Project

General

Profile

Activity

From 07/06/2020 to 08/04/2020

08/04/2020

11:24 AM pfSense Packages Bug #10815 (Pull Request Review): FRR with SNMP AgentX option failed to start
Jim Pingle
11:21 AM pfSense Packages Bug #10815: FRR with SNMP AgentX option failed to start
FRR SNMP module for 2.4.5 branch:
https://github.com/pfsense/pfsense/pull/4418 Viktor Gurov
11:02 AM pfSense Packages Bug #10815 (Resolved): FRR with SNMP AgentX option failed to start
https://forum.netgate.com/topic/155795/frr-0-6-7_3-enable-snmp-agentx
frr for pfSense 2.4.5-p1 doesn't have snmp m... Viktor Gurov
10:17 AM Bug #7132: PPPoE IP Alias
PPPoE requires a destination address:... Viktor Gurov
09:02 AM Bug #7379: Virtual IPs/Proxy ARP: Not defined pid file on starting choparp.
aLexander Panfilov wrote:
> New Bug after applying the patch:
> There are several PoxyARP VIPs. Open one of them to... Viktor Gurov
08:35 AM Bug #8156 (Pull Request Review): Prefix not being included in DNS entry registered by DHCP6 server
Jim Pingle
03:36 AM Bug #8156: Prefix not being included in DNS entry registered by DHCP6 server
https://github.com/pfsense/pfsense/pull/4416 Viktor Gurov
08:33 AM Bug #9097 (Pull Request Review): ECL can't locate config.xml unless device is MBR-partitioned
Jim Pingle
02:29 AM Bug #9097: ECL can't locate config.xml unless device is MBR-partitioned
https://github.com/pfsense/pfsense/pull/4415 Viktor Gurov
08:21 AM Bug #10814 (Needs Patch): OpenVPN UDP multihome fails when connecting to an IP that is not logically closest.
Jim Pingle
08:16 AM Bug #10814 (Needs Patch): OpenVPN UDP multihome fails when connecting to an IP that is not logically closest.
If you connect to the external WAN IP from an OpenVPN client on an internal interface of a pfSense install running an... Steve Wheeler
02:51 AM Feature #3559 (Resolved): add option for backup ddns ( dynamic dns ) in restore area
works as expected on 2.5.0.a.20200803.1850 Viktor Gurov

08/03/2020

03:51 PM Bug #10813: Dashboard - dynamic CPU speed element disappears and reappears [cosmetic / annoying]
OK, that makes some amount of sense to me. But it still results in the text in the dashboard regularly shifting up an... Braden McGrath
03:36 PM Bug #10813 (Not a Bug): Dashboard - dynamic CPU speed element disappears and reappears [cosmetic / annoying]
It's done that way on purpose because it's redundant to show the CPU speed when it's at maximum, since the max CPU sp... Jim Pingle
03:32 PM Bug #10813 (Not a Bug): Dashboard - dynamic CPU speed element disappears and reappears [cosmetic / annoying]
I've only tested this on 2.4.5-p1 but I believe it's been around for a while. I am on amd64 arch, with an Atom C2558.... Braden McGrath
12:30 PM Feature #10807: Allow users to show advanced log filter by default in Status->System Logs->Firewall
Jim Pingle wrote:
> Already possible. System > General, check "Log Filter". Also possible in per-user settings.
S... e 1/1
10:01 AM Feature #10807 (Rejected): Allow users to show advanced log filter by default in Status->System Logs->Firewall
Already possible. System > General, check "Log Filter". Also possible in per-user settings. Jim Pingle
12:27 PM Feature #10808: System logs->Firewall->Advanced Log Filter - more UI functionality for choosing interfaces
Jim Pingle wrote:
> Doing a drop down is not going to scale well and also prevent users from using things like regex... e 1/1
10:11 AM Feature #10808 (Rejected): System logs->Firewall->Advanced Log Filter - more UI functionality for choosing interfaces
Doing a drop down is not going to scale well and also prevent users from using things like regex in the box to match ... Jim Pingle
11:14 AM Bug #10812 (Resolved): Traffic graph shows 2X the actual traffic on VLAN interfaces.
#3314 is back again on, as of today, latest snapshot... Nano Caiordo
10:26 AM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels
Side 1: IKEv2, Rekey configured, Reauth disabled, child SA close action set to restart/reconnect
Side 2: IKEv2, Reke... Jim Pingle
08:04 AM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels
So is there a final, required set of baseline versions and recommended configuration which can do into the docs? Or ... Izaac Falken
10:22 AM Feature #10635 (Pull Request Review): status.php: Add DNS Resolver configuration
Jim Pingle
08:29 AM Feature #10811 (Closed): Randomize time of scheduled AutoConfigBackup runs
It looks like the backup server is becoming occasionally overloaded on the hour because all backups around the world ... Chris Linstruth
04:59 AM Bug #10792: Crash when switching interface off and on again in cohesion with multicast
I did retest interface stability. The situation is much better now. I can not reproduce crashes any more. Louis B
04:57 AM Feature #10747 (Resolved): Captive Portal IDN hostname support
works as expected on 2.5.0.a.20200802.1850 Viktor Gurov
01:33 AM pfSense Packages Bug #10763 (Resolved): Incorrect link to frr_bgp.xml
menu entry link is OK in the latest FRR pkg Viktor Gurov

08/02/2020

10:05 PM Bug #10810 (Rejected): LoadBalancer Virtual Servers Edit web form does not allow entry of Port Alias text
The built-in load balancer has been deprecated. It has already been removed from 2.5.0, it will not receive further d... Jim Pingle
10:01 PM Bug #10810 (Rejected): LoadBalancer Virtual Servers Edit web form does not allow entry of Port Alias text
Edit Load Balancer - Virtual Server Entry web form problem.
Trying to enter in a port alias as directed, however, on... Patrick Best
01:19 PM Bug #10671: pfsense 2.4.5_1 does not boot on Gen2 2012R2 HyperV VM
The old kernel can be booted as Jan stated by entering
boot kernel.old
when system is stuck in bootloader.
M... Ernesto Rey
12:30 PM Bug #10671: pfsense 2.4.5_1 does not boot on Gen2 2012R2 HyperV VM
Stumbled into the same issue. Ernesto Rey
09:40 AM Feature #10635: status.php: Add DNS Resolver configuration
https://github.com/pfsense/pfsense/pull/4413 Viktor Gurov
04:01 AM Bug #10758 (Closed): Group Authentication is never used
see fix in #10748 Viktor Gurov
02:47 AM Feature #2358: NAT64 support
IPFW NAT64 kernel support:
https://github.com/pfsense/FreeBSD-src/pull/35 Viktor Gurov
12:18 AM Bug #10803: Invalid rules generated from AVPair on OpenVPN
also fixed in #10454 Viktor Gurov

08/01/2020

06:25 AM pfSense Packages Feature #10809 (Resolved): IDS/IPS - Notifications when new rule categories are released
Please allow users to enable system notifications when new rule categories appear.
As IDS rules are not enabled as t... e 1/1
04:40 AM Feature #10808 (Rejected): System logs->Firewall->Advanced Log Filter - more UI functionality for choosing interfaces
In Status->System Logs->Firewall->Normal View and Dynamic View please improve the "Interface" field in the Advanced L... e 1/1
04:31 AM Feature #10807 (Rejected): Allow users to show advanced log filter by default in Status->System Logs->Firewall
Please add an option for Status->System Logs->Firewall so that when one opens either "Normal View" or "Dynamic View",... e 1/1

07/31/2020

05:51 PM Bug #10806 (Resolved): armada_thermal fails during device_attach
SG-3100 is unable to read the temperature from sysctl, as the oid doesn't exist, because the driver fails to attach d... Daniel Gordon
03:13 PM Feature #10805 (New): Intel QAT (QuickAssist) encryption support for PfSense
Please consider adding Intel QAT (QuickAssist) acceleration to PfSense. Nearly all of Netgate's hardware supports it ... Adam Goldberg
01:25 PM Bug #10800: Multi WAN Load Balancing does not work on 2.5.0.a.20200729.0650
Dmitry Fill wrote:
> Version: 2.5.0.a.20200729.0650
>
> Tried to follow documentation to setup multi WAN with Lo... Adam Goldberg
12:17 PM Feature #8786: Wireguard VPN
Take as much time as you need to get it right. I would rather have a stable, in-kernel implementation than a buggy, ... Soren Stoutner
11:57 AM Feature #8786: Wireguard VPN
There certainly is reason. We're working on the in-kernel implementation and won't be wasting our time on unstable us... Jim Pingle
11:44 AM Feature #8786: Wireguard VPN
wireguard-go exists on FreeBSD. While it may not be in-kernel, it's a userspace implementation from the same project.... Anonymous
10:29 AM Bug #10803 (Pull Request Review): Invalid rules generated from AVPair on OpenVPN
Jim Pingle
03:49 AM Bug #10803: Invalid rules generated from AVPair on OpenVPN
Pull request: https://github.com/pfsense/pfsense/pull/4411 Marius Rejdak
03:44 AM Bug #10803 (Resolved): Invalid rules generated from AVPair on OpenVPN
AVPair rule:
ip:inacl#1=permit ip 10.1.0.0 255.255.0.0 10.2.0.0 255.255.0.0 range 8000 8001
Expected rule:
pass ... Marius Rejdak
08:56 AM pfSense Plus Feature #10804: Interface Status page information for switch uplinks may be replaced by switch port data when media state monitoring is set
Fixing the subject and adding some notes:
This happens if "Switch Port" on Interfaces > LAN (or whichever interfac... Jim Pingle
08:49 AM pfSense Plus Feature #10804 (Resolved): Interface Status page information for switch uplinks may be replaced by switch port data when media state monitoring is set
Like in #10793#note-9 written status->interface for mvneta1 shows mixed data from mvneta1 and switch port 1.
Make ... Grischa Zengel
08:26 AM Bug #10793: SNMP: Netgate SG-3100 shows wrong speed
I agree, it's not a bug.
I forgot that this switch config for tracking ports exists because I only used it once at f... Grischa Zengel
06:33 AM Bug #7020 (Feedback): <Hostname> is omitted when sending logs on syslog
An RFC 5424 option was added to 2.5.0 almost a year ago, you can test it there: #9808 Jim Pingle
02:47 AM Bug #7020: <Hostname> is omitted when sending logs on syslog
Jim Pingle wrote:
> If it's a bug, it's a bug in FreeBSD -- we use their syslogd and that's how it behaves. The defa... Darren Spruell

