Activity

30 days up to

User

Subprojects

Activity

From 07/07/2024 to 08/05/2024

08/05/2024

10:32 PM Regression #15669 (Resolved): Static routes using null gateways are not installed: When trying to add a static route to the Null4 gateway, which should be localhost, the operation fails in 24.03 with:... Steve Wheeler
05:08 PM Bug #12747: Restarting the logging daemon during rotation also restarts ``sshguard``, leading to frequent log messages: Damn. I got bit by this today when trying to troubleshoot a remote firewall. Filled to the brim with the logspew (pfS... → luckman212
02:15 PM pfSense Packages Bug #15668 (New): squidclamav.so cat't read the client IP: even the option is set in the WEBGUI and the related config line is available in squid.conf, squidclamav logs
squi... Thomas Eckardt
02:09 PM pfSense Packages Bug #15667 (New): squidclamav does not initialize - squid not working: regular expressions defined in /usr/local/pkg/squid_antivirus.inc are too long
the resulting lines in /usr/local/etc... Thomas Eckardt
12:12 PM Bug #15663 (Not a Bug): KEA DHCP issue with unbound DNS resolution - possibly related to #15651: The feature is not supported on Kea as it's not fully implemented yet. Whatever you are able to make happen now may w... Jim Pingle
12:10 PM Bug #15664 (Not a Bug): IPsec VTI firewall rules not syncing in HA setup: This is a config issue, not a bug.
If the rules appear to not sync then the interfaces must not be assigned in an ... Jim Pingle
12:53 AM Bug #15664 (Not a Bug): IPsec VTI firewall rules not syncing in HA setup: Seems to be a failure in the way the sycing is done with pfSense in High Availability
Two systems in HA.
On Mast... Mike Moore
12:09 PM pfSense Packages Bug #15662 (Not a Bug): Sudo package - errors when saving changed in HA setup: Jim Pingle
12:54 AM pfSense Packages Bug #15662: Sudo package - errors when saving changed in HA setup: This issue can be closed. There were quite a few configuration issues on the secondary node that would prevented any ... Mike Moore
12:02 PM Todo #15666 (New): Kea dhcp - enable run_script hook plugin: For those with DNS not on the pfsense system, it would be helpful to enable the `libdhcp_run_script.so` hook plugin, ... Rob Heat
07:11 AM Bug #15665 (New): Download Limit Issue: Dear Team,
When I am using a Limiter for bandwidth using the upload limit works perfectly and the Download Limit ... Farhan Nazim

08/04/2024

07:44 PM Bug #15663 (Not a Bug): KEA DHCP issue with unbound DNS resolution - possibly related to #15651: (First-time user reporting an issue here, so please bear over with me if I did something wrong).
I would've prefer... Martin J
12:48 PM pfSense Plus Bug #15535: Outgoing packets with Private source IP on WAN: There is only one host communicate to this remote IP:Port.
There is no 1:1 NAT
There is no static port configured.
... David G

08/03/2024

11:59 PM pfSense Packages Bug #15662 (Not a Bug): Sudo package - errors when saving changed in HA setup: pfsense community addition in a High Availability set up.
Installed SUDO package. When i make a change and click sa... Mike Moore
06:52 PM pfSense Packages Bug #15594 (Pull Request Review): ERROR when IP are with " " at the start or end of address: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/408 Christopher Cope
04:36 PM Regression #11819: MAC address OEM information missing from ARP table: Jim Pingle wrote in #note-10:
> It functions properly on 2.7.2 as well.
>
> The MAC OEM list is not a part of the... tasty ratz

08/02/2024

03:36 PM Bug #15130 (Confirmed): Kea will not start with identical MAC address filters on multiple interfaces: I tested and was able to reproduce the issue on the latest 24.08 DEVELOPMENT release.
Danilo Zrenjanin
03:32 PM pfSense Plus Bug #15535 (Incomplete): Outgoing packets with Private source IP on WAN: Marcos M
12:30 PM pfSense Plus Bug #15535: Outgoing packets with Private source IP on WAN: Like I mentioned a couple comments up, the way that happens is when something tries and fails to make a NAT state. Us... Jim Pingle
12:22 PM pfSense Plus Bug #15535 (New): Outgoing packets with Private source IP on WAN: This at least appears to be real. NAT is configured correctly and works as expected most of the time. Periodically a ... Steve Wheeler

08/01/2024

10:37 PM Bug #15130: Kea will not start with identical MAC address filters on multiple interfaces: Customer in ticket 2460340376 is affected by this and asking for an update on a resolution. Kris Phillips
05:47 PM Feature #15661 (Resolved): GUI options to change default SCTP state timeouts: Tested the patch against:... Danilo Zrenjanin
03:40 PM Feature #15661: GUI options to change default SCTP state timeouts: Applied in changeset commit:d68ab15cbb9f888c4ef644d8f107f62c9db2d343. Marcos M
03:34 PM Feature #15661 (Feedback): GUI options to change default SCTP state timeouts: This had only been implemented on the rules themselves initially, though the GUI options are populated somewhat dynam... Marcos M
10:30 AM Feature #15661 (Confirmed): GUI options to change default SCTP state timeouts: Danilo Zrenjanin
10:16 AM Feature #15661: GUI options to change default SCTP state timeouts: I can confirm the behavior on 24.03
If I save the new value it will not save and stand "grey" default value
befor... Lev Prokofev
10:10 AM Feature #15661 (Resolved): GUI options to change default SCTP state timeouts: The system doesn't save the changes regarding the SCTP (first, opening, established, closing, closed) made under *Sys... Danilo Zrenjanin
03:31 PM Revision d68ab15c: Allow changing system-default SCTP timeouts. Implement #15661: Marcos M
01:45 PM pfSense Plus Bug #15638: BE verification fails after logging in before the boot process finishes: triggered it once on 24.03 -> 24.08.a.20240607, can't reproduce now when updating to latest dev
tested on:
24.08-DE... Georgiy Tyutyunnik
09:33 AM Bug #15110: pfSense hangs when rebooting: #3049726503 installed the original drive from the spare device, but it still hangs.
!clipboard-202408011234-stqnb.... Lev Prokofev

07/31/2024

08:58 PM pfSense Docs Todo #15660 (Closed): Update Bandwidth usage section: https://docs.netgate.com/pfsense/en/latest/monitoring/graphs/bandwidth-usage.html#monitoring-on-multiple-interfaces
... Mike Moore
03:38 PM Revision 0e24b70b: Make sure array_init_path() always initializes the array: Marcos M
03:01 PM Feature #15659 (New): Kea option for ``reservations-out-of-pool`` and associated input validation (IPv4 and IPv6): We currently set @"reservations-in-subnet": true@ for all subnets but we do not explicitly set @reservations-out-of-p... Jim Pingle

