Activity

30 days up to

User

Subprojects

Activity

From 06/21/2025 to 07/20/2025

07/20/2025

04:41 PM Regression #16317 (In Progress): In 2.8.1 beta the if_pppoe driver no longer supports altq.: Marcos M
01:33 AM Regression #16317 (Confirmed): In 2.8.1 beta the if_pppoe driver no longer supports altq.: Not much to test here, since this has a clear system message stating it's unsupported. Might be something we can imp... Kris Phillips
02:32 AM pfSense Plus Bug #16323: Serial/Console Baud Rate Cannot Be Changed: confirmed serial speed is not respected once changed, XG-7100 on 25.07.r.20250715.1733 Jordan G
01:31 AM Bug #16246 (In Progress): `cxgbev` driver is missing in pfSense, but present in FreeBSD: I can confirm this driver is not present for virtual Chelsio NICs using SRIOV.
This should be included in pfSense ... Kris Phillips
01:05 AM Bug #16299: remove "Drop Old UDP Queries" from advanced DNS resolver settings, is linux only, on unbound build shipped with pfSense: following application of above changeset, the option is no longer present in the dns resolver/advanced configuration Jordan G

07/19/2025

11:47 PM pfSense Plus Bug #16309 (Confirmed): status_interfaces.php includes VLAN switchport information even when no physical switch is present on the platform (the config.xml was imported from platform with switch): confirmed on 8200 VLAN interfaces display switch port configuration on platforms without a hardware switch. Bryan Allen
11:13 PM pfSense Plus Bug #16323 (Confirmed): Serial/Console Baud Rate Cannot Be Changed: Confirmed this on 6100 25.07.r.20250715.1733.1500029
changed serial speed to 57600 > restarted firewall > attempted... Bryan Allen
04:26 AM Bug #16246: `cxgbev` driver is missing in pfSense, but present in FreeBSD: Here is a potential fix: https://github.com/pfsense/FreeBSD-src/pull/57
Though I have no idea how to build and test ... Nazar Mokrynskyi

