I guess that's what is happening.

It is good to know then that if you leave your pfsense GUI on the home page it will not log you out after automatically.

Since this could be a security problem I hope it will log you out when page was closed completely without glitch.

Strange question.
Every navigator on earth has a possibility to show the 'source code' which will show you the ….. html used to show the page.
Looking at the html, I found the image file right away : /logo.png

... and if you know what style sheets (css) are, you will also find out that /logo-black.png is also used on the login page.

The web server's (GUI) root directory is /usr/local/www

BUMP!

Suggest a trust validated chain with the following items; a self-signed Root Certificate Authority (Root-CA), intermediate CA (Sub-CA), and SSL server certificate.

Install Root-CA into Trusted Root Certificate Store, install Sub-CA into Intermediate Trusted Store, and replace default webConfigurator (Server) certificate with new SSL server certificate.

Edit: The above solution works with v2.3.x however v2.4-RC requires Alternative Names to be entered including IP address (pfsense) on internal certificate (Server).

Internal CA Intermediate CA Certificate (Server) IP address (pfSense) FQDN

@ljorgensen:

deleted all <rrddata>elements in the config.</rrddata>

This time I did it with viconfig and they stayed gone. Things are much faster now.

How did they end up there in the first place? I have reinstalled it on newer hardware a couple of times from a backup with rrddata in the config. I thought it was supposed to remove that data after restore.

Hi there guys.

There is a working widget for this if this is what you are wanting.
1 kind member had previously done work on it here and it was just updated yesterday by another kind member.

https://forum.pfsense.org/index.php?topic=97823.0

Just follow the thread and it should all work out for you guys too!

Cheers.

Heya

I know it's picky, but if you wanted to maybe do it as you managed to do this so quick (I am no programmer myself sadly but will eventually get round to learning). Would it be hard to get the status's to show red or green for online and offline like the original version was?
I imagine that's what the script was doing partially?

I dunno, just a suggestion. I am very thankful someone chimed in and updated this as I am sure many others will appreciate this widget ounce again!

Cheers guys!

3 years since the original post and as of 2.3.4 this issue persists.  I ran into this yesterday and had to put my own DHCP server on the WAN to get that interface to DHCP an IP so that webConfigurator would even start.

I need webConfigurator to make changes to the WAN so it would actually connect to my ISP.  Major catch 22 here.  Why on earth would webConfigurator fail because it can't bind to the WAN IP of 0.0.0.0?.  That's absurd.  It should always bind to the (surely static) LAN address irrespective of what's going on with the WAN, up, down, misconfigured, or whatever.

I keep wanting to contribute to the project financially and recommend pfSense to clients but every time I turn around, there's a new bug that's years old in my exceptionally basic home setup.

For anyone else with this issue, you just need to be certain that your WAN gets an IP on startup, via whatever absurdity you have to pull in the shell to make it happen.

@johnpoz:

Or you could just use blacklist in unbound..  That same yoyo.org link they listed has the list in unbound.. Just load the file into unbound and all the ad domains just get redirect to 127.0.0.1

This is very interesting. How would one load the list in unbound with a script, similar to the way we can load it into Squid with the script?

It would appear it needs to be merged with /var/unbound/access_lists.conf, but how?

Yep… this can be ignored...

I really can't believe I changed the port without writing it down.  I was able to ssh in and vi the config.xml to see what I had done.

Shame, Shame, Shame. (sorry just re-watched the series in anticipation)

experienced this behavior in chrome, once I tried firefox I was able to login again

@Mike5906:

It's off by a factor of 10x

I had the same thing, but after seeing this I checked and found the graphs on my dashboard were set to BYTES, not BITS, so they were actually correct. I guess the ones on the Traffic Graph page are set to BYTES as well, but I can't see a way to change them, which is very confusing given that the table on the right is using BITS.

Thank you so much

Created Bug #7620.

Even though it does update dynamically there may still be a problem with update not happening under certain conditions.

It's been a couple of weeks so I don't recall all the details.  Had an hour long ISP outage and when service was restore pfSense grabbed a new WAN IP address (DHCP).  But the widget never updated automatically.

Notes:
There were no local links or anything like that that went down that pfSense would be able to detect.
Single NIC; WAN is a VLAN, LAN is native

A fluke maybe?  I don't know.  Never attempted to reproduce.

2.3.4
i386 Full Install
RAM disk enabled

I think it is either the pfBlocker- or the NUT widget.

