Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Assume a default value of 1 for cert_depth to disallow chaining. | jim-p | 2011-10-27 | 1 | -0/+2 |
| | |||||
* | Add GUI option to limit the certificate depth allowed when OpenVPN clients ↵ | jim-p | 2011-10-27 | 2 | -0/+95 |
| | | | | are connecting. | ||||
* | Specify full path to openssl.cnf, and select the relevant section to use ↵ | jim-p | 2011-10-27 | 1 | -0/+6 |
| | | | | when generating certificates. | ||||
* | Fix up syslog settings a bit, add some missing options, fix formatting of ↵ | jim-p | 2011-10-26 | 1 | -128/+79 |
| | | | | syslog.conf, correct behavior of 'everything', code cleanup. | ||||
* | Increase the GROW for the 60 minute RRA so that we have atleast 2160 entries ↵ | smos | 2011-10-26 | 1 | -1/+1 |
| | | | | for 3 months worth of data. | ||||
* | Add back the accidentally removed xml rrd restore line, otherwise we still ↵ | smos | 2011-10-26 | 1 | -0/+2 |
| | | | | | | don't have the new RRD file Ticket #1758 | ||||
* | Correct typo in command. | smos | 2011-10-25 | 1 | -1/+1 |
| | | | | Ticket #1758 | ||||
* | Ok, let's try not to corrupt the RRD files on upgrade. Leave the RRA ↵ | smos | 2011-10-25 | 1 | -2/+7 |
| | | | | | | | archives for the 720 minutes average at 1000. Then run a rrdtool resize command to grow the RRA by 1000 and 2000 for the 60 and 720 average respectively. Attempts to further fix ticket #1758 | ||||
* | Do not pass the ldap port separately, but add it to the LDAP URL. PHP's ↵ | jim-p | 2011-10-25 | 1 | -24/+19 |
| | | | | ldap_connect() ignores the passed port parameter if the first parameter is a URL instead of a hostname. | ||||
* | Shorten the NEGATE rule label as these are too long | smos | 2011-10-21 | 1 | -1/+1 |
| | |||||
* | Modify code to remove memory usage to prevent a Out of Memory condition when ↵ | smos | 2011-10-18 | 1 | -12/+14 |
| | | | | | | upgrading the RRD database on a 128MB system. Ticket #1758 | ||||
* | Remove the old direct_networks table which is not used throughout the filter ↵ | smos | 2011-10-13 | 1 | -7/+20 |
| | | | | | | | | | | code. Instead we now create a negate_networks table which contains both vpns, directly connected networks (static routes) which should never be tagged for policy routing which breaks traffic. This fixes Ticket #1950 and needs to be MFC to 2.0 for 2.0.1 Conflicts: etc/inc/filter.inc | ||||
* | Add no nat/rdr rules for carp protocol so people do not screw their setups. | Ermal | 2011-10-13 | 1 | -1/+3 |
| | |||||
* | Move the old databases to the backup folder in conf | smos | 2011-10-13 | 1 | -1/+1 |
| | | | | Fixes ticket #1758 | ||||
* | Restore the RRD backup before attempting a migration as this bites the ↵ | smos | 2011-10-13 | 1 | -0/+14 |
| | | | | | | | nanobsd users. We immediately backup the new databases to a new rrd.tgz file. The old database will be moved to /root Fix for ticket #1758 | ||||
* | Disable could not find gateway for FOO log message. It is not causing any ↵ | Scott Ullrich | 2011-10-11 | 1 | -1/+1 |
| | | | | trouble and is making folks feel like there is something wrong with their install when there really is no issues. | ||||
* | Correct the updates path | Scott Ullrich | 2011-10-11 | 1 | -2/+2 |
| | |||||
* | Fixes issue with l2tp interfaces and altq | Ermal | 2011-10-08 | 1 | -0/+2 |
| | |||||
* | Include certs.inc before calling lookup_ca in auth.inc. Fixes #1927 | jim-p | 2011-10-05 | 1 | -0/+1 |
| | |||||
* | Change the way syslogd is killed/restarted a bit. Fixes log related pages ↵ | jim-p | 2011-09-30 | 1 | -6/+7 |
| | | | | hanging when logs are reset (or saving syslog settings) | ||||
* | Add missing s | jim-p | 2011-09-30 | 1 | -1/+1 |
| | |||||
* | Move hostapd to its own log and tab, so it stops spamming the system log. | jim-p | 2011-09-30 | 2 | -1/+6 |
| | |||||
* | Exclude relayd from main system log, it's really spammy, and is already in ↵ | jim-p | 2011-09-29 | 1 | -1/+1 |
| | | | | relayd.log | ||||
* | Set a full path to remote package from git | lgcosta | 2011-09-29 | 1 | -1/+1 |
| | |||||
