Activity

30 days up to

User

Subprojects

Activity

From 05/28/2025 to 06/26/2025

06/19/2025

10:33 PM pfSense Packages Bug #16277 (Pull Request Review): Enabling IPv6 support in DNSBL doesn't allow pfb_dnsbl to start: Following up from https://www.reddit.com/r/pfBlockerNG/comments/1jb5rtc/ipv6_woes_wrong_vip/
I created a PR to fix... Wallace Panter
08:31 PM Bug #16276 (Resolved): The ng_etf(4) module is missing from CE base: Latest devel build of CE now has ng_etf in kernel. Christian McDonald
01:57 PM Bug #16276: The ng_etf(4) module is missing from CE base: Fixed in https://gitlab.netgate.com/pfSense/FreeBSD-src/-/commit/f8763f3c8dcac6244a83309d53c5bc321c89ed68 Christian McDonald
01:56 PM Bug #16276 (Feedback): The ng_etf(4) module is missing from CE base: Christian McDonald

06/18/2025

11:18 PM Bug #15037: NTPD: Serial GPS with PPS error opening /dev/gpspps0: Elvis Impersonator wrote:
> Receive the following error message in the NTP log when using a serial GPS with PPS outp... Christian Borchert
11:12 PM Bug #16272: Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP: Followed the steps :
the error says:
"This entry cannot be deleted because it is still referenced by a CARP IP wi... Alhusein Zawi
08:53 PM Bug #16276 (Resolved): The ng_etf(4) module is missing from CE base: Christian McDonald
07:48 PM pfSense Plus Bug #16275 (New): Removing Limiters can leave unconnected queues behind: As noted in https://forum.netgate.com/topic/197882/25-03-b-20250610-1659-re-enabling-limiters-leads-to-syslog-kerne... Patrik Stahlman
08:14 AM pfSense Packages Todo #16190: Update mDNS-Bridge to 2.0: Please also include this independent PR which fixes a spelling error:
https://github.com/pfsense/FreeBSD-ports/pul... Denny Page
04:44 AM Feature #12190: Ability to use an IPv6 prefix in firewall rules: Same for xfinity/Comcast in US with /60 prefix.
The @::@ notation does not work in an alias and there is no way to t... Dean Arnold

06/14/2025

10:08 PM Bug #16248: QLink/Marvell 41000 NIC bug: We may have hit this while working on the other qlnxe bug.
If you run:... Steve Wheeler
09:50 PM Bug #16248: QLink/Marvell 41000 NIC bug: Adam Esslinger wrote in #note-2:
> it appears to be a bug with the dashboard. Once the login screen times out and I... Adam Esslinger
12:49 PM pfSense Packages Bug #14489: FRR needs delayed startup: I can confirm I had this issue on CE 2.7.2, and I still have the issue on CE 2.8.0.
The patch above worked for CE 2.... Max Pal
10:48 AM pfSense Packages Feature #11837: Increase field length of FRR Networks in Access Lists and Prefix Lists: there is actually a pretty simple solution i have found googling "pfsense frr input size" - it's a snippet of javascr... The Coder Admin
08:09 AM Regression #16271 (New): DHCP Lease list fails to show the interface if 2 interfaces with similar subnet are presented in the config.: Config:
IX0 - 10.149.49.1/24 enabled... Lev Prokofev
04:10 AM Bug #16270 (Not a Bug): Clarify ECMP Flow Hashing Behavior and net.route.hash_outbound Sysctl Status in pfSense CE 2.8 / FreeBSD 15: In pfSense CE 2.8.0 (FreeBSD 15), ECMP (Equal-Cost Multi-Path Routing) support is advertised as active, and per Redmi... Anvar Kuchkartaev
02:41 AM pfSense Packages Bug #16262 (Rejected): Squid "Undefined symbol "_ZTVNSt3__117bad_function_callE" after upgrade to 2.8: dylan mendez
02:38 AM pfSense Packages Bug #16262: Squid "Undefined symbol "_ZTVNSt3__117bad_function_callE" after upgrade to 2.8: Please note Squid is deprecated from pfSense.
https://www.netgate.com/blog/deprecation-of-squid-add-on-package-for-p... dylan mendez
01:18 AM Feature #16269 (Rejected): Separate file system (and pool) to isolate the logs, to not compromise the operating system !: Dear pfSense Dev Team!
Because from 2.8.0 and higher versions of pfSense installer was changed, what is the reason... Sergei Shablovsky

