Activity

30 days up to

User

Subprojects

Activity

From 09/09/2021 to 10/08/2021

10/08/2021

07:30 PM Feature #12416: Support OpenVPN ``client-kill`` to terminate remote clients instead of clearing their session: Customer in internal ticket 96721 tested this. Their results seem to be that this patch breaks the OpenVPN client ki... Kris Phillips
05:44 PM Bug #12440 (Resolved): Zero-value prefix IPv6 addresses are mishandled: Zero-value prefix IPv6 addresses on the type ::/96 are mishandled when used in pfSense firewall or NAT rules.
For ... Steve Wheeler
04:56 PM Revision 9a18668d: Display default Reflection Timeout value. Feature #12318: Viktor Gurov
03:51 PM Revision 44a4215f: 1:1 NAT destination entries description fix. Issue #12410: Viktor Gurov
03:50 PM Revision e33311fe: DNS check optimization. Fixes #11512: Viktor Gurov
03:49 PM Revision 1ab2ec0a: IPv6 Port Forwarding Proxy+NAT input validation. Fixes #12319: Viktor Gurov
03:48 PM Revision ff90368d: fix #11734 NAT overlap validation does not check special networks: Marcos M
03:44 PM Revision 42259176: deleteVIP() IPsec PH1 input validation. Fixes #12356: Viktor Gurov
03:42 PM Revision 3e968849: Correct input validation on deleting a CARP VIP which is referenced by an IP Alias. Fixes #12362: Viktor Gurov
03:36 PM Revision b5332117: Improve XMLRPC Sync for dhcpd. Fixes #10955: Marcos M
03:36 PM Revision 83afa41a: Reload syslogd on log Rotation Size / Retention Count change. Fixes #12366: Viktor Gurov
03:35 PM Revision 08ef78ac: Allow to halt OpenVPN client on status page. Issue #12416: Viktor Gurov
03:34 PM Revision ed1ff340: Do not show Configuring IPsec VTI interfaces message at boot if no VTIs are configured. Fixes #12419.: Viktor Gurov
03:34 PM Revision 14e080ab: Swap Captive Portal Redirection URL and Blocked MAC redirect URL input validation messages. Fixes #12388: Viktor Gurov
03:33 PM Revision d9793efc: Update help text for RAM disk settings. Fixes #12389: Viktor Gurov
03:30 PM Revision 79b8b049: Remove unused function from pfsense-utils.inc. Todo #12406: Viktor Gurov
03:26 PM Revision b8cfee9d: 6RD Prefix input validation. Fixes #12435: Viktor Gurov
12:22 PM Revision 7cf69c98: Default preferred lifetime input validation. Fixes #12439: Viktor Gurov
12:09 PM pfSense Docs Todo #12418 (Feedback): AutoConfigBackup Menu Structure Documentation: Fixed (plus a few other changes):
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/160898325eff3f21fa77b9fc67... Jim Pingle
10:59 AM pfSense Docs Todo #12418 (In Progress): AutoConfigBackup Menu Structure Documentation: Jim Pingle
11:11 AM pfSense Docs Todo #11812 (Feedback): Feedback on pfSense Configuration Recipes — Configuring IPv6 Through A Tunnel Broker Service: Updated the doc and added the reboot advice.
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/465c63a97708665... Jim Pingle
11:00 AM Regression #11512 (Feedback): DHCP Leases page and ARP table page fail to load if DNS is not available: Applied in changeset commit:e33311fefd11f5b30c6822c298cf9d12adbb164e. Viktor Gurov
11:00 AM Bug #12319 (Feedback): NAT reflection does not work for IPv6 port forwarding rules when configured for NAT+Proxy mode: Applied in changeset commit:1ab2ec0a269f03dd7e865d21787331a7a2cb6f3f. Viktor Gurov
10:50 AM Bug #12356 (Feedback): Validation when deleting a VIP does not check if the VIP is used by IPsec phase 1 entries: Applied in changeset commit:42259176d0c0a4ca49099ef5cdbcbfdacdd64589. Viktor Gurov
10:50 AM Bug #12362 (Feedback): Validation when deleting a VIP does not prevent deleting a CARP VIP used as a parent for an IP Aliases VIP: Applied in changeset commit:3e968849be516d138cad7f021ee2d8df11bea202. Viktor Gurov
10:50 AM Bug #10955 (Feedback): XMLRPC sync results in an error when a failover peer IP address is specified in DHCP server settings for an unconfigured interface: Applied in changeset commit:b5332117fd5b675d9d7f81b9c2895ab452f3d610. Marcos M
10:45 AM Bug #12366 (Feedback): Rotation settings for individual log files do not take effect after saving: Applied in changeset commit:83afa41acfafdfd90fb71d8cdd5542a826bef315. Viktor Gurov
10:35 AM Regression #12288: GRE and GIF tunnel inside addresses are missing at the OS level after applying changes on assigned interfaces: This also applies to GIF interfaces. Additionally, it doesn't happen on assignment but any time changes are applied. Jim Pingle
10:35 AM Bug #12419 (Feedback): Console boot output includes ``Configuring IPsec VTI interfaces`` when no VTI interfaces are configured: Applied in changeset commit:ed1ff34051aa52395e91c84b7e4d2beb0f2e9b91. Viktor Gurov
10:35 AM Bug #12388 (Feedback): Captive Portal input validation for "After authentication Redirection URL" and "Blocked MAC address redirect URL" is swapped: Applied in changeset commit:14e080ab41419b4006130432c1e128deaaffdee0. Viktor Gurov
10:35 AM Bug #12389 (Feedback): Help text for RAM disk settings does not mention Captive Portal data: Applied in changeset commit:d9793efc0cb9d13aa812141ab509d288455f1f62. Viktor Gurov
10:35 AM Bug #12435 (Feedback): "6RD Prefix" field does not have input validation: Applied in changeset commit:b8cfee9dbaec99fc20ed0d816bb3cbe79943b150. Viktor Gurov
07:41 AM Bug #12435 (Pull Request Review): "6RD Prefix" field does not have input validation: Jim Pingle
12:49 AM Bug #12435: "6RD Prefix" field does not have input validation: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/411 Viktor Gurov
12:42 AM Bug #12435 (Resolved): "6RD Prefix" field does not have input validation: ```6RD Prefix``` field on the interfaces.php page has no input validation and allows any value to be entered Viktor Gurov
10:35 AM Bug #12439 (Feedback): "Default preferred lifetime" field for IPv6 RA does not have input validation: Applied in changeset commit:7cf69c985d73a2a3a418832bf9e6314a05f8efbe. Viktor Gurov
07:42 AM Bug #12439 (Pull Request Review): "Default preferred lifetime" field for IPv6 RA does not have input validation: Jim Pingle
07:23 AM Bug #12439: "Default preferred lifetime" field for IPv6 RA does not have input validation: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/412 Viktor Gurov
07:13 AM Bug #12439 (Resolved): "Default preferred lifetime" field for IPv6 RA does not have input validation: The "Default preferred lifetime" field allows to enter any value, including non-numeric Viktor Gurov
07:40 AM Bug #12371 (Pull Request Review): Remove subnet overlap check on LAN interfaces when using 6rd: Jim Pingle
12:36 AM Bug #12371: Remove subnet overlap check on LAN interfaces when using 6rd: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/410 Viktor Gurov
07:36 AM Feature #9827 (Duplicate): Add default route indicator to gateways dashboard widget to indicate which interface is currently selected as default in a gateways group scenario: duplicate of #11057 Viktor Gurov
07:24 AM Bug #12437 (Rejected): Firewall logs block item from appearing in logs creates an alias such as EasyRuleBlockHostsOPT10. OPT10 was renamed to e.g. “wirelessly when interface was created there is no way to find original OPTX from gui: Given the free-form nature of interface descriptions that isn't viable, and they would also not update if an interfac... Jim Pingle
03:19 AM Bug #12437 (Rejected): Firewall logs block item from appearing in logs creates an alias such as EasyRuleBlockHostsOPT10. OPT10 was renamed to e.g. “wirelessly when interface was created there is no way to find original OPTX from gui: Once interfaces have been renamed there does not seem to be an easy way to identify which OPTX interface it used to b... And Ritchie
07:21 AM Bug #12436 (Not a Bug): Pppoe server config gui does not allow setting of chap authentication, and sets the network start address for allocation to 0: An IP address ending in @.0@ is only invalid when used as a part of an actual subnet. In point-to-point interfaces li... Jim Pingle
03:55 AM Bug #12436: Pppoe server config gui does not allow setting of chap authentication, and sets the network start address for allocation to 0: Hi Victor,
This behaviour causes assigned client ip address to be 0 thus invalid.
E.g. 192.168.1.0 is not a valid ... And Ritchie
03:43 AM Bug #12436: Pppoe server config gui does not allow setting of chap authentication, and sets the network start address for allocation to 0: And Ritchie wrote:
> It is not possible to enable chap authentication via the gui. The service config file is genera... Viktor Gurov
03:08 AM Bug #12436 (New): Pppoe server config gui does not allow setting of chap authentication, and sets the network start address for allocation to 0: It is not possible to enable chap authentication via the gui. The service config file is generated with pap authentic... And Ritchie
07:13 AM Bug #12159 (Resolved): "Default preferred lifetime" router advertisement validation check uses incorrect variable: The original issue from the PR is resolved in 21.09.r.20210923.2242
but the "Default preferred lifetime" field all... Viktor Gurov
06:47 AM Regression #11938 (Resolved): DNS Resolver does not add PTR record for OpenVPN clients: Tested on the:... Danilo Zrenjanin
05:27 AM Regression #12233 (Resolved): VIP network addresses are not expanded on Port Forward rules: Tested on the:... Danilo Zrenjanin
03:40 AM Feature #12438 (Resolved): Option to select PPPoE Server authentication protocol: It is not possible to enable chap authentication via the gui. The service config file is generated with pap authentic... Viktor Gurov

