.php, there is a help button (circle with question mark inside of it) that links ... Anonymous
10:18 PM Feature #10021 (Closed): Update interfaces_groups.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_groups.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:17 PM Feature #10020 (Closed): Update interfaces_groups.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_groups.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:17 PM Feature #10019 (Closed): Update interfaces.php?if= to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces.php?if=, there is a help button (circle with question mark inside of it) that links to the p... Anonymous
10:17 PM Feature #10018 (Closed): Update interfaces_assign.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at interfaces_assign.php, there is a help button (circle with question mark inside of it) that links to th... Anonymous
10:16 PM Feature #10017 (Closed): Update system_advanced_sysctl.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at system_advanced_notifications.php, there is a help button (circle with question mark inside of it) that... Anonymous
10:16 PM Feature #10016 (Closed): Update system_advanced_sysctl.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at system_advanced_sysctl.php, there is a help button (circle with question mark inside of it) that links ... Anonymous
10:16 PM Feature #10015 (Closed): Update system_advanced_misc.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at system_advanced_misc.php, there is a help button (circle with question mark inside of it) that links to... Anonymous
10:15 PM Feature #10014 (Closed): Update system_advanced_network.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at system_advanced_network.php, there is a help button (circle with question mark inside of it) that links... Anonymous
10:15 PM Feature #10013 (Closed): Update system_advanced_network.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at system_advanced_network.php, there is a help button (circle with question mark inside of it) that links... Anonymous
10:15 PM Feature #10012 (Closed): Update system_advanced_firewall.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at system_advanced_firewall.php, there is a help button (circle with question mark inside of it) that link... Anonymous
10:14 PM Feature #10011 (Closed): Update system_advanced_admin.php to include a link to The pfSense Book, rather than the community maintained documentation: Presently, at system_advanced_admin.php, there is a help button (circle with question mark inside of it) that links t... Anonymous
10:13 PM Feature #10010 (Resolved): Update infoblock on the Dashboard to include a link to The pfSense Book, rather than the community maintained documentation: Presently, on the Dashboard, there is a help button (circle with question mark inside of it) that links to the public... Anonymous
10:04 PM pfSense Docs New Content #10009 (Closed): Feedback on System Monitoring: *Page:* https://docs.netgate.com/pfsense/en/latest/book/monitoring/index.html
*Feedback:* Please add a section sim... Anonymous
09:43 PM pfSense Docs New Content #10008 (Closed): Feedback on IPsec: *Page:* https://docs.netgate.com/pfsense/en/latest/book/ipsec/index.html
*Feedback:* Please add a section similar ... Anonymous
09:06 PM pfSense Docs New Content #10007 (Closed): Feedback on Services — Dynamic DNS: *Page:* https://docs.netgate.com/pfsense/en/latest/services/dyndns/index.html
*Feedback:* Add equivalent informati... Anonymous
08:32 PM pfSense Docs Correction #10006 (Closed): Feedback on Backup and Recovery — Using the AutoConfigBackup Package: *Page:* https://docs.netgate.com/pfsense/en/latest/backup/autoconfigbackup.html
*Feedback:* Legacy gold is expired... Anonymous
04:04 PM pfSense Docs Correction #10005 (Closed): Feedback on Installing and Upgrading — Upgrading pfSense Software Installations: *Page:* https://docs.netgate.com/pfsense/en/latest/install/upgrading-pfsense-software-installations.html
*Feedback... Anonymous
03:49 PM pfSense Docs Correction #10004 (Closed): Feedback on Packages: *Page:* https://docs.netgate.com/pfsense/en/latest/book/packages/index.html
*Feedback:* There is a note about Nano... Anonymous
03:13 PM Bug #9819 (Resolved): Captive portal: Change order redirect page is selected: Jim Pingle
12:25 PM Bug #9819: Captive portal: Change order redirect page is selected: this issue can be marked as resolved A FL
03:13 PM pfSense Packages Bug #10003 (Duplicate): Visiting VPN > Apple IPsec Profile renders the navigation dropdown buttons useless: Duplicate of #8502 Jim Pingle
03:05 PM pfSense Packages Bug #10003 (Duplicate): Visiting VPN > Apple IPsec Profile renders the navigation dropdown buttons useless: On pfSense 2.4.5.a.20191227.1746, running ipsec-profile-wizard v0.12, when the user visits VPN > Apple IPsec Profile,... Anonymous
02:35 PM pfSense Packages Bug #9811 (Resolved): apcupsd - can not set BATTERYLEVEL and MINUTES to -1 although these are valid values: Tested apcupsd version 0.3.91_8, works as expected. Anonymous
01:56 PM Revision 3ae60408: cosmetic: Viktor Gurov
01:41 PM Revision 1f8e92a3: strip hash algo if ealgo == *gcm: Viktor Gurov
11:02 AM Revision 988e6c59: fix route delete code: Viktor Gurov
10:52 AM pfSense Packages Feature #10002 (Closed): allow to use lo0 interface for web-server: By default pfBlocker uses LAN interface for internal web-server and VIP alias, and do not allow to use Loopback for i... Viktor Gurov
10:32 AM Revision 853c97a7: fix route delete code: Viktor Gurov
08:33 AM Bug #10001: incorrect route deletion on 2.5: no such issue on clean FreeBSD 12.1
need to test on clean FreeBSD 12.0
is there any special patches in pfSense 2.... Viktor Gurov
05:13 AM Bug #10001: incorrect route deletion on 2.5: https://github.com/pfsense/pfsense/pull/4142 Viktor Gurov
05:11 AM Bug #10001 (Resolved): incorrect route deletion on 2.5: All code that uses “delete route” must use the full format with GW, i.e.
incorrect:... Viktor Gurov
07:48 AM Feature #9726: Hash Algorithm configured on child ESP/AH proposals using AES GCM though strongswan strips them: https://github.com/pfsense/pfsense/pull/4143 Viktor Gurov
02:28 AM Bug #6868: Interface MTU Setting not applied to all IPv6 routes: https://github.com/pfsense/pfsense/pull/4141 Viktor Gurov

