Activity

30 days up to

User

Subprojects

Activity

From 12/07/2020 to 01/05/2021

01/05/2021

09:11 PM Revision 391591ef: IPsec P1/P2 expiration and replacement refresh. Implements #11219: Jim Pingle
03:20 PM Todo #11219 (Feedback): Improve IPsec GUI options for P1/P2 reauth/rekey: I just pushed a set of changes to address all of the above points. GUI fields are now present in both P1 and P2 as la... Jim Pingle
01:13 PM pfSense Docs Correction #11223 (Resolved): Azure Marketplace links are invalid: Links to the pfSense for Azure marketplace page go to https://azuremarketplace.microsoft.com/en-us/marketplace/apps/n... Max Leighton
12:59 PM Revision f4479f0d: Identify minnowboard with BIOS 1.0: Intel has changed MBT identification
Obtained from: https://github.com/pfsense/pfsense/pull/4495 Renato Botelho
12:49 PM Revision 8f00a31d: Merge pull request #4493 from bmhughes/add-watchfrr-to-routing-log: Renato Botelho
12:48 PM Revision 7e5b8cee: Merge pull request #4494 from bmhughes/fix_pkg_edit_button_descr: Renato Botelho
10:18 AM Bug #11222 (Rejected): Firewall rule ignoring custom gateway in advanced section: Not nearly enough information here, and it's not reproducible. Almost certainly something in your config/environment ... Jim Pingle
10:04 AM Bug #11222 (Rejected): Firewall rule ignoring custom gateway in advanced section: Created a custom firewall rule in interface to route traffic to an external gateway.
The rule is applied and correct... Chris Pazz
09:47 AM pfSense Packages Feature #11155: SafeSearch AAAA: Do we need to use a redirect/local-zone for these CNAMES?
Are there any other sub-domains other than the "www." v... BBcan177 .
09:23 AM pfSense Packages Feature #11155 (Pull Request Review): SafeSearch AAAA: Jim Pingle
09:46 AM pfSense Packages Feature #11206 (Pull Request Review): FRR 7.5: Jim Pingle
09:21 AM pfSense Packages Bug #11204 (Pull Request Review): Fix net-snmp logging to syslog: Jim Pingle
09:19 AM Bug #11220 (Rejected): Alert: XMLRPC method captive_portal_sync: I can't reproduce this here and there isn't nearly enough information to determine any possible cause in your environ... Jim Pingle
03:41 AM Bug #11220 (Rejected): Alert: XMLRPC method captive_portal_sync: Hi all,
on an HA system running on 2.4.5p1, fully functional, without problems in all conditions, if I upgrade on ... Luca De Andreis
08:05 AM pfSense Docs Correction #11221: Feedback on pfSense Configuration Recipes — Routing Internet Traffic Through A Site-To-Site OpenVPN Tunnel: By the way:
Section:
https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-route-internet-traffic.html#set... Michael Huck
07:59 AM pfSense Docs Correction #11221 (Closed): Feedback on pfSense Configuration Recipes — Routing Internet Traffic Through A Site-To-Site OpenVPN Tunnel: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-route-internet-traffic.html
*Feedback:*
Th... Michael Huck
07:16 AM Feature #11207 (Feedback): Add watchfrr to routing log: Renato Botelho
07:00 AM Feature #11207: Add watchfrr to routing log: PR has been merged. Thanks! Renato Botelho
07:11 AM pfSense Packages Feature #11186: Allow lo0/Loopback as a valid interface in OSPF/OSPF6: Any update on this PRR?
Seems like a pretty benign easily validated pull request. I've been running this code for ... Christian McDonald
07:02 AM Bug #9242 (Feedback): MBT-4220/2220 not recognized by pfsense correctly after UEFI upgraded to 1.00: PRs have been merged. Thanks! Renato Botelho
06:48 AM Bug #11208 (Feedback): pkg_edit uses incorrect description for pkg_edit buttons: PR has been merged. Thanks! Renato Botelho

01/04/2021

09:05 PM Revision 5f555ece: Remove zabbix44 packages due to EOL: Renato Botelho
04:15 PM Revision 99aa6737: Fix PHP error in Mobile IPsec validation. Fixes #11212: Jim Pingle
02:30 PM Revision 0f2a455f: Update translation files: Renato Botelho
02:27 PM Revision 1452926e: Regenerate pot: Renato Botelho
02:01 PM Todo #11219 (Resolved): Improve IPsec GUI options for P1/P2 reauth/rekey: Additional options are available to control for P1 and P2 renegotiation but we either calculate them or accept the de... Jim Pingle
01:43 PM Bug #9242: MBT-4220/2220 not recognized by pfsense correctly after UEFI upgraded to 1.00: proposed fix for pfsense added in
for gui config added in https://github.com/pfsense/pfsense/pull/4495
And fix for... Grzegorz Krzystek
11:30 AM pfSense Packages Feature #11206: FRR 7.5: pfSense-pkg-frr Port PR: https://github.com/pfsense/FreeBSD-ports/pull/1021 Ben Hughes
11:27 AM pfSense Packages Feature #11206: FRR 7.5: frr7 Port PR: https://github.com/pfsense/FreeBSD-ports/pull/1020 Ben Hughes
10:01 AM pfSense Packages Feature #11206: FRR 7.5: Ok sounds a plan, as you say in hindsight I should've started at 1.0.0 when first starting the move to a integrated c... Ben Hughes
09:56 AM pfSense Packages Feature #11206: FRR 7.5: Ben Hughes wrote:
> I've bumped the port version to 0.7.0 for pfSense-pkg-frr because of the changes, but looking ba... Jim Pingle
11:09 AM Feature #8786: Wireguard VPN: It's still being worked on (and has been the whole time). There are ongoing stability issues that have yet to be fixe... Jim Pingle
10:34 AM Feature #8786: Wireguard VPN: From https://svnweb.freebsd.org/base?view=revision&revision=368163
> Sponsored by: Rubicon LLC, (Netgate)
Just want... Christian Weiss
10:26 AM Bug #11183 (Duplicate): Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Duplicate of #11104 Jim Pingle
10:25 AM Bug #11212 (Feedback): PHP error on Mobile IPsec input validating error: Applied in changeset commit:99aa67376e4f654be8a46c27ae4a57ee16cbd26d. Jim Pingle
10:14 AM Bug #11212 (In Progress): PHP error on Mobile IPsec input validating error: I can reproduce it here, too. I have a fix, pushing shortly. Jim Pingle
10:23 AM pfSense Packages Bug #11214 (Resolved): mail reports typo "Define reports to by sent periodically via email. ": Not a docs issue, but a typo on the page.
Fix pushed.
Jim Pingle
10:16 AM pfSense Packages Bug #11175 (Resolved): FRR OSPFv6 config missing default area: Jim Pingle
10:11 AM Feature #11211 (Pull Request Review): GUI option to set RADIUS Timeout for EAP-RADIUS: Jim Pingle
10:01 AM Feature #11140 (Pull Request Review): Allow the firewall to use DNS servers provided to an OpenVPN client instance: Jim Pingle
09:57 AM pfSense Packages Feature #10605 (Pull Request Review): Add certificates from Trusted Store to Squid cert store: Jim Pingle
09:55 AM Bug #11208 (Pull Request Review): pkg_edit uses incorrect description for pkg_edit buttons: Jim Pingle
09:52 AM Feature #11207 (Pull Request Review): Add watchfrr to routing log: Jim Pingle
09:34 AM pfSense Packages Bug #11217 (Feedback): tun-ipv6 is depracated on OpenVPN 2.4: Fixed in v1.5_5. Now only added when "legacy" is checked. Jim Pingle
03:48 AM pfSense Packages Bug #11217 (Resolved): tun-ipv6 is depracated on OpenVPN 2.4: Hi, if export OpenVPN config via pfSense Client Export Utility with disabled "Legacy Client" on latest tunnelblink on... DRago_Angel [InV@DER]
09:15 AM Bug #11218 (Rejected): /rc.carpmaster: New alert found: A communications error occurred while attempting to call XMLRPC method captive_portal_sync:: I can't reproduce this here and there isn't nearly enough information to determine any possible cause in your environ... Jim Pingle
08:17 AM Bug #11218: /rc.carpmaster: New alert found: A communications error occurred while attempting to call XMLRPC method captive_portal_sync:: More details:
- When motion master to slave (enter in persistant mode...) no alert
- When reenable old master to ... Luca De Andreis
07:35 AM Bug #11218 (Rejected): /rc.carpmaster: New alert found: A communications error occurred while attempting to call XMLRPC method captive_portal_sync:: Hi,
Two nodes in last 2.5 release, when I reboot the master node or when move the master to secondary I see this a... Luca De Andreis
08:40 AM Bug #10943 (Resolved): boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: Renato Botelho
07:39 AM pfSense Packages Feature #10739: Update HAproxy-devel package to 2.2 and HAproxy to 2.0: As I mentioned in #11216 (Duplicate):
pfSense-pkg-haproxy is still using haproxy18 where as pfSense-pkg-haproxy-deve... Torben Hørup
07:31 AM pfSense Packages Feature #11216 (Duplicate): haproxy 2.x: Jim Pingle
07:14 AM pfSense Packages Feature #11216: haproxy 2.x: Sorry - dublicate of #10739
just close again Torben Hørup
03:11 AM pfSense Packages Feature #11216 (Duplicate): haproxy 2.x: pfSense-pkg-haproxy is still using haproxy18 where as pfSense-pkg-haproxy-devel is using haproxy (which currently poi... Torben Hørup
12:47 AM pfSense Packages Todo #11215 (Resolved): Update NtopNG to 4.2: Hi there latest ntopng 4.2 stable version is available for freebsd 12, could you please update to it in 2.5.x? DRago_Angel [InV@DER]

