Activity

30 days up to

User

Subprojects

Activity

From 11/26/2025 to 12/25/2025

12/24/2025

04:51 PM pfSense Packages Bug #16591 (Pull Request Review): NRPE XMLRPC Error: Merge request submitted. https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1259 Christopher Cope
04:45 PM Feature #16607 (New): Auto-renewal for certificates: "CA/Browser forum baseline requirements":https://cabforum.org/working-groups/server/baseline-requirements/requirement... Jim Pingle
04:16 PM Todo #16606 (New): Update recommended maximum server certificate lifetimes to 200 days: "CA/Browser forum baseline requirements":https://cabforum.org/working-groups/server/baseline-requirements/requirement... Jim Pingle
04:04 PM Todo #16605 (New): Update certificate expiration warning behavior: Currently the certificate expiration notifications are based on either a user-supplied number of days or a default va... Jim Pingle
03:43 PM pfSense Packages Feature #16604 (New): ACME CA Profiles: @acme.sh@ recently implemented "CA profiles":https://github.com/acmesh-official/acme.sh/wiki/Profile-selection
Let... Jim Pingle
03:33 PM pfSense Packages Todo #16603 (New): Base ACME certificate renewal time logic on certificate lifetime: The ACME certificate renewal logic currently checks to see if a certificate needs renewal based on either a user-supp... Jim Pingle
10:34 AM Bug #16590: Uncaught TypeError in /etc/inc/filter.inc:5828: The error was identified and fixed. Following your suggestion, I compared two backup files, one with firewall rules a... Anonymous
03:06 AM Revision d3cf9bd8: kea2unbound: fix typo in b803fd3: Christian McDonald

12/23/2025

11:57 PM Bug #16549 (Resolved): Captive portal "allowed IPs" does not work if language is not english: Marcos M
11:40 PM Bug #16549: Captive portal "allowed IPs" does not work if language is not english: Changing the language to French results in some values remaining in English. "both ,from"
!clipboard-20251223153... Alhusein Zawi
06:57 PM Bug #16602 (Resolved): ``kea2unbound``crashes when reading an invalid configuration file: Fixed with commit:b803fd3b25861b8365a2150528fc29b43f625bf2 and commit:ff266a35fd4dafba90d60f94dd481aa7eda3301c Marcos M
06:55 PM Bug #16602 (Resolved): ``kea2unbound``crashes when reading an invalid configuration file: kea2unbound can crash when reading unbound or kea configuration files if the files become invalid - e.g. when being r... Marcos M
04:25 PM pfSense Packages Bug #16601 (New): check_pf_ipsec_tunnel problem when using name: Hi!
I've just faced an issue with the following.
I have an ipsec tunnel, where only one of the endpoint have fixe... Peter Erdosi
03:52 PM pfSense Packages Bug #16600: pfBlockerNG breaks HA XMLRPC sync: That one is fixed now as well. Marcos M
05:05 AM pfSense Packages Bug #16600: pfBlockerNG breaks HA XMLRPC sync: The earlier error was fixed, however I am now getting that same error, but for line 6251 instead of 6245.
@Crash r... Glenn Hall
12:45 AM pfSense Packages Bug #16600 (Feedback): pfBlockerNG breaks HA XMLRPC sync: Thank you for the report; that should be fixed now. Marcos M
12:38 AM pfSense Packages Bug #16600 (In Progress): pfBlockerNG breaks HA XMLRPC sync: Marcos M
02:42 PM Revision b803fd3b: kea2unbound: don't crash if include file is empty: Christian McDonald
01:57 PM Revision ff266a35: kea2unbound: insure parsed Kea config is an array type: Christian McDonald
10:16 AM pfSense Plus Bug #16597: DHCPv6 Fails to Assign Prefix Delegation with Multiple PPPoE IPv6 over IPv4 Links: Kris Phillips wrote:
> Once you pass two or three PPPoE connections with DHCPv6 over the IPv4 link, it appears that ... Louise Anton
07:22 AM Bug #16590: Uncaught TypeError in /etc/inc/filter.inc:5828: Thank you very much. Do you mean the full configuration or just the firewall configuration? I have a backup without r... Anonymous

12/22/2025

11:17 PM pfSense Packages Bug #16600: pfBlockerNG breaks HA XMLRPC sync: After upgrading my system to pfBlockerNG-devel 3.2.13_2, I am now getting the following PHP error at every Cron or Re... Glenn Hall
08:56 PM pfSense Packages Bug #16600 (Feedback): pfBlockerNG breaks HA XMLRPC sync: I've pushed a fix for this and picked it to 25.11.
https://github.com/pfsense/FreeBSD-ports/commit/8a7063600a9397a512... Marcos M
10:59 AM pfSense Packages Bug #16600 (Confirmed): pfBlockerNG breaks HA XMLRPC sync: aleksei prokofiev
10:59 AM pfSense Packages Bug #16600: pfBlockerNG breaks HA XMLRPC sync: Tested on 25.11-RELEASE (amd64)
built on Mon Dec 1 20:59:00 MSK 2025
FreeBSD 16.0-CURRENT
I can confirm this issue. aleksei prokofiev
09:45 AM pfSense Packages Bug #16600 (Feedback): pfBlockerNG breaks HA XMLRPC sync: tested on:
25.11-RELEASE (amd64)
built on Mon Dec 15 17:04:00 UTC 2025
FreeBSD 16.0-CURRENT
installation of the... Georgiy Tyutyunnik
10:20 PM Bug #16590: Uncaught TypeError in /etc/inc/filter.inc:5828: A config without any rules could not result in the reporter error. You may share the config (along with the full PHP ... Marcos M
09:43 PM pfSense Packages Bug #14491: FRR not starting with AgentX enabled: Thanks for testing. Does the workaround from https://redmine.pfsense.org/issues/11610#note-5 allow it to connect? Marcos M

