summaryrefslogtreecommitdiffstats
path: root/etc
Commit message (Collapse)AuthorAgeFilesLines
* Add restartipsec scriptScott Ullrich2007-11-231-0/+2
|
* Remove extra c/rScott Ullrich2007-11-231-1/+1
|
* Allow arguments to be passed to cvssync so you can do:Scott Ullrich2007-11-231-6/+12
| | | | pfSsh.php playback cvssync RELENG_1
* Note script is "Terminating" at end.Scott Ullrich2007-11-231-1/+1
|
* Simplify the process and do not download the entire cvs tree for cvssync ↵Scott Ullrich2007-11-231-40/+39
| | | | operations. Simply cvsup the needed branch. Saves bandwidth, time, diskspace, etc.
* Add restart dhcp server scriptScott Ullrich2007-11-231-0/+4
|
* Add missing carriage returnsScott Ullrich2007-11-231-7/+8
|
* Move cvs_sync.sh to pfSense shell as the cvssync playback command.Scott Ullrich2007-11-231-0/+119
|
* Show starting and ending of scriptScott Ullrich2007-11-221-1/+2
|
* Cleanup c/r usage.Scott Ullrich2007-11-221-9/+0
|
* Add c/r's to improve presentationScott Ullrich2007-11-221-0/+9
|
* * Fix ! commands (do not echo commands but execute as shell)Scott Ullrich2007-11-221-3/+3
| | | | * Fix grep commands in playback session for restart ftp helper
* Start the pfSense php shell playback library archive.Scott Ullrich2007-11-221-0/+15
|
* Remove blank line from end of file.Scott Ullrich2007-11-221-1/+1
|
* Remove ftpproxy anchor that is not needed by ftp-proxy.Scott Ullrich2007-11-212-2/+1
| | | | Noticed-by: lsf
* Convert anchors and such over to ftp-proxy.Scott Ullrich2007-11-212-12/+12
|
* Switch over to ftp-proxy from pftpx.Scott Ullrich2007-11-212-8/+8
|
* Nuke code that does nothing.Scott Ullrich2007-11-191-23/+4
|
* Make the error message clickable so that the admin can easily return to the GUI.Scott Ullrich2007-11-191-0/+1
|
* Do not logout session if the user does not have access to a page. We should ↵Scott Ullrich2007-11-191-6/+1
| | | | also hide menu items that user does not have access to.
* Correctly check for page names by including .php. Strip off / if found so ↵Scott Ullrich2007-11-191-2/+2
| | | | that we can get an exact page match against the URL. My test diagnostics user now works.
* Instead of throwing a very vague 401 error actually tell the user which page ↵Scott Ullrich2007-11-181-1/+1
| | | | they do not have access to. This will also help admins troubleshoot group manager page privs.
* * Correctly report invalid passwordScott Ullrich2007-11-181-0/+8
| | | | | * Correctly report invalid username * Correctly report 401 errors
* Correctly show 401 errors.Scott Ullrich2007-11-182-1/+26
|
* Reference correct file for upgrade from console.Seth Mos2007-11-121-1/+1
|
* do not run pfctl -ss 4 timesSeth Mos2007-11-101-5/+7
|
* Remove any previous MD5 sums after upgrade.Scott Ullrich2007-11-071-0/+3
|
* Failover in 10 seconds as opposed to 60 seconds on DHCP Server failover mode.Scott Ullrich2007-11-061-1/+1
|
* Minor style nitpicks. # should have a space betwen it and the next text.Scott Ullrich2007-11-051-1/+1
|
* Automatically permit PFTPX traffic behind the scenes. Without this change ↵Scott Ullrich2007-11-051-6/+17
| | | | multi-wan can break ftp very easily when someone defines rules for the same port range (8020-8029).
* IPSEC keep alive pinger using the wrong source IP addressScott Ullrich2007-11-051-8/+8
| | | | Ticket #1482
* multiple vlans + spoofmac result in unexpected behaviourScott Ullrich2007-11-011-0/+12
| | | | | | | | | | | | | | | | | | | | | Ticket #1514 Introduction I have an acceptable workaround, so the problem is not urgent, but before i fiogured out the workaround, is was severely impacting performance (3 interfaces not operating). I am a network specialist and I am available to assist wherever possible. If the issue si considered seriousenough for a fix, I can assist in more detailed pinpointing using tcpdumps on test-platforms. Symptoms If a interface is using vlan tagging for virtual interfaces and also the untagged interface is using MAC address spoofing, communication fails on the tagged vlans. Description On interface rl1 is untagged the WAN connection. This requires a spoofed MAC address, eg using <spoofmac>00:03:6b:f7:3b:3f</spoofmac>. On interface rl1 is also a vlan/tagged interface, eg vlan0 using rl1 and vlan tag 5. The tagged interface vlan0 expects to use the original MAC address of the interface rl0. But the issue is that interface rl0 is only processing incoming packets with destination mac address spoof_mac_rl1. Workarounds (no code change required) acceptable configure the <spoofmac>00:03:6b:f7:3b:3f</spoofmac> on all vlan interfaces connected to interface rl1 funny start a tcpdump on the vlan interface. This will put the interface in promiscuous mode and it will process all packets. Now the packets destined for the original MAC address (and active on the vlan interface) bypass Do not use tagged interfaces on a interface with spoofmac Remarks It is very confusing that when a vlan is created, the GUI a refernece shows to the physical/original MAC address, even when the MAC addres of the untagged interface is
* Adding keep alive host to IPsec causes warning in webGUIScott Ullrich2007-11-011-1/+1
| | | | Ticket #1509
* Define ifconfig commandSeth Mos2007-10-291-0/+1
|
* Fix typo in variableSeth Mos2007-10-281-1/+1
|
* Remove private networksSeth Mos2007-10-251-3/+0
|
* Update bogons list, it is severly out of dateSeth Mos2007-10-251-20/+5
|
* Ticket 1709: fixed typo in OpenVPN cfg-pageMartin Fuchs2007-10-241-2/+2
|
* Improve wireless statsSeth Mos2007-10-211-2/+2
|
* Commit wireless statistics 1st roundSeth Mos2007-10-211-0/+39
|
* Add function that returns the interface which belongs with the gatewaySeth Mos2007-10-191-0/+15
|
* Ticket #1482 - set the source to an interface that is inside the subnet ↵Bill Marquette2007-10-191-3/+10
| | | | definition
* Lookup the gateway ip for rules which reference gateways by nameSeth Mos2007-10-191-4/+4
|
* Commit function that looks up the gateway ip by name from the Gateways arraySeth Mos2007-10-191-0/+15
|
* Improve fall through logicSeth Mos2007-10-192-11/+13
|
* Check if array existsSeth Mos2007-10-192-13/+19
|
* Ticket #1464, only allow y* or n*Bill Marquette2007-10-191-5/+17
|
* Add prelimenary Routing page.Seth Mos2007-10-194-20/+57
| | | | Allow multiple gateways on one (static) interface
* MFC of change [19782] per request from sullrich@Bill Marquette2007-10-172-0/+12
| | | | Scale state table size with memory, never allocate more than 10% system ram, this leads to 12K states on 128M and 102K on 1G systems - this should be a good default
* global s/[wW]ebGUI/webConfigurator/ - brought up via ticket #1427Bill Marquette2007-10-174-7/+7
|
OpenPOWER on IntegriCloud