summaryrefslogtreecommitdiffstats
path: root/etc
Commit message (Collapse)AuthorAgeFilesLines
* Move update bogons script to 3am.Scott Ullrich2007-11-281-3/+3
| | | | Discussed on pfSense-support@
* Log when we change the bogons frequency hour.Scott Ullrich2007-11-281-6/+7
|
* Move special case fixes before we return so that it can be processed.Scott Ullrich2007-11-281-12/+12
|
* Change bogons update script frequency to 2am.Scott Ullrich2007-11-281-1/+3
|
* Change bogons update script frequency to 2am.Scott Ullrich2007-11-281-0/+10
|
* Switch to a more random number between 1-2,000. that'd be somewhere betweenScott Ullrich2007-11-281-1/+1
| | | | | | immediately and 33 minutes. If people are setting their time zone properly that also helps distribute the load, since it runs at 1:01 AM local time.
* Use files.pfsense.orgScott Ullrich2007-11-271-1/+1
| | | | Requested-by: CMB
* Use files.pfsense.orgScott Ullrich2007-11-271-1/+1
| | | | Requested-by: CMB
* Log how many changes are made to bogons file.Scott Ullrich2007-11-271-1/+2
|
* Throw an error when we cannot download bogons file instead of blindly ↵Scott Ullrich2007-11-271-0/+5
| | | | assuming it succeedded.
* Actually generate a random numberScott Ullrich2007-11-271-5/+2
|
* * Download bogons entries from pfsense.comScott Ullrich2007-11-271-1/+10
| | | | | * Do not update on every minute on the 1st of the month * Sleep for a random period before updating to avoid killing the server
* Really allow command arguments from pfSsh.phpScott Ullrich2007-11-241-2/+3
|
* Allow command arguments from pfSsh.phpScott Ullrich2007-11-241-10/+13
|
* Remove syslog.conf from checked out files marked for updating.Scott Ullrich2007-11-241-0/+1
|
* Move branch names and descriptions to an array instead of hard coding.Scott Ullrich2007-11-231-9/+17
|
* Add restartipsec scriptScott Ullrich2007-11-231-0/+2
|
* Remove extra c/rScott Ullrich2007-11-231-1/+1
|
* Allow arguments to be passed to cvssync so you can do:Scott Ullrich2007-11-231-6/+12
| | | | pfSsh.php playback cvssync RELENG_1
* Note script is "Terminating" at end.Scott Ullrich2007-11-231-1/+1
|
* Simplify the process and do not download the entire cvs tree for cvssync ↵Scott Ullrich2007-11-231-40/+39
| | | | operations. Simply cvsup the needed branch. Saves bandwidth, time, diskspace, etc.
* Add restart dhcp server scriptScott Ullrich2007-11-231-0/+4
|
* Add missing carriage returnsScott Ullrich2007-11-231-7/+8
|
* Move cvs_sync.sh to pfSense shell as the cvssync playback command.Scott Ullrich2007-11-231-0/+119
|
* Show starting and ending of scriptScott Ullrich2007-11-221-1/+2
|
* Cleanup c/r usage.Scott Ullrich2007-11-221-9/+0
|
* Add c/r's to improve presentationScott Ullrich2007-11-221-0/+9
|
* * Fix ! commands (do not echo commands but execute as shell)Scott Ullrich2007-11-221-3/+3
| | | | * Fix grep commands in playback session for restart ftp helper
* Start the pfSense php shell playback library archive.Scott Ullrich2007-11-221-0/+15
|
* Remove blank line from end of file.Scott Ullrich2007-11-221-1/+1
|
* Remove ftpproxy anchor that is not needed by ftp-proxy.Scott Ullrich2007-11-212-2/+1
| | | | Noticed-by: lsf
* Convert anchors and such over to ftp-proxy.Scott Ullrich2007-11-212-12/+12
|
* Switch over to ftp-proxy from pftpx.Scott Ullrich2007-11-212-8/+8
|
* Nuke code that does nothing.Scott Ullrich2007-11-191-23/+4
|
* Make the error message clickable so that the admin can easily return to the GUI.Scott Ullrich2007-11-191-0/+1
|
* Do not logout session if the user does not have access to a page. We should ↵Scott Ullrich2007-11-191-6/+1
| | | | also hide menu items that user does not have access to.
* Correctly check for page names by including .php. Strip off / if found so ↵Scott Ullrich2007-11-191-2/+2
| | | | that we can get an exact page match against the URL. My test diagnostics user now works.
* Instead of throwing a very vague 401 error actually tell the user which page ↵Scott Ullrich2007-11-181-1/+1
| | | | they do not have access to. This will also help admins troubleshoot group manager page privs.
* * Correctly report invalid passwordScott Ullrich2007-11-181-0/+8
| | | | | * Correctly report invalid username * Correctly report 401 errors
* Correctly show 401 errors.Scott Ullrich2007-11-182-1/+26
|
* Reference correct file for upgrade from console.Seth Mos2007-11-121-1/+1
|
* do not run pfctl -ss 4 timesSeth Mos2007-11-101-5/+7
|
* Remove any previous MD5 sums after upgrade.Scott Ullrich2007-11-071-0/+3
|
* Failover in 10 seconds as opposed to 60 seconds on DHCP Server failover mode.Scott Ullrich2007-11-061-1/+1
|
* Minor style nitpicks. # should have a space betwen it and the next text.Scott Ullrich2007-11-051-1/+1
|
* Automatically permit PFTPX traffic behind the scenes. Without this change ↵Scott Ullrich2007-11-051-6/+17
| | | | multi-wan can break ftp very easily when someone defines rules for the same port range (8020-8029).
* IPSEC keep alive pinger using the wrong source IP addressScott Ullrich2007-11-051-8/+8
| | | | Ticket #1482
* multiple vlans + spoofmac result in unexpected behaviourScott Ullrich2007-11-011-0/+12
| | | | | | | | | | | | | | | | | | | | | Ticket #1514 Introduction I have an acceptable workaround, so the problem is not urgent, but before i fiogured out the workaround, is was severely impacting performance (3 interfaces not operating). I am a network specialist and I am available to assist wherever possible. If the issue si considered seriousenough for a fix, I can assist in more detailed pinpointing using tcpdumps on test-platforms. Symptoms If a interface is using vlan tagging for virtual interfaces and also the untagged interface is using MAC address spoofing, communication fails on the tagged vlans. Description On interface rl1 is untagged the WAN connection. This requires a spoofed MAC address, eg using <spoofmac>00:03:6b:f7:3b:3f</spoofmac>. On interface rl1 is also a vlan/tagged interface, eg vlan0 using rl1 and vlan tag 5. The tagged interface vlan0 expects to use the original MAC address of the interface rl0. But the issue is that interface rl0 is only processing incoming packets with destination mac address spoof_mac_rl1. Workarounds (no code change required) acceptable configure the <spoofmac>00:03:6b:f7:3b:3f</spoofmac> on all vlan interfaces connected to interface rl1 funny start a tcpdump on the vlan interface. This will put the interface in promiscuous mode and it will process all packets. Now the packets destined for the original MAC address (and active on the vlan interface) bypass Do not use tagged interfaces on a interface with spoofmac Remarks It is very confusing that when a vlan is created, the GUI a refernece shows to the physical/original MAC address, even when the MAC addres of the untagged interface is
* Adding keep alive host to IPsec causes warning in webGUIScott Ullrich2007-11-011-1/+1
| | | | Ticket #1509
* Define ifconfig commandSeth Mos2007-10-291-0/+1
|
OpenPOWER on IntegriCloud