10/07/2021

11:28 PM Feature #12094 (Resolved): Suppress kernel messages for ``lo0`` configuration during boot: there is no kernel messages for ``lo0``
Starting Secure Shell Services...done.
Setting up interfaces microco... Alhusein Zawi
06:17 PM Bug #12434 (Resolved): Multiple cURL Vulnerabilities: Vulnerabilities outlined here:
https://www.tenable.com/plugins/nessus/153812
CVEs Here:
https://cve.mitre.org/c... Kris Phillips
04:38 PM Feature #12433 (Resolved): Icon for traffic direction on floating rules tab: It’d be helpful to see the configured direction(s) for rules on the floating rule page without having to click on the... James Chambers
03:13 PM pfSense Docs Todo #11743 (Feedback): Feedback on Virtual Private Networks — VPN Scaling: Done:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/54c876ea107be13ffe3fcdfad3e8e27990c1f86c Jim Pingle
02:56 PM pfSense Docs Todo #11743 (In Progress): Feedback on Virtual Private Networks — VPN Scaling: https://docs.netgate.com/pfsense/en/latest/hardware/cryptographic-accelerators.html covers it in much more detail but... Jim Pingle
12:01 PM Bug #11481 (Pull Request Review): NAT Reflection does not work when "NAT Reflection mode for port forwards" is set to "pure nat": Jim Pingle
11:44 AM Bug #11481: NAT Reflection does not work when "NAT Reflection mode for port forwards" is set to "pure nat": https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/409 Viktor Gurov
10:34 AM pfSense Docs New Content #12432 (Feedback): Add documentation for DNS Resolver Status page: Added:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/b82cfce672ea111e49044889d08af69f47f52f86
https://git... Jim Pingle
10:10 AM pfSense Docs New Content #12432 (Closed): Add documentation for DNS Resolver Status page: The DNS Resolver status page ( *Status > DNS Resolver* , @status_unbound.php@) is not currently documented or referen... Jim Pingle
09:42 AM pfSense Packages Bug #12423: Dashboard shows "SQLite database missing, Force Reload DNSBL to recover!": Viktor, thanks for improving the error message. Two comments:
1. putting the full path might be even better. I assu... Sean McBride
12:41 AM pfSense Packages Bug #12423: Dashboard shows "SQLite database missing, Force Reload DNSBL to recover!": fix:
https://github.com/pfsense/FreeBSD-ports/pull/1112 Viktor Gurov
08:18 AM Regression #12382: Certificate Depth checking creates OpenVPN micro-outages every time a user authenticates after 2.5.2 upgrade: So this bug is affecting us too. We need to route all our VPN clients traffic through the VPN and this bug is causing... Joao Assad
08:16 AM pfSense Docs Todo #12428 (Feedback): Feedback on Services — DNS Resolver — Host Overrides: Fixed:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/86556c7171b5d22b3e2ce34cca2d9d98d98072b2
Jim Pingle
12:28 AM pfSense Docs Todo #12428 (Closed): Feedback on Services — DNS Resolver — Host Overrides: *Page:* https://docs.netgate.com/pfsense/en/latest/services/dns/resolver-host-overrides.html
*Feedback:*
"IP Ad... Viktor Gurov
08:16 AM pfSense Docs Todo #12429 (Feedback): Feedback on Bridging: Fixed:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/1c0e9ed82c951f12336c502ed9be7eabde30cab9
Jim Pingle
03:10 AM pfSense Docs Todo #12429 (Closed): Feedback on Bridging: *Page:* https://docs.netgate.com/pfsense/en/latest/bridges/index.html
*Feedback:*... Viktor Gurov
07:40 AM Todo #12431: GUI pages should use ``POST`` for AJAX calls, not ``GET``: True. May as well fix them all. Updated subject/category. Jim Pingle
07:36 AM Todo #12431: GUI pages should use ``POST`` for AJAX calls, not ``GET``: also:
pkg.php
services_captiveportal_vouchers.php
vendorstatus_graph.php
vpn_ipsec_phase1.php
status_graph.php... Viktor Gurov
07:24 AM Todo #12431 (Resolved): GUI pages should use ``POST`` for AJAX calls, not ``GET``: The AJAX buttons on the OpenVPN status page submit values using @GET@ when they should use @POST@. The variables used... Jim Pingle
07:37 AM Todo #12430 (Pull Request Review): Add IPsec phase 2 BINAT subnet size input validation: Jim Pingle
06:06 AM Todo #12430: Add IPsec phase 2 BINAT subnet size input validation: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/408 Viktor Gurov
04:36 AM Todo #12430 (Resolved): Add IPsec phase 2 BINAT subnet size input validation: from https://docs.netgate.com/pfsense/en/latest/vpn/ipsec/phase-2-nat.html#nat-types:
"NAT+IPsec cannot be configure... Viktor Gurov
07:29 AM pfSense Packages Todo #12354 (Pull Request Review): Update haproxy-devel to mitigate CVE-2021-40346: Jim Pingle
02:40 AM pfSense Packages Todo #12354: Update haproxy-devel to mitigate CVE-2021-40346: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/136 Viktor Gurov
07:18 AM pfSense Packages Bug #12420 (Pull Request Review): rc file is not deleted: Jim Pingle
01:41 AM pfSense Packages Bug #12420: rc file is not deleted: fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/135 Viktor Gurov
04:19 AM pfSense Packages Bug #1620: Can't use transparent proxy when using bridge.: transparent mode on bridge works fine on pfSense 2.6.0.a.20211006.2213 with net.link.bridge.pfil_bridge=1 and net.lin... Viktor Gurov
12:25 AM pfSense Docs Correction #11121 (Resolved): Feedback on Services — DNS Resolver: OpenVPN Clients info added Viktor Gurov

10/06/2021

03:38 PM pfSense Docs Todo #12261 (Closed): Feedback on pfSense Configuration Recipes — WireGuard VPN Client Configuration Example: Jim Pingle
03:38 PM pfSense Docs New Content #12417 (Closed): Add section to IPsec troubleshooting for VTI tunnels not reconnecting: Jim Pingle
03:36 PM pfSense Docs Correction #11176 (Feedback): Feedback on Services — DNS Resolver: DNS Resolver docs have been updated and now include the requested content.
https://gitlab.netgate.com/docs/pfSense... Jim Pingle
03:36 PM pfSense Docs Todo #11417 (Feedback): Feedback on Services — DNS Resolver — DNS Resolver Advanced Options: DNS Resolver docs have been updated and now include the requested content.
https://gitlab.netgate.com/docs/pfSense... Jim Pingle
03:35 PM pfSense Docs Correction #11121 (Feedback): Feedback on Services — DNS Resolver: DNS Resolver docs have been updated and now include the requested content.
https://gitlab.netgate.com/docs/pfSense... Jim Pingle
03:35 PM pfSense Docs Correction #9373 (Feedback): Feedback on Services — DNS — Configuring the DNS Resolver: DNS Resolver docs have been updated and now include the requested content.
https://gitlab.netgate.com/docs/pfSense... Jim Pingle
07:17 AM Bug #12426 (Rejected): Captive portal not working with 5 vlan interface in version 2.5: There is not enough information here to classify this as a bug, and this site is not for support or diagnostic discus... Jim Pingle
03:27 AM Bug #12426: Captive portal not working with 5 vlan interface in version 2.5: The same configuration on 2.4.5-RELEASE-p1 works without issue.
the issue on 2.5.x Mohamed Ahmed
03:14 AM Bug #12426 (Rejected): Captive portal not working with 5 vlan interface in version 2.5: I use captive portal with 4 vlan interface, it works flawlessly. The problem is that when I activate the captive port... Mohamed Ahmed
07:14 AM pfSense Packages Bug #12365 (Not a Bug): PFBlockerNG - Unbound fails to start 3.1.0: No worries, thanks for following up and letting us know. Those kinds of problems can be quite frustrating to track down. Jim Pingle
04:54 AM pfSense Packages Bug #12365: PFBlockerNG - Unbound fails to start 3.1.0: Seems this was down to a hard to find memory problem that gave random errors.
Apologies D B
07:02 AM pfSense Packages Todo #12427 (New): ha-proxy: action order in the GUI is not keeped in the resulting ha-proxy configuration: If there are (for example) 'Use Backend' and 'http-request redirect' actions are defined in the GUI in a specific ord... Thomas Eckardt

