Project

General

Profile

Activity

From 05/30/2025 to 06/28/2025

06/28/2025

11:17 PM pfSense Packages Feature #16089: Add packages for Zabbix 7.2 agent and proxy
Checked 25.07 builds. Package is not present still. Kris Phillips
11:15 PM pfSense Packages Bug #16288: pfblockerng.inc filterlog process is consuming large amounts of cpu
What version of pfBlockerNG are you using on 24.11? Kris Phillips
11:07 PM pfSense Packages Bug #16206 (Confirmed): Package apcupsd starts even when disabled
Tested on 25.07. This issue is still present. Kris Phillips
09:53 PM Todo #16291: Relocate Kea control socket and lease database
Changing priority as this can break stuff, even though it's development internal. Feel free to move back to Normal if... dylan mendez
09:52 PM Todo #16291 (Confirmed): Relocate Kea control socket and lease database
Tested on... Christopher Cope
09:46 PM Todo #16291 (Feedback): Relocate Kea control socket and lease database

25.11.a.20250628.0006 does the same.
!clipboard-202506281542-dacy2.png!
2025-06-28 21:45:58.188712+00:00 kea... dylan mendez
09:37 PM pfSense Packages Regression #15159 (Resolved): XMLRPC Replication Target required even if not using it
Tested on... Christopher Cope
05:46 PM Bug #16290 (New): Diagnostics -> Authentication crashes if Shared Secret is not correct
Tested on 24.11
I added Remote Radius server into /System/User Manager/Authentication Servers and used incorrect S... Azamat Khakimyanov
05:09 PM pfSense Plus Feature #16287: IPSec does not allow to configure the full CA chain
To make it work for now, I created a hacky patch that uses @/usr/local/etc/swanctl@ as a skeleton directory to initia... Jimmy Thrasibule
11:14 AM Feature #16289 (New): Built-in NetBox importer for DNS, DHCP, etc GUI pages
How to painless importing pfSense-related data from NetBox?
(For example for DHCP, DNS, etc settings).
I mean not... Sergei Shablovsky

06/27/2025

07:31 PM pfSense Packages Bug #16288: pfblockerng.inc filterlog process is consuming large amounts of cpu
Also seem to see it on pfSense 2.7.2 - pfBlockerNG 3.2.0_8 Orion Poplawski
06:38 PM pfSense Packages Bug #16288 (Incomplete): pfblockerng.inc filterlog process is consuming large amounts of cpu
PID USERNAME THR PRI NICE SIZE RES STATE C TIME WCPU COMMAND
79068 root 1 128 0 82M... Orion Poplawski
04:06 PM pfSense Plus Feature #16287 (New): IPSec does not allow to configure the full CA chain
I'm configuring a mutual certificate authentication IPSec VPN using Let's Encrypt certificates. pfSense only allows t... Jimmy Thrasibule
12:19 PM pfSense Plus Regression #16179 (Resolved): upgradeconfig php shell script incorrectly replaces running config when Nexus is enabled.
fixed, can't reproduce this behavior on the latest dev
tested on:
25.11-DEVELOPMENT (amd64)
built on Thu Jun 19 19... Georgiy Tyutyunnik

06/26/2025

08:20 AM Bug #16250 (Resolved): Firewall rules with an interface address for the NAT64 source always use the interface itself
resolved, patch works as intended
tested on
25.11-DEVELOPMENT (amd64)
built on Thu Jun 19 19:22:00 UTC 2025
FreeB... Georgiy Tyutyunnik
07:59 AM Bug #15110: pfSense hangs when rebooting
Same Problem here with 5100 and 24.11 Manuel M.
07:44 AM pfSense Packages Regression #16261: RADIUS connection to upstream LDAP server cannot be setup over TLS
After further investigation, it looks like the LDAP TLS configuration gets generated as follows:... Didier Raboud
07:40 AM Bug #16272 (Resolved): Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP
resolved - patch works as intended
tested the patch apply/revert on
25.11-DEVELOPMENT (amd64)
built on Tue Jun 17 6:... Georgiy Tyutyunnik

06/25/2025

05:13 PM pfSense Packages Feature #16279: Support for custom DNS API
It can be just as simple as dyndns, as it's basically the same thing.
ACME when doing a dns challenge uses a stati... Bert Smith
02:00 AM Feature #16286 (Rejected): pfSense Firewall Alias List API
The objective is create a API for add and remove IPs from the black list.
A agent in the other side can operate thi... Josias L. Gonçalves

06/24/2025

06:14 PM pfSense Plus Feature #16283 (Rejected): build-in TOTP authentication feature pfSense Plus
This feature has not been implemented in CE or Plus before -- it requires FreeRADIUS or another external authenticati... Jim Pingle
12:41 PM pfSense Plus Feature #16283 (Rejected): build-in TOTP authentication feature pfSense Plus
Hello,
I’m using a Netgate 7100 with pfSense Plus 24.11. I’ve noticed that the option for TOTP authentication (Tim... Jasper Hartog
04:07 PM Regression #16285: ``syslogd`` does not respect the configured IP address binding
Also broken in 25.03/25.07
However works as expected in dev builds because of a newer upstream patch:
https://github... Steve Wheeler
03:38 PM Regression #16285 (Feedback): ``syslogd`` does not respect the configured IP address binding
When configuring remote a syslog server syslogd is invoked with the user selected interface binding if selected:
<pr... Steve Wheeler
03:11 PM pfSense Packages Feature #16284 (New): Add NetBird package
NetBird is an open-source WireGuard-based overlay network combined with Zero Trust Network Access, providing secure a... Bethuel Mmbaga
08:58 AM pfSense Packages Bug #16262: Squid "Undefined symbol "_ZTVNSt3__117bad_function_callE" after upgrade to 2.8
So it's still installable, not mentioned in the release notes of 2.7.1, 2.7.2 and 2.8.0, but just fails to start. Mos... Bernhard Schmidt
05:34 AM Bug #16281: openvpn gui bug
This problem has been fixed in 2.5.2 or 2.6. This is a new problem in 2.8. hao zhang