01/03/2021

04:34 PM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Hi Viktor, changed OpenVPN settings to use 2 auth backends after adjust CA to Global CA list, and still same AUTH_FAI... DRago_Angel [InV@DER]
12:28 PM Revision 8f585441: Update the Copyright year.: A subsequent commit will deal with .po's. Luiz Souza
10:04 AM pfSense Packages Feature #9833: ACME: add ability to use custom ACME server: Stanislav Dimov wrote:
> +1. Any progress on this?
+1 on this as well. Have recently setup an ACME server locall... Michael .
08:29 AM pfSense Packages Bug #11214 (Resolved): mail reports typo "Define reports to by sent periodically via email. ": /status_mail_report.php
Email Reports
Define reports to by sent periodically via email.
should be
Define re... gavin penney
07:09 AM Feature #11213 (New): Option to mark gateway as down directly from Table: Hello
Sometimes it happened to me to put in down state a gateway that was part of a group of Gateways.
To do this, ... Stefano Mereghetti
02:33 AM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: I have tried to disable whole if (/*dn_cfg.io_fast */ && ...) via patching /boot/kernel/dummynet.ko .
Traffic then... Alexey Ab

01/02/2021

09:07 PM pfSense Packages Feature #10818: UDP Broadcast Relay: Would absolutely love to see this becoming a pfSense package. Thank you Chetan and Garth for taking a shot at this. Kevin L
08:17 PM pfSense Packages Feature #11201: Show iTLD Allow IDN domains: Those don't provide a number of domains per TLD. BBcan177 .
08:09 PM Feature #8786: Wireguard VPN: Wireguard has been merged into freebsd 13
https://svnweb.freebsd.org/base?view=revision&revision=368163
https:/... Jamie Murphy
05:42 PM Bug #10943: boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: sorry, i didn't noticed a notification for this,
i was able to try ISO [datastore1] pfSense-CE-2.5.0-DEVELOPMENT-amd... Manuel Piovan
02:13 PM pfSense Packages Bug #11175: FRR OSPFv6 config missing default area: Fixed
Default Area is added to OSPF6 configuration
router ospf6
area 0.0.0.0 range 684d:1111:222:3333::/64 co... Alhusein Zawi
11:25 AM pfSense Packages Feature #11155: SafeSearch AAAA: Added description regarding IPv4/IPv6 redirect support by search engines.
https://github.com/pfsense/FreeBSD-ports/p... Danilo Zrenjanin
09:01 AM Feature #11211: GUI option to set RADIUS Timeout for EAP-RADIUS: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/89 Viktor Gurov
07:18 AM Feature #11211 (Closed): GUI option to set RADIUS Timeout for EAP-RADIUS: see https://forum.netgate.com/topic/108637/ipsec-ikev2-with-eap-radius-vpn-azure-multi-factor-authentication
and htt... Viktor Gurov
08:49 AM Bug #11212 (Resolved): PHP error on Mobile IPsec input validating error: If you make any input validating error on the vpn_ipsec_mobile.php page,
and you have more then one auth source:
<... Viktor Gurov
02:50 AM Feature #11140: Allow the firewall to use DNS servers provided to an OpenVPN client instance: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/88 Viktor Gurov
02:04 AM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: And the same commented code in pfsense repository.
https://github.com/pfsense/FreeBSD-src/blob/devel-12/sys/netpfi... Alexey Ab
01:48 AM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Since net.inet.ip.dummynet.io_fast does split path of packets for saturated/unsaturated pipe mode, then this setting ... Alexey Ab

01/01/2021

11:51 PM Bug #9643: Limiters do not function properly on 2.5 snapshots: Tested fq-codel out on the latest snapshot and found out that if i apply an outbound WAN pass rule to ipv6 it does ap... Thomas Pilgaard
02:16 PM Bug #9643: Limiters do not function properly on 2.5 snapshots: Is there any update on this? Jesse Beauclaire
11:40 PM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Observed the same on 2.4.5 p1 with out of order packets during iperf testing using fq-codel with limiters set to 930 ... Thomas Pilgaard
11:12 PM pfSense Packages Feature #11201: Show iTLD Allow IDN domains: BBcan177 . wrote:
> Best to edit the iTLD's and add the static IDN between the existing Puny code and the [xxx] coun... Viktor Gurov
01:59 PM pfSense Packages Feature #11201: Show iTLD Allow IDN domains: Best to edit the iTLD's and add the static IDN between the existing Puny code and the [xxx] counts. ... BBcan177 .
03:50 PM Bug #11196 (Resolved): IPsec DPD action incorrect on development snapshots: Tested on latest build and now see dpd action set to trap, restart, or clear based on the corresponding Child SA clos... Max Leighton
12:53 PM Bug #11196: IPsec DPD action incorrect on development snapshots: This was supposed to be a comment for #10176. Apologies. Florin Samareanu
12:50 PM Bug #11196: IPsec DPD action incorrect on development snapshots: After going with latest dev I don’t see any duplicate p1s or p2s during the last 24h. My tunnels are mostly using def... Florin Samareanu
02:07 PM pfSense Packages Feature #11209: pfBlockerNG soft blocking: This won't work for HTTPS requests. And no way to do a redirection unless a Proxy is used. BBcan177 .
08:21 AM pfSense Packages Feature #11209 (New): pfBlockerNG soft blocking: For the high false-positive feeds, or for some specific feeds (like https://1984.sh/covid19-domains-feed.txt) it woul... Viktor Gurov
10:47 AM pfSense Packages Feature #11210 (Resolved): 3rd party rulesets: It would be useful to add the ability to use any additional third party rulesets,
and download/update them just like... Viktor Gurov
03:23 AM pfSense Packages Feature #10605: Add certificates from Trusted Store to Squid cert store: "Extra Trusted CA" option to select the CA certificate that is used by the upstream SSL/MITM proxy:
https://gitlab.n... Viktor Gurov

12/31/2020

11:12 PM pfSense Packages Bug #11205 (Duplicate): DNSBL SafeSearch redirection doesn't work with DuckDuckGo: see https://redmine.pfsense.org/issues/11155#note-3 Viktor Gurov
01:55 PM pfSense Packages Bug #11205 (Duplicate): DNSBL SafeSearch redirection doesn't work with DuckDuckGo: It's not forcing safe search when using DuckDuckGo search engine. Danilo Zrenjanin
11:08 PM Bug #10827 (Resolved): Cannot add or delete separators when no rules are present: Viktor Gurov
05:52 PM Bug #10827: Cannot add or delete separators when no rules are present: I was able to delete separators after deleting the rules
Steps:
created 2 separator.
Created 2 rules and applied... Alhusein Zawi
10:20 PM Bug #11115: Pfsense MAC Control Feature Request: Hi Jim,
Just wanted to post a closure as other non-networking folks may get the same idea!
I invested some time... Pankaj Mathur
05:49 PM Revision 831c6728: Fix typo in state delete command: Steve Beaver
03:57 PM Revision 87d9798f: Improve handling of SMTP send errors. Fixes #11063: Jim Pingle
03:21 PM Bug #11197 (Resolved): Clicking firewall states leads to php error: Jim Pingle
03:19 PM Bug #11197: Clicking firewall states leads to php error: Florin Samareanu wrote:
> Applied with system patches, issue is resolved. Thank you.
Jim Pingle wrote:
> App... Michael Spears
03:02 PM Feature #10238: Periodic Scrub of ZFS filesystem: similar to:
https://redmine.pfsense.org/issues/9226#change-50116
a script for monitoring zfs with scrub capabilit... gavin penney
02:50 PM Feature #9226: zfs GUI functionality - alerts: well, no GUI for it as of yet, but this script can be cron'd for better results reports emails, if anyone is ever loo... gavin penney
02:46 PM pfSense Packages Feature #11206: FRR 7.5: I've bumped the port version to 0.7.0 for pfSense-pkg-frr because of the changes, but looking back at everything that... Ben Hughes
02:39 PM pfSense Packages Feature #11206: FRR 7.5: PR: https://github.com/pfsense/FreeBSD-ports/pull/1018 Ben Hughes
02:39 PM pfSense Packages Feature #11206 (Closed): FRR 7.5: Update the FRR port to 7.5 and update pfSense-pkg-frr to use 7.5 new features and other changes and fixes.
- FRR r... Ben Hughes
02:43 PM Bug #11208 (Resolved): pkg_edit uses incorrect description for pkg_edit buttons: As title.
PR: https://github.com/pfsense/pfsense/pull/4494 Ben Hughes
02:42 PM Feature #11207 (Closed): Add watchfrr to routing log: As title
PR: https://github.com/pfsense/pfsense/pull/4493 Ben Hughes
02:14 PM Revision b2bbf523: Add watchfrr to routing log: Ben Hughes
12:21 PM pfSense Packages Bug #11204: Fix net-snmp logging to syslog: PR: https://github.com/pfsense/FreeBSD-ports/pull/1017 Ben Hughes
12:20 PM pfSense Packages Bug #11204 (Resolved): Fix net-snmp logging to syslog: The net-snmp service command currently is set to log to a file rather than to syslog so log output ends up in file @/... Ben Hughes
11:57 AM Bug #11203 (New): certificate manager very slow: Once you get about 50 certificates in Cert Manager, the web page is _very_ slow to load. I'll guess the most common u... Brendon Baumgartner
11:05 AM Bug #11193 (Resolved): IPsec KeyID Not Working on Development Snapshots: Jim Pingle
11:05 AM pfSense Packages Bug #11175 (Feedback): FRR OSPFv6 config missing default area: Fix has been merged in the last commit, will be in snapshots soon. Jim Pingle
12:16 AM pfSense Packages Bug #11175: FRR OSPFv6 config missing default area: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/17 Viktor Gurov
11:04 AM pfSense Packages Feature #10665 (Feedback): Manual OSPF neighbor definitions: There was an issue introduced recently which was not including the neighbor settings in the FRR configuration, I push... Jim Pingle
10:05 AM Bug #11063 (Feedback): PHP error if SMTP notification fails: Applied in changeset commit:87d9798fd37841f7e428809a386fd2cb8f5eefb3. Jim Pingle
09:58 AM Bug #11063: PHP error if SMTP notification fails: Hit this locally and found a good way to test. It's a simple fix. Jim Pingle
09:37 AM pfSense Packages Feature #11155 (New): SafeSearch AAAA: DuckDuckGo fix:
https://github.com/pfsense/FreeBSD-ports/pull/1016 Viktor Gurov
09:19 AM pfSense Packages Feature #11202 (Resolved): Antivirus feature update: 1) Remove Google Safe Browsing feature as it's deprecated/outdated,
see https://blog.clamav.net/2020/06/the-future-o... Viktor Gurov
07:38 AM pfSense Packages Feature #11201: Show iTLD Allow IDN domains: https://github.com/pfsense/FreeBSD-ports/pull/1015 Viktor Gurov
07:34 AM pfSense Packages Feature #11201 (Resolved): Show iTLD Allow IDN domains: Show IDN(UTF8) translated domains in addition to punnycode-encoded domains
see screenshots Viktor Gurov
06:58 AM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: And the 2nd address is in ppp logs...... Aleksandr Mezin
06:33 AM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: Currently, WAN interface IPv6 address is @fe80::201:c0ff:fe2a:b8d7%pppoe0@, and gateway address is @fe80::ea4:2ff:fe5... Aleksandr Mezin
04:29 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Not sure about #10704 as on 2.4.5_p1 it was working correctly. Issue appear right after update to 2.5.0.a.
I have ... DRago_Angel [InV@DER]
04:06 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: I can successfully authenticate with two LDAP backends (FreeIPA + Win2012)
maybe related to #10704 and #9417 Viktor Gurov
03:56 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Also Viktor you mention 2.5.0.a.20201230.0250 version, when for my instance 2.5.0.a.20201127.0650 is reported as late... DRago_Angel [InV@DER]
03:46 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Hi Viktor, when my openvpn server have multiple ldap backends I simply got AUTH_FAIL in logs. Could you please provid... DRago_Angel [InV@DER]
03:40 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: unable to reproduce it on 2.5.0.a.20201230.0250,
I can successfully authenticate to OpenVPN server with a mix of RAD... Viktor Gurov
04:02 AM pfSense Packages Feature #11199: Minor updates: https://github.com/pfsense/FreeBSD-ports/pull/1014 Viktor Gurov
02:50 AM pfSense Packages Feature #11199 (Resolved): Minor updates: 1) Alerts page - add Yandex.DNS (https://dns.yandex.com);
2) Threat lookup page - add Kaspersky and InterServer.net ... Viktor Gurov
03:50 AM pfSense Packages Feature #11200 (New): Squid reverse proxy + multiple ssl certificates: https://forum.netgate.com/topic/94878/squid-reverse-proxy-multiple-ssl-certificates:
I recently have installes som... Viktor Gurov
02:45 AM pfSense Packages Feature #11178: Filer do not ask what to do with previous filename: Also same applies on deletion of entry - when you delete files managed by filer - files doesn't removes. This can be ... DRago_Angel [InV@DER]
01:49 AM pfSense Packages Feature #11178: Filer do not ask what to do with previous filename: User interaction isn't fine fit in general, maybe this can be parameter in per-file settings and be set by default to... DRago_Angel [InV@DER]
02:43 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: Hi Viktor, thank you. Fix for this bug working. Tested:
1. modified file without script action - another files actio... DRago_Angel [InV@DER]
02:11 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: DRago_Angel [InV@DER] wrote:
> Hi Viktor, can you please provide diff -u ? I can check fix and provide feedback. Tha... Viktor Gurov
01:49 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: Hi Viktor, can you please provide diff -u ? I can check fix and provide feedback. Thank you for fix and also wish you... DRago_Angel [InV@DER]
01:41 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: Fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/18 Viktor Gurov
02:07 AM pfSense Packages Bug #11191: Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: BBcan177 . wrote:
> Before you uninstall, you need to uncheck "Keep Settings" in the General Tab.
it doesn't help
... Viktor Gurov
01:44 AM Todo #11198: https://acb.netgate.com/save respond 500 Internal Server Error: Hi Viktor, thanks, tried find any such requests before create one, but not saw this :) DRago_Angel [InV@DER]
01:42 AM Todo #11198 (Duplicate): https://acb.netgate.com/save respond 500 Internal Server Error: Duplicate of #10811 Viktor Gurov
01:30 AM Todo #11198 (Duplicate): https://acb.netgate.com/save respond 500 Internal Server Error: Hi, due to automatic backups on pfsense always done at 00m netgate backups servers is overloaded. Why not change 00 t... DRago_Angel [InV@DER]
12:46 AM pfSense Packages Bug #11108: pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: DRago_Angel [InV@DER] wrote:
> It not pushed to 2.5.0. Last version on pfSense 2.5.0 is 3.0.0_1. Please fix this. Or... Viktor Gurov