10/05/2021

12:23 PM pfSense Docs Correction #9394 (Feedback): Feedback on Services — DNS — Configuring the DNS Resolver: Additional updates:
1. Added a new section to the DNS Lookup page which describes how it selects servers to test.
... Jim Pingle
08:23 AM Regression #12069: Panic in ``pfctl`` with large numbers of states: So can we close it now? Mateusz Guzik
07:33 AM Feature #12425 (Rejected): Remove DHCP Leases automatically: That is not a typical requirement for DHCP as it will automatically recycle expired leases with the appropriate setti... Jim Pingle
05:25 AM Feature #12425 (Rejected): Remove DHCP Leases automatically: Hello,
We use Pfsense's DHCP server to assign IP addresses on a WIFI network used with lots of users and BYOD. We ... Nicolas Pissard

10/04/2021

03:33 PM pfSense Docs Correction #9394 (In Progress): Feedback on Services — DNS — Configuring the DNS Resolver: There are multiple items here that aren't directly related:
1. The DNS test page reports times for configured serv... Jim Pingle
01:53 PM pfSense Packages Bug #12424 (Pull Request Review): OpenVPN silent install uses incorrect parameters: Jim Pingle
01:37 PM pfSense Packages Bug #12424: OpenVPN silent install uses incorrect parameters: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/133 Marcos M
01:07 PM pfSense Packages Bug #12424 (Resolved): OpenVPN silent install uses incorrect parameters: The @.exe@ and @.msi@ installers require different parameters for a silent install. Currently, the same parameter is ... Marcos M
07:20 AM Bug #12419 (Pull Request Review): Console boot output includes ``Configuring IPsec VTI interfaces`` when no VTI interfaces are configured: Jim Pingle

10/03/2021

08:47 PM Bug #11432: status_dhcp_leases.php doesn't load: This is likely a duplicate of https://redmine.pfsense.org/issues/11512. Marcos M
06:54 PM pfSense Packages Bug #12423 (Resolved): Dashboard shows "SQLite database missing, Force Reload DNSBL to recover!": See screenshot. The message tells to 'force reload' which I did, yet the error persists.
There's one post on the ... Sean McBride
03:53 PM pfSense Packages Feature #10739: Update HAproxy-devel package to 2.2 and HAproxy to 2.0: Hi, here many points are still undone. DRago_Angel [InV@DER]
03:34 PM pfSense Packages Todo #12354: Update haproxy-devel to mitigate CVE-2021-40346: Hi, this is serious CVE, and still no updates? Even it possible to workaround issue by adding own check, I sure most ... DRago_Angel [InV@DER]

10/02/2021

05:58 PM pfSense Packages Bug #12188: client export breaks multi remote configurations: Based on reviewing the bug report with OpenVPN there doesn't appear to be anything that needs to be done here. They'... Kris Phillips
05:52 PM pfSense Packages Bug #12365 (Feedback): PFBlockerNG - Unbound fails to start 3.1.0: Completed the following tests:
1. Installed pfBlockerNG-dev
2. Ran a force update and reload
3. Monitored loggin... Kris Phillips
05:41 PM pfSense Packages Bug #12030: Startup Errors for Avahi Package: Jim Pingle wrote in #note-11:
> It's a package, not a part of the base system, so updates are not tied to any releas... Kris Phillips
03:37 PM pfSense Packages Bug #11768 (Resolved): FRR OSPF - Comment field within the ospf interfaces gets longer and longer: Tested with FRR 1.1.0_15
Looks to be fixed. The description only matches the interface that it is actually set on... Max Leighton
01:30 PM Bug #12168 (Resolved): 1:1 NAT rule with internal IP address of "Any" results in an invalid firewall rule: Tested on the:... Danilo Zrenjanin
11:45 AM Regression #12398 (Resolved): "Expiration and Replacement" section is shown twice when editing a mobile IPsec phase 2 entry: I checked and saw it in 21.09. The fix works. The Expiration and Replacement section only appears once in 22.01:
2... Max Leighton
08:44 AM Bug #12421 (New): IPV6 limiter bug: I attempted to set a IPV6 limiter along with an IPV4 limiter. I had previously had a QOS setup which was deleted, and... Juan Abonia
08:27 AM pfSense Packages Bug #11465: Input validation does not prevent multiple conflicting WireGuard peers on a single tunnel from attempting to act as default route: Submitted PR 19 (https://github.com/theonemcdonald/pfSense-pkg-WireGuard/pull/149).
Few queries on the PR regardin... Adam Cooper
01:07 AM pfSense Packages Bug #12420 (Resolved): rc file is not deleted: /usr/local/etc/rc.d/pimd.sh file is not deleted after disabling the service Viktor Gurov
12:38 AM Bug #12419: Console boot output includes ``Configuring IPsec VTI interfaces`` when no VTI interfaces are configured: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/407 Viktor Gurov
12:21 AM Bug #12419 (Resolved): Console boot output includes ``Configuring IPsec VTI interfaces`` when no VTI interfaces are configured: I am seeing VTI interface while I do not have any IPsec configuration:... Viktor Gurov
12:22 AM Bug #12002 (Resolved): Boot messages contain entries about configuring LAGG/VLAN/QinQ interfaces even when no entries of those types are configured: Alhusein Zawi wrote in #note-6:
> I am seeing VTI interface while I do not have any IPsec configuration in tested vm... Viktor Gurov

10/01/2021

11:32 PM Bug #12002: Boot messages contain entries about configuring LAGG/VLAN/QinQ interfaces even when no entries of those types are configured: I am seeing VTI interface while I do not have any IPsec configuration in tested vm
Configuring loopback interf... Alhusein Zawi
09:13 PM Bug #12039 (Resolved): Gateway alarm always triggers IPsec restart: /etc/rc.ipsec is created
/etc/rc.gateway_alarm:
/usr/local/sbin/pfSctl \
-c "service reload dyndns ${GW... Alhusein Zawi
07:14 PM pfSense Docs Todo #12418 (Closed): AutoConfigBackup Menu Structure Documentation: Documentation here states to use Diagnostics --> AutoConfigBackup to reach the service's configuration. It's actuall... Kris Phillips
11:53 AM pfSense Packages Bug #12058: pfBlockerNG / "Cannot allocate memory" from Geo blocking IP list: Indeed increasing that has eliminated the "Cannot allocate memory" messages.
Could the error message be improved t... Sean McBride
10:45 AM pfSense Docs New Content #12417 (Feedback): Add section to IPsec troubleshooting for VTI tunnels not reconnecting: Done:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/0a4089d8298e230db7ef3c9ab146bca409521a7e
http://sta... Jim Pingle
10:37 AM pfSense Docs New Content #12417 (Closed): Add section to IPsec troubleshooting for VTI tunnels not reconnecting: Add section to IPsec troubleshooting for VTI tunnels not reconnecting. The new periodic check keep alive option in P2... Jim Pingle
08:05 AM Feature #12416 (Pull Request Review): Support OpenVPN ``client-kill`` to terminate remote clients instead of clearing their session: Jim Pingle
03:44 AM Feature #12416: Support OpenVPN ``client-kill`` to terminate remote clients instead of clearing their session: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/406 Viktor Gurov
01:25 AM Feature #12416 (Resolved): Support OpenVPN ``client-kill`` to terminate remote clients instead of clearing their session: Killing a user remote access vpn session from the firewall through the pfsense GUI only works temporarily.
Less the... Viktor Gurov
06:05 AM Feature #4881: Allow NPt to use dynamic IPv6 networks: Hi,
So the CARP fixing is broken as of yet: the script founds the old CARP address as interface address and fixes ... Csoban Kesmarki
04:42 AM pfSense Packages Bug #12033: maxmindb and _sqlite3 modules not found: How to resolve:... Viktor Gurov
04:26 AM pfSense Packages Bug #12033: maxmindb and _sqlite3 modules not found: see the same error on SG-3100 with pfSense-21.09.r.20210923.2242 and pfBlockerNG-3.1.0:... Viktor Gurov
12:23 AM pfSense Packages Bug #12414: DNSBL SafeSearch page displays input validation error if DoH / DoT blocking is not enabled: fix:
https://github.com/pfsense/FreeBSD-ports/pull/1111 Viktor Gurov
12:12 AM pfSense Packages Bug #12414 (Resolved): DNSBL SafeSearch page displays input validation error if DoH / DoT blocking is not enabled: You need to enable DoH/DoT Blocking and select entries in the DoH/DoT Blocking List, otherwise you'll see:... Viktor Gurov
12:16 AM pfSense Docs Todo #12415 (Rejected): Feedback on pfSense Configuration Recipes: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/index.html
*Feedback:*
https://forum.netgate.com/top... Viktor Gurov

