Activity

30 days up to

User

Subprojects

Activity

From 12/19/2020 to 01/17/2021

01/17/2021

03:46 PM Bug #10919: Improve handling of OpenVPN data cipher negotiation options: The OpenVPN Server Wizard doesn't seem to be updated to reflect these changes. When running through the Wizard the fi... Max Leighton
07:09 AM Bug #11256 (Rejected): Cannot add alias with multiple URLs: When adding an URL alias with multiple URLs, only the last URL ever gets resolved.
*Expected behavior:* every URL ... Andreas Lindhé
03:21 AM Feature #11207: Add watchfrr to routing log: Are you saying there's something not working? As that output looks as expected to me. Ben Hughes

01/16/2021

09:10 PM Bug #11255 (Rejected): ipv6 unable to get delegation: I have a netgear cm1000 modem and for some reason with pfsense I cannot get an IPV6 allocation. I have plugged in my ... William Warren
06:44 PM Feature #11207: Add watchfrr to routing log: Status>System Logs>System >Routing :
Jan 17 00:34:04 watchfrr 75512 watchfrr 7.5 starting: vty@0
Jan 17 00:34:04 ... Alhusein Zawi
03:21 PM Bug #9643: Limiters do not function properly on 2.5 snapshots: I've tested FQ_CODEL Too, but not working.
i have dual wan setup, and i have 4 different limiters (2) for every wan ... Samuel Hanna
02:29 PM pfSense Packages Feature #11233: Add 'Allow IP options' interface fw rule note: The Note has been added.
2.5.0.a.20210115.2350 pimd 0.0.3_4
Alhusein Zawi
10:56 AM Bug #11254: Some OpenVPN configuration files remain after deleting an instance: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/96 Viktor Gurov
10:09 AM Bug #11254 (Resolved): Some OpenVPN configuration files remain after deleting an instance: If you delete OpenVPN Server/Client in the WebGUI, no all config files/directories will be deleted:... Viktor Gurov
06:38 AM pfSense Packages Bug #4088: Buggy squidgurd config file is created: > 1) Do not write out sources for disabled ACLs, or squidguard treats these
sources as "always pass"!
fix:
https... Viktor Gurov
05:45 AM pfSense Docs Correction #11253 (Resolved): Feedback on Multiple WAN Connections — Load Balancing and Failover with Gateway Groups: *Page:* https://docs.netgate.com/pfsense/en/latest/multiwan/load-balance-and-failover.html
*Feedback:*
Minor typo... Garry Page
04:26 AM Bug #11249 (Resolved): openvpn peer to peer shared key deprecated warning: works as expected on 2.5.0.a.20210115.2350 Viktor Gurov
03:55 AM Feature #7467 (Resolved): Add iPhone/Android/Generic USB tethering support: works as expected with Android:... Viktor Gurov
03:39 AM pfSense Packages Bug #11252 (Duplicate): Error importing UT1 blacklist: Duplicate of #3085 Viktor Gurov
01:53 AM pfSense Packages Bug #11252 (Duplicate): Error importing UT1 blacklist: errors on importing ftp://ftp.ut-capitole.fr/pub/reseau/cache/squidguard_contrib/blacklists.tar.gz DB (used by pfBloc... Viktor Gurov
03:38 AM pfSense Packages Bug #3085: squidguard: problems when importing a blacklist archive containing soft-links: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/26 Viktor Gurov
01:39 AM pfSense Packages Bug #6378 (Resolved): inline background styles in squidguard package: works as expected Viktor Gurov
01:39 AM pfSense Packages Bug #9364 (Resolved): squidguard int error page does not use https: works as expected:... Viktor Gurov
12:44 AM pfSense Packages Feature #7903: Duo ssh package: duo_unix is already in the port collection:
https://www.freshports.org/security/duo/ Viktor Gurov

01/15/2021

09:01 PM Bug #10680 (Resolved): Improve interface caching when we have many interfaces: I was able to test this in 2.4.5p1 and 2.5. Boot time and GUI navigation speeds with 400 VLANs are significantly incr... Max Leighton
09:00 PM Feature #10972 (Resolved): Add IPv6 DDNS support for easyDNS: Unable to test that this is working. I'll mark resolved since there is no recent feedback. Max Leighton
04:32 PM pfSense Packages Feature #11186: Allow lo0/Loopback as a valid interface in OSPF/OSPF6: Just enable connected redistribution and they’ll be redistributed into OSPF. Then use route-map/access-list to filter... Ben Hughes
04:04 PM Revision d9f8094b: Blacklist => Blocklist, Whitelist => Pass list: Steve Beaver
03:38 PM Bug #8070 (Closed): IKEv2 IPSec tunnel under load crashes pfSense when AES-NI is enabled: Seems this is the same as:
https://redmine.pfsense.org/issues/8961
https://redmine.pfsense.org/issues/8964
Closi... Marcos M
03:11 PM Todo #11020 (Resolved): Update OpenVPN to 2.5.0: Jim Pingle
03:10 PM Revision a2ba5b6c: OpenVPN genkey secret command fix. Issue #11249: Viktor Gurov
02:23 PM Revision a847ee75: Revert "Do not build drm2 kernel module, we want drm-mod from ports": This reverts commit a8a1fb54b706f8f320b130bb3a4a9d290089f5f4. Renato Botelho
02:23 PM Revision 67d1f4f8: Revert "Revert "Remove drm-kmod"": This reverts commit d52832b5c4c195614d2826f772166c253390222f. Renato Botelho
12:23 PM pfSense Docs Correction #11244: Feedback on Packages — Nut package: This link: https://forum.netgate.com/topic/102959/nut-package
The package info link was changed last week to a doc... Denny Page
11:09 AM pfSense Docs Correction #11244: Feedback on Packages — Nut package: Denny Page wrote:
> *Page:* https://docs.netgate.com/pfsense/en/latest/packages/nut.html
>
> *Feedback:*
>
> M... Michael Spears
11:08 AM Bug #11250: disabled FTP-Proxy service starts on boot: It's there and working, but you may not have access as it's not a public copy of the repository. Jim Pingle
11:03 AM Bug #11250: disabled FTP-Proxy service starts on boot: Viktor Gurov wrote:
> https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/25
Unable to view this li... Michael Spears
05:34 AM Bug #11250: disabled FTP-Proxy service starts on boot: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/25 Viktor Gurov
05:30 AM Bug #11250 (Resolved): disabled FTP-Proxy service starts on boot: after disabling FTP-Proxy in the WebGUI rc file is not deleted
and the service starts at boot Viktor Gurov
10:19 AM Bug #11251: Alias JS validation rejects  193.122.208.0/20: I tried in Chrome and I do not have an issue. I scrubbed the text in notepad to make sure there is not html being pa... Kristopher Kolpin
10:15 AM Bug #11251: Alias JS validation rejects  193.122.208.0/20: That's what I used, same version, on Linux Mint and Windows 10.
Maybe a browser add-on or similar, something cache... Jim Pingle
10:13 AM Bug #11251: Alias JS validation rejects  193.122.208.0/20: Can you try latest Firefox 84.0.2 64-bit? Kristopher Kolpin
10:10 AM Bug #11251 (Not a Bug): Alias JS validation rejects  193.122.208.0/20: Must be something in your browser. I can't replicate this on 2.4.5-p1 or 2.5.0 on amd64 or ARM. The provided value wo... Jim Pingle
10:04 AM Bug #11251 (Not a Bug): Alias JS validation rejects  193.122.208.0/20: Hi Everyone,
Got a weird issue here. The validation in Alias' does not seem to like CIDR range  193.122.208.0/20.... Kristopher Kolpin
09:40 AM pfSense Packages Bug #11247 (Rejected): pfBlockerNG DNSBL service refused to start: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
04:38 AM pfSense Packages Bug #11247: pfBlockerNG DNSBL service refused to start: khaled osama wrote:
> pfBlockerNG DNSBL service refused to start
>
> [2.5.0-DEVELOPMENT]/root: /usr/local/etc/rc... khaled osama
09:10 AM Bug #11249 (Feedback): openvpn peer to peer shared key deprecated warning: PR has been merged. Thanks! Renato Botelho
07:29 AM Bug #11249: openvpn peer to peer shared key deprecated warning: another deprecated option:
https://community.openvpn.net/openvpn/wiki/DeprecatedOptions#Option:--route-nopull
https... Viktor Gurov
07:15 AM Bug #11249: openvpn peer to peer shared key deprecated warning: Fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/95
see https://community.openvpn.net/openvpn/wik... Viktor Gurov
05:09 AM Bug #11249 (Resolved): openvpn peer to peer shared key deprecated warning: 2.5.0-DEVELOPMENT (amd64)
built on Thu Jan 07 21:49:54 EST 2021
FreeBSD 12.2-STABLE
create a new openvpn server ... Manuel Piovan
08:13 AM Bug #10224 (Resolved): DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: works as expected on 2.5.0.a.20210114.2350
dhcpd.conf example:... Viktor Gurov
05:32 AM pfSense Packages Bug #11236 (Resolved): A Link to the Virtual IP setup doesn't work under Frontend setup: Tested on the latest snapshot. It works fine. Ticket resolved. Danilo Zrenjanin
04:12 AM pfSense Packages Feature #11248: SafeSearch update: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/24 Viktor Gurov
03:45 AM pfSense Packages Feature #11248 (Resolved): SafeSearch update: Add Ecosia and Onesearch safesearch support
see also https://github.com/serv-inc/safe-search Viktor Gurov
03:44 AM pfSense Packages Bug #11246 (Closed): Squid Reverse proxy 'https_port option cert=' startup error: Manual squid configuration issue Viktor Gurov
03:42 AM pfSense Packages Feature #11060: Block access to consumer Google accounts: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/23 Viktor Gurov

