Project

General

Profile

2.8.0

open

pfSense CE software release

88%

268 issues   (230 closed38 open)

Time tracking
Estimated time 0.01 hour
Issues by
Bug

146/160
Regression

30/37
Feature

33/45
Todo

21/26
Related issues
Bug #9453: Reconfiguring a parent LAGG interface breaks its VLANs Actions
Bug #10980: ``/etc/rc.local`` script content is executed at login instead of during boot sequence Actions
Bug #11418: 'NAT-T: Force' is broken for IPv6 IPsec Actions
pfSense Packages - Bug #11797: Traffic Totals lost upon reboot when using a ramdisk for /var and /tmp Actions
Bug #12673: Firewall Logs Dashboard Widget is slow and may fail to update Actions
Bug #12747: Restarting the logging daemon during rotation also restarts ``sshguard``, leading to frequent log messages Actions
Bug #12920: Gateway behavior differs when the gateway does not exist in the configuration Actions
Bug #12942: Code to kill states for old gateway when reconnecting an interface is incorrect Actions
Bug #12947: DHCP6 client does not take any action if the interface IPv6 address changes during renewal Actions
Bug #13087: OpenVPN WINS options may be visible even when NetBIOS is disabled Actions
Bug #13089: Some OpenVPN NetBIOS settings are kept even when NetBIOS is disabled Actions
Bug #13090: OpenVPN NetBIOS Node Type and Scope ID options are not pushed to clients Actions
pfSense Packages - Bug #13214: AttributeError: 'NoneType' object has no attribute 'text' Actions
Bug #13226: Disconnecting a user from Captive Portal may allow previously established connections to continue Actions
Bug #13413: Some messages presented to users contain relative links to pages which may be invalid when triggered from certain packages Actions
Bug #13498: Newer variant models within the PC Engines APU2 platform are not recognized, causing garbled early serial console output Actions
Bug #14083: Adding MSS and MTU values on a LAGG VLAN interface breaks connectivity Actions
Bug #14290: ICMPv6 Path MTU Discovery breaks with NPT Actions
pfSense Packages - Bug #14299: pfBlockerNG does not honor the cURL source interface setting for DNSBL lists Actions
Bug #14312: MSS clamping on VPN traffic does not work on IPsec IPv6 mobile VPNs Actions
Bug #14386: ``openvpn.auth-user.php`` gets stuck at 100% CPU usage when RADIUS authentication times out Actions
pfSense Packages - Bug #14523: PHP error when using an unsupported alias type in Advanced Rule Settings Actions
pfSense Packages - Bug #14572: Unused DNSBL files may not be removed Actions
Bug #14605: Dynamic DNS uses the default gateway interface instead of the specified interface Actions
Bug #14648: Values obtained from ``sysctl`` are sometimes unexpectedly empty, leading to PHP and other math errors Actions
Bug #14708: PHP error when the system fails to create an interface Actions
Bug #14742: Several PHP errors in upgrade_config.inc Actions
Bug #14854: Packets are passed through dummynet twice when using ``route-to`` leading to half the expected bandwidth Actions
Bug #14859: Config upgrade error: upgrade_config.inc:6135 Actions
pfSense Packages - Bug #14861: PHP error when pings are enabled but no ping hosts are defined Actions
Bug #14893: Large number of IPsec tunnels causes long filter reload times Actions
Bug #14919: OpenVPN forms invalid ``route`` statements for empty local networks Actions
Bug #14921: External Config Locator does not trigger a pkg sync except on first boot Actions
Bug #14929: ``choparp`` service is not stopped after deleting Proxy ARP type Virtual IP addresses Actions
Bug #14933: Traffic Graph widget displays bandwidth usage values which are half the actual usage amount Actions
Bug #14936: ``radvd`` service shows as stopped in services list when it should be disabled and hidden from that list Actions
Bug #14942: DNS Resolver host overrides ignore all aliases if first entry has a domain set but no hostname Actions
Bug #14967: Cannot disable Router Advertisements when the interface IPv6 configuration is set to ``None`` Actions
