summaryrefslogtreecommitdiffstats
path: root/conf.default
Commit message (Collapse)AuthorAgeFilesLines
* Use 1-6 rather than 0-5 for IPsec logging levels, to stay away from ↵Chris Buechler2015-10-261-1/+1
| | | | complications of 0 due to PHP stupidity. Upgrade config to add 1 to any configured log levels. Default to 1 as log level where none is configured by the user. Ticket #5340
* Upgrade config to 11.9. Changes IPsec peer ID for EAP types to "any", to ↵Chris Buechler2015-07-251-1/+1
| | | | retain previous behavior.
* Fix #4794:Renato Botelho2015-07-171-1/+1
| | | | | - Add a upgrade code to fix asn1dn string format to match strongSwan needs - Bump config version to 11.8
* dns_split was a comma separated list and moved to use space as separator, ↵Renato Botelho2015-03-061-1/+1
| | | | provide upgrade code to make sure old configs are converted. Since there was a config upgrade version 11.7 only on master, I pushed it to 11.8 and used dns_split one as 11.7 to be able to backport it to RELENG_2_2. Ticket #4418
* Remove the harden-glue option entirely and hard code it to yes. Ticket #4402Chris Buechler2015-03-051-1/+0
|
* Update Unbound defaultsChris Buechler2015-02-091-0/+4
|
* To avoid issues with clashing SAIDs go back to specifying the reqid in ↵Ermal LUÇI2015-01-131-1/+1
| | | | | | | | | strongswan config. To be able to manage this first upgrade the config to assign each phase2 an reqid Second use that during config generation Ticket #4208
* Fix #4090:Renato Botelho2015-01-051-1/+1
| | | | | | | | | - Unbound advanced options may contain double quotes and it breaks the syntax when a backup is restored because newlines are trimmed. Save it in base64 format is a safe way to prevent it - Bump config version to 11.5 - Provide upgrade code to encode current config or the one that came from unbound package on 2.1.5
* Add config upgrade code to make sure iketype is set, bump config version to ↵Renato Botelho2014-12-311-1/+1
| | | | 11.4. It fixes #4163
* Add config upgrade code to validate changes made on c2fe67eb and d269747b. ↵Renato Botelho2014-12-221-1/+1
| | | | It fixes #4134
* Add a cron item to expire items from webConfiguratorlockout, also add config ↵Renato Botelho2014-12-171-1/+10
| | | | upgrade code. This fixes #4122
* Update default config.xml for 2.2. Disable dnsmasq, enable Unbound. RemoveChris Buechler2014-11-141-370/+33
| | | | | | | outdated comments that used to sort of document the config file, but had been neglected for quite some time and aren't all that useful anyway. Change default NICs from vr to em, given vr is on the way out and em is the most common NIC in use today. partially re: Ticket #3396
* Do not require the default sysctl items to be set on the config.xml but ↵Ermal2014-11-101-152/+0
| | | | rather extract the definitions from the sysctl tree. Also to reduce config.xml size
* Put the new sysctl on the config as needed.Ermal2014-11-101-0/+5
|
* Add powerd normal mode flag (-n)Steven Selph2014-10-051-0/+1
|
* Insert tracker ids for the default LAN rulesErmal2014-04-141-0/+2
|
* Added support for UEFI booting to Network Booting configuration.Charlie Root2014-03-021-0/+2
| | | | | | modified: conf.default/config.xml modified: etc/inc/services.inc modified: usr/local/www/services_dhcp.php
* Remove deprecated sysctls. vfs.forcesync needs to be seen if the patch needs ↵Ermal2013-12-141-10/+0
| | | | to be put in place again!
* Add hybrid and disabled outbound NAT, fixes #2416:Renato Botelho2013-11-131-22/+19
| | | | | | | | | | | | | - Add 2 new outbound NAT modes, hybrid and disabled, manual and advanced keep working the same way - Hybrid mode applies manual rules first, automatic after - Disabled do no create any outbound NAT rules - Remove ipsecpassthru config field and rename advancedoutbound to outbound - Save mode on $config['nat']['outbound']['mode'] to simplify the logic - Modify config.default to reflect changes - Add code to upgrade config, and change latest_version to 10.3 - Use html to align modes and remove some hacks to align using  
* We do not use nor include newsyslog, so remove the cron job.jim-p2013-10-091-9/+0
|
* Set action = pass for configured mac addresses on CP passtrumacRenato Botelho2013-09-141-1/+1
|
* Disable kill_states by default on upgrade, it fixes #3183Renato Botelho2013-09-061-1/+1
|
* Disable state killing on gateway failure by default for new configs.Chris Buechler2013-09-031-0/+1
| | | | Clarify the text describing the option while here.