@gjaltemba:

The GUI protocol may be reset from the console. Choose to reset the LAN IP, enter the same IP, and it will prompt to reset the WebGUI back to HTTP.

https://doc.pfsense.org/index.php/Locked_out_of_the_WebGUI#HTTP_vs_HTTPS_confusion

Thankyou very much @gjaltemba
I fixed it  ;D ;D ;D

Problem was definately a failing drive which was NOT reported in the dashboard!!!  >:(

So, off to make another post

Failing.JPG
Failing.JPG_thumb

there is no error…
this is whole log for "dmesg"

Copyright (c) 1992-2016 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994         The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 10.3-RELEASE-p19 #0 bbfdb9a1d(RELENG_2_3_4): Wed May  3 16:09:14 CDT 2017     root@ce23-amd64-builder:/builder/pfsense-234/tmp/obj/builder/pfsense-234/tmp/FreeBSD-src/sys/pfSense amd64 FreeBSD clang version 3.4.1 (tags/RELEASE_34/dot1-final 208032) 20140512 CPU: AMD G-T40E Processor (1000.02-MHz K8-class CPU)   Origin="AuthenticAMD"  Id=0x500f20  Family=0x14  Model=0x2  Stepping=0   Features=0x178bfbff <fpu,vme,de,pse,tsc,msr,pae,mce,cx8,apic,sep,mtrr,pge,mca,cmov,pat,pse36,clflush,mmx,fxsr,sse,sse2,htt>Features2=0x802209 <sse3,mon,ssse3,cx16,popcnt>AMD Features=0x2e500800 <syscall,nx,mmx+,ffxsr,page1gb,rdtscp,lm>AMD Features2=0x35ff <lahf,cmp,svm,extapic,cr8,abm,sse4a,mas,prefetch,ibs,skinit,wdt>SVM: NP,NRIP,NAsids=8   TSC: P-state invariant, performance statistics real memory  = 4815060992 (4592 MB) avail memory = 4080889856 (3891 MB) Event timer "LAPIC" quality 400 ACPI APIC Table: <core  coreboot="">FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs FreeBSD/SMP: 1 package(s) x 2 core(s) cpu0 (BSP): APIC ID:  0 cpu1 (AP): APIC ID:  1 random: <software, yarrow="">initialized ioapic0 <version 2.1="">irqs 0-23 on motherboard wlan: mac acl policy registered ipw_bss: You need to read the LICENSE file in /usr/share/doc/legal/intel_ipw/. ipw_bss: If you agree with the license, set legal.intel_ipw.license_ack=1 in /boot/loader.conf. module_register_init: MOD_LOAD (ipw_bss_fw, 0xffffffff806209b0, 0) error 1 ipw_ibss: You need to read the LICENSE file in /usr/share/doc/legal/intel_ipw/. ipw_ibss: If you agree with the license, set legal.intel_ipw.license_ack=1 in /boot/loader.conf. module_register_init: MOD_LOAD (ipw_ibss_fw, 0xffffffff80620a60, 0) error 1 ipw_monitor: You need to read the LICENSE file in /usr/share/doc/legal/intel_ipw/. ipw_monitor: If you agree with the license, set legal.intel_ipw.license_ack=1 in /boot/loader.conf. module_register_init: MOD_LOAD (ipw_monitor_fw, 0xffffffff80620b10, 0) error 1 iwi_bss: You need to read the LICENSE file in /usr/share/doc/legal/intel_iwi/. iwi_bss: If you agree with the license, set legal.intel_iwi.license_ack=1 in /boot/loader.conf. module_register_init: MOD_LOAD (iwi_bss_fw, 0xffffffff80647cb0, 0) error 1 iwi_ibss: You need to read the LICENSE file in /usr/share/doc/legal/intel_iwi/. iwi_ibss: If you agree with the license, set legal.intel_iwi.license_ack=1 in /boot/loader.conf. module_register_init: MOD_LOAD (iwi_ibss_fw, 0xffffffff80647d60, 0) error 1 iwi_monitor: You need to read the LICENSE file in /usr/share/doc/legal/intel_iwi/. iwi_monitor: If you agree with the license, set