07/30/2024

11:17 PM pfSense Docs Correction #15658 (New): IPv6 options explainer: For context: https://forum.netgate.com/topic/189410/ipv6-still-logging-despite-rule/2?_=1722379601543
Reason: Fire... Mike Moore
08:17 PM Revision d81fcdd9: Improve path handling in array_init_path(): Adapt the path handling from array_set_path() into array_init_path(). Marcos M
04:58 PM Bug #15657 (Pull Request Review): State table entries printed on ``diag_dump_states.php`` may contain an unexpected interface: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/406 Marcos M
03:50 PM Bug #15657: State table entries printed on ``diag_dump_states.php`` may contain an unexpected interface: The state info is retrieved by calling @pfSense_get_pf_states()@ which in turn populates state info by calling @pfSen... Marcos M
03:49 PM Bug #15657 (Resolved): State table entries printed on ``diag_dump_states.php`` may contain an unexpected interface: When @route-to@ sends traffic out of a different gateway from the default route, the state's interface is set accordi... Marcos M
07:37 AM pfSense Packages Feature #9833: ACME: add ability to use custom ACME server: +1 also Ross Tajvar

07/29/2024

09:45 PM pfSense Plus Bug #15638 (Feedback): BE verification fails after logging in before the boot process finishes: Fixed in commit:ac195834436a29d9dd54781cc4e50246caccdce9 Marcos M
05:55 PM Feature #15575 (Resolved): Kea High Availability Support (IPv4 and IPv6): Everything appears to be working properly on the latest builds. Including self-signed certs not being listed in the T... Jim Pingle
04:21 PM Bug #15552: NTP option "DNS Resolution" has no effect when using NTP pool hostnames: On 7/29 I've applied the diff. Since applying, the NTP log has stopped showing the "Soliciting Pool Server" requests... Travis McMurry
03:23 PM Revision 9cb40688: Fix PHP error in DDNS widget.: The widget was generating a PHP error when there were no Dynamic DNS
entries (traditional or RFC2136) Jim Pingle
02:57 PM Feature #15656 (Closed): Options to expose Kea REST API (IPv4 and IPv6): In ISC DHCP the GUI had (effectively) a global option to enable OMAPI support. Kea doesn't have that, but it has a RE... Jim Pingle
02:54 PM Feature #15655 (New): Kea pre-allocation address-in-use check (IPv4 and IPv6): Issue for tracking a function in Kea to check if an address is in use before proceeding with allocation. In ISC this ... Jim Pingle
02:51 PM Feature #15654 (Resolved): Kea Static ARP Support (IPv4 only): Issue for tracking Kea Static ARP Support (IPv4 only) -- There is no option in the DHCP GUI to enable/disable the mai... Jim Pingle
02:49 PM Feature #15653 (New): Kea Dynamic DNS Support (IPv4 and IPv6): Issue for tracking Kea Dynamic DNS Support (IPv4 and IPv6) -- note this is for handing off Dynamic DNS to a DNS serve... Jim Pingle
02:47 PM Feature #15652 (Resolved): Kea DHCPv6 Prefix Delegation Support (IPv6 Only): Issue for tracking Kea DHCPv6 Prefix Delegation Support (IPv6 Only)
Jim Pingle
02:46 PM Feature #15651 (Resolved): Kea DNS Resolver (Unbound) Integration (IPv4 and IPv6): Issue to track integration between Kea and the DNS Resolver (Unbound)
This is already in progress.
Somewhat rel... Jim Pingle
02:42 PM Feature #15650 (New): Kea Feature Integration for parity with ISC DHCP: Parent issue for tracking features not yet implemented in Kea. Not all of these may be possible or viable in Kea.
... Jim Pingle
02:39 PM pfSense Packages Bug #15649 (Resolved): pfBlockerNG can't operate ASN-based Aliases: ASN-based aliases in pfBlockerNG can't properly be populated or updated, resulting in empty file containing placehold... Georgiy Tyutyunnik
01:58 PM Regression #12581 (Resolved): Non Link-Local IPv6 CARP address does not get advertised to endpoints with RADVD: This is working properly on 24.08 snapshots w/Kea DHCP HA. Jim Pingle
12:57 PM Regression #15439 (Resolved): Incorrect icon on collapsed dashboard widgets: Looks good on the latest snapshot
!clipboard-202407290856-0pzka.png!
Jim Pingle
12:30 PM Bug #15643: Deleting one pre-installed package may delete other pre-installed packages: If you can't reproduce this, you may have already removed and reinstalled one of these packages in the past. Check an... Jim Pingle

07/28/2024

11:36 PM Feature #15647: Include ability to generate Configuration file and QR Code for wireguard configuration: Reference: https://redmine.pfsense.org/issues/15648 Sean M
11:31 PM Feature #15647 (New): Include ability to generate Configuration file and QR Code for wireguard configuration: The idea is to make Wireguard configuration and client provisioning easier, similar to how Unifi (or others) handle c... Sean M
11:31 PM Feature #15648 (New): Include ability to gen private/public key in UI for easier WireGuard client provisioning: - Add a button to "Generate Key Pair" when creating a wireguard Peer - this would execute two commands and display ... Sean M
05:38 AM Regression #15439: Incorrect icon on collapsed dashboard widgets: Can confirm patch fixes the issue on 24.08 devel.
dylan mendez
05:16 AM Bug #15643: Deleting one pre-installed package may delete other pre-installed packages: Cannot reproduce this either on 24.03 or 24.08 latest devel on the GUI. dylan mendez
12:34 AM Feature #15645: Improve sort orders within Interface Assignments: I agree the internal identifier / creation order is rarely optimal for most systems over time.
My preference is for ... Patch Public

07/27/2024

11:09 AM Bug #15625: IPv6 prefix rotation by ISP causes complete service disruption: Thank You for your answer. I don't think the mentioned issue #11570 is related this which just happened before filing... Jan-Jonas Sämann

07/26/2024

08:43 PM Bug #15625 (Feedback): IPv6 prefix rotation by ISP causes complete service disruption: I don't know if there's any code that still uses @pfSense_get_interface_addresses()@ - most if not all has been updat... Marcos M
08:41 PM Feature #12190 (New): Ability to use an IPv6 prefix in firewall rules: Marcos M
03:54 PM Feature #15646: Apply interface sorting preference to interface assignments: I can also confirm, *Custom Settings* are not being used by any user within this system. Guy van der Werf
03:45 PM Feature #15646 (New): Apply interface sorting preference to interface assignments: h3. Interface Assignments - interfaces_assign.php
With reference to the rejected Feature #15645, the reason descri... Guy van der Werf
12:48 PM Feature #15645 (Rejected): Improve sort orders within Interface Assignments: The order of the interfaces is significant (especially to HA setups), so hiding that order by sorting the list by def... Jim Pingle
11:16 AM Feature #15645 (Rejected): Improve sort orders within Interface Assignments: As a network administrator, I request an improvement to the UI to assist administration.
h3. 1. Interface Assignme... Guy van der Werf
10:30 AM Feature #855: Ability to selectively kill states on gateway recovery: Henniee Walterson wrote in #note-26:
> it might be useful to implement the recover state killing in the gateway sect... Asher Oto
10:06 AM pfSense Plus Bug #15639: Automatic boot verification shows negative timer: commit fixes the issue
tested on:
24.08-DEVELOPMENT (amd64)
built on Thu Jul 18 8:00:00 CEST 2024
FreeBSD 15.0-CU... Georgiy Tyutyunnik

