| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | Make sure admin can always write the config | jim-p | 2012-10-09 | 1 | -1/+1 | |
| | | ||||||
| * | Add initial support for a privilege that denies write access to the config. | jim-p | 2012-10-09 | 2 | -0/+9 | |
| | | | | | NOTE: This only prevents writing to config.xml - it does NOT prevent other changes/execution that do not involve writing to config.xml (e.g. applying settings, exec, killing states, etc) | |||||
| * | Fix reference to gateway in pool config | jim-p | 2012-10-05 | 1 | -1/+1 | |
| | | ||||||
| * | This should fix ipsec status for natted tunnel(s). | Ermal | 2012-10-05 | 1 | -3/+8 | |
| | | ||||||
| * | Correct the config generation | Ermal | 2012-10-05 | 1 | -3/+2 | |
| | | ||||||
| * | config.xml might have some elusive data so do not fail sainfo section for ↵ | Ermal | 2012-10-05 | 1 | -8/+6 | |
| | | | | | localside if there is an empty nat address. Just do not put the nat side in there | |||||
| * | Correct check since it might be an ip as well | Ermal | 2012-10-05 | 1 | -1/+5 | |
| | | ||||||
| * | Correctly build the sainfo to avoid errors | Ermal | 2012-10-05 | 1 | -5/+5 | |
| | | ||||||
| * | Be more strict on validation during filter reload | Ermal | 2012-10-05 | 1 | -2/+2 | |
| | | ||||||
| * | Fixup easyrule block for IPv6 | jim-p | 2012-10-05 | 1 | -9/+10 | |
| | | ||||||
| * | Use .= for strings rather than += | jim-p | 2012-10-05 | 1 | -4/+4 | |
| | | ||||||
| * | Don't write a rule out of the natlocal_subnet is blank. | jim-p | 2012-10-05 | 1 | -1/+1 | |
| | | ||||||
| * | Safety belt | jim-p | 2012-10-05 | 1 | -1/+2 | |
| | | ||||||
| * | show true/false in logged message instead of 1/<nothing> | Bill Marquette | 2012-10-05 | 1 | -2/+1 | |
| | | ||||||
| * | Rather use the system constants as defined | Ermal | 2012-10-04 | 1 | -4/+4 | |
| | | ||||||
| * | Use integer rather than hex to put these values. AMD64 builds do rather ↵ | Ermal | 2012-10-04 | 1 | -4/+4 | |
| | | | | | awkward problems | |||||
| * | Add a NAT entry for configuring NAT on ipsec phase2. It will add nat rules ↵ | Ermal | 2012-10-04 | 2 | -3/+50 | |
| | | | | | on enc interface | |||||
| * | Add restrict lines to limit what local clients are allowed to do to the ntp ↵ | jim-p | 2012-10-03 | 1 | -0/+2 | |
| | | | | | server. | |||||
| * | Merge pull request #233 from bcyrill/rfc3168_flags | Jim P | 2012-10-01 | 2 | -5/+15 | |
| |\ | | | | | Add ECE and CWR TCP flags as defined in RFC 3168 | |||||
| | * | Fix typo | bcyrill | 2012-10-01 | 1 | -1/+1 | |
| | | | ||||||
| | * | Add ECE and CWR TCP flags as defined in RFC 3168 | bcyrill | 2012-10-01 | 2 | -5/+15 | |
| | | | ||||||
| * | | Fixup processing of IPv6 IPs for EasyRule. Fixes #2649 | jim-p | 2012-10-01 | 1 | -0/+7 | |
| | | | ||||||
| * | | Allow for changing OpenVPN TUN to TAP device mode without reboot. | PiBa-NL | 2012-10-01 | 1 | -1/+6 | |
| | | | ||||||
| * | | Merge branch 'master' of git://github.com/bsdperimeter/pfsense | PiBa-NL | 2012-10-01 | 9 | -74/+112 | |
| |\ \ | |/ | ||||||
| | * | Revert "Allow for changing OpenVPN TUN to TAP device mode without reboot." ↵ | jim-p | 2012-09-30 | 1 | -6/+1 | |
| | | | | | | | | | | | | | -- Adds blank OpenVPN servers, see ticket #2643 This reverts commit c8bb7f1527a99c69784ab6c01d9050adcde6a8a0. | |||||
| | * | Add forgotten part of the IPsec split dns fix from yesterday | jim-p | 2012-09-27 | 1 | -1/+8 | |
| | | | ||||||
| | * | Some more state killing refinements. | jim-p | 2012-09-27 | 1 | -0/+6 | |
| | | | ||||||
| | * | Due to the DHCP pool tag needing to be an array, rename the old LB "pool" ↵ | jim-p | 2012-09-26 | 3 | -9/+26 | |
| | | | | | | | | | variable to something else so it's not interpreted as an array. | |||||
| | * | Separate default gateway switching code to its own function, fix it to only ↵ | jim-p | 2012-09-26 | 1 | -50/+54 | |
| | | | | | | | | | operate on one address family at a time. Old method wouldn't re-set inet gateway if there was an inet6 default. | |||||