01/14/2021

11:12 PM pfSense Packages Bug #11234: Filer not create missing necessary folders: recursive mkdir fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/22
> Also here is question... Viktor Gurov
11:10 PM pfSense Packages Bug #11247 (Rejected): pfBlockerNG DNSBL service refused to start: pfBlockerNG DNSBL service refused to start
[2.5.0-DEVELOPMENT]/root: /usr/local/etc/rc.d/pfb_dnsbl.sh restart
2... khaled osama
03:02 PM Feature #11243: individual pfctl snort2c tables per interface only blocking IPs for specific interface when a rule triggers in snort/suricata: I understand better now. I am not against having unique blocking tables for each interface, but implementing that req... Bill Meeks
01:15 PM Revision 16ea962d: Static DHCP mappings DDNS tabs fix. Issue #10224: Viktor Gurov
12:20 PM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries: I just registered here to say that I believe I'm experiencing this exact bug (see https://forum.netgate.com/topic/159... Max Knabe
08:19 AM pfSense Packages Bug #11185 (Feedback): Redis service stopping before NtopNg: PR has been merged. Thanks! Renato Botelho
08:08 AM Bug #1635 (Resolved): timeout setting on firewall rules does not work for UDP: works as expected on 2.5.0.a.20210113.0250 -
pfctl successfully loads rules with `udp.multiple` and `other.multiple... Viktor Gurov
07:42 AM pfSense Packages Bug #11055 (Feedback): Insecure FreeRADIUS defaults: PR has been merged. Thanks! Renato Botelho
07:37 AM Bug #10224 (Feedback): DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: Merged Renato Botelho
07:36 AM Bug #10224 (Pull Request Review): DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: Jim Pingle
07:17 AM Bug #10224: DHCP DDNS does not add zone entries for keys when using static host DDNS definitions: minor tabs fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/94 Viktor Gurov
07:34 AM pfSense Packages Feature #11202 (Feedback): Antivirus feature update: PR has been merged. Thanks! Renato Botelho
04:43 AM pfSense Packages Feature #11202: Antivirus feature update: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/21 Viktor Gurov
07:34 AM pfSense Packages Feature #10541 (Feedback): Squid failover and load balancing: PR has been merged. Thanks! Renato Botelho
06:45 AM pfSense Packages Bug #11246 (Closed): Squid Reverse proxy 'https_port option cert=' startup error: https://forum.netgate.com/topic/159859/squid-version-4-10-cant-start-service:... Viktor Gurov
06:25 AM pfSense Packages Feature #11233 (Feedback): Add 'Allow IP options' interface fw rule note: PR has been merged. Thanks! Renato Botelho
06:11 AM pfSense Packages Bug #11236 (Feedback): A Link to the Virtual IP setup doesn't work under Frontend setup: PR has been merged. Thanks! Renato Botelho
06:09 AM Bug #11237: Incorrect copyright year: Tested on the latest snapshot.
It looks fine.
Ticket resolved. Danilo Zrenjanin
06:09 AM Bug #11237 (Resolved): Incorrect copyright year: Danilo confirmed it's OK Renato Botelho
05:23 AM Bug #11237: Incorrect copyright year: Alhusein Zawi wrote:
> it is still 2020 (attached)
>
> 2.5.0.a.20210113.0250
This one comes from Prodtrack an... Renato Botelho

01/13/2021

11:10 PM pfSense Docs Correction #11245 (Resolved): Feedback on Virtual Private Networks — IPsec — IPsec Configuration: *Page:* https://docs.netgate.com/pfsense/en/latest/vpn/ipsec/configure.html
*Feedback:*
Description of the Dyna... Viktor Gurov
05:09 PM Revision d52832b5: Revert "Remove drm-kmod": This reverts commit 86afee72c80bee8dd09a40fc801fe718044794a9. Renato Botelho
05:08 PM Revision a8a1fb54: Do not build drm2 kernel module, we want drm-mod from ports: Renato Botelho
04:34 PM Bug #11237: Incorrect copyright year: it is still 2020 (attached)
2.5.0.a.20210113.0250 Alhusein Zawi
03:51 PM Feature #4821: PPPoE WANs do not take full advantage of NIC driver queues for receiving traffic: Can we get some kind of CAPTCHA on here to rid ourselves of this polluting junk?? → luckman212
01:14 PM pfSense Packages Feature #11233: Add 'Allow IP options' interface fw rule note: I've added the note.
https://github.com/pfsense/FreeBSD-ports/pull/1027 Danilo Zrenjanin
04:41 AM pfSense Packages Feature #10541: Squid failover and load balancing: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/20 Viktor Gurov
04:35 AM Feature #11243: individual pfctl snort2c tables per interface only blocking IPs for specific interface when a rule triggers in snort/suricata: Bill, thank you for getting back to me that fast!
Indeed you are correct with you summary. A main challenge is the d... Felix S
12:41 AM Todo #204 (Resolved): All write_config() statements should include a reason of some sort: tested on 2.5.0.a.20210112.0250
all write_config() calls have messages Viktor Gurov
12:00 AM pfSense Docs Correction #11244 (Resolved): Feedback on Packages — Nut package: *Page:* https://docs.netgate.com/pfsense/en/latest/packages/nut.html
*Feedback:*
Might want to maintain a link ... Denny Page

01/12/2021

11:30 PM Bug #11142 (Resolved): rc.newwanip restarts VPN services when the IP matches: Alhusein Zawi wrote:
> Danilo Zrenjanin wrote:
>
> ipsec tunnel will be restarted if you hit apply at any interfa... Viktor Gurov
11:04 PM pfSense Packages Feature #11113 (Resolved): New phishing feeds: Viktor Gurov
08:06 PM Feature #11243: individual pfctl snort2c tables per interface only blocking IPs for specific interface when a rule triggers in snort/suricata: I'm not sure I completely understand your request reasoning. In a typical default installation of the IDS packages al... Bill Meeks
09:25 AM Feature #11243 (New): individual pfctl snort2c tables per interface only blocking IPs for specific interface when a rule triggers in snort/suricata: Feature Request Background:
The snort2c table is used for blocking any connections to any IP address which is put in... Felix S
07:56 AM Bug #11242 (Rejected): virtual ip alias prefix gets removed from routing table after 1 min: I cannot reproduce this here, there must be some other problem in your environment causing the behavior you have obse... Jim Pingle
05:37 AM Bug #11242 (Rejected): virtual ip alias prefix gets removed from routing table after 1 min: We have a virtual ip alias called 192.168.100.254/24, when i add it then it adds 192.168.100.0/24 to the routing tabl... Daniel Frantzen
06:14 AM pfSense Packages Todo #11215 (Resolved): Update NtopNG to 4.2: Renato Botelho
03:56 AM pfSense Packages Todo #11215: Update NtopNG to 4.2: Thank you DRago_Angel [InV@DER]
02:09 AM pfSense Packages Bug #11101 (Resolved): Bind DNS Server won't start: Tested on 2.4.5_p1 and on 2.5-DEVELOPMENT (built on Mon Jan 11 11:12:41 EST 2021).
On 2.4.5_p1 (Bind package versi... Azamat Khakimyanov

01/11/2021

05:50 PM Revision e733f5b2: DHCPD ARPA zone trailing dot. Fixes #11224: Viktor Gurov
04:49 PM Feature #9703: Certificate Manager Expiration Notification: Orion Poplawski wrote:
> I just got hit by this as well. Notification email is definitely needed. Thanks.
I can... DRago_Angel [InV@DER]
04:33 PM Feature #9703: Certificate Manager Expiration Notification: I just got hit by this as well. Notification email is definitely needed. Thanks. Orion Poplawski
12:55 PM pfSense Docs Correction #11241: Feedback on Backup and Recovery — Restoring from Backups: This is the case when restoring an OpenVPN configuration. I'm unsure what other areas it may apply to. Marcos M
12:54 PM pfSense Docs Correction #11241 (Resolved): Feedback on Backup and Recovery — Restoring from Backups: *Page:* https://docs.netgate.com/pfsense/en/latest/backup/restore.html
*Feedback:*
On the "Restore area" section ... Marcos M
12:00 PM Bug #11224: dhcpd.conf creation - zone declarations: Applied in changeset commit:e733f5b2d0d35b68746efe8035af1688dfdd0103. Viktor Gurov
11:51 AM Bug #11224 (Feedback): dhcpd.conf creation - zone declarations: PR has been merged. Thanks! Renato Botelho
11:55 AM Bug #11237 (Feedback): Incorrect copyright year: Fixed Renato Botelho
11:53 AM pfSense Packages Todo #11215 (Feedback): Update NtopNG to 4.2: It happened automagically when I merged 2021Q1 quarterly branch into FreeBSD-ports Renato Botelho
11:48 AM Todo #11020: Update OpenVPN to 2.5.0: >Exported what from 2.4.5-p1? The client config? Or the pfSense configuration?
Exported the server config from 2.4... Marcos M
10:59 AM Todo #11020: Update OpenVPN to 2.5.0: Exported what from 2.4.5-p1? The client config? Or the pfSense configuration?
The client export package wouldn't h... Jim Pingle
10:34 AM Todo #11020: Update OpenVPN to 2.5.0: Thanks for the detailed response Jim.
> If the user had exported a configuration in the past it shouldn't end up a... Marcos M
08:38 AM Todo #11020: Update OpenVPN to 2.5.0: Marcos Mendoza wrote:... Jim Pingle
10:40 AM pfSense Packages Bug #10749 (Resolved): squid + captive portal authentication not working: Tested on 2.4.5_p1 (Squid package: 0.4.44_36) and on 2.5-DEV (built on Thu Jan 07 21:49:58 EST 2021) (Squid package: ... Azamat Khakimyanov
09:43 AM Bug #6030 (Resolved): Duplicated tracker IDs on block private networks rules: Jim Pingle
09:43 AM Bug #7307 (Closed): ZFS installer - shuts down instead of rebooting: Jim Pingle
09:20 AM Bug #6025 (Resolved): Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: Jim Pingle
08:58 AM pfSense Packages Bug #11236 (Pull Request Review): A Link to the Virtual IP setup doesn't work under Frontend setup: Jim Pingle
08:56 AM Feature #7842 (Pull Request Review): New Dynamic DNS Provider: Mythic-Beasts: Jim Pingle
08:13 AM Bug #11240 (Rejected): lan port on backup recenltly loose its static ip and take the vip lan: You almost certainly have a problem with your configuration. This site is not for support or diagnostic discussion.
... Jim Pingle
08:07 AM Bug #11240 (Rejected): lan port on backup recenltly loose its static ip and take the vip lan: hi all,
i have recently problem with my setup
i have two PFsense instances on ProLiant DL20 Gen9 with two onboa... khaled osama
08:06 AM Todo #11219: Improve IPsec GUI options for P1/P2 reauth/rekey: When testing one thing I'm looking for is that the GUI settings put in manually correspond with the values in @/var/e... Jim Pingle
03:25 AM pfSense Packages Feature #10665 (Resolved): Manual OSPF neighbor definitions: Retested on 2.5-DEVELOPMENT (built on Thu Jan 07 21:49:58 EST 2021)
'Non-broadcast' mode works for me too now.
... Azamat Khakimyanov

01/10/2021

06:30 PM pfSense Docs Correction #11239 (Rejected): Feedback on pfSense Configuration Recipes — Virtualizing pfSense with VMware vSphere / ESXi: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/virtualize-esxi.html
*Feedback:*
For vmware 7 you need... Joseph Conley
03:11 PM Bug #11050 (Resolved): "Backup extra data" does not behave properly: Tested in a recent build and am seeing that the extra data is being cleared. No duplicate tags are present on second ... Max Leighton

