Activity

30 days up to

User

Subprojects

Activity

From 09/20/2020 to 10/19/2020

10/19/2020

08:09 PM Feature #10992: Cloudflare DDNS query Zone ID with token: Pull request here: https://github.com/pfsense/pfsense/pull/4482 Chris Pick
08:04 PM Feature #10992 (Resolved): Cloudflare DDNS query Zone ID with token: In May Cloudflare [improved their API](https://community.cloudflare.com/t/bug-zone-detail-by-name-requires-zone-list-... Chris Pick
07:14 PM Revision 42d5da9d: Revise scaling factor calculation: Steve Beaver
07:11 PM Revision 88d878f2: Support omitting Cloudflare Zone ID for dynamic DNS: In May, Cloudflare
[improved their API](https://community.cloudflare.com/t/bug-zone-detail-by-name-requires-zone-list... Chris Pick
06:46 PM Bug #10991: Unbound as a DNS over TLS forwarder can be quite unresponsive seems to stop working: Isn't there a way in the settings to make this less likely to happen? Unbound devs didn't even comment on the bug yet. Anonymous
06:20 PM Bug #10991 (Needs Patch): Unbound as a DNS over TLS forwarder can be quite unresponsive seems to stop working: Nothing we can do about that, since it's a problem in Unbound itself. When it gets fixed in Unbound, the fix will mak... Jim Pingle
05:57 PM Bug #10991 (Needs Patch): Unbound as a DNS over TLS forwarder can be quite unresponsive seems to stop working: Unbound as a DNS over TLS forwarder can be quite unreliable and stop resolving anything with the right DNS servers.
... Anonymous
03:20 PM Bug #10974: pfSense showing unspecified DHCP assignment range: That's why the forum is the best place to discuss and diagnose the issue. This isn't the place to bring up "unexpecte... Jim Pingle
03:07 PM Bug #10974: pfSense showing unspecified DHCP assignment range: Jim Pingle wrote:
> This site is not for support or diagnostic discussion.
>
> For assistance in solving problems... Mark Whitworth
09:09 AM Bug #10974 (Rejected): pfSense showing unspecified DHCP assignment range: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
01:32 PM Bug #9796: kernel panic after removing interfaces: Luiz, up to a couple of month ago, I had lots! of interface related stability problems (crashes). However, since a co... Louis B
01:24 PM Bug #9796 (Feedback): kernel panic after removing interfaces: Based on FreeBSD issue, this issues seems to be fixed.
Can someone confirm this ? Luiz Souza
01:31 PM Feature #7016 (In Progress): system_information_widget.php - Indicate adaptive state timeout status when active: A few problems as it is implemented:
1. It doesn't work because it's checking @$curentries@ not @$pfstatetext@
2.... Jim Pingle
01:16 PM Feature #9260 (Feedback): ssh_tunnel_shell: Disable console message output: Silenced all the output of ssh_tunnel_shell.
Looks way better now, let me know if I have missed something. Luiz Souza
01:02 PM Bug #7772 (Resolved): Regression of Bug #906: I can't reproduce it either. When removing an interface, rules on that interface are also removed. Thus deleting the ... Jim Pingle
12:55 PM pfSense Docs Correction #10973 (Resolved): Feedback on Services — DHCPv6 Server: Changed to @FFF0@ as suggested Jim Pingle
12:30 PM Revision 82479cdc: Minor refinements to state table size display: Steve Beaver
11:15 AM Bug #10610 (Resolved): Package upgrade or reinstall hangs indefintely on the console: No problems on current version of pkg, on CE or factory, on 2.4.5-p1 or 2.5.0. Everything appears to be OK now. Jim Pingle
11:01 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Ben Hughes wrote:
> Yes, Jim's right. I'm forgetting i've build my test packages for 2.4.5 on a FreeBSD 11 build VM ... Chris Evans
10:39 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Yes, Jim's right. I'm forgetting i've build my test packages for 2.4.5 on a FreeBSD 11 build VM with matching librari... Ben Hughes
10:37 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Do not install packages across versions like that. Either upgrade to 2.5.0 completely or wait for it to be merged. An... Jim Pingle
10:36 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: @pkg install json-c@ should do the job, 0.14 is in the 2.4.5 repos. I have expected @pkg@ to have picked that up itse... Ben Hughes
09:42 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Ben Hughes wrote:
> Always like a nice easy fix!
>
> I've only just starting doing anything with pfsense dev wise... Chris Evans
09:23 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Always like a nice easy fix!
I've only just starting doing anything with pfsense dev wise but from github it seems... Ben Hughes
09:12 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Ben Hughes wrote:
> Just a thought, which version of pfSense is this with? And which version of the FRR plugin is in... Chris Evans
09:09 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Just a thought, which version of pfSense is this with? And which version of the FRR plugin is installed? It should be... Ben Hughes
08:35 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Ben Hughes wrote:
> Chris Evans wrote:
> > I'm just going in and adding/removing a fake neighbor to see if it would... Chris Evans
10:59 AM Bug #8870: Webgui incorrectly reports "The system is on the latest version".: Issue still exists Anonymous
10:29 AM Todo #10704: Work around PHP issues with SSL LDAP and multiple authentication servers: There is still likely to be a technical / non-documentation way to address this.
Some of that depends on the outco... Jim Pingle
10:21 AM Bug #6277 (Pull Request Review): RRD graphs are not created correctly for interfaces using CODELQ: Jim Pingle
03:18 AM Bug #6277: RRD graphs are not created correctly for interfaces using CODELQ: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/20 Viktor Gurov
10:20 AM Bug #10982 (Resolved): Primary/Secondary DNS Server field validation issue in Setup Wizard: The default config (With DNS Resolver enabled and in Resolver mode) does not require any DNS servers to be present un... Jim Pingle
10:10 AM pfSense Packages Bug #10990: net-snmp IPv6 listen address needs to be wrapped in square brackets: PR: https://github.com/pfsense/FreeBSD-ports/pull/965 Jim Pingle
10:09 AM pfSense Packages Bug #10990 (Pull Request Review): net-snmp IPv6 listen address needs to be wrapped in square brackets: Jim Pingle
10:05 AM Feature #10988 (Pull Request Review): Queue bw type in Mbit/s: Jim Pingle
10:03 AM Feature #4405 (In Progress): Traffic shaping doesn't work when applied to a bridge interface: Luiz Souza
10:03 AM Bug #9643 (In Progress): Limiters do not function properly on 2.5 snapshots: Luiz Souza
10:02 AM Feature #10322 (Pull Request Review): Force ipv4/ipv6 DNS resolution for NTP servers: Jim Pingle
10:02 AM Bug #7389 (In Progress): Limiter does not work with transparent proxy: Luiz Souza
09:54 AM Feature #10987 (Needs Patch): Add support for secure boot: Must be implemented in FreeBSD first: https://wiki.freebsd.org/SecureBoot Jim Pingle
09:53 AM Bug #10986 (Pull Request Review): dynamic interface address for 1:1 NAT works incorrectly in some dual-stack cases: Jim Pingle
09:44 AM Feature #10984 (Pull Request Review): Port Forward IPv6: Jim Pingle
09:39 AM Bug #10980: ``/etc/rc.local`` script content is executed at login instead of during boot sequence: Only the @rc.local@ parts are relevant here.
Non-root/admin users don't need the menu since most of its options wo... Jim Pingle
09:36 AM Bug #10978: rc.initial tries to execute rc.local.running even if it doesn't exist, and even if it is already running.: I did create another issue for it a few days ago as requested.
https://redmine.pfsense.org/issues/10980
alzee bum
09:34 AM Bug #10978: rc.initial tries to execute rc.local.running even if it doesn't exist, and even if it is already running.: .profile is expected to be executed at each login, which it is.
.profile runs rc.initial during an interactive ses... Jim Pingle
09:29 AM Bug #10947 (Pull Request Review): Virtual interface assignment can't be done in CLI interface assignment: Jim Pingle
09:24 AM Bug #10236 (Rejected): Cannot add more than 2 VMXNET3 Adapters in vSphere: Adding NICs to a hot/running VM has never worked and isn't expected to work. Shut down the VM (power off, not warm bo... Jim Pingle
09:20 AM Bug #10902 (Rejected): 2.5.0. Authentication logging: The beep is from the system console logging the high level syslog message, not a script. If something causes that to ... Jim Pingle
09:15 AM Bug #9136: IPv6 Tracking Interfaces Lose IPv6 Address in Certain Cases: I haven't seen this in a while, but cjl saw it more than I did. Reassigning to him for feedback since he could reprod... Jim Pingle
08:50 AM Todo #10464: Don't change the current update repo when new releases are available: While not a bug per se, it is something we could improve. It would prevent some accidental breakage if users couldn't... Jim Pingle
08:48 AM Feature #10970: UI/GUI has an issue scrolling while drop menue is clicked/open: This is the nature of the way the user has set the menu in the preferences.
Under System > General, if "Top Naviga... Jim Pingle
08:45 AM Bug #10971 (Rejected): OpenLDAP + group member attribute other than memberUid: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
08:43 AM Bug #10675: DHCPv6 config not all directives start on a new line as expected: Looks good to me as well, including the DNS server.... Jim Pingle
08:41 AM Bug #8390 (Confirmed): Input validation does not prevent removing a gateway used by a DNS server: Their problem is different from the ones linked.
When you remove a gateway, there can still be entries in the DNS ... Jim Pingle
06:52 AM pfSense Packages Feature #9721 (Feedback): add squidclient -h 127.0.0.1 mgr:info output to Diagnostics / Squid and status.php: PR has been merged. Thanks! Renato Botelho
06:42 AM pfSense Packages Feature #9721 (Pull Request Review): add squidclient -h 127.0.0.1 mgr:info output to Diagnostics / Squid and status.php: Renato Botelho
06:50 AM pfSense Packages Bug #6378 (Feedback): inline background styles in squidguard package: PR has been merged. Thanks! Renato Botelho
06:42 AM Bug #1353 (Pull Request Review): Number of queues possible: Renato Botelho

10/18/2020

01:45 PM Bug #10982: Primary/Secondary DNS Server field validation issue in Setup Wizard: When I run through the setup wizard with Allow DNS servers to be overridden by DHCP/PPP on WAN unchecked in
2.5.0-... Max Leighton
12:38 PM Bug #10963 (Resolved): Thermal Sensors widget shows invalid sensors: Looks good. Message buffer lines in the sysctl output are no longer parsed.
The values for coretemp and acpi thermal... Steve Wheeler
11:34 AM Bug #10977 (Resolved): Additional IPsec bypass rules input validation: This is fixed in:... Steve Wheeler
10:41 AM Bug #10716 (Resolved): Policy routing rules are not written correctly for a down gateway: This now correctly sets the gateway to none or disables rules entirely on packet loss:... Steve Wheeler
07:42 AM pfSense Packages Feature #10841: Allow per Source/VLAN/Network individual black&whitelists: Viktor Gurov wrote:
> can be realized with "views": https://forum.netgate.com/topic/129365/bypassing-dnsbl-for-speci... Stefan Bauer
06:31 AM pfSense Packages Bug #10990 (Resolved): net-snmp IPv6 listen address needs to be wrapped in square brackets: With net-snmp v5.7 (current 2.4.5) snmpd will accept an IPv6 listen address without square brackets, with v5.9 (2.5.0... Ben Hughes

10/17/2020

09:22 PM Feature #10743 (Resolved): Traffic shaper wizard: Add Google Stadia port range: Option is selectable and provides the correct entries to rules for shaping
tested on 2.5.0.a.20201017.1250 Jordan G
04:06 PM pfSense Packages Bug #10989: Snort alert page has hidden characters in IPv6 address: Oh. I searched for Snort bugs. Steve Y
03:41 PM pfSense Packages Bug #10989: Snort alert page has hidden characters in IPv6 address: Suricata issue #10187 Viktor Gurov
12:10 PM pfSense Packages Bug #10989 (New): Snort alert page has hidden characters in IPv6 address: It looks like Snort has hidden characters in IPv6 addresses on its alert page. This makes it difficult to search for... Steve Y
08:02 AM Feature #10469 (Resolved): Same RADIUS Cisco-AVPair parser code for both OpenVPN/IPsec: tested on 2.5.0.a.20201016.1850
FreeRADIUS ACLs:... Viktor Gurov
05:14 AM pfSense Packages Feature #9721 (New): add squidclient -h 127.0.0.1 mgr:info output to Diagnostics / Squid and status.php: Adds Squid status top menu entry:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/2 Viktor Gurov
04:37 AM pfSense Packages Feature #9721 (Resolved): add squidclient -h 127.0.0.1 mgr:info output to Diagnostics / Squid and status.php: Tested on:... Danilo Zrenjanin
04:59 AM pfSense Packages Bug #9809 (Resolved): postgresql support not compiled: Tested on :... Danilo Zrenjanin
03:26 AM Bug #1353 (New): Number of queues possible: unique priority is mandatory now, which is incorrect
from https://www.freebsd.org/cgi/man.cgi?query=pf.conf&apropos=... Viktor Gurov
03:08 AM pfSense Packages Bug #9211 (Resolved): GeoIP broken in pfSense-pkg-ntopng-0.8.13_3: Tested on :... Danilo Zrenjanin
01:48 AM Feature #10988: Queue bw type in Mbit/s: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/18 Viktor Gurov
12:08 AM Feature #10988 (Resolved): Queue bw type in Mbit/s: Set default traffic shaper queue bw type to Mbit/s in the same way as #10727 Viktor Gurov

