summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* get rid of wizards/initial/ images that were never usedChris Buechler2015-02-1148-0/+0
|
* rrset-cache-size should == 2 * msg-cache-size. Ticket #4367Chris Buechler2015-02-111-3/+5
|
* Check if Unbound is enabled and using the same port before allowing dnsmasq ↵Chris Buechler2015-02-111-0/+5
| | | | to be enabled. part of Ticket #4332
* Fixes #4370 Use the curlies to not confuse phpErmal LUÇI2015-02-101-2/+2
|
* Actually fix even the openvpn auth user script with proper checks. I thought ↵Ermal LUÇI2015-02-101-6/+6
| | | | this was fixes already!
* Fixes #4329, Fix even tls.auth script by using proper isset() test as the ↵Ermal LUÇI2015-02-101-3/+3
| | | | fixes for other authentication scripts.
* Fixes #4397 Make mtu configuration before the ip address assignment. This ↵Ermal LUÇI2015-02-101-45/+46
| | | | fixes the issues of link routes having the wrong mtu configured on them.
* touch up Unbound textChris Buechler2015-02-091-2/+2
|
* Update Unbound defaultsChris Buechler2015-02-091-0/+4
|
* also add v6 IPs to hosts in the same manner v4 IPs are added. Ticket #4395Chris Buechler2015-02-091-1/+12
|
* Use appropriate interface field description when working with floating ↵Chris Buechler2015-02-091-1/+5
| | | | rules, it was confusing and potentially incorrect for floating rule purposes.
* fix up textChris Buechler2015-02-067-5/+5
|
* remove CGN from "Block private networks" as it was in 2.0x and earlierChris Buechler2015-02-051-1/+0
| | | | | releases since it specifically notes RFC 1918 and CGN is more bogon. Ticket #4379
* Fixes #4381 this was a leftover of the change of zoneids to start from 2.Ermal LUÇI2015-02-051-2/+2
|
* Use web-gui setting for pap or chap instead of having it hard-coded to chap.Sebastian Öhman2015-02-051-1/+1
|
* Fixed not being able to save custom and custom-v6 dyndnsTuyan Ozipek2015-02-041-1/+1
| | | | | entries due to "host" being posted empty, and thus failing is_domain() check.
* Firmware upgrade script text changesPhil Davis2015-02-041-10/+10
| | | | | while I am looking at this, might as well correct these. No function problems or impact.
* Fix restartipsec command line script.jim-p2015-02-042-1/+15
|
* Fixes #3669 Handle properly recording of the ipv6 interface new ip and do ↵Ermal LUÇI2015-02-041-4/+3
| | | | not issues commands that cannot succeed.
* In last case, use dmesg.boot do detect ALIX boards when hw.model is not enoughRenato Botelho2015-02-041-1/+8
|
* Silent kenv when smbios.system.product is not present. While here, add ↵Renato Botelho2015-02-042-4/+8
| | | | VirtualBox to the list of virtualenvs
* fix responder-only IPsec textChris Buechler2015-02-031-2/+2
|
* fix textChris Buechler2015-02-025-8/+8
|
* Allow IPseec clients to properly connect and not stomp over each other. ↵Ermal LUÇI2015-02-021-1/+1
| | | | Reported-by https://forum.pfsense.org/index.php?topic=87980.0
* Fix aliases popup width when fields are hidden when page is loaded. It ↵Renato Botelho2015-02-0215-10/+15
| | | | should fix #4238
* Properly calculate the 6rd default gateway honoring netmasks other than /32Ermal LUÇI2015-02-021-1/+5
|
* Ticket #4353 fix typo on unset var spotted-by: Phil DavisErmal LUÇI2015-02-021-1/+1
|
* Unbound domain override IP:port validationPhil Davis2015-02-021-1/+1
| | | | | The domain override is IP:port is invalid if either the IP address OR port is invalid. Previously you could put an invalid IP with valid port, or valid IP with invalid port.