Bug #14977: Kea fails to restart due to race between process termination and startup Actions
Bug #14991: Kea does not allow FQDNs for NTP servers but input validation does not prevent them from being added Actions
Bug #14996: Kea DHCP PHP error from WINS server value Actions
Bug #15032: Kea DHCP sends wrong bootloader file for UEFI Actions
Bug #15043: IGMP proxy works intermittently Actions
Bug #15054: Permissions on tmpfs RAM disk for ``/var`` are too lenient Actions
Bug #15057: Router Advertisement daemon does not prioritize IPv6 GUA over ULA Actions
Bug #15067: Secondary node attempts to delete the ``admins`` group when synchronizing accounts via XMLRPC Actions
Bug #15069: Extra space in ``pkg`` configuration file ``FreeBSD.conf`` Actions
Bug #15071: Applying interface changes may not update default ACLs for the DNS Resolver Actions
Bug #15083: Installing to ZFS mirror does not format or populate EFI partition on additional disks Actions
Bug #15084: Upgrading an EFI system installed to ZFS mirror does not upgrade EFI loader on additional disks Actions
Bug #15096: Interface subnet aliases do not contain IPv6 VIPs Actions
Bug #15108: ``pfctl`` is unable to retrieve state creator list in certain circumstances Actions
Bug #15116: Kea not working with UEFI HTTPBoot URL configured Actions
Bug #15117: Shortcut bar on DHCPv6 leases (``status_dhcpv6_leases.php``) navigates to DHCPv4 destinations, not DHCPv6 Actions
Bug #15118: DHCPv6 settings page "DDNS Reverse" check box not showing current state Actions
Bug #15122: PHP errors in LDAP server prevent it from falling back to Local Database Actions
Bug #15124: IPsec VTI is not created correctly when using a Phase 2 remote type of ``Network`` Actions
Bug #15127: ``check_dnsavailable()`` failing even when DNS is available Actions
Bug #15130: Kea will not start with identical MAC address filters on multiple interfaces Actions
Bug #15133: PHP error with OpenVPN server certificate verification if the certificate has multiple ``CN`` attributes Actions
Bug #15135: Potential local file include vulnerability via DNS Resolver Python Module Script include mechanism Actions
Bug #15139: Local DNS resolution behavior does not add an IPv6 nameserver Actions
Bug #15145: Unable to perform Packet Captures on a tailscale interface in GUI with default settings Actions
Bug #15147: Cannot configure dual stack IPsec tunnel to accept connections from any remote address on both address families Actions
Bug #15148: OpenVPN Wizard fails when a VIP is used Actions
Bug #15156: Fragmented packets delayed by limiters are lost Actions
Bug #15157: PHP error when generating a notification after detecting a malformed configuration Actions
Bug #15171: Removing an IPsec Phase 1 entry can either remove the wrong Phase 2 entries or leave orphaned Phase 2 entries in the configuration Actions
Bug #15176: Change Mobile IPsec RADIUS accounting to use ``accounting_requires_vip`` so accounting will not activate for non-mobile VPNs Actions
Bug #15181: PHP error in ``interfaces_qinq_edit.php`` when creating a QinQ interface Actions
pfSense Packages - Bug #15190: PHP error from RRD Graphs when resolution is null Actions
Bug #15214: Advanced rule options tooltip does not show negated Tag option Actions
Bug #15223: Killing states on downed gateways breaks when ``Skip rules when gateway is down`` is enabled Actions
Bug #15224: ``services_acb_settings.php`` does not fully validate value of ``frequency``, uses value without encoding Actions
Bug #15225: Killing states on downed gateways breaks for static interface configurations Actions
Bug #15248: Removing a gateway group used as the default gateway results in no default route Actions
Bug #15252: Egress states remain when killing states for scheduled rules Actions
Bug #15263: PHP error display formatting issues Actions
Bug #15264: ``crash_reporter.php`` displays PHP Error log without encoding Actions