10/16/2020

11:58 PM pfSense Packages Bug #10964 (Resolved): pfSense-pkg-frr 0.6.8_4 does not use default ospf area if one is not defined on the interface.: Viktor Gurov
09:57 PM pfSense Packages Bug #10964: pfSense-pkg-frr 0.6.8_4 does not use default ospf area if one is not defined on the interface.: interfaces use default ospf area if it is not defined on the interface.
interface em0
ip ospf area 0.0.0.0
inte... Alhusein Zawi
11:53 PM Feature #10322: Force ipv4/ipv6 DNS resolution for NTP servers: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/17 Viktor Gurov
10:33 PM Bug #9660 (Resolved): Syslogd keeps using old IP address after interface IP address change: Alhusein Zawi
10:32 PM Bug #9660: Syslogd keeps using old IP address after interface IP address change: syslogd changed the IP if Interface's IP changed.
checked via Diagnostics > Sockets
Alhusein Zawi
05:22 PM Feature #10987 (Needs Patch): Add support for secure boot: Pfsense should support this to increase the security of the system and for it to be able to run with secure boot on. Anonymous
04:46 PM Revision 55be240f: Completed #7016 as specified: Steve Beaver
04:42 PM pfSense Packages Bug #6378: inline background styles in squidguard package: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/1 Viktor Gurov
01:03 PM Revision 28a0449e: Applied regex fix to primary DNS server per #10982: Steve Beaver
12:56 PM Revision d4dc6562: Fixed #10982 by adjusting validation regex.: Steve Beaver
12:02 PM Bug #10986: dynamic interface address for 1:1 NAT works incorrectly in some dual-stack cases: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/16 Viktor Gurov
05:29 AM Bug #10986 (Resolved): dynamic interface address for 1:1 NAT works incorrectly in some dual-stack cases: If you select IPv6-only interface address in "External subnet IP" field
and IPv4-only or dualstack interface address... Viktor Gurov
11:47 AM Feature #7016 (Feedback): system_information_widget.php - Indicate adaptive state timeout status when active: Implemented as requested Anonymous
10:47 AM pfSense Packages Feature #10909: #define MAXVIFS 32 to 64: Renato, I am running an early pimdv3 here. Not for release yet, however working properly .... (maintainer is working ... Louis B
09:34 AM Bug #7772: Regression of Bug #906: Jim - Would you confirm this please? I am unable to reproduce. Anonymous
09:34 AM Bug #9450 (In Progress): Multiwan gateway group fail-over not working as expected (possible race condition): Renato Botelho
09:20 AM Bug #9450: Multiwan gateway group fail-over not working as expected (possible race condition): It now appears that gateways that are forced down in the gateway configs do not appear to be offlined.
Previously,... Anonymous
05:54 AM Bug #9450 (Resolved): Multiwan gateway group fail-over not working as expected (possible race condition): As mentioned on forums, it works Renato Botelho
09:03 AM Bug #7132 (Resolved): PPPoE IP Alias: Anonymous
09:01 AM Feature #10214 (Resolved): Allow IPsec duplicate endpoints: Anonymous
09:00 AM Bug #10589 (Resolved): interfaces_staticarp_configure() doesnt need to disable staticarp on boot: Anonymous
09:00 AM Feature #10870 (Resolved): Allow custom IPSEC NAT-T port: Anonymous
08:59 AM Bug #10942: LDAP Auth error after update 2.5.0.a.20200930.1303: Please confirm fix Anonymous
08:55 AM Feature #2424 (Resolved): Allow masking of pass-thru MACs: Anonymous
08:55 AM Bug #3488 (Resolved): Deleting an interface doesn't delete associated shaper queues: Anonymous
08:54 AM Bug #6528: The captive portal cannot be used on interface lan since it is part of a bridge but works anyway: Please confirm Anonymous
08:47 AM Bug #10675 (Resolved): DHCPv6 config not all directives start on a new line as expected: Anonymous
08:45 AM Bug #10675: DHCPv6 config not all directives start on a new line as expected: the original issue seems to be specific for snapshot 2.5 (not 2.4.5),
now it's OK, all directives start on a new lin... Viktor Gurov
08:21 AM Bug #10675 (In Progress): DHCPv6 config not all directives start on a new line as expected: Anonymous
08:44 AM Bug #8015 (Resolved): IPsec VPN Not Reconnecting until complete reboot: Anonymous
08:39 AM Bug #9331 (Resolved): Parallel Rekey fails for multiple Child SAs: Anonymous
08:37 AM Bug #9435 (Resolved): Dynamic DNS Update events do not occur after certain failover event cases: Anonymous
08:34 AM Feature #9642 (Resolved): Add DDNS support for dynv6.com: Anonymous
08:34 AM Bug #9758 (Resolved): dhcpleases does not handle spaces in DHCP lease hostnames: Anonymous
08:31 AM Bug #10224: DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: Please confirm fix Anonymous
08:29 AM Bug #10365 (Resolved): LAGG member event causes filter to reload: Anonymous
08:28 AM Bug #10206 (Resolved): VIP alias-ip's disappear from nic (caused by running ifconfig twice.?.): Anonymous
08:27 AM Feature #10469: Same RADIUS Cisco-AVPair parser code for both OpenVPN/IPsec: Please confirm & resolve Anonymous
08:26 AM Feature #10545 (Resolved): RADIUS authenticated users should be able to log in via ssh: Anonymous
08:26 AM Bug #10546 (Resolved): Gateways removed from routing groups based on low alert thresholds: Anonymous
08:25 AM Feature #10556 (Resolved): Change action on 'XML configuration file not found' error: Anonymous
08:24 AM Bug #10594 (Resolved): add QLogic 10 Gigabit Ethernet driver (qlxgb) to the ALTQ-capable list: Anonymous
08:23 AM Bug #10558 (Resolved): Multicast daemons work at boot, but fail if restarted: Anonymous
08:21 AM Bug #10585: auth.inc: Exception calling XMLRPC method restore_config_section #-1 : Authentication failed: Invalid username or password: Please confirm Anonymous
08:18 AM Bug #10680: Improve interface caching when we have many interfaces: Please confirm Anonymous
08:17 AM Bug #10716: Policy routing rules are not written correctly for a down gateway: Please confirm and resolve Anonymous
08:16 AM Feature #10748 (Resolved): Add support for limiting IPsec VPN access per user group via RADIUS: Anonymous
08:15 AM Bug #10838 (Resolved): mask options didn't apply to the sched limiter: Anonymous
08:10 AM Bug #10943 (In Progress): boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: Anonymous
08:09 AM Bug #10963: Thermal Sensors widget shows invalid sensors: Please test & resolve Anonymous
08:08 AM Bug #10977: Additional IPsec bypass rules input validation: Please confirm/resolve Anonymous
08:05 AM Bug #10982: Primary/Secondary DNS Server field validation issue in Setup Wizard: Applied in changeset commit:d4dc6562bf1eb5948bdc34ad09478c810df968eb. Anonymous
07:55 AM Bug #10982 (Feedback): Primary/Secondary DNS Server field validation issue in Setup Wizard: Anonymous
07:55 AM Bug #10982: Primary/Secondary DNS Server field validation issue in Setup Wizard: Adjusted regex to permit secondary DNS server setting to be blank Anonymous
07:09 AM Feature #10678 (Resolved): Allow to select 802.11n channel width (HT): tested on 2.5.0.a.20201015.1850 and rtwn(4) based wifi card
"Channel width" selection is allowed in 802.11n mode Viktor Gurov
06:11 AM Bug #10985: IPSec IKEv2 BINAT multiple Phase 2 issue: Christian Wall wrote:
> Yes I know, but the issue is not the other side, the problem is the pfsense side.
Please ... Viktor Gurov
05:34 AM Bug #10985: IPSec IKEv2 BINAT multiple Phase 2 issue: Yes I know, but the issue is not the other side, the problem is the pfsense side. Christian Wall
05:32 AM Bug #10985 (Rejected): IPSec IKEv2 BINAT multiple Phase 2 issue: “split connections” option is used for interoperability with third party devices that do not support multiple traffic... Viktor Gurov
01:38 AM Bug #10985 (Rejected): IPSec IKEv2 BINAT multiple Phase 2 issue: We moved one ipsec vpn tunnel from IKEv1 to IKEv2. We have two P2 Entries and both of them are using BINAT with the s... Christian Wall
06:03 AM Feature #10946 (Resolved): Sanitize WiFi 802.1x RADIUS shared secret: tested on 2.5.0.a.20201009.1850:... Viktor Gurov
05:01 AM Feature #10984: Port Forward IPv6: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/15
see also #7705 Viktor Gurov
01:16 AM Feature #10984 (Resolved): Port Forward IPv6: Allow to use IPv6 addresses on the Firewall / NAT / Port Forward
see also how this works in Squid IPv6 transparent... Viktor Gurov
03:01 AM Feature #10975 (Resolved): Button to clear the NDP cache: Tested on :... Danilo Zrenjanin
12:49 AM pfSense Packages Bug #10983 (Feedback): pfBlockerNG not cleaning everything behind it: Unable to reproduce it on the latest pfBlockerNG-devel-2.2.5_37 - virtualip is successfully removed during uninstall Viktor Gurov

10/15/2020

11:38 PM Feature #7406 (Resolved): Ability to clear all dhcp leases at once: Alhusein Zawi
11:37 PM Feature #7406: Ability to clear all dhcp leases at once: Feature has been added and working.
Alhusein Zawi
08:36 PM pfSense Packages Bug #10983 (Rejected): pfBlockerNG not cleaning everything behind it: I moved from PI-Hole to pfBlockerNG for a while. I chose to move back to PI-Hole and stopped using pfBlockerNG. After... Jacques Bourdeau
07:38 PM Revision 0de6758e: Fix #9450: Change default value for clear_alarm to true so cache file is used only
once. We can't be sure the value on cache wi... Renato Botelho
07:38 PM Revision ffedcdf4: Replace unlink() by unlink_if_exists(): Renato Botelho
06:11 PM Revision 626e247e: Merge pull request #4481 from wurzelpanzer/master: Renato Botelho
05:43 PM Revision 449fdf25: Fix #10978: Run rc.local and rc.local.running: Fix the logic used to detect if rc.local and/or rc.local.running are or
not running and execute them only when it's n... Renato Botelho
03:09 PM Bug #10982 (Resolved): Primary/Secondary DNS Server field validation issue in Setup Wizard: When clearing out the Primary/Secondary DNS Server fields in the Setup Wizard it causes the validation to fail. An em... Jared Dillard
02:58 PM Feature #7284 (Resolved): NTPd Autoset GPS device baud rate: Anonymous
02:45 PM Bug #9450 (Feedback): Multiwan gateway group fail-over not working as expected (possible race condition): Applied in changeset commit:0de6758e2893e4390acfa0b55e31b1dece231618. Renato Botelho
02:27 PM Bug #9450 (In Progress): Multiwan gateway group fail-over not working as expected (possible race condition): Some problems reported at https://forum.netgate.com/topic/157633/wan-gw-monitor/2 after this was merged. I'll work o... Renato Botelho
02:27 PM Bug #10981 (Duplicate): Display of gw monitoring not working: Lets keep all information on original ticket #9450 Renato Botelho
01:56 PM Bug #10981 (Duplicate): Display of gw monitoring not working: Hi.
See post: https://forum.netgate.com/topic/157633/wan-gw-monitor/2
Something broke dpinger in last 2 days. Greg M
01:39 PM Bug #9539 (Resolved): HA: admin user's authorized key(s) won't get synced: Tested in
2.5.0-DEVELOPMENT (amd64)
built on Thu Oct 15 07:04:11 EDT 2020
FreeBSD 12.2-STABLE
With the Synchr... Max Leighton
01:11 PM Feature #10972 (Feedback): Add IPv6 DDNS support for easyDNS: PR has been merged. Thanks! Renato Botelho
01:06 PM Bug #10980 (Resolved): ``/etc/rc.local`` script content is executed at login instead of during boot sequence: See https://redmine.pfsense.org/issues/10978 for context.
/etc/skel/.profile is copied to .profile in all users ho... alzee bum
01:02 PM pfSense Packages Feature #10969 (Feedback): Add Sekhan/TheGreatWall DoH feeds: PR has been merged. Thanks! Renato Botelho
01:02 PM pfSense Packages Bug #10927 (Feedback): pfBlockerNG-devel fullfill the pfsense config history when RAM disk in use: PR has been merged. Thanks! Renato Botelho
12:56 PM pfSense Packages Bug #4247 (Feedback): Changes not saved when expression list becomes empty: PR has been merged. Thanks! Renato Botelho
07:22 AM pfSense Packages Bug #4247: Changes not saved when expression list becomes empty: https://github.com/pfsense/FreeBSD-ports/pull/964 Viktor Gurov
12:56 PM Bug #10978 (Resolved): rc.initial tries to execute rc.local.running even if it doesn't exist, and even if it is already running.: alzee bum wrote:
> Renato Botelho wrote:
> > Applied in changeset commit:449fdf250171616d4865bfd5c865c64035e14496.
... Renato Botelho
12:52 PM Bug #10978: rc.initial tries to execute rc.local.running even if it doesn't exist, and even if it is already running.: Renato Botelho wrote:
> Applied in changeset commit:449fdf250171616d4865bfd5c865c64035e14496.
Thanks Renato, that... alzee bum
12:50 PM Bug #10978: rc.initial tries to execute rc.local.running even if it doesn't exist, and even if it is already running.: Applied in changeset commit:449fdf250171616d4865bfd5c865c64035e14496. Renato Botelho
12:44 PM Bug #10978 (Feedback): rc.initial tries to execute rc.local.running even if it doesn't exist, and even if it is already running.: Renato Botelho
12:01 PM Bug #10978 (Resolved): rc.initial tries to execute rc.local.running even if it doesn't exist, and even if it is already running.: See code here: https://github.com/pfsense/pfsense/blob/master/src/etc/rc.initial#L33
Lines 33-46 check for rc.loca... alzee bum
12:54 PM pfSense Packages Bug #10447: Framed-IP-Address with plus sign is deprecated: PR has been merged. Thanks! Renato Botelho
12:46 PM pfSense Docs Correction #10979 (Closed): Status Light on XG-7100: The status light on the XG-7100 is currently not implemented. It should be added to the docs that this light is unus... Kris Phillips
11:02 AM Bug #10947: Virtual interface assignment can't be done in CLI interface assignment: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/14 Viktor Gurov
10:43 AM Revision 4798939d: IPsec bypass WebGUI fix. Issue #10977: Viktor Gurov
08:36 AM Revision c6d22ee1: VLAN MTU extra fix. Issue #9154: Viktor Gurov
05:44 AM Bug #10977 (Feedback): Additional IPsec bypass rules input validation: PR has been merged. Thanks! Renato Botelho
01:31 AM Bug #10977: Additional IPsec bypass rules input validation: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/12 Viktor Gurov
05:41 AM Bug #9154: Editing a VLAN parent interface causes all VLANs to be reconfigured, which can lead to problems: Viktor Gurov wrote:
> extra improvement:
> https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/13
Merged... Renato Botelho
03:41 AM Bug #9154: Editing a VLAN parent interface causes all VLANs to be reconfigured, which can lead to problems: extra improvement:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/13 Viktor Gurov

10/14/2020

05:38 PM Bug #10977: Additional IPsec bypass rules input validation: And just seen that box needs updating but still present in:... Steve Wheeler
05:36 PM Bug #10977 (Resolved): Additional IPsec bypass rules input validation: Trying to save the save the IPSec Advanced Settings page, even without making any changes, results in an input error ... Steve Wheeler
04:04 PM Revision 2e1cfbf9: UDP/Other protocols state timeout. Implements #1635: Viktor Gurov
04:04 PM Revision c91be02b: Nested alias IDN fix. Issue #10968: Viktor Gurov
03:56 PM Revision a9fc44f0: Style fixes: Renato Botelho
03:56 PM Revision 161e60fa: Add missing parameter to get_dpinger_status() call: Renato Botelho
03:56 PM Revision 5affb137: Prevent possible race condition, fixes #9450: Instead of calling get_dpinger_status() again in the code handling dpinger
alarms, save the original alarm status in ... Vladimir Voskoboynikov
03:56 PM Revision 094db492: Minor text fix. Issue #10546: No need to log the PID, it's added to the logs anyways. Vladimir Voskoboynikov
03:56 PM Revision 04a72a97: Add gateway substatus. Fixes #10546: Update return_gateways_status to return a substatus as well as the existing status.
status changed to be one of onli... Vladimir Voskoboynikov
03:54 PM Revision 6fe2387c: Clean NDP table button. Implements #10975: Viktor Gurov
03:52 PM Revision 69ffb456: VLAN MTU improvements. Issue #9154: Viktor Gurov
03:48 PM Revision 7957389b: Interface assignment fix for PPP interfaces. Fixes #10240: Viktor Gurov
02:42 PM Bug #10236: Cannot add more than 2 VMXNET3 Adapters in vSphere: With some more investigation I've found the following:
*Created a new single vmxnet3 nic VM.*... Patrick Sanderson
01:59 PM Bug #10236: Cannot add more than 2 VMXNET3 Adapters in vSphere: I've diff'd the VMX files between creating a VM with 2 nics (which works) and creating a VM with 1 NIC and attempting... Patrick Sanderson
01:48 PM Bug #10960: Bring up VXLANs correctly at boot: With that change the vxlans on WAN are created then destroyed and re-created at boot. Somehow the vxlans on WAN are b... Steve Wheeler
12:06 PM Bug #10960: Bring up VXLANs correctly at boot: first issue fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/11 Viktor Gurov
01:32 PM Bug #10902: 2.5.0. Authentication logging: Nice catch
I caught it via siem when logs got missing Greg M
01:22 PM Bug #10902 (Confirmed): 2.5.0. Authentication logging: I have replicated this a number of times but didn't spot it until now. I only noticed it does not 'beep' when you log... Steve Wheeler
01:29 PM pfSense Packages Bug #10332 (Closed): PFBlockerNG loading GeoLite2-Country.mmdb: Indeed it does! Marcos M
11:15 AM Bug #1635: timeout setting on firewall rules does not work for UDP: Applied in changeset commit:2e1cfbf9957a559a49af37c00f07db8854950ae3. Viktor Gurov
11:06 AM Bug #1635 (Feedback): timeout setting on firewall rules does not work for UDP: PR has been merged. Thanks! Renato Botelho
11:05 AM Bug #9450: Multiwan gateway group fail-over not working as expected (possible race condition): Applied in changeset commit:5affb137561c74bb5559f0706c86c28a85b14557. Vladimir Voskoboynikov
11:01 AM Bug #9450 (Feedback): Multiwan gateway group fail-over not working as expected (possible race condition): PR has been merged. Thanks! Renato Botelho
11:05 AM Bug #10546: Gateways removed from routing groups based on low alert thresholds: Applied in changeset commit:04a72a975d4e59f5ad8bc9fd41df10c6a1f0ed7e. Vladimir Voskoboynikov
11:01 AM Bug #10546 (Feedback): Gateways removed from routing groups based on low alert thresholds: PR has been merged. Thanks! Renato Botelho
11:05 AM Bug #10968 (Feedback): Mixed & Upper case Alias table names broken.: PR has been merged. Thanks! Renato Botelho
11:00 AM Feature #10975: Button to clear the NDP cache: Applied in changeset commit:6fe2387c445d49ca828aa2c0ed00d9a2c842037f. Viktor Gurov
10:55 AM Feature #10975 (Feedback): Button to clear the NDP cache: PR has been merged. Thanks! Renato Botelho
03:49 AM Feature #10975: Button to clear the NDP cache: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/8 Viktor Gurov
03:31 AM Feature #10975 (Resolved): Button to clear the NDP cache: It would be nice to have a button to clear the NDP cache in "Diagnostics: NDP Table".
same as #4038 Viktor Gurov
10:54 AM Bug #9136 (Feedback): IPv6 Tracking Interfaces Lose IPv6 Address in Certain Cases: Jim, could you validate if the problem still happens after fix for #9154 was applied? Renato Botelho
10:53 AM Bug #9154 (Feedback): Editing a VLAN parent interface causes all VLANs to be reconfigured, which can lead to problems: PR has been merged. Thanks! Renato Botelho
09:33 AM Bug #9154: Editing a VLAN parent interface causes all VLANs to be reconfigured, which can lead to problems: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/6 Viktor Gurov
10:51 AM Bug #10240 (Feedback): Incorrect interface assignment after switching from PPPoE: PR has been merged. Thanks! Renato Botelho
10:20 AM pfSense Packages Bug #10976 (Rejected): Freeradius dont start with SQL configuration: no such issue on pfSense 2.5.0.a.20201013.1850 with FreeRADIUS pkg 0.15.7_18:... Viktor Gurov
07:08 AM pfSense Packages Bug #10976 (Rejected): Freeradius dont start with SQL configuration: My Pfsense is 2.5
I tried run freeradius with mysql suport but the freeradius dont start. the follow error occur:
... Teste Teste
09:33 AM Bug #10974: pfSense showing unspecified DHCP assignment range: So I confirmed this morning it is still doling out leases in that range after I'd manually deleted them all last nigh... Mark Whitworth
04:04 AM pfSense Packages Feature #9742 (Resolved): Print Patch ID in log while patching: Tested on :... Danilo Zrenjanin
03:22 AM Bug #8131: No way to configure static ARP entries on a /31 (need a better way to configure static ARP entries): duplicate of #2622 Viktor Gurov
03:16 AM pfSense Packages Bug #10447: Framed-IP-Address with plus sign is deprecated: Danilo Zrenjanin wrote:
> Tested on :
> [...]
>
> I still can enter 192.0.2.32+ with no complaints from pfSense.... Viktor Gurov
02:53 AM pfSense Packages Bug #10447: Framed-IP-Address with plus sign is deprecated: Tested on :... Danilo Zrenjanin
03:03 AM pfSense Packages Bug #10927: pfBlockerNG-devel fullfill the pfsense config history when RAM disk in use: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/962 Viktor Gurov
01:17 AM pfSense Packages Bug #10502: LLDP spamming errors on Netgate XG-7100: Renato Botelho wrote:
> DRago_Angel [InV@DER] wrote:
> > So maybe we can track this issue https://github.com/vincen... Viktor Gurov
01:06 AM pfSense Packages Feature #10969: Add Sekhan/TheGreatWall DoH feeds: https://github.com/pfsense/FreeBSD-ports/pull/961 Viktor Gurov

