Activity

30 days up to

User

Subprojects

Activity

From 11/11/2020 to 12/10/2020

12/10/2020

11:18 PM Bug #11134 (Resolved): VTI interfaces can be added to groups, but rules have no effect: Alhusein Zawi
11:16 PM Bug #11134: VTI interfaces can be added to groups, but rules have no effect: working as expected .
VTI interface is not showing up on interface groups assignment. (removed)
2.5.0.a.20... Alhusein Zawi
06:27 PM Revision fbcfaacd: Correct cert expire threshold default text: Jim Pingle
05:24 PM pfSense Docs Correction #11151 (Closed): avahi_settings.php is missing an entry in help.php: New content needs to be created for avahi_settings.php or possibly link it here: https://docs.netgate.com/pfsense/en/... Jared Dillard
05:23 PM pfSense Docs New Content #11150 (Closed): vpn_ipsec_export_win.php missing from help.php: vpn_ipsec_export_win.php is missing an entry in help.php.
It either needs new content created, or a place to link to. Jared Dillard
03:36 PM Revision 47eff117: Update translation files: Renato Botelho
03:32 PM Revision d13dc8c5: Regenerate pot: Renato Botelho
03:31 PM Revision 573ec19d: Add product_label global variable: Introduce product_label global variable, by default with same value of
product_name. The idea is to make it easier f... Renato Botelho
03:31 PM Revision 0b725069: Remove unused variable: Renato Botelho
03:31 PM Revision cda2ef35: Remove use of deprecated $g['platform']: Renato Botelho
12:08 PM Bug #10610: Package upgrade or reinstall hangs indefintely on the console: When update to pfblocker 3.0.0_2 through 3.0.0_4 on 2.5, it still take forever for the update to apply and then you ... andreas vesalius
10:04 AM Bug #11149: DHCP relay won't start with DHCP server behind gateway: And to be more compete, if I then disable that third interface, the DHCP relay then again won't start(same error). Mark Lavrijsen
10:01 AM Bug #11149 (New): DHCP relay won't start with DHCP server behind gateway: This is the case current 2.5.0 development snapshot as of today.
Configuration:
em0 --> LAN2 --> DHCP relay shoul... Mark Lavrijsen
09:54 AM Bug #8611: unable to receive IPv6 RA's on SG-1000, default route lost: Luiz Souza wrote:
> Jim Pingle wrote:
> > On the 20201208.0803 snapshot I still have to put the interface in promis... Jim Pingle
09:09 AM Bug #8611 (In Progress): unable to receive IPv6 RA's on SG-1000, default route lost: Jim Pingle wrote:
> On the 20201208.0803 snapshot I still have to put the interface in promiscuous mode or it doesn'... Luiz Souza
09:27 AM pfSense Packages Bug #8466: radiusd crash: able to reproduce:... Viktor Gurov
06:09 AM pfSense Packages Bug #8466: radiusd crash: Same here on 2.4.5-RELEASE-p1 (amd64) - a nice way of locking yourself out of pfSense :-( Yury Zaytsev
09:14 AM Bug #5308 (Pull Request Review): Failed Namecheap DDNS updates don't cause an error in the GUI.: Jim Pingle
06:47 AM Bug #5308: Failed Namecheap DDNS updates don't cause an error in the GUI.: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/86 Viktor Gurov
09:07 AM Bug #10224 (Pull Request Review): DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: Jim Pingle
01:20 AM Bug #10224: DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: add Secondary DDNS field:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/84 Viktor Gurov
09:05 AM Bug #11146 (Pull Request Review): Domeneshop DDNS not updating cache IP: Jim Pingle
06:47 AM Bug #11146: Domeneshop DDNS not updating cache IP: Viktor Gurov wrote:
> Fix:
> https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/83
that was a really qu... Idar Lund
12:09 AM Bug #11146: Domeneshop DDNS not updating cache IP: Fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/83 Viktor Gurov
06:32 AM pfSense Packages Feature #11113 (Feedback): New phishing feeds: PR has been merged. Thanks! Renato Botelho
06:32 AM pfSense Packages Bug #11128 (Feedback): pfblockerng 3.0.0_3 not using upstream proxy for curl feed downloads: PR has been merged. Thanks! Renato Botelho
05:09 AM Bug #9506: Dynamic DNS update notification sent even if IP address didn't change: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/85 Viktor Gurov
12:59 AM pfSense Packages Feature #11148 (Closed): Snort Inline mode note: It would be better to add a note about Inline mode rule actions,
from https://forum.netgate.com/topic/143812/snort-p... Viktor Gurov

12/09/2020

11:47 PM Bug #11147: Domeneshop DynDNS IPv4 and IPv6: This is Domeneshop bug, see https://api.domeneshop.no/docs/index.html#tag/ddns:
A DNS record for the given hostname ... Viktor Gurov
12:55 PM Bug #11147: Domeneshop DynDNS IPv4 and IPv6: Jostein Hove-Henriksen wrote:
> When using both "Domeneshop" and "Domeneshop (v6)", the first one is overwritten by ... Jostein Hove-Henriksen
09:58 AM Bug #11147: Domeneshop DynDNS IPv4 and IPv6: Log (anonymized) :
Dec 9 16:49:09 check_reload_status 372 Syncing firewall
Dec 9 16:49:09 php-fpm 334 /serv... Jostein Hove-Henriksen
09:37 AM Bug #11147 (New): Domeneshop DynDNS IPv4 and IPv6: When using both "Domeneshop" and "Domeneshop (v6)", the first one is overwritten by the last. and vice versa...
Do... Jostein Hove-Henriksen
02:21 PM Revision 8411851a: Remove (harmless) double / in file path: Steve Beaver
01:55 PM Revision c1f0a583: Fixed #11144 by verifying correct generation of userkey: Steve Beaver
09:07 AM Bug #11146 (Resolved): Domeneshop DDNS not updating cache IP: Background information: https://redmine.pfsense.org/issues/10826 and https://github.com/pfsense/pfsense/pull/4420
... Idar Lund
08:46 AM Bug #11143 (Resolved): VXLAN interfaces are not available as a VLAN parent: This looks good now:... Steve Wheeler
07:54 AM Bug #10960 (Resolved): Bring up VXLANs correctly at boot: This looks good now.
Can create new interfaces. Can create interfaces out of sequence: where vxlan0 and vxlan2 exi... Steve Wheeler
02:00 AM pfSense Docs Correction #11145 (Duplicate): Screenshots in "Virtualizing pfSense with Hyper-V" recipe are incorrect and outdated: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/virtualize-hyper-v.html
*Feedback:*
Regarding the sect... Anonymous

12/08/2020

05:23 PM Revision af757ecb: Allow to select VXLAN interfaces for VLAN. Fixes #11143: Viktor Gurov
03:04 PM Revision b5b74870: Do not restart Unbound on OpenVPN client connection. Implemets #11129: Viktor Gurov
02:56 PM Revision 27f89b06: Do not run rc.newwanip if received DHCP address has not changed. Fixes #11142: Viktor Gurov
02:53 PM Revision 7a2fb6e9: Hide VTI interfaces from Interface Group member list. Issue #11134: Viktor Gurov
01:00 PM pfSense Docs Correction #11127 (Resolved): Add Documentation on PPPoE Single Queue Limitations: I added a warning to the PPPoE config section in the docs, and noted the affected hardware in the tuning doc.
http... Jim Pingle
12:38 PM Bug #8611 (New): unable to receive IPv6 RA's on SG-1000, default route lost: On the 20201208.0803 snapshot I still have to put the interface in promiscuous mode or it doesn't receive an IPv6 def... Jim Pingle
01:27 AM Bug #8611 (Feedback): unable to receive IPv6 RA's on SG-1000, default route lost: Fixed. Multicast address are enabled by default now.
Please test with the next snapshot. Luiz Souza
11:40 AM Bug #11143: VXLAN interfaces are not available as a VLAN parent: Applied in changeset commit:af757ecb7c92c290d8feeb65117c75eb002c65e1. Viktor Gurov
11:35 AM Bug #11143 (Feedback): VXLAN interfaces are not available as a VLAN parent: PR has been merged. Thanks! Renato Botelho
11:25 AM Bug #11143: VXLAN interfaces are not available as a VLAN parent: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/82 Viktor Gurov
11:01 AM Bug #11143 (Resolved): VXLAN interfaces are not available as a VLAN parent: When creating a new VLAN you cannot add it to a VXLAN which is required for intended functionality of VXLANs.
Assi... Steve Wheeler
10:34 AM pfSense Docs Correction #11120 (Resolved): Feedback on Troubleshooting — Troubleshooting Disk and Filesystem Issues: Added: https://gitlab.netgate.com/docs/pfSense-book/-/commit/24a143e68f13f2289d784ee0807152ae8f3b486f Jim Pingle
09:26 AM pfSense Docs Correction #11112 (Resolved): "Preserve switch configuration" option is not documented: Added:
https://gitlab.netgate.com/docs/pfSense-book/-/commit/a5c981bd7ee03bd34a34531b3dcd96882c41d5f4 Jim Pingle
09:05 AM Bug #11129 (Feedback): Unbound restarts on every openvpn client connection: PR has been merged. Thanks! Renato Botelho
09:05 AM Bug #11142: rc.newwanip restarts VPN services when the IP matches: Applied in changeset commit:27f89b066752d433844279d3101f01cb64057c7b. Viktor Gurov
08:56 AM Bug #11142 (Feedback): rc.newwanip restarts VPN services when the IP matches: PR has been merged. Thanks! Renato Botelho
08:20 AM Bug #11142: rc.newwanip restarts VPN services when the IP matches: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/81 Viktor Gurov
08:03 AM Bug #11142 (Resolved): rc.newwanip restarts VPN services when the IP matches: If DHCP on WAN interface receives the same IP, rc.newwanip restarts all services:
https://github.com/pfsense/pfsense... Viktor Gurov
09:04 AM Bug #10806 (Resolved): armada_thermal fails during device_attach: Looks good here, too. Jim Pingle
08:53 AM Bug #11134 (Feedback): VTI interfaces can be added to groups, but rules have no effect: PR has been merged. Thanks! Renato Botelho
08:52 AM Bug #10960 (Feedback): Bring up VXLANs correctly at boot: PR has been merged. Thanks! Renato Botelho
08:38 AM Feature #11125 (Pull Request Review): Kernel module for RTL8153 driver: Renato Botelho
07:21 AM Bug #11141 (Resolved): OpenVPN Wizard does not support gateway groups: When creating an OpenVPN Tunnel using Wizard user cannot chose a gateway group to be the tunnel interface. After fin... Renato Botelho
02:24 AM Feature #11140 (Closed): Allow the firewall to use DNS servers provided to an OpenVPN client instance: current /usr/local/sbin/ovpn-linkup script doesn't use OpenVPN-pushed DNS servers,
you need to catch them in the log... Viktor Gurov
12:28 AM Bug #9437 (Resolved): Captive Portal Bandwidth Limiter application issue (Credentials Vs. MacAddr Validation): works as expected on 2.5.0.a.20201207.0250 Viktor Gurov

12/07/2020

04:25 PM Bug #10966: IPv6 - WAN does not renew address when upstream fails: Can't find if this is being tracked elsewhere now but it's still an issue.
Last night all PFSense users in the sta... Sam McLeod
04:25 PM Bug #6691: dhcp6c quits after only two tries if no response was received: Had the issue again this morning, still a problem whenever ipv6 link goes down for more than a few seconds PFsense fa... Sam McLeod
12:38 PM Feature #7767: OCSP support for OpenVPN server: I'm poking around the code for this and have a question - is it possible to have both OCSP checking and user/password... Orion Poplawski
12:30 PM pfSense Docs Correction #11139 (New): Bridges and VLANs: When you add an interface to a bridge you can no longer use VLANs on that interface. This is the expected behaviour s... Steve Wheeler
10:05 AM pfSense Packages Bug #11136: Suricata trashcan icon for interface mapping delete has no effect: 2.4.5 fix:
https://github.com/pfsense/FreeBSD-ports/pull/1001 Viktor Gurov
07:28 AM pfSense Packages Bug #11136 (Feedback): Suricata trashcan icon for interface mapping delete has no effect: PR has been merged. Thanks! Renato Botelho
01:43 AM pfSense Packages Bug #11136: Suricata trashcan icon for interface mapping delete has no effect: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/1000 Viktor Gurov
08:28 AM pfSense Packages Feature #11138 (New): new WebGUI checkboxes needed: New WebGUI checkboxes needed for these files:
/usr/local/etc/raddb/mods-config/files/authorize
/usr/local/etc/raddb... pf Driver
08:09 AM Feature #11137 (Rejected): Move logout to last in the menu: We've considered this is the past and decided against it. Jim Pingle
08:03 AM Feature #11137 (Rejected): Move logout to last in the menu: Move the logout link in System to be the last in the dropdown. Fitz G
07:31 AM Bug #10960 (Pull Request Review): Bring up VXLANs correctly at boot: Jim Pingle
12:26 AM Bug #10960: Bring up VXLANs correctly at boot: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/79 Viktor Gurov
07:28 AM Bug #11134: VTI interfaces can be added to groups, but rules have no effect: Updated subject. The underlying problem already has its own Redmine issue ( #8686 ) but this can be used for removing... Jim Pingle
03:04 AM Bug #11134: VTI interfaces can be added to groups, but rules have no effect: better hide VTI interfaces, see #8686
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/80 Viktor Gurov
04:52 AM Bug #11122 (Resolved): Bridge STP priority/cost error: works as expected on 2.5.0.a.20201206.0250 Viktor Gurov
03:17 AM Bug #11106 (Resolved): idn_to_ascii() with URL/URLTable aliases incorrect behavior: works as expected on 2.5.0.a.20201206.0250 -
now it only converts IDN for host type aliases Viktor Gurov
01:13 AM pfSense Packages Bug #7271: Co-existence of unbound and BIND/named: Max Leighton wrote:
> Testing with bind 9.16_6 the default control port is still showing as 953 and conflicting wit... Viktor Gurov
12:38 AM Revision 1e4ca804: Pass correct parameter to create a new VXLAN interface.: Steve Wheeler

