Yeah, this is something that is to be expected with huge log files.  Right now the GUI does not load the file in parts.  It just attempts to read the whole thing into a textarea control for viewing.  That does not work with huge files. A better solution is needed, but it has been low priority. Bill

I'm trying to avoid the loops discussed in RFC 7084: WPD-5:  Any packet received by the CE router with a destination           address in the prefix(es) delegated to the CE router but not           in the set of prefixes assigned by the CE router to the LAN           must be dropped.  In other words, the next hop for the           prefix(es) delegated to the CE router should be the null           destination.  This is necessary to prevent forwarding loops           when some addresses covered by the aggregate are not           reachable [RFC4632]. I have a /56 allocated by my ISP, but I'm only currently using a few of the /64 networks out of it. So, there are a lot of unused ones that will cause loops between my pfSense gateway and the ISP's router. These packets loop because the outbound packet setups the state in the firewall and then the inbound is allowed and loops. From my perspective, it would be better to add an outbound anti-spoofing rule that blocks anything in the PD that isn't being used. For example: Ping command on internal host: $ ping6 -c 1  2600:8802:1500:a01::1 PING6(56=40+8+8 bytes) 2600:8802:1500:a00:571:870b:ca12:2b3b –> 2600:8802:1500:a01::1 --- 2600:8802:1500:a01::1 ping6 statistics --- 1 packets transmitted, 0 packets received, 100.0% packet loss Results in the one packet looping between by pfSense gateway and the ISP's router: : tcpdump -i igb5 -s 0 -n -l -vvv host 2600:8802:1500:a01::1 tcpdump: listening on igb5, link-type EN10MB (Ethernet), capture size 65535 bytes 18:06:40.836650 IP6 (flowlabel 0x03823, hlim 63, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.843484 IP6 (flowlabel 0x03823, hlim 62, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.843500 IP6 (flowlabel 0x03823, hlim 61, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.852037 IP6 (flowlabel 0x03823, hlim 60, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.852053 IP6 (flowlabel 0x03823, hlim 59, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.859665 IP6 (flowlabel 0x03823, hlim 58, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.859681 IP6 (flowlabel 0x03823, hlim 57, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.867918 IP6 (flowlabel 0x03823, hlim 56, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.867933 IP6 (flowlabel 0x03823, hlim 55, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.875496 IP6 (flowlabel 0x03823, hlim 54, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.875511 IP6 (flowlabel 0x03823, hlim 53, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.883474 IP6 (flowlabel 0x03823, hlim 52, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.883490 IP6 (flowlabel 0x03823, hlim 51, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.899281 IP6 (flowlabel 0x03823, hlim 50, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.899296 IP6 (flowlabel 0x03823, hlim 49, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.907684 IP6 (flowlabel 0x03823, hlim 48, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.907699 IP6 (flowlabel 0x03823, hlim 47, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.915511 IP6 (flowlabel 0x03823, hlim 46, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.915523 IP6 (flowlabel 0x03823, hlim 45, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.923691 IP6 (flowlabel 0x03823, hlim 44, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.923707 IP6 (flowlabel 0x03823, hlim 43, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.934520 IP6 (flowlabel 0x03823, hlim 42, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.934536 IP6 (flowlabel 0x03823, hlim 41, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.941499 IP6 (flowlabel 0x03823, hlim 40, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.941515 IP6 (flowlabel 0x03823, hlim 39, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.949452 IP6 (flowlabel 0x03823, hlim 38, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.949467 IP6 (flowlabel 0x03823, hlim 37, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.957736 IP6 (flowlabel 0x03823, hlim 36, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.957754 IP6 (flowlabel 0x03823, hlim 35, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.965534 IP6 (flowlabel 0x03823, hlim 34, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.965551 IP6 (flowlabel 0x03823, hlim 33, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.973687 IP6 (flowlabel 0x03823, hlim 32, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.973704 IP6 (flowlabel 0x03823, hlim 31, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.981715 IP6 (flowlabel 0x03823, hlim 30, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.981731 IP6 (flowlabel 0x03823, hlim 29, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.989493 IP6 (flowlabel 0x03823, hlim 28, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.989509 IP6 (flowlabel 0x03823, hlim 27, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.997521 IP6 (flowlabel 0x03823, hlim 26, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:40.997537 IP6 (flowlabel 0x03823, hlim 25, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.006725 IP6 (flowlabel 0x03823, hlim 24, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.006741 IP6 (flowlabel 0x03823, hlim 23, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.023707 IP6 (flowlabel 0x03823, hlim 22, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.023723 IP6 (flowlabel 0x03823, hlim 21, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.031711 IP6 (flowlabel 0x03823, hlim 20, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.031726 IP6 (flowlabel 0x03823, hlim 19, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.039713 IP6 (flowlabel 0x03823, hlim 18, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.039729 IP6 (flowlabel 0x03823, hlim 17, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.047692 IP6 (flowlabel 0x03823, hlim 16, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.047708 IP6 (flowlabel 0x03823, hlim 15, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.055771 IP6 (flowlabel 0x03823, hlim 14, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.055787 IP6 (flowlabel 0x03823, hlim 13, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.063524 IP6 (flowlabel 0x03823, hlim 12, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.063539 IP6 (flowlabel 0x03823, hlim 11, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.077736 IP6 (flowlabel 0x03823, hlim 10, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.077752 IP6 (flowlabel 0x03823, hlim 9, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.085533 IP6 (flowlabel 0x03823, hlim 8, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.085548 IP6 (flowlabel 0x03823, hlim 7, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.093536 IP6 (flowlabel 0x03823, hlim 6, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.093551 IP6 (flowlabel 0x03823, hlim 5, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.102690 IP6 (flowlabel 0x03823, hlim 4, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.102705 IP6 (flowlabel 0x03823, hlim 3, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.109742 IP6 (flowlabel 0x03823, hlim 2, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0 18:06:41.109758 IP6 (flowlabel 0x03823, hlim 1, next-header ICMPv6 (58) payload length: 16) 2600:8802:1500:a00:571:870b:ca12:2b3b > 2600:8802:1500:a01::1: [icmp6 sum ok] ICMP6, echo request, seq 0