* speedup 'function is_port($port)' speed by skipping calls to getservbyname ↵PiBa-NL2015-02-021-5/+3
| | | | when possible
* Remove latin-1 encoding of RSS feedPhil Davis2015-02-021-1/+0
| | | | | | Many thanks to Gertjan in forum https://forum.pfsense.org/index.php?topic=87504.msg484017#msg484017 Specifically setting the output encoding to latin-1 was causing the "black diamonds" for special characters in the http://blog.pfsense.org RSS feed (e.g. the registered trademark sign after pfSense did not come out). It should all work by letting simplepie do its default stuff with the RSS feed.
* need $g here so product_name is set in user agentChris Buechler2015-02-011-1/+1
|
* Add input validation to prevent the use of AES > 128 where glxsb is enabled. ↵Chris Buechler2015-01-312-3/+16
| | | | Ticket #4361
* Fixes #4360 allow marking a connection as responder only, the same behviour ↵Ermal LUÇI2015-01-312-0/+17
| | | | as mobile connections
* Fixes #4359 Allow controlling uniqueidsErmal LUÇI2015-01-313-1/+39
|
* Traffic Shaper Wizard Upstream SIP ServerPhil Davis2015-01-312-2/+4
| | | | | Not being remembered and actioned. Bug #4314
* Fixes #4353 Identify when strongswan.conf needs a reload and restart ipsec ↵Ermal LUÇI2015-01-313-17/+42
| | | | service.
* Fixes #4333 Unset previous defined values before using the new onesErmal LUÇI2015-01-312-0/+8
|
* Firewall Log does not display logged IGMP packetsPhil Davis2015-01-311-0/+3
| | | | | | If IGMP packets are logged (either pass or block) then parse_filter_line did not set their src and dst IP. Later in the subroutine, it zapped the filter line because it did not have a src and dst. This fixes it. Now the IGMP lines in /var/log/filter.log appear on the Firewall Log GUI.
* Fixes #4340 encode username same as with password to avoid issues with ↵Ermal LUÇI2015-01-312-1/+2
| | | | special chars.
* Do not reuse reqid on copy of phase2 Fixes #4349Ermal LUÇI2015-01-301-0/+1
|
* Set update_url and update_manifest automatically based on version being or ↵Renato Botelho2015-01-291-6/+13
| | | | not a RELEASE
* fix input validation, = is OK hereChris Buechler2015-01-291-2/+2
|
* Fixes #4274 same fix as #4302 enclose in double quotes to tell yacc this is ↵Ermal LUÇI2015-01-281-2/+6
| | | | a string to be parsed.
* Apparently yacc became more strict in FreeBSD 10. Fixes #4302Ermal LUÇI2015-01-281-8/+9
|
* Fixes #4275 use double quotes on asn1dn specification so strongswan properly ↵Ermal LUÇI2015-01-281-2/+4
| | | | interprets it
* Accept port range on Outbound NAT. Fixes #4300Renato Botelho2015-01-281-2/+2
|
* Reload filter when IPsec is disabled, fixes #4245Renato Botelho2015-01-281-0/+2
|
* Add support for 0x20 DNS random bit support. Fixes #4205Warren Baker2015-01-282-2/+20
|
* Support for Office365 MailPhil Davis2015-01-281-0/+20
| | | | | | https://redmine.pfsense.org/issues/4176 Allow the user to choose SMTP authentication mechanism PLAIN or LOGIN. For existing configs with this option not set, PLAIN is the default, and will appear first in the dropdown box, so next time the user saves the SMTP Notification settings, PLAIN will be the value selected and saved.
* Support choice of SMTP Authentication MechanismsPhil Davis2015-01-281-1/+15
| | | | | https://redmine.pfsense.org/issues/4176 I have left some documentation here of other mechanisms that someone might care about in future (or not). I left the array with name=>desc so it will be easy if new mechanisms come along that need a description different to the name.
OpenPOWER on IntegriCloud