Activity

30 days up to

User

Subprojects

Activity

From 03/20/2023 to 04/18/2023

04/18/2023

08:05 PM Bug #14288: Setting system DNS servers can incorrectly modify routes for interface addresses: Some related discussion:
https://forum.netgate.com/topic/162791/
The issue was introduced in 2.5.1 with https://redm... Marcos M
07:21 PM Bug #14288 (Resolved): Setting system DNS servers can incorrectly modify routes for interface addresses: Tested on 23.01
Using an address on @lo0@ (e.g. a localhost VIP or simply @127.0.0.1) as a DNS sever under System ... Marcos M
08:03 PM Bug #12078: DNS Resolution Behavior does not consider named when setting localhost: The following patch allows for the localhost DNS server to be added automatically when the DNS Resolution behavior is... Marcos M
03:57 PM pfSense Packages Bug #13632: tailscale does not survive reboot on pfsense with ram disk in use: And as promised:
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=270921 Christian McDonald
03:39 PM pfSense Packages Bug #13632 (Feedback): tailscale does not survive reboot on pfsense with ram disk in use: @v0.1.3@ includes migration code that will move the state file from @/var/db/tailscale/tailscale.state@ to a location... Christian McDonald
11:00 AM pfSense Packages Bug #13632 (In Progress): tailscale does not survive reboot on pfsense with ram disk in use: Looking at this.
First I need to expose the --statedir tailscaled option to the rc script (and upstream it). I'm t... Christian McDonald
01:31 PM pfSense Docs Todo #14234 (Feedback): Update Packet Capture docs to reflect the new GUI: I reorganized things a bit after merging the docs changes and filled in a little more info: https://gitlab.netgate.co... Jim Pingle
12:56 PM pfSense Packages Bug #14287 (Resolved): pfBlockerNG does not uninstall cleanly when using RAM disks: UNchecking "keep config" and then trying to remove the 3.2.0_3 package results in PHP error.
Other user reports th... Loh Phat
12:45 PM Regression #14217: IPsec Phase 2 rekey failures with some PFS key groups: Also working well here as well. Rekey happened on schedule and traffic continued to pass, where before it had failed:
Jim Pingle
12:16 PM Regression #14217 (Resolved): IPsec Phase 2 rekey failures with some PFS key groups: Confirmed this is rekeying as expected using PFS key group 18 in todays CE snnapshot: 2.7.0.a.20230418.0600... Steve Wheeler
08:21 AM Bug #14285 (Bogus): Fatal trap 12: page fault while in kernel mode: You are running a very old build. Please update. Christian McDonald
05:13 AM Bug #14285 (Bogus): Fatal trap 12: page fault while in kernel mode: Been using system for years and suddenly page fault error causing reboot it seems - during very low load/low traffic ... Ole Nielsen
04:53 AM Revision 4c8844e3: rc.carpmaster: remove openlog() call which changes php-fpm log facility: In commit 0eae38cd2511e304c4660f8aeead751564f9dfc9, this call was added
alongside other changes to the rc.carpmaster ... Reid Linnemann
04:25 AM Bug #14031: Identical SMTP notifications repeat in an infinite loop under certain conditions: Tested on 23.01
I was able to reproduce this issue.
After applying c5faa351c1ef6d4555478a7f50b3a16ece7e0b2a, the iss... Azamat Khakimyanov

04/17/2023

06:55 PM pfSense Packages Bug #11054: Check Client Certificate CN not working as described: pfSense CE @2.6.0@
FreeRADIUS package version @0.15.7_33@
As of April 2023, I was able to recreate this issue on acc... Greg Maub
06:19 PM Revision 11d14d62: Remove invalid syslog test. Fixes #14283: Having an empty syslog config section is valid, as is not having a
section at all. We should always generate the conf... Jim Pingle
04:04 PM Feature #13382: Packet Capture GUI with granular control: Alhusein Zawi wrote in #note-30:
> Is there way to keep/add the classic view of the packet capture ?
> in many case... Marcos M
08:55 AM Feature #13382 (Feedback): Packet Capture GUI with granular control: Applied in changeset commit:0d9f5d520a886769bcbd8929db98e53a6623f569. Marcos M
08:47 AM Feature #13382 (Pull Request Review): Packet Capture GUI with granular control: Jim Pingle
03:55 PM Bug #9353: PHPSession errors from limited access to dashboard and widgets: This also happens when a session times out and the user tried to access a page which triggers the general "no permiss... Marcos M
03:03 PM Bug #12747: Restarting the logging daemon during rotation also restarts ``sshguard``, leading to frequent log messages: Unfortunately a lot of this is out of our control as we are at the mercy of what sshguard supports. Not saying we won... Jim Pingle
02:55 PM Bug #12747: Restarting the logging daemon during rotation also restarts ``sshguard``, leading to frequent log messages: Still an issue in 23.01. Suggestions:
1. Stop logging the stop and start. I can't see how this is useful.
2. Make ... Mitch Claborn
02:55 PM pfSense Plus Bug #13497: unbound process looks like stuck periodically: Yaroslav Semenenko wrote:
> Hello,
>
> I have Netgate 2100.
> Unbound service is needed to restart sometimes due... Ketul Patel
02:04 PM pfSense Packages Bug #14284 (Incomplete): Wen changing frontend type, there will be invissible leftovers, disturbing defining the new type: During my trails to setup HA-proxy, I irregularly met a situation where I did not know which frontend type to use.
S... Louis B
01:43 PM Regression #14283: Nothing is logged through ``syslog`` if the configuration contains an empty ``<syslogd>`` section or if that section is not present: The code in this area is slightly different in plus which makes generating a patch more difficult. In the interest of... Jim Pingle
01:30 PM Regression #14283 (Feedback): Nothing is logged through ``syslog`` if the configuration contains an empty ``<syslogd>`` section or if that section is not present: Applied in changeset commit:11d14d628f333ed9b856a68630bfffa635de44f4. Jim Pingle
11:14 AM Regression #14283: Nothing is logged through ``syslog`` if the configuration contains an empty ``<syslogd>`` section or if that section is not present: In source:src/etc/inc/syslog.inc#L216 it checks for an empty syslog section which isn't really a valid test. Before t... Jim Pingle
10:56 AM Regression #14283 (Resolved): Nothing is logged through ``syslog`` if the configuration contains an empty ``<syslogd>`` section or if that section is not present: /var/etc/syslog.d empty. Nothing is being logged to /var/log files.
Possibly related to #13446 src/etc/inc/syslog.... Chris Linstruth
10:44 AM pfSense Plus Regression #14235: Undersized CESA TDMA descriptor pools can be exhausted, leading to errors: Updating subject for release notes. Jim Pingle
10:40 AM Todo #14209: Update Time Zone data to 2023c or later: Updating subject for release notes. Jim Pingle
10:39 AM Bug #14182: PHP error when XMLRPC client attempts to synchronize without any synchronization settings in the configuration: Updating subject for release notes. Jim Pingle
10:38 AM Bug #14034: PHP errors in ``xmlrpc.php`` during configuration synchronization if the target host has an empty XML tag for a given section: Updating subject for release notes. Jim Pingle
10:37 AM Feature #14050: Support for ``iwlwifi`` wireless interfaces: Updating subject for release notes. Jim Pingle
10:36 AM Todo #13702: Replace direct config accesses in ``system_advanced_sysctl``: Updating subject for release notes. Jim Pingle
10:35 AM Todo #13701: Replace direct config accesses for the rest of the paths in ``system_advanced_admin.inc``: Updating subject for release notes. Jim Pingle
10:35 AM Bug #13908: Firewall rules are not reloaded when removing a VIP, outdated rules/entries remain active: Updating subject for release notes. Jim Pingle
10:34 AM Bug #14045: ``pfSense-boot`` can fail to copy the EFI bootloader: Updating subject for release notes. Jim Pingle
10:32 AM Regression #13942: PHP error on ``status_logs_settings.php`` if the configuration contains an empty ``syslog`` section: Updating subject for release notes. Jim Pingle
10:31 AM Todo #14250: Update firewall host and domain fields in the Setup Wizard to match the description and warning text from ``system.php``: Updating subject for release notes. Jim Pingle
10:29 AM Bug #14136: Services Status page and Dashboard widget do not list the ``radvd`` service with certain static IPv6 configurations: Updating subject for release notes. Jim Pingle
10:27 AM Todo #14098: Match upstream changes in PF syntax to disable fragment disassembly: Updating subject for release notes. Jim Pingle
10:23 AM Regression #13962: PPP interfaces do not request DNS servers when "DNS Server Override" is enabled: Updating subject for release notes. Jim Pingle
10:22 AM Bug #14061: PHP error if a non-privileged shell user attempts an operation which needs to write ``config.cache``: Updating subject for release notes. Jim Pingle
10:20 AM Todo #14027: Update PHP to 8.2.6: Updating subject for release notes. Jim Pingle
10:20 AM Regression #14016: FreeBSD default ``cron`` jobs are enabled when they should be disabled: Updating subject for release notes. Jim Pingle
10:19 AM Bug #12947: Old IPv6 addresses may continue to be used after DHCP or RA changes: Jim Pingle wrote in #note-15:
> Still waiting on feedback from someone who can reproduce this to test against a 2.7.... David Myers
09:19 AM Bug #12947: Old IPv6 addresses may continue to be used after DHCP or RA changes: Still waiting on feedback from someone who can reproduce this to test against a 2.7.0 snap, 23.01 release, or a 23.05... Jim Pingle
10:19 AM Regression #13963: OpenVPN and GIF interface create/destroy operations fail due to outdated ``linker.hints``: Updating subject for release notes. Jim Pingle
09:13 AM Regression #13963 (Resolved): OpenVPN and GIF interface create/destroy operations fail due to outdated ``linker.hints``: This change is working well, numerous confirmations on the forum that it fixed the problem after applying it from the... Jim Pingle
10:17 AM Todo #14183: Update OpenVPN Wizard to match current certificate and OpenVPN options: Updating subject for release notes. Jim Pingle
10:15 AM Bug #13973: PHP error in ``gwlb.inc`` when OpenVPN or IPsec instances referred to by assigned interface entries are missing: Updating subject for release notes. Jim Pingle
10:12 AM Regression #13350: SSL/TLS OpenVPN Client fails with ``ifconfig`` error when the IPv4 Tunnel Network is defined: Updating subject for release notes. Jim Pingle
10:11 AM Bug #14036: PHP error when the ``timeserver`` section of the configuration is empty: Updating subject for release notes. Jim Pingle
10:10 AM Bug #14033: PHP error in NTP Server if the configuration contains a partial section of old ``openntpd`` settings: Updating subject for release notes. Jim Pingle
08:29 AM Bug #14033 (Resolved): PHP error in NTP Server if the configuration contains a partial section of old ``openntpd`` settings: Jim Pingle
10:08 AM Regression #13999 (Resolved): PHP error in NTP widget and status with GPS data: No crashes on current snapshots with a GPS-enabled NTP config. Both widget and status page show GPS data and link to ... Jim Pingle
10:06 AM Feature #12464: Option to control log level of authentication messages in system logs ("Emergency" vs "Notice" level): Updating subject for release notes. Jim Pingle
04:08 AM Feature #12464 (Resolved): Option to control log level of authentication messages in system logs ("Emergency" vs "Notice" level): Tested on 22.05 (built on Fri Apr 07 01:20:44 UTC 2023).
There is 'GUI login messages' option available in /System... Azamat Khakimyanov
10:03 AM Todo #13959: Trim blank characters from static IP address fields on the Interface configuration page: Updating subject for release notes. Jim Pingle
10:01 AM Todo #13492: Start ``rtsold`` immediately after ``dhcp6c`` sends a request: Updating subject for release notes. Jim Pingle
10:01 AM Bug #13939: IPv6 does not work on secondary PPPoE WAN: Updating subject for release notes. Jim Pingle
10:00 AM pfSense Plus Regression #13993: Switch ports on 7100/1100/2100 do not have Auto MDI-X support enabled: Updating subject for release notes. Jim Pingle
09:50 AM Feature #14255: Support for Intel PCH temperature values in thermal sensors: Updating subject for release notes. Jim Pingle
09:49 AM Bug #14176: Uptime displays plural seconds for multiple minutes in the System Information Dashboard widget: Updating subject for release notes. Jim Pingle
09:49 AM pfSense Plus Bug #14204: System Information Dashboard widget stops showing CPU details on aarch64: Updating subject for release notes. Jim Pingle
09:48 AM Bug #14115: DHCP Server page does not properly select a default interface tab if neither WAN nor LAN are capable of being DHCP servers: Updating subject for release notes. Jim Pingle
09:47 AM Regression #13983: Multiple PHP errors in the DHCP Server when the configuration contains an empty section for an interface: Updating subject for release notes. Jim Pingle
09:46 AM Todo #14188: Add note to inform the user that the "Next Certificate Serial" value is ignored when the "Randomize Serial" option is enabled: Updating subject for release notes. Jim Pingle
09:44 AM Bug #14124: Some blank SAN fields are not ignored when creating a certificate: Updating subject for release notes. Jim Pingle
09:43 AM Regression #14076: PHP error if the configuration has an empty Auto Configuration Backup section: Updating subject for release notes. Jim Pingle
09:42 AM Feature #14002: Option to enable/disable console bell, enabled by default: Changing this to a feature request. Even though it started as a way to address a regression, the change involved is a... Jim Pingle
09:29 AM Regression #14217 (Feedback): IPsec Phase 2 rekey failures with some PFS key groups: Jim Pingle
09:26 AM Regression #14217 (Ready To Test): IPsec Phase 2 rekey failures with some PFS key groups: Confirmed fixed with that change.
It'll be in the next CE and plus snapshots. Kristof Provost
08:13 AM Regression #14217: IPsec Phase 2 rekey failures with some PFS key groups: After a bit more digging I found that openssl_kdf.c's set_params() fails to set the salt with EVP_PKEY_CTX_add1_hkdf_... Kristof Provost
03:54 AM Regression #14217: IPsec Phase 2 rekey failures with some PFS key groups: I've started poking at this, and have been able to reproduce it. It still occurs on strongswan-5.9.10.
I've also d... Kristof Provost
09:18 AM Todo #14186 (Resolved): Improve DynDNS help text readability: If you can't patch it with that one alone there is likely some other change that needs applied first. There were seve... Jim Pingle
09:14 AM Bug #14031 (Resolved): Identical SMTP notifications repeat in an infinite loop under certain conditions: All signs point to this being solved. After patching, there have been no repeats. Jim Pingle
09:14 AM Todo #14011 (Resolved): Update memory graphs to account for changes in memory reporting: This all appears to be working as expected. It's also available in the system patches package and people have been ru... Jim Pingle
08:32 AM Bug #14278 (Rejected): pfsense Installation Documentation USB drive missing option: It's not clear what you mean here. What are you expecting to see that you don't see? There is no document for install... Jim Pingle
08:28 AM Bug #14277: Fatal error while restarting Unbound through SSH: A little follow-up here. The only way I can induce an error is to try running that command as a user without sufficie... Jim Pingle
03:43 AM Bug #14237: Intermittent packet loss related to DHCP with Multi-WAN: Uploading packet capture on ports 67 and 68 on WAN2 interface, pfSense reported 0.12% packet loss during 11:31:00 and... Nazar Mokrynskyi
03:32 AM Revision 0d9f5d52: Additional changes to new Packet Capture GUI. Implements #13382: Marcos M

04/16/2023

03:52 PM Bug #14278 (Rejected): pfsense Installation Documentation USB drive missing option: The pfsense documentation for installation on a USB drive is missing the option to select after rebooting without the... Stephanie Moses
03:21 PM Todo #14011: Update memory graphs to account for changes in memory reporting: OK cool. Chris Linstruth
11:47 AM pfSense Packages Bug #14153: default whitelist is not created: I was using pfBlockerNG-devel 3.2.0_3 but upgraded to pfBlockerNG-devel 3.2.0_4 and then checked my findings.
h2. ... Jon Brown
10:20 AM pfSense Packages Bug #14179: FreeRadius is active but in an inoperable state, switches to a generated freeradius-temp certificate upon restart: So after reading through the source code I found something that I thought was strange to even exist:... name name
09:46 AM pfSense Packages Bug #14179: FreeRadius is active but in an inoperable state, switches to a generated freeradius-temp certificate upon restart: Okay, now I've run into it again and discovered the following:
If the firewall has internet connectivity during co... name name
05:51 AM pfSense Plus Bug #13975: when assigning a vlan to wan interface configured mac address is not used: Hi Chris,
I've opened two tac cases (as I have a primary fw as a whitebox, and the sg-3100 as backup). I did a rec... Oscar Muntenaar
04:07 AM pfSense Packages Feature #14196: permitted firewall rules - additional text: * *Based on the text above this line, this is simply moving the rules from the one interface to a floating rule for... Jon Brown
03:17 AM pfSense Packages Bug #11797: Traffic Totals lost upon reboot when using a ramdisk for /var and /tmp: I'm experiencing this as well in pfSense @2.6.0 CE@ and Status_Traffic_Totals @2.3.2_2@ as of April 2023. Upon reboo... Greg Maub

