Project

General

Profile

Activity

From 10/08/2022 to 11/06/2022

11/06/2022

10:21 PM pfSense Packages Regression #13628: FreeRADIUS Users cleared out each time a user is add, removed, or modified
I noticed that the file can also get wiped without touching the RADIUS users at all. I haven't figured out yet how th... Gerke Max Preussner
01:57 AM pfSense Packages Regression #13628: FreeRADIUS Users cleared out each time a user is add, removed, or modified
Tested on
2.7.0-DEVELOPMENT (amd64)
built on Fri Nov 04 06:05:19 UTC 2022
FreeBSD 14.0-CURRENT
I can confirm t... aleksei prokofiev
09:31 PM Bug #13633 (Pull Request Review): DHCPv6 rules are not created for interfaces with static IPv6
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/920
Before, clients on @$ADMIN@ interface do not receive... Marcos M
09:19 PM Bug #13633 (Resolved): DHCPv6 rules are not created for interfaces with static IPv6
Tested on 23.01.
Rules are not created automatically when the DHCPv6 server is enabled on interfaces with a static... Marcos M
08:29 PM pfSense Packages Bug #13405: Wireguard: The webgui becomes excessively slow to respond with a large number of peers
I can also confirm that 50 WG peers are killing a 1537 Max device. Making changes is painful, doubled when I have to... Marc Mapplebeck
08:16 PM Feature #11302: WireGuard XMLRPC sync
Jim Pingle wrote in #note-6:
> Until the other issue is addressed, I have noted the limitation here: https://docs.net... Marc Mapplebeck
05:54 PM Todo #13524 (Pull Request Review): Update reserved alias names
Fix: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/919 Marcos M
02:29 PM Todo #13524: Update reserved alias names
Minor nit but it looks like if the keyword is included in two different sections (Like Original and New) the error me... Chris Linstruth
03:53 PM Bug #13393: DNS Resolver responds with unexpected source address when the DNS over TLS server function is enabled
This looks good now. Chris Linstruth
01:40 PM Bug #13393 (Ready To Test): DNS Resolver responds with unexpected source address when the DNS over TLS server function is enabled
Testing this again on 23.01 gives the following results:
* If @Network Interfaces@ is set to all, unbound will respo... Marcos M
11:47 AM Bug #13393: DNS Resolver responds with unexpected source address when the DNS over TLS server function is enabled
When I select LAN+Localhost in Network Interfaces I get this:... Chris Linstruth
03:03 PM pfSense Packages Bug #13632: tailscale does not survive reboot on pfsense with ram disk in use
The ram disk is configured in pfsense->System->Advanced->Miscellaneous and backup parameters are populated. Bill Flood
02:44 PM pfSense Packages Bug #13632 (Resolved): tailscale does not survive reboot on pfsense with ram disk in use
pfSense-pkg-Tailscale 0.1.0_1pfSense package Tailscale 1.26.2
pfsense 2.6.0-RELEASE (amd64)
With a properly confi... Bill Flood
02:46 PM Bug #12552: "Pull DNS" option within OpenVPN client does not cause pfSense to use DNS servers assigned by remote OpenVPN server
I just switched VPN providers and I still can't use that provider's DNS that's provided via OpenVPN. This seems like... John Williams
01:01 PM pfSense Packages Bug #13623: Snort binary package fails to install on 2.7.0-DEVEL snapshots due to luajit-openresty version problems
I also forgot to add that I do not think this _luajit_ library issue is restricted to just Snort. I suspect any packa... Bill Meeks
11:19 AM pfSense Packages Regression #13570 (New): openvpn-client-export php error in 2.7
There's still some access issues - visiting @vpn_openvpn_export.php@ gives the following error on the latest version:... Marcos M
10:47 AM pfSense Packages Bug #12475 (Confirmed): OpenVPN Client Export does not show certificate without private key
With the new version, the following error message is given when exporting a profile with an RA User server:... Marcos M
10:02 AM pfSense Packages Regression #13631 (Duplicate): FreeRADIUS fails to authenticate users
Tested on @pfSense-23.01.a.20221104.0600@. Same setup works in 22.05.
Using the FreeRADIUS package as a RADIUS aut... Marcos M
03:44 AM Regression #13629: Uncaught TypeError: Cannot access offset of type string on string in /usr/local/www/services_dhcp.php
No, the problem occurs probably on every vlan. More precise if I enable or disable the dhcp server and hit save its t... Louis B

11/05/2022

11:12 PM pfSense Packages Feature #10818: UDP Broadcast Relay
Hello Marcos M, many thanks for your great work. This package will definitely be interesting for a lot of people! Sin... James M
08:46 PM pfSense Packages Bug #13623 (Confirmed): Snort binary package fails to install on 2.7.0-DEVEL snapshots due to luajit-openresty version problems
I can confirm this bug report. Installation log matches on Nov 4th builds:
>>> Installing pfSense-pkg-snort...
... Kris Phillips
11:21 AM pfSense Packages Bug #13623: Snort binary package fails to install on 2.7.0-DEVEL snapshots due to luajit-openresty version problems
Found the change in upstream FreeBSD ports that likely caused this issue: [https://reviews.freebsd.org/D36947?id=1116... Bill Meeks
08:41 PM pfSense Packages Feature #13560: Update FreeRADIUS to version 3.0.26
FreeRADIUS has been updated to 3.2.1 in Freshports for FreeBSD14 on many platforms. Only notable that is missing is ... Kris Phillips
08:32 PM Regression #13593: pfSense-repo.abi left at FreeBSD:14:amd64 after changing update branch to DEVEL and back
I can confirm this on 22.05 when switching to the 23.01 repos as well. Kris Phillips
08:30 PM pfSense Packages Bug #13587: Zabbix-agent62 install fails
Updated title for corrected relevance. Kris Phillips
08:22 PM pfSense Packages Bug #13587: Zabbix-agent62 install fails
Tested on November 4th builds of 23.01. Issue still present in this build where it tries to install zabbix-agent62, ... Kris Phillips
08:29 PM pfSense Packages Bug #13626 (Duplicate): Zabbix Agent 6.2 installation fails
This is a duplicate of https://redmine.pfsense.org/issues/13587 Kris Phillips
08:27 PM pfSense Packages Bug #13612 (Incomplete): Snort building lists is broken
Please provide details on whether this is a CE or Plus problem and what version it affects. This ticket does not hav... Kris Phillips
08:25 PM Bug #12259: Intel em NICs Suffering Performance Degradation on FreeBSD12
Someone please close this issue. It's no longer relevant. Kris Phillips
08:20 PM pfSense Docs Todo #12461 (Resolved): Improve macOS Serial Command Instructions
Docs look good for the scope of macOS. Closing this as Resolved. Kris Phillips
05:43 PM Regression #13629: Uncaught TypeError: Cannot access offset of type string on string in /usr/local/www/services_dhcp.php
Unable to reproduce on build 2.7.0.a.20221104.0600, upgraded from 2.6.
I created a new VLAN, gave it an allow all ... Chris W
01:31 PM Regression #13629: Uncaught TypeError: Cannot access offset of type string on string in /usr/local/www/services_dhcp.php
here a copy of the messages from a few minutes ago Louis B
01:27 PM Regression #13629: Uncaught TypeError: Cannot access offset of type string on string in /usr/local/www/services_dhcp.php
At this moment I am running the same version and did the test again. No problem to reproduce the problem at all.
I d... Louis B
11:33 AM Regression #13629: Uncaught TypeError: Cannot access offset of type string on string in /usr/local/www/services_dhcp.php
I couldn't replicate this issue on the:... Danilo Zrenjanin
02:37 PM Bug #9035: Inactive Interfaces are Hidden in Firewall Rules

does " inactive" mean disabled interface? Alhusein Zawi
02:04 PM Regression #13618 (Confirmed): Creating URL Table (IPs) alias fails on applying
Confirmed on build 2.7.0.a.20221104.0600
In Firewall > Alias, I added five URL type aliases. Clicked save and PHP-... Chris W
12:47 PM Bug #13545: Toggling NAT rules using the button method does not enable/disable corresponding firewall rules
Tested the patch against:... Danilo Zrenjanin
11:44 AM pfSense Packages Bug #13589 (Confirmed): PHP Errors during cellular package installation on CE 2.7
Danilo Zrenjanin
11:25 AM Regression #13627: PHP: Easyrule from the firewall log
Tested the patch against:... Danilo Zrenjanin
01:09 AM pfSense Docs New Content #13401 (Resolved): Best practices doc for rotating credentials and keys
It looks good!
I am marking this ticket resolved. Danilo Zrenjanin

11/04/2022

09:10 PM Revision 6115e76b: Replace direct config accesses in firewall_rules_edit.php. Fixes #13614
Reid Linnemann
05:41 PM Regression #13381 (Resolved): Software VLAN tagging does not work on ``ixgbe(4)`` interfaces
This fix is now merged into 23.01 and works in current snapshots:... Steve Wheeler
05:01 PM Revision 758ee42a: Revert "Change OpenVPN auth to php-cgi for the time being. Fixes #4521"
This reverts commit 1bfdb794cb2a06932da0029ca37f9727c3f74274. Reid Linnemann
03:31 PM Regression #13627 (Pull Request Review): PHP: Easyrule from the firewall log
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/916
This only happens if there are no OpenVPN servers ... Christopher Cope
03:15 PM Regression #13614 (In Progress): Cannot Edit Firewall Rules - 2.7.0-DEVELOPMENT (amd64) built on Mon Oct 31 06:05:27 UTC 2022
There's a direct config array access here that needs to be replaced with the accessor func. Reid Linnemann
02:49 PM Bug #13630 (New): Automatic Configuration Backup system using weak TLS settings
The backend for ACB is using weak TLS settings. Pleas see the following report from SSL Labs: https://www.ssllabs.co... KStar Runner
01:43 PM Regression #13629 (Duplicate): Uncaught TypeError: Cannot access offset of type string on string in /usr/local/www/services_dhcp.php
when switching a vlan related DHCP-server off there is a php crash (2.7 bsd 14)
Fatal error: Uncaught TypeError: C... Louis B
12:17 PM Bug #13538 (Resolved): Deleting an alias marks the subsystem as unclean but also unconditionally reloads the filter configuration
Tested on... Christopher Cope
12:11 PM Bug #4521: OpenVPN authentication and certificate validation fail due to size of data passed through ``fcgicli``
fcgicli restored to execution of ovpn_auth_verify_* in "758ee42ae096fee8436efc89f2c9bcc4ae7ea23d":https://github.com/... Reid Linnemann
11:34 AM Bug #4521: OpenVPN authentication and certificate validation fail due to size of data passed through ``fcgicli``
fcgicli bugs fixed in freebsd-ports/devel change "2993b0084175e2d998f0f294b985371989677d7d":https://github.com/pfsens... Reid Linnemann
12:07 PM Regression #11545 (In Progress): Primary interface address is not always used when VIPs are present
The IPv6 GIF interfaces still have an issue here. The interface address is reported properly by the GUI now, but the ... Jim Pingle