10/13/2020

11:12 PM Bug #10974 (Rejected): pfSense showing unspecified DHCP assignment range: pfSense is assigning addresses from 2 ranges in my VLAN_GUEST space. Some time ago I used that .90-.191 range, but no... Mark Whitworth
08:39 PM Revision 7d813139: Fix #10680: Rewrite cache system in interfaces.inc: Change it to not invalidate cache when not needed. Makes boot much faster
when we have many VLANs Jonas Christoffersen
08:39 PM Revision 4320bc83: Fix #10589: Skip disabling staticarp on boot: Also implemented is a simplification of code to handle static ARP entries. Jonas Christoffersen
04:32 PM pfSense Packages Bug #10502 (In Progress): LLDP spamming errors on Netgate XG-7100: There is no PR waiting for review Renato Botelho
04:28 PM pfSense Packages Bug #10502: LLDP spamming errors on Netgate XG-7100: DRago_Angel [InV@DER] wrote:
> So maybe we can track this issue https://github.com/vincentbernat/lldpd/issues/394 an... Renato Botelho
03:45 PM Bug #10680 (Feedback): Improve interface caching when we have many interfaces: Applied in changeset commit:7d8131393dbd7aca507cddade443af41a27fec80. Jonas Christoffersen
03:45 PM Bug #10589 (Feedback): interfaces_staticarp_configure() doesnt need to disable staticarp on boot: Applied in changeset commit:4320bc83ae45c8ebc827e3c60065578264cba532. Jonas Christoffersen
11:04 AM pfSense Packages Feature #10134 (Resolved): pfSense-pkg-softflowd: Add additional options available in softflowd-1.0.0: Tested on 2.4.5_p1 and on 2.5.0-DEVELOPMENT (built on Tue Oct 13 07:05:06 EDT 2020)
MAC Address Flow Tracking Leve... Azamat Khakimyanov
10:55 AM pfSense Packages Feature #10893 (Resolved): TFTP package improvements: Tested on 2.4.5_p1 and on 2.5.0-DEVELOPMENT (built on Tue Oct 13 07:05:06 EDT 2020).
"Write access" and "Logging" ... Azamat Khakimyanov
07:32 AM pfSense Packages Bug #10964 (Feedback): pfSense-pkg-frr 0.6.8_4 does not use default ospf area if one is not defined on the interface.: Renato Botelho
07:31 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: PR has been merged. Thanks! Renato Botelho
04:04 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Chris Evans wrote:
> I'm just going in and adding/removing a fake neighbor to see if it would cause my valid BGP nei... Ben Hughes
07:26 AM pfSense Packages Feature #10909 (Needs Patch): #define MAXVIFS 32 to 64: FreeBSD changes are merged. Waiting for pimd patch Renato Botelho
07:25 AM pfSense Packages Feature #10909: #define MAXVIFS 32 to 64: xavier Lemaire wrote:
> do i need to open another request for the pimd part?
Please do it Renato Botelho

10/12/2020

10:59 PM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Ben Hughes wrote:
> Chris Evans wrote:
> > I'm still seeing BGP neighbor resets when changes are being made, I beli... Chris Evans
03:34 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Chris Evans wrote:
> I'm still seeing BGP neighbor resets when changes are being made, I believed this effort was to... Ben Hughes
03:32 PM Feature #10603 (Resolved): Handle -c commands with arguments in rc.initial: Anonymous
03:31 PM Bug #9058 (In Progress): Kernel panic during L2TP retransmit: Anonymous
12:12 PM Revision dccd106a: Fixed #10406 By adding "notoggleall" class to button group: Steve Beaver
12:05 PM Revision 8fa31d5e: Merge pull request #4470 from vktg/cleardhcpleases: Renato Botelho
12:04 PM Revision 085e12a1: Merge pull request #4478 from vktg/ddnsstatic: Renato Botelho
12:03 PM Revision 55aaa49d: Merge pull request #4472 from vktg/ntpauth: Renato Botelho
12:03 PM Revision 3cd0307f: Merge pull request #4480 from rdlugosz/add-helptext-for-unbound-dhcp: Renato Botelho
11:56 AM Bug #9459 (Resolved): patch pf: silence a runtime warning pfr_update_stats: assertion failed.: No response from OP. Assumed fixed Anonymous
11:55 AM Bug #9548 (Resolved): Do not use VLANMTU flag to decide if interface supports to run VLAN: No activity for ten months Anonymous
11:52 AM Bug #10776 (Closed): filterlog: Loopback source/destination sometimes reports 127.0.0.1 as 127.0.01: No response from OP in three months Anonymous
10:44 AM pfSense Packages Feature #10769 (Resolved): Prevent users from creating new ACMEv1 keys: Tested on 2.4.5_p1 and on 2.5.0-DEVELOPMENT (built on Mon Oct 12 07:05:15 EDT 2020)
There is no option to create L... Azamat Khakimyanov
09:02 AM pfSense Docs Correction #10973 (Resolved): Feedback on Services — DHCPv6 Server: *Page:* https://docs.netgate.com/pfsense/en/latest/services/dhcp/ipv6.html
*Feedback:*
> _The Prefix Delegati... Chris Linstruth
08:22 AM Feature #7405: Ability to add dhcp host reservations from "Diagnostics -> ARP table": Hi,
Any chance for this to be implemented? ml 35
07:47 AM Bug #6598 (Resolved): "PPPoE clients" placeholder in rules only includes first PPPoE server instance: Renato Botelho
07:45 AM Feature #7287 (New): NTP add support for ACTS ref clock: Renato Botelho
07:45 AM pfSense Packages Bug #7797 (Feedback): Squid Reverse Proxy alternating between destinations: PR has been merged Renato Botelho
07:44 AM pfSense Packages Bug #9211 (Feedback): GeoIP broken in pfSense-pkg-ntopng-0.8.13_3: PR has been merged Renato Botelho
07:44 AM Bug #9539 (Feedback): HA: admin user's authorized key(s) won't get synced: PR https://github.com/pfsense/pfsense/pull/4221 was merged and should fix this Renato Botelho
07:42 AM pfSense Packages Feature #9588 (Duplicate): New package: node_exporter: Duplicate of #9974 Renato Botelho
07:40 AM pfSense Packages Feature #9902 (Resolved): add sticky filter for Alert Log please: Already resolved Renato Botelho
07:39 AM Feature #9970 (New): Captive Portal and SAML2 Integration: Renato Botelho
07:39 AM pfSense Packages Bug #9981 (Resolved): Suricata "Use IP Reputation Lists on this interface." actually defaults to ON, despite incorrect comment.: Already resolved Renato Botelho
07:38 AM Bug #10161 (Resolved): Improve renaming of pfSense in non-pfSense builds.: This was resolved months ago Renato Botelho
07:38 AM Feature #10280 (New): DHCP Leases widget: Renato Botelho
07:37 AM pfSense Packages Bug #10447 (Feedback): Framed-IP-Address with plus sign is deprecated: PR was merged months ago Renato Botelho
07:29 AM pfSense Packages Feature #9721 (Feedback): add squidclient -h 127.0.0.1 mgr:info output to Diagnostics / Squid and status.php: PR has been merged. Thanks! Renato Botelho
07:26 AM pfSense Packages Feature #10950 (Feedback): Allow to select only netmap-compatible cards for inline mode: PR has been merged. Thanks! Renato Botelho
07:26 AM pfSense Packages Bug #10911 (Feedback): Bandwidthd iframe not resizing in 2.4.5/2.4.5p1: PR has been merged. Thanks! Renato Botelho
07:20 AM Bug #10406: Interfaces.php PPPoE selection display inappropriate "Toggle All" button when periodic reset set to "pre-set": Applied in changeset commit:dccd106aa51a96b9a275858495539571f8701e6d. Anonymous
07:14 AM Bug #10406 (Feedback): Interfaces.php PPPoE selection display inappropriate "Toggle All" button when periodic reset set to "pre-set": ... Anonymous
07:12 AM Feature #1257: Handle encypted CA/Certificate private keys: Moving to Future due to lack of activity on proposed Pull Request Renato Botelho
07:11 AM Feature #2146 (Feedback): Allow concurrent logins when using vouchers: Already resolved by #9432. Leaving it in feedback for confirmation Renato Botelho
07:09 AM Bug #7778 (Feedback): DHCP relay not working correctly with bridges: PR merged months ago Renato Botelho
07:09 AM Bug #9437 (Feedback): Captive Portal Bandwidth Limiter application issue (Credentials Vs. MacAddr Validation): PR was merged in June Renato Botelho
07:07 AM Feature #10214 (Feedback): Allow IPsec duplicate endpoints: As mentioned by Viktor on comment 6, fixed by another PR Renato Botelho
07:05 AM Feature #8794 (Feedback): NTP authentication support: PR has been merged. Thanks! Renato Botelho
07:05 AM Bug #10224 (Feedback): DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: PR has been merged. Thanks! Renato Botelho
07:05 AM Feature #7406 (Feedback): Ability to clear all dhcp leases at once: PR has been merged. Thanks! Renato Botelho
06:29 AM Bug #10968: Mixed & Upper case Alias table names broken.: Viktor already have a patch to fix this one Renato Botelho
04:42 AM Feature #10322: Force ipv4/ipv6 DNS resolution for NTP servers: I'm facing the same bug. I have an IPv4-only network with IPv6 disabled in pfSense, but my DNS servers reply with bot... Monseigneur Phelypeaux

10/11/2020

10:41 PM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: I'm still seeing BGP neighbor resets when changes are being made, I believed this effort was to make it so full reloa... Chris Evans
04:56 PM Bug #10891 (Resolved): Captive Portal related files are not deleted after deleting CP zone in WebGUI: Tested in
2.5.0-DEVELOPMENT (amd64)
built on Sun Oct 11 13:01:59 EDT 2020
FreeBSD 12.2-STABLE
confirmed that ... Max Leighton
03:25 PM Revision 00105b36: easyDNS IPv6 DynDNS support: This adds support for IPv6 records to easyDNS DynDNS.
https://redmine.pfsense.org/issues/10972 wurzelpanzer
01:39 PM Todo #10533: Change default domain for new installations from "localdomain" to "home.arpa": There is also a Draft (2017) https://tools.ietf.org/html/draft-wkumari-dnsop-internal-00 also expired (2018) that pro... Rick Coats
01:32 PM Todo #10533: Change default domain for new installations from "localdomain" to "home.arpa": → luckman212 wrote:
> I'd suggest one of the following instead, since many pfSense installs are not used in home env... Rick Coats
10:59 AM Feature #8149: NTPsec: Last commit was 6 years ago .. https://github.com/bsdphk/Ntimed
Allright, thank you for your feedback anyways!
Wilhelm Johansen
10:40 AM Bug #10960 (Confirmed): Bring up VXLANs correctly at boot: Tested:... Steve Wheeler
10:33 AM Feature #10972: Add IPv6 DDNS support for easyDNS: https://github.com/pfsense/pfsense/pull/4481 Mischa De Pol
10:13 AM Feature #10972 (Resolved): Add IPv6 DDNS support for easyDNS: Add support for easyDNS.com IPv6 dynamic DNS update.
This is based on the existing easyDNS.com IPv4 service.
ht... Mischa De Pol
10:32 AM Bug #10899 (Resolved): VXVLAN interfaces are not created correctly: Tested:... Steve Wheeler
10:05 AM Bug #10898 (Resolved): vxlan interfaces fail the interface mismatch check at boot.: Tested in:... Steve Wheeler