06/13/2025

10:34 PM pfSense Packages Todo #16231 (Resolved): Update packages to use the XMLRPC plugins for HA: Marcos M
10:28 PM pfSense Packages Regression #14189 (Closed): pfBlocker-NG: HA-Sync is not working: The original report stating "now the firewall rules are synchronized, but not the tables generated by pfBlockerNG" is... Marcos M
10:16 PM pfSense Packages Regression #15159 (Feedback): XMLRPC Replication Target required even if not using it: Fixed with "f5c335f9538f190f27557b854f17958519080938":https://github.com/pfsense/FreeBSD-ports/commit/f5c335f9538f190... Marcos M
10:14 PM pfSense Packages Bug #14409 (Feedback): pfBlockerNG Cron Redundantly Updates pfSense Configuration When DNSBL is Disabled Due to Faulty Virtual IP Count: Fixed with "6e558c8679c7cb9048a8c29101cb3158330d6dde":https://github.com/pfsense/FreeBSD-ports/commit/6e558c8679c7cb9... Marcos M
10:11 PM pfSense Packages Bug #16254 (Resolved): sudo package may write bogus users and groups to the configuration: Fixed with 9b28db733a4daa98b616e2035077937b598d6a2a. Marcos M
10:10 PM pfSense Packages Bug #16267 (Resolved): Zeek package ``configurationfile`` string is not valid: Fixed with 80103b4483e40f1a9855c97262cfb272358e29d9. Marcos M
09:38 PM pfSense Packages Bug #16267 (Resolved): Zeek package ``configurationfile`` string is not valid: The info.xml file for zeek begins with a forward-slash which is not valid since this is used for plugin functions. Marcos M
10:10 PM pfSense Packages Bug #16268 (Resolved): Snort package ``configurationfile`` string is not valid: Fixed with c5e1630f9cdf9c071a3eef096dddd18798751b3d. Marcos M
09:38 PM pfSense Packages Bug #16268 (Resolved): Snort package ``configurationfile`` string is not valid: The info.xml file for Snort begins with a forward-slash which is not valid since this is used for plugin functions. Marcos M
09:41 PM Todo #16212 (Resolved): Allow custom ZFS pool names: issue is fixed
tested on
25.11-DEVELOPMENT (amd64)
built on Fri Jun 13 4:55:00 UTC 2025
FreeBSD 15.0-CURRENT Georgiy Tyutyunnik
08:15 PM Bug #16265 (Pull Request Review): PPPoE IPv6 gateways are unavailable without Router Advertisements when using if_pppoe: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1229 Marcos M
03:07 PM Bug #16265 (Feedback): PPPoE IPv6 gateways are unavailable without Router Advertisements when using if_pppoe: Gateway monitoring is broken with if_pppoe when upstream does not send Router Advertisements. This is not an issue wi... Marcos M
07:23 PM pfSense Packages Bug #16211 (Confirmed): Python errors in Cellular: Sayed Mohammad Badiezadegan
05:50 PM Bug #16266 (Pull Request Review): Thermal Sensors Widget Thresholds not Evaluated: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1231 Steve Wheeler
05:25 PM Bug #16266 (Pull Request Review): Thermal Sensors Widget Thresholds not Evaluated: The thermal sensors dashboard widget has user configurable temperature thresholds for each sensor type. However the '... Steve Wheeler
11:55 AM Feature #16110 (Resolved): Automatically check ``Allow IP options`` when IGMP is selected: Georgiy Tyutyunnik
11:53 AM pfSense Plus Bug #16176 (Resolved): Config restored during install can be overwitten by hardware specific default values: fixed in the latest installer build 20250613 Georgiy Tyutyunnik
09:53 AM pfSense Plus Bug #16264: In some circumstances, ethernet rules generated by the Captive portal block the ARP: Danilo Zrenjanin wrote in #note-1:
> In ticket 24032478035, disabling XML-RPC for Captive Portal helped stop the iss... Christopher Causer
08:26 AM pfSense Plus Bug #16264: In some circumstances, ethernet rules generated by the Captive portal block the ARP: In ticket 24032478035, disabling XML-RPC for Captive Portal helped stop the issue from occurring. The symptoms were v... Danilo Zrenjanin
08:21 AM pfSense Plus Bug #16264 (New): In some circumstances, ethernet rules generated by the Captive portal block the ARP: The setup is on an HA pair, Captive portal configured on LAN interface (ix0)... Lev Prokofev
12:09 AM pfSense Packages Bug #16262 (Rejected): Squid "Undefined symbol "_ZTVNSt3__117bad_function_callE" after upgrade to 2.8: See https://forum.netgate.com/topic/197620/squid-undefined-symbol-_ztvnst3__117bad_function_calle-after-upgrade-to-2-... ageekhere ageekhere

06/12/2025

08:19 PM pfSense Plus Bug #16101 (Waiting on Merge): Kernel Panic with if_qlnxe driver loaded via kldload: https://reviews.freebsd.org/D50819 Steve Wheeler
05:19 PM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services: The same thing occurs with gandi: Could not resolve host: api.gandi.net
edit: I was too quick, I see the patch inclu... Claude Robitaille
02:54 PM pfSense Packages Regression #16261 (New): RADIUS connection to upstream LDAP server cannot be setup over TLS: After upgrading from 2.7.x to 2.8.0, radiusd did not start with these errors:... Didier Raboud
02:10 PM Bug #16259: DynDNS is unable to get the IPv6 address from the WASN Interface: Can confirm this issue appeared for me upon update to 2.8.0. Worked fine under 2.7.2.
In my setup, WAN is pppoe0.
/s... Michael Smith
01:23 PM Bug #16259: DynDNS is unable to get the IPv6 address from the WASN Interface: This is the WAN interface and it is up and running, including accessing the gateway. Internet over IPv6 works perfect... Claude Robitaille
02:01 PM Feature #16215 (Resolved): Allow matching on IP Options with firewall match rules: Georgiy Tyutyunnik
07:12 AM Bug #16260 (New): Chinese (taiwan) / HK Translation using incorrect identifier on CE 2.8: Hi ,
It's me again.
I report Chinese (taiwan) / HK Translation using incorrect identifier on 2.4.5
[[https://r... Roll Stone