12/30/2020

11:51 PM pfSense Packages Bug #11185 (Pull Request Review): Redis service stopping before NtopNg: Viktor Gurov
10:50 PM Bug #11193: IPsec KeyID Not Working on Development Snapshots: Working as expected , "KeyID tag" as My identifier/ Peer identifier
<12> looking for peer configs matching 172.1... Alhusein Zawi
09:58 PM Revision 89d612c7: Fix incorrect description for pkg_edit buttons: Ben Hughes
09:46 PM Revision 28a7c948: Fix diag_dump_states.inc filename. Fixes #11197: Jim Pingle
09:21 PM Revision 112b85ea: Merge pull request #4489 from lepurt/master: Renato Botelho
09:20 PM Revision c2d6f8c9: Merge pull request #4490 from dsmackie/issue-10827: Renato Botelho
09:18 PM Revision 559f965f: Merge pull request #4492 from Augustin-FL/patch-1: Renato Botelho
08:05 PM Revision d4e1fdea: Correct DPD syntax and values. Fixes #11196: Jim Pingle
06:40 PM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Adding 10 ms delay to the pipe seems to fix reordering.
Trying to set both kernel.hz=1000 and delay=1 ms to make a... Alexey Ab
08:14 AM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: I have tested 2.4.2, 2.4.5p1, 2.5 - all versions have this problem.
Setting kernel.hz=1000 instead of 100 does not... Alexey Ab
05:00 PM pfSense Packages Bug #10935: FRR 0.6.7-6 - BGPD service recycled IPv6 without Route Map: 0.6.8 has a *lot* of changes in it, so it's probably not directly relevant.
That config should work though so you'... Ben Hughes
04:55 PM pfSense Packages Bug #11158: FRR Prefix Lists: As long as the configuration is getting generated correctly this is probably an FRR bug, I've run into various 'stran... Ben Hughes
04:52 PM pfSense Packages Bug #11175: FRR OSPFv6 config missing default area: There's a typo in @frr_ospf6.inc@, I'll put a PR in that fixes it shortly. Ben Hughes
04:08 PM Bug #11197: Clicking firewall states leads to php error: Applied with system patches, issue is resolved. Thank you. Florin Samareanu
03:55 PM Bug #11197 (Feedback): Clicking firewall states leads to php error: Applied in changeset commit:28a7c94882de2a14275bcaf99da0872002eac420. Jim Pingle
03:50 PM Bug #11197: Clicking firewall states leads to php error: Is there still time to get this in the next build? Florin Samareanu
03:47 PM Bug #11197: Clicking firewall states leads to php error: Looks like the file was incorrectly named. I pushed a fix.
Jim Pingle
03:11 PM Bug #11197: Clicking firewall states leads to php error: To note that title was supposed to say “php”. Florin Samareanu
03:11 PM Bug #11197 (Resolved): Clicking firewall states leads to php error: Latest 2.5, clicking the state count in firewall-interface leads to an error similar to this:
Crash report begins.... Florin Samareanu
03:35 PM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: I'm not sure what, if anything, strongSwan could do here since it can be solved with settings, but I passed along the... Jim Pingle
12:29 PM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: luckman212 wrote:
> _"why not do the same for these SA lifetimes?"_
I'm still considering exposing those options ... Jim Pingle
12:04 PM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: @jimp What a great find! Seems so logical after reading, but it's one of _those why didn't I think of that_ things. R... → luckman212
11:08 AM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: After more testing I think I may have found the real solution to this, and it's still primarily a settings problem, b... Jim Pingle
03:22 PM Bug #11159 (Feedback): Allow wildcard dns record of type A in the DynDNS client for DNS provider Gandi: PR has been merged. Thanks! Renato Botelho
03:21 PM Bug #10827 (Feedback): Cannot add or delete separators when no rules are present: PR has been merged. Thanks! Renato Botelho
03:20 PM Feature #11171 (Feedback): Remove debug log entries present following "Block additional logins" feature request: PR has been merged. Thanks! Renato Botelho
02:15 PM Bug #11196 (Feedback): IPsec DPD action incorrect on development snapshots: Applied in changeset commit:d4e1fdeabe85d97228f38994b08b5d39f4c706c2. Jim Pingle
02:05 PM Bug #11196 (Resolved): IPsec DPD action incorrect on development snapshots: The DPD action isn't correct in several cases on snapshots (swanctl format). For example:
* "none" is not valid, s... Jim Pingle
01:53 PM pfSense Packages Bug #11135 (Feedback): HAproxy OCSP reponse crontab bug: PR has been merged. Thanks! Renato Botelho
01:47 PM pfSense Packages Bug #5168: squid doesn't function during/after HA failover: Hello
I tested the HA and Squid on the last Dev snapshot version:
2.5.0-DEVELOPMENT (amd64)
built on Wed Dec 30 ... Stefano Mereghetti
09:15 AM pfSense Packages Bug #11194 (Rejected): ACME DNS challenge for dynu.com not deleting all DNS TXT records upon completion: We don't have control over that code, you'd report that upstream to the acme.sh project directly: https://github.com/... Jim Pingle
02:09 AM pfSense Docs New Content #11195 (New): Using a VIP instead of an Interface when Accessing a CPE/Modem from Inside the Firewall: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/modem-access.html
*Feedback:*
This doc seems to say ... Charles Harvey