11/03/2022

07:35 PM pfSense Packages Regression #13628: FreeRADIUS Users cleared out each time a user is add, removed, or modified
Other package dependencies:
_bash-5.2.2_1
freeradius3-3.0.25
python39-3.9.15 _ Gerke Max Preussner
07:34 PM pfSense Packages Regression #13628: FreeRADIUS Users cleared out each time a user is add, removed, or modified
My _freeradius3_ package is on 0.15.8_1 Gerke Max Preussner
07:31 PM pfSense Packages Regression #13628 (Resolved): FreeRADIUS Users cleared out each time a user is add, removed, or modified
After upgrading from Stable to Development I noticed that my RADIUS authentication was broken. I'm using a very basic... Gerke Max Preussner
07:07 PM Regression #13627 (Resolved): PHP: Easyrule from the firewall log
Creating an easyrule using the button in the firewall log throws a php error:... Steve Wheeler
11:04 AM pfSense Packages Feature #13361: Add Zabbix 6.2 (agent and proxy) packages
I second what Xavier Roig has just reported. I tried to install both the Agent6.2 and Proxy6.2 on multiple systems t... Nic Bernstein
10:54 AM pfSense Packages Feature #13361: Add Zabbix 6.2 (agent and proxy) packages
Hello,
There seems to be a mistake in the agent installer.
The zabbix62-agent package is installed but during the... Xavier Roig
09:12 AM pfSense Packages Todo #13576 (Resolved): Remove OpenVPN Shared Key Export
Tested on... Christopher Cope
07:48 AM pfSense Packages Bug #12475 (Feedback): OpenVPN Client Export does not show certificate without private key
This should address the remaining issue: https://github.com/pfsense/FreeBSD-ports/commit/34355ebf71b78a6bfca47577fb97... Jim Pingle
07:13 AM pfSense Packages Bug #12475 (In Progress): OpenVPN Client Export does not show certificate without private key
Looks like it's still broken in some way, a few people report seeing the input validation error on the forum now who ... Jim Pingle
07:34 AM Bug #13624: Only one alias in local network of OpenVPN Server works in 2.6.0
A note about the "workaround":
If you have setup a "meta"-alias, that holds the subaliases as suggested by Jim, ad... Florian Bat
05:19 AM Bug #13620 (Duplicate): After adding Route-map FRR crashes
It's a dup of https://redmine.pfsense.org/issues/13564 Danilo Zrenjanin
03:38 AM pfSense Packages Bug #13626 (Duplicate): Zabbix Agent 6.2 installation fails
Here are the installation logs:... Danilo Zrenjanin

11/02/2022

07:27 PM pfSense Plus Feature #13511: Priority Code Point (PCP) option on interface configuration
An alternative GUI interface to enable setting the VLAN to zero is, to allow the VLAN to be set to zero in the GUI.
... Patch Public
07:07 PM Regression #13614 (Resolved): Cannot Edit Firewall Rules - 2.7.0-DEVELOPMENT (amd64) built on Mon Oct 31 06:05:27 UTC 2022
Unable to reproduce on CE 2.7.0.a.20221101.0600. I can successfully edit the default LAN allow rule and create new ru... Chris W
04:01 PM Feature #13625 (New): Add support for CoA (Change of Authorization) to Captive Portal / RADIUS features
It would be really useful if PfSense added support for CoA packets received from freeradius, as coova-chilli does (se... Federico Capoano
02:54 PM pfSense Packages Bug #12475 (Feedback): OpenVPN Client Export does not show certificate without private key
Should be fixed now, though I couldn't reproduce it here. Probably requires landing on just the wrong combination of ... Jim Pingle
02:53 PM pfSense Packages Todo #13576 (Feedback): Remove OpenVPN Shared Key Export
Removed: https://github.com/pfsense/FreeBSD-ports/commit/72f0574b9c991b1de2bf0592e3431b5f310ab759 Jim Pingle
12:19 PM Bug #13624: Only one alias in local network of OpenVPN Server works in 2.6.0
That is definitely undesirable behavior, but at least it's fairly simple to work around. I'm surprised OpenVPN even a... Jim Pingle
12:17 PM Bug #13624: Only one alias in local network of OpenVPN Server works in 2.6.0
Yes, i can confirm. Only using one alias, which contains the other aliases works and expands all of them.
Ok, this "f... Florian Bat
12:08 PM Bug #13624: Only one alias in local network of OpenVPN Server works in 2.6.0
Not saying this shouldn't be looked into, but in most cases only one alias is necessary -- create a new alias which i... Jim Pingle
11:55 AM Bug #13624 (New): Only one alias in local network of OpenVPN Server works in 2.6.0
Issue #2668 implemented the possibility to have host/network aliases in the OpenVPN local/remote/tunnel network field... Florian Bat
09:20 AM pfSense Packages Bug #13623 (Resolved): Snort binary package fails to install on 2.7.0-DEVEL snapshots due to luajit-openresty version problems
The Snort package binary piece (snort-2.9.20_1) fails to install on the latest 2.7.0-DEVEL snapshot due to an apparen... Bill Meeks
06:13 AM Bug #13620 (Confirmed): After adding Route-map FRR crashes
Danilo Zrenjanin
06:12 AM Bug #13620: After adding Route-map FRR crashes
Confirmed this behavior on the:... Danilo Zrenjanin

11/01/2022

09:22 PM pfSense Packages Bug #12475: OpenVPN Client Export does not show certificate without private key
Charles Sprickman wrote in #note-14:
> Denis Grilli wrote in #note-13:
> > Could you tell in more detail what is yo... Charles Sprickman
07:24 PM Regression #13622 (New): QinQ ethertype tags changed
In 2.7/23.01 QinQ uses if_vlan instead of netgraph and set the outer tag ethertype as 802.1ad (0x88a8). That is the e... Steve Wheeler
02:29 PM Feature #13340: Option to change QinQ ethertype to Service VLAN Tag
In 23.01/2.7 the QinQ is handled by if_vlan directly and not netgraph. It now uses s-tags by default.
Since that's a... Steve Wheeler
10:59 AM pfSense Packages Bug #13619: PHP Error in pfblockerNG-devel widget
> Seems like some rules are missing the ['tracker'] key?
If I remember correctly while working on #13156, that is ... Marcos M
10:34 AM pfSense Packages Bug #13619: PHP Error in pfblockerNG-devel widget
Its calling:... BBcan177 .
08:01 AM Bug #13621 (New): GUI allows selection of ICMP types that pf rejects
Example: selecting ICMP types any,echorep,echoreq cause pf to refuse to load the rule:
/rc.filter_configure_sync: ... Chris Linstruth
07:55 AM Bug #13620 (Duplicate): After adding Route-map FRR crashes
Tested on the latest 23.01 (built on Tue Nov 01 06:05:26 UTC 2022)
I enabled FRR with simple settings (Default Rou... Azamat Khakimyanov
07:32 AM pfSense Packages Feature #13608: ACME Not Recognizing new .au domain on wildcard
The version of acme.sh in the ACME package was updated about two weeks ago to version 3.0.5, so it's very current. I ... Jim Pingle

10/31/2022

10:19 PM pfSense Packages Bug #13619 (Resolved): PHP Error in pfblockerNG-devel widget
pfSense-pkg-pfBlockerNG-devel-3.1.0_10... Brad Davis
08:09 PM Regression #13618 (Duplicate): Creating URL Table (IPs) alias fails on applying
Creating URL Table (IPs) alias fails on applying
It just eventually times out and nothing has been created. Tried ... Brad Smith
08:08 PM Regression #13617 (New): PowerD doesn't seem to work
With PowerD enabled and on Hiaptive, CPU remains pinned at max speed. It worked as expected before the FreeBSD 14-bas... Brad Smith
08:05 PM Regression #13616 (New): SDHCI Controller timeouts are back
This occurred in the past and was fixed in a subsequent version. It was somewhere around the 2.4 days but I can't rem... Brad Smith
06:42 PM Revision fef6c79e: openvpn: don't IFF_UP the new tun interface
New openvpn versions set TUNSIFMODE, which FreeBSD's if_tuntap only
allows on interfaces which are not up.
So, don't... Kristof Provost
06:24 PM pfSense Packages Feature #13608: ACME Not Recognizing new .au domain on wildcard
This is the unhelpful response from github:
"Please upgrade to the latest code and try again first. Maybe it's alrea... Rick Strangman
07:21 AM pfSense Packages Feature #13608 (Needs Patch): ACME Not Recognizing new .au domain on wildcard
The place where that error is generated is in the upstream acme.sh code -- you'll need to report that to them, not us... Jim Pingle
02:30 PM Feature #13615 (New): Show details when hovering over macros in firewall rules
Show the which addresses/networks a macro like @LAN net@ resolves to while hovering over it in the firewall NAT/rules... Marcos M
02:22 PM Regression #13614 (Resolved): Cannot Edit Firewall Rules - 2.7.0-DEVELOPMENT (amd64) built on Mon Oct 31 06:05:27 UTC 2022
Fatal error: Uncaught TypeError: Cannot access offset of type string on string in /usr/local/www/firewall_rules_edit.... RED SKULL
01:55 PM pfSense Packages Feature #10818: UDP Broadcast Relay
Wireguard interfaces are point-to-point interfaces and do not support the broadcast flag, hence cannot be used. Marcos M
01:22 PM pfSense Plus Regression #13613 (Resolved): OpenVPN crashes due to if_tuntap changes
Tested patch - issue now fixed. Marcos M
12:34 PM pfSense Plus Regression #13613 (Ready To Test): OpenVPN crashes due to if_tuntap changes
https://gitlab.netgate.com/pfSense/factory/-/commit/47923705f62711ff1764e8eac21607f2bdd07401 Kristof Provost
12:23 PM pfSense Plus Regression #13613 (Resolved): OpenVPN crashes due to if_tuntap changes
Tested on @pfSense-23.01.a.20221031.0600@.
Client/Server (no DCO) crashes only after a reboot - starting it manual... Marcos M
12:20 PM pfSense Plus Regression #13603 (Resolved): OpenVPN with DCO crashes due to userspace code being ahead of kernel
The @dco_set_ifmode@ issue has been resolved after updating to @pfSense-23.01.a.20221031.0600@. Marcos M
11:58 AM pfSense Plus Bug #13602 (Resolved): OpenVPN fails to start again if it crashes with DCO enabled
Tested and it works well - thanks! Marcos M
11:07 AM Todo #13592: Clarify Hardware TCP Segmentation Offloading option
Very good points, in which case it would be helpful to clarify the @Hardware TCP Segmentation Offloading@ option to s... Marcos M
10:40 AM Todo #13592: Clarify Hardware TCP Segmentation Offloading option
As with any tunable that's just a default. That was ~12 years ago and before that we disabled it globally because of ... Jim Pingle
10:33 AM Todo #13592: Clarify Hardware TCP Segmentation Offloading option
Indeed it affects few users. I personally haven't seen it do anything, and it's only served to confuse troubleshootin... Marcos M
10:19 AM Todo #13592: Clarify Hardware TCP Segmentation Offloading option
But it's much more confusing for users to see the flag on the interfaces when it may not actually be active than it i... Jim Pingle
09:54 AM Todo #13592: Clarify Hardware TCP Segmentation Offloading option
It seems to me that the intention for the checkbox is to behave as a global toggle. Marcos M
07:25 AM Todo #13592: Clarify Hardware TCP Segmentation Offloading option
The two settings are not tied together so that's all normal and expected.
The value on the individual network inte... Jim Pingle
08:53 AM Bug #13529: Intel i226 network interfaces do not honor a manually selected link speed
Testing on newest i226 firmware, the link speed appears to report properly now. Clinton Cory
08:45 AM pfSense Packages Bug #13609 (In Progress): Editing ACLs in BIND Package Produces PHP error in CE 2.7.X
Christian McDonald
08:25 AM pfSense Packages Regression #12278 (Resolved): Invalid plugin_certificates() function name
Tested on 22.05
All related functions and files were renamed properly.
I marked this Regression as resolved. Azamat Khakimyanov
07:32 AM pfSense Packages Bug #13611 (Rejected): DNS Alias Mode CNAME issue
There isn't nearly enough information here to tell what happened in your specific case. This site is not for support ... Jim Pingle
07:30 AM pfSense Packages Todo #13532: Sync ACME package with upstream v3.0.5
Peet P wrote in #note-4:
> I see some DNS providers being removed, can we add dns_transip.sh which is in upstream ac... Jim Pingle
06:06 AM Bug #13610: VLAN ID of 0 Not Accepted in CE 2.7 or Plus 23.01
Steve Wheeler wrote in #note-1:
> [...]
> That will than send traffic tagged with vlan id 0 and the pcp tag set.
... Patch Public