01/09/2021

09:42 PM pfSense Packages Bug #11098: Backup Files and Directories plugin crashes firewall if /root specified as backup location: Attempted creating backup for '/' on XG-7100 on ZFS
received following
PHP ERROR: Type: 1, File: /usr/local/ww... Jordan G
09:15 PM pfSense Packages Feature #11113: New phishing feeds: see these listed feeds plus other updates
2.4.5p1 w/ pfBlockerNG 3.0.0_8 Jordan G
06:05 PM Todo #11020: Update OpenVPN to 2.5.0: IPv6 tunnel networks aren't supported by the UI, it would seem. Getting an error stating "The field 'Tunnel Network'... Kris Phillips
05:32 PM Feature #7727: uPnP fails to properly give out subsequent reservations when multiple gaming systems are playing the same game/using the same port: Based on Feedback from testers on the forums, they are stating this is not fixed currently.
https://forum.netgate.... Kris Phillips
05:16 PM Bug #6030: Duplicated tracker IDs on block private networks rules: Steve Beaver wrote:
> Please confirm fix
Looks good from what I can tell. Michael Spears
05:05 PM Bug #7307: ZFS installer - shuts down instead of rebooting: This issue is no longer present in Jan 8th builds of pfSense when installing with ZFS. Kris Phillips
03:00 PM Revision 1045afc5: Fixed #5454 require => require_once: Steve Beaver
12:56 PM Bug #8136: dpinger for WAN DHCPv6 gets fails to update gateway IP: Can you provide more details on how to replicate the issue? Is it related only to the PPPoE link? Can you provide the... Danilo Zrenjanin
12:45 PM Feature #10984 (Resolved): Port Forward IPv6: IPv6 port forwarding is working as expected and aliases are also working. I'm marking this as resolved. Max Leighton
07:34 AM pfSense Docs New Content #11238 (Closed): LAGG (Link Aggregation): https://docs.netgate.com/pfsense/en/latest/interfaces/lagg.html
It would be helpful to add a note that there is no... Danilo Zrenjanin

01/08/2021

11:02 PM Bug #11142: rc.newwanip restarts VPN services when the IP matches: Danilo Zrenjanin wrote:
> Tested on:
> [...]
>
> It doesn't restart services anymore if the IP address stays the... Alhusein Zawi
10:18 PM Revision 1ba5f7d6: Keep makewhatis while pkg post-install is not fixed: Renato Botelho
06:21 PM Feature #11125: Kernel module for RTL8153 driver: my usb adapter it does not show the speed of the link, it tells me in netgate that it is because of the driver it use... Jesus Vina Trujillo
04:31 PM Bug #7020: <Hostname> is omitted when sending logs on syslog: Jim Pingle wrote:
> An RFC 5424 option was added to 2.5.0 almost a year ago, you can test it there: #9808
Setting... Michael Spears
03:33 PM Bug #6025: Load balancing fails when one gateway has a weight of 1 and another gateway has a weight >1: Verified that weights of 1 and 2 resulted in 2 and 4 entries in the rule set:... Chris Linstruth
12:47 PM pfSense Packages Feature #11206: FRR 7.5: I'm still not following what this has to do with making the loopback participate in OSPF? You can set the OSPF/BGP/OS... Ben Hughes
12:31 AM pfSense Packages Feature #11206: FRR 7.5: Network engineer here - have been configuring routers since the early 90's (Cisco IOS/IOS-XR/Nexus, Juniper, Alcatel-... Gavin Owen
11:10 AM pfSense Packages Bug #11236 (New): A Link to the Virtual IP setup doesn't work under Frontend setup: Danilo Zrenjanin
10:00 AM pfSense Packages Bug #11236 (Feedback): A Link to the Virtual IP setup doesn't work under Frontend setup: Danilo Zrenjanin
10:00 AM pfSense Packages Bug #11236: A Link to the Virtual IP setup doesn't work under Frontend setup: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/1023 Danilo Zrenjanin
08:27 AM pfSense Packages Bug #11236 (Resolved): A Link to the Virtual IP setup doesn't work under Frontend setup: There is a note under the External address setup. If you click at "Virtal IP" from the note it leads to a 404 error... Danilo Zrenjanin
11:04 AM Bug #11237 (Resolved): Incorrect copyright year: Still 2020:
https://github.com/pfsense/FreeBSD-src/blob/07db36d3ee1826462a18c79c663d89df3f1f4030/release/rc.local#L88 Viktor Gurov
10:48 AM pfSense Packages Feature #10605 (Feedback): Add certificates from Trusted Store to Squid cert store: PR has been merged. Thanks! Renato Botelho
10:48 AM pfSense Packages Bug #10749 (Feedback): squid + captive portal authentication not working: PR has been merged. Thanks! Renato Botelho
10:45 AM pfSense Packages Feature #11102 (Feedback): Include a dictionary for mpd5 in Freeradius: PR has been merged. Thanks! Renato Botelho
10:45 AM pfSense Packages Bug #8466 (Feedback): radiusd crash: PR has been merged. Thanks! Renato Botelho
08:53 AM Bug #11232: Fix pfSense_fsync: For information, the function safe_write_file in config.lib.inc, used for writing the configuration file after a rest... Martin VENÇON
08:09 AM Bug #11063 (Resolved): PHP error if SMTP notification fails: I couldn't replicate the issue on the latest release. Ticket resolved. Danilo Zrenjanin
07:27 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: Renato Botelho wrote:
> PR has been merged. Thanks!
Hi, Thank you! I created new issues and also want ask you or... DRago_Angel [InV@DER]
06:56 AM pfSense Packages Bug #11180 (Feedback): Filer run action for files on sync that wan't been modified: PR has been merged. Thanks! Renato Botelho
06:53 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: DRago_Angel [InV@DER] wrote:
> Hi Viktor, thank you. Fix for this bug working. Tested:
> 1. modified file without s... Renato Botelho
07:24 AM pfSense Packages Bug #11235 (New): Filer run script when "state" unchanged: When file not modified action still triggered, it would be cool to check:
# file permissions
# file data
# file ... DRago_Angel [InV@DER]
07:20 AM pfSense Packages Bug #11234 (Resolved): Filer not create missing necessary folders: When you say filer create file for directory that not exists yet on pfSense - it not create this directory and of cou... DRago_Angel [InV@DER]
06:50 AM pfSense Packages Bug #11101 (Feedback): Bind DNS Server won't start: Renato Botelho
06:46 AM pfSense Packages Bug #11101: Bind DNS Server won't start: PR has been merged. Thanks! Renato Botelho
06:46 AM pfSense Packages Bug #7271: Co-existence of unbound and BIND/named: PR has been merged. Thanks! Renato Botelho
06:37 AM pfSense Packages Bug #11098 (Feedback): Backup Files and Directories plugin crashes firewall if /root specified as backup location: PR has been merged. Thanks! Renato Botelho
04:59 AM Feature #7842: New Dynamic DNS Provider: Mythic-Beasts: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/93 Viktor Gurov
03:29 AM Bug #11212 (Resolved): PHP error on Mobile IPsec input validating error: no such error on 2.5.0.a.20210107.2142
Viktor Gurov
02:00 AM Todo #11219: Improve IPsec GUI options for P1/P2 reauth/rekey: I’ve been testing this using system patches for 12 hours+ and it seems to work fine. P1 is rekey, for p2 only life ti... Florin Samareanu
01:56 AM Todo #6638 (Resolved): Update no-ip DDNS to new API: Viktor Gurov
01:42 AM Todo #6638: Update no-ip DDNS to new API: Tested on the latest snapshot. Works fine.
Ticket resolved. Danilo Zrenjanin
12:34 AM pfSense Packages Feature #11233 (Closed): Add 'Allow IP options' interface fw rule note: Add a note to pimd_interfaces.xml:
"A firewall rule with the 'Allow IP options' advanced option must exist in order ... Viktor Gurov
12:09 AM Feature #10931 (Resolved): system.php: Add option to omit DNS Servers from resolv.conf: tested on 2.5.0.a.20210104.0250
all modes change resolv.conf accordingly Viktor Gurov

01/07/2021

08:19 PM Bug #11231: OpenVPN tunnel exiting wrong interface: "itself a suboptimal practice" - in most scenarios it would be, but I would have to explain the network topology for ... Gavin Owen
08:03 PM Bug #11231: OpenVPN tunnel exiting wrong interface: Thank you very much for the clarifcation - I will remove the unnecessary filter rules. Gavin Owen
08:59 AM Bug #11231 (Not a Bug): OpenVPN tunnel exiting wrong interface: This isn't a bug, but a side effect of your manual rule causing traffic to not hit a built-in rule that it needs to u... Jim Pingle
08:25 AM Bug #11231: OpenVPN tunnel exiting wrong interface: After wiresharking in the lab, it seems I have miscategorised this issue. When the afforementioned floating tab filte... Gavin Owen
07:00 AM Bug #11231 (Not a Bug): OpenVPN tunnel exiting wrong interface: In a multi-WAN environment with multiple OpenVPN tunnels, it seems the tunnels can egress the incorrect WAN interface... Gavin Owen
07:59 PM Bug #11230: Firewall match rules incorrectly matching multiple OpenVPN tunnel interfaces: Hi Jim I started a thread already but there are currently no responses
https://forum.netgate.com/topic/159662/incorr... Gavin Owen
09:09 AM Bug #11230 (Not a Bug): Firewall match rules incorrectly matching multiple OpenVPN tunnel interfaces: Sounds more like a problem with your testing methodology than the way match rules work. Start a forum thread for more... Jim Pingle
06:12 AM Bug #11230: Firewall match rules incorrectly matching multiple OpenVPN tunnel interfaces: correcting obvious typo:
FW-A (WAN1) <--> (WAN1) FW-B
FW-A (WAN2) <--> (WAN2) FW-B Gavin Owen
06:10 AM Bug #11230 (Not a Bug): Firewall match rules incorrectly matching multiple OpenVPN tunnel interfaces: It would seem that that the firewall match rules match *any* OpenVPN tunnel rather than just the tunnel interface whi... Gavin Owen
05:40 PM Todo #11020: Update OpenVPN to 2.5.0: I have a mobile client using OpenVPN for Android with a config that contains:... Marcos M
04:17 PM Todo #11020: Update OpenVPN to 2.5.0: That is expected and will work fine. The options changed names and purposes in OpenVPN 2.5.0. There is no reason to h... Jim Pingle
04:01 PM Todo #11020: Update OpenVPN to 2.5.0: Restoring an openvpn config from 2.4.5p1 into latest 2.5 does not retain some settings which may potentially break ex... Marcos M
04:26 PM Feature #9260 (Resolved): ssh_tunnel_shell: Disable console message output: Alhusein Zawi
03:54 PM Feature #9527 (Resolved): Add ability for LDAP extended query on groups in RFC2307 containers.: Tested against FreeIPA. Looks like it works great. Thank you! Chris Linstruth
01:58 PM pfSense Packages Feature #10242: E2guardian Web filtering package: There are lines with write_config(); that should be updated to include a description before public release. Marcos M
01:36 PM pfSense Packages Bug #10429 (New): Status Traffic Total broken 2.4.5: Jim Pingle
01:11 PM Bug #7020 (Duplicate): <Hostname> is omitted when sending logs on syslog: Jim Pingle
12:18 PM pfSense Packages Bug #11055: Insecure FreeRADIUS defaults: https://github.com/pfsense/FreeBSD-ports/pull/1022 - description update. Danilo Zrenjanin
05:26 AM pfSense Packages Bug #11055: Insecure FreeRADIUS defaults: ... Danilo Zrenjanin
03:34 AM pfSense Packages Bug #11055: Insecure FreeRADIUS defaults: Changing the default values would potentially break current setups where the weak types are already selected.
... Danilo Zrenjanin
12:14 PM Bug #11224 (Pull Request Review): dhcpd.conf creation - zone declarations: > If you do not end your zone name in a ".", the DHCP server will figure it out.
The quoted text seems to suggest... Jim Pingle
12:10 PM Bug #11229 (Pull Request Review): Harmless error when enabling traffic shaper: Jim Pingle
03:10 AM Bug #11229: Harmless error when enabling traffic shaper: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/92 Viktor Gurov
03:07 AM Bug #11229 (Closed): Harmless error when enabling traffic shaper: ... Viktor Gurov
12:08 PM Feature #11228: Replace HTTP links with HTTPS in the GUI: Worth doing but not yet. Jim Pingle
10:00 AM Feature #11228: Replace HTTP links with HTTPS in the GUI: From what I can tell, these are all links to external sites, and they all redirect to HTTPS when accessed. There's mo... Michael Spears
01:35 AM Feature #11228: Replace HTTP links with HTTPS in the GUI: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/91 Viktor Gurov
01:22 AM Feature #11228 (Resolved): Replace HTTP links with HTTPS in the GUI: There are many HTTP links on the WebGUI pages:... Viktor Gurov
09:05 AM Bug #11232: Fix pfSense_fsync: It's been disabled for 2 years, I'm not sure we still want or need it.
Might be better to remove it than to fix it... Jim Pingle
07:34 AM Bug #11232 (New): Fix pfSense_fsync: Hello,

