summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Resolves #2294. Base64 encode the file when sending to the browser same way ↵Ermal2012-11-201-4/+3
| | | | it is encoded when sent to us. This prevents csrf from mangling things
* While I'm here, allow an ICMP rdr.jim-p2012-11-201-1/+1
|
* Only apply this port check for TCP and UDP.jim-p2012-11-201-1/+1
|
* No need to do this here - we have a System > Advanced option that already ↵jim-p2012-11-201-1/+1
| | | | | | controls this. Revert "Do not allow autocomplete of the password field to avoid security issues:" This reverts commit 3dc69d374dcfa39094b0332e2516d3ae68467cfa.
* Up post and upload max sizes for php.iniWarren Baker2012-11-201-2/+2
|
* Allow only post action and not get to avoid security problemsErmal2012-11-201-14/+14
|
* Remoev exec_raw.php since its a dangerous pageErmal2012-11-201-53/+0
|
* Do not process ip options by default this is 2012Ermal2012-11-201-1/+2
|
* Do not allow autocomplete of the password field to avoid security issues:Ermal2012-11-201-1/+1
|
* Merge pull request #244 from bcyrill/ovpn-aliasChris Buechler2012-11-191-3/+2
|\ | | | | Fix: Use specified IP if available
| * Fix: Use specified IP if availablebcyrill2012-11-031-3/+2
| |
* | Put these logs under debug since that's their purposeErmal2012-11-191-1/+2
| |
* | Put these logs under debug since that's their purposeErmal2012-11-191-2/+4
| |
* | Correct checking for privileges.Ermal2012-11-191-4/+7
| |
* | Fixup gettext/printf call.jim-p2012-11-191-1/+1
| |
* | Switch to is_array() check and add curlysmos2012-11-191-2/+3
| |
* | Add correct rules for IPv6 tunnel endpoints which differ from the default route.smos2012-11-191-23/+31
| |
* | Add IPv6 support to this function so that IPv6 carp vips can be foundsmos2012-11-191-16/+28
| |
* | Do not return here, else we end without any IPsec endoint rules if just one ↵smos2012-11-191-2/+4
| | | | | | | | fails.
* | Add missing $Ermal2012-11-191-1/+1
| |
* | Correct check to required functionErmal2012-11-191-1/+1
| |
* | Commit a revised version of ↵Ermal2012-11-191-1/+1
| | | | | | | | https://github.com/bsdperimeter/pfsense/pull/264.diff
* | Merge pull request #259 from PiBa-NL/ipsecNATErmal Luçi2012-11-191-1/+5
|\ \ | | | | | | ipsec binat rule not possible if using a subnet together with a single ip so use nat
| * | ipsec binat rule not possible if using a subnet together with a single ip so ↵PiBa-NL2012-11-181-1/+5
| | | | | | | | | | | | use nat
* | | Merge pull request #263 from bcyrill/alias_url_tableErmal Luçi2012-11-191-1/+1
|\ \ \ | | | | | | | | Fix: Repopulate address field
| * | | Fix: Repopulate fieldbcyrill2012-11-181-1/+1
| | | |
* | | | Merge pull request #261 from PiBa-NL/gatewayErmal Luçi2012-11-181-4/+4
|\ \ \ \ | | | | | | | | | | gateway monitoring, notifications generated tell affected gateway/group
| * | | | gateway monitoring, make the notifications generated clear to tell which ↵PiBa-NL2012-11-181-4/+4
| | |/ / | |/| | | | | | | | | | gateway/group they are about
* | | | Merge pull request #257 from PiBa-NL/authErmal Luçi2012-11-182-4/+4
|\ \ \ \ | |_|/ / |/| | | authentication, don't log 'errors' on normal procedure
| * | | code comment typo ('log_error' should have been 'log_auth')PiBa-NL2012-11-181-1/+1
| | | |
| * | | authentication, don't log 'errors' on normal procedurePiBa-NL2012-11-181-3/+3
| |/ /
* | | updated pfSense.potVinicius Coque2012-11-171-2559/+7471
| | |
* | | Removing unnecessary gettext function callsVinicius Coque2012-11-172-4/+3
| | |
* | | Enable io_fast on dummynet to avoid uncessesary loop arounds of packetsErmal2012-11-172-2/+6
| | |
* | | Aiming at IPv6 compatibility, do the same tricks on the pfil reorder as for ↵Ermal2012-11-171-8/+3
| | | | | | | | | | | | v4. This helps CP work on v6.
* | | Correct path to certificates as wellErmal2012-11-171-1/+1
| | |
* | | Merge pull request #253 from caseyr232/patch-1Ermal Luçi2012-11-171-2/+2
|\ \ \ | | | | | | | | Corrected racoon path to psk.txt.
| * | | Corrected racoon path to psk.txt. caseyr2322012-11-171-2/+2
|/ / / | | | | | | "path pre_shared_key \"{$g['varetc_path']}/psk.txt\";\n\n"; is incorrected, ammended to "path pre_shared_key \"{$g['varetc_path']}/ipsec/psk.txt\";\n\n";
* | | To allow limiters to work correctly on mutliwan for now enforce selecting a ↵Ermal2012-11-161-0/+2
|/ / | | | | | | gateway on outgoing
* | Only openvpn networks need to stay on negate tableErmal2012-11-161-24/+5
| |
* | Update usr/local/www/vpn_ipsec_phase1.phpErmal Luçi2012-11-161-1/+1
| | | | | | Correct missing $
* | Add extra safety belts here.jim-p2012-11-151-1/+1
| |
* | This gets called in filter_configure_sync() alreadyWarren Baker2012-11-151-3/+0
| |
* | Remove none per Jim since it is confusingErmal2012-11-152-2/+1
| |
* | Remove preload.php which warmed the caches. IT hurts on embedded and really ↵Ermal2012-11-152-72/+0
| | | | | | | | does not help that much
* | While here check if the function needed exists to avoid a require_once call. ↵Ermal2012-11-151-4/+8
| | | | | | | | (Microoptimization)
* | For destination tolerate a 0.0.0.0/0 and convert it to anyErmal2012-11-151-1/+3
| |
* | Correct the destination for the binat to the real destinationErmal2012-11-151-1/+6
| |
* | Tune the binat a bit so it does not affect all traffic on enc but just for ↵Ermal2012-11-151-1/+1
| | | | | | | | the configured ph2
* | Not sure why this has been hidden so deep but putting that in the right ↵Ermal2012-11-152-2/+1
| | | | | | | | place should help with error displayed related to HEADER already sent in PHP errors.log
OpenPOWER on IntegriCloud