06/11/2025

07:35 PM Bug #16259 (Not a Bug): DynDNS is unable to get the IPv6 address from the WASN Interface: If a gateway is associated with the interface and that gateway is unavailable (e.g. offline) then DDNS won't work. Marcos M
07:18 PM Bug #16259 (Not a Bug): DynDNS is unable to get the IPv6 address from the WASN Interface: DynDNS seems unable to retrieve the IPv6 address in order to update the DNS server.
Jun 11 15:07:37 main php-fpm[9... Claude Robitaille
04:42 PM Feature #11901 (In Progress): Add MAP-T/MAP-E support to pfSense: Christian McDonald
03:12 PM Bug #16257: rrd throughput database is limited to 20gbps: https://github.com/pfsense/pfsense/pull/4736 Steven Torres
03:11 PM Bug #16257 (New): rrd throughput database is limited to 20gbps: suggest bumping to 200gbps Steven Torres
10:36 AM Bug #16256: KEA-DHCPD Crash when applying DHCP settings: Reinstalled clean + Restore without packages.
Moved backend to KEA-DHCP and getting the following error when applyin... M T
08:34 AM Bug #16256 (New): KEA-DHCPD Crash when applying DHCP settings: PfSense 2.8.0 fresh install + restore backup from 2.6.
Moved from ISC-DHCP to KEA-DHCP backend
When saving DHCP s... M T
06:44 AM Todo #16255 (New): Branch RELENG_2_8_0 missing from pfSense repositories: Hello,
the RELENG_2_8_0 branch is missing from pfsense from pfsense repositories. I see that it is missing in the ... Björn Jakobsen

06/10/2025

07:43 PM pfSense Packages Bug #16254 (Resolved): sudo package may write bogus users and groups to the configuration: The sudo package adds extra users and groups to the running config which can potentially be written to config.xml. Th... Marcos M
02:44 PM Bug #16235 (Resolved): Using IPv4 VIPs on PPPoE interfaces with if_pppoe causes looping: Marcos M
02:42 PM Feature #16228 (Needs Patch): Support multiple NAT64 prefixes via DNS64/PREF64: It sounds like this would need to be implemented upstream in Unbound. The DNS64 module doesn't currently support doin... Marcos M
02:41 PM pfSense Docs Todo #16252 (Rejected): Feedback on Releases — add a (prominently displayed) date: We prefer to avoid maintaining the same information in multiple places as it makes it more likely that updates get ov... Jim Pingle
02:22 PM pfSense Docs Todo #16252 (Rejected): Feedback on Releases — add a (prominently displayed) date: *Page:* https://docs.netgate.com/pfsense/en/latest/releases/2-8-0.html
*Feedback:* Would be nice to always include... Dirk-Willem van Gulik
02:20 PM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services: This should be fixed with https://redmine.pfsense.org/issues/16251 Marcos M
04:17 AM Regression #16249 (Feedback): Dynamic DNS fails to update AAAA record for Route53 and No-IP services: Marcos M
08:50 AM pfSense Plus Bug #16203: Floating Firewall Rules for ICMP Inconsistently Choose Gateways and May Ignore Routing: Tested on latest 25.07-DEV (built on Wed Nov 27 18:22:00 UTC 2024)
I don't see this issue on 25.07-DEV: with Float... Azamat Khakimyanov
04:20 AM Todo #16251 (Feedback): Update list of DDNS services that are only reachable over IPv4 for AAAA updates: Applied in changeset commit:f3e00ef6724a08abe0f1f6f82c71aee69c695f39. Marcos M
04:06 AM Todo #16251 (Feedback): Update list of DDNS services that are only reachable over IPv4 for AAAA updates: There are several DDNS services whose API URL cannot be reached over IPv6 when updating AAAA records. All service API... Marcos M
12:35 AM Bug #16250 (Feedback): Firewall rules with an interface address for the NAT64 source always use the interface itself: Applied in changeset commit:b947a5b8ec0662714933fb67c28077e92da56e3f. Marcos M
12:27 AM Bug #16250 (Feedback): Firewall rules with an interface address for the NAT64 source always use the interface itself: NAT64 rules with the NAT64 source set to <interface> address always reference the interface of that address. For exam... Marcos M