07/30/2020

05:56 PM Feature #10802 (New): Seperator for DHCP Static Mapped leases
It may be nice to allow the similar separator functionality from the firewall rules page, on the status_dhcp_leases.p... Daniel Johnson
04:20 PM Bug #10800: Multi WAN Load Balancing does not work on 2.5.0.a.20200729.0650
Thank you Jim. I got redirected here after clicking link "Give Feedback" on documentation section of "Multiple WAN Co... Dmitry Fill
07:38 AM Bug #10800 (Rejected): Multi WAN Load Balancing does not work on 2.5.0.a.20200729.0650
There is not enough information here to rule out a configuration issue or a problem with your test methodology. This ... Jim Pingle
12:32 AM Bug #10800 (Rejected): Multi WAN Load Balancing does not work on 2.5.0.a.20200729.0650
Version: 2.5.0.a.20200729.0650
Tried to follow documentation to setup multi WAN with Load Balancing
1. Two WAN... Dmitry Fill
03:13 PM Bug #10793: SNMP: Netgate SG-3100 shows wrong speed
That doesn't happen by default. You probably selected "Port 1" as the switch port to monitor under Interfaces > LAN_1... Jim Pingle
03:06 PM Bug #10793: SNMP: Netgate SG-3100 shows wrong speed
No, no problem.
But you said mvneta1 is always at 2500MBit but pfsense shows 100MBit like picture 2020-07-30 21-24... Grischa Zengel
02:55 PM Bug #10793: SNMP: Netgate SG-3100 shows wrong speed
"LAN Uplink" is mvneta1. The others are the individual switch ports, not mvneta* interfaces.
With the built-in bsn... Jim Pingle
02:29 PM Bug #10793: SNMP: Netgate SG-3100 shows wrong speed
It looks like it reflects speed from 1st switch port or max link speed on switch.
!2020-07-30 21-24-58.png!
!2020... Grischa Zengel
01:43 PM Bug #10793: SNMP: Netgate SG-3100 shows wrong speed
Grischa Zengel wrote:
> Is this relevant?
> mvneta1 supports only 2500MBit but connects with 100MBit.
I do not s... Jim Pingle
01:39 PM Bug #10793 (Resolved): SNMP: Netgate SG-3100 shows wrong speed
Looks good now.... Jim Pingle
02:24 PM Bug #10801 (Not a Bug): Send mail on gw down
Not nearly enough information here to say it's a bug, and this site is not for support or diagnostic discussion.
F... Jim Pingle
02:18 PM Bug #10801 (Not a Bug): Send mail on gw down
Hi.
I used to get email when gw was offline. For example pppoe dropped, gw went down and I got an email.
Now on 2... Greg M
02:19 PM Bug #10773: if_em VLAN interfaces wont pass traffic after reboot
Looks like this fix was just MFCed to 12-stable under MFC r362063. So it should be fixed next time pfSense is rebased. Steve Harrington
11:17 AM Bug #10799: Dynamic DNS auto update
My bad. It is indeed not a bug. The dynamic DNS feature reacts to change of IP on some interface, not on the registra... Ike Doz
07:47 AM Bug #10799: Dynamic DNS auto update
Sorry about that, I posted in the forum. Ike Doz
07:37 AM Bug #10799 (Not a Bug): Dynamic DNS auto update
This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
07:34 AM Bug #10795 (Pull Request Review): WebGUI "Dashboard -> Services Status" widget issue
Jim Pingle

07/29/2020

04:40 PM Bug #10799 (Not a Bug): Dynamic DNS auto update
I have already asked reddit.com/r/pfsense and IRC but I couldn't solve my issue so I am asking here.
I have set up... Ike Doz
12:02 PM Bug #10793 (Feedback): SNMP: Netgate SG-3100 shows wrong speed
Fixed.
Please test with the next snapshot. Luiz Souza
10:10 AM Bug #10798 (Pull Request Review): Unable to save CP zone named 'VIP'
Jim Pingle
09:59 AM Bug #10798: Unable to save CP zone named 'VIP'
https://github.com/pfsense/pfsense/pull/4410 Viktor Gurov
08:49 AM Bug #10798: Unable to save CP zone named 'VIP'
It's because the zone name is used as an XML tag in the config, but "vip" is a listtag, meaning it gets treated like ... Jim Pingle
08:40 AM Bug #10798: Unable to save CP zone named 'VIP'
config.xml after creating 'VIP' zone:... Viktor Gurov
07:18 AM Bug #10798 (Resolved): Unable to save CP zone named 'VIP'
https://forum.netgate.com/topic/155549/captive-portal-settings-not-saved:
I did more tests, tried to add several cap... Viktor Gurov
08:45 AM Bug #10797 (Pull Request Review): status.php: Sanitize MaxMind GeoIP key
Jim Pingle
07:12 AM Bug #10797: status.php: Sanitize MaxMind GeoIP key
https://github.com/pfsense/pfsense/pull/4409 Viktor Gurov
05:27 AM Bug #10797 (Resolved): status.php: Sanitize MaxMind GeoIP key
maxmind_geoipdb_key - Suricata
maxmind_key - pfBlockerNG, NTOPNG Viktor Gurov
08:42 AM Bug #10594 (Pull Request Review): add QLogic 10 Gigabit Ethernet driver (qlxgb) to the ALTQ-capable list
Jim Pingle
02:26 AM Bug #10594: add QLogic 10 Gigabit Ethernet driver (qlxgb) to the ALTQ-capable list
Correct interface name is 'qlX':
https://github.com/pfsense/pfsense/pull/4408 Viktor Gurov
08:41 AM Bug #10794 (Pull Request Review): HAProxy Stats page credentials are not redacted in status.php
Jim Pingle
02:12 AM Bug #10794: HAProxy Stats page credentials are not redacted in status.php
Sanitize stats_password:
https://github.com/pfsense/pfsense/pull/4407 Viktor Gurov
08:40 AM pfSense Packages Feature #10796 (Pull Request Review): Huawei ME909u-521 support
Jim Pingle
01:00 AM pfSense Packages Feature #10796: Huawei ME909u-521 support
https://github.com/pfsense/FreeBSD-ports/pull/898 Viktor Gurov
01:00 AM pfSense Packages Feature #10796 (Feedback): Huawei ME909u-521 support
Add Huawei ME909u-521 Viktor Gurov
08:11 AM pfSense Packages Feature #10347: Request to add pull-filter
Discussion about --route-nopull:
https://sourceforge.net/p/openvpn/mailman/openvpn-devel/thread/4B3OgL3j077iDP_MhneR... Pippin MMD
04:36 AM Bug #10784 (Feedback): HA-sync with ssh keys
Unable to reproduce it on 2.4.5-p1 and 2.5.0.a.20200728.1850 HA clusters, ~/.ssh directory owner is OK
Please give u... Viktor Gurov
12:45 AM Bug #9796: kernel panic after removing interfaces
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=248243 Viktor Gurov

07/28/2020

04:04 PM Bug #10793: SNMP: Netgate SG-3100 shows wrong speed
Is this relevant?
mvneta1 supports only 2500MBit but connects with 100MBit.... Grischa Zengel
10:54 AM Bug #10793: SNMP: Netgate SG-3100 shows wrong speed
I was able to reproduce this in both bsnmpd and net-snmp, looks like neither one likes the 2.5G uplink speed.
<pre... Jim Pingle
05:55 AM Bug #10793 (Resolved): SNMP: Netgate SG-3100 shows wrong speed
I use check_nwc_health for monitoring network interfaces and it shows always over usage (>100%) on interface mvneta1.... Grischa Zengel
11:33 AM Bug #10795: WebGUI "Dashboard -> Services Status" widget issue
Jim Pingle wrote:
> Can you submit that change as a pull request on Github?
https://github.com/pfsense/pfsense/pu... Mikhail Burichenko
10:18 AM Bug #10795: WebGUI "Dashboard -> Services Status" widget issue
Can you submit that change as a pull request on Github?
https://docs.netgate.com/pfsense/en/latest/development/sub... Jim Pingle
09:35 AM Bug #10795 (Resolved): WebGUI "Dashboard -> Services Status" widget issue
If i use FQDN in description of openvpn service, the description line will be truncated after the first dot because:
... Mikhail Burichenko
10:59 AM Bug #8820: System/Advanced/Misc - "Do not kill connections when schedule expires" UN-checked still leaves existing connections open.
See also: #9615 and #10790 Jim Pingle
10:59 AM Bug #9615 (Duplicate): Connections permitted by a schedule are not killed when that schedule expires.
Duplicate of #8820 Jim Pingle
10:59 AM Bug #10790 (Duplicate): States aren't killed after schedule expires
Duplicate of #8820 Jim Pingle
08:28 AM Bug #10794 (Resolved): HAProxy Stats page credentials are not redacted in status.php
The status_output file generated by status.php does not redact the HAProxy stats page login details:... Steve Wheeler
03:40 AM Bug #10792 (New): Crash when switching interface off and on again in cohesion with multicast
Hello,
There are still crashes when switching off and on (vlan)interfaces. One of those crashes seems to be trigge... Louis B
03:27 AM pfSense Packages Bug #10791 (New): Valid (vlan)interfaces do not get vif reporting "Invalid phyint address"
Hello,
PIMD still not properly working. So I opened tow FeeBSD Bugs. This one is FreeBSD bug 248103.
Also see ht... Louis B
03:12 AM pfSense Packages Bug #10692: PIMD starts twice at boot
Despite that this issue has state "Fixed". it is _*not fixed at all !!*_ So please "reopen" this bug! Louis B