07/18/2025

11:50 PM Feature #16325 (Feedback): Add support for labels in configuration rules: Applied in changeset commit:82db67f6a2e09658892f1f68c3c18e5621ff5c9f. Marcos M
11:22 PM Feature #16325 (Feedback): Add support for labels in configuration rules: Rules in config.xml are currently identified by their rule ID (uniqueness is not enforced) and description. These are... Marcos M
11:36 PM Revision 82db67f6: Refactor rule labels. Implement #16325: - Define labels as key/value pairs.
- Add new functions to handle labels defined in config.xml rules.
- Support gener... Marcos M
11:03 PM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services: That's the intended behavior, and indeed the option to force IPv4 for IPv6 updates is available for such cases. There... Marcos M
10:38 AM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services: Hi, I'm not sure if this is the proper place to post this, but it seems like https://redmine.pfsense.org/issues/16251... Joshua M
10:16 PM Revision ac89aed3: Also check the pf config file when checking if a filter reload is needed: This serves to keep the pf config file in an expected state in case it was
modified by some other method.
Followup t... Marcos M
07:07 PM pfSense Plus Bug #16323: Serial/Console Baud Rate Cannot Be Changed: Alex Ellington wrote:
> Despite whatever baud rate is set in the settings (System->Advanced->Admin Access), successfu... Sayed Mohammad Badiezadegan
06:25 PM pfSense Plus Bug #16323 (Confirmed): Serial/Console Baud Rate Cannot Be Changed: Despite whatever baud rate is set in the settings (System->Advanced->Admin Access), successful serial connections onl... Alex Ellington
06:43 PM Feature #16324 (New): If AAA Server Used - Disable Local Account: If a AAA server (e.g., Radius) is the main authentication method, and someone gains access to local account credentia... Alex Ellington
05:03 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Reid Linnemann wrote in #note-3:
> Nothing in that config seems out of place, the dhcpd and resolver conf are the sa... Sayed Mohammad Badiezadegan
03:53 AM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Nothing in that config seems out of place, the dhcpd and resolver conf are the same as any other install. What are th... Reid Linnemann
04:33 PM Bug #16322 (New): It's possible for the CARP VIP to be preferred in find_interface_ip(): find_interface_ip() in /etc/inc/interfaces.inc has a flush parameter, but that only seems to ignore the $interface_ip... Christopher Cope
04:18 PM Revision 876c32bc: Remove unneeded core repo since we pkg add them directly: Brad Davis
03:45 PM Bug #16274: UPnP IGD & PCP status page does not show "disabled" message after the service has been enabled then disabled: Fixing target, commit was already in Plus 25.07 and CE 2.8.1 branches. Jim Pingle
03:44 PM Bug #16265: PPPoE IPv6 gateways are unavailable without Router Advertisements when using ``if_pppoe``: Fixing target, commit was already in Plus 25.07 and CE 2.8.1 branches. Jim Pingle
03:41 PM Feature #16321 (Feedback): Support 2.5G SGMII (SFP GPON ONT) in ``bxe`` driver (QLogic NetXtreme II BCM57810): Enables support for 2.5Gbps with GPON SFP on QLogic NetXtreme II BCM57810.
Adding for tracking, relevant commit is... Jim Pingle
03:38 PM Bug #16320 (Resolved): Multiple removable filesystem panics: Several fixes went in for panics from removable filesystems, this is just for tracking purposes as the commits are al... Jim Pingle
03:31 PM Bug #16319 (Resolved): Kernel panic in OpenVPN ``if_ovpn`` due to use-after-free of mbuf: Fix is already merged, this is for tracking purposes.
Relevant src commits:... Jim Pingle
03:24 PM Bug #16318 (Resolved): Panic in ``pf`` if the declared packet length is longer than the actual packet: Fix is already merged, this is just for tracking.
Relevant src commit:... Jim Pingle
03:15 PM Bug #16101 (Resolved): Kernel Panic in ``if_qlnxe`` kernel module when loaded via ``kldload``: The commit for this was merged into Plus 25.07 (@a61e724cd35ec027584e7a03fdc36edb740b7415@) and CE 2.8.1 (@780a99fddd... Jim Pingle
03:08 PM Bug #16276: The ``ng_etf(4)`` kernel module is missing from CE installations: Relevant src commits:... Jim Pingle
03:05 PM Bug #16299 (Feedback): remove "Drop Old UDP Queries" from advanced DNS resolver settings, is linux only, on unbound build shipped with pfSense: Applied in changeset commit:7b9907f18adc7bc6d83ab1652674a6e5059555d7. Christian McDonald
02:58 PM Regression #16285 (Feedback): ``syslogd`` does not respect the configured IP address binding: The commit that fixes this is in the Plus 25.07 and CE 2.8.1 branches, so it should be ready for testing. Jim Pingle
02:55 PM Revision 7b9907f1: unbound: remove sock-queue-timeout until supported upstream. Fixes #16299: Christian McDonald
02:25 PM Bug #12947 (Resolved): Old IPv6 addresses may continue to be used after DHCP or RA changes: Jim Pingle
02:25 PM Regression #16196 (Resolved): System update page shows version string with extra parts: Jim Pingle
02:25 PM Bug #16103 (Resolved): PPPoE WAN loses IPv4 addresses on ``IPV6CP`` ``LayerDown`` events: Jim Pingle
02:24 PM pfSense Packages Bug #16094 (Resolved): pfBlocker-NG null blocking SERVFAIL: Jim Pingle
02:24 PM Bug #16081 (Resolved): Panic accessing ``sysctl`` OID ``net.inet.ip.nhdispatch`` with an INVARIANTS kernel: Jim Pingle
02:24 PM Bug #16011 (Resolved): AutoConfigBackup remote revision timestamps may not be unique due to batch uploads: Jim Pingle
02:23 PM Bug #12249 (Resolved): Long configuration revision reasons can cause AutoConfigBackup upload to fail: Jim Pingle
02:04 PM Regression #16317: In 2.8.1 beta the if_pppoe driver no longer supports altq.: Edit: I am on 2.8.1.b.20250717.1752 Grimson Gretzleburg
02:01 PM Regression #16317 (Feedback): In 2.8.1 beta the if_pppoe driver no longer supports altq.: I just updated to 2.8.1 beta and had to switch back to mpd5 as the firewall rules refused to load with the following ... Grimson Gretzleburg
01:56 PM Bug #16232: Swap fails to activate on updated pfSense 2.8.0 when multiple swap partitions exist: This bug still exists on the 2.8.1 beta. Grimson Gretzleburg
08:28 AM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: My comment #2 might stem from a misunderstanding of how the limiters are implemented. I have done some more testing... Patrik Stahlman
02:00 AM Bug #16316 (New): Issue with multi-language support for the configuration interface: As the notes in services_ntpd_gps.php suggest, you can modify it to support multi-language display:
Before modific... opn wall