07/25/2024

09:30 PM Revision 5fc24fbc: Set blockbogons and blockpriv as flags in setup wizard: These config items are treated as flags everywhere else. Marcos M
07:35 PM Bug #15643: Deleting one pre-installed package may delete other pre-installed packages: I cannot reproduce this.. How are you deleting them? CLI w/ pkg delete? Brad Davis
03:51 PM pfSense Packages Bug #14299: pfBlockerNG does not honor the cURL source interface setting for DNSBL lists: This has issue has been open for over a year and the original pull request is no longer valid so I've closed it, made... Charles Hamilton
01:01 AM pfSense Packages Bug #15644 (Resolved): Snort Status icon disappears: Services > Snort > Interfaces. The green circle with the checkmark changes to what's shown in the second image when m... Chris W

07/24/2024

04:36 PM Bug #15643 (Resolved): Deleting one pre-installed package may delete other pre-installed packages: If you delete one of the pre-installed packages (wireguard, ipsec-profile-wizard, aws-wizard) on a bare-bones pfSense... Georgiy Tyutyunnik
04:32 PM pfSense Packages Bug #15618 (Confirmed): HAproxy causes system panic: A similar/related issue is supposedly fixed with an haproxy update from upstream:
https://redmine.pfsense.org/issues/... Marcos M
02:50 PM pfSense Packages Bug #15618: HAproxy causes system panic: everyday crash and very unstable Amin Sadeghi
04:04 PM pfSense Docs Todo #15642 (New): Update OpenVPN CSC documentation: The OpenVPN CSC GUI has changed for 24.08. Changes (vpn_openvpn_csc.php, and a minor change in vpn_openvpn_server.php... Marcos M
03:30 PM Revision 9cbb25a5: Merge pull request #4692 from PhilZ-cwm6/openvpn_csc_patch_v1.7: Marcos M
03:26 PM pfSense Packages Feature #14324: pfBlockerNG to use geoLite "country" instead of "registered_country": Hello,
Any updates on this? I also have currently the problem that my IP is located in Austria while it is registe... Ben Lel
03:18 PM Bug #15633: Limiters applied to OpenVPN interface do not apply for download traffic: dylan mendez wrote in #note-1:
> Unable to replicate this on pfSense Plus 23.08 devel.
>
> Setup: OpenVPN Server wit... Phil Wardt
02:35 PM Regression #11819: MAC address OEM information missing from ARP table: It functions properly on 2.7.2 as well.
The MAC OEM list is not a part of the base system, it is included in the n... Jim Pingle
03:40 AM Regression #11819: MAC address OEM information missing from ARP table: Jim Pingle wrote in #note-8:
> tasty ratz wrote in #note-7:
> > Did this regress again or is this lost with kea?
>... tasty ratz
02:06 PM Feature #12522: More GUI options for OpenVPN Client-Specific Overrides: For testing, I added a new patch for current pfsense 2.7.2 release
Mainly a code cleanup, no fixes as of previous pa... Phil Wardt
01:55 PM Feature #15641 (New): Allow a route next-hop to a different address family than the route .: See also #15601
Against my better judgement this is a feature request instead of a bug report.
Since a route ne... Chris Linstruth
01:54 PM Revision 17bf534a: More revisions to OpenVPN CSC. Fix #12522: Fix push reset was not applied
Fix some flags were improperly set in config Phil Wardt
01:48 PM Bug #15635 (Resolved): Gateway monitoring includes disabled gateways: Christopher Cope
09:19 AM Bug #15635: Gateway monitoring includes disabled gateways: Confirmed patch fixes issue on
24.08-DEVELOPMENT (amd64)
built on Tue Jul 2 6:00:00 UTC 2024
FreeBSD 15.0-CURRENT
... Dale Harron
04:10 AM Bug #15640 (New): Kernel panic when PPPoE terminates with IPv6 enabled: *Description:*
When PPPoE terminates it will cause the system to kernel panic.
It looks like it will try @ip6_... Elon l

07/23/2024

10:34 PM pfSense Plus Bug #15639 (Feedback): Automatic boot verification shows negative timer: Fixed with commit:1045d0b011fe9c3f3ebf8a807bdd1fcde1862e85. Marcos M
10:33 PM pfSense Plus Bug #15639 (Resolved): Automatic boot verification shows negative timer: If a user logs into the GUI before automatic boot verification is finished, e.g. after an upgrade, a banner is showin... Marcos M
10:21 PM pfSense Plus Bug #15533: Boot verification script over matches: @$ME@ is the name of the script; it would have to be something like @pkill_quiet -0 -f "^/bin/sh /etc/${ME}\>"@. Marcos M
06:58 PM Bug #15635: Gateway monitoring includes disabled gateways: tested on:
24.08-DEVELOPMENT (amd64)
built on Tue Jul 2 6:00:00 UTC 2024
FreeBSD 15.0-CURRENT
patch fixes the i... Georgiy Tyutyunnik
05:16 PM pfSense Plus Bug #15638: BE verification fails after logging in before the boot process finishes: Enabling verbose output with @touch /verbose_rc@ shows the following:... Marcos M
04:44 PM pfSense Plus Bug #15638 (Resolved): BE verification fails after logging in before the boot process finishes: On the first boot of a BE snapshot (e.g. after an upgrade), logging in too quickly causes BE verification to fail. Lo... Marcos M
03:24 PM Bug #15637 (New): Kea DHCP service control inconsistencies: There is a quirk in managing the Kea DHCP and DHCPv6 daemons when using the service controls on *Status > Services* a... Jim Pingle
03:05 PM Feature #15636 (New): High Availability Status Changes: The "CARP" status page could use a few changes so it's better aligned with other sections of the GUI and to better re... Jim Pingle