12/06/2020

11:02 PM pfSense Packages Bug #10516: FRR Access list: Alhusein Zawi wrote:
> Access list is working as expected on 2.5 but it is not taking an effect until restarting FRR... Viktor Gurov
06:26 PM pfSense Packages Bug #11136 (Confirmed): Suricata trashcan icon for interface mapping delete has no effect: Attempting to delete interfaces using the trashcan icon produces system logs:... Steve Wheeler
05:42 PM pfSense Packages Bug #11136 (Resolved): Suricata trashcan icon for interface mapping delete has no effect: The GUI offers two ways to delete an interface mapping on the Interfaces tab of Suricata.
Clicking the trashcan i... Max Leighton
05:18 PM Bug #10960 (Confirmed): Bring up VXLANs correctly at boot: Steve Wheeler
05:16 PM Bug #10960 (Needs Patch): Bring up VXLANs correctly at boot: With the current patch set you cannot create new VXLAN interfaces. The following error is generated:... Steve Wheeler
02:41 AM pfSense Packages Bug #11135: HAproxy OCSP reponse crontab bug: A more proper fix would be :... Stéphane Lapie
02:31 AM pfSense Packages Bug #11135: HAproxy OCSP reponse crontab bug: Confirmed that the previous code did work with an older version :
* Old OpenSSL :... Stéphane Lapie
02:12 AM pfSense Packages Bug #11135 (Feedback): HAproxy OCSP reponse crontab bug: Context : I have been using pfSense 2.5.0 development snapshots to get TLS 1.3 support.
I have noticed that the OC... Stéphane Lapie
12:58 AM Bug #11134 (Resolved): VTI interfaces can be added to groups, but rules have no effect: I created an interface group that includes a routed IPSec VTI interface (ipsec1000). Despite the fact that the VTI in... Jocelyn Viau

12/05/2020

10:10 PM Bug #10806: armada_thermal fails during device_attach: I'm seeing temps on the dash on
SG-3100
2.5.0-DEVELOPMENT (arm)
built on Sat Dec 05 02:56:23 EST 2020
FreeBSD 12... Jordan G
02:50 PM Bug #11110: Backup file should be checked before restoring a specific area: FWIW I remember restoring a specific area from a full backup many months ago. Never knew it wasn't supposed to work! ... Marcos M
02:44 PM Bug #11126: DNS Resolver service not running after updating the pfBlockerNG-devel package: There isn't a lot that's useful in those logs unfortunately. The error on there seems to indicate an issue creating t... Marcos M
02:31 PM pfSense Packages Bug #11131: pfblockerng-devel 3.0.0_2 logs when logging is disabled: Does the rule tracking ID match the one from the logs? What happens if you disable the rule - does it still get logged? Marcos M
01:43 PM pfSense Packages Bug #7271: Co-existence of unbound and BIND/named: Testing with bind 9.16_6 the default control port is still showing as 953 and conflicting with unbound. Max Leighton

12/04/2020

10:09 PM pfSense Packages Bug #11128: pfblockerng 3.0.0_3 not using upstream proxy for curl feed downloads: Viktor Gurov wrote:
> fix:
> https://github.com/pfsense/FreeBSD-ports/pull/999
Thank you Viktor, can confirm you... Tom N
10:48 AM pfSense Packages Bug #11128: pfblockerng 3.0.0_3 not using upstream proxy for curl feed downloads: fix:
https://github.com/pfsense/FreeBSD-ports/pull/999 Viktor Gurov
09:28 PM pfSense Packages Bug #10516: FRR Access list: Access list is working as expected on 2.5 but it is not taking an effect until restarting FRR bgpd service.
passe... Alhusein Zawi
01:08 AM pfSense Packages Bug #10516: FRR Access list: maybe this is #11039 ? Viktor Gurov
05:14 PM pfSense Packages Bug #11131 (Resolved): pfblockerng-devel 3.0.0_2 logs when logging is disabled: I just installed pfblockerng 3.0.0_2 and I'm seeing lots of traffic in the log even though logging is disabled.
A ... T Toft
07:58 AM pfSense Packages Feature #11130: FRR RIP support: RIP can also be used as a workaround for #9204 Viktor Gurov
03:12 AM pfSense Packages Feature #11130 (Resolved): FRR RIP support: since the routing daemon is not available in version 2.5, it would be useful to add RIP (+ RIPng?) support to the FRR... Viktor Gurov
02:36 AM Feature #1984 (Resolved): Allow CP Voucher submission via URL so they can be distributed as QR code: works as expected on 2.5.0.a.20201203.0939
I can use link "http://192.168.0.1:8002/index.php?zone=cpzone1&redirurl=h... Viktor Gurov
01:03 AM Bug #11129: Unbound restarts on every openvpn client connection: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/77 Viktor Gurov

12/03/2020

11:34 PM Bug #11129 (Resolved): Unbound restarts on every openvpn client connection: if "Register connected OpenVPN clients in the DNS Resolver" (regovpnclients) option is enabled,
unbound restarts on ... Viktor Gurov
08:25 PM pfSense Packages Bug #11128 (Resolved): pfblockerng 3.0.0_3 not using upstream proxy for curl feed downloads: Hi there,
Not sure when this started happening but none of the feeds are downloading anymore, I have a feeling curl ... Tom N
03:04 PM pfSense Docs Correction #11127 (Resolved): Add Documentation on PPPoE Single Queue Limitations: A concern was raised that we don't have any notes that PPPoE can cause throughput bottlenecks on appliances because o... Kris Phillips
02:47 PM pfSense Packages Bug #10885 (Resolved): HAProxy DNS statistics not working: Tested on:... Danilo Zrenjanin
02:14 PM Bug #5999: IPv6 IP Alias prevents Track Interface from working with DHCPv6 and RA: I'm currently on 2.5.0.a.20201124.0050. My firewall is single LAN, single WAN, ~2 dozen VLANs, running atop a Proxmox... Allen Balaj
12:26 PM Bug #11126 (Closed): DNS Resolver service not running after updating the pfBlockerNG-devel package: I'm using 2.4.5_1 and the last several times I've updated the pfBlockerNG-devel package using web gui I've had to man... Craig Leres
11:13 AM Feature #10992 (Resolved): Cloudflare DDNS query Zone ID with token: Tested in
2.5.0-DEVELOPMENT (amd64)
built on Fri Nov 27 07:03:36 EST 2020
FreeBSD 12.2-STABLE
This is workin... Max Leighton
10:21 AM pfSense Packages Bug #10749 (New): squid + captive portal authentication not working: 'The check_cp helpers are crashing too rapidly' fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_reques... Viktor Gurov
08:16 AM Feature #11029 (Resolved): Enable command history in the shell: Viktor Gurov
08:07 AM Bug #7778 (Resolved): DHCP relay not working correctly with bridges: works as expected on 2.5.0.a.20201130.0650 -
bridges or bridge members can be upstream/downstream dhcp relay interfaces Viktor Gurov
07:15 AM Bug #11109 (Resolved): WebGUI RADIUS authentication doesn't work if WAN is down: Tested on :... Danilo Zrenjanin
06:23 AM pfSense Plus Feature #10804 (Pull Request Review): Interface Status page information for switch uplinks may be replaced by switch port data when media state monitoring is set: Renato Botelho
02:39 AM pfSense Plus Feature #10804: Interface Status page information for switch uplinks may be replaced by switch port data when media state monitoring is set: Show switch tagging ports on status_interfaces page:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/76 Viktor Gurov
05:25 AM Feature #11125: Kernel module for RTL8153 driver: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/78 Viktor Gurov
01:09 AM Bug #9634: rc.newwanipv6 is called although dhcp6c should discard Request messages: see also #6051 and #11100 Viktor Gurov
01:08 AM Bug #11123: CVE-2020-25577, CVE-2020-7469: Then sorry for the extra trouble. Because I could not find anything on redmine, I was a little panicking that it migh... Tobias Meyer
01:08 AM Bug #6051: DHCPv6 Client Failure for additional WAN Address causes 2-seconds-service-restart-loop: that could be a real issue of #9634 Viktor Gurov
01:06 AM Bug #10966: IPv6 - WAN does not renew address when upstream fails: see also #6691 Viktor Gurov

12/02/2020

09:59 PM Bug #10806: armada_thermal fails during device_attach: Daniel Gordon wrote:
> Unfortunately, I've since needed that device and reverted it to 2.4.5. I will be unable to te... Luiz Souza
09:51 PM Bug #10806: armada_thermal fails during device_attach: Unfortunately, I've since needed that device and reverted it to 2.4.5. I will be unable to test the change. I'm reall... Daniel Gordon
07:15 PM Bug #10966: IPv6 - WAN does not renew address when upstream fails: Sam McLeod wrote:
> If the upstream ISP on the WAN link has an IPv6 failure / outage, PFSense does not release and r... Stephen Baines
03:00 PM Revision 186ef856: Bridge prio/cost saving fix. Issue #11122: Viktor Gurov
02:49 PM pfSense Packages Bug #10935: FRR 0.6.7-6 - BGPD service recycled IPv6 without Route Map: https://github.com/pfsense/FreeBSD-ports/commit/df52ed6fde08e5360555146cbf5af5517d646c1b#diff-1812ded0ff9970459b22d82... Jeremy Peterson
01:46 PM Feature #11125: Kernel module for RTL8153 driver: Encouraging the use of USB Ethernet devices is probably not a great idea, though it may be possible to add the driver... Jim Pingle
12:46 PM Feature #11125 (Resolved): Kernel module for RTL8153 driver: I would be interested in the Realtek 8153 URE driver to be compiled under the PFSense kernel, since I do not have acc... Genevieve Kidwell
01:40 PM Bug #11122 (Feedback): Bridge STP priority/cost error: PR has been merged. Thanks! Renato Botelho
09:57 AM Bug #11122 (Pull Request Review): Bridge STP priority/cost error: Jim Pingle
08:32 AM Bug #11122: Bridge STP priority/cost error: config saving error:... Viktor Gurov
08:23 AM Bug #11122 (Resolved): Bridge STP priority/cost error: If at least one prio/cost interfaces is changed, you'll get an error:... Viktor Gurov
12:03 PM Bug #5413: Reduce disruptions when changing DNS records from DHCP leases in Unbound: Thanks for all the work on this. It seems like there is progress made on that git page, but the status of this bug is... Raffi T
10:26 AM Bug #11124 (Not a Bug): ipv6 traffic not routed via HE tunnel: This does not appear to be a bug, but a configuration issue or something else in your environment. Keep the discussio... Jim Pingle
10:19 AM Bug #11124 (Not a Bug): ipv6 traffic not routed via HE tunnel: I followed the official HE tunnelbroker documentation here: https://docs.netgate.com/pfsense/en/latest/recipes/ipv6-t... Markus Flaig
10:18 AM Bug #11123 (Not a Bug): CVE-2020-25577, CVE-2020-7469: We are always aware of FreeBSD SAs.
They're already addressed in the next pending release. Jim Pingle
10:15 AM Bug #11123: CVE-2020-25577, CVE-2020-7469: Sorry for the formatting:
fixed links:
* FreeBSD Security Advisory FREEBSD-SA-20:31.icmp6 vom 2020-12-01
http... Tobias Meyer
10:07 AM Bug #11123 (Not a Bug): CVE-2020-25577, CVE-2020-7469: Are you aware of CVEs CVE-2020-25577 and CVE-2020-7469?
Both seem to affect underlying FreeBSD with high criticali... Tobias Meyer
09:48 AM pfSense Docs Correction #11116 (Resolved): epub won't open on MacOS: Confirmed here as well, opens fine on Mac OS in iBooks today when it failed yesterday. Jim Pingle
09:33 AM Todo #10464: Don't change the current update repo when new releases are available: +1. While the world can't be made completely idiot proof, leading someone down a path of a one-click "upgrade availab... Steve Y
08:24 AM Revision d4cde1bd: SLAAC on parent IPv4 interface fixes. Issue #9324: Viktor Gurov
07:52 AM Bug #9441 (Rejected): Setting Crypto HW breaks IPSec CBC: It was probably fixed by the many changes on FreeBSD since it was opened. I couldn't reproduce it using SG-5100.
... Renato Botelho
06:01 AM Feature #2386 (Pull Request Review): Bridge member that is not an assigned interface: Renato Botelho
05:49 AM Feature #2386: Bridge member that is not an assigned interface: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/74 Viktor Gurov
05:42 AM Bug #9324 (Feedback): IPv6 on top of a PPPOE ipv4 interface assigns parent interface to default route, not pppoe interface: PR has been merged. Thanks! Renato Botelho
02:25 AM Bug #9324 (New): IPv6 on top of a PPPOE ipv4 interface assigns parent interface to default route, not pppoe interface: extra interface startup / newwanip fixes:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/73 Viktor Gurov
03:44 AM Bug #11035 (Resolved): PPPoE: can't remove hook: works as expected on 2.5.0.a.20201130.0650 -
now it restarts child PPP* interface when MTU changes Viktor Gurov
02:57 AM Bug #7915 (Resolved): CBQ Child queue set bandwidth does not apply correctly: works as expected on 2.5.0.a.20201130.0650 -
it is not possible to create a "borrow" queue unless the parent queue a... Viktor Gurov
01:09 AM pfSense Packages Feature #11113: New phishing feeds: https://github.com/pfsense/FreeBSD-ports/pull/998 Viktor Gurov
12:57 AM pfSense Docs Correction #11121 (Resolved): Feedback on Services — DNS Resolver: *Page:* https://docs.netgate.com/pfsense/en/latest/services/dns/resolver.html
*Feedback:*
There is no info abou... Viktor Gurov
12:47 AM pfSense Docs Correction #11120 (Resolved): Feedback on Troubleshooting — Troubleshooting Disk and Filesystem Issues: *Page:* https://docs.netgate.com/pfsense/en/latest/troubleshooting/filesystem-check.html
*Feedback:*
There is n... Viktor Gurov
12:45 AM Bug #11119 (Rejected): pfSense can't load after reboot (syncing openvpn settings enter auth password): "WARNING: If the remote server requires both a username and a password, but only one is filled in, the system will ha... Viktor Gurov
12:32 AM Bug #11119: pfSense can't load after reboot (syncing openvpn settings enter auth password): Michael Baybuz wrote:
> Hello, Viktor!
>
> Maybe, you can help me, I really need it.
> After reboot my pfSense, ... Michael Baybuz
12:24 AM Bug #11119 (Rejected): pfSense can't load after reboot (syncing openvpn settings enter auth password): Hello, Viktor!
Maybe, you can help me, I really need it.
After reboot my pfSense, it behavior very weird: ping ─ ... Michael Baybuz

