Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add restartipsec script | Scott Ullrich | 2007-11-23 | 1 | -0/+2 |
| | |||||
* | Remove extra c/r | Scott Ullrich | 2007-11-23 | 1 | -1/+1 |
| | |||||
* | Allow arguments to be passed to cvssync so you can do: | Scott Ullrich | 2007-11-23 | 1 | -6/+12 |
| | | | | pfSsh.php playback cvssync RELENG_1 | ||||
* | Note script is "Terminating" at end. | Scott Ullrich | 2007-11-23 | 1 | -1/+1 |
| | |||||
* | Simplify the process and do not download the entire cvs tree for cvssync ↵ | Scott Ullrich | 2007-11-23 | 1 | -40/+39 |
| | | | | operations. Simply cvsup the needed branch. Saves bandwidth, time, diskspace, etc. | ||||
* | Add restart dhcp server script | Scott Ullrich | 2007-11-23 | 1 | -0/+4 |
| | |||||
* | Add missing carriage returns | Scott Ullrich | 2007-11-23 | 1 | -7/+8 |
| | |||||
* | Move cvs_sync.sh to pfSense shell as the cvssync playback command. | Scott Ullrich | 2007-11-23 | 1 | -0/+119 |
| | |||||
* | Show starting and ending of script | Scott Ullrich | 2007-11-22 | 1 | -1/+2 |
| | |||||
* | Cleanup c/r usage. | Scott Ullrich | 2007-11-22 | 1 | -9/+0 |
| | |||||
* | Add c/r's to improve presentation | Scott Ullrich | 2007-11-22 | 1 | -0/+9 |
| | |||||
* | * Fix ! commands (do not echo commands but execute as shell) | Scott Ullrich | 2007-11-22 | 1 | -3/+3 |
| | | | | * Fix grep commands in playback session for restart ftp helper | ||||
* | Start the pfSense php shell playback library archive. | Scott Ullrich | 2007-11-22 | 1 | -0/+15 |
| | |||||
* | Remove blank line from end of file. | Scott Ullrich | 2007-11-22 | 1 | -1/+1 |
| | |||||
* | Remove ftpproxy anchor that is not needed by ftp-proxy. | Scott Ullrich | 2007-11-21 | 2 | -2/+1 |
| | | | | Noticed-by: lsf | ||||
* | Convert anchors and such over to ftp-proxy. | Scott Ullrich | 2007-11-21 | 2 | -12/+12 |
| | |||||
* | Switch over to ftp-proxy from pftpx. | Scott Ullrich | 2007-11-21 | 2 | -8/+8 |
| | |||||
* | Nuke code that does nothing. | Scott Ullrich | 2007-11-19 | 1 | -23/+4 |
| | |||||
* | Make the error message clickable so that the admin can easily return to the GUI. | Scott Ullrich | 2007-11-19 | 1 | -0/+1 |
| | |||||
* | Do not logout session if the user does not have access to a page. We should ↵ | Scott Ullrich | 2007-11-19 | 1 | -6/+1 |
| | | | | also hide menu items that user does not have access to. | ||||
* | Correctly check for page names by including .php. Strip off / if found so ↵ | Scott Ullrich | 2007-11-19 | 1 | -2/+2 |
| | | | | that we can get an exact page match against the URL. My test diagnostics user now works. | ||||
* | Instead of throwing a very vague 401 error actually tell the user which page ↵ | Scott Ullrich | 2007-11-18 | 1 | -1/+1 |
| | | | | they do not have access to. This will also help admins troubleshoot group manager page privs. | ||||
* | * Correctly report invalid password | Scott Ullrich | 2007-11-18 | 1 | -0/+8 |
| | | | | | * Correctly report invalid username * Correctly report 401 errors | ||||
* | Correctly show 401 errors. | Scott Ullrich | 2007-11-18 | 2 | -1/+26 |
| | |||||
* | Reference correct file for upgrade from console. | Seth Mos | 2007-11-12 | 1 | -1/+1 |
| | |||||
* | do not run pfctl -ss 4 times | Seth Mos | 2007-11-10 | 1 | -5/+7 |
| | |||||
* | Remove any previous MD5 sums after upgrade. | Scott Ullrich | 2007-11-07 | 1 | -0/+3 |
| | |||||
* | Failover in 10 seconds as opposed to 60 seconds on DHCP Server failover mode. | Scott Ullrich | 2007-11-06 | 1 | -1/+1 |
| | |||||
* | Minor style nitpicks. # should have a space betwen it and the next text. | Scott Ullrich | 2007-11-05 | 1 | -1/+1 |
| | |||||
* | Automatically permit PFTPX traffic behind the scenes. Without this change ↵ | Scott Ullrich | 2007-11-05 | 1 | -6/+17 |
| | | | | multi-wan can break ftp very easily when someone defines rules for the same port range (8020-8029). | ||||