12/21/2025

10:49 AM Bug #16590: Uncaught TypeError in /etc/inc/filter.inc:5828: This error does not appear to be related to the rules. I was able to reproduce the same error and tried the following... Anonymous
08:08 AM Bug #16599: Wireguard can use the wrong gateway under certain circumstances: I should add that I'm not sure if it's unplugging or replugging the SFP+ module that causes the switch over to WAN3 i... Allan Hsu
07:23 AM Bug #16599 (New): Wireguard can use the wrong gateway under certain circumstances: My current pfSense environment has three WAN connections:
* WAN1: Fiber ONT directly connected to interface ix0
* W... Allan Hsu
03:04 AM pfSense Packages Feature #16089: Add packages for Zabbix 7.2 and 7.4 agent and proxy: With the release of 25.11, these packages are still not available in the repositories. Kris Phillips
03:02 AM Feature #16501 (Not a Bug): Add packages for Zabbix 7.0 on Community Edition: There are no Zabbix packages for the version of FreeBSD that 2.7.2 runs on, per the other redmine.
The path to g... Kris Phillips
02:58 AM pfSense Packages Feature #16558 (Confirmed): Add support of static-challenge OpenVPN option in Radius for 2FA: This would be significantly helpful for 2FA configurations with OpenVPN.
Wouldn't this option be for the OpenVPN E... Kris Phillips
02:53 AM pfSense Plus Feature #16598 (Incomplete): Prevent master takeover if critical services are not running + forced failover on service failure: I'm not clear on the problem here. Services should be started on the secondary automatically when it assumes MASTER ... Kris Phillips
02:50 AM pfSense Plus Bug #16586 (Incomplete): unbound thinks kern.ipc.maxsockbuf is too low, per its logging: I'm not able to reproduce this issue on amd64 architecture on 25.11 of Plus.
Please provide additional reproduct... Kris Phillips
02:45 AM Bug #16588 (In Progress): ``pfctl`` shows incorrect number of table addresses: I can confirm this behavior in 25.11 and 25.07.1.
Marking as In Progress, since per Kristof's comment above this... Kris Phillips
02:42 AM Bug #16593: Potential remote command execution via DNSSL router advertisement messages: I can confirm this patch is available in System Patches. Kris Phillips

12/20/2025

07:54 PM Revision 56a4bc2d: Specify the log priority when using /usr/bin/logger: Followup to 97c0e52ad9a324d38f9d1763d416de81a6fe4a5e. Marcos M
06:18 AM pfSense Plus Feature #16598 (Incomplete): Prevent master takeover if critical services are not running + forced failover on service failure: In CARP-based HA setups, pfSense currently makes the master/backup decision primarily based on CARP state and interfa... Jászay Gábor
01:48 AM pfSense Plus Bug #16597 (New): DHCPv6 Fails to Assign Prefix Delegation with Multiple PPPoE IPv6 over IPv4 Links: Once you pass two or three PPPoE connections with DHCPv6 over the IPv4 link, it appears that pfSense Plus starts reje... Kris Phillips

12/19/2025

10:40 PM pfSense Packages Bug #16591: NRPE XMLRPC Error: To be clear, the patch doesn't break sync. The customer was already having sync issues, one of which was this one. Th... Christopher Cope
09:32 PM pfSense Packages Bug #16591: NRPE XMLRPC Error: Customer reported that the patch file breaks XMLRPC sync for firewall rules. I have confirmed this behavior by addin... Kris Phillips
12:52 AM pfSense Packages Bug #16591 (In Progress): NRPE XMLRPC Error: Also confirmed on... Christopher Cope
04:39 PM pfSense Packages Bug #16596 (Not a Bug): HAProxy-Changing the port of an existing backend server, changes show in the GUI, but HAProxy still uses old port.: That requires a full service restart. When you save changes it says:
> Server states are preserved between configura... Marcos M
01:55 PM pfSense Packages Bug #16596 (Not a Bug): HAProxy-Changing the port of an existing backend server, changes show in the GUI, but HAProxy still uses old port.: I modified the port of an existing backend server, but HAProxy continued to use the old port, even after restarting t... Alasdair Sanderson
04:25 AM pfSense Packages Bug #16595 (New): pfSense Plus 25.11.x: ntopng causes excessive memory usage and WebGUI unresponsiveness: After upgrading from pfSense Plus 25.07.1 to 25.11.x, enabling ntopng causes memory usage to grow steadily until the ... Barrett Sawyers
01:04 AM pfSense Plus Regression #16594 (New): IPAlias IPv6 VIPs not added to PPPoE interfaces.: In 25.11 IPAlias IPv6 VIPs are not added to PPPoe Interfaces at boot or when adding or resaving a VIP in the webgui.
... Steve Wheeler

12/18/2025

07:49 PM pfSense Packages Bug #14491: FRR not starting with AgentX enabled: Got the updated package. If you enable AgentX it does work now and FRR starts, Routing starts, all is good. The probl... Mike Moore
04:36 PM pfSense Packages Bug #14491: FRR not starting with AgentX enabled: The package was still being built without SNMP support - a new update is available to re-enable it. Marcos M
10:01 AM pfSense Packages Bug #14491: FRR not starting with AgentX enabled: Hello Mike,
Have you changed the socket permissions for net-snmp? You need to use net-snmp and disable the snmpd d... Gerard Alcorlo
06:00 PM Bug #16593 (Feedback): Potential remote command execution via DNSSL router advertisement messages: Applied in changeset commit:001f5ff2886dd74039e26d70c3f5f04d052f999a. Jim Pingle
05:30 PM Revision 001f5ff2: Instruct rtsold not to execute a DNS script. Fixes #16593: Jim Pingle
05:04 PM pfSense Plus Regression #16585 (Resolved): Missing bxe driver support for 2.5G SGMII (SFP GPON ONT): Marcos M
01:52 PM Bug #16588: ``pfctl`` shows incorrect number of table addresses: That'll be fixed when https://cgit.freebsd.org/src/commit/?id=ad7f49f98b1ae7504f69db897901a055613c8300 comes in with ... Kristof Provost