12/29/2020

11:46 PM pfSense Packages Bug #11194 (Rejected): ACME DNS challenge for dynu.com not deleting all DNS TXT records upon completion: I've had this issue and finally got around to tracking it down this afternoon. I use the ACME package in pfSense to ... Jim Brayton
11:45 PM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Update:
I've tested different pipe bandwidth and same 50 mbit traffic:
85 Mbit pipe - less reorder
185 Mbit pi... Alexey Ab
09:00 PM Revision 170c0f08: IPsec P2 life_time changes. May help with issue #10176: * We currently only set life_time which isn't ideal
* Swanctl format wants rekey_time set, defaults to 1h (3600)
* Ma... Jim Pingle
07:55 PM Revision 6935650a: Load file on pressing 'Enter' key: Steve Beaver
06:54 PM Revision 131b41fc: Correct IPsec secrets section ID type handling. Fixes #11193: Jim Pingle
03:43 PM Revision 9f2439e5: Revise JSON data format when generating a list of states: Steve Beaver
01:00 PM Bug #11193 (Feedback): IPsec KeyID Not Working on Development Snapshots: Applied in changeset commit:131b41fcc1f16037c752b26c6a1036c2d1c5c2de. Jim Pingle
12:51 PM Bug #11193 (Resolved): IPsec KeyID Not Working on Development Snapshots: Configuring a tunnel with an ID type of KeyID fails to connect. In the secrets section of swanctl.conf, the ID is not... Jim Pingle
07:14 AM Bug #11188: MultiWAN setup NAT issue: Update, issue is in:... DRago_Angel [InV@DER]

12/28/2020

08:35 PM Revision 79046c21: Moved diag_dump_states logic to an include file for clarity: Steve Beaver
07:13 PM Revision 0b42c221: Revise diag_arp.php moving control lgic to an include file: Steve Beaver
01:56 PM Feature #10962: Add Cpanel support for Dynamic DNS Clients: You may also get a 500 error from CPanel if you try to update a dynamic DNS record when there is already a static DNS... Jocelyn Viau
01:24 PM Feature #10962: Add Cpanel support for Dynamic DNS Clients: The "Custom" service type works just fine for updating a CPanel Dynamic DNS record.
CPanel will use the IP address... Jocelyn Viau
10:51 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): Jim Pingle wrote:
> Correct. Keep any further discussion on the forum, though.
Thanks. I tried to apply the worka... Kevin Mychal Ong
09:45 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): Correct. Keep any further discussion on the forum, though. Jim Pingle
09:43 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): Jim Pingle wrote:
> It doesn't break policy routing. It breaks filtering of policy based IPsec tunnels (ones using t... Kevin Mychal Ong
09:09 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): It doesn't break policy routing. It breaks filtering of policy based IPsec tunnels (ones using tunnel mode, not VTI). Jim Pingle
09:05 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): Jim Pingle wrote:
> It used to work at one time, if it doesn't work now, it's almost certainly the same root cause a... Kevin Mychal Ong
08:49 AM Bug #11190 (Duplicate): IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): It used to work at one time, if it doesn't work now, it's almost certainly the same root cause as #8686 so doesn't ne... Jim Pingle
08:58 AM Bug #11192 (Feedback): Using Limiters causes out of order packets within one TCP or UDP flow: Have you only tested this on pfSense 2.4.5?
Can you try again on a 2.5.0 development snapshot? Jim Pingle
08:54 AM pfSense Packages Bug #11191: Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: Is there a compelling reason to keep the shell scripts around even if the user didn't choose that? Typically a user w... Jim Pingle
06:21 AM pfSense Packages Bug #10700 (Resolved): not all VPN IPs added with vpnaddresses option: Renato Botelho

12/27/2020

07:37 PM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Forget to mention: I am using VMWare workstation 15.5, 2 core PFsense VM with em adapters. Alexey Ab
07:29 PM Bug #11192 (New): Using Limiters causes out of order packets within one TCP or UDP flow: I am using following limiters:
pipe 1 config bw 85Mb queue 2000 mask all droptail
sched 1 config pipe 1 type qfq... Alexey Ab
11:06 AM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: And now the issue is back with Dec 26 build
Again, IPv6 is working fine, but gateway status shows "Offline, Packet... Aleksandr Mezin
10:45 AM pfSense Packages Bug #11191: Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: Before you uninstall, you need to uncheck "Keep Settings" in the General Tab. BBcan177 .
08:40 AM pfSense Packages Feature #10818: UDP Broadcast Relay: I just came here to say the same, and saw your post Garth. I'm a programmer by profession, but have never built any P... Chetan Rao
08:19 AM pfSense Packages Bug #11108: pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: It not pushed to 2.5.0. Last version on pfSense 2.5.0 is 3.0.0_1. Please fix this. Or this can be another issue that ... DRago_Angel [InV@DER]
02:44 AM Bug #10610: Package upgrade or reinstall hangs indefintely on the console: andreas vesalius wrote:
> Still failing with 3.0.0_5 through 3.0.0_7 pfblocker with latest 2.5 and unbound 1.13 inst... Patrick Shaw

12/26/2020

07:49 PM pfSense Packages Bug #11175: FRR OSPFv6 config missing default area: To work around the issue for now
add the Area to the interface
Services>FRR>OSPF6>Edit>Interfaces:OSPF6 Interfac... Alhusein Zawi
05:50 PM pfSense Packages Bug #11191: Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: Manually removing the two .sh files removes them from the UI, so it appears they are not cleaned up properly on unins... Kris Phillips
05:41 PM pfSense Packages Bug #11191 (Resolved): Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: On reboot after installing and then uninstalling pfBlockerNG, a few shell scripts remain in the shutdown/reboot messa... Kris Phillips
11:40 AM Bug #11190 (Duplicate): IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): I have the same exact problem as this post https://www.reddit.com/r/PFSENSE/comments/cegi8d/ipsec_vti_nat_in_244p3/ a... Kevin Mychal Ong
01:46 AM pfSense Packages Feature #10818: UDP Broadcast Relay: I have found this tool really handy for me so I want to help to make it happen, unfortunately I don't have the progra... Garth Kirkwood

12/25/2020

09:07 AM pfSense Packages Bug #10429: Status Traffic Total broken 2.4.5: Tested on the latest release.
Traffic Totals version - 2.3.2_1
Its functionality is fixed. There are minor com... Danilo Zrenjanin
08:43 AM pfSense Packages Bug #10413 (Resolved): BIND plugins are not copied into chroot: Tested on the latest release.
Bind version 9.16_6. Plugins are automatically copied into /cf/named/usr/local/lib/n... Danilo Zrenjanin

12/24/2020

12:21 PM pfSense Packages Bug #8688 (Resolved): Pass List Snort: Tested on Snort 4.1.2_2 and 4.1.2_4. I see all of my IPsec v4 and v6 addresses in my pass list as well as OpenVPN add... Max Leighton
11:57 AM pfSense Packages Bug #10700: not all VPN IPs added with vpnaddresses option: Tested in Suricata 5.0.4_1 and 6.0.0_4. I'm seeing all of the relevant VPN IPs added to the list. Max Leighton
03:10 AM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: Doesn't happen anymore with Dec 23 build Aleksandr Mezin

12/23/2020

06:44 PM Feature #11189 (New): Captive Portal - Tarpit option: In captive portal settings allow administrator to turn on tarpitting and set delay in seconds or milliseconds. Captiv... Paul Darwin
02:55 PM pfSense Packages Bug #11000: haproxy deprecated trick suggested: It was been deprecated from HAproxy 1.8 if trust manual: https://cbonte.github.io/haproxy-dconv/1.8/configuration.htm... DRago_Angel [InV@DER]
01:55 PM pfSense Packages Bug #11185: Redis service stopping before NtopNg: I wrote basic patch which fix issue in my case:... DRago_Angel [InV@DER]
11:08 AM Bug #10943 (Feedback): boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: I've cherry-picked fix from upstream and it will be available on tomorrow's snapshot Renato Botelho
09:41 AM Bug #10610: Package upgrade or reinstall hangs indefintely on the console: Still failing with 3.0.0_5 through 3.0.0_7 pfblocker with latest 2.5 and unbound 1.13 installed. andreas vesalius
04:10 AM Bug #11188: MultiWAN setup NAT issue: Update:
I have also same issues with NPt IPv6, not only with IPv4 NAT. On 2.4.5 and before it was working fine for b... DRago_Angel [InV@DER]
01:07 AM Bug #11188 (Resolved): MultiWAN setup NAT issue: After updating to 2.5.0.a port forwarding accessible only on active WAN DRago_Angel [InV@DER]

12/22/2020

11:10 PM Bug #11187 (Closed): WAN_DHCP6 down, but IPv6 actually works: pfSense shows WAN_DHCP6 gateway as "Offline, Packetloss". However, IPv6 actually works: I can ping (successfully with... Aleksandr Mezin
12:21 PM pfSense Packages Feature #11186 (Pull Request Review): Allow lo0/Loopback as a valid interface in OSPF/OSPF6: Jim Pingle
12:09 PM pfSense Packages Feature #11186 (Closed): Allow lo0/Loopback as a valid interface in OSPF/OSPF6: PR: https://github.com/pfsense/FreeBSD-ports/pull/1011 Christian McDonald
11:49 AM Bug #11167 (Resolved): Insecure default values for user certificates created via User Manager: Tested on the latest snapshot.
It looks fine now. When creating a new user certificate under System > User Manager... Danilo Zrenjanin
11:14 AM pfSense Packages Bug #11185: Redis service stopping before NtopNg: To note, if run:
if rune something like kill -15 `pgrep ntopng` then ntopng correctly shutting down via SIGTERM and ... DRago_Angel [InV@DER]
10:00 AM pfSense Packages Bug #11185 (Resolved): Redis service stopping before NtopNg: Redis is dependency for NtopNG. It must stop after NtopNG, but it don't. In result when you stop NtopNG via pfSense w... DRago_Angel [InV@DER]
10:58 AM pfSense Packages Bug #11108 (Resolved): pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: Tested on the latest snapshot.
pfBlockerNG version 3.0.0_7.
It works fine.
Ticket resolved. Danilo Zrenjanin
10:28 AM pfSense Packages Feature #6651: Loopback interfaces: PR Review:
https://github.com/pfsense/FreeBSD-ports/pull/1011
This might not completely solve every use-case, b... Christian McDonald
09:13 AM Bug #10943: boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: Christian Ullrich wrote:
> Another one: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=251866
>
> This one has... Renato Botelho
08:35 AM Bug #10943: boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: Another one: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=251866
This one has a good idea of the cause, and a... Christian Ullrich
07:05 AM Bug #11184 (New): PF: State policy cannot be configurable: Hello,
When trying to set PF state policy to "if-bound" instead of "floating", I saw that this parameter had no ef... Yannis Planus
02:05 AM Bug #11183 (Duplicate): Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: On 2.4.5 and from far ago I was used OpenVPN with 2 backends without any issues.
After updating to 2.5.0.a.20201127.... DRago_Angel [InV@DER]