07/27/2020

09:57 PM Bug #10790 (Duplicate): States aren't killed after schedule expires
I have several rules that allow traffic for a certain amount of time (say, 8am-10pm). That rule is immediately follow... John Pozzoli
11:53 AM pfSense Packages Feature #10789 (Feedback): FRR integrated configuration and hitless reloads
Convert FRR to use an integrated configuration file and use frr-reload where possible for hitless configuration chang... Ben Hughes
10:15 AM Bug #9796: kernel panic after removing interfaces
I do have a reproducible bug when switching interfaces off and on. I did open FreeBSD Bugzilla – Bug 248243. I did ad... Louis B
08:31 AM Feature #1337: VLANs with different MAC address than parent interface
I'm not sure that setting the interface in promiscuous mode is the right thing to do here. There will be performance... Luiz Souza
07:43 AM pfSense Packages Bug #10788 (Rejected): ntopng not displaying graphs correctly. Bottom of graphs getting cut off.
That's an issue between ntopng and your browser, not in code we have any control over. If you can still reproduce it ... Jim Pingle

07/26/2020

03:04 PM Feature #6626: Support for IPv6 firewall entries with dynamic delegated prefix and static host address
Hello,
we are also in dire need of this feature. Lack of support for dynamic prefixes makes IPv6 pretty much unusa... Mike Murdoch
11:43 AM pfSense Packages Bug #10788 (Rejected): ntopng not displaying graphs correctly. Bottom of graphs getting cut off.
ntopng graphs are getting cut off where I can not see the time on historical graphs.
To duplicate, I go to Hosts M... Hector Gongora

07/25/2020

10:21 AM Feature #1337: VLANs with different MAC address than parent interface
It's possible to do this by editing /etc/inc/interfaces.inc and adding the lines below, but it would be nice if it co... Wik Joh
12:41 AM pfSense Docs Correction #10787 (Resolved): Feedback on Services — DNS — Performing a DNS Lookup
*Page:* https://docs.netgate.com/pfsense/en/latest/diagnostics/dns.html
*Feedback:* Does not explain the function ... Joseph McGuirl

07/24/2020

12:17 PM Feature #10786 (Rejected): Remotely change gateway priority
There is no reasonable way to accommodate this without a proper API, and that's a much longer-term project.
If you... Jim Pingle
11:50 AM Feature #10786 (Rejected): Remotely change gateway priority
We would like to remotely change the Gateway Priority of a gateway. We have a gateway group and often times we need t... Emmanuel Sedas
09:54 AM Bug #10773: if_em VLAN interfaces wont pass traffic after reboot
PR submitted.
https://github.com/pfsense/FreeBSD-src/pull/34 Steve Harrington
09:09 AM pfSense Packages Feature #10785 (Pull Request Review): Allow Setting of ldapcachetime
Jim Pingle
09:01 AM pfSense Packages Feature #10785: Allow Setting of ldapcachetime
OK, done:
https://github.com/pfsense/FreeBSD-ports/pull/913 Jan Wenzel
08:01 AM pfSense Packages Feature #10785: Allow Setting of ldapcachetime
Please create a pull request in github, that process is much easier for us to review and approve for inclusion. Thanks! Jim Pingle
07:55 AM pfSense Packages Feature #10785 (Resolved): Allow Setting of ldapcachetime
We're using Squid/Squidguard with many (!) ldap based group filters.
This does not scale because squidguard does n... Jan Wenzel
05:10 AM Bug #10784 (Closed): HA-sync with ssh keys
I have two pfsense boxes configured in HA sync. Synchronisation is performed by a seperate user named "ha-sync" with ... Mark De Souza

07/23/2020

10:41 PM Bug #7656: TypeError: n is undefined JavaScript error in status_monitoring.php
I root caused this pretty far as described in this post:
https://forum.netgate.com/post/926097
The step property ... Shaun Currier

07/22/2020

01:44 PM pfSense Packages Bug #10771 (Pull Request Review): arpwatch: option to not send hourly email notification on cron run
Jim Pingle
05:59 AM pfSense Packages Bug #10771: arpwatch: option to not send hourly email notification on cron run
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/912
see also #8454 Viktor Gurov
01:44 PM pfSense Packages Bug #10770 (Pull Request Review): arpwatch: cannot remove email once it has been entered into settings
Jim Pingle
05:58 AM pfSense Packages Bug #10770: arpwatch: cannot remove email once it has been entered into settings
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/912 Viktor Gurov
01:37 PM pfSense Packages Feature #10779 (Pull Request Review): HAProxy SSL/TLS Compatibility Mode
Jim Pingle
02:05 AM pfSense Packages Feature #10779: HAProxy SSL/TLS Compatibility Mode
https://github.com/pfsense/FreeBSD-ports/pull/911 Viktor Gurov
12:46 PM Feature #2358: NAT64 support
Viktor Gurov wrote:
> https://github.com/pfsense/pfsense/pull/4405
Better late than never :-) We switched to Juni... Dmitri Toubelis
12:20 PM Feature #2358 (Pull Request Review): NAT64 support
Jim Pingle
12:25 AM Feature #2358: NAT64 support
https://github.com/pfsense/pfsense/pull/4405 Viktor Gurov
09:07 AM pfSense Packages Bug #10783 (Closed): NtopNG is very unstable on arm64
NtopNG will start and run after being initially configured even though this error:... Steve Wheeler

07/21/2020

10:24 PM Bug #7656: TypeError: n is undefined JavaScript error in status_monitoring.php
I believe this is related to my issue here that I can reliably reproduce in 2.4.5-RELEASE-p1.
https://forum.netgat... Shaun Currier
04:34 PM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries
Should the status on this be changed? It says resolved. Brendon Baumgartner
03:16 PM pfSense Docs Correction #10778 (Closed): Feedback on Virtual LANs (VLANs) — pfSense VLAN Configuration
Cela a été corrigé, merci! Jared Dillard
02:53 PM pfSense Docs Correction #10778: Feedback on Virtual LANs (VLANs) — pfSense VLAN Configuration
Translation:
> I am submitting this capture for correction, as I noticed that the igb2 interface is chosen as the ... Jared Dillard
03:13 PM pfSense Docs Correction #10782 (Closed): Outdated pfSense logo is still in use
*Page:* https://docs.netgate.com/pfsense/en/latest/routing/static.html
*Feedback:* A couple diagrams still use the... Jared Dillard
03:06 PM pfSense Docs Correction #10777 (Closed): SG-1100 Product Page mentions HA support
I removed the reference to HA. Thanks! Jared Dillard
10:40 AM Bug #10780 (Pull Request Review): net.inet.ip.dummynet.* values are ignored
Jim Pingle
06:37 AM Bug #10780: net.inet.ip.dummynet.* values are ignored
https://github.com/pfsense/pfsense/pull/4403
see also #6553 Viktor Gurov
06:34 AM Bug #10780 (Resolved): net.inet.ip.dummynet.* values are ignored
If you set any net.inet.ip.dummynet.* values on the System / Advanced / System Tunables page,
they are ignored becau... Viktor Gurov
10:10 AM Bug #10781 (Pull Request Review): Incorrect env variables if admin user logged in via ssh
Jim Pingle
10:08 AM Bug #10781: Incorrect env variables if admin user logged in via ssh
https://github.com/pfsense/pfsense/pull/4404 Viktor Gurov
09:41 AM Bug #10781 (Resolved): Incorrect env variables if admin user logged in via ssh
How to reproduce:
1. ssh in as *admin*@
2. menu entries 16/11
after that running 'echo <any_command> | su -m <an... Viktor Gurov
03:08 AM Bug #10584: SG-3100 with M.2: shutdown instead of reboot
ZTE MF833V USB LTE modem is also used.
reboot from single mode:
https://www.youtube.com/watch?v=1djHrVdG8tg
 Viktor Gurov

