summaryrefslogtreecommitdiffstats
path: root/etc
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #244 from bcyrill/ovpn-aliasChris Buechler2012-11-191-3/+2
|\ | | | | Fix: Use specified IP if available
| * Fix: Use specified IP if availablebcyrill2012-11-031-3/+2
| |
* | Put these logs under debug since that's their purposeErmal2012-11-191-1/+2
| |
* | Put these logs under debug since that's their purposeErmal2012-11-191-2/+4
| |
* | Correct checking for privileges.Ermal2012-11-191-4/+7
| |
* | Fixup gettext/printf call.jim-p2012-11-191-1/+1
| |
* | Switch to is_array() check and add curlysmos2012-11-191-2/+3
| |
* | Add correct rules for IPv6 tunnel endpoints which differ from the default route.smos2012-11-191-23/+31
| |
* | Add IPv6 support to this function so that IPv6 carp vips can be foundsmos2012-11-191-16/+28
| |
* | Do not return here, else we end without any IPsec endoint rules if just one ↵smos2012-11-191-2/+4
| | | | | | | | fails.
* | Add missing $Ermal2012-11-191-1/+1
| |
* | Correct check to required functionErmal2012-11-191-1/+1
| |
* | Merge pull request #259 from PiBa-NL/ipsecNATErmal Luçi2012-11-191-1/+5
|\ \ | | | | | | ipsec binat rule not possible if using a subnet together with a single ip so use nat
| * | ipsec binat rule not possible if using a subnet together with a single ip so ↵PiBa-NL2012-11-181-1/+5
| | | | | | | | | | | | use nat
* | | Merge pull request #261 from PiBa-NL/gatewayErmal Luçi2012-11-181-4/+4
|\ \ \ | | | | | | | | gateway monitoring, notifications generated tell affected gateway/group
| * | | gateway monitoring, make the notifications generated clear to tell which ↵PiBa-NL2012-11-181-4/+4
| |/ / | | | | | | | | | gateway/group they are about
* | | Merge pull request #257 from PiBa-NL/authErmal Luçi2012-11-182-4/+4
|\ \ \ | | | | | | | | authentication, don't log 'errors' on normal procedure
| * | | code comment typo ('log_error' should have been 'log_auth')PiBa-NL2012-11-181-1/+1
| | | |
| * | | authentication, don't log 'errors' on normal procedurePiBa-NL2012-11-181-3/+3
| |/ /
* | | Enable io_fast on dummynet to avoid uncessesary loop arounds of packetsErmal2012-11-172-2/+6
| | |
* | | Aiming at IPv6 compatibility, do the same tricks on the pfil reorder as for ↵Ermal2012-11-171-8/+3
| | | | | | | | | | | | v4. This helps CP work on v6.
* | | Correct path to certificates as wellErmal2012-11-171-1/+1
| | |
* | | Corrected racoon path to psk.txt. caseyr2322012-11-171-2/+2
|/ / | | | | "path pre_shared_key \"{$g['varetc_path']}/psk.txt\";\n\n"; is incorrected, ammended to "path pre_shared_key \"{$g['varetc_path']}/ipsec/psk.txt\";\n\n";
* | Only openvpn networks need to stay on negate tableErmal2012-11-161-24/+5
| |
* | This gets called in filter_configure_sync() alreadyWarren Baker2012-11-151-3/+0
| |
* | Remove none per Jim since it is confusingErmal2012-11-151-1/+1
| |
* | Remove preload.php which warmed the caches. IT hurts on embedded and really ↵Ermal2012-11-151-6/+0
| | | | | | | | does not help that much
* | While here check if the function needed exists to avoid a require_once call. ↵Ermal2012-11-151-4/+8
| | | | | | | | (Microoptimization)
* | For destination tolerate a 0.0.0.0/0 and convert it to anyErmal2012-11-151-1/+3
| |
* | Correct the destination for the binat to the real destinationErmal2012-11-151-1/+6
| |
* | Tune the binat a bit so it does not affect all traffic on enc but just for ↵Ermal2012-11-151-1/+1
| | | | | | | | the configured ph2
* | Not sure why this has been hidden so deep but putting that in the right ↵Ermal2012-11-151-2/+0
| | | | | | | | place should help with error displayed related to HEADER already sent in PHP errors.log
* | Add refcount_read to util.incPhil Davis2012-11-151-0/+13
| | | | | | Add refcount_read so other code can easily find out how many things have the file system mounted.
* | Fix typojim-p2012-11-141-1/+1
| |
* | For local users check the necessary priviledge is grantedErmal2012-11-141-1/+7
| |
* | Add ipsec/* anchor for radius dynamic rulesErmal2012-11-141-0/+2
| |
* | Make it more clear what is the username during syslogErmal2012-11-142-4/+4
| |
* | Allow other system authentication types to be used with ipsec. ↵Ermal2012-11-143-126/+392
| | | | | | | | LDAP/RADIUS/local acc
* | Remove unused/unuseful tags anymoreErmal2012-11-141-3/+1
| |
* | Implement a pruning for auto added mac passthrough and vouchers. This allows ↵Ermal2012-11-141-1/+53
| | | | | | | | to prune the added entries logged-in through vouchers
* | Add button to switch between read/write and read-only on Diag > NanoBSD; Add ↵jim-p2012-11-121-4/+7
| | | | | | | | setting to keep the media read/write at all times; Add indication of ro/rw status on Dashboard.
* | Send just line return rather than newlineErmal2012-11-121-2/+2
| |
* | Fix interface variable to check againstjim-p2012-11-091-1/+1
| |
* | Correctly mark found configuration. Ermal Luçi2012-11-091-0/+2
| | | | | | Fixes http://forum.pfsense.org/index.php/topic,54595.0.html
* | More fixes to the schedules rulesErmal2012-11-081-1/+3
| |
* | Remove carp nat rule auto generated since those are only applied on ↵Ermal2012-11-081-38/+0
| | | | | | | | LAN(interfaces without a gateway) and its not probably a good thing to do.
* | Do not generate carp NAT rules when in BACKUP/INIT modeErmal2012-11-081-1/+1
| |
* | Always create a pipe for any user on CP and if no limit present set it to ↵Ermal2012-11-071-105/+44
| | | | | | | | 0(unlimited). If any limit comes from the sources of reauthentication this limit will be applied without any other consequences
* | break the loop for none schedule limitersErmal2012-11-071-2/+5
| |
* | revert change to if-bound states since this seems to have broken all kinds ↵Chris Buechler2012-11-051-1/+1
| | | | | | | | of things
OpenPOWER on IntegriCloud