pfSense_fsync has not been working for a while as this commit: https://github.com/pfsense/pfsense/commi... Martin VENÇON
07:13 AM Todo #10533 (Resolved): Change default domain for new installations from "localdomain" to "home.arpa": There have been no other issues observed here, so I will mark it as resolved. Max Leighton
06:39 AM Feature #2146 (Resolved): Allow concurrent logins when using vouchers: works as expected in all modes
2.5.0.a.20210104.0250 Viktor Gurov
03:04 AM Bug #6277 (Resolved): RRD graphs are not created correctly for interfaces using CODELQ: works as expected on 2.5.0.a.20210104.0250 -
there is no such errors with CODELQ Viktor Gurov
01:46 AM Feature #11171 (Resolved): Remove debug log entries present following "Block additional logins" feature request: works as expected on 2.5.0.a.20210104.0250
no more extra debug messages
https://github.com/pfsense/pfsense/commit/f... Viktor Gurov
12:11 AM pfSense Packages Feature #11227 (New): Feeds update: Remove:
- www.reputationauthority.org/toptens.php (WatchGuard feed) has no DNS A entry;
- www.badips.com - unable t... Viktor Gurov

01/06/2021

11:20 PM Bug #11224: dhcpd.conf creation - zone declarations: from https://www.freebsd.org/cgi/man.cgi?query=dhcpd.conf&apropos=0&sektion=0&manpath=FreeBSD+12.2-RELEASE+and+Ports&... Viktor Gurov
02:30 AM Bug #11224 (Resolved): dhcpd.conf creation - zone declarations: ARPA zones lack a trailing period. Currently
zone 16.172.in-addr.arpa {
Should be:
zone 16.172.in-addr.arpa... A S
05:40 PM Bug #10942 (Resolved): LDAP Auth error after update 2.5.0.a.20200930.1303: I haven't been able to reproduce on any recent builds, so I will mark this ticket as resolved. Max Leighton
05:10 PM Bug #11226 (Resolved): IPsec VTI phase 2 traffic selectors default to address when defined as a network: The IPSec P2 edit page in the GUI (/vpn_ipsec_phase2.php) defaults the local and remote network type value to 'Addres... Steve Wheeler
04:03 PM pfSense Packages Feature #11186: Allow lo0/Loopback as a valid interface in OSPF/OSPF6: I've never gotten that to work. Adding VIPs to lo0 and then assigning that interface as a passive interface (after mo... Christian McDonald
01:29 PM pfSense Packages Feature #11186: Allow lo0/Loopback as a valid interface in OSPF/OSPF6: I'm probably missing something obviously but I don't see what this achieves? You can already redistribution extra add... Ben Hughes
12:23 PM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: Also, sometimes the gateway shows as "online" after I changed some WAN settings -> "Save" -> "Apply changes". And reb... Aleksandr Mezin
12:20 PM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: Yes, sometimes it just spontaneously starts working (showing the gateway is "online") after a few days (and sometimes... Aleksandr Mezin
11:01 AM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: Having more than one link-local address on an interface can be normal. On the screenshot, you have the PD for the WAN... Marcos M
11:44 AM pfSense Packages Feature #11206: FRR 7.5: If we are moving forward with 7.5, we should consider including the loopback interface ospf modification here too htt... Christian McDonald
09:54 AM pfSense Docs Correction #11221: Feedback on pfSense Configuration Recipes — Routing Internet Traffic Through A Site-To-Site OpenVPN Tunnel: FYI, many screenshots need to be updated. See:
https://redmine.pfsense.org/issues/9370 Marcos M
09:42 AM Feature #11225 (Rejected): Change Host Alias range when it is made from CIDR: The alias doesn't know or care how it's used. It covers the entire subnet. There is no concept for network ID/broadca... Jim Pingle
09:29 AM Feature #11225 (Rejected): Change Host Alias range when it is made from CIDR: Now if I make an Alias using CIDR like 192.168.1.*2*/30 it makes 4 entries which starts from 1st host in the given ra... Constantine Kormashev
07:35 AM Bug #9029: Proxy authentication is not working for HTTPS: Post on the forum first to diagnose your issue. Jim Pingle
07:32 AM Bug #9029: Proxy authentication is not working for HTTPS: I have a fresh pfSense 2.4.5 installation here, same problem with pkg.
Fetch command works but pkg doesn't.
pkg -... Alex D
12:09 AM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: I've succesfully used kernel.hz=1000 and limiter delay=1ms as workaround to fix this problem.
I've also posted mes... Alexey Ab

01/05/2021

09:11 PM Revision 391591ef: IPsec P1/P2 expiration and replacement refresh. Implements #11219: Jim Pingle
03:20 PM Todo #11219 (Feedback): Improve IPsec GUI options for P1/P2 reauth/rekey: I just pushed a set of changes to address all of the above points. GUI fields are now present in both P1 and P2 as la... Jim Pingle
01:13 PM pfSense Docs Correction #11223 (Resolved): Azure Marketplace links are invalid: Links to the pfSense for Azure marketplace page go to https://azuremarketplace.microsoft.com/en-us/marketplace/apps/n... Max Leighton
12:59 PM Revision f4479f0d: Identify minnowboard with BIOS 1.0: Intel has changed MBT identification
Obtained from: https://github.com/pfsense/pfsense/pull/4495 Renato Botelho
12:49 PM Revision 8f00a31d: Merge pull request #4493 from bmhughes/add-watchfrr-to-routing-log: Renato Botelho
12:48 PM Revision 7e5b8cee: Merge pull request #4494 from bmhughes/fix_pkg_edit_button_descr: Renato Botelho
10:18 AM Bug #11222 (Rejected): Firewall rule ignoring custom gateway in advanced section: Not nearly enough information here, and it's not reproducible. Almost certainly something in your config/environment ... Jim Pingle
10:04 AM Bug #11222 (Rejected): Firewall rule ignoring custom gateway in advanced section: Created a custom firewall rule in interface to route traffic to an external gateway.
The rule is applied and correct... Chris Pazz
09:47 AM pfSense Packages Feature #11155: SafeSearch AAAA: Do we need to use a redirect/local-zone for these CNAMES?
Are there any other sub-domains other than the "www." v... BBcan177 .
09:23 AM pfSense Packages Feature #11155 (Pull Request Review): SafeSearch AAAA: Jim Pingle
09:46 AM pfSense Packages Feature #11206 (Pull Request Review): FRR 7.5: Jim Pingle
09:21 AM pfSense Packages Bug #11204 (Pull Request Review): Fix net-snmp logging to syslog: Jim Pingle
09:19 AM Bug #11220 (Rejected): Alert: XMLRPC method captive_portal_sync: I can't reproduce this here and there isn't nearly enough information to determine any possible cause in your environ... Jim Pingle
03:41 AM Bug #11220 (Rejected): Alert: XMLRPC method captive_portal_sync: Hi all,
on an HA system running on 2.4.5p1, fully functional, without problems in all conditions, if I upgrade on ... Luca De Andreis
08:05 AM pfSense Docs Correction #11221: Feedback on pfSense Configuration Recipes — Routing Internet Traffic Through A Site-To-Site OpenVPN Tunnel: By the way:
Section:
https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-route-internet-traffic.html#set... Michael Huck
07:59 AM pfSense Docs Correction #11221 (Closed): Feedback on pfSense Configuration Recipes — Routing Internet Traffic Through A Site-To-Site OpenVPN Tunnel: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-route-internet-traffic.html
*Feedback:*
Th... Michael Huck
07:16 AM Feature #11207 (Feedback): Add watchfrr to routing log: Renato Botelho
07:00 AM Feature #11207: Add watchfrr to routing log: PR has been merged. Thanks! Renato Botelho
07:11 AM pfSense Packages Feature #11186: Allow lo0/Loopback as a valid interface in OSPF/OSPF6: Any update on this PRR?
Seems like a pretty benign easily validated pull request. I've been running this code for ... Christian McDonald
07:02 AM Bug #9242 (Feedback): MBT-4220/2220 not recognized by pfsense correctly after UEFI upgraded to 1.00: PRs have been merged. Thanks! Renato Botelho
06:48 AM Bug #11208 (Feedback): pkg_edit uses incorrect description for pkg_edit buttons: PR has been merged. Thanks! Renato Botelho

