diff options
Diffstat (limited to 'usr/local/www/firewall_aliases_import.php')
| -rwxr-xr-x | usr/local/www/firewall_aliases_import.php | 246 |
1 files changed, 0 insertions, 246 deletions
diff --git a/usr/local/www/firewall_aliases_import.php b/usr/local/www/firewall_aliases_import.php deleted file mode 100755 index 868f5eb..0000000 --- a/usr/local/www/firewall_aliases_import.php +++ /dev/null @@ -1,246 +0,0 @@ -<?php -/* $Id$ */ -/* - firewall_aliases_import.php - Copyright (C) 2005 Scott Ullrich - Copyright (C) 2013-2015 Electric Sheep Fencing, LP - All rights reserved. - - Redistribution and use in source and binary forms, with or without - modification, are permitted provided that the following conditions are met: - - 1. Redistributions of source code must retain the above copyright notice, - this list of conditions and the following disclaimer. - - 2. Redistributions in binary form must reproduce the above copyright - notice, this list of conditions and the following disclaimer in the - documentation and/or other materials provided with the distribution. - - THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, - INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY - AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE - AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, - OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF - SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS - INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN - CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) - ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE - POSSIBILITY OF SUCH DAMAGE. -*/ -/* - pfSense_MODULE: filter -*/ - -##|+PRIV -##|*IDENT=page-firewall-alias-import -##|*NAME=Firewall: Alias: Import page -##|*DESCR=Allow access to the 'Firewall: Alias: Import' page. -##|*MATCH=firewall_aliases_import.php* -##|-PRIV - - -// Keywords not allowed in names -$reserved_keywords = array("all", "pass", "block", "out", "queue", "max", "min", "pptp", "pppoe", "L2TP", "OpenVPN", "IPsec"); - -require("guiconfig.inc"); -require_once("util.inc"); -require_once("filter.inc"); -require("shaper.inc"); - -$pgtitle = array(gettext("Firewall"), gettext("Aliases"), gettext("Bulk import")); - -if (isset($_POST['referer'])) { - $referer = $_POST['referer']; -} else { - $referer = (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : '/firewall_aliases.php'); -} - -// Add all Load balance names to reserved_keywords -if (is_array($config['load_balancer']['lbpool'])) { - foreach ($config['load_balancer']['lbpool'] as $lbpool) { - $reserved_keywords[] = $lbpool['name']; - } -} - -$reserved_ifs = get_configured_interface_list(false, true); -$reserved_keywords = array_merge($reserved_keywords, $reserved_ifs, $reserved_table_names); - -if (!is_array($config['aliases']['alias'])) { - $config['aliases']['alias'] = array(); -} -$a_aliases = &$config['aliases']['alias']; - -if ($_POST) { - $reqdfields = explode(" ", "name aliasimport"); - $reqdfieldsn = array(gettext("Name"), gettext("Aliases")); - - do_input_validation($_POST, $reqdfields, $reqdfieldsn, $input_errors); - - if (is_validaliasname($_POST['name']) == false) { - $input_errors[] = gettext("The alias name may only consist of the characters") . " a-z, A-Z, 0-9, _."; - } - - /* check for name duplicates */ - if (is_alias($_POST['name'])) { - $input_errors[] = gettext("An alias with this name already exists."); - } - - - /* Check for reserved keyword names */ - foreach ($reserved_keywords as $rk) { - if ($rk == $_POST['name']) { - $input_errors[] = sprintf(gettext("Cannot use a reserved keyword as alias name %s"), $rk); - } - } - - /* check for name interface description conflicts */ - foreach ($config['interfaces'] as $interface) { - if ($interface['descr'] == $_POST['name']) { - $input_errors[] = gettext("An interface description with this name already exists."); - break; - } - } - - if ($_POST['aliasimport']) { - $tocheck = explode("\n", $_POST['aliasimport']); - $imported_ips = array(); - $imported_descs = array(); - $desc_len_err_found = false; - $desc_fmt_err_found = false; - foreach ($tocheck as $impline) { - $implinea = explode(" ", trim($impline), 2); - $impip = $implinea[0]; - $impdesc = trim($implinea[1]); - if (strlen($impdesc) < 200) { - if ((strpos($impdesc, "||") === false) && (substr($impdesc, 0, 1) != "|") && (substr($impdesc, -1, 1) != "|")) { - $iprange_type = is_iprange($impip); - if ($iprange_type == 