10/30/2022

08:56 PM pfSense Packages Bug #13612: Snort building lists is broken
Actually inverting it doesn't work either, removing it seems to be better. In my case when clicking "Show" on any of ... Flole Systems
08:29 PM pfSense Packages Bug #13612 (Resolved): Snort building lists is broken
Somehow in https://github.com/pfsense/FreeBSD-ports/blob/5fc6406094c5c78b0d93cfb37ce29267735df16b/security/pfSense-pk... Flole Systems
05:23 PM pfSense Packages Bug #13587: Zabbix-agent62 install fails
Can confirm this issue on the brand-new SG 6100. Errors are a little different, however:
Install initially appears t... Tux Powered
12:09 PM Bug #13610 (Not a Bug): VLAN ID of 0 Not Accepted in CE 2.7 or Plus 23.01
Creating VLAN with VLAN ID 0 is still invalid:... Steve Wheeler
11:56 AM pfSense Packages Bug #13611 (Rejected): DNS Alias Mode CNAME issue
*Page:* https://docs.netgate.com/pfsense/en/latest/packages/acme/settings-dnsalias.html
*Feedback:*
I have setu... Michael Moffitt
11:49 AM Feature #12982: Add support for RFC7499 in RADIUS library.
Hello, so new information. I was able to install a separate stand-alone Ubuntu server which includes both FreeRadius... Frank Lee
10:57 AM Bug #13585: Multiple VPN Gateways will not completely start a boot.
Outputs of Commands pfctl -vvss, pfctl -vvsr, and netstat -rn4 as requested
 Keith Townsend
10:37 AM Bug #13585: Multiple VPN Gateways will not completely start a boot.
It would be helpful to have the output of @pfctl -vvss@, @pfctl -vvsr@, and @netstat -rn4@ while the bad state exists. Marcos M
10:29 AM Bug #13555: When WAN is lost, ipv6 interface will not renew upon WAN availability
It may be helpful to have DHCP6 debugging enabled under @System / Advanced / Networking@ and getting the full logs bo... Marcos M
09:56 AM pfSense Packages Todo #13532: Sync ACME package with upstream v3.0.5
I see some DNS providers being removed, can we add dns_transip.sh which is in upstream acme 3.0.5?
https://github.... Peet P
09:49 AM Bug #8273 (Confirmed): IPv6 GRE tunnel over PPPoE fails on startup
This is not a duplicate directly because in this scenario the parent interface is not a WAN directly but an internal ... Steve Wheeler
02:49 AM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
Thanks for the effort. Marcus GM

10/29/2022

10:11 PM Bug #13610 (Not a Bug): VLAN ID of 0 Not Accepted in CE 2.7 or Plus 23.01
FreeBSD now supports VLAN tagging of 0 for interfaces, which is important for some ISPs for uplinks. However, the we... Kris Phillips
09:02 PM pfSense Packages Bug #13609: Editing ACLs in BIND Package Produces PHP error in CE 2.7.X
Full crash report:
Crash report begins. Anonymous machine information:
amd64
14.0-CURRENT
FreeBSD 14.0-CURRE... Kris Phillips
09:01 PM pfSense Packages Bug #13609 (Resolved): Editing ACLs in BIND Package Produces PHP error in CE 2.7.X
When editing ACLs in BIND, the following PHP error is thrown:
Fatal error: Uncaught TypeError: Cannot access offse... Kris Phillips
08:58 PM Bug #13555: When WAN is lost, ipv6 interface will not renew upon WAN availability
Kris Phillips wrote in #note-5:
> This redmine can be closed as Not a Bug
No. It can't. It is reproducable on every ... quiet lion
08:55 PM Bug #13555: When WAN is lost, ipv6 interface will not renew upon WAN availability
This redmine can be closed as Not a Bug Kris Phillips
08:56 PM pfSense Packages Bug #13513: Cannot install Squid
Tested on Oct 28th build of CE. Issue still persists for this package. Kris Phillips
08:39 PM Bug #13585: Multiple VPN Gateways will not completely start a boot.
Yes, The delay during initialization would be expected. But the second gateway not coming up at all unless the "Do no... Keith Townsend
03:13 PM Bug #13585: Multiple VPN Gateways will not completely start a boot.

after rebooting, I see a latency in both GW VPN and then after while the GW status will be normal (online)
2.7.0... Alhusein Zawi
06:41 PM pfSense Packages Feature #13608: ACME Not Recognizing new .au domain on wildcard
See attached files Rick Strangman
06:15 PM pfSense Packages Feature #13608: ACME Not Recognizing new .au domain on wildcard
This doesn't seem like a bug, but instead a configuration issue. Can you please provide the full log file with priva... Kris Phillips
06:34 PM Todo #13592: Clarify Hardware TCP Segmentation Offloading option
It looks like there's a disconnect between the sysctl tunable and whether the Hardware TCP Segmentation Offloading bo... Chris W
06:09 PM Regression #13598: fcgicli can output garbage for stdout/stderr read back from php-fpm
Looks good here and no longer seeing the garbage output when running the above commands. Kris Phillips
03:49 PM pfSense Packages Todo #13306: Update NUT to version 2.8.0 to match FreeBSD Packages
Have users running into issues with 2.7... can we get NUT 2.8 pulled in please? Thanks. Denny Page
01:11 PM Bug #13067 (New): Resolve interval for ``filterdns`` may not match the configured value
Tested against:... Danilo Zrenjanin
03:53 AM Bug #13396 (Resolved): Custom logo or background image is created with two dots (``..``) before the file extension
Tested:... Danilo Zrenjanin

10/28/2022

08:58 PM pfSense Packages Feature #13608 (Not a Bug): ACME Not Recognizing new .au domain on wildcard
Australia has a new tld called companyname.au as opposed to the old companyname.com.au
If you create a single domain... Rick Strangman
08:13 PM Revision 3a30311c: Fix malformed format strings in French translation. Fixes #13607
Christian McDonald
03:40 PM Revision 6be5acb1: Fix config path typo when installing firewall schedule cron job. Fixes #13605
Christian McDonald
03:17 PM Bug #13607 (Resolved): Malformed format strings in French translation causing PHP errors.
Christian McDonald
03:17 PM Bug #13607: Malformed format strings in French translation causing PHP errors.
Fixed: https://gitlab.netgate.com/pfSense/pfSense/-/commit/3a30311c28ef8e76fac83fbd24158420f67a0742 Christian McDonald
03:06 PM Bug #13607 (Resolved): Malformed format strings in French translation causing PHP errors.
An audit of the translation PO files uncovered two problematic translation strings. These two strings contained malfo... Christian McDonald
02:37 PM Regression #13583 (Resolved): PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
No errors on... Christopher Cope
02:27 PM Regression #13605 (Resolved): Creating firewall rules with a schedule set triggers a config restore.
Tested patch on @pfSense-23.01.a.20221026.0600@. Now working. Marcos M
10:50 AM Regression #13605: Creating firewall rules with a schedule set triggers a config restore.
Applied in changeset commit:6be5acb1b5f88f0eee3e40072131fab1aa0792f0. Christian McDonald
10:40 AM Regression #13605 (Feedback): Creating firewall rules with a schedule set triggers a config restore.
Fixed in https://gitlab.netgate.com/pfSense/pfSense/-/commit/6be5acb1b5f88f0eee3e40072131fab1aa0792f0 Christian McDonald
02:22 PM Feature #13606 (New): Allowing wildcard domain on DY.fi Dynamic DNS Client
DY.fi added support for wildcard domains *.myname.dy.fi on 15.12.2004 (https://www.dy.fi/?c=news). The wildcard ddns ... Janne Summanen
11:34 AM pfSense Packages Feature #13361: Add Zabbix 6.2 (agent and proxy) packages
Now it shows thx Pim Janssen
10:34 AM pfSense Packages Feature #13361: Add Zabbix 6.2 (agent and proxy) packages
It is presented on the Stable branch at the moment, probably some people need to go to System => Update and wait a bi... Lev Prokofev
10:19 AM pfSense Packages Feature #13361: Add Zabbix 6.2 (agent and proxy) packages
Try again :) Christian McDonald
11:01 AM pfSense Packages Bug #13587 (Confirmed): Zabbix-agent62 install fails
Christian McDonald wrote in #note-2:
> This should now be resolved
Still appears to be an issue. Installation fa... Kris Phillips
10:47 AM pfSense Packages Bug #13587 (Feedback): Zabbix-agent62 install fails
This should now be resolved Christian McDonald
10:57 AM Bug #6361 (Not a Bug): Responsive Mobile Menu issue
Unable to replicate on current stable and development branches. Christian McDonald
10:45 AM Regression #13599 (Resolved): Error when disabling sshd
I was able to reproduce it on... Christopher Cope
08:07 AM pfSense Plus Bug #13602: OpenVPN fails to start again if it crashes with DCO enabled
https://gitlab.netgate.com/pfSense/factory/-/merge_requests/81
Your analysis is spot on. We can resolve this probl... Kristof Provost
06:45 AM pfSense Plus Regression #13603 (Ready To Test): OpenVPN with DCO crashes due to userspace code being ahead of kernel
`dco_set_ifmode: failed to set ifmode=00008002: Operation not supported (errno=45)` happened because the openvpn user... Kristof Provost