01/04/2021

09:05 PM Revision 5f555ece: Remove zabbix44 packages due to EOL: Renato Botelho
04:15 PM Revision 99aa6737: Fix PHP error in Mobile IPsec validation. Fixes #11212: Jim Pingle
02:30 PM Revision 0f2a455f: Update translation files: Renato Botelho
02:27 PM Revision 1452926e: Regenerate pot: Renato Botelho
02:01 PM Todo #11219 (Resolved): Improve IPsec GUI options for P1/P2 reauth/rekey: Additional options are available to control for P1 and P2 renegotiation but we either calculate them or accept the de... Jim Pingle
01:43 PM Bug #9242: MBT-4220/2220 not recognized by pfsense correctly after UEFI upgraded to 1.00: proposed fix for pfsense added in
for gui config added in https://github.com/pfsense/pfsense/pull/4495
And fix for... Grzegorz Krzystek
11:30 AM pfSense Packages Feature #11206: FRR 7.5: pfSense-pkg-frr Port PR: https://github.com/pfsense/FreeBSD-ports/pull/1021 Ben Hughes
11:27 AM pfSense Packages Feature #11206: FRR 7.5: frr7 Port PR: https://github.com/pfsense/FreeBSD-ports/pull/1020 Ben Hughes
10:01 AM pfSense Packages Feature #11206: FRR 7.5: Ok sounds a plan, as you say in hindsight I should've started at 1.0.0 when first starting the move to a integrated c... Ben Hughes
09:56 AM pfSense Packages Feature #11206: FRR 7.5: Ben Hughes wrote:
> I've bumped the port version to 0.7.0 for pfSense-pkg-frr because of the changes, but looking ba... Jim Pingle
11:09 AM Feature #8786: Wireguard VPN: It's still being worked on (and has been the whole time). There are ongoing stability issues that have yet to be fixe... Jim Pingle
10:34 AM Feature #8786: Wireguard VPN: From https://svnweb.freebsd.org/base?view=revision&revision=368163
> Sponsored by: Rubicon LLC, (Netgate)
Just want... Christian Weiss
10:26 AM Bug #11183 (Duplicate): Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Duplicate of #11104 Jim Pingle
10:25 AM Bug #11212 (Feedback): PHP error on Mobile IPsec input validating error: Applied in changeset commit:99aa67376e4f654be8a46c27ae4a57ee16cbd26d. Jim Pingle
10:14 AM Bug #11212 (In Progress): PHP error on Mobile IPsec input validating error: I can reproduce it here, too. I have a fix, pushing shortly. Jim Pingle
10:23 AM pfSense Packages Bug #11214 (Resolved): mail reports typo "Define reports to by sent periodically via email. ": Not a docs issue, but a typo on the page.
Fix pushed.
Jim Pingle
10:16 AM pfSense Packages Bug #11175 (Resolved): FRR OSPFv6 config missing default area: Jim Pingle
10:11 AM Feature #11211 (Pull Request Review): GUI option to set RADIUS Timeout for EAP-RADIUS: Jim Pingle
10:01 AM Feature #11140 (Pull Request Review): Allow the firewall to use DNS servers provided to an OpenVPN client instance: Jim Pingle
09:57 AM pfSense Packages Feature #10605 (Pull Request Review): Add certificates from Trusted Store to Squid cert store: Jim Pingle
09:55 AM Bug #11208 (Pull Request Review): pkg_edit uses incorrect description for pkg_edit buttons: Jim Pingle
09:52 AM Feature #11207 (Pull Request Review): Add watchfrr to routing log: Jim Pingle
09:34 AM pfSense Packages Bug #11217 (Feedback): tun-ipv6 is depracated on OpenVPN 2.4: Fixed in v1.5_5. Now only added when "legacy" is checked. Jim Pingle
03:48 AM pfSense Packages Bug #11217 (Resolved): tun-ipv6 is depracated on OpenVPN 2.4: Hi, if export OpenVPN config via pfSense Client Export Utility with disabled "Legacy Client" on latest tunnelblink on... DRago_Angel [InV@DER]
09:15 AM Bug #11218 (Rejected): /rc.carpmaster: New alert found: A communications error occurred while attempting to call XMLRPC method captive_portal_sync:: I can't reproduce this here and there isn't nearly enough information to determine any possible cause in your environ... Jim Pingle
08:17 AM Bug #11218: /rc.carpmaster: New alert found: A communications error occurred while attempting to call XMLRPC method captive_portal_sync:: More details:
- When motion master to slave (enter in persistant mode...) no alert
- When reenable old master to ... Luca De Andreis
07:35 AM Bug #11218 (Rejected): /rc.carpmaster: New alert found: A communications error occurred while attempting to call XMLRPC method captive_portal_sync:: Hi,
Two nodes in last 2.5 release, when I reboot the master node or when move the master to secondary I see this a... Luca De Andreis
08:40 AM Bug #10943 (Resolved): boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: Renato Botelho
07:39 AM pfSense Packages Feature #10739: Update HAproxy-devel package to 2.2 and HAproxy to 2.0: As I mentioned in #11216 (Duplicate):
pfSense-pkg-haproxy is still using haproxy18 where as pfSense-pkg-haproxy-deve... Torben Hørup
07:31 AM pfSense Packages Feature #11216 (Duplicate): haproxy 2.x: Jim Pingle
07:14 AM pfSense Packages Feature #11216: haproxy 2.x: Sorry - dublicate of #10739
just close again Torben Hørup
03:11 AM pfSense Packages Feature #11216 (Duplicate): haproxy 2.x: pfSense-pkg-haproxy is still using haproxy18 where as pfSense-pkg-haproxy-devel is using haproxy (which currently poi... Torben Hørup
12:47 AM pfSense Packages Todo #11215 (Resolved): Update NtopNG to 4.2: Hi there latest ntopng 4.2 stable version is available for freebsd 12, could you please update to it in 2.5.x? DRago_Angel [InV@DER]

01/03/2021

04:34 PM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Hi Viktor, changed OpenVPN settings to use 2 auth backends after adjust CA to Global CA list, and still same AUTH_FAI... DRago_Angel [InV@DER]
12:28 PM Revision 8f585441: Update the Copyright year.: A subsequent commit will deal with .po's. Luiz Souza
10:04 AM pfSense Packages Feature #9833: ACME: add ability to use custom ACME server: Stanislav Dimov wrote:
> +1. Any progress on this?
+1 on this as well. Have recently setup an ACME server locall... Michael .
08:29 AM pfSense Packages Bug #11214 (Resolved): mail reports typo "Define reports to by sent periodically via email. ": /status_mail_report.php
Email Reports
Define reports to by sent periodically via email.
should be
Define re... gavin penney
07:09 AM Feature #11213 (New): Option to mark gateway as down directly from Table: Hello
Sometimes it happened to me to put in down state a gateway that was part of a group of Gateways.
To do this, ... Stefano Mereghetti
02:33 AM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: I have tried to disable whole if (/*dn_cfg.io_fast */ && ...) via patching /boot/kernel/dummynet.ko .
Traffic then... Alexey Ab

01/02/2021

09:07 PM pfSense Packages Feature #10818: UDP Broadcast Relay: Would absolutely love to see this becoming a pfSense package. Thank you Chetan and Garth for taking a shot at this. Kevin L
08:17 PM pfSense Packages Feature #11201: Show iTLD Allow IDN domains: Those don't provide a number of domains per TLD. BBcan177 .
08:09 PM Feature #8786: Wireguard VPN: Wireguard has been merged into freebsd 13
https://svnweb.freebsd.org/base?view=revision&revision=368163
https:/... Jamie Murphy
05:42 PM Bug #10943: boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: sorry, i didn't noticed a notification for this,
i was able to try ISO [datastore1] pfSense-CE-2.5.0-DEVELOPMENT-amd... Manuel Piovan
02:13 PM pfSense Packages Bug #11175: FRR OSPFv6 config missing default area: Fixed
Default Area is added to OSPF6 configuration
router ospf6
area 0.0.0.0 range 684d:1111:222:3333::/64 co... Alhusein Zawi
11:25 AM pfSense Packages Feature #11155: SafeSearch AAAA: Added description regarding IPv4/IPv6 redirect support by search engines.
https://github.com/pfsense/FreeBSD-ports/p... Danilo Zrenjanin
09:01 AM Feature #11211: GUI option to set RADIUS Timeout for EAP-RADIUS: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/89 Viktor Gurov
07:18 AM Feature #11211 (Closed): GUI option to set RADIUS Timeout for EAP-RADIUS: see https://forum.netgate.com/topic/108637/ipsec-ikev2-with-eap-radius-vpn-azure-multi-factor-authentication
and htt... Viktor Gurov
08:49 AM Bug #11212 (Resolved): PHP error on Mobile IPsec input validating error: If you make any input validating error on the vpn_ipsec_mobile.php page,
and you have more then one auth source:
<... Viktor Gurov
02:50 AM Feature #11140: Allow the firewall to use DNS servers provided to an OpenVPN client instance: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/88 Viktor Gurov
02:04 AM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: And the same commented code in pfsense repository.
https://github.com/pfsense/FreeBSD-src/blob/devel-12/sys/netpfi... Alexey Ab
01:48 AM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Since net.inet.ip.dummynet.io_fast does split path of packets for saturated/unsaturated pipe mode, then this setting ... Alexey Ab

01/01/2021

11:51 PM Bug #9643: Limiters do not function properly on 2.5 snapshots: Tested fq-codel out on the latest snapshot and found out that if i apply an outbound WAN pass rule to ipv6 it does ap... Thomas Pilgaard
02:16 PM Bug #9643: Limiters do not function properly on 2.5 snapshots: Is there any update on this? Jesse Beauclaire
11:40 PM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Observed the same on 2.4.5 p1 with out of order packets during iperf testing using fq-codel with limiters set to 930 ... Thomas Pilgaard
11:12 PM pfSense Packages Feature #11201: Show iTLD Allow IDN domains: BBcan177 . wrote:
> Best to edit the iTLD's and add the static IDN between the existing Puny code and the [xxx] coun... Viktor Gurov
01:59 PM pfSense Packages Feature #11201: Show iTLD Allow IDN domains: Best to edit the iTLD's and add the static IDN between the existing Puny code and the [xxx] counts. ... BBcan177 .
03:50 PM Bug #11196 (Resolved): IPsec DPD action incorrect on development snapshots: Tested on latest build and now see dpd action set to trap, restart, or clear based on the corresponding Child SA clos... Max Leighton
12:53 PM Bug #11196: IPsec DPD action incorrect on development snapshots: This was supposed to be a comment for #10176. Apologies. Florin Samareanu
12:50 PM Bug #11196: IPsec DPD action incorrect on development snapshots: After going with latest dev I don’t see any duplicate p1s or p2s during the last 24h. My tunnels are mostly using def... Florin Samareanu
02:07 PM pfSense Packages Feature #11209: pfBlockerNG soft blocking: This won't work for HTTPS requests. And no way to do a redirection unless a Proxy is used. BBcan177 .
08:21 AM pfSense Packages Feature #11209 (New): pfBlockerNG soft blocking: For the high false-positive feeds, or for some specific feeds (like https://1984.sh/covid19-domains-feed.txt) it woul... Viktor Gurov
10:47 AM pfSense Packages Feature #11210 (Resolved): 3rd party rulesets: It would be useful to add the ability to use any additional third party rulesets,
and download/update them just like... Viktor Gurov
03:23 AM pfSense Packages Feature #10605: Add certificates from Trusted Store to Squid cert store: "Extra Trusted CA" option to select the CA certificate that is used by the upstream SSL/MITM proxy:
https://gitlab.n... Viktor Gurov