07/22/2024

10:30 PM Regression #15439 (Feedback): Incorrect icon on collapsed dashboard widgets: Applied in changeset commit:6bc4f43497c6d6262f5ac0f386444222325fdf71. Marcos M
10:00 PM Regression #15439 (In Progress): Incorrect icon on collapsed dashboard widgets: Marcos M
10:02 PM Revision 6bc4f434: Don't modify widget config button when toggling collapse state. Fix #15439: Marcos M
09:45 PM pfSense Plus Feature #15632: Feature Request: IPv6 EUI-64 support: Hello Jim I have found a way to active EUI-64 with some help of the Netgate forum. With the non KEA use of course
... Jonathan Lee
12:32 PM pfSense Plus Feature #15632 (Rejected): Feature Request: IPv6 EUI-64 support: That's a bit ambiguous but also that isn't something a router/DHCP server does. That's a method for forming an IPv6 a... Jim Pingle
08:15 PM Regression #15634 (Closed): SSH Fails to Start on snapshots: Both me and presumably Kris, were testing this while testing MiM. A fresh install does not have this issue. I will wo... Christopher Cope
06:05 PM Bug #15635 (Feedback): Gateway monitoring includes disabled gateways: Applied in changeset commit:667ed3d9795563c65b9411dbe540cf919545eca5. Marcos M
04:56 PM Bug #15635 (In Progress): Gateway monitoring includes disabled gateways: Marcos M
02:58 PM Bug #15635: Gateway monitoring includes disabled gateways: Screenshots of setup and log 24.03 XG-7100 1U Dale Harron
02:45 PM Bug #15635 (Resolved): Gateway monitoring includes disabled gateways: When disabling a gateway either through the widget or System, Routing, the gateway is marked as disabled but the widg... Dale Harron
05:06 PM Revision 667ed3d9: Don't monitor disabled gateways. Fix #15635: The introduction of get_gateways() regressed the behavior of excluding
disabled gateways by default. Marcos M
03:23 PM Revision b3362da8: kea: restore per-interface enablement for DHCP services.: Christian McDonald
02:27 PM Revision fe46b3fa: kea: prevent footgun by warning of changes to enabled interfaces: Christian McDonald

07/21/2024

02:21 PM pfSense Packages Bug #14489: FRR needs delayed startup: Spike R.D. wrote:
> Hi,
>
> FRR is currently started before completing Wireguard tunnels initialization:
>
> [... Tjabo T.
12:21 PM Feature #12522: More GUI options for OpenVPN Client-Specific Overrides: Attached a new patch for pfsense 2.7.2 release
It implements the latest proposed changed on github commit
https://g... Phil Wardt
06:45 AM Bug #13996: Limiters using the fq_pie scheduler no longer pass any traffic.: I can reproduce the issue on pfSense CE 2.7.2 and pfSense+ 24.8-DEVELOPMENT (on VM and Hardware), and on FreeBSD 14 a... Thomas Kupper
02:28 AM pfSense Packages Regression #15064: Statis menu entry for APCUPSD leads to settings page, not status: Tested on 24.08 snapshots and this issue is still present. Kris Phillips
02:27 AM Regression #15439: Incorrect icon on collapsed dashboard widgets: Tested on
24.08-DEVELOPMENT (amd64)
built on Thu Jul 18 6:00:00 UTC 2024
FreeBSD 15.0-CURRENT
Still present o... Kris Phillips

07/20/2024

11:58 PM Regression #15634: SSH Fails to Start on snapshots: dylan mendez wrote in #note-1:
> Cannot replicate this on 24.08.a.20240702.0600.
>
> I can enable/disable the SSH... Christopher Cope
11:24 PM Regression #15634: SSH Fails to Start on snapshots: Cannot replicate this on 24.08.a.20240702.0600.
I can enable/disable the SSH service both from Status - Services a... dylan mendez
10:03 PM Regression #15634 (Closed): SSH Fails to Start on snapshots: Navigating to System --> Advanced --> Admin Access and attempting to enable the SSH Daemon results in a page refresh ... Kris Phillips
10:53 PM Bug #15633: Limiters applied to OpenVPN interface do not apply for download traffic: Unable to replicate this on pfSense Plus 23.08 devel.
Setup: OpenVPN Server with a firewall rule with Limiters In/... dylan mendez
07:09 PM Bug #15633 (Resolved): Limiters applied to OpenVPN interface do not apply for download traffic: There is an issue appeared after recent pfsense updates (which ?)
Limiters applied to shape traffic on OpenVPN (conf... Phil Wardt
05:58 PM pfSense Plus Feature #15632 (Rejected): Feature Request: IPv6 EUI-64 support: Hello fellow Redmine community members
I can’t seem to find a way to enable EUI-64 on pfSense plus.
Is there a ... Jonathan Lee
02:13 PM Bug #15178 (Feedback): ACB (autoconfig backup) restore always returns could not decrypt despite proper password: I couldn't reproduce this issue on:... Danilo Zrenjanin
08:29 AM Feature #12522: More GUI options for OpenVPN Client-Specific Overrides: Your last commit https://github.com/pfsense/pfsense/commit/012e36e6b87cf63743e644179a15e67f38d94f77
still has issues... Phil Wardt
02:17 AM Regression #15631 (New): OpenVPN - ECC with Secp256k elliptic curve not working: Hi, I am with a VPN providor that uses ECC with Secp256k elliptic curve encryption, this used to work fine, but a... Andrew McCann

07/19/2024

09:13 PM Revision 012e36e6: Additional revisions to OpenVPN CSC. Fix #12522: Fix the keep_minimal checkbox being unchecked on page load, and
move it below the remove_options list. Add more remov... Marcos M
09:12 PM Bug #15630 (Not a Bug): When parsing openvpn.inc file, boot process is halted if error: This isn't something we'd normally check for explicitly. There have been a various config changes that could affect t... Marcos M
08:02 PM Bug #15630 (Not a Bug): When parsing openvpn.inc file, boot process is halted if error: I was working on patching openvpn.inc file on a running system
On previous versions, an error in the source would no... Phil Wardt
07:28 PM Feature #12522: More GUI options for OpenVPN Client-Specific Overrides: Ok, there were issues with your current patch:
- the state of keep_minimal was not saved
- the push-remove options we... Phil Wardt
02:00 PM Feature #12522: More GUI options for OpenVPN Client-Specific Overrides: I am testing deepling and options do not work as intended
Please hold and I will give deeper feedback Phil Wardt
05:11 PM Revision b1024c96: Fix missing word: Jim Pingle
03:31 PM pfSense Plus Feature #12832: 6100 configurable Blinking Blue LED: Or this?? checks gateway..
@#!/bin/sh
echo 0 > /dev/led/blue_0
echo 0 > /dev/led/blue_1
echo 0 > /dev/led/blue_2
... Jonathan Lee
03:25 PM Revision 259fecc9: Fix UPnP priv metadata: Jim Pingle
03:25 PM Revision fa36708b: Correct UPnP page metadata: Jim Pingle
02:50 PM Revision 9ea35e06: Fixup some privdefs and run privilege script.: Jim Pingle