12/17/2025

10:29 PM Revision 3e26829e: Update options after switching to frr10: Brad Davis
09:18 PM Bug #16590 (Rejected): Uncaught TypeError in /etc/inc/filter.inc:5828: Some number of versions ago floating rules did not require the interface element. There's already upgrade code for co... Marcos M
01:58 PM Bug #16590: Uncaught TypeError in /etc/inc/filter.inc:5828: It's unusual to have a rule without an interface tag entirely, even floating rules that act on any interface have one... Jim Pingle
10:14 AM Bug #16590: Uncaught TypeError in /etc/inc/filter.inc:5828: I assume this is a bug in my config. The thing that changed between 25.07 and 25.11 in this regard is the big "config... znerol znerol
09:49 AM Bug #16590: Uncaught TypeError in /etc/inc/filter.inc:5828: This rule has been there since my earliest available backup of the affected system dating back to August 2017. znerol znerol
09:36 AM Bug #16590: Uncaught TypeError in /etc/inc/filter.inc:5828: I found the following rule in @config.xml@:... znerol znerol
08:15 AM Bug #16590 (Rejected): Uncaught TypeError in /etc/inc/filter.inc:5828: I get this when attempting to Upgrade to pfSense Plus 25.11:
PHP ERROR: Type: 1, File: /etc/inc/filter.inc, Line: ... znerol znerol
09:10 PM pfSense Packages Bug #14491: FRR not starting with AgentX enabled: As soon as i saw your post, i just went ahead and tried and it doesnt work. As soon as you enable AgenxX , FRR will n... Mike Moore
09:02 PM pfSense Packages Bug #14491: FRR not starting with AgentX enabled: From a quick look at the upstream issue it seems this has been fixed with newer FRR versions. It's worth testing this... Marcos M
02:53 PM pfSense Packages Bug #14491: FRR not starting with AgentX enabled: As Reggie Walters referenced in #note-13, AgentX support in FRR remains non-functional. It appears OPNsense has addre... Gerard Alcorlo
08:17 PM Bug #16593 (Feedback): Potential remote command execution via DNSSL router advertisement messages: FreeBSD published the following security advisory for a remote command execution vulnerability in @rtsold@, which als... Jim Pingle
03:19 PM Bug #16592 (New): syslogd exits with error during newsyslog rotation: I have a problem that is similar to #16478 but is not the same because the SIGABRT reported there does not occur.
... Christian Ullrich
03:15 PM pfSense Packages Bug #16591: NRPE XMLRPC Error: confirmed
tested on:
25.11-RELEASE (amd64)
built on Mon Dec 15 17:04:00 UTC 2025
FreeBSD 16.0-CURRENT
crashes fr... Georgiy Tyutyunnik
01:31 PM pfSense Packages Bug #16591 (Pull Request Review): NRPE XMLRPC Error: When running 25.11 in HA. Installing the NRPE package errors get thrown.
PHP ERROR: Type: 1, File: /etc/inc/pfse... Tom Edwards
07:18 AM pfSense Packages Feature #16589: Missing CVE fixes for pfsense supplied Suricata binary: It would be great if Netgate could track the releases closer and update both branches (in this case 25.07.1 and 25.11... Alexander Lindqvist
07:02 AM pfSense Packages Feature #16589 (New): Missing CVE fixes for pfsense supplied Suricata binary: PfSense supplied suricata binary 7.0.11 is now 2 versions behind current 7.0.13 or 8.0.2 again with 6 CVE's rated as ... Alexander Lindqvist

12/16/2025

10:19 PM Feature #16587 (Pull Request Review): Netgate Installer: Allow pulling DNS from PPPoE connections.: https://gitlab.netgate.com/pfSense/installer/-/merge_requests/10 Steve Wheeler
02:40 PM Feature #16587 (Pull Request Review): Netgate Installer: Allow pulling DNS from PPPoE connections.: Add mpd5 conf lines to pull DNS servers from a PPPoE server to allow the installer to connect without local DNS resol... Steve Wheeler
09:16 PM Revision 2b50f1a7: Also disable the FreeBSD-base repo: Brad Davis
09:13 PM Feature #15934: Kea Lease Reclamation and Affinity Options (IPv4 and IPv6): Note: All references to reboot below also apply to stop/restart of the Kea server.
Testing reveals: KEA on a reboo... Dale Harron
05:29 PM Bug #16588 (In Progress): ``pfctl`` shows incorrect number of table addresses: In 25.07.1:... Marcos M
03:50 PM pfSense Plus Bug #16586: unbound thinks kern.ipc.maxsockbuf is too low, per its logging: Matt Dombrowski wrote in #note-1:
> What's your settings at @Services / DNS Resolver / Advanced Settings / Message C... Sean McBride
02:23 PM pfSense Plus Bug #16586: unbound thinks kern.ipc.maxsockbuf is too low, per its logging: What's your settings at @Services / DNS Resolver / Advanced Settings / Message Cache Size@ and @" " / EDNS Buffer Siz... Matt Dombrowski
03:41 PM Revision b90d3492: Switch to newer drm-kmod since 515 is not supported on 16: Brad Davis
03:36 PM pfSense Packages Bug #15916 (Resolved): pfBlockerNG dnsbl daemon not able to start in CARP mode: Marcos M

12/15/2025

10:48 PM pfSense Plus Bug #16586 (Incomplete): unbound thinks kern.ipc.maxsockbuf is too low, per its logging: I see a this logged a lot:
`/rc.linkup: The command '/usr/local/sbin/unbound -c /var/unbound/unbound.conf' returne... Sean McBride
10:06 PM Feature #15952: Support Message-Authenticator in the PHP RADIUS client: My tests were from some Access Points and from Diagnostics > Authentication on pfSense 26.03. The Message-Authenticat... Marcos M
07:17 PM pfSense Plus Regression #16585 (Feedback): Missing bxe driver support for 2.5G SGMII (SFP GPON ONT): Marcos M
07:03 PM pfSense Plus Regression #16585 (Resolved): Missing bxe driver support for 2.5G SGMII (SFP GPON ONT): Support was previously added - see:
https://redmine.pfsense.org/issues/16321
This has regressed in pfSense+ 25.11... Marcos M
05:39 PM Revision ce2c9f7b: Upgrade: remove quick from old match rules: Filter match rules previously continued evaluation regardless of "quick"
being set. Remove "quick" from existing rule... Marcos M
03:20 PM Bug #16550 (Resolved): Cannot load alternate TCP Congestion Control kernel modules: This is fixed in the release - ertt is now included. Marcos M
03:06 PM Bug #16583: DHCP server assigns dynamic IP address instead of static: ISC DHCP failed to follow the DHCP spec in several ways, so it exposes some more undesirable client problems and conf... Jim Pingle
02:51 PM Bug #16583: DHCP server assigns dynamic IP address instead of static: Jim Pingle wrote in #note-1:
> This is likely due to some client behavior, not the server, but this isn't the place ... Nazar Mokrynskyi
02:01 PM Bug #16583 (Not a Bug): DHCP server assigns dynamic IP address instead of static: This is likely due to some client behavior, not the server, but this isn't the place to discuss and diagnose the issu... Jim Pingle
02:26 PM Feature #16584: Option to harden GUI security by choosing specific cipher suites: We understand that direct Internet access to the WebGUI is not recommended.
Our request is based on general cryptog... Matthias Laux
11:36 AM Feature #16584: Option to harden GUI security by choosing specific cipher suites: Does BSI Technical Guideline TR-02102 apply to internal or internet facing interfaces?
My understanding allowing d... Patch Public
10:38 AM Feature #16584: Option to harden GUI security by choosing specific cipher suites: Additional Information / Reference (Germany, BSI TR-02102):
For environments requiring compliance with German secu... Matthias Laux
10:02 AM Feature #16584 (New): Option to harden GUI security by choosing specific cipher suites: Customer would like to ask whether pfSense Plus could offer an officially supported, opt-in option for stricter WebGU... Georgiy Tyutyunnik