@AllGamer: The physical network port "em5" is already used to connect to the modem for PPPOE, but it still shows up as available under "Available network ports" is that normal? Yes, because  a PPPoE WAN is actually assigned to a virtual PPPoE adapter, not the physical port   (quoted from this Doc.)  https://doc.pfsense.org/index.php/How_can_i_access_my_PPPoE_Modem_on_WAN

sorry lost track of that forum post modded code and update list of errors

In general think I agree with that.  Simple straight forward positive/affirmative logic is generally easiest for we humans.  Checked box = enabled (do something), un-checked box = disabled (don't do something).

The bulk import has been there for years. It was just easy to miss since on 1.x and 2.1/2.2 it was a little up-triangle [image: Icon_up.png] button that you had to hover over to see what it was. :-)

That worked: [2.2.6-RELEASE][###@###.###]/usr/local/www: diff system_usermanager.php system_usermanager.php-ORIGINAL 237,238c237,238 <      if (strlen($_POST['usernamefld']) > 32) <              $input_errors[] = gettext("The username is longer than 32 characters."); --- >      if (strlen($_POST['usernamefld']) > 16) >              $input_errors[] = gettext("The username is longer than 16 characters."); 548c548 <                                                              /> --- >                                                              />

@heper Thank you for your reply. I am following the example of the link you posted. Question:  Since I cannot use sudo to write my test file, how else can I create a file under /etc/phpshellsessions? –------ I actually found the way by installing the sudo package through pfsense web-interface..

https://redmine.pfsense.org/issues/6109

@viragomann: I had also such an issue, the lighttpd on backup box crashed when Suricata ran an XMLRPC Sync. CMB suggested me to update the lighttpd package. After the update the issue was gone. Here is the thread: https://forum.pfsense.org/index.php?topic=108832.msg606053#msg606053 Thanks for your reply. I will give it a try, it makes sense to me that this may solve the issue.

@cmb: If you only had, say, 256 MB RAM, but configured a large state table size that could consume more than 256 MB RAM, and hence you caused the system to run out of kernel memory, it can't do anything but crash. In previous testing state amount of ram was 2048MB and in current testing state amount of ram is 3072MB and for while without crash ;) , but thank you for your suggestion. @cmb: If you're not being prompted for a crash report, you've broken something in that in your changes too. The files would be under /var/crash/. I did backup the .vmdk file from crashed state and the /var/crash/ folder is contain one file only named: minfree! why crash file did not created? I can't remember did any changes or recompile binary related to collect or write crash file, can you help me to find an scope to look for broken "collect or write crash file" relate please? @cmb: If you can replicate the crash on an unmodified pfSense 2.3, then I'm interested in more specifics. As is, this thread is about your modified product and seems to have no relation to stock releases. I'm very interested too but it's better to find the problem in mine. Thank you again!

Doesn't seem in any way related as vlan traffic is not mentioned at all. I'm seeing the a halt the second vlan traffic hits the altq/codelq enabled parent interface. Your issue also seems non related.

Using Notepad++ should be OK, that's what I usually use on Windows. Some other Windows text editors will change the line endings or split up long lines and break the XML. You definitely ended up with an invalid XML file in the process though. The reboot would have reverted to the last valid config.

That's not quite what i was on about. Before you could set PFSense to auto download and install updates. This option seems to be missing in the current snapshot. Edit: never mind looks like i was imagining things, all you could do was click the button to have the system update in one click. Just a feature request then to Fully auto update with in a set window. If there is a command line that could be triggered i could run it via cron.

This is a Windows issue. Discovery in Windows is sketchy at best.

@BBcan177: @cremesk: i found a small mistake.. "Custom Destination" needs a "Custom Source" in 'Advanced Outbound Firewall Rule Settings'. Sven Thanks for pointing that out… Copy/paste is sometimes a bad thing :)  Will get that fixed in the next release ... hehe  :P Thanks for fix

@athurdent: @cremesk: i dont no why but my settings was crahed.. I have never configured this but the "disable growl" was unchecked and the IP was 'admin'  :o That might have come from a Browser that has login data saved for your pfSense gateway. I.e. if you save the login for the pfSense GW in Safari on iOS and edit Dynamic DNS entries, it might auto-fill the Username/Password of your Provider with your pfSense GWs login. I use Linux Fedora23 with Firefox45.. i think this is the same scenario. WebGUI Login Autocomplete [unchecked] Enable webConfigurator login autocomplete When this is checked, login credentials for the webConfigurator may be saved by the browser. While convenient, some security standards require this to be disabled. Check this box to enable autocomplete on the login form so that browsers will prompt to save credentials (NOTE: Some browsers do not respect this option).