06/23/2025

07:00 PM Bug #16282 (New): Sticky Connections / Source Tracking table empty in dual‑WAN after upgrade to 2.8.0-RELEASE
*Description*
After upgrading from 2.7.x to pfSense 2.8.0‑RELEASE (amd64) in a dual‑WAN, load‑balanced environment, ... Enes Izzetoglu
04:26 PM pfSense Packages Feature #16279: Support for custom DNS API
With certbot there is an option: --manual-auth-hook /usr/local/bin/certbot-auth-hook.sh
does acme.sh have a similar ... Bert Smith
02:01 PM pfSense Packages Feature #16279 (Rejected): Support for custom DNS API
There are way too many variable factors involved for that to be viable. If the upstream ACME project adds something l... Jim Pingle
01:57 PM Bug #16281 (Duplicate): openvpn gui bug
There isn't much detail here but even so it seems to be a duplicate of #9344 -- same link/URL involved at least. Jim Pingle
01:38 AM Bug #16281 (Duplicate): openvpn gui bug
!clipboard-202506230936-qtxnb.png!
pfsense2.8
GUI occurs when using the Chinese language package for openvpn hao zhang
02:31 AM Bug #14613: Incorrect wireguard control panel status management
2.8.0 This problem is reproduced again hao zhang

06/22/2025

04:25 PM pfSense Packages Bug #16206: Package apcupsd starts even when disabled
still seeing this with 25.03.b.20250610.1659, although it seems re-installing the package with the enable daemon opti... Jordan G
12:10 PM pfSense Packages Regression #15159: XMLRPC Replication Target required even if not using it
It's not yet in the 25.11 tree. The patch can be tested individually or wait for the merge to Plus. Marcos M
01:31 AM pfSense Packages Regression #15159: XMLRPC Replication Target required even if not using it
Tested on... Christopher Cope
12:01 PM Bug #16272 (Feedback): Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP
The input validation check is intended and not an error - see the referenced issue. Marcos M
10:07 AM Todo #6727: Apple TouchID/FaceID probes for site icon files that do not exist
24 hours later and the error returned. No changes so no idea why or why it was over a minute after login.... Rob A

06/21/2025

11:20 PM pfSense Packages Feature #16280 (New): HAProxy HTTP3/QUIC support
The current version of haproxy is 3.0 built against openssl 3.0. This version includes limited QUIC support:
https... Bert Smith
11:11 PM pfSense Packages Feature #16279 (Rejected): Support for custom DNS API
As in the subject, support specifying a custom DNS API similar to the dyndns system.
For example:
https://dns.myp... Bert Smith
08:58 PM Bug #16260 (Confirmed): Chinese (taiwan) / HK Translation using incorrect identifier on CE 2.8
Looking at/usr/local/share/locale I do see zh_TW or zh_HK
But I also had to edit the config and reboot to change t... Bryan Allen
06:35 PM Bug #16274 (Resolved): UPnP IGD & PCP status page does not show "disabled" message after the service has been enabled then disabled
Tested on... Christopher Cope
06:53 AM Bug #16274: UPnP IGD & PCP status page does not show "disabled" message after the service has been enabled then disabled
Can confirm this behavior,
Before the patch, after disabling the service:
!clipboard-202506210950-st6lr.png!
A... Lev Prokofev
06:29 PM Bug #16272 (In Progress): Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP
Tested on... Christopher Cope
03:21 PM Revision 3172cadb: Fix editing interface group names
This was previously a pointer to the global config before the config
access rewrite and hence the assignment would mo... Marcos M
11:20 AM Bug #16216: [BUG?] New PPPoE module (if_pppoe) causes high "Errors Out" on WAN (Vivo Fibra)
If I delete my WAN CODELQ shaper then the errors stop so the errors seems to be related to using a WAN shaper in conj... Simon Heather
08:59 AM Todo #6727: Apple TouchID/FaceID probes for site icon files that do not exist
Fully tested and patch 6855d0f643a33 is confirmed to work with 25.03.b.20250610.1659. No remaining issues or observa... Rob A

06/20/2025

09:29 PM Todo #6727: Apple TouchID/FaceID probes for site icon files that do not exist
Running the patch and all seems well. Will test in more detail soon. Rob A
07:16 PM Todo #6727: Apple TouchID/FaceID probes for site icon files that do not exist
After some recent discussion this has come back up, and seems to be narrowed down to using Apple's TouchID or FaceID ... Jim Pingle
01:03 PM Feature #16278 (New): FRR BGP – Missing “maximum-paths” (and multipath-relax) GUI support breaks ECMP for IPsec VTI tunnels with OCI DRG
Environment
Item Value
Appliance Netgate 4100
pfSense Plus 24.11-RELEASE (latest as of 20 Jun 2025)
FRR package 2... Anvar Kuchkartaev

06/19/2025

10:33 PM pfSense Packages Bug #16277 (Pull Request Review): Enabling IPv6 support in DNSBL doesn't allow pfb_dnsbl to start
Following up from https://www.reddit.com/r/pfBlockerNG/comments/1jb5rtc/ipv6_woes_wrong_vip/
I created a PR to fix... Wallace Panter
08:31 PM Bug #16276 (Resolved): The ``ng_etf(4)`` kernel module is missing from CE installations
Latest devel build of CE now has ng_etf in kernel. Christian McDonald
01:57 PM Bug #16276: The ``ng_etf(4)`` kernel module is missing from CE installations
Fixed in https://gitlab.netgate.com/pfSense/FreeBSD-src/-/commit/f8763f3c8dcac6244a83309d53c5bc321c89ed68 Christian McDonald
01:56 PM Bug #16276 (Feedback): The ``ng_etf(4)`` kernel module is missing from CE installations
Christian McDonald

06/18/2025

11:18 PM Bug #15037: NTPD: Serial GPS with PPS error opening /dev/gpspps0
Elvis Impersonator wrote:
> Receive the following error message in the NTP log when using a serial GPS with PPS outp... Christian Borchert
11:12 PM Bug #16272: Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP
Followed the steps :
the error says:
"This entry cannot be deleted because it is still referenced by a CARP IP wi... Alhusein Zawi
08:53 PM Bug #16276 (Resolved): The ``ng_etf(4)`` kernel module is missing from CE installations
Christian McDonald
07:48 PM pfSense Plus Bug #16275 (New): Removing Limiters can leave unconnected queues behind

As noted in https://forum.netgate.com/topic/197882/25-03-b-20250610-1659-re-enabling-limiters-leads-to-syslog-kerne... Patrik Stahlman
08:14 AM pfSense Packages Todo #16190: Update mDNS-Bridge to 2.0
Please also include this independent PR which fixes a spelling error:
https://github.com/pfsense/FreeBSD-ports/pul... Denny Page
04:44 AM Feature #12190: Ability to use an IPv6 prefix in firewall rules
Same for xfinity/Comcast in US with /60 prefix.
The @::@ notation does not work in an alias and there is no way to t... Dean Arnold