10/27/2022

09:05 PM Revision f01cd834: Correctly handle port aliases in port forwarding rules. Fixes #13601
Christian McDonald
06:42 PM Revision f64da88b: Add knobs for zabbix62
Remove knobs that are already the default, like IPv6.
(cherry picked from commit 4e6dbcf4e9ebdd9e78e7fefd43297c09df3... Brad Davis
06:42 PM Revision d654bf4c: Add Zabbix 6.2 pfSense packages to the list of packages to build
Brad Davis
06:38 PM Regression #13605 (Resolved): Creating firewall rules with a schedule set triggers a config restore.
Tested @pfSense-23.01.a.20221026.0600@.
Creating a rule with a @Schedule@ set results in the following:... Marcos M
06:23 PM Revision 4e6dbcf4: Add knobs for zabbix62
Remove knobs that are already the default, like IPv6. Brad Davis
06:02 PM Regression #13604 (Resolved): OpenVPN service status is incorrect
On 22.05, stopping an OpenVPN service under @Status / OpenVPN@ results in a red "OpenVPN Service is Stopped" icon. On... Marcos M
05:52 PM Bug #13132: Multiple ``<sshdata>`` or ``<rrddata>`` sections in ``config.xml`` lead to an XML parsing error during restore
My 2.6.0-RELEASE (amd64) installation right now creates backups with extra sshdata section at the end for some reason... Nazar Mokrynskyi
05:40 PM pfSense Plus Regression #13603 (Resolved): OpenVPN with DCO crashes due to userspace code being ahead of kernel
Tested on @pfSense-23.01.a.20221026.0600@.
Client/Server crashes with DCO enabled:
> dco_set_ifmode: failed to se... Marcos M
05:16 PM pfSense Plus Bug #13602 (Resolved): OpenVPN fails to start again if it crashes with DCO enabled
If OpenVPN crashes with DCO enabled, it doesn't remove the interface which prevents it from starting again. The inter... Marcos M
04:53 PM Regression #13598 (Feedback): fcgicli can output garbage for stdout/stderr read back from php-fpm
Fixed in change "240e1907727eaba6a1d677e631a464d751198aa7":https://github.com/pfsense/FreeBSD-ports/commit/240e190772... Reid Linnemann
04:42 PM Revision 042d75c8: Fix potentially problematic config access in sshd enable/disable. Fixes #13599
Christian McDonald
04:35 PM Regression #13601 (Resolved): Error creating port forward rule with port alias
Tested patch - now working. Marcos M
04:15 PM Regression #13601: Error creating port forward rule with port alias
Applied in changeset commit:f01cd8348f8a0520dfc9265f548d2ec187b55e67. Christian McDonald
04:06 PM Regression #13601 (Feedback): Error creating port forward rule with port alias
Fixed https://gitlab.netgate.com/pfSense/pfSense/-/commit/f01cd8348f8a0520dfc9265f548d2ec187b55e67 Christian McDonald
03:19 PM Regression #13601 (Resolved): Error creating port forward rule with port alias
Tested on @pfSense-23.01.a.20221026.0600@.
# Create the alias test_Port
# Add a port forward rule using the port ... Marcos M
04:31 PM Revision b187fcce: Fix array initialization in rc.initial.setlanip. Fixes #13583
Christian McDonald
03:00 PM pfSense Packages Todo #13590 (Closed): Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
When checking on this I found a problem with changing the menu entry. When a package manages its menu entry, it must ... Jim Pingle
12:15 PM pfSense Packages Bug #13467 (Resolved): ACME: "Unable to find domain name" error when updating Namesilo
Tested against ACME pkg v0.7.3.
It contains the patch. ... Danilo Zrenjanin
12:00 PM Regression #13599: Error when disabling sshd
Applied in changeset commit:042d75c8efab83bbc7978e58d50c45d43a3a4e0c. Christian McDonald
11:43 AM Regression #13599 (Feedback): Error when disabling sshd
Could be a problem. I went ahead and updated the config access to the new API.
https://gitlab.netgate.com/pfSense/... Christian McDonald
11:32 AM Regression #13583 (Feedback): PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
Christian McDonald
11:31 AM Regression #13583: PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
Fixed: https://gitlab.netgate.com/pfSense/pfSense/-/commit/b187fccefee4d99b391e965436b390ae1d03dfd9
Try again Christian McDonald
11:26 AM Regression #13583 (New): PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
Jim Pingle
04:36 AM Regression #13583: PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
The issue still exists on the:... Danilo Zrenjanin
05:24 AM pfSense Packages Bug #13495 (Resolved): ACME package's "DNS-Sleep" field's help text is incorrect
Tested against ACME 0.7.3.
The help text has been updated accordingly.
*DNS-Sleep*... Danilo Zrenjanin
05:06 AM Feature #13584 (Resolved): Input validation for numbered DHCP options in static mappings
Tested on:... Danilo Zrenjanin
04:41 AM pfSense Packages Bug #13588 (Resolved): Arping package PHP8.1 Error in 2.7
Tested on the:... Danilo Zrenjanin