12/14/2025

10:15 PM pfSense Plus Bug #16581: VLANs stop working after upgrading 24.11 (for both 25.07.1 + 25.11): I now assume you meant to post in this forum: https://forum.netgate.com/topic/199552/vlans-stop-working-after-upgrad... Jeff Kuehl
08:11 AM Bug #16583 (Not a Bug): DHCP server assigns dynamic IP address instead of static: I have configured static IP address for a specific MAC address.
Yet for some reason DHCP server keeps issuing dynami... Nazar Mokrynskyi

12/13/2025

10:15 PM Bug #16550: Cannot load alternate TCP Congestion Control kernel modules: these modules seem to be present in 25.11
!clipboard-202512131614-o03o9.png!
Jordan G
09:17 PM Bug #16194: IPv6 ICMP firewall log entries marked with protocol "Options" instead of ICMPv6: This bug is alive and well in 25.11. I saw it pop up the other day on a Netgate 2100 after upgrade from 25.07.01 to ... Jeff Earickson
08:11 PM pfSense Packages Feature #16431 (Confirmed): Warning banner for FRR raw config: I can confirm this is an issue for customers. I had a customer using a raw config edit that kept being overwritten b... Kris Phillips
08:04 PM pfSense Packages Bug #16523 (Incomplete): NMAP - Cannot Determine Source Address for Interface: Tested on 25.11. Works fine.
Shell Output - nmap -e "vtnet0" -sS -oN /root/nmap.result --append-output "172.21.... Kris Phillips
07:54 PM pfSense Packages Feature #16482 (Resolved): Upgrade HAproxy to supported version.: HAProxy 3.2.7 is now in 25.11 of pfSense Plus.
Closing this as Resolved. Kris Phillips
07:53 PM pfSense Packages Bug #16544: During WAN failover event, HAproxy frontend IPs are not transferred from the primary to the secondary pfSense HAproxy service: Lauren C wrote in #note-3:
> Unfortunately I cannot run beta software as this is for a production environment. It se... Kris Phillips
07:52 PM pfSense Packages Feature #16576 (Confirmed): update nmap package from 7.94 to 7.98: 7.94_3 is the latest release available on FreeBSD upstream, which was updated in June of this year. This would need ... Kris Phillips
07:44 PM pfSense Plus Bug #16560: Netgate Installer Occassionally Duplicates Characters and Displays Black-on-Black Text: Tested on 1.1.1 version of the installer. Issue is still present there. Kris Phillips
05:32 PM Revision e7b58828: File string interpolation in PHP error notice.: Marcos M
10:37 AM Feature #15952: Support Message-Authenticator in the PHP RADIUS client: Does this mean pfSense always sends the Message-Authenticator attributes now, or am I getting it wrong ?
Authenticat... Stefano Ceccherini
08:38 AM pfSense Packages Bug #15435: Long boot time when using FQDN for WireGuard VPN endpoint: Patrik Stahlman wrote in #note-11:
> I have worked on a small change that I hope you will consider as a solution to ... Louis Nguyen
08:03 AM pfSense Packages Feature #16582: FreeRADIUS: Add configurable TOTP anti-replay protection (RFC 6238): Bad upload for diff files : true patch inside Loic FONTAINE
07:45 AM pfSense Packages Feature #16582 (New): FreeRADIUS: Add configurable TOTP anti-replay protection (RFC 6238): # Feature Request: TOTP Anti-Replay Protection with GUI Option for FreeRADIUS
## Summary
Add configurable anti-... Loic FONTAINE

12/12/2025

10:39 PM pfSense Plus Bug #16581 (Incomplete): VLANs stop working after upgrading 24.11 (for both 25.07.1 + 25.11): Marcos M
10:34 PM pfSense Plus Bug #16581: VLANs stop working after upgrading 24.11 (for both 25.07.1 + 25.11): OK pfSense has no concept of PVID there then, that only applies to switch ports. I assume you mean traffic using a na... Steve Wheeler
10:04 PM pfSense Plus Bug #16581: VLANs stop working after upgrading 24.11 (for both 25.07.1 + 25.11): It is on bare metal HP t730. I can switch between boot environments (24.11 pre-upgrade & 25.11 immediate post-upgrad... Jeff Kuehl
09:29 PM pfSense Plus Bug #16581: VLANs stop working after upgrading 24.11 (for both 25.07.1 + 25.11): I'm not aware of any issue with VLANs.
What device are you testing this on? Do you have a forum thread open to dis... Steve Wheeler
08:27 PM pfSense Plus Bug #16581 (Incomplete): VLANs stop working after upgrading 24.11 (for both 25.07.1 + 25.11): Just upgraded over the weekend, and finding today non-PVID vlans can't even ping the VLAN gateway. Yet, the clients r... Jeff Kuehl
05:13 PM Regression #16575 (Resolved): Firewall logs do not match pf rules with rule number ``0``: The screenshot shows it working. The rule ID shown in the "post-patch" screenshot is the default ID used when a packe... Marcos M
01:24 PM Regression #16575: Firewall logs do not match pf rules with rule number ``0``: patch doesn't fix the issue
firewall logs are recording dropped ipv6 MLDv2 packets processed under rule 0, patch cha... Georgiy Tyutyunnik
05:05 PM Bug #16264 (Resolved): Captive Portal Ethernet rules can block ARP: That confirms this specific issue with ARP is resolved. It sounds like something else is happening there (e.g. #16540... Marcos M
03:16 AM Bug #16264 (In Progress): Captive Portal Ethernet rules can block ARP: Customer reports that this issue is still the same, but now the "Incomplete" MAC addresses are no longer present in t... Kris Phillips
02:58 PM pfSense Packages Bug #16353: failed to dynamically load plugin '/usr/local/lib/named/filter-aaaa.so': plugin API version mismatch: 1/2: Unfortunately, not.
Bind version is new, but the isue is still there.
it is not about whether named can start, bu... Ivars Strazdins
02:42 PM Bug #15531: VLANs not cleared in console configuration despite warning: Problem still exists as of 2.8.0. Jernej Simončič
01:28 PM Feature #15934: Kea Lease Reclamation and Affinity Options (IPv4 and IPv6): Unfortunately, further to my comment about a lease4-update, further testing reveals that it does not actually re-inst... Dale Harron
11:27 AM Todo #16580 (Resolved): Require absolute file path when saving a file on Diagnostics > Edit File: tested, patch works as expected
tested on:
25.11-RELEASE (amd64)
built on Mon Dec 1 17:59:00 UTC 2025
FreeBSD 16.... Georgiy Tyutyunnik