12/01/2020

06:38 PM pfSense Docs Correction #11116: epub won't open on MacOS: This was fixed after updating Sphinx, the version we were running has malformed XML: https://github.com/sphinx-doc/sp... Jared Dillard
01:31 PM Feature #11118 (Resolved): Backup and restore SSH host key(s): It would be nice to backup the SSH host keys (public and private) from /etc/ssh and restore them if they are in the c... Jim Pingle
12:28 PM Bug #10806 (Feedback): armada_thermal fails during device_attach: Fixed.
Please test with the next build. Luiz Souza
08:51 AM Todo #10464: Don't change the current update repo when new releases are available: I would like to request this feature change as well. Prevent package updates when pfSense itself has an update availa... Raffi T

11/30/2020

09:04 PM Revision 8407e59f: Voucher via URL fix. Feature #1984: Viktor Gurov
03:54 PM Revision 870defd7: DHCP6 VLAN with Track VLAN interfaces boot fix. Issue #3965: Viktor Gurov
03:53 PM Revision 5bd66059: Use first interface with IP as fallback for NAS-IP-Address. Fixes #11109: Viktor Gurov
03:52 PM Revision 314f7804: Use idn_to_ascii() only for host type aliases. Fixes #11106: Viktor Gurov
03:52 PM pfSense Packages Bug #11107 (Feedback): pfBlockerNG 3.0.0_1 doesn't have some feeds fixes: PR has been merged. Thanks! Renato Botelho
08:35 AM pfSense Packages Bug #11107 (Pull Request Review): pfBlockerNG 3.0.0_1 doesn't have some feeds fixes: Jim Pingle
03:52 PM pfSense Packages Bug #11108 (Feedback): pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: PR has been merged. Thanks! Renato Botelho
08:35 AM pfSense Packages Bug #11108 (Pull Request Review): pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: Jim Pingle
03:48 PM Bug #10806 (In Progress): armada_thermal fails during device_attach: Luiz Souza
03:04 PM Feature #1984 (Feedback): Allow CP Voucher submission via URL so they can be distributed as QR code: PR has been merged. Thanks! Renato Botelho
09:18 AM Feature #1984 (Pull Request Review): Allow CP Voucher submission via URL so they can be distributed as QR code: Jim Pingle
01:06 PM Bug #11117 (Not a Bug): Net/ipv6.php: str_repeat(): Second argument has to be greater than or equal to 0 in /usr/local/share/pear/Net/IPv6.php on line 614: Jim Pingle
12:50 PM Bug #11117: Net/ipv6.php: str_repeat(): Second argument has to be greater than or equal to 0 in /usr/local/share/pear/Net/IPv6.php on line 614: Jim Pingle wrote:
> The code itself is likely fine in the base OS (unless you edited it before the error appeared) b... Andrew Appel
12:14 PM Bug #11117 (Feedback): Net/ipv6.php: str_repeat(): Second argument has to be greater than or equal to 0 in /usr/local/share/pear/Net/IPv6.php on line 614: The code itself is likely fine in the base OS (unless you edited it before the error appeared) but whatever it's bein... Jim Pingle
11:42 AM Bug #11117: Net/ipv6.php: str_repeat(): Second argument has to be greater than or equal to 0 in /usr/local/share/pear/Net/IPv6.php on line 614: Correction: included lines 614-616 (not 617), but PHP file in question is of course attached. Requested to submit her... Andrew Appel
11:41 AM Bug #11117 (Not a Bug): Net/ipv6.php: str_repeat(): Second argument has to be greater than or equal to 0 in /usr/local/share/pear/Net/IPv6.php on line 614: PHP Warning: str_repeat(): Second argument has to be greater than or equal to 0 in /usr/local/share/pear/Net/IPv6.php... Andrew Appel
10:52 AM pfSense Docs Correction #11116: epub won't open on MacOS: It also opens OK in FBReader on Android (FBReader Premium v3.0.7 on Android 11) Jim Pingle
10:41 AM pfSense Docs Correction #11116: epub won't open on MacOS: JimP tested it and said: "I get the same error from ibooks, but it opens fine in Calibre" Jared Dillard
10:33 AM pfSense Docs Correction #11116 (Resolved): epub won't open on MacOS: I cannot get the-pfsense-documentation.epub to open on iOS or macOS. Says the book is corrupt.
I am downloading fr... Jared Dillard
10:14 AM Bug #11115: Pfsense MAC Control Feature Request: Post on the forum. This is not a site for that kind of discussion. Jim Pingle
10:09 AM Bug #11115: Pfsense MAC Control Feature Request: Hi Jim,
This network is for my house and my needs are as follows:
- Add 25+ IoTs that have a total of about 35 MA... Pankaj Mathur
07:43 AM Bug #11115 (Rejected): Pfsense MAC Control Feature Request: If you need to deny that many MACs from DHCP you've got an L2 or design issue, not a GUI problem. Jim Pingle
10:00 AM Bug #11109: WebGUI RADIUS authentication doesn't work if WAN is down: Applied in changeset commit:5bd66059e975a7aad6c587bf6b9f808b2658a91d. Viktor Gurov
09:55 AM Bug #11109 (Feedback): WebGUI RADIUS authentication doesn't work if WAN is down: PR has been merged. Thanks! Renato Botelho
08:33 AM Bug #11109 (Pull Request Review): WebGUI RADIUS authentication doesn't work if WAN is down: Jim Pingle
10:00 AM Bug #11106: idn_to_ascii() with URL/URLTable aliases incorrect behavior: Applied in changeset commit:314f78040af947193d24f83ed3240dde2cad4d67. Viktor Gurov
09:54 AM Bug #11106 (Feedback): idn_to_ascii() with URL/URLTable aliases incorrect behavior: PR has been merged. Thanks! Renato Botelho
08:22 AM Bug #11106 (Pull Request Review): idn_to_ascii() with URL/URLTable aliases incorrect behavior: Jim Pingle
09:55 AM Bug #3965 (Feedback): dhcp6c started before bridge configured at boot, preventing interface tracking: PR has been merged. Thanks! Renato Botelho
09:05 AM Bug #3965 (Pull Request Review): dhcp6c started before bridge configured at boot, preventing interface tracking: Jim Pingle
09:26 AM Feature #11079: Include the updated Realtek driver pkg in the pfSense repo: This has been added to factory but doesn't need to be. There are no factory devices using re(4) any longer. Steve Wheeler
09:21 AM Bug #9270 (Resolved): "Remove all states to and from the filtered address" does not remove all states: Looks OK now. I no longer get the unexpected character in the field, and the states are killed as expected.
Thanks! Jim Pingle
09:19 AM pfSense Packages Bug #9866 (Resolved): freeradius_view_config.php: File contents are displayed without encoding: Jim Pingle
09:18 AM Bug #5135 (Pull Request Review): DHCP interfaces are always treated as having a gateway, even if one is not assigned by the upstream DHCP server: Jim Pingle
09:03 AM Feature #8698 (Resolved): LDAP authenticated users should be able to log in via ssh: Jim Pingle
08:45 AM pfSense Docs Correction #11114 (Duplicate): SG-2100 Missing from Hardware Sizing Guide: See #9228 -- This page is going away, at least in its current form. Jim Pingle
08:43 AM Bug #11110: Backup file should be checked before restoring a specific area: The behavior here may have changed recently as well. I think someone did make it so that a single area should be usab... Jim Pingle
08:38 AM Feature #10811 (Pull Request Review): Randomize time of scheduled AutoConfigBackup runs: Jim Pingle
08:23 AM Feature #11103 (Pull Request Review): Use virtual link local IP address as RA source address for HA environments: Jim Pingle
08:20 AM Bug #11105 (Pull Request Review): IPv6 RA RDNSS lifetime is too short, not compliant with RFC 8106: Jim Pingle
08:18 AM pfSense Packages Feature #11102 (Pull Request Review): Include a dictionary for mpd5 in Freeradius: Jim Pingle

11/29/2020

09:19 PM Bug #10366 (Closed): Captive Portal Allowed MAC bandwidth Issue: Anonymous
07:31 PM Bug #10366: Captive Portal Allowed MAC bandwidth Issue: also unable to reproduce.
Can be marked as resolved i guess. A FL
07:26 PM Bug #11115: Pfsense MAC Control Feature Request: I've read the gdoc..but i would propose to reject this issue
> But the challenge is that [...] there is an option ... A FL
11:58 AM Bug #11115 (Rejected): Pfsense MAC Control Feature Request: This is an actual problem that I am facing while working on home automation project.
Here is a descriptive write u... Pankaj Mathur
05:56 AM Feature #11068 (Resolved): Safari 14.0.1 on MacOS 11.0.1 (Big Sur) asked for the favicon apple-touch-icon-precompressed.png instead of apple-touch-icon.png: Anonymous

11/28/2020

10:04 PM Feature #11068: Safari 14.0.1 on MacOS 11.0.1 (Big Sur) asked for the favicon apple-touch-icon-precompressed.png instead of apple-touch-icon.png: Did not see any log errors when accessing SG-3100 on 2.5.0.a.20201127.0650 from MacOS 11.0.1 using Safari Jordan G
09:39 PM Feature #1984: Allow CP Voucher submission via URL so they can be distributed as QR code: url http://pfsenseip:8002/index.php?zone=zone_name&redirurl=redir_url&voucher=voucher_code
pfsenseip:192.168.1.11
... Alhusein Zawi
09:57 AM Feature #1984: Allow CP Voucher submission via URL so they can be distributed as QR code: small fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/72 Viktor Gurov
06:28 PM pfSense Docs Correction #11114 (Duplicate): SG-2100 Missing from Hardware Sizing Guide: The SG-2100 is missing from our list here:
https://docs.netgate.com/pfsense/en/latest/hardware/size.html Kris Phillips
03:40 PM pfSense Packages Bug #9866: freeradius_view_config.php: File contents are displayed without encoding: Tested in freeradius3 version 0.15.7_20. I see special characters are being converted as expected. This issue can be ... Max Leighton
01:11 PM Bug #7547: Static routes using aliases are not automatically updated when alias content changes: I can confirm this issue is present in 2.4.5p1. The alias needs to be edited and resaved for the changes to take eff... Kris Phillips
01:06 PM pfSense Packages Bug #8306 (Rejected): HAproxy in pfsense 2.42-p1 ha pair generates XMLRPC errors: Closing this ticket as rejected, since sync should not be enabled on the secondary unit for any HA configuration. Kris Phillips
01:04 PM Bug #8207: 2.4 cannot boot as a Xen VM with more than 7 NICs: Elias Seccom wrote:
> Same problem here with the newest Version (2.4.4-RELEASE-p3) of PFSense.
> Any ideas or solut... Kris Phillips
10:33 AM Bug #10960 (Resolved): Bring up VXLANs correctly at boot: works as expected on 2.5.0.a.20201127.1850:... Viktor Gurov
10:18 AM Feature #8794 (New): NTP authentication support: after configuring ntpd authentication on Debian peer I can see packets with MAC:... Viktor Gurov
07:24 AM Bug #11100 (Resolved): dhcp6c never run rc.newwanipv6: works as expected on 2.5.0.a.20201127.1850 -
now it runs rc.newwanipv6 on receiving DHCPv6 REPLAY and I can see name... Viktor Gurov
07:20 AM Bug #5135: DHCP interfaces are always treated as having a gateway, even if one is not assigned by the upstream DHCP server: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/71 Viktor Gurov
05:01 AM Bug #10366: Captive Portal Allowed MAC bandwidth Issue: unable to reproduce on 2.5.0.a.20201127.1850
related to #9311 ? Viktor Gurov
02:57 AM Bug #3965: dhcp6c started before bridge configured at boot, preventing interface tracking: Kewin Christensen wrote:
> Updated to 2.5.0.a.20201127.0050 - still no dice :(
> Dunno if it makes a difference, bu... Viktor Gurov

