Oh, thank you very much ! :)

Thanks for the report, I can confirm it is a problem and I opened a ticket for it here https://redmine.pfsense.org/issues/6010 – I also pushed a fix to 2.3 for it, so it won't be a problem in the future.

They are OK at boot time, so once you have the interface saved it's OK from then on if you have to reboot.

GIF interfaces also had the same problem for interface flags so I applied the same fix there.

@André:

Pkg_edit then sends the changes made in the xml file for packages?

It renders UI pages of packages based on the fields defined in the package XML, and does the necessary stuff to save the user-defined values into the package's section of config.xml.

Thanks for the reply,
Why choose Python?
Thanks

What should the standard be for tabbing in parameters on function calls that span multiple lines?
i.e. when stringing the function name and all the parameters in one line makes the line "too long".

e.g.

Try to "line up" the additional parameters under the first parameter.
a) By putting enough TAB and space characters assuming that each TAB is being displayed at 4-space intervals in some editor:

TAB do_stuff($parameter1,
TAB TAB TAB space "Second parameter is some literal text",
TAB TAB TAB space $parameter3);

b) By putting enough TAB and space characters assuming that each TAB is being displayed at 8-space intervals in some editor:

TAB do_stuff($parameter1,
TAB TAB space "Second parameter is some literal text",
TAB TAB space $parameter3);

c) By putting TAB characters to the function name then space characters to fill out under the function name:
This avoids any assumption about the editor TAB display mode.

TAB do_stuff($parameter1,
TAB 9space "Second parameter is some literal text",
TAB 9space $parameter3);

Forget about lining up under the parameter on the first line, always indent subsequent lines by 1 TAB:

TAB do_stuff($parameter1,
TAB TAB "Second parameter is some literal text",
TAB TAB $parameter3);

Put the function name on a line by itself and all the parameters on later lines, always indented by 1 TAB:

TAB do_stuff(
TAB TAB $parameter1,
TAB TAB "Second parameter is some literal text",
TAB TAB $parameter3);

and if one of the parameters has some really long literal stuff, like long text, then extra lines that continue the same parameter are indented an extra TAB:

TAB do_stuff(
TAB TAB $parameter1,
TAB TAB gettext("Second parameter is some literal text that goes on and on and has line breaks.") . '
' .
TAB TAB TAB gettext("There is a lot to explain to the user.") . " " .
TAB TAB TAB gettext("So we need to concatenate a lot of text together into a single parameter."),
TAB TAB $parameter3);

TAB do_stuff(
TAB TAB $parameter1,
TAB TAB gettext("Second parameter is some literal text that goes on and on and has line breaks.") . '
' .
TAB TAB TAB gettext(
TAB TAB TAB TAB "There is a lot to explain to the user. " .
TAB TAB TAB TAB TAB "So we need to concatenate a lot of text together into a single parameter. " .
TAB TAB TAB TAB TAB "And sometimes the parameters passed are themselves a function that spans multiple lines."),
TAB TAB $parameter3);

The code currently uses various ways to do it, and it would be nice if there was a standard so that there does not need to a banter about it with each pull request!

Personally I like (3)+(4).

2.3 is now BETA!

Removed RFC 4638 patch.

Updated to pfSense from 2.3.a to
2.3-BETA (amd64)
built on Tue Jan 05 13:19:26 CST 2016
FreeBSD 10.2-STABLE

Refetched and applied PPP IPv6 fix and rebooted.

MTU=1500 en instant IPv6 access. Looking good, have to wait if stable.

edit: Please go ahead for pull request!

Your effort paid off, thank you so much David_W!

The correct way is to use the build scripts in the RELENG_2_2 branch of the pfsense-tools repository. The instructions thread will likely help, though note that access to the pfsense-tools repository is now granted on github using the github user name you provided on the portal.

There is no way to build a working pfSense 2.2 kernel without pfsense-tools, as the kernel patches are contained in this repository. I know this repository is deprecated, but this deprecation only applies from pfSense 2.3 (still not yet beta) onwards.

Your build environment needs to be FreeBSD 10.1 of the appropriate architecture (amd64 or i386).

Is this for 2.3? If so it belongs on the 2.3 board.

I think it used to auto-exit for a reason. The relevant stuff appears to be in /etc/phpshellsessions/gitsync in case someone's bored.

From https://redmine.pfsense.org/issues/5112 :

With some help from PiBa-NL via IRC I can confirm that the hackish approach works fine.

$authcfg = auth_get_authserver("YOUR LDAP BACKEND NAME"); $_attributes = array(); $loginok = authenticate_user($_POST['auth_user'], $_POST['auth_pass'], $authcfg, $_attributes);

I then uncommented the privilege checking. I hope I find the time to layout changes in a github PR and would like some guidance on how the new configuration options should be structured. It can get complicated if one wishes, but there I will not help much.

I thus consider this thread to be closed, but are happy to find collaborators for a github PR (join me on https://redmine.pfsense.org/issues/5112 ). Thanks.

That sounds a lot like RFC2307bis authentication as in https://redmine.pfsense.org/issues/5461 .

obviously(?) sysctl needs an API, so we can ensure it occurs correctly, and perhaps within some limit.

https://redmine.pfsense.org/issues/2668
I thought about this a long time ago and never did anything about it!
Someone (me?) should look at it again when the 2.3 code is stable.

Apparently…

new version with additional info:

What would be the implications of eliminating table "persist file" lines from the pfctl -vvPnf input in these two /etc/inc/filter_log.inc functions?

function find_rule_by_number($rulenum, $trackernum, $type="block") {
function buffer_rules_load() {

grep -v "persist file" /tmp/rules.debug | /sbin/pfctl -vvPnf -

Speeds it right up.