12/27/2019

07:48 AM pfSense Packages Bug #9635 (Resolved): lldpd (and probably ladvd) doesn't work on units with an integrated switch: no such issue on SG-3100 with pfSense 2.4.4-p3
lldpd updated to version 1.0.4 on 2.4.5/2.5
tested on pfSense ... Viktor Gurov
01:38 AM pfSense Packages Feature #9523: LADVD: Feature to enable setting interface descriptions: https://github.com/pfsense/FreeBSD-ports/pull/731 Viktor Gurov
01:06 AM pfSense Packages Bug #9273 (Closed): missing Include=/usr/local/etc/zabbix4/zabbix_agentd.conf.d in /usr/local/etc/zabbix40/zabbix_agentd.conf: You can manually add line ... Viktor Gurov

12/26/2019

11:58 PM pfSense Packages Bug #8139 (Resolved): LADVD not working on LAGG interfaces: ladvd updated to 1.1.2 on pfSense 2.4.5 and 2.5
tested on pfSense 2.5.0.a.20191226.0326 and 2.4.5.a.20191209.0732
... Viktor Gurov
01:28 PM Feature #10000: Enable ``@`` support for Azure in Dynamic DNS: *Left off test steps:
When an @ is provided, invalid character error is thrown in UI
When an empty field is provi... Ty Mote
01:27 PM Feature #10000 (Resolved): Enable ``@`` support for Azure in Dynamic DNS: Unable to provide "@" or empty string for hostname field in the Azure DNS dynamic DNS setup. Any other record works c... Ty Mote
12:25 PM Feature #9996 (Resolved): fix Help -> pfSense book link: This has been fixed on the pfsense.org server. Thanks Viktor, for taking the time to point out the problem and submit... Jared Dillard
10:19 AM pfSense Packages Feature #9217: Squid LDAP Authentication - spaces in ldif values: https://github.com/pfsense/FreeBSD-ports/pull/729 Viktor Gurov
09:20 AM Bug #9840 (Resolved): PHP7: Uninitialised array in upgrade_config.inc: Jim Pingle
08:17 AM Revision 16ed1347: fix vti localid hiding in WebGUI: Viktor Gurov
05:47 AM pfSense Packages Feature #9563: Syslog-ng TLS support: https://github.com/pfsense/FreeBSD-ports/pull/728 Viktor Gurov
02:21 AM Bug #9720: vpn_ipsec_phase2.php - no remote network field in VTI mode: https://github.com/pfsense/pfsense/pull/4140 Viktor Gurov
01:41 AM Bug #9790 (Resolved): firewall aliases table with fqdn stays in system after deleting: Viktor Gurov
12:17 AM pfSense Packages Bug #9676: AS lookup fails: for some reason all online AS databases shows zero prefixes for this AS:
https://api.hackertarget.com/aslookup/?q=AS... Viktor Gurov

12/25/2019

11:59 PM pfSense Packages Bug #9750: squidguard_blacklist.php & squidguard_log.php wrong status icon link: https://github.com/pfsense/FreeBSD-ports/pull/727 Viktor Gurov
03:04 PM Bug #7609: NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: Running 2.4.4-RELEASE-p3 (amd64). robi robi
03:03 PM Bug #7609: NTP Status not parsing all NTP Access Restrictions preventing status display when it is actually allowed: Can anyone share the solution/patch for this?
We're using pfSense as a GPS-based NTP server which is part of pool.nt... robi robi
08:10 AM pfSense Packages Bug #9999: unbound fatal error if System Domain in DNSBL and System Domain Local Zone Type is Redirect: https://github.com/pfsense/FreeBSD-ports/pull/726 Viktor Gurov
12:22 AM pfSense Packages Bug #9999 (New): unbound fatal error if System Domain in DNSBL and System Domain Local Zone Type is Redirect: On System / General Setup I have configured <MYHOST> as hostname and mywire.org (dynu.com dyndns provider) as domain ... Viktor Gurov
05:36 AM Feature #9878 (Resolved): IPsec PKCS#11 authentication: Renato Botelho wrote:
> PR has been merged. Thanks!
tested on pfSense 2.5.0.a.20191223.2203 with Yubikey 4 (FIPS)... Viktor Gurov
02:42 AM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: Is there any update here? Apparently there has been a fix available for over 2 years? Jason NA
02:05 AM Bug #9840: PHP7: Uninitialised array in upgrade_config.inc: tested on pfSense 2.4.5.a.20191209.0732
no any crash reports
Resolved Viktor Gurov

12/24/2019

02:00 PM Bug #9567: Unbound DNS Resolver does not start up when using IPv6 DHHCPv6 WAN DHCPv6 LAN coupled with v6 Prefix Delegation: Jim -- Further analysis done, and studying interfaces changes during boot (those initially assigned), and later throu... Eric Veum
01:57 PM Bug #9998 (Resolved): DHCP6c and Unbound DNS Server Boot-Up Configuration Failure: When running my router with ‘Track Interface’ and dual IPv4/IPv6, using unbound as a local DNS server bound to only i... Eric Veum

