Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix PPPoE upgrade, the <pppoe> tag is considered an array these days and the ↵ | jim-p | 2011-04-21 | 1 | -6/+6 |
| | | | | upgrade code wasn't treating it properly, accessing it directly instead of using the first entry ([0]). Fixes #1439 - PPPoE credentials upgrade properly now. | ||||
* | Confirmed working fix for ticket #1417 - with this change I have two-way ↵ | jim-p | 2011-04-21 | 1 | -0/+2 |
| | | | | connectivity on Site-to-Site (SSL/TLS) with iroutes. | ||||
* | Backing out changes from ticket #1417, it was not a valid openvpn config ↵ | jim-p | 2011-04-19 | 1 | -1/+0 |
| | | | | that the user was trying to make. | ||||
* | Harden SSL settings a bit. Verified OK with @cmb and @billm | Scott Ullrich | 2011-04-19 | 1 | -0/+5 |
| | |||||
* | Slightly different fix for #1417 that doesn't mess up other parameters ↵ | jim-p | 2011-04-18 | 1 | -1/+2 |
| | | | | needed by p2p_tls | ||||
* | Block instead of allowing proto carp/pfsync during bootup since this may ↵ | Ermal | 2011-04-18 | 1 | -2/+2 |
| | | | | cause issues. Ticket #1432 | ||||
* | Add an option under advanced->misc to specify a proxy for retreiving pfsense ↵ | Ermal | 2011-04-18 | 1 | -3/+26 |
| | | | | package info or downloading packages. | ||||
* | Don't include RFC1918 in bogons. | jim-p | 2011-04-17 | 1 | -4/+1 |
| | |||||
* | sync bogons | Chris Buechler | 2011-04-16 | 1 | -7/+3 |
| | |||||
* | Save a little space on the interface list for console assignment. | jim-p | 2011-04-14 | 1 | -2/+2 |
| | |||||
* | Add missing fields for l2tp to define dns and wins servers | smos | 2011-04-13 | 1 | -2/+5 |
| | |||||
* | Do not send growl notices twice | Scott Ullrich | 2011-04-12 | 1 | -0/+13 |
| | |||||
* | Remove blank trailing c/r. | Scott Ullrich | 2011-04-12 | 1 | -1/+1 |
| | |||||
* | Notify via smtp as well as growl | Scott Ullrich | 2011-04-12 | 2 | -1/+3 |
| | |||||
* | Drop the ntpdate sync in favor of using ntpd -s, which should have the same ↵ | jim-p | 2011-04-12 | 3 | -7/+1 |
| | | | | net effect without needing the shell script that has been prone to hanging. | ||||
* | Add a toggle under System > Advanced on the misc tab to enable/disable debug ↵ | jim-p | 2011-04-11 | 1 | -1/+2 |
| | | | | mode for racoon. | ||||
* | Add an IPsec xauth permission. Try to use the nologin shell first (just ↵ | jim-p | 2011-04-08 | 2 | -0/+8 |
| | | | | unlock the account). Ticket #1202 | ||||
* | Putting client-config-dir in the config is valid also for p2p_tls servers. ↵ | jim-p | 2011-04-08 | 1 | -1/+1 |
| | | | | Fixes #1417. | ||||
* | Resolves #1391. Bring back VPN auto rule disable advanced setting. | Ermal | 2011-04-06 | 1 | -1/+4 |
| | |||||
* | CRL is read in as an array now, so even in the imported config it will ↵ | jim-p | 2011-04-06 | 1 | -2/+2 |
| | | | | appear to be an array even though it can only have one value. Fixes #1358 | ||||
* | Fixup text. | jim-p | 2011-04-06 | 1 | -2/+2 |
| | |||||
* | Actually re-parse the config if a valid config was not written. (Should help ↵ | jim-p | 2011-04-06 | 1 | -2/+9 |
| | | | | stop installs from blowing up on failed config upgrades). Save the bad config for inspection, and print a message to the console about what was done. | ||||
* | Correct error message for gateways to report down when the gateway is down ↵ | Ermal | 2011-04-06 | 1 | -1/+1 |
| | | | | and not high latency. | ||||
* | Another sweep at keeping the default route always present when the default ↵ | Ermal | 2011-04-06 | 1 | -10/+20 |
| | | | | setup route is marked as down. This now adds checks for configuration where a defaultgw is not specified by the user but deduced automatically. | ||||