07/18/2024

08:36 PM pfSense Packages Todo #12717: Squid 5.x Branch: Squid is now recently updated to 6.6 as of 2024 and has many security enhancements. Jonathan Lee
08:34 PM pfSense Packages Documentation #14842: Update Squid troubleshooting: Squids http_port tproxy directive spoofs the IP addresses. This can be used in place of intercept to further increase... Jonathan Lee
06:13 PM Feature #12522: More GUI options for OpenVPN Client-Specific Overrides: I can propose the changes if you want Phil Wardt
08:24 AM Feature #12522: More GUI options for OpenVPN Client-Specific Overrides: Phil Wardt wrote in #note-23:
> The new commit looks fine to me except a few small points:
> 1- can you change the ... Phil Wardt
05:42 PM Regression #14026: HA node with CARP VIP in backup state is unable to ping the active node using that CARP VIP address: The fix seems to work for IPv4 but not IPv6. With IPv6 the secondary still can't ping the CARP VIP, both for GUA and ... Jim Pingle
05:22 PM Regression #14026 (Resolved): HA node with CARP VIP in backup state is unable to ping the active node using that CARP VIP address: The upcoming pfSense software release includes the upstream patch and the ping works as expected there. Marcos M
03:24 PM Regression #14026: HA node with CARP VIP in backup state is unable to ping the active node using that CARP VIP address: Marcos - similar to IPsec VTI and the strict policy, should we carve out an exception for this? Mike Moore
05:24 PM pfSense Plus Feature #15629 (New): DHCP status :Leases pagination/search: I'm considering a situation where dhcp would be handling lots of reservations, something in the vicinity of 300.000.
... net blues
04:04 PM pfSense Packages Feature #15628 (New): Feature request: Squid 6.6 TPROXY directive GUI option: Hello fellow redmine community members.
In the older release of squid in 5.8 we could enable tproxy by just chan... Jonathan Lee
03:52 PM pfSense Packages Bug #15410: cache_object://URL Scheme is removed in Squid-6: Researching with Squid Email support in Squid 6.6
On 2024-07-18 00:55, Jonathan Lee wrote:
curl http://localho... Jonathan Lee
03:41 PM pfSense Packages Feature #15626: Feature Request: Squid 6.6 Rock cache directory: While researching per Squid support emails.
On 2024-07-18 00:33, Jonathan Lee wrote:
What would be the correct ... Jonathan Lee
02:12 AM pfSense Packages Feature #15626 (New): Feature Request: Squid 6.6 Rock cache directory: Hello fellow Redmine members,
I researched and found a cache file system is missing from php GUI options.
This ... Jonathan Lee
03:11 PM pfSense Packages Feature #15627 (Rejected): Make the links open in a new tab: We've considered this in the past and ultimately decided not to go that route. If you force them to a new window you ... Jim Pingle
07:20 AM pfSense Packages Feature #15627 (Rejected): Make the links open in a new tab: Can the links to redmine and the various other assets be made to open in a new tab i.e.... Jon Brown
11:20 AM Bug #15361 (Resolved): Network and broadcast address input validation is incorrectly applied to IPv6 VIPs: Tested against:... Danilo Zrenjanin
08:48 AM pfSense Packages Todo #15281: Upgrade Tailscale to 1.6.0: R W wrote in #note-13:
> So I feel like the approach to manually including a tailscale release with each pfSense bui... Matt Keys
12:40 AM pfSense Packages Todo #15281: Upgrade Tailscale to 1.6.0: So I feel like the approach to manually including a tailscale release with each pfSense build isn't going to work to ... R W

07/17/2024

11:39 PM Regression #14026: HA node with CARP VIP in backup state is unable to ping the active node using that CARP VIP address: I have also experienced this bug in 2.7.2.
For reference, I found this bug report in FreeBSD, with a proposed patc... Steven Brown
11:29 PM Bug #15625 (Duplicate): IPv6 prefix rotation by ISP causes complete service disruption: Whats the issue?
If my ISP hands out a new GUA, the WAN interface only gets an additional new SLAAC or DHCPv6 inte... Jan-Jonas Sämann
06:35 PM Bug #15624 (Feedback): Skip Packages option for Configuration Backups fails with large configurations: Applied in changeset commit:0d2ada69f07a4cba5e99430d1d24c4ecc9abc713. Marcos M
03:00 PM Bug #15624 (Confirmed): Skip Packages option for Configuration Backups fails with large configurations: Still seeing this in 24.08.a.20240717.0600 and 24.03.
Testing with
file:///home/steve/Pictures/Screenshot%20fro... Steve Wheeler
08:42 AM Bug #15624: Skip Packages option for Configuration Backups fails with large configurations: Tested on 24.08.a.20240702.0600, and can not reproduce the issue. All works if I upload file less 1Mb. If I try uploa... aleksei prokofiev
06:26 PM Revision 0d2ada69: Handle large sections when skipping package config. Fix #15624: Using regex to remove the 'installedpackages' config section may fail
depending on the size of the string being parse... Marcos M
05:20 PM Bug #15561: wireguardd stop command exits with error: Tested on 24.03 (KVM) and on latest 24.08-DEVELOPMENT (built on Tue Jul 2 6:00:00 UTC 2024)
on both 24.03 and on 2... Azamat Khakimyanov
05:07 PM Feature #12522 (Feedback): More GUI options for OpenVPN Client-Specific Overrides: Marcos M
05:04 PM Feature #12522: More GUI options for OpenVPN Client-Specific Overrides: Thanks! We don't want to remove the ability to reset all options (including topology). The "keep minimal" option is t... Marcos M
02:47 PM Feature #12522 (In Progress): More GUI options for OpenVPN Client-Specific Overrides: Marcos M
02:14 PM Feature #12522: More GUI options for OpenVPN Client-Specific Overrides: Thank you for taking the lead with this as I did not have much time left
I checked the code and applied a patch for ... Phil Wardt
05:03 PM Revision 3ec78353: Push correct OpenVPN CSC options. Fix #12522: While there, include override/remove options for inactivity. Marcos M
04:33 PM Feature #15575: Kea High Availability Support (IPv4 and IPv6): I removed the bit I had noted there about RA, it's working OK if you pick a CARP VIP for the "RA Interface" in the RA... Jim Pingle
04:11 PM Feature #15575: Kea High Availability Support (IPv4 and IPv6): A couple more notes after using it more:
* The Enabled Interfaces list on the Kea settings tab is prone to error and... Jim Pingle