12/21/2020

11:53 PM Bug #9225: Gateway group routing not updated on OpenVPN client reconnect: Sorry, but it is impossible to use beta product in production environment. Alexey Ab
11:21 PM Bug #11174: Incorrect traffic shaping on pppoe interface: Tested upload of 1Gb file to 165 ms RTT server via SFTP on:
2.4.2: Traffic shaping working as expected, bandwid... Alexey Ab
08:49 AM Bug #11174 (Feedback): Incorrect traffic shaping on pppoe interface: Test again on a 2.5.0 snapshot, though it's likely a config or environment issue and not a bug in pfSense Jim Pingle
11:50 AM pfSense Packages Bug #11182 (New): NRPE in HA syncs the bind IP: When using a local interface IP as the bind IP in NPRE 3.1_4, once the primary node resumes master after a failover e... Max Leighton
09:37 AM Bug #11181 (Duplicate): pfSense throws IPsec phase 1 duplicate IP validation error incorrectly: This is already done in the next version. See #10214 Jim Pingle
09:16 AM Bug #11181: pfSense throws IPsec phase 1 duplicate IP validation error incorrectly: Affects version 2.4.5p1 AMD64. Kristopher Kolpin
09:14 AM Bug #11181: pfSense throws IPsec phase 1 duplicate IP validation error incorrectly: To pfSense Redmine Admin: Please sanitize IP address in initial description of this ticket.
Thanks in advance. Kristopher Kolpin
09:10 AM Bug #11181 (Duplicate): pfSense throws IPsec phase 1 duplicate IP validation error incorrectly: In a multi-WAN environment pfSense should allow the use of two Phase 1's that have different origin IP's but the same... Kristopher Kolpin
09:11 AM pfSense Docs Correction #11176: Feedback on Services — DNS Resolver: That doc is due for an update in general. The SSL/TLS options already have an issue requesting an update (#9373) Jim Pingle
08:34 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: Sorry "wan't been modified" -> "wasn't been modified" typo. DRago_Angel [InV@DER]
08:33 AM pfSense Packages Bug #11180 (Feedback): Filer run action for files on sync that wan't been modified: You have for example 2 files:
1. unbound mod.py which then run command: `unbound-control -c /var/unbound/unbound.con... DRago_Angel [InV@DER]
06:57 AM Todo #11179 (Closed): Update OpenSSL to 1.1.1i and to 1.0.2x to fix CVE-2020-1971: The CVE has already been patched in FreeBSD and integrated into snapshots last week.
https://github.com/pfsense/Fr... Jim Pingle
05:37 AM Todo #11179 (Closed): Update OpenSSL to 1.1.1i and to 1.0.2x to fix CVE-2020-1971: Please see details at https://www.openssl.org/news/secadv/20201208.txt and at https://www.openssl.org/news/vulnerabil... DRago_Angel [InV@DER]
05:22 AM pfSense Packages Feature #11178 (New): Filer do not ask what to do with previous filename: When you create file via Filer plugin and after this rename this file you in most cases wait that previous file was b... DRago_Angel [InV@DER]
05:02 AM Feature #11177 (Resolved): Improve Dynamic DNS client IPv6 support: Dynamic DNS with IPv6 simply looking at interface assigned IP, but not try go to http://checkipv6.dyndns.org/ to get ... DRago_Angel [InV@DER]

12/20/2020

03:25 PM pfSense Docs Correction #11176 (Closed): Feedback on Services — DNS Resolver: *Page:* https://docs.netgate.com/pfsense/en/latest/services/dns/resolver.html
*Feedback:*
Affected: 2.4.5-RELEASE... e 1/1

12/19/2020

10:42 PM pfSense Packages Bug #11175 (Resolved): FRR OSPFv6 config missing default area: Configuring default area in OSPF6 main page is not reflecting in configuration *Services>FRR>OSPF6> OSPF6*
route... Alhusein Zawi
12:31 PM Bug #11126: DNS Resolver service not running after updating the pfBlockerNG-devel package: Just updated from 3.0.0_5 to 3.0.0_6 and was again left with no unbound running. (Should I open a completely new bug ... Craig Leres
01:08 AM Bug #8463: Performance Regression in 2.4.3 under KVM: Created https://redmine.pfsense.org/issues/11174 Alexey Ab
12:16 AM Bug #8463: Performance Regression in 2.4.3 under KVM: @Alexey Ab
Please open a new ticket.
This ticket
a) Is closed
b) Is about VirtIO interfaces, not vmxnet3
c... Anonymous
01:06 AM Bug #11174 (Feedback): Incorrect traffic shaping on pppoe interface: I am trying to set up shaping on pppoe WAN interface. Tried both 2.4.4-RELEASE-p1 and 2.4.5-RELEASE-p1 using VMWare W... Alexey Ab

12/18/2020

11:57 PM Bug #8463: Performance Regression in 2.4.3 under KVM: Having the same issue when trying to enable shaping on pppoe WAN interface in both 2.4.4-RELEASE-p1 and 2.4.5-RELEAS... Alexey Ab
08:40 PM Revision 293c7335: Use stronger cert defaults when creating a user cert. Fixes #11167: Jim Pingle
06:23 PM Bug #9123 (Feedback): Adding/configuring vlan on ixl-devices causes aq_add_macvlan err -53, aq_error 14: This particular problem, where adding VLANs generates an error, appears to be solved in the ixl 1.11.9 driver in pfSe... Steve Wheeler
02:50 PM Bug #11167 (Feedback): Insecure default values for user certificates created via User Manager: Applied in changeset commit:293c7335c11ce111624dd551bb81775ba4499481. Jim Pingle
02:34 PM pfSense Packages Bug #11173: Status>Monitoring parameters are hidden by the interactive graph: Not a new problem, it's been like that for a while. Though I don't see an existing entry for it. Jim Pingle
02:29 PM pfSense Packages Bug #11173 (Resolved): Status>Monitoring parameters are hidden by the interactive graph: There is text underneath the graph in Status>Monitoring which should show the system name, time period, resolution, a... Max Leighton
01:27 PM pfSense Docs New Content #11172 (Closed): Interfaces order of 10 Gigabit Quad-Port SFP+ Intel® X710BM2 Card: It's not documented what would be the order of the interface once this card is deployed in XG-1541.
https://docs.n... Danilo Zrenjanin
11:59 AM Bug #8831: Radvd causes latency spikes: After switching from Intel to Realtek I can no longer reproduce the issue. Bianco Veigel
09:48 AM Bug #8831: Radvd causes latency spikes: I can confirm, this issue is still present on 2.5.0-DEV. I'm using VLANs on my Onboard Intel(R) PRO/1000 for LAN and ... Bianco Veigel
09:34 AM Feature #11153: Client Authentication via Certificates for webGUI: I went ahead and I got this working in my environment. Thanks! Tyler Phillippe
07:49 AM Feature #11171 (Pull Request Review): Remove debug log entries present following "Block additional logins" feature request: Jim Pingle
07:47 AM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: Regarding the issue when the other side is Meraki:
This issue is resolved by changing the Phase1 settings to use "Re... Marcos M
06:47 AM pfSense Packages Bug #10507 (Resolved): Unable to use forwarders: Tested on the latest snapshot.
It doesn't add _'zone "." { }'_ anymore, if recursion is set to Yes and there are ... Danilo Zrenjanin
04:10 AM pfSense Packages Bug #10506 (Resolved): Recursion not working on fresh BIND install: Tested on the latest snapshot. It works fine. Ticket resolved. Danilo Zrenjanin
12:06 AM Revision fda3963f: Avoid flooding the logs: A FL

12/17/2020

10:46 PM Bug #9592: VTI interface down because interface number created is greater than ipsec32768: VTI map is created
<vtimaps>
<item>
<reqid>1</reqid>
<index>0</index>
<ifnum>1000</ifnum>
</item>... Alhusein Zawi
06:14 PM Feature #11171: Remove debug log entries present following "Block additional logins" feature request: Sorry, the title of this ticket is not correct
Could you change it by the following? Remove debug logs present fol... A FL
06:12 PM Feature #11171 (Resolved): Remove debug log entries present following "Block additional logins" feature request: Hello,
While implementing #9432, vtkg did enable some debug logs.
I propose to remove some of them, to avoid ge... A FL
03:44 PM pfSense Docs Correction #11170 (Resolved): Feedback on Routing — Static Routes: *Page:* https://docs.netgate.com/pfsense/en/latest/routing/static.html
*Feedback:*
The static routes page where... Chris Linstruth
03:26 PM Feature #11168 (Rejected): Proxy: Provide the ability for an exclusion list: Not possible, as the proxy environment variables in the OS have no support for configuring such a list. Jim Pingle
12:47 AM Feature #11168 (Rejected): Proxy: Provide the ability for an exclusion list: Under System -> Advanced -> Miscellaneous you can add a proxy server for PfSense's outgoing connections. It would be ... Stefan Meurer
10:55 AM Revision deec78dc: Fix separators moving when multiple deleted - Fix #9887 and #6801: Dan Mackie
10:47 AM Revision 9e0c9670: Removed redundant index check: Dan Mackie
10:35 AM Revision 2049173b: Removed unnecessary variable: Dan Mackie
10:22 AM Revision 5b9723fa: Fix for both #9887 and #6801: Dan Mackie
08:09 AM Revision 3e7a04be: Fix separators moving when multiple deleted - Fix #9887: Dan Mackie
06:59 AM Bug #10892: Large number of VLAN/LANs make floating rules are to read: Hello Dan,
I think that is a very good idea! I would advise though to make it something like "All interfaces" as o... Joe Slent
12:37 AM Bug #10892: Large number of VLAN/LANs make floating rules are to read: Happy to push through an enhancement to show "ALL" if all interfaces are selected.
https://github.com/dsmackie/pfs... Dan Mackie
05:44 AM Feature #11169 (New): Changing interface index order: Current configuration operates interface indexes instead of real interfaces, e.g.
wan->igb0
lan->igb1
opt1->igb2
... Constantine Kormashev
04:28 AM Bug #9887: Rule separator positions change when deleting multiple rules: PR: https://github.com/pfsense/pfsense/pull/4491
Fix allows both Jim Pingle's screenshots from this issue and thos... Dan Mackie