06/17/2025

04:35 PM Bug #16274 (Feedback): UPnP IGD & PCP status page does not show "disabled" message after the service has been enabled then disabled
Applied in changeset commit:25901e7b0973a802ff02c725c566211f7f5ebe83. Marcos M
04:22 PM Bug #16274 (Resolved): UPnP IGD & PCP status page does not show "disabled" message after the service has been enabled then disabled
The page at Status > UPnP IGD & PCP shows a "Service is currently disabled" message on a default/factory configuratio... Marcos M
04:23 PM Revision 25901e7b: Check correct enable value for UPnP service. Fix #16274
Also move the query code so it's only run when the service is enabled. Marcos M
04:14 PM Feature #16273 (Pull Request Review): Allow configuration of Third-Party Mapping for UPnP IGD & PCP service
https://github.com/pfsense/pfsense/pull/4730 Marcos M
04:12 PM Feature #16273 (Pull Request Review): Allow configuration of Third-Party Mapping for UPnP IGD & PCP service
The option "pcp_allow_thirdparty" allows for devices to open ports for other IP addresses. This is useful for example... Marcos M
03:13 PM Bug #14604: Bugs in dhclient implementation according to RFC 2131
Any update here? It has been a few years and dhclient is not getting any better over time.
I'd appreciate if someone... Nazar Mokrynskyi

06/16/2025

07:50 PM Bug #16265 (Feedback): PPPoE IPv6 gateways are unavailable without Router Advertisements when using ``if_pppoe``
Applied in changeset commit:ede3fbfbe218606bce042f40b430fe41580e3a3f. Marcos M
07:42 PM Revision 7479a798: ppp-ipv6: Reduce indent levels
Renato Botelho do Couto
07:35 PM Revision ede3fbfb: Refactor handling of PPPoE ADDR_ADD events. Fix #16265
Marcos M
07:33 PM Revision 71cedb12: Improve ZFS handling
- Improve ZFS detection, cleanups
- Better handling of arbitrary root zpool names
Co-Authored-By: R. Christian McDon... Marcos M
06:45 PM Bug #16272 (Feedback): Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP
Applied in changeset commit:5ff07bb57bcb4249191eed8cbef0e481349bef82. Marcos M
05:27 PM Bug #16272 (Resolved): Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP
Input validation exists that prevents the deletion of any IP alias within the subnet of a defined CARP IP. As mention... Marcos M
05:37 PM Revision 5ff07bb5: Reference the correct VIP in input validation description. Fix #16272
The $vip variable may not reference the $found_carp's VIP since there's no
break in the loop. Fix it by keeping the I... Marcos M
02:14 PM Feature #6213: IPSEC: IPV4/IPV6 dual-interface-stack support for Mobile IKE
It is possible if IPv4 and IPv6 are used on the same interface (e.g. WAN is dual stack) but not if IPv4 and IPv6 are ... Jim Pingle
11:36 AM Feature #6213: IPSEC: IPV4/IPV6 dual-interface-stack support for Mobile IKE
Should get closed as it is possible to use Dual Stack for a long time, no? Andi Admin
02:04 PM Bug #16270 (Not a Bug): Clarify ECMP Flow Hashing Behavior and net.route.hash_outbound Sysctl Status in pfSense CE 2.8 / FreeBSD 15
The docs do not mention @net.route.hash_outbound@ so there is nothing to update. That is a read-only sysctl which the... Jim Pingle
12:53 PM Feature #16269 (Rejected): Separate file system (and pool) to isolate the logs, to not compromise the operating system !
The base system already will not exceed the logging limits configured in the settings by the user. If a package does ... Jim Pingle

06/15/2025

04:35 PM Regression #16271: DHCP Lease list fails to show the interface if 2 interfaces with similar subnet are presented in the config.
the lease utilization list only displays 1 interface for me despite having (kea) dhcp enabled on multiple interfaces ... Jordan G

06/14/2025

10:08 PM Bug #16248: QLink/Marvell 41000 NIC bug
We may have hit this while working on the other qlnxe bug.
If you run:... Steve Wheeler
09:50 PM Bug #16248: QLink/Marvell 41000 NIC bug
Adam Esslinger wrote in #note-2:
> it appears to be a bug with the dashboard. Once the login screen times out and I... Adam Esslinger
12:49 PM pfSense Packages Bug #14489: FRR needs delayed startup
I can confirm I had this issue on CE 2.7.2, and I still have the issue on CE 2.8.0.
The patch above worked for CE 2.7... Max Pal
10:48 AM pfSense Packages Feature #11837: Increase field length of FRR Networks in Access Lists and Prefix Lists
there is actually a pretty simple solution i have found googling "pfsense frr input size" - it's a snippet of javascr... The Coder Admin
08:09 AM Regression #16271 (New): DHCP Lease list fails to show the interface if 2 interfaces with similar subnet are presented in the config.
Config:
IX0 - 10.149.49.1/24 enabled... Lev Prokofev
04:10 AM Bug #16270 (Not a Bug): Clarify ECMP Flow Hashing Behavior and net.route.hash_outbound Sysctl Status in pfSense CE 2.8 / FreeBSD 15
In pfSense CE 2.8.0 (FreeBSD 15), ECMP (Equal-Cost Multi-Path Routing) support is advertised as active, and per Redmi... Anvar Kuchkartaev
02:41 AM pfSense Packages Bug #16262 (Rejected): Squid "Undefined symbol "_ZTVNSt3__117bad_function_callE" after upgrade to 2.8
dylan mendez
02:38 AM pfSense Packages Bug #16262: Squid "Undefined symbol "_ZTVNSt3__117bad_function_callE" after upgrade to 2.8
Please note Squid is deprecated from pfSense.
https://www.netgate.com/blog/deprecation-of-squid-add-on-package-for-p... dylan mendez
01:18 AM Feature #16269 (Rejected): Separate file system (and pool) to isolate the logs, to not compromise the operating system !
Dear pfSense Dev Team!
Because from 2.8.0 and higher versions of pfSense installer was changed, what is the reason... Sergei Shablovsky