07/17/2025

10:41 PM Bug #16300: unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: Thanks for the troubleshooting. Before a fix is implemented it's best to understand what's happening and how the adde... Marcos M
09:36 PM Bug #16300: unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: Here is the final patch which so far is working clean, the earlier patch left me with duplicate dhcp6c processes, but... Chris Collins
09:23 PM pfSense Docs Todo #16315 (Confirmed): Feedback on Configuration — Advanced Configuration Options — Miscellaneous: Marking confirmed. It would be good to update the docs to reflect this option. Christopher Cope
06:47 PM pfSense Docs Todo #16315 (Confirmed): Feedback on Configuration — Advanced Configuration Options — Miscellaneous: *Page:* https://docs.netgate.com/pfsense/en/latest/config/advanced-misc.html
*Feedback:*
Page seems to be missing... Steve Y
05:21 PM pfSense Packages Bug #15410: cache_object://URL Scheme is removed in Squid-6: This is the same with version 2.8.0 release for CE everything works but the status page.....This is tested in UTM vir... Jonathan Lee
03:50 PM Revision 9b0429de: A zero prefix length is invalid and really means /32: Brad Davis
02:19 PM Bug #16248 (Waiting on Merge): QLink/Marvell 41000 NIC bug: This looks to be fixed by this: https://reviews.freebsd.org/D51351
Local test builds look good. Steve Wheeler

07/16/2025

09:26 PM Revision a0baea95: pppoe_handler: Remove ipv6 router workaround: With changes to if_pppoe, we not have an associated destination address for the
p2p address and the workaround is no ... Reid Linnemann
08:14 PM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: I re-ran the test with this sequence:
# disabled all four limiters (LAN/WAN)
# reset the firewall state table
# ... Patrik Stahlman
07:57 PM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: True, I might not have done that for this test as I didn't consider any connection being involed in the manual deacti... Patrik Stahlman
07:18 PM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: Technically speaking, you're supposed to reset the state table after any change to limiters/shaper queues otherwise e... Jim Pingle
07:00 PM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: I'm not sure if there's been any work on this for the RC (25.07.r.20250709.2036) but I noticed something else today... Patrik Stahlman
08:05 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Reid Linnemann wrote in #note-1:
> I'll need to know a little more about the configuration, can you submit a config.... Sayed Mohammad Badiezadegan
07:38 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: I'll need to know a little more about the configuration, can you submit a config.xml with any specifics that are priv... Reid Linnemann
06:54 PM Revision ea7273ac: pkg: disable FreeBSD-kmods repo: Christian McDonald
06:09 PM Revision bb26a4ce: VIP corrections: Validate IPv4 for proxyarp and respect saved vip type: Reid Linnemann

07/15/2025

11:11 PM Feature #16311 (New): Authentication Server and Group Configuration: It would be good if the authentication server was specified for the group. System > User Manager > Groups
In som... Alhusein Zawi
06:33 PM pfSense Docs Correction #16310 (Closed): Placeholder name in Instance Registration docs: Fixed: https://gitlab.netgate.com/docs/pfSense-docs/-/commit/ba4b8c4efd9d4fc0aab2ae1b8254173ded49e499 Jim Pingle

07/14/2025

06:57 PM pfSense Docs Correction #16310 (Closed): Placeholder name in Instance Registration docs: The page at https://docs.netgate.com/pfsense/en/latest/nexus/mim/registration.html#register-instance-with-controller ... Max Leighton

07/09/2025

11:29 PM pfSense Plus Bug #16304 (New): Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: I set up a Netgate 2100 (v24.11) from the factory default to a simple NAT router via a Serial console only. (Not GUI)... Sayed Mohammad Badiezadegan
08:00 PM Bug #16303 (Closed): MultiWAN Gateway Group Not updating: Environment:
Dyndns: Profile Custom (duckdns).
Firewall State Policy -> Floating states.
Gateway group with two WA... Marcelo Cury
04:30 PM pfSense Plus Bug #16302 (Incomplete): Thermal Sensor date range not correct: Resetting the RRD data resolved this issue. It's possible there was corrupted or damaged RRD data and resetting it s... Kris Phillips
04:24 PM pfSense Plus Bug #16302: Thermal Sensor date range not correct: Please find the output for command "ls -ls /var/db/rrd/system-sensors.rrd"
873 -rw-r--r-- 1 nobody wheel 2331368 ... Anil Kumar
04:12 PM pfSense Plus Bug #16302 (New): Thermal Sensor date range not correct: Kris Phillips
04:01 PM pfSense Plus Bug #16302 (Feedback): Thermal Sensor date range not correct: Check that the thermal data is still being updated:... Steve Wheeler
02:09 AM pfSense Plus Bug #16302: Thermal Sensor date range not correct: This is clearly not a release stopper; but it is a bug and we have at least 2 screenshots. Please re-open for tracki... Nathan Skoglund
02:07 AM pfSense Plus Bug #16302: Thermal Sensor date range not correct: As of Jul 8, I can reproduce this bug.
Status > Monitoring > defaults to processor utilization. Set to 1 year. Up... Nathan Skoglund
01:57 PM Bug #16019: Kea can unintentionally attempt to spawn multiple processes and fail: Peter N wrote in #note-12:
> Hope it may help.
Thanks. We do believe the fix we have in 25.07 resolves this :) Yo... Christian McDonald
06:56 AM Bug #16019: Kea can unintentionally attempt to spawn multiple processes and fail: After a search and landing on this bug submission.Then following the thread seems like reproducibility is sporadic. ... Peter N