12/31/2020

11:12 PM pfSense Packages Bug #11205 (Duplicate): DNSBL SafeSearch redirection doesn't work with DuckDuckGo: see https://redmine.pfsense.org/issues/11155#note-3 Viktor Gurov
01:55 PM pfSense Packages Bug #11205 (Duplicate): DNSBL SafeSearch redirection doesn't work with DuckDuckGo: It's not forcing safe search when using DuckDuckGo search engine. Danilo Zrenjanin
11:08 PM Bug #10827 (Resolved): Cannot add or delete separators when no rules are present: Viktor Gurov
05:52 PM Bug #10827: Cannot add or delete separators when no rules are present: I was able to delete separators after deleting the rules
Steps:
created 2 separator.
Created 2 rules and applied... Alhusein Zawi
10:20 PM Bug #11115: Pfsense MAC Control Feature Request: Hi Jim,
Just wanted to post a closure as other non-networking folks may get the same idea!
I invested some time... Pankaj Mathur
05:49 PM Revision 831c6728: Fix typo in state delete command: Steve Beaver
03:57 PM Revision 87d9798f: Improve handling of SMTP send errors. Fixes #11063: Jim Pingle
03:21 PM Bug #11197 (Resolved): Clicking firewall states leads to php error: Jim Pingle
03:19 PM Bug #11197: Clicking firewall states leads to php error: Florin Samareanu wrote:
> Applied with system patches, issue is resolved. Thank you.
Jim Pingle wrote:
> App... Michael Spears
03:02 PM Feature #10238: Periodic Scrub of ZFS filesystem: similar to:
https://redmine.pfsense.org/issues/9226#change-50116
a script for monitoring zfs with scrub capabilit... gavin penney
02:50 PM Feature #9226: zfs GUI functionality - alerts: well, no GUI for it as of yet, but this script can be cron'd for better results reports emails, if anyone is ever loo... gavin penney
02:46 PM pfSense Packages Feature #11206: FRR 7.5: I've bumped the port version to 0.7.0 for pfSense-pkg-frr because of the changes, but looking back at everything that... Ben Hughes
02:39 PM pfSense Packages Feature #11206: FRR 7.5: PR: https://github.com/pfsense/FreeBSD-ports/pull/1018 Ben Hughes
02:39 PM pfSense Packages Feature #11206 (Closed): FRR 7.5: Update the FRR port to 7.5 and update pfSense-pkg-frr to use 7.5 new features and other changes and fixes.
- FRR r... Ben Hughes
02:43 PM Bug #11208 (Resolved): pkg_edit uses incorrect description for pkg_edit buttons: As title.
PR: https://github.com/pfsense/pfsense/pull/4494 Ben Hughes
02:42 PM Feature #11207 (Closed): Add watchfrr to routing log: As title
PR: https://github.com/pfsense/pfsense/pull/4493 Ben Hughes
02:14 PM Revision b2bbf523: Add watchfrr to routing log: Ben Hughes
12:21 PM pfSense Packages Bug #11204: Fix net-snmp logging to syslog: PR: https://github.com/pfsense/FreeBSD-ports/pull/1017 Ben Hughes
12:20 PM pfSense Packages Bug #11204 (Resolved): Fix net-snmp logging to syslog: The net-snmp service command currently is set to log to a file rather than to syslog so log output ends up in file @/... Ben Hughes
11:57 AM Bug #11203 (New): certificate manager very slow: Once you get about 50 certificates in Cert Manager, the web page is _very_ slow to load. I'll guess the most common u... Brendon Baumgartner
11:05 AM Bug #11193 (Resolved): IPsec KeyID Not Working on Development Snapshots: Jim Pingle
11:05 AM pfSense Packages Bug #11175 (Feedback): FRR OSPFv6 config missing default area: Fix has been merged in the last commit, will be in snapshots soon. Jim Pingle
12:16 AM pfSense Packages Bug #11175: FRR OSPFv6 config missing default area: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/17 Viktor Gurov
11:04 AM pfSense Packages Feature #10665 (Feedback): Manual OSPF neighbor definitions: There was an issue introduced recently which was not including the neighbor settings in the FRR configuration, I push... Jim Pingle
10:05 AM Bug #11063 (Feedback): PHP error if SMTP notification fails: Applied in changeset commit:87d9798fd37841f7e428809a386fd2cb8f5eefb3. Jim Pingle
09:58 AM Bug #11063: PHP error if SMTP notification fails: Hit this locally and found a good way to test. It's a simple fix. Jim Pingle
09:37 AM pfSense Packages Feature #11155 (New): SafeSearch AAAA: DuckDuckGo fix:
https://github.com/pfsense/FreeBSD-ports/pull/1016 Viktor Gurov
09:19 AM pfSense Packages Feature #11202 (Resolved): Antivirus feature update: 1) Remove Google Safe Browsing feature as it's deprecated/outdated,
see https://blog.clamav.net/2020/06/the-future-o... Viktor Gurov
07:38 AM pfSense Packages Feature #11201: Show iTLD Allow IDN domains: https://github.com/pfsense/FreeBSD-ports/pull/1015 Viktor Gurov
07:34 AM pfSense Packages Feature #11201 (Resolved): Show iTLD Allow IDN domains: Show IDN(UTF8) translated domains in addition to punnycode-encoded domains
see screenshots Viktor Gurov
06:58 AM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: And the 2nd address is in ppp logs...... Aleksandr Mezin
06:33 AM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: Currently, WAN interface IPv6 address is @fe80::201:c0ff:fe2a:b8d7%pppoe0@, and gateway address is @fe80::ea4:2ff:fe5... Aleksandr Mezin
04:29 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Not sure about #10704 as on 2.4.5_p1 it was working correctly. Issue appear right after update to 2.5.0.a.
I have ... DRago_Angel [InV@DER]
04:06 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: I can successfully authenticate with two LDAP backends (FreeIPA + Win2012)
maybe related to #10704 and #9417 Viktor Gurov
03:56 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Also Viktor you mention 2.5.0.a.20201230.0250 version, when for my instance 2.5.0.a.20201127.0650 is reported as late... DRago_Angel [InV@DER]
03:46 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: Hi Viktor, when my openvpn server have multiple ldap backends I simply got AUTH_FAIL in logs. Could you please provid... DRago_Angel [InV@DER]
03:40 AM Bug #11183: Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: unable to reproduce it on 2.5.0.a.20201230.0250,
I can successfully authenticate to OpenVPN server with a mix of RAD... Viktor Gurov
04:02 AM pfSense Packages Feature #11199: Minor updates: https://github.com/pfsense/FreeBSD-ports/pull/1014 Viktor Gurov
02:50 AM pfSense Packages Feature #11199 (Resolved): Minor updates: 1) Alerts page - add Yandex.DNS (https://dns.yandex.com);
2) Threat lookup page - add Kaspersky and InterServer.net ... Viktor Gurov
03:50 AM pfSense Packages Feature #11200 (New): Squid reverse proxy + multiple ssl certificates: https://forum.netgate.com/topic/94878/squid-reverse-proxy-multiple-ssl-certificates:
I recently have installes som... Viktor Gurov
02:45 AM pfSense Packages Feature #11178: Filer do not ask what to do with previous filename: Also same applies on deletion of entry - when you delete files managed by filer - files doesn't removes. This can be ... DRago_Angel [InV@DER]
01:49 AM pfSense Packages Feature #11178: Filer do not ask what to do with previous filename: User interaction isn't fine fit in general, maybe this can be parameter in per-file settings and be set by default to... DRago_Angel [InV@DER]
02:43 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: Hi Viktor, thank you. Fix for this bug working. Tested:
1. modified file without script action - another files actio... DRago_Angel [InV@DER]
02:11 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: DRago_Angel [InV@DER] wrote:
> Hi Viktor, can you please provide diff -u ? I can check fix and provide feedback. Tha... Viktor Gurov
01:49 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: Hi Viktor, can you please provide diff -u ? I can check fix and provide feedback. Thank you for fix and also wish you... DRago_Angel [InV@DER]
01:41 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: Fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/18 Viktor Gurov
02:07 AM pfSense Packages Bug #11191: Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: BBcan177 . wrote:
> Before you uninstall, you need to uncheck "Keep Settings" in the General Tab.
it doesn't help
... Viktor Gurov
01:44 AM Todo #11198: https://acb.netgate.com/save respond 500 Internal Server Error: Hi Viktor, thanks, tried find any such requests before create one, but not saw this :) DRago_Angel [InV@DER]
01:42 AM Todo #11198 (Duplicate): https://acb.netgate.com/save respond 500 Internal Server Error: Duplicate of #10811 Viktor Gurov
01:30 AM Todo #11198 (Duplicate): https://acb.netgate.com/save respond 500 Internal Server Error: Hi, due to automatic backups on pfsense always done at 00m netgate backups servers is overloaded. Why not change 00 t... DRago_Angel [InV@DER]
12:46 AM pfSense Packages Bug #11108: pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: DRago_Angel [InV@DER] wrote:
> It not pushed to 2.5.0. Last version on pfSense 2.5.0 is 3.0.0_1. Please fix this. Or... Viktor Gurov