legal.intel_iwi.license_ack=1 in /boot/loader.conf. module_register_init: MOD_LOAD (iwi_monitor_fw, 0xffffffff80647e10, 0) error 1 netmap: loaded module kbd0 at kbdmux0 module_register_init: MOD_LOAD (vesa, 0xffffffff81017160, 0) error 19 cryptosoft0: <software crypto="">on motherboard padlock0: No ACE support. acpi0: <core coreboot="">on motherboard acpi0: Power Button (fixed) cpu0: <acpi cpu="">on acpi0 cpu1: <acpi cpu="">on acpi0 atrtc0: <at realtime="" clock="">port 0x70-0x71 irq 8 on acpi0 Event timer "RTC" frequency 32768 Hz quality 0 attimer0: <at timer="">port 0x40-0x43 irq 0 on acpi0 Timecounter "i8254" frequency 1193182 Hz quality 0 Event timer "i8254" frequency 1193182 Hz quality 100 Timecounter "ACPI-fast" frequency 3579545 Hz quality 900 acpi_timer0: <32-bit timer at 3.579545MHz> port 0x808-0x80b on acpi0 hpet0: <high precision="" event="" timer="">iomem 0xfed00000-0xfed003ff on acpi0 Timecounter "HPET" frequency 14318180 Hz quality 950 Event timer "HPET" frequency 14318180 Hz quality 550 Event timer "HPET1" frequency 14318180 Hz quality 450 pcib0: <acpi host-pci="" bridge="">port 0xcf8-0xcff on acpi0 pci0: <acpi pci="" bus="">on pcib0 pcib1: <acpi pci-pci="" bridge="">irq 16 at device 4.0 on pci0 pci1: <acpi pci="" bus="">on pcib1 re0: <realtek 8111="" 8168="" b="" c="" cp="" d="" dp="" e="" f="" g="" pcie="" gigabit="" ethernet="">port 0x1000-0x10ff mem 0xf7a00000-0xf7a00fff,0xf7900000-0xf7903fff irq 16 at device 0.0 on pci1 re0: Using 1 MSI-X message re0: ASPM disabled re0: Chip rev. 0x2c000000 re0: MAC rev. 0x00200000 miibus0: <mii bus="">on re0 rgephy0: <rtl8169s 8211="" 8110s="" 1000base-t="" media="" interface="">PHY 1 on miibus0 rgephy0:  none, 10baseT, 10baseT-FDX, 10baseT-FDX-flow, 100baseTX, 100baseTX-FDX, 100baseTX-FDX-flow, 1000baseT, 1000baseT-master, 1000baseT-FDX, 1000baseT-FDX-master, 1000baseT-FDX-flow, 1000baseT-FDX-flow-master, auto, auto-flow re0: Using defaults for TSO: 65518/35/2048 re0: Ethernet address: 00:xx:xx:xx:xx:74 re0: netmap queues/slots: TX 1/256, RX 1/256 pcib2: <acpi pci-pci="" bridge="">irq 17 at device 5.0 on pci0 pci2: <acpi pci="" bus="">on pcib2 re1: <realtek 8111="" 8168="" b="" c="" cp="" d="" dp="" e="" f="" g="" pcie="" gigabit="" ethernet="">port 0x2000-0x20ff mem 0xf7c00000-0xf7c00fff,0xf7b00000-0xf7b03fff irq 17 at device 0.0 on pci2 re1: Using 1 MSI-X message re1: ASPM disabled re1: Chip rev. 0x2c000000 re1: MAC rev. 0x00200000 miibus1: <mii bus="">on re1 rgephy1: <rtl8169s 8211="" 8110s="" 1000base-t="" media="" interface="">PHY 1 on miibus1 rgephy1:  none, 10baseT, 10baseT-FDX, 10baseT-FDX-flow, 100baseTX, 100baseTX-FDX, 100baseTX-FDX-flow, 1000baseT, 1000baseT-master, 1000baseT-FDX, 1000baseT-FDX-master, 1000baseT-FDX-flow, 1000baseT-FDX-flow-master, auto, auto-flow re1: Using defaults for TSO: 65518/35/2048 re1: Ethernet address: 00:xx:xx:xx:xx:75 re1: netmap queues/slots: TX 1/256, RX 1/256 pcib3: <acpi pci-pci="" bridge="">irq 18 at device 6.0 on pci0 pci3: <acpi pci="" bus="">on pcib3 re2: <realtek 8111="" 8168="" b="" c="" cp="" d="" dp="" e="" f="" g="" pcie="" gigabit="" ethernet="">port 0x3000-0x30ff mem 0xf7e00000-0xf7e00fff,0xf7d00000-0xf7d03fff irq 18 at device 0.0 on pci3 re2: Using 1 MSI-X message re2: ASPM disabled re2: Chip rev. 0x2c000000 re2: MAC rev. 0x00200000 miibus2: <mii bus="">on re2 rgephy2: <rtl8169s 8211="" 8110s="" 1000base-t="" media="" interface="">PHY 1 on miibus2 rgephy2:  none, 10baseT, 10baseT-FDX, 10baseT-FDX-flow, 100baseTX, 100baseTX-FDX, 100baseTX-FDX-flow, 1000baseT, 1000baseT-master, 1000baseT-FDX, 1000baseT-FDX-master, 1000baseT-FDX-flow, 1000baseT-FDX-flow-master, auto, auto-flow re2: Using defaults for TSO: 65518/35/2048 re2: Ethernet address: 00:xx:xx:xx:xx:76 re2: netmap queues/slots: TX 1/256, RX 1/256 ahci0: <amd sb7x0="" sb8x0="" sb9x0="" ahci="" sata="" controller="">port 0x4010-0x4017,0x4020-0x4023,0x4018-0x401f,0x4024-0x4027,0x4000-0x400f mem 0xf7f04000-0xf7f043ff irq 19 at device 17.0 on pci0 ahci0: AHCI v1.20 with 6 6Gbps ports, Port Multiplier supported ahci0: quirks=0x22000 <ati_pmp_bug,1msi>ahcich0: <ahci channel="">at channel 0 on ahci0 ahcich1: <ahci channel="">at channel 1 on ahci0 ahcich2: <ahci channel="">at channel 2 on ahci0 ahcich3: <ahci channel="">at channel 3 on ahci0 ahcich4: <ahci channel="">at channel 4 on ahci0 ahcich5: <ahci channel="">at channel 5 on ahci0 ohci0: <amd sb7x0="" sb8x0="" sb9x0="" usb="" controller="">mem 0xf7f00000-0xf7f00fff irq 18 at device 18.0 on pci0 usbus0 on ohci0 ehci0: <amd sb7x0="" sb8x0="" sb9x0="" usb="" 2.0="" controller="">mem 0xf7f04400-0xf7f044ff irq 17 at device 18.2 on pci0 usbus1: EHCI version 1.0 usbus1 on ehci0 ohci1: <amd sb7x0="" sb8x0="" sb9x0="" usb="" controller="">mem 0xf7f01000-0xf7f01fff irq 18 at device 19.0 on pci0 usbus2 on ohci1 ehci1: <amd sb7x0="" sb8x0="" sb9x0="" usb="" 2.0="" controller="">mem 0xf7f04500-0xf7f045ff irq 17 at device 19.2 on pci0 usbus3: EHCI version 1.0 usbus3 on ehci1 isab0: <pci-isa bridge="">at device 20.3 on pci0 isa0: <isa bus="">on isab0 pcib4: <acpi pci-pci="" bridge="">at device 20.4 on pci0 pci4: <acpi pci="" bus="">on pcib4 ohci2: <amd sb7x0="" sb8x0="" sb9x0="" usb="" controller="">mem 0xf7f02000-0xf7f02fff irq 18 at device 20.5 on pci0 usbus4 on ohci2 pcib5: <acpi pci-pci="" bridge="">at device 21.0 on pci0 pci5: <acpi pci="" bus="">on pcib5 ohci3: <amd sb7x0="" sb8x0="" sb9x0="" usb="" controller="">mem 0xf7f03000-0xf7f03fff at device 22.0 on pci0 usbus5 on ohci3 ehci2: <amd sb7x0="" sb8x0="" sb9x0="" usb="" 2.0="" controller="">mem 0xf7f04600-0xf7f046ff at device 22.2 on pci0 usbus6: EHCI version 1.0 usbus6 on ehci2 acpi_button0: <power button="">on acpi0 orm0: <isa option="" rom="">at iomem 0xee800-0xeffff on isa0 gpioapu0: Environment returned APU gpioapu0: Address on reg 0x24 is 0xfed80000/4275568640 gpioapu0 at iomem 0xfed80100-0xfed801ff on isa0 ppc0: cannot reserve I/O port range uart0: <16550 or compatible> at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0 uart0: console (115200,n,8,1) uart1: <16550 or compatible> at port 0x2f8-0x2ff irq 3 on isa0 Timecounters tick every 1.000 msec random: unblocking device. usbus0: 12Mbps Full Speed USB v1.0 usbus1: 480Mbps High Speed USB v2.0 usbus2: 12Mbps Full Speed USB v1.0 usbus3: 480Mbps High Speed USB v2.0 ugen0.1: <ati>at usbus0 uhub0: <ati 1="" 9="" ohci="" root="" hub,="" class="" 0,="" rev="" 1.00="" 1.00,="" addr="">on usbus0 