10/10/2020

04:52 PM pfSense Packages Bug #10332: PFBlockerNG loading GeoLite2-Country.mmdb: It appears that this was fixed.
https://github.com/pfsense/FreeBSD-ports/commit/2eae4ebc337619fb4f6f32979968394649... John Clark
12:36 PM pfSense Packages Bug #10332: PFBlockerNG loading GeoLite2-Country.mmdb: I could not reproduce this on pfSense 2.4.5-p1 running pfBlockerNG-devel 2.2.5_36.
Looking under /usr/local/share/... Marcos M
04:45 PM Bug #1635: timeout setting on firewall rules does not work for UDP: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/10 Viktor Gurov
04:11 PM Feature #939 (Closed): Ability to restore specific areas of configuration backup from full config backup: already works on 2.4.4-p3 and higher Viktor Gurov
04:04 PM Todo #10464: Don't change the current update repo when new releases are available: Hello Craig,
This is not a bug report and we recommend you open a ticket with our support team. Kris Phillips
03:54 PM pfSense Packages Bug #10886: NAT64 allows to bypass pfBlockerNG IPv4 feed list: I don't know if this is possible, but a more intuitive solution is to have a "interface" for NAT64 (non-intuitively i... Rick Coats
12:48 PM Feature #10970 (Closed): UI/GUI has an issue scrolling while drop menue is clicked/open: This is really essentially a duplicate of:
https://redmine.pfsense.org/issues/10271
Any fix that gets implemented... Marcos M
11:53 AM Feature #10970: UI/GUI has an issue scrolling while drop menue is clicked/open: mom aiaz wrote:
> hello ,
>
> i notice that i am not able to scroll the drop-list if it taller than screen height... Kris Phillips
05:17 AM Feature #10970 (Closed): UI/GUI has an issue scrolling while drop menue is clicked/open: hello ,
i notice that i am not able to scroll the drop-list if it taller than screen height,
to go around this i ... mom aiaz
12:47 PM Bug #10949: PPPoE server can't be added: Tested on:... Danilo Zrenjanin
12:44 PM Bug #10532 (Resolved): Mobile PSK users don't have 'mobile-userpool' section: Tested on:... Danilo Zrenjanin
12:43 PM Bug #10971: OpenLDAP + group member attribute other than memberUid: When I change *User naming attribute* to *entryDN*, I can log in and see all groups. But it's a bit inconvenient.
... Norbert K
12:32 PM Bug #10971 (Rejected): OpenLDAP + group member attribute other than memberUid: I am trying to connect to OpenLDAP, simple authorization works fine, I can connect as "domain user"
Then I wanted to... Norbert K
12:36 PM Bug #7375 (Resolved): User with restricted privileges can still delete all monitoring/graphing data: Alhusein Zawi
12:34 PM Bug #7375: User with restricted privileges can still delete all monitoring/graphing data: I followed the steps
at Step 9 I received "Insufficient privileges to make the requested change (read only)." and ... Alhusein Zawi
12:13 PM Bug #10566 (Closed): password for OpenDNS (under DynDNS) not being passed correctly: Tested this directly on the browser by using:
https://updates.opendns.com/nic/update?hostname=myhostname
I experi... Marcos M
11:34 AM Bug #10566: password for OpenDNS (under DynDNS) not being passed correctly: I was able to reproduce this on 2.5.0.
Changing the password character from & to & when entering it in the fie... Marcos M
11:59 AM pfSense Packages Bug #10602 (Confirmed): Dashboard->Traffic Graphs bandwidth designations on hover pop-ups: Changing status to confirmed, as this is a reproducible issue that we should patch. Kris Phillips
11:39 AM Bug #5999: IPv6 IP Alias prevents Track Interface from working with DHCPv6 and RA: > Another issue that seems to be related to this is that firewall rules using "LAN net" and similar are not obeyed if... Viktor Gurov
09:32 AM pfSense Packages Bug #10911: Bandwidthd iframe not resizing in 2.4.5/2.4.5p1: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/958 Viktor Gurov
07:05 AM Bug #6598: "PPPoE clients" placeholder in rules only includes first PPPoE server instance: Tested on :... Danilo Zrenjanin
06:46 AM Bug #10675: DHCPv6 config not all directives start on a new line as expected: Tested on :... Danilo Zrenjanin
04:22 AM Bug #8390 (Feedback): Input validation does not prevent removing a gateway used by a DNS server: Ivars Strazdins wrote:
> This issue was driving me nuts!
> Thanks to your hint, I was able to find similar "ghost" ... Viktor Gurov
03:32 AM Bug #10968: Mixed & Upper case Alias table names broken.: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/9 Viktor Gurov
03:25 AM Bug #10240 (New): Incorrect interface assignment after switching from PPPoE: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/7 Viktor Gurov
12:41 AM Bug #10955 (Resolved): XMLRPC sync results in an error when a failover peer IP address is specified in DHCP server settings for an unconfigured interface: works fine on 2.5.0.a.20201009.1850 HA Viktor Gurov
12:16 AM pfSense Packages Feature #10969 (Resolved): Add Sekhan/TheGreatWall DoH feeds: https://github.com/Sekhan/TheGreatWall contains the DNS, IPv4 and IPv6 feeds of DoH servers:
https://raw.githubuse... Viktor Gurov

10/09/2020

06:05 PM Revision fbb49296: Fix #9384: As mentioned by Warner Losh <imp@FreeBSD.org>, author of the change on
FreeBSD, the correct way to use quotes to para... Renato Botelho
05:06 PM Bug #10955: XMLRPC sync results in an error when a failover peer IP address is specified in DHCP server settings for an unconfigured interface: I started the post i put my feedback here.
built on *Fri Oct 09 14:15:42 EDT 2020* is working as expected.
Thanks Raul Ramos
03:38 PM pfSense Docs Correction #9237 (Resolved): Remove references to pfSense Virtual VMware Appliance: @^/pfsense/en/latest/solutions/vmware@ redirect put in place here: ba0f6259351230b0a1703e16c6b6c8055ac638f2
VMWare... Jared Dillard
01:21 PM Bug #9384 (In Progress): devd putting "$" before variable contents when using single quotes: Problem still happens Renato Botelho
01:15 PM Bug #9384 (Feedback): devd putting "$" before variable contents when using single quotes: Applied in changeset commit:fbb49296bfff21824be0f8cba94a50bcfe077416. Renato Botelho
12:59 PM Bug #9384 (In Progress): devd putting "$" before variable contents when using single quotes: I'll fix it as suggested by imp@ Renato Botelho
12:50 PM Bug #10952: Inconsistency in Subnet Defaults Between Firewall Rules and Interface Address Assignments: Important to note that if we're going to add field verification and blank fields for the subnets, we should do it for... Kris Phillips
11:41 AM Feature #10944 (Resolved): Sanitize secret2: Tested on :... Danilo Zrenjanin
10:10 AM Bug #10240 (Feedback): Incorrect interface assignment after switching from PPPoE: Applied in changeset commit:9757d69bf63931f503f4e370710a92136bc6219e. Viktor Gurov
07:29 AM Feature #8149: NTPsec: We stated in the linked Reddit thread that if we were to change, the option we would consider is ntimed, not ntpsec.
... Jim Pingle
07:24 AM Feature #8149: NTPsec: chrony-4.0 also supports Network Time Security (NTS), as of 7 Oct 2020: https://chrony.tuxfamily.org/news.html
OPN... Wilhelm Johansen
07:24 AM Feature #8861: Show SFP module details on ``status_interfaces.php``: Requires work in devel/php56-pfSense-module/files/pfSense.c so reassigning it Anonymous
06:56 AM Bug #8390: Input validation does not prevent removing a gateway used by a DNS server: This issue was driving me nuts!
Thanks to your hint, I was able to find similar "ghost" DNS servers in configuration... Ivars Strazdins
12:50 AM Bug #10968: Mixed & Upper case Alias table names broken.: Fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/3 Viktor Gurov

10/04/2020

10:18 PM Bug #10955 (Resolved): XMLRPC sync results in an error when a failover peer IP address is specified in DHCP server settings for an unconfigured interface: Forum post: https://forum.netgate.com/topic/156974/xmlrpc-sync-error-built-on-sun-sep-20-01-01-05-edt-2020
I'm see... Max Leighton
07:29 PM Feature #10387: Reevaluate the GUI upgrade language presented to the user: The message "System is going to be upgraded. Rebooting in 10 seconds" appears in the verbose console output portion o... Jordan G
05:43 PM Bug #10943: boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: As per the linked Netgate forum thread, is this only affecting those with vlans on laggs?
https://bugs.freebsd.org... andreas vesalius
03:29 PM pfSense Docs Correction #10954: Feedback on Troubleshooting — Troubleshooting High Availability DHCP Failover: (sorry, ignore the accidental copy & paste second paragraph) - can't edit. Bill McGonigle
03:28 PM pfSense Docs Correction #10954 (Resolved): Feedback on Troubleshooting — Troubleshooting High Availability DHCP Failover: *Page:* https://docs.netgate.com/pfsense/en/latest/troubleshooting/ha-dhcp-failover.html
*Feedback:*
Could use ... Bill McGonigle
10:20 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: PR: https://github.com/pfsense/FreeBSD-ports/pull/955 Ben Hughes
07:50 AM pfSense Packages Bug #5168 (Resolved): squid doesn't function during/after HA failover: Tested on:
2.5.0-DEVELOPMENT (amd64)
built on Sun Oct 04 00:53:54 EDT 2020
FreeBSD 12.2-STABLE
I created HA cl... Azamat Khakimyanov

10/03/2020

08:59 PM pfSense Packages Feature #10953 (Rejected): IPSec Profile Wizard Unavailable in Community Edition Repos: The IPSec Profile Wizard is not available in pfSense Community Edition, which would be helpful for customers and help... Kris Phillips
06:04 PM Bug #9058: Kernel panic during L2TP retransmit: And I hit it again with 2.5.0.a.20201003.0050 Bianco Veigel
05:22 PM pfSense Packages Bug #10815: FRR with SNMP AgentX option failed to start: uninstall/install FRR made agentx option working . ( No Crash)
agentx option enabled on Zebra Global Settings .
... Alhusein Zawi
12:58 PM pfSense Packages Feature #9913 (Resolved): Adding note Squid Traffic Managment Settings about feature limit: Tested on :... Danilo Zrenjanin
12:50 PM Bug #10952 (New): Inconsistency in Subnet Defaults Between Firewall Rules and Interface Address Assignments: When creating a new firewall rule, after selecting "Network" under the source or destination fields, the field defaul... Kris Phillips
12:31 PM Bug #10951 (Rejected): Firewall Rule Defaults Should be Any Instead of TCP: In any new firewall rule creation, the protocol defaults to TCP rather than "Any" (or at the very least TCP/UDP). Al... Kris Phillips
12:10 PM Bug #10923: Update ixl Driver on pfSense 2.5.0 to bring back Intel X710-T2L/T4L support that was present on version 2.4.5-P1.: I did a fresh install with the latest build (Oct 3) and the X710-T2L is detected and the 2.5 Gbps and 5 Gbps Eth mode... Abhinav Tella
12:05 PM Revision 1d1b49cd: PPPoE server add fix. Fixes #10949: Viktor Gurov
10:36 AM pfSense Packages Todo #8332: pfBlockerNG doesn't include L2TP interface in outbound floating rules: https://github.com/pfsense/FreeBSD-ports/pull/954 Viktor Gurov
09:50 AM Revision 6f3f9671: Button to clear the ARP cache. Issue #4038: Viktor Gurov
09:31 AM pfSense Packages Feature #10950: Allow to select only netmap-compatible cards for inline mode: https://github.com/pfsense/FreeBSD-ports/pull/953 Viktor Gurov
08:58 AM pfSense Packages Feature #10950 (Resolved): Allow to select only netmap-compatible cards for inline mode: https://www.freebsd.org/cgi/man.cgi?query=netmap&sektion=4:... Viktor Gurov
09:29 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Looking into firewalling between two VRFs I've discovered that FRR, contrary to the documentation (http://docs.frrout... Ben Hughes
08:51 AM pfSense Packages Bug #10771 (Feedback): arpwatch: option to not send hourly email notification on cron run: already merged Viktor Gurov
08:23 AM Feature #8794: NTP authentication support: Server side authentication support:
https://github.com/pfsense/pfsense/pull/4472 Viktor Gurov
07:06 AM Bug #10949: PPPoE server can't be added: Fix:
https://github.com/pfsense/pfsense/pull/4471 Viktor Gurov
06:46 AM Bug #10949 (Resolved): PPPoE server can't be added: I tested adding a PPPoE server on the latest snapshot. ... Danilo Zrenjanin
07:02 AM Bug #6598: "PPPoE clients" placeholder in rules only includes first PPPoE server instance: I couldn't add PPPoE server on the latest snapshot.... Danilo Zrenjanin
06:28 AM Revision 96e6e165: Gateway group popover fix. Issue #10948: Viktor Gurov
06:12 AM Feature #10912 (Resolved): DNS Domain Overrides - more than one target IP: Tested on :... Danilo Zrenjanin
04:48 AM Feature #7406: Ability to clear all dhcp leases at once: https://github.com/pfsense/pfsense/pull/4470 Viktor Gurov
03:11 AM pfSense Packages Feature #6176: Privilege for OpenVPN Client Export: > bearsh bearsh wrote:
> > it would be very cool to be able to limit access for users to their own client configs. u... Viktor Gurov
01:29 AM Bug #10948: Gateway group popover not populated on firewall_rules.php: https://github.com/pfsense/pfsense/pull/4469 Viktor Gurov
12:05 AM Bug #9636: uninstall packages: Unable to reproduce on latest 2.5 nightly builds Michael Spears

10/02/2020

04:15 PM Revision 4e9467ae: Revised fix 10945 to include gateway popup: Steve Beaver
04:10 PM Bug #10708: ZFS bootpool boot symlink issue: I had another issue with bootpool getting out of sync on an upgrade and so I decided to try every partition scheme ot... Paul Magid
03:39 PM pfSense Packages Bug #10941: pfBlockerNG-devel Bug in ipv6 lists when updating: I could not reproduce this using settings/rules as close as possible. Marcos M
02:05 PM pfSense Docs Correction #10559 (Resolved): Feedback on User Management — Granting Users Access to SSH: I revised the recipe and updated this (and other) references to match the GUI on 2.5.0. Jim Pingle
02:00 PM Revision 35339786: Fixed #9855: by preventing form submission on second and subsequent clicks Steve Beaver
01:18 PM Revision 11a71857: Popover sanitizer stuff is more logically provided in pfSense.js where other popover controls live: Steve Beaver
12:57 PM Revision 72f4fb2c: Fixed #10945: By adding the HTML elements used in pfSense popovers to the default sanitizer whitelist Steve Beaver
12:40 PM Bug #10945 (Resolved): Alias popup not displaying contents: Anonymous
12:37 PM Bug #10945: Alias popup not displaying contents: The gateway popup issue is not related to this one. See https://redmine.pfsense.org/issues/10948 Anonymous
10:23 AM Bug #10945 (In Progress): Alias popup not displaying contents: Aliases are working OK for me but Gateway popovers are empty still. Jim Pingle
09:05 AM Bug #10945 (Resolved): Alias popup not displaying contents: Tested the patch on the:... Danilo Zrenjanin
08:05 AM Bug #10945: Alias popup not displaying contents: Applied in changeset commit:72f4fb2c0bad87e04ce4a442724c1753bbfb1678. Anonymous
08:01 AM Bug #10945 (Feedback): Alias popup not displaying contents: Anonymous
07:54 AM Bug #10945: Alias popup not displaying contents: Specifically adding table elements to the sanitizer's list of allowed content is effective:... Anonymous
07:22 AM Bug #10945: Alias popup not displaying contents: The issue is caused by changes in Bootstrap 3.4.1 which disable HTML in popovers. In theory, this should turn off the... Anonymous
12:45 AM Bug #10945: Alias popup not displaying contents: same issue with gateway_info_popup()
and on Firewall NAT pages too
Viktor Gurov
12:30 PM Bug #10948 (Resolved): Gateway group popover not populated on firewall_rules.php: This bug does not appear to be related to the similar alias popover issue.
If the user hovers over a gateway group... Anonymous
11:51 AM Bug #7375 (Pull Request Review): User with restricted privileges can still delete all monitoring/graphing data: Jim Pingle
11:47 AM Bug #7375: User with restricted privileges can still delete all monitoring/graphing data: https://github.com/pfsense/FreeBSD-ports/pull/951 Viktor Gurov
11:28 AM Revision fd3af9eb: Rebind syslogd on interface change. Issue #9660: Viktor Gurov
10:54 AM Bug #9058: Kernel panic during L2TP retransmit: Bianco Veigel wrote:
> it crashed again with 2.5.0.a.20200930.0050
Thanks for your patience so far, it's very app... Mark Johnston
03:59 AM Bug #9058: Kernel panic during L2TP retransmit: it crashed again with 2.5.0.a.20200930.0050 Bianco Veigel
10:15 AM Bug #9855 (Resolved): CSRF error at login when clicking the 'sign in' button multiple times: After a gitsync I can't induce a CSRF error at login in either Chrome or Firefox. Jim Pingle
09:10 AM Bug #9855: CSRF error at login when clicking the 'sign in' button multiple times: Applied in changeset commit:353397867b30842f643a40ffd2eb6986bed5b32a. Anonymous
09:01 AM Bug #9855 (Feedback): CSRF error at login when clicking the 'sign in' button multiple times: Anonymous
09:10 AM Bug #10947: Virtual interface assignment can't be done in CLI interface assignment: The same is likely true of many virtual interface types (GIF, GRE, etc) and the solution is likely the same for all o... Jim Pingle
08:13 AM Bug #10947 (Resolved): Virtual interface assignment can't be done in CLI interface assignment: Hi,
I have added new VMXNET3 interfaces to the pfSense VM and migrated the working E1000 Interfaces to the new VM... Hamid Hashemi
07:45 AM Bug #9660 (Pull Request Review): Syslogd keeps using old IP address after interface IP address change: Jim Pingle
06:31 AM Bug #9660: Syslogd keeps using old IP address after interface IP address change: https://github.com/pfsense/pfsense/pull/4468 Viktor Gurov
07:42 AM Feature #4776: Add 802.1x dynamic vlan support: I don't think it's something we want to pile onto 2.5.0 right now. We're starting to lock down what will be added at ... Jim Pingle
04:21 AM Feature #4776: Add 802.1x dynamic vlan support: Dynamic VLAN support is not compiled:... Viktor Gurov
07:33 AM Bug #6025 (Pull Request Review): Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: Jim Pingle
02:26 AM Bug #6025: Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: https://github.com/pfsense/pfsense/pull/4467 Viktor Gurov
07:31 AM Feature #10946 (Pull Request Review): Sanitize WiFi 802.1x RADIUS shared secret: Jim Pingle
12:23 AM Feature #10946: Sanitize WiFi 802.1x RADIUS shared secret: https://github.com/pfsense/pfsense/pull/4466 Viktor Gurov
12:19 AM Feature #10946 (Resolved): Sanitize WiFi 802.1x RADIUS shared secret: "auth_server_shared_secret" and "auth_server_shared_secret2" from wireless interfaces configuration 802.1x RADIUS Opt... Viktor Gurov
07:24 AM Revision 821be56a: Load balancing when one gateway has a weight of 1 and another gateway has a weight >1. Fixes #6025: Viktor Gurov
05:22 AM Revision fd33f774: Sanitize WiFi 802.1x RADIUS shared secrets. Implements #10946: Viktor Gurov
12:07 AM Bug #10677 (Resolved): pfSense 2.5 incorrect rtwn(4) wireless regexp: 2.5.0.a.20201001.0050 can find rtwn(4) correctly Viktor Gurov