12/23/2019

07:58 PM Revision 1f53547a: Fix syntax error in services_dyndns_edit.php, reformat statement.: (cherry picked from commit 1c11171b19ee8cabcbdaa5ffa433238033c510a2) Jim Pingle
04:38 PM Bug #9997 (Not a Bug): WAN connection dropping: There isn't nearly enough information here to suggest that it's a bug in pfSense. Please post on the forum and be sur... Jim Pingle
02:43 PM Bug #9997 (Not a Bug): WAN connection dropping: After WAN connection setting change, even changing in same state.
WAN connection stay jumping between 0.0.0.0 and ri... Mika Pirinen
04:31 PM Bug #8051 (Resolved): XG-2758 - Wrong Interface Assignment: Jim Pingle
12:30 PM Bug #8051: XG-2758 - Wrong Interface Assignment: Here's what I get with a recent 2.4.5 memstick ADI CE install:
Netgate XG-2758 - Serial: Redacted - Netgate Device... Chris Linstruth
09:27 AM Feature #9996: fix Help -> pfSense book link: This needs fixed on the server (In pfsense.org/j.php) Jim Pingle
09:03 AM Feature #9996: fix Help -> pfSense book link: https://github.com/pfsense/pfsense/pull/4139 Viktor Gurov
06:01 AM Feature #9996 (Resolved): fix Help -> pfSense book link: Help -> pfSense Book points to https://www.pfsense.org/j.php?jumpto=book,
which redirects to https://www.netgate.co... Viktor Gurov
08:47 AM Feature #9995 (Duplicate): PFSense as DHCP Server for non routed Networks: Duplicate of #2323 Jim Pingle
03:09 AM Feature #9995 (Duplicate): PFSense as DHCP Server for non routed Networks: Hi pfsense Team
I wan't to implement a Layer 3 Switch for routing my VLANs. As DHCP Server should PFsense act.
So t... Stefan Bühler
08:46 AM pfSense Packages Bug #9994 (Rejected): Siproxd can not working: There isn't enough information here to suggest that it's a bug in pfSense, rather than a limitation in siproxd. There... Jim Pingle
01:02 AM pfSense Packages Bug #9994 (Rejected): Siproxd can not working: User voip not registration through the siproxd when amount user equal or bigger 130 user quoctu nguyen

12/22/2019

05:01 PM Bug #9804: services_captiveportal.php: Image upload does not validate file type: I tested this and was unable to upload a small php script named phpinfo.gif into the picture widget.
I also tried ... Chris Linstruth
04:23 PM Bug #9938 (Resolved): Queue stats parser broken if bytes > 9999999999: Jim Pingle
04:21 PM Bug #9938: Queue stats parser broken if bytes > 9999999999: Status_queues looks fine here:
[ pkts: 90492841 bytes: 71051952021 dropped pkts: 82974 bytes: 62613863 ]
... Chris Linstruth
04:23 PM Bug #9447 (Resolved): Configuring LAGG at XG-7100 Switch Ports Broken: Jim Pingle
03:13 PM Bug #9447: Configuring LAGG at XG-7100 Switch Ports Broken: Setting 7 and 8 to lagg group 1 results in:
laggroup0:
members 9,10
laggroup1:
members 7,8
Setting 5 and 6 t... Chris Linstruth
04:23 PM Bug #9548: Do not use VLANMTU flag to decide if interface supports to run VLAN: The only way to really try it is to track down a bit of hardware that didn't allow VLANs before, but does now.
But... Jim Pingle
02:06 PM Bug #9548: Do not use VLANMTU flag to decide if interface supports to run VLAN: Evaluated this but could not figure out how to test it in the negative sense. Tried to make existing NICs drop the VL... Chris Linstruth
04:21 PM Bug #9668 (Resolved): Running /etc/rc.newipsecdns breaks FRR BGP on VTI interfaces: Jim Pingle
01:42 PM Bug #9668: Running /etc/rc.newipsecdns breaks FRR BGP on VTI interfaces: In addition to using this patch on a couple of customer sites with success, I just specifically tested this again bet... Chris Linstruth
07:13 AM Bug #9992: CCP: parameter negotiation failed: Thanks for looking at this, however, I'm not alone. Please see the forum: https://forum.netgate.com/topic/147120/malf... simon lock
07:06 AM Bug #9993: invalid cipher specified in ipsec config: What seems to fix it is toggling between ciphers (switch to aes in both duplicated tabs, save,edit again, select init... Florin Samareanu
06:58 AM Bug #9993 (Duplicate): invalid cipher specified in ipsec config: Seems something broke in latest 2.5.0 dev. Configuring ipsec p1 using aes-128-gcm and xcbc leads to this:
Dec 22 1... Florin Samareanu