04/15/2023

10:30 PM pfSense Packages Bug #14021: Squid ClamAV showing bytecode errors for version 334: This has resolved on its own and updates again. Jonathan Lee
10:29 PM pfSense Plus Bug #14106: arc4random: WARNING: initial seeding bypassed the cryptographic random device because it was not yet seeded and the knob 'bypass_before_seeding' was enabled.: Nothing has occurred that I can see. Tubi steaming service is having issues but that is not related. Jonathan Lee
09:27 PM pfSense Plus Bug #14106: arc4random: WARNING: initial seeding bypassed the cryptographic random device because it was not yet seeded and the knob 'bypass_before_seeding' was enabled.: Warning message appears to be expected. Do you have any issues as a result of this message? Kris Phillips
10:27 PM Bug #14033: PHP error in NTP Server if the configuration contains a partial section of old ``openntpd`` settings: no issues using or configuring NTP on aarch64 running 23.05.a.20230407.0116 Jordan G
09:22 PM Bug #14237: Intermittent packet loss related to DHCP with Multi-WAN: What does a packet capture on a WAN interface with a failed DHCP lease renewal look like?
This redmine is very v... Kris Phillips
09:15 PM pfSense Packages Bug #10692: PIMD starts twice at boot: double starting again with pfSense Plus 23.05.a.20230414.0600 and PIMD 0.0.3_6, at least it's self aware... Jordan G
09:14 PM pfSense Packages Feature #14196 (Incomplete): permitted firewall rules - additional text: Based on the text above this line, this is simply moving the rules from the one interface to a floating rule for mult... Kris Phillips
09:12 PM Todo #14250 (Resolved): Update firewall host and domain fields in the Setup Wizard to match the description and warning text from ``system.php``: Jim Pingle
08:49 PM Todo #14250: Update firewall host and domain fields in the Setup Wizard to match the description and warning text from ``system.php``: this appears in the wizard now as expected - tested on 23.05.a.20230414.0600
!clipboard-202304152048-8hd6j.png!
Jordan G
09:12 PM pfSense Packages Bug #14153: default whitelist is not created: What version of pfBlocker are you using?
I'm unable to reproduce this with a fresh install of pfBlockerNG-devel 3.... Chris W
09:11 PM pfSense Packages Bug #14230: PHP error with pfBlockerNG: I'm not seeing any PHP errors in 3.2.0_4 of pfBlockerNG. Was there any particular steps to reproduce this problem? Kris Phillips
08:39 PM Bug #14270: Default domain is not used in IPsec Split DNS: Tested on 23.01 as well. Can confirm that the checkbox unchecks itself when left blank and the option is not set in ... Kris Phillips
07:56 PM pfSense Packages Bug #14228 (Resolved): pfBlockerNG might not support new Maxmind license keys: Chris W
07:56 PM pfSense Packages Bug #14228: pfBlockerNG might not support new Maxmind license keys: Closing this out since 3.2.0_4 is now available in System > Package Manager. Chris W
06:05 PM pfSense Packages Bug #14275: Deleting a route map that is assigned to an active neighbor causes crash: it shows an error if the route map was deleted..
the configuration shows the route map is not deleted while it w... Alhusein Zawi
03:49 PM Bug #9577: radvd send_ra_forall failed on interface / can't join ipv6-allrouters: Can this issue be reopened since it has reappeared in 2.6.0?
FWIW, I saw the same issue appeared in OPNsense, wher... Lars Veldcholte
01:56 PM Feature #13382: Packet Capture GUI with granular control: Is there way to keep/add the classic view of the packet capture ?
in many cases I need to start a quick pcap by se... Alhusein Zawi
11:36 AM pfSense Packages Bug #14218 (Resolved): Deleting a shellcmd entry results in a PHP error and crash report: Tested against:... Danilo Zrenjanin
10:04 AM pfSense Plus Bug #13975 (Not a Bug): when assigning a vlan to wan interface configured mac address is not used: I'm unable e to reproduce this. Steps taken:
1. Flash a 3100 with a new installation of 22.05
2. Noted original W... Chris W
09:45 AM Bug #14277 (Duplicate): Fatal error while restarting Unbound through SSH: The top couple lines there are the same PHP error from the other issue, so let's keep the discussion over there since... Jim Pingle
02:20 AM Bug #14277 (Duplicate): Fatal error while restarting Unbound through SSH: High CPU usage and issues with DNS resolver.
Applied - c5faa351c1ef6d4555478a7f50b3a16ece7e0b2a BUG #14061
SS... Ketul Patel
09:39 AM Bug #13573 (Resolved): DHCP Server generates an invalid configuration for static mappings when defining network booting and UEFI HTTPBoot URL: Jim Pingle
12:35 AM Bug #13573: DHCP Server generates an invalid configuration for static mappings when defining network booting and UEFI HTTPBoot URL: Able to reproduce on ... Lev Prokofev
09:31 AM pfSense Packages Bug #11797 (Confirmed): Traffic Totals lost upon reboot when using a ramdisk for /var and /tmp: Steve Wheeler
04:25 AM Bug #14236 (Resolved): PHP Error when viewing Traffic Graphs in ``iftop`` mode: I couldn't reproduce it too. But according to the forum, it's fixed.
I am marking this ticket resolved.
Danilo Zrenjanin
03:05 AM Regression #14120 (Resolved): ``syslogd`` tries to bind interfaces with no IP address: The patch fixes this behavior.
The syslogd starts even if there is no IP on the defined source interface. In that... Danilo Zrenjanin

04/14/2023

06:57 PM pfSense Packages Bug #13654: Wireguard does not fail back failover WAN setup.: Still has this problem. Are there any progress on this? Frode Martin
05:18 PM Bug #14256 (Resolved): PHP Error performing IPv6 ``ip_in_subnet()`` when passing a host addresses within prefix: Jim Pingle
04:48 PM Bug #14256: PHP Error performing IPv6 ``ip_in_subnet()`` when passing a host addresses within prefix: I used modified file in 2.7.0, also in 23.01 version and all is fine now. No more PHP error. thank you! Karel Fischl
03:41 PM pfSense Plus Bug #13497: unbound process looks like stuck periodically: I use the Netgate 1100 with 23.01-RELEASE and can second that unbound from time to time stuck. Only restart the servi... Tom Joad
03:22 PM Revision e5e1e8f9: Fix DHCP HTTPBoot w/static maps. Fixes #13573: Jim Pingle
03:17 PM pfSense Packages Bug #14075 (Not a Bug): Using the ``Transparent ClientIP`` option in HAproxy results in kernel panics: Christian McDonald
03:17 PM Bug #13938 (Resolved): Kernel panic accessing the GUI over IPsec in certain environments when using nginx ``sendfile`` with unmapped mbufs: kern.ipc.mb_use_ext_pgs has been disabled for 2 weeks now.
Marking as resolved. Christian McDonald
03:15 PM pfSense Packages Bug #14058 (Resolved): Update vendor=on triggers installation failure: Christian McDonald
03:14 PM Feature #12982 (Rejected): Add support for RFC7499 in RADIUS library.: RFC7499 is experimental. Thus, it is unlikely we will support RFC7499. Christian McDonald
02:32 PM Revision 0ba1a7ec: Fix handling of OpenVPN client TN. Fixes #13350: * ifconfig format was incorrect for certain mode combinations, leading
to OpenVPN failing to start.
* Changed wordi... Jim Pingle
12:39 PM Bug #14115 (Resolved): DHCP Server page does not properly select a default interface tab if neither WAN nor LAN are capable of being DHCP servers: Jim Pingle
12:24 PM Bug #14115: DHCP Server page does not properly select a default interface tab if neither WAN nor LAN are capable of being DHCP servers: tested on:
Version 23.01-RELEASE (amd64)
built on Fri Feb 10 20:06:33 UTC 2023
FreeBSD 14.0-CURRENT
patch fixes... Georgiy Tyutyunnik
12:00 PM Regression #13350 (Resolved): SSL/TLS OpenVPN Client fails with ``ifconfig`` error when the IPv4 Tunnel Network is defined: Jim Pingle
11:59 AM Regression #13350: SSL/TLS OpenVPN Client fails with ``ifconfig`` error when the IPv4 Tunnel Network is defined: tested on:
Version 23.01-RELEASE (amd64)
built on Fri Feb 10 20:06:33 UTC 2023
FreeBSD 14.0-CURRENT
patch fixes... Georgiy Tyutyunnik
09:52 AM Regression #13350: SSL/TLS OpenVPN Client fails with ``ifconfig`` error when the IPv4 Tunnel Network is defined: When testing I checked a variety of different mode/TN combinations and they all had the correct syntax now, for examp... Jim Pingle
09:40 AM Regression #13350 (Feedback): SSL/TLS OpenVPN Client fails with ``ifconfig`` error when the IPv4 Tunnel Network is defined: Applied in changeset commit:0ba1a7ec7871f8f6bd240a08f238a2fb1ecba16b. Jim Pingle
08:17 AM Regression #13350 (In Progress): SSL/TLS OpenVPN Client fails with ``ifconfig`` error when the IPv4 Tunnel Network is defined: Jim Pingle
11:04 AM Bug #13573: DHCP Server generates an invalid configuration for static mappings when defining network booting and UEFI HTTPBoot URL: I added a custom system patch with this and it works for me. Thank you! Jason Montleon
10:30 AM Bug #13573 (Feedback): DHCP Server generates an invalid configuration for static mappings when defining network booting and UEFI HTTPBoot URL: Applied in changeset commit:e5e1e8f9c498e1e5094394a049bb62d09ec8e034. Jim Pingle
10:27 AM Bug #13573: DHCP Server generates an invalid configuration for static mappings when defining network booting and UEFI HTTPBoot URL: So not only was this breaking HTTPBoot in general with static mappings, but it also was preventing that option from b... Jim Pingle
10:20 AM Bug #13573 (In Progress): DHCP Server generates an invalid configuration for static mappings when defining network booting and UEFI HTTPBoot URL: I was able to replicate this from a stock config with just three changes:
* Network booting checked
* HTTPBoot UR... Jim Pingle
10:10 AM Bug #13554 (Duplicate): Configuration file error caused by setting UEFI HTTPBoot URL in DHCP Service: Duplicate of #13573 Jim Pingle
02:17 AM Regression #14267 (Resolved): PHP error when saving an ICMP firewall rule with no subtypes selected: The patch fixes it.
I tested the patch against the following release:... Danilo Zrenjanin

04/13/2023

04:02 PM Revision 3019cad0: Add plugin hook for nginx conf. Implements #13054: * Plugin hook is called once for entries to be placed below locations in
the main GUI server, and a second time for... Jim Pingle
03:26 PM Bug #14276: One.com dynamic DNS doesn't work: Sure, pull request has been created here now: https://github.com/pfsense/pfsense/pull/4632
While creating it I notic... Alexander Arques
02:20 PM Bug #14276: One.com dynamic DNS doesn't work: Can you submit that change as a pull request on Github?
https://docs.netgate.com/pfsense/en/latest/development/pul... Jim Pingle
01:32 PM Bug #14276: One.com dynamic DNS doesn't work: By the way there are some more notes about what issues I fixed and how I went about it in this thread but the patch a... Alexander Arques
01:25 PM Bug #14276 (Pull Request Review): One.com dynamic DNS doesn't work: I registered a domain on One.com yesterday and later found out that the Dynamic DNS updater for it in pfSense doesn't... Alexander Arques
03:21 PM Todo #14027: Update PHP to 8.2.6: PHP 8.2.5 has been released, but we will stay at 8.2.4 this close to release
8.2.5 merge will happen after we branch... Christian McDonald
02:50 PM Regression #13350: SSL/TLS OpenVPN Client fails with ``ifconfig`` error when the IPv4 Tunnel Network is defined: When adding a tunnel network it makes a couple changes to the config, notably it *removes* the @pull@ directive, it a... Jim Pingle
11:25 AM Bug #13014: Deadlock in Charon VICI interface: The nice people at the Strongswan project think they know what the problem is, and have posted an experimental patch.... Kristof Provost
11:18 AM Bug #13908 (Resolved): Firewall rules are not reloaded when removing a VIP, outdated rules/entries remain active: The patch fixes it.
Tested against:... Danilo Zrenjanin
11:10 AM Feature #13054 (Feedback): Package plugin hook for web server configuration stanzas: Applied in changeset commit:3019cad09231b105f955d161a6e24d98d3623b71. Jim Pingle
11:07 AM Feature #13054: Package plugin hook for web server configuration stanzas: Implementation is as described in the issue description. The plugin can be defined in a package as in the following e... Jim Pingle
06:36 AM pfSense Packages Bug #14275 (Resolved): Deleting a route map that is assigned to an active neighbor causes crash: Steps to reproduce:
2.7.0.a.20230405.0015 / FRR 7.5.1.
1) Establish BGP session to a neighbor and announce a p... M Felden
04:42 AM Feature #14274 (New): Android App by adding a couple of lines of code - Sort off: Because pfSense GUI is mobile responsive you can use a mobile to perform actions in the GUI which is nice but a few p... Jon Brown

04/12/2023

08:37 PM Regression #14091: The "Kill States" button does not work consistently: I'll take this one. I'm quite familiar with the module after porting it to PHP8. Christian McDonald
09:27 AM Regression #14091: The "Kill States" button does not work consistently: Tried this again since some changes went into the module overnight. If I filter and try to kill a subnet style string... Jim Pingle
08:06 PM Revision b63b534c: remove dhcpleases6 from base install: Christian McDonald
07:57 PM Bug #14273: Traffic to a VIP is not port forwarding TCP or UDP: I will re-verify my findings on Sunday... both the end user system and the lab one I had here failed but every other ... Ryan Coleman
06:05 PM Bug #14273 (New): Traffic to a VIP is not port forwarding TCP or UDP: When there is a VIP on an interface (CARP, IP Alias) the traffic comes in to the interface no problem but if it is to... Ryan Coleman
07:38 PM Revision 53dbfb25: Fix default DHCP server if selection. Fixes #14115: Jim Pingle
07:15 PM Revision 3dfbc1fa: Safety belt check for CP used mac db content. Fixes #14172: Jim Pingle
07:09 PM Revision 7fb2954d: Don't sync if settings are empty. Fixes #14182: Jim Pingle
06:59 PM Revision 40eb0d51: Add user limits pchtherm data. Implements #14255: Steve Wheeler
03:19 PM Revision f48271e0: dnsmasq strict order/all servers are mutually exclusive. Fixes #13655: Jim Pingle
03:07 PM Revision e90ba648: Automatic CARP/VIP rule refinements. Fixes #13908: * Perform a filter reload after deleting a VIP. This is important not
only for CARP but other VIPs, since they may ... Jim Pingle
02:56 PM Feature #13054 (In Progress): Package plugin hook for web server configuration stanzas: Jim Pingle
02:45 PM Bug #14115 (Feedback): DHCP Server page does not properly select a default interface tab if neither WAN nor LAN are capable of being DHCP servers: Applied in changeset commit:53dbfb25ff1a611806f81f39a6fd8b5b9938f175. Jim Pingle
02:25 PM Regression #14172 (Feedback): PHP error in Captive Portal if ``usedmacs`` list is empty: Applied in changeset commit:3dfbc1fa812b2131b11c176ce22de9b2d8d233ea. Jim Pingle
02:20 PM Bug #14182 (Feedback): PHP error when XMLRPC client attempts to synchronize without any synchronization settings in the configuration: Applied in changeset commit:7fb2954dce0c7732a34681d31723f4f5fe58f7c5. Jim Pingle
02:05 PM Feature #14255 (Feedback): Support for Intel PCH temperature values in thermal sensors: Applied in changeset commit:40eb0d510305bc8cdba81f80bd81ade3c8045db3. Anonymous
07:53 AM Feature #14255 (Pull Request Review): Support for Intel PCH temperature values in thermal sensors: Jim Pingle
12:43 PM Todo #14027 (Resolved): Update PHP to 8.2.6: Nothing that I know of. Christian McDonald
10:58 AM Bug #14167 (Confirmed): Auto Config Backup: Selected manual backups are not retained.: It's entirely on the backend in ACB. Steve Wheeler
10:42 AM Bug #14167: Auto Config Backup: Selected manual backups are not retained.: Does anything even need to change on the frontend here? It seems like the client side is doing all it can and the bac... Jim Pingle
10:43 AM Regression #14217: IPsec Phase 2 rekey failures with some PFS key groups: Updating subject for release notes. Jim Pingle
10:30 AM Bug #13655 (Feedback): DNS Forwarder (``dnsmasq``) is using an invalid combination of options when "Query DNS servers sequentially" is enabled: Applied in changeset commit:f48271e08f81c560bf70107c76e9caf3311042be. Jim Pingle
10:21 AM Bug #13655 (In Progress): DNS Forwarder (``dnsmasq``) is using an invalid combination of options when "Query DNS servers sequentially" is enabled: Moving that to an @else@ clause is ideal for now since they should be mutually exclusive. Jim Pingle
10:20 AM Bug #13908 (Feedback): Firewall rules are not reloaded when removing a VIP, outdated rules/entries remain active: Applied in changeset commit:e90ba648cf5256dffbc9294bb6318c899db21f88. Jim Pingle
07:43 AM pfSense Packages Bug #14258: HA-proxy, IPV6-address in combination with portnumber => fatal: Attached a picture from another situation where the IPV6-addresses are not properly extracted / handover from the GUI... Louis B
07:21 AM pfSense Packages Bug #13969 (Resolved): Status_Monitoring ignores NAT states: Tested on 23.05-DEV (built on Fri Apr 07 01:20:44 UTC 2023) and on 2.7-DEV (built on Wed Apr 12 06:05:24 UTC 2023)
... Azamat Khakimyanov
07:10 AM Regression #13966 (Resolved): RRD update script does not parse state data properly: Tested on 23.01 and on 23.05-DEV (built on Fri Apr 07 01:20:44 UTC 2023) and on 2.7-DEV (built on Wed Apr 12 06:05:24... Azamat Khakimyanov
06:38 AM pfSense Plus Bug #13976: SNMP logs "Device not configured" error message when queries involve built-in switch port interfaces: I have the same on my Netgate 7100. Hope there is a fix soon because this **** is flooding mit logs :/ Manuel M.
05:44 AM pfSense Packages Bug #14199: ACME - Issue with corrupted cert: Attached PHP error log Juan Francisco Rodriguez Garcia
04:22 AM Todo #14188 (Resolved): Add note to inform the user that the "Next Certificate Serial" value is ignored when the "Randomize Serial" option is enabled: Tested on 2.7 (built on Tue Apr 11 06:05:40 UTC 2023) and on 23.05 (built on Fri Apr 07 01:20:44 UTC 2023)
Both DE... Azamat Khakimyanov

