Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Remove unused and possibly erroneous code. | Ermal Luçi | 2008-09-07 | 1 | -24/+0 |
| | |||||
* | Add my name to the copyrights, i think i changed enough of this file! | Ermal Luçi | 2008-09-07 | 2 | -0/+2 |
| | |||||
* | Delete interfaces_lan.php we have a unified interface config. | Ermal Luçi | 2008-09-07 | 1 | -235/+0 |
| | |||||
* | Try to reconfigure interfaces if assigned when edited. For gif and gre this ↵ | Ermal Luçi | 2008-09-07 | 2 | -0/+9 |
| | | | | does not make sense. | ||||
* | Merge lan configuration to the interfaces_wan.php page wich does the ↵ | Ermal Luçi | 2008-09-07 | 11 | -140/+53 |
| | | | | | | configuration of all other assigned interfaces. | ||||
* | set auto channel properly | Chris Buechler | 2008-09-07 | 1 | -4/+4 |
| | |||||
* | Use different names for pppoe and pptp fields so that problems reported by | Ermal Luçi | 2008-09-07 | 3 | -38/+54 |
| | | | | | | | http://forum.pfsense.org/index.php/topic,11220.0.html is fixed. Reflect the changes even on config conversion part. Add even some code in preparation of merging even lan on the same page. | ||||
* | Add an action even onChange so something can be done even without a mouse. | Ermal Luçi | 2008-09-07 | 2 | -2/+2 |
| | |||||
* | * (Re)Implement a 'None' type for interface config which allows to assign ↵ | Ermal Luçi | 2008-09-07 | 2 | -458/+270 |
| | | | | | | | | interfaces like GRE/GIF and filter on them. * Show the configuration for an interface only after it is enabled. * Show only the configuration option regarding the selected type using some 'sick' javascript 'stolen' on the new loadbalancer. | ||||
* | Reflect the change on convert_friendly_interface_to_real... into ↵ | Ermal Luçi | 2008-09-07 | 1 | -2/+2 |
| | | | | get_real_wan_interface to return the real interface even for disabled ones. They are the same function that needs to be cleand up with the names in some distant future. | ||||
* | When restarting an OpenVPN process, don't send a term signal and expect it | Matthew Grooms | 2008-09-07 | 1 | -5/+17 |
| | | | | | | to exit within a fixed time frame of two seconds. The old process may take longer to exit and cause the new process creation to fail. Instead, check the process status every 1/4 seconds and only continue once it terminates. | ||||
* | Remove references to lbpool - this is no longer in use in 1.3 | Bill Marquette | 2008-09-07 | 2 | -46/+0 |
| | | | | | Not sure what the correct input validation is here (possibly nothing), but this is definitely not it. | ||||
* | uncomment the commented out functionality that actually restarts sshd | Bill Marquette | 2008-09-07 | 1 | -2/+2 |
| | | | | when it's enabled | ||||
* | WPA is optional, hence shouldn't be <strong> | Chris Buechler | 2008-09-07 | 1 | -1/+1 |
| | |||||
* | Cleanup output text | Scott Ullrich | 2008-09-07 | 1 | -4/+6 |
| | |||||
* | we don't care if rm can't find old dhcpd database files | Bill Marquette | 2008-09-07 | 1 | -1/+1 |
| | |||||
* | fix debug code that never worked and make it disabled by default | Bill Marquette | 2008-09-07 | 1 | -2/+4 |
| | |||||
* | Semicolons after if's apparently parse...but it's not terribly helpful | Bill Marquette | 2008-09-07 | 1 | -2/+2 |
| | |||||
* | Eliminate unneeded , | Scott Ullrich | 2008-09-07 | 1 | -1/+1 |
| | |||||
* | Check to see if key exists before unsetting | Scott Ullrich | 2008-09-07 | 1 | -1/+2 |
| | |||||
* | Check to see if a interface has a dhcp key before trying to unset | Scott Ullrich | 2008-09-07 | 1 | -1/+2 |
| | | | | if the interface has a dhcp server enabled. | ||||
* | Hide misc errors that occur on / when we have a read-only filesystem (livecd). | Scott Ullrich | 2008-09-06 | 1 | -1/+1 |
| | |||||
* | * Cleanup php fastcgi files better | Scott Ullrich | 2008-09-06 | 1 | -1/+2 |
| | | | | * Remove *.tmp files | ||||
* | Add conf.default to the unionfs roster | Scott Ullrich | 2008-09-06 | 1 | -0/+3 |
| | |||||
* | Allow bin sbin and boot writing | Scott Ullrich | 2008-09-06 | 1 | -1/+10 |
| | |||||
* | Correctly use defaults | Seth Mos | 2008-09-06 | 1 | -3/+3 |
| | |||||
* | Do not update platform on cvssync runs | Scott Ullrich | 2008-09-06 | 1 | -0/+1 |