* | IPSEC keep alive pinger using the wrong source IP address | Scott Ullrich | 2007-11-05 | 1 | -8/+8 |
| | | | | Ticket #1482 | ||||
* | multiple vlans + spoofmac result in unexpected behaviour | Scott Ullrich | 2007-11-01 | 1 | -0/+12 |
| | | | | | | | | | | | | | | | | | | | | | Ticket #1514 Introduction I have an acceptable workaround, so the problem is not urgent, but before i fiogured out the workaround, is was severely impacting performance (3 interfaces not operating). I am a network specialist and I am available to assist wherever possible. If the issue si considered seriousenough for a fix, I can assist in more detailed pinpointing using tcpdumps on test-platforms. Symptoms If a interface is using vlan tagging for virtual interfaces and also the untagged interface is using MAC address spoofing, communication fails on the tagged vlans. Description On interface rl1 is untagged the WAN connection. This requires a spoofed MAC address, eg using <spoofmac>00:03:6b:f7:3b:3f</spoofmac>. On interface rl1 is also a vlan/tagged interface, eg vlan0 using rl1 and vlan tag 5. The tagged interface vlan0 expects to use the original MAC address of the interface rl0. But the issue is that interface rl0 is only processing incoming packets with destination mac address spoof_mac_rl1. Workarounds (no code change required) acceptable configure the <spoofmac>00:03:6b:f7:3b:3f</spoofmac> on all vlan interfaces connected to interface rl1 funny start a tcpdump on the vlan interface. This will put the interface in promiscuous mode and it will process all packets. Now the packets destined for the original MAC address (and active on the vlan interface) bypass Do not use tagged interfaces on a interface with spoofmac Remarks It is very confusing that when a vlan is created, the GUI a refernece shows to the physical/original MAC address, even when the MAC addres of the untagged interface is | ||||
* | Adding keep alive host to IPsec causes warning in webGUI | Scott Ullrich | 2007-11-01 | 1 | -1/+1 |
| | | | | Ticket #1509 | ||||
* | Define ifconfig command | Seth Mos | 2007-10-29 | 1 | -0/+1 |
| | |||||
* | Fix typo in variable | Seth Mos | 2007-10-28 | 1 | -1/+1 |
| | |||||
* | Remove private networks | Seth Mos | 2007-10-25 | 1 | -3/+0 |
| | |||||
* | Update bogons list, it is severly out of date | Seth Mos | 2007-10-25 | 1 | -20/+5 |
| | |||||
* | Ticket 1709: fixed typo in OpenVPN cfg-page | Martin Fuchs | 2007-10-24 | 1 | -2/+2 |
| | |||||
* | Improve wireless stats | Seth Mos | 2007-10-21 | 1 | -2/+2 |
| | |||||
* | Commit wireless statistics 1st round | Seth Mos | 2007-10-21 | 1 | -0/+39 |
| | |||||
* | Add function that returns the interface which belongs with the gateway | Seth Mos | 2007-10-19 | 1 | -0/+15 |
| | |||||
* | Ticket #1482 - set the source to an interface that is inside the subnet ↵ | Bill Marquette | 2007-10-19 | 1 | -3/+10 |
| | | | | definition | ||||
* | Lookup the gateway ip for rules which reference gateways by name | Seth Mos | 2007-10-19 | 1 | -4/+4 |
| | |||||
* | Commit function that looks up the gateway ip by name from the Gateways array | Seth Mos | 2007-10-19 | 1 | -0/+15 |
| | |||||
* | Improve fall through logic | Seth Mos | 2007-10-19 | 2 | -11/+13 |
| | |||||
* | Check if array exists | Seth Mos | 2007-10-19 | 2 | -13/+19 |
| | |||||
* | Ticket #1464, only allow y* or n* | Bill Marquette | 2007-10-19 | 1 | -5/+17 |
| | |||||
* | Add prelimenary Routing page. | Seth Mos | 2007-10-19 | 4 | -20/+57 |
| | | | | Allow multiple gateways on one (static) interface | ||||
* | MFC of change [19782] per request from sullrich@ | Bill Marquette | 2007-10-17 | 2 | -0/+12 |
| | | | | Scale state table size with memory, never allocate more than 10% system ram, this leads to 12K states on 128M and 102K on 1G systems - this should be a good default | ||||
* | global s/[wW]ebGUI/webConfigurator/ - brought up via ticket #1427 | Bill Marquette | 2007-10-17 | 4 | -7/+7 |
| |