11/27/2020

05:56 PM Revision ef094bef: Ticket #9270: Make sure parameters are UTF-8: As described on ticket, for some reason we still don't know, when
pfSense_kill_states() is called with subnet as para... Renato Botelho
03:51 PM Bug #11105: IPv6 RA RDNSS lifetime is too short, not compliant with RFC 8106: Just including my post from the thread for a bit of attional info.
The radvd.conf is getting generated without Adv... Brandon Jackson
03:48 PM Bug #9270 (Feedback): "Remove all states to and from the filtered address" does not remove all states: Can you please give next round of snapshots a try and see if the workaround I committed help? Renato Botelho
01:25 PM Bug #11109: WebGUI RADIUS authentication doesn't work if WAN is down: I am able to reproduce this in
2.5.0-DEVELOPMENT (amd64)
built on Fri Nov 27 07:03:36 EST 2020
FreeBSD 12.2-STAB... Max Leighton
12:29 AM Bug #11109: WebGUI RADIUS authentication doesn't work if WAN is down: Fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/68 Viktor Gurov
12:09 AM Bug #11109 (Resolved): WebGUI RADIUS authentication doesn't work if WAN is down: The GUI login screen works as intended, then if you use a local (not RADIUS) credential with no WAN IP configured it ... Viktor Gurov
11:31 AM Feature #8786: Wireguard VPN: Please don't lock this issue, it is very important feature to have for many people. Ter Ted
11:19 AM Feature #8698: LDAP authenticated users should be able to log in via ssh: Tested in
2.5.0-DEVELOPMENT (amd64)
built on Fri Nov 27 07:03:36 EST 2020
FreeBSD 12.2-STABLE
Appears to be w... Max Leighton
09:17 AM pfSense Packages Feature #11113 (Resolved): New phishing feeds: https://phishing.army/
feed https://phishing.army/download/phishing_army_blocklist.txt
https://oisd.nl/
feed htt... Viktor Gurov
08:41 AM Bug #11110: Backup file should be checked before restoring a specific area: Opened https://redmine.pfsense.org/issues/11112 for tracking the documentation changes. Danilo Zrenjanin
08:26 AM Bug #11110: Backup file should be checked before restoring a specific area: "keep switch configuration" checkbox is not detailed in docs
Viktor Gurov
06:34 AM Bug #11110: Backup file should be checked before restoring a specific area: Also, it would be helpful to note "This value must match the Backup area chosen when creating the backup." next to th... Danilo Zrenjanin
06:08 AM Bug #11110 (New): Backup file should be checked before restoring a specific area: There is no check which would prevent restoring a specific area from the full backup.
I have successfully restore... Danilo Zrenjanin
08:39 AM pfSense Docs Correction #11112 (Resolved): "Preserve switch configuration" option is not documented: The checkbox *Preserve switch configuration* under Diagnostics > Backup & Restore is not explained here:
https://doc... Danilo Zrenjanin
07:44 AM Bug #3965: dhcp6c started before bridge configured at boot, preventing interface tracking: Kewin Christensen wrote:
> Updated to 2.5.0.a.20201127.0050 - still no dice :(
as bridge track interface issue is... Viktor Gurov
05:30 AM Bug #3965: dhcp6c started before bridge configured at boot, preventing interface tracking: Updated to 2.5.0.a.20201127.0050 - still no dice :(
*After update:*
Nov 27 11:59:15 router dhcp6c[28729]: failed ... Kewin Christensen
04:15 AM Bug #3965: dhcp6c started before bridge configured at boot, preventing interface tracking: Kewin Christensen wrote:
> I'm afraid the issue wasn't fixed.
try to update to the latest snapshot,
works as ex... Viktor Gurov
02:30 AM Bug #3965: dhcp6c started before bridge configured at boot, preventing interface tracking: I'm afraid the issue wasn't fixed.
Tested on 2.5.0.a.20201126.1250 (Hardware: APU2):
*Reboot:*
Nov 26 22:13:5... Kewin Christensen
07:33 AM pfSense Packages Bug #11111 (Duplicate): Squidguard_configurator bug: duplicate of https://redmine.pfsense.org/issues/9364#note-4 Viktor Gurov
07:11 AM pfSense Packages Bug #11111 (Duplicate): Squidguard_configurator bug: On line 1293 of file squidguard_configurator.inc.
The result is force to : $rdr_path = "$guiproto://$guiip:$guipor... Gael Richier
06:02 AM Feature #10811: Randomize time of scheduled AutoConfigBackup runs: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/69 Viktor Gurov
03:30 AM Bug #11078 (Resolved): IPsec PH2 incorrect proposals order: Tested on :... Danilo Zrenjanin
02:38 AM pfSense Packages Bug #11107: pfBlockerNG 3.0.0_1 doesn't have some feeds fixes: https://github.com/pfsense/FreeBSD-ports/pull/996 Viktor Gurov
01:59 AM pfSense Packages Bug #11108: pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/995 Viktor Gurov

11/26/2020

11:42 PM pfSense Packages Bug #11108 (Resolved): pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: after install pfblockerng 3.0.0_1 on pfsense 2.5.0-dev
i got the following crash report
Crash report begins. Ano... khaled osama
02:54 PM Bug #9270: "Remove all states to and from the filtered address" does not remove all states: Just complementing the experiments I did today:
adding utf8_encode() to pfSense_kill_states() parameter fix the is... Renato Botelho
11:32 AM Bug #9270 (In Progress): "Remove all states to and from the filtered address" does not remove all states: Renato Botelho
11:32 AM Bug #9270: "Remove all states to and from the filtered address" does not remove all states: Jim Pingle wrote:
> There does seem to be an issue here, looks like it's in the pfSense module function @pfSense_kil... Renato Botelho
02:49 PM Bug #3808 (Resolved): Disabled OpenVPN tunnel cause network port disappear after reboot: Tested on 2.4.5p1
This has been resolved. The ovpnsX network port stays assigned to the proper interface after a reb... Marcos M
02:21 PM Feature #3356 (Resolved): Document functionality of unclear DynDNS providers: This has been resolved - current docs reflect the steps needed for he.net. Marcos M
08:47 AM pfSense Packages Bug #11107 (Resolved): pfBlockerNG 3.0.0_1 doesn't have some feeds fixes: some fixes from the previous PRs is not merged to 3.0.0_1:
#10933 - Lashback LB_BL - host not found
#10930 - correc... Viktor Gurov
08:02 AM Revision 8d4adafb: Add AdvRASrcAddress to radvd.conf if linklocal vip is selected, refs: #11103: znerol
07:59 AM Bug #5999: IPv6 IP Alias prevents Track Interface from working with DHCPv6 and RA: Allen Balaj wrote:
> Thanks Viktor, I'll keep an eye on those feature requests. That said, I may have spoken too soo... Viktor Gurov
04:12 AM pfSense Packages Bug #8827: Squidguard: ACL redirect modes 'redirect' and 'err page' send unresolvable URLs to the client.: You have to append... Viktor Gurov
04:09 AM pfSense Packages Bug #9364: squidguard int error page does not use https: regression fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/12 Viktor Gurov
02:25 AM Feature #11103: Use virtual link local IP address as RA source address for HA environments: Filed PR: https://github.com/pfsense/pfsense/pull/4487
Instructions for testing this feature:
* Setup HA cluste... znerol znerol
02:01 AM Bug #11106: idn_to_ascii() with URL/URLTable aliases incorrect behavior: similar issue #10434
Fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/67 Viktor Gurov
01:56 AM Bug #11106 (Resolved): idn_to_ascii() with URL/URLTable aliases incorrect behavior: idn_to_ascii() incorrectly converts some URLs,
for example it returns empty for "https://endpoints.office.com/endpoi... Viktor Gurov
12:43 AM Bug #11105: IPv6 RA RDNSS lifetime is too short, not compliant with RFC 8106: https://tools.ietf.org/html/rfc8106#section-5.1:... Viktor Gurov
12:11 AM Bug #11105 (Resolved): IPv6 RA RDNSS lifetime is too short, not compliant with RFC 8106: https://forum.netgate.com/topic/158615/pfsense-ipv6-ra-rdnss-lifetime-is-too-short-not-compliant-with-rfc8106:
Is th... Viktor Gurov
12:05 AM pfSense Packages Feature #11102: Include a dictionary for mpd5 in Freeradius: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/11 Viktor Gurov

11/22/2020

02:42 AM Bug #4287: Wrong display for ppp in Interfaces page: Hi Jim
i know it's a very old report, but i have the same bug.
The Connection is online an working but the stat... Marco Mueller

11/21/2020

05:19 PM pfSense Packages Feature #10141 (Resolved): pfBlockerNG - MaxMind License Registration: License registration is required and the appropriate links and information for this are included in the user interfac... Jordan G
04:55 PM pfSense Packages Bug #9846 (Resolved): pfBlockerNG log file download/clear lacks validation: pfBlockerNG-devel 2.2.5_37 on pfSense 2.4.5p1 only allows elements to be selected in the drop down and I did not appe... Jordan G
02:54 PM Feature #7943: Overflow scrolling for top navigation drop-down menus in Fixed mode: Scrolling the entire page down slightly will allow access to these menu items in constrained situations. However, th... Kris Phillips
02:51 PM Bug #7996: Unnecessary link tag in login page: Can confirm that its there in 2.4.5p1. In theory it doesn't do anything, since there is no href or anything. May be... Kris Phillips
10:46 AM Bug #10960: Bring up VXLANs correctly at boot: VXLAN restart on newwanip event fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/62 Viktor Gurov
10:45 AM Bug #11093 (New): ral(4) driver non-functional in arm64: Devices using the ral(4) driver do not function in arm64 images.
The driver attaches correctly and the interface u... Steve Wheeler
10:39 AM Feature #10931: system.php: Add option to omit DNS Servers from resolv.conf: Dynamic IPv6 DNS servers fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/61 Viktor Gurov
06:43 AM Bug #11061 (Resolved): CARP rules show up as "part" of the snort package in rules.debug: Tested on:... Danilo Zrenjanin
05:34 AM Bug #11064 (Resolved): WARNING: write_config() was called without description: tested on:... Danilo Zrenjanin
04:53 AM pfSense Packages Feature #11092 (New): Detecting DNS tunneling: Using pfBlockerNG python integration it's possible to create DNS tunneling detector using regexp,
see https://www.gi... Viktor Gurov
02:30 AM pfSense Packages Bug #9364: squidguard int error page does not use https: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/9 Viktor Gurov
01:07 AM Bug #11034 (Resolved): poesX interfaces is not created: Viktor Gurov
01:07 AM Feature #6908: Alias copy, sort, search/replace functions: jake xanaro wrote:
> I am soooooo very excited to get this feature! Way to go, I am looking forward to 2.5 that much... Viktor Gurov
01:04 AM Bug #11090: OpenVPN assigned interfaces inconstant status: maybe related to #11091 Viktor Gurov
01:03 AM Bug #11091: Interfaces set as disabled in the configuration have an UP status in the operating system at boot: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/60 Viktor Gurov
12:05 AM Bug #11091 (Rejected): Interfaces set as disabled in the configuration have an UP status in the operating system at boot: If you disable interface on interfaces.php page it's disabled
there is no UP in ifconfig output and `get_interface_... Viktor Gurov