07/08/2025

08:07 PM pfSense Plus Bug #16302 (Rejected): Thermal Sensor date range not correct: I checked this feature and confirmed that there is no problem with the latest firmware, even if I set it for 6 months. Sayed Mohammad Badiezadegan
06:31 PM pfSense Plus Bug #16302 (Resolved): Thermal Sensor date range not correct: Thermal Sensor date range is NOT correct. When we select a date range 6 months, it always shows data of Year 2023 Anil Kumar
02:55 PM Bug #15973 (Confirmed): Kea DHCP server crashes on 3100 (32bit ARM) every 10 days or so post 24.11 upgrade: There may not be a viable fix for this in arm32.
For now 3100 users are recommended to use ISC dhcpd. Steve Wheeler
11:58 AM pfSense Packages Bug #16301 (New): Telegraf stopps service over night: Hi,
I have installed two pfSense CE editions (vers. 2.8) with high availability configured and telegraf installed.... Ludwig Bayerlein
11:37 AM Bug #15770: Limiter Limits Whole Gateway instead of Single IP: I believe I have the same issue when running 2.8
It looks like the limiter masks are applied after NAT when using ... Ivan Konash

07/07/2025

07:01 PM Bug #16300: unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: I made this patch which seems to make it work automatically now.
@--- /etc/inc/interfaces.inc 2025-05-20 15:25... Chris Collins
06:34 AM Bug #16300: unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: Ok I have a done a little more testing, so the dhcp6c client is not staying in a running state, it is supposed to sta... Chris Collins
06:17 PM Bug #16293: Add input validation when deleting a gatway used by policy routing rules: this is a bug. Jim Thompson
03:22 PM Bug #16194 (Confirmed): IPv6 ICMP firewall log entries marked with protocol "Options" instead of ICMPv6: This is still happening, but now I was able to reproduce it on 25.07 (was 25.03). It's not every ICMPv6 just certain ... Jim Pingle

07/06/2025

11:15 PM Revision 8b6ab9b9: Fix thermal sensor threshold values: Steve Wheeler

07/05/2025

10:34 PM Todo #16291 (Feedback): Relocate Kea control socket and lease database: dylan mendez
10:18 PM Todo #16291: Relocate Kea control socket and lease database: It's working in the latest development version
!clipboard-202507051618-9vhl5.png!
dylan mendez
12:13 AM Feature #10843: Allow user manager settings to specify multiple authentication servers: This would be nice. I ended up using haProxy to make my LDAP servers redundant, but the secondary firewall in our CA... Maximillian Carper