06/13/2025

10:34 PM pfSense Packages Todo #16231 (Resolved): Update packages to use the XMLRPC plugins for HA
Marcos M
10:28 PM pfSense Packages Regression #14189 (Closed): pfBlocker-NG: HA-Sync is not working
The original report stating "now the firewall rules are synchronized, but not the tables generated by pfBlockerNG" is... Marcos M
10:16 PM pfSense Packages Regression #15159 (Feedback): XMLRPC Replication Target required even if not using it
Fixed with "f5c335f9538f190f27557b854f17958519080938":https://github.com/pfsense/FreeBSD-ports/commit/f5c335f9538f190... Marcos M
10:14 PM pfSense Packages Bug #14409 (Feedback): pfBlockerNG Cron Redundantly Updates pfSense Configuration When DNSBL is Disabled Due to Faulty Virtual IP Count
Fixed with "6e558c8679c7cb9048a8c29101cb3158330d6dde":https://github.com/pfsense/FreeBSD-ports/commit/6e558c8679c7cb9... Marcos M
10:11 PM pfSense Packages Bug #16254 (Resolved): sudo package may write bogus users and groups to the configuration
Fixed with 9b28db733a4daa98b616e2035077937b598d6a2a. Marcos M
10:10 PM pfSense Packages Bug #16267 (Resolved): Zeek package ``configurationfile`` string is not valid
Fixed with 80103b4483e40f1a9855c97262cfb272358e29d9. Marcos M
09:38 PM pfSense Packages Bug #16267 (Resolved): Zeek package ``configurationfile`` string is not valid
The info.xml file for zeek begins with a forward-slash which is not valid since this is used for plugin functions. Marcos M
10:10 PM pfSense Packages Bug #16268 (Resolved): Snort package ``configurationfile`` string is not valid
Fixed with c5e1630f9cdf9c071a3eef096dddd18798751b3d. Marcos M
09:38 PM pfSense Packages Bug #16268 (Resolved): Snort package ``configurationfile`` string is not valid
The info.xml file for Snort begins with a forward-slash which is not valid since this is used for plugin functions. Marcos M
09:41 PM Feature #16212 (Resolved): Allow custom ZFS pool names
issue is fixed
tested on
25.11-DEVELOPMENT (amd64)
built on Fri Jun 13 4:55:00 UTC 2025
FreeBSD 15.0-CURRENT Georgiy Tyutyunnik
08:15 PM Bug #16265 (Pull Request Review): PPPoE IPv6 gateways are unavailable without Router Advertisements when using ``if_pppoe``
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1229 Marcos M
03:07 PM Bug #16265 (Feedback): PPPoE IPv6 gateways are unavailable without Router Advertisements when using ``if_pppoe``
Gateway monitoring is broken with if_pppoe when upstream does not send Router Advertisements. This is not an issue wi... Marcos M
07:23 PM pfSense Packages Bug #16211 (Confirmed): Python errors in Cellular
Sayed Mohammad Badiezadegan
05:50 PM Bug #16266 (Pull Request Review): Thermal Sensors Widget Thresholds not Evaluated
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1231 Steve Wheeler
05:25 PM Bug #16266 (Pull Request Review): Thermal Sensors Widget Thresholds not Evaluated
The thermal sensors dashboard widget has user configurable temperature thresholds for each sensor type. However the '... Steve Wheeler
11:55 AM Feature #16110 (Resolved): Automatically check ``Allow IP options`` when IGMP is selected
Georgiy Tyutyunnik
11:53 AM pfSense Plus Bug #16176 (Resolved): Config restored during install can be overwitten by hardware specific default values
fixed in the latest installer build 20250613 Georgiy Tyutyunnik
09:53 AM pfSense Plus Bug #16264: In some circumstances, ethernet rules generated by the Captive portal block the ARP
Danilo Zrenjanin wrote in #note-1:
> In ticket 24032478035, disabling XML-RPC for Captive Portal helped stop the iss... Christopher Causer
08:26 AM pfSense Plus Bug #16264: In some circumstances, ethernet rules generated by the Captive portal block the ARP
In ticket 24032478035, disabling XML-RPC for Captive Portal helped stop the issue from occurring. The symptoms were v... Danilo Zrenjanin
08:21 AM pfSense Plus Bug #16264 (New): In some circumstances, ethernet rules generated by the Captive portal block the ARP
The setup is on an HA pair, Captive portal configured on LAN interface (ix0)... Lev Prokofev
12:09 AM pfSense Packages Bug #16262 (Rejected): Squid "Undefined symbol "_ZTVNSt3__117bad_function_callE" after upgrade to 2.8
See https://forum.netgate.com/topic/197620/squid-undefined-symbol-_ztvnst3__117bad_function_calle-after-upgrade-to-2-... ageekhere ageekhere

06/12/2025

08:19 PM Bug #16101 (Waiting on Merge): Kernel Panic in ``if_qlnxe`` kernel module when loaded via ``kldload``
https://reviews.freebsd.org/D50819 Steve Wheeler
05:19 PM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services
The same thing occurs with gandi: Could not resolve host: api.gandi.net
edit: I was too quick, I see the patch inclu... Claude Robitaille
02:54 PM pfSense Packages Regression #16261 (New): RADIUS connection to upstream LDAP server cannot be setup over TLS
After upgrading from 2.7.x to 2.8.0, radiusd did not start with these errors:... Didier Raboud
02:10 PM Bug #16259: DynDNS is unable to get the IPv6 address from the WASN Interface
Can confirm this issue appeared for me upon update to 2.8.0. Worked fine under 2.7.2.
In my setup, WAN is pppoe0.
/s... Michael Smith
01:23 PM Bug #16259: DynDNS is unable to get the IPv6 address from the WASN Interface
This is the WAN interface and it is up and running, including accessing the gateway. Internet over IPv6 works perfect... Claude Robitaille
02:01 PM Feature #16215 (Resolved): Allow matching on IP Options with firewall match rules
Georgiy Tyutyunnik
07:12 AM Bug #16260 (Confirmed): Chinese (taiwan) / HK Translation using incorrect identifier on CE 2.8
Hi ,
It's me again.
I report Chinese (taiwan) / HK Translation using incorrect identifier on 2.4.5
[[https://r... Roll Stone

06/11/2025

07:35 PM Bug #16259 (Not a Bug): DynDNS is unable to get the IPv6 address from the WASN Interface
If a gateway is associated with the interface and that gateway is unavailable (e.g. offline) then DDNS won't work. Marcos M
07:18 PM Bug #16259 (Not a Bug): DynDNS is unable to get the IPv6 address from the WASN Interface
DynDNS seems unable to retrieve the IPv6 address in order to update the DNS server.
Jun 11 15:07:37 main php-fpm[9... Claude Robitaille
06:59 PM Revision 80a490e4: Encode OpenVPN names in widget. Fixes #16258
Jim Pingle
04:42 PM Feature #11901 (In Progress): Add MAP-T/MAP-E support to pfSense
Christian McDonald
03:12 PM Bug #16257: rrd throughput database is limited to 20gbps
https://github.com/pfsense/pfsense/pull/4736 Steven Torres
03:11 PM Bug #16257 (New): rrd throughput database is limited to 20gbps
suggest bumping to 200gbps Steven Torres
10:36 AM Bug #16256: KEA-DHCPD Crash when applying DHCP settings
Reinstalled clean + Restore without packages.
Moved backend to KEA-DHCP and getting the following error when applyin... M T
08:34 AM Bug #16256 (New): KEA-DHCPD Crash when applying DHCP settings
PfSense 2.8.0 fresh install + restore backup from 2.6.
Moved from ISC-DHCP to KEA-DHCP backend
When saving DHCP s... M T
06:44 AM Todo #16255 (New): Branch RELENG_2_8_0 missing from pfSense repositories
Hello,
the RELENG_2_8_0 branch is missing from pfsense from pfsense repositories. I see that it is missing in the ... Björn Jakobsen