12/30/2020

11:51 PM pfSense Packages Bug #11185 (Pull Request Review): Redis service stopping before NtopNg: Viktor Gurov
10:50 PM Bug #11193: IPsec KeyID Not Working on Development Snapshots: Working as expected , "KeyID tag" as My identifier/ Peer identifier
<12> looking for peer configs matching 172.1... Alhusein Zawi
09:58 PM Revision 89d612c7: Fix incorrect description for pkg_edit buttons: Ben Hughes
09:46 PM Revision 28a7c948: Fix diag_dump_states.inc filename. Fixes #11197: Jim Pingle
09:21 PM Revision 112b85ea: Merge pull request #4489 from lepurt/master: Renato Botelho
09:20 PM Revision c2d6f8c9: Merge pull request #4490 from dsmackie/issue-10827: Renato Botelho
09:18 PM Revision 559f965f: Merge pull request #4492 from Augustin-FL/patch-1: Renato Botelho
08:05 PM Revision d4e1fdea: Correct DPD syntax and values. Fixes #11196: Jim Pingle
06:40 PM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Adding 10 ms delay to the pipe seems to fix reordering.
Trying to set both kernel.hz=1000 and delay=1 ms to make a... Alexey Ab
08:14 AM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: I have tested 2.4.2, 2.4.5p1, 2.5 - all versions have this problem.
Setting kernel.hz=1000 instead of 100 does not... Alexey Ab
05:00 PM pfSense Packages Bug #10935: FRR 0.6.7-6 - BGPD service recycled IPv6 without Route Map: 0.6.8 has a *lot* of changes in it, so it's probably not directly relevant.
That config should work though so you'... Ben Hughes
04:55 PM pfSense Packages Bug #11158: FRR Prefix Lists: As long as the configuration is getting generated correctly this is probably an FRR bug, I've run into various 'stran... Ben Hughes
04:52 PM pfSense Packages Bug #11175: FRR OSPFv6 config missing default area: There's a typo in @frr_ospf6.inc@, I'll put a PR in that fixes it shortly. Ben Hughes
04:08 PM Bug #11197: Clicking firewall states leads to php error: Applied with system patches, issue is resolved. Thank you. Florin Samareanu
03:55 PM Bug #11197 (Feedback): Clicking firewall states leads to php error: Applied in changeset commit:28a7c94882de2a14275bcaf99da0872002eac420. Jim Pingle
03:50 PM Bug #11197: Clicking firewall states leads to php error: Is there still time to get this in the next build? Florin Samareanu
03:47 PM Bug #11197: Clicking firewall states leads to php error: Looks like the file was incorrectly named. I pushed a fix.
Jim Pingle
03:11 PM Bug #11197: Clicking firewall states leads to php error: To note that title was supposed to say “php”. Florin Samareanu
03:11 PM Bug #11197 (Resolved): Clicking firewall states leads to php error: Latest 2.5, clicking the state count in firewall-interface leads to an error similar to this:
Crash report begins.... Florin Samareanu
03:35 PM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: I'm not sure what, if anything, strongSwan could do here since it can be solved with settings, but I passed along the... Jim Pingle
12:29 PM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: luckman212 wrote:
> _"why not do the same for these SA lifetimes?"_
I'm still considering exposing those options ... Jim Pingle
12:04 PM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: @jimp What a great find! Seems so logical after reading, but it's one of _those why didn't I think of that_ things. R... → luckman212
11:08 AM Bug #10176: Multiple duplicate / overlapping phase 2 Child SAs on IPsec tunnels: After more testing I think I may have found the real solution to this, and it's still primarily a settings problem, b... Jim Pingle
03:22 PM Bug #11159 (Feedback): Allow wildcard dns record of type A in the DynDNS client for DNS provider Gandi: PR has been merged. Thanks! Renato Botelho
03:21 PM Bug #10827 (Feedback): Cannot add or delete separators when no rules are present: PR has been merged. Thanks! Renato Botelho
03:20 PM Feature #11171 (Feedback): Remove debug log entries present following "Block additional logins" feature request: PR has been merged. Thanks! Renato Botelho
02:15 PM Bug #11196 (Feedback): IPsec DPD action incorrect on development snapshots: Applied in changeset commit:d4e1fdeabe85d97228f38994b08b5d39f4c706c2. Jim Pingle
02:05 PM Bug #11196 (Resolved): IPsec DPD action incorrect on development snapshots: The DPD action isn't correct in several cases on snapshots (swanctl format). For example:
* "none" is not valid, s... Jim Pingle
01:53 PM pfSense Packages Bug #11135 (Feedback): HAproxy OCSP reponse crontab bug: PR has been merged. Thanks! Renato Botelho
01:47 PM pfSense Packages Bug #5168: squid doesn't function during/after HA failover: Hello
I tested the HA and Squid on the last Dev snapshot version:
2.5.0-DEVELOPMENT (amd64)
built on Wed Dec 30 ... Stefano Mereghetti
09:15 AM pfSense Packages Bug #11194 (Rejected): ACME DNS challenge for dynu.com not deleting all DNS TXT records upon completion: We don't have control over that code, you'd report that upstream to the acme.sh project directly: https://github.com/... Jim Pingle
02:09 AM pfSense Docs New Content #11195 (New): Using a VIP instead of an Interface when Accessing a CPE/Modem from Inside the Firewall: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/modem-access.html
*Feedback:*
This doc seems to say ... Charles Harvey

12/29/2020

11:46 PM pfSense Packages Bug #11194 (Rejected): ACME DNS challenge for dynu.com not deleting all DNS TXT records upon completion: I've had this issue and finally got around to tracking it down this afternoon. I use the ACME package in pfSense to ... Jim Brayton
11:45 PM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Update:
I've tested different pipe bandwidth and same 50 mbit traffic:
85 Mbit pipe - less reorder
185 Mbit pi... Alexey Ab
09:00 PM Revision 170c0f08: IPsec P2 life_time changes. May help with issue #10176: * We currently only set life_time which isn't ideal
* Swanctl format wants rekey_time set, defaults to 1h (3600)
* Ma... Jim Pingle
07:55 PM Revision 6935650a: Load file on pressing 'Enter' key: Steve Beaver
06:54 PM Revision 131b41fc: Correct IPsec secrets section ID type handling. Fixes #11193: Jim Pingle
03:43 PM Revision 9f2439e5: Revise JSON data format when generating a list of states: Steve Beaver
01:00 PM Bug #11193 (Feedback): IPsec KeyID Not Working on Development Snapshots: Applied in changeset commit:131b41fcc1f16037c752b26c6a1036c2d1c5c2de. Jim Pingle
12:51 PM Bug #11193 (Resolved): IPsec KeyID Not Working on Development Snapshots: Configuring a tunnel with an ID type of KeyID fails to connect. In the secrets section of swanctl.conf, the ID is not... Jim Pingle
07:14 AM Bug #11188: MultiWAN setup NAT issue: Update, issue is in:... DRago_Angel [InV@DER]

12/28/2020

08:35 PM Revision 79046c21: Moved diag_dump_states logic to an include file for clarity: Steve Beaver
07:13 PM Revision 0b42c221: Revise diag_arp.php moving control lgic to an include file: Steve Beaver
01:56 PM Feature #10962: Add Cpanel support for Dynamic DNS Clients: You may also get a 500 error from CPanel if you try to update a dynamic DNS record when there is already a static DNS... Jocelyn Viau
01:24 PM Feature #10962: Add Cpanel support for Dynamic DNS Clients: The "Custom" service type works just fine for updating a CPanel Dynamic DNS record.
CPanel will use the IP address... Jocelyn Viau
10:51 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): Jim Pingle wrote:
> Correct. Keep any further discussion on the forum, though.
Thanks. I tried to apply the worka... Kevin Mychal Ong
09:45 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): Correct. Keep any further discussion on the forum, though. Jim Pingle
09:43 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): Jim Pingle wrote:
> It doesn't break policy routing. It breaks filtering of policy based IPsec tunnels (ones using t... Kevin Mychal Ong
09:09 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): It doesn't break policy routing. It breaks filtering of policy based IPsec tunnels (ones using tunnel mode, not VTI). Jim Pingle
09:05 AM Bug #11190: IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): Jim Pingle wrote:
> It used to work at one time, if it doesn't work now, it's almost certainly the same root cause a... Kevin Mychal Ong
08:49 AM Bug #11190 (Duplicate): IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): It used to work at one time, if it doesn't work now, it's almost certainly the same root cause as #8686 so doesn't ne... Jim Pingle
08:58 AM Bug #11192 (Feedback): Using Limiters causes out of order packets within one TCP or UDP flow: Have you only tested this on pfSense 2.4.5?
Can you try again on a 2.5.0 development snapshot? Jim Pingle
08:54 AM pfSense Packages Bug #11191: Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: Is there a compelling reason to keep the shell scripts around even if the user didn't choose that? Typically a user w... Jim Pingle
06:21 AM pfSense Packages Bug #10700 (Resolved): not all VPN IPs added with vpnaddresses option: Renato Botelho

12/27/2020

07:37 PM Bug #11192: Using Limiters causes out of order packets within one TCP or UDP flow: Forget to mention: I am using VMWare workstation 15.5, 2 core PFsense VM with em adapters. Alexey Ab
07:29 PM Bug #11192 (New): Using Limiters causes out of order packets within one TCP or UDP flow: I am using following limiters:
pipe 1 config bw 85Mb queue 2000 mask all droptail
sched 1 config pipe 1 type qfq... Alexey Ab
11:06 AM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: And now the issue is back with Dec 26 build
Again, IPv6 is working fine, but gateway status shows "Offline, Packet... Aleksandr Mezin
10:45 AM pfSense Packages Bug #11191: Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: Before you uninstall, you need to uncheck "Keep Settings" in the General Tab. BBcan177 .
08:40 AM pfSense Packages Feature #10818: UDP Broadcast Relay: I just came here to say the same, and saw your post Garth. I'm a programmer by profession, but have never built any P... Chetan Rao
08:19 AM pfSense Packages Bug #11108: pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: It not pushed to 2.5.0. Last version on pfSense 2.5.0 is 3.0.0_1. Please fix this. Or this can be another issue that ... DRago_Angel [InV@DER]
02:44 AM Bug #10610: Package upgrade or reinstall hangs indefintely on the console: andreas vesalius wrote:
> Still failing with 3.0.0_5 through 3.0.0_7 pfblocker with latest 2.5 and unbound 1.13 inst... Patrick Shaw

12/26/2020

07:49 PM pfSense Packages Bug #11175: FRR OSPFv6 config missing default area: To work around the issue for now
add the Area to the interface
Services>FRR>OSPF6>Edit>Interfaces:OSPF6 Interfac... Alhusein Zawi
05:50 PM pfSense Packages Bug #11191: Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: Manually removing the two .sh files removes them from the UI, so it appears they are not cleaned up properly on unins... Kris Phillips
05:41 PM pfSense Packages Bug #11191 (Resolved): Installing and Removing pfBlockerNG Leaves Shell Scripts in webConfigurator Messages: On reboot after installing and then uninstalling pfBlockerNG, a few shell scripts remain in the shutdown/reboot messa... Kris Phillips
11:40 AM Bug #11190 (Duplicate): IPsec VTI outbound NAT to interface address not working (pfsense 2.4.5-p1): I have the same exact problem as this post https://www.reddit.com/r/PFSENSE/comments/cegi8d/ipsec_vti_nat_in_244p3/ a... Kevin Mychal Ong
01:46 AM pfSense Packages Feature #10818: UDP Broadcast Relay: I have found this tool really handy for me so I want to help to make it happen, unfortunately I don't have the progra... Garth Kirkwood