11/20/2020

08:51 PM Feature #11068: Safari 14.0.1 on MacOS 11.0.1 (Big Sur) asked for the favicon apple-touch-icon-precompressed.png instead of apple-touch-icon.png: I see this also, but I see other apple icons also missing:
Nov 19 15:25:04 XX.YY.XX.ZZ nginx 2020/11/19 15:25:04 [... Rick Coats
06:50 PM Bug #11034: poesX interfaces is not created: PPPoE Server creates interfaces "poesX"
poes1-1: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> metr... Alhusein Zawi
06:14 PM Feature #6908: Alias copy, sort, search/replace functions: I am soooooo very excited to get this feature! Way to go, I am looking forward to 2.5 that much more now!
if its g... jake xanaro
06:12 PM Feature #6908: Alias copy, sort, search/replace functions: Hollander Hollander wrote:
> For example: copy one alias (the content of course) into another alias (like in FW rule... jake xanaro
06:14 PM Bug #1353 (Resolved): Number of queues possible: Tested in:
2.5.0-DEVELOPMENT (amd64)
built on Fri Nov 20 13:05:16 EST 2020
FreeBSD 12.2-STABLE
Working as e... Max Leighton
02:43 PM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name: To be fair, it does at least hint to the fact on the setting description where it says:
"The domain in System > Gene... Marcos M
01:46 PM Bug #8355: Upgrades and packages unavailable after upgrade from 2.3.3_1 to 2.3.4_1: Same here, no 3rd party plugins, just openvpn client builder.
After upgrade to 2.3.4-RELEASE-p1 (amd64) from 2.3.3 ... David Tr
11:26 AM Bug #11090 (Needs Patch): OpenVPN assigned interfaces inconstant status: If this is causing no functional problems I see no reason for us to take any action on it. Certainly not a 2.5.0 bloc... Jim Pingle
11:24 AM Bug #11090 (Needs Patch): OpenVPN assigned interfaces inconstant status: If there are multiple OpenVPN instances in HA setup, and ovpnsX interfaces are assigned to each instance, their statu... Danilo Zrenjanin
10:55 AM pfSense Docs New Content #11071: Add documentation for missing configuration items on IPv6 Router Advertisements: Suggestion would be:
Minimum & Maximum RA interval
The router sends router advertisements on each interface confi... Marcos M
10:40 AM pfSense Packages Bug #11089 (Pull Request Review): BIND service is started when disabled: Jim Pingle
09:55 AM pfSense Packages Bug #11089: BIND service is started when disabled: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/8 Viktor Gurov
09:53 AM pfSense Packages Bug #11089 (Resolved): BIND service is started when disabled: https://forum.netgate.com/topic/103370/named-bind-service-is-started-when-disabled:
If I configure the bind DNS serv... Viktor Gurov
10:38 AM Bug #11087 (Pull Request Review): Unbound fails to start if it binds to down/nocarrier interface: Jim Pingle
06:48 AM Bug #11087: Unbound fails to start if it binds to down/nocarrier interface: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/59 Viktor Gurov
06:34 AM Bug #11087 (Resolved): Unbound fails to start if it binds to down/nocarrier interface: How to reproduce:
1) Select OPT1 for example, in "Network Interfaces" list;
2) Disable OPT1 interface;
3) Reboot f... Viktor Gurov
09:16 AM pfSense Packages Feature #11088: populate ifAlias snmp attribute: great ! can surely wait until 2.5.0 ! Julien ROLAND
08:56 AM pfSense Packages Feature #11088: populate ifAlias snmp attribute: Actually I take that back, we added the GUI interface descriptions to the OS interfaces in #1557 which lets them show... Jim Pingle
08:49 AM pfSense Packages Feature #11088 (Needs Patch): populate ifAlias snmp attribute: Wouldn't be possible with the built-in SNMP (bsnmpd). Doubtful it can be done with NET-SNMP directly either, but perh... Jim Pingle
08:46 AM pfSense Packages Feature #11088 (Needs Patch): populate ifAlias snmp attribute: When responding to snmp queries, populate IF-MIB::ifAlias.n snmp attribute with gui configurated interface descriptio... Julien ROLAND
07:51 AM pfSense Docs Correction #11086 (Rejected): Feedback on pfSense Configuration Recipes — Configuring DNS over TLS: You must have some other problem in your setup. I have a test system setup with the exact config from the document an... Jim Pingle
01:45 AM Bug #11077 (Resolved): Kernel panic when deleting VLAN interfaces: resolved on 2.5.0.a.20201119.1850
I can remove vlan interfaces from WebGUI or command line without any issues Viktor Gurov

11/19/2020

11:29 PM Bug #11077: Kernel panic when deleting VLAN interfaces: Update to the latest kernal fixed the issue on my sytem that was crashing when attempting to delete a vlan yesterday. andreas vesalius
12:55 PM Bug #11077 (Feedback): Kernel panic when deleting VLAN interfaces: A fix was committed to address this issue, please test with the next snapshot. Luiz Souza
09:51 AM Bug #11077 (New): Kernel panic when deleting VLAN interfaces: Anonymous
12:55 AM Bug #11077: Kernel panic when deleting VLAN interfaces: I can reproduce this issue from the command line:... Viktor Gurov
05:50 PM Feature #11079 (Resolved): Include the updated Realtek driver pkg in the pfSense repo: Looks good:... Steve Wheeler
05:42 PM Feature #11079: Include the updated Realtek driver pkg in the pfSense repo: pks is added .
[2.5.0-DEVELOPMENT][admin@pfSense.home.arpa]/root: pkg search realtek
realtek-re-kmod-v196.04_2 ... Alhusein Zawi
10:03 AM Feature #11079 (Feedback): Include the updated Realtek driver pkg in the pfSense repo: Sorry, overlapped. Back to feedback.... Steve Wheeler
10:02 AM Feature #11079 (New): Include the updated Realtek driver pkg in the pfSense repo: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/57 Steve Wheeler
10:01 AM Feature #11079 (Feedback): Include the updated Realtek driver pkg in the pfSense repo: PR has been merged. Thanks! Renato Botelho
05:04 PM pfSense Docs Correction #11086 (Rejected): Feedback on pfSense Configuration Recipes — Configuring DNS over TLS: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/dns-over-tls.html
*Feedback:*
The recipe says
"The h... Tim Richardson
03:57 PM Revision fd3f6f9f: Build updated Realtel driver for testing.: Exclude from ARM, it's x86 only. Steve Wheeler
03:38 PM Revision 230b6fe5: Remove net/pimd, it's already built as a dependency: Renato Botelho
03:32 PM pfSense Docs New Content #11010 (Resolved): Feedback on Hardware — Hardware Tuning and Troubleshooting: Added: https://docs.netgate.com/pfsense/en/latest/hardware/tune.html#vmware-vmx-4-interfaces Jim Pingle
02:25 PM Feature #4881 (Pull Request Review): Allow NPt to use dynamic IPv6 networks: Renato Botelho
01:59 PM pfSense Docs Correction #11085: Feedback on System Monitoring — CARP Status: That was just my best guess, but I didn't know the difference between disabling vs maintenance mode, or temporary (un... David Burgess
01:47 PM pfSense Docs Correction #11085: Feedback on System Monitoring — CARP Status: While it could use some more information, your description is not accurate. It still participates in CARP but it is d... Jim Pingle
01:35 PM pfSense Docs Correction #11085 (Closed): Feedback on System Monitoring — CARP Status: *Page:* https://docs.netgate.com/pfsense/en/latest/monitoring/status/carp.html
*Feedback:*
The section "Mainten... David Burgess
01:26 PM Feature #11084 (New): Dynamic DNS include option to specify virtual IP addresses: When using dynamic DNS in failover situations need to be able to include virtual IP addresses vs Interface address on... Shane Poteet
08:06 AM Bug #11082 (Pull Request Review): XMLRPC synchronization restarts all OpenVPN instances on the secondary node when making any change on the primary node: Probably too late to work this in to 2.5.0 given the potential impact. Jim Pingle
04:57 AM Bug #11082: XMLRPC synchronization restarts all OpenVPN instances on the secondary node when making any change on the primary node: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/55 Viktor Gurov
03:51 AM Bug #11082 (Closed): XMLRPC synchronization restarts all OpenVPN instances on the secondary node when making any change on the primary node: Maybe there is no need for restarting OpenVPN instances on the secondary if there weren't any changes related to VIP ... Danilo Zrenjanin
08:01 AM Feature #11083 (Rejected): DHCPv6 server configuration sync: I don't think we should encourage this. It will lead to conflicting servers. ISC-DHCP doesn't support IPv6 failover, ... Jim Pingle
06:27 AM Feature #11083: DHCPv6 server configuration sync: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/56 Viktor Gurov
06:24 AM Feature #11083 (Rejected): DHCPv6 server configuration sync: Allow DHCPv6 server configuration to sync
and disable it on the secondary because isc-dhcp doesn't support failover ... Viktor Gurov
02:36 AM Feature #11081 (Closed): Wifi Open authentication support: It's no possible to connect to Open wifi networks, only WPA/WPA2 auth,
or create Open AP (for using with captive por... Viktor Gurov
02:07 AM Feature #3229 (Resolved): make DynDNS status accessible to the colorblind: It looks excellent now. Thank you. Ticket resolved. Danilo Zrenjanin

11/18/2020

11:05 PM Bug #10407 (Resolved): L2TP static route not re-added after connection down/up: Alhusein Zawi
10:47 PM Bug #10407: L2TP static route not re-added after connection down/up: route is not deleted if reconnecting.
Static route will be deleted if L2TP interface is down.
Static route wil... Alhusein Zawi
07:44 PM Revision a88079e0: Update/sync DynDNS/RFC2136 status note. Fixes #3229: Jim Pingle
05:40 PM pfSense Packages Feature #11080 (Needs Patch): Original SpeedTest Ookla for FeeBSD: It's not in FreeBSD ports, it would need to be added there first. Jim Pingle
05:17 PM pfSense Packages Feature #11080 (Needs Patch): Original SpeedTest Ookla for FeeBSD: is possible add this packet?
pkg update && pkg install -g libidn2 ca_root_nss
pkg add "https://bintray.com/ookla/... Niccolò Marchi
01:46 PM Feature #3229: make DynDNS status accessible to the colorblind: I updated the note, and also copied it over to the RFC 2136 page since it applies there as well. Jim Pingle
05:31 AM Feature #3229: make DynDNS status accessible to the colorblind: Tested the patch on 2.4.5-p1.
The status column appears and works correctly.
However, I believe the comment nee... Danilo Zrenjanin
01:42 PM Feature #11079 (Resolved): Include the updated Realtek driver pkg in the pfSense repo: There is now a FreeBSD package for the 'official' Realtek driver, currently v1.96.04.
https://www.freshports.org/n... Steve Wheeler
01:23 PM pfSense Docs Correction #8854: [feedback form] Define Broadcast Domain and switch loops: Comments are addressed, should be OK now. Jim Pingle
12:52 PM Revision 4faf9170: Hide poesX-Y from interface list. Issue #11034: Viktor Gurov
12:19 PM Feature #8786: Wireguard VPN: Aaron Shaffer wrote:
> PLEASE add WireGuard support! Thank you.
Stefan Meili wrote:
> For what it's worth please... Jonathon Reinhart
11:36 AM Feature #8786: Wireguard VPN: For what it's worth please consider this my up-vote for this feature. Stefan Meili
11:32 AM pfSense Packages Todo #11033 (Feedback): Update OpenVPN Client Export with OpenVPN 2.5.0 installer: Found a couple more edge cases that needed addressing:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/commit/9... Jim Pingle
11:31 AM Feature #4881: Allow NPt to use dynamic IPv6 networks: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/54 Viktor Gurov
09:58 AM Bug #11078 (Pull Request Review): IPsec PH2 incorrect proposals order: Jim Pingle
08:56 AM Bug #11078: IPsec PH2 incorrect proposals order: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/53 Viktor Gurov
05:49 AM Bug #11078 (Resolved): IPsec PH2 incorrect proposals order: If you choose both AES and AES-GCM ciphers, it sets the AES-CBC cipher to the first place of esp_proposals:... Viktor Gurov
08:51 AM Bug #11077: Kernel panic when deleting VLAN interfaces: I can easily reproduce the issue on :... Danilo Zrenjanin
02:04 AM Bug #11077 (Confirmed): Kernel panic when deleting VLAN interfaces: I see the same on the latest snapshot, also on interface IP/MTU change (interface_configure() issue?)
tried to rever... Viktor Gurov
12:25 AM Bug #11077: Kernel panic when deleting VLAN interfaces: Also happening on my system with 2.5.0-DEVELOPMENT (amd64) built on Tue Nov 17 19:01:05 EST 2020. Deleting a vlan or ... andreas vesalius
08:37 AM Bug #11072 (Resolved): Setting "Inverse" to "Off" does not save in the Traffic Graphs Dashboard widget: Tested in
2.5.0-DEVELOPMENT (amd64)
built on Wed Nov 18 01:03:07 EST 2020
FreeBSD 12.2-STABLE
Seems to be wor... Max Leighton
06:52 AM Bug #11072 (Feedback): Setting "Inverse" to "Off" does not save in the Traffic Graphs Dashboard widget: Renato Botelho
06:52 AM Bug #11072: Setting "Inverse" to "Off" does not save in the Traffic Graphs Dashboard widget: PR has been merged. Thanks! Renato Botelho
12:20 AM Bug #11072: Setting "Inverse" to "Off" does not save in the Traffic Graphs Dashboard widget: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/51 Viktor Gurov
07:38 AM pfSense Packages Bug #7267: Status Traffic Totals - Stacked Bar - Scale not high enough: This functionality is provided by a library that would need to be updated, but which appears to be no longer maintained. Anonymous
06:52 AM Bug #11034: poesX interfaces is not created: PR has been merged. Thanks! Renato Botelho
02:25 AM Bug #11034: poesX interfaces is not created: also hide 'poesX-Y' from interface list:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/52 Viktor Gurov
06:06 AM pfSense Packages Bug #11069 (Resolved): Reset Traffic Totals Not Working: Danilo Zrenjanin
06:05 AM pfSense Packages Bug #11069: Reset Traffic Totals Not Working: Tested on:... Danilo Zrenjanin
06:04 AM Revision aa71463f: Traffic Graphs widget options fix. Issue #11072: Viktor Gurov