12/21/2019

03:39 PM Bug #9992 (Rejected): CCP: parameter negotiation failed: There isn't anything here to suggest this is an actionable bug in pfSense. Please post on the forum for assistance wi... Jim Pingle
01:08 PM Bug #9992 (Rejected): CCP: parameter negotiation failed: I am interconnecting via L2TP PFSense Over AWS to my Local GW. The connection is OK, as I try to move very large file... MMaxymo Mora
10:32 AM Bug #9991 (Rejected): wol sends invalid data 2.4.4-p3: I can't reproduce this. I tried on 2.4.4-p3, 2.4.5, and 2.5.0. A proper WOL packet was shown in Wireshark each time. ... Jim Pingle
08:47 AM Bug #9991 (Rejected): wol sends invalid data 2.4.4-p3: When issuing a wol command from pfsense to a pc running wireshark (directly connected and not via a switch) the corru... simon lock
09:12 AM Bug #9873 (Resolved): Switching the System Update to Development renders the system unbootable: Jim Pingle
05:34 AM Bug #9873: Switching the System Update to Development renders the system unbootable: tested on pfSense 2.4.5.a.20191220.1407
Resolved Viktor Gurov
09:12 AM Bug #9924 (Resolved): crl_contains_cert() does not correctly report revoked status for intermediate CAs: Jim Pingle
05:29 AM Bug #9924: crl_contains_cert() does not correctly report revoked status for intermediate CAs: tested on pfSense 2.5.0.a.20191220.1354
works as expected,
Resolved Viktor Gurov
09:09 AM Bug #9296 (Resolved): Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: Jim Pingle
01:11 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: Jim Pingle wrote:
> Needs checked and/or tested again on 2.4.5 snapshots
tested on pfSense 2.4.5.a.20191220.1407
... Viktor Gurov
09:09 AM pfSense Packages Bug #9962 (Resolved): HAproxy Upgrade needed HTTP/2 CVE-2019-19330: Jim Pingle
12:43 AM pfSense Packages Bug #9962: HAproxy Upgrade needed HTTP/2 CVE-2019-19330: Jim Pingle wrote:
> The packages will show up on 2.4.4 immediately, they are already there:
> [...]
>
> For 2.4.... Viktor Gurov
09:08 AM Bug #9674 (Resolved): hidden OpenVPN settings are validated and written to file: Jim Pingle
12:38 AM Bug #9674: hidden OpenVPN settings are validated and written to file: tested on pfSense 2.4.5.a.20191220.1407
works as expected,
Resolved Viktor Gurov
09:08 AM Bug #9292 (Resolved): Default route as indicated by "(Default)" does not match the actual default route on the OS.: Jim Pingle
12:24 AM Bug #9292: Default route as indicated by "(Default)" does not match the actual default route on the OS.: Jim Pingle wrote:
> Needs checked and/or tested again on 2.4.5 snapshots
tested on pfSense 2.4.5.a.20191220.1407
... Viktor Gurov
09:08 AM Bug #9969 (Resolved): static route remain in the OS routing table after deletion: Jim Pingle
12:04 AM Bug #9969: static route remain in the OS routing table after deletion: tested on pfSense 2.4.5.a.20191220.1407
works, Resolved Viktor Gurov
09:08 AM Bug #8907 (Resolved): wizard.php - $field['type'] - "Select" doesn't have the attribute "Size" defined: Jim Pingle
12:03 AM Bug #8907: wizard.php - $field['type'] - "Select" doesn't have the attribute "Size" defined: tested on pfSense 2.4.5.a.20191220.1407
Resolved Viktor Gurov
09:07 AM Todo #9245: Update copyright notices to 2020: Those are all pulled in from non-base packages built from the freebsd-ports repository, too.
They do need updated,... Jim Pingle
12:33 AM Todo #9245: Update copyright notices to 2020: Jim Pingle wrote:
> That's a package, this issue only covers the base OS.
tested on pfSense 2.4.5.a.20191220.1407... Viktor Gurov
05:17 AM pfSense Packages Bug #9807 (Resolved): Packets Monitoring graphs are being incorrectly scaled: tested on pfSense 2.4.5.a.20191220.1407
works,
Resolved Viktor Gurov
03:59 AM Bug #9349: IPSec service start/stop/restart fails after settings change: works fine on pfSense 2.5.0.a.20191220.0438
with Chromium 78.0.3904.108 and Firefox 68.2 Viktor Gurov
03:35 AM Bug #9483: UFS filesystem is not being mounted noatime.: force noatime mount option:
https://github.com/pfsense/pfsense/pull/4138 Viktor Gurov