07/04/2025

03:42 PM pfSense Plus Bug #13569: Restarting an OpenVPN server running on a CARP VIP in an HA cluster can disrupt unrelated TCP states: Also a problem on pfSense CE 2.8.0 Bernhard Schmidt
12:52 PM Bug #16300: unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: contents of /var/etc/dhcp6_wan_script.sh
#!/bin/sh
# This shell script launches /etc/rc.newwanipv6 with a interfa... Chris Collins
12:51 PM Bug #16300: unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: Ok I have now tested this with the patch that fix the loop.
The IPv6 doesnt get assigned, here is latest log entries... Chris Collins
12:21 PM Bug #16300 (New): unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: Using a dual stacked ISP who assign a /128 IPv6 to the PPPoE interface, which works as expected on mpd PPPoE.
I al... Chris Collins
12:13 PM Bug #16235: Using IPv4 VIPs on PPPoE interfaces with ``if_pppoe`` causes looping: I have confirmed when removing the IPv4 alias, although it stops the looping the IPv6 doesnt get assigned due to an e... Chris Collins
10:40 AM Bug #16235: Using IPv4 VIPs on PPPoE interfaces with ``if_pppoe`` causes looping: Link here to my post on the forum, in case anything new is there.
https://forum.netgate.com/topic/198027/if_pppoe-... Chris Collins
10:37 AM Bug #16235: Using IPv4 VIPs on PPPoE interfaces with ``if_pppoe`` causes looping: Hi just to add here, and I can make a new issue if its the preference, this also happens on DHCP6 IPv6 as well, pleas... Chris Collins
10:33 AM Bug #16299 (Feedback): remove "Drop Old UDP Queries" from advanced DNS resolver settings, is linux only, on unbound build shipped with pfSense: I had this setting configured to 3 for a while to match suggestion in unbound documentation, then by accident noticed... Chris Collins

07/03/2025

09:54 PM Revision 453d102d: kea: relocate kea lease database path for Kea v2.6.3+. For #16291: Christian McDonald
09:22 PM Todo #16291 (Confirmed): Relocate Kea control socket and lease database: Kea still does not start - it's now complaining about permissions. Marcos M
04:35 PM Todo #16291: Relocate Kea control socket and lease database: Applied in changeset commit:b5b48d1afaeacffd8248d99e412a27b00c1b9c1b. Christian McDonald
04:31 PM Todo #16291 (Feedback): Relocate Kea control socket and lease database: Fixed in https://gitlab.netgate.com/pfSense/pfSense/-/commit/b5b48d1afaeacffd8248d99e412a27b00c1b9c1b Christian McDonald
08:30 PM Revision fd59ad09: kea: control socket path permissions must now be 750. For #16291: Christian McDonald
07:32 PM Revision 4010a072: kea: fix some references to the old kea control socket path. For #16291: Christian McDonald
04:28 PM Revision b5b48d1a: kea: relocate control socket to /var/run/kea. Fixes #16291: Christian McDonald
03:38 AM Bug #16298 (New): Cannot create multiple DHCPv6 reservations for hosts with multiple interfaces: If you try to create multiple DHCPv6 reservations for a host with multiple interfaces, it's possible to create one re... Daryl Morse
03:21 AM Feature #16297 (New): GUI should offer to remember DHCPv4 / DHCPv6 sort preferences: The GUI should offer to remember sort preferences where lists are displayed. Examples of this are DHCPv4 / DHCPv6 set... Daryl Morse
12:30 AM Bug #16296: NAT64 traffic originating on OpenVPN interfaces not routing.: It's likely there's a configuration issue. Please open a thread on the forum for further discussion and troubleshooting. Marcos M

07/02/2025

09:24 PM Bug #16296: NAT64 traffic originating on OpenVPN interfaces not routing.: Assigned interface is an OpenVPN server.
Rule for the vpn interface:
pass in quick on ovpns4 reply-to (ovpns4 2... Bert Smith
06:48 PM Bug #16296: NAT64 traffic originating on OpenVPN interfaces not routing.: Is the assigned interface for an OpenVPN server, or OpenVPN Client configuration? It would also help to see the relev... Marcos M
11:07 AM Bug #16296: NAT64 traffic originating on OpenVPN interfaces not routing.: Note: identical rules applied to a standard non-OpenVPN interface are working correctly. Bert Smith
11:02 AM Bug #16296 (New): NAT64 traffic originating on OpenVPN interfaces not routing.: I have an OpenVPN interface active and then assigned to an interface under interfaces/assignments.
There is then a... Bert Smith
07:41 PM Revision ada367cd: Merge pull request #4737 from Self-Hosting-Group:service-fixes: Marcos M
07:37 PM Bug #16194 (Feedback): IPv6 ICMP firewall log entries marked with protocol "Options" instead of ICMPv6: It's working correctly for me on pfSense-25.11.a.20250628.0006. Marcos M
06:15 PM pfSense Packages Bug #16288: pfblockerng.inc filterlog process is consuming large amounts of cpu: I'm happy to provide more information, but I'm not really sure what would be useful. Orion Poplawski
06:12 PM pfSense Packages Bug #16288 (Incomplete): pfblockerng.inc filterlog process is consuming large amounts of cpu: Marcos M
06:08 PM Feature #16286 (Rejected): pfSense Firewall Alias List API: A native method already exists to externally manage the contents of aliases. Though the update frequency control is n... Marcos M
04:19 PM Revision 146391aa: kea2unbound: use the new unbound fast-reload feature in v1.23: Christian McDonald
09:57 AM pfSense Packages Feature #16295 (New): [FEATURE] Set ecdh_curve: Hello,