12/16/2020

09:33 AM Bug #10827: Cannot add or delete separators when no rules are present: PR has been approved Anonymous
09:09 AM Bug #10827 (Pull Request Review): Cannot add or delete separators when no rules are present: Jim Pingle
03:55 AM Bug #10827: Cannot add or delete separators when no rules are present: PR: https://github.com/pfsense/pfsense/pull/4490 Dan Mackie
09:24 AM Revision 4924f4ae: Fix separators not updating - Issue #10827: - Fixed separator logic to allow adding/deleting separators when no rules are present
- Fixed incorrect dirty assignment Dan Mackie
09:19 AM Revision c8207c6c: Fix separators not updating - Issue #10827: Dan Mackie
07:04 AM pfSense Packages Feature #6651: Loopback interfaces: Any movement on this?
This would be really useful. Currently I'm having to create a dummy vlan on a physical nic ... Christian McDonald
03:58 AM pfSense Packages Bug #11128 (Resolved): pfblockerng 3.0.0_3 not using upstream proxy for curl feed downloads: Tested on:... Danilo Zrenjanin
03:46 AM pfSense Packages Bug #11152 (Resolved): rsync pkg not installed: Tested on:... Danilo Zrenjanin
12:50 AM Feature #7467: Add iPhone/Android/Generic USB tethering support: I was able to get my iphone6s+ on ios13.5 to tether to
SG-3100
2.5.0-DEVELOPMENT (arm)
built on Tue Dec 15 02:56:1... Jordan G

12/15/2020

04:35 PM Feature #10223: Add the ability to create additional loopback interfaces: Looks like a duplicate of: https://redmine.pfsense.org/issues/6651 Steve Wheeler
02:26 PM Bug #11167 (Resolved): Insecure default values for user certificates created via User Manager: When creating a user certificate for a new user under System > User Manager (system_usermanager.php) the default valu... Jim Pingle
12:06 PM pfSense Packages Bug #11166 (Rejected): OpenVPN Client installer behaviour when OpenVPN 2.5 is already installed: The OpenVPN client Windows installer changed to an MSI, nothing we can do about that. Request changes upstream in Ope... Jim Pingle
11:45 AM pfSense Packages Bug #11166 (Rejected): OpenVPN Client installer behaviour when OpenVPN 2.5 is already installed: Former versions of OpenVPN Client Export allowed for the distribution of the installer that handled pre-existing inst... Gregory Guilmette
11:36 AM pfSense Packages Feature #11165 (New): OpenVPN Exporter - Allow for name customization: The Exporter Module creates client configurations that show up in the client workstation with the Netgate/pfSense hos... Gregory Guilmette
09:32 AM Feature #11164: Input validation to prevent setting a load balancing gateway group as default: Reviewing it appears the intended behaviour here is that a load-balance group can be selected but behaves as a failov... Steve Wheeler
07:19 AM Feature #11164 (Resolved): Input validation to prevent setting a load balancing gateway group as default: Currently it's possible to set a load-balance gateway group as the system default gateway in System > Routing > Gatew... Steve Wheeler
09:23 AM Bug #11141 (Pull Request Review): OpenVPN Wizard does not support gateway groups: Renato Botelho
08:57 AM Bug #11141: OpenVPN Wizard does not support gateway groups: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/87 Viktor Gurov
07:22 AM pfSense Packages Bug #11135 (Pull Request Review): HAproxy OCSP reponse crontab bug: Jim Pingle
07:14 AM pfSense Packages Bug #11135: HAproxy OCSP reponse crontab bug: fix:
https://github.com/pfsense/FreeBSD-ports/pull/1006 Viktor Gurov
06:44 AM Bug #3965 (Resolved): dhcp6c started before bridge configured at boot, preventing interface tracking: works as expected on 2.5.0.a.20201215.0250 Viktor Gurov
06:42 AM Bug #5308 (Resolved): Failed Namecheap DDNS updates don't cause an error in the GUI.: works as expected on 2.5.0.a.20201215.0250 Viktor Gurov
05:27 AM pfSense Packages Feature #11155 (Feedback): SafeSearch AAAA: PR haws been merged. Thanks! Renato Botelho
05:27 AM pfSense Packages Bug #11152 (Feedback): rsync pkg not installed: PR haws been merged. Thanks! Renato Botelho
05:24 AM pfSense Packages Bug #11107 (Resolved): pfBlockerNG 3.0.0_1 doesn't have some feeds fixes: OK in pfBlockerNG-devel 3.0.0_5 Viktor Gurov
02:15 AM Bug #11146 (Resolved): Domeneshop DDNS not updating cache IP: Viktor Gurov
02:09 AM Bug #11146: Domeneshop DDNS not updating cache IP: Applied patch (f2b03cdafec3a3c54f311f53ce73b07a10fdece4) with "System/Patches" and can confirm that it's working.
Ba... Idar Lund

12/14/2020

11:42 PM pfSense Packages Feature #11163 (Closed): Preferred Chain option: Add WebGUI option to select Preferred Chain,
see https://github.com/acmesh-official/acme.sh/wiki/Preferred-Chain
Viktor Gurov
11:13 PM Bug #10966: IPv6 - WAN does not renew address when upstream fails: It's still open @Sam McLeod - Not fully fixed yet.
look towards the end of that issue (https://github.com/opnsense/d... → luckman212
10:51 PM Bug #10966: IPv6 - WAN does not renew address when upstream fails: Looks like Opensense has a bugfix for the issue:
* Forum post: https://forum.opnsense.org/index.php?topic=20369.0
... Sam McLeod
10:28 PM Bug #10966: IPv6 - WAN does not renew address when upstream fails: Had another outage caused by PFSense not having the bugfixed dhcp6c client
(refs https://forums.whirlpool.net.au/t... Sam McLeod
03:28 PM Feature #10223: Add the ability to create additional loopback interfaces: Second this.
The current workaround is to create a bogus VLAN on a physical interface and assign these as passive-... Christian McDonald
12:42 PM Feature #4242: Two Factor or OTP Authentication for Admin Interface: I also really want to see this in the Future. Emanuel Persson
10:55 AM pfSense Docs Correction #11162 (Resolved): Feedback on Backup and Recovery — Making Backups in the GUI: *Page:* https://docs.netgate.com/pfsense/en/latest/backup/configuration.html
https://docs.netgate.com/pfsense/en/lat... Viktor Gurov
10:35 AM Revision f2b03cda: Domeneshop DynDNS correct return code check. Fixes #11146: Viktor Gurov
10:35 AM Revision 381f213e: Secondary DDNS server entry for static DHCP mappings. Issue #10224: Viktor Gurov
10:33 AM Revision effd64ce: Namecheap DDNS error code fix. Issue #5308: Viktor Gurov
09:24 AM Bug #10806 (Resolved): armada_thermal fails during device_attach: That would be a separate issue. This was about the hardware error which is OK now.
The temperature is shown in the... Jim Pingle
08:52 AM Bug #10892 (New): Large number of VLAN/LANs make floating rules are to read: Jim Pingle
08:51 AM Bug #11159 (Pull Request Review): Allow wildcard dns record of type A in the DynDNS client for DNS provider Gandi: Jim Pingle
08:42 AM pfSense Docs New Content #11157 (Rejected): Feedback on Firewall — Time Based Rules: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
05:07 AM pfSense Packages Feature #11148 (Closed): Snort Inline mode note: already there after pressing the 'save' button Viktor Gurov
05:02 AM pfSense Docs Correction #11161 (Resolved): Feedback on Virtual Private Networks — IPsec — Routed IPsec (VTI): *Page:* https://docs.netgate.com/pfsense/en/latest/vpn/ipsec/routed-vti.html
*Feedback:*
link to https://www.ne... Viktor Gurov
05:01 AM pfSense Docs Correction #11160 (Resolved): Feedback on Services — SNMP: *Page:* https://docs.netgate.com/pfsense/en/latest/services/snmp.html
*Feedback:*
link to https://www.netgate.c... Viktor Gurov
04:45 AM Bug #11146: Domeneshop DDNS not updating cache IP: Applied in changeset commit:f2b03cdafec3a3c54f311f53ce73b07a10fdece4. Viktor Gurov
04:35 AM Bug #11146 (Feedback): Domeneshop DDNS not updating cache IP: PR has been merged. Thanks! Renato Botelho
04:35 AM Bug #5308 (Feedback): Failed Namecheap DDNS updates don't cause an error in the GUI.: PR has been merged. Thanks! Renato Botelho
04:35 AM Bug #10224 (Feedback): DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: PR has been merged. Thanks! Renato Botelho
02:39 AM Bug #9225: Gateway group routing not updated on OpenVPN client reconnect: Alexey Ab wrote:
> Testing 2.4.5-Release P1.
>
> Automactic switching on reconnecting WAN: working good
> Manual... Viktor Gurov
01:31 AM pfSense Packages Feature #11155: SafeSearch AAAA: Google, Youtube and Pixabay IPv6 (AAAA) SafeSearch:
https://github.com/pfsense/FreeBSD-ports/pull/1005 Viktor Gurov