Bug #15282: Users with Deny Config Write privilege can trigger some VLAN interface operations Actions
Bug #15288: ``loader.conf`` may be missing ``loader_conf_files`` so ``loader.conf.lua`` may not be parsed Actions
Bug #15299: Old auto-added MAC addresses are not pruned for non-concurrent Captive Portal sessions Actions
Bug #15301: Setup Wizard WAN configuration form field problem Actions
Bug #15310: Errors in ``status.php`` IPsec sections when IPsec is not configured Actions
Bug #15318: Users with Deny Config Write privilege can trigger some QinQ interface operations Actions
Bug #15328: Changes in Kea DHCP interface pools may invalidate lease database content Actions
Bug #15361: Network and broadcast address input validation is incorrectly applied to IPv6 VIPs Actions
Bug #15362: Config upgrade error with empty gateway interval tags. Actions
Bug #15363: Reply traffic on a secondary WAN may be dropped when passed through dummynet Actions
Bug #15373: Firewall Logs Dashboard widget update interval does not behave as expected Actions
Bug #15384: Reordering IPsec Phase 2 entries may result in a malformed configuration Actions
Bug #15399: Local host gateways are shown in the default gateways list Actions
Bug #15404: Captive Portal logo fails to load after authenticated redirect Actions
Bug #15411: Hostname missing from logs in certain cases can cause the system log to display in an unexpected manner Actions
Bug #15413: Kernel panic in HA nodes when under high load Actions
Bug #15423: PHP error when applying interface settings if the ``/tmp/.interfaces.apply`` file is present but empty Actions
Bug #15434: DNS Forwarder ignores "Use remote DNS Servers, ignore local DNS" setting Actions
Bug #15440: CA certificates are not added to the Trust Store Actions
Bug #15442: CLI password check exits with a write access error when checking is a read-only operation Actions
Bug #15449: IPsec VTI static routes may not be added after the system boots Actions
Bug #15454: Certificate Manager GUI inconsistency in Revocation tab titles Actions
Bug #15471: Memory leak in pfSense module function ``pfSense_get_ifaddrs()`` Actions
Bug #15481: File descriptor leak in ``bsnmpd`` Actions
Bug #15490: Sanitize RFC 2136 Dynamic DNS update keys in ``status.php`` output Actions
Bug #15502: Proxy variables in ``crontab`` contents are improperly formatted Actions
Bug #15516: Per-rule byte counter values lost across a filter reload Actions
Bug #15525: File browser on ``diag_edit.php`` does not encode directory names before display Actions
Bug #15537: Separator positions are incorrect when copying interface group rules Actions
Bug #15547: Filter rule association incorrectly displayed when editing a port forward Actions
Bug #15552: NTP option "DNS Resolution" has no effect when using NTP pool hostnames Actions
Bug #15565: System proxy credentials with certain characters may fail to authenticate Actions
Bug #15572: Disabling DNSSEC should also disable Harden DNSSEC Data Actions
Bug #15589: Saving an IPv6 gateway overrides the IPv4 gateway Actions
Bug #15601: Routes with IPv6 Address as Next Hop for IPv4 Destination Causes Kernel Panic Actions
Bug #15606: Data transfer problems when using interface-bound states with automatic floating states for IPsec rules Actions
Bug #15624: Skip Packages option for Configuration Backups fails with large configurations Actions
Bug #15635: Gateway monitoring includes disabled gateways Actions
Bug #15637: Kea DHCP service control inconsistencies Actions
pfSense Plus - Bug #15639: Automatic boot verification shows negative timer Actions
Bug #15657: State table entries printed on ``diag_dump_states.php`` may contain an unexpected interface Actions
Bug #15671: Setting the Port Forward interface to an interface group selects an invalid destination Actions
Bug #15684: Panic in ``tcp_m_copym`` with selective ACK enabled Actions
Bug #15685: Mobile IPsec does not automatically switch to failover gateway Actions
Bug #15694: State Killing on Gateway Recovery fails for the default gateway group with the "Kill all" option selected Actions