11/17/2020

11:27 PM pfSense Packages Bug #8068 (Resolved): Status Traffic Totals package installation is not recorded in config.xml: it was fixed in #7153
I can see Status_Traffic_Totals under '<installedpackages>':... Viktor Gurov
11:05 PM Bug #10713 (Duplicate): assigning a virtual IPv6 IP to an interface that has IPv6 PD track interface enabled makes the Virtual IP the primary IP after reboot: Viktor Gurov wrote:
> https://forum.netgate.com/topic/154856/multiple-ipv6-bugs-quirks-in-pfsense:
> Situation: you... Viktor Gurov
11:02 PM Bug #5999: IPv6 IP Alias prevents Track Interface from working with DHCPv6 and RA: Allen Balaj wrote:
> I can confirm that this seems to resolve the original problem that I was experiencing. Really a... Viktor Gurov
07:24 PM Bug #3965: dhcp6c started before bridge configured at boot, preventing interface tracking: It seems this is the same issue as https://github.com/opnsense/core/issues/3199
and patch https://github.com/Konte... Manu Bretelle
06:12 PM Bug #11021 (Resolved): ral(4) driver kernel panics in arm64: The kernel panic here is resolved.
We can open a new bug report if this affects more than just my card. Steve Wheeler
04:29 PM Bug #11077 (Resolved): Kernel panic when deleting VLAN interfaces: ... Niccolò Marchi
04:13 PM Revision 5341fe71: Ticket #6028: Fix path to rules.debug.old: Renato Botelho
04:08 PM Revision 70f5cde9: Ticket #6028: Persist last valid set of rules: Save the last version of a valid set of rules under /cf/conf to make it
to persist on reboot. This allow it to be lo... Renato Botelho
03:42 PM pfSense Packages Todo #11033: Update OpenVPN Client Export with OpenVPN 2.5.0 installer: Found some cipher list issues, all fixed now: https://github.com/pfsense/FreeBSD-ports/commit/eafeafea69ff0aae39757f4... Jim Pingle
03:21 PM pfSense Docs Correction #8854: [feedback form] Define Broadcast Domain and switch loops: I left a couple comments on the commit in GitLab. Jared Dillard
02:58 PM pfSense Docs Correction #8854 (Resolved): [feedback form] Define Broadcast Domain and switch loops: I rewrote the page and added links to pages with more information (rather than repeating it all there).
https://gi... Jim Pingle
03:14 PM Revision d16ea02a: Add note about not using bogons on LANs. Issue #10866: Jim Pingle
02:14 PM Bug #11076: delete vlan crash system: Crash report begins. Anonymous machine information:
amd64
12.2-STABLE
FreeBSD 12.2-STABLE f47399e21af(devel-12)... Niccolò Marchi
02:10 PM Bug #11076 (Rejected): delete vlan crash system: This site is not for support or diagnostic discussion. You have not provided nearly enough information to constitute ... Jim Pingle
02:08 PM Bug #11076 (Rejected): delete vlan crash system: delete vlan crash system Niccolò Marchi
12:40 PM pfSense Docs Correction #11075 (Resolved): Feedback on Packages — ACME package — Obtaining a Certificate: Fixed in the repo, will show up on the site shortly.
Thanks! Jim Pingle
11:01 AM pfSense Docs Correction #11075 (Resolved): Feedback on Packages — ACME package — Obtaining a Certificate: *Page:* https://docs.netgate.com/pfsense/en/latest/packages/acme/certificate.html
*Feedback:*
This line is inco... Robert Hirabayashi
10:28 AM pfSense Docs Todo #10866 (Resolved): "block bogon networks" silently blocks IPv6 client solicitations to DHCPv6 Server RA "managed" or "assisted": https://gitlab.netgate.com/docs/pfSense-book/-/commit/06a28558a249d163f99617ab2f0bae7b0e815e28
* Added warning aga... Jim Pingle
10:10 AM Bug #6028 (Feedback): no firewall rules loaded after reboot with invalid ruleset: Renato Botelho
08:43 AM pfSense Packages Feature #9563 (Resolved): Syslog-ng TLS support: Tested on 2.5.0-DEVELOPMENT (amd64)
built on Tue Nov 17 01:02:10 EST 2020
FreeBSD 12.2-STABLE
I've run Syslog-ng... Azamat Khakimyanov
07:24 AM Bug #5476: Does not appear possible to use policy routing for traffic originating from the firewall (self): Will this be fixed someday ? is it planned to be fixed ? Michael F
05:02 AM Bug #11053 (Resolved): PHP error on services_dhcp_relay.php: Renato Botelho
04:41 AM Bug #6880: Multiple DHCP6 WAN connections leads to multiple dhcp6c clients: We too see this issue. Two upstream DHCP6 lines. The confusing thing is, this works *somehow*, but with intermittent ... Tobias Meyer

11/16/2020

08:27 PM Bug #6880: Multiple DHCP6 WAN connections leads to multiple dhcp6c clients: Just ran into this and #4881 now that our backup ISP also has native v6. Looks like I'll have to work around it by ha... Caleb Carges
08:17 PM Feature #4881: Allow NPt to use dynamic IPv6 networks: Well it took until late 2020 but I finally have two local ISPs providing native /56 IPv6 routes over DHCPv6. It would... Caleb Carges
07:30 PM Revision f32d36c1: Add symlink to accommodate apple-touch-icon-precompressed.png: Steve Beaver
04:18 PM Bug #11053: PHP error on services_dhcp_relay.php: It's ok now thanks Niccolò Marchi
03:52 PM pfSense Docs Correction #11065 (Resolved): Outdated logo in diagrams: Last one: https://gitlab.netgate.com/docs/pfSense-book/-/commit/5f53ea7bc400bd5ad210bdaab5bea66710dde248 Jim Pingle
03:45 PM pfSense Docs Correction #11065: Outdated logo in diagrams: Replaced one of the others:
https://gitlab.netgate.com/docs/pfSense-book/-/commit/bf917211723d0f04167244cf0cf0fd38... Jim Pingle
01:58 PM pfSense Docs Correction #11065 (In Progress): Outdated logo in diagrams: Replaced the diagram in OpenVPN:
https://gitlab.netgate.com/docs/pfSense-book/-/commit/a9106b92fe579a9d8fea8a62414... Jim Pingle
01:51 PM Bug #1819: DNS Resolver Not Registering DHCP Server Specified Domain Name: Wouldn't it be a good idea to just add a note somewhere near the option itself, that it doesn't work and probably wil... xander bron
01:08 PM Bug #1819 (New): DNS Resolver Not Registering DHCP Server Specified Domain Name: Anonymous
01:31 PM Feature #11068 (Feedback): Safari 14.0.1 on MacOS 11.0.1 (Big Sur) asked for the favicon apple-touch-icon-precompressed.png instead of apple-touch-icon.png: Added symlink apple-touch-icon-precompressed.png -> apple-touch-icon.png Anonymous
01:13 PM Bug #9136 (New): IPv6 Tracking Interfaces Lose IPv6 Address in Certain Cases: Anonymous
12:11 PM Revision 50b84727: Create poesX interfaces for PPPoE server. Issue #11034: Viktor Gurov
12:10 PM Revision 9447acda: DynDNS status icons. Implements #3229: Viktor Gurov
12:09 PM Revision 3501e0c4: No-IP DynDNS provider API update. Implements #6638: Viktor Gurov
11:48 AM pfSense Packages Bug #11069 (Feedback): Reset Traffic Totals Not Working: Thanks! This looks good and was merged. Should be able to test the change in the next build. Jared Dillard
07:21 AM pfSense Packages Bug #11069 (Pull Request Review): Reset Traffic Totals Not Working: Jim Pingle
10:33 AM pfSense Packages Bug #11074 (Confirmed): bind Zone Settings Zones, Save button opens "Confirmation required to save changes": possible bug (or annoyance :) ) in bind package?
When I try to hit the Save button in the Package Bind: Zone Setti... Christian Fertig
07:53 AM pfSense Packages Feature #10242: E2guardian Web filtering package: Viktor is the person who was working on this package Renato Botelho
07:38 AM pfSense Packages Feature #10909: #define MAXVIFS 32 to 64: Louis van Breda wrote:
> OK, I understand. I will rebuild for 32 MAXVIFS. 32 VIFS are plenty for me, but others woul... Renato Botelho
07:12 AM pfSense Packages Feature #10909: #define MAXVIFS 32 to 64: OK, I understand. I will rebuild for 32 MAXVIFS. 32 VIFS are plenty for me, but others would perhaps like to have mor... Louis B
06:08 AM pfSense Packages Feature #10909: #define MAXVIFS 32 to 64: Louis van Breda wrote:
> I fixed the problem. It was not in the OS. I did compile the PIMD-package in the wrong way ... Renato Botelho
07:36 AM Bug #11073 (Duplicate): Traffic monitor widget error: Duplicate of #11072 Jim Pingle
07:35 AM Bug #11072 (Confirmed): Setting "Inverse" to "Off" does not save in the Traffic Graphs Dashboard widget: Jim Pingle
07:27 AM pfSense Packages Todo #11033 (Resolved): Update OpenVPN Client Export with OpenVPN 2.5.0 installer: Basic functions work, if anyone has new issues they find, let's move them to the forum and then we can open new issue... Jim Pingle
07:24 AM Todo #11020: Update OpenVPN to 2.5.0: Not nearly enough information, either. Post on the forum to discuss the problem and provide a lot more information ab... Jim Pingle
07:24 AM Feature #11070 (Rejected): Design and Simplicity Changes to High Availability: I don't see most of these as being feasible. Some are more error prone than the current design, others would be quite... Jim Pingle
07:19 AM Bug #11066 (Duplicate): Dashboard: Unit on Traffic Widget not consistent: Duplicate of #10602 Jim Pingle
07:17 AM pfSense Docs Correction #11067: Update status of 802.11ac support: The feedback you submitted was for a documentation update, but the text you entered sounded like a feature request. W... Jim Pingle
06:20 AM Feature #3229: make DynDNS status accessible to the colorblind: Applied in changeset commit:9447acda18c5aaca7699cd66f7aa387cc9ef82b0. Viktor Gurov
06:12 AM Feature #3229 (Feedback): make DynDNS status accessible to the colorblind: PR has been merged. Thanks! Renato Botelho
06:15 AM Todo #6638: Update no-ip DDNS to new API: Applied in changeset commit:3501e0c453b7b1498e1d7faaba324bf01be084c6. Viktor Gurov
06:09 AM Todo #6638 (Feedback): Update no-ip DDNS to new API: PR has been merged. Thanks! Renato Botelho
06:12 AM Bug #11034 (Feedback): poesX interfaces is not created: PR has been merged. Thanks! Renato Botelho
05:09 AM Bug #11006 (Resolved): L2TP Server and Client both use "l2tpX" for interface names: Renato Botelho
02:45 AM Bug #9796: kernel panic after removing interfaces: hello.
I had the same problem on the 11/11/2020 build. i made a video and here are the dumps if you want to watch ... Anonymous

11/15/2020

08:25 PM Bug #5999: IPv6 IP Alias prevents Track Interface from working with DHCPv6 and RA: I can confirm that this seems to resolve the original problem that I was experiencing. Really appreciate the fix guys... Allen Balaj
05:07 PM Bug #6880: Multiple DHCP6 WAN connections leads to multiple dhcp6c clients: I'm running into the same issue Randy Cross
10:33 AM Bug #8325: UPnP not available for pppoe-Clients: Thanks for taking up this topic again.
My description was not precise enough, as I learn from your answer. I will tr... Thomas Levi
09:45 AM Bug #11073 (Duplicate): Traffic monitor widget error: On dashboard in traffic monitor widget isn't possible to save inverse "off"
Niccolò Marchi
08:06 AM pfSense Packages Feature #10356 (Resolved): Support for additional Notification Support: Tested on 2.5.0-DEVELOPMENT (amd64)
built on Sun Nov 15 01:02:10 EST 2020
FreeBSD 12.2-STABLE
Telegram notificat... Azamat Khakimyanov
06:38 AM pfSense Packages Feature #10785 (Resolved): Allow Setting of ldapcachetime: Tested on 2.4.5_p1 and on 2.5.0-DEVELOPMENT (built on Sun Nov 15 01:02:10 EST 2020)
LDAP Cache Time option is now ... Azamat Khakimyanov
05:04 AM pfSense Packages Feature #10909: #define MAXVIFS 32 to 64: I fixed the problem. It was not in the OS. I did compile the PIMD-package in the wrong way in relation MAXVIFS64. So ... Louis B
02:16 AM Bug #11072: Setting "Inverse" to "Off" does not save in the Traffic Graphs Dashboard widget: Version Is 2.5 Niccolò Marchi
02:15 AM Bug #11072 (Resolved): Setting "Inverse" to "Off" does not save in the Traffic Graphs Dashboard widget: On dashboard in traffic monitor widget isn't possible to save inverse "off" Niccolò Marchi

11/14/2020

07:24 PM pfSense Packages Todo #11033: Update OpenVPN Client Export with OpenVPN 2.5.0 installer: Tested version 1.5_1 on 2.4.5-p1 64-bit installer worked and installed config properly but did present warning during... Jordan G
04:30 PM pfSense Docs New Content #11071 (Resolved): Add documentation for missing configuration items on IPv6 Router Advertisements: *Page:* https://docs.netgate.com/pfsense/en/latest/services/dhcp/ipv6-ra.html
*Feedback:*
Include description f... Marcos M
03:32 PM Todo #11020: Update OpenVPN to 2.5.0: Niccolò Marchi wrote:
> cipher in ovpn file is always empty
This is likely a misconfiguraiton and not a bug. If t... Marcos M
05:08 AM Todo #11020: Update OpenVPN to 2.5.0: cipher in ovpn file is always empty Niccolò Marchi
12:02 PM Feature #11070 (Rejected): Design and Simplicity Changes to High Availability: Currently there are several "pitfalls" to setting up an HA pair with pfSense that may benefit from some design change... Kris Phillips
11:22 AM Bug #10812 (Resolved): Traffic graph shows 2X the actual traffic on VLAN interfaces.: Tested on :... Danilo Zrenjanin
10:49 AM pfSense Packages Bug #11069: Reset Traffic Totals Not Working: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/7 Viktor Gurov
10:06 AM pfSense Packages Bug #11069 (Resolved): Reset Traffic Totals Not Working: https://forum.netgate.com/topic/152088/reset-traffic-totals-not-working:
I wanted to reset the data showing in the S... Viktor Gurov
09:03 AM Feature #11068 (Resolved): Safari 14.0.1 on MacOS 11.0.1 (Big Sur) asked for the favicon apple-touch-icon-precompressed.png instead of apple-touch-icon.png: Safari 14.0.1 on MacOS 11.0.1 (Big Sur) asked for the favicon apple-touch-icon-precompressed.png instead of apple-tou... John Jacobs
07:04 AM pfSense Docs Correction #11067 (New): Update status of 802.11ac support: *Page:* https://docs.netgate.com/pfsense/en/latest/wireless/hardware.html
*Feedback:*
FreeBSD 12.2 does support... Jurgen Debo
06:36 AM Bug #11066 (Duplicate): Dashboard: Unit on Traffic Widget not consistent: On the pfSense Dashboard the "Traffic Graphs" widget can be set to show "Unit Size" in "Bits" or "Bytes". Positioning... Adrian Zaugg
05:41 AM pfSense Packages Bug #10936: both haproxy/haproxy-devel non-existent option lb-agent-chk: Tested:
haproxy-devel 0.61_2 - "Agent" doesn't appear under Health check method. It's fixed.