07/20/2020

05:40 PM Bug #9413 (Feedback): VLAN driver missing ALTQ support
ALTQ support committed to 2.5 branch.
Please test with the next snapshot. Luiz Souza
02:56 PM Bug #9647 (Resolved): hn0: driver does not support altq
Luiz Souza
02:02 PM pfSense Packages Bug #10775 (Pull Request Review): pfblockerNG SBL_ADs and hpHosts are not reachable anymore
Jim Pingle
03:57 AM pfSense Packages Bug #10775: pfblockerNG SBL_ADs and hpHosts are not reachable anymore
*Remove:*
Abuse Ransomware Tracker:... Viktor Gurov
01:46 AM pfSense Packages Bug #10775: pfblockerNG SBL_ADs and hpHosts are not reachable anymore
Comments:
https://forums.malwarebytes.com/topic/258056-hosts-filenet-domain-lists-are-broken-what-happened/
https:/... Viktor Gurov
02:01 PM pfSense Packages Feature #10769 (Pull Request Review): Prevent users from creating new ACMEv1 keys
Jim Pingle
12:59 PM Bug #9663 (Resolved): panic on boot when IPv6 option "Do not wait for a RA" is enabled
Renato Botelho
12:30 PM Bug #9663: panic on boot when IPv6 option "Do not wait for a RA" is enabled
I can confirm that the issue is gone with 2.5
Can be closed. Michael Geiger
12:02 PM pfSense Packages Feature #10779 (Resolved): HAProxy SSL/TLS Compatibility Mode
Allow to select SSL/TLS Compatibility Mode in the same manner as Squid SSL Proxy Compatibility Mode option.
Interm... Viktor Gurov
11:05 AM Bug #10772 (Not a Bug): Firewall Rules Lan to Floating Rules
This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
05:27 AM Bug #10772: Firewall Rules Lan to Floating Rules
Hi,
Wrong way, floating block rule have disconnect my lan rules.
D. V. David Verhaeghe
11:03 AM Bug #10776 (Feedback): filterlog: Loopback source/destination sometimes reports 127.0.0.1 as 127.0.01
Bertram,
Can you check and confirm that the form of the address you see in the log is not present on your interfac... Jim Pingle
10:46 AM Bug #10206: VIP alias-ip's disappear from nic (caused by running ifconfig twice.?.)
Jim Pingle wrote:
> FreeBSD dropped the /32 requirement years ago, though, and it's been working fine until recently... Ronald Schellberg
10:07 AM Bug #10206 (Feedback): VIP alias-ip's disappear from nic (caused by running ifconfig twice.?.)
FreeBSD dropped the /32 requirement years ago, though, and it's been working fine until recently. Still feels like a ... Jim Pingle
07:41 AM Bug #10206 (Not a Bug): VIP alias-ip's disappear from nic (caused by running ifconfig twice.?.)
Luiz Souza
07:40 AM Bug #10206: VIP alias-ip's disappear from nic (caused by running ifconfig twice.?.)
Louis van Breda wrote:
> Hello,
>
> Sometime I have the same verdict! If you see what happens during boot, things... Luiz Souza
07:37 AM Bug #10206: VIP alias-ip's disappear from nic (caused by running ifconfig twice.?.)
Ronald Schellberg wrote:
> I can reproduce it here
>
> @[2.5.0-DEVELOPMENT][root@Gateway.localdomain]/root: ifco... Luiz Souza
10:44 AM Bug #9577 (Resolved): radvd send_ra_forall failed on interface / can't join ipv6-allrouters
Jim Pingle
09:47 AM pfSense Docs Correction #10778 (Closed): Feedback on Virtual LANs (VLANs) — pfSense VLAN Configuration
*Page:* https://docs.netgate.com/pfsense/en/latest/book/vlan/pfsense-vlan-configuration.html
*Feedback:*
Bonj... DJIBRIL CISSE
04:55 AM Feature #9527 (Feedback): Add ability for LDAP extended query on groups in RFC2307 containers.
it works only if parent container is selected in the Authentication containers field, i.e.:
Authentication container... Viktor Gurov
01:07 AM Bug #8377 (Resolved): Traffic graph widget mouse over always shows b/s even when the value is in B/s
no such issue on 2.5,
seems to be fixed in #9072
 Viktor Gurov

07/19/2020

01:49 PM pfSense Docs Correction #10777 (Closed): SG-1100 Product Page mentions HA support
Product page for SG-1100 claims support for high-availability. This is a bullet point under the 'grows with you secti... Jordan G
01:37 PM Bug #10206: VIP alias-ip's disappear from nic (caused by running ifconfig twice.?.)
Hello,
Sometime I have the same verdict! If you see what happens during boot, things are beeing started *over and ... Louis B
10:35 AM Bug #10776 (Closed): filterlog: Loopback source/destination sometimes reports 127.0.0.1 as 127.0.01
I'm setting up remote logging of the pfSense filterlog to my ES server, and seems that some of the logs are failing t... Bertram Truong
05:48 AM pfSense Packages Bug #10775 (Resolved): pfblockerNG SBL_ADs and hpHosts are not reachable anymore
Following entries of pfblockerNG pkg are not reachable for a long time, we have some tickets and also I can see some ... Constantine Kormashev
03:55 AM pfSense Packages Bug #10692: PIMD starts twice at boot
As allready reported startup behavoir is not yet ok (pimd starting *5 times !!*). Hereby some info form today bootlog... Louis B

07/17/2020

02:10 PM pfSense Docs New Content #10774 (Resolved): Feedback on Installing and Upgrading — Upgrade Troubleshooting
*Page:* https://docs.netgate.com/pfsense/en/latest/troubleshooting/upgrades.html
*Feedback:* Please include the hi... Bouke Henstra
12:52 PM Bug #10773 (Resolved): if_em VLAN interfaces wont pass traffic after reboot
Post the merge of the remote-tracking branch 'origin/stable/12' into devel-12 on Jun 12th. if_em0 interfaces wont pas... Steve Harrington
12:00 PM Bug #10206: VIP alias-ip's disappear from nic (caused by running ifconfig twice.?.)
I can reproduce it here
@[2.5.0-DEVELOPMENT][root@Gateway.localdomain]/root: ifconfig em0
em0: flags=8843<UP,BRO... Ronald Schellberg
11:34 AM Bug #10206 (Feedback): VIP alias-ip's disappear from nic (caused by running ifconfig twice.?.)
I can't reproduce any of the two reported issues with a current 2.5 snapshots.
Repeated ifconfig commands for add ... Luiz Souza
11:46 AM Bug #10745: crashes/panics in pfsense 2.4.x FreeBSD 11.x with enabled IPSec and ipv4 forwarding
Luiz Souza wrote:
> This fix is already merged in our tree.
>
> Thanks!
can you please specify in which versio... Igor G
10:49 AM Bug #10745 (Resolved): crashes/panics in pfsense 2.4.x FreeBSD 11.x with enabled IPSec and ipv4 forwarding
This fix is already merged in our tree.
Thanks! Luiz Souza
11:46 AM Bug #8380: OpenVPN RADIUS password length is not constant
seems related to #4521 Viktor Gurov
11:45 AM Bug #9647: hn0: driver does not support altq
Gitsynced, deleted all entries rebooted twice and it works.
Thanks. Greg M
11:14 AM Bug #9647: hn0: driver does not support altq
Sorry for the breakage, should be fixed now.
I couldn't reproduce the order issue, please let me know if this is s... Luiz Souza
11:25 AM Bug #10687 (Resolved): IPsec / CESA memory issue
Fix merged to 11 based branches.
As mentioned, this is not necessary for 2.5.
Marking as resolved. Luiz Souza
09:27 AM pfSense Packages Feature #10769: Prevent users from creating new ACMEv1 keys
https://github.com/pfsense/FreeBSD-ports/pull/908 Viktor Gurov
08:57 AM Bug #10772 (Not a Bug): Firewall Rules Lan to Floating Rules
"/firewall_rules.php?if=lan"
Hello, long time ago.
I create a rule in the Lan part admitting for example the port... David Verhaeghe
08:06 AM Feature #5461 (Resolved): Add RFC2307bis (LDAP) group membership support to user authentication
Resolved in #9527 Viktor Gurov
08:05 AM Feature #9527 (Resolved): Add ability for LDAP extended query on groups in RFC2307 containers.
works as expected on 2.5.0.a.20200716.1250
tested with FreeIPA server 4.8.4
Search example:... Viktor Gurov
07:32 AM Bug #9577: radvd send_ra_forall failed on interface / can't join ipv6-allrouters
Luiz Souza wrote:
> Fixed in FreeBSD, the port workaround is unnecessary now.
>
> Thanks for all the details Rona... Ronald Schellberg
07:00 AM pfSense Packages Bug #10768 (Rejected): Squidguard overwrites Advanced Config from Squid Proxy in HA Configurations
+ squidGuard doesn't remove Custom Options (Before Auth), Custom Options (After Auth) and Custom Options (SSL/MITM) Viktor Gurov
06:16 AM pfSense Packages Bug #10771 (Resolved): arpwatch: option to not send hourly email notification on cron run
dirty workaround by editing /usr/local/arpwatch/sendmail_proxy.php
< if (false !== $message) {
> if ((false !==... IT IGP
06:10 AM pfSense Packages Bug #10770 (Resolved): arpwatch: cannot remove email once it has been entered into settings
there is currently no way to disable email notifications once you have enabled them by entering a email adress. you s... IT IGP

07/16/2020

10:40 PM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries
Luiz Souza wrote:
> Please test the new version (filterdns-2.0_4) and let me know if the problem persists.
This... Gavin Stewart
11:33 AM pfSense Packages Bug #10768: Squidguard overwrites Advanced Config from Squid Proxy in HA Configurations
> If you are using a PFsense HA configuration with a virtual HA_IP, you have to add these HA virtual IP to the advanc... Viktor Gurov
10:47 AM pfSense Packages Bug #10768 (Rejected): Squidguard overwrites Advanced Config from Squid Proxy in HA Configurations
If you are using a PFsense HA configuration with a virtual HA_IP, you have to add these HA virtual IP to the advanced... Andreas Tillwicks
11:29 AM pfSense Packages Feature #10769 (Resolved): Prevent users from creating new ACMEv1 keys
It's better to prevent users from creating new ACMEv1 keys in order to avoid errors, such as:... Viktor Gurov
09:08 AM Feature #9527: Add ability for LDAP extended query on groups in RFC2307 containers.
See also #5461 Viktor Gurov
09:07 AM pfSense Packages Bug #10763 (Feedback): Incorrect link to frr_bgp.xml
PR has been merged. Thanks! Renato Botelho
09:07 AM pfSense Packages Feature #9913 (Feedback): Adding note Squid Traffic Managment Settings about feature limit
PR has been merged. Thanks! Renato Botelho
09:05 AM Feature #5461: Add RFC2307bis (LDAP) group membership support to user authentication
See https://redmine.pfsense.org/issues/9527#note-8 Viktor Gurov
09:04 AM Bug #10757 (Feedback): IPv6: NPt rules on 6rd enabled WAN interfaces don't get bound to wan_stf
PR has been merged. Thanks! Renato Botelho
07:24 AM Feature #4035 (Resolved): AutoConfigBackup - selective deletion of automatic and manual backups
Anonymous
07:15 AM Bug #9917 (Closed): Widget Refresh Logic Flawed
Anonymous
07:14 AM Bug #10733 (Resolved): return_gateways_array() is called too many times
Anonymous
02:39 AM pfSense Packages Bug #10692: PIMD starts twice at boot
I did retest today e.g. using a clean install. Still bizar how many times pimd is started and stopped during boot. On... Louis B
12:39 AM Bug #9647: hn0: driver does not support altq
After 2 reboots file looks like this:... Greg M
12:06 AM pfSense Packages Bug #10767 (Rejected): squidGuard still not upgrading
stop Squid service first,
then ... Viktor Gurov