04/11/2023

10:45 PM pfSense Packages Bug #14271 (Not a Bug): WireGuard does not work: Just for future reference these types of issues are best addressed first on the Forums before opening a Redmine issue... Christian McDonald
10:36 PM pfSense Packages Bug #14271: WireGuard does not work: It's working, thanks! hao zhang
10:20 PM pfSense Packages Bug #14271: WireGuard does not work: Did you enable WireGuard on the settings page? Christian McDonald
09:52 PM pfSense Packages Bug #14271: WireGuard does not work: WireGuard0.1.6_2
!clipboard-202304121052-budas.png!
hao zhang
09:51 PM pfSense Packages Bug #14271 (Not a Bug): WireGuard does not work: My WireGuard does not have a start/restart button after installation.
After going to the WireGuard configuration pag... hao zhang
07:24 PM Revision b959ca07: Trim whitespace from static addrs on save. Fixes #13959: Jim Pingle
07:19 PM Revision 9d6220c6: Remove sleep from Do Not Wait for RA code path. Fixes #13492: The purpose of the sleep was never documented as far back as I could
tell, and it appears to cause more harm than goo... Jim Pingle
05:15 PM Feature #14255: Support for Intel PCH temperature values in thermal sensors: Additionally add user configurable limits for PCH data.
https://gitlab.netgate.com/pfSense/pfSense/-/merge_reques... Steve Wheeler
04:40 PM Bug #14270 (New): Default domain is not used in IPsec Split DNS: The Split-DNS GUI option has the description:
> NOTE: If left blank, and a default domain is set, it will be used fo... Marcos M
04:38 PM Feature #7773 (Closed): IPSec using IKEv2 with split DNS not using provided domain names: This should be resolved with https://redmine.pfsense.org/issues/12975. Marcos M
03:29 PM Revision fbf8f9e8: Multiple issues with ICMP NAT/Rules. Fixes #14267: * When making an associated firewall rule for a port forward, do not
craft what would be an invalid port range.
* W... Jim Pingle
02:51 PM Bug #14262: IPv6 firewall log entries do not wrap and force the table width past the width of the page: If someone else wants to experiment, this is what I started with to insert the wbr and change the wrapping:... Jim Pingle
02:49 PM Bug #14262: IPv6 firewall log entries do not wrap and force the table width past the width of the page: There is much more to it than the wbr tags. The src/dst cells are locked at nowrap, as it the row itself. The descrip... Jim Pingle
02:34 PM Revision 854a454c: Additional changes to new Packet Capture GUI. Implements #13382: Marcos M
02:30 PM Todo #13959 (Feedback): Trim blank characters from static IP address fields on the Interface configuration page: Applied in changeset commit:b959ca071e503e59f6f361d411b0bc62a12d5821. Jim Pingle
02:27 PM Todo #13959: Trim blank characters from static IP address fields on the Interface configuration page: For whatever reason, is_ipaddrv4() rejects the address when it has extra blank space but the IPv6 version does not. I... Jim Pingle
02:30 PM Todo #13492 (Feedback): Start ``rtsold`` immediately after ``dhcp6c`` sends a request: Applied in changeset commit:9d6220c62a2a9633451d4ee04ca56ee1a013efc4. Jim Pingle
02:21 PM Todo #13701: Replace direct config accesses for the rest of the paths in ``system_advanced_admin.inc``: Err, sorry, 48eab661 Brad Davis
02:19 PM Todo #13701 (Resolved): Replace direct config accesses for the rest of the paths in ``system_advanced_admin.inc``: This was committed in 9c2b9b78 Brad Davis
02:17 PM Todo #13702 (Resolved): Replace direct config accesses in ``system_advanced_sysctl``: This work was committed in 48eab661 Brad Davis
12:45 PM Bug #14257: Rule order interface group 'is uncontrolled changing ^up and down^' :(: FWIW I've noticed the rule separators moving down one position when at the top. I haven't been able to reproduce this... Marcos M
12:08 PM Bug #14257: Rule order interface group 'is uncontrolled changing ^up and down^' :(: Not only the rules are moving, also the separators are moving up and down. Louis B
12:20 PM Bug #14035 (Feedback): PHP error when attempting to create a GIF interface when ``if_gif`` kernel module is not loaded: This is going to have to wait unless someone can find a way to reproduce it reliably since I still am unable to repli... Jim Pingle
12:03 PM Bug #12673: Firewall Logs Dashboard Widget is slow and may fail to update: Can you submit the proposed changes as a pull request on Github?
https://docs.netgate.com/pfsense/en/latest/develo... Jim Pingle
12:01 PM Bug #3132: Gateway events for IPv6 affect IPv4 services and vice versa: Doesn't look likely that we'll have time to finish this for 23.05. Moving forward to the next release target. Jim Pingle
11:57 AM Feature #13362: Update dynamic gateway consumers when their interface is renamed: Doesn't look likely that we'll have time to finish this for 23.05. Moving forward to the next release target. Jim Pingle
11:56 AM Feature #6960: Introduce Kea DHCP as an alternative DHCP server for IPv4 and IPv6: Doesn't look likely that we'll have time to finish this for 23.05. Moving forward to the next release target. Jim Pingle
11:55 AM Feature #14122: Allow selecting the repo branch on config restore: Doesn't look likely that we'll have time to finish this for 23.05. Moving forward to the next release target. Jim Pingle
11:55 AM Feature #14166: Use netstat output for interface packet counters: Doesn't look likely that we'll have time to finish this for 23.05. Moving forward to the next release target. Jim Pingle
11:52 AM Todo #14027: Update PHP to 8.2.6: Is there anything holding this back from being closed? It's been in snapshots for a while now and running well. Jim Pingle
11:51 AM pfSense Packages Bug #14096 (Resolved): Status_Traffic_Totals does not work on snapshots due to sqlite change: This apparently was fixed upstream and we brought it in during a recent ports merge. It's working on current snapshot... Jim Pingle
10:54 AM Bug #13915: PHP errors when re-running Traffic Shaper Wizards with different settings: I also "volunteer" to test something. Stefan Weichinger
10:35 AM Regression #14267 (Feedback): PHP error when saving an ICMP firewall rule with no subtypes selected: Applied in changeset commit:fbf8f9e8be74a4c40af1d33cc15bc7d228676eb4. Jim Pingle
07:40 AM Regression #14267 (Confirmed): PHP error when saving an ICMP firewall rule with no subtypes selected: A couple notes:
* The error happens when trying to save, not when loading the page
* The error is specific to ICMP
*... Jim Pingle
10:34 AM Regression #13350: SSL/TLS OpenVPN Client fails with ``ifconfig`` error when the IPv4 Tunnel Network is defined: There are more errors from this same case over on #14268 -- but this appears to be with DCO where the errors on #1426... Jim Pingle
10:33 AM Regression #14268 (Duplicate): OpenVPN client fails to start when a tunnel network is specified: We can count this one a duplicate since it appears to be the same root issue.
I still haven't seen a good way to k... Jim Pingle
10:15 AM Regression #14268: OpenVPN client fails to start when a tunnel network is specified: I have not seen a case yet where the tunnel network needed to be specified. Regarding #13350, that's the error I get ... Marcos M
07:20 AM Regression #14268 (Feedback): OpenVPN client fails to start when a tunnel network is specified: Are you certain that setup needs a tunnel network in the client? We have seen cases like #13350 where it was set impr... Jim Pingle
09:57 AM pfSense Plus Regression #13993 (Resolved): Switch ports on 7100/1100/2100 do not have Auto MDI-X support enabled: This is fixed in current snapshots. The switch ports link MDI and MDIX as expected.
The other issues reported here... Steve Wheeler
09:40 AM Feature #13382 (Feedback): Packet Capture GUI with granular control: Applied in changeset commit:854a454c4ba5aaaabab98ddb657f775a1745094d. Marcos M
08:14 AM Todo #14201 (Resolved): Remove deprecated NCP enable/disable toggle from OpenVPN: Tested on 2.7-DEV (built on Tue Apr 11 06:05:40 UTC 2023)
There is no 'NCP enable/disable' option for OpenVPN Serv... Azamat Khakimyanov
07:58 AM pfSense Plus Regression #14269 (Duplicate): 1100/2100: switch ports not enabled for auto-mdi-x: Fix appears to be in and working for me as well. I get a link between the LAN and OPT ports on an 1100 running a 23.0... Jim Pingle
07:50 AM pfSense Plus Regression #14269 (Feedback): 1100/2100: switch ports not enabled for auto-mdi-x: The same fix that applied to the 7100 is already in 23.05 snapshots. The switch ports link MDI and MDIX there as expe... Steve Wheeler
04:15 AM pfSense Plus Regression #14269: 1100/2100: switch ports not enabled for auto-mdi-x: aleksei prokofiev wrote:
> In 23.01 the 1100 switch ports do not support auto-MDI/X. The customer try to connect 110... Peter Poulos
03:51 AM pfSense Plus Regression #14269 (Duplicate): 1100/2100: switch ports not enabled for auto-mdi-x: In 23.01 the 1100 switch ports do not support auto-MDI/X. The customer try to connect 1100 with 2100 and no success, ... aleksei prokofiev

04/10/2023

09:10 PM Regression #14268 (Duplicate): OpenVPN client fails to start when a tunnel network is specified: Tested on pfSense+ 23.01/23.05dev with and without DCO.
With non-DCO, the logs show that it fails to configure the... Marcos M
08:10 PM Regression #14267 (Resolved): PHP error when saving an ICMP firewall rule with no subtypes selected: pfSense+ 23.01
Trying to edit an auto-generated NAT-associated firewall rule to allow ICMP results in a PHP error:... Marcos M
04:04 PM Feature #13382 (Pull Request Review): Packet Capture GUI with granular control: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1025
* Moved custom filter option to the first position ... Marcos M
03:56 PM Revision 02af3d3e: Normalize IPv6 prefix prior to use in ip_in_subnet(). Fixes #14256: Jim Pingle
02:58 PM pfSense Packages Bug #14228: pfBlockerNG might not support new Maxmind license keys: This was fixed in the 3.2.0_4 which is live. Artur Hawkwing
02:04 PM Revision aa3bbcb4: Add PCH thermal data to the thermal sensors widget and RRD graphs. Implements #14255: Steve Wheeler
01:40 PM Revision 4dc0624a: Fix punctuation. Fixes #14188: Jim Pingle
01:11 PM Revision 4b34ebd2: Update fw host/domain description text and add to wizard. Fixes #14250: * Update firewall host/domain description text
* Use same description on system.php and setup wizard Jim Pingle
01:05 PM Bug #11494: Wireguard interface sends ICMP Redirect when routing between two peers: Christian McDonald wrote in #note-9:
> Unable to replicate.
>
> We can revisit if someone can demonstrate that th... Andrei Caba
11:54 AM Bug #14266 (Rejected): Bug Captive Portal first access URL in HTTPS: As I mentioned on the other issue you opened (#14263), there isn't anything else you can do here.
There is no way ... Jim Pingle
11:41 AM Bug #14266 (Rejected): Bug Captive Portal first access URL in HTTPS: Good afternoon,
I'm using version 2.6 of the system, I tried this week to increase the use of the captive portal ... Simonetto Alimentos
11:05 AM Bug #14256 (Feedback): PHP Error performing IPv6 ``ip_in_subnet()`` when passing a host addresses within prefix: Applied in changeset commit:02af3d3efedacf511ebe834667fa7c707b46b43c. Jim Pingle
08:44 AM Bug #14256: PHP Error performing IPv6 ``ip_in_subnet()`` when passing a host addresses within prefix: We've seen this pop up in a couple different places so I'll see if there is a way to fix it more generally. The gist ... Jim Pingle
10:36 AM pfSense Docs Correction #14253 (Rejected): Single User Mode - Next Boot Configuration MUST manually be cleared on 3100: Looking this over, there is nowhere in the code that offers to reboot a 3100 in a way that would land a user in this ... Jim Pingle
10:10 AM Feature #14265 (Resolved): Option to invalidate GUI login session if the client address changes: Currently once the user logs in, their session is valid even if the client source address changes. This allows the us... Jim Pingle
10:01 AM Todo #14264 (New): Consider lowering default session timeout from current default of four hours (240m): The current session timeout is 240 minutes (four hours), but it might be time to lower that a bit. Current concerns w... Jim Pingle
09:20 AM Bug #14263 (Rejected): Bug Captive Portal quando Pagina é HTTPS: 1. We are only able to accept reports in English.
2. After running that through Google Translate it's about HTTPS ... Jim Pingle
06:24 AM Bug #14263 (Rejected): Bug Captive Portal quando Pagina é HTTPS: Bom dia, estou usando a versão 2.6 do sistema, tentei nesta semana incrementar o uso do captive portal em meu cenário... Simonetto Alimentos
09:14 AM Bug #14262: IPv6 firewall log entries do not wrap and force the table width past the width of the page: We solved this in the widget in #5332 by adding @<wbr>@ tags after each @:@ in an IPv6 address but it looks like that... Jim Pingle
01:53 AM Bug #14262 (New): IPv6 firewall log entries do not wrap and force the table width past the width of the page: IPV6-addresses are much wider than IPV4. That is not properly handled in the GUI. Extreme example is the Firewall log... Louis B
09:10 AM Feature #14255 (Feedback): Support for Intel PCH temperature values in thermal sensors: Applied in changeset commit:aa3bbcb4c1fd5f563cdba707887b17c5088ad7b9. Anonymous
08:59 AM pfSense Packages Todo #14194: Better colours for alerts: Sergei Shablovsky wrote in #note-2:
> Jim Pingle wrote in #note-1:
> > Green and Red are also not great choices bec... Jim Pingle
08:52 AM Bug #13996 (New): Limiters using the fq_pie scheduler no longer pass any traffic.: Jim Pingle
08:52 AM pfSense Plus Bug #14259 (Duplicate): Limiters with the fq_pie scheduler don't pass any traffic.: Duplicate of #13996 -- let's keep all the discussion on there.
Jim Pingle
08:50 AM Todo #14188 (Feedback): Add note to inform the user that the "Next Certificate Serial" value is ignored when the "Randomize Serial" option is enabled: Applied in changeset commit:4dc0624a1ab562736cf6236a81a0489f8ba35afc. Jim Pingle
08:49 AM Bug #14257 (Rejected): Rule order interface group 'is uncontrolled changing ^up and down^' :(: I can't reproduce this. The only way the rules would appear to reorder themselves is if they were not saved.
There... Jim Pingle
08:48 AM Todo #14011: Update memory graphs to account for changes in memory reporting: Because the "cache" value is a dummy in the FreeBSD sysctl tree now I used "cache" on the graph for ZFS ARC (when usi... Jim Pingle
08:40 AM Todo #14250 (Feedback): Update firewall host and domain fields in the Setup Wizard to match the description and warning text from ``system.php``: Applied in changeset commit:4b34ebd23dbe29b544727e8ab2727135b03f6110. Jim Pingle
08:35 AM Feature #14254 (Rejected): Add option "Reboot with Filesystem Check" to the Diagnostics > Reboot page for Netgate 3100: We cannot add this because as you noted on #14253 it cannot be cleared automatically on 3100.
We only add the opti... Jim Pingle
08:33 AM Feature #14251 (Duplicate): Add option to disable Intel Speed Shift so that Intel Speed Step can kick in: Duplicate of #14047 Jim Pingle
07:44 AM Feature #14249: Pre-set search string for DHCP leases when following shortcut link from DHCP configuration: Your description isn't very clear on what you are asking for. I can only assume you're asking that if you follow a li... Jim Pingle
07:34 AM pfSense Packages Bug #14218 (Feedback): Deleting a shellcmd entry results in a PHP error and crash report: MR merged Jim Pingle
07:28 AM Bug #14248 (Feedback): Static routes to monitor IP disappears if you set a gateway group as a default gateway.: If anyone can reproduce this starting with a completely fresh stock configuration, we'll need the steps involved to m... Jim Pingle
07:26 AM Bug #14247 (Duplicate): IPsec code needs updated to the new accessor methods.: Duplicate of #14009 Jim Pingle
05:47 AM Bug #13671 (Resolved): DHCP client can fail permanently if an interface is down at boot: Tested on 23.01
I was able to reproduce this Bug on my KVM by turning WAN (DHCP) interface off at certain moment d... Azamat Khakimyanov
01:45 AM Bug #14261 (Closed): Trim white space in a DHCP Leases page search field: Hi!
On DHCP Leases status page, in Search section, in Search term field BEFORE displaying results in Leases table ... Sergei Shablovsky

04/09/2023

05:19 PM Todo #14260: Change “IP[:PORT]” to “IP / FQDN[:PORT]: Hi!
In System Logs -> Settings page in Remote Log Servers section:
Change “IP[:PORT]” to “FQDN or IP [:PORT] in... Sergei Shablovsky
05:18 PM Todo #14260 (New): Change “IP[:PORT]” to “IP / FQDN[:PORT]: Hi!
In System Logs -> Settings page in Remote Log Servers section:
Change “IP[:PORT]” to “FQDN or IP [:PORT] in... Sergei Shablovsky
04:22 PM pfSense Packages Feature #13195: Dedicated website for Feed mangement - Community Driven: Jon Brown wrote in #note-1:
> or the website could be website where end users (me and others) can add feeds and repo... Sergei Shablovsky
04:18 PM pfSense Docs New Content #14174: Feedback on Certificate Management — Certificate Authority Management: Jon Brown wrote in #note-2:
> see https://forum.netgate.com/topic/179007/add-this-certificate-authority-to-the-opera... Sergei Shablovsky
04:03 PM pfSense Packages Todo #14194: Better colours for alerts: Jim Pingle wrote in #note-1:
> Green and Red are also not great choices because some people are red/green color blin... Sergei Shablovsky
02:25 PM pfSense Plus Bug #14259 (Duplicate): Limiters with the fq_pie scheduler don't pass any traffic.: After updating to 23.01 limiters using the fq_pie scheduler don't pass any traffic.
I'm using floating rules to as... Anonymous
01:32 PM Feature #14255 (Pull Request Review): Support for Intel PCH temperature values in thermal sensors: Steve Wheeler
01:31 PM Feature #14255: Support for Intel PCH temperature values in thermal sensors: This looks to cover it: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1024
Steve Wheeler
08:07 AM Feature #14255 (Resolved): Support for Intel PCH temperature values in thermal sensors: In pfSense 23.01/2.7 the pchtherm(4) driver is included and attaches to supported chipsets:... Steve Wheeler
01:27 PM pfSense Packages Bug #14258 (New): HA-proxy, IPV6-address in combination with portnumber => fatal: I am setting up HA-proxy using IPV4 and IPV6. When trying to define an IPV6 frontend, there is a prolbem
When e.g.... Louis B
12:28 PM Bug #14257 (Rejected): Rule order interface group 'is uncontrolled changing ^up and down^' :(: I did create an interface group. For that group I am defining new rules and I am moving rules from the 'interface gro... Louis B
10:13 AM Todo #14011: Update memory graphs to account for changes in memory reporting: If cache is now always 0 why is it 28.8%?... Chris Linstruth
09:50 AM Todo #14186: Improve DynDNS help text readability: Chris Linstruth wrote in #note-4:
> Looks good to me. @Bojan Bogojevic should probably weigh in to see if it is what ... Bojan Bogojevic
07:57 AM Todo #14186: Improve DynDNS help text readability: Looks good to me. @Bojan Bogojevic should probably weigh in to see if it is what was desired. Chris Linstruth
09:26 AM Bug #14256 (Resolved): PHP Error performing IPv6 ``ip_in_subnet()`` when passing a host addresses within prefix: I am getting this PHP error:... Karel Fischl
09:01 AM Todo #14188 (In Progress): Add note to inform the user that the "Next Certificate Serial" value is ignored when the "Randomize Serial" option is enabled: Consistency says that "This value is ignored when Randomize Serial is checked" should be terminated with a period.
... Chris Linstruth
04:16 AM Feature #14254 (Rejected): Add option "Reboot with Filesystem Check" to the Diagnostics > Reboot page for Netgate 3100: I'd simply like to request that the "Reboot with Filesystem Check" option (mentioned in the documentation on the "Tro... Karl Brown
04:11 AM pfSense Packages Bug #14228: pfBlockerNG might not support new Maxmind license keys: I can confirm this issue.
I used a workaround on Reddit and it worked.
https://www.reddit.com/r/pfBlockerNG/comment... aleksei prokofiev
04:00 AM pfSense Docs Correction #14253 (Rejected): Single User Mode - Next Boot Configuration MUST manually be cleared on 3100: https://docs.netgate.com/pfsense/en/latest/troubleshooting/single-user-mode.html#entering-single-user-mode
The doc... Karl Brown
02:50 AM pfSense Plus Feature #14252 (New): Optimization for 10GB-Connection/Throughput: Tuning a 10GB Connection, i´ve spent many days to get the most performance out of pfSense.
I´ve found the followin... Dieter Kreuz
02:37 AM Feature #14251 (Duplicate): Add option to disable Intel Speed Shift so that Intel Speed Step can kick in: My problem was, that in the boot logs pfSense did detect and use Intel SpeedShift.
As i have an i3-7100 CPU which, s... Dieter Kreuz
12:22 AM Bug #14236: PHP Error when viewing Traffic Graphs in ``iftop`` mode: I can’t reproduce issue... aleksei prokofiev
12:20 AM Bug #14248: Static routes to monitor IP disappears if you set a gateway group as a default gateway.: I can't reproduce it... aleksei prokofiev