10/01/2020

09:21 PM pfSense Packages Bug #10429: Status Traffic Total broken 2.4.5: Manuel Piovan wrote:
> https://forum.netgate.com/topic/151914/traffic-totals-hourly-report-problem/
pfSense versi... Vinoth Kumar R
03:36 PM pfSense Packages Feature #10789 (Pull Request Review): FRR integrated configuration and hitless reloads: Jim Pingle
02:44 PM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Fixed case of the fat fingers in frr_bgp.xml: https://github.com/pfsense/FreeBSD-ports/pull/950 Ben Hughes
03:32 PM pfSense Docs Correction #9372 (Resolved): Feedback on User Management — Configuring User Authentication Servers: I just pushed changes which cover this and more. Jim Pingle
02:13 PM Revision 1f7f2b6b: Sanitize secret2. Implements #10944: Viktor Gurov
02:05 PM Revision 72a9d589: Remove unnecessary parameter from filter_rule_tracker(): Renato Botelho
01:51 PM Revision 1574802c: Fix #6030: Use a range of tracker ids for anti-lockout, bogons and rfc1918 rules so
any rule has a unique identifier Renato Botelho
01:43 PM pfSense Docs Correction #10877 (Resolved): Feedback on VPN — IPsec — Configuring an IPsec Remote Access Mobile VPN using IKEv2 with EAP-MSCHAPv2: Jim Pingle
01:42 PM pfSense Docs Correction #8862 (Resolved): [feedback form] Include configuration examples for IPv6 WANs: I added a warning to the page informing users that only the ISP can tell them what their settings should be for IPv6,... Jim Pingle
01:19 PM Bug #10668 (Resolved): curl -T "{file1,file2}" loops forever eating up the RAM: Renato Botelho
01:10 PM Bug #10668: curl -T "{file1,file2}" loops forever eating up the RAM: After updating ACME package to the latest version, the system was updated with curl 7.68.0 (amd64-portbld-freebsd11.3... robi robi
12:34 PM Bug #10668 (Feedback): curl -T "{file1,file2}" loops forever eating up the RAM: I've imported curl 7.68.0, which fixes this issue. Also bumped revision of ACME port to 0.68_3 and added a explicit ... Renato Botelho
12:49 PM Revision 4537e922: Same RADIUS ACL parser for IPsec/OpenVPN. Implements #10469: Viktor Gurov
12:43 PM Bug #10943: boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: Appears to be limited to EFI and also affects upgrades, not just new installs:
https://forum.netgate.com/topic/157... Jim Pingle
07:38 AM Bug #10943: boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: i tested also the new build, 20201001.0650
after the reboot done by the upgrade process you don't lose access to th... Manuel Piovan
07:09 AM Bug #10943 (Resolved): boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: how to reproduce:
created a new virtual machine under esxi with bios set to efi
install a previous snapshot, everyt... Manuel Piovan
12:42 PM Feature #10469 (Pull Request Review): Same RADIUS Cisco-AVPair parser code for both OpenVPN/IPsec: Jim Pingle
07:55 AM Feature #10469: Same RADIUS Cisco-AVPair parser code for both OpenVPN/IPsec: https://github.com/pfsense/pfsense/pull/4464 Viktor Gurov
12:41 PM Feature #10944 (Pull Request Review): Sanitize secret2: Jim Pingle
09:14 AM Feature #10944: Sanitize secret2: https://github.com/pfsense/pfsense/pull/4465 Viktor Gurov
09:13 AM Feature #10944 (Resolved): Sanitize secret2: Sanitize 'secret2' - PPPoE Secondary RADIUS Server shared secret Viktor Gurov
12:15 PM Revision d1c961ff: Merge pull request #4463 from vktg/ldapauth2307fix: Renato Botelho
11:28 AM Revision 0db1cc68: Fix #10743: Enable/Disable GoogleStadia checkbox: Renato Botelho
11:23 AM Bug #10671: pfsense 2.4.5_1 does not boot on Gen2 2012R2 HyperV VM: I have the same issue with Hyper-V under Windows Server 2019. I had to roll back to 2.4.4 (that was the latest .iso I... Jeff Munk
10:35 AM Bug #10945 (Resolved): Alias popup not displaying contents: On firewall rules when hovering over an alias, the info popup only displays the header "Alias details" and no content... Jim Pingle
09:50 AM Bug #3334 (Resolved): Status/Traffic Graph isn't IPv6 ready: I'd say it's working well enough for now. I tried it on a few more systems and it's OK, even on arm. Jim Pingle
05:55 AM Bug #3334 (Feedback): Status/Traffic Graph isn't IPv6 ready: Jim Pingle wrote:
> Also it looks like there is an odd condition where the first time you switch to iftop, it doesn'... Renato Botelho
05:54 AM Bug #3334: Status/Traffic Graph isn't IPv6 ready: Jim Pingle wrote:
> There is still a problem or two here.
>
> The iftop binary is not present unless you manually... Renato Botelho
09:00 AM Bug #6030 (Feedback): Duplicated tracker IDs on block private networks rules: Applied in changeset commit:1574802cdd0aa00e93377d326d907f8c0217b8ea. Renato Botelho
08:27 AM Bug #6030: Duplicated tracker IDs on block private networks rules: I'm working on a fix Renato Botelho
07:25 AM Feature #10934 (Feedback): Add ral(4) to arm64: PR has been merged. Thanks! Renato Botelho
07:16 AM Bug #10942 (Feedback): LDAP Auth error after update 2.5.0.a.20200930.1303: PR has been merged. Thanks! Renato Botelho
07:06 AM Bug #10942: LDAP Auth error after update 2.5.0.a.20200930.1303: Edivan Carneiro de castro wrote:
> Viktor Gurov wrote:
> > fix:
> > https://github.com/pfsense/pfsense/pull/4463
... Viktor Gurov
06:49 AM Bug #10942: LDAP Auth error after update 2.5.0.a.20200930.1303: Viktor Gurov wrote:
> fix:
> https://github.com/pfsense/pfsense/pull/4463
I dont understand how to apply this fix Teste Teste
05:42 AM Bug #10942 (Pull Request Review): LDAP Auth error after update 2.5.0.a.20200930.1303: Renato Botelho
12:49 AM Bug #10942: LDAP Auth error after update 2.5.0.a.20200930.1303: fix:
https://github.com/pfsense/pfsense/pull/4463 Viktor Gurov
07:01 AM pfSense Packages Bug #10937: HAProxy frontend and backend entry limit: I looked for existing CVE's around increasing the limit, but did not find any issues with it. I would agree however t... Marcos M
06:35 AM Feature #10743 (Feedback): Traffic shaper wizard: Add Google Stadia port range: Applied in changeset commit:0db1cc68a452bc8fddb3cea9ad2997c0bb49d0ec. Renato Botelho
06:31 AM Bug #9646 (Feedback): OpenSSL 1.1.1 does not list engines for AES-NI or BSD crypto: It's working as expected on recent snapshots Renato Botelho
05:58 AM Bug #9058 (Feedback): Kernel panic during L2TP retransmit: Renato Botelho
05:48 AM Revision ac4a56f1: LDAP group search fix. Issue #10942: Viktor Gurov
03:41 AM Feature #10896 (Resolved): Multiple IPs for one DNS entry in unbound resolver override: Tested on :... Danilo Zrenjanin
03:21 AM Feature #10711 (Resolved): Allow to use OpenVPN TAP interfaces in DHCP Relay: Tested on :... Danilo Zrenjanin
03:05 AM pfSense Packages Bug #10939 (Resolved): default port is not fixed on 2.4.5: Tested on :... Danilo Zrenjanin

09/30/2020

11:25 PM pfSense Packages Bug #10930 (Resolved): Wrong blocklist from dshield.org: test on new pfblockerng-devel pkg install on 2.4.5p1 and 2.5.0-DEVELOPMENT (arm)built on Wed Sep 30 18:54:01 EDT 2020... Jordan G
12:34 PM pfSense Packages Bug #10930 (Feedback): Wrong blocklist from dshield.org: PR has been merged. Thanks! Renato Botelho
08:40 AM pfSense Packages Bug #10930 (Pull Request Review): Wrong blocklist from dshield.org: Jim Pingle
03:30 AM pfSense Packages Bug #10930: Wrong blocklist from dshield.org: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/946 Viktor Gurov
07:17 PM Bug #10942 (Resolved): LDAP Auth error after update 2.5.0.a.20200930.1303: pfsense given the follow error auth LDAP after update
Crash report details:
PHP Errors:
[30-Sep-2020 18:10:54 ... Teste Teste
05:27 PM Bug #10610: Package upgrade or reinstall hangs indefintely on the console: pkg-1.5.16 is the fixed version on 2.4.5 Renato Botelho
02:34 PM Bug #10610: Package upgrade or reinstall hangs indefintely on the console: Renato Botelho wrote:
> pkg 1.15.6 should fix this problem. If it passes all tests we can apply it to 2.4.5 as well... Renato Botelho
05:07 PM Revision 6f766384: Merge pull request #4273 from vktg/ovpn6avpair: Renato Botelho
05:07 PM Revision f18c95b9: Merge pull request #4462 from vktg/dnsdomaintip: Renato Botelho
05:07 PM Revision 8f3c14b1: Merge pull request #4461 from vktg/enanochecksum: Renato Botelho
05:07 PM Revision 1eea4340: Merge pull request #4460 from vktg/pppoerulesfix: Renato Botelho
02:19 PM pfSense Packages Bug #10941 (Closed): pfBlockerNG-devel Bug in ipv6 lists when updating: I posted initially in the forum with screenshots in case it is something I am doing but during update the pfblock... Rick Coats
02:07 PM Revision a220a22a: Fix encoding and validation on load_balancer_monitor*. Fixes #10940: Jim Pingle
12:38 PM pfSense Packages Feature #10915 (Feedback): security/pfSense-pkg-sudo sudo.inc enhancement for better support of NRPE: PR has been merged. Thanks! Renato Botelho
05:11 AM pfSense Packages Feature #10915: security/pfSense-pkg-sudo sudo.inc enhancement for better support of NRPE: Previous PR superseded by https://github.com/pfsense/FreeBSD-ports/pull/947 Infra Weavers
12:32 PM pfSense Packages Bug #10939 (Feedback): default port is not fixed on 2.4.5: PR has been merged. Thanks! Renato Botelho
08:38 AM pfSense Packages Bug #10939 (Pull Request Review): default port is not fixed on 2.4.5: Jim Pingle
02:07 AM pfSense Packages Bug #10939: default port is not fixed on 2.4.5: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/945 Viktor Gurov
02:01 AM pfSense Packages Bug #10939 (Resolved): default port is not fixed on 2.4.5: it seems https://github.com/pfsense/FreeBSD-ports/commit/8e931a80646180ac8e15b97876140fa0c3e22eca#diff-1eba1393d5e47b... Viktor Gurov
12:31 PM pfSense Packages Feature #10908 (Feedback): FreeRADIUS server certificate not using full CA chain: PR has been merged. Thanks! Renato Botelho
08:35 AM pfSense Packages Feature #10908 (Pull Request Review): FreeRADIUS server certificate not using full CA chain: Jim Pingle
01:24 AM pfSense Packages Feature #10908: FreeRADIUS server certificate not using full CA chain: https://github.com/pfsense/FreeBSD-ports/pull/944 Viktor Gurov
12:08 PM Bug #6598 (Feedback): "PPPoE clients" placeholder in rules only includes first PPPoE server instance: PR has been merged. Thanks! Renato Botelho
08:33 AM Bug #6598 (Pull Request Review): "PPPoE clients" placeholder in rules only includes first PPPoE server instance: Jim Pingle
12:27 AM Bug #6598: "PPPoE clients" placeholder in rules only includes first PPPoE server instance: https://github.com/pfsense/pfsense/pull/4460 Viktor Gurov
12:08 PM Feature #10723 (Feedback): Disable "Hardware Checksum Offloading" if VM is detected: PR has been merged. Thanks! Renato Botelho
08:38 AM Feature #10723 (Pull Request Review): Disable "Hardware Checksum Offloading" if VM is detected: Jim Pingle
01:38 AM Feature #10723: Disable "Hardware Checksum Offloading" if VM is detected: ena(4) fix:
https://github.com/pfsense/pfsense/pull/4461 Viktor Gurov
12:08 PM Feature #10912 (Feedback): DNS Domain Overrides - more than one target IP: PR has been merged. Thanks! Renato Botelho
08:48 AM Feature #10912 (Pull Request Review): DNS Domain Overrides - more than one target IP: Jim Pingle
05:24 AM Feature #10912: DNS Domain Overrides - more than one target IP: https://github.com/pfsense/pfsense/pull/4462 Viktor Gurov
12:07 PM Feature #10454 (Feedback): OpenVPN+RADIUS+Cisco-AVPair IPv6 ACL: PR has been merged. Thanks! Renato Botelho
10:22 AM Revision 5fc9aa09: DNS Domain Overrides help tip. Issue #10912: Viktor Gurov
09:36 AM Bug #9349 (Feedback): IPSec service start/stop/restart fails after settings change: Anonymous
09:18 AM Feature #4763 (Resolved): Restore from backup that contains only area Traffic Shaper doesn't restore Limiters: Anonymous
06:48 AM pfSense Packages Bug #9980 (Closed): Fresh install of Suricata 4.1.5 package warns about CVE-2015-3152; need newer MySQL: no such message on pfSense 2.4.5-p1/2.5 with suricata-5.0.3/suricata-4.1.8 Viktor Gurov
06:37 AM Revision d81121e1: Disable "Hardware Checksum Offloading" if ena(4) is detected. Implements #10723: Viktor Gurov
05:25 AM Revision c227689b: PPPoE clients rules fix. Issue #6598: Viktor Gurov
04:39 AM Feature #9768 (Closed): IPsec for site-to-site scenario where one side has dynamic ip: Implemented in #7095 and #10214 Viktor Gurov
04:36 AM Feature #7410 (Closed): IPSEC multiple dynamic IP remote clients: Implemented in #7095 and #10214 Viktor Gurov