ugen1.1: <ati>at usbus1 uhub1: <ati 1="" 9="" ehci="" root="" hub,="" class="" 0,="" rev="" 2.00="" 1.00,="" addr="">on usbus1 ugen2.1: <ati>at usbus2 uhub2: <ati 1="" 9="" ohci="" root="" hub,="" class="" 0,="" rev="" 1.00="" 1.00,="" addr="">on usbus2 ugen3.1: <ati>at usbus3 uhub3: <ati 1="" 9="" ehci="" root="" hub,="" class="" 0,="" rev="" 2.00="" 1.00,="" addr="">on usbus3 usbus4: 12Mbps Full Speed USB v1.0 usbus5: 12Mbps Full Speed USB v1.0 usbus6: 480Mbps High Speed USB v2.0 ugen4.1: <ati>at usbus4 uhub4: <ati 1="" 9="" ohci="" root="" hub,="" class="" 0,="" rev="" 1.00="" 1.00,="" addr="">on usbus4 ugen5.1: <ati>at usbus5 uhub5: <ati 1="" 9="" ohci="" root="" hub,="" class="" 0,="" rev="" 1.00="" 1.00,="" addr="">on usbus5 ugen6.1: <ati>at usbus6 uhub6: <ati 1="" 9="" ehci="" root="" hub,="" class="" 0,="" rev="" 2.00="" 1.00,="" addr="">on usbus6 uhub4: 2 ports with 2 removable, self powered uhub0: 5 ports with 5 removable, self powered uhub2: 5 ports with 5 removable, self powered uhub5: 4 ports with 4 removable, self powered uhub6: 4 ports with 4 removable, self powered uhub1: 5 ports with 5 removable, self powered uhub3: 5 ports with 5 removable, self powered ugen6.2: <generic>at usbus6 umass0: <generic 0="" 2="" flash="" card="" readerwriter,="" class="" 0,="" rev="" 2.01="" 1.00,="" addr="">on usbus6 ada0 at ahcich0 bus 0 scbus0 target 0 lun 0 ada0: <kingston sms200s360g="" 603abbf0="">ATA8-ACS SATA 3.x device ada0: Serial Number 500xxB7xxxx7Fxx6 ada0: 600.000MB/s transfers (SATA 3.x, UDMA6, PIO 512bytes) ada0: Command Queueing enabled ada0: 57241MB (117231408 512 byte sectors) ada0: Previously was known as ad4 da0 at umass-sim0 bus 0 scbus6 target 0 lun 0 da0: <multiple card ="" reader="" 1.00="">Removable Direct Access SPC-2 SCSI device da0: Serial Number 058Fxxx66485 da0: 40.000MB/s transfers da0: Attempt to query device size failed: NOT READY, Medium not present da0: quirks=0x2 <no_6_byte>SMP: AP CPU #1 Launched! Timecounter "TSC" frequency 1000022612 Hz quality 800 Trying to mount root from ufs:/dev/ufsid/540d00482592bf04 [rw]... padlock0: No ACE support. aesni0: No AESNI support. re1: link state changed to DOWN re0: link state changed to DOWN tun2: changing name to 'ovpns2' ovpns2: link state changed to UP pflog0: promiscuous mode enabled re0: link state changed to UP re1: link state changed to UP re2: link state changed to DOWN re0: link state changed to DOWN re0: link state changed to UP /code]</no_6_byte></multiple></kingston></generic></generic></ati></ati></ati></ati></ati></ati></ati></ati></ati></ati></ati></ati></ati></ati></isa></power></amd></amd></acpi></acpi></amd></acpi></acpi></isa></pci-isa></amd></amd></amd></amd></ahci></ahci></ahci></ahci></ahci></ahci></ati_pmp_bug,1msi></amd></rtl8169s></mii></realtek></acpi></acpi></rtl8169s></mii></realtek></acpi></acpi></rtl8169s></mii></realtek></acpi></acpi></acpi></acpi></high></at></at></acpi></acpi></core></software></version></software,></core ></lahf,cmp,svm,extapic,cr8,abm,sse4a,mas,prefetch,ibs,skinit,wdt></syscall,nx,mmx+,ffxsr,page1gb,rdtscp,lm></sse3,mon,ssse3,cx16,popcnt></fpu,vme,de,pse,tsc,msr,pae,mce,cx8,apic,sep,mtrr,pge,mca,cmov,pat,pse36,clflush,mmx,fxsr,sse,sse2,htt>