12/13/2020

11:48 PM Bug #7096: Unbound fails to start on boot if specific network devices are configured in the "Network Interfaces": most likely related to #6507
see also #3965 Viktor Gurov
11:40 PM Feature #6881 (Duplicate): services_unbound_host_edit.php: DNS Resolver Add V4 and V6 host override at the same time: Duplicate of #10896 Viktor Gurov
11:37 PM Feature #10918: IP Aliases de-duplication: pfctl does automatic deduplication,
you can check it with `pfctl -t <table_name> -T show` Viktor Gurov
05:41 PM Revision cb8ecda5: Allow wildcard DNS record of type A in DynDNS client for DNS provider Gandi. Ticket #11159.: Sébastien Trupel
04:22 PM Bug #10892: Large number of VLAN/LANs make floating rules are to read: Hello all,
for me this fix doesn't really solve the problem. It sometimes saves one or two lines but most of the ... Joe Slent
01:00 PM Bug #11159: Allow wildcard dns record of type A in the DynDNS client for DNS provider Gandi: PR : https://github.com/pfsense/pfsense/pull/4489. Sébastien Trupel
11:36 AM Bug #11159 (Resolved): Allow wildcard dns record of type A in the DynDNS client for DNS provider Gandi: Configuring a Dynamic DNS Client for the DNS provider Gandi with a wildcard address record (e.g. "*.example.com", whi... Sébastien Trupel
11:43 AM Bug #10806: armada_thermal fails during device_attach: temp is missing from the separate widget on the dashboard...new issue?
2.5.0-DEVELOPMENT (arm)
built on Sat Dec 1... Jordan G

12/12/2020

11:39 PM Bug #9225: Gateway group routing not updated on OpenVPN client reconnect: Testing 2.4.5-Release P1.
Automactic switching on reconnecting WAN: working good
Manual switching default gateway... Alexey Ab
09:49 PM Bug #10806 (Assigned): armada_thermal fails during device_attach: Jordan G
06:02 PM pfSense Packages Bug #11158 (New): FRR Prefix Lists: Adding any value to *Minimum Prefix box* on Prefix Lists will stop receiving/sending the routes from/to the neighbor ... Alhusein Zawi
05:26 PM Bug #11126: DNS Resolver service not running after updating the pfBlockerNG-devel package: I just upgraded from 3.0.0_3 to 3.0.0_5 and when this process completed no unbound was running and I had to start one... Craig Leres
03:24 PM pfSense Docs New Content #11157 (Rejected): Feedback on Firewall — Time Based Rules: *Page:* https://docs.netgate.com/pfsense/en/latest/firewall/time-based-rules.html
*Feedback:*
How do you do the... Frank Kujawski
02:08 PM Bug #11146: Domeneshop DDNS not updating cache IP: I would very much like to help out in testing the PR/MR, but I don't have access to your internal gitlab. Let me know... Idar Lund

12/11/2020

02:24 PM Feature #10918: IP Aliases de-duplication: You can export the list, use any de-duplication tool, and re-import. Alternatively, if using pfBlockerNG, a custom li... Marcos M
02:19 PM Bug #11126 (Closed): DNS Resolver service not running after updating the pfBlockerNG-devel package: Perhaps this was related to:
https://github.com/pfsense/FreeBSD-ports/commit/41e274ab076412d5c89ca2c0119eaf7ed1fcca4... Marcos M
10:59 AM Todo #10533: Change default domain for new installations from "localdomain" to "home.arpa": Tested in
2.5.0-DEVELOPMENT (amd64)
built on Fri Dec 11 03:05:22 EST 2020
FreeBSD 12.2-STABLE
The default fq... Max Leighton
10:29 AM pfSense Docs New Content #11150: vpn_ipsec_export_win.php missing from help.php: This applies to vpn_ipsec_profile.php (aka IPsec Export: Apple Profile) as well. Additionally, I did a diff between w... Marcos M
10:19 AM pfSense Packages Feature #11156 (New): Add an option include subdomains for the noAAAA feature: Thanks for including the noAAAA feature into pfBlockerNG, it works almost as good as the old python script.
But it's... Grimson Gretzleburg
09:23 AM pfSense Packages Feature #11155 (Resolved): SafeSearch AAAA: SafeSearch DNS redirection doesn't work for AAAA queries,
must be added/fixed:
forcesafesearch.google.com - 200... Viktor Gurov
08:02 AM Bug #11129 (Resolved): Unbound restarts on every openvpn client connection: Tested on:... Danilo Zrenjanin
07:36 AM Feature #11153 (Duplicate): Client Authentication via Certificates for webGUI: Duplicate of #8694 Viktor Gurov
07:18 AM Feature #11153 (Duplicate): Client Authentication via Certificates for webGUI: Hello!
Would it be possible to add the option to allow client certificate authentication to nginx for webGUI? It w... Tyler Phillippe
07:36 AM pfSense Docs Correction #11154 (Closed): Feedback on Cellular Wireless — Known Working 3G-4G Modems: *Page:* https://docs.netgate.com/pfsense/en/latest/cellular/hardware.html
*Feedback:*
For devices such as the H... John Bayly
07:11 AM pfSense Packages Bug #11101: Bind DNS Server won't start: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/16 Viktor Gurov
05:17 AM pfSense Packages Bug #11152: rsync pkg not installed: https://github.com/pfsense/FreeBSD-ports/pull/1003 Viktor Gurov
04:15 AM pfSense Packages Bug #11152 (Resolved): rsync pkg not installed: It's no possible to use RSYNC format feeds because rsync pkg is not installed:... Viktor Gurov
04:09 AM Bug #9154 (Resolved): Editing a VLAN parent interface causes all VLANs to be reconfigured, which can lead to problems: works as expected on 2.5.0.a.20201209.0250 -
changes MTU of child VLAN interfaces without restarting
and keeping th... Viktor Gurov
03:59 AM pfSense Packages Bug #11136 (Resolved): Suricata trashcan icon for interface mapping delete has no effect: Tested on:... Danilo Zrenjanin
03:49 AM Bug #11142: rc.newwanip restarts VPN services when the IP matches: Tested on:... Danilo Zrenjanin

12/10/2020

11:18 PM Bug #11134 (Resolved): VTI interfaces can be added to groups, but rules have no effect: Alhusein Zawi
11:16 PM Bug #11134: VTI interfaces can be added to groups, but rules have no effect: working as expected .
VTI interface is not showing up on interface groups assignment. (removed)
2.5.0.a.20... Alhusein Zawi
06:27 PM Revision fbcfaacd: Correct cert expire threshold default text: Jim Pingle
05:24 PM pfSense Docs Correction #11151 (Closed): avahi_settings.php is missing an entry in help.php: New content needs to be created for avahi_settings.php or possibly link it here: https://docs.netgate.com/pfsense/en/... Jared Dillard
05:23 PM pfSense Docs New Content #11150 (Closed): vpn_ipsec_export_win.php missing from help.php: vpn_ipsec_export_win.php is missing an entry in help.php.
It either needs new content created, or a place to link to. Jared Dillard
03:36 PM Revision 47eff117: Update translation files: Renato Botelho
03:32 PM Revision d13dc8c5: Regenerate pot: Renato Botelho
03:31 PM Revision 573ec19d: Add product_label global variable: Introduce product_label global variable, by default with same value of
product_name. The idea is to make it easier f... Renato Botelho
03:31 PM Revision 0b725069: Remove unused variable: Renato Botelho
03:31 PM Revision cda2ef35: Remove use of deprecated $g['platform']: Renato Botelho
12:08 PM Bug #10610: Package upgrade or reinstall hangs indefintely on the console: When update to pfblocker 3.0.0_2 through 3.0.0_4 on 2.5, it still take forever for the update to apply and then you ... andreas vesalius
10:04 AM Bug #11149: DHCP relay won't start with DHCP server behind gateway: And to be more compete, if I then disable that third interface, the DHCP relay then again won't start(same error). Mark Lavrijsen
10:01 AM Bug #11149 (New): DHCP relay won't start with DHCP server behind gateway: This is the case current 2.5.0 development snapshot as of today.
Configuration:
em0 --> LAN2 --> DHCP relay shoul... Mark Lavrijsen
09:54 AM Bug #8611: unable to receive IPv6 RA's on SG-1000, default route lost: Luiz Souza wrote:
> Jim Pingle wrote:
> > On the 20201208.0803 snapshot I still have to put the interface in promis... Jim Pingle
09:09 AM Bug #8611 (In Progress): unable to receive IPv6 RA's on SG-1000, default route lost: Jim Pingle wrote:
> On the 20201208.0803 snapshot I still have to put the interface in promiscuous mode or it doesn'... Luiz Souza
09:27 AM pfSense Packages Bug #8466: radiusd crash: able to reproduce:... Viktor Gurov
06:09 AM pfSense Packages Bug #8466: radiusd crash: Same here on 2.4.5-RELEASE-p1 (amd64) - a nice way of locking yourself out of pfSense :-( Yury Zaytsev
09:14 AM Bug #5308 (Pull Request Review): Failed Namecheap DDNS updates don't cause an error in the GUI.: Jim Pingle
06:47 AM Bug #5308: Failed Namecheap DDNS updates don't cause an error in the GUI.: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/86 Viktor Gurov
09:07 AM Bug #10224 (Pull Request Review): DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: Jim Pingle
01:20 AM Bug #10224: DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: add Secondary DDNS field:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/84 Viktor Gurov
09:05 AM Bug #11146 (Pull Request Review): Domeneshop DDNS not updating cache IP: Jim Pingle
06:47 AM Bug #11146: Domeneshop DDNS not updating cache IP: Viktor Gurov wrote:
> Fix:
> https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/83
that was a really qu... Idar Lund
12:09 AM Bug #11146: Domeneshop DDNS not updating cache IP: Fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/83 Viktor Gurov
06:32 AM pfSense Packages Feature #11113 (Feedback): New phishing feeds: PR has been merged. Thanks! Renato Botelho
06:32 AM pfSense Packages Bug #11128 (Feedback): pfblockerng 3.0.0_3 not using upstream proxy for curl feed downloads: PR has been merged. Thanks! Renato Botelho
05:09 AM Bug #9506: Dynamic DNS update notification sent even if IP address didn't change: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/85 Viktor Gurov
12:59 AM pfSense Packages Feature #11148 (Closed): Snort Inline mode note: It would be better to add a note about Inline mode rule actions,
from https://forum.netgate.com/topic/143812/snort-p... Viktor Gurov