12/11/2025

09:20 PM pfSense Packages Bug #16556 (Closed): ACME package unnecessarily references and checks for ACME v2: Merged. Jim Pingle
09:20 PM pfSense Packages Todo #16382 (Closed): Remove deprecated Buypass ACME server support: Merged. Jim Pingle
09:20 PM pfSense Packages Bug #16003 (Closed): ACME IPv6 CloudFlare issues, IPv4 preferred not respected: Merged. Jim Pingle
09:19 PM Feature #16517 (Closed): Endpoint-independent Port Restricted Cone Outbound NAT rules: This has been in and stable, and is now in the release. If anyone encounters problems, we can open new separate issues. Jim Pingle
05:00 PM Todo #16580 (Feedback): Require absolute file path when saving a file on Diagnostics > Edit File: Applied in changeset commit:2fa11381a153087768f2e6d494c43a59dce77781. Marcos M
04:41 PM Todo #16580 (Resolved): Require absolute file path when saving a file on Diagnostics > Edit File: Currently the Diagnostics > Edit File page doesn't require a path starting with @/@. This results in files being save... Marcos M
04:41 PM Revision 2fa11381: Reject relative paths when saving in Diagnostics > Edit File. Implement #16580: Marcos M

12/10/2025

11:21 AM pfSense Packages Bug #16222: 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot: Paweł Szlubecki wrote in #note-5:
> F. M. wrote:
> > Since upgrading my pfSense with FRR, OSPF no longer seems to f... F. M.
09:14 AM pfSense Packages Bug #16222: 2.8.0 - FRR - OSPF Route Propagation Fails After Reboot: F. M. wrote:
> Since upgrading my pfSense with FRR, OSPF no longer seems to function correctly.
>
> I use site-to-si... Paweł Szlubecki

12/09/2025

05:00 PM Bug #16579 (Feedback): Firewall logs do not correctly parse ``short`` packet errors: Applied in changeset commit:921fa4bece49bbf8a8daac68c73fcb7c5e5e5770. Marcos M
04:41 PM Bug #16579 (Feedback): Firewall logs do not correctly parse ``short`` packet errors: Shorts packets are dropped and logged as the following:... Marcos M
04:42 PM Revision 921fa4be: Firewall logs: handle 'short' errors. Fix #16579: Marcos M
04:30 PM Bug #16194: IPv6 ICMP firewall log entries marked with protocol "Options" instead of ICMPv6: This looks to be an issue with filterlog not decoding protocol 58 (IPv6-ICMP) when it sees protocol 0 (HOPOPT). I exp... Marcos M
03:13 PM Bug #16572 (Not a Bug): IPv6 Link Local address does not respond to Neighbor Solicitation from non-LL addresses by default: Marcos M
03:12 PM Bug #16572 (Rejected): IPv6 Link Local address does not respond to Neighbor Solicitation from non-LL addresses by default: The ISP should be using the LL address as the source for its NS messages. If the tunable default changes upstream and... Marcos M
02:39 PM Bug #16572: IPv6 Link Local address does not respond to Neighbor Solicitation from non-LL addresses by default: For the record, I have no affiliation with Netgate, so this is all merely advice from a fellow CE user. But my guess ... Matt Dombrowski
12:02 AM Bug #16572: IPv6 Link Local address does not respond to Neighbor Solicitation from non-LL addresses by default: Matt Dombrowski wrote in #note-2:
> The 'default' ruleset on a CE @2.8.1-RELEASE@ system appears to pass inbound Nei... Jamie Cooper

12/08/2025

09:28 PM pfSense Plus Bug #16571: pkg segfaults on some package installs: This is going to end up being a problem for some users as they depend upon being able to install upstream FreeBSD pac... Denny Page
06:44 PM pfSense Plus Bug #16571 (Not a Bug): pkg segfaults on some package installs: This is not an issue in practice given that builds are done with the pkg version respective to the release. Marcos M
07:44 PM Bug #16577 (Feedback): Netgate Installer - Invalid path to up-script in mpd_wan.conf when using PPPoE WAN: Fixed in the v1.1.1-RELEASE Luiz Souza
06:36 PM Bug #15956: Kea DHCP static mappings requires lease expiry before taking effect: I think I have the same issue. I have a static mapping for MAC address, yet pfSense keeps assigning dynamic address o... Nazar Mokrynskyi
06:24 PM Bug #16572: IPv6 Link Local address does not respond to Neighbor Solicitation from non-LL addresses by default: The 'default' ruleset on a CE @2.8.1-RELEASE@ system appears to pass inbound Neighbor Solicitation messages in accord... Matt Dombrowski
12:07 PM pfSense Packages Feature #16578 (New): Feature request: pfBlockerNG profiles per interface/VLAN (like OPNsense Unbound Access Lists): Hey,With Squid/SquidGuard dying, pfBlockerNG is becoming the main tool for everyone doing web filtering and category ... Marcelo Cury

12/07/2025

09:27 AM Bug #16577 (Feedback): Netgate Installer - Invalid path to up-script in mpd_wan.conf when using PPPoE WAN: Version 1.1-RELEASE of the Netgate installer has a bug in the way the installer configures mpd_wan.conf when trying t... Dan Monaghan
08:16 AM pfSense Plus Bug #16571: pkg segfaults on some package installs: Please change affected version to 25.11. Thanks. Denny Page
04:37 AM pfSense Plus Bug #16571: pkg segfaults on some package installs: Apologies, 24.11 was a typo. The current 25.11 RC (25.11.r.20251126.1732) is the affected version. Denny Page
03:05 AM pfSense Plus Bug #16571 (Incomplete): pkg segfaults on some package installs: Hello,
Have you tested this on a supported release? 24.11 is no longer a supported release of Plus. Kris Phillips
03:14 AM pfSense Plus Feature #16401 (Incomplete): The Kea DHCP server cannot customize specific Option 125.: Marking as Incomplete, as there has been no response to the above question in 3 months. Kris Phillips
03:10 AM pfSense Plus Bug #16560: Netgate Installer Occassionally Duplicates Characters and Displays Black-on-Black Text: Danilo Zrenjanin wrote in #note-3:
> I can confirm the behavior described in the ticket subscription.
>
> Additio... Kris Phillips
03:08 AM pfSense Plus Regression #16474 (Closed): No page assigned to this user: Marcelo Cury wrote in #note-5:
> You can close this incident..
> Changed from posixgroup to group and that is it...... Kris Phillips
03:07 AM pfSense Plus Feature #16506 (Confirmed): VLAN creation interface: Tested this on 25.11-RELASE. I can confirm this difference in behavior from prior versions. Kris Phillips
03:03 AM Bug #16572 (Confirmed): IPv6 Link Local address does not respond to Neighbor Solicitation from non-LL addresses by default: Not sure if there is a reason behind this being turned off by default, but I can confirm this tunable is disabled on ... Kris Phillips