09/30/2021

03:16 PM pfSense Docs Todo #12412 (Closed): Feedback on Virtual Private Networks — IPsec — Routed IPsec (VTI): Fixed (plus a bunch more that were out of date):
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/d7496cc5e09... Jim Pingle
11:41 AM pfSense Docs Todo #12412 (Closed): Feedback on Virtual Private Networks — IPsec — Routed IPsec (VTI): *Page:* https://docs.netgate.com/pfsense/en/latest/vpn/ipsec/routed-vti.html
*Feedback:*
"The Hangouts Archive ... Viktor Gurov
03:16 PM pfSense Docs Todo #12413 (Closed): Feedback on Services — SNMP: Fixed (plus a bunch more that were out of date):
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/d7496cc5e09... Jim Pingle
11:43 AM pfSense Docs Todo #12413 (Closed): Feedback on Services — SNMP: *Page:* https://docs.netgate.com/pfsense/en/latest/services/snmp.html
*Feedback:*
"The Hangouts Archive contain... Viktor Gurov
07:30 AM Regression #12398: "Expiration and Replacement" section is shown twice when editing a mobile IPsec phase 2 entry: It won't show on 2.5.2, only on recent builds of 2.6.0 (after I introduced the bug and before I fixed it) and on curr... Jim Pingle
03:21 AM Regression #12398: "Expiration and Replacement" section is shown twice when editing a mobile IPsec phase 2 entry: I tested on the 2.5.2-RELEASE (amd64). With all defaults settings under Phase 2, I couldn't replicate it.
Is there... Danilo Zrenjanin
04:37 AM pfSense Plus Bug #12341 (Resolved): Gateway Monitoring Percentage Not Decreasing After Gateway Packet Loss Event: I tested on XG-7100 latest RC.
I can confirm it works as expected. I am resolving this ticket. Danilo Zrenjanin
04:03 AM Regression #12377 (Resolved): NAT Rule Reorder: I couldn't replicate it on the latest pfSense plus RC nor the latest CE version. It may be closed. Danilo Zrenjanin

09/29/2021

10:39 AM pfSense Docs Todo #12411 (Resolved): Feedback on High Availability — pfSense XML-RPC Config Sync Overview: *Page:* https://docs.netgate.com/pfsense/en/latest/highavailability/xmlrpc-sync.html
*Feedback:*
A description ... Viktor Gurov
09:19 AM Todo #12235 (Resolved): ``pfSense-upgrade`` should reinstall all packages on new version upgrades: Fixed now Renato Botelho
07:30 AM Todo #12406 (Pull Request Review): Remove unused functions: Jim Pingle
03:06 AM Todo #12406: Remove unused functions: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/405 Viktor Gurov
07:22 AM Bug #12410 (Pull Request Review): 1:1 NAT edit page lists incorrect entries in the Destination field: Jim Pingle
02:56 AM Bug #12410: 1:1 NAT edit page lists incorrect entries in the Destination field: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/404 Viktor Gurov
01:36 AM Bug #12410 (Resolved): 1:1 NAT edit page lists incorrect entries in the Destination field: Destination type doesn't have "net" suffix:... Viktor Gurov
07:19 AM Bug #12408 (Pull Request Review): Input validation prevents creating 1:1 NAT rules on OpenVPN: Jim Pingle
12:56 AM Bug #12408: Input validation prevents creating 1:1 NAT rules on OpenVPN: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/403 Viktor Gurov
12:02 AM pfSense Packages Feature #12297 (Resolved): Suricata: show actual GID:SID rule on click: Viktor Gurov

09/28/2021

10:13 AM Todo #12235 (Feedback): ``pfSense-upgrade`` should reinstall all packages on new version upgrades: Fixed by pfSense-upgrade 1.0_6 Renato Botelho
09:45 AM Todo #12235 (In Progress): ``pfSense-upgrade`` should reinstall all packages on new version upgrades: There were some reports of crash logs showing up after upgrade and also PHP complaining about libpfctl missing during... Renato Botelho
09:27 AM pfSense Docs Correction #12405 (Closed): Wireguard Docs Spelling Error: Merged & Deployed. Jim Pingle

09/27/2021

07:15 PM Feature #12267: OpenVPN option to limit concurrent connections per user: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/402 Marcos M
03:33 PM pfSense Docs Correction #12405 (Waiting on Merge): Wireguard Docs Spelling Error: MR: https://gitlab.netgate.com/docs/pfSense-docs/-/merge_requests/24 Christian McDonald
03:04 PM pfSense Docs Todo #12182 (Feedback): Update IPsec to match recent changes: Additional updates:
* https://gitlab.netgate.com/docs/pfSense-docs/-/commit/9f424c44b6c9f95f8728e3699db4f9b47fb6e699... Jim Pingle
02:30 PM pfSense Docs New Content #11862 (Closed): Document High Availability IPSec: I suspect mostly you were hitting bugs in IPsec that are fixed in 2.6.0/21.09. HA IPsec was covered already, at https... Jim Pingle
10:24 AM Bug #12409: Automatic-default-gateway-mode selects OpenVPN-Server interfaces: What is this mode made for? As long as there are only valid internet gateways it is safe to use. But as soon as there... Lars Möller
09:47 AM Bug #12409 (Not a Bug): Automatic-default-gateway-mode selects OpenVPN-Server interfaces: That's the nature of the default "automatic" mode -- when left to select it will select whatever gateway is the first... Jim Pingle
09:39 AM Bug #12409 (Not a Bug): Automatic-default-gateway-mode selects OpenVPN-Server interfaces: If the gateway selection is in automatic mode, the default gateway is switched from the monitored WAN gateway to an O... Lars Möller
08:57 AM Regression #11570: Gateway monitoring services is not always restarted on interface events, which may prevent a WAN from recovering back to an online state: We are having the same problem on SG-3100, XG-7100, SG-5100. It occours on 21.* up to 21.05.1. On 2.4.5 everything wa... Lars Möller
08:45 AM Bug #12408: Input validation prevents creating 1:1 NAT rules on OpenVPN: I worked around the issue temporarily by adding opt-interfaces to the array,
$vpn_and_ppp_ifs = array("l2tp", "p... Chriss E
07:30 AM Bug #12408: Input validation prevents creating 1:1 NAT rules on OpenVPN: The problem seems to be that the array value of 'openvpn' does not reflect the actual value sent by firewall_nat_1to1... Chriss E
04:33 AM Bug #12408: Input validation prevents creating 1:1 NAT rules on OpenVPN: Tested on Netgate pfSense Plus 21.05.1-RELEASE (amd64) Chriss E
04:31 AM Bug #12408 (Resolved): Input validation prevents creating 1:1 NAT rules on OpenVPN: Maybe related to https://redmine.pfsense.org/issues/11751 but for 1:1 NAT rules with OpenVPN interface selected
Wh... Chriss E
08:10 AM pfSense Packages Bug #12030: Startup Errors for Avahi Package: It's a package, not a part of the base system, so updates are not tied to any release.
It could be updated any tim... Jim Pingle
06:39 AM pfSense Packages Bug #12365: PFBlockerNG - Unbound fails to start 3.1.0: php-fpm 52285 /status_services.php: The command '/usr/local/sbin/unbound -c /var/unbound/unbound.conf' returned exi... D B

09/26/2021

05:44 PM Bug #12332: OpenVPN does not clear old Cisco-AVPair anchor rules in some cases: I've submitted a new merge request which solves this issue. The solution is dependent on #12407
https://gitlab.netg... Marcos M
05:42 PM Feature #12407: Use deferred client connections in OpenVPN: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/402 Marcos M
05:16 PM Feature #12407 (Resolved): Use deferred client connections in OpenVPN: New in OpenVPN 2.5 is the ability to use deferred client-connect. See @Deferred client-connect@:
https://github.com/... Marcos M

09/25/2021

09:05 PM pfSense Packages Bug #12030: Startup Errors for Avahi Package: Tested on RC3 of 21.09. Still present. Is this going to make it into 21.09 before it's pushed public? Kris Phillips
03:15 PM pfSense Packages Feature #12297: Suricata: show actual GID:SID rule on click: GID:SID is clickable using suricata 6.0.3_2 on 21.09.r.20210923.1842 Jordan G
11:07 AM Feature #4881: Allow NPt to use dynamic IPv6 networks: Hi,
I made a sort of workaround: I created two php scripts (checknpt and fixnpt) which checks all NPT settings and... Csoban Kesmarki
09:39 AM Regression #11512: DHCP Leases page and ARP table page fail to load if DNS is not available: the MR/patch works as expected - https://forum.netgate.com/topic/161424/dhcp-lease-screen-not-loading/86:... Viktor Gurov
04:44 AM Todo #12406 (Resolved): Remove unused functions: from https://github.com/pfsense/pfsense/blob/df945787c7b7784444381eabeeaf519361cbc2ec/src/etc/inc/pfsense-utils.inc:
... Viktor Gurov
04:36 AM Bug #12227 (Resolved): Changing VHID on CARP VIP does not update VHID of related IP Alias VIPs: Tested on the:... Danilo Zrenjanin
01:28 AM Feature #12086 (Resolved): New Dynamic DNS Provider: deSEC: Danilo Zrenjanin
01:28 AM Feature #12086: New Dynamic DNS Provider: deSEC: Tested on the :... Danilo Zrenjanin
12:00 AM pfSense Packages Feature #11320 (Resolved): Update NAS client type: Viktor Gurov

