Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Decouple filter.inc from functions.inc. There is no need to process filter ↵ | Scott Ullrich | 2009-11-21 | 28 | -16/+66 |
| | | | | functions most of the time. Include filter.inc where it is needed | ||||
* | Ensure dynamodules directory exists | Scott Ullrich | 2009-11-21 | 1 | -0/+6 |
| | |||||
* | Fix spelling mistake | Scott Ullrich | 2009-11-21 | 1 | -1/+1 |
| | |||||
* | Note modules no longer included by default. If a module is needed simply ↵ | Scott Ullrich | 2009-11-21 | 1 | -4/+20 |
| | | | | touch /etc/php_dynamodules/$modulename | ||||
* | Include captiveportal for captiveportal_radius_stop_all() | Scott Ullrich | 2009-11-21 | 1 | -14/+9 |
| | |||||
* | Use dmesg -a when /var/log/dmesg.boot is not available | Scott Ullrich | 2009-11-21 | 1 | -2/+5 |
| | |||||
* | Include ipsec.inc and vpn.inc | Scott Ullrich | 2009-11-21 | 1 | -0/+3 |
| | |||||
* | Include certs.inc | Scott Ullrich | 2009-11-21 | 1 | -0/+1 |
| | |||||
* | Set max_procs for > 128 megabytes ram. Set min-procs to 0. Set the ↵ | Scott Ullrich | 2009-11-21 | 1 | -5/+10 |
| | | | | MAX_REQUESTS to 2 when memory under 128 megabytes | ||||
* | Set default size for apc shm to 10 megs for < 128 | Scott Ullrich | 2009-11-21 | 1 | -1/+1 |
| | |||||
* | Calculate PHP APC SHM size according to memory detected | Scott Ullrich | 2009-11-21 | 1 | -1/+22 |
| | |||||
* | Rework includes/require. This saves about 4 megabytes. | Scott Ullrich | 2009-11-21 | 24 | -62/+51 |
| | | | | Simplify get_memory(). Tested on mips/i386 | ||||
* | Remove another obsolete file, add some other files that no longer exist in ↵ | jim-p | 2009-11-18 | 1 | -1/+26 |
| | | | | the repo to the obsoleted files list. | ||||
* | Add interfaces_wlan_scan.php and firewall_nat_server.php to obsoleted files list | Scott Ullrich | 2009-11-17 | 1 | -1/+3 |
| | |||||
* | Merge branch 'master' of ↵ | Scott Ullrich | 2009-11-16 | 1 | -1/+4 |
|\ | | | | | | | git://rcs.pfsense.org/pfsense/pierrepomes-max-src-conn into review/master | ||||
| * | Add support for 'max-src-conn' PF feature, to limit the maximum number of ↵ | pierrepomes | 2009-11-16 | 1 | -1/+4 |
| | | | | | | | | established connections per host | ||||
* | | Resolves #155. Replace space characters with underscore ones. | Ermal Luçi | 2009-11-16 | 1 | -2/+4 |
| | | |||||
* | | Properly correct ipfw rule. | Ermal Luçi | 2009-11-15 | 1 | -2/+2 |
| | | |||||
* | | Revert "Correct ipfw rule." | Ermal Luçi | 2009-11-15 | 1 | -2/+2 |
| | | | | | | | | | | | | Error of copy paste This reverts commit 0f6fdf29a2f31bbf816eb3df33c3f1fc38c8b2a6. | ||||
* | | Correct ipfw rule. | Ermal Luçi | 2009-11-15 | 1 | -2/+2 |
| | | |||||
* | | Add a help_base_url variable to globals.inc for use with contextual help. | jim-p | 2009-11-15 | 1 | -1/+2 |
| | | |||||
* | | Fix proxy ARP VIP addition (was calling old function) | Chris Buechler | 2009-11-15 | 2 | -18/+9 |
| | | | | | | | | | | | | rename function from interfaces_proxyarp... to interface_ to be consistent with the functions for carp, carpdev, and ipalias. still a problem with proxy ARP, removing VIP doesn't kill off choparp (will open ticket) | ||||
* | | I see no reason to retain this "braindeadedness". Create each CARP VIP with ↵ | Chris Buechler | 2009-11-15 | 1 | -6/+8 |
|/ | | | | | | its VHID, and destroy accordingly. Resolves #151 | ||||
* | Fix Bug #147. | Ermal Luçi | 2009-11-15 | 1 | -3/+2 |
| | |||||
* | Move two include files to /etc/inc instead of leaving them in the www dir. ↵ | jim-p | 2009-11-15 | 2 | -0/+549 |
| | | | | Move filterparser.php to /usr/local/bin since it's not meant to be used from the web interface. | ||||
* | yes, I'll even fix typos in comments | Chris Buechler | 2009-11-15 | 1 | -1/+1 |
| | |||||
* | Not sure why this was changed like this. As is, you couldn't disconnect the ↵ | Chris Buechler | 2009-11-15 | 1 | -4/+2 |
| | | | | first client. I don't see any reason to do it that way, and this is the way it's done in RELENG_1_2 | ||||
* | Don't add hard coded rules to allow traffic to the portal. | Chris Buechler | 2009-11-15 | 1 | -5/+0 |
| | | | | | 1) the no state breaks CP 2) it's never been automatically allowed previously, and hard coded non-editable rules are bad. | ||||
* | always return the IP address hosting the page, rather than forcing to the ↵ | Chris Buechler | 2009-11-14 | 1 | -0/+10 |
| | | | | hostname, requiring functional DNS name resolution which possibly doesn't exist. Restores 1.2.x behavior where client IP isn't in the same subnet as any CP-enabled interface. | ||||
* | actually allow DNS to forwarder. CP is still broken, but this is closer at ↵ | Chris Buechler | 2009-11-14 | 1 | -1/+3 |
| | | | | | | least. pointy-hat-to: eri | ||||
* | Patch from Ron Lockard that fixed restore_chflags due to a STDOUT ↵ | Scott Ullrich | 2009-11-13 | 1 | -3/+3 |
| | | | | redirection issue | ||||
* | When renaming an interface make sure to rename even its ng_ether node so mpd ↵ | Ermal Luçi | 2009-11-12 | 1 | -0/+4 |
| | | | | does not fail. | ||||
* | Allow udp only from/to our local dns server. If wanted pass through can be ↵ | Ermal Luçi | 2009-11-11 | 1 | -2/+2 |
| | | | | added. | ||||
* | Simplify divert port generation and make sure it is even to leave room to ↵ | Ermal Luçi | 2009-11-11 | 1 | -14/+4 |
| | | | | ipfw-classifyd to always open 2 divert sockets one for reading and one for writing. | ||||
* | Do not 'spam' a new ipfw-classifyd for each save. If we hit save for an ↵ | Ermal Luçi | 2009-11-10 | 1 | -1/+2 |
| | | | | existing configuration(did changes to existing one) just tell ipfw-classifyd to reload the config. | ||||
* | Remove brain dead comment by another brain washed comment. | Ermal Luçi | 2009-11-