summaryrefslogtreecommitdiffstats
path: root/etc
Commit message (Collapse)AuthorAgeFilesLines
* Only include a scheduled rule if it is strictly before the end timeRELENG_2_1_4Phil Davis2014-06-201-1/+1
| | | | The exact moment of the end time is the end of the schedule. We do not want to include a rule when filter_configure_sync wakes up at 00:15:00 etc and is on a not-slow system that processes this code during the interval 00:15:00 to 00:15:01. This should help intermittent issues with schedules not finishing at the appropriate 15-minute boundary. Might help or fix #3558
* Remove extra data after space and fix pf rule syntax. It should fix #3688Renato Botelho2014-06-201-1/+1
|
* Always set httponly attribute on cookiesRenato Botelho2014-06-181-10/+8
|
* Add comment I forgot on last commitRenato Botelho2014-06-171-0/+1
|
* Re-generate session ID on a successful login to avoid session fixationRenato Botelho2014-06-171-0/+1
|
* Do not expire already disabled users, it fixes #3644Renato Botelho2014-06-121-1/+1
|
* Revert "Revert "Fix #3700 and other syntax issues:""Renato Botelho2014-06-101-1/+2
| | | | This reverts commit 4cc2ae78d3027c349969437f08a88b1fb88c9de8.
* Revert "Fix #3700 and other syntax issues:"Renato Botelho2014-06-101-2/+1
| | | | This reverts commit e912bfae186b6b657daf52607f9d027f46be0478.
* Fix #3700 and other syntax issues:Renato Botelho2014-06-101-1/+2
| | | | | | | | | - Remove -G parameter from pfctl since it doesn't exist anymore - Initialize $old_router - Fix sh syntax on variable assign, it couldn't have space before = - Simplify logic - Avoid flush states twice, if it was done on IP change, don't do it again if router also has changed
* Escape argument on call to is_process_running too, also remove some ↵Renato Botelho2014-06-061-3/+3
| | | | unecessary mwexec() calls
* Add some protection to parameters that come through _GETRenato Botelho2014-06-061-9/+9
|
* Escape this before running.jim-p2014-06-061-1/+1
|
* Bump version to 2.1.4Renato Botelho2014-06-051-1/+1
|
* Fix #3691, use curl instead of fetch to download update filesRenato Botelho2014-06-051-17/+13
|
* allow ipaliases to be configured on lo0Matt Smith2014-06-031-2/+2
|
* remove openbgpd bits from system_gateways_edit and system.inc. The packageChris Buechler2014-05-301-2/+2
| | | | | | match is case-sensitive and hasn't matched the openbgpd package's name in at least 5 years, so it doesn't do anything. It's far from functional in any useful manner even fixing that issue.
* client-config-dir is also useful when using OpenVPN's internal DHCP while ↵jim-p2014-05-301-0/+1
| | | | bridging.
* Convert protocol ssl:// to https:// when creating http headersManuel Silvoso2014-05-281-1/+1
|
* Properly handle this rename, and squelch errors if it fails.jim-p2014-05-211-1/+1
|
* Delete all ip aliases when interface is disabled, it should fix #3650Renato Botelho2014-05-211-7/+21
|
* fix variable typo. ticket #3669Chris Buechler2014-05-201-1/+1
|
* /etc/version_kernel and /etc/version_base no longer exist, use php_uname to ↵jim-p2014-05-161-2/+4
| | | | get the info instead.
* Remove units from burst as it is always specified in bytes. (Per ipfw(8)).jim-p2014-05-061-2/+2
| | | | Worked for me in testing, I watched a file briefly burst until and then be clamped down to the limiter's rate.
* Merge the forgotten Ticket #3062 patch for CP pipeno leaking issue which ↵Ermal2014-05-031-1/+6
| | | | leads to the 'Maximum login reached' on CP
* Obsolete old clog binary from /usr/sbinRenato Botelho2014-05-011-0/+1
|
* Bump version to 2.1.3-RELEASERenato Botelho2014-04-301-1/+1
|
* Take care of interfaces that have no ip but might be part of the bridge as ↵Ermal2014-04-301-5/+9
| | | | done for openvpn to avoid loops
* Signal a reload if anything got updatedErmal2014-04-301-1/+3
|
* Merge the patch suggested in Ticket #3629. It also Fixes #3629. The question ↵Ermal2014-04-301-1/+1
| | | | is why this is using config lock? Also where is filter configure called here?