07/15/2020

10:50 PM pfSense Packages Bug #10767 (Rejected): squidGuard still not upgrading
Just upgraded squid to 0.4.44_29, it did not confirm a successful upgrade as I am used to but after a reboot it showe... Marcel Beerli
12:42 PM Bug #9647: hn0: driver does not support altq
And some more info...
This does NOT work:
kern.cam.boot_delay=10000
kern.ipc.nmbclusters="1000000"
kern.ipc.n... Greg M
12:31 PM Bug #9647: hn0: driver does not support altq
It works.
But did few reboots and there are MANY same settings added to loader.conf
Additional syntax error occur... Greg M
09:00 AM Bug #9647 (Feedback): hn0: driver does not support altq
Applied in changeset commit:2360abcc392bcca1fb7c0a9126a37d77a0e8f03d. Luiz Souza
12:41 PM Bug #10766 (Resolved): Syntax error
Fixed in commit:6b9f638a7a9d1cb3bcdc8b9ae7e79d00949c6ab4 Jim Pingle
12:25 PM Bug #10766 (Resolved): Syntax error
https://forum.netgate.com/topic/155303/latest-snap-broken
 Greg M
11:04 AM Bug #10765 (New): Ampersands in ldap_extended_query are escaped twice
Hello,
I recently ran into an issue with an LDAP server whose Query field contained an ampersand.
The field is se... Louis Sautier
07:53 AM Feature #10762 (Feedback): add Broadcom NetXtreme to ALTQ-capable list
Committed. Thanks Viktor. Luiz Souza
07:40 AM Feature #10762 (Pull Request Review): add Broadcom NetXtreme to ALTQ-capable list
Jim Pingle
01:02 AM Feature #10762: add Broadcom NetXtreme to ALTQ-capable list
https://github.com/pfsense/pfsense/pull/4402 Viktor Gurov
12:38 AM Feature #10762 (Resolved): add Broadcom NetXtreme to ALTQ-capable list
After adding bnxt(4) driver to pfSense (see #9155),
it must be added to the ALTQ-capable list Viktor Gurov
07:48 AM pfSense Packages Feature #9913 (Pull Request Review): Adding note Squid Traffic Managment Settings about feature limit
Jim Pingle
07:19 AM pfSense Packages Feature #9913: Adding note Squid Traffic Managment Settings about feature limit
https://github.com/pfsense/FreeBSD-ports/pull/906 Viktor Gurov
07:41 AM pfSense Packages Bug #10763 (Pull Request Review): Incorrect link to frr_bgp.xml
Jim Pingle
02:24 AM pfSense Packages Bug #10763: Incorrect link to frr_bgp.xml
https://github.com/pfsense/FreeBSD-ports/pull/904 Viktor Gurov
02:22 AM pfSense Packages Bug #10763 (Resolved): Incorrect link to frr_bgp.xml
If you are trying to access the menu item Services / FRR BGP, for example, from Services / Snort / Interfaces,
you'l... Viktor Gurov
07:29 AM pfSense Packages Bug #10764 (Not a Bug): FRR 0.6.7_1 does not work
That message is not a bug, it's output from the FreeBSD package installation and can be ignored. If you have a proble... Jim Pingle
07:24 AM pfSense Packages Bug #10764 (Not a Bug): FRR 0.6.7_1 does not work
After update to FRR 0.6.7_1 ospf stop working
Message from frr7-7.3.1:
--
FRR's OSPF daemons tries to allocate... Ilian Cheneshev
06:37 AM pfSense Packages Bug #10445: BIND crashed when added RPZ. rpz is not a master or slave zone.
Typo fix:
https://github.com/pfsense/FreeBSD-ports/pull/905 Viktor Gurov
06:20 AM pfSense Packages Feature #10619: Various FRR enhancements
Ben Hughes wrote:
> Yes I had a look back at the FRR commit history and found only that as well.
>
> It will fai... Renato Botelho
12:34 AM Feature #9155: Add driver bnxt for Broadcom NetXtreme interfaces
tested on 2.5.0.a.20200709.1250:... Viktor Gurov

07/14/2020

02:04 PM pfSense Packages Feature #10619: Various FRR enhancements
Yes I had a look back at the FRR commit history and found only that as well.
It will fail to start complaining ab... Ben Hughes
01:12 PM pfSense Packages Feature #10619: Various FRR enhancements
Ben Hughes wrote:
> Argh i've had a bit of a freudian slip there, I meant @libunwind@.
What is the error you see ... Renato Botelho
11:48 AM pfSense Packages Feature #10619: Various FRR enhancements
Argh i've had a bit of a freudian slip there, I meant @libunwind@. Ben Hughes
11:47 AM pfSense Packages Feature #10619: Various FRR enhancements
Ben Hughes wrote:
> No problem, glad to get it in there!
>
> I've just been re-reviewing this looking forward to ... Renato Botelho
09:42 AM pfSense Packages Feature #10619: Various FRR enhancements
No problem, glad to get it in there!
I've just been re-reviewing this looking forward to getting off my custom pac... Ben Hughes
08:09 AM pfSense Packages Feature #10619 (Feedback): Various FRR enhancements
PR has been merged. Thanks! Renato Botelho
01:33 PM pfSense Packages Bug #10692: PIMD starts twice at boot
I just did a clean install (built on Tue Jul 14 09:23:16 EDT 2020) and PIMD 0.03 Significant issues left, but the boo... Louis B
11:37 AM Bug #9647: hn0: driver does not support altq
So I did some more digging...
Added /boot/loader.conf.local with contents:... Greg M
11:24 AM pfSense Packages Bug #10741 (Closed): Fails with CARP VIP Status - SQUID
Viktor Gurov
11:12 AM pfSense Packages Bug #10741: Fails with CARP VIP Status - SQUID
Thiago Orico wrote:
> adjusted the setting and it looks like it worked.
>
> We will monitor new tests.
Case so... Thiago Orico
09:27 AM Bug #10757 (Pull Request Review): IPv6: NPt rules on 6rd enabled WAN interfaces don't get bound to wan_stf
Jim Pingle
08:30 AM Bug #10757: IPv6: NPt rules on 6rd enabled WAN interfaces don't get bound to wan_stf
Fix:
https://github.com/pfsense/pfsense/pull/4401 Viktor Gurov
07:26 AM Bug #10757 (New): IPv6: NPt rules on 6rd enabled WAN interfaces don't get bound to wan_stf
pfctl creates binat rule only for the first binat rule interface, i.e.:... Viktor Gurov
07:31 AM Feature #3559: add option for backup ddns ( dynamic dns ) in restore area
thanks Luis Couto
07:19 AM Feature #3559 (Feedback): add option for backup ddns ( dynamic dns ) in restore area
PR has been merged. Thanks! Renato Botelho
07:19 AM Feature #4763 (Feedback): Restore from backup that contains only area Traffic Shaper doesn't restore Limiters
PR has been merged. Thanks! Renato Botelho
07:18 AM Bug #3128 (Feedback): Active voucher status not restored from backup
PR has been merged. Thanks! Renato Botelho
07:15 AM pfSense Packages Bug #10507 (Feedback): Unable to use forwarders
PR has been merged. Thanks! Renato Botelho
06:24 AM pfSense Packages Bug #10697 (Resolved): Missing New Line After NCP Parameter in Client Config
1.4.23_1, fixed:... Viktor Gurov
05:04 AM Bug #10730 (Resolved): Unable to use IDN symbols in DNS Resolver ACL
OK on 2.5.0.a.20200709.1250 Viktor Gurov
05:03 AM Bug #10742 (Resolved): unable to save DNS ACL in non-English interface
tested with Russian and French
works as expected on 2.5.0.a.20200709.1250 Viktor Gurov
04:59 AM Bug #9933 (Resolved): Captive Portal + Voucher not keeping auto-added "Pass-through MAC Auto Entry"
works as expected on 2.5.0.a.20200709.1250 Viktor Gurov
04:25 AM Bug #10724 (Resolved): Allowed Hostnames adds/deletes only one A entry
works as expected on 2.5.0.a.20200709.1250 Viktor Gurov