12/06/2025

07:49 PM pfSense Packages Feature #16576 (Confirmed): update nmap package from 7.94 to 7.98: According to the changelog history https://nmap.org/changelog.html
7.94 was release in May 2023. Since then, ther... a w
05:20 PM Regression #16575 (Feedback): Firewall logs do not match pf rules with rule number ``0``: Applied in changeset commit:6c00e3c78c4119b729aa5ecfe01e2a26d38505a3. Marcos M
05:16 PM Regression #16575 (Resolved): Firewall logs do not match pf rules with rule number ``0``: Filter log lines can have a rule number of "0" (first value):
> 0,846,,1683152017,igb0,match,block,in,4,0x28,,43,368... Marcos M
05:17 PM Revision 6c00e3c7: Don't skip empty values when parsing filter logs. Fix #16575: Marcos M
10:08 AM Bug #16574 (New): PPPoe boot error with if_pppoe driver on Broadcom NIC: 'wrong interface, not accepting host unique': Summary:
When using the new if_pppoe kernel module in pfSense CE 2.8.1 with a Broadcom NIC (bce driver), a PPPoE-rel... Mike Wren
09:24 AM Bug #16573 (New): PPPoE interface using new driver on Broadcom NIC breaks external DNS for LAN clients (pfSense still resolves): Summary:
When using the new if_pppoe kernel module in pfSense 2.8.1 with a Broadcom NIC (bce driver), LAN clients — ... Mike Wren
03:47 AM Bug #16572 (Not a Bug): IPv6 Link Local address does not respond to Neighbor Solicitation from non-LL addresses by default: ISPs using Juniper Layer 2 liveness detection use ND packets sent to the link local address to check the host is live... Jamie Cooper

12/05/2025

10:43 PM pfSense Plus Bug #16571 (Not a Bug): pkg segfaults on some package installs: Packages built with the standard FreeBSD package system in 14.3 or 15.0 (pkg version 2.4.2) cause pkg and pkg-static ... Denny Page
08:45 PM Bug #16290 (Confirmed): ``diag_authentication.php`` crashes with a core dump if RADIUS client Shared Secret value is not correct: Marcos M
08:00 PM pfSense Packages Bug #16003 (Waiting on Merge): ACME IPv6 CloudFlare issues, IPv4 preferred not respected: Internal MR: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/451
Will merge after the 25.11 rele... Jim Pingle
08:00 PM pfSense Packages Todo #16382 (Waiting on Merge): Remove deprecated Buypass ACME server support: Internal MR: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/451
Will merge after the 25.11 rele... Jim Pingle
08:00 PM pfSense Packages Bug #16556 (Waiting on Merge): ACME package unnecessarily references and checks for ACME v2: Internal MR: https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/451
Will merge after the 25.11 rele... Jim Pingle
07:05 PM Bug #16549: Captive portal "allowed IPs" does not work if language is not english: Applied in changeset commit:251e202ecd97c8c994cd9dbebe2c1dc198500b8e. Christian McDonald
07:00 PM Bug #16549: Captive portal "allowed IPs" does not work if language is not english: Fixed with https://gitlab.netgate.com/pfSense/pfSense/-/commit/251e202ecd97c8c994cd9dbebe2c1dc198500b8e Christian McDonald
06:59 PM Bug #16549 (Feedback): Captive portal "allowed IPs" does not work if language is not english: Christian McDonald
06:54 PM Revision 251e202e: captive portal: fix `allowed IPs` with languages other than English. Fixes #16549: Christian McDonald
05:06 PM Feature #15934: Kea Lease Reclamation and Affinity Options (IPv4 and IPv6): Further to my comment above that was made 4 months ago. Working with 25.11 Beta Nov 26, I have confirmed that althou... Dale Harron
03:42 PM pfSense Packages Todo #15785 (Feedback): upgrade to frr10: Marcos M
03:33 PM Revision f7f67ea5: Don't implicitly build frr10: The package pfSense-pkg-frr now depends on these and hence frr10
no longer needs to be listed here.
This reverts com... Marcos M
03:06 PM Bug #16540 (Resolved): Reserved DUMMYNET pipes for Captive Portal can overlap: Good to hear. If additional related issues are found, this redmine can be reopened or a new one created. Marcos M
03:03 PM Feature #16534 (Resolved): Omit reserved NAT64 addresses from DNS64 answers: Tested working on latest build. Marcos M
11:29 AM Todo #16551 (Resolved): Update output and parsing behavior for PHP shell ``pfanchordrill``: fixed, patch/change works
tested on
25.11-RELEASE (amd64)
built on Mon Dec 1 17:59:00 UTC 2025
FreeBSD 16.0-CURRENT Georgiy Tyutyunnik
01:57 AM Bug #15708: The filterdns service won't start: filterdns is designed to start a thread per FQDN entry to enable parallel evaluation of all DNS lookups.
While it is... Patch Public

12/04/2025

09:30 PM Bug #16540: Reserved DUMMYNET pipes for Captive Portal can overlap: Marcos M wrote in #note-17:
> No, I wouldn't expect that behavior from the patch alone. We can discuss further on th... Christopher Causer
08:01 PM pfSense Docs Todo #16570 (New): Feedback on Firewall — Time Based Rules: *Page:* https://docs.netgate.com/pfsense/en/latest/firewall/time-based-rules.html
*Feedback:*
Since https://redmi... Steve Y
07:36 PM Regression #16569 (Not a Bug): Can't set non-recurring schedule: There's no support currently for setting the year. Marcos M
06:48 PM Regression #16569 (Not a Bug): Can't set non-recurring schedule: Per https://docs.netgate.com/pfsense/en/latest/firewall/time-based-rules.html#configuring-schedules-for-time-based-ru... Steve Y