12/09/2020

11:47 PM Bug #11147: Domeneshop DynDNS IPv4 and IPv6: This is Domeneshop bug, see https://api.domeneshop.no/docs/index.html#tag/ddns:
A DNS record for the given hostname ... Viktor Gurov
12:55 PM Bug #11147: Domeneshop DynDNS IPv4 and IPv6: Jostein Hove-Henriksen wrote:
> When using both "Domeneshop" and "Domeneshop (v6)", the first one is overwritten by ... Jostein Hove-Henriksen
09:58 AM Bug #11147: Domeneshop DynDNS IPv4 and IPv6: Log (anonymized) :
Dec 9 16:49:09 check_reload_status 372 Syncing firewall
Dec 9 16:49:09 php-fpm 334 /serv... Jostein Hove-Henriksen
09:37 AM Bug #11147 (New): Domeneshop DynDNS IPv4 and IPv6: When using both "Domeneshop" and "Domeneshop (v6)", the first one is overwritten by the last. and vice versa...
Do... Jostein Hove-Henriksen
02:21 PM Revision 8411851a: Remove (harmless) double / in file path: Steve Beaver
01:55 PM Revision c1f0a583: Fixed #11144 by verifying correct generation of userkey: Steve Beaver
09:07 AM Bug #11146 (Resolved): Domeneshop DDNS not updating cache IP: Background information: https://redmine.pfsense.org/issues/10826 and https://github.com/pfsense/pfsense/pull/4420
... Idar Lund
08:46 AM Bug #11143 (Resolved): VXLAN interfaces are not available as a VLAN parent: This looks good now:... Steve Wheeler
07:54 AM Bug #10960 (Resolved): Bring up VXLANs correctly at boot: This looks good now.
Can create new interfaces. Can create interfaces out of sequence: where vxlan0 and vxlan2 exi... Steve Wheeler
02:00 AM pfSense Docs Correction #11145 (Duplicate): Screenshots in "Virtualizing pfSense with Hyper-V" recipe are incorrect and outdated: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/virtualize-hyper-v.html
*Feedback:*
Regarding the sect... Anonymous

12/08/2020

05:23 PM Revision af757ecb: Allow to select VXLAN interfaces for VLAN. Fixes #11143: Viktor Gurov
03:04 PM Revision b5b74870: Do not restart Unbound on OpenVPN client connection. Implemets #11129: Viktor Gurov
02:56 PM Revision 27f89b06: Do not run rc.newwanip if received DHCP address has not changed. Fixes #11142: Viktor Gurov
02:53 PM Revision 7a2fb6e9: Hide VTI interfaces from Interface Group member list. Issue #11134: Viktor Gurov
01:00 PM pfSense Docs Correction #11127 (Resolved): Add Documentation on PPPoE Single Queue Limitations: I added a warning to the PPPoE config section in the docs, and noted the affected hardware in the tuning doc.
http... Jim Pingle
12:38 PM Bug #8611 (New): unable to receive IPv6 RA's on SG-1000, default route lost: On the 20201208.0803 snapshot I still have to put the interface in promiscuous mode or it doesn't receive an IPv6 def... Jim Pingle
01:27 AM Bug #8611 (Feedback): unable to receive IPv6 RA's on SG-1000, default route lost: Fixed. Multicast address are enabled by default now.
Please test with the next snapshot. Luiz Souza
11:40 AM Bug #11143: VXLAN interfaces are not available as a VLAN parent: Applied in changeset commit:af757ecb7c92c290d8feeb65117c75eb002c65e1. Viktor Gurov
11:35 AM Bug #11143 (Feedback): VXLAN interfaces are not available as a VLAN parent: PR has been merged. Thanks! Renato Botelho
11:25 AM Bug #11143: VXLAN interfaces are not available as a VLAN parent: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/82 Viktor Gurov
11:01 AM Bug #11143 (Resolved): VXLAN interfaces are not available as a VLAN parent: When creating a new VLAN you cannot add it to a VXLAN which is required for intended functionality of VXLANs.
Assi... Steve Wheeler
10:34 AM pfSense Docs Correction #11120 (Resolved): Feedback on Troubleshooting — Troubleshooting Disk and Filesystem Issues: Added: https://gitlab.netgate.com/docs/pfSense-book/-/commit/24a143e68f13f2289d784ee0807152ae8f3b486f Jim Pingle
09:26 AM pfSense Docs Correction #11112 (Resolved): "Preserve switch configuration" option is not documented: Added:
https://gitlab.netgate.com/docs/pfSense-book/-/commit/a5c981bd7ee03bd34a34531b3dcd96882c41d5f4 Jim Pingle
09:05 AM Bug #11129 (Feedback): Unbound restarts on every openvpn client connection: PR has been merged. Thanks! Renato Botelho
09:05 AM Bug #11142: rc.newwanip restarts VPN services when the IP matches: Applied in changeset commit:27f89b066752d433844279d3101f01cb64057c7b. Viktor Gurov
08:56 AM Bug #11142 (Feedback): rc.newwanip restarts VPN services when the IP matches: PR has been merged. Thanks! Renato Botelho
08:20 AM Bug #11142: rc.newwanip restarts VPN services when the IP matches: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/81 Viktor Gurov
08:03 AM Bug #11142 (Resolved): rc.newwanip restarts VPN services when the IP matches: If DHCP on WAN interface receives the same IP, rc.newwanip restarts all services:
https://github.com/pfsense/pfsense... Viktor Gurov
09:04 AM Bug #10806 (Resolved): armada_thermal fails during device_attach: Looks good here, too. Jim Pingle
08:53 AM Bug #11134 (Feedback): VTI interfaces can be added to groups, but rules have no effect: PR has been merged. Thanks! Renato Botelho
08:52 AM Bug #10960 (Feedback): Bring up VXLANs correctly at boot: PR has been merged. Thanks! Renato Botelho
08:38 AM Feature #11125 (Pull Request Review): Kernel module for RTL8153 driver: Renato Botelho
07:21 AM Bug #11141 (Resolved): OpenVPN Wizard does not support gateway groups: When creating an OpenVPN Tunnel using Wizard user cannot chose a gateway group to be the tunnel interface. After fin... Renato Botelho
02:24 AM Feature #11140 (Closed): Allow the firewall to use DNS servers provided to an OpenVPN client instance: current /usr/local/sbin/ovpn-linkup script doesn't use OpenVPN-pushed DNS servers,
you need to catch them in the log... Viktor Gurov
12:28 AM Bug #9437 (Resolved): Captive Portal Bandwidth Limiter application issue (Credentials Vs. MacAddr Validation): works as expected on 2.5.0.a.20201207.0250 Viktor Gurov

12/07/2020

04:25 PM Bug #10966: IPv6 - WAN does not renew address when upstream fails: Can't find if this is being tracked elsewhere now but it's still an issue.
Last night all PFSense users in the sta... Sam McLeod
04:25 PM Bug #6691: dhcp6c quits after only two tries if no response was received: Had the issue again this morning, still a problem whenever ipv6 link goes down for more than a few seconds PFsense fa... Sam McLeod
12:38 PM Feature #7767: OCSP support for OpenVPN server: I'm poking around the code for this and have a question - is it possible to have both OCSP checking and user/password... Orion Poplawski
12:30 PM pfSense Docs Correction #11139 (New): Bridges and VLANs: When you add an interface to a bridge you can no longer use VLANs on that interface. This is the expected behaviour s... Steve Wheeler
10:05 AM pfSense Packages Bug #11136: Suricata trashcan icon for interface mapping delete has no effect: 2.4.5 fix:
https://github.com/pfsense/FreeBSD-ports/pull/1001 Viktor Gurov
07:28 AM pfSense Packages Bug #11136 (Feedback): Suricata trashcan icon for interface mapping delete has no effect: PR has been merged. Thanks! Renato Botelho
01:43 AM pfSense Packages Bug #11136: Suricata trashcan icon for interface mapping delete has no effect: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/1000 Viktor Gurov
08:28 AM pfSense Packages Feature #11138 (New): new WebGUI checkboxes needed: New WebGUI checkboxes needed for these files:
/usr/local/etc/raddb/mods-config/files/authorize
/usr/local/etc/raddb... pf Driver
08:09 AM Feature #11137 (Rejected): Move logout to last in the menu: We've considered this is the past and decided against it. Jim Pingle
08:03 AM Feature #11137 (Rejected): Move logout to last in the menu: Move the logout link in System to be the last in the dropdown. Fitz G
07:31 AM Bug #10960 (Pull Request Review): Bring up VXLANs correctly at boot: Jim Pingle
12:26 AM Bug #10960: Bring up VXLANs correctly at boot: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/79 Viktor Gurov
07:28 AM Bug #11134: VTI interfaces can be added to groups, but rules have no effect: Updated subject. The underlying problem already has its own Redmine issue ( #8686 ) but this can be used for removing... Jim Pingle
03:04 AM Bug #11134: VTI interfaces can be added to groups, but rules have no effect: better hide VTI interfaces, see #8686
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/80 Viktor Gurov
04:52 AM Bug #11122 (Resolved): Bridge STP priority/cost error: works as expected on 2.5.0.a.20201206.0250 Viktor Gurov
03:17 AM Bug #11106 (Resolved): idn_to_ascii() with URL/URLTable aliases incorrect behavior: works as expected on 2.5.0.a.20201206.0250 -
now it only converts IDN for host type aliases Viktor Gurov
01:13 AM pfSense Packages Bug #7271: Co-existence of unbound and BIND/named: Max Leighton wrote:
> Testing with bind 9.16_6 the default control port is still showing as 953 and conflicting wit... Viktor Gurov
12:38 AM Revision 1e4ca804: Pass correct parameter to create a new VXLAN interface.: Steve Wheeler

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

01/05/2021

01/04/2021

01/03/2021

01/02/2021

01/01/2021

12/31/2020

12/30/2020

12/29/2020

12/28/2020

12/27/2020

12/26/2020

12/25/2020

12/24/2020

12/23/2020

12/22/2020

12/21/2020

12/20/2020

12/19/2020

12/18/2020

12/17/2020

12/16/2020

12/15/2020

12/14/2020

12/13/2020

12/12/2020

12/11/2020

12/10/2020

12/09/2020

12/08/2020

12/07/2020