10/26/2022

10:50 PM pfSense Packages Bug #13596: pfBlockerNG-devel Unbound does not start when using DNSBL python regex with multiple commented lines
Ok I see the issue. It's because the existing code takes the comment and uses that as the key value. So "test" is a d... BBcan177 .
06:13 PM pfSense Packages Bug #13596: pfBlockerNG-devel Unbound does not start when using DNSBL python regex with multiple commented lines
On pfSense dev snapshots (FreeBSD 14) with latest pfBlockerNG-devel.
SUCCESS... Marcos M
05:47 PM pfSense Packages Bug #13596: pfBlockerNG-devel Unbound does not start when using DNSBL python regex with multiple commented lines
Can you post the /var/unbound/pfb_unbound.ini file contents working and not working?
And what version of pfSense? BBcan177 .
09:21 PM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
At https://www.sudo.ws/ they use both, so both versions seem to be acceptable. We can use whatever fits better here, ... Flole Systems
08:49 PM Revision 5ed254c4: Remove direct $config accesses form rc.filter_synchronize. Fixes Issue #13446
Reid Linnemann
07:44 PM Bug #13600 (Duplicate): Saving a DDNS entry can lead to the GUI timing out.
On @pfSense-23.01.a.20221026.0600@:
# Add a DDNS entry with:
** Service Type: Cloudflare
** Disable: checked
** I... Marcos M
07:05 PM Regression #13598 (In Progress): fcgicli can output garbage for stdout/stderr read back from php-fpm
Many scripts, including rc.start_packages, use fcgicli to instruct php-fpm to load and execute a script rather than s... Reid Linnemann
06:31 PM Regression #13598 (Resolved): fcgicli can output garbage for stdout/stderr read back from php-fpm
After upgrading to 23.01, the console now shows the following when executing @/usr/local/sbin/fcgicli -f /etc/rc.star... Marcos M
06:56 PM Regression #13599: Error when disabling sshd
Could not replicate on @pfSense-23.01.a.20221026.0600@. Marcos M
06:38 PM Regression #13599 (Resolved): Error when disabling sshd
On system_advanced_admin.php when unchecking the 'Enable Secure Shell' and saving the page give this error:
```
F... Brad Davis
05:38 PM Revision 29e53480: Skip empty dnsmasq custom options
Jim Pingle
02:46 PM pfSense Docs Todo #13595 (Feedback): Update the cryptographic accelerators page with DCO info
This should cover it. We already have a section out there for acceleration with DCO, but I put a brief summary here a... Jim Pingle
11:17 AM pfSense Packages Feature #13361: Add Zabbix 6.2 (agent and proxy) packages
Sorry, but it does not seem to show up in the package manager. Or will it take a bit longer to show up? Pim Janssen
11:15 AM Regression #13593: pfSense-repo.abi left at FreeBSD:14:amd64 after changing update branch to DEVEL and back
https://forum.netgate.com/topic/175432/unable-to-check-for-updates-pkg-static-wrong-architecture/ Steve Y
08:27 AM pfSense Packages Feature #9833: ACME: add ability to use custom ACME server
+1 for this.
Using hacky scripts to add my domain to config files is not a suitable solution Carsten Kragelund
03:29 AM pfSense Packages Feature #8547: fwknop Port Knocking Package
I'm adding my vote here as well. The point is that we all know that we should not open any management services to the... Kristian Kirilov
03:26 AM pfSense Packages Bug #10990 (Resolved): net-snmp IPv6 listen address needs to be wrapped in square brackets
Tested on 22.05
No needs for square brackets to enable net-snmp on IPv6 address.
I marked this bug as resolved Azamat Khakimyanov

10/25/2022

07:43 PM pfSense Packages Regression #13597 (Pull Request Review): haproxy-devel PHP8 regression when saving a backend entry
This fix is for both haproxy and haproxy-devel:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/291... Marcos M
07:11 PM pfSense Packages Regression #13597 (In Progress): haproxy-devel PHP8 regression when saving a backend entry
Marcos M
06:33 PM pfSense Packages Regression #13597 (Resolved): haproxy-devel PHP8 regression when saving a backend entry
When saving a backend in haproxy-devel on 22.11, the following PHP error is thrown and the backend entry is not saved... Marcos M
05:23 PM Revision 19604202: Perform proper input validation on static DHCP mapping additional BOOTP/DHCP Options. Fixes #13584
Christian McDonald
05:06 PM Revision 04e69275: Fix saving dhcp6c-dns setting in services_dhcpv6.php. Fixes #13594
Christian McDonald
04:41 PM Revision a229259a: services_dhcpv6.php: Fix a PHP81 config access error
Christian McDonald
03:58 PM pfSense Packages Bug #13596 (Resolved): pfBlockerNG-devel Unbound does not start when using DNSBL python regex with multiple commented lines
Enabling @Regex Blocking@ in @Unbound python mode@ and adding comments in @Python Regex List@ cant prevent unbound fr... Marcos M
01:24 PM Bug #13594 (Resolved): "Provide DNS servers to DHCPv6 clients" setting does not reflect a changed value until the page is reloaded
Tested patch on @22.11.a.20221021.0600@. Now works correctly. Marcos M
12:15 PM Bug #13594: "Provide DNS servers to DHCPv6 clients" setting does not reflect a changed value until the page is reloaded
Applied in changeset commit:04e6927518ff2736a0a385c794192dda33c2bdb7. Christian McDonald
12:06 PM Bug #13594 (Feedback): "Provide DNS servers to DHCPv6 clients" setting does not reflect a changed value until the page is reloaded
Fixed in https://gitlab.netgate.com/pfSense/pfSense/-/commit/04e6927518ff2736a0a385c794192dda33c2bdb7
The problem he... Christian McDonald
10:18 AM Bug #13594 (Resolved): "Provide DNS servers to DHCPv6 clients" setting does not reflect a changed value until the page is reloaded
After checking the option @Provide DNS servers to DHCPv6 clients@ under @Services / DHCPv6 Server & RA@ then clicking... Marcos M
12:30 PM Feature #13584 (Feedback): Input validation for numbered DHCP options in static mappings
Applied in changeset commit:196042028df24092a0ed87282000e81598591562. Christian McDonald
12:23 PM Feature #13584: Input validation for numbered DHCP options in static mappings
Fixed in https://gitlab.netgate.com/pfSense/pfSense/-/commit/196042028df24092a0ed87282000e81598591562 Christian McDonald
10:47 AM pfSense Docs Todo #13595 (Resolved): Update the cryptographic accelerators page with DCO info
The OpenVPN section on this page should include information for using DCO with hardware accelerators.
https://docs... Steve Wheeler
09:35 AM Bug #13585: Multiple VPN Gateways will not completely start a boot.
Discovered a workaround for this issue. Enabling the "Do not add Static Routes" in the Gateway monitoring options in ... Keith Townsend
09:18 AM Regression #13593 (Resolved): pfSense-repo.abi left at FreeBSD:14:amd64 after changing update branch to DEVEL and back
After changing the update branch to DEVEL and back, /usr/local/share/pfSense/pkg/repos/pfSense-repo.abi is left conta... Steve Y
06:15 AM pfSense Packages Bug #10426 (Resolved): Filer must validate that File name is uniq
Tested on 22.05
It's not allowed to create files with the same name.
I've also tested on 22.01 with Filer 0.60.6_... Azamat Khakimyanov
05:27 AM pfSense Packages Feature #9762 (Resolved): Squid Reverse Proxy Change redir domain(s) to use regex
Tested on 22.05
There is an 'Redirect is Regular Expression' option which allows to choose "dstdomain" or "dstdom_... Azamat Khakimyanov

10/24/2022

09:58 PM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
Thanks bud ! Marcus GM
09:11 PM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
That's where menu entries end up post-install. That isn't where the menu entry comes from in the package definition (... Jim Pingle
08:41 PM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
Just wondering if '/cf/conf/config.xml' is the correct place to rename menu entries ? Marcus GM
08:38 PM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
Noted. Thanks. Marcus GM
07:27 PM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
I'm aware of that distinction. What I'm saying is that it should be "sudo" everywhere to match the name of the softwa... Jim Pingle
07:15 PM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
Hi Jim,
Thanks for the update.
Pls note that I am not referring to the 'sudo' command but to to the 'sudo' entry ... Marcus GM
07:50 AM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
The program is actually named "sudo" (lowercase), but there are a couple references to it that show it capitalized, s... Jim Pingle
06:51 PM Revision 5479fd1c: Remove extraneous and malformed meta refresh tag during proto/port change for web UI. Fixes #13591
Christian McDonald
04:27 PM Regression #13522: Minnowboard Turbot additions are no longer present
This should be fixed as of 5667935a3058064442fc16363f825dfc4bce0c90.
I don't have the hardware to test this myself... Kristof Provost
02:28 PM Bug #13591 (Resolved): Changing the GUI port does not redirect the browser to the new port on save
Tested patch on @22.11.a.20221021.0600@. Now works correctly. Marcos M
02:00 PM Bug #13591: Changing the GUI port does not redirect the browser to the new port on save
Applied in changeset commit:5479fd1ca4c9cbdb764b34361f1d48cace1a204f. Christian McDonald
01:52 PM Bug #13591 (Feedback): Changing the GUI port does not redirect the browser to the new port on save
Christian McDonald
01:52 PM Bug #13591: Changing the GUI port does not redirect the browser to the new port on save
I suspect that this has been broken for a while now. The issue is caused by a malformed meta tag being inserted at th... Christian McDonald
01:00 PM Bug #13591 (Resolved): Changing the GUI port does not redirect the browser to the new port on save
Under System / Advanced / Admin Access, changing the TCP port and clicking Save shows a message that the page is bein... Marcos M
01:21 PM Todo #13592 (New): Clarify Hardware TCP Segmentation Offloading option
Under @System / Advanced / Networking@, the option @Disable hardware TCP segmentation offload@ is checked by default.... Marcos M
11:57 AM pfSense Packages Bug #13566: Non-devel pfBlocker Package Broken in 2.7 CE with PHP 8.1
BBCan177 is currently finalizing changes for pfBlockerNG-devel for 2.7/ 23.01. When those are submitted, devel and no... Reid Linnemann
11:23 AM Bug #13539: Missing descriptions for referrers to firewall aliases cause empty strings for references to be returned when deleting an in-use alias
Alhusein Zawi wrote in #note-3:
> the error when deleting used alias "Cannot delete alias. Currently in use by filte... Reid Linnemann
09:55 AM pfSense Packages Bug #13588: Arping package PHP8.1 Error in 2.7
Fixed https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/290/diffs?commit_id=9693f93967a14baabbcc6a5b2... Christian McDonald
09:54 AM pfSense Packages Bug #13588 (Feedback): Arping package PHP8.1 Error in 2.7
Christian McDonald
07:41 AM pfSense Packages Bug #13582 (Not a Bug): Zabbix service gives error about required "Hostname" field, even when the field is populated
Hostnames/FQDNs have rules governing their format. Hostnames cannot have spaces. While Zabbix may allow spaces in the... Jim Pingle
07:35 AM pfSense Plus Bug #13577 (Not a Bug): Network Time Protocol (NTP) Mode 6 Scanner
Jim Pingle

10/23/2022

04:33 PM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
https://imgur.com/a/HBI6tS1 Marcus GM
03:00 PM pfSense Packages Todo #13590: Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
grep -ri 'sudo' file_name Marcus GM
02:59 PM pfSense Packages Todo #13590 (Closed): Fix inconsistent capitalization of ``sudo`` in package (menu entry, config page, etc.)
Guys,
I have installed the 'sudo' package.
It appears in small case ( 'sudo' ) under the Main Menu -> System.
... Marcus GM
09:43 AM Regression #13581: Empty Dynamic DNS entry causes PHP errors in various contexts
I have been receiving this error too. No RFC2136 client enabled and no RFC2136 entries in the backup config file.
I... Ronald Schellberg
02:31 AM pfSense Packages Bug #13587: Zabbix-agent62 install fails
I can confirm this behavior on 2.7 CE
Full output of install
>>> Installing pfSense-pkg-zabbix-agent62...
Updat... aleksei prokofiev
02:28 AM pfSense Packages Bug #13588: Arping package PHP8.1 Error in 2.7
Yes, I can confirm such bug on 2.7 CE aleksei prokofiev
02:22 AM pfSense Packages Bug #13589: PHP Errors during cellular package installation on CE 2.7
Yes, I can confirm such bug on 2.7 CE aleksei prokofiev

10/22/2022

08:59 PM Regression #13581: Empty Dynamic DNS entry causes PHP errors in various contexts
I have unbound enabled because I am using pfblockerng - I am not using a dyndns client. TyphooN .
07:58 PM pfSense Packages Todo #13532: Sync ACME package with upstream v3.0.5
was successfully able to update ACME to 0.7.3 on 22.05 Jordan G
07:51 PM pfSense Packages Bug #13571: Tailscale disconnection problem
Kris Phillips wrote in #note-1:
> There is not enough information here for a proper bug report. Please provide more... fang xn
12:45 PM pfSense Packages Bug #13571 (Incomplete): Tailscale disconnection problem
There is not enough information here for a proper bug report. Please provide more details, including the pfSense or ... Kris Phillips
07:33 PM Bug #13539: Missing descriptions for referrers to firewall aliases cause empty strings for references to be returned when deleting an in-use alias