06/09/2025

10:24 PM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services: I was able to create a proof-of-concept patch that resolves the issue for @route53-v6@. The patch also attempts to ad... Michael Murphy
07:13 PM Regression #16249 (Feedback): Dynamic DNS fails to update AAAA record for Route53 and No-IP services: In pfSense 2.8.0, the Dynamic DNS client fails to update AAAA records when using certain Dynamic DNS providers. This ... Michael Murphy
06:24 PM Bug #16248: QLink/Marvell 41000 NIC bug: it appears to be a bug with the dashboard. Once the login screen times out and I get that crash dump that I pasted ... Adam Esslinger
05:26 PM Bug #16248: QLink/Marvell 41000 NIC bug: Do you see a kernel panic? Any sort of error log?
See: https://redmine.pfsense.org/issues/16101 Steve Wheeler
05:12 PM Bug #16248 (New): QLink/Marvell 41000 NIC bug: I'm using pfSense 2.8.0 and I have a QL41164 NIC. Driver isn't enabled by default, after adding if_qlnxe_load="YES" ... Adam Esslinger
04:44 PM pfSense Plus Bug #16203: Floating Firewall Rules for ICMP Inconsistently Choose Gateways and May Ignore Routing: Tested on 24.11
What I found that with Floating rules for ICMP with the interface set to "Any" if to run endless p... Azamat Khakimyanov
03:26 PM Bug #16247 (New): Crash kernel (page fault in rts_input) - pfSense CE 2.8.0 (FreeBSD 15-CURRENT): **System**: pfSense CE 2.8.0 snapshot
**Kernel**: FreeBSD 15.0-CURRENT (RELENG_2_8_0-n256081)
**Arch**: amd64 ... Didier Cugy
12:43 AM Bug #16246 (New): `cxgbev` driver is missing in pfSense, but present in FreeBSD: Originally posted on the forum: https://forum.netgate.com/post/1217287
I just loaded FreeBSD 15.0-CURRENT and it d... Nazar Mokrynskyi

06/08/2025

07:37 PM pfSense Docs New Content #16245 (New): Add VIP and Firewall Rules References to 1:1 NAT Configuration Example: It's not currently clear in the docs that you need to create a VIP before the 1:1 NAT as well as Firewall Rules for 1... dylan mendez
05:03 PM Bug #16216: [BUG?] New PPPoE module (if_pppoe) causes high "Errors Out" on WAN (Vivo Fibra): Hi - yes I am seeing the same issue with the new if_pppoe code with my BT FTTP PPPoE connection - details here:
http... Simon Heather
09:14 AM Feature #12190: Ability to use an IPv6 prefix in firewall rules: This would help massively since for instance in Germany most isps only hand out dynamic prefixes to their customers. Johannes Rohde
01:05 AM pfSense Packages Bug #16206: Package apcupsd starts even when disabled: seeing this also on pfSense+ 25.03.b.20250515.1415/apcupsd 0.3.92_9, after unchecking and saving the daemon service o... Jordan G
12:51 AM pfSense Packages Bug #16225 (Confirmed): Telegraf service does not restart after change of settings: Bryan Allen

06/07/2025

11:30 PM Bug #16244: Gateway adress not trimed: ... Grischa Zengel
11:27 PM Bug #16244 (New): Gateway adress not trimed: After upgrading from 2.7.2 to 2.8.0 I got RPCXML errors.
On second pfsense I got:
/xmlrpc.php: The command '/usr/lo... Grischa Zengel
08:33 PM pfSense Plus Bug #16238 (Confirmed): Clearing a P1's Life Time field does not restore default value: I can confirm this on... Christopher Cope
08:14 PM pfSense Packages Bug #16233 (Confirmed): Authentication for LDAP Available without Authorization: I can confirm this behavior on... Christopher Cope
05:09 PM pfSense Packages Bug #16225: Telegraf service does not restart after change of settings: Verified this is happening on 25.07-DEVELOPMENT (amd64)
built on Fri Jun 6 1:00:00 CDT 2025
FreeBSD 15.0-CURRENT
... Bryan Allen
04:04 PM Regression #16243 (Confirmed): PPPoE MSSFix uses incorrect values for 6RD: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1226 Steve Wheeler
03:04 PM Regression #16243 (Confirmed): PPPoE MSSFix uses incorrect values for 6RD: When using PPPoE with TCP MSS Fix enabled (the default) the value selected for IPv6 traffic is based on the MTU of th... Steve Wheeler
02:46 AM pfSense Plus Bug #16219 (New): pfSense IPsec VTI Mode Incompatible with Juniper Traffic Selector Requirements: Henry Zhou wrote in #note-2:
> Thanks for taking care of the ticket.
>
> Let me clarify. I don't intend to use tr... Kris Phillips
02:44 AM pfSense Plus Bug #16226 (Confirmed): ZFS Error Messages Missing from Widget: The widget is just replicating what is in the columns, which your output still shows 0s.
We should add a section t... Kris Phillips

