Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | When a UDP reflection line was added for inetd, it was added as stream | Scott Ullrich | 2009-08-16 | 1 | -3/+6 |
| | |||||
* | Cleanup NanoBSD firmware upgrade | Scott Ullrich | 2009-08-12 | 1 | -2/+7 |
| | |||||
* | Make sure config.inc is sourced | Scott Ullrich | 2009-08-10 | 1 | -2/+3 |
| | |||||
* | Allow logging everything to syslog (allows syslog of snort, amongst other ↵ | Chris Buechler | 2009-08-09 | 1 | -0/+6 |
| | | | | things) | ||||
* | Allow tcpdump by default on enc. There is no measurable performance impact, ↵ | Chris Buechler | 2009-08-08 | 1 | -2/+2 |
| | | | | and it's annoying to flip the sysctls to allow when needed. | ||||
* | add "Disable reply-to" box. Work around for bug #14 | Chris Buechler | 2009-08-03 | 1 | -1/+1 |
| | |||||
* | Tell syslogd to not compress information to the following line is repeated N ↵ | Scott Ullrich | 2009-07-29 | 1 | -3/+3 |
| | | | | times. This unbreaks sshlockout_pf. | ||||
* | Don't log an error unless there really is one. | Chris Buechler | 2009-07-24 | 1 | -2/+4 |
| | |||||
* | Fix rdr on PPPoE and PPTP servers | Chris Buechler | 2009-07-23 | 1 | -4/+4 |
| | |||||
* | Revert the flowtable addition that should have never been accidently ↵ | Scott Ullrich | 2009-07-19 | 1 | -14/+13 |
| | | | | commited. Skip pfsync0 similar to how we do in master/HEAD | ||||
* | Load glxsb by default, unless disabled. Add option to disable to System -> ↵ | Chris Buechler | 2009-07-19 | 1 | -1/+20 |
| | | | | Advanced. | ||||
* | Fix variable name so that the prefer old SA knob actually does what one ↵ | Seth | 2009-07-16 | 1 | -1/+1 |
| | | | | expects it to do. | ||||
* | needs to be a global now | Scott Ullrich | 2009-07-15 | 1 | -0/+2 |
| | |||||
* | Do not allow muting of serial + full install | Scott Ullrich | 2009-07-15 | 1 | -0/+2 |
| | |||||
* | Do not allow muting of a serial console. The kernel gets very cranky and ↵ | Scott Ullrich | 2009-07-15 | 1 | -1/+9 |
| | | | | dishes cannot control tty errors | ||||
* | Switch over the dns list from arguments to dnswatch to a file which holds ↵ | Seth | 2009-07-14 | 1 | -4/+3 |
| | | | | them which dnswatch will use | ||||
* | Allow auto firmware upgrade to work on NanoBSD | Scott Ullrich | 2009-07-11 | 1 | -2/+3 |
| | |||||
* | Allow auto firmware upgrade to work on NanoBSD | Scott Ullrich | 2009-07-11 | 1 | -2/+11 |
| | |||||
* | For now set the number of flows to the same as allowable states. | Scott Ullrich | 2009-07-11 | 1 | -0/+3 |
| | |||||
* | Do not add hostname to watch in the refresh ipsec policy section, there may ↵ | Seth | 2009-07-11 | 2 | -4/+7 |
| | | | | | | | | | | | | be other tunnels using the same endpoint which need refreshing as well. This is also done in the part where the racoon configuration is written so it's safe to skip it here. Silence the logging in the dnscache code and the ipsec route add code into a debug check FIXME: there is a possible situation where hostname changes can be missed. In a lot of tunnels situation there might be updates of other hostnames that changed while we were reconfiguring. Not sure how to handle that. | ||||
* | Make the dnswatch list array unique before processing | Seth | 2009-07-11 | 1 | -0/+1 |
| | |||||
* | Increase the PHP running memory limit to 128MB from 32MB, on 1.5MB large | Seth | 2009-07-09 | 1 | -2/+2 |
| | | | | config XML files we run out of memory. | ||||
* | This routine was not meant to foreach() even though it is inside a ↵ | Scott Ullrich | 2009-07-09 | 1 | -0/+1 |
| | | | | foreach(). It's slightly confusing but the foreach obtains the correct namespace and then processes. Add the needed break; statemenet because on subequent foreach() loops, the carp password will be WRONG/BLANK. | ||||