12/03/2025

09:18 PM pfSense Packages Bug #15296: WAN Interface cannot added to ntopng if offline-packet loss: Sergei Shablovsky wrote in #note-1:
> Sergei Shablovsky wrote:
> >
> > But LAN interfaces ALL would be ADDED as w... Denny Page
08:56 PM pfSense Packages Regression #14232: ntopng no longer tracks top talkers: FWIW, I spent some time checking into this. Unfortunately, this is a basic restriction in the community version of nt... Denny Page
08:49 PM Bug #16566 (Resolved): Incorrect configuration change message when deleting an outbound NAT rule: added and deleted the Outbound NAT rules, and no errors occurred.
26.03.a.20251203.1905
Alhusein Zawi
07:49 PM Bug #16549: Captive portal "allowed IPs" does not work if language is not english: As this is not a regression, we will not be blocking the release of 25.11 over this issue.
However, once a fix is ... Christian McDonald
07:48 PM Bug #16549 (In Progress): Captive portal "allowed IPs" does not work if language is not english: Christian McDonald
06:20 AM Bug #16549: Captive portal "allowed IPs" does not work if language is not english: Tested on
25.07.1-RELEASE (amd64)
built on Wed Aug 20 15:17:00 MSK 2025
FreeBSD 15.0-CURRENT
25.11-RELEASE (am... aleksei prokofiev
02:56 PM Bug #15226: Tables for mixed aliases lists occasionally do not contain all records from the alias list.: Since the alias contains a FQDN it sounds like https://forum.netgate.com/topic/199152/unexpected-alias-behaviour-two-... Steve Y
05:50 AM Feature #16561: Please offically support this PHP script for installing SSL Keys & Certs: Ok, fair enough. Feature Request #16568 has been created. Dennis Adler
05:49 AM Feature #16568 (New): Please support installation of Certificate/Key pairs through backend APIs: I initially submitted Feature #16561 which Jim Pingle Rejected because the PHP script I suggested is using outdated m... Dennis Adler

12/02/2025

09:45 PM Feature #16534 (Feedback): Omit reserved NAT64 addresses from DNS64 answers: Applied in changeset commit:c1a0168388cf765eb248e82b28ecbdf21c04964b. Marcos M
08:30 PM Feature #16534 (In Progress): Omit reserved NAT64 addresses from DNS64 answers: Marcos M
08:13 PM Revision c1a01683: Omit reserved NAT64 addresses from DNS64 answers. Implement #16534: We create default filter rules to prevent the NAT64 translation for
reserved IPv4 addresses. For example, a request t... Marcos M
06:03 PM Todo #16567 (New): Remove link-local fe80::1:1 addresses from trackv6 interfaces: Interfaces configured as trackv6 for IPv6 get configured with an additional link-local address in the form: fe80::1:1... Steve Wheeler
03:35 PM Bug #16566 (Feedback): Incorrect configuration change message when deleting an outbound NAT rule: Applied in changeset commit:586e9110e99c77f55f27120612f3def9317e7940. Marcos M
03:25 PM Bug #16566 (Resolved): Incorrect configuration change message when deleting an outbound NAT rule: Deleting a rule at Firewall > NAT > Outbound results in the following incorrect config write message:
> Firewall: NA... Marcos M
03:25 PM Revision 586e9110: Update config write message when deleting outbound rules. Fix #16566: Marcos M
03:10 PM Revision 9bc10c56: Allow installing vital packages via the WebGUI: Only removal of vital packages should be prohibited via the WebGUI. Marcos M
03:05 PM Bug #16153 (Feedback): ECL can modify a discovered config file: Applied in changeset commit:4ffc71f3e16801862cd67f8f1a901c83bbd82078. Marcos M
03:00 PM Bug #16153 (In Progress): ECL can modify a discovered config file: Another symptom of the same root cause is that the ECL may fail to restore the config. Marcos M
03:00 PM Revision 4ffc71f3: Don't write to the backup file when restoring a config. Fix #16153: The function restore_backup() no longer needs to write to a separate file
before replacing the config file. The atomi... Marcos M
02:12 PM Bug #16562 (Rejected): Ubound does not start as teh DNS Resolver on pfSense-ce 2.8.1: There isn't enough information here to consider it a valid bug, and I can't reproduce that here.
Please post on th... Jim Pingle
08:00 AM Bug #16562 (Rejected): Ubound does not start as teh DNS Resolver on pfSense-ce 2.8.1: Unbound does not start as the DNS resolver.
Dec 2 02:56:38 stargate php-fpm[39573]: /services_unbound.php: The co... Cory Albrecht
02:10 PM Regression #14833: OpenVPN client process in bridged tap mode fails after 2.7.0 CE upgrade: Afonso Turcato wrote in #note-2:
> Bob Weybrecht wrote:
> > Have a P2P OpenVPN tunnel that bridges 2 physical inter... Afonso Turcato
12:37 AM Regression #14833: OpenVPN client process in bridged tap mode fails after 2.7.0 CE upgrade: Bob Weybrecht wrote:
> Have a P2P OpenVPN tunnel that bridges 2 physical interfaces for the purpose of passing multi... Afonso Turcato
11:00 AM Feature #16565 (New): Allow FRR Raw Config to be saved in the standard XML backup file: Currently, FRR configuration can be managed via Services / FRR / Global Settings / Raw Config.
The downside is tha... Gerard Alcorlo
10:50 AM Feature #16564 (New): Prevent accidental edits: Distinguish 'Duplicate' mode from 'Edit' mode: Often, when trying to duplicate a firewall rule, I accidentally click 'Edit' instead of 'Duplicate'. I don't realize ... Gerard Alcorlo
10:34 AM Feature #16563 (New): Remove TCP flags option from firewall rule when the protocol is not TCP: When creating a firewall rule with Protocol set to "any", I attempted to configure *TCP Flags: any flags* under Advan... Gerard Alcorlo

12/01/2025

08:20 PM pfSense Packages Bug #16003: ACME IPv6 CloudFlare issues, IPv4 preferred not respected: Upstream, @acme.sh@ has added a command line parameter to force IPv4 or IPv6 that should accommodate this use case. S... Jim Pingle
08:18 PM pfSense Packages Bug #15061 (Resolved): acme.sh nsupdate with challengealias is failing in certain cases: Jim Pingle
08:18 PM pfSense Packages Feature #9833 (Resolved): ACME: add ability to use custom ACME server: Jim Pingle
07:09 PM pfSense Packages Bug #16329 (Resolved): ECDSA key file missing when exporting a Viscosity bundle with a password protected certificate: Fixed in the latest OpenVPN client export package build. Jim Pingle
05:16 PM pfSense Packages Bug #16329: ECDSA key file missing when exporting a Viscosity bundle with a password protected certificate: We already have code in other places that detects the key type, it's simple enough to do something like this here:
<... Jim Pingle
05:13 PM pfSense Packages Bug #16329 (In Progress): ECDSA key file missing when exporting a Viscosity bundle with a password protected certificate: Jim Pingle
07:09 PM pfSense Packages Todo #16542 (Resolved): Update OpenVPN Windows Installer to 2.6.17: Fixed in the latest OpenVPN client export package build. Jim Pingle
05:13 PM pfSense Packages Todo #16542: Update OpenVPN Windows Installer to 2.6.17: I'm updating the 2.6.x installer to 2.6.17, removing the 2.5.x installer, and leaving 2.4.x as-is.
The 2.4.x insta... Jim Pingle
05:11 PM pfSense Packages Todo #16542 (In Progress): Update OpenVPN Windows Installer to 2.6.17: Jim Pingle
05:18 PM Bug #16552 (Resolved): Hostnames in Kea static leases may not be registered with DNS: Jim Pingle
05:12 PM Bug #16552: Hostnames in Kea static leases may not be registered with DNS: Tested in 25.11.r.20251126.1732, works as intended. Denny Page
02:23 PM pfSense Docs New Content #16470 (Closed): VLAN Tag Type: Jim Pingle
01:57 PM Bug #16484: External Configuration Locator does not reset pfSense console after restoration: Hello Kris,
I am not certain that ECL is involved on the first boot: the NetGate installer has copied the configur... Serge Caron
01:08 PM Feature #16561 (Rejected): Please offically support this PHP script for installing SSL Keys & Certs: That certificate import script uses outdated methods of configuration manipulation. Rather than supporting an externa... Jim Pingle
06:57 AM Feature #16561 (Rejected): Please offically support this PHP script for installing SSL Keys & Certs: As you are no doubt aware, the Browser Consortium is cutting down the allowable lifetime for certificates. The curren... Dennis Adler
02:32 AM Bug #15708: The filterdns service won't start: To the user this bug results in latent failure of a pfsense installation so is more serious than it initially appears... Patch Public

