summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Correct code description during assignmentErmal2011-04-281-1/+1
|
* Some configurations might have gre/gif on top of carp. Make sure to handle ↵Ermal2011-04-281-10/+37
| | | | this configurations and to bring the tunnel correctly up.
* fix typoChris Buechler2011-04-271-1/+1
|
* Comment out debug printjim-p2011-04-271-1/+1
|
* Whitespace cleanup, code cleanup, add choice to filter on ipv4/ipv6 and also ↵jim-p2011-04-271-78/+91
| | | | accept a subnet to filter on via the host field.
* Allow users to select SSL/TLS+User Auth with external authentication sources.jim-p2011-04-261-7/+0
|
* No need to include head.inc twicejim-p2011-04-261-2/+0
|
* Don't just blindly echo to the ntpd.log, it's a clog file and that will ↵jim-p2011-04-261-1/+1
| | | | break it.
* Show OpenVPN instances on Status > Traffic Graphs, with descriptions.jim-p2011-04-251-1/+11
|
* Actually correct check meaning.Ermal2011-04-221-1/+1
|
* Do not an ip of all 1s as a gateways since it cannot be pinged.Ermal2011-04-221-1/+5
|
* Actually call interfaces_carp_setup after the carp interfaces are created so ↵Ermal2011-04-221-5/+3
| | | | carp traffic can only flow after we have all vips up and running. This prevents premption more early than necessary. Ticket #1432.
* Provide a method for rebrands to force a theme. Otherwise upgrading nanobsd ↵jim-p2011-04-221-1/+3
| | | | from pfSense to a rebrand image without the theme in the config.xml will have a broken GUI since the theme isn't there.
* correctly unmount drives where a config doesn't existChris Buechler2011-04-211-1/+1
|
* If the bandwidth value is coming from radius scale it up to the requested ↵Ermal2011-04-211-2/+2
| | | | Kbit/s unit.
* Set user when removing privileges, otherwise things like the user's shell ↵jim-p2011-04-211-0/+1
| | | | would not be reset until pressing save, which is inconsistent with that step not being needed when adding privileges.
* Fix PPPoE upgrade, the <pppoe> tag is considered an array these days and the ↵jim-p2011-04-211-6/+6
| | | | upgrade code wasn't treating it properly, accessing it directly instead of using the first entry ([0]). Fixes #1439 - PPPoE credentials upgrade properly now.
* Reject encrypted CA private keys. Resolves #1446jim-p2011-04-211-0/+2
|
* Confirmed working fix for ticket #1417 - with this change I have two-way ↵jim-p2011-04-211-0/+2
| | | | connectivity on Site-to-Site (SSL/TLS) with iroutes.
* Backing out changes from ticket #1417, it was not a valid openvpn config ↵jim-p2011-04-191-1/+0
| | | | that the user was trying to make.
* Harden SSL settings a bit. Verified OK with @cmb and @billmScott Ullrich2011-04-191-0/+5
|
* Slightly different fix for #1417 that doesn't mess up other parameters ↵jim-p2011-04-181-1/+2
| | | | needed by p2p_tls
* Block instead of allowing proto carp/pfsync during bootup since this may ↵Ermal2011-04-181-2/+2
| | | | cause issues. Ticket #1432
* Add an option under advanced->misc to specify a proxy for retreiving pfsense ↵Ermal2011-04-182-3/+85
| | | | package info or downloading packages.
* Only start log update ajax timer if the updateDelay is defined. ↵jim-p2011-04-181-1/+3
| | | | http://forum.pfsense.org/index.php/topic,35771.0.html
* Don't include RFC1918 in bogons.jim-p2011-04-171-4/+1
|
* sync bogonsChris Buechler2011-04-161-7/+3
|
* Properly set/unset voucher enable/disable bit.jim-p2011-04-151-3/+6
|
* Move the link to add a gateway up next to the drop-down box so it is more ↵jim-p2011-04-151-2/+2
| | | | obvious.
* Save a little space on the interface list for console assignment.jim-p2011-04-141-2/+2
|
* Test if a variable is set before trying to unset it. If a user has no rules ↵jim-p2011-04-141-1/+1
| | | | in their config, then $config['filter'] would not be undefined, so unsettings $config['filter']['bypassstaticroutes'] would result in an error. http://forum.pfsense.org/index.php/topic,35702.0.html
* Add missing fields for l2tp to define dns and wins serverssmos2011-04-132-2/+46
|
* Do not send growl notices twiceScott Ullrich2011-04-121-0/+13
|
* Remove blank trailing c/r.Scott Ullrich2011-04-121-1/+1
|
* Notify via smtp as well as growlScott Ullrich2011-04-122-1/+3
|
* Drop the ntpdate sync in favor of using ntpd -s, which should have the same ↵jim-p2011-04-123-7/+1
| | | | net effect without needing the shell script that has been prone to hanging.
* Also exclude grep from running processes when grepping for a running packet ↵jim-p2011-04-121-2/+2
| | | | capture. Also, fix other test to match the recent changes made.
* Add a toggle under System > Advanced on the misc tab to enable/disable debug ↵jim-p2011-04-113-2/+33
| | | | mode for racoon.
* Revert changes to dhclient-script. Appears to have broken DNS servers from ↵jim-p2011-04-091-4/+3
| | | | DHCP. Ticket #1428
* Fix copy/paste errorjim-p2011-04-081-1/+1
|
* Make sure a theme directory actually exists before blindly using it.jim-p2011-04-081-1/+1
|
* Rework ntpdate_sync_once.sh, so it makes sure ntp/ntpdate/itself are not ↵jim-p2011-04-081-1/+8
| | | | running before trying to sync time, and then launch ntpd at the end for time sync (last commit was premature)
* Don't unconditionally start ntpd after doing ntpdate, it might be disabled.jim-p2011-04-081-5/+0
|
* Send ntpdate output to syslogjim-p2011-04-081-1/+1
|
* Add an IPsec xauth permission. Try to use the nologin shell first (just ↵jim-p2011-04-082-0/+8
| | | | unlock the account). Ticket #1202
* Putting client-config-dir in the config is valid also for p2p_tls servers. ↵jim-p2011-04-081-1/+1
| | | | Fixes #1417.
* use same egrep statement for both checksScott Ullrich2011-04-071-1/+1
|
* Use full path to egrepScott Ullrich2011-04-071-1/+1
|
* Use full path to egrepScott Ullrich2011-04-071-1/+1
|
* Use some Seth egrep foo to protect from compromised DHCP servers. ↵Scott Ullrich2011-04-071-3/+4
| | | | CVE-2011-0997
OpenPOWER on IntegriCloud