06/06/2025

10:19 PM Bug #16242 (New): When IPv6 Is Disabled the Firewall Still Queries IPv6 Localhost for DNS: When the "Allow IPv6" checkbox is disabled under System --> Advanced --> Networking, the firewall will continue to tr... Kris Phillips
08:50 PM Bug #16241 (New): NAT64 Doesn't drop RFC1918: In the current version (2.8.0) of pfsense is it possible to contact rfc1918 addresses using nat64, for example ping '... Raoul De Heer
08:09 PM pfSense Packages Bug #13898 (Resolved): Issues saving pfBlocker Sync Targets: Marcos M
08:00 PM pfSense Packages Bug #15530 (Rejected): pfBlockerNG Sync Tab helptext: Synchronizing from a secondary node to a primary node results in a loop. This is generally true and not necessarily s... Marcos M
04:59 PM Regression #16237 (Confirmed): Drivers that load firmware can cause a kernel panic.: It's this bug in the upstream firmware API: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=283285 Steve Wheeler
03:54 PM Regression #16237: Drivers that load firmware can cause a kernel panic.: ... Steve Wheeler
03:50 PM Bug #16235 (Feedback): Using IPv4 VIPs on PPPoE interfaces with if_pppoe causes looping: Applied in changeset commit:62b1bc8b4b2606d3b20a48a853ef373ff1d71e26. Marcos M
03:03 PM Bug #16240 (New): the problem with the driver for the intel i810 pfsense 2.7.2: Hi,We've got a problem - with the driver for the intel i810 network card is that the VLAN ID crashes after reconfigur... Ivan Belov
02:55 PM Bug #16239 (New): after updating the server to pfsense 2.8.0 from pfsense 2.7.2, the server freezes tightly on boot: Good afternoon, we use a ThinkSystem SR630 V3 server, it has a QLogic QLE2772 32Gb 2-Port PCIe Fibre Channel Adapte... Ivan Belov

06/05/2025

11:57 PM pfSense Plus Bug #16238 (Confirmed): Clearing a P1's Life Time field does not restore default value: VPN > Ipsec: Add P1.
Create a new P1. The default Life Time is 28800, and the Rekey & Rand times are created based... Chris W
10:36 PM Regression #16237: Drivers that load firmware can cause a kernel panic.: If you are hitting this issue note the affected device if it's not listed above.
To work around it you can:
* Remove... Steve Wheeler
10:30 PM Regression #16237 (Confirmed): Drivers that load firmware can cause a kernel panic.: In recent FreeBSD 15 builds drivers have been moving firmware out of the code to load it when it attaches. This affec... Steve Wheeler
09:32 PM pfSense Packages Bug #16185 (Closed): FreeRADIUS HA sync changes may be overwritten by the system config XMLRPC sync: This will be fixed once https://redmine.pfsense.org/issues/16231 is implemented. Marcos M
09:27 PM Bug #16235 (Pull Request Review): Using IPv4 VIPs on PPPoE interfaces with if_pppoe causes looping: Marcos M
09:26 PM Bug #16235: Using IPv4 VIPs on PPPoE interfaces with if_pppoe causes looping: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1225 Marcos M
08:58 PM Bug #16235 (Resolved): Using IPv4 VIPs on PPPoE interfaces with if_pppoe causes looping: Originally reported on the forum:
https://forum.netgate.com/topic/197369
IPv4 VIPs are added by rc.newwanip via l... Marcos M
09:04 PM Bug #16236 (New): IPV6 Neighbor Solicitation on WAN interface used as part of Neighbor Unreachability Detection, causes the interface to stop forwarding traffic briefly: It appears that the 2.8.0 by default has setting of the NDP on the NICS enabled with a period of 30 secs. I have obse... Raj Vadi
08:15 PM Feature #16234 (Not a Bug): Feature Request: Support for tls-cert-bundle in pfSense WebGUI: You likely need to add @server:@ to the start of your custom options, as is mentioned in the documentation:
https:... Jim Pingle
08:03 PM Feature #16234 (Not a Bug): Feature Request: Support for tls-cert-bundle in pfSense WebGUI: Dear pfSense Support Team,

I am a pfSense user and have successfully configured DNS over TLS (DoT) using Unboun... Robert S
07:02 PM pfSense Packages Regression #14189: pfBlocker-NG: HA-Sync is not working: Since the backup router (for instance) runs its cron job and re-adds a list that was removed on the primary, without ... Steve Y
06:42 PM pfSense Packages Bug #16233 (Confirmed): Authentication for LDAP Available without Authorization: The options for defining an LDAP server requires Authorization to be checked, even if Authentication is not checked, ... Kris Phillips
05:15 PM Bug #16232 (New): Swap fails to activate on updated pfSense 2.8.0 when multiple swap partitions exist: I have an older pfSense install that I upgraded multiple times. It uses a 2 disk ZFS mirror for the normal data and a... Grimson Gretzleburg
04:25 PM pfSense Packages Todo #16231 (Resolved): Update packages to use the XMLRPC plugins for HA: A few new XMLRPC plugins have been introduced which address the race condition and improve maintainability - "see her... Marcos M
02:34 PM pfSense Packages Bug #14409: pfBlockerNG Cron Redundantly Updates pfSense Configuration When DNSBL is Disabled Due to Faulty Virtual IP Count: Noting this is still an issue, and also given the bug in Plus 24.03/24.11 where pfSense doesn't prune the configurati... Steve Y