HA-Proxy 0.60_... Danilo Zrenjanin
05:02 AM Feature #10483 (Duplicate): Add UI for EAP configuration for WLAN interfaces: Duplicate of #2400 Viktor Gurov
04:56 AM Bug #11051 (Resolved): Unbound: custom TLS listen port ignored: Tested on:... Danilo Zrenjanin
03:46 AM Todo #6638: Update no-ip DDNS to new API: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/50 Viktor Gurov
03:34 AM Feature #3229: make DynDNS status accessible to the colorblind: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/49 Viktor Gurov
03:34 AM Bug #10270 (Resolved): OMAPI / disableauthoritative / alwaysbroadcast not saved inside dhcpd.conf: Tested on:... Danilo Zrenjanin
02:42 AM Bug #11034: poesX interfaces is not created: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/48 Viktor Gurov
02:29 AM Feature #11057 (Resolved): Add default route indicator to Gateways widget: Viktor Gurov

11/13/2020

10:04 PM Feature #11045 (Resolved): Improve link state visibility on Status > Interfaces: Alhusein Zawi
07:53 PM Feature #11045: Improve link state visibility on Status > Interfaces: applied and showing up as expected Alhusein Zawi
08:20 AM Feature #11045: Improve link state visibility on Status > Interfaces: Applied in changeset commit:f35f9392543100e2b488f1942bfde608047cb4ee. Viktor Gurov
08:12 AM Feature #11045 (Feedback): Improve link state visibility on Status > Interfaces: Status interfaces icon. Implements #11045 Renato Botelho
08:00 AM Feature #11045 (Pull Request Review): Improve link state visibility on Status > Interfaces: Jim Pingle
04:25 AM Feature #11045: Improve link state visibility on Status > Interfaces: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/47 Viktor Gurov
07:32 PM Bug #8325: UPnP not available for pppoe-Clients: I'm unable to reproduce this issue. Steps followed:
1. Create PPPoE interface under Interfaces --> Assignments --... Kris Phillips
07:25 PM Bug #9626: When deny write permission is assigned to a user, there is no error feedback if the user tries to write something: Can confirm this is definitely what occurs. However, there is a logged event in the System Logs about a write deny, ... Kris Phillips
07:15 PM pfSense Packages Bug #9849 (Rejected): NUT not starting as root? Isn't loading USB drivers?: Marking bug report as rejected, since it is unable to be confirmed as an issue. Kris Phillips
05:48 PM Feature #11057: Add default route indicator to Gateways widget: working and showing up
2.5.0.a.20201113.1250
thanks Alhusein Zawi
04:15 PM Feature #11057: Add default route indicator to Gateways widget: It was merged after that snapshot. Try one from later today/tomorrow Jim Pingle
03:41 PM Feature #11057: Add default route indicator to Gateways widget: Default route icon is not showing up on Gateway dashboard widget.
2.5.0.a.20201113.0650 Alhusein Zawi
08:20 AM Feature #11057: Add default route indicator to Gateways widget: Applied in changeset commit:0630b8315c4eebd304f1557e50de11a1ab21b409. Viktor Gurov
08:12 AM Feature #11057 (Feedback): Add default route indicator to Gateways widget: PR has been merged. Thanks! Renato Botelho
07:59 AM Feature #11057 (Pull Request Review): Add default route indicator to Gateways widget: Jim Pingle
03:21 AM Feature #11057: Add default route indicator to Gateways widget: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/46 Viktor Gurov
02:38 PM pfSense Docs Correction #9370: Update old screenshots: Some more (may overlap the above):... Jim Pingle
02:37 PM pfSense Docs Correction #11065 (Resolved): Outdated logo in diagrams: Similar to #10782, I found a few more instances of diagrams using the old logo:
https://docs.netgate.com/pfsense/e... Jim Pingle
02:21 PM Feature #11058: In dashboard log widget an option to automatically resolve source or destination names depending whether names exist in private address space would be extremely useful: It would be confusing and of minimal use since the log scrolls dynamically, there is no telling if the resolve would ... Jim Pingle
01:34 PM Feature #11058: In dashboard log widget an option to automatically resolve source or destination names depending whether names exist in private address space would be extremely useful: Hi Jim,
Would a button that does a one shot resolve on the widget be an option?
Thanks,
Andy And Ritchie
02:12 PM Revision f35f9392: Status interfaces icon. Implements #11045: Viktor Gurov
02:12 PM Revision 0630b831: Gateways widget improvements. Implements #11057: Viktor Gurov
02:11 PM Revision b3cc5117: Backup extra data fixes. Issue #11050: Viktor Gurov
11:01 AM Bug #6321: Problem with connecting l2tp over ipsec from android and windows: Windows settings:
https://docs.microsoft.com/en-us/troubleshoot/windows-server/networking/configure-l2tp-ipsec-serve... Viktor Gurov
10:58 AM Bug #11006: L2TP Server and Client both use "l2tpX" for interface names: Works fine !
Thanks a lot !!!
Best of the best !!! Evgeny Korostelev
10:20 AM pfSense Docs Correction #9520 (Closed): Feedback on Routing and Multi-WAN — Gateway Settings: This looks good for the current version. Jared Dillard
10:13 AM pfSense Docs Correction #10643 (Closed): Feedback on Routing and Multi-WAN — Gateway Settings: This looks good. Jared Dillard
10:11 AM pfSense Docs Correction #9570 (Closed): Feedback on Routing and Multi-WAN — Gateway Settings: This looks good. Jared Dillard
09:46 AM Bug #11059 (Resolved): L2TP Server is restarted when administering users: Renato Botelho
09:30 AM Bug #11059: L2TP Server is restarted when administering users: Thanks a lot !!! Evgeny Korostelev
09:27 AM Feature #4278 (Resolved): Mail notification change name of the interface info more readable - pfsense 2.2: Current message includes friendly interface name for years
HA cluster member "(172.16.185.250@em0): (WAN)" has res... Renato Botelho
09:14 AM Bug #11064 (Feedback): WARNING: write_config() was called without description: Fixed. Renato Botelho
09:02 AM Bug #11064 (In Progress): WARNING: write_config() was called without description: I've changed it on ports but didn't bump PORTREVISION so new packages were not built. I'll take care of that Renato Botelho
08:35 AM Bug #11064 (Resolved): WARNING: write_config() was called without description: found some files with 'write_config()' without description:... Viktor Gurov
08:38 AM Bug #4740: Intel wireless kernel panic in infrastructure mode with WPA: Considering all big FreeBSD changes since 2.2.x I must ask. Is it still happening on current versions? Renato Botelho
08:34 AM pfSense Packages Feature #4335 (Resolved): NUT send notifications via built in smtp notification feature: NUT sends SMTP notification using pfSense main notification settings since 2016 Renato Botelho
08:32 AM Todo #2942 (Rejected): PHP-Growl: Growl Talk Notifications UDP 9887 implementation deprecated. GNTP is the new standard notification protocol.: Growl support was removed on pfSense 2.5.0 Renato Botelho
08:26 AM Bug #11050 (Feedback): "Backup extra data" does not behave properly: PR has been merged. Thanks! Renato Botelho
08:20 AM Bug #11050: "Backup extra data" does not behave properly: Viktor Gurov wrote:
> https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/45
Merged. Thanks! Renato Botelho
08:11 AM Bug #11050: "Backup extra data" does not behave properly: bsdinstall fix:
https://gitlab.netgate.com/pfSense/FreeBSD-src/-/merge_requests/1 Viktor Gurov