| | * | Ticket #2635: during ipsec reload, do not generate spd for disabled ph1 | Pierre POMES | 2012-09-25 | 1 | -8/+10 | |
| | | | ||||||
| | * | Update etc/inc/priv.defs.inc | bcyrill | 2012-09-24 | 1 | -0/+6 | |
| | | | | | | | Include privileges for Diagnostics Sockets page | |||||
| | * | Don't die silently if the time is too far off. Fix from: dhatz | jim-p | 2012-09-23 | 1 | -0/+1 | |
| | | | ||||||
| * | | Firewall log, allow filtering by interface. | PiBa-NL | 2012-10-01 | 1 | -5/+8 | |
| | | | ||||||
| * | | CARP notifications show vip description, 'Virtual IP Addresses' page shows ↵ | PiBa-NL | 2012-09-29 | 2 | -2/+4 | |
| | | | | | | | | | interface. | |||||
| * | | while booting do not let carp wait for pfsync synchronization if pfsync is ↵ | PiBa-NL | 2012-09-25 | 1 | -4/+9 | |
| |/ | | | | not enabled | |||||
| * | Allow for changing OpenVPN TUN to TAP device mode without reboot. | PiBa-NL | 2012-09-22 | 1 | -1/+6 | |
| | | ||||||
| * | We should also resync openvpn clients since they can use gateway groups too. | jim-p | 2012-09-19 | 1 | -1/+5 | |
| | | ||||||
| * | don't log here, users can define their own logging rules if they want logging | Chris Buechler | 2012-09-18 | 1 | -2/+2 | |
| | | ||||||
| * | Merge pull request #223 from PiBa-NL/master | Jim P | 2012-09-18 | 1 | -1/+1 | |
| |\ | | | | | Firewall log, alternating color rows & sorting improvements. | |||||
| | * | (line endings UNIX format..) | PiBa-NL | 2012-09-16 | 1 | -1/+1 | |
| | | | | | | | | | | | | | | | | | Firewall log alternating colored rows Firewall log sortable Fixed several sorting issues in widgets and other pages Sorting now possible on multiple rows in the header tables Sorting now possible for text that starts with IPv4:port | |||||
| * | | gitsync: Improve parameter handling to allow hyphenated options anywhere in ↵ | Erik Fonnesbeck | 2012-09-17 | 1 | -32/+54 | |
| | | | | | | | | | the parameter list. (previously only allowed them at the end) | |||||
| * | | gitsync: Add --minimal parameter that installs only the updated files. | Erik Fonnesbeck | 2012-09-17 | 2 | -3/+25 | |
| | | | ||||||
| * | | Fix special build_commit tag that was broken from previous change to how it ↵ | Erik Fonnesbeck | 2012-09-17 | 1 | -1/+1 | |
| | | | | | | | | | read the file with the commit ID. | |||||
| * | | Add support for multiple DHCP pools within the interface's subnet, and allow ↵ | jim-p | 2012-09-16 | 3 | -42/+122 | |
| | | | | | | | | | most of the settings for the main range to be set specific inside the pool. (e.g. it allows setting different gateways and DNS for different pools). Still needs improved input validation to prevent overlapping ranges/pools. | |||||
| * | | Force resync of vpns and dns even if the IP doesn't change in rc.newwanip, ↵ | jim-p | 2012-09-14 | 1 | -7/+14 | |
| | | | | | | | | | since we could be doing failover/failback for these services. | |||||
| * | | Add note about mac matching and media type. | jim-p | 2012-09-14 | 1 | -0/+1 | |
| | | | ||||||
| * | | Add some safety checks against empty entries | jim-p | 2012-09-14 | 1 | -0/+6 | |
| | | | ||||||
| * | | Allow/deny access to DHCP by partial MAC matching. | jim-p | 2012-09-13 | 2 | -2/+21 | |
| | | | ||||||
| * | | Make the openvpn resync less intrusive, only trigger this if the OpenVPN ↵ | smos | 2012-09-13 | 1 | -2/+7 | |
| | | | | | | | | | interface is actually a gateway group name. Otherwise we skip. | |||||
| * | | Make the gateway group member check a boolean, might convert to something ↵ | smos | 2012-09-13 | 2 | -5/+8 | |
| | | | | | | | | | | | | | else at a later time so we could check group memberships. Also launch the dyndns configure if the dyndns interface is a gateway group name, could check membership later if we wanted. | |||||
 |
index : pfsense | |
| Raptor Engineering's fork of the main repository for pfSense | Raptor Engineering, LLC |
| summaryrefslogtreecommitdiffstats |
|