Fixes #4360 allow marking a connection as responder only, the same behviour as mobile connections

1 files changed, 14 insertions, 0 deletions

diff --git a/usr/local/www/vpn_ipsec_phase1.php b/usr/local/www/vpn_ipsec_phase1.php
index 6e85046..07f8c8b 100644
--- a/usr/local/www/vpn_ipsec_phase1.php
+++ b/usr/local/www/vpn_ipsec_phase1.php
@@ -113,6 +113,8 @@ if (isset($p1index) && $a_phase1[$p1index]) {
 		$pconfig['reauth_enable'] = true;
 	if (isset($a_phase1[$p1index]['rekey_enable']))
 		$pconfig['rekey_enable'] = true;
+	if (isset($a_phase1[$p1index]['responderonly']))
+		$pconfig['responderonly'] = true;
 
 	if ($a_phase1[$p1index]['dpd_delay'] &&	$a_phase1[$p1index]['dpd_maxfail']) {
 		$pconfig['dpd_enable'] = true;
@@ -383,6 +385,11 @@ if ($_POST) {
 		else
 			unset($ph1ent['rekey_enable']);
 
+		if (isset($pconfig['responderonly']))
+			$ph1ent['responderonly'] = true;
+		else
+			unset($ph1ent['responderonly']);
+
 		if (isset($pconfig['dpd_enable'])) {
 			$ph1ent['dpd_delay'] = $pconfig['dpd_delay'];
 			$ph1ent['dpd_maxfail'] = $pconfig['dpd_maxfail'];
@@ -888,6 +895,13 @@ function dpdchkbox_change() {
 						</td>
 					</tr>
 					<tr>
+						<td width="22%" valign="top" class="vncell"><?=gettext("Only repsonder");?></td>
+						<td width="78%" class="vtable">
+							<input name="responderonly" type="checkbox" id="responderonly" value="yes" <?php if (isset($pconfig['responderonly'])) echo "checked=\"checked\""; ?> />
+							<?=gettext("Whether a connection should be passive on a connection and just wait connectivity from the other peer.."); ?><br />
+						</td>
+					</tr>
+					<tr>
 						<td width="22%" valign="top" class="vncell"><?=gettext("NAT Traversal"); ?></td>
 						<td width="78%" class="vtable">
 							<select name="nat_traversal" class="formselect">