09/24/2021

11:58 PM Regression #12396: PHP Warning: Use of undefined constant ip - /etc/inc/services.inc on line 2465: Many thanks. Do you want me to close this? JP Versteeg
10:18 PM pfSense Packages Feature #11320: Update NAS client type: clients are added to clients type list
2.5.2
Alhusein Zawi
08:36 PM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Christian McDonald wrote in #note-9:
> Thanks.
>
> We might need to hook the gateway alarm and trigger WireGuard se... Ryan Roosa
06:46 PM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Thanks.
We might need to hook the gateway alarm and trigger WireGuard service to be restarted when gateway status... Christian McDonald
05:35 PM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Christian McDonald wrote in #note-7:
> Interesting... I can replicate this if my WAN is using DHCP, but as soon as I... Ryan Roosa
05:26 PM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Interesting... I can replicate this if my WAN is using DHCP, but as soon as I switch to a static address I can unplug... Christian McDonald
05:13 PM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Christian McDonald wrote in #note-5:
> Ryan, out of curiosity, are you using DHCP are static addressing on your WAN?... Ryan Roosa
05:09 PM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Ryan, out of curiosity, are you using DHCP are static addressing on your WAN? Christian McDonald
05:03 PM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Just tested this on my 2100. I will test more next week.
I have a WireGuard tunnel to Mullvad.
# Started a persiste... Christian McDonald
04:26 PM pfSense Docs Correction #12405 (Closed): Wireguard Docs Spelling Error: Warning bubble here uses "were" instead of "where". Super minor.
https://docs.netgate.com/pfsense/en/latest/recip... Kris Phillips
03:33 PM pfSense Docs Todo #12404 (Closed): LaTeX Error: Too deeply nested.: Fixed:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/50d8b58a6e5c79cb10b8ee400f02d3f4ccc3be39
https://g... Jim Pingle
02:50 PM pfSense Docs Todo #12404 (Closed): LaTeX Error: Too deeply nested.: PDF builds are failing with an error:... Jim Pingle
12:38 PM pfSense Docs Todo #12182: Update IPsec to match recent changes: Updated EAP-TLS document and the Windows IKEv2 client doc. There was quite a bit of overlap that is now greatly sim... Jim Pingle
12:36 PM pfSense Docs Todo #12261 (Feedback): Feedback on pfSense Configuration Recipes — WireGuard VPN Client Configuration Example: PR merged and deployed. Jim Pingle
12:25 PM pfSense Docs Todo #12261 (Pull Request Review): Feedback on pfSense Configuration Recipes — WireGuard VPN Client Configuration Example: Christian McDonald
12:02 PM Bug #11863 (Resolved): Unable to create nested URL aliases: Viktor Gurov
10:59 AM Bug #11863: Unable to create nested URL aliases: Working as expected on:... Chris W
10:36 AM Regression #11512 (Pull Request Review): DHCP Leases page and ARP table page fail to load if DNS is not available: Jim Pingle
09:09 AM Regression #11512: DHCP Leases page and ARP table page fail to load if DNS is not available: We don't yet know if this issue affects Plus. No reports originating from that version have been observed. Anonymous
08:34 AM Regression #11512: DHCP Leases page and ARP table page fail to load if DNS is not available: optimization:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/401 Viktor Gurov
08:13 AM pfSense Packages Bug #12205 (Pull Request Review): Certificate Manager page doesn't show Squid used certificates: Jim Pingle
05:07 AM pfSense Packages Bug #12205: Certificate Manager page doesn't show Squid used certificates: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/130 Viktor Gurov
07:37 AM pfSense Packages Bug #12403 (Resolved): WireGuard tunnel and peer edit pages do not prevent browser auto-fill: The WireGuard tunnel (@vpn_wg_tunnels_edit.php@) and peer (@vpn_wg_peers_edit.php@) edit pages do not prevent the bro... Jim Pingle
03:58 AM Feature #4881: Allow NPt to use dynamic IPv6 networks: I found this issue two days ago while I tried to provide internet access via IPv6 to my OpenVPN clients.
Right now... Jard Leex
02:50 AM Bug #11337 (Resolved): Interface column empty in list of GIF tunnels when using IP Alias on CARP VIP as Interface: Tested on the:... Danilo Zrenjanin
12:46 AM pfSense Docs New Content #12402 (Rejected): Add recipe for configuring Telegram to receive notifications from pfSense software: *Page:* https://docs.netgate.com/pfsense/en/latest/config/advanced-notifications.html
*Feedback:*
How to config... Viktor Gurov

09/23/2021

10:57 PM pfSense Packages Feature #11972: Arpwatch - Add support for Telegram notifications: there is no option to add Telegram in Arpwatch page.
Tested :
2.6.0.a.20210923.0100
&
21.05.1 Alhusein Zawi
09:18 PM Bug #12401 (New): Traffic graphs with untagged and tagged VLAN on same interface: My setup is a single interface with multiple VLANs. Still using VLAN 1 as the LAN VLAN but got a couple others.
Sa... Derek Wuelfrath
04:01 PM pfSense Docs Todo #12182: Update IPsec to match recent changes: Additional updates for mobile IPsec:
* https://gitlab.netgate.com/docs/pfSense-docs/-/commit/a19ea35d7b35b0617bd40... Jim Pingle
02:36 PM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: In rebooting my ISP modem many times and tracking the behavior of pfSense and WireGuard, I observed that when the mod... Ryan Roosa
10:55 AM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Christian McDonald wrote in #note-1:
> Thanks for the tag, I will investigate this and circle back.
Awesome! Grea... Ryan Roosa
10:35 AM pfSense Packages Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Thanks for the tag, I will investigate this and circle back. Christian McDonald
09:26 AM pfSense Packages Bug #12399 (Resolved): WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset: Hi Christian,
Really appreciate your work on the Wireguard package for pfSense :)
Sadly, there seems to be a show... Ryan Roosa
02:03 PM Regression #12382: Certificate Depth checking creates OpenVPN micro-outages every time a user authenticates after 2.5.2 upgrade: The solution here should be to implement async auth plugin. It's already being done with @/usr/local/sbin/ovpn_auth_v... Marcos M
03:20 AM Regression #12382: Certificate Depth checking creates OpenVPN micro-outages every time a user authenticates after 2.5.2 upgrade: Just want to thank you Brett for the debug of the problem that unfortunately affects us as well.
Doesn't change an... Denis Grilli
01:33 PM Revision 863ab7d4: Fix IPsec P2 Keep Alive mobile check. Issue #12398: Jim Pingle
01:29 PM pfSense Docs Correction #12400: NAT 1:1 documentation - multi-wan information: Dear Jim thank you for the quick reply.
I do agree on the concept of NAT not controlling outgoing traffic and how th... Ricardo Mendes
01:24 PM pfSense Docs Correction #12400: NAT 1:1 documentation - multi-wan information: NAT never controls where traffic exits the firewall in any context (1:1, outbound, port forwards). NAT only manipulat... Jim Pingle
01:10 PM pfSense Docs Correction #12400 (Resolved): NAT 1:1 documentation - multi-wan information: Dear pfSense team,
I would like to submit a suggestion to the NAT 1:1 page. This suggestion comes from an issue I ... Ricardo Mendes
12:12 PM Feature #4881: Allow NPt to use dynamic IPv6 networks: I'm going to chime in to the usefulness of this. My use case is a little different, but the same principle. I have ... Marc Mapplebeck
08:52 AM Regression #12398 (Feedback): "Expiration and Replacement" section is shown twice when editing a mobile IPsec phase 2 entry: Fixed in commit:863ab7d4 Jim Pingle
08:30 AM Regression #12398: "Expiration and Replacement" section is shown twice when editing a mobile IPsec phase 2 entry: The type bit wasn't the case, it was the remoteid type which was lost but that isn't necessary from what I can tell. ... Jim Pingle
08:16 AM Regression #12398 (Resolved): "Expiration and Replacement" section is shown twice when editing a mobile IPsec phase 2 entry: When editing a phase 2 entry for a mobile IPsec tunnel the "Expiration and Replacement" section is shown twice.
Th... Jim Pingle
07:43 AM Feature #12342 (Pull Request Review): Dynamic DNS client proxy support: Jim Pingle
05:01 AM Feature #12342: Dynamic DNS client proxy support: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/399 Viktor Gurov
07:38 AM Bug #12385 (Pull Request Review): deleteVIP() does not check 1:1 NAT and Outbound NAT rules: Jim Pingle
07:23 AM Bug #12389 (Pull Request Review): Help text for RAM disk settings does not mention Captive Portal data: Jim Pingle
12:43 AM Bug #12389: Help text for RAM disk settings does not mention Captive Portal data: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/398 Viktor Gurov
01:51 AM Bug #10955: XMLRPC sync results in an error when a failover peer IP address is specified in DHCP server settings for an unconfigured interface: Joachim Tingvold wrote in #note-20:
> So, while going through the configuration to sanitize them, I noticed the foll... Manuel Trier