Bug #15700: Package navigation menus can be duplicated when reinstalling the package Actions
Bug #15702: IPv4 DHCP client responses may be routed unexpectedly out unrelated WANs Actions
Bug #15704: Automatic EDNS value may be lower than expected Actions
Bug #15711: Special characters in the ACB configuration change description can cause PHP errors Actions
Bug #15718: AutoConfigBackup tries to upload backups before the system has finished booting Actions
Bug #15719: GUI logout messages do not use the ``auth`` log facility Actions
Bug #15722: Unbound configuration file contains Localhost address in forwarding mode with TLS enabled Actions
Bug #15723: ``unbound-checkconf`` fails with python mode enabled Actions
Bug #15725: Dashboard widgets refresh at unintended intervals Actions
pfSense Packages - Bug #15726: Apcupsd dashboard widget warning/critical values are not digits or units as expected Actions
Bug #15729: Session cookie warnings Actions
pfSense Packages - Bug #15733: Changing the account key name does not update respective certificates Actions
pfSense Packages - Bug #15744: Suricata LOGS MGMT feature shows ``enabled`` by default on a green-field install when it should instead default to ``disabled`` Actions
Bug #15750: Hostnames for ISC DHCP leases are not removed from Unbound when switching to Kea Actions
Bug #15751: Declining to reset the admin account via the console menu still prompts to change the password Actions
Bug #15755: Mobile IPsec sends incorrect DNS attribute IDs Actions
Bug #15757: Incorrect dashboard column spacing when using five columns Actions
pfSense Packages - Bug #15760: Typo in Snort Important Preproc Information Actions
pfSense Packages - Bug #15771: RPKI cannot be configured Actions
Bug #15772: Captive Portal zones can fail to start due to ID conflict Actions
Bug #15777: ``resizewin`` occasionally gets fed a spurious line feed over certain serial console+client combinations Actions
Bug #15778: Interface group members are not validated on load/save on ``interfaces_groups_edit.php``, and are printed without encoding on ``interfaces_groups.php`` Actions
Bug #15791: No default route after boot Actions
Bug #15795: Removing a route from the High Availability primary node does not remove the entry from the routing table on the secondary node Actions
Bug #15802: Dynamic DNS attempts to resolve entries with disabled interfaces Actions
Bug #15809: UFS upgrades do not create new log files Actions
Bug #15819: PHP error when creating intermediate certificates Actions
pfSense Packages - Bug #15824: Build options on haproxy29 package do not match previous versions Actions
Bug #15830: ``process_alias_urltable()`` can fail to create an archive of a URL table alias when RAM disks are enabled Actions
Bug #15831: Kernel Panic when IGMPProxy gets CIDR Removed Actions
Bug #15834: Package menus with the same name but different sections do not get removed Actions
Bug #15842: Kea HA does not list TLS certificates Actions
pfSense Packages - Bug #15872: PHP error when accessing mail reports Actions
Bug #15873: PHP error when a user is denied access to the dashboard Actions
Bug #15874: Users with deny config write privilege can trigger logging operations Actions
Bug #15876: Routing Advertisements daemon fails to start when configured with more than 3 RDNSS entries in a prefix Actions
Regression #12581: Non Link-Local IPv6 CARP address does not get advertised to endpoints with RADVD Actions
Regression #14026: HA node with CARP VIP in backup state is unable to ping the active node using that CARP VIP address Actions
Regression #14431: Sending IPv6 traffic on a disabled interface can trigger a kernel panic Actions
Regression #14488: Extensions directory is not set in ``rc.php_ini_setup`` Actions
pfSense Packages - Regression #14850: Unreadable alerts file results in PHP error Actions
Regression #14930: Clean installation using Auto (ZFS) + MBR (BIOS) does not boot Actions