* Move clog from /usr to /usr/localRenato Botelho2014-04-283-4/+4
| | | | | | | | Conflicts: etc/inc/filter_log.inc etc/inc/system.inc etc/rc usr/local/www/guiconfig.inc
* Correct the ridirection URL to unbreak ones passed through Radius attributes ↵Ermal2014-04-281-1/+1
| | | | and repsect user choices. Reported-by: Antoine Guillemot
* Merge pull request #1105 from florian-asche/RELENG_2_1Renato Botelho2014-04-252-8/+13
|\
| * Update services.incFlorian Asche2014-04-251-7/+6
| | | | | | fix
| * Moved my changes from Pull Request #1025 , #1019 , #1018 , #1012 (master) to ↵Florian Asche2014-04-182-9/+15
| | | | | | | | | | | | RELENG_2_1 * Added missing usepublicip with dyndnsCheckIP * Added missing CURL setops
* | Resolver has no option for remote syslog, remove wrong copy/paste that was ↵Renato Botelho2014-04-241-2/+0
| | | | | | | | adding it when apinger was enabled
* | Merge pull request #1119 from phil-davis/patch-4Renato Botelho2014-04-241-1/+1
|\ \
| * | Cut paste bug fix in Remote Syslog DHCP eventsPhil Davis2014-04-201-1/+1
| |/ | | | | | | | | | | This version for 2.1 branch. apinger is repeated here from the code above, but it should be dhcp. Forum https://forum.pfsense.org/index.php?topic=73734.0 Selecting to remote syslog "Gateway Monitor events" would also switch on "DHCP service events" unintentionally.
* | fix typoChris Buechler2014-04-231-1/+1
|/
* Merge pull request #1078 from phil-davis/patch-4Ermal2014-04-141-1/+1
|\
| * Get real interface when dhcrelay uses default GWPhil Davis2014-04-121-1/+1
| | | | | | | | | | | | If the DHCP Relay server is not on any local subnet, and not on any subnet that has an internal static route, but is somewhere that no specific route is known, then this code finds the default gateway and uses that in the DHCP relay "-i" parameter. The current code gets just the interface name (like "wan", "opt1"). But DHCP Relay command needs to be fed the actual device name "vr0", "vr1" etc. To break this I simply enabled DHCP Relay, select "LAN" interface, and put Destination Server 1.2.3.4 Making this changed fixed it. Forum: https://forum.pfsense.org/index.php?topic=75010.0
* | Fix typoPhil Davis2014-04-141-1/+1
| |
* | fixing typo for GIF tunnels to work over IPv6m0se2014-04-121-1/+1
|/ | | | the call of get_interface_gatewayv6() in the creation of a GIF tunnel over IPv6 leads to a "Fatal error: Call to undefined function get_interface_gatewayv6() in /etc/inc/interfaces.inc on line 934". changeing the function call to get_interface_gateway_v6() fixed it for me on my local system.
* Also add similar checks on rc.newwanipv6 as in the v4 versionErmal2014-04-121-1/+1
|
* Forgot to remove the problematic part from previous OpenVPN loop fix commitErmal2014-04-121-4/+0
|
* Take care of the loops reported for OpenVPN in tap mode. Also fixes the ↵Ermal2014-04-123-12/+29
| | | | problems of tap disappearing from bridge if its a member.
* No pre release this timeRenato Botelho2014-04-081-1/+1
|
* Make extra sure that we do not start multiple instances of dhcpleases if, ↵jim-p2014-04-081-1/+6
| | | | for example, the PID is stale/invalid and there is still a running instance.
* Bump to 2.1.2-PRERELEASE since 2.1.1 was releasedRenato Botelho2014-04-081-1/+1
|
* Correct typo on function name that has slipped unnoticed. Reported-by: ↵Ermal2014-04-071-1/+1
| | | | https://forum.pfsense.org/index.php?topic=74688.0
* Remove TRIM_set and TRIM_unset support. This method isn't very elegant and ↵jim-p2014-03-311-23/+0
| | | | isn't necessary in the long run. It's better handled in the installer stage and not after the fact.
OpenPOWER on IntegriCloud