07/13/2020

08:35 PM pfSense Packages Feature #10421 (Resolved): suricata unix_stream support for telegraf
Jim Pingle
07:41 PM pfSense Packages Feature #10421: suricata unix_stream support for telegraf
Support for the requested feature has been added to the latest version of the Suricata GUI package, version 5.0.3. Th... Bill Meeks
08:35 PM pfSense Packages Bug #10751 (Resolved): Incorrect syslog() params on Suricata 5 pkg
Jim Pingle
07:39 PM pfSense Packages Bug #10751: Incorrect syslog() params on Suricata 5 pkg
This bug has been corrected in the latest version of the Suricata GUI package, version 5.0.3. The pull request has be... Bill Meeks
02:17 PM Bug #9577: radvd send_ra_forall failed on interface / can't join ipv6-allrouters
"One additional change FreeBSD-src that would make the #2878 Leave_group call unnecessary would be to eliminate the e... Ronald Schellberg
08:38 AM Bug #9577: radvd send_ra_forall failed on interface / can't join ipv6-allrouters
Don't know that anyone has noticed but the build system has stopped posting snaps since 7/9 00:50, which makes it mor... Ronald Schellberg
02:12 PM Feature #3559 (Pull Request Review): add option for backup ddns ( dynamic dns ) in restore area
Jim Pingle
02:11 PM Feature #4763 (Pull Request Review): Restore from backup that contains only area Traffic Shaper doesn't restore Limiters
Jim Pingle
02:10 PM Bug #3128 (Pull Request Review): Active voucher status not restored from backup
Jim Pingle
01:53 PM pfSense Packages Bug #10741: Fails with CARP VIP Status - SQUID
adjusted the setting and it looks like it worked.
We will monitor new tests. Thiago Orico
01:14 PM pfSense Packages Bug #10741: Fails with CARP VIP Status - SQUID
Symptoms persist.
Details:
inside the squid packet, the advanced rule of port 3128 of the proxy does not automa... Thiago Orico
10:31 AM Bug #10708: ZFS bootpool boot symlink issue
Reading this symlink issue I do remember that in the past days I did notice messages, indication that some files coul... Louis B
09:39 AM Bug #10752 (Feedback): 1:1 NAT issue if Internal IP has VIPs
PR has been merged. Thanks! Renato Botelho
08:29 AM Feature #10748 (Pull Request Review): Add support for limiting IPsec VPN access per user group via RADIUS
Jim Pingle
08:29 AM Bug #10758: Group Authentication is never used
If I remember right, it was used with the old Racoon IPsec implementation and may have been left out when we moved to... Jim Pingle
08:04 AM Bug #10755 (Rejected): NAT rules not updating.
I can't reproduce this. If the user had selected "<interface name> address" e.g. "WAN Address" in the rules, the conf... Jim Pingle
06:19 AM Bug #9796: kernel panic after removing interfaces
Hello,
I have crashes when switching interfaces off and on again. Especially when pimd is installed. That might be... Louis B
02:14 AM Feature #6544: RFC 3046 DHCP Option 82 support (and RFC 3315/4649/4580 for IPv6)
comment from https://forum.netgate.com/topic/64792/usd-50-dhcp-option-82-on-status_dhcp_leases-php-page/12:
Please s... Viktor Gurov

07/12/2020

02:07 PM pfSense Packages Feature #10761: Multiple domains in one SAN entry would be very useful
Thanks Jim, I used the wrong terminology re domains/SANs.
The intention is still valid - would be good to have a s... Eduard Rozenberg
12:57 PM pfSense Packages Feature #10761 (Rejected): Multiple domains in one SAN entry would be very useful
That's not how Let's Encrypt/ACME works. Let's Encrypt must verify all entries separately. There is no way to put all... Jim Pingle
12:48 PM pfSense Packages Feature #10761: Multiple domains in one SAN entry would be very useful
For now I just gave up and used a wildcard, let the hackers have at it. Eduard Rozenberg
12:46 PM pfSense Packages Feature #10761: Multiple domains in one SAN entry would be very useful
I was referring to multiple domains inside a *single* SAN - otherwise the same DNS keys, API tokens, etc are copied m... Eduard Rozenberg
12:40 PM pfSense Packages Feature #10761: Multiple domains in one SAN entry would be very useful
Hello -
Please post to the forum for assistance. There is an ACME-specific category at https://forum.netgate.com/c... Chris Linstruth
12:22 PM pfSense Packages Feature #10761 (Rejected): Multiple domains in one SAN entry would be very useful
In the Domain SAN list, I'm not currently able to add multiple domains in the 'Domainname' box, for ex. cannot use:
... Eduard Rozenberg

07/11/2020

10:46 PM Bug #9796: kernel panic after removing interfaces
There's been some activity around miniupnpd over on #7727. There's a new version built in now, wonder if this could h... → luckman212
04:53 PM pfSense Packages Bug #10760: pfSense BIND 9.14.12 server terminates due to assertion failure
Secondary question, is there is method to configure pfSense to auto-restart named on failure? Jeffrey Altman
04:34 PM pfSense Packages Bug #10760: pfSense BIND 9.14.12 server terminates due to assertion failure
The assertion failure is in ns_client_error() which means that its impossible to file a reasonable report upstream wi... Jeffrey Altman
04:02 PM pfSense Packages Bug #10760 (New): pfSense BIND 9.14.12 server terminates due to assertion failure
BIND is periodically terminating and not automatically restarted. The system log shows:
Jul 6 13:13:21 named 6... Jeffrey Altman
03:43 PM Feature #855: Ability to selectively kill states on gateway recovery
+1 - this is a badly needed feature with multi WAN where one connection is truly a "backup only" connection. High co... Marc H
12:51 PM pfSense Packages Feature #6831: Snort does not support aliases containing FQDN
It can be a one-time name resolution, like HAproxy ACL (network/url/urltable aliases),
see #9793 for example Viktor Gurov
12:33 PM pfSense Packages Bug #10647 (Resolved): FRR BGP Advanced > Aggregated Addresses ignores ipv6 subnets
works as expected:... Viktor Gurov
12:24 PM pfSense Packages Feature #10618 (Resolved): Set sysDescr the same as bsnmpd unless overriden with net-snmp
works as expected:... Viktor Gurov
11:54 AM Feature #3559: add option for backup ddns ( dynamic dns ) in restore area
https://github.com/pfsense/pfsense/pull/4399 Viktor Gurov
11:51 AM Feature #4763: Restore from backup that contains only area Traffic Shaper doesn't restore Limiters
Backup/restore Limiters:
https://github.com/pfsense/pfsense/pull/4398 Viktor Gurov
10:50 AM Bug #3128: Active voucher status not restored from backup
https://github.com/pfsense/pfsense/pull/4397 Viktor Gurov
10:09 AM Bug #10759: HSFC traffic shaper error
Sorry didn`t see it.
Gitsynced and it`s working just fine.
But still cant use it because of https://redmine.pfs... Greg M
07:06 AM Bug #10759 (Rejected): HSFC traffic shaper error
Fixed in https://redmine.pfsense.org/issues/1353#note-9
Please wait for the next snapshot Viktor Gurov
06:45 AM Bug #10759 (Rejected): HSFC traffic shaper error
Hi!
Version:
2.5.0-DEVELOPMENT (amd64)
built on Thu Jul 09 01:01:26 EDT 2020
FreeBSD 12.1-STABLE
Create new ... Greg M
10:08 AM Bug #9647: hn0: driver does not support altq
Hi!
Is there anything else to try? Greg M
07:46 AM pfSense Packages Bug #10749: squid + captive portal authentication not working
I have same problem (WPAD + explicit Squid with Captive Portal authentication) since I update pfSense to 2.4.5 and sq... Christophe PLUMEL
06:06 AM Feature #10545: RADIUS authenticated users should be able to log in via ssh
see also #935 Viktor Gurov
05:24 AM Feature #10748: Add support for limiting IPsec VPN access per user group via RADIUS
Relates to #935, which was apparently already requested 10 years ago, and implemented 5 years ago, but then got lost ... Yury Zaytsev
05:05 AM Feature #10748: Add support for limiting IPsec VPN access per user group via RADIUS
https://github.com/pfsense/pfsense/pull/4396 Viktor Gurov
04:08 AM Feature #10756 (Closed): Captive Portal Active Vouchers Restore
dup of #3128 Viktor Gurov
02:32 AM Feature #10756 (Closed): Captive Portal Active Vouchers Restore
https://forum.netgate.com/topic/152863/captive-portal-active-card-restore-100/
i want to restore active cards to be ... Viktor Gurov
03:48 AM Bug #10758 (Closed): Group Authentication is never used
IPsec / Mobile Clients -> 'Group Authentication' is never used on the 2.4.5-p1 or 2.5 pfSense:... Viktor Gurov
03:18 AM Bug #10757 (Rejected): IPv6: NPt rules on 6rd enabled WAN interfaces don't get bound to wan_stf
Fixed in #7142 Viktor Gurov
02:53 AM Bug #10757 (Resolved): IPv6: NPt rules on 6rd enabled WAN interfaces don't get bound to wan_stf
I believe there is a bug in the handling of NPt rules when they need to be applied to 6rd enabled interfaces (which a... Adam Risoldi