We would like to be able to configure the "ecdh_curve" parameter of Freeradius (for IPSec VPN use), but ... Stéphane CHAMLEY
09:07 AM Bug #16293: Add input validation when deleting a gatway used by policy routing rules: Tested on 25.07-BETA (amd64)
built on Sat Jun 28 0:06:00 UTC 2025
FreeBSD 15.0-CURRENT
I can confirm this behavi... aleksei prokofiev
07:50 AM pfSense Packages Bug #16294 (New): Cert Creation/Renewal DNS-Gandi LiveDNS not working with PAT Token: *Version:* 25.03-BETA (amd64) built on Tue Jun 10 18:59:00 CEST 2025
*Script affected:* usr/local/pkg/acme/dnsapi/d... ITS GS
01:28 AM pfSense Packages Feature #16089: Add packages for Zabbix 7.2 agent and proxy: Zabbix 7.4 got released today. Maxime Haché
12:00 AM Revision b4798a99: UPnP IGD & PCP: Improve help text: - Only propose compatible (CGNAT filtering test capable) STUN servers in
help, use newer wording from RFC 5389 and ... Self-Hosting-Group

07/01/2025

03:07 AM Bug #16019: Kea can unintentionally attempt to spawn multiple processes and fail: Ouch - got stung with this one today on a 24.11 unit. Can't wait for the next release to drop! → luckman212

06/30/2025

07:37 PM Bug #16293 (New): Add input validation when deleting a gatway used by policy routing rules: Deleting a gateway that is still being used for policy routing will generate an error.
/rc.filter_configure_sync... Alhusein Zawi
05:53 PM pfSense Packages Feature #16089: Add packages for Zabbix 7.2 agent and proxy: @kphillips What can be done to decrease the time for accepting routine package updates? In the past, there was some... Andrew Almond
04:05 PM Todo #16291: Relocate Kea control socket and lease database: I've got it, this is trivial to fix. Christian McDonald
03:55 PM pfSense Packages Bug #16288: pfblockerng.inc filterlog process is consuming large amounts of cpu: 3.2.0_16, which appears to be the latest. Orion Poplawski

06/29/2025

02:36 PM Bug #16246: `cxgbev` driver is missing in pfSense, but present in FreeBSD: Ping? I imagine enabling a driver must be a trivial thing to do. Nazar Mokrynskyi
02:21 PM Todo #16291: Relocate Kea control socket and lease database: As per CCope, this is caused by this:
Security: Sockets: To prevent unauthorized access and potential denial of se... dylan mendez

06/28/2025

11:17 PM pfSense Packages Feature #16089: Add packages for Zabbix 7.2 agent and proxy: Checked 25.07 builds. Package is not present still. Kris Phillips
11:15 PM pfSense Packages Bug #16288: pfblockerng.inc filterlog process is consuming large amounts of cpu: What version of pfBlockerNG are you using on 24.11? Kris Phillips
11:07 PM pfSense Packages Bug #16206 (Confirmed): Package apcupsd starts even when disabled: Tested on 25.07. This issue is still present. Kris Phillips
09:53 PM Todo #16291: Relocate Kea control socket and lease database: Changing priority as this can break stuff, even though it's development internal. Feel free to move back to Normal if... dylan mendez
09:52 PM Todo #16291 (Confirmed): Relocate Kea control socket and lease database: Tested on... Christopher Cope
09:46 PM Todo #16291 (Feedback): Relocate Kea control socket and lease database: 25.11.a.20250628.0006 does the same.
!clipboard-202506281542-dacy2.png!
2025-06-28 21:45:58.188712+00:00 kea... dylan mendez
09:37 PM pfSense Packages Regression #15159 (Resolved): XMLRPC Replication Target required even if not using it: Tested on... Christopher Cope
05:46 PM Bug #16290 (New): Diagnostics -> Authentication crashes if Shared Secret is not correct: Tested on 24.11
I added Remote Radius server into /System/User Manager/Authentication Servers and used incorrect S... Azamat Khakimyanov
05:09 PM pfSense Plus Feature #16287: IPSec does not allow to configure the full CA chain: To make it work for now, I created a hacky patch that uses @/usr/local/etc/swanctl@ as a skeleton directory to initia... Jimmy Thrasibule
11:14 AM Feature #16289 (New): Built-in NetBox importer for DNS, DHCP, etc GUI pages: How to painless importing pfSense-related data from NetBox?
(For example for DHCP, DNS, etc settings).
I mean not... Sergei Shablovsky