06/04/2025

07:18 PM pfSense Packages Bug #16229 (Confirmed): Snort cannot run on if_pppoe interfaces: Sayed Mohammad Badiezadegan
06:31 PM pfSense Packages Bug #16229 (Confirmed): Snort cannot run on if_pppoe interfaces: Snort will fail to start if enabled on a PPPoE interfaces using the new if_pppoe module:... Steve Wheeler
07:08 PM Feature #16230 (New): KEA DHCP server needs log verbosity settings in GUI: Created on a customer's request.
There are config parameters that can be implemented in the current config.xml for t... Georgiy Tyutyunnik
01:53 PM Feature #16228 (Needs Patch): Support multiple NAT64 prefixes via DNS64/PREF64: It is possible to return multiple NAT64 prefixes - ie multiple AAAA records returned pointing to each prefix. The ser... Bert Smith

06/03/2025

08:47 PM Feature #16227: Add DynDNS Provider - Infomaniak: PR: https://github.com/pfsense/pfsense/pull/4735 Fabio Gabrielli
08:44 PM Feature #16227 (Pull Request Review): Add DynDNS Provider - Infomaniak: Added the provider Infomaniak to the list of dyndns services.
Tested for IPv4.
More about the API: https://faq.in... Fabio Gabrielli
07:31 PM Todo #16212 (Feedback): Allow custom ZFS pool names: Marcos M
04:45 PM pfSense Plus Bug #16226 (Confirmed): ZFS Error Messages Missing from Widget: We have a Netgate 6100 which has developed some ZFS errors, but they aren't picked up by the widget.
!clipboard-2025... Matthew Fearnley
04:41 PM Bug #16221 (Not a Bug): Other interfaces are not demoted if a CARP interface uses DHCP resulting in split-brain operation: Marcos M
03:05 PM pfSense Packages Bug #16225 (Confirmed): Telegraf service does not restart after change of settings: Documented here: https://forum.netgate.com/topic/197682/telegraf-service-not-starting-after-change-of-setting
Th... Patrik Stahlman

06/02/2025

09:12 PM Bug #16221 (Pull Request Review): Other interfaces are not demoted if a CARP interface uses DHCP resulting in split-brain operation: This has been an issue at least since 23.01. The issue was not reproducible for the second WAN on #note-1 because the... Marcos M
08:43 PM Feature #16224 (New): Enhance state filtering and state killing abilities: The filtering capability of @Diagnostics > States > States@ is very limited and cannot handle multiple conditions.
... Andrew Almond
04:57 PM Bug #16217: Memory exhaustion in ``kea2unbound`` when pfBlockerNG DNSBL is enabled in "Unbound mode" instead of "Unbound python mode": @kea2unbound@ is new in CE 2.8.0. Kea did not have DNS registration functionality before.
You can easily switch pf... Jim Pingle
04:54 PM Bug #16217: Memory exhaustion in ``kea2unbound`` when pfBlockerNG DNSBL is enabled in "Unbound mode" instead of "Unbound python mode": Jim Pingle wrote in #note-1:
> Priority changed from Normal to Very Low
Should this be a HIGH protity. If I ... Troy R
04:51 PM Bug #16217: Memory exhaustion in ``kea2unbound`` when pfBlockerNG DNSBL is enabled in "Unbound mode" instead of "Unbound python mode": Why did this change in 2.8.0? I never had errors about memory before the update.. Troy R
07:37 AM Bug #16128: if_pppoe: PHP password handling: Passwords which begin with exclamation mark (!) are broken see:
https://forum.netgate.com/post/1216202
The prop... Scott Ashcroft
03:12 AM pfSense Packages Bug #16223 (Duplicate): PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes): Duplicate of #16217 Jim Pingle
03:04 AM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes): What you should be doing here is setting pfBlockerNG to use Unbound mode if you are loading a lot of large lists. Steve Wheeler
02:41 AM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes): After doing all that I now learned..
!clipboard-202506012137-i4swt.png!
System > Advanced > Miscellaneous > PHP Se... Troy R
02:28 AM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes): So aftering giving stuff in ChatGPT to lookout from that error and my log PlfBlockerNG Update.log
It told me...
`... Troy R
01:20 AM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes): I had disabled PFBlocker and didn't have the error when restarting unbound.
Turned PFblocker back on. Had it upd... Troy R
02:15 AM Feature #14483: Conditionally reconfigure IPsec VTI interfaces only when necessary while applying IPsec changes: Any update on this? Mike Moore
02:14 AM Bug #16118: Expand view of system generated alias in GUI: Any update on this? Mike Moore