07/13/2024

09:08 PM pfSense Packages Todo #15281: Upgrade Tailscale to 1.6.0: Elvis Impersonator wrote in #note-11:
> I guess pfSense CE 2.7.2 and 2.8.0 are not important to Netgate. Thanks for... Christopher Cope
08:36 PM pfSense Packages Todo #15281: Upgrade Tailscale to 1.6.0: I guess pfSense CE 2.7.2 and 2.8.0 are not important to Netgate. Thanks for letting us know us know the future of CE... Elvis Impersonator
07:38 PM pfSense Packages Todo #15281 (Resolved): Upgrade Tailscale to 1.6.0: Yes, 1.68.1 is already available in the 24.08-DEVELOPMENT release. ... Danilo Zrenjanin
08:48 PM pfSense Packages Feature #15619 (New): Upgrade CE to Tailscale 1.68.2: Currently available Tailscale package has known security vulnerabilities.
https://tailscale.com/security-bulletins... Elvis Impersonator
08:09 PM Regression #11819: MAC address OEM information missing from ARP table: Jim Pingle wrote:
> The MAC OEM information usually displayed after MAC addresses is missing from the ARP table disp... tasty ratz
07:22 PM pfSense Plus Bug #15617: GRE tunnel state after parent interface down/up events: I couldn't replicate that behavior. I tried turning the parent interface from the GUI and disconnecting the cable. In... Danilo Zrenjanin
06:08 AM pfSense Plus Bug #15617: GRE tunnel state after parent interface down/up events: disabled interface is opt9 (gre0)
syslog specifically for the related events attached Georgiy Tyutyunnik
06:02 AM pfSense Plus Bug #15617 (New): GRE tunnel state after parent interface down/up events: disabled GRE tunnels initiate connect and get p2p connectivity when assigned interface is disabled, but parent interf... Georgiy Tyutyunnik
07:01 PM Bug #15211 (Closed): tcpdump run with BIOS hardware clock set, but no on environment system time: tcpdump is supposed to respect the system timezone when showing timestamps, but this was not happening in FreeBSD. It... Marcos M
05:18 PM Bug #15589: Saving an IPv6 gateway overrides the IPv4 gateway: The patch fixes it.
This ticket can be resolved. Danilo Zrenjanin
04:30 PM Bug #15589 (Feedback): Saving an IPv6 gateway overrides the IPv4 gateway: Applied in changeset commit:fd69a6b325c2ad40d0cd5c559000e0970099d9d6. Marcos M
04:18 PM Bug #15589 (In Progress): Saving an IPv6 gateway overrides the IPv4 gateway: Marcos M
04:17 PM Bug #15589 (Confirmed): Saving an IPv6 gateway overrides the IPv4 gateway: Marcos M
10:04 AM Bug #15589: Saving an IPv6 gateway overrides the IPv4 gateway: I still can reproduce it on:... Danilo Zrenjanin
04:36 PM Bug #15615 (Closed): Bump SSHD to >= 9.8: This has already been fixed in recent snapshots, and a patch is available in the System Patches package to work aroun... Marcos M
04:11 PM Revision fd69a6b3: Correctly save IPv6 gateway. Fix #15589: Marcos M
03:40 PM Bug #15361 (Feedback): Network and broadcast address input validation is incorrectly applied to IPv6 VIPs: Applied in changeset pfsense:commit:e48574e28f90b56fb08506c02da7d1e860e69b31. Marcos M
01:37 PM Bug #15361: Network and broadcast address input validation is incorrectly applied to IPv6 VIPs: I've tested and got the same results in the:... Danilo Zrenjanin
03:37 PM pfSense Packages Bug #15618 (Incomplete): HAproxy causes system panic: There's not enough information to investigate further. There should be a compressed file containing the backtrace alo... Marcos M
12:09 PM pfSense Packages Bug #15618 (Duplicate): HAproxy causes system panic: Crash report begins. Anonymous machine information:
amd64
15.0-CURRENT
FreeBSD 15.0-CURRENT #0 plus-RELENG_24_0... Amin Sadeghi
03:31 PM Revision e48574e2: Remove network/broadcast input validation for IPv6 VIPs. Fix #15361: Marcos M
01:44 PM pfSense Packages Bug #9204: ospfd: GRE tunnels became unnumbered since 2.4.4: It appears from the upstream discussion that this patch can cause other issues, so applying it is likely to break exi... Christopher Cope
12:51 PM pfSense Packages Bug #9204: ospfd: GRE tunnels became unnumbered since 2.4.4: Here we are 5 years later. Still not fixed.
But the code has been updated a bit. pfSense+ 24.03 still contains... Dave Rand
01:02 PM pfSense Plus Bug #15316 (Resolved): OpenVPN Clients with Gateway Group Interface on DHCP Exits on Error 1: After conducting thorough tests, I could not reproduce the issue on 24.03.
Additionally, even when the tier 1 gat... Danilo Zrenjanin
12:41 AM Feature #15575 (Feedback): Kea High Availability Support (IPv4 and IPv6): Merged: https://github.com/pfsense/pfsense/commit/a4cd7de16d18baaac7a900959f5a9c9ece547cb4 Christian McDonald

07/12/2024

11:37 PM Bug #15589: Saving an IPv6 gateway overrides the IPv4 gateway: Given that testing indicates this is resolved in the development snapshots, the issue is considered resolved unless i... Marcos M
11:24 PM Feature #12522 (Feedback): More GUI options for OpenVPN Client-Specific Overrides: The following new override options are now available in the GUI:
- Reset individual server options
- IPv4 Gateway
... Marcos M
11:09 PM Revision 2203dde0: Expose additional OpenVPN CSC options. Implement #12522: Adds the following override options:
- Reset individual server options
- IPv4 Gateway
- IPv6 Gateway
- Redirect IPv6 ... Marcos M
10:36 PM Revision a4cd7de1: kea: Introduce high availability support for both IPv4 and IPv6: Christian McDonald
03:33 PM pfSense Plus Bug #15616 (Not a Bug): GUI interface assignment input-check: This can happen just about anywhere in the GUI. It does not support concurrent modification. Marcos M
02:38 PM pfSense Plus Bug #15616 (Not a Bug): GUI interface assignment input-check: Under some circumstances it's possible to attempt an assignment of non-existing interface which will lead to a creati... Georgiy Tyutyunnik
01:59 PM Bug #8386: Virtual IPs not considered as part of interface net: Me again. So recently I bumped into this issue again. And apparently another user as well. So as IPv4 _is_ added as y... Stefan Kooman
01:57 PM pfSense Packages Bug #13043: OSPF over Wireguard interface doesn't populate neighbors after reboot: Hi,
i want to confirm the issue, too. I can reproduce the bug within both installations of my HA setup... Using Wi... Tjabo T.
12:01 PM pfSense Packages Feature #9044: Add SoftEther: Hi evryone,
If can be useful, I'm starting to add a SoftEther package for pfSense: https://github.com/STeXE89/Free... STeXE89 STeXE89
10:28 AM Bug #15615 (Closed): Bump SSHD to >= 9.8: The version of OpenSSH in 2.7.2 is:
OpenSSH_9.4, OpenSSL 3.0.12 24 Oct 2023
This is vulnerable to the recently di... Simon Giotta
08:14 AM pfSense Packages Bug #15614: Squid 6.6 Package should have NO_TLSv1 and NO_TLSv1_1 feature flags set on directive pls_outgoing_options: www/pfSense-pkg-squid/files/usr/local/pkg/squid.inc
Line 1233 needs feature flags added Jonathan Lee
08:13 AM pfSense Packages Bug #15614 (Duplicate): Squid 6.6 Package should have NO_TLSv1 and NO_TLSv1_1 feature flags set on directive pls_outgoing_options: $sslproxy_options = "NO_SSLv3, NO_TLSv1, NO_TLSv1_1";
This variable is also used with
tls_outgoing_options
... Jonathan Lee