12/20/2019

10:18 PM Feature #9970: Captive Portal and SAML2 Integration: The PR is actually great but it would be better to integrate SAML auth mechanism with the user manager A FL
06:52 PM Revision 7cafdb92: Fix manual backup flag: (cherry picked from commit 0bdd1774a1666852e35452ea3f17bb9dc075ecec) Steve Beaver
04:04 PM Revision 64031495: Update copyright notice years. Issue #9245: Jim Pingle
03:18 PM Bug #9977: Enabling Captive Portal on 2.4.5 breaks network connectivity: Luiz is looking into this one Jim Pingle
03:15 PM pfSense Packages Feature #9973 (New): Nagios NRPE package isn't IPv6 capable: That PR didn't turn out to be necessary. IPv6 addresses are accepted in the GUI already. If they are rejected for you... Jim Pingle
02:46 PM Bug #9582 (Resolved): PHP error setting up VLANs from the console: No errors on 2.4.5.a.20191220.0501 when starting with the stated problem config. Jim Pingle
02:42 PM Bug #9801 (Resolved): VTI IPv6 addresses don't get assigned: VTI IPv6 is assigned as expected and works on 2.4.5.a.20191220.0501... Jim Pingle
02:40 PM Feature #9111 (Resolved): Add IPsec VTI interface MTU support: VTI MTU is applied as expected and survives reboot on 2.4.5.a.20191220.0501 Jim Pingle
02:28 PM Bug #9781 (Resolved): Fix IPsec VTI interface creation logic: VTI interfaces are created as expected when creating a tunnel and at reboot.
2.4.5.a.20191220.0501
Jim Pingle
02:27 PM Revision 47799389: check that revokeserial is not empty: Viktor Gurov
02:23 PM Bug #9258 (Resolved): Error deleting tunnel type P2 when mixed with VTI: Deleting a "tunnel" type P2 when a VTI P2 exists is now allowed as expected.
2.4.5.a.20191220.0501
Jim Pingle
02:11 PM Revision ff0b9aff: check every value for ASN.1: Viktor Gurov
02:04 PM Revision 8471df75: fixed incorrect serial checking: Viktor Gurov
01:46 PM Revision bcb5dfad: Merge pull request #4136 from vktg/hidecertexppass: Renato Botelho
01:40 PM Bug #9243 (Resolved): IPsec ID type keyid not explicitly set: Keyid now has the appropriate prefix, and works as expected on 2.4.5.a.20191220.0501... Jim Pingle
01:31 PM pfSense Packages Bug #9220 (Resolved): STunnel: Tunnel list does not show certificate: Looks good on stunnel 5.50_4 Jim Pingle
07:44 AM pfSense Packages Bug #9220 (Feedback): STunnel: Tunnel list does not show certificate: PR has been merged. Thanks! Renato Botelho
01:25 PM Todo #9245: Update copyright notices to 2020: That's a package, this issue only covers the base OS. Jim Pingle
10:16 AM Todo #9245: Update copyright notices to 2020: 2.4.5 looks OK, still had some stragglers on 2.5.0. Jim Pingle
01:24 PM Bug #9558 (Resolved): GPS NTP source PHP errors: I've unplugged/replugged the GPS and stopped/started NTPD in various combinations while watching the status, no PHP e... Jim Pingle
01:18 PM Bug #6846 (Resolved): System misreporting Super Micro C2558 platform as Super Micro C2758: No response from the OP after the fix was committed. Looks OK to me. Jim Pingle
01:10 PM Bug #9584 (Resolved): Potential XSS in services_acb.php via hostname parameter with legacy settings: The affected code has been completely removed from 2.4.5 and later, so this has become moot. Jim Pingle
01:02 PM Revision 67b49e4c: hide exportpass field on cert import: Viktor Gurov
12:54 PM Feature #9693 (Feedback): Bypass automatic backups: Cherry picked commit:0bdd1774a1666852e35452ea3f17bb9dc075ecec which fixed it on master.
I tested the @NoReMoTeBaCk... Jim Pingle
12:50 PM Feature #9693 (In Progress): Bypass automatic backups: Manual backups with a reason entered by the user aren't getting the correct string appended, so MaNuAlBaCkUp is showi... Jim Pingle
11:49 AM Bug #9961 (Resolved): status_upnp: UPnP status not showing rules when using override WAN address option: UPnP rules show as expected in both scenarios now, with and without the customized external address.
2.4.5.a.2019122... Jim Pingle
11:48 AM pfSense Packages Bug #9652: Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: Looks like the new program called 'security_file_certgen' replace ssl_crtd in the latest version of squid.
Exist 1 ... Peter Moreno
10:32 AM pfSense Packages Bug #9652: Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: Hello
I modified squid.inc adding security_file_certgen instead ssl_crtd (PF ver 2.4.5) but the result is:... Stefano Mereghetti
10:35 AM Feature #9285 (Resolved): Add an option to disable the ping-check in dhcpd: Option is now present in the GUI and appears to work as expected on a per-subnet basis.
2.4.5.a.20191220.0501
Jim Pingle
10:31 AM pfSense Packages Bug #9986: Squid package Transparent Mode MITM: This issue is closed since it was a duplicate report of another issue. If you have information to add, add it as a co... Jim Pingle
10:30 AM pfSense Packages Bug #9986: Squid package Transparent Mode MITM: Hello
I modified squid.inc in my installation 2.4.5 but the result is:... Stefano Mereghetti
10:30 AM Bug #9150 (Resolved): Web authentication RADIUS package shows PHP error if unable to resolve FQDN of RADIUS server: I still was not able to reproduce this, even on 2.4.4-p3, but it all works as expected on 2.4.5. Auth appears to fail... Jim Pingle
10:05 AM pfSense Packages Feature #9982: basic_ldap_auth TLS connection: updated:
https://github.com/pfsense/FreeBSD-ports/pull/725 Viktor Gurov
10:02 AM Bug #6195 (Resolved): Cannot set Manual Outbound NAT when Language is pt_BR: When set to pt_BR, I can now save manual outbound NAT as expected and it sticks. Jim Pingle
09:53 AM Feature #9966 (Resolved): allow to disable APIPA blocking: Option is present and works as expected on 2.4.5.a.20191220.0501 Jim Pingle
03:38 AM Feature #9966 (Feedback): allow to disable APIPA blocking: PR has been merged. Thanks! Renato Botelho
09:52 AM Feature #9256 (Resolved): adjust frequency of geom rebuild notifications.: Tested on 2.4.5.a.20191220.0501, notifications only happened at status change, 25/50/75/100% as expected. Jim Pingle