06/01/2025

10:03 PM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes): It seems to be triggered by pfBlockerNG. It worked just fine in the old verison. But after updating to 2.8.0 a few ... Troy R
08:48 PM pfSense Packages Bug #16223 (Duplicate): PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes): Crash report begins. Anonymous machine information:
amd64
15.0-CURRENT
FreeBSD 15.0-CURRENT #1 RELENG_2_8_0-n25... Troy R
10:38 AM pfSense Packages Bug #16222: 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot: Kris Phillips wrote in #note-2:
> F. M. wrote in #note-1:
> > After further troubleshooting, I discovered that, for... F. M.
01:49 AM pfSense Packages Bug #16222: 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot: F. M. wrote in #note-1:
> After further troubleshooting, I discovered that, for some reason, the file /var/etc/frr/f... Kris Phillips
05:31 AM pfSense Plus Bug #16219: pfSense IPsec VTI Mode Incompatible with Juniper Traffic Selector Requirements: Thanks for taking care of the ticket.
Let me clarify. I don't intend to use traffic selector under VTI mode.
Th... Henry Zhou
01:43 AM pfSense Plus Bug #16219 (Incomplete): pfSense IPsec VTI Mode Incompatible with Juniper Traffic Selector Requirements: If you're using traffic selectors, you want Policy-mode in pfSense Plus. VTIs don't use traffic selectors, so I'm co... Kris Phillips
05:08 AM Regression #16209: AutoConfigBackup entries show incorrect timestamps: Tested on 25.03-BETA (amd64)
built on Tue Apr 29 17:29:00 +04 2025
FreeBSD 15.0-CURRENT
Patch is working
before
... aleksei prokofiev
01:50 AM pfSense Docs Correction #16207 (Confirmed): System --> Advanced --> Netgate Nexus. Help link lands on docs main page.: I can confirm this behavior. Tested on latest 25.03 builds.
Marking Confirmed. Kris Phillips
12:35 AM pfSense Packages Todo #16091 (Resolved): tailscale package requires updates: I can confirm both versions below offer Tailscale 0.1.8 which uses tailscale-1.82.5. Marking resolved.... Christopher Cope

05/31/2025

09:54 PM Bug #16221 (Confirmed): Other interfaces are not demoted if a CARP interface uses DHCP resulting in split-brain operation: I can confirm this on... Christopher Cope
03:00 AM Bug #16221 (Not a Bug): Other interfaces are not demoted if a CARP interface uses DHCP resulting in split-brain operation: Expected behavior:
When you unplug an interface and it goes from MASTER to INIT on a primary, all other interface... Kris Phillips
08:04 PM pfSense Packages Bug #16220 (Confirmed): Wireguard widget default refresh interval is invalid: I can confirm this on... Christopher Cope
04:42 PM pfSense Packages Feature #16089: Add packages for Zabbix 7.2 agent and proxy: Tested in latest 25.03 builds. Zabbix 7.2 packages are still not present. Kris Phillips
04:13 PM pfSense Packages Bug #16222: 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot: After further troubleshooting, I discovered that, for some reason, the file /var/etc/frr/frr.conf is missing the line... F. M.
02:39 PM pfSense Packages Bug #16222 (New): 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot: Since upgrading my pfSense with FRR, OSPF no longer seems to function correctly.
I use site-to-site OpenVPN tunnel... F. M.
08:41 AM pfSense Docs Correction #16208 (Resolved): System --> Update. Help link lands on package manger page.: Tested against:... Danilo Zrenjanin

05/30/2025

07:21 PM pfSense Packages Bug #16220 (Confirmed): Wireguard widget default refresh interval is invalid: The default widget refresh interval was changed to 20 ticks in this commit: https://github.com/pfsense/FreeBSD-ports/... Grant Emsley
06:25 PM pfSense Plus Bug #16219 (New): pfSense IPsec VTI Mode Incompatible with Juniper Traffic Selector Requirements: When configuring an IPsec VPN in VTI (route-based) mode between pfSense (using strongSwan) and Juniper firewalls (e.g... Henry Zhou
05:43 PM pfSense Plus Bug #14772: PFsense Plus doesn't work with AWS new Instance Metadata Service (IMDSv2): Changing from installer category as it isn't related to the installer Reid Linnemann
05:33 PM pfSense Plus Bug #16176 (Feedback): Config restored during install can be overwitten by hardware specific default values: This is fixed as of https://gitlab.netgate.com/pfSense/installer/-/commit/7076078812bf56d62a326fec8815e255d32f4b8c Reid Linnemann
05:04 PM Feature #16110: Automatically check ``Allow IP options`` when IGMP is selected: patch works as expected
tested on:
25.07-DEVELOPMENT (amd64)
built on Thu May 29 19:08:00 UTC 2025
FreeBSD 15.0-C... Georgiy Tyutyunnik
03:51 PM Bug #16124: Kernel Panic on PCI WiFi Passthrough (AC7265): Just hit this as well on the upgrade from 2.7.2 to 2.8.0 running on Proxmox (similar to the above ESXi report).
Kerne... MIchael K
03:14 PM Bug #16124: Kernel Panic on PCI WiFi Passthrough (AC7265): Same problem with another WiFi card after upgrade from 2.7.2 to 2.8.0 or new install
Hope there is a way to ignore... Manuel Himmler
03:26 PM Todo #16212 (Ready To Test): Allow custom ZFS pool names: Marcos M
02:04 PM Feature #16215: Allow matching on IP Options with firewall match rules: patch allows "match" rule creation with IP options enabled. resulting floating rule logs igmp traffic
tested on
25.... Georgiy Tyutyunnik
01:08 PM Bug #16218: All-Inkl Dynamic DNS responses are not parsed correctly: PR: https://github.com/pfsense/pfsense/pull/4734 Christoph Filnkößl
01:06 PM Bug #16218 (Pull Request Review): All-Inkl Dynamic DNS responses are not parsed correctly: All-Inkl response check does not work properly on:
* 200 -> "good" is enough, IP is not contained in response if it ... Christoph Filnkößl
12:00 PM pfSense Packages Feature #14423: haproxy 2.7 QUIC support (+ maybe LUA 5.4?): Pawel Piaskowy wrote in #note-3:
> Guys did you add USE_QUIC=1 to haproxy?
>
> [...]
>
> I need to give it a t... Bert Smith
06:24 AM Bug #15746: IPv6 is not deprecated on PPPoE Periodic Reset: This issue still persists with pfsense 2.8.0 and since most European isps handout dynamic prefixes will become more o... Johannes Rohde
02:22 AM pfSense Packages Bug #11797: Traffic Totals lost upon reboot when using a ramdisk for /var and /tmp: Confirmed still an issue as of May 2025 with pfSense CE @2.8.0@ and Status Traffic Totals package version @2.3.2_7@
... Greg Maub
02:17 AM pfSense Packages Bug #11054: Check Client Certificate CN not working as described: Confirmed still an issue as of May 2025 with pfSense CE @2.8.0@ and FreeRADIUS package version @0.15.14@
Forum post ... Greg Maub