06/10/2025

07:43 PM pfSense Packages Bug #16254 (Resolved): sudo package may write bogus users and groups to the configuration
The sudo package adds extra users and groups to the running config which can potentially be written to config.xml. Th... Marcos M
02:44 PM Bug #16235 (Resolved): Using IPv4 VIPs on PPPoE interfaces with ``if_pppoe`` causes looping
Marcos M
02:42 PM Feature #16228 (Needs Patch): Support multiple NAT64 prefixes via DNS64/PREF64
It sounds like this would need to be implemented upstream in Unbound. The DNS64 module doesn't currently support doin... Marcos M
02:41 PM pfSense Docs Todo #16252 (Rejected): Feedback on Releases — add a (prominently displayed) date
We prefer to avoid maintaining the same information in multiple places as it makes it more likely that updates get ov... Jim Pingle
02:22 PM pfSense Docs Todo #16252 (Rejected): Feedback on Releases — add a (prominently displayed) date
*Page:* https://docs.netgate.com/pfsense/en/latest/releases/2-8-0.html
*Feedback:* Would be nice to always include... Dirk-Willem van Gulik
02:20 PM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services
This should be fixed with https://redmine.pfsense.org/issues/16251 Marcos M
04:17 AM Regression #16249 (Feedback): Dynamic DNS fails to update AAAA record for Route53 and No-IP services
Marcos M
08:50 AM pfSense Plus Bug #16203: Floating Firewall Rules for ICMP Inconsistently Choose Gateways and May Ignore Routing
Tested on latest 25.07-DEV (built on Wed Nov 27 18:22:00 UTC 2024)
I don't see this issue on 25.07-DEV: with Float... Azamat Khakimyanov
04:20 AM Todo #16251 (Feedback): Update list of Dynamic DNS services that are only reachable over IPv4 for AAAA record updates
Applied in changeset commit:f3e00ef6724a08abe0f1f6f82c71aee69c695f39. Marcos M
04:06 AM Todo #16251 (Feedback): Update list of Dynamic DNS services that are only reachable over IPv4 for AAAA record updates
There are several DDNS services whose API URL cannot be reached over IPv6 when updating AAAA records. All service API... Marcos M
04:11 AM Revision f3e00ef6: Update list of IPv4-only DDNS endpoints for AAAA updates. Implement #16251
Non "v6" services can be omitted from _curlIpresolveV4 since the request
will already happen over IPv4. Marcos M
12:35 AM Bug #16250 (Feedback): Firewall rules with an interface address for the NAT64 source always use the interface itself
Applied in changeset commit:b947a5b8ec0662714933fb67c28077e92da56e3f. Marcos M
12:27 AM Bug #16250 (Resolved): Firewall rules with an interface address for the NAT64 source always use the interface itself
NAT64 rules with the NAT64 source set to <interface> address always reference the interface of that address. For exam... Marcos M
12:28 AM Revision b947a5b8: Use the correct NAT64 source address. Fix #16250
Marcos M

06/09/2025

10:24 PM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services
I was able to create a proof-of-concept patch that resolves the issue for @route53-v6@. The patch also attempts to ad... Michael Murphy
07:13 PM Regression #16249 (Feedback): Dynamic DNS fails to update AAAA record for Route53 and No-IP services
In pfSense 2.8.0, the Dynamic DNS client fails to update AAAA records when using certain Dynamic DNS providers. This ... Michael Murphy
07:21 PM Revision a05fb299: Fix MSS values for IPv6 tunnel types
Steve Wheeler
06:24 PM Bug #16248: QLink/Marvell 41000 NIC bug

it appears to be a bug with the dashboard. Once the login screen times out and I get that crash dump that I pasted ... Adam Esslinger
05:26 PM Bug #16248: QLink/Marvell 41000 NIC bug
Do you see a kernel panic? Any sort of error log?
See: https://redmine.pfsense.org/issues/16101 Steve Wheeler
05:12 PM Bug #16248 (Waiting on Merge): QLink/Marvell 41000 NIC bug
I'm using pfSense 2.8.0 and I have a QL41164 NIC. Driver isn't enabled by default, after adding if_qlnxe_load="YES" ... Adam Esslinger
04:44 PM pfSense Plus Bug #16203: Floating Firewall Rules for ICMP Inconsistently Choose Gateways and May Ignore Routing
Tested on 24.11
What I found that with Floating rules for ICMP with the interface set to "Any" if to run endless p... Azamat Khakimyanov
03:26 PM Bug #16247 (New): Crash kernel (page fault in rts_input) - pfSense CE 2.8.0 (FreeBSD 15-CURRENT)
**System**: pfSense CE 2.8.0 snapshot
**Kernel**: FreeBSD 15.0-CURRENT (RELENG_2_8_0-n256081)
**Arch**: amd64 ... Didier Cugy
12:43 AM Bug #16246 (In Progress): `cxgbev` driver is missing in pfSense, but present in FreeBSD
Originally posted on the forum: https://forum.netgate.com/post/1217287
I just loaded FreeBSD 15.0-CURRENT and it d... Nazar Mokrynskyi

06/08/2025

07:37 PM pfSense Docs New Content #16245 (New): Add VIP and Firewall Rules References to 1:1 NAT Configuration Example
It's not currently clear in the docs that you need to create a VIP before the 1:1 NAT as well as Firewall Rules for 1... dylan mendez
05:03 PM Bug #16216: [BUG?] New PPPoE module (if_pppoe) causes high "Errors Out" on WAN (Vivo Fibra)
Hi - yes I am seeing the same issue with the new if_pppoe code with my BT FTTP PPPoE connection - details here:
http... Simon Heather
09:14 AM Feature #12190: Ability to use an IPv6 prefix in firewall rules
This would help massively since for instance in Germany most isps only hand out dynamic prefixes to their customers. Johannes Rohde
01:05 AM pfSense Packages Bug #16206: Package apcupsd starts even when disabled
seeing this also on pfSense+ 25.03.b.20250515.1415/apcupsd 0.3.92_9, after unchecking and saving the daemon service o... Jordan G
12:51 AM pfSense Packages Bug #16225 (Confirmed): Telegraf service does not restart after change of settings
Bryan Allen