07/11/2024

09:33 PM Revision 7d3d0166: Config access regression when toggling filter rules: Marcos M
01:24 PM pfSense Packages Feature #15541: CRON: option to enable/disable task: In the cron configuration file (/etc/crontab), the task would be commented with # when disabled, and when activated, ... Fabio Rafael Kochhann
06:53 AM pfSense Plus Bug #15316: OpenVPN Clients with Gateway Group Interface on DHCP Exits on Error 1: The problem is specific to the OpenVPN client setup. Azamat, can you confirm that you tested with it? Danilo Zrenjanin
01:55 AM pfSense Packages Bug #15274: HAProxy Configuration Changes Require pfSense Reboot to Take Effect: Also discussed here.
https://forum.netgate.com/topic/178348/haproxy-backend-port-changes-are-not-applied
workarou... Brendon Baumgartner

07/10/2024

08:48 PM Bug #15601: Routes with IPv6 Address as Next Hop for IPv4 Destination Causes Kernel Panic: Note that these IPs like to be one instruction off. The __rw_wunlock_hard is just prior and it operates on the child ... Mateusz Guzik
03:23 PM Bug #15601: Routes with IPv6 Address as Next Hop for IPv4 Destination Causes Kernel Panic: Jim Pingle wrote in #note-2:
> How exactly is someone making that sort of entry? It can't be made in the GUI via sta... Kris Phillips
06:16 PM pfSense Plus Bug #15262: Captive Portal Has High CPU Interrupts With Large Number of Users: Customer in ticket 2947838007 is reportedly running into this issue as well. Kris Phillips
05:46 PM pfSense Plus Bug #15611 (Closed): Latest 24.08-DEV update (24.08.a.20240710.0600) reorders interfaces: This is a known issue and will be resolved in later dev builds. Marcos M
08:58 AM pfSense Plus Bug #15611 (Closed): Latest 24.08-DEV update (24.08.a.20240710.0600) reorders interfaces: Tested twice on 24.08-DEVELOPMENT (built on Wed Jul 10 6:00:00 UTC 2024) on KVM and on 2100
After upgrade from pre... Azamat Khakimyanov
04:12 PM Bug #15612: Captive Portal with big number of passththrough MAC addresses is causing webgui gateway timeouts, Error 50x, and HA-sync XMLRPC Error: addition:
- even excluding captive portal from xmlrpc ha sync does not fix the problem.
- I can also export the ca... Thomas Hohm
04:07 PM Bug #15612: Captive Portal with big number of passththrough MAC addresses is causing webgui gateway timeouts, Error 50x, and HA-sync XMLRPC Error: Sorry, submitted by accident without details, here are the details to it:
The problematic behaviours:
1. Editin... Thomas Hohm
03:51 PM Bug #15612 (New): Captive Portal with big number of passththrough MAC addresses is causing webgui gateway timeouts, Error 50x, and HA-sync XMLRPC Error: Forum discussion:
https://forum.netgate.com/topic/188936/captive-portal-with-big-number-of-passththrough-ma... Thomas Hohm
12:00 PM Bug #15328 (Resolved): Changes in Kea DHCP interface pools may invalidate lease database content: Tested on 23.09.1 and on 24.08-DEVELOPMENT (built on Fri Jul 5 6:00:00 UTC 2024)
I was able to reproduce this issu... Azamat Khakimyanov
08:39 AM pfSense Packages Bug #15610 (New): OSPF with "Redistribute Default" enabled and "Always Redistribute" disabled does not react to WAN link down events: OSPF with "Redistribute Default" *enabled* and "Always Redistribute" *disabled* does not stop redistributing the defa... Patrick Clara
03:05 AM Bug #15589: Saving an IPv6 gateway overrides the IPv4 gateway: What does the feedback status indicate? R W