09:37 AM Revision e3ad0988: cosmetic: (cherry picked from commit f1c43228ab62ffae24dd6059049d2d03dbee10a8) Viktor Gurov
09:37 AM Revision 9ba3d307: fix: (cherry picked from commit 2edf9abaacbecbc173262bccc8d797b9553096ca) Viktor Gurov
09:37 AM Revision 02d79fcc: allow to disable APIPA blocking: (cherry picked from commit 09b6735d1c936ad7962d66af17a32f8a0bb9f9ed) Viktor Gurov
09:37 AM Revision b7144f55: Merge pull request #4128 from vktg/disableapipa: Renato Botelho
08:21 AM Bug #9779 (Resolved): Dynamic DNS class constructor uses deprecated function name: Other DynDNS tests have passed. If this was going to be a problem, DynDNS would be completely broken by it. Jim Pingle
08:19 AM pfSense Packages Feature #9989: Add FreeBSD port and pfSense plugin for HoneyTrap: Might be something we could consider but I do not like the idea of running a service like this on a firewall. Deliber... Jim Pingle
08:08 AM pfSense Packages Feature #9989 (Rejected): Add FreeBSD port and pfSense plugin for HoneyTrap: Ezri Mudde
08:16 AM Bug #9053 (Resolved): Dynamic DNS will not allow Route 53 wildcard record: Thanks for testing! Jim Pingle
08:14 AM Bug #9053: Dynamic DNS will not allow Route 53 wildcard record: Tested in a current snapshot of 2.4.5 and was able to create a Route53 wildcard entry Tom Embt
08:09 AM Feature #3258 (Pull Request Review): Allow multiple certificates to be revoked in a single step: Jim Pingle
08:07 AM Feature #3258: Allow multiple certificates to be revoked in a single step: tested on pfSense 2.5.0.a.20191220.0438
invalid input validation, multiple serials not allowed
fixed:
https://gi... Viktor Gurov
08:06 AM Bug #9361: Cloudflare Not Allowing "*" Hostname Entry in Dynamic DNS: That is likely a good enough test, but I'll hold this open for a bit yet in case someone can do a functional test aga... Jim Pingle
08:05 AM Bug #9361: Cloudflare Not Allowing "*" Hostname Entry in Dynamic DNS: Testing in a current 2.4.5 snapshot. I don't have a Cloudflare account to see if the update happens, but the pfSense... Tom Embt
08:05 AM Bug #9271 (Resolved): Azure DDNS whitespace cleanup: Thanks for testing! Jim Pingle
08:01 AM Bug #9271: Azure DDNS whitespace cleanup: This looks good to me in the latest snapshot of 2.4.5. This has no functional changes but formatting appears correct... Tom Embt
08:04 AM Feature #3792 (Resolved): Group name size limit too restrictive on Active Directory Users: Works as expected on 2.4.5.a.20191218.2354
Long group names are allowed when adding or editing a group set to Remo... Jim Pingle
08:02 AM Bug #9541 (Resolved): Non-admin user with admin rights is given the wrong URL for the user manager: Works as expected on 2.4.5.a.20191218.2354
Jim Pingle
07:57 AM Feature #9268 (Resolved): Add Linode Dynamic DNS support: Thanks for testing! Jim Pingle
07:55 AM Feature #9268: Add Linode Dynamic DNS support: This is working correctly for me in the latest snapshot of 2.4.5 Tom Embt
07:46 AM Feature #1192 (Feedback): Certificate Manager - Ability to Encrypt Private Keys When Exporting: PR merged Renato Botelho
07:18 AM Feature #1192 (Pull Request Review): Certificate Manager - Ability to Encrypt Private Keys When Exporting: Jim Pingle
07:04 AM Feature #1192: Certificate Manager - Ability to Encrypt Private Keys When Exporting: works ok, but it should hide exportpass field on non-edit (certificate import) page:
https://github.com/pfsense/pfse... Viktor Gurov
07:41 AM Bug #9984 (Resolved): PHP error in 2.4.5 services_dyndns_edit.php: Thanks for testing! Jim Pingle
07:41 AM Bug #9984: PHP error in 2.4.5 services_dyndns_edit.php: Can confirm - the issue is fixed in a newer snapshot Tom Embt
07:32 AM pfSense Packages Bug #9988 (Duplicate): Squid - SSL Inspection: Duplicate of #9652 Jim Pingle
05:31 AM pfSense Packages Bug #9988 (Duplicate): Squid - SSL Inspection: Hello
with 2.4.5 snapshot, I tried to enable SSL inspection using an OLD CA and a new CA.
The result is:... Stefano Mereghetti
07:25 AM pfSense Packages Bug #9962: HAproxy Upgrade needed HTTP/2 CVE-2019-19330: The packages will show up on 2.4.4 immediately, they are already there:... Jim Pingle
06:14 AM pfSense Packages Bug #9962: HAproxy Upgrade needed HTTP/2 CVE-2019-19330: pfSense find it =) DRago_Angel [InV@DER]
06:02 AM pfSense Packages Bug #9962: HAproxy Upgrade needed HTTP/2 CVE-2019-19330: Renato Botelho wrote:
> 2.0.10 / 1.8.23 and 1.7 .12 were pushed to proper branches
Thanks, how can I trigger upgr... DRago_Angel [InV@DER]
05:56 AM pfSense Packages Bug #9962 (Feedback): HAproxy Upgrade needed HTTP/2 CVE-2019-19330: 2.0.10 / 1.8.23 and 1.7 .12 were pushed to proper branches Renato Botelho
03:49 AM pfSense Packages Bug #9962 (In Progress): HAproxy Upgrade needed HTTP/2 CVE-2019-19330: Renato Botelho
07:19 AM Feature #7861 (Resolved): Make "Descriptive name" of certificates editable: Jim Pingle
06:38 AM Feature #7861: Make "Descriptive name" of certificates editable: tested on pfSense 2.5.0.a.20191219.1908
works, Resolved Viktor Gurov
07:19 AM Feature #4068 (Resolved): CAs present on CERT manager are not trusted from pfSense: Jim Pingle
06:44 AM Feature #4068: CAs present on CERT manager are not trusted from pfSense: tested on pfSense 2.5.0.a.20191219.1908
works, Resolved Viktor Gurov
07:18 AM Bug #9979 (Resolved): status_ipsec.php missing information: Jim Pingle
06:47 AM Bug #9979: status_ipsec.php missing information: tested on pfSense 2.5.0.a.20191220.0438
Rekey timer (only reauth is printed) - ok
Encryption algorithm key size (... Viktor Gurov
07:17 AM pfSense Packages Feature #9875 (Resolved): add extra engines safe search: The note is correct when I just installed the package, and it's correct in all the right branches of the repository. ... Jim Pingle
12:22 AM pfSense Packages Feature #9875: add extra engines safe search: Renato Botelho wrote:
> PR has been merged. Thanks!
Tested on pfSense 2.5.0.a.20191219.1908 with squidGuard 1.16.... Viktor Gurov