06/07/2025

11:30 PM Bug #16244: Gateway adress not trimed
... Grischa Zengel
11:27 PM Bug #16244 (New): Gateway adress not trimed
After upgrading from 2.7.2 to 2.8.0 I got RPCXML errors.
On second pfsense I got:
/xmlrpc.php: The command '/usr/lo... Grischa Zengel
08:33 PM pfSense Plus Bug #16238 (Confirmed): Clearing a P1's Life Time field does not restore default value
I can confirm this on... Christopher Cope
08:14 PM pfSense Packages Bug #16233 (Confirmed): Authentication for LDAP Available without Authorization
I can confirm this behavior on... Christopher Cope
05:09 PM pfSense Packages Bug #16225: Telegraf service does not restart after change of settings
Verified this is happening on 25.07-DEVELOPMENT (amd64)
built on Fri Jun 6 1:00:00 CDT 2025
FreeBSD 15.0-CURRENT
... Bryan Allen
04:04 PM Regression #16243 (Confirmed): PPPoE MSSFix uses incorrect values for 6RD
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1226 Steve Wheeler
03:04 PM Regression #16243 (Confirmed): PPPoE MSSFix uses incorrect values for 6RD
When using PPPoE with TCP MSS Fix enabled (the default) the value selected for IPv6 traffic is based on the MTU of th... Steve Wheeler
02:46 AM pfSense Plus Bug #16219 (New): pfSense IPsec VTI Mode Incompatible with Juniper Traffic Selector Requirements
Henry Zhou wrote in #note-2:
> Thanks for taking care of the ticket.
>
> Let me clarify. I don't intend to use tr... Kris Phillips
02:44 AM pfSense Plus Bug #16226 (Confirmed): ZFS Error Messages Missing from Widget
The widget is just replicating what is in the columns, which your output still shows 0s.
We should add a section t... Kris Phillips

06/06/2025

10:19 PM Bug #16242 (New): When IPv6 Is Disabled the Firewall Still Queries IPv6 Localhost for DNS
When the "Allow IPv6" checkbox is disabled under System --> Advanced --> Networking, the firewall will continue to tr... Kris Phillips
08:50 PM Bug #16241 (New): NAT64 Doesn't drop RFC1918
In the current version (2.8.0) of pfsense is it possible to contact rfc1918 addresses using nat64, for example ping '... Raoul De Heer
08:09 PM pfSense Packages Bug #13898 (Resolved): Issues saving pfBlocker Sync Targets
Marcos M
08:00 PM pfSense Packages Bug #15530 (Rejected): pfBlockerNG Sync Tab helptext
Synchronizing from a secondary node to a primary node results in a loop. This is generally true and not necessarily s... Marcos M
04:59 PM Regression #16237 (Confirmed): Drivers that load firmware can cause a kernel panic.
It's this bug in the upstream firmware API: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=283285 Steve Wheeler
03:54 PM Regression #16237: Drivers that load firmware can cause a kernel panic.
... Steve Wheeler
03:50 PM Bug #16235 (Feedback): Using IPv4 VIPs on PPPoE interfaces with ``if_pppoe`` causes looping
Applied in changeset commit:62b1bc8b4b2606d3b20a48a853ef373ff1d71e26. Marcos M
03:40 PM Revision 62b1bc8b: Avoid loop between pppoe-handler and rc.newwanip. Fix #16235
Once the PPPoE client receives the interface address an ADDR_ADD DEVD
event triggers pppoe-handler which ends up call... Marcos M
03:03 PM Bug #16240 (New): the problem with the driver for the intel i810 pfsense 2.7.2
Hi,We've got a problem - with the driver for the intel i810 network card is that the VLAN ID crashes after reconfigur... Ivan Belov
02:55 PM Bug #16239 (New): after updating the server to pfsense 2.8.0 from pfsense 2.7.2, the server freezes tightly on boot

Good afternoon, we use a ThinkSystem SR630 V3 server, it has a QLogic QLE2772 32Gb 2-Port PCIe Fibre Channel Adapte... Ivan Belov

06/05/2025

11:57 PM pfSense Plus Bug #16238 (Confirmed): Clearing a P1's Life Time field does not restore default value
VPN > Ipsec: Add P1.
Create a new P1. The default Life Time is 28800, and the Rekey & Rand times are created based... Chris W
10:36 PM Regression #16237: Drivers that load firmware can cause a kernel panic.
If you are hitting this issue note the affected device if it's not listed above.
To work around it you can:
* Remove... Steve Wheeler
10:30 PM Regression #16237 (Confirmed): Drivers that load firmware can cause a kernel panic.
In recent FreeBSD 15 builds drivers have been moving firmware out of the code to load it when it attaches. This affec... Steve Wheeler
09:32 PM pfSense Packages Bug #16185 (Closed): FreeRADIUS HA sync changes may be overwritten by the system config XMLRPC sync
This will be fixed once https://redmine.pfsense.org/issues/16231 is implemented. Marcos M
09:27 PM Bug #16235 (Pull Request Review): Using IPv4 VIPs on PPPoE interfaces with ``if_pppoe`` causes looping
Marcos M
09:26 PM Bug #16235: Using IPv4 VIPs on PPPoE interfaces with ``if_pppoe`` causes looping
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1225 Marcos M
08:58 PM Bug #16235 (Resolved): Using IPv4 VIPs on PPPoE interfaces with ``if_pppoe`` causes looping
Originally reported on the forum:
https://forum.netgate.com/topic/197369
IPv4 VIPs are added by rc.newwanip via l... Marcos M
09:04 PM Bug #16236 (New): IPV6 Neighbor Solicitation on WAN interface used as part of Neighbor Unreachability Detection, causes the interface to stop forwarding traffic briefly
It appears that the 2.8.0 by default has setting of the NDP on the NICS enabled with a period of 30 secs. I have obse... Raj Vadi
08:15 PM Feature #16234 (Not a Bug): Feature Request: Support for tls-cert-bundle in pfSense WebGUI
You likely need to add @server:@ to the start of your custom options, as is mentioned in the documentation:
https:... Jim Pingle
08:03 PM Feature #16234 (Not a Bug): Feature Request: Support for tls-cert-bundle in pfSense WebGUI
Dear pfSense Support Team,