04/08/2023

09:30 PM Todo #14250 (Resolved): Update firewall host and domain fields in the Setup Wizard to match the description and warning text from ``system.php``: The setup wizard should give the same warning about using the .local domain as the System > General configuration tex... Chris Linstruth
08:48 PM Feature #14249 (New): Pre-set search string for DHCP leases when following shortcut link from DHCP configuration: Hi pfSense DevTeam!
When configuring DHCP Server in WebGUI, pressing on “Show DHCP Leases” logically may cause to ... Sergei Shablovsky
08:36 PM pfSense Packages Todo #14073 (Confirmed): Shalla block list is offline but still available in pfBlocker: Confirmed in 23.01 and 2.7:
UPDATE PROCESS START [ v3.2.0_4 ] [ 04/9/23 01:34:56 ]
===[ DNSBL Process ]=====... Kris Phillips
08:28 PM pfSense Packages Bug #14021 (Incomplete): Squid ClamAV showing bytecode errors for version 334: Unable to confirm this. Here are my logs:
ClamAV - freshclam Logs
Message
bytecode.cvd database is up-to-date (v... Kris Phillips
08:25 PM pfSense Packages Bug #14108 (Confirmed): Antivirus Bases showing outdated main.cvd with a version dated year 2021: This doesn't appear to be a bug with the file not being downloaded. The file at http://database.clamav.net/main.cvd ... Kris Phillips
08:09 PM pfSense Packages Bug #14228 (Confirmed): pfBlockerNG might not support new Maxmind license keys: I can confirm this behavior in 3.2.0_3 on 23.01 of pfSense Plus. Kris Phillips
04:12 PM Feature #14185 (Resolved): Ability to edit Certificate Revocation List properties: added
2.7.0-DEVELOPMENT (amd64)
built on Fri Apr 07 06:05:50 UTC 2023
FreeBSD 14.0-CURRENT
Alhusein Zawi
01:09 PM Bug #14248: Static routes to monitor IP disappears if you set a gateway group as a default gateway.: I couldn't reproduce it on:... Danilo Zrenjanin
05:32 AM Bug #14248 (Feedback): Static routes to monitor IP disappears if you set a gateway group as a default gateway.: Tested on 23.01.
Steps to reproduce:
Set the monitor IP on each gateway
Create a gateway group Tier1 Tier2
Set ... Lev Prokofev
12:26 PM pfSense Plus Regression #13993: Switch ports on 7100/1100/2100 do not have Auto MDI-X support enabled: Successfully linked 7100 to 1100 both on 23.05.a.20230407.0116
Switches are back in the interfaces menu on 7100 @ 23... Jordan G
08:18 AM pfSense Plus Regression #13993: Switch ports on 7100/1100/2100 do not have Auto MDI-X support enabled: That's this netlink issue: https://redmine.pfsense.org/issues/14233 Steve Wheeler
04:44 AM pfSense Plus Regression #13993: Switch ports on 7100/1100/2100 do not have Auto MDI-X support enabled: Tested against 23.05.a.20230405.0600
The switch gets detected correctly and can negotiate the link with SG-1100 an... Danilo Zrenjanin
12:19 PM Bug #14236: PHP Error when viewing Traffic Graphs in ``iftop`` mode: Applied above changeset via patches package, running 23.05.a.20230407.0116; when viewing traffic graphs, selecting if... Jordan G

04/07/2023

06:02 PM pfSense Packages Regression #14024: PHP error in HAProxy Widget with Show Client Traffic enabled: Sebastian Wagner wrote in #note-7:
> As a workaround, I change the file like this:
> [...]
> I don't know if the d... Rodrigo Goncalves
05:46 PM Bug #14247 (Duplicate): IPsec code needs updated to the new accessor methods.: There are some errors caused by the removal of deprecated encryption methods. Updating to the new methods would fix t... Christopher Cope
05:00 PM Bug #14246 (New): Old OpenVPN anchor rules not clearing: Anchor rules also seem to be created in duplicate, but cause no apparent problems. However, it can sometimes overlap ... Christopher Cope
04:18 PM Revision 2eb25975: Cast to float in format_number(). Fixes #14236: Jim Pingle
02:50 PM Bug #14244 (New): ``get_interface_list()`` in ``util.inc`` does not always match the expected device in ``dmesg``.: In source:src/etc/inc/util.inc#L1730 the @get_interface_list()@ function finds a line based on the interface name, bu... Jim Pingle
02:10 PM Bug #14236: PHP Error when viewing Traffic Graphs in ``iftop`` mode: The original reporter on the forum states that the patch appears to have fixed the problem. Data still displays prope... Jim Pingle
11:25 AM Bug #14236 (Feedback): PHP Error when viewing Traffic Graphs in ``iftop`` mode: Applied in changeset commit:2eb25975691c95ea86c0df0a60c16bb9a70d4067. Jim Pingle
11:18 AM Bug #14236 (In Progress): PHP Error when viewing Traffic Graphs in ``iftop`` mode: I haven't managed to reproduce this yet but I can see how it might happen.
I've got a fix ready, and it seems to a... Jim Pingle
01:27 PM pfSense Packages Bug #14240 (Not a Bug): FRR OSPF Neighbor Not Detected for VTI Tunnels: It may have worked by accident, but it wasn't supposed to have worked that way. The interfaces were only intended to ... Jim Pingle
01:12 PM pfSense Packages Bug #14240 (New): FRR OSPF Neighbor Not Detected for VTI Tunnels: Jim Pingle wrote in #note-4:
> Can't reproduce this, it's working fine here as it has for quite some time. Even on 23... Kris Phillips
10:36 AM pfSense Packages Bug #14240 (Not a Bug): FRR OSPF Neighbor Not Detected for VTI Tunnels: Can't reproduce this, it's working fine here as it has for quite some time. Even on 23.05 snapshots. Has to be a conf... Jim Pingle
12:18 PM pfSense Plus Bug #14243 (Not a Bug): PFSENSE 23.01: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
12:17 PM pfSense Plus Bug #14243 (Not a Bug): PFSENSE 23.01: activating dns over tls following this tuto
https://docs.netgate.com/pfsense/en/latest/recipes/dns-over-tls.html
br... Jimmy Parr
11:40 AM pfSense Plus Regression #14102 (New): Console menu incorrectly shows option ``99`` on some ARMv7/ARM64 installations: Hate to be the bearer of bad news but I still see option 99 offered on my 1100. It's running ZFS, not UFS, so there i... Jim Pingle
10:02 AM pfSense Packages Feature #14241 (New): The Abiility to Configure FreeRadius Proxy servers from the GUI: Currently adding radius proxy servers via the GUI is not supported. When a proxy listener is configured freeradius st... Boris Baeta
02:49 AM pfSense Plus Bug #14175: LDAP authentication for SSH fails: The same on 2.6... Lev Prokofev
01:51 AM pfSense Plus Bug #14175: LDAP authentication for SSH fails: Tested on 2.5.1 and get the same auth error on an attempt to SSH.... Lev Prokofev
01:39 AM pfSense Plus Regression #14137: pfSense Plus Upgrade repo data remains on the system after upgradng: Tyler Sparrow wrote in #note-4:
> aleksei prokofiev wrote in #note-1:
> > Also, if package manager unavailable, may... yon Liu

04/06/2023

10:09 PM pfSense Packages Bug #14240: FRR OSPF Neighbor Not Detected for VTI Tunnels: to work around it (tested)
Add an IP(VIP) to the Localhost Firewall>Virtual IPs. (both sides, non used IPs)
ad... Alhusein Zawi
09:41 PM pfSense Packages Bug #14240: FRR OSPF Neighbor Not Detected for VTI Tunnels: Additional troubleshooting:
We re-saved the interfaces, restarted the FRR Zebra and OSPF service several times, dr... Kris Phillips
09:40 PM pfSense Packages Bug #14240 (Not a Bug): FRR OSPF Neighbor Not Detected for VTI Tunnels: Customer upgraded from 22.05 to 23.01 and FRR no longer showed a neighbor for a VTI tunnel with a /30 to an OSPF neig... Kris Phillips
10:08 PM Feature #14238: Feature request: Single pane patch/package/release update notification and management: !clipboard-202304062307-nsdpa.png!
!clipboard-202304062308-vwjvm.png!
Jim Pingle
10:04 PM Feature #14238: Feature request: Single pane patch/package/release update notification and management: What packages widget? is this something available outside of 2.6?
I do not see a dashboard widget for neither syst... tasty ratz
02:59 PM Feature #14238 (Rejected): Feature request: Single pane patch/package/release update notification and management: There is a packages widget for package updates, and with that you can see everything on the dashboard already.
Sys... Jim Pingle
02:44 PM Feature #14238 (Rejected): Feature request: Single pane patch/package/release update notification and management: Currently, PFSense has 3 different locations you need to check for updates and they don't generate any kinds of alert... tasty ratz
09:36 PM pfSense Docs New Content #14239 (Closed): Feedback on Packages — Nut package: *Page:* https://docs.netgate.com/pfsense/en/latest/packages/nut.html
*Feedback:*
A restart of pfsense after con... Jon Campbell
12:10 PM pfSense Packages Bug #14199: ACME - Issue with corrupted cert: I'm running pfSense+ 23.01 on a Netgate 2100.
This morning I was removing HAProxy (I've migrated to Nginx Proxy Ma... Kevin Dorff
11:23 AM pfSense Packages Regression #14024: PHP error in HAProxy Widget with Show Client Traffic enabled: As a workaround, I change the file like this:... Sebastian Wagner
10:12 AM pfSense Plus Regression #14181: ``mmcsd0`` controller timeout/system hang on 1100: For what it's worth I still have not seen a timeout again on mine, but I've been running 23.05 snapshots. It's been u... Jim Pingle
09:51 AM Bug #14216: ntopng causes OpenVPN server errors 'error - IP packet with unknown IP version=15 seen' when OpenVPN server interface is selected: Fresh install 2.6.0-RELEASE (amd64) with current packages.
ntopng net 0.8.13_10
There are other installed package... Damir Altus
09:14 AM pfSense Plus Regression #14137: pfSense Plus Upgrade repo data remains on the system after upgradng: aleksei prokofiev wrote in #note-1:
> Also, if package manager unavailable, may help next solution
> Check and then... Tyler Sparrow

04/05/2023

06:25 PM Feature #13382 (In Progress): Packet Capture GUI with granular control: Marcos M
10:11 AM Feature #13382 (New): Packet Capture GUI with granular control: Spent a couple minutes with the new page and hit a few snags:
* It's kind of confusing having none of the filterin... Jim Pingle
04:05 PM Bug #14237 (Not a Bug): Intermittent packet loss related to DHCP with Multi-WAN: I'm sorry for somewhat vague description, there might be actually a few issues here, described one the forum: https:/... Nazar Mokrynskyi
02:58 PM pfSense Docs Todo #12268 (Closed): Update Aliases documentation with recently added features: Updated: https://gitlab.netgate.com/docs/pfSense-docs/-/commit/fa5dee2856a3a8db3c269a750c080038f5c775cf Jim Pingle
02:38 PM Bug #14236 (Resolved): PHP Error when viewing Traffic Graphs in ``iftop`` mode: When monitoring traffic graphs which use iftop.... Steve Wheeler
10:59 AM pfSense Plus Regression #14235 (Feedback): Undersized CESA TDMA descriptor pools can be exhausted, leading to errors: fixed https://gitlab.netgate.com/pfSense/FreeBSD-src/-/commit/a483d9cdb658426f55e5cce61ef1fed17d97bddc Mateusz Guzik
07:31 AM pfSense Plus Regression #14235 (Resolved): Undersized CESA TDMA descriptor pools can be exhausted, leading to errors: When using CESA in the 3100 in 23.01 the descriptor pools can be exhausted filling the logs with:... Steve Wheeler
10:01 AM Feature #14047: Options to control Intel Speed Shift: This affected myself, on my newly built appliance the gui displayed Intel(R) Celeron(R) N5105 @ 2.00GHz
Current: 260... riva geeza
06:37 AM Bug #13973 (Resolved): PHP error in ``gwlb.inc`` when OpenVPN or IPsec instances referred to by assigned interface entries are missing: I was able to replicate the issue by manually removing the OpenVPN server from the XML backup config file but leaving... Danilo Zrenjanin
04:10 AM Bug #14216: ntopng causes OpenVPN server errors 'error - IP packet with unknown IP version=15 seen' when OpenVPN server interface is selected: I couldn't reproduce this issue on the 23.01 pfSense Plus release.... Danilo Zrenjanin
12:45 AM pfSense Packages Feature #12889: FRR GUI add set ipv6 next-hop global: !https://i.imgur.com/ewwRoTm.jpg! yon Liu

04/04/2023

09:41 PM Feature #13322 (Closed): Define Packet Capture Protocol: Marcos M
09:37 PM Feature #13322 (Resolved): Define Packet Capture Protocol: Marcos M
09:40 PM Feature #13094 (Closed): Allow packet capture filtering in tagged packets: Marcos M
09:37 PM Feature #13094 (Resolved): Allow packet capture filtering in tagged packets: Marcos M
09:40 PM Feature #13411 (Closed): Packet capture does not support 6rd tunnels: Marcos M
09:38 PM Feature #13411 (Resolved): Packet capture does not support 6rd tunnels: Marcos M
09:40 PM Feature #13682 (Closed): Automatically indicate a packet capture has stopped when count limit is reached: Marcos M
09:39 PM Feature #13682 (Resolved): Automatically indicate a packet capture has stopped when count limit is reached: The button now reverts appropriately. Marcos M
09:40 PM Feature #13017 (Closed): Packet capture: add preview results while capture is running: Marcos M
09:24 PM pfSense Docs Todo #14234 (Pull Request Review): Update Packet Capture docs to reflect the new GUI: https://gitlab.netgate.com/docs/pfSense-docs/-/merge_requests/56 Marcos M
09:23 PM pfSense Docs Todo #14234 (Resolved): Update Packet Capture docs to reflect the new GUI: The re-worked packet capture page has changes that need to be reflected on the docs. Marcos M
07:49 PM Bug #13911: Unnecessary delay when querying ``ixgbe(4)`` interfaces with SFP ports: Looks like it may not be fixed anytime soon. We have moved from 22.05 to 23.01 and it's still happening. I compared t... LTC Tech
07:36 PM Revision c016fea0: More flexible packet capture GUI. Implement #13382: Marcos M
04:08 PM Feature #13382: Packet Capture GUI with granular control: We are going to need updated docs and a better subject line for release notes. Christian McDonald
02:45 PM Feature #13382 (Feedback): Packet Capture GUI with granular control: Applied in changeset commit:c016fea0222b8ebcb74c07ae5891da4c0fd65dee. Marcos M
04:07 PM Feature #13868 (Closed): Allow packet capture on unassigned interfaces: Superseded by #13382. Marking this as closed. Christian McDonald
03:45 PM Feature #3718: radvd - enhancement proposal: ability to advertise routes and some fixes - patches attached: Finally did my homework to learn some github terminology and find out how to edit code and submit pull requests - yay... Marc Posch
02:48 PM Regression #14217: IPsec Phase 2 rekey failures with some PFS key groups: Something else to consider, the package in FreeBSD gained two options between 22.05.x and 23.01:... Jim Pingle
09:54 AM pfSense Docs Correction #14123 (Closed): DNS Rebinding pfsense documentation: This should hopefully be more clear now.
I updated the text a bit, added more information, and corrected reference... Jim Pingle
07:12 AM pfSense Packages Regression #13958: Snort exits with signal 10 on arm32: Mateusz Guzik wrote in #note-2:
> Hi Bill, that was me.
>
> What changed is that there was a compiler update and ... Bill Meeks
06:54 AM pfSense Packages Regression #13958: Snort exits with signal 10 on arm32: Hi Bill, that was me.
What changed is that there was a compiler update and then it turned out some of the files *d... Mateusz Guzik

04/03/2023

06:22 PM pfSense Plus Regression #14233 (Resolved): pfSense installer crashes on the 7100: The pfSense installer in the 23.05 memstick-serial image crashes:... Steve Wheeler
04:46 PM pfSense Packages Regression #14232 (New): ntopng no longer tracks top talkers: ntopng version that now comes with pfsnese plus 23.01 no longer tracks top talkers across time(no historical tracking... Mike Moore
02:28 PM pfSense Docs Todo #13968 (Closed): Marvell install instructions need updated: Updated 3100 install docs:
* https://gitlab.netgate.com/docs/pfsense-platforms/-/commit/8436c947544820423b30faf01d4b... Jim Pingle
02:24 PM Revision 41d62bba: Composer update: Christian McDonald
01:56 PM pfSense Plus Regression #14137: pfSense Plus Upgrade repo data remains on the system after upgradng: Danilo Zrenjanin wrote in #note-2:
> I hit that case and confirmed that the offered workaround fixes it.
I'm runn... pierre gleich
01:01 PM pfSense Docs New Content #13941 (Feedback): Memory usage in pfSense: This should take care of things:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/ab28c436fd6ff499ffec334dc1f... Jim Pingle
11:38 AM pfSense Packages Regression #14189 (New): pfBlocker-NG: HA-Sync is not working: Marcos M
10:29 AM pfSense Packages Regression #14189 (Duplicate): pfBlocker-NG: HA-Sync is not working: This issue has existed for some time unfortunately. It's covered by the following reports:
https://redmine.pfsense.or... Marcos M
10:45 AM pfSense Packages Bug #12916: pfBlockerNG-devel cron job does not trigger xmlrpc sync: Hello Marcos,
sadly this is not the same bug, because for me on pfSense+ 23.01 no update option worked, not even "... name name
08:15 AM Todo #14183 (Resolved): Update OpenVPN Wizard to match current certificate and OpenVPN options: Jim Pingle
08:14 AM pfSense Packages Bug #14220 (Duplicate): pfBlockerNG does not sync to HA secondary: Duplicate of #14189 Jim Pingle
08:11 AM pfSense Packages Bug #13936 (Feedback): PHP error from RRD Graphs when attempting a query a newly created empty database: MR merged Jim Pingle
08:00 AM Bug #14083 (New): Adding MSS and MTU values on a LAGG VLAN interface breaks connectivity: Jim Pingle
07:59 AM Bug #14083 (Duplicate): Adding MSS and MTU values on a LAGG VLAN interface breaks connectivity: Jim Pingle
07:57 AM pfSense Packages Feature #14193 (Duplicate): Website to add and remove feeds automatically: Jim Pingle
07:47 AM Todo #14231 (Rejected): Set net prefix to /24 by default when add new net: /24 is not any more or less likely to be correct than any other value. It depends on what the user is doing there whi... Jim Pingle
07:45 AM pfSense Plus Bug #14204 (Feedback): System Information Dashboard widget stops showing CPU details on aarch64: MR merged. Jim Pingle