12/19/2019

10:44 PM pfSense Packages Todo #9392: Status_Traffic_Totals needs updated for vnstat 2.0: Affects both 2.5.0 and 2.4.5 Jim Pingle
10:44 PM pfSense Packages Bug #9987 (Duplicate): Bug #9759 from 2.5 is repro'ing on 2.4.5 as well: Duplicate of #9392 Jim Pingle
09:58 PM pfSense Packages Bug #9987 (Duplicate): Bug #9759 from 2.5 is repro'ing on 2.4.5 as well: I'm guessing the same new version of vnstat is now also being used on 2.4.5 and so the vnstat -u command no longer wo... Richard Powell
08:35 PM pfSense Packages Bug #9652: Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: This will need picked back to RELENG_2_4_5 when merged. Jim Pingle
08:35 PM pfSense Packages Bug #9986 (Duplicate): Squid package Transparent Mode MITM: Duplicate of #9652 Jim Pingle
08:10 PM pfSense Packages Bug #9986 (Duplicate): Squid package Transparent Mode MITM: This issue is related to squid version 4.9.x, this new version no longer use ssl_crtd now is called 'security_file_ce... Peter Moreno
07:38 PM Revision 96701431: Fix #9285: Move ping-check option from global to per-subnet: (cherry picked from commit 5197e3e3a3b0ee048785e2ffb4222d7cba4e6c74) Renato Botelho
07:38 PM Revision 0e0797a1: use disablepingcheck as option name: (cherry picked from commit a0541b292d4cde76b9e95c1d8cbd99f5f26afee5) Arthur Wiebe
07:38 PM Revision 583433e5: add an option to the DHCP server to disable the ping check feature: (cherry picked from commit 7847e55fa2cd5813adb1ee4aa888b694957109b9) Arthur Wiebe
07:37 PM Revision c11240ac: Revert "Fix #9285: Move ping-check option from global to per-subnet": This reverts commit 9133e01dc049920d716b045a86e78a9a05d98354. Jim Pingle
07:18 PM Revision 8f58f8e5: Update copyright notice years. Issue #9245: Jim Pingle
07:09 PM Revision 21aaa00b: Update copyright notice years. Issue #9245: Jim Pingle
03:50 PM Revision 6df12a8e: Add Gandi LiveDNS DynDNS client.: (cherry picked from commit edfe22f8bae894eb678f3e7060cc91cea6f664da) Eric VANTILLARD
03:50 PM Revision e248f02f: Add back inadvertently removed line: (cherry picked from commit 946238ef46e766e46392b7b9aed444cbc3a43909) Jim Pingle
03:50 PM Revision 0d6be361: Fix syntax error in services_dyndns_edit.php, reformat statement.: (cherry picked from commit 1c11171b19ee8cabcbdaa5ffa433238033c510a2) Jim Pingle
03:32 PM Bug #9466 (Resolved): DHCP (IPv4) relay mistakenly listening on upstream interface: Runs as expected with the new correct parameters on 2.4.5.a.20191218.2354 Jim Pingle
03:32 PM Bug #8443 (Resolved): DHCP relay not starting after ovpnc interface is unchecked - vm 2.4.3: As expected, OpenVPN interfaces are not available for selection in DHCP Relay on 2.4.5.a.20191218.2354 Jim Pingle
03:02 PM Feature #7537 (Resolved): Include mellanox mlx4 and mlx5 ethernet driver: Drivers are in the kernel on 2.4.5.a.20191218.2354... Jim Pingle
03:00 PM Bug #9543 (Resolved): diag_dns.php: Reverse lookup of IPv6 fails with "Host must be a valid hostname or IP address.": Works as expected on 2.4.5.a.20191218.2354
Jim Pingle
01:41 PM Feature #9285 (Feedback): Add an option to disable the ping-check in dhcpd: Should be OK now:
* commit:c11240ac15bfeb65f5ceec4173223f9b7ab9b39b
* commit:583433e5a69aae9b997057c650b8fcf1a9db... Jim Pingle
01:36 PM Feature #9285 (In Progress): Add an option to disable the ping-check in dhcpd: It looks like the main part of this PR was not picked back, only a later commit
PR link: https://github.com/pfsens... Jim Pingle
01:32 PM Bug #9684 (Resolved): System Notifications: Asterisks over writing current password causing notifications to stop working.: Looks OK on 2.4.5.a.20191219.0146 Jim Pingle
01:31 PM Feature #9620 (Resolved): User privilege to manage integrated switch: Privilege is present and works as expected on 2.4.5.a.20191219.0146 Jim Pingle
01:26 PM Todo #9245 (Feedback): Update copyright notices to 2020: Updated those (and more I found) here and in factory. Should all be set now. Jim Pingle
01:05 PM Todo #9245 (New): Update copyright notices to 2020: Still lots of files in the 2.4.5 branch with old years:... Jim Pingle
01:23 PM Feature #3473 (Resolved): Allow configuration of OpenVPN keepalive: Options are present and appear to work as intended.
2.4.5.a.20191218.2354
Jim Pingle
01:22 PM Bug #7359 (Resolved): Status/OpenVPN Page Sorts Incorrectly: Sort order looks good on 2.4.5.a.20191218.2354
