Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge pull request #1340 from phil-davis/patch-5 | Renato Botelho | 2014-11-17 | 1 | -6/+14 |
|\ | |||||
| * | Improve test in unbound_add_domain_overrides | Phil Davis | 2014-11-17 | 1 | -1/+1 |
| | | | | | | Actually the test condition happened to work OK! But this change makes it easier to understand what is really intended. | ||||
| * | Handle reverse-lookup zones for unbound | Phil Davis | 2014-11-16 | 1 | -6/+14 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | By default unbound returns nothing for private reverse lookups. Here is some information about that from https://www.unbound.net/documentation/unbound.conf.html -------- The default zones are localhost, reverse 127.0.0.1 and ::1, and the AS112 zones. The AS112 zones are reverse DNS zones for private use and reserved IP addresses for which the servers on the internet cannot pro- vide correct answers. They are configured by default to give nxdomain (no reverse information) answers. The defaults can be turned off by specifying your own local-zone of that name, or using the 'nodefault' type. Below is a list of the default zone contents. -------- Just specifying 'nodefault' did not work. I found other threads where people used this in unbound.conf -------- local-zone: "49.10.in-addr.arpa" typetransparent -------- Note that it works specifying the domain override with or without a final "." So the code here checks for the special cases of ".in-addr.arpa" and ".in-addr.arpa." at the end of a domain override name. With this code my domain override entries for private reverse lookups work. | ||||
* | | Unbound improvements and fixes, ticket #4011: | Renato Botelho | 2014-11-17 | 1 | -102/+29 |
| | | | | | | | | | | | | | | - Create dhcpleases_entries.conf, feed by dhcpleases - Do not read lines created by dhcpleases from /etc/hosts to populate host_entries.conf - Simplify logic for host_entries.conf creation | ||||
* | | Take unbound into consideration when creating /etc/hosts, also use new ↵ | Renato Botelho | 2014-11-17 | 1 | -10/+16 |
| | | | | | | | | unbound parameters for dhcpleases when it's necessary, helps ticket #4011 | ||||
* | | Use the name entry now that there is a definition for it | Ermal | 2014-11-17 | 1 | -1/+1 |
| | | |||||
* | | Fix the generation of certificates for rsa type. strpos returns the pos as 0 ↵ | Ermal | 2014-11-17 | 1 | -1/+1 |
| | | | | | | | | for rsasig but it php considers that as false anyhow | ||||
* | | Properly handle CARP IP binding in dnsmasq post-changes for FreeBSD 10.x ↵ | Chris Buechler | 2014-11-16 | 1 | -0/+4 |
| | | | | | | | | CARP. Ticket #4012 | ||||
* | | show tunnelv4 on v4 the same way tunnelv6 is shown on v6 | Chris Buechler | 2014-11-16 | 1 | -0/+1 |
| | | |||||
* | | show tunnelv4 on v4 the same way tunnelv6 is shown on v6 | Chris Buechler | 2014-11-16 | 1 | -1/+2 |
|/ | |||||
* | Don't try to clear states to gateway, all that does is wipe the entire state ↵ | Chris Buechler | 2014-11-16 | 1 | -5/+0 |
| | | | | table unnecessarily. rc.newwanip takes care of killing states appropriately as needed when an IP changes. | ||||
* | fix Unbound Advanced options | Chris Buechler | 2014-11-15 | 1 | -1/+2 |
| | |||||
* | if unbound is enabled, assign interface IP as DNS, same behavior as dnsmasq | Chris Buechler | 2014-11-15 | 1 | -0/+2 |
| | |||||
* | fix missing strpos parameter | Chris Buechler | 2014-11-15 | 1 | -1/+1 |
| | |||||
* | Make sure dhcpleases use correct pid file for dnsmasq or unbound. Fixes #4008 | Renato Botelho | 2014-11-14 | 1 | -12/+22 |
| | |||||
* | geom part list no longer lists empty disks, compensate where needed. | jim-p | 2014-11-13 | 1 | -0/+10 |
| | | | | Also, while I'm here, fixup copyright. | ||||
* | Merge pull request #1336 from phil-davis/patch-4 | Renato Botelho | 2014-11-13 | 1 | -22/+27 |
|\ | |||||
| * | Implement advanced settings in unbound.conf | Phil Davis | 2014-11-13 | 1 | -22/+27 |
| | | | | | | | | The settings are made in the Advanced tab in the GUI and are stored in the config. Now actually implement them in unbound.conf | ||||