04/02/2023

09:01 PM Todo #14231 (Rejected): Set net prefix to /24 by default when add new net: Dear pfSense stuff:
In DNS Resolver ACL configuration page set net prefix to /24 by default when add new net.
(... Sergei Shablovsky
03:21 PM pfSense Packages Bug #14230: PHP error with pfBlockerNG: As a workaround, use the @System Patches@ package to apply the following patch (set @Path Strip Count@ to @0@).... Marcos M
03:11 PM pfSense Packages Bug #14230 (New): PHP error with pfBlockerNG: On @pfBlockerNG-3.2.0_3@ and @pfSense-23.01@.... Marcos M
11:33 AM Bug #13996: Limiters using the fq_pie scheduler no longer pass any traffic.: I am not the only one with the problem: https://forum.netgate.com/topic/177555/fq_pie-no-internet?_=1680451711804
... Anonymous
10:52 AM Bug #14227 (Duplicate): Traffic Shaper - selected scheduler not recognized: Marcos M
12:17 AM Bug #14227: Traffic Shaper - selected scheduler not recognized: looking at diagnostic>limiter info displays a limiter with tail drop/FIFO above the AQM/scheduler that are modifiable... Jordan G
12:09 AM Bug #14227 (Duplicate): Traffic Shaper - selected scheduler not recognized: Limiter created and enabled with a child queue enabled, both saved and applied. Make change and save parent limiter, ... Jordan G
10:51 AM pfSense Packages Bug #14075 (Feedback): Using the ``Transparent ClientIP`` option in HAproxy results in kernel panics: The original report was from a customer's system, however I have not been able to reproduce this either on 23.01 nor ... Marcos M
10:13 AM pfSense Plus Bug #14224 (Duplicate): Error when deleting Boot Environment that was the source for a clone: Marcos M
06:54 AM pfSense Docs Todo #14225: Feedback on Packages — IDS / IPS — Configuring the Snort Package: Should of added, there are 4 policies and *Max-Detect* is not mentioned on the help page Jon Brown
05:25 AM pfSense Docs Todo #14225: Feedback on Packages — IDS / IPS — Configuring the Snort Package: this snort page lists the different policies but also gives a warning that the *Max-Detect* should only be used in te... Jon Brown
05:45 AM pfSense Docs Todo #14229: Snort - Add help page for SID MGMT: Sticky topics - https://forum.netgate.com/category/53/ids-ips Jon Brown
05:43 AM pfSense Docs Todo #14229 (New): Snort - Add help page for SID MGMT: there is no help page for
* https://x.x.x.x/help.php?page=snort/snort_sid_mgmt.php
* Services --> Snort --> SID M... Jon Brown
03:43 AM pfSense Packages Bug #14228 (Resolved): pfBlockerNG might not support new Maxmind license keys: https://dev.maxmind.com/geoip/release-notes/2023?lang=en#changes-to-maxmind-license-keys
* New license keys will b... Jon Brown
03:08 AM pfSense Packages Feature #13195: Dedicated website for Feed mangement - Community Driven: or the website could be website where end users (me and others) can add feeds and report dead feeds that would then b... Jon Brown
03:06 AM pfSense Packages Feature #14193: Website to add and remove feeds automatically: duplicate of #13195 - close this one Jon Brown

04/01/2023

10:52 PM pfSense Docs Todo #14226 (New): Feedback on Packages — IDS / IPS — Configuring the Snort Package: *Page:* https://docs.netgate.com/pfsense/en/latest/packages/snort/setup.html
*Feedback:* The docs seem to unnecess... Ashley R. Thomas
08:58 PM Feature #13868: Allow packet capture on unassigned interfaces: Danilo Zrenjanin wrote in #note-4:
> I tested the commit da2879b467746b43c8b8687700b6d7f34d4fd302 against the 22.05 ... Kris Phillips
08:49 PM pfSense Packages Todo #14221: Sync settings and inline documentation needs improving: >>http is insecure because your password will be transmitted in plain text so use https
Not sure it's relevant to ... Kris Phillips
03:35 AM pfSense Packages Todo #14221 (New): Sync settings and inline documentation needs improving: This inline notes on the sync page (Firewall --> pfBlockerNG --> Sync) need improving.
* *Add: Allow Sync Pushes*
... Jon Brown
08:41 PM pfSense Plus Bug #14168: OpenVPN status GUI cannot display RADIUS ACL Generated Ruleset with usernames containing an ``@`` symbol: Jim Pingle wrote in #note-1:
> Is this newly broken in 23.01 (regression) or has it never worked, even on older vers... Kris Phillips
08:36 PM pfSense Plus Bug #14224: Error when deleting Boot Environment that was the source for a clone: Confirmed on 23.01. The boot environment deletes, but throws the error, so it appears to be cosmetic in nature, than... Kris Phillips
12:14 PM pfSense Plus Bug #14224 (Duplicate): Error when deleting Boot Environment that was the source for a clone: Steps to reproduce.
1. Navigate to System > Boot Environments
2. Create New Boot Environment
3. Clone that n... Christopher Cope
08:34 PM pfSense Packages Bug #14218: Deleting a shellcmd entry results in a PHP error and crash report: A diff of the merge request fixes the problem when applied as a system patch. Deleting a shellcmd job doesn't give an... Chris W
10:08 AM pfSense Packages Bug #14218 (Pull Request Review): Deleting a shellcmd entry results in a PHP error and crash report: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/334 Christopher Cope
03:20 PM Bug #13996 (Not a Bug): Limiters using the fq_pie scheduler no longer pass any traffic.: Chris W
03:19 PM Bug #13996: Limiters using the fq_pie scheduler no longer pass any traffic.: I'm unable to reproduce this on a virtual machine which was upgraded to 23.01 from 22.05 (and to 22.05 from 22.01 pre... Chris W
02:02 PM pfSense Docs Todo #14225 (New): Feedback on Packages — IDS / IPS — Configuring the Snort Package: *Page:* https://docs.netgate.com/pfsense/en/latest/packages/snort/setup.html
*Feedback:*
the following statemen... Jon Brown
01:55 PM pfSense Packages Bug #11477: FRR does not recognize some BFD options: not exist
frr 1.2_3
pfsense 23.01 Alhusein Zawi
12:16 PM pfSense Plus Bug #14074 (Resolved): Cannot edit or delete ZFS Boot Environment with a name containing only numbers: Did some more testing. The other error seems to be unrelated to this issue. I created another redmine to track it. ht... Christopher Cope
11:17 AM pfSense Packages Bug #14223 (New): Block Offenders - Incorrect statement/description: The description on the options 'Block Offenders' is incorrect for 'inline mode' but still valid for 'Legacy Mode'
... Jon Brown
10:55 AM pfSense Packages Bug #14220: pfBlockerNG does not sync to HA secondary: Apparently my search for "sync" wasn't good enough. Apologies for the dupe. Steve Y
06:46 AM pfSense Packages Bug #14220: pfBlockerNG does not sync to HA secondary: I alreay created a bug for it, see https://redmine.pfsense.org/issues/14189 .
No feedback yet, if someone is even ... name name
07:08 AM Bug #14031: Identical SMTP notifications repeat in an infinite loop under certain conditions: I can confirm the fix is working for me. I don't see any repeats anymore. Thanks Jim! Haraldinho D
04:37 AM Feature #14222 (New): Add additional checks to admin account when disabling - Prevent lockouts: Currently on a fresh copy of pfSense and only an admin account I am able to disable this 'admin' account. This is a p... Jon Brown
02:32 AM Todo #14183: Update OpenVPN Wizard to match current certificate and OpenVPN options: Changeset tested on... Lev Prokofev

03/31/2023

06:58 PM Regression #14217: IPsec Phase 2 rekey failures with some PFS key groups: Rekeying appears to work OK using PFS group 18 in IKEv1. Though it doesn't remove old rekeyed SAs.... Steve Wheeler
01:50 PM Regression #14217: IPsec Phase 2 rekey failures with some PFS key groups: When rekeying from 2.7 against 2.6 the remote side accepts the rekeys and installs the new child_SA. But the local si... Steve Wheeler
12:41 PM Regression #14217 (Confirmed): IPsec Phase 2 rekey failures with some PFS key groups: Seeing this between a 2.7 VM and 23.01 on a 5100.
Tunnel rekeys as expected using PFS key group 14 but fails after... Steve Wheeler
11:15 AM Regression #14217: IPsec Phase 2 rekey failures with some PFS key groups: Jim Pingle wrote in #note-1:
> Is this tunnel mode or VTI?
This behavior is on both tunnel and VTI. Logs are for VTI... Georgiy Tyutyunnik
10:36 AM Regression #14217: IPsec Phase 2 rekey failures with some PFS key groups: Is this tunnel mode or VTI?
Are those logs in forward or reverse order? They seem to be in reverse which makes re... Jim Pingle
10:24 AM Regression #14217 (Resolved): IPsec Phase 2 rekey failures with some PFS key groups: IPSec phase 2 with some specific PFS key groups fails to rekey with the following logs message:
Mar 31 12:47:14 ch... Georgiy Tyutyunnik
05:30 PM Regression #14139: CARP announcement src MAC should be virtual MAC: Looking good on 2.7.0.a.20230331.1347, these are virtual src MACs coming from the MASTER:
tcpdump -e -i
00:13:3... Robert Karsai
09:08 AM Regression #14139 (Ready To Test): CARP announcement src MAC should be virtual MAC: The fix has been merged and will be present in future snapshot builds. Kristof Provost
05:27 PM pfSense Packages Bug #14220 (Duplicate): pfBlockerNG does not sync to HA secondary: After making changes they are not replicated to the secondary. E.g. on /pfblockerng/pfblockerng_ip.php check "kill s... Steve Y
04:28 PM pfSense Packages Bug #14218 (Resolved): Deleting a shellcmd entry results in a PHP error and crash report: 1. Install the shellcmd package from System > Package Manager.
2. Services > shellcmd >
Command: ... Chris W
02:43 PM Bug #14212: Using limiters and VLANs crashes with kernel panic: Jim Pingle wrote in #note-3:
> Bug reports must be for the current version or snapshots, not outdated releases. It's... Diogo Silva
02:28 PM Bug #14212 (Rejected): Using limiters and VLANs crashes with kernel panic: Bug reports must be for the current version or snapshots, not outdated releases. It's entirely possible this has alre... Jim Pingle
12:53 PM Bug #14212: Using limiters and VLANs crashes with kernel panic: Jim Pingle wrote in #note-1:
> What version are you using?
>
> Can you replicate the problem on development snaps... Diogo Silva
07:17 AM Bug #14212 (Incomplete): Using limiters and VLANs crashes with kernel panic: What version are you using?
Can you replicate the problem on development snapshots?
At a minimum we are going t... Jim Pingle
05:30 AM Bug #14212 (Rejected): Using limiters and VLANs crashes with kernel panic: This problem was reported way on the past, at the time I ended up stopping using TS and lost track of this. Now I end... Diogo Silva
01:00 PM Bug #14124 (Resolved): Some blank SAN fields are not ignored when creating a certificate: !clipboard-202303311957-pkspm.png!
The patch clarifies the function of add button. I am marking this ticket resolved. Danilo Zrenjanin
10:28 AM Bug #14118: freeRadius "Amount of Time" setting is not accurately tracked for Stop/Start settings in Caaptive Portal: re: 23.01 mid Feb release: Although the $rastart_time and $rastop_time are set around line 684 for the call to line 2... Dale Harron
09:05 AM Regression #13943 (Ready To Test): OpenVPN crashes with Signal 8 with very low fragment size: Future snapshots will have OpenVPN 2.6.2, which contains the fix. Kristof Provost
08:54 AM Bug #14216 (New): ntopng causes OpenVPN server errors 'error - IP packet with unknown IP version=15 seen' when OpenVPN server interface is selected: If the OpenVPN server interface is selected in the ntopng 'General Options' - 'Interfaces', it causes thousands of Op... Damir Altus
07:58 AM Regression #14164 (Feedback): IPv6 interface configuration race condition can lead to kernel panic: Let's keep this in a feedback state for a bit so we can confirm it's fixed in snapshots.
Jim Pingle
07:46 AM Todo #14210: Proposed new Icons for Logs to make for more logical reading: I'm open to changing the icons but personally I don't find either of those any better/worse than the current icons.
... Jim Pingle
04:51 AM Todo #14210 (New): Proposed new Icons for Logs to make for more logical reading: On the firewall logs (Status --> System Logs --> Firewall --> normal view) and probably elsewhere you use the followi... Jon Brown
07:22 AM Todo #14209 (Closed): Update Time Zone data to 2023c or later: This was merged in yesterday when we synced the tree with upstream and should be in today's snapshots.
Jim Pingle
03:50 AM Todo #14209 (Closed): Update Time Zone data to 2023c or later: Hi,
Egypt decided to return to daylight saving in 2023
tzdata need to be updated to 2023c
thanks and best regar... khaled osama
07:16 AM Feature #14213 (Rejected): Set range for random Gateway and network used for OpenVPN connections: The address assigned to a client is set by the server to which it connects or set static in the tunnel network field.... Jim Pingle
05:31 AM Feature #14213 (Rejected): Set range for random Gateway and network used for OpenVPN connections: When I create a new OpenVPN client (VPN --> OpenVPN --> Clients), assign it to an interface it becomes a gateway. The... Jon Brown
07:14 AM Todo #14215 (Closed): Redmine - Add CE to pfSense 2.6.0/2.7.0 Repo names for clarity: We can consider that for future versions but changing existing ones can have some unintended side effects.
Given t... Jim Pingle
06:11 AM Todo #14215 (Closed): Redmine - Add CE to pfSense 2.6.0/2.7.0 Repo names for clarity: Is it possible to add the *CE* to the 2.6.0 and 2.7.0 Redmine repo names so they follow your other products naming.
... Jon Brown
05:50 AM Feature #14214 (New): Add logging options to the GUI for DNS Resolver: This is a simple request to have the logging options to be added to the GUI for the DNS Resolver. The list below is n... Jon Brown
05:13 AM Todo #14211 (New): OpenVPN Status page (Stop|Start|Restart) - Use Ajax instead of full page reload.: (Status --> OpenVPN)
When I (Start|Stop|Restart) an OpenVPN service in any of the sections (Client Connections|Pee... Jon Brown
05:06 AM Bug #14136 (Resolved): Services Status page and Dashboard widget do not list the ``radvd`` service with certain static IPv6 configurations: I replicated the issue on 23.01.
Re-tested the same scenario on 2.7.0.a.20230330.0600, and it worked fine. I am ma... Danilo Zrenjanin
03:10 AM Bug #14176 (Resolved): Uptime displays plural seconds for multiple minutes in the System Information Dashboard widget: Tested on the 2.7.0.a.20230330.0600. It works fine.
I am marking this ticket resolved. Danilo Zrenjanin
03:03 AM pfSense Plus Regression #14137 (Confirmed): pfSense Plus Upgrade repo data remains on the system after upgradng: I hit that case and confirmed that the offered workaround fixes it. Danilo Zrenjanin

03/30/2023

10:27 PM Feature #14208: Automatic Split-DNS for 1:1 NAT: PR: https://github.com/pfsense/pfsense/pull/4630 Yehuda Katz
10:26 PM Feature #14208 (Pull Request Review): Automatic Split-DNS for 1:1 NAT: There is a well-known challenge of dealing with accessing public IP addresses from inside the network. The two existi... Yehuda Katz
04:46 PM Regression #14164 (Closed): IPv6 interface configuration race condition can lead to kernel panic: Fix landed upstream and locally after the merge Mateusz Guzik
02:45 PM pfSense Docs New Content #14170 (Closed): Radius Authentication Timeout: Note added and deployed: https://gitlab.netgate.com/docs/pfSense-docs/-/commit/961dbec8f6cfdf95313ee3aff4c33d67f5bc118b Jim Pingle
02:16 PM pfSense Packages Regression #13978: PHP errors with squidGuard: Additionally:... Steve Wheeler
01:51 PM pfSense Docs Todo #14207 (Resolved): Rate limiting on Chelsio T4/5 NICs: Chelsio T520-CR and T420-CR are unable to route speeds over 470mbps when updated to 23.01 code. Goes to full 1gb spee... Bruce Talbot
12:38 PM Revision 6f8ad15a: Fix memory RRD initialization. Fixes #14011: Jim Pingle
12:23 PM pfSense Docs Todo #14187 (Closed): Feedback on Certificate Management — Certificate Revocation List Management: Though the existing text states that they should check if it's in use and remove it from use before deleting, I added... Jim Pingle
11:54 AM pfSense Plus Bug #14206: package manager broken: Almost certainly this though: https://redmine.pfsense.org/issues/14137 Steve Wheeler
11:35 AM pfSense Plus Bug #14206 (Rejected): package manager broken: This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
11:19 AM pfSense Plus Bug #14206 (Rejected): package manager broken: newbe question *How do I remove pfsense plus upgrade? *
just upgraded to pfsense plus 23.01
when I click for availa... Douglas Pannell
10:52 AM pfSense Docs Todo #13968 (In Progress): Marvell install instructions need updated: I updated the 1100 and 2100 docs a couple weeks ago:
* https://gitlab.netgate.com/docs/pfsense-platforms/-/commit/... Jim Pingle
10:42 AM pfSense Docs New Content #13941 (In Progress): Memory usage in pfSense: First step, I updated the breakdown of memory types in the graph text:
https://gitlab.netgate.com/docs/pfSense-doc... Jim Pingle
10:37 AM pfSense Docs Correction #13987 (Closed): Monitoring system graphs need updated info about Nat States: Note added:
https://gitlab.netgate.com/docs/pfSense-docs/-/commit/04d2ec5dd76ba85922322f62c9fb67f58f64d47b
Jim Pingle
09:58 AM Regression #13942 (Resolved): PHP error on ``status_logs_settings.php`` if the configuration contains an empty ``syslog`` section: That was my bad. I probably didn't wait long enough for the system_package to finish the installation process after r... Danilo Zrenjanin
09:14 AM Regression #13942: PHP error on ``status_logs_settings.php`` if the configuration contains an empty ``syslog`` section: I tried again on a fresh snapshot and @<syslog></syslog>@ does not produce a crash. If you added a tag you might have... Jim Pingle
09:00 AM Regression #13942: PHP error on ``status_logs_settings.php`` if the configuration contains an empty ``syslog`` section: Danilo Zrenjanin wrote in #note-6:
> I applied the patch (8b962c6a752a654f2def293d93c102d2d20a6887) and then made a ... Jim Pingle
08:33 AM Regression #13942: PHP error on ``status_logs_settings.php`` if the configuration contains an empty ``syslog`` section: I applied the patch (8b962c6a752a654f2def293d93c102d2d20a6887) and then made a backup. I added an empty <syslog></sys... Danilo Zrenjanin
07:45 AM Todo #14011 (Feedback): Update memory graphs to account for changes in memory reporting: Applied in changeset commit:6f8ad15a0160bc1369e9fd4bcf3ac4c8462c9be7. Jim Pingle
07:34 AM Todo #14011 (In Progress): Update memory graphs to account for changes in memory reporting: Looks like the command that gets run at boot to put "unknown" values into the RRD (source:/src/etc/inc/rrd.inc#L642) ... Jim Pingle
07:19 AM pfSense Packages Bug #14203 (Rejected): Zabbix Agent 6.2 installation fails: The package installs fine (both agent and proxy) so whatever problem you are encountering is likely unique to your se... Jim Pingle
04:19 AM pfSense Packages Bug #14203 (Rejected): Zabbix Agent 6.2 installation fails: I see that this issue is reported a couple of times, i.e. https://redmine.pfsense.org/issues/13587 however it still p... Rajib Momen
07:05 AM pfSense Plus Feature #14205 (New): Allow for maximum concurrent users, per user, in captive portal: We have several schools who wish to impose how many devices are allowed to have access via the Captive Portal, per us... Alex Rubenstein
06:58 AM pfSense Plus Bug #14204 (Pull Request Review): System Information Dashboard widget stops showing CPU details on aarch64: Steve Wheeler
06:58 AM pfSense Plus Bug #14204: System Information Dashboard widget stops showing CPU details on aarch64: https://gitlab.netgate.com/pfSense/factory/-/merge_requests/97 Steve Wheeler
06:43 AM pfSense Plus Bug #14204 (Resolved): System Information Dashboard widget stops showing CPU details on aarch64: In aarch64 systems (1100, 2100) the system information widget gets CPU data by greping the strings from dmesg.
Howev... Steve Wheeler