Jim Pingle
01:22 PM Feature #9078 (Resolved): Investigate adding knobs for explicit-exit-notify in OpenVPN: Options are present and appear to work as intended.
2.4.5.a.20191218.2354
Jim Pingle
01:14 PM Bug #9234 (Resolved): Wording consistency in Certificate Management notifications: Errors are correct on 2.4.5.a.20191218.2354
Jim Pingle
01:01 PM Bug #9259 (Resolved): User with "Deny Config Write" privilege is not fully prevented from creating accounts: Works as expected on 2.4.5.a.20191218.2354
GUI user is not presented with options to add an account. If they do ma... Jim Pingle
12:57 PM Bug #9327 (Resolved): Using the character "¤" in OpenVPN password field creates invalid config.xml: The problem password saves as expected on 2.4.5.a.20191218.2354 -- Field is CDATA protected and does not result in an... Jim Pingle
12:53 PM Bug #9407 (Resolved): Update jQuery to current version (3.3.1 or later): 3.4.1 is present on 2.4.5.a.20191218.2354, no problems observed so far. Can reopen or open new issues if JS problems ... Jim Pingle
12:51 PM Bug #9550 (Resolved): New privilege matching method does not allow menu or tab links to anchors (#foo): Privileges work as expected in the stated scenario on 2.4.5.a.20191218.2354 Jim Pingle
12:49 PM Feature #9590 (Resolved): RFE: Add additional prefix delegation size entries to dropdown-list: The additional delegation sizes are present on 2.4.5.a.20191218.2354
Jim Pingle
12:44 PM Bug #9767 (Resolved): Interesting Traffic Will not Initiate an IPsec VTI tunnel.: Close Action option is present in the GUI and is working as expected in 2.4.5.a.20191218.2354
Jim Pingle
12:29 PM Bug #9782 (Resolved): XMLRPC auth error message format is inconsistent with GUI auth error message: Error message is correct on 2.4.5.a.20191219.0146 Jim Pingle
12:26 PM Bug #9780 (Resolved): PHP warning in diag_dump_states.php: Works as expected on 2.4.5.a.20191219.0146 Jim Pingle
12:23 PM Bug #9851 (Resolved): PHP error in logs: No sign of this error during upgrade or any time after on multiple 2.4.5 systems. Jim Pingle
12:23 PM Bug #9898 (Resolved): DNS over TLS hostname verification does not save: Works as expected on 2.4.5.a.20191219.0146 Jim Pingle
12:23 PM Bug #9963 (Resolved): DNS servers assigned dynamically are omitted if also assigned manually when override is disallowed: Works as expected on 2.4.5.a.20191219.0146 Jim Pingle
11:57 AM Todo #9976 (Resolved): strongswan: Update to 5.8.2: ... Jim Pingle
10:50 AM Feature #9985 (Resolved): Build virtio_console.ko: Hello,
Please include the virtio_console.ko kernel module, it's needed by the qemu-guest-agent (open-vm-tools of t... Nux Ro
10:12 AM Bug #9971: sshguard error: Logging subprocess <pid> (exec /usr/local/sbin/sshguard) exited with status 1.: Since 2.4.5 is still using clog, at least there the only option appears to be patching out the error/exit. Jim Pingle
10:02 AM Bug #9984 (Feedback): PHP error in 2.4.5 services_dyndns_edit.php: Jim Pingle
09:54 AM Bug #9984: PHP error in 2.4.5 services_dyndns_edit.php: I applied all the missing commits from master (including the ones you mentioned, plus commit:edfe22f8bae894eb678f3e70... Jim Pingle
09:38 AM Bug #9984 (In Progress): PHP error in 2.4.5 services_dyndns_edit.php: Jim Pingle
09:05 AM Bug #9984: PHP error in 2.4.5 services_dyndns_edit.php: Seen in:
2.4.5-DEVELOPMENT (amd64)
built on Wed Dec 18 23:54:57 EST 2019 Tom Embt
09:03 AM Bug #9984 (Resolved): PHP error in 2.4.5 services_dyndns_edit.php: RELENG_2_4_5 has a PHP syntax error when trying to add a Dynamic DNS client (just clicking the green Add button will ... Tom Embt
09:54 AM Feature #9452: Add Gandi LiveDNS DynDNS client.: I picked this back as a part of fixing #9984 Jim Pingle
07:41 AM Feature #8786: Wireguard VPN: Thats sad, I really hope WireGuard could be implemented in pfSense as soon as possible. The performance and security ... Ter Ted

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

01/17/2020

01/16/2020

01/15/2020

01/14/2020

01/13/2020

01/12/2020

01/11/2020

01/10/2020

01/09/2020

01/08/2020

01/07/2020

01/06/2020

01/05/2020

01/04/2020

01/03/2020

01/02/2020

01/01/2020

12/31/2019

12/30/2019

12/28/2019

12/27/2019

12/26/2019

12/25/2019

12/24/2019

12/23/2019

12/22/2019

12/21/2019

12/20/2019

12/19/2019