11/12/2020

11:39 PM Feature #11041 (Resolved): Add hardware interface name to popup hint in Interfaces Dashboard widget: Alhusein Zawi
11:37 PM Feature #11041: Add hardware interface name to popup hint in Interfaces Dashboard widget: applied
when I put the mouse on interface block in dashboard it popups interface name (emx).
example:
LAN > e... Alhusein Zawi
07:25 AM Feature #11041: Add hardware interface name to popup hint in Interfaces Dashboard widget: Applied in changeset commit:c073d66224cc6ea122cec2a6067b038ed2593043. Viktor Gurov
07:16 AM Feature #11041 (Feedback): Add hardware interface name to popup hint in Interfaces Dashboard widget: PR has been merged. Thanks! Renato Botelho
06:44 PM Bug #11021: ral(4) driver kernel panics in arm64: Testing:... Steve Wheeler
11:40 AM Bug #11021 (Feedback): ral(4) driver kernel panics in arm64: A new fix was committed by bz@ and imported to our tree. Next round of snapshots will have it Renato Botelho
04:59 PM Revision e9119e9a: Catch up with the pfSense-module-0.69 which renamed the interface create function.: Luiz Souza
04:45 PM pfSense Docs Correction #10782 (Closed): Outdated pfSense logo is still in use: This looks good. I added the source locations in this commit: https://gitlab.netgate.com/docs/pfSense-book/-/commit/2... Jared Dillard
03:44 PM pfSense Docs Correction #10782 (Feedback): Outdated pfSense logo is still in use: Addressed in https://gitlab.netgate.com/docs/pfSense-book/-/commit/83082ffa5c605fc424f04ea25bfcde4320892206 Jim Pingle
04:15 PM Revision d0f746e3: Remove old nss_ldap.conf if it exists before symlinking. Fixes #8698: Jim Pingle
04:08 PM Revision e6e6ad5c: Merge pull request #4326 from vktg/voucherviaurl: Renato Botelho
03:44 PM pfSense Docs Correction #10643 (Feedback): Feedback on Routing and Multi-WAN — Gateway Settings: Addressed in https://gitlab.netgate.com/docs/pfSense-book/-/commit/83082ffa5c605fc424f04ea25bfcde4320892206 Jim Pingle
03:44 PM pfSense Docs Correction #9570 (Feedback): Feedback on Routing and Multi-WAN — Gateway Settings: Addressed in https://gitlab.netgate.com/docs/pfSense-book/-/commit/83082ffa5c605fc424f04ea25bfcde4320892206 Jim Pingle
03:43 PM pfSense Docs Correction #9520 (Feedback): Feedback on Routing and Multi-WAN — Gateway Settings: Addressed in https://gitlab.netgate.com/docs/pfSense-book/-/commit/83082ffa5c605fc424f04ea25bfcde4320892206 Jim Pingle
02:49 PM pfSense Packages Bug #10429 (Feedback): Status Traffic Total broken 2.4.5: The diff was applied in this commit and should be testable once the packages rebuild for package version 2.3.2: https... Jared Dillard
01:54 PM Bug #9450: Multiwan gateway group fail-over not working as expected (possible race condition): I’m not getting desired behavior but I don’t know if it’s caused by changes to this
output of /tmp/rules.debug aft... Dee D
01:50 PM Revision 2a50b9b4: Fix #11053: Check variable before call implode(): Renato Botelho
01:37 PM Revision 7a8e671f: Merge pull request #4486 from apollo13/patch-2: Renato Botelho
01:29 PM Revision 53ea4b8b: Allow to submit voucher via URL. Implements #1984: Viktor Gurov
01:21 PM Revision 21654184: Fixed #11062 by adding support for fingerprint specification: Steve Beaver
01:20 PM Bug #7307 (Feedback): ZFS installer - shuts down instead of rebooting: Jim Pingle
01:18 PM Revision 8693a501: Do not restart L2TP VPN server when deleting user. Fixes #11059: Viktor Gurov
01:17 PM Revision 298df54d: Unbound custom TLS port fix. Issue #11051: Viktor Gurov
01:15 PM Revision c073d662: Dashboard widget interface name popup hint. Implements #11041: Viktor Gurov
01:13 PM Todo #9417: Convert LDAP TLS setup from environment to LDAP_OPT_X_TLS_* set options: See also: #10704 Jim Pingle
01:13 PM Todo #10704 (Feedback): Work around PHP issues with SSL LDAP and multiple authentication servers: This is technically waiting for feedback on #9417 so I'm changing the status accordingly.
If #9417 has to be backe... Jim Pingle
12:31 PM Revision b704b6ef: Add a warning when write_config() is called without description: Renato Botelho
12:31 PM Revision e85ae672: Fix #204: Add messages to all write_config() calls: Renato Botelho
12:31 PM Revision 526df36e: Remove commented out lines: Renato Botelho
12:31 PM Revision cffb85bf: Fix indent: Renato Botelho
12:30 PM Bug #6025: Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: Fabian Schnelle wrote:
> After this change, policy based routing no longer works.
> The entry in the firewall rule... Jim Pingle
11:32 AM Feature #11058 (Rejected): In dashboard log widget an option to automatically resolve source or destination names depending whether names exist in private address space would be extremely useful: That would be overkill for a dashboard widget. Someone can resolve via the firewall log view if needed. There are als... Jim Pingle
11:14 AM Bug #11063: PHP error if SMTP notification fails: This happens if an SMTP notification can't be sent (e.g. WAN down, no default route, etc). Not specific to any interf... Jim Pingle
11:06 AM Bug #11063 (Resolved): PHP error if SMTP notification fails: amd64
12.2-STABLE
FreeBSD 12.2-STABLE 573bcbb6506(devel-12) pfSense
Crash report details:
PHP Errors:
[12-No... Niccolò Marchi
10:20 AM Feature #7467 (Feedback): Add iPhone/Android/Generic USB tethering support: I've enabled it to build on armv7 and arm64 on 2.5.0. Please check next round of snapshots Renato Botelho
09:40 AM Feature #7467: Add iPhone/Android/Generic USB tethering support: I am on the 2.4.5-RELEASE-p1 (arm64), SG-1100
The if_ipheth kernel module is missing:... Oleg Tyaglo
10:17 AM Feature #8698: LDAP authenticated users should be able to log in via ssh: Looks like the errors some are seeing (including myself) are from @/usr/local/etc/nss_ldap.conf@ not being setup as a... Jim Pingle
04:54 AM Feature #8698: LDAP authenticated users should be able to log in via ssh: pfSense 2.5.0.a.20201111.1850 test with FreeIPA server 4.8.4:
Authentication server configuration:... Viktor Gurov
10:15 AM Feature #1984: Allow CP Voucher submission via URL so they can be distributed as QR code: Applied in changeset commit:53ea4b8b8b0c4a05c3d11bae8d26504e17e161dd. Viktor Gurov
10:08 AM Feature #1984 (Feedback): Allow CP Voucher submission via URL so they can be distributed as QR code: PR has been merged. Thanks! Renato Botelho
09:51 AM Bug #11037 (Resolved): Change APIs for HE.net Tunnelbroker dynamic DNS update: Tested the patch on the 2.4.5-p1. It works fine.
Ticket resolved. Danilo Zrenjanin
09:45 AM Revision d2db8e58: Add a comment about CARP in generated rules: Currently the rules.debug file looks like this:
```
# Snort package
block log quick from <snort2c> to any tracker 100... Florian Apolloner
09:21 AM Bug #6028 (In Progress): no firewall rules loaded after reboot with invalid ruleset: Renato Botelho
08:09 AM Bug #11050: "Backup extra data" does not behave properly: The PR Addresses the last three points but not the first.
Part of the first one will need fixed in the src repo in... Jim Pingle
07:51 AM Bug #11050 (Pull Request Review): "Backup extra data" does not behave properly: Renato Botelho
02:17 AM Bug #11050: "Backup extra data" does not behave properly: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/45 Viktor Gurov
08:00 AM Bug #11053 (Feedback): PHP error on services_dhcp_relay.php: Applied in changeset commit:2a50b9b49e47e9d2113facd7b97d25478135e3d6. Renato Botelho
07:59 AM Bug #10919: Improve handling of OpenVPN data cipher negotiation options: The changes through comment 12 appear to fix my issue. S Premeau
07:41 AM Bug #11061: CARP rules show up as "part" of the snort package in rules.debug: Thank you very much. Florian Apolloner
07:38 AM Bug #11061 (Feedback): CARP rules show up as "part" of the snort package in rules.debug: PR has been merged. Thanks! Renato Botelho
03:47 AM Bug #11061 (Resolved): CARP rules show up as "part" of the snort package in rules.debug: This is only a cosmetic change, but it adds a header to the generated rules to separate it from the snort package. Se... Florian Apolloner
07:25 AM Bug #11059: L2TP Server is restarted when administering users: Applied in changeset commit:8693a501df0d4c791a0858f7460db1b580fe337d. Viktor Gurov
07:19 AM Bug #11059 (Feedback): L2TP Server is restarted when administering users: PR has been merged. Thanks! Renato Botelho
07:17 AM Bug #11051 (Feedback): Unbound: custom TLS listen port ignored: PR has been merged. Thanks! Renato Botelho
06:35 AM Todo #204: All write_config() statements should include a reason of some sort: Applied in changeset commit:e85ae672e45f0e883478c74b630b1723908998dd. Renato Botelho
06:32 AM Todo #204 (Feedback): All write_config() statements should include a reason of some sort: All write_config() calls on base and ports now have a description. Added a Warning when it's called without it so de... Renato Botelho
02:43 AM pfSense Packages Feature #11060 (Resolved): Block access to consumer Google accounts: WebGUI feature for:
https://support.google.com/a/answer/1668854?hl=en:
To prevent users from signing in to Goog... Viktor Gurov
12:36 AM Bug #11005 (Closed): IPv6 Prefix Delegation not requested if no interfaces set to track6: This seems to work great now. Thank you.
Chris Linstruth
12:09 AM pfSense Packages Feature #10950 (Resolved): Allow to select only netmap-compatible cards for inline mode: tested
Jordan Greene wrote:
> I was able to add and start an interface using snort with a USB ethernet adapter (... Viktor Gurov

11/11/2020

11:57 PM Bug #11059: L2TP Server is restarted when administering users: Fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/44 Viktor Gurov
11:18 PM Bug #11059 (Resolved): L2TP Server is restarted when administering users: pfSense 2.5.0 development
When i delete l2tp user on l2tp server, all users are disconnected :(
Please fix it again Evgeny Korostelev
08:17 PM Bug #10942: LDAP Auth error after update 2.5.0.a.20200930.1303: Testing LDAP authentication in
2.5.0-DEVELOPMENT (amd64)
built on Wed Nov 11 12:59:57 EST 2020
FreeBSD 12.2-STA... Max Leighton
07:17 PM Feature #11057: Add default route indicator to Gateways widget: Apologies, should be gateways widget in dashboard. And Ritchie
06:48 PM Feature #11057 (Resolved): Add default route indicator to Gateways widget: Routing page under system tab indicates the current default route with an icon.
This would be ideal on the routing w... And Ritchie
07:01 PM Feature #11058 (Rejected): In dashboard log widget an option to automatically resolve source or destination names depending whether names exist in private address space would be extremely useful: I understand that there may not be a desire based on performance reasons to resolve ip addresses from an external sou... And Ritchie
06:11 PM pfSense Packages Feature #9833: ACME: add ability to use custom ACME server: Michael Long wrote:
> I'll add my voice to this request. I just set up a local step-ca ACME server and would love t... Stanislav Dimov
06:06 PM Revision 9bf4a147: OpenVPN client fallback cipher variable changed. Fixes #10919: Jim Pingle
05:19 PM Bug #6025: Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: After this change, policy based routing no longer works.
The entry in the firewall rule is completely ignored and t... Fabian Schnelle
03:58 PM Feature #11056 (New): Add option to disable flow-control on interfaces in GUI: Add toggle on/off function for Flow Control on interfaces as alternative to adding lines to loader.conf.local
Requ... Paighton Bisconer
02:53 PM Revision 85652efd: Retire some packages from pfSense 2.5.0:: OpenBGPd - replaced by FRR
Quagga_OSPF - replaced by FRR
routed - not actively maintained and rarely used
blinkled - ... Renato Botelho
01:33 PM pfSense Packages Bug #11055 (Resolved): Insecure FreeRADIUS defaults: * "Disable Weak EAP Types" (EAP tab, EAP section) should be enabled by default
* "Default EAP Types" (EAP tab, EAP s... Anonymous
01:32 PM Feature #8698: LDAP authenticated users should be able to log in via ssh: Testing this with Active Directory, I'm able to successfully log into the webGUI with LDAP credentials, but attemptin... Max Leighton
01:23 PM pfSense Packages Bug #11054 (Assigned): Check Client Certificate CN not working as described: Page: Services / FreeRADIUS
Tab: EAP
Section: EAP-TLS
Option: Check Client Certificate CN
Actual result when en... Anonymous
01:15 PM Feature #11041 (Pull Request Review): Add hardware interface name to popup hint in Interfaces Dashboard widget: Jim Pingle
12:13 PM Feature #11041: Add hardware interface name to popup hint in Interfaces Dashboard widget: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/43 Viktor Gurov
12:07 PM Bug #10919: Improve handling of OpenVPN data cipher negotiation options: Nice catch, I've pushed a fix. Thanks! Jim Pingle
12:05 PM Bug #10919: Improve handling of OpenVPN data cipher negotiation options: OpenVPN client edit is not saving / loading the Fallback cypher setting.
Looking through /usr/local/www/vpn_openvp... Anonymous
12:03 PM Bug #11051 (Pull Request Review): Unbound: custom TLS listen port ignored: Jim Pingle
10:34 AM Bug #11051: Unbound: custom TLS listen port ignored: Fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/42 Viktor Gurov
11:42 AM Bug #11053 (Resolved): PHP error on services_dhcp_relay.php: amd64
12.2-STABLE
FreeBSD 12.2-STABLE 573bcbb6506(devel-12) pfSense
Crash report details:
PHP Errors:
[11-... Niccolò Marchi
10:15 AM pfSense Packages Todo #11033: Update OpenVPN Client Export with OpenVPN 2.5.0 installer: Please post on the forum for assistance. You haven't provided nearly enough information there. Jim Pingle
10:13 AM pfSense Packages Todo #11033: Update OpenVPN Client Export with OpenVPN 2.5.0 installer: i have this problem with the last client_export Niccolò Marchi
10:11 AM pfSense Packages Bug #10579 (Rejected): Blinkled segfaults with SEGV_MAPERR: blinkled package is now retired on 2.5.0 Renato Botelho
10:07 AM pfSense Packages Feature #7660 (Rejected): Please add the ability to monitor more than one CARP address to the Quagga GUI support: Quagga package is now retired on 2.5.0 Renato Botelho
10:06 AM pfSense Packages Feature #4635 (Rejected): openbgpd options applied at group level: OpenBGPD package is now retired on 2.5.0 Renato Botelho
10:06 AM pfSense Packages Feature #6479 (Rejected): Add OpenBGPD config to High Availability Sync option to sync: OpenBGPD package is now retired on 2.5.0 Renato Botelho
10:06 AM pfSense Packages Feature #7657 (Rejected): OpenBGPD local-as feature in neighbors context: OpenBGPD package is now retired on 2.5.0 Renato Botelho
09:43 AM pfSense Packages Feature #10915 (Resolved): security/pfSense-pkg-sudo sudo.inc enhancement for better support of NRPE: Tested on 2.4.5_p1 and on 2.5.0-DEVELOPMENT (built on Wed Nov 11 01:06:53 EST 2020)
With NRPE package installed th... Azamat Khakimyanov
09:32 AM pfSense Packages Bug #10927 (Resolved): pfBlockerNG-devel fullfill the pfsense config history when RAM disk in use: Tested on 2.4.4_p3, on 2.4.5_p1 and on 2.5.0-DEVELOPMENT (built on Wed Nov 11 01:06:53 EST 2020)
On 2.4.4_p3 I sti... Azamat Khakimyanov
08:10 AM pfSense Packages Feature #11008: Add option to mail report pkg to skip sending email if no output: The text is correct in the package. When the box is checked, it only sends the e-mail if there is output. Adding the ... Jim Pingle
05:29 AM pfSense Packages Feature #11008 (Resolved): Add option to mail report pkg to skip sending email if no output: Tested on 2.4.5_p1 and on 2.5.0-DEVELOPMENT (built on Wed Nov 11 01:06:53 EST 2020)
There is an option 'Skip If No... Azamat Khakimyanov
07:27 AM pfSense Packages Feature #10909: #define MAXVIFS 32 to 64: Renato, that ^fixed^ the problem :) I did create a FreeBSD bug report (251047)
Louis B
05:26 AM pfSense Packages Feature #10909 (New): #define MAXVIFS 32 to 64: Done! It's all back to 32 Renato Botelho
12:56 AM pfSense Packages Feature #10909: #define MAXVIFS 32 to 64: Renato, you only have to rebuild the OS. There is no neat to do something with the pfSense pimd package since those a... Louis B
07:09 AM pfSense Packages Bug #11052 (Not a Bug): Authtype MD5-Password dont work in freeradius3: When using hashed options like MD5 the "password" field must be filled with the _pre-hashed_ password, not the actual... Jim Pingle

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

12/10/2020

12/09/2020

12/08/2020

12/07/2020

12/06/2020

12/05/2020

12/04/2020

12/03/2020

12/02/2020

12/01/2020

11/30/2020

11/29/2020

11/28/2020

11/27/2020

11/26/2020

11/25/2020

11/24/2020

11/23/2020

11/22/2020

11/21/2020

11/20/2020

11/19/2020

11/18/2020

11/17/2020

11/16/2020

11/15/2020

11/14/2020

11/13/2020

11/12/2020

11/11/2020