the error when deleting used alias "Cannot delete alias. Currently in use by filter rule id 3. " in built of Fri Oc... Alhusein Zawi
07:06 PM Regression #13583: PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
just confirming this is present on Plus as well when testing snapshot 22.11-DEVELOPMENT-amd64-20221021-0600 Jordan G
06:52 PM pfSense Packages Bug #13582: Zabbix service gives error about required "Hostname" field, even when the field is populated
Kris Phillips wrote in #note-2:
> Are you editing the config file manually or something and just using the webConfig... Caleb Hornbeck
02:30 PM pfSense Packages Bug #13582 (Incomplete): Zabbix service gives error about required "Hostname" field, even when the field is populated
Marking as Incomplete until additional information can be provided. Kris Phillips
02:30 PM pfSense Packages Bug #13582: Zabbix service gives error about required "Hostname" field, even when the field is populated
Are you editing the config file manually or something and just using the webConfigurator interface to start and manag... Kris Phillips
05:14 PM Feature #13584: Input validation for numbered DHCP options in static mappings
This is on 2.6.0-RELEASE (amd64). Jonathan DeFreeuw
12:42 PM Feature #13584: Input validation for numbered DHCP options in static mappings
Hello Jonathan,
What version of pfSense or pfSense Plus did you test this on? The bug report includes no Affected... Kris Phillips
02:48 PM pfSense Packages Bug #13589: PHP Errors during cellular package installation on CE 2.7
Full crash report:
Crash report begins. Anonymous machine information:
amd64
14.0-CURRENT
FreeBSD 14.0-CURRE... Kris Phillips
02:47 PM pfSense Packages Bug #13589 (Resolved): PHP Errors during cellular package installation on CE 2.7
Full install log:
>>> Installing pfSense-pkg-cellular...
Updating pfSense-core repository catalogue...
pfSense-... Kris Phillips
02:45 PM pfSense Packages Bug #13588: Arping package PHP8.1 Error in 2.7
Full crash report:
Crash report begins. Anonymous machine information:
amd64
14.0-CURRENT
FreeBSD 14.0-CURRE... Kris Phillips
02:44 PM pfSense Packages Bug #13588 (Resolved): Arping package PHP8.1 Error in 2.7
Attempting to use arping in 2.7 produces the following error:
Parse error: Unmatched ']' in /usr/local/www/pkg_edi... Kris Phillips
02:39 PM pfSense Packages Feature #13560: Update FreeRADIUS to version 3.0.26
Current release of freeRADIUS is 3.0.25 in the 2.7/23.01 builds.
Checking FreshPorts this is the latest availabl... Kris Phillips
02:35 PM pfSense Packages Regression #13570 (Resolved): openvpn-client-export php error in 2.7
OpenVPN Client Export throws no PHP errors now in my testing either. Closing as Resolved. Kris Phillips
02:26 PM pfSense Packages Bug #13587 (Resolved): Zabbix-agent62 install fails
When installing the Zabbix-agent62 package, it will attempt install Zabbix-agent6 and then fail. Installing zabbix-a... Kris Phillips
01:31 PM pfSense Plus Bug #13577: Network Time Protocol (NTP) Mode 6 Scanner
Checking /var/etc/ntpd.conf on 22.05, the proper "notrap" and "nomodify" config line items are present
restrict defa... Kris Phillips
12:06 PM Bug #13555: When WAN is lost, ipv6 interface will not renew upon WAN availability
Kris Phillips wrote in #note-3:
> Correction: I was able to reproduce this with one of my two ISPs after I changed so... quiet lion
11:16 AM pfSense Docs Todo #13586: Add note for adjusting MSS on IPsec VTIs
https://gitlab.netgate.com/docs/pfSense-docs/-/merge_requests/54 Chris W
11:13 AM pfSense Docs Todo #13586 (Closed): Add note for adjusting MSS on IPsec VTIs
System > Advanced > Firewall & NAT: Enable Maximum MSS only applies to Phase 2 connections in tunnel mode. Added a no... Chris W
06:57 AM Bug #13585 (Closed): Multiple VPN Gateways will not completely start a boot.
This issue was discussed at forum thread [[https://forum.netgate.com/topic/175376/strange-gateway-issues-with-2-7-0-d... Keith Townsend

10/21/2022

08:20 PM Feature #13584 (Resolved): Input validation for numbered DHCP options in static mappings
Bug: Incorrectly formatted values in Additional BOOTP/DHCP Options for Static DHCP Mappings cause dhcpd to crash. For... Jonathan DeFreeuw
07:06 PM Revision 81777072: Fixes for problematic config access in rc.initial.setlanip. Fixes #13583
Christian McDonald
04:17 PM pfSense Packages Bug #13582: Zabbix service gives error about required "Hostname" field, even when the field is populated
Upon further testing, this seems to be an issue related to bug #13128 as it relates to input validation. If I set the... Caleb Hornbeck
02:57 AM pfSense Packages Bug #13582 (Not a Bug): Zabbix service gives error about required "Hostname" field, even when the field is populated
When configuring the Zabbix agent service, I can't seem to get around the error that says "The following input errors... Caleb Hornbeck
02:15 PM Regression #13583: PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
Applied in changeset commit:817770726a20d50523a6bd5247c6b17ac6e5c897. Christian McDonald
02:09 PM Regression #13583: PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
https://gitlab.netgate.com/pfSense/pfSense/-/commit/817770726a20d50523a6bd5247c6b17ac6e5c897 Christian McDonald
02:09 PM Regression #13583 (Feedback): PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
Christian McDonald
12:25 PM Regression #13583 (Resolved): PHP error when defining an IP address and gateway manually from the Console menu using option 2) Set Interface(s) IP address
... Danilo Zrenjanin
02:14 PM Regression #13581: Empty Dynamic DNS entry causes PHP errors in various contexts
The line number seems to indicate that you might have RFC2136 dyndns client enabled? Can you share anything related t... Christian McDonald
12:31 PM pfSense Packages Feature #13361 (Resolved): Add Zabbix 6.2 (agent and proxy) packages
Zabbix 6.2 Proxy and Agent are now both available in CE and Plus repos Christian McDonald
12:16 PM Regression #13563: PHP Error when attempting to save configuration after disabling a gateway
This one is fixed. Danilo Zrenjanin
11:26 AM Regression #13563 (Resolved): PHP Error when attempting to save configuration after disabling a gateway
Christian McDonald
11:25 AM Regression #13563: PHP Error when attempting to save configuration after disabling a gateway
I have a fix in progress for that, please make a new redmine for it. Christian McDonald
07:06 AM Regression #13563: PHP Error when attempting to save configuration after disabling a gateway
Tested against:... Danilo Zrenjanin

10/20/2022

11:20 AM Regression #13581: Empty Dynamic DNS entry causes PHP errors in various contexts
I have 2 users that are in the admins group, if that is relevant. TyphooN .
11:19 AM Regression #13581: Empty Dynamic DNS entry causes PHP errors in various contexts
I get this error upon logging into the web interface. Unsure if it is related but the traffic graphs are no longer wo... TyphooN .
11:07 AM Regression #13581 (Resolved): Empty Dynamic DNS entry causes PHP errors in various contexts
PHP Errors:
[20-Oct-2022 11:23:20 America/New_York] PHP Fatal error: Uncaught TypeError: Cannot access offset of typ... TyphooN .
10:50 AM pfSense Packages Bug #13515 (Resolved): Snort with PHP 8.1 - TypeError when saving edits to an interface
Jim Pingle
10:35 AM pfSense Packages Bug #13515: Snort with PHP 8.1 - TypeError when saving edits to an interface
This issue has been resolved with the merging of Pull Request 1191 as detailed here: https://github.com/pfsense/FreeB... Bill Meeks
10:50 AM pfSense Packages Bug #13531 (Resolved): Suricata GUI broken with PHP 8.1
Jim Pingle
10:37 AM pfSense Packages Bug #13531: Suricata GUI broken with PHP 8.1
This issue and several other PHP 8.1 related issues in the Suricata package have been resolved by the merging of Pull... Bill Meeks
05:59 AM Feature #13580 (New): Batch creation of User Certificates
Hello,
I would like to request a method to generate a lot of certificate users at once (as i am in the process of ch... Xavier Sirard
02:20 AM pfSense Packages Bug #12916: pfBlockerNG-devel cron job does not trigger xmlrpc sync
Viktor Gurov wrote in #note-3:
> fix:
> https://github.com/pfsense/FreeBSD-ports/pull/1158
I've manually added t... Caleb Hornbeck

10/19/2022

07:50 PM Revision 9178a649: More PHP81 fixes for gwlb.inc. Fixes #13563
Christian McDonald
06:50 PM pfSense Packages Bug #13154 (Resolved): pfBlocker causing excessive CPU load
Fixes are merged and working:
3.1.0_6 for pfSense CE
3.1.0_7 for pfSense Plus Marcos M
06:50 PM pfSense Packages Regression #13156 (Resolved): pfBlockerNG IP block stats do not work
Fixes are merged and working:
3.1.0_6 for pfSense CE
3.1.0_7 for pfSense Plus Marcos M
04:47 PM Revision a1ca121f: Change text in info block on Status > IPsec. Fixes #13398
Christopher Cope
03:47 PM pfSense Packages Feature #11163 (Feedback): Preferred Chain option
Addressed in ACME pkg v0.7.3 Jim Pingle
03:46 PM pfSense Packages Feature #12789 (Feedback): Show expiration date of certificates in the ACME package list
Addressed in ACME pkg v0.7.3 Jim Pingle
03:46 PM pfSense Packages Bug #13053 (Feedback): LoopiaAPI error handling
Addressed in ACME pkg v0.7.3 Jim Pingle
03:46 PM pfSense Packages Bug #13467 (Feedback): ACME: "Unable to find domain name" error when updating Namesilo
Addressed in ACME pkg v0.7.3 Jim Pingle
03:46 PM pfSense Packages Bug #13495 (Feedback): ACME package's "DNS-Sleep" field's help text is incorrect
Addressed in ACME pkg v0.7.3 Jim Pingle
03:45 PM pfSense Packages Todo #13532 (Feedback): Sync ACME package with upstream v3.0.5
https://github.com/pfsense/FreeBSD-ports/commit/80c6bb731c469fabcc41a90a2a648fecde2c6f12
ACME pkg v0.7.3
Synchroniz... Jim Pingle
07:14 AM pfSense Packages Todo #13532 (In Progress): Sync ACME package with upstream v3.0.5
Jim Pingle
03:29 PM pfSense Plus Bug #13577: Network Time Protocol (NTP) Mode 6 Scanner
The remote NTP server responds to mode 6 queries. Devices that respond to these queries have the potential to be used... Adam Esslinger
03:13 PM pfSense Plus Bug #13577 (Not a Bug): Network Time Protocol (NTP) Mode 6 Scanner
Im running a Nessuss scan against my pfsense+ firewall version pfsense+ 22.05-RELEASE (amd64) and it reports that pfs... Adam Esslinger
03:24 PM Revision e759996d: OVPN linkdown script improvements
Jim Pingle
03:23 PM Bug #13579 (Resolved): Incorrect quoting of Split DNS attribute value in ``strongswan.conf``

Configuring more than one domain name (space separated) in IPsec mobile client Split DNS UI incorrectly wraps the s... Rogelio Baucells
03:20 PM Bug #13578 (Rejected): FreeBSD Vulnerabilities
We run our own scans and deal with such things internally, we do not need outside input in this area.
 Jim Pingle
03:19 PM Bug #13578 (Rejected): FreeBSD Vulnerabilities
Im running a Nessuss scan against my pfsense+ firewall version pfsense+ 22.05-RELEASE (amd64) and it reports that Fre... Adam Esslinger
02:55 PM Regression #13563 (Feedback): PHP Error when attempting to save configuration after disabling a gateway
Applied in changeset commit:9178a64972685f1e66dd4429e37becdcad47ac99. Christian McDonald
02:51 PM Regression #13563: PHP Error when attempting to save configuration after disabling a gateway
Fixed some more potential problematic config access https://gitlab.netgate.com/pfSense/pfSense/-/commit/9178a64972685... Christian McDonald
11:48 AM Todo #13398 (Feedback): Information box on ``status_ipsec.php`` says "IPsec not enabled" even when a tunnel is established
Merged. Christopher Cope
10:30 AM pfSense Packages Regression #13570: openvpn-client-export php error in 2.7
Yes, the shared key parts are deprecated and should be removed. I made a separate issue for that: https://redmine.pfs... Jim Pingle
09:03 AM pfSense Packages Regression #13570: openvpn-client-export php error in 2.7
Hi,
I just updated to the newest Version an it looks good. Client-Export seems to work now.
Shared Key Expo... John Doe
10:30 AM pfSense Packages Todo #13576 (Resolved): Remove OpenVPN Shared Key Export
The OpenVPN Client Export package has a function to export shared key tunnels. As shared key is now deprecated upstre... Jim Pingle
07:28 AM pfSense Packages Feature #11931: Add support for validating a domain's ownership via Google Cloud Cloud DNS
This would also require adding a dependency for @net/google-cloud-sdk@ to get the @gcloud@ command on the firewall. T... Jim Pingle
07:24 AM pfSense Packages Todo #9200 (Needs Patch): Add DNS support for Google domain to Acme manager
There is #11931 for Google Cloud, there is nothing we can do got Google Domains. Google needs to come up with an API ... Jim Pingle
07:10 AM pfSense Packages Bug #13567 (Resolved): Confirmation Prompt Missing Text on Deletion
Jim Pingle
03:59 AM pfSense Packages Bug #13567: Confirmation Prompt Missing Text on Deletion
After applying the patch, I was prompted with the following text:... Danilo Zrenjanin
07:03 AM pfSense Plus Bug #13572 (Not a Bug): SG-3100 switch wrong behavior
Jim Pingle
05:31 AM pfSense Docs Todo #13557 (Resolved): Minnowboard Turbo: Add ZFS install warning
It looks good.
I am marking this ticket resolved. Danilo Zrenjanin