* Fixes #2979Renato Botelho2013-05-291-1/+1
| | | | | | | . Change max value for traffic and packets graphs to 20GigE . Bump config version to 9.6 . Write a config upgrade function to tune current rrd files to the new max value
* After some discussions it is better to make this a tunable and allow its ↵Ermal2013-05-081-0/+5
| | | | value change from administrator.
* Fix IPv6 Prefix ID default valueRenato Botelho2013-05-061-1/+1
| | | | | | | . Always initialize it to 0 when it's undefined . Remove unecessary initializations and checks . Bump config version to 9.5 . Write an upgrade config function to initialize old configs properly
* Upgrade code & config default versionN0YB2013-02-091-1/+1
|
* Update config default with powerd battery modeN0YB2013-02-091-1/+2
|
* Adjust RRD captive portal graphs for CP zonesRenato Botelho2013-02-061-1/+1
| | | | | | | | | - Create RRD configs per zone - Add tabs to see graphs per zone - Migrate existing rrd files to default cpZone - While I'm here, call unset() for $rrdcreate and $rrdupdatesh Resolves #2655
* Make sure default config complies with latest versionRenato Botelho2013-01-211-2/+0
|
* Update the default config.xml to 9.2 so it does not trigger config.xml ↵Renato Botelho2013-01-211-1/+1
| | | | upgrade during install of a new system
* Add IPv6 privacy settings tunables. Keep the default FreeBSD value for them, ↵Renato Botelho2013-01-211-0/+10
| | | | that is disabled. This implements feature request #2587
* Do not prefer anymore oldsa and recommend it as a better choiceErmal2013-01-101-1/+0
|
* Add bogons update frequency selectionbcyrill2013-01-061-0/+3
|
* Add the new tunable in the GUI for custommization and its default valueErmal2012-12-111-0/+5
|
* Added mode selection options for PowerD.Cristian Feldman2012-04-101-0/+1
|
* Set the IPaddrv6 field for the lan to track6 so it autoconfigures from the WAN.smos2012-04-031-0/+1
| | | | I forgot to remove the link local address it had in it on the original commit.
* Fix botched config.xml merge error. Remove duplicate ipaddrv6 tag.smos2012-04-031-1/+0
|
* Remove this track6 line as it causes an xml errorjim-p2012-04-021-1/+0
|
* Changeout the told dhcp-pd config for the new track6 style autoconfiguration ↵smos2012-04-021-1/+3
| | | | of the lan interface.
* Update the default config.xml to 8.3 so it does not trigger config.xml ↵smos2012-03-221-1/+1
| | | | upgrade during install of a new system
* removed the timeformate change and putting it in the dhcpd and dhcpdv6 which ↵Joecowboy2012-02-251-2/+0
| | | | will be generated by interface code. New XML tags will be <dhcpleaseinlocaltime/> and <dhcpv6leaseinlocaltime/>
* Added Time format change XML tag for both DHCP and DHCPv6 if you want to use ↵Joecowboy2012-02-251-0/+2
| | | | local time instead of UTC for leases.
* Fix default SMTP monitor parameters so they will properly check to see if an ↵jim-p2011-11-011-2/+2
| | | | SMTP banner is received.
* load balance monitor type send/expect must have a '' when using more then ↵marcelloc2011-09-021-1/+1
| | | | one argument.
* Add DHCP6 to the default configurationsmos2011-08-181-0/+1
|
* Fix conf.default versionjim-p2011-05-191-1/+1
|
* Add the ipv6 allow tag to the default config.Seth Mos2011-05-061-1/+21
| | | | | | Add a default allow rule for the LAN with IPv6 Add a dhcp-pd sla-id of 0 for the WAN. Add a dhcp-pd length of 0 for the WAN
* Merge remote branch 'upstream/master'Seth Mos2011-05-031-5/+0
|\ | | | | | | | | Conflicts: usr/local/www/status_rrd_graph_img.php
| * Remove rndtest sysctl since the kernel module is not anymore part of our ↵Ermal2011-04-281-5/+0
| | | | | | | | kernels. Leftover noticed by: Jim
OpenPOWER on IntegriCloud