Regression #14970: Static ARP assignments lose ``permanent`` flag in ARP table Actions
Regression #15074: ISO fails to boot UEFI Actions
Regression #15076: DHCP leases may not be restored from older configuration backups Actions
Regression #15094: Updates fail against an authenticated upstream proxy Actions
Regression #15112: ``status_interfaces.php`` is missing several values for SFP modules Actions
Regression #15152: Systems with low RAM fail to upgrade to 24.03 Actions
Regression #15170: webConfigurator IPv6 resolver syntax change Actions
Regression #15197: Outbound NAT rules using an alias without a matching address family create unexpected PF rules Actions
Regression #15206: Deleting OpenVPN server or client on 24.03 release gives an error Actions
Regression #15339: Firewall logs widget cannot have multiple instances Actions
Regression #15430: Interface-bound state policy does not handle IPsec VTI traffic as expected when filtering on ``enc0`` interface Actions
Regression #15439: Incorrect icon on collapsed dashboard widgets Actions
pfSense Packages - Regression #15469: RRD Graphs height is smaller than expected Actions
Regression #15470: Port forward rules created by ``miniupnpd`` do not expire Actions
pfSense Packages - Regression #15540: Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots Actions
Regression #15578: Saving an existing certificate authority creates a duplicate Actions
Regression #15634: SSH Fails to Start on snapshots Actions
Regression #15669: Static routes using null gateways are not installed Actions
Regression #15687: ``sshguard`` is not properly detecting GUI login failures Actions
Regression #15692: OpenVPN QinQ interface creation fails Actions
Regression #15762: Captive Portal concurrent login setting does not work Actions
Regression #15768: OpenVPN Windows Client fails to connect Actions
Regression #15810: ntpd can fail to start when unbindable addresses exist Actions
Regression #15815: PHP error when no WOL entries are defined Actions
Regression #15832: DDNS always resolves the public address using the default gateway Actions
Regression #15833: Default Check IP Service enable/disable status not reflected on Check IP Service List Actions
Regression #15882: L2TP server settings are not saved correctly Actions
Regression #15885: ALTQ queue status data is not shown Actions
Regression #15888: ALTQ shaper queues are not present after importing a config Actions
Regression #15890: Unable to change domain overrides in DNSMasq Actions
pfSense Packages - Regression #15892: PHP error: usr/local/www/acme/acme_accountkeys.php:158 Actions
Feature #855: Ability to selectively kill states on gateway recovery Actions
Feature #1979: Allow user-defined rules to utilize built-in system aliases Actions
Feature #5080: Settings tab for global Kea DHCP server options Actions
Feature #7943: Overflow scrolling for top navigation drop-down menus in Fixed mode Actions
Feature #8794: NTP authentication support Actions
Feature #10000: Enable ``@`` support for Azure in Dynamic DNS Actions
Feature #11177: Support DDNS over IPv6 Actions
Feature #11556: Kill states using the pre-NAT address Actions
Feature #12522: More GUI options for OpenVPN Client-Specific Overrides Actions
pfSense Packages - Feature #13063: Improve modem support Actions
Feature #13085: OpenVPN NBDD server options Actions
pfSense Packages - Feature #13135: Add dibdot DoH-IP-blocklists feeds Actions
Feature #13256: Better handling of duplicate IP addresses in static DHCP assignments Actions
Feature #13520: Improve Thermal Sensors Dashboard widget readability Actions
Feature #13894: Explicitly enable/disable DHCP Dynamic DNS updates in each scope Actions
Feature #14067: Force Dynamic DNS to fetch public IP instead of using WAN IP Actions
Feature #14165: Option to allow the DNS Forwarder to ignore system DNS servers Actions
Feature #14208: Automatic Split-DNS for 1:1 NAT Actions
Feature #14289: Enable ``@`` support for name.com in Dynamic DNS Actions