04:48 AM pfSense Packages Bug #11961 (Resolved): FRR OSPF add unwanted area 0 authentication to router ospf
Adding Simple Authentication on the interface doesn't add any kind of authentication on the router OSPF part.... Danilo Zrenjanin

10/18/2022

08:47 PM pfSense Plus Bug #13569: Restarting an OpenVPN server running on a CARP VIP in an HA cluster can disrupt unrelated TCP states
Additional notes while working with cjl:
Commenting out the line @/sbin/pfctl -i $1 -Fs@ in @/usr/local/sbin/ovpn-lin... Marcos M
04:38 PM pfSense Plus Bug #13572: SG-3100 switch wrong behavior
The problem has been solved with the help of stephenw10 and johnpoz
Details can be found here:
https://forum.netg... Marcelo Cury
09:05 AM pfSense Plus Bug #13572: SG-3100 switch wrong behavior
Disregard that VLAN199 in the topology, that doesn't exist anymore.
Follows a pcap made in host 192.168.255.251:
 Marcelo Cury
08:53 AM pfSense Plus Bug #13572 (Not a Bug): SG-3100 switch wrong behavior
Problem description: Connections going to host 192.168.255.253 are being sent to 192.168.255.251
*VLAN100 LAN: 192... Marcelo Cury
03:14 PM Revision 9633ec32: Omit irrelevant info from auth error. Fixes #13574
Jim Pingle
10:37 AM pfSense Packages Bug #11836 (Confirmed): FRR ACCEPTFILTER shows out of order prefix-list
Marcos M
03:50 AM pfSense Packages Bug #11836: FRR ACCEPTFILTER shows out of order prefix-list
When I generate the FRR config via the GUI, it actually formats and displays the ACCEPTFILTER correctly, so the above... Gavin Owen
10:31 AM pfSense Packages Feature #13575 (Resolved): Update to frr 9.0.1
The current frr package version is 7.5.1_3 - frr 7.5.1 was released on 2021-03-07 https://github.com/FRRouting/frr/re... Marcos M
10:20 AM Bug #13574 (Feedback): Extra remote address information can confuse ``sshguard``
Applied in changeset commit:9633ec324eada0b870962d3682d264be577edc66. Jim Pingle
10:09 AM Bug #13574 (Resolved): Extra remote address information can confuse ``sshguard``
The authentication system attempts to be informative and print extra information along with IP addresses to completel... Jim Pingle
09:25 AM Bug #13573: DHCP Server generates an invalid configuration for static mappings when defining network booting and UEFI HTTPBoot URL
May be the same or related to https://redmine.pfsense.org/issues/13554, but this was referencing vlan configuration i... Jason Montleon
09:15 AM Bug #13573 (Resolved): DHCP Server generates an invalid configuration for static mappings when defining network booting and UEFI HTTPBoot URL
If I go down to Network Booting, check enable, and add a UEFI HTTPBoot URL pfSense adds an option for every static ma... Jason Montleon
08:40 AM pfSense Packages Regression #13570: openvpn-client-export php error in 2.7
Hi, thanks for the feedback. This should be resolved in the next build. I also saw another potentially problematic co... Christian McDonald
05:41 AM pfSense Packages Regression #13570: openvpn-client-export php error in 2.7
Greetings,
fyi:
I just updated to the newest Version 2.7.0.a.20221018.0600 and got a different php Error:
P... John Doe
03:10 AM pfSense Packages Bug #13571 (Incomplete): Tailscale disconnection problem
pppoe dial-up network, Tailscale will fail to connect after redialing after disconnection, and needs to change the po... fang xn
02:09 AM Regression #13488: All Captive Portal users are given the same limiter pipe pair
any clue when a patch for 22.05 will be available ? jeroen van breedam

10/17/2022

09:41 PM pfSense Packages Bug #11836: FRR ACCEPTFILTER shows out of order prefix-list
Matthew D wrote in #note-7:
> It looks to me like, with the patch, the "seq xx" numbering has been corrected so that... Gavin Owen
03:21 PM pfSense Packages Bug #13567 (Feedback): Confirmation Prompt Missing Text on Deletion
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/commit/c7e504583ade6839b7f4e271761c332f637fe194 Christian McDonald
02:44 PM pfSense Docs Todo #13568 (Closed): SG-1100 usb/serial console:driver installation: macOS ≥ 10.13: add note about enabling driver
Note added and deployed for both 1100 and 5100 (the only two using PL2303). The actual prompt/procedure was a bit dif... Jim Pingle
01:45 PM Revision 01e3679a: Excluded valgrind from arm since it has not been ported there
Brad Davis
10:36 AM pfSense Packages Regression #13570 (Feedback): openvpn-client-export php error in 2.7
Fixed https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/commit/39a6cd58f0fdc790ccd8eacd0c98b8e81b3e3fc5 Christian McDonald
08:17 AM pfSense Packages Regression #13570 (Resolved): openvpn-client-export php error in 2.7
Greeting,
opening the Client Export Utility with pfSense 2.7 throws a php-Error:
Fatal error: Uncaught TypeErro... John Doe
08:56 AM pfSense Plus Bug #13569: Restarting an OpenVPN server running on a CARP VIP in an HA cluster can disrupt unrelated TCP states
A few points here after working with cjl a bit trying to narrow it down:
* The states that disappear are not direc... Jim Pingle
06:48 AM pfSense Plus Bug #13569: Restarting an OpenVPN server running on a CARP VIP in an HA cluster can disrupt unrelated TCP states
Verified. Running OpenVPN server bound to Localhost and port forwarding an IP Alias/CARP VIP to it looks like a reaso... Chris Linstruth
03:43 AM pfSense Plus Bug #13569: Restarting an OpenVPN server running on a CARP VIP in an HA cluster can disrupt unrelated TCP states
forgot to add: without OpenVPN running on VIP or even with OpenVPN runnning on WAN, there is no problem with TCP stre... Azamat Khakimyanov
03:37 AM pfSense Plus Bug #13569 (New): Restarting an OpenVPN server running on a CARP VIP in an HA cluster can disrupt unrelated TCP states
Our customer (Ticket #1161128024) pointed out on possible problem with HA cluster and TCP streams. During troubleshoo... Azamat Khakimyanov
07:55 AM Bug #13565: LOR on Boot for Static Routes Startup Item in KVM environment
It's a non-fatal LOR. Can leave this open to investigate since it's already here but we decided not to open individua... Jim Pingle
07:50 AM Regression #13559 (Resolved): GUI not starting after update to 2.7
Jim Pingle
07:48 AM pfSense Packages Bug #11185 (Resolved): Redis service stopping before NtopNg
Jim Pingle
07:47 AM pfSense Packages Bug #11404 (New): Incorrect prefix/access lists migration on update
Jim Pingle
07:45 AM Regression #13553 (Closed): PHP error when creating a new limiter
Jim Pingle
07:42 AM Bug #13525: Memory leak in PF when retrieving Ethernet rules
any eta on a fix for 22.05 ?
remembering (to reboot a firewall every 20 days) is not my thing.
 jeroen van breedam

10/16/2022

01:18 PM pfSense Docs Todo #13568 (Closed): SG-1100 usb/serial console:driver installation: macOS ≥ 10.13: add note about enabling driver
https://docs.netgate.com/pfsense/en/latest/solutions/sg-1100/connect-to-console.html
should include a note, copied... Steven Kan

10/15/2022

09:50 PM pfSense Packages Regression #13156: pfBlockerNG IP block stats do not work
I can also confirm this issue exists in 3.1.0_6, the same line has to be changed. Adrian Hansraj
09:30 PM pfSense Packages Regression #13156: pfBlockerNG IP block stats do not work
Yep, same problem, same fix still works. O E
09:03 PM Bug #13561 (Resolved): Unable to set web interface session timeout to ``0`` (i.e. never expire)
Looks good. Using the snapshot:
2.7.0-DEVELOPMENT (amd64)
built on Fri Oct 14 06:04:12 UTC 2022
FreeBSD 14.0-CUR... Chris W
07:56 PM pfSense Packages Bug #13567 (Resolved): Confirmation Prompt Missing Text on Deletion
When you delete a cron task, the browser prompt to confirm states "Are you sure you want to ?", like it's missing a v... Kris Phillips
07:46 PM pfSense Packages Bug #13566 (Resolved): Non-devel pfBlocker Package Broken in 2.7 CE with PHP 8.1
Several PHP 8.1-related bugs are fixed in the devel version, but these persist in the stable release.
Going to t... Kris Phillips
07:40 PM pfSense Docs Todo #13543 (Confirmed): Feedback on Packages — pfBlocker-NG Package
Confirmed to be present on both the stable and devel branches of pfBlockerNG Kris Phillips
06:56 PM Bug #13555: When WAN is lost, ipv6 interface will not renew upon WAN availability
Correction: I was able to reproduce this with one of my two ISPs after I changed some settings.
Disabling the opti... Kris Phillips
06:49 PM Bug #13555: When WAN is lost, ipv6 interface will not renew upon WAN availability
I'm unable to reproduce this. I have two WANs with IPv6 and when I unplug the cable on either one, then reconnect it... Kris Phillips
06:44 PM Bug #13565 (Closed): LOR on Boot for Static Routes Startup Item in KVM environment
When booting the following message is present in the boot list:
Setting up static routes...Invoking IPv6 network d... Kris Phillips
06:38 PM Regression #13559: GUI not starting after update to 2.7
Looks good here as well. This can be marked as resolved. Kris Phillips
06:35 PM pfSense Packages Bug #13564 (Confirmed): PHP error after creating a Route Map
I can confirm this bug report. Creating an empty Route Map produces this error even when not settings are applied. Kris Phillips
05:10 AM pfSense Packages Bug #13564 (Resolved): PHP error after creating a Route Map
... Danilo Zrenjanin
06:12 PM pfSense Packages Bug #11185: Redis service stopping before NtopNg
not seeing this when disabling via ntopng settings or stopping the service from the dashboard widget 22.11.a.20221013... Jordan G
04:57 PM pfSense Packages Bug #11404: Incorrect prefix/access lists migration on update

upgraded from 22.01 to 22.05
IPv6 prefix list was not changed to IP4
ipv6 prefix-list test2 seq 10 deny fe80... Alhusein Zawi
02:09 PM Regression #13550 (Closed): Pfsense 2.7 October 7 Snapshot manualmount, failed boot
Chris W
02:05 PM Regression #13550 (Resolved): Pfsense 2.7 October 7 Snapshot manualmount, failed boot
From the Oct 14 snapshot (current latest at the time), this is resolved. The system boots normally, GUI is accessible... Chris W
07:52 AM pfSense Packages Bug #13562 (Confirmed): HAProxy PHP error on upgrade to PHP8.1 update
I was able to successfully install haproxy-devel 0.62_11.... Danilo Zrenjanin
03:40 AM Regression #13553: PHP error when creating a new limiter
Tested:... Danilo Zrenjanin
02:44 AM Regression #13563 (Confirmed): PHP Error when attempting to save configuration after disabling a gateway
Tested on the:... Danilo Zrenjanin

10/14/2022

07:39 PM Revision 46245a43: Make a better effort to describe an alias reference. Fixes #13539
Each of deleteAlias(), openvpnAlias(), and staticrouteAlias() are called when
deleting or modifying an alias to indic... Reid Linnemann
07:39 PM Revision f2523415: Do no reload the filter if $apply is false in deleteAlias. Fixes #13538
Reid Linnemann
03:50 PM Bug #13539 (Feedback): Missing descriptions for referrers to firewall aliases cause empty strings for references to be returned when deleting an in-use alias
Applied in changeset commit:46245a43caa5bab36406fa9591922dd383d1d954. Reid Linnemann
03:50 PM Bug #13538 (Feedback): Deleting an alias marks the subsystem as unclean but also unconditionally reloads the filter configuration
Applied in changeset commit:f2523415a7eabf1c9552870b97c48c878bd819c5. Reid Linnemann
01:03 PM Bug #13545 (Pull Request Review): Toggling NAT rules using the button method does not enable/disable corresponding firewall rules
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/909 Christopher Cope
11:27 AM pfSense Docs Todo #13557 (Feedback): Minnowboard Turbo: Add ZFS install warning
Notes added and deployed to published docs:
https://gitlab.netgate.com/docs/platforms-docs/-/commit/f50bae3e222322... Jim Pingle
07:01 AM Regression #13563 (Resolved): PHP Error when attempting to save configuration after disabling a gateway
PHP Error when attempting to save configuration after disabling a gateway
PHP ERROR: Type: 1, File: /etc/inc/gwlb.... Keith Townsend

10/13/2022

08:08 PM pfSense Packages Bug #13562: HAProxy PHP error on upgrade to PHP8.1 update
Robert Johnston wrote:
> Attempting to install either version of haproxy gives the following error on installation
... Robert Johnston
05:53 PM pfSense Packages Bug #13562 (Duplicate): HAProxy PHP error on upgrade to PHP8.1 update
Attempting to install either version of haproxy gives the following error on installation... Robert Johnston
07:44 PM Regression #13559: GUI not starting after update to 2.7
Looks good. Upgraded from CE 2.6 to 2.7.0.a.20221013.0600 and the GUI started up on reboot as expected. Chris W
12:20 PM Regression #13559: GUI not starting after update to 2.7
Applied in changeset commit:5a63c712e519b3a07f4e0877cd18f5199ec26278. Christian McDonald
12:14 PM Regression #13559 (Feedback): GUI not starting after update to 2.7
https://gitlab.netgate.com/pfSense/pfSense/-/commit/5a63c712e519b3a07f4e0877cd18f5199ec26278 Christian McDonald
09:30 AM Regression #13559 (Confirmed): GUI not starting after update to 2.7
Christian McDonald
07:58 AM Regression #13559 (Resolved): GUI not starting after update to 2.7
Greetings,
I have not found a thread that already mentioned it, so i post it here.
After I updated my pfSense... John Doe
05:42 PM Revision 8d3e1bb5: Add Zabbix 6.2 pfSense packages to the list to build
Brad Davis
05:13 PM Revision 5a63c712: Fix LDAP authentication for PHP8.1. Fixes #13559