I am a pfSense user and have successfully configured DNS over TLS (DoT) using Unboun... Robert S
07:02 PM pfSense Packages Regression #14189: pfBlocker-NG: HA-Sync is not working
Since the backup router (for instance) runs its cron job and re-adds a list that was removed on the primary, without ... Steve Y
06:42 PM pfSense Packages Bug #16233 (Confirmed): Authentication for LDAP Available without Authorization
The options for defining an LDAP server requires Authorization to be checked, even if Authentication is not checked, ... Kris Phillips
05:15 PM Bug #16232 (New): Swap fails to activate on updated pfSense 2.8.0 when multiple swap partitions exist
I have an older pfSense install that I upgraded multiple times. It uses a 2 disk ZFS mirror for the normal data and a... Grimson Gretzleburg
04:25 PM pfSense Packages Todo #16231 (Resolved): Update packages to use the XMLRPC plugins for HA
A few new XMLRPC plugins have been introduced which address the race condition and improve maintainability - "see her... Marcos M
02:34 PM pfSense Packages Bug #14409: pfBlockerNG Cron Redundantly Updates pfSense Configuration When DNSBL is Disabled Due to Faulty Virtual IP Count
Noting this is still an issue, and also given the bug in Plus 24.03/24.11 where pfSense doesn't prune the configurati... Steve Y

06/04/2025

07:18 PM pfSense Packages Bug #16229 (Confirmed): Snort cannot run on if_pppoe interfaces
Sayed Mohammad Badiezadegan
06:31 PM pfSense Packages Bug #16229 (Confirmed): Snort cannot run on if_pppoe interfaces
Snort will fail to start if enabled on a PPPoE interfaces using the new if_pppoe module:... Steve Wheeler
07:08 PM Feature #16230 (New): KEA DHCP server needs log verbosity settings in GUI
Created on a customer's request.
There are config parameters that can be implemented in the current config.xml for t... Georgiy Tyutyunnik
04:04 PM Revision 09d9ca3a: Write to the correct file in backup_config()
Fix regression from 1c033a063dfefae07edce13736f7a00b734aa5d9 Marcos M
01:53 PM Feature #16228 (Needs Patch): Support multiple NAT64 prefixes via DNS64/PREF64
It is possible to return multiple NAT64 prefixes - ie multiple AAAA records returned pointing to each prefix. The ser... Bert Smith

06/03/2025

08:47 PM Feature #16227: Add DynDNS Provider - Infomaniak
PR: https://github.com/pfsense/pfsense/pull/4735 Fabio Gabrielli
08:44 PM Feature #16227 (Pull Request Review): Add DynDNS Provider - Infomaniak
Added the provider Infomaniak to the list of dyndns services.
Tested for IPv4.
More about the API: https://faq.in... Fabio Gabrielli
07:31 PM Feature #16212 (Feedback): Allow custom ZFS pool names
Marcos M
04:45 PM pfSense Plus Bug #16226 (Confirmed): ZFS Error Messages Missing from Widget
We have a Netgate 6100 which has developed some ZFS errors, but they aren't picked up by the widget.
!clipboard-2025... Matthew Fearnley
04:41 PM Bug #16221 (Not a Bug): Other interfaces are not demoted if a CARP interface uses DHCP resulting in split-brain operation
Marcos M
03:05 PM pfSense Packages Bug #16225 (Confirmed): Telegraf service does not restart after change of settings

Documented here: https://forum.netgate.com/topic/197682/telegraf-service-not-starting-after-change-of-setting
Th... Patrik Stahlman

06/02/2025

09:12 PM Bug #16221 (Pull Request Review): Other interfaces are not demoted if a CARP interface uses DHCP resulting in split-brain operation
This has been an issue at least since 23.01. The issue was not reproducible for the second WAN on #note-1 because the... Marcos M
08:43 PM Feature #16224 (New): Enhance state filtering and state killing abilities
The filtering capability of @Diagnostics > States > States@ is very limited and cannot handle multiple conditions.
... Andrew Almond
04:57 PM Bug #16217: Memory exhaustion in ``kea2unbound`` when pfBlockerNG DNSBL is enabled in "Unbound mode" instead of "Unbound python mode"
@kea2unbound@ is new in CE 2.8.0. Kea did not have DNS registration functionality before.
You can easily switch pf... Jim Pingle
04:54 PM Bug #16217: Memory exhaustion in ``kea2unbound`` when pfBlockerNG DNSBL is enabled in "Unbound mode" instead of "Unbound python mode"
Jim Pingle wrote in #note-1:
> Priority changed from Normal to Very Low
Should this be a HIGH protity. If I ... Troy R
04:51 PM Bug #16217: Memory exhaustion in ``kea2unbound`` when pfBlockerNG DNSBL is enabled in "Unbound mode" instead of "Unbound python mode"
Why did this change in 2.8.0? I never had errors about memory before the update.. Troy R
07:37 AM Bug #16128: if_pppoe: PHP password handling
Passwords which begin with exclamation mark (!) are broken see:
https://forum.netgate.com/post/1216202
The prop... Scott Ashcroft
03:12 AM pfSense Packages Bug #16223 (Duplicate): PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes)
Duplicate of #16217 Jim Pingle
03:04 AM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes)
What you should be doing here is setting pfBlockerNG to use Unbound mode if you are loading a lot of large lists. Steve Wheeler
02:41 AM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes)
After doing all that I now learned..
!clipboard-202506012137-i4swt.png!
System > Advanced > Miscellaneous > PHP Se... Troy R
02:28 AM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes)
So aftering giving stuff in ChatGPT to lookout from that error and my log PlfBlockerNG Update.log
It told me...
`... Troy R
01:20 AM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes)
I had disabled PFBlocker and didn't have the error when restarting unbound.
Turned PFblocker back on. Had it upd... Troy R
02:15 AM Feature #14483: Conditionally reconfigure IPsec VTI interfaces only when necessary while applying IPsec changes
Any update on this? Mike Moore
02:14 AM Bug #16118: Expand view of system generated alias in GUI
Any update on this? Mike Moore