Feature #14437: Add DynDNS Provider - Hetzner Actions
Feature #14483: Conditionally reconfigure IPsec VTI interfaces only when necessary while applying IPsec changes Actions
Feature #14728: Support for CD/DVD drives in the External Configuration Locator (ECL) Actions
Feature #14953: Add Kea information to ``status.php`` Actions
Feature #15183: Add per-rule option to set PF State Policy (if-bound vs floating) Actions
Feature #15233: Recognize QAT 4xxx devices in System Information Widget Actions
Feature #15234: Show details of system aliases in tooltip on firewall and NAT rule lists Actions
Feature #15245: Show interface subnet details in a tooltip on the IPsec Phase 2 list Actions
Feature #15257: Support using a mask to block MAC addresses in Captive Portal Actions
Feature #15297: Add EFI boot information to ``status.php`` Actions
Feature #15298: Add ``loader.conf.lua`` contents to ``status.php`` Actions
Feature #15322: 50x and 404 error handling to GUI web server configuration Actions
Feature #15323: Display server description when WOL is sent using mac url or power-on button Actions
Feature #15415: Enhance the firewall log action hover information view, show reason info Actions
Feature #15422: Show current boot method in System Information Dashboard widget Actions
Feature #15437: Use natural sorting when sorting interfaces Actions
Feature #15544: Add hostname to Slack notifications Actions
Feature #15575: Kea High Availability Support (IPv4 and IPv6) Actions
Feature #15609: Allow filtering packet captures by system-defined protocols Actions
Feature #15636: High Availability Status Changes Actions
Feature #15647: Include ability to generate Configuration file and QR Code for wireguard configuration Actions
Feature #15659: Kea option for ``reservations-out-of-pool`` and associated input validation (IPv4 and IPv6) Actions
Feature #15661: GUI options to change default SCTP state timeouts Actions
pfSense Packages - Feature #15674: Support custom IP and Port variables for interfaces Actions
Feature #15776: System Aliases for various reserved networks Actions
Feature #15828: Kea DHCP lease database RAM disk support (IPv4 and IPv6) Actions
Todo #13263: Reduce log spam when deleting a static DHCP entry Actions
Todo #13268: Dynamically adjust the interface name maximum width in the login banner Actions
Todo #13537: Update vendor files Actions
Todo #15053: Update PHP to 8.3.x Actions
pfSense Packages - Todo #15058: Remove Zabbix 4 Agent and Proxy Actions
Todo #15106: Remove ``Time`` column from OS Boot logs Actions
Todo #15173: Add global option to set default PF State Policy (if-bound vs floating) Actions
Todo #15188: Remove deprecated OpenVPN hardware crypto engine option Actions
Todo #15220: Handle ``route-to`` and ``reply-to`` states when using the ``if-bound`` state policy Actions
Todo #15256: Upgrade Unbound to >= 1.19.1 Actions
Todo #15265: Remove ``jquery-treegrid`` unit testing files Actions
Todo #15302: Error handling in the Setup Wizard is very user-unfriendly Actions
Todo #15408: Reduce inconsistencies between Configuration History with/without ZFS Boot Environments Actions
Todo #15465: Update dnsmasq to version 2.90 Actions
Todo #15483: Update Unbound to 1.22.0 Actions
Todo #15586: Query for SMART data only on root disk devices Actions
pfSense Docs - Todo #15642: Update OpenVPN CSC documentation Actions
Todo #15728: Improve Thermal Sensors Dashboard widget refresh code Actions
Todo #15779: Update Dynamic DNS API URL for porkbun.com Actions
Todo #15780: Speed up MBUF Usage command in system information widget Actions
Todo #15781: Remove deprecated HTTP/1.0 Pragma header Actions
Todo #15782: Use minified nvd3 vendor files Actions
Todo #15848: Exclude the WireGuard and Tailscale interface group system aliases from rules Actions
Todo #15863: Update nginx HTTP2 syntax Actions
Todo #15864: Update UPnP IGD & PCP references Actions
Todo #15865: Make the UPnP IGD & PCP STUN port optional Actions