4) { - list($startip, $endip) = explode('-', $impip); - $rangesubnets = ip_range_to_subnet_array($startip, $endip); - $imported_ips = array_merge($imported_ips, $rangesubnets); - $rangedescs = array_fill(0, count($rangesubnets), $impdesc); - $imported_descs = array_merge($imported_descs, $rangedescs); - } else if ($iprange_type == 6) { - $input_errors[] = sprintf(gettext('IPv6 address ranges are not supported (%s)'), $impip); - } else if (!is_ipaddr($impip) && !is_subnet($impip) && !is_hostname($impip) && !empty($impip)) { - $input_errors[] = sprintf(gettext("%s is not an IP address. Please correct the error to continue"), $impip); - } elseif (!empty($impip)) { - $imported_ips[] = $impip; - $imported_descs[] = $impdesc; - } - } else { - if (!$desc_fmt_err_found) { - $input_errors[] = gettext("Descriptions may not start or end with vertical bar (|) or contain double vertical bar ||."); - $desc_fmt_err_found = true; - } - } - } else { - if (!$desc_len_err_found) { - /* Note: The 200 character limit is just a practical check to avoid accidents */ - /* if the user pastes a large number of IP addresses without line breaks. */ - $input_errors[] = gettext("Descriptions must be less than 200 characters long."); - $desc_len_err_found = true; - } - } - } - unset($desc_len_err_found, $desc_fmt_err_found); - } - - if (!$input_errors && is_array($imported_ips)) { - $alias = array(); - $alias['address'] = implode(" ", $imported_ips); - $alias['detail'] = implode("||", $imported_descs); - $alias['name'] = $_POST['name']; - $alias['type'] = "network"; - $alias['descr'] = $_POST['descr']; - unset($imported_ips, $imported_descs); - $a_aliases[] = $alias; - - // Sort list - $a_aliases = msort($a_aliases, "name"); - - if (write_config()) { - mark_subsystem_dirty('aliases'); - } - pfSenseHeader("firewall_aliases.php"); - - exit; - } -} - -include("head.inc"); - -?> -<body link="#0000CC" vlink="#0000CC" alink="#0000CC"> -<?php include("fbegin.inc"); ?> -<?php if ($input_errors) print_input_errors($input_errors); ?> -<div id="niftyOutter"> -<form action="firewall_aliases_import.php" method="post" name="iform" id="iform"> -<div id="inputerrors"></div> -<table width="100%" border="0" cellpadding="6" cellspacing="0" summary="firewall alias import"> - <tr> - <td colspan="2" valign="top" class="listtopic"><?=gettext("Alias Import"); ?></td> - </tr> - <tr> - <td valign="top" class="vncellreq"><?=gettext("Alias Name"); ?></td> - <td class="vtable"> - <input name="name" type="text" class="formfld unknown" id="name" size="40" maxlength="31" value="<?=htmlspecialchars($_POST['name']);?>" /> - <br /> - <span class="vexpl"> - <?=gettext("The name of the alias may only consist of the characters \"a-z, A-Z and 0-9\"."); ?> - </span> - </td> - </tr> - <tr> - <td width="22%" valign="top" class="vncell"><?=gettext("Description"); ?></td> - <td width="78%" class="vtable"> - <input name="descr" type="text" class="formfld unknown" id="descr" size="40" value="<?=htmlspecialchars($_POST['descr']);?>" /> - <br /> - <span class="vexpl"> - <?=gettext("You may enter a description here for your reference (not parsed)"); ?>. - </span> - </td> - </tr> - <tr> - <td valign="top" class="vncellreq"><?=gettext("Aliases to import"); ?></td> - <td class="vtable"> - <textarea name="aliasimport" rows="15" cols="40"><?php echo $_POST['aliasimport']; ?></textarea> - <br /> - <span class="vexpl"> - <?=gettext("Paste in the aliases to import separated by a carriage return. Common examples are lists of IPs, networks, blacklists, etc."); ?> - <br /> - <?=gettext("The list may contain IP addresses, with or without CIDR prefix, IP ranges, blank lines (ignored) and an optional description after each IP. e.g.:"); ?> - <br />172.16.1.2 - <br />172.16.0.0/24 - <br />10.11.12.100-10.11.12.200 - <br />192.168.1.254 Home router - <br />10.20.0.0/16 Office network - <br />10.40.1.10-10.40.1.19 Managed switches - </span> - </td> - </tr> - <tr> - <td width="22%" valign="top"> </td> - <td width="78%"> - <input id="submit" name="Submit" type="submit" class="formbtn" value="<?=gettext("Save"); ?>" /> - <input type="button" class="formbtn" value="<?=gettext("Cancel");?>" onclick="window.location.href='<?=$referer;?>'" /> - <input name="referer" type="hidden" value="<?=$referer;?>" /> - </td> - </tr> -</table> - - -</form> -</div> - -<?php include("fend.inc"); ?> - -<script type="text/javascript"> -//<![CDATA[ - NiftyCheck(); - Rounded("div#nifty","top","#FFF","#EEEEEE","smooth"); -//]]> -</script> - -</body> -</html> |