07/09/2024

11:22 PM Bug #15589 (Feedback): Saving an IPv6 gateway overrides the IPv4 gateway: Marcos M
09:20 PM Bug #15589: Saving an IPv6 gateway overrides the IPv4 gateway: Tested against pfSense Plus 24.08.a.20240702.0600. Added an IPv6 Static IP with IPv6 gateway on the primary WAN. It w... dylan mendez
07:54 PM Bug #15606 (Resolved): Data transfer problems when using interface-bound states with automatic floating states for IPsec rules: Marcos M
03:00 PM Bug #15606 (Feedback): Data transfer problems when using interface-bound states with automatic floating states for IPsec rules: Applied in changeset commit:3b3be7348bdf0f75d474a6aec938d8143e90c8bf. Marcos M
01:23 AM Bug #15606: Data transfer problems when using interface-bound states with automatic floating states for IPsec rules: Tested Marcos' patch successfully <thumbs up>... Craig Coonrad
12:26 AM Bug #15606 (Ready To Test): Data transfer problems when using interface-bound states with automatic floating states for IPsec rules: This seems to happen because of the bogus state that's created initially on the VTI, e.g.:... Marcos M
07:42 PM Revision 112a26f4: static routes: enable autotrim on `destination network`: Christian McDonald
05:41 PM Feature #15609 (Resolved): Allow filtering packet captures by system-defined protocols: The packet capture interface does not allow filtering by protocol 'gre' directly:... Steve Wheeler
05:34 PM pfSense Packages Bug #15313: Zabbix server 6.4.12 requires Zabbix proxies to be version 6.4.12: That's great to hear!
Will updated Zabbix packages be released for 24.03? Andrew Almond
07:17 AM pfSense Packages Bug #15313: Zabbix server 6.4.12 requires Zabbix proxies to be version 6.4.12: Checked on the last dev 24.08 and Zabbix use zabbix64-proxy-6.4.16 version
24.08-DEVELOPMENT (amd64)
built on Tue ... aleksei prokofiev
12:32 PM pfSense Packages Feature #14633: Cleanup states on dynamic routing changes: Tested on latest 24.08-DEVELOPMENT (built on Fri Jul 5 6:00:00 UTC 2024)
I deployed 2 pfSenses, created Routed IPs... Azamat Khakimyanov
12:16 PM pfSense Packages Bug #15385 (Resolved): PHP crash when exporting Apple profile, while IPsec P1 authentication method set to "Mutual Certificate": Jim Pingle
07:12 AM pfSense Packages Bug #15385: PHP crash when exporting Apple profile, while IPsec P1 authentication method set to "Mutual Certificate": Tested on ipsec-profile-wizard version 1.2.3 on
24.08-DEVELOPMENT (amd64)
built on Tue Jul 2 9:00:00 MSK 2024
Free... aleksei prokofiev
09:30 AM pfSense Packages Todo #15281: Upgrade Tailscale to 1.6.0: aleksei prokofiev wrote in #note-8:
> Checked on last dev build and tailscale-1.68.1 presented
> 24.08-DEVELOPMENT ... Elvis Impersonator
07:35 AM pfSense Packages Todo #15281: Upgrade Tailscale to 1.6.0: Checked on last dev build and tailscale-1.68.1 presented
24.08-DEVELOPMENT (amd64)
built on Tue Jul 2 9:00:00 MSK 2... aleksei prokofiev
07:47 AM pfSense Packages Regression #15159: XMLRPC Replication Target required even if not using it: I can confirm the same on the last dev build and pfBlockerNG 3.2.0_13
24.08.a.20240702.0600
24.08-DEVELOPMENT (amd... aleksei prokofiev
06:54 AM pfSense Packages Bug #14861: PHP error when pings are enabled but no ping hosts are defined: I can confirm that enabling ping monitor option without specify host IP caused crash. Disabling the option or specify... aleksei prokofiev
04:48 AM pfSense Plus Feature #15608 (New): Gateway failback timer: When using multi-wan failover, the timing from Tier2 to Tier1 (and vice versa) can be dizzying.
There should be a se... John Carson
12:25 AM Revision 3b3be734: Use floating states on IPsec VTI. Fix #15606: Marcos M

07/08/2024

05:31 PM pfSense Plus Bug #15595: ``pftop`` core dump with ICMP states: Potentially related to:
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=277093 Marcos M
03:02 PM Bug #15601 (In Progress): Routes with IPv6 Address as Next Hop for IPv4 Destination Causes Kernel Panic: Jim Pingle
02:53 PM Bug #15601: Routes with IPv6 Address as Next Hop for IPv4 Destination Causes Kernel Panic: I've proposed this upstream: https://reviews.freebsd.org/D45913 and copied the original author of the relevant code. Kristof Provost
02:46 PM Bug #15601: Routes with IPv6 Address as Next Hop for IPv4 Destination Causes Kernel Panic: Jim Pingle wrote in #note-2:
> How exactly is someone making that sort of entry? It can't be made in the GUI via sta... Kristof Provost
02:44 PM Bug #15601: Routes with IPv6 Address as Next Hop for IPv4 Destination Causes Kernel Panic: The relevant bits from the (private) crash dump is this:... Kristof Provost
12:31 PM Bug #15601 (Feedback): Routes with IPv6 Address as Next Hop for IPv4 Destination Causes Kernel Panic: How exactly is someone making that sort of entry? It can't be made in the GUI via static routes, input validation rej... Jim Pingle
12:48 PM pfSense Docs Correction #15607 (Closed): pfSense Plus for Amazon AWS -- linked page leads to 404: Fixed: https://gitlab.netgate.com/docs/pfsense-platforms/-/commit/585cb1b254445352841a1870ad27df96ac6f7589 Jim Pingle
12:40 PM pfSense Docs Todo #15603 (Rejected): Update "Download Installation Media" for Netgate Installer: I'm already working on this, no need for another issue, plus it's a duplicate of 15587.
Jim Pingle
12:37 PM Bug #15602 (Rejected): Dashboard interface widget does not use consistent capitalization or formatting for BASE-T designations: The widget merely passes through the values displayed by the operating system, it does not format things on its own.
... Jim Pingle
12:31 PM pfSense Packages Feature #14321 (Closed): Add UPS information to LCDproc screen: Jim Pingle
08:29 AM pfSense Plus Bug #15316: OpenVPN Clients with Gateway Group Interface on DHCP Exits on Error 1: I tested on 23.05, 23.09.1 and 24.03 and I wasn't able to reproduce this issue.
With Failover group as an Interfac... Azamat Khakimyanov

07/07/2024

08:40 PM pfSense Docs Correction #15607 (Closed): pfSense Plus for Amazon AWS -- linked page leads to 404: doc: https://docs.netgate.com/pfsense/en/latest/solutions/aws-vpn-appliance/index.html
> This AMI can be run in ... Craig Coonrad
08:23 PM pfSense Plus Bug #15595: ``pftop`` core dump with ICMP states: I wasn't able to trigger this by logging in. One thing I did notice is I've only seen this on amd64, nothing from my ... Craig Coonrad
08:14 PM Bug #15606 (Resolved): Data transfer problems when using interface-bound states with automatic floating states for IPsec rules: Version: 24.03-RELEASE (amd64)
Platform: PVE/KVM
Test environment:... Craig Coonrad
05:36 PM pfSense Packages Feature #12711: Add InfluxDB V2 support: Hi Marcos M
> Please open a new redmine (or follow up on the forum) with reproducible steps.
If I configure Tel... Marc Walter
03:44 PM Bug #15605: Status > Monitoring VTI graphs show incorrect traffic: Note that the Status > Traffic graphs appear to be correct. Chris Linstruth
03:40 PM Bug #15605 (New): Status > Monitoring VTI graphs show incorrect traffic: While testing #15604 I noticed that the Status > Monitoring graphs do not correctly display VTI traffic.
These are... Chris Linstruth
03:07 PM Bug #15604: Equal cost multipath over IPsec VTI outbound routing only utilizing one path: Attaching state screenshot. Chris Linstruth
02:53 PM Bug #15604 (New): Equal cost multipath over IPsec VTI outbound routing only utilizing one path: A pair of ECMP tunnels was created between a tnsr node and a pfSense node.
BGP peering was established over both p... Chris Linstruth

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

08/05/2024

08/04/2024

08/03/2024

08/02/2024

08/01/2024

07/31/2024

07/30/2024

07/29/2024

07/28/2024

07/27/2024

07/26/2024

07/25/2024

07/24/2024

07/23/2024

07/22/2024

07/21/2024

07/20/2024

07/19/2024

07/18/2024

07/17/2024

07/16/2024

07/15/2024

07/14/2024

07/13/2024

07/12/2024

07/11/2024

07/10/2024

07/09/2024

07/08/2024

07/07/2024