Christian McDonald
05:04 PM Bug #13545 (In Progress): Toggling NAT rules using the button method does not enable/disable corresponding firewall rules
Christopher Cope
04:39 PM Revision 092a715a: Fix session timeout expiry. Fixes #13561
Christian McDonald
11:45 AM Bug #13561: Unable to set web interface session timeout to ``0`` (i.e. never expire)
Applied in changeset commit:092a715abb98605a54cf66b79fbd737d09c064da. Christian McDonald
11:39 AM Bug #13561: Unable to set web interface session timeout to ``0`` (i.e. never expire)
https://gitlab.netgate.com/pfSense/pfSense/-/commit/092a715abb98605a54cf66b79fbd737d09c064da Christian McDonald
11:38 AM Bug #13561 (Resolved): Unable to set web interface session timeout to ``0`` (i.e. never expire)
Incorrect validation code was matching @<= 0@ instead of @< 0@ Christian McDonald
10:57 AM pfSense Packages Feature #13560 (New): Update FreeRADIUS to version 3.0.26
3.0.26 has been released with support for TLS 1.3 in EAP-TLS, PEAP, and TTLS. Some users have asked about updating th... Max Leighton
05:53 AM pfSense Packages Bug #11477: FRR does not recognize some BFD options
Tested on:... Danilo Zrenjanin
04:20 AM pfSense Packages Bug #13558 (New): PFBlockerNG Incorrect planning of GeoIP updates
PFBlockerNG incorrectly only downloads GeoIP updates on the first Thursday of the month.
1. Maxmind indicates on i... Juan V. Rodríguez Rodríguez

10/12/2022

07:15 PM pfSense Docs Todo #13557 (Resolved): Minnowboard Turbo: Add ZFS install warning
In 2.6 and 22.01 the installer defaults to ZFS but the MBT cannot currently boot ZFS if the the i915 driver module is... Steve Wheeler
05:22 PM Revision fb82d307: Add valgrind to pfPorts
Christian McDonald
04:08 PM pfSense Packages Regression #13156: pfBlockerNG IP block stats do not work
Same here, problem still exists.
 Atte Laukkanen
01:40 AM pfSense Packages Regression #13156: pfBlockerNG IP block stats do not work
I can confirm this also. Problem still exists in 3.1.0_6 OpIT GmbH
09:07 AM Bug #13555: When WAN is lost, ipv6 interface will not renew upon WAN availability
> IPv4 WAN setup ?
Ethernet to [Nokia] Fibre ONT [Verizon US]
> Multi WAN or not ?
Single WAN.
> What is... quiet lion
06:57 AM Bug #13556 (Not a Bug): "Clear all DHCP leases" button breaks ability to view DHCP leases
That action stops the daemon, removes the lease database, then starts it again. Entries are not automatically added b... Jim Pingle
01:41 AM pfSense Packages Bug #13154: pfBlocker causing excessive CPU load
I can confirm this also. Problem still exists in 3.1.0_6 OpIT GmbH

10/11/2022

09:45 PM Bug #13554: Configuration file error caused by setting UEFI HTTPBoot URL in DHCP Service
Interestingly, this issue does not arise if the UEFI HTTPBoot URL is enabled on the default LAN interface DHCP Servic... Paul Hiatt
06:59 PM Bug #13556 (Not a Bug): "Clear all DHCP leases" button breaks ability to view DHCP leases
After doing a fresh install of pfsense 2.6.0 on top of Protectli Vault FW4B, everything seemed to be going well.
T... Bubba Sparxxx
05:30 PM Bug #13466: dhcp server with static mapping and aditional pools with "mac allow" list , dont work as expected.
Jim Pingle wrote in #note-1:
> You're feeding the configuration conflicting information. If you add a MAC address to... Alex Werle Baule
04:41 PM Revision 6d457a52: Fixed usage of image_type_to_extension. Fixes #13396
Christopher Cope
04:17 PM Bug #13555 (Duplicate): When WAN is lost, ipv6 interface will not renew upon WAN availability
See: https://forum.netgate.com/topic/174029/if-internet-goes-down-ipv6-won-t-work-until-reboot
Steps to reproduce:... quiet lion
03:13 PM Todo #12782 (Resolved): Disable ``pkg`` compatibility flag which creates ``txz`` file extension symbolic links
Brad Davis
03:10 PM Bug #13014: Deadlock in Charon VICI interface
It didn't get pushed back to the next version, there won't be a 22.11 as there is still a significant amount of work ... Jim Pingle
03:02 PM Bug #13014: Deadlock in Charon VICI interface
Is there any idea when this issue may get fixed? It keeps being endlessly pushed back to the next version. The forum ... Gassy Antelope
01:27 PM Revision 727ed08b: Fix shaper.inc for PHP81. For #13553
Christian McDonald
11:50 AM Bug #13396 (Feedback): Custom logo or background image is created with two dots (``..``) before the file extension
Applied in changeset commit:6d457a52bf0e4cdacd741ecb9c86faefb6def722. Christopher Cope
09:36 AM Bug #13257 (Resolved): Exporting a PKCS#12 file from the certificate manager does not use the intended encryption algorithm
That's a good enough test in addition to all the testing I've done. It's passed and functional testing and inspection... Jim Pingle
07:54 AM Bug #13257: Exporting a PKCS#12 file from the certificate manager does not use the intended encryption algorithm
I looked at this mainly using macos as a client and it seemed to function well. Successful import using "low" and uns... Chris Linstruth
08:28 AM Regression #13553 (Feedback): PHP error when creating a new limiter
https://gitlab.netgate.com/pfSense/pfSense/-/commit/727ed08bbdf53fd62a2cb4e8d59cc0576da71363 Christian McDonald
07:40 AM Regression #13553 (Confirmed): PHP error when creating a new limiter
... Jim Pingle
06:55 AM Bug #8087: Provide Calling-Station-ID to RADIUS backed VPN connections
Has there been any update on this? Ran into the same issue, pfSense OpenVPN not forwarding the Radius parameters to DUO. Brandon Verkada
05:54 AM Bug #3132: Gateway events for IPv6 affect IPv4 services and vice versa
Possible also related to this issue I found https://redmine.pfsense.org/issues/13552 where IPv4 signpost files in the... Phil Lee
12:44 AM pfSense Packages Feature #10818: UDP Broadcast Relay
So glad you sirs are developing this. Thank you very much.
However, my only issue right now is I cant add wireguar... gen hwe

10/10/2022

11:01 PM Bug #13554: Configuration file error caused by setting UEFI HTTPBoot URL in DHCP Service
NOTE: *Affected Architecture* should be SG-1100, arm64 (not amd64), I selected the wrong one. Paul Hiatt
09:17 PM Bug #13554 (Duplicate): Configuration file error caused by setting UEFI HTTPBoot URL in DHCP Service
I'm attempting to enable Network Booting from a UEFI HTTPBoot URL on one of my VLANs.
I can enable network booting... Paul Hiatt
06:56 PM pfSense Packages Regression #13156: pfBlockerNG IP block stats do not work
FWIW, I believe that this issue is still present in the just released pfBlockerNG-devel 3.1.0_6.
Same fix needed a... Denny Page
06:48 PM pfSense Packages Bug #13154: pfBlocker causing excessive CPU load
This issue is still present in the just released pfBlockerNG-devel 3.1.0_6.
Same fix as before:... Denny Page
04:44 PM Regression #13553 (Resolved): PHP error when creating a new limiter
Adding a new Limiter to Firewall>Traffic Shaper>Limiters results in a PHP Error/Crash
2.7 Developer snapshot Keith Townsend
02:34 PM Bug #13552: Dashboard - uptime shows nothing and gateway widget loses default gateway soon after PPPoE comes up
In addition to the above, I would think that ppp-linkdown, when bringing down an IPv6 network, should also be removin... Phil Lee
12:32 PM Bug #13552 (Duplicate): Dashboard - uptime shows nothing and gateway widget loses default gateway soon after PPPoE comes up
This seems to be the same as #12811 Jim Pingle
11:41 AM Bug #13552 (Duplicate): Dashboard - uptime shows nothing and gateway widget loses default gateway soon after PPPoE comes up
Most attempts at bringing up PPPoE will result in about 5 seconds of uptime showing before the uptime count and the I... Phil Lee
10:23 AM Bug #13545: Toggling NAT rules using the button method does not enable/disable corresponding firewall rules
aleksei prokofiev wrote in #note-4:
> I've tested it on firefox, chrome and edge. 22.05 release.
> To recreate the ... Christopher Cope
08:32 AM Regression #13550: Pfsense 2.7 October 7 Snapshot manualmount, failed boot
Also noticed that /boot/loader.conf is almost empty and missing the usual params.. Only has this:
autoboot_delay="... RED SKULL
07:11 AM Regression #13535 (Resolved): Pfsense 2.7 (14.0-CURRENT) - Freeradius, Pfblocker not working or showing up in menu
Jim Pingle
07:09 AM Bug #13551 (Duplicate): Pfsense 2.7 October 9 Snapshot manualmount, failed boot
No need for a new/separate issue, the other one is still open.
 Jim Pingle
06:12 AM Bug #9296: Alias content is sometimes incomplete when an alias contains both FQDN and IP address entries
Tested on 22.05, 2.7-CE-DEV and 22.11-DEV (built on Fri Oct 07 15:14:37 UTC 2022)
I created different aliases:
- ... Azamat Khakimyanov

10/09/2022

07:15 PM Bug #13487: GUI IPV6-WAN-status stays "Offline, Packetloss" after a short communication hick up
I'm pretty sure this is one of those beautiful filter-reload issues that causes packet loss. It's a regression that w... Flole Systems
05:18 PM Bug #13551 (Duplicate): Pfsense 2.7 October 9 Snapshot manualmount, failed boot
Same failed boot issue due to opensolaris, zfs kos, and kernel not loading.
First noted and opened here: https://... RED SKULL
05:11 PM Regression #13550: Pfsense 2.7 October 7 Snapshot manualmount, failed boot
btw, this is also an issue on the latest October 9th build so I will open another ticket RED SKULL
05:10 PM Regression #13550: Pfsense 2.7 October 7 Snapshot manualmount, failed boot
thanks Christian. I found that this is partially correct. the load commands work but you will need to enter the follo... RED SKULL
01:59 PM Bug #13545: Toggling NAT rules using the button method does not enable/disable corresponding firewall rules
I want to apologize for selecting 2.6 in "affected version". Wasn't certain what to pick, so I picked the current CE.... Jens Kristensen
01:54 AM Bug #13545: Toggling NAT rules using the button method does not enable/disable corresponding firewall rules
I've tested it on firefox, chrome and edge. 22.05 release.
To recreate the issue:
1. Create port forward, then auto... aleksei prokofiev
09:26 AM Bug #13542: Boot delay caused when OpenVPN config uses alias list that relies on DNS
I just realized you were confused by what I was referring to in my workaround.
I meant that if I change the setting:... Adrien Carlyle
09:19 AM Bug #13542: Boot delay caused when OpenVPN config uses alias list that relies on DNS
In the OpenVPN server configuration option "IPv4 Local network(s)" I use an alias that contains FQDN hostnames like s... Adrien Carlyle

10/08/2022

08:21 PM Regression #12821: Intel e1000 driver (``em``, ``igb``) cannot pass packets tagged with VLAN ``0``
Here is my test script in the event that disabling vlanhwfilter becomes necessary for next release instead. Kris Phillips
08:17 PM pfSense Packages Bug #13513: Cannot install Squid
Confirmed still present in Oct 7th builds. Kris Phillips
08:14 PM pfSense Packages Bug #13526 (Not a Bug): Invalid message from WireGuard about a wrong public key for peer
Marking as Not a Bug as it seems to have been a copy/paste error in Android. Thank you for following up! Kris Phillips
08:11 PM Regression #13535: Pfsense 2.7 (14.0-CURRENT) - Freeradius, Pfblocker not working or showing up in menu
Appears to be fixed without a patch needed in Oct 7th builds. Kris Phillips
08:08 PM Regression #13550: Pfsense 2.7 October 7 Snapshot manualmount, failed boot
Christian McDonald wrote in #note-2:
> Reboot into the loader prompt, press 3 at the pfSense/FreeBSD boot menu
>
... Kris Phillips
08:52 AM Regression #13550: Pfsense 2.7 October 7 Snapshot manualmount, failed boot
Reboot into the loader prompt, press 3 at the pfSense/FreeBSD boot menu
Then run the following
load /boot/kernel/k... Christian McDonald
03:23 AM Regression #13550: Pfsense 2.7 October 7 Snapshot manualmount, failed boot
FYI: I see the October 7th update shows error 404 when attempting to download on pfsense site but is still available ... RED SKULL
02:27 AM Regression #13550 (Closed): Pfsense 2.7 October 7 Snapshot manualmount, failed boot
Pulled October 7th Snapshot fails to boot and stops as manualroot> prompt. none of the options work.
Loader vari... RED SKULL
07:59 PM Bug #13542: Boot delay caused when OpenVPN config uses alias list that relies on DNS
This doesn't sound like a bug, as the issue is not present when using different DNS servers based on the original rep... Kris Phillips
07:55 PM Bug #13545: Toggling NAT rules using the button method does not enable/disable corresponding firewall rules
Lev Prokofev wrote in #note-2:
> I can confirm it on the 22.05
>
> The associated FW rule will be disabled/enable... Kris Phillips
02:25 AM Bug #13545: Toggling NAT rules using the button method does not enable/disable corresponding firewall rules
I can confirm it on the 22.05
The associated FW rule will be disabled/enabled if you use a blue check pictogram to... Lev Prokofev
06:48 PM pfSense Packages Bug #10692: PIMD starts twice at boot
this is still present on 22.11 20221007-1510/pimd0.0.3_5
just enabling the package shows it starting twice in the l... Jordan G
05:39 PM pfSense Plus Bug #13358 (Resolved): Traffic to OpenVPN DCO RA clients above the first available tunnel IP address is incorrectly routed
This is fixed in current snapshots.... Steve Wheeler
 

Also available in: Atom