09/22/2021

10:22 PM Bug #11923: Input validation not working for 1:1 NAT entries using an alias as a destination: Confirmed that bug is still present in 2.5.2. Running most recent version and I cannot create 1:1 NAT mappings with a... Evan Hellman
02:56 PM pfSense Docs Todo #12182: Update IPsec to match recent changes: Additional Updates:
* https://gitlab.netgate.com/docs/pfSense-docs/-/commit/091b27f589e2ca992b4fb40aeebaef31c65131... Jim Pingle
12:39 PM Revision 0512975e: Fixes redmine #12396: Christian McDonald
09:09 AM Feature #12397 (Resolved): Distinguish between policy-based and route-based entries on IPsec status SPD tab: The IPsec Status SPD tab at @status_ipsec_spd.php@ prints information from the security policy database and it curren... Jim Pingle
08:50 AM Regression #12396: PHP Warning: Use of undefined constant ip - /etc/inc/services.inc on line 2465: Jim Pingle wrote in #note-1:
> Most likely the latest version of PHP in use now is being more strict about such thin... Christian McDonald
08:49 AM Regression #12396 (Feedback): PHP Warning: Use of undefined constant ip - /etc/inc/services.inc on line 2465: Christian McDonald
07:56 AM Regression #12396 (Pull Request Review): PHP Warning: Use of undefined constant ip - /etc/inc/services.inc on line 2465: Odd that it would just start giving an error now since that line, as obviously wrong as it is, hasn't changed in 7 ye... Jim Pingle
12:59 AM Regression #12396 (Resolved): PHP Warning: Use of undefined constant ip - /etc/inc/services.inc on line 2465: Hi Team,
Could you please confirm. Many thanks.
Issue identified following the first reboot, after fully complet... JP Versteeg
03:29 AM pfSense Packages Feature #9833: ACME: add ability to use custom ACME server: +1 Would be nice to have this. Invalid certs are just not cool anymore with ACME available. Should be possible to sel... Krisjanis Morkans

09/21/2021

04:32 PM pfSense Docs New Content #12395 (New): FRR: Add information about the private use AS reservation from RFC 6996: *Page:* https://docs.netgate.com/pfsense/en/latest/packages/frr/bgp/required-info.html
*Feedback:*
Would be hel... Marc Mapplebeck
03:19 PM pfSense Docs Todo #12182: Update IPsec to match recent changes: Additional updates:
* https://gitlab.netgate.com/docs/pfSense-docs/-/commit/5f6977cf1b44daa49656c2ba2f050f4cccb387... Jim Pingle
03:06 PM pfSense Docs Todo #12394 (Closed): Broken link on Redmine home page: Fixed, thanks! Jim Pingle
02:54 PM pfSense Docs Todo #12394 (Closed): Broken link on Redmine home page: https://redmine.pfsense.org home page has a link:
Read the [Reporting Issues with pfSense Software] article comple... Steve Y
02:48 PM Bug #12393 (New): Priority of qOthersLow higher than default queues: I posted in the forum (https://forum.netgate.com/post/1002109) but received no response so far.
In the wizard for ... Steve Y
09:58 AM Bug #12368 (Closed): Disk widget alignment issue when only two items are in the list: Looks good here on both ZFS and UFS systems on RC2. Christian McDonald

09/20/2021

04:17 PM Revision b9885720: Bump up the config version to match a change in plus.: Luiz Souza
03:46 PM Feature #12392 (Resolved): Allow the selection of "any" interface in floating rules: Currently, a floating rule can be created without specifying an interface which allows for filtering on interfaces no... Marcos M
03:37 PM pfSense Docs Todo #12182: Update IPsec to match recent changes: Additional WIP updates:
* https://gitlab.netgate.com/docs/pfSense-docs/-/commit/f5a285f648d86f4d4c2115537cf7cbae6f... Jim Pingle
12:06 PM pfSense Docs Todo #12309 (Closed): Add Light Pattern/Light Meaning for 6100 to Documentation Similar to Other Hardware: LED settings have been added to https://docs.netgate.com/pfsense/en/latest/solutions/netgate-6100/io-ports.html#front... Doug McIntire
09:32 AM pfSense Docs Todo #12309 (In Progress): Add Light Pattern/Light Meaning for 6100 to Documentation Similar to Other Hardware: Doug McIntire
10:24 AM Bug #12391 (Pull Request Review): Uninitialized config variable in ```interface_assign.php```: Christian McDonald
10:21 AM Bug #12391: Uninitialized config variable in ```interface_assign.php```: plus: https://gitlab.netgate.com/pfSense/factory/-/merge_requests/29
ce: https://gitlab.netgate.com/pfSense/pfSense/... Christian McDonald
10:13 AM Bug #12391 (Resolved): Uninitialized config variable in ```interface_assign.php```: ... Christian McDonald
07:39 AM Bug #12390 (Duplicate): i18n zh-hant-TW translate error, incomplete HTML "a" tag: Duplicate of #9344 Jim Pingle
06:31 AM Bug #12390 (Duplicate): i18n zh-hant-TW translate error, incomplete HTML "a" tag: Page path: /vpn_openvpn_server.php?act=edit
Source Code: https://github.com/pfsense/pfsense/blob/master/src/usr/loca... a0000778 a0000778
07:38 AM Bug #12274 (Resolved): Unbound fails to start if its configuration references a python script which does not exist: Jim Pingle
07:37 AM Bug #12389: Help text for RAM disk settings does not mention Captive Portal data: This can wait, it's not critical for it to be in this release. Jim Pingle
07:13 AM pfSense Packages Bug #11888 (Resolved): FreeRADIUS starts twice by /etc/rc.start_packages: Jim Pingle
06:50 AM Bug #11437 (Closed): WireGuard group is not printed in the interface column of the NAT rule list: Not an issue with package. Christian McDonald
06:49 AM Bug #11587 (Closed): WireGuard interfaces do not have data on traffic graphs: WireGuard package and latest kmod correctly reports traffic. Christian McDonald
06:48 AM Bug #11538 (Closed): WireGuard Panic: Unable to hit this panic on wireguard package Christian McDonald
06:47 AM Bug #11691 (Closed): WireGuard MSS Clamping and TCP traffic issues after reboot.: Doesn't seem to be an issue with latest WireGuard package. Christian McDonald
06:46 AM Feature #11374 (Closed): WireGuard Status in GUI: Christian McDonald
01:36 AM Feature #11374: WireGuard Status in GUI: I believe between the status page and the dashboard widget this request is now satisfied. Adam Cooper
12:29 AM Revision 8e2de557: Keep 'enableserial_force' in /conf when a factory reset is performed.: Ticket: #6880 Luiz Souza

09/19/2021

10:16 AM Feature #11588: Automatically suggest next IP address in Wireguard interface subnet when creating a peer: Opened PR 145 (https://github.com/theonemcdonald/pfSense-pkg-WireGuard/pull/145) to resolve this feature request.
Cu... Adam Cooper

09/18/2021

09:50 PM Bug #12274: Unbound fails to start if its configuration references a python script which does not exist: Tested in RC builds of pfSense Plus. Confirmed no longer an issue. Kris Phillips
09:46 PM Regression #12377: NAT Rule Reorder: Tested and confirmed fixed with patch. Tested on RC1 and recreated the bug. Applied the patch and bug went away. A... Kris Phillips
09:28 PM pfSense Plus Bug #12341: Gateway Monitoring Percentage Not Decreasing After Gateway Packet Loss Event: Odd. Not sure why I'm the only one that can't reproduce this one, but this can be closed out. Clearly my testing is... Kris Phillips
04:01 PM Bug #12389 (Resolved): Help text for RAM disk settings does not mention Captive Portal data: Under System>Advanced>Miscellaneous -> RAM Disk Settings > Help text doesn't list captive portal data.
The current... Danilo Zrenjanin
01:38 PM pfSense Packages Bug #11695 (Resolved): PHP error in the last step of the wizard: Tested in:
21.09-RC (amd64)
built on Wed Sep 15 09:10:53 EDT 2021
FreeBSD 12.2-STABLE
The wizard completes su... Max Leighton
12:31 PM Bug #11846 (Resolved): Logging configuration added by a package is not removed on uninstall: Tested with haproxy-devel 0.62_4
/var/etc/syslog.d/haproxy.log.conf is removed on deinstall and no errors are pres... Max Leighton
11:10 AM pfSense Packages Todo #12351: Remove non-functional feeds: I checked with pfBlockerNG-devel 3.1.0. Some of the feeds listed above are removed, but some are still there.
http... Max Leighton
07:07 AM Bug #12388: Captive Portal input validation for "After authentication Redirection URL" and "Blocked MAC address redirect URL" is swapped: hello, how can i solve this problem with this page showing? eyeg eyenop eyenop