03/29/2023

08:43 PM Bug #13252: reduce frequency of php-fpm socket connection attempts from check_reload_status: If it helps, I've experienced something similar in the past few days.
I got a report that "internet is down", but by... Konstantin Svist
07:32 PM Revision 8dcaa361: Remove deprecated/removed NCP toggle from OpenVPN. Fixes #14201: Jim Pingle
05:29 PM pfSense Packages Bug #14199: ACME - Issue with corrupted cert: Hi Jim .
My bad, I said HAProxy by mistake, I am using ACME for this, attached screenshot
Juan Francisco Rodriguez Garcia
11:57 AM pfSense Packages Bug #14199: ACME - Issue with corrupted cert: The attached configuration snippet isn't a valid configuration for ACME. I'm not sure how it ended up in that state, ... Jim Pingle
05:23 PM Bug #14077: Kernel panic from incoming IPv6 connections: Jim Pingle wrote in #note-13:
> Bruno Dambrine wrote in #note-12:
> > 1 - Can I install the last snapshop of pfsens... Bruno Dambrine
03:54 PM Bug #14077: Kernel panic from incoming IPv6 connections: I'm not proficient with FreeBSD package management so this is probably a dumb question, but is there any way to drop ... David Myers
04:03 PM Revision 0abc80b1: OpenVPN wizard updates. Fixes #14183: * Added Randomize Serial option when creating CA
* Added Common Name field to CA/Cert (still can use descr if blank)
... Jim Pingle
02:58 PM pfSense Packages Todo #14202 (Resolved): Rename exported OpenVPN connect files as "connect" rather than "ios": Some of the files have names that are not following the same rules as the rest. I have made corrections to some of th... Jon Brown
02:53 PM Revision 8b962c6a: Update direct config access in status_logs_settings.php. Fix #13942: Marcos M
02:40 PM Todo #14201 (Feedback): Remove deprecated NCP enable/disable toggle from OpenVPN: Applied in changeset commit:8dcaa3610c92aea930cc1fa631247ff2bce81e83. Jim Pingle
12:23 PM Todo #14201 (Resolved): Remove deprecated NCP enable/disable toggle from OpenVPN: CE snapshots now have OpenVPN 2.6.0 which removed the deprecated @ncp-disable@ option, making cipher negotiation comp... Jim Pingle
01:54 PM Revision 3706158f: Disble unmapped mbufs. #13938: Christian McDonald
01:01 PM Revision 7e7910fd: syslogd source interface corrections. Fixes #14120: * Do not attempt to use a source address when remote logging is
disabled.
* Do not attempt to use a source address ... Jim Pingle
11:10 AM Todo #14183 (Feedback): Update OpenVPN Wizard to match current certificate and OpenVPN options: Applied in changeset commit:0abc80b184bcf16387fb9befa1f5f4695280c561. Jim Pingle
11:03 AM Todo #14183 (In Progress): Update OpenVPN Wizard to match current certificate and OpenVPN options: Making this more general as there are a few other places that need updated as well. I went through and compared thing... Jim Pingle
10:02 AM pfSense Packages Bug #14200 (New): WireGuard reply-to without NAT: I have discovered that the WireGuard package requires the interface to have the gateway set for the reply-to rules to... Carrnell Tech
10:00 AM Regression #13942 (Feedback): PHP error on ``status_logs_settings.php`` if the configuration contains an empty ``syslog`` section: Applied in changeset commit:8b962c6a752a654f2def293d93c102d2d20a6887. Marcos M
08:56 AM Bug #13938 (Feedback): Kernel panic accessing the GUI over IPsec in certain environments when using nginx ``sendfile`` with unmapped mbufs: Christian McDonald
08:56 AM Bug #13938: Kernel panic accessing the GUI over IPsec in certain environments when using nginx ``sendfile`` with unmapped mbufs: That is a good point.
I've addressed this case too
https://gitlab.netgate.com/pfSense/pfSense/-/commit/3706158fe69c... Christian McDonald
08:40 AM Bug #13938: Kernel panic accessing the GUI over IPsec in certain environments when using nginx ``sendfile`` with unmapped mbufs: Seeing as this is a bug in mbuf handling, I would argue the thing to do is to flip the unmapped buf support off -- th... Mateusz Guzik
08:10 AM Regression #14120 (Feedback): ``syslogd`` tries to bind interfaces with no IP address: Applied in changeset commit:7e7910fded01a44a7ab1014e95bbfb0fbae709a8. Jim Pingle
07:46 AM Regression #14120: ``syslogd`` tries to bind interfaces with no IP address: Did this happen on previous versions or just on 23.01 and after?
EDIT: Nevermind, it probably did based on the code. ... Jim Pingle
08:08 AM Regression #14164 (In Progress): IPv6 interface configuration race condition can lead to kernel panic: Mateusz Guzik
08:08 AM Regression #14164: IPv6 interface configuration race condition can lead to kernel panic: Posted a review upstream: https://reviews.freebsd.org/D39317 Mateusz Guzik
07:32 AM Regression #14163: Running ``ifconfig`` logs a high volume of netlink debug messages (``genl_handle_message``) on dev snapshots: Updating subject and excluding from release notes since it was a regression introduced between snapshots and not in a... Jim Pingle

03/28/2023

05:34 PM pfSense Packages Bug #14199: ACME - Issue with corrupted cert: Attaching the Acme section of my config.xml backup which had this issue after upgrading to the new release on Feb 17 ... Jerold Von Hemel
04:55 PM pfSense Packages Bug #14199 (Resolved): ACME - Issue with corrupted cert: Hi team
After creating a new cert in HAProxy i got an timeout on the webui interface then receive this error:
P... Juan Francisco Rodriguez Garcia
05:22 PM Revision bfa5cfef: Skip blank SAN values, make + more clear. Fixes #14124: Jim Pingle
04:44 PM Revision 9d87553c: Fix radvd service check. Fixes #14136: Jim Pingle
03:48 PM Revision d588bb5c: Allow editing of CRL properties. Fixes #14185: Fixes editing of imported CRLs and also allows editing properties of
internal CRLs. Jim Pingle
03:00 PM Revision 663e29bb: Note that CA serial is ignored when randomizing. Fixes #14188: While here, when creating a CA, set the default serial to 1 since the
GUI won't allow saving with the serial remainin... Jim Pingle
02:36 PM Bug #14077: Kernel panic from incoming IPv6 connections: Bruno Dambrine wrote in #note-12:
> 1 - Can I install the last snapshop of pfsense CE on my netgate 6100 as I do wit... Jim Pingle
12:50 PM Bug #14077: Kernel panic from incoming IPv6 connections: Sorry, I have two questions.
1 - Can I install the last snapshop of pfsense CE on my netgate 6100 as I do with pfs... Bruno Dambrine
09:40 AM Bug #14077 (Feedback): Kernel panic from incoming IPv6 connections: A fix for this was merged into snapshots around the 17th. If possible, please upgrade to a current dev snapshot and s... Jim Pingle
02:33 PM Feature #14197 (Rejected): DHCP Leases - Add interface column: The lease database doesn't record the interface, and given the potential size of the leases display calculating that ... Jim Pingle
01:56 PM Feature #14197 (Rejected): DHCP Leases - Add interface column: Status --> DHCP Leases
Can you add an Interface column so the results can be sorted by interface and also this mak... Jon Brown
02:25 PM pfSense Packages Todo #14194: Better colours for alerts: Green and Red are also not great choices because some people are red/green color blind, so ideally whatever colors ar... Jim Pingle
01:32 PM pfSense Packages Todo #14194 (New): Better colours for alerts: on the page Firewall --> pfBlockerNG --> Reports --> unified (and others)
pfBlocker uses
* 'Red' for traffic st... Jon Brown
02:05 PM Feature #14198 (New): Allow gateway group with no members: I would like the option of having gateway groups with no members, or perhaps a null entry if needed.
h2. Why
I ... Jon Brown
01:50 PM pfSense Packages Feature #14196 (Incomplete): permitted firewall rules - additional text: Firewall --> pfBlockerNG --> DNSBL --> DNSBL Configuration --> Permit Firewall Rules
Can you add some additional i... Jon Brown
01:45 PM pfSense Packages Feature #14195 (New): Customise what are class as Full Domains when blocking with DNSBL: Currently when a DNSBL is Blocked you get one of 2 pages depending what was looked up. Most lookups will end up beeb ... Jon Brown
01:26 PM pfSense Packages Feature #14193 (Duplicate): Website to add and remove feeds automatically: I would like to see a website where end users (me and others) can add feeds and report dead feeds that would then be ... Jon Brown
01:15 PM Bug #14136: Services Status page and Dashboard widget do not list the ``radvd`` service with certain static IPv6 configurations: Jim Pingle wrote in #note-2:
> Took me a bit to find one but I was able to reproduce this on one system in my lab --... David Myers
11:50 AM Bug #14136 (Feedback): Services Status page and Dashboard widget do not list the ``radvd`` service with certain static IPv6 configurations: Applied in changeset commit:9d87553c55770db317d0f65f608933f4412af363. Jim Pingle
11:46 AM Bug #14136: Services Status page and Dashboard widget do not list the ``radvd`` service with certain static IPv6 configurations: Took me a bit to find one but I was able to reproduce this on one system in my lab -- the others already showed it OK... Jim Pingle
01:09 PM Revision c5faa351: Message queue handling improvements. Fixes #14031 Fixes #14061: * Do not attempt to process the message queue without sufficient
privileges.
* Check for permission to write the me... Jim Pingle
01:04 PM Bug #13487: GUI IPV6-WAN-status stays "Offline, Packetloss" after a short communication hick up: To be noted. In the actual 2.7 snapshot the IPV6 gateway is still relatively frequently changing to 'unavailable' Louis B
12:30 PM Bug #14124 (Feedback): Some blank SAN fields are not ignored when creating a certificate: Applied in changeset commit:bfa5cfef8125d4ba07db5aa481fd854978b20c63. Jim Pingle
11:22 AM pfSense Packages Feature #14192 (Rejected): Instant Website Redaction Technology Not working: Hello Fellow Netgate Community Members,
I wanted to share some topics for discussion and possibly create a communi... Jonathan Lee
10:55 AM Feature #14185 (Feedback): Ability to edit Certificate Revocation List properties: Applied in changeset commit:d588bb5c211c5e2fb9e00647bff206ac6c806c26. Jim Pingle
10:48 AM Feature #14185 (In Progress): Ability to edit Certificate Revocation List properties: Making this more general since while I was in there it was also not too hard to allow editing the lifetime and serial... Jim Pingle
04:59 AM Feature #14185: Ability to edit Certificate Revocation List properties: just a small followup that is related.
I created a CRL using 'import an existing certificate revocation list' and ... Jon Brown
10:10 AM Todo #14188 (Feedback): Add note to inform the user that the "Next Certificate Serial" value is ignored when the "Randomize Serial" option is enabled: Applied in changeset commit:663e29bb666388407c52fbb8d418ff24077bffe0. Jim Pingle
09:45 AM Regression #14163: Running ``ifconfig`` logs a high volume of netlink debug messages (``genl_handle_message``) on dev snapshots: For the record, this appears to be triggered by running @ifconfig@. So any page or action that ends up using ifconfig... Jim Pingle
09:39 AM Bug #14092 (Resolved): Kernel panic when PF passes a large/fragmented ICMP6 packet: Looks good to me. I cannot crash a current Plus 23.05 or CE 2.7.0 snapshot with a large ping packet as I could before... Jim Pingle
09:33 AM pfSense Packages Regression #14189: pfBlocker-NG: HA-Sync is not working: I understand, but I don't know what is "not" happening.
There are two choices when configuring Sync for pfBlockerN... name name
09:25 AM Bug #14061 (Feedback): PHP error if a non-privileged shell user attempts an operation which needs to write ``config.cache``: Applied in changeset commit:c5faa351c1ef6d4555478a7f50b3a16ece7e0b2a. Jim Pingle
08:13 AM Bug #14061: PHP error if a non-privileged shell user attempts an operation which needs to write ``config.cache``: The more I looked at this I'm fairly certain it's the same root cause as #14031 -- If an unprivileged user such as @n... Jim Pingle
09:25 AM Bug #14031 (Feedback): Identical SMTP notifications repeat in an infinite loop under certain conditions: Applied in changeset commit:c5faa351c1ef6d4555478a7f50b3a16ece7e0b2a. Jim Pingle
08:15 AM Bug #14031: Identical SMTP notifications repeat in an infinite loop under certain conditions: I was able to reproduce this on demand by triggering a notification from nut and a notification from the system short... Jim Pingle
07:08 AM Regression #14139 (Waiting on Merge): CARP announcement src MAC should be virtual MAC: Jim Pingle
05:43 AM pfSense Docs Todo #14191 (Rejected): Feedback on pfSense® software Configuration Recipes — OpenVPN Site-to-Site Configuration Example with SSL/TLS: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-tls.html
*Feedback:*
Hi there,
I think ... EComputer Vision
02:56 AM Todo #14190 (Duplicate): Update nvd3 (web ui dependency) to 1.8.6: Updates and minifies nvd3 for better performance and some bug fixes.
PR: https://github.com/pfsense/pfsense/pull/4629 GChuf 6