* | MFC fix from Ermal | Chris Buechler | 2009-07-09 | 1 | -12/+12 |
| | | | | Fixes #26 | ||||
* | Do not call mute_kernel_msgs() it causes havoc. | Scott Ullrich | 2009-07-07 | 1 | -4/+0 |
| | |||||
* | Match 4.X polling behavior. See thread "Polling and kern.polling.idle_poll" | Scott Ullrich | 2009-07-03 | 1 | -0/+1 |
| | |||||
* | Remove trailing / | Scott Ullrich | 2009-07-01 | 1 | -2/+2 |
| | |||||
* | Add missing / | Scott Ullrich | 2009-07-01 | 1 | -1/+1 |
| | |||||
* | Correct the name its parse_config | Scott Ullrich | 2009-06-30 | 1 | -1/+1 |
| | |||||
* | Correct the name its parse_config | Scott Ullrich | 2009-06-30 | 1 | -2/+2 |
| | |||||
* | If the key is 0 then return, it is not a valid key. | Scott Ullrich | 2009-06-27 | 1 | -1/+1 |
| | |||||
* | Surpress sem_ errors | Scott Ullrich | 2009-06-27 | 1 | -0/+4 |
| | |||||
* | Teach config about nanobsd | Scott Ullrich | 2009-06-27 | 1 | -2/+2 |
| | |||||
* | Check to see if dir exists before blindly mounting rw | Scott Ullrich | 2009-06-25 | 1 | -0/+4 |
| | |||||
* | Add missing conf_mount_ro(); | Scott Ullrich | 2009-06-25 | 1 | -0/+1 |
| | |||||
* | No need to call conf_mount_rw() when generating config.cache, it is on /tmp | Scott Ullrich | 2009-06-25 | 1 | -3/+0 |
| | |||||
* | Patch from Aarno Aukia for cvstrac ticket #1932 | Chris Buechler | 2009-06-25 | 1 | -2/+5 |
| | |||||
* | remove watchdog | Chris Buechler | 2009-06-22 | 1 | -20/+0 |
| | |||||
* | Disable watchdogd until we can find a workaround. When IPSEC is thumping ↵ | Scott Ullrich | 2009-06-22 | 1 | -1/+4 |
| | | | | (or any other network intensive opeartion) for long period of times can trigger the watchdog. Really watchdogd needs to check to see if network packets are flowing because if network packets are flowing the box is up from our standpoint. | ||||
* | patch from jim-p to fix remote VPN logging now that we have apinger | Chris Buechler | 2009-06-18 | 1 | -4/+4 |
| | |||||
* | Adding base_package feature to restore menu items for base packages after ↵ | Scott Ullrich | 2009-06-17 | 1 | -0/+1 |
| | | | | | | configuration restore. | ||||
* | Handle packages on embedded the same. Ssshhhh, don't tell anyone. | Scott Ullrich | 2009-06-17 | 1 | -0/+4 |
| | |||||
* | Fix ruleset for > 100 OpenVPN connections | Chris Buechler | 2009-06-15 | 1 | -11/+4 |
| | | | | clean up the old unused bridge code while here. | ||||
* | Exclude ppp from interface mismatch check | Scott Ullrich | 2009-06-06 | 1 | -1/+4 |
| | |||||
* | Remove RRD options from the apinger configuration. | Seth Mos | 2009-06-05 | 1 | -5/+0 |
| | | | | They do not make any sense to generate since they are not used anywhere in 1.2 | ||||
* | Eventhough you can set the racoon admin socket to a different path in the ↵ | Seth Mos | 2009-06-03 | 1 | -4/+4 |
| | | | | | | | | configuration it will be ignored by ipsec-tools 0.8+ Align all the sockets into the new path /var/db/racoon so that we can find it. Remove the old killall -HUP racoon as this prevents the newer racoon from properly loading it's initial configuration. This might actually also have been a possible problem on the old ipsec-tools since that we switch over to reloading via the admin socket. | ||||
* | Oops, make that /bin/mkdir | Scott Ullrich | 2009-06-02 | 1 | -1/+1 |
| | |||||
* | Exclude plip from get_interface_list | Scott Ullrich | 2009-06-01 | 1 | -0/+1 |
| | |||||
* | Merge branch 'RELENG_1_2' of http://gitweb.pfsense.org/pfsense/mainline into ↵ | Chris Buechler | 2009-05-31 | 2 | -1/+13 |
|\ | | | | | | | RELENG_1_2 | ||||
| * | Add NAT-T ports. | Scott Ullrich | 2009-05-31 | 1 | -0/+7 |
| | | | | | | | | Submitted-by: JimP@ |