Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | change default to enable block bogons | Chris Buechler | 2008-11-30 | 1 | -0/+1 |
| | |||||
* | Add TCP TSO = 0 sysctl | Scott Ullrich | 2008-11-04 | 1 | -0/+10 |
| | |||||
* | Change default icmplim to 750. | Scott Ullrich | 2008-10-25 | 1 | -1/+1 |
| | |||||
* | Revise default allow all to any rule text. Remove > and attempt to cleanup | Scott Ullrich | 2008-09-10 | 1 | -1/+1 |
| | | | | text to make it more friendly to a new user. | ||||
* | Remove the page locking privileges after discussion with Scott on IRC. The | Matthew Grooms | 2008-09-03 | 1 | -2/+0 |
| | | | | | | | feature was confusing and offered little utility that I could see. If we really need to provide serialized access to sections of the webui, IMO it should be a global lock option and enabled or disabled manually and not a privilege that is on all the time. | ||||
* | Modify all the default configuration files to ensure the versions match. | Matthew Grooms | 2008-09-02 | 1 | -1/+1 |
| | | | | | While in globals.inc, remove the easyrsa path and do some whitespace cleanup. | ||||
* | Set net.inet.icmp.icmplim to 500. Apparently the low setting of 200 | Scott Ullrich | 2008-09-01 | 1 | -11/+16 |
| | | | | | wrecked Seths firewall on upgrade due to overwhelming amounts of icmp packets. | ||||
* | Move WAN interface to appear first now that the interface code | Scott Ullrich | 2008-08-30 | 1 | -14/+14 |
| | | | | | programatically enumerates the interfaces. Not sure if we need upgrade code to move the interface order. | ||||
* | Disable extended TCP debugging. | Scott Ullrich | 2008-08-11 | 1 | -0/+5 |
| | |||||
* | Sync to new config version number. | Ermal Luçi | 2008-08-05 | 1 | -1/+1 |
| | |||||
* | Epose if_bridge(4) sysctl members. | Ermal Luçi | 2008-08-05 | 1 | -0/+10 |
| | |||||
* | Rewrite the pfsense privilege system with the following goals in mind ... | Matthew Grooms | 2008-08-01 | 1 | -44/+27 |
| | | | | | | | | 1) Redefine page privileges to not use static urls 2) Accurate generation of privilege definitions from source 3) Merging the user and group privileges into a single set 4) Allow any privilege to be added to users or groups w/ inheritance 5) Cleaning up the related WebUI pages | ||||
* | * Switch XML tag from </pages> to <pages/> | Scott Ullrich | 2008-07-30 | 1 | -0/+7 |
| | | | | * Sync the all group which appears to be missing | ||||
* | latest config.xml version is 4.9 | Scott Ullrich | 2008-07-28 | 1 | -1/+1 |
| | |||||
* | Add TCP Inflight | Scott Ullrich | 2008-07-19 | 1 | -1/+6 |
| | |||||
* | Remove unused tag. | Scott Ullrich | 2008-03-10 | 1 | -2/+0 |
| | |||||
* | Unbreak package manager | Scott Ullrich | 2008-03-10 | 1 | -2/+0 |
| | |||||
* | Add missing bits from HEAD. | Scott Ullrich | 2008-02-20 | 1 | -1/+39 |
| | |||||
* | Switch over to the newly provisioned 0.pfsense.pool.ntp.org which | Scott Ullrich | 2008-02-18 | 1 | -1/+1 |
| | | | | ntp.org has graciously setup for pfSense. | ||||
* | Really disable CTRL+ALT+DELETE. | Scott Ullrich | 2008-02-02 | 1 | -1/+1 |
| | |||||
* | Disable CTRL+ALT+DELETE reboot sequence on keyboard. | Scott Ullrich | 2008-02-02 | 1 | -0/+5 |
| | | | | | Admnins commonly have to press this sequence to login to winderz boxen and if you have a shared KVM you might accidently reboot your firewall. | ||||
* | Revert previous patch to retain compatibility in the GUI. | Ermal Luçi | 2008-02-01 | 1 | -0/+11 |
| | |||||
* | Add defualt pass rule on lan interface and remove it from config. | Ermal Luçi | 2008-02-01 | 1 | -11/+0 |