09/17/2021

11:38 PM pfSense Packages Bug #11888: FreeRADIUS starts twice by /etc/rc.start_packages: seems fixed
[2.5.2-RELEASE][root@pfSense.home.arpa]/root: /etc/rc.start_packages
Starting package FRR...done.
... Alhusein Zawi
01:28 PM pfSense Docs Todo #12182: Update IPsec to match recent changes: Additional updates:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/de91716aacbf5581c366dea884c2543ebae3c769... Jim Pingle
10:08 AM Bug #12368: Disk widget alignment issue when only two items are in the list: This looks better on the latest CE snapshot. Will need to wait for a new Plus build to test it there. Jim Pingle

09/16/2021

10:25 PM pfSense Packages Bug #11961: FRR OSPF add unwanted area 0 authentication to router ospf: adding Authentication Type in area tab works (peering)
!
interface em0
ip ospf authentication
ip ospf au... Alhusein Zawi
04:20 PM Bug #11863: Unable to create nested URL aliases: Verified working as expected on:... Chris W
03:40 PM Revision 3bab20ed: Some small cleanups with disk widget and library code.: Christian McDonald
03:34 PM Regression #12382: Certificate Depth checking creates OpenVPN micro-outages every time a user authenticates after 2.5.2 upgrade: Well, obviously you know your userbase better than I do, so if more people would be negatively impacted by reverting ... Brett Keller
07:13 AM Regression #12382: Certificate Depth checking creates OpenVPN micro-outages every time a user authenticates after 2.5.2 upgrade: If it works for you to revert that change, by all means do so, but more people were negatively impacted by the other ... Jim Pingle
07:07 AM Regression #12382: Certificate Depth checking creates OpenVPN micro-outages every time a user authenticates after 2.5.2 upgrade: Should be improved in #11829 Viktor Gurov
03:33 PM pfSense Docs Todo #12182 (In Progress): Update IPsec to match recent changes: Work in progress update:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/dfa09be3d35387aa3d3b5665591067f5d2b... Jim Pingle
02:44 PM Regression #12384 (Resolved): Segmentation fault when loading ALTQ traffic shaping rules using FAIRQ: Thanks for testing and following up!
I'm going to close this out for now, but if you happen to be able to replicat... Jim Pingle
02:32 PM Regression #12384: Segmentation fault when loading ALTQ traffic shaping rules using FAIRQ: I just tested this on the 2.6.0.a.20210916.0100 snapshot, and I can no longer reproduce the problem there, so this do... Brett Keller
07:16 AM Regression #12384 (Feedback): Segmentation fault when loading ALTQ traffic shaping rules using FAIRQ: Can you replicate this on a CE 2.6.0 or Plus 21.09 snapshot? It may already be corrected there.
Jim Pingle
02:26 PM pfSense Docs Todo #12273: Feedback on pfSense Configuration Recipes — Configuring DNS over TLS: Thanks for catching that! I've pushed a fix. If it's not up yet, it will be momentarily when the build finishes.
h... Jim Pingle
01:56 PM pfSense Docs Todo #12273: Feedback on pfSense Configuration Recipes — Configuring DNS over TLS: Jim Pingle wrote in #note-2:
> Done.
>
> https://gitlab.netgate.com/docs/pfSense-docs/-/commit/489cafdc46a02979926e0... Cy BiS
08:39 AM pfSense Docs Todo #12273 (Resolved): Feedback on pfSense Configuration Recipes — Configuring DNS over TLS: Done.
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/489cafdc46a02979926e0d36409a6cd01bebe957
Jim Pingle
08:20 AM pfSense Docs Todo #12273 (In Progress): Feedback on pfSense Configuration Recipes — Configuring DNS over TLS: Jim Pingle
12:03 PM Bug #12388 (Pull Request Review): Captive Portal input validation for "After authentication Redirection URL" and "Blocked MAC address redirect URL" is swapped: Jim Pingle
11:45 AM Bug #12388: Captive Portal input validation for "After authentication Redirection URL" and "Blocked MAC address redirect URL" is swapped: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/395 Viktor Gurov
07:53 AM Bug #12388 (Resolved): Captive Portal input validation for "After authentication Redirection URL" and "Blocked MAC address redirect URL" is swapped: On @services_captiveportal.php@ the input validation for "After authentication Redirection URL" and "Blocked MAC addr... Jim Pingle
11:30 AM Bug #12368 (Feedback): Disk widget alignment issue when only two items are in the list: Fixed Christian McDonald
09:38 AM pfSense Packages Bug #12167: BGP TCP setkey not set if neighbor is in peer group: Testing this I notice the following:
There is no way to inherit the MD5 settings from the peer group. It must be s... Chris Linstruth
09:25 AM pfSense Packages Bug #12167: BGP TCP setkey not set if neighbor is in peer group: Target package version: v1.1.0_14 Christian McDonald
08:56 AM Bug #12202 (Resolved): When a CARP VIP VHID change is synchronized to a secondary node, the CARP VIP is removed from the interface and the old VHIDs remain active: This specific case works now. Thank you.
Tested on:
2.6.0-DEVELOPMENT (amd64)
built on Thu Sep 16 01:10:58 EDT 2... Chris Linstruth
08:20 AM Feature #2668 (Feedback): Support aliases in OpenVPN local/remote/tunnel network fields: Picked back to @plus-RELENG_21_09@. Jim Pingle
08:19 AM Regression #12377 (Feedback): NAT Rule Reorder: Picked back to @plus-RELENG_21_09@. Jim Pingle
07:31 AM Bug #12385: deleteVIP() does not check 1:1 NAT and Outbound NAT rules: This should not be enforced strictly. Not all NAT rules need a VIP. It's possible someone may be removing an unnecess... Jim Pingle
01:14 AM Bug #12385: deleteVIP() does not check 1:1 NAT and Outbound NAT rules: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/394 Viktor Gurov
12:22 AM Bug #12385 (Rejected): deleteVIP() does not check 1:1 NAT and Outbound NAT rules: It is possible to delete the Virtual IP that is used in 1:1 NAT rules (destination) and Outbound NAT rules (Translati... Viktor Gurov
07:26 AM pfSense Packages Bug #12386 (Pull Request Review): ```bgp as-path``` and ```bgp community-list``` are present in configuration even when BGP daemon is not enabled: Jim Pingle
12:51 AM pfSense Packages Bug #12386: ```bgp as-path``` and ```bgp community-list``` are present in configuration even when BGP daemon is not enabled: fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/127 Viktor Gurov
12:34 AM pfSense Packages Bug #12386 (Resolved): ```bgp as-path``` and ```bgp community-list``` are present in configuration even when BGP daemon is not enabled: This breaks config loading:... Viktor Gurov
07:15 AM Bug #12387 (Not a Bug): Problem sending logs without hostname: That isn't possible on 2.4.x as it's a limitation of the syslog format used there. It is possible to change the syslo... Jim Pingle
02:40 AM Bug #12387 (Not a Bug): Problem sending logs without hostname: I have three pfsense with version 2.4.5-RELEASE-p1 and they send logs to graylog 4.1, all the sending works correctly... sergio rodriguez