03/27/2023

08:20 PM Regression #14139: CARP announcement src MAC should be virtual MAC: The bug is fairly obvious now. The check for multicast in carp_output() expects the IP address to be in host endianne... Kristof Provost
06:35 PM Regression #14139: CARP announcement src MAC should be virtual MAC: Actually, they do. Chris Linstruth
06:14 PM Regression #14139: CARP announcement src MAC should be virtual MAC: Switches do not learn what port to use based on the carp announcements, so that's not actually something to worry abo... Kristof Provost
08:40 AM Regression #14139: CARP announcement src MAC should be virtual MAC: Hi Jim, yes, master & backup states are OK, even the switchover is OK, however without the right announcements coming... Robert Karsai
08:38 AM Regression #14139: CARP announcement src MAC should be virtual MAC: Hmm, yeah, that could be fallout from the unicast carp work. In unicast mode we use the interface Mac as source (most... Kristof Provost
08:12 AM Regression #14139: CARP announcement src MAC should be virtual MAC: On @2.7.0.a.20230314.0600@ the CARP advertisement source MAC was still the CARP MAC, but on current snaps it is the i... Jim Pingle
07:14 PM pfSense Packages Regression #14189: pfBlocker-NG: HA-Sync is not working: Packages get updated directly, they don't get patches.
Also there is almost no detail here or on the linked forum ... Jim Pingle
05:31 PM pfSense Packages Regression #14189 (Confirmed): pfBlocker-NG: HA-Sync is not working: I'm not the only one with this problem.
See https://forum.netgate.com/topic/179060/pfblockerng-sync-not-working .
... name name
06:11 PM Regression #14163: Running ``ifconfig`` logs a high volume of netlink debug messages (``genl_handle_message``) on dev snapshots: As Christian said, these logs will go away with the next upstream merge.
They are harmless and can safely be ignored... Kristof Provost
06:09 AM Regression #14163: Running ``ifconfig`` logs a high volume of netlink debug messages (``genl_handle_message``) on dev snapshots: Hi, I think this is related: https://redmine.pfsense.org/issues/14139 CARP do have problems in the last few builds, t... Robert Karsai
05:28 PM pfSense Plus Regression #14181: ``mmcsd0`` controller timeout/system hang on 1100: I found mmc-utils but I'm sure if it can tell me about the health of the flash. What else can I do to test it? I reme... Craig Leres
10:23 AM pfSense Plus Regression #14181: ``mmcsd0`` controller timeout/system hang on 1100: I have seen the same thing on my 1100 but given the timing (could be hours, days, or even weeks between timeouts) it ... Jim Pingle
04:36 PM Revision 1e05389e: Capitalize "dns" in DynDNS ttl help text: Bojan Bogojevic
04:36 PM Revision e89ddfb9: Reorder DynDNS zone id help text alphabetically: Bojan Bogojevic
04:36 PM Revision f9f13d00: Reorder DynDNS pasxsowrd help text alphabetically: Bojan Bogojevic
04:36 PM Revision 6d610dde: Reorder DynDNS username help text alphabetically: Bojan Bogojevic
04:36 PM Revision d3d29594: Reorder DynDNS hostname help text alphabetically: Bojan Bogojevic
03:12 PM Bug #14031: Identical SMTP notifications repeat in an infinite loop under certain conditions: I can confirm I have this issue too _and_ I have nut installed. Actually, I am suffering from it now and can't reboot... Haraldinho D
02:56 PM Bug #14031 (Confirmed): Identical SMTP notifications repeat in an infinite loop under certain conditions: We've run up against issues like this with NUT before but not always a loop. See https://redmine.pfsense.org/issues/1... Jim Pingle
02:49 PM Bug #14031: Identical SMTP notifications repeat in an infinite loop under certain conditions: I do have nut installed on my system. It hasn't repeated the process since my last report; maybe its a rare sequence ... Paul Diederich
02:44 PM Bug #14031: Identical SMTP notifications repeat in an infinite loop under certain conditions: I finally had a system in my lab get stuck doing this, it was a fresh image of a 23.05 dev snapshot, restored a confi... Jim Pingle
02:53 PM Bug #13224 (Duplicate): Email notification flood when UPS (NUT) and WAN send notifications: Closing in favor of #14031 since it has more/better detail. Jim Pingle
02:18 PM Bug #14124: Some blank SAN fields are not ignored when creating a certificate: Jim Pingle wrote in #note-4:
> The "Add" button adds a new row to the form, it doesn't save or take any other action.... Mario Jauvin
07:34 AM Bug #14124: Some blank SAN fields are not ignored when creating a certificate: The "Add" button adds a new row to the form, it doesn't save or take any other action. It's working as intended and i... Jim Pingle
11:37 AM Todo #14186 (Feedback): Improve DynDNS help text readability: PR merged. Jim Pingle
09:12 AM Todo #14186: Improve DynDNS help text readability: Github PR link: https://github.com/pfsense/pfsense/pull/4628 Bojan Bogojevic
09:12 AM Todo #14186 (Resolved): Improve DynDNS help text readability: * To improve readability I've reordered hostname, username, password, zone id help texts alphabetically.
* Changed '... Bojan Bogojevic
11:27 AM pfSense Packages Todo #9200: Add DNS support for Google domain to Acme manager: Ryan Keen wrote in #note-9:
> It appears that Google Domains has added support for DNS-01 ACME Challenges using a to... Jim Pingle
11:02 AM pfSense Plus Bug #14074: Cannot edit or delete ZFS Boot Environment with a name containing only numbers: OK, it may still be worth a quick look to see if we can make that smoother in case users are stuck with the problem e... Jim Pingle
09:34 AM pfSense Plus Bug #14074: Cannot edit or delete ZFS Boot Environment with a name containing only numbers: just want to be precise so you dont spend time on this if you dont have to;
the patch fixed the issue regarding n... Mark Grant
07:27 AM pfSense Plus Bug #14074 (New): Cannot edit or delete ZFS Boot Environment with a name containing only numbers: The current patch was merged into dev builds last week, but since there is still an issue with the patch applied, mov... Jim Pingle
10:58 AM Bug #13423: IPv6 neighbor discovery protocol (NDP) fails in some cases: Matt Gaynor wrote in #note-18:
> Also facing this issue, with the same lack of NDP response from pfSense, IPv6 is un... Jim Pingle
09:15 AM Bug #13423: IPv6 neighbor discovery protocol (NDP) fails in some cases: Also facing this issue, with the same lack of NDP response from pfSense, IPv6 is unusable when using a non link-local... Matt Gaynor
10:47 AM Feature #14185: Ability to edit Certificate Revocation List properties: That should be fairly easy, not sure why it isn't there already unless something in the form structure of that page m... Jim Pingle
08:59 AM Feature #14185: Ability to edit Certificate Revocation List properties: the CRL buttons
!crl-buttons.jpg!
Jon Brown
08:54 AM Feature #14185 (Resolved): Ability to edit Certificate Revocation List properties: Can you add the option to rename a 'Certificate Revocation List'
h2. Scenario
I have made a list and then added... Jon Brown
10:43 AM Todo #14183: Update OpenVPN Wizard to match current certificate and OpenVPN options: I agree, we should either add that as an option or silently enable it by default.
That whole workflow is probably ... Jim Pingle
08:14 AM Todo #14183: Update OpenVPN Wizard to match current certificate and OpenVPN options: https://docs.netgate.com/pfsense/en/latest/certificates/ca.html... Jon Brown
08:00 AM Todo #14183 (Resolved): Update OpenVPN Wizard to match current certificate and OpenVPN options: When running the OpenVPN wizard (VPN --> OpenVPN --> Wizards --> Type of Server: Local User Access ) On step 6 of 11,... Jon Brown
10:41 AM Todo #14184 (Rejected): Redmine - Automatically subscribe the issue reporter: The only options there are in your own profile settings. There is no global option in Redmine to change that behavior.
Jim Pingle
08:06 AM Todo #14184 (Rejected): Redmine - Automatically subscribe the issue reporter: When I create an issue in Redmine I have to manually subscribe/watch.
Can you change the settings so when I report... Jon Brown
10:35 AM Bug #14182: PHP error when XMLRPC client attempts to synchronize without any synchronization settings in the configuration: The only way I can see that error happening is if the HA sync settings in the configuration are empty, which isn't va... Jim Pingle
04:30 AM Bug #14182 (Closed): PHP error when XMLRPC client attempts to synchronize without any synchronization settings in the configuration: After upgrading to 23.01 the FreeRADIUS XMLRPC Sync get PHP error. ... aleksei prokofiev
10:31 AM pfSense Plus Bug #13967 (Resolved): aarch64 23.01 upgrade can fail to write the bootloader: Jim Pingle
10:30 AM Regression #14138 (Feedback): Kernel Panic in ``rtsock_msg_mbuf``: Is the backtrace always the same?
Is there anything else going on when this happens?
In the message buffer it l... Jim Pingle
10:13 AM pfSense Plus Bug #14140 (Not a Bug): OpenVPN Custom Options removes newline before push statements: Not a bug. Statements must be separated with a *semicolon* , not a newline.
This is stated clearly in the descript... Jim Pingle
10:10 AM pfSense Plus Regression #14180 (Feedback): ConnectX-4 LX MCX4121A-ACAT - VT-d passthrough of both ports, virtualized pfSense fails to boot due to mlx5 driver errors: The error messages are different so this may not be the case, but over on the TNSR side we have seen behavior changes... Jim Pingle
10:00 AM Feature #14177: tcprtt Measures the TCP handshake RTT using the stats(9) statistics framework: If we do include this it should also warn against using it arbitrarily, since some public services may also not react... Jim Pingle
09:56 AM Bug #9459: patch pf: silence a runtime warning pfr_update_stats: assertion failed.: Given the age of the original issue this was likely fixed before and then regressed in a later version. Please make a... Jim Pingle
09:56 AM pfSense Docs New Content #14174: Feedback on Certificate Management — Certificate Authority Management: see https://forum.netgate.com/topic/179007/add-this-certificate-authority-to-the-operating-system-trust-store/5?_=167... Jon Brown
09:49 AM pfSense Docs New Content #14174 (Rejected): Feedback on Certificate Management — Certificate Authority Management: The current text already covers the second point and the first point is irrelevant.
The text already says "When ad... Jim Pingle
09:55 AM Bug #14176 (Feedback): Uptime displays plural seconds for multiple minutes in the System Information Dashboard widget: MR merged Jim Pingle
09:52 AM pfSense Plus Bug #14175: LDAP authentication for SSH fails: Did the same configuration work before 23.01?
Jim Pingle
09:37 AM Todo #14188 (Resolved): Add note to inform the user that the "Next Certificate Serial" value is ignored when the "Randomize Serial" option is enabled: When editing or creating a CA you have the option to 'Randomize Serial'. When this is used the 'Next Certificate Seri... Jon Brown
09:36 AM pfSense Plus Feature #14173: QAT driver does not attach to QAT virtual function devices passed through to VM on Xeon D-2146NT: Hi Jim,
thank you for looking into it.
I'm already in contact with the Intel QAT driver team, to see if the fau... name name
09:30 AM pfSense Plus Feature #14173 (Needs Patch): QAT driver does not attach to QAT virtual function devices passed through to VM on Xeon D-2146NT: If it fails on FreeBSD 14-CURRENT then it needs fixed upstream first and we can pull in the fix from there. It could ... Jim Pingle
09:26 AM pfSense Docs Todo #14187 (Closed): Feedback on Certificate Management — Certificate Revocation List Management: *Page:* https://docs.netgate.com/pfsense/en/latest/certificates/crl.html#delete-a-certificate-revocation-list
*Fee... Jon Brown
09:21 AM pfSense Plus Regression #14171 (Not a Bug): High Availability Setup with Gateway to secondary pfSense not working - No Internet: This is not and will not be a supported CARP configuration. WANs must be static using CARP for CARP to function prope... Jim Pingle
09:19 AM Bug #14169 (Not a Bug): OpenVPN Backend for authentication doesn't distinguish reject from timeout: This is not a bug, it's intended behavior.
When an auth server is down or fails it may either timeout, reject acce... Jim Pingle
09:17 AM pfSense Plus Bug #14168: OpenVPN status GUI cannot display RADIUS ACL Generated Ruleset with usernames containing an ``@`` symbol: Is this newly broken in 23.01 (regression) or has it never worked, even on older versions?
Jim Pingle
09:14 AM Feature #14166: Use netstat output for interface packet counters: Also netstat has libxo support so getting the data should be fairly simple (e.g. @netstat -ni --libxo=json@) Jim Pingle
09:08 AM Feature #14165: Option to allow the DNS Forwarder to ignore system DNS servers: That isn't a use case that should have worked before, it just happened to work by accident. Adding an option to accom... Jim Pingle
09:06 AM Bug #14060 (Resolved): Auto Config Backup prints a confusing decryption error when using the wrong key: Jim Pingle
08:54 AM Feature #14156 (Rejected): See the configured .opvn file from the GUI for the OpenVPN servers: Exposing that level of backend config data in the GUI would be more confusing and rarely help users solve problems. A... Jim Pingle
08:53 AM pfSense Packages Todo #14155 (Rejected): 'Block Outside DNS' option is present in the server and on the client: The two options cover different scenarios: The option in the base pushes to all clients, the option in the client exp... Jim Pingle
08:42 AM pfSense Docs Correction #14143: Feedback on System Monitoring — Remote Logging with Syslog: I thought the syslog-ng information was relevant because it would clear up when to use remote logging to a separate s... Jon Brown
08:37 AM pfSense Docs Correction #14143: Feedback on System Monitoring — Remote Logging with Syslog: Updating the links is OK, but adding more info on syslog-ng should go in its own separate doc somewhere. It doesn't c... Jim Pingle
08:39 AM Feature #14144: Improve support for renaming interface groups: This may end up being related to #14095 -- or at least overlapping somewhat. Jim Pingle
08:32 AM pfSense Packages Bug #14142 (Rejected): PHP errors in OpenVPN Client Export package: Christopher is right, it looks like the package needs updating because @vpn_openvpn_export_shared.php@ is removed on ... Jim Pingle
08:14 AM pfSense Packages Bug #14141 (Rejected): pfsense 2.6.0 -pfSense-pkg-squid installation failed!: This isn't a bug, but a problem with your current update settings. This site is not for support or diagnostic discuss... Jim Pingle
08:09 AM pfSense Plus Bug #14132: Aliases of the same name current as previously deleted will not be respected properly: Thanks for the update. You sparked an idea about not everything being removed when an Alias is changed.
I'm goin... Steven Cedrone
07:55 AM pfSense Plus Bug #14132 (Not a Bug): Aliases of the same name current as previously deleted will not be respected properly: There isn't nearly enough evidence here of a bug and not something else happening in the configuration or existing st... Jim Pingle
08:04 AM pfSense Plus Feature #14134: Notifier on main dashboard for other updates availble: Packages / System Patches (if installed) Under the PfSense current Version.: Jim Pingle wrote in #note-1:
> There is already a packages widget which shows available package updates.
My apolo... Steven Cedrone
07:56 AM pfSense Plus Feature #14134 (Rejected): Notifier on main dashboard for other updates availble: Packages / System Patches (if installed) Under the PfSense current Version.: There is already a packages widget which shows available package updates. Jim Pingle
07:59 AM pfSense Plus Bug #14135 (Rejected): iOT Devices not reconnecting properly: There isn't any evidence here of a bug in pfSense. Myself and many others use various IOT devices in many different w... Jim Pingle
07:53 AM pfSense Packages Feature #14126: Quality monitoring graph scale adjustment: Moving over to the graph frontend location since I'm fairly certain if it can be changed, it's in the parts located i... Jim Pingle
07:32 AM Bug #14115: DHCP Server page does not properly select a default interface tab if neither WAN nor LAN are capable of being DHCP servers: Looks like one test is reversed when it's trying to locate the starting interface. I don't have a setup to test this ... Jim Pingle

03/26/2023

06:29 PM Regression #14138: Kernel Panic in ``rtsock_msg_mbuf``: It's the exact same hardware I ran the previous version on, with no changes to hardware or BIOS settings. The problem... Stephen Baines
05:46 AM Bug #9577: radvd send_ra_forall failed on interface / can't join ipv6-allrouters: This problem returned for me after updating to pfSense 2.6.0.
Immediately after starting radvd, it starts spamming... Lars Veldcholte

03/25/2023

09:40 PM Bug #8343 (Resolved): Gateway Routes (Default Routes) not removed in Kernel when removed from GUI: disabling/disconnecting the WAN_DHCP interface will remove the default route
tested on
2.7.0-DEVELOPMENT (amd... Alhusein Zawi
08:48 PM pfSense Plus Bug #13967: aarch64 23.01 upgrade can fail to write the bootloader: This has been working for over a week now without issue. We can close this as Resolved. Kris Phillips
08:44 PM Regression #14138: Kernel Panic in ``rtsock_msg_mbuf``: Did this start after updating or something? General Protection Fault is almost always hardware failure or a hardware... Kris Phillips
08:05 PM pfSense Plus Regression #14181: ``mmcsd0`` controller timeout/system hang on 1100: Well I'm running on a completely different SG-1100 now so I'll wait and see if the problem reoccurs before the next v... Craig Leres
07:23 PM pfSense Plus Regression #14181: ``mmcsd0`` controller timeout/system hang on 1100: I haven't seen this with any other firewalls or on my personal Netgate 1100. I suspect you might have a fault eMMC t... Kris Phillips
05:00 PM pfSense Plus Regression #14181: ``mmcsd0`` controller timeout/system hang on 1100: Oops, I'm actually running 23.01. Craig Leres
02:26 PM pfSense Plus Regression #14181: ``mmcsd0`` controller timeout/system hang on 1100: Craig Leres wrote:
> I've attached two serial console stack traces.
Here's one more crash from a few minutes ago,... Craig Leres
12:28 PM pfSense Plus Regression #14181 (Closed): ``mmcsd0`` controller timeout/system hang on 1100: Several times since upgrading to 23.05 and later reinstalling to switch to zfs root I've had a SG-1100 glitch and los... Craig Leres
07:43 PM Bug #14083: Adding MSS and MTU values on a LAGG VLAN interface breaks connectivity: confirmed on 7100 running 23.01 - after setting mtu/mss and rebooting system receives and displays IP on WAN in conso... Jordan G
07:28 PM pfSense Plus Bug #14104: Google LDAP connections still fail even after adding SNI for TLS 1.3: If the client certificate is chained into a single entry with the CA data, may be related to this: https://redmine.pf... Kris Phillips
06:43 PM pfSense Packages Todo #12351: Remove non-functional feeds: shallalist is no longer updated, it needs to be removed from DNSBL categories
https://www.shallalist.de/ is comple... Jordan G
06:34 PM pfSense Packages Bug #13936 (Pull Request Review): PHP error from RRD Graphs when attempting a query a newly created empty database: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/333 Christopher Cope
06:30 PM pfSense Plus Regression #13993: Switch ports on 7100/1100/2100 do not have Auto MDI-X support enabled: switch is not detected under interfaces menu with current build - 23.05.a.20230322.0600 Jordan G
12:24 PM pfSense Plus Bug #14140 (Confirmed): OpenVPN Custom Options removes newline before push statements: Chris W
09:43 AM pfSense Plus Bug #14140: OpenVPN Custom Options removes newline before push statements: I'm not able to reproduce this on the server settings, but can on the Client Specific Overrides page. After saving an... Chris W
09:19 AM pfSense Plus Regression #14180 (Feedback): ConnectX-4 LX MCX4121A-ACAT - VT-d passthrough of both ports, virtualized pfSense fails to boot due to mlx5 driver errors: I've been running the following configuration for months now:
Hypervisor:
Linux Kernel 5.15
libvirt/qemu/kvm
... name name
07:49 AM pfSense Packages Bug #14179 (New): FreeRadius is active but in an inoperable state, switches to a generated freeradius-temp certificate upon restart: I was testing my HA setup yesterday evening and used the "Enter Persistent CARP Maintenance Mode" button quite a few ... name name
04:54 AM Regression #14039: Limiters have no effect on upload traffic passed by policy routing rules: Tried as Floating Rule but for me same outcome, the Limiter Diagnostic showing no limiter applied.
Marco Goetze

03/24/2023

08:25 PM Bug #14178: Captive Portal Pass-through MAC Auto Entry registering MAC address for unauthenticated users when using Pass-through credits: Typo in the third bullet of Actual Behavior "They don't ever see the login/portal prompt." Dean Arnold
08:21 PM Bug #14178 (New): Captive Portal Pass-through MAC Auto Entry registering MAC address for unauthenticated users when using Pass-through credits: The Captive Portal "Pass-through MAC Auto Entry" feature is adding an Allowed Client MAC address registration for una... Dean Arnold
07:17 PM Revision 1b121a0f: Correct plural seconds check.: Steve Wheeler
05:54 PM Feature #14177 (New): tcprtt Measures the TCP handshake RTT using the stats(9) statistics framework: My coworker thought using 8.8.8.8 for the gateway monitor would suffice for a “is the internet up” monitor. Well, goo... Ryan Whitlock
03:15 PM Bug #9459: patch pf: silence a runtime warning pfr_update_stats: assertion failed.: I see. Thanks for the info.
Issue still exists so status of this bug shouldn't be 'resolved'.. Casper B
02:21 PM Bug #14176: Uptime displays plural seconds for multiple minutes in the System Information Dashboard widget: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1023 Steve Wheeler
02:06 PM Bug #14176 (Resolved): Uptime displays plural seconds for multiple minutes in the System Information Dashboard widget: The check to display seconds as plural is incorrectly checking for multiple minutes here:
https://github.com/pfsense... Steve Wheeler
01:25 PM pfSense Plus Bug #14175: LDAP authentication for SSH fails: Can confirm the issue.... Lev Prokofev
12:58 PM pfSense Plus Bug #14175 (New): LDAP authentication for SSH fails: LDAP authentication fails for SSH user authentication via LDAP with error (Invalid credentials).
Same user successfu... Georgiy Tyutyunnik
12:43 PM pfSense Docs New Content #14174 (Rejected): Feedback on Certificate Management — Certificate Authority Management: *Page:* https://docs.netgate.com/pfsense/en/latest/certificates/ca.html
*Feedback:*
the *Trust Store* section s... Jon Brown
10:20 AM pfSense Plus Feature #14173 (Needs Patch): QAT driver does not attach to QAT virtual function devices passed through to VM on Xeon D-2146NT: pfSense is virtualized under Linux.
Hypervisor:
* qemu-kvm
* i440fx (q35 doesn't work either)
* kernel 5.15.9... name name
10:03 AM pfSense Plus Regression #14102 (Feedback): Console menu incorrectly shows option ``99`` on some ARMv7/ARM64 installations: Fixed in 209cb8b1. Reid Linnemann
09:59 AM pfSense Plus Regression #14102: Console menu incorrectly shows option ``99`` on some ARMv7/ARM64 installations: I've simplified and improved the EMMC/SATA rootdev check for aarch64 devices. The modified script is more specific ab... Reid Linnemann
09:55 AM Regression #14172 (Resolved): PHP error in Captive Portal if ``usedmacs`` list is empty: ... name name
09:51 AM pfSense Plus Regression #14171: High Availability Setup with Gateway to secondary pfSense not working - No Internet: I forgot to add: All currently available patches were applied via the System Patches package, before any testing was ... name name
09:44 AM pfSense Plus Regression #14171 (Not a Bug): High Availability Setup with Gateway to secondary pfSense not working - No Internet: Hi,
the following setup is working just fine on pfSense CE 2.6.0:
* High Availability/CARP
* Gateway group WAN... name name
06:15 AM Regression #14039: Limiters have no effect on upload traffic passed by policy routing rules: I think in general you currently don't need more testers but can at least share that we are quite affected since we h... Jose Duarte
04:13 AM pfSense Docs New Content #14170 (Closed): Radius Authentication Timeout: https://docs.netgate.com/pfsense/en/latest/usermanager/radius.html#radius-configuration ... Danilo Zrenjanin
03:44 AM Bug #14169 (Not a Bug): OpenVPN Backend for authentication doesn't distinguish reject from timeout: When multiple auth servers are defined in the list, the VPN doesn't respect the reject message from the first server ... Danilo Zrenjanin