09/29/2020

10:22 PM Revision 82b8ad2b: Merge pull request #4458 from vktg/rfc2307userdnupdate: Renato Botelho
10:22 PM Revision e97eeb7d: Merge pull request #4385 from vktg/nohwchksumvm: Renato Botelho
10:21 PM Revision 9ae8cf51: Merge pull request #4459 from vktg/ipsecmultiph1: Renato Botelho
10:21 PM Revision f76cec6d: Remove old comment: Renato Botelho
10:21 PM Revision 1b4cb00f: IPsec PH1 creation fix. Issue #9592: Viktor Gurov
10:21 PM Revision 80f1c44b: Use init_config_arr() to initialize config items: Renato Botelho
10:21 PM Revision 6279f1b8: Style fixes: Renato Botelho
10:21 PM Revision 71e7de02: Simplify logic: Renato Botelho
10:21 PM Revision 2b6de647: Create a pointer to reduce really long lines: Renato Botelho
10:21 PM Revision 413e939f: Combine 2 similar tests to simplify logic: Renato Botelho
10:21 PM Revision 58e0bfbc: Combine 2 similar tests to simplify logic: Renato Botelho
10:21 PM Revision b2a98518: Remove unnecessary variable: Renato Botelho
10:21 PM Revision dfc51883: Move 'unable to find config' condition early and reduce indentation: Renato Botelho
10:21 PM Revision 7489746e: Leave function when debug file could not be opened: Renato Botelho
10:21 PM Revision 0c9d489e: Style fixes: Renato Botelho
06:49 PM Todo #9052 (Resolved): Update Font-Awesome: Thanks for catching that Bill! I had originally looked that part over. I agree it will be challenging (I had original... Jared Dillard
05:37 PM Todo #9052: Update Font-Awesome: Jared Dillard wrote:
> With the current shim in place we don't have to tackle the renaming of classes just yet, in f... Bill Meeks
03:10 PM Todo #9052: Update Font-Awesome: With the current shim in place we don't have to tackle the renaming of classes just yet, in fact it maybe be better t... Jared Dillard
06:27 PM Bug #9058: Kernel panic during L2TP retransmit: Bianco Veigel wrote:
> I'd like to test the new version, but there is still no 20200929-1250.
A new snapshot is a... Renato Botelho
05:11 PM Bug #9058: Kernel panic during L2TP retransmit: Bianco Veigel wrote:
> I'd like to test the new version, but there is still no 20200929-1250.
That build failed. ... Renato Botelho
04:05 PM Bug #9058: Kernel panic during L2TP retransmit: I'd like to test the new version, but there is still no 20200929-1250. Bianco Veigel
09:28 AM Bug #9058: Kernel panic during L2TP retransmit: https://reviews.freebsd.org/D26586 was also imported to devel-12 branch. Next round of snapshots (1250) will have th... Renato Botelho
07:26 AM Bug #9058: Kernel panic during L2TP retransmit: Bianco Veigel wrote:
> I've updated to 2.5.0.a.20200928.1250 and got the same crash as before. I've attached the cra... Renato Botelho
06:25 AM Bug #9058 (In Progress): Kernel panic during L2TP retransmit: Renato Botelho
05:24 AM Bug #9058: Kernel panic during L2TP retransmit: I've updated to 2.5.0.a.20200928.1250 and got the same crash as before. I've attached the crashdump.
Is there anyt... Bianco Veigel
05:31 PM pfSense Packages Feature #10789 (Feedback): FRR integrated configuration and hitless reloads: PR has been merged. Thanks! Renato Botelho
05:30 PM Feature #10723 (Feedback): Disable "Hardware Checksum Offloading" if VM is detected: Applied in changeset commit:12a0edbb3f6fe89c9c0905f5ea9095b71ac892a7. Viktor Gurov
05:22 PM Feature #10723 (In Progress): Disable "Hardware Checksum Offloading" if VM is detected: PR has been merged. Thanks!
Keep ticket as In Progress since we need the same for ena interfaces Renato Botelho
05:25 PM pfSense Packages Bug #10932: wrong link on haproxy: PR has been merged. Thanks! Renato Botelho
05:22 PM Bug #9592 (Feedback): VTI interface down because interface number created is greater than ipsec32768: PR has been merged. Thanks! Renato Botelho
05:22 PM Feature #9527 (Feedback): Add ability for LDAP extended query on groups in RFC2307 containers.: PR has been merged. Thanks! Renato Botelho
03:16 PM pfSense Docs Correction #10920 (Resolved): Feedback on Packages — Using the Package Manager: I updated the general package info on https://docs.netgate.com/pfsense/en/latest/packages/index.html and https://docs... Jim Pingle
03:00 PM pfSense Docs Correction #10895 (Resolved): Feedback on Interface Types and Configuration — GIF (Generic tunnel InterFace): Updated GIF at https://docs.netgate.com/pfsense/en/latest/interfaces/gif.html
Updated GRE at https://docs.netgate.co... Jim Pingle
01:45 PM Bug #10610 (Feedback): Package upgrade or reinstall hangs indefintely on the console: pkg 1.15.6 should fix this problem. If it passes all tests we can apply it to 2.4.5 as well Renato Botelho
01:24 PM Bug #10610: Package upgrade or reinstall hangs indefintely on the console: It's a bug on pkg. I'm working on a fix Renato Botelho
12:39 PM Bug #10938 (Not a Bug): "librrd.so.8" not found with 2.4.5: It's not a general bug but something amiss with your installation. That file should come from the rrdtool FreeBSD pkg... Jim Pingle
11:45 AM Bug #10938 (Not a Bug): "librrd.so.8" not found with 2.4.5: After upgrading to the latest 2.4.5-RELEASE-p1 (arm64) running on Netgate SG-1100
I get this one "librrd.so.8" not f... George K
12:28 PM Bug #10352: RADIUS authentication fails with MSCHAPv1 or MSCHAPv2 when passwords contain international characters: Use the current release 2.4.5-p1 or a development snapshot (2.5.0). Testing with older/unsupported versions is irrele... Jim Pingle
11:30 AM Bug #10352: RADIUS authentication fails with MSCHAPv1 or MSCHAPv2 when passwords contain international characters: I tried with PAP and MD5-CHAP on
2.4.3-RELEASE (amd64) memstick serial and
FreeBSD 11.1-RELEASE-p7
but the resu... Oscar Mrbt
12:13 PM Bug #9636: uninstall packages: I am able to reproduce this using the nightly image from Sept 14th, as well as the latest image from Sept 29th.
# ... Marcos M
11:53 AM pfSense Packages Bug #10937: HAProxy frontend and backend entry limit: The input variable change is an OK workaround (I'm not sure why it's at 5000) but also the form code should probably ... Jim Pingle
11:35 AM pfSense Packages Bug #10937: HAProxy frontend and backend entry limit: Making the following change then restarting php-fpm and webConfigurator (option 16 & 11 in console) resolved the issu... Marcos M
11:04 AM pfSense Packages Bug #10937: HAProxy frontend and backend entry limit: Some additional files from testing. Marcos M
10:42 AM pfSense Packages Bug #10937 (Resolved): HAProxy frontend and backend entry limit: There seems to be some sort of limit in the number of entries/rows you can have in a single haproxy frontend or backe... Marcos M
09:57 AM pfSense Packages Bug #10936 (Resolved): both haproxy/haproxy-devel non-existent option lb-agent-chk: both 2.4.5-p1 and 2.5.0
setting Health check method to Agent... Manuel Piovan
07:54 AM pfSense Packages Feature #10665 (Assigned): Manual OSPF neighbor definitions: Azamat Khakimyanov
07:53 AM pfSense Packages Feature #10665: Manual OSPF neighbor definitions: Tested on:
2.5.0-DEVELOPMENT (amd64)
built on Tue Sep 29 01:01:39 EDT 2020
FreeBSD 12.2-PRERELEASE
Issue with a... Azamat Khakimyanov
05:49 AM pfSense Packages Feature #10479 (Resolved): Keep settings after deinstall option: Tested on 2.4.5_p1 and on 2.5.0-DEVELOPMENT (built on Tue Sep 29 01:00:34 EDT 2020)
There is an option "Save setting... Azamat Khakimyanov
03:57 AM pfSense Packages Bug #10552 (Resolved): Typo in OpenBGPD's settings page: tested on 2.4.5_p1 and on 2.5.0-DEVELOPMENT (built on Tue Sep 29 01:00:34 EDT 2020)
It's Router-ID now.
This bug ... Azamat Khakimyanov

09/28/2020

08:24 PM Bug #10409 (Resolved): OpenVPN client without userpass hangs system startup: Tested in
2.5.0-DEVELOPMENT (amd64)
built on Sun Sep 20 06:59:15 EDT 2020
FreeBSD 12.2-PRERELEASE
As expected,... Max Leighton
03:42 PM pfSense Docs Correction #9618 (Resolved): Feedback on System Monitoring — Firewall Logs: Relevant parts should be covered by the latest round of doc updates. Jim Pingle
12:40 PM pfSense Docs Correction #9376 (Resolved): Feedback on System Monitoring — Filter Log Format for pfSense 2.2: Added it to the action line as well as reason and direction, since all of them could have that value (per filterlog.c) Jim Pingle
12:36 PM pfSense Docs Correction #9377 (Rejected): log file format : missing igmp. <protocol-specific-data> ::= <tcp-data> | <udp-data> | <icmp-data> | <carp-data>: I don't see anything in filterlog which would handle igmp data in that field as stated. The person reporting this mig... Jim Pingle
12:31 PM pfSense Docs Correction #9379 (Resolved): Feedback on Interfaces — Using a Large Number of Interfaces: Updated doc with the advice above. Jim Pingle
11:16 AM pfSense Docs New Content #10774 (Resolved): Feedback on Installing and Upgrading — Upgrade Troubleshooting: Tip added: https://docs.netgate.com/pfsense/en/latest/install/upgrade-guide-update.html#upgrading-using-the-console Jim Pingle
08:13 AM pfSense Packages Bug #10935 (New): FRR 0.6.7-6 - BGPD service recycled IPv6 without Route Map: https://forum.netgate.com/topic/157120/frr-0-6-7_6-bgp-won-t-start-without-route-map-ipv6-unicast?_=1601149473142
... Jeremy Peterson
06:08 AM Bug #9058 (Feedback): Kernel panic during L2TP retransmit: I've imported the fix to pfSense. Next round of snapshots with timestamp bigger than 20200928.0650 will contain the ... Renato Botelho
02:00 AM Bug #9450: Multiwan gateway group fail-over not working as expected (possible race condition): Dear gents
is the behavior I describe
https://forum.netgate.com/topic/156890/dpinger-broken-or-dashboard-broken... Jörn Greszki
01:56 AM Bug #10546: Gateways removed from routing groups based on low alert thresholds: Dear gents
is the behavior I describe
https://forum.netgate.com/topic/156890/dpinger-broken-or-dashboard-broken... Jörn Greszki

09/27/2020

06:20 PM Feature #10934: Add ral(4) to arm64: Opened a PR: https://github.com/pfsense/FreeBSD-src/pull/38 Steve Wheeler
06:05 AM Feature #10934 (Resolved): Add ral(4) to arm64: As the title the ral(4) driver is not included in arm64 images.
The RT3090 device that requires it is one of the f... Steve Wheeler
06:14 PM Bug #10889 (Resolved): Hover text missing from Static Routes Page: Tested in
2.5.0-DEVELOPMENT (amd64)
built on Sun Sep 27 13:02:36 EDT 2020
FreeBSD 12.2-PRERELEASE
Mouseover t... Max Leighton
05:38 PM Bug #9303 (Resolved): HA sync : disabling captive portal HA sync does remove all zones on slave: Tested in
2.5.0-DEVELOPMENT (amd64)
built on Sun Sep 27 13:02:36 EDT 2020
FreeBSD 12.2-PRERELEASE
The zones ... Max Leighton
11:22 AM Bug #9054: Gateway Group slow (or never) to switch back to Tier 1: I am not sure if my issue:
https://forum.netgate.com/topic/156890/dpinger-broken-or-dashboard-broken-or-my-brain-i... Jörn Greszki

09/26/2020

02:01 PM Todo #9052: Update Font-Awesome: Thanks Jared. Just to make sure I'm clear, this FontAwsome update is currently limited to just pfSense-2.5, or do you... Bill Meeks
10:15 AM pfSense Packages Bug #10933: Retired / Invalid IPv4 lists in pfBlockerNG: The user email and password need to be included in the link as follows for the BB_C2 feed to work, with %40 replacing... Abhinav Tella
09:36 AM pfSense Packages Bug #10933 (Resolved): Retired / Invalid IPv4 lists in pfBlockerNG: I went through the currently available IPv4 lists in pfBlockerNG-devel and noted the ones that are no longer maintain... Marcos M

09/25/2020

11:39 PM Revision fb435045: Update Font Awesome to v5 using shim: Jared Dillard
06:44 PM Todo #9052: Update Font-Awesome: Thanks Bill! I was going to post an update when it said someone else had commented.
The icons will need to updated... Jared Dillard
06:20 PM Todo #9052: Update Font-Awesome: I will add that the Snort and Suricata GUI packages both use FontAwesome icons in many places, and a cursory review o... Bill Meeks
06:09 PM Todo #9052: Update Font-Awesome: Still working on this, but as an update:
Going from v4 to v5 is a breaking change (as expected) and a number of ic... Jared Dillard
06:30 PM Revision 561cc3e5: diag_dns.php: Fix button icon to match text for alias actions.: Jim Pingle
05:17 PM pfSense Packages Bug #10932: wrong link on haproxy: PR https://github.com/pfsense/FreeBSD-ports/pull/943 Manuel Piovan
04:00 PM pfSense Packages Bug #10932 (Resolved): wrong link on haproxy: package haproxy
if you click on
"related log entries"
https://*/status_pkglogs.php?pkg=haproxy
lead to 404 ... Manuel Piovan
04:56 PM Bug #9058: Kernel panic during L2TP retransmit: A fix was pushed on FreeBSD. I'm going to import it to pfSense Renato Botelho
02:28 PM Bug #9058: Kernel panic during L2TP retransmit: As far as I can tell this has been accepted upstream (https://svnweb.freebsd.org/changeset/base/366167). Can someone ... Bianco Veigel
04:11 PM Revision f0c51530: System DNS Server changes. Implements #10931: There are significant changes here, but ultimately should be a smooth
transition. See https://redmine.pfsense.org/iss... Jim Pingle
03:23 PM pfSense Docs Correction #10787: Feedback on Services — DNS — Performing a DNS Lookup: Also noteworthy that I fixed the icon for the button in the "Update Alias" case.
See pfsense:commit:561cc3e529bcd5... Jim Pingle
02:16 PM pfSense Docs Correction #10787 (Resolved): Feedback on Services — DNS — Performing a DNS Lookup: I updated the page with better info, should all be covered now. Jim Pingle
02:35 PM pfSense Docs New Content #10489 (Resolved): Feedback on System Monitoring — Remote Logging with Syslog: I fixed up the log settings page(s), removed redundant info, added new stuff for 2.5, and added notes about using sys... Jim Pingle
01:14 PM pfSense Docs Correction #10180 (Resolved): Feedback on Development — Obtaining Panic Information for Developers: Rewrote the page to remove the outdated info, and added some more missing info. Jim Pingle
12:00 PM pfSense Packages Feature #10789 (Pull Request Review): FRR integrated configuration and hitless reloads: Jim Pingle
11:35 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Fixup PR: https://github.com/pfsense/FreeBSD-ports/pull/942 Ben Hughes
11:20 AM Feature #10931 (Feedback): system.php: Add option to omit DNS Servers from resolv.conf: Applied in changeset commit:f0c51530cd31a5003d5a18cfa32575d0a9ff2f5f. Jim Pingle
11:10 AM Feature #10931: system.php: Add option to omit DNS Servers from resolv.conf: Tugged on a dangling thread of this sweater and unraveled quite a lot.
There were three functions with confusing n... Jim Pingle
07:37 AM Feature #10931 (In Progress): system.php: Add option to omit DNS Servers from resolv.conf: Jim Pingle
07:36 AM Feature #10931 (Resolved): system.php: Add option to omit DNS Servers from resolv.conf: Some users prefer that the system _only_ use the DNS Resolver/Forwarder for DNS resolution, rather than the entries i... Jim Pingle
11:16 AM Bug #9592 (Pull Request Review): VTI interface down because interface number created is greater than ipsec32768: Jim Pingle
09:44 AM Bug #9592: VTI interface down because interface number created is greater than ipsec32768: Regression fix:
https://github.com/pfsense/pfsense/pull/4459 Viktor Gurov
09:45 AM Feature #10214: Allow IPsec duplicate endpoints: Fixed in https://redmine.pfsense.org/issues/9592#note-5 Viktor Gurov
08:50 AM Feature #10214 (Pull Request Review): Allow IPsec duplicate endpoints: Jim Pingle
08:42 AM Feature #10214: Allow IPsec duplicate endpoints: see also #9768 and #7410 Viktor Gurov
08:41 AM Feature #10214: Allow IPsec duplicate endpoints: "Gateway duplicates" checkbox allows to create duplicate PH1 entries in WebGUI,
but /var/etc/ipsec/swanctl.conf only... Viktor Gurov
07:11 AM Bug #10925 (Resolved): PHP: Invalid argument supplied for foreach() in /etc/inc/util.inc on line 2640: Craig Weber wrote:
> Renato Botelho wrote:
> > Applied in changeset commit:ffe95182999a344dd926c5079a3f74ccc62e0f46... Renato Botelho
06:11 AM Bug #10925: PHP: Invalid argument supplied for foreach() in /etc/inc/util.inc on line 2640: Renato Botelho wrote:
> Applied in changeset commit:ffe95182999a344dd926c5079a3f74ccc62e0f46.
Great, thank you! I... Craig Weber
07:09 AM Feature #790 (New): Advanced options for dnsclient (resolv.conf): Removing target, PR was closed (no activity for ~1yr after changes were requested) Jim Pingle
05:53 AM Revision 12a0edbb: Disable "Hardware Checksum Offloading" if VTNET is detected. Implements #10723: Viktor Gurov
05:38 AM Revision 3f6151d7: Use user DN for RFC2307 membership search (updated). Issue #9527: Viktor Gurov