* | Show session detail in Virtual Server status | jim-p | 2011-09-29 | 1 | -0/+16 |
| | |||||
* | Check that we have user password otherwise strange things happen if tehre is ↵ | Ermal | 2011-09-28 | 1 | -0/+5 |
| | | | | nothing stored in the config | ||||
* | Correctly check if it is a valid object or not | Ermal | 2011-09-28 | 1 | -1/+1 |
| | |||||
* | Add relayd to Status > Services and widget. Add capability to kill when ↵ | jim-p | 2011-09-28 | 1 | -3/+8 |
| | | | | restarting instead of a simple reload. Implements #1913 | ||||
* | Fixup relayd to handle DNS load balancing as well as standard TCP load ↵ | jim-p | 2011-09-27 | 1 | -41/+63 |
| | | | | balancing. | ||||
* | tagged 2_0_0 with previous push, now bump version to 2.0.1-DEVEL | Chris Buechler | 2011-09-16 | 1 | -1/+1 |
| | |||||
* | the time has come. Bump to 2.0-RELEASE | Chris Buechler | 2011-09-12 | 1 | -1/+1 |
| | |||||
* | Correct behaviour of switching from console from any ppp type device to ↵ | Ermal | 2011-09-12 | 1 | -3/+26 |
| | | | | other type. This has been broken since new ppp code. | ||||
* | Show friendly interface names | Ermal | 2011-09-08 | 1 | -2/+2 |
| | |||||
* | Remove references to undeclared table | Ermal | 2011-09-07 | 1 | -4/+2 |
| | |||||
* | Match pftop page exatly with privilege, there is no other page that glob ↵ | jim-p | 2011-09-06 | 1 | -1/+1 |
| | | | | would catch. Fixes #1845 | ||||
* | Revert "If a user's browser does not support cookies, print an error on the ↵ | Ermal | 2011-09-02 | 1 | -11/+0 |
| | | | | | | login form telling them so." This reverts commit a2e90569ab481bc85f5b3be7a01cc1608b3d065a. | ||||
* | Unlink the failed downloaded file if present. Since it might contain harmful ↵ | Ermal | 2011-09-01 | 1 | -0/+1 |
| | | | | and not expected content | ||||
* | Check/set array for $config['staticroutes']['route'] as well, fixes deleting ↵ | jim-p | 2011-09-01 | 1 | -0/+2 |
| | | | | of the last static route not syncing to secondary unit. | ||||
* | If a user's browser does not support cookies, print an error on the login ↵ | jim-p | 2011-08-31 | 1 | -0/+11 |
| | | | | form telling them so. | ||||
* | Revert "Make the webConfigurator lockout rule to catch even edp protocol so ↵ | Ermal | 2011-08-30 | 1 | -1/+1 |
| | | | | | | that xmlrpc bruteforce is caught as well." This reverts commit cde671805cccb380e60acb35374a23d3a7f48a99. | ||||
* | Make the webConfigurator lockout rule to catch even edp protocol so that ↵ | Ermal | 2011-08-30 | 1 | -1/+1 |
| | | | | xmlrpc bruteforce is caught as well. | ||||
* | Fix several issues in pppoe code and remove duplicated code. | Ermal | 2011-08-30 | 1 | -2/+2 |
| | |||||
* | Fixup OpenVPN status a bit to properly handle SSL servers using a /30 (no ↵ | jim-p | 2011-08-30 | 1 | -3/+23 |
| | | | | server directive) and also be a little more verbose about what is happening, if we can tell. | ||||
* | Fixes #1666. Check if the interface needs to be added to a bridge during ↵ | Ermal | 2011-08-29 | 1 | -0/+5 |
| | | | | rc.newwanip as well. | ||||
* | force a set path for ioncube loader | lgcosta | 2011-08-24 | 1 | -4/+4 |
| | |||||
* | DNSMasq was generating the error 'Socket operation on non-socket' and using ↵ | Warren Baker | 2011-08-24 | 1 | -1/+1 |
| | | | | 100% of the CPU, changing it to mwexec_bg() resolves the issue. | ||||
* | Fix VPN network listing for OpenVPN, and also add tunnel networks to this list. | jim-p | 2011-08-24 | 1 | -2/+5 |
| | |||||
* | USB slices are under-reported even more than CF slices when viewed directly, ↵ | jim-p | 2011-08-19 | 1 | -1/+4 |
| | | | | instead of when looking at the entire disk. Compensate by adding a few MB. Fixes NanoBSD upgrades when installed on USB thumbdrives. (Imaged after this fix, someone can apply this fix locally and then upgrade as well.) | ||||
* | Compensate some more occurencies of write_config() during the path | Ermal | 2011-08-19 | 1 | -0/+2 |
| | |||||
* | Make update_status and update_output_window consistent on checking for ↵ | Ermal | 2011-08-19 | 1 | -3/+4 |
| | | | | console version or not. |