| | | | | | | | It is a default policy so lets keep it with defaults and let the user override it when pleases. Remove it from here since it is part of the default policy and allow that on a new installation, after shaper wizard run packets don't go to the default queue. | ||||
* | Move update bogons script to 3am. | Scott Ullrich | 2007-11-28 | 1 | -1/+1 |
| | | | | Discussed on pfSense-support@ | ||||
* | * Download bogons entries from pfsense.com | Scott Ullrich | 2007-11-27 | 1 | -1/+1 |
| | | | | | * Do not update on every minute on the 1st of the month * Sleep for a random period before updating to avoid killing the server | ||||
* | Increase net.inet.ip.intr_queue_maxlen to 1000 which is the IP input queue. | Scott Ullrich | 2007-08-22 | 1 | -0/+5 |
| | |||||
* | Reset slbd every 140 minutes as opposed to 300 minutes. | Scott Ullrich | 2007-08-02 | 1 | -1/+1 |
| | |||||
* | Set the ephemeral port range starting port to 1024 instead of 49152. On a ↵ | Scott Ullrich | 2007-07-05 | 1 | -0/+5 |
| | | | | busy firewall it is possible to run out of ephemeral ports and then the system will block new connections until a port is available. | ||||
* | s/bin/sbin/ | Scott Ullrich | 2007-06-27 | 1 | -1/+1 |
| | |||||
* | Reset SLBD every 5 hours to avoid 100% cpu utilization Ticket #1316 | Scott Ullrich | 2007-06-27 | 1 | -1/+10 |
| | |||||
* | We need to expire entries every hour, not every half hour. (snort) | Scott Ullrich | 2007-06-02 | 1 | -1/+1 |
| | |||||
* | Add overlooked sysctl's. | Scott Ullrich | 2007-05-26 | 1 | -0/+35 |
| | |||||
* | Add system tunables area which allows the user to fine control sysctl's. | Scott Ullrich | 2007-05-26 | 1 | -0/+47 |
| | |||||
* | Oops, we need /etc/ping_hosts.sh to run every 5 minutes. | Scott Ullrich | 2007-05-15 | 1 | -0/+9 |
| | |||||
* | Add NTP server field to dhcp config. | Seth Mos | 2007-05-08 | 1 | -0/+1 |
| | | | | From: Alexander Schaber | ||||
* | We actually have 2.9 has the default now. | Scott Ullrich | 2007-03-14 | 1 | -1/+1 |
| | |||||
* | * Bump config version to 2.8 | Scott Ullrich | 2007-02-09 | 1 | -1/+1 |
| | | | | * Automatically install a IPSEC pass rule for unsuspecting users | ||||
* | Backport cron handling from HEAD. | Scott Ullrich | 2007-01-29 | 1 | -0/+74 |
| | | | | Patches-submitted-by: DSH@ | ||||
* | Change default theme to nervecenter. | Scott Ullrich | 2007-01-18 | 1 | -2/+2 |
| | | | | No objections from any of the 13 other people in IRC. Make it so. | ||||
* | Disable NAT reflection by default. | Scott Ullrich | 2006-03-09 | 1 | -0/+1 |
| | |||||
* | Set theme back to metallic and avoid the lynching | Scott Ullrich | 2006-01-01 | 1 | -1/+1 |
| | |||||
* | Change default theme back to pfsense. | Scott Ullrich | 2005-12-28 | 1 | -1/+1 |
| | | | | | | Some people claim the fancy metallic theme is slower. See http://forums.whirlpool.net.au/forum-replies-archive.cfm/436523.html | ||||
* | Change back to sis0 and sis1 for embedded. CDROM platform and other will ↵ | Scott Ullrich | 2005-11-17 | 1 | -2/+2 |
| | | | | pull in conf.defaults which is set for VMWARE if need be. | ||||
* | Change the default interface setup in PC version to vmware. | Scott Ullrich | 2005-11-16 | 1 | -2/+2 |
| | |||||
* | Do not enable SSHD by default. | Scott Ullrich | 2005-11-13 | 1 | -1/+0 |
| | | | | Ticket #682 | ||||
* | Disable FTP proxy helper on WAN by default | Scott Ullrich | 2005-11-07 | 1 | -0/+1 |
| | |||||
* | 1.10 -> 2.0 | Scott Ullrich | 2005-08-21 | 1 | -1/+1 |
| | |||||
* | Bump config version to 1.9 | Scott Ullrich | 2005-08-06 | 1 | -1/+1 |
| | |||||
* | Allow SSH service to be disabled / enabled. | Scott Ullrich | 2005-07-31 | 1 | -0/+1 |
| | |||||
* | Turn off raw filter for new installs | Scott Ullrich | 2005-07-29 | 1 | -1/+0 |
| |