12/25/2020

09:07 AM pfSense Packages Bug #10429: Status Traffic Total broken 2.4.5: Tested on the latest release.
Traffic Totals version - 2.3.2_1
Its functionality is fixed. There are minor com... Danilo Zrenjanin
08:43 AM pfSense Packages Bug #10413 (Resolved): BIND plugins are not copied into chroot: Tested on the latest release.
Bind version 9.16_6. Plugins are automatically copied into /cf/named/usr/local/lib/n... Danilo Zrenjanin

12/24/2020

12:21 PM pfSense Packages Bug #8688 (Resolved): Pass List Snort: Tested on Snort 4.1.2_2 and 4.1.2_4. I see all of my IPsec v4 and v6 addresses in my pass list as well as OpenVPN add... Max Leighton
11:57 AM pfSense Packages Bug #10700: not all VPN IPs added with vpnaddresses option: Tested in Suricata 5.0.4_1 and 6.0.0_4. I'm seeing all of the relevant VPN IPs added to the list. Max Leighton
03:10 AM Bug #11187: WAN_DHCP6 down, but IPv6 actually works: Doesn't happen anymore with Dec 23 build Aleksandr Mezin

12/23/2020

06:44 PM Feature #11189 (New): Captive Portal - Tarpit option: In captive portal settings allow administrator to turn on tarpitting and set delay in seconds or milliseconds. Captiv... Paul Darwin
02:55 PM pfSense Packages Bug #11000: haproxy deprecated trick suggested: It was been deprecated from HAproxy 1.8 if trust manual: https://cbonte.github.io/haproxy-dconv/1.8/configuration.htm... DRago_Angel [InV@DER]
01:55 PM pfSense Packages Bug #11185: Redis service stopping before NtopNg: I wrote basic patch which fix issue in my case:... DRago_Angel [InV@DER]
11:08 AM Bug #10943 (Feedback): boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: I've cherry-picked fix from upstream and it will be available on tomorrow's snapshot Renato Botelho
09:41 AM Bug #10610: Package upgrade or reinstall hangs indefintely on the console: Still failing with 3.0.0_5 through 3.0.0_7 pfblocker with latest 2.5 and unbound 1.13 installed. andreas vesalius
04:10 AM Bug #11188: MultiWAN setup NAT issue: Update:
I have also same issues with NPt IPv6, not only with IPv4 NAT. On 2.4.5 and before it was working fine for b... DRago_Angel [InV@DER]
01:07 AM Bug #11188 (Resolved): MultiWAN setup NAT issue: After updating to 2.5.0.a port forwarding accessible only on active WAN DRago_Angel [InV@DER]

12/22/2020

11:10 PM Bug #11187 (Closed): WAN_DHCP6 down, but IPv6 actually works: pfSense shows WAN_DHCP6 gateway as "Offline, Packetloss". However, IPv6 actually works: I can ping (successfully with... Aleksandr Mezin
12:21 PM pfSense Packages Feature #11186 (Pull Request Review): Allow lo0/Loopback as a valid interface in OSPF/OSPF6: Jim Pingle
12:09 PM pfSense Packages Feature #11186 (Closed): Allow lo0/Loopback as a valid interface in OSPF/OSPF6: PR: https://github.com/pfsense/FreeBSD-ports/pull/1011 Christian McDonald
11:49 AM Bug #11167 (Resolved): Insecure default values for user certificates created via User Manager: Tested on the latest snapshot.
It looks fine now. When creating a new user certificate under System > User Manager... Danilo Zrenjanin
11:14 AM pfSense Packages Bug #11185: Redis service stopping before NtopNg: To note, if run:
if rune something like kill -15 `pgrep ntopng` then ntopng correctly shutting down via SIGTERM and ... DRago_Angel [InV@DER]
10:00 AM pfSense Packages Bug #11185 (Resolved): Redis service stopping before NtopNg: Redis is dependency for NtopNG. It must stop after NtopNG, but it don't. In result when you stop NtopNG via pfSense w... DRago_Angel [InV@DER]
10:58 AM pfSense Packages Bug #11108 (Resolved): pfsense 2.5.0-DEVELOPMENT (amd64) pfBlockerNG-devel 3.0.0_1: Tested on the latest snapshot.
pfBlockerNG version 3.0.0_7.
It works fine.
Ticket resolved. Danilo Zrenjanin
10:28 AM pfSense Packages Feature #6651: Loopback interfaces: PR Review:
https://github.com/pfsense/FreeBSD-ports/pull/1011
This might not completely solve every use-case, b... Christian McDonald
09:13 AM Bug #10943: boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: Christian Ullrich wrote:
> Another one: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=251866
>
> This one has... Renato Botelho
08:35 AM Bug #10943: boot fail after upgrade to the latest snapshot 20201001.0050. if bios is set to efi: Another one: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=251866
This one has a good idea of the cause, and a... Christian Ullrich
07:05 AM Bug #11184 (New): PF: State policy cannot be configurable: Hello,
When trying to set PF state policy to "if-bound" instead of "floating", I saw that this parameter had no ef... Yannis Planus
02:05 AM Bug #11183 (Duplicate): Mutliply OpenVPN Backend for authentication lead to permanent AUTH_FAIL: On 2.4.5 and from far ago I was used OpenVPN with 2 backends without any issues.
After updating to 2.5.0.a.20201127.... DRago_Angel [InV@DER]

12/21/2020

11:53 PM Bug #9225: Gateway group routing not updated on OpenVPN client reconnect: Sorry, but it is impossible to use beta product in production environment. Alexey Ab
11:21 PM Bug #11174: Incorrect traffic shaping on pppoe interface: Tested upload of 1Gb file to 165 ms RTT server via SFTP on:
2.4.2: Traffic shaping working as expected, bandwid... Alexey Ab
08:49 AM Bug #11174 (Feedback): Incorrect traffic shaping on pppoe interface: Test again on a 2.5.0 snapshot, though it's likely a config or environment issue and not a bug in pfSense Jim Pingle
11:50 AM pfSense Packages Bug #11182 (New): NRPE in HA syncs the bind IP: When using a local interface IP as the bind IP in NPRE 3.1_4, once the primary node resumes master after a failover e... Max Leighton
09:37 AM Bug #11181 (Duplicate): pfSense throws IPsec phase 1 duplicate IP validation error incorrectly: This is already done in the next version. See #10214 Jim Pingle
09:16 AM Bug #11181: pfSense throws IPsec phase 1 duplicate IP validation error incorrectly: Affects version 2.4.5p1 AMD64. Kristopher Kolpin
09:14 AM Bug #11181: pfSense throws IPsec phase 1 duplicate IP validation error incorrectly: To pfSense Redmine Admin: Please sanitize IP address in initial description of this ticket.
Thanks in advance. Kristopher Kolpin
09:10 AM Bug #11181 (Duplicate): pfSense throws IPsec phase 1 duplicate IP validation error incorrectly: In a multi-WAN environment pfSense should allow the use of two Phase 1's that have different origin IP's but the same... Kristopher Kolpin
09:11 AM pfSense Docs Correction #11176: Feedback on Services — DNS Resolver: That doc is due for an update in general. The SSL/TLS options already have an issue requesting an update (#9373) Jim Pingle
08:34 AM pfSense Packages Bug #11180: Filer run action for files on sync that wan't been modified: Sorry "wan't been modified" -> "wasn't been modified" typo. DRago_Angel [InV@DER]
08:33 AM pfSense Packages Bug #11180 (Feedback): Filer run action for files on sync that wan't been modified: You have for example 2 files:
1. unbound mod.py which then run command: `unbound-control -c /var/unbound/unbound.con... DRago_Angel [InV@DER]
06:57 AM Todo #11179 (Closed): Update OpenSSL to 1.1.1i and to 1.0.2x to fix CVE-2020-1971: The CVE has already been patched in FreeBSD and integrated into snapshots last week.
https://github.com/pfsense/Fr... Jim Pingle
05:37 AM Todo #11179 (Closed): Update OpenSSL to 1.1.1i and to 1.0.2x to fix CVE-2020-1971: Please see details at https://www.openssl.org/news/secadv/20201208.txt and at https://www.openssl.org/news/vulnerabil... DRago_Angel [InV@DER]
05:22 AM pfSense Packages Feature #11178 (New): Filer do not ask what to do with previous filename: When you create file via Filer plugin and after this rename this file you in most cases wait that previous file was b... DRago_Angel [InV@DER]
05:02 AM Feature #11177 (Resolved): Improve Dynamic DNS client IPv6 support: Dynamic DNS with IPv6 simply looking at interface assigned IP, but not try go to http://checkipv6.dyndns.org/ to get ... DRago_Angel [InV@DER]

12/20/2020

03:25 PM pfSense Docs Correction #11176 (Closed): Feedback on Services — DNS Resolver: *Page:* https://docs.netgate.com/pfsense/en/latest/services/dns/resolver.html
*Feedback:*
Affected: 2.4.5-RELEASE... e 1/1

12/19/2020

10:42 PM pfSense Packages Bug #11175 (Resolved): FRR OSPFv6 config missing default area: Configuring default area in OSPF6 main page is not reflecting in configuration *Services>FRR>OSPF6> OSPF6*
route... Alhusein Zawi
12:31 PM Bug #11126: DNS Resolver service not running after updating the pfBlockerNG-devel package: Just updated from 3.0.0_5 to 3.0.0_6 and was again left with no unbound running. (Should I open a completely new bug ... Craig Leres
01:08 AM Bug #8463: Performance Regression in 2.4.3 under KVM: Created https://redmine.pfsense.org/issues/11174 Alexey Ab
12:16 AM Bug #8463: Performance Regression in 2.4.3 under KVM: @Alexey Ab
Please open a new ticket.
This ticket
a) Is closed
b) Is about VirtIO interfaces, not vmxnet3
c... Anonymous
01:06 AM Bug #11174 (Feedback): Incorrect traffic shaping on pppoe interface: I am trying to set up shaping on pppoe WAN interface. Tried both 2.4.4-RELEASE-p1 and 2.4.5-RELEASE-p1 using VMWare W... Alexey Ab

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

01/17/2021

01/16/2021

01/15/2021

01/14/2021

01/13/2021

01/12/2021

01/11/2021

01/10/2021

01/09/2021

01/08/2021

01/07/2021

01/06/2021

01/05/2021

01/04/2021

01/03/2021

01/02/2021

01/01/2021

12/31/2020

12/30/2020

12/29/2020

12/28/2020

12/27/2020

12/26/2020

12/25/2020

12/24/2020

12/23/2020

12/22/2020

12/21/2020

12/20/2020

12/19/2020