09/24/2020

04:32 PM Revision f81845a6: Update bootstrap to v3.4.1: Steve Beaver
02:53 PM pfSense Docs Correction #10929: Feedback on Development — Developing Packages: Great, thanks Jim. Looking to possibly make a little plugin here and have been pretty lost on where to start. alzee bum
02:48 PM pfSense Docs Correction #10929 (Resolved): Feedback on Development — Developing Packages: Thanks for catching that! I have restored the information which should be on that page, and made some additional edit... Jim Pingle
09:52 AM pfSense Docs Correction #10929 (Resolved): Feedback on Development — Developing Packages: *Page:* https://docs.netgate.com/pfsense/en/latest/development/develop-packages.html
*Feedback:* This page just li... alzee bum
02:42 PM pfSense Docs Correction #10707 (Resolved): Feedback on Backup and Restore — Automatically Restore a pfSense Configuration During Installation: Relevant changes, and more related changes on the page, are now complete.
https://docs.netgate.com/pfsense/en/late... Jim Pingle
01:59 PM Feature #6960: Introduce Kea DHCP as an alternative DHCP server for IPv4 and IPv6: Not enough time for this big change before 2.5.0 is out Renato Botelho
01:44 PM Bug #9058: Kernel panic during L2TP retransmit: A possible solution proposed by markj@ - https://reviews.freebsd.org/D26548
If this revision is accepted I'll impo... Renato Botelho
10:57 AM Bug #9058: Kernel panic during L2TP retransmit: Waiting for a fix on FreeBSD side. When it happens we can target a pfSense release to add it Renato Botelho
01:18 PM Todo #9052 (In Progress): Update Font-Awesome: Jared Dillard
01:13 PM pfSense Packages Bug #10930: Wrong blocklist from dshield.org: also, https://feeds.dshield.org/top10-2.txt is mentioned in the documentation, which is not a block list. Johannes Ullrich
01:12 PM pfSense Packages Bug #10930 (Resolved): Wrong blocklist from dshield.org: The current configuration uses the wrong blocklist from dshield.org (https://isc.sans.edu/api/sources/attacks/1000/30... Johannes Ullrich
08:57 AM Feature #9527 (Pull Request Review): Add ability for LDAP extended query on groups in RFC2307 containers.: Jim Pingle
08:57 AM Feature #9527: Add ability for LDAP extended query on groups in RFC2307 containers.: Jim Pingle wrote:
> I reverted commit:e924485c9e681771806fe3ee63ed746152fcbcb9 -- Previously working LDAP servers st... Viktor Gurov
07:30 AM Bug #10928 (Duplicate): RADIUS Authentification parameters encoding/decoding dont work for french characters like : ç, é, à: Duplicate of #10352 Jim Pingle
03:55 AM Bug #10928 (Duplicate): RADIUS Authentification parameters encoding/decoding dont work for french characters like : ç, é, à: Hello !
I tried to setup L2TP/IPSEC VPN authenticated by RADIUS with AD. (Pfsense 2.4.3)
Everything works perfe... Oscar Mrbt
07:19 AM Bug #6891 (Duplicate): Improper shutdown causes irrecoverable filesystem corruption, unable to boot or fsck: It's probably a duplicate of #6340. Lots of improvements were made in this area on FreeBSD itself and also on pfSense. Renato Botelho
03:27 AM pfSense Packages Bug #10927 (Resolved): pfBlockerNG-devel fullfill the pfsense config history when RAM disk in use: Hi !
I set pfBlockerNG-devel to update DNSBL hourly, and it works fine.
But this hourly update use to be logged i... Laurent BONNIN
12:27 AM pfSense Packages Bug #10922: Gmail smtp relay TLS stopped working.: Anton Palmgard wrote:
> Hi to clarify we use, smtp-relay.gmail.com as this is used by gsuite.
/usr/local/etc/stun... Viktor Gurov

09/23/2020

06:42 PM Revision 50299413: Update URLs to docs. Fixes #10481: Jim Pingle
06:18 PM Revision 9aa882cb: Update help.php URLs. Fixes #10481: Jim Pingle
04:37 PM pfSense Packages Bug #10922: Gmail smtp relay TLS stopped working.: Hi to clarify we use, smtp-relay.gmail.com as this is used by gsuite. Anton Palmgard
03:01 AM pfSense Packages Bug #10922 (Rejected): Gmail smtp relay TLS stopped working.: no such issue on pfSense 2.4.5-p1, pfSense-pkg-stunnel-5.50_4
/usr/local/etc/stunnel/stunnel.conf:... Viktor Gurov
04:33 PM Revision 4a5942a4: Merge pull request #4457 from vktg/bridgecpvalidation: Renato Botelho
04:26 PM Revision 3f338fde: Bridge interface Captive Portal validation. Issue #6528: Viktor Gurov
03:46 PM pfSense Docs Correction #10924: Update information on distributed vswitch behavior in VMware vSphere / ESXi: Yeah, enabling this also removes the need for the Net.ReversePathFwdCheckPromisc setting listed on that page. It basi... Nathan M
03:26 PM pfSense Docs Correction #10924: Update information on distributed vswitch behavior in VMware vSphere / ESXi: Perhaps this instead or as well: https://docs.netgate.com/pfsense/en/latest/troubleshooting/high-availability-virtual... Jim Pingle
03:19 PM pfSense Docs Correction #10582 (Closed): Feedback on Services — DNS — Blocking DNS Queries to External Resolvers: I recently rewrote this page, it should be current/accurate now. Jim Pingle
03:17 PM pfSense Docs Correction #10512 (Closed): Feedback on Routing and Multi-WAN — Using Multiple IPv4 WAN Connections: The book and wiki content has been merged, and the book content is the only copy of this present now. So based on the... Jim Pingle
03:15 PM pfSense Docs Correction #10382 (Closed): Feedback on Hardware — Tuning and Troubleshooting Network Cards: The book and wiki content has been merged, so this is addressed.
https://docs.netgate.com/pfsense/en/latest/hardwa... Jim Pingle
03:14 PM pfSense Docs Todo #10268 (Closed): Feedback on Services: It's already under Backup and Recovery where users are most likely to look for it. Since it isn't a service running l... Jim Pingle
03:07 PM pfSense Docs Correction #10173 (Closed): Feedback on Packages — Fixing a Broken pkg Database: I don't see any references to that path, only @/usr/local/sbin/pkg-static@ which does exist.
Jim Pingle
03:06 PM pfSense Docs New Content #10009 (Closed): Feedback on System Monitoring: Seems irrelevant after the docs merge.
https://docs.netgate.com/pfsense/en/latest/monitoring/status/carp.html Jim Pingle
03:06 PM pfSense Docs New Content #10008 (Closed): Feedback on IPsec: Advanced IPsec settings are all covered at https://docs.netgate.com/pfsense/en/latest/vpn/ipsec/advanced.html now Jim Pingle
03:05 PM pfSense Docs New Content #10007 (Closed): Feedback on Services — Dynamic DNS: The book and former wiki content are now merged so the info is together.
https://docs.netgate.com/pfsense/en/lates... Jim Pingle
03:04 PM pfSense Docs Correction #10006 (Closed): Feedback on Backup and Recovery — Using the AutoConfigBackup Package: Gold and ACB package refs are all gone. Jim Pingle
03:02 PM pfSense Docs Correction #9925 (Closed): Feedback on VPN — OpenVPN — Troubleshooting Windows OpenVPN Client Connectivity: This page has since been rewritten and removed the problematic references.
https://docs.netgate.com/pfsense/en/lat... Jim Pingle
02:53 PM pfSense Docs Correction #9672 (Closed): Feedback on Backup and Recovery — Using the AutoConfigBackup Package: References to Gold and ACB as a package were all removed during the docs merge. All refs for ACB should now indicate ... Jim Pingle
02:52 PM pfSense Docs Correction #9671 (Closed): Feedback on Hardware — Hardware Selection: I fixed this at some point...
The note at the end of https://docs.netgate.com/pfsense/en/latest/hardware/selection.h... Jim Pingle
02:48 PM pfSense Docs Correction #9670 (Closed): Feedback on Backup and Recovery: References to Gold and ACB as a package were all removed during the docs merge. All refs for ACB should now indicate ... Jim Pingle
02:45 PM pfSense Docs Correction #9494 (Resolved): Feedback on VPN — IPsec — NAT with IPsec Phase 2 Networks: This page has since been rewritten and should be clear now. Jim Pingle
02:43 PM pfSense Docs Correction #9379: Feedback on Interfaces — Using a Large Number of Interfaces: Mostly addressed in the new docs, but we can add that suggested upper number as a guide. Jim Pingle
02:40 PM pfSense Docs Correction #9373: Feedback on Services — DNS — Configuring the DNS Resolver: The main Unbound docs need updated yet but there is also this: https://docs.netgate.com/pfsense/en/latest/recipes/dns... Jim Pingle
02:36 PM Revision 93fec82f: Merge pull request #4456 from vktg/nptoverlapvalidation: Renato Botelho
02:36 PM Revision fd8b556f: Merge pull request #4455 from vktg/pppoesrvinfcheck: Renato Botelho
02:36 PM Revision 2ec97b21: Merge pull request #4454 from vktg/pppoesecondradius: Renato Botelho
02:36 PM Revision f23f5274: Merge pull request #4452 from vktg/backupdhcpleases: Renato Botelho
02:36 PM Revision 415932cf: Merge pull request #4453 from vktg/pppoenorestart: Renato Botelho
02:25 PM pfSense Docs Correction #10901 (Resolved): Feedback on Virtualization — VirtIO Driver Support: Fixed manually in the new docs repo Jim Pingle
02:24 PM pfSense Docs Correction #10877 (Feedback): Feedback on VPN — IPsec — Configuring an IPsec Remote Access Mobile VPN using IKEv2 with EAP-MSCHAPv2: Fixed in the new docs repo. Jim Pingle
10:07 AM pfSense Docs Correction #10877 (New): Feedback on VPN — IPsec — Configuring an IPsec Remote Access Mobile VPN using IKEv2 with EAP-MSCHAPv2: Jim Pingle
01:44 PM Bug #10481 (Resolved): Update doc links in WebGUI to reflect proper docs URLs: Reusing this, see #10135, same intent.
Fixed in pfsense:commit:502994130948049349e6c52b651266d8d7bf3566 Jim Pingle
01:35 PM Todo #10135 (Feedback): help.php: Update links: Latest revision is in commit:9aa882cbb18d27d0b7a2a305dfb3164080e7a4d7
All are current, no more redirects. Any othe... Jim Pingle
01:16 PM Todo #10135: help.php: Update links: The book and former wiki content have now been merged into a single set of documentation. I'm going to reuse this iss... Jim Pingle
12:45 PM Bug #9643: Limiters do not function properly on 2.5 snapshots: Abhinav Tella wrote:
> Here are the limiters and firewall floating rule I used. When the firewall rule is enabled, n... Jesse Beauclaire
11:33 AM Bug #6528 (Feedback): The captive portal cannot be used on interface lan since it is part of a bridge but works anyway: PR has been merged. Thanks! Renato Botelho
08:58 AM Bug #6528 (Pull Request Review): The captive portal cannot be used on interface lan since it is part of a bridge but works anyway: Jim Pingle
03:27 AM Bug #6528: The captive portal cannot be used on interface lan since it is part of a bridge but works anyway: https://github.com/pfsense/pfsense/pull/4457 Viktor Gurov
10:47 AM pfSense Docs Correction #10648 (Closed): Feedback on IPsec — Mobile IPsec — Windows IKEv2 Client Configuration: The PR was merged months ago. If more is needed, should be in a new issue/new PR. Jim Pingle
10:42 AM pfSense Docs Correction #10686 (Duplicate): Feedback on Development — Obtaining Panic Information for Developers: Duplicate of #10180 Jim Pingle
10:31 AM pfSense Packages Feature #10897 (Feedback): SNMPV3-trap/inform Add Snmpv3 trap/inform Field: PR has been merged. Thanks! Renato Botelho
10:31 AM pfSense Docs Correction #9686 (Duplicate): Feedback on Firewall — Floating Rules: Duplicate of #9685 Jim Pingle
10:30 AM pfSense Packages Feature #10913 (Feedback): Allow disabling caching in Squid completly: PR has been merged. Thanks! Renato Botelho
08:54 AM pfSense Packages Feature #10913 (Pull Request Review): Allow disabling caching in Squid completly: Jim Pingle
01:14 AM pfSense Packages Feature #10913: Allow disabling caching in Squid completly: https://github.com/pfsense/FreeBSD-ports/pull/940 Viktor Gurov
10:30 AM pfSense Packages Bug #5168 (Feedback): squid doesn't function during/after HA failover: PR has been merged. Thanks! Renato Botelho
08:59 AM pfSense Packages Bug #5168 (Pull Request Review): squid doesn't function during/after HA failover: Jim Pingle
07:07 AM pfSense Packages Bug #5168: squid doesn't function during/after HA failover: Azamat Khakimyanov wrote:
> I tested it on 2.5-DEV (built on Wed Sep 16 01:00:40 EDT 2020): With new "CARP Status VI... Viktor Gurov
10:20 AM pfSense Docs Correction #9228: Feedback on Hardware — Hardware Sizing Guidance: We can probably take out those tables with Netgate model info and link to the comparison charts on the store which ha... Jim Pingle
09:37 AM Feature #10318 (Feedback): Do not restart PPPoE server after adding/modifying users: PR has been merged. Thanks! Renato Botelho
09:36 AM Feature #10910 (Feedback): Backup/restore DHCP v4/v6 leases: PR has been merged. Thanks! Renato Botelho
09:36 AM Bug #10926 (Feedback): Secondary RADIUS Server is never used: PR has been merged. Thanks! Renato Botelho
09:36 AM Bug #4510 (Feedback): Crash & reboot loop when configure PPPoE server on PPPoE client interface: PR has been merged. Thanks! Renato Botelho
08:55 AM Bug #4510 (Pull Request Review): Crash & reboot loop when configure PPPoE server on PPPoE client interface: Jim Pingle
01:44 AM Bug #4510: Crash & reboot loop when configure PPPoE server on PPPoE client interface: https://github.com/pfsense/pfsense/pull/4455 Viktor Gurov
09:36 AM Feature #7741 (Feedback): warn me when shooting myself in the foot with NPt: PR has been merged. Thanks! Renato Botelho
08:57 AM Feature #7741 (Pull Request Review): warn me when shooting myself in the foot with NPt: Jim Pingle
02:13 AM Feature #7741: warn me when shooting myself in the foot with NPt: https://github.com/pfsense/pfsense/pull/4456 Viktor Gurov
07:12 AM Revision 0dc5aeaa: NPT prefix overlap validation. Issue #7741: Viktor Gurov
06:41 AM Revision 4f911030: PPPoE Server interface input validation. Issue #4510: Viktor Gurov
05:13 AM Revision 80fcbd31: PPPoE Server secondary RADIUS server fixes. Issue #10926: Viktor Gurov
03:21 AM Bug #10720 (Resolved): Setup Wizard DNS Server validation JavaScript incorrectly claims IPv6 address is invalid: Danilo Zrenjanin
03:21 AM Bug #10720: Setup Wizard DNS Server validation JavaScript incorrectly claims IPv6 address is invalid: Tested on :... Danilo Zrenjanin
02:55 AM Bug #10882 (Resolved): DHCPv6 Static Mappings requires applying changes on DNS resolver setup: Added the patch on the:... Danilo Zrenjanin
02:03 AM Feature #10856 (Resolved): Backup/Restore Captive Portal usedmacs DB: Danilo Zrenjanin
02:02 AM Feature #10856: Backup/Restore Captive Portal usedmacs DB: Tested on:... Danilo Zrenjanin
01:52 AM Feature #1683: PF scrub min-ttl option: see also #10493 Viktor Gurov