06/01/2025

10:03 PM pfSense Packages Bug #16223: PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes)
It seems to be triggered by pfBlockerNG. It worked just fine in the old verison. But after updating to 2.8.0 a few ... Troy R
08:48 PM pfSense Packages Bug #16223 (Duplicate): PHP Fatal error Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes)
Crash report begins. Anonymous machine information:
amd64
15.0-CURRENT
FreeBSD 15.0-CURRENT #1 RELENG_2_8_0-n25... Troy R
10:38 AM pfSense Packages Bug #16222: 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot
Kris Phillips wrote in #note-2:
> F. M. wrote in #note-1:
> > After further troubleshooting, I discovered that, for... F. M.
01:49 AM pfSense Packages Bug #16222: 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot
F. M. wrote in #note-1:
> After further troubleshooting, I discovered that, for some reason, the file /var/etc/frr/f... Kris Phillips
05:31 AM pfSense Plus Bug #16219: pfSense IPsec VTI Mode Incompatible with Juniper Traffic Selector Requirements
Thanks for taking care of the ticket.
Let me clarify. I don't intend to use traffic selector under VTI mode.
Th... Henry Zhou
01:43 AM pfSense Plus Bug #16219 (Incomplete): pfSense IPsec VTI Mode Incompatible with Juniper Traffic Selector Requirements
If you're using traffic selectors, you want Policy-mode in pfSense Plus. VTIs don't use traffic selectors, so I'm co... Kris Phillips
05:08 AM Regression #16209: AutoConfigBackup entries show incorrect timestamps
Tested on 25.03-BETA (amd64)
built on Tue Apr 29 17:29:00 +04 2025
FreeBSD 15.0-CURRENT
Patch is working
before
... aleksei prokofiev
01:50 AM pfSense Docs Correction #16207 (Confirmed): System --> Advanced --> Netgate Nexus. Help link lands on docs main page.
I can confirm this behavior. Tested on latest 25.03 builds.
Marking Confirmed. Kris Phillips
12:35 AM pfSense Packages Todo #16091 (Resolved): tailscale package requires updates
I can confirm both versions below offer Tailscale 0.1.8 which uses tailscale-1.82.5. Marking resolved.... Christopher Cope

05/31/2025

09:54 PM Bug #16221 (Confirmed): Other interfaces are not demoted if a CARP interface uses DHCP resulting in split-brain operation
I can confirm this on... Christopher Cope
03:00 AM Bug #16221 (Not a Bug): Other interfaces are not demoted if a CARP interface uses DHCP resulting in split-brain operation
Expected behavior:
When you unplug an interface and it goes from MASTER to INIT on a primary, all other interface... Kris Phillips
08:04 PM pfSense Packages Bug #16220 (Confirmed): Wireguard widget default refresh interval is invalid
I can confirm this on... Christopher Cope
04:42 PM pfSense Packages Feature #16089: Add packages for Zabbix 7.2 agent and proxy
Tested in latest 25.03 builds. Zabbix 7.2 packages are still not present. Kris Phillips
04:13 PM pfSense Packages Bug #16222: 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot
After further troubleshooting, I discovered that, for some reason, the file /var/etc/frr/frr.conf is missing the line... F. M.
02:39 PM pfSense Packages Bug #16222 (New): 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot
Since upgrading my pfSense with FRR, OSPF no longer seems to function correctly.
I use site-to-site OpenVPN tunnel... F. M.
08:41 AM pfSense Docs Correction #16208 (Resolved): System --> Update. Help link lands on package manger page.
Tested against:... Danilo Zrenjanin

05/30/2025

07:21 PM pfSense Packages Bug #16220 (Confirmed): Wireguard widget default refresh interval is invalid
The default widget refresh interval was changed to 20 ticks in this commit: https://github.com/pfsense/FreeBSD-ports/... Grant Emsley
06:25 PM pfSense Plus Bug #16219 (New): pfSense IPsec VTI Mode Incompatible with Juniper Traffic Selector Requirements
When configuring an IPsec VPN in VTI (route-based) mode between pfSense (using strongSwan) and Juniper firewalls (e.g... Henry Zhou
05:43 PM pfSense Plus Bug #14772: PFsense Plus doesn't work with AWS new Instance Metadata Service (IMDSv2)
Changing from installer category as it isn't related to the installer Reid Linnemann
05:33 PM pfSense Plus Bug #16176 (Feedback): Config restored during install can be overwitten by hardware specific default values
This is fixed as of https://gitlab.netgate.com/pfSense/installer/-/commit/7076078812bf56d62a326fec8815e255d32f4b8c Reid Linnemann
05:04 PM Feature #16110: Automatically check ``Allow IP options`` when IGMP is selected
patch works as expected
tested on:
25.07-DEVELOPMENT (amd64)
built on Thu May 29 19:08:00 UTC 2025
FreeBSD 15.0-C... Georgiy Tyutyunnik
03:51 PM Bug #16124: Kernel Panic on PCI WiFi Passthrough (AC7265)
Just hit this as well on the upgrade from 2.7.2 to 2.8.0 running on Proxmox (similar to the above ESXi report).
Kerne... MIchael K
03:14 PM Bug #16124: Kernel Panic on PCI WiFi Passthrough (AC7265)
Same problem with another WiFi card after upgrade from 2.7.2 to 2.8.0 or new install
Hope there is a way to ignore... Manuel Himmler
03:26 PM Feature #16212 (Ready To Test): Allow custom ZFS pool names
Marcos M
02:04 PM Feature #16215: Allow matching on IP Options with firewall match rules
patch allows "match" rule creation with IP options enabled. resulting floating rule logs igmp traffic
tested on
25.... Georgiy Tyutyunnik
01:08 PM Bug #16218: All-Inkl Dynamic DNS responses are not parsed correctly
PR: https://github.com/pfsense/pfsense/pull/4734 Christoph Filnkößl
01:06 PM Bug #16218 (Pull Request Review): All-Inkl Dynamic DNS responses are not parsed correctly
All-Inkl response check does not work properly on:
* 200 -> "good" is enough, IP is not contained in response if it ... Christoph Filnkößl
12:00 PM pfSense Packages Feature #14423: haproxy 2.7 QUIC support (+ maybe LUA 5.4?)
Pawel Piaskowy wrote in #note-3:
> Guys did you add USE_QUIC=1 to haproxy?
>
> [...]
>
> I need to give it a t... Bert Smith
06:24 AM Bug #15746: IPv6 is not deprecated on PPPoE Periodic Reset
This issue still persists with pfsense 2.8.0 and since most European isps handout dynamic prefixes will become more o... Johannes Rohde
02:22 AM pfSense Packages Bug #11797: Traffic Totals lost upon reboot when using a ramdisk for /var and /tmp
Confirmed still an issue as of May 2025 with pfSense CE @2.8.0@ and Status Traffic Totals package version @2.3.2_7@
... Greg Maub
02:17 AM pfSense Packages Bug #11054: Check Client Certificate CN not working as described
Confirmed still an issue as of May 2025 with pfSense CE @2.8.0@ and FreeRADIUS package version @0.15.14@
Forum post ... Greg Maub
 

Also available in: Atom