07/10/2020

07:40 PM Bug #10755 (Rejected): NAT rules not updating.
if I restore the configuration from old file , translation address (Outbound NAT rules) will be the wan address of ol... Alhusein Zawi
07:26 PM Bug #10754 (Rejected): NAT rules not updating.
Will be re-done. Chris Linstruth
07:05 PM Bug #10754 (Rejected): NAT rules not updating.
if I restore the configuration from old file , translation address (Outbound NAT rules) will be the wan address of ol... Alhusein Zawi
02:46 PM Bug #10740 (Resolved): Console menu shows static subnet for dhcp connections.
Yup that got it!... Steve Wheeler
01:40 PM Bug #10740 (Feedback): Console menu shows static subnet for dhcp connections.
PR has been merged. Thanks! Renato Botelho
07:48 AM Bug #10740 (Pull Request Review): Console menu shows static subnet for dhcp connections.
Jim Pingle
06:56 AM Bug #10740: Console menu shows static subnet for dhcp connections.
Fix:
https://github.com/pfsense/pfsense/pull/4394 Viktor Gurov
02:24 PM Bug #10752 (Pull Request Review): 1:1 NAT issue if Internal IP has VIPs
Jim Pingle
11:54 AM Bug #10752: 1:1 NAT issue if Internal IP has VIPs
https://github.com/pfsense/pfsense/pull/4395 Viktor Gurov
11:30 AM Bug #10752 (Resolved): 1:1 NAT issue if Internal IP has VIPs
If you set 'Internal IP' on the firewall_nat_1to1_edit.php to net (OPT1 net, for example)
and OPT1 interface has any... Viktor Gurov
02:12 PM pfSense Packages Bug #10330 (Feedback): BIND zone configuration displays wrong DS resource record with inline DNSSEC signing enabled
PR has been merged. Thanks! Renato Botelho
02:12 PM pfSense Packages Bug #10445 (Feedback): BIND crashed when added RPZ. rpz is not a master or slave zone.
PR has been merged. Thanks! Renato Botelho
02:12 PM pfSense Packages Bug #10506 (Feedback): Recursion not working on fresh BIND install
PR has been merged. Thanks! Renato Botelho
02:12 PM pfSense Packages Bug #7271 (Feedback): Co-existence of unbound and BIND/named
PR has been merged. Thanks! Renato Botelho
02:04 PM pfSense Packages Bug #10692 (Feedback): PIMD starts twice at boot
PR has been merged. Thanks! Renato Botelho
02:02 PM pfSense Packages Feature #10725 (Feedback): Squid disable multiple login sessions
PR has been merged. Thanks! Renato Botelho
02:01 PM pfSense Packages Bug #10737 (Feedback): FRR attempts to cycle IPsec VTI interfaces even when disabled/not running
PR has been merged. Thanks! Renato Botelho
02:00 PM pfSense Packages Bug #10656 (Feedback): Acme letsencrypt doesn't change private key type
PR has been merged. Thanks! Renato Botelho
01:39 PM Feature #10747 (Feedback): Captive Portal IDN hostname support
PR has been merged. Thanks! Renato Botelho
07:46 AM Feature #10747 (Pull Request Review): Captive Portal IDN hostname support
Jim Pingle
03:17 AM Feature #10747: Captive Portal IDN hostname support
https://github.com/pfsense/pfsense/pull/4393 Viktor Gurov
01:12 AM Feature #10747 (Resolved): Captive Portal IDN hostname support
Currently it's not possible to add IDN hostnames on the 'Allowed Hostnames' tab Viktor Gurov
01:39 PM Feature #10743 (Feedback): Traffic shaper wizard: Add Google Stadia port range
PR has been merged. Thanks! Renato Botelho
01:38 PM Bug #7443 (Feedback): Issues Creating IPv6 Static Mappings
PR has been merged. Thanks! Renato Botelho
01:38 PM Feature #3031 (Feedback): Message is false after changing Hardware Checksum Offloading setting
PR has been merged. Thanks! Renato Botelho
01:37 PM Bug #10730 (Feedback): Unable to use IDN symbols in DNS Resolver ACL
PR has been merged. Thanks! Renato Botelho
01:37 PM Feature #10727 (Feedback): Limiter bw type in Mbit/s
PR has been merged. Thanks! Renato Botelho
01:37 PM Bug #1353 (Feedback): Number of queues possible
PR has been merged. Thanks! Renato Botelho
01:36 PM pfSense Packages Feature #10753: Acme DNS-01 for Hurricane Electric needs to be updated for new dynamic update methods
Thanks for the insight. I've opened https://github.com/acmesh-official/acme.sh/issues/3038 which will hopefully lead... Howard Holm
12:55 PM pfSense Packages Feature #10753: Acme DNS-01 for Hurricane Electric needs to be updated for new dynamic update methods
Has the new method been updated in acme.sh upstream? ( https://github.com/acmesh-official/acme.sh ) -- If not, it mus... Jim Pingle
12:48 PM pfSense Packages Feature #10753 (Closed): Acme DNS-01 for Hurricane Electric needs to be updated for new dynamic update methods
Hurricane Electric has added (as of two days ago - see http://dns.he.net) dynamic DNS support for TXT records allow f... Howard Holm
01:36 PM Bug #10724 (Feedback): Allowed Hostnames adds/deletes only one A entry
PR has been merged. Thanks! Renato Botelho
01:35 PM Bug #10716 (Feedback): Policy routing rules are not written correctly for a down gateway
PR has been merged. Thanks! Renato Botelho
01:35 PM Feature #9432 (Feedback): Block additional Captive Portal Logins
PR has been merged. Thanks! Renato Botelho
01:32 PM Bug #10720 (Feedback): Setup Wizard DNS Server validation JavaScript incorrectly claims IPv6 address is invalid
PR has been merged. Thanks! Renato Botelho
01:30 PM Bug #10750: (vlan)interfaces not properly handled in relation multicast (e.g. triggered by pimd)
The correct place for this is the forum, not a bug report. Keep it on the forum. Opening issues without concrete info... Jim Pingle
01:03 PM Bug #10750: (vlan)interfaces not properly handled in relation multicast (e.g. triggered by pimd)
Jim,
This is not the first time you make me angry! You consequently refuse to accept issues which are clearly the... Louis B
12:55 PM Bug #10750 (Rejected): (vlan)interfaces not properly handled in relation multicast (e.g. triggered by pimd)
Please keep these kinds of things on the forum until a more definite issue can be identified here. Far too much specu... Jim Pingle
08:35 AM Bug #10750 (Rejected): (vlan)interfaces not properly handled in relation multicast (e.g. triggered by pimd)
Hello,
As known I try to get pimd running, but up to now that does not work. Interfaces are not treated correctly ... Louis B
10:11 AM pfSense Packages Bug #10751: Incorrect syslog() params on Suricata 5 pkg
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/899 Viktor Gurov
09:58 AM pfSense Packages Bug #10751 (Resolved): Incorrect syslog() params on Suricata 5 pkg
If you don't select any rules for the interface and click the "Save" button:... Viktor Gurov
09:08 AM Bug #8013: IPsec MSS clamping value shared for IPv4 and IPv6
See also #10493 Viktor Gurov
07:45 AM pfSense Packages Feature #10746 (Rejected): FRR OSPF network
What you describe is already possible in the current FRR GUI.
This site is not for support or diagnostic discussio... Jim Pingle
06:35 AM pfSense Packages Bug #10749 (Resolved): squid + captive portal authentication not working
https://forum.netgate.com/topic/155148/squid-captive-portal-authentication:
Since the last update (2.4.5-RELEASE-p1)... Viktor Gurov
06:13 AM Feature #10748 (Resolved): Add support for limiting IPsec VPN access per user group via RADIUS
Hello,
We've set up an IPsec VPN for road warriors with RADIUS auth, but, unfortunately, it seems that there is cu... Yury Zaytsev
05:53 AM Bug #10713: assigning a virtual IPv6 IP to an interface that has IPv6 PD track interface enabled makes the Virtual IP the primary IP after reboot
@Louis
The "corresponding application" here would be the DHCPv6 relay that forwards to a DHCPv6 server that gives ... Robby Moeyaert
02:30 AM Bug #10713: assigning a virtual IPv6 IP to an interface that has IPv6 PD track interface enabled makes the Virtual IP the primary IP after reboot
I do not understand this remark. Muliple address are only relevant (I think) if there are related to corresponding ap... Louis B
01:14 AM Bug #3128 (New): Active voucher status not restored from backup
still an issue,
as a workaround '/var/db/voucher_*.db' files can be backed up,
See https://forum.netgate.com/topic/... Viktor Gurov

07/09/2020

11:54 PM pfSense Packages Feature #10746 (Rejected): FRR OSPF network
Add feature to specify which network should be adverting to OSPF .
if I choose Route Redistribution (such as Conne... Alhusein Zawi
04:04 PM Bug #10745 (Resolved): crashes/panics in pfsense 2.4.x FreeBSD 11.x with enabled IPSec and ipv4 forwarding
please this forum thread:
https://forum.netgate.com/topic/151329/pfsense-active-carp-member-crashed-aesni_process-c... Igor G
10:49 AM pfSense Packages Bug #10741: Fails with CARP VIP Status - SQUID
Viktor Gurov wrote:
> squid pkg 0.4.44_28 on 2.4.5-p1 (clean install) - no such issue, HA works as expected
> it se... Thiago Orico
05:09 AM pfSense Packages Bug #10741: Fails with CARP VIP Status - SQUID
squid pkg 0.4.44_28 on 2.4.5-p1 (clean install) - no such issue, HA works as expected
it seems something incorrect i... Viktor Gurov
10:15 AM Bug #10744: Unable to kill IPv6 client connection
The same with IPv4 client
outdated ajax code?
tested on Chromium 80.0.3987.162 and Firefox 68.10.0esr (Debian 10) Viktor Gurov
09:43 AM Bug #10744 (Closed): Unable to kill IPv6 client connection
Unable to kill client connection on status_openvpn.php page if it's connected via IPv6,
'Kill client connection' but... Viktor Gurov
09:15 AM Bug #10742: unable to save DNS ACL in non-English interface
Applied in changeset commit:7da6d332599d01b058740d9c8f48642a63c04e6d. Jim Pingle
09:02 AM Bug #10742 (Feedback): unable to save DNS ACL in non-English interface
I pushed a fix for this, it will show up once the repos sync in a bit. Jim Pingle
08:12 AM Bug #10742 (In Progress): unable to save DNS ACL in non-English interface
Jim Pingle
02:05 AM Bug #10742 (Resolved): unable to save DNS ACL in non-English interface
https://forum.netgate.com/topic/153501/resolved-but-there-is-a-bug-in-the-french-interface-dns-resolver-and-access-li... Viktor Gurov
08:39 AM Feature #10743 (Pull Request Review): Traffic shaper wizard: Add Google Stadia port range
PR: https://github.com/pfsense/pfsense/pull/4392 Jim Pingle
08:17 AM Feature #10743 (Resolved): Traffic shaper wizard: Add Google Stadia port range
This feature adds support in the traffic shaping wizard for the port range used by Google Stadia. According to https:... Mike Rooke
08:16 AM Bug #7443 (Pull Request Review): Issues Creating IPv6 Static Mappings
Jim Pingle
08:14 AM Bug #7443: Issues Creating IPv6 Static Mappings
Daryl Morse wrote:
> There are a few issues creating IPv6 static mappings.
> ..
>
> However, Status / DHCPv6 Lea... Viktor Gurov
08:12 AM Bug #9577 (Feedback): radvd send_ra_forall failed on interface / can't join ipv6-allrouters
Fixed in FreeBSD, the port workaround is unnecessary now.
Thanks for all the details Ronald. Luiz Souza
07:59 AM pfSense Packages Bug #10737 (Pull Request Review): FRR attempts to cycle IPsec VTI interfaces even when disabled/not running
Jim Pingle
01:29 AM pfSense Packages Bug #10737: FRR attempts to cycle IPsec VTI interfaces even when disabled/not running
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/897 Viktor Gurov
07:55 AM pfSense Packages Todo #10419 (Closed): Update haproxy ports
Jim Pingle
03:07 AM pfSense Packages Todo #10419: Update haproxy ports
All works fine on 2.0.14 DRago_Angel [InV@DER]
03:55 AM Bug #10726: Sticky-connections option is bugged - sticky-address cannot be redefined
https://github.com/pfsense/FreeBSD-src/blob/devel-12/sbin/pfctl/parse.y#L4133-L4137:... Viktor Gurov
02:50 AM Feature #10723: Disable "Hardware Checksum Offloading" if VM is detected
Jim Pingle wrote:
> See my note on the PR, but that seems far too broad/general. It should only be disabled on the s... Viktor Gurov