03/23/2023

08:35 PM pfSense Plus Bug #14168 (New): OpenVPN status GUI cannot display RADIUS ACL Generated Ruleset with usernames containing an ``@`` symbol: When looking at the Status --> OpenVPN page and viewing a user's ACLs from RADIUS, if the user signed in with user@do... Kris Phillips
03:03 PM Regression #14164: IPv6 interface configuration race condition can lead to kernel panic: ... Christian McDonald
11:15 AM Regression #14164 (Resolved): IPv6 interface configuration race condition can lead to kernel panic: While re-configuring an interface that has an IPv6 config, such as when the link bounces, it's possible to hit a race... Steve Wheeler
01:59 PM Bug #14167 (Confirmed): Auto Config Backup: Selected manual backups are not retained.: The 'Manual backups to keep' feature in ACB does not retain the selected number of manual backups as expected.
Man... Steve Wheeler
12:49 PM Feature #14166 (New): Use netstat output for interface packet counters: Currently the In/Out Packets counters shown for Interface Status are taken from pfctl. Hence they show the identical ... Steve Wheeler
12:31 PM Feature #14165 (Resolved): Option to allow the DNS Forwarder to ignore system DNS servers: Since the change for #12902 I can no longer specify custom servers in the DNS Forward configuration. I do not want t... Orion Poplawski
12:08 PM Bug #14060: Auto Config Backup prints a confusing decryption error when using the wrong key: Tested on:
Version 23.01-RELEASE (amd64)
built on Fri Feb 10 20:06:33 UTC 2023
FreeBSD 14.0-CURRENT
patch resol... Georgiy Tyutyunnik
10:02 AM Todo #14098 (Resolved): Match upstream changes in PF syntax to disable fragment disassembly: The patch fixes this one. I am marking this ticket resolved. Danilo Zrenjanin
08:37 AM Regression #14163 (Waiting on Merge): Running ``ifconfig`` logs a high volume of netlink debug messages (``genl_handle_message``) on dev snapshots: This will be fixed when we do our next merge from upstream FreeBSD Christian McDonald
08:13 AM Regression #14163 (Resolved): Running ``ifconfig`` logs a high volume of netlink debug messages (``genl_handle_message``) on dev snapshots: System log is being spammed with kernel messages. CE 2.7.0.a.20230322.0600. It only appears to happen when the Dashb... Keith Townsend
07:56 AM Regression #14015 (Resolved): Alias list is not sorted: I tested the patch with different upper-lower case setups. The patch works fine.
I am marking this ticket resolved. Danilo Zrenjanin
07:46 AM Bug #13992 (Resolved): Custom default state timeouts are not respected in the ruleset: The patch fixes the issue. I've just run the Status > Filter Reload after applying the patch.
I am marking this t... Danilo Zrenjanin
05:25 AM pfSense Packages Feature #14160: Add Search Engine Group in feeds: This is so we can whitelist search engines "Search Engines IPv4", "Search Engines IPv6" Jon Brown
05:02 AM pfSense Packages Feature #14160 (New): Add Search Engine Group in feeds: It would be good to get a search engine feed so you can either block them or use them as a whitelist. I have included... Jon Brown
05:22 AM pfSense Packages Feature #14162 (New): Add 'Google Services' feed group: This group can be used to allow the blocking or whitelisting of google services. I have added what I found along with... Jon Brown
05:17 AM pfSense Packages Feature #14161 (New): Add 'Microsoft Services' feed: This should include all of the Microsoft services and preferably in separate items. I have included links to the page... Jon Brown
03:17 AM pfSense Packages Feature #14159 (New): Add netgate bogon feeds: Can you add the netgate bogon feeds.
* https://files.netgate.com/lists/
** https://files.netgate.com/lists/bogon-... Jon Brown
02:48 AM pfSense Packages Bug #13936: PHP error from RRD Graphs when attempting a query a newly created empty database: Can replicate on ... Lev Prokofev
02:30 AM Regression #13942: PHP error on ``status_logs_settings.php`` if the configuration contains an empty ``syslog`` section: I couldn't apply the patch on the:... Danilo Zrenjanin
02:03 AM Feature #14002 (Resolved): Option to enable/disable console bell, enabled by default: Tested the patch against:... Danilo Zrenjanin

03/22/2023

07:38 PM Regression #12821: Intel e1000 driver (``em``, ``igb``) cannot pass packets tagged with VLAN ``0``: For clarity the e1000 iflib driver that is in-kernel in pfSense has a bug that prevents it passing vlan0 if vlan hard... Steve Wheeler
06:30 PM Regression #12821: Intel e1000 driver (``em``, ``igb``) cannot pass packets tagged with VLAN ``0``: Kris Phillips wrote in #note-31:
> Hayden Hill wrote in #note-30:
> > Kris Phillips wrote in #note-29:
> > > FYI i... Hayden Hill
10:02 AM Regression #12821: Intel e1000 driver (``em``, ``igb``) cannot pass packets tagged with VLAN ``0``: Hayden Hill wrote in #note-30:
> Kris Phillips wrote in #note-29:
> > FYI it appears this issue has spread in 23.01... Kris Phillips
03:34 PM pfSense Packages Feature #13200: Custom DNS Servers for Alert settings: One solution would be to deny:
LAN: Deny any != pfblockerng ip TCP/UDP:53
WAN: ANY outgoing TCP/UDP:53
And allow... Carlos Montalvo J.
12:55 PM pfSense Plus Bug #14158: Unable to delete boot environment "X". Error 3: Duplicate of https://redmine.pfsense.org/issues/14074 Christopher Cope
12:55 PM pfSense Plus Bug #14158 (Duplicate): Unable to delete boot environment "X". Error 3: Christopher Cope
12:38 PM pfSense Plus Bug #14158 (Duplicate): Unable to delete boot environment "X". Error 3: Hi,
I was going to make a new backup recovery in the Boot Environments.
I name it with one number ie. 1, then save ... B. B.
11:44 AM Feature #14157 (New): Wildcards for 'Host Overrides' and 'Domain Overrides' in the GUI: Can you add the ability to use wildcards in 'Host Overrides' and 'Domain Overrides' in the GUI.
I know I can add w... Jon Brown
11:36 AM Feature #14156 (Rejected): See the configured .opvn file from the GUI for the OpenVPN servers: It would be a useful feature for diagnosing issues quickly to see the generate .OPVN file in the GUI.
If the onscr... Jon Brown
11:27 AM pfSense Packages Todo #14155 (Rejected): 'Block Outside DNS' option is present in the server and on the client: I find this situation confusing and propose a couple of resolutions:
* If the option 'Block Outside DNS' should stay... Jon Brown
11:22 AM pfSense Packages Feature #11165: OpenVPN Exporter - Allow for name customization: I would like to see this so if I want, I can create more human readable connection names which are shown in the OpenV... Jon Brown
10:59 AM Regression #13965 (Resolved): Automatic DHCP failover firewall rules are not present in the ruleset when failover is active: The patch fixes it.
I am marking this ticket resolved. Danilo Zrenjanin
09:22 AM Feature #14144: Improve support for renaming interface groups: maybe this should have been bug, not feature. Sorry. Kyle Wadman
07:18 AM Feature #14144 (New): Improve support for renaming interface groups: I have noticed that when an Interface Groups is renamed, all the Separators are lost.
I then named it back to the or... Kyle Wadman
08:41 AM pfSense Packages Bug #14142 (Not a Bug): PHP errors in OpenVPN Client Export package: This doesn't look like a bug. From the logs, the OpenVPN export package needs to be updated / reinstalled.
If that... Christopher Cope
06:05 AM pfSense Packages Bug #14142 (Rejected): PHP errors in OpenVPN Client Export package: Good moorning after installation last version of pf-sense, system shows Us the follow error related openvpn .
I am... Stefano Raniero
08:40 AM pfSense Packages Feature #14154 (New): Ability to use pfSense alias in IPv4 Custom_List: Firewall --> pfBlockerNG --> IP --> IPv4 --> edit/add --> IPv4 Custom_List
the reasons for this are:
* I only hav... Jon Brown
08:36 AM pfSense Packages Bug #14153 (New): default whitelist is not created: When I click on the button from the + button from the reports tab and follow the whitelisting, the default whitelist ... Jon Brown
08:35 AM pfSense Plus Bug #14140: OpenVPN Custom Options removes newline before push statements: Sorry, i forgot to describe WHY this is a problem.
The issue is that the invalid formatting of the options will ca... Nick Maludy
08:19 AM Feature #14152 (New): Add a way to find where an alias is used in the GUI: I would like the ability to find where an alias is used via the GUI. I imagine a button next to the other alias optio... Jon Brown
08:08 AM pfSense Packages Feature #14151 (New): Add (ASN) to IPv4 Custom_List information: Firewall --> pfBlockerNG --> IP --> IPv4 --> IPv4 Custom_List
the line ... Jon Brown
08:05 AM pfSense Packages Feature #14150 (New): Source and Destination information for IPv4 Custom_List and feeds: Firewall --> pfBlockerNG --> IP --> IPv4 --> list
When you edit/create a list you have to select an action type an... Jon Brown
07:58 AM pfSense Packages Feature #14149 (New): Make the NEXT Scheduled CRON counter active: I would like the countdown timer of the cron to be active. Like on an aution page of ebay. :)
Firewall --> pfBlock... Jon Brown
07:54 AM pfSense Packages Feature #14148 (New): Update alias information and error handling: On the following sections can you:
Firewall --> pfBlockerNG --> IP --> IPv4
*Advanced Inbound Firewall Rule Set... Jon Brown
07:48 AM pfSense Packages Feature #14147 (New): when you rename an alias the alias reference in pfsense Advanced Inbound/Outbound rules ar enot updated: I refer to the rules @ (Firewall --> pfBlockerNG --> IP --> IPv4)
I noticed that when I renamed an alias that the ... Jon Brown
07:36 AM pfSense Packages Bug #14146 (New): Small Typo in 'Advanced Outbound firewall rule settings' warning message: When creating an IPv4 outbound permit rule (Firewall --> pfBlockerNG --> Ip --> IPv4) and you leave the **Custom Prot... Jon Brown
07:20 AM Feature #14145 (New): Combined rule view (Floating + Group + Interface) that shows all rules relevant to a given interface: When viewing an interface firewall rule section it would be nice to have a toggle to "show inherited". This would sho... Kyle Wadman
07:09 AM pfSense Docs Correction #14143 (Closed): Feedback on System Monitoring — Remote Logging with Syslog: *Page:* https://docs.netgate.com/pfsense/en/latest/monitoring/logs/remote.html
*correction:*
in the section *Se... Jon Brown

03/21/2023

07:17 PM pfSense Packages Bug #14054: pfBlockerNG can incorrectly modify firewall rules: It appears this related to the IPv4 IP list being updated, and happens during this step:... Marcos M
06:38 PM pfSense Packages Bug #14141 (Rejected): pfsense 2.6.0 -pfSense-pkg-squid installation failed!: Hi guys,
Any help please.
I'm working on a lab project that is due in the comming days. Everything has worke fine u... Jean Smail Origene
05:43 PM pfSense Packages Todo #9200: Add DNS support for Google domain to Acme manager: It appears that Google Domains has added support for DNS-01 ACME Challenges using a token generated on Google Domains... Ryan Keen
01:56 PM pfSense Packages Feature #8547: fwknop Port Knocking Package: I'd like to add a vote here, too. This would be *incredibly* useful.
Port knocking is not an _alternative_ to a VP... Liquid Thex
01:54 PM pfSense Plus Bug #14140 (Not a Bug): OpenVPN Custom Options removes newline before push statements: Hello,
I'm setting up an OpenVPN server and need to pass in some additional option in two places:
1. VPN -> Ope... Nick Maludy
12:49 PM Regression #14139 (Resolved): CARP announcement src MAC should be virtual MAC: Hi All,
I think at some point in the last couple of 2.7.0 builds CARP function became somewhat broken. CARP announ... Robert Karsai
11:12 AM Feature #12091: RFE: Add support for sssd authentication: Just updated to psSense Plus 23.01 and now with sssd-1.16.5_8 it fails to start with:
ld-elf.so.1: /usr/local/sbin... Orion Poplawski
02:22 AM Regression #14138 (Feedback): Kernel Panic in ``rtsock_msg_mbuf``: I’ve been having a number of these over the last week or so. Last night’s was overnight when no one was using the net... Stephen Baines
12:09 AM pfSense Plus Regression #14137: pfSense Plus Upgrade repo data remains on the system after upgradng: Also, if package manager unavailable, may help next solution
Check and then uncheck dashboard auto update box in Sys... aleksei prokofiev

03/20/2023

10:36 PM Bug #13624: Only one alias in local network of OpenVPN Server works in 2.6.0: Also ran into the sub-alias not updating the parent alias issue as described by Florian Bat.
This had one of our en... Dean Arnold
07:21 PM pfSense Plus Regression #14137 (Resolved): pfSense Plus Upgrade repo data remains on the system after upgradng: After upgrading from CE to pfSense Plus the repo data used for that should be removed from the firewall leaving it us... Steve Wheeler
02:14 PM Revision 875221b6: ArrayGetExprRector support for variable and funccall array keys: Change how buildPathArgNode() generates an Arg node - as we introduce support
for more complicated expressions in arr... Reid Linnemann
02:14 PM Revision ce614369: Make ArrayGetExprRector configurable for multiple variables: Rector only permits a single instance of a Rule class in a configuration, so in
order to allow the ArrayGetExprRector... Reid Linnemann
02:14 PM Revision 96eb75ed: Rename GlobalGGetExprRector and friends to ArrayGetExprRector: Reid Linnemann
02:14 PM Revision 46f5b38a: Make GlobalGGetExprRector configurable, add simple test for $g variable: Reid Linnemann
02:03 PM pfSense Packages Bug #14116 (Duplicate): Squid Error went I press SAVE button.: Duplicate of https://redmine.pfsense.org/issues/13984
Missing Squid Reverse config values. Steve Wheeler
10:19 AM pfSense Packages Bug #14116: Squid Error went I press SAVE button.: Looks like Clamav is the issue, once I disable this services, the error is gone.

This is my config file:
cat... Peter Moreno
11:52 AM Feature #13017 (Pull Request Review): Packet capture: add preview results while capture is running: Thank you for the pull request. This has been implemented with a re-write of the Packet Capture page. See https://red... Marcos M
09:42 AM Bug #14136 (Resolved): Services Status page and Dashboard widget do not list the ``radvd`` service with certain static IPv6 configurations: After upgrading from 2.5.2 to 23.01 I noticed that @radvd@ no longer appears in Services Status or the associated das... David Myers
04:38 AM pfSense Plus Bug #14135: iOT Devices not reconnecting properly: I forgot to mention we also tested this with a Sony TV (1 year old and up to date Firmware) on an ethernet connection... Steven Cedrone
04:24 AM pfSense Plus Bug #14135 (Rejected): iOT Devices not reconnecting properly: IOT Devices of different manufacturers all seem to have this problem and while the problem is being experienced I wou... Steven Cedrone
04:32 AM pfSense Plus Bug #13497: unbound process looks like stuck periodically: Yaroslav Semenenko wrote:
> Hello,
>
> I have Netgate 2100.
> Unbound service is needed to restart sometimes due... Steven Cedrone
03:50 AM pfSense Plus Feature #14134 (Rejected): Notifier on main dashboard for other updates availble: Packages / System Patches (if installed) Under the PfSense current Version.: A notifier on the Main Landing page under the Current PfSense Version number that lets you also know if your packages... Steven Cedrone
03:47 AM pfSense Plus Feature #14133 (New): Exporting and Importing - Change Layout: Please change Backup & Restore to allow for choosing only what areas you want to import/export without having to do i... Steven Cedrone
03:39 AM pfSense Plus Bug #14132 (Not a Bug): Aliases of the same name current as previously deleted will not be respected properly: This problem is hard to describe so I'll give as much information as possible as best as I can.
-Alias was created... Steven Cedrone
03:30 AM pfSense Plus Feature #14131 (New): Add Dynamic DNS Service: DYNU: Please add Dynamic DNS provider DYNU
https://www.dynu.com/en-US/
It's working now but sometimes won't update an... Steven Cedrone
03:10 AM Feature #14130 (New): Add DynDNS Provider - IPv64.net: I would like to have the German DynDNS provider IPv64.net added. An integration with DynDNS is very easy there via th... Dennis Schröder

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

04/18/2023

04/17/2023

04/16/2023

04/15/2023

04/14/2023

04/13/2023

04/12/2023

04/11/2023

04/10/2023

04/09/2023

04/08/2023

04/07/2023

04/06/2023

04/05/2023

04/04/2023

04/03/2023

04/02/2023

04/01/2023

03/31/2023

03/30/2023

03/29/2023

03/28/2023

03/27/2023

03/26/2023

03/25/2023

03/24/2023

03/23/2023

03/22/2023

03/21/2023

03/20/2023