06/27/2025

07:31 PM pfSense Packages Bug #16288: pfblockerng.inc filterlog process is consuming large amounts of cpu: Also seem to see it on pfSense 2.7.2 - pfBlockerNG 3.2.0_8 Orion Poplawski
06:38 PM pfSense Packages Bug #16288 (Incomplete): pfblockerng.inc filterlog process is consuming large amounts of cpu: PID USERNAME THR PRI NICE SIZE RES STATE C TIME WCPU COMMAND
79068 root 1 128 0 82M... Orion Poplawski
04:06 PM pfSense Plus Feature #16287 (New): IPSec does not allow to configure the full CA chain: I'm configuring a mutual certificate authentication IPSec VPN using Let's Encrypt certificates. pfSense only allows t... Jimmy Thrasibule
12:19 PM pfSense Plus Regression #16179 (Resolved): upgradeconfig php shell script incorrectly replaces running config when Nexus is enabled.: fixed, can't reproduce this behavior on the latest dev
tested on:
25.11-DEVELOPMENT (amd64)
built on Thu Jun 19 19... Georgiy Tyutyunnik

06/26/2025

08:20 AM Bug #16250 (Resolved): Firewall rules with an interface address for the NAT64 source always use the interface itself: resolved, patch works as intended
tested on
25.11-DEVELOPMENT (amd64)
built on Thu Jun 19 19:22:00 UTC 2025
FreeB... Georgiy Tyutyunnik
07:59 AM Bug #15110: pfSense hangs when rebooting: Same Problem here with 5100 and 24.11 Manuel M.
07:44 AM pfSense Packages Regression #16261: RADIUS connection to upstream LDAP server cannot be setup over TLS: After further investigation, it looks like the LDAP TLS configuration gets generated as follows:... Didier Raboud
07:40 AM Bug #16272 (Resolved): Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP: resolved - patch works as intended
tested the patch apply/revert on
25.11-DEVELOPMENT (amd64)
built on Tue Jun 17 6:... Georgiy Tyutyunnik

06/25/2025

05:13 PM pfSense Packages Feature #16279: Support for custom DNS API: It can be just as simple as dyndns, as it's basically the same thing.
ACME when doing a dns challenge uses a stati... Bert Smith
02:00 AM Feature #16286 (Rejected): pfSense Firewall Alias List API: The objective is create a API for add and remove IPs from the black list.
A agent in the other side can operate thi... Josias L. Gonçalves

06/24/2025

06:14 PM pfSense Plus Feature #16283 (Rejected): build-in TOTP authentication feature pfSense Plus: This feature has not been implemented in CE or Plus before -- it requires FreeRADIUS or another external authenticati... Jim Pingle
12:41 PM pfSense Plus Feature #16283 (Rejected): build-in TOTP authentication feature pfSense Plus: Hello,
I’m using a Netgate 7100 with pfSense Plus 24.11. I’ve noticed that the option for TOTP authentication (Tim... Jasper Hartog
04:07 PM Regression #16285: ``syslogd`` does not respect the configured IP address binding: Also broken in 25.03/25.07
However works as expected in dev builds because of a newer upstream patch:
https://github... Steve Wheeler
03:38 PM Regression #16285 (Feedback): ``syslogd`` does not respect the configured IP address binding: When configuring remote a syslog server syslogd is invoked with the user selected interface binding if selected:
<pr... Steve Wheeler
03:11 PM pfSense Packages Feature #16284 (New): Add NetBird package: NetBird is an open-source WireGuard-based overlay network combined with Zero Trust Network Access, providing secure a... Bethuel Mmbaga
08:58 AM pfSense Packages Bug #16262: Squid "Undefined symbol "_ZTVNSt3__117bad_function_callE" after upgrade to 2.8: So it's still installable, not mentioned in the release notes of 2.7.1, 2.7.2 and 2.8.0, but just fails to start. Mos... Bernhard Schmidt
05:34 AM Bug #16281: openvpn gui bug: This problem has been fixed in 2.5.2 or 2.6. This is a new problem in 2.8. hao zhang