07/08/2020

10:12 PM pfSense Packages Bug #10741 (Closed): Fails with CARP VIP Status - SQUID
Tests with CARP protocol, using CARP VIP option Squid status activated, the CARP IP type does not assume in the secon... Thiago Orico
08:24 AM Bug #10740 (Resolved): Console menu shows static subnet for dhcp connections.
The interfaces list shown in the console will show a subnet value from the config file if it is present for a DHCP co... Steve Wheeler
05:04 AM pfSense Packages Feature #10739 (Feedback): Update HAproxy-devel package to 2.2 and HAproxy to 2.0
Announced new stable version of HAproxy 2.2: https://www.haproxy.com/blog/announcing-haproxy-2-2/
There is bunch of ... DRago_Angel [InV@DER]
12:36 AM Bug #6370: IPSEC bound to WAN gateway group and Dynamic DNS doesn't to fail back tunnel to WAN on DDNS update
This is a real problem when backup WAN is a high cost or low capacity link such as LTE/3G mobile. The objective is t... Marc H

07/07/2020

11:51 PM pfSense Packages Bug #10738 (Duplicate): ipsec apply issue
Duplicate of #10737 (and #10736) Jim Pingle
08:28 PM pfSense Packages Bug #10738 (Duplicate): ipsec apply issue
Note: I suspect this is related to the fix for bug #10351 or related to the bug itself however it is marked resolved.... Andrew Johnson
06:43 PM Feature #9536: Support dynamic prefix in DHCPv6 Server
This would be a very useful feature.
The prefix delegations handed out by the DHCPv6 Server are currently static o... Steve Wheeler
02:44 PM Bug #10736: Phase 2 VTI mode, causes GUI to time out.
This is actually an FRR bug, not a VTI bug. Moved to #10737 Jim Pingle
02:14 PM Bug #10736 (Not a Bug): Phase 2 VTI mode, causes GUI to time out.
I can't reproduce this as stated on 2.4.5-p1 amd64. I can create a VTI P2 and then make other actions in the GUI on t... Jim Pingle
09:34 AM Bug #10736 (Not a Bug): Phase 2 VTI mode, causes GUI to time out.
After creating a phase 2 in VTI mode, all other changes related to the IPsec setup causes GUI to timeout.
Changes ... Danilo Zrenjanin
02:43 PM pfSense Packages Bug #10737 (Resolved): FRR attempts to cycle IPsec VTI interfaces even when disabled/not running
If FRR is installed but disabled or otherwise not running, @frr_ipsec_reload()@ will still attempt to send an FRR con... Jim Pingle
01:21 PM Bug #10730 (Pull Request Review): Unable to use IDN symbols in DNS Resolver ACL
Jim Pingle
01:20 PM pfSense Packages Bug #7271 (Pull Request Review): Co-existence of unbound and BIND/named
Jim Pingle
01:12 PM pfSense Packages Bug #10507 (Pull Request Review): Unable to use forwarders
Jim Pingle
01:07 PM pfSense Packages Bug #10506 (Pull Request Review): Recursion not working on fresh BIND install
Jim Pingle
12:57 PM pfSense Packages Bug #10445 (Pull Request Review): BIND crashed when added RPZ. rpz is not a master or slave zone.
Jim Pingle
12:56 PM pfSense Packages Bug #10330 (Pull Request Review): BIND zone configuration displays wrong DS resource record with inline DNSSEC signing enabled
Jim Pingle
12:50 PM Bug #10542: Exclamation marks in the description field of a floating rule result in a filter reload error.
That makes sense, many parsers treat @\@ at the end of a line as an instruction to join it with the following line.
... Jim Pingle
12:46 PM Feature #10727 (Pull Request Review): Limiter bw type in Mbit/s
Jim Pingle
12:45 PM Bug #1353 (Pull Request Review): Number of queues possible
Jim Pingle
12:43 PM pfSense Packages Feature #10725 (Pull Request Review): Squid disable multiple login sessions
Jim Pingle
12:29 PM pfSense Packages Bug #10692 (Pull Request Review): PIMD starts twice at boot
Jim Pingle
12:19 PM Bug #10724 (Pull Request Review): Allowed Hostnames adds/deletes only one A entry
Jim Pingle
12:16 PM Feature #10723 (Pull Request Review): Disable "Hardware Checksum Offloading" if VM is detected
See my note on the PR, but that seems far too broad/general. It should only be disabled on the specific platforms whe... Jim Pingle
12:13 PM Feature #3031 (Pull Request Review): Message is false after changing Hardware Checksum Offloading setting
Jim Pingle
12:09 PM Bug #10716 (Pull Request Review): Policy routing rules are not written correctly for a down gateway
Jim Pingle
10:01 AM Bug #10720 (Pull Request Review): Setup Wizard DNS Server validation JavaScript incorrectly claims IPv6 address is invalid
Jim Pingle
08:51 AM Bug #10734 (Rejected): PFsense don't use wrong proposals
It must be in your settings but there is not nearly enough information to say for sure.
This site is not for suppo... Jim Pingle
07:57 AM Bug #10735 (Not a Bug): Track Interface for 2nd LAN IPv6 Fails
There is no bug. Your WAN interface delegation size setting is wrong.
This site is not for support or diagnostic d... Jim Pingle
04:21 AM Bug #10735 (Not a Bug): Track Interface for 2nd LAN IPv6 Fails
Virtualbox running PfSense 2.5.0 latest
Setup IPv6 on LAN1 to TrackInterface - only option allowed is 0 for IPv6 pre... Rick McGonegal

07/06/2020

10:39 PM Bug #10734 (Rejected): PFsense don't use wrong proposals
Hello.
I use pfsense + miktorik
Configured IPSec (v1):
phase 1 int L2TP 10.100.0.132 main 3DES SHA1 2 (10... DeeZ A
03:43 PM Feature #10728: Request - widen the columns in VPN > IPSEC > Status > Overview
See #9979 Jim Pingle
03:41 PM Feature #10728 (Closed): Request - widen the columns in VPN > IPSEC > Status > Overview
That page has already been redesigned on 2.5.0 with less columns and this is most likely no longer an issue there.
... Jim Pingle
03:25 PM Bug #10722 (Duplicate): Update jQuery to 3.5.1
Already done: #10676 Jim Pingle
02:39 PM Bug #8502: main (top) menu items do not drop down in some cases
FYI- This no longer affects the IPsec Profile Wizard package as of v 1.0, since it has been changed to use a traditio... Jim Pingle
02:39 PM pfSense Packages Bug #10003: Visiting VPN > Apple IPsec Profile renders the navigation dropdown buttons useless
FYI- This is now moot on IPsec Profile Wizard pkg v 1.0, since it has been changed to use a traditional GUI page and ... Jim Pingle
01:33 PM Bug #10733 (Resolved): return_gateways_array() is called too many times
This is a large and expensive function which really only needs to be called once on loading the page, not eight times... Anonymous
10:16 AM Bug #9270: "Remove all states to and from the filtered address" does not remove all states
@jim This is very annoying bug and makes troubleshooting more difficult. Any chance to address it in the next point ... Yuri Weinstein
05:56 AM Bug #9577: radvd send_ra_forall failed on interface / can't join ipv6-allrouters
Hi,
I installed the patch and a lot of messages where gone. What was in the log after reboot is
Jul 6 12:31:08 pf... Louis B
05:41 AM Feature #10732 (New): Warning banner for secondary HA node
It would be good if the secondary HA node has a banner with a warning all management actions have to be performed on ... Constantine Kormashev
05:38 AM Feature #10731 (New): XML-sync primary/secondary config flag
To prevent XML-sync misconfiguring on a HA cluster, it would be good to make a config flag that can be used for disti... Constantine Kormashev
 

Also available in: Atom