| | |||||
* | It is now technically possible to cvssync livecd for testing :) | Scott Ullrich | 2008-09-06 | 1 | -2/+8 |
| | |||||
* | Remove modulate state per ticket 1730 | Seth Mos | 2008-09-06 | 1 | -2/+0 |
| | |||||
* | rc.cdrom already outputs its status | Scott Ullrich | 2008-09-06 | 1 | -3/+0 |
| | |||||
* | Minor re-work of OpenVPN configuration. Use operational modes to determine | Matthew Grooms | 2008-09-06 | 5 | -189/+610 |
| | | | | | | | | | | | | | | | | | | | | what configuration options are appropriate. The operational mode dictates the authentication method. They are defines as follows ... Peer to Peer ( SSL/TLS ) Peer to Peer ( Shared Key ) Remote Access ( SSL/TLS ) Remote Access ( User Auth ) Remote Access ( SSL/TLS + User Auth ) Some of these modes allow for user authentication using passwords. We now use the etc/inc/openvpn.auth-user.php file to facilitate this by checking the username and password supplied by OpenVPN against our centralized user database. The Server and Client user interfaces have also been updated to support TLS packet authentication. This is an additional security option that is optional. | ||||
* | * Show operations in progress | Scott Ullrich | 2008-09-06 | 2 | -5/+8 |
| | | | | * Increase /conf memory partition size to 6m | ||||
* | Move cvssync functions to /root/ | Scott Ullrich | 2008-09-06 | 1 | -4/+10 |
| | |||||
* | Use root unionfs, this saves a bit of memory. | Scott Ullrich | 2008-09-06 | 1 | -1/+1 |
| | |||||
* | Cleanup text | Scott Ullrich | 2008-09-06 | 1 | -1/+1 |
| | |||||
* | Move unionfs commands earlier | Scott Ullrich | 2008-09-06 | 1 | -12/+12 |
| | |||||
* | Correct CDROM check | Scott Ullrich | 2008-09-06 | 1 | -1/+1 |
| | |||||
* | * Mount /root unionfs writable | Scott Ullrich | 2008-09-06 | 1 | -8/+12 |
| | | | | * Move unionfs mounting to earlier in the sequence | ||||
* | Mount /usr/ with write access using UNIONFS. | Scott Ullrich | 2008-09-06 | 1 | -0/+8 |
| | |||||
* | Make the ftp proxy work again. | Seth Mos | 2008-09-05 | 1 | -1/+1 |
| | |||||
* | Remove the code that auto-generates an outbound NAT rule for traffic that | Matthew Grooms | 2008-09-05 | 1 | -11/+2 |
| | | | | | | originates from a private network to a distant OpenVPN network. We don't want to unconditionally hide all traffic behind the vpn interface address. If a admin wants to do this manually, nothing is stopping them. | ||||
* | Disallow creation of user certificates until the user has actually been | Matthew Grooms | 2008-09-04 | 1 | -3/+3 |
| | | | | created. This obviously won't work. | ||||
* | Correct the path for OpenVPN client specific configuration files. When the | Matthew Grooms | 2008-09-04 | 1 | -3/+3 |
| | | | | | directory creation moved to the rc script, the path name was changed from /var/etc/openvpn_csc to /var/etc/openvpn-csc. Update the code to match. | ||||
* | Revert to the previous method of referencing OpenVPN device names in the | Matthew Grooms | 2008-09-04 | 2 | -25/+19 |
| | | | | | | | filter.inc file. We now specify the openvpn device name which is actually an os managed group. OpenVPN tap instances are added or removed from this group when OpenVPN configurations are created or destroyed. Portions of this patch were written by Ermal. | ||||
* | Modify the ssh toggle script so it at least runs. I suspect its broken in | Matthew Grooms | 2008-09-04 | 1 | -3/+3 |
| | | | | a more subtle way however. Connected client don't appear to disconnect. | ||||
* | More array checks. | Ermal Luçi | 2008-09-04 | 1 | -11/+26 |
| | |||||
* | Correct array depth in is_array check | Seth Mos | 2008-09-04 | 1 | -1/+1 |
| | |||||
* | Bump the system dh-parameters file to 2048 per request on dev@. | Matthew Grooms | 2008-09-04 | 1 | -4/+4 |
| | |||||
* | Add checks when an array its expected to avoid errors from php. | Ermal Luçi | 2008-09-04 | 1 | -14/+18 |
| | | | | Reported-by: Seth | ||||
* | Break out the advanced system options page into tabs group by categories. | Matthew Grooms | 2008-09-04 | 11 | -1299/+1409 |
| | | | | | | Fold the sysctl tunables page into a tab under the advanced options page. This reduces the top level menu options by one. There should be no functional changes. |