09/15/2021

10:06 PM Regression #12384 (Resolved): Segmentation fault when loading ALTQ traffic shaping rules using FAIRQ: This is the return of Bug #11550 in pfSense 2.5.2.
I originally filed my report as a reply to that bug, but I real... Brett Keller
09:52 PM Bug #12383: Typos in interfaces_assign.php configuration change description strings: PR https://github.com/pfsense/pfsense/pull/4538 Paighton Bisconer
09:52 PM Bug #12383 (Resolved): Typos in interfaces_assign.php configuration change description strings: 3 instances of "assignment" are misspelled as "assignement"
Lines 233, 351, 406. Paighton Bisconer
08:57 PM Revision b146b9b3: Fix Disks widget UI on UFS systems: ```
PHP 7.4.22 | 10 parallel jobs
............................................................ 60/279 (21 %)
.......... Christian McDonald
08:22 PM Regression #12382 (New): Certificate Depth checking creates OpenVPN micro-outages every time a user authenticates after 2.5.2 upgrade: We're running several OpenVPN servers on a single pfSense box at our office, and ever since upgrading from 2.4.5p1 to... Brett Keller
06:23 PM Bug #11481 (Confirmed): NAT Reflection does not work when "NAT Reflection mode for port forwards" is set to "pure nat": I ran into this issue and was able to get more details. I tested this on both 2.4.5p1 and 21.05 with the following se... Marcos M
03:09 PM pfSense Docs Correction #11151 (Closed): avahi_settings.php is missing an entry in help.php: Redirect added using new method. Help link works now on 21.09. Jim Pingle
02:51 PM pfSense Docs Todo #12375 (Closed): Feedback on pfSense Configuration Recipes — Accessing the Firewall Filesystem with SCP: Given that any version released in the past year should support this, if the user isn't updating it, that's on them.
... Jim Pingle
12:12 AM pfSense Docs Todo #12375 (Closed): Feedback on pfSense Configuration Recipes — Accessing the Firewall Filesystem with SCP: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/scp-access.html
*Feedback:*
At least WinSCP 5.18 bet... Viktor Gurov
02:33 PM pfSense Docs Todo #12360 (Closed): Remove ALTQ Note on XG-7100 SFP+ Modules: Merged and deployed. Jim Pingle
10:32 AM pfSense Docs Todo #12360: Remove ALTQ Note on XG-7100 SFP+ Modules: https://gitlab.netgate.com/docs/pfsense-platforms/-/merge_requests/11 Viktor Gurov
01:17 PM Revision 4bd90d66: Fix PHP error on firewall_aliases_edit.php page. Issue #2668: Viktor Gurov
01:10 PM pfSense Docs Correction #9228 (Resolved): Feedback on Hardware — Hardware Sizing Guidance: No additional feedback, so closing. Jim Pingle
01:10 PM pfSense Docs New Content #9753 (New): Feedback on Installing and Upgrading — Writing Disk Images: Jim Pingle
01:10 PM pfSense Docs New Content #10225 (Resolved): Add cryptographic hardware info to the SG-3100 manual: No additional feedback, so closing. Jim Pingle
01:10 PM pfSense Docs Correction #11162 (Resolved): Feedback on Backup and Recovery — Making Backups in the GUI: No additional feedback, so closing. Jim Pingle
01:09 PM pfSense Docs Todo #11716 (Resolved): Feedback on Network Address Translation — Port Forwards: No additional feedback, so closing. Jim Pingle
01:09 PM pfSense Docs New Content #11796 (Resolved): Document the FRR Package: No additional feedback, so closing. Jim Pingle
01:08 PM pfSense Docs Todo #11962 (Resolved): Feedback on Firewall — Aliases: No additional feedback, so closing. Jim Pingle
01:07 PM pfSense Docs Todo #12372 (Resolved): Update "Download" documentation: Jim Pingle
10:53 AM Feature #2668 (Waiting on Merge): Support aliases in OpenVPN local/remote/tunnel network fields: Needs picked back to the @plus-RELENG_21_09@ branch after additional approval. Jim Pingle
08:48 AM Feature #2668 (Feedback): Support aliases in OpenVPN local/remote/tunnel network fields: Merged Viktor Gurov
07:07 AM Feature #2668 (Pull Request Review): Support aliases in OpenVPN local/remote/tunnel network fields: Jim Pingle
02:25 AM Feature #2668: Support aliases in OpenVPN local/remote/tunnel network fields: PHP error on firewall_aliases_edit.php page if OpenVPN server description field is empty... Viktor Gurov
10:52 AM Regression #12377 (Waiting on Merge): NAT Rule Reorder: Needs picked back to the @plus-RELENG_21_09@ branch after additional approval. Jim Pingle
08:25 AM Regression #12377 (Feedback): NAT Rule Reorder: Applied in changeset commit:fa7563991540f98166e2ca5e537229a7f73615d4. Viktor Gurov
07:06 AM Regression #12377 (Pull Request Review): NAT Rule Reorder: Jim Pingle
04:54 AM Regression #12377: NAT Rule Reorder: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/392 Viktor Gurov
04:15 AM Regression #12377 (Resolved): NAT Rule Reorder: Fatal error: Uncaught Error: Call to undefined function reorderoutNATrules() in /usr/local/www/firewall_nat_out.php:5... Niccolò Marchi
09:58 AM pfSense Packages Bug #12381: mOTP with RADIUS drops the VPN connection after 60 minutes: I don't think that's FreeRADIUS, but OpenVPN. IIRC OpenVPN defaults to reconnecting every 60 minutes, but can be chan... Jim Pingle
09:46 AM pfSense Packages Bug #12381 (Rejected): mOTP with RADIUS drops the VPN connection after 60 minutes: from https://forum.netgate.com/topic/165967/2fa-mfa-with-radius-drops-the-vpn-connection-after-60-minutes:... Viktor Gurov
09:53 AM Revision fa756399: Rename incorrect reorder function name in firewall_nat_out.php. Fixes #12377: Viktor Gurov
07:05 AM pfSense Docs Todo #12376 (Duplicate): Feedback on pfSense Configuration Recipes: Duplicate of #9370 Jim Pingle
12:23 AM pfSense Docs Todo #12376 (Duplicate): Feedback on pfSense Configuration Recipes: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/index.html
*Feedback:*
Outdated screenshots (pfSense... Viktor Gurov
01:00 AM Bug #12020 (Resolved): OpenVPN RADIUS-based firewall rules use incorrect port ranges: RADIUS ACL:... Viktor Gurov

09/14/2021

07:15 PM Revision afb0fdd9: Remove unused net/realtek-re-kmod from package repo: Renato Botelho
04:02 PM Bug #10955: XMLRPC sync results in an error when a failover peer IP address is specified in DHCP server settings for an unconfigured interface: Thank you for the info. With the proposed fix, this scenario should not be an issue. Marcos M
03:26 PM Bug #10955: XMLRPC sync results in an error when a failover peer IP address is specified in DHCP server settings for an unconfigured interface: So, while going through the configuration to sanitize them, I noticed the following;
* node1 and node2 had VLAN int... Joachim Tingvold
01:32 PM Bug #11818: Mixed use of aliases in a port range produces unloadable ruleset: Also confirming the attempted combination use of aliases and ports on 2.6 Development:... Chris W
01:22 PM Bug #11818 (Resolved): Mixed use of aliases in a port range produces unloadable ruleset: Jim Pingle
01:16 PM Bug #11818: Mixed use of aliases in a port range produces unloadable ruleset: This is fixed in 21.09.
Trying to use a combination of aliases and ports is rejected:... Steve Wheeler
11:57 AM Bug #12374 (Resolved): Update python to address vulnerabilities < 3.8.12: Details here:
https://vuxml.freebsd.org/freebsd/145ce848-1165-11ec-ac7e-08002789875b.html
Latest 21.09 uses pytho... Marcos M
11:11 AM Bug #12373 (Resolved): Update mpd5 to address vulnerabilities in < 5.9_2: https://vuxml.freebsd.org/freebsd/f55921aa-10c9-11ec-8647-00e0670f2660.html:
Version 5.9_2 contains security fix f... Viktor Gurov
11:02 AM pfSense Docs Todo #12372 (Feedback): Update "Download" documentation: Done:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/cd42f582f93cb7ee4e6e2833d5d95eb67bf53233
https://do... Jim Pingle
10:11 AM pfSense Docs Todo #12372 (Resolved): Update "Download" documentation: There are a few problems with the download documentation at @/install/download-installer-image.html@, including:
*... Jim Pingle
09:51 AM pfSense Packages Bug #12058: pfBlockerNG / "Cannot allocate memory" from Geo blocking IP list: Viktor, thanks for suggesting the duplicate. I'll see if the config change there also fixes my issue and report back... Sean McBride
09:44 AM pfSense Packages Bug #12058 (Duplicate): pfBlockerNG / "Cannot allocate memory" from Geo blocking IP list: Duplicate of #6814 Viktor Gurov
09:37 AM pfSense Packages Bug #11590 (Closed): pfBlocker Issue when IPv6 is disabled: Viktor Gurov
08:36 AM Bug #12371 (Resolved): Remove subnet overlap check on LAN interfaces when using 6rd: Hello,
Can the subnet overlapping check on the lan interfaces be removed if using 6rd? (See attached screenshot)
... Daniel Porsch
07:40 AM Bug #12366 (Pull Request Review): Rotation settings for individual log files do not take effect after saving: Jim Pingle
05:09 AM Bug #12366: Rotation settings for individual log files do not take effect after saving: fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/390 Viktor Gurov
07:37 AM Feature #12370: Add limiters to Queue column on firewall rule list: There are already a lot of columns on that page. While I don't see Limiters being added as a separate column, they co... Jim Pingle
07:30 AM Feature #12370 (New): Add limiters to Queue column on firewall rule list: could you add limiters column to firewall rules page for each interface to
show which firewall rules contain limiter... khaled osama
06:40 AM pfSense Packages Feature #12369 (New): Skip If No Content issue: Even if *Skip If No Content* is ticked if running a command will always result in an email being sent as the command ... Andy Kniveton

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

10/08/2021

10/07/2021

10/06/2021

10/05/2021

10/04/2021

10/03/2021

10/02/2021

10/01/2021

09/30/2021

09/29/2021

09/28/2021

09/27/2021

09/26/2021

09/25/2021

09/24/2021

09/23/2021

09/22/2021

09/21/2021

09/20/2021

09/19/2021

09/18/2021

09/17/2021

09/16/2021

09/15/2021

09/14/2021

09/13/2021

09/12/2021

09/11/2021

09/10/2021

09/09/2021