06/23/2025

07:00 PM Bug #16282 (New): Sticky Connections / Source Tracking table empty in dual‑WAN after upgrade to 2.8.0-RELEASE: *Description*
After upgrading from 2.7.x to pfSense 2.8.0‑RELEASE (amd64) in a dual‑WAN, load‑balanced environment, ... Enes Izzetoglu
04:26 PM pfSense Packages Feature #16279: Support for custom DNS API: With certbot there is an option: --manual-auth-hook /usr/local/bin/certbot-auth-hook.sh
does acme.sh have a similar ... Bert Smith
02:01 PM pfSense Packages Feature #16279 (Rejected): Support for custom DNS API: There are way too many variable factors involved for that to be viable. If the upstream ACME project adds something l... Jim Pingle
01:57 PM Bug #16281 (Duplicate): openvpn gui bug: There isn't much detail here but even so it seems to be a duplicate of #9344 -- same link/URL involved at least. Jim Pingle
01:38 AM Bug #16281 (Duplicate): openvpn gui bug: !clipboard-202506230936-qtxnb.png!
pfsense2.8
GUI occurs when using the Chinese language package for openvpn hao zhang
02:31 AM Bug #14613: Incorrect wireguard control panel status management: 2.8.0 This problem is reproduced again hao zhang

06/22/2025

04:25 PM pfSense Packages Bug #16206: Package apcupsd starts even when disabled: still seeing this with 25.03.b.20250610.1659, although it seems re-installing the package with the enable daemon opti... Jordan G
12:10 PM pfSense Packages Regression #15159: XMLRPC Replication Target required even if not using it: It's not yet in the 25.11 tree. The patch can be tested individually or wait for the merge to Plus. Marcos M
01:31 AM pfSense Packages Regression #15159: XMLRPC Replication Target required even if not using it: Tested on... Christopher Cope
12:01 PM Bug #16272 (Feedback): Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP: The input validation check is intended and not an error - see the referenced issue. Marcos M
10:07 AM Todo #6727: Apple TouchID/FaceID probes for site icon files that do not exist: 24 hours later and the error returned. No changes so no idea why or why it was over a minute after login.... Rob A

06/21/2025

11:20 PM pfSense Packages Feature #16280 (New): HAProxy HTTP3/QUIC support: The current version of haproxy is 3.0 built against openssl 3.0. This version includes limited QUIC support:
https... Bert Smith
11:11 PM pfSense Packages Feature #16279 (Rejected): Support for custom DNS API: As in the subject, support specifying a custom DNS API similar to the dyndns system.
For example:
https://dns.myp... Bert Smith
08:58 PM Bug #16260 (Confirmed): Chinese (taiwan) / HK Translation using incorrect identifier on CE 2.8: Looking at/usr/local/share/locale I do see zh_TW or zh_HK
But I also had to edit the config and reboot to change t... Bryan Allen
06:35 PM Bug #16274 (Resolved): UPnP IGD & PCP status page does not show "disabled" message after the service has been enabled then disabled: Tested on... Christopher Cope
06:53 AM Bug #16274: UPnP IGD & PCP status page does not show "disabled" message after the service has been enabled then disabled: Can confirm this behavior,
Before the patch, after disabling the service:
!clipboard-202506210950-st6lr.png!
A... Lev Prokofev
06:29 PM Bug #16272 (In Progress): Input validation text for deleting a VIP within a CARP IP's subnet may reference incorrect VIP: Tested on... Christopher Cope
03:21 PM Revision 3172cadb: Fix editing interface group names: This was previously a pointer to the global config before the config
access rewrite and hence the assignment would mo... Marcos M
11:20 AM Bug #16216: [BUG?] New PPPoE module (if_pppoe) causes high "Errors Out" on WAN (Vivo Fibra): If I delete my WAN CODELQ shaper then the errors stop so the errors seems to be related to using a WAN shaper in conj... Simon Heather
08:59 AM Todo #6727: Apple TouchID/FaceID probes for site icon files that do not exist: Fully tested and patch 6855d0f643a33 is confirmed to work with 25.03.b.20250610.1659. No remaining issues or observa... Rob A

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

07/20/2025

07/19/2025

07/18/2025

07/17/2025

07/16/2025

07/15/2025

07/14/2025

07/12/2025

07/11/2025

07/10/2025

07/09/2025

07/08/2025

07/07/2025

07/06/2025

07/05/2025

07/04/2025

07/03/2025

07/02/2025

07/01/2025

06/30/2025

06/29/2025

06/28/2025

06/27/2025

06/26/2025

06/25/2025

06/24/2025

06/23/2025

06/22/2025

06/21/2025