11/29/2025

11:11 PM pfSense Packages Bug #16353 (Feedback): failed to dynamically load plugin '/usr/local/lib/named/filter-aaaa.so': plugin API version mismatch: 1/2: Tested on 25.11-RC. BIND starts normally and without issue for me.
Nov 29 17:08:50 pfSenseKVMTest named[93670]: s... Kris Phillips
11:07 PM Bug #16484 (Confirmed): External Configuration Locator does not reset pfSense console after restoration: ECL runs after install when booting, so this has nothing to do with the Netgate Installer, no matter the version. I'... Kris Phillips
10:56 PM pfSense Plus Bug #16553 (Confirmed): When creating Static route using alias for Destination, subnet constrains to /32, even for aliases that point to an IPv6 subnet: This appears to be the default behavior for all Aliases, regardless of the IP version. Both an IPv4 and IPv6 alias w... Kris Phillips
11:14 AM pfSense Plus Bug #16560: Netgate Installer Occassionally Duplicates Characters and Displays Black-on-Black Text: I can confirm the behavior described in the ticket subscription.
Additionally, the color switches from default col... Danilo Zrenjanin
09:45 AM pfSense Plus Bug #16560 (Confirmed): Netgate Installer Occassionally Duplicates Characters and Displays Black-on-Black Text: Lev Prokofev
09:44 AM pfSense Plus Bug #16560: Netgate Installer Occassionally Duplicates Characters and Displays Black-on-Black Text: Can confirm it, tested on 5100. Lev Prokofev
04:12 AM pfSense Packages Todo #16542: Update OpenVPN Windows Installer to 2.6.17: Released OpenVPN 2.6.17:
* CVE-2025-13751: Windows/interactive service: fix erroneous exit on error that could be
... Silmor Senedlen

11/28/2025

06:22 PM pfSense Docs New Content #16470: VLAN Tag Type: 25.11.r.20251127.2230 has the ability to adjust the tag-type when creating or editing VLANs which coordinates with th... Jordan G
05:13 PM pfSense Plus Bug #16560 (Confirmed): Netgate Installer Occassionally Duplicates Characters and Displays Black-on-Black Text: When booting the installer over serial, often the installer will have "duplicated" output like this:
//bboooott//c... Kris Phillips
01:05 PM Todo #16559 (Resolved): Remove custom gateway ordering: works - no longer able to manually change gw order
tested on:
26.03-DEVELOPMENT (amd64)
built on Fri Nov 28 6:00:0... Georgiy Tyutyunnik
12:14 PM Bug #16557 (Resolved): Alerts do not trigger for empty config change descriptions: Log entries for config change with null description much more informative after the change:
*25.07.1 FRR ACL chang... Georgiy Tyutyunnik

11/27/2025

05:20 PM pfSense Plus Regression #16407: Editing Alias assigned to Static Route doesn't update routing table: Answering my own question: editing the alias and re-saving both the alias and the static route does NOT fix the routi... → luckman212
03:18 PM Bug #16540: Reserved DUMMYNET pipes for Captive Portal can overlap: No, I wouldn't expect that behavior from the patch alone. We can discuss further on the forum, feel free to post here... Marcos M
10:36 AM Bug #16540: Reserved DUMMYNET pipes for Captive Portal can overlap: We applied the patch, but had to revert: The captive portal wasn't appearing, and from a client we could ping 8.8.8.8... Christopher Causer

11/26/2025

07:00 PM Bug #16429 (Resolved): NAT64 rules using ``reply-to`` do not forward packets: Tested working in 25.11-RC. Marcos M
06:28 PM Revision 19729155: Garbage collect setting NOASLR in dns/unbound as the option is gone now: Brad Davis
06:05 PM Todo #16559 (Feedback): Remove custom gateway ordering: Applied in changeset commit:cf9154cab2a485744dbfe0b7b37bef69273c0142. Marcos M
05:51 PM Todo #16559 (Resolved): Remove custom gateway ordering: The gateway order shown at System > Routing > Gateways uses the following priority:
# Gateways assigned to an interf... Marcos M
05:53 PM Revision cf9154ca: Remove ability to manually order gateways. Implement #16559: Marcos M
05:09 PM Todo #16503 (Resolved): Update Unbound to 1.24.2 to address CVE-2025-11411: We are now building 1.24.2. Christian McDonald
05:08 PM Todo #16503: Update Unbound to 1.24.2 to address CVE-2025-11411: https://nlnetlabs.nl/news/2025/Nov/26/unbound-1.24.2-released/ Christian McDonald
03:32 PM Bug #16495 (Feedback): Gateway list order is incorrect until reloading page after moving entries and saving: The gateway ordering may not be what a user expects because some gateways (namely those assigned to interfaces) are a... Marcos M
12:42 PM pfSense Packages Feature #16558 (Confirmed): Add support of static-challenge OpenVPN option in Radius for 2FA: Currently, Radius+OTP requires the user to add the PIN+OTP in the password field every time the user connects. With t... Lev Prokofev

« Previous

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

12/24/2025

12/23/2025

12/22/2025

12/21/2025

12/20/2025

12/19/2025

12/18/2025

12/17/2025

12/16/2025

12/15/2025

12/14/2025

12/13/2025

12/12/2025

12/11/2025

12/10/2025

12/09/2025

12/08/2025

12/07/2025

12/06/2025

12/05/2025

12/04/2025

12/03/2025

12/02/2025

12/01/2025

11/29/2025

11/28/2025

11/27/2025

11/26/2025