05/29/2025

08:09 PM Todo #16212 (In Progress): Allow custom ZFS pool names: Marcos M
04:41 PM Bug #16217: Memory exhaustion in ``kea2unbound`` when pfBlockerNG DNSBL is enabled in "Unbound mode" instead of "Unbound python mode": Switched. Thank you! Kevin Burge
04:28 PM Bug #16217: Memory exhaustion in ``kea2unbound`` when pfBlockerNG DNSBL is enabled in "Unbound mode" instead of "Unbound python mode": Most users who have encountered this were using pfBlockerNG and were not using python mode. Changing pfBlockerNG to p... Jim Pingle
04:25 PM Bug #16217 (New): Memory exhaustion in ``kea2unbound`` when pfBlockerNG DNSBL is enabled in "Unbound mode" instead of "Unbound python mode": Upgraded to 2.8.x yesterday:
2.8.0-RELEASE (amd64)
built on Wed May 21 18:12:00 CDT 2025
FreeBSD 15.0-CURRENT
... Kevin Burge
12:40 PM Bug #16216 (New): [BUG?] New PPPoE module (if_pppoe) causes high "Errors Out" on WAN (Vivo Fibra): [EN_US]
Hi everyone,
I'm testing the new pfSense feature that allows using the kernel-based PPPoE driver (if_pp... Crystian Geovani Dorabiatto
11:35 AM pfSense Packages Bug #16120 (Confirmed): Zebra RIB doesn't reflect the removal of the static routes until the restart of service: Tested against the latest development pfSense Plus release.
I can confirm this behavior.
In reverse order, it fun... Danilo Zrenjanin

05/28/2025

08:40 PM Feature #16110 (Feedback): Automatically check ``Allow IP options`` when IGMP is selected: Applied in changeset commit:ed6c2eb84595aab998c3b3efaf16d226bd62c38d. Marcos M
08:25 PM Feature #16215 (Feedback): Allow matching on IP Options with firewall match rules: Applied in changeset commit:12a7fdf854ec48b0d2679eda374ff366c513aaca. Marcos M
08:17 PM Feature #16215 (Resolved): Allow matching on IP Options with firewall match rules: Match rules now support matching traffic with "allow-opts":
https://cgit.freebsd.org/src/commit/?id=7e70d94acd68b3ac... Marcos M
08:02 PM pfSense Plus Bug #16214 (Duplicate): Maximum Backup Limit Setting Not Enforced: Marcos M
07:02 PM pfSense Plus Bug #16214: Maximum Backup Limit Setting Not Enforced: It appears that the cleanup only occurs when the web UI for the configuration history is loaded. On my system, the b... Robert Jacobson
06:16 PM pfSense Plus Bug #16214 (Duplicate): Maximum Backup Limit Setting Not Enforced: *Issue Description:*
The value set under *Diagnostics > Configuration History > Configuration Backup Settings > Ma... Danilo Zrenjanin
04:11 PM pfSense Packages Feature #16213 (New): Sync some settings from General/IP/DNSBL: I'm using the sync to keep several separate pfSense instances configured with the same blocklists and settings. It wo... Grant Emsley
03:51 PM Todo #16212 (Resolved): Allow custom ZFS pool names: There are various places in the code where the ZFS pool is hardcoded to @pfSense@. Since the installer allows changin... Marcos M
02:06 PM pfSense Packages Bug #16211 (Confirmed): Python errors in Cellular: Errors from Cellular are shown in the boot and upgrade logs in 25.03:... Steve Wheeler
01:29 PM Bug #16010 (Rejected): AutoConfigBackup scheduled backups always upload even when the configuration has not changed: The backups are uploaded on a schedule that runs every minute. It might be a race condition of some sort but I don't ... Jim Pingle

« Previous

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

06/19/2025

06/18/2025

06/17/2025

06/16/2025

06/15/2025

06/14/2025

06/13/2025

06/12/2025

06/11/2025

06/10/2025

06/09/2025

06/08/2025

06/07/2025

06/06/2025

06/05/2025

06/04/2025

06/03/2025

06/02/2025

06/01/2025

05/31/2025

05/30/2025

05/29/2025

05/28/2025