* | Unbreak inetd.conf generation to avoid entries containing Array entries. ↵ | Ermal | 2011-04-05 | 1 | -1/+1 |
| | | | | This gixes nat reflection and a spamming of the system with nc processes with wrong parameters. | ||||
* | Fix variable name | jim-p | 2011-04-05 | 1 | -2/+2 |
| | |||||
* | Try to always keep pfSense with a default gateway to avoid errors for ↵ | Ermal | 2011-04-04 | 1 | -1/+25 |
| | | | | service running from pfSense itself. Previously PBR should be configured for such services. While PBR is a better fix this at least keeps users from complaining in simple setups. Reported by many. | ||||
* | On interface ip change reload even igmpproxy. Reported-by: ↵ | Ermal | 2011-04-04 | 2 | -2/+5 |
| | | | | http://forum.pfsense.org/index.php/topic,34372.0.html | ||||
* | Add -a to include all updaterrd.sh scripts running and also remove top ↵ | Ermal | 2011-04-04 | 1 | -2/+1 |
| | | | | killing since its not used anymore in stat gathering. | ||||
* | Fix indent. | Ermal | 2011-04-01 | 1 | -11/+11 |
| | |||||
* | Switch back to dev_mode so existing configs aren't broken by the other changes. | jim-p | 2011-04-01 | 1 | -5/+5 |
| | |||||
* | Correct the conditional testing. | Ermal | 2011-03-31 | 1 | -1/+1 |
| | |||||
* | Do not show the default queue selection for a queue that has child queues | Ermal | 2011-03-31 | 1 | -8/+10 |
| | |||||
* | Prevent non-numeric chars from being inputed on bandwidth field. | Ermal | 2011-03-31 | 1 | -2/+10 |
| | |||||
* | Use a different loop counter variable to avoid a name collision | jim-p | 2011-03-30 | 1 | -3/+3 |
| | |||||
* | Test for value present before using. | Ermal | 2011-03-30 | 1 | -2/+2 |
| | |||||
* | Test for value present before using. | Ermal | 2011-03-30 | 1 | -1/+1 |
| | |||||
* | Unset xmlrpcauth and not the first member of the array. | Ermal | 2011-03-30 | 1 | -2/+2 |
| | |||||
* | Check for function existence before calling it. | Ermal | 2011-03-30 | 1 | -1/+2 |
| | |||||
* | By default assume admin user and do not blindly copy the first user from the ↵ | Ermal | 2011-03-30 | 1 | -3/+6 |
| | | | | config.xml | ||||
* | Allow editing of CAs, so that imported CAs can have their private keys added ↵ | jim-p | 2011-03-30 | 1 | -2/+4 |
| | | | | later (mainly affected users upgrading from 1.2.3 and wanting to use the cert manager). Also, allow editing the CA's serial, since this shouldn't really be 0 for imported CAs, but the serial of the last cert that was made from this CA. | ||||
* | Do not rely on first user being admin as this breaks in certain cases the ↵ | Ermal | 2011-03-30 | 1 | -18/+20 |
| | | | | XMLRPC authentication. TODO: pass username as argument too. This now can use the local system authentication settings as well. | ||||
* | clarify log | Chris Buechler | 2011-03-30 | 1 | -1/+1 |
| | |||||
* | Check for "aes 256" as IPsec encryption type, not just rijndael. | jim-p | 2011-03-29 | 1 | -0/+4 |
| | |||||
* | Add some upgrade code for IPsec mobile clients. Passes php -l but needs more ↵ | jim-p | 2011-03-29 | 1 | -0/+134 |
| | | | | testing. | ||||
* | Trim spaces out to avoid problems from explode. | Ermal | 2011-03-29 | 1 | -1/+1 |
| | |||||
* | Add back gre allowing rules since they are needed. | Ermal | 2011-03-29 | 1 | -0/+2 |
| | |||||
* | Allow TCP and UDP for DHCP failover traffic. | jim-p | 2011-03-28 | 1 | -2/+2 |
| | |||||
* | In IPsec, s/mobileclients/client/, this was changed long ago in the config ↵ | jim-p | 2011-03-28 | 2 | -3/+3 |
| | | | | but not everywhere followed. | ||||
* | Correct PPTP Clients alias address. The PPTP server address was been utlized ↵ | Warren Baker | 2011-03-28 | 1 | -1/+1 |
| | | | | instead, which resulted in an incorrect firewall rule when 'PPTP Clients' was configured. |