* | | Subnet parameter is mandatory for pfSense_ipfw_Tableaction(), add where it's ↵ | Renato Botelho | 2014-11-13 | 1 | -4/+6 |
|/ | | | | missing | ||||
* | Fix logic to find available next number for limiters and queues. It fixes #3998 | Renato Botelho | 2014-11-13 | 1 | -2/+2 |
| | |||||
* | Add an extra protection to avoid having an empty group created | Renato Botelho | 2014-11-13 | 1 | -1/+1 |
| | |||||
* | Oops wrong choice the checkbox is only for javascript | Ermal | 2014-11-12 | 1 | -1/+1 |
| | |||||
* | Remove redundant code and check for dpd_enable checkbox to be set | Ermal | 2014-11-12 | 1 | -3/+2 |
| | |||||
* | Use route command directly rather than trying to make a route search on php ↵ | Ermal | 2014-11-12 | 1 | -32/+17 |
| | | | | thorugh netstat. It Fixes #4000 | ||||
* | Revert "Make phase1_status function wok whnever there is a smp dump. This ↵ | Ermal | 2014-11-12 | 1 | -9/+2 |
| | | | | | | should unbreak Ticket #3955" This reverts commit 694d368d818508a40bdef4f1a3f64b414b11c442. | ||||
* | hn(4) is ALTQ-capable, mark as such. | Chris Buechler | 2014-11-11 | 1 | -1/+1 |
| | |||||
* | Make phase1_status function wok whnever there is a smp dump. This should ↵ | Ermal | 2014-11-11 | 1 | -2/+9 |
| | | | | unbreak Ticket #3955 | ||||
* | Actually require group name! | Ermal | 2014-11-11 | 1 | -1/+1 |
| | |||||
* | Do not do operations for empty group members | Ermal | 2014-11-11 | 1 | -1/+4 |
| | |||||
* | Do not do this during boot | Ermal | 2014-11-11 | 1 | -10/+12 |
| | |||||
* | Use leftcert for more options on IPsec authentication | Ermal | 2014-11-11 | 1 | -0/+6 |
| | |||||
* | Fixes #3967, properly resolve interface | Ermal | 2014-11-11 | 1 | -2/+2 |
| | |||||
* | Set proxy env vars on interactive shell and also on crontab to make all ↵ | Renato Botelho | 2014-11-11 | 1 | -0/+7 |
| | | | | scripts be able to use it. Ticket #3789 | ||||
* | touch up text | Chris Buechler | 2014-11-11 | 1 | -2/+2 |
| | |||||
* | Change copyright statement to reflect reality | Jim Thompson | 2014-11-10 | 5 | -0/+5 |
| | |||||
* | Strengthen check | Ermal | 2014-11-10 | 1 | -1/+1 |
| | |||||
* | Compare the right things here. | Ermal | 2014-11-10 | 1 | -3/+5 |
| | |||||
* | Do not require the default sysctl items to be set on the config.xml but ↵ | Ermal | 2014-11-10 | 2 | -9/+48 |
| | | | | rather extract the definitions from the sysctl tree. Also to reduce config.xml size | ||||
* | Retire flowtable_configure as a useless code since its not in kernel | Ermal | 2014-11-10 | 1 | -30/+0 |
| | |||||
* | Actually make default sysctls reside on globals.inc and use those by default ↵ | Ermal | 2014-11-10 | 2 | -10/+7 |
| | | | | this allows to trim down the config.xml sysctl and also fixes #3666 by setting set source interface on reply of icmp | ||||
* | Tighten checks here to avoid overriding the default gw with garbage | Ermal | 2014-11-10 | 1 | -8/+8 |
| | |||||
* | Make some more useful checks here | Ermal | 2014-11-10 | 1 | -2/+2 |
| | |||||
* | Be sure the same gateway is not processed for v4 and v6 | Ermal | 2014-11-10 | 1 | -1/+1 |
| | |||||
* | Lets put a logging to see what is bing passed to the rtsold script on ↵ | Ermal | 2014-11-10 | 1 | -0/+1 |
| | | | | calling. Helps with Ticket #3361 | ||||
* | Ticket 3967, revert upgrade code. Existing 2.2 installs might be impacted | Ermal | 2014-11-10 | 1 | -23/+1 |
| | |||||
* | Fixes #3967, configure ip alias on top of carp by joining them to the same ↵ | Ermal | 2014-11-10 | 2 | -14/+47 |
| | | | | vhid as its parent | ||||
* | Ticket #3967. Allow to have carp as parent of ipaliases - continued | Ermal | 2014-11-10 | 2 | -1/+10 |
| | |||||
* | Fixes #3995. Do not set rightsourceip on site-to-site VPNs but only on ↵ | Ermal | 2014-11-07 | 1 | -1/+1 |
| | | | | mobile users ones otherwise nothing works. | ||||
* | Make ipsec_starter log go to ipsec.log rather than system one | Ermal | 2014-11-07 | 1 | -2/+2 |
| | |||||
* | Reload also the configuration not only the secrets before trying to apply ↵ | Ermal | 2014-11-07 | 1 | -0/+1 |
| | | | | existing configuration. Ticket #3981 |