09/22/2020

06:14 PM Bug #10792 (Closed): Crash when switching interface off and on again in cohesion with multicast: Awesome! Thanks for reporting Renato Botelho
06:10 PM Feature #1337: VLANs with different MAC address than parent interface: Setting the interface in promiscuous mode is not the way to go and without it FreeBSD don't offer a way to make it to... Renato Botelho
06:07 PM Bug #6167: IPsec IPComp not working: When it's fixed on FreeBSD we can import the fix and target it to a version Renato Botelho
05:10 PM Revision 7fceb8e1: Clean backup cache before reading: Steve Beaver
03:23 PM Revision 1b75667c: Backup/restore DHCP v4/v6 leases. Implements #10910: Viktor Gurov
03:06 PM Todo #9356 (Closed): Find optimal default for net.pf.request_maxcount: This has been working fine.
Note that it changed from a loader tunable to a run-time sysctl in FreeBSD stable/12 f... Jim Pingle
03:01 PM Feature #10387 (Feedback): Reevaluate the GUI upgrade language presented to the user: Message changed to "System is going to be upgraded. Rebooting in 10 seconds"
pfSense-upgrade 0.88 on 2.5.0 and 0.... Renato Botelho
02:56 PM Revision ffe95182: Fix #10925: Check if $rtable is empty: Renato Botelho
02:53 PM Revision f5d5a463: Do not restart PPPoE server after adding/modifying users. Implements #10318: Viktor Gurov
02:53 PM Feature #10388 (Rejected): Upgrade to Python 3.8: We will keep following the default version from FreeBSD ports tree, which now is 3.7 Renato Botelho
02:51 PM pfSense Packages Bug #10646 (Duplicate): Reinstall package process stalls at pfBlockerNG when restoring a config: Duplicate of #10610 Renato Botelho
02:49 PM Bug #10518 (Rejected): Netmap appears broken in Snort and Suricata packages when Inline IPS Mode enabled: It won't affect users upgrading from 2.4 to 2.5 so there is no action to be done. Thanks Renato Botelho
01:37 PM pfSense Docs Correction #10451 (Closed): Feedback on Releases — Versions of pfSense and FreeBSD: There is a difference in "Supported" as meant on that page and versions eligible for support from Netgate TAC. Both u... Jim Pingle
01:31 PM pfSense Docs New Content #8773 (Closed): Add VPN Throughput Tuning info: Jim Pingle
01:03 PM Bug #10926 (Pull Request Review): Secondary RADIUS Server is never used: Jim Pingle
12:02 PM Bug #10926: Secondary RADIUS Server is never used: https://github.com/pfsense/pfsense/pull/4454 Viktor Gurov
09:59 AM Bug #10926 (Resolved): Secondary RADIUS Server is never used: Secondary/Backup RADIUS server is never used,
There is no $pppoecfg['radius']['server2'] in the code,
Only primary ... Viktor Gurov
10:32 AM Bug #7096: Unbound fails to start on boot if specific network devices are configured in the "Network Interfaces": Back when I reported the problem its was IPoE DHCP for Wan IPv4 and Track Interface for LAN IPv6.
Now it is IPv4 P... Chris Collins
04:16 AM Bug #7096: Unbound fails to start on boot if specific network devices are configured in the "Network Interfaces": Chris Collins wrote:
> Just to add I Dont get this issue anymore, I think the problem may have been related to unbou... Viktor Gurov
10:05 AM Bug #10925 (Feedback): PHP: Invalid argument supplied for foreach() in /etc/inc/util.inc on line 2640: Applied in changeset commit:ffe95182999a344dd926c5079a3f74ccc62e0f46. Renato Botelho
08:57 AM Bug #10925: PHP: Invalid argument supplied for foreach() in /etc/inc/util.inc on line 2640: That's line 2640 on factory and line 2624 on CE.
The foreach() here:... Jim Pingle
01:41 AM Bug #10925 (Resolved): PHP: Invalid argument supplied for foreach() in /etc/inc/util.inc on line 2640: Invalid argument supplied for foreach() in /etc/inc/util.inc on line 2640 error at boot.
Has started happening ab... Craig Weber
10:01 AM Feature #10318 (Pull Request Review): Do not restart PPPoE server after adding/modifying users: Jim Pingle
09:55 AM Feature #10318: Do not restart PPPoE server after adding/modifying users: https://github.com/pfsense/pfsense/pull/4453 Viktor Gurov
09:11 AM pfSense Packages Feature #10897 (Pull Request Review): SNMPV3-trap/inform Add Snmpv3 trap/inform Field: Jim Pingle
05:29 AM pfSense Packages Feature #10897: SNMPV3-trap/inform Add Snmpv3 trap/inform Field: https://github.com/pfsense/FreeBSD-ports/pull/939 Viktor Gurov
09:09 AM Feature #10910 (Pull Request Review): Backup/restore DHCP v4/v6 leases: Jim Pingle
03:48 AM Feature #10910: Backup/restore DHCP v4/v6 leases: https://github.com/pfsense/pfsense/pull/4452 Viktor Gurov
08:44 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Steve Wheeler wrote:
> After upgrading to todays snap with this change I am seeing this error:
> [...]
>
> The c... Ben Hughes
08:20 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: Steve Wheeler wrote:
> The console hung at 'Writing configuration...' at boot after the update requiring me to Ctl+C... Jim Pingle
08:19 AM pfSense Packages Feature #10789: FRR integrated configuration and hitless reloads: After upgrading to todays snap with this change I am seeing this error:... Steve Wheeler
08:26 AM Bug #10155 (Resolved): sshguard is not compatible with RFC 5424 log format: This looks good now, thanks!... Jim Pingle
07:43 AM pfSense Packages Bug #10917 (Resolved): snort: invalid pidfile suffix error: Renato Botelho
01:43 AM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: I don't think NAT-T is the issue. All my firewalls have public IPs, and my tunnels don't have NAT-T (see status outpu... Brian Candler
01:17 AM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: Could another difference-maker be NAT-T? As reported above, i'm consistently seeing duplicates on a cluster i'm opera... Marc L

09/21/2020

09:13 PM pfSense Docs Correction #10924: Update information on distributed vswitch behavior in VMware vSphere / ESXi: This ticket is probably meant for this page instead - https://pfsense-docs.readthedocs.io/en/latest/highavailability/... Nathan M
08:07 PM pfSense Docs Correction #10924 (New): Update information on distributed vswitch behavior in VMware vSphere / ESXi: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/virtualize-esxi.html
*Feedback:*
Vmware has added su... Nathan M
07:01 PM Revision c4251167: Fix ui/json replace error: Steve Beaver
06:46 PM Revision 82289330: Merge pull request #4176 from vktg/maxikev1exchanges: Renato Botelho
06:46 PM Revision 08ff1f65: Merge pull request #4436 from f-bor/ipsec_custom_port: Renato Botelho
03:26 PM Bug #10861 (Resolved): net.pf.request_maxcount value set in loader.conf not respected on latest snapshot: I've upgraded a few systems and they all came through OK. Had the wrong value before upgrade and expected value after. Jim Pingle
03:25 PM pfSense Packages Bug #10917: snort: invalid pidfile suffix error: The pull requests against pfSense-2.4.5-RELEASE and pfSense-2.5-DEVELOPMENT have been merged. This issue can be marke... Bill Meeks
03:13 PM pfSense Packages Bug #10917 (Feedback): snort: invalid pidfile suffix error: PR has been merged. Thanks! Renato Botelho
03:11 PM pfSense Packages Bug #10917: snort: invalid pidfile suffix error: PRs:
* https://github.com/pfsense/FreeBSD-ports/pull/937
* https://github.com/pfsense/FreeBSD-ports/pull/938 Jim Pingle
03:10 PM pfSense Packages Bug #10917 (Pull Request Review): snort: invalid pidfile suffix error: Jim Pingle
03:09 PM pfSense Packages Bug #10917: snort: invalid pidfile suffix error: Two pull requests have been submitted against pfSense-2.4.5 and pfSense-2.5 to fix the issue reported in this ticket.... Bill Meeks
09:48 AM pfSense Packages Bug #10917: snort: invalid pidfile suffix error: This issue also impacts the Snort package on pfSense-2.5 under the same conditions when the physical interface name a... Bill Meeks
03:05 PM Feature #6324 (Closed): Improve IKEv2 multiple traffic selector per SA configuration GUI: There is no need for a separate option here. If you check Split Connections it does the right thing on 2.5.0.
It m... Jim Pingle
02:30 PM Bug #10923 (Resolved): Update ixl Driver on pfSense 2.5.0 to bring back Intel X710-T2L/T4L support that was present on version 2.4.5-P1.: Intel X710 T-2L/T-4L devices were supported on pfSense 2.4.5-P1, however a regression from FreeBSD 12 onwards meant s... Abhinav Tella
02:21 PM Bug #8686: IPsec VTI: Assigned interface firewall rules are never parsed: I thought it was noted here but I don't see it. There is another FreeBSD issue at https://bugs.freebsd.org/bugzilla/s... Jim Pingle
01:58 PM Bug #9710 (Resolved): IPv6 RA: prefix option does not contain router address in spite of "R" flag being set: Jim Pingle
01:18 PM Bug #9710: IPv6 RA: prefix option does not contain router address in spite of "R" flag being set: Feedback:
Tested on:
2.5.0-DEVELOPMENT (amd64)
built on Mon Sep 21 07:00:38 EDT 2020
FreeBSD 12.2-PRERELEASE
R... Rick Coats
01:47 PM Feature #10870 (Feedback): Allow custom IPSEC NAT-T port: PR has been merged. Thanks! Renato Botelho
01:47 PM Bug #9331 (Feedback): Parallel Rekey fails for multiple Child SAs: PR has been merged. Thanks! Renato Botelho
12:26 PM Revision 9372c82c: Adjust ETCDIR for frr7: Renato Botelho
12:16 PM Bug #10155 (Feedback): sshguard is not compatible with RFC 5424 log format: Renato Botelho
12:15 PM Bug #10155: sshguard is not compatible with RFC 5424 log format: sshguard 2.4.1 is now imported into pfSense 2.5.0 Renato Botelho
10:40 AM pfSense Packages Bug #10922 (Rejected): Gmail smtp relay TLS stopped working.: Hi, a few days ago up to a week my stunnel connection to smtp-gmail.gmail.com. stopped working with the error:
ep... Anton Palmgard
09:54 AM Bug #7096: Unbound fails to start on boot if specific network devices are configured in the "Network Interfaces": Just to add I Dont get this issue anymore, I think the problem may have been related to unbound starting "before" wan... Chris Collins
09:34 AM Todo #9417: Convert LDAP TLS setup from environment to LDAP_OPT_X_TLS_* set options: This is working better but today I'm seeing some inconsistencies in the behavior. I can flip back and forth between t... Jim Pingle
08:47 AM Bug #10921 (Not a Bug): Firewall rule removed and activated, but still active: https://docs.netgate.com/pfsense/en/latest/firewall/firewall-rule-troubleshooting.html#dangling-states Jim Pingle
08:31 AM Bug #10921 (Not a Bug): Firewall rule removed and activated, but still active: Hello everybody,
I'm currently testing pfsense in my laboratory. I couldn't ping the WAN interface, which is corre... Jens Bauer
07:44 AM Bug #10560 (Duplicate): Connection fails connecting to (my) OpenVPN instance.: Jim Pingle
07:43 AM Bug #10560: Connection fails connecting to (my) OpenVPN instance.: We already have an issue for that particular problem: #4521 Jim Pingle
07:39 AM pfSense Packages Feature #10665 (Feedback): Manual OSPF neighbor definitions: I committed fixes which should fix this. Will be available shortly. Jim Pingle
07:21 AM pfSense Packages Feature #10665: Manual OSPF neighbor definitions: Looks like it's missing entries in pkg-plist and Makefile to install that file. Jim Pingle
07:00 AM pfSense Packages Feature #10665 (Assigned): Manual OSPF neighbor definitions: Tested on:
2.5.0-DEVELOPMENT (amd64)
built on Mon Sep 21 01:04:35 EDT 2020
FreeBSD 12.2-PRERELEASE
I didn't fin... Azamat Khakimyanov
07:33 AM pfSense Packages Feature #10789 (Feedback): FRR integrated configuration and hitless reloads: PR has been merged only on 2.5.0 branch for now so we can get it properly tested Renato Botelho
06:54 AM Bug #10827 (Confirmed): Cannot add or delete separators when no rules are present: Marcos M
06:38 AM Feature #10743 (In Progress): Traffic shaper wizard: Add Google Stadia port range: Renato Botelho
06:38 AM Bug #10889: Hover text missing from Static Routes Page: Kris Phillips wrote:
> Renato Botelho wrote:
> > PR has been merged. Thanks!
>
> Hello Renato,
>
> Do you ha... Renato Botelho
02:31 AM Bug #9024: Ping packet loss under load when using limiters: Problem also seems to be related to download limiter only, as traceroute is displayed correctly if fq-codel is applie... Thomas Pilgaard

09/20/2020

04:56 PM pfSense Docs Correction #10920 (Resolved): Feedback on Packages — Using the Package Manager: *Page:* https://docs.netgate.com/pfsense/en/latest/packages/manager.html
*Feedback:*
The information on this page... Michael Sonstein
04:42 PM Bug #10560: Connection fails connecting to (my) OpenVPN instance.: TL;DR: It is a bug or feature of fcgicli in fact. It doesn't handle long strings being sent to the application. The "... Stefan Smietanowski
04:04 PM Bug #10892 (Resolved): Large number of VLAN/LANs make floating rules are to read: Tested in
2.5.0-DEVELOPMENT (amd64)
built on Sun Sep 20 06:59:15 EDT 2020
FreeBSD 12.2-PRERELEASE
and patch ... Max Leighton
02:30 PM Bug #9383 (Resolved): dhcpleases kqueue error: Validated the behavior in 2.4.5_1
Tested again in
2.5.0-DEVELOPMENT (amd64)
built on Sun Sep 20 06:59:15 EDT 2... Max Leighton
12:13 PM pfSense Packages Bug #10884 (Resolved): wrong link on haproxy-devel: Tested on
2.5.0-DEVELOPMENT (amd64)
built on Sun Sep 20 06:59:15 EDT 2020
FreeBSD 12.2-PRERELEASE
Related ... Max Leighton
08:36 AM pfSense Packages Feature #10725 (Resolved): Squid disable multiple login sessions: Azamat Khakimyanov
08:35 AM pfSense Packages Feature #10725: Squid disable multiple login sessions: Tested on:
2.5.0-DEVELOPMENT (amd64)
built on Sun Sep 20 01:01:05 EDT 2020
FreeBSD 12.2-PRERELEASE
With default... Azamat Khakimyanov
06:56 AM pfSense Packages Bug #8625 (Resolved): PFsense squidGuard faulty URL check: Tested on 2.4.4_p3, 2.4.4_p1 and 2.5-DEV (built on Sun Sep 20 01:01:05 EDT 2020):
- no issue if there is an url with... Azamat Khakimyanov
05:26 AM Bug #10919 (Resolved): Improve handling of OpenVPN data cipher negotiation options: TL;DR: the cipher that is selected as --cipher in the openvpn config, should always be added to ncp-ciphers
In Ope... Arne Schwabe
02:37 AM pfSense Packages Bug #7455: Unbound DNS Resolver failed with pfBlockerNG after reboot with /var mounted on ramfs: Similar issue over here, 2.4.5-RELEASE-p1 having LAN, VLAN and WAN1, WAN2 (LoadBalancing&Failover) and IPv4, IPv6 and... Marc Dorando
02:35 AM Bug #9567: Unbound DNS Resolver does not start up when using IPv6 DHHCPv6 WAN DHCPv6 LAN coupled with v6 Prefix Delegation: Similar issue over here, 2.4.5-RELEASE-p1 having LAN, VLAN and WAN1, WAN2 (LoadBalancing&Failover) and IPv4, IPv6 and... Marc Dorando
02:32 AM Bug #7096: Unbound fails to start on boot if specific network devices are configured in the "Network Interfaces": Same issue over here, Unbound does not start after rebooting on 2.4.5-RELEASE-p1 having LAN, VLAN and WAN1, WAN2 (Loa... Marc Dorando
12:00 AM Feature #10918 (New): IP Aliases de-duplication: when i add an IP Aliases with duplicate or same IP-address, it will add those IPs without any warning about duplicate... Nima Mohammadi

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

10/19/2020

10/18/2020

10/17/2020

10/16/2020

10/15/2020

10/14/2020

10/13/2020

10/12/2020

10/11/2020

10/10/2020

10/09/2020

10/08/2020

10/07/2020

10/06/2020

10/05/2020

10/04/2020

10/03/2020

10/02/2020

10/01/2020

09/30/2020

09/29/2020

09/28/2020

09/27/2020

09/26/2020

09/25/2020

09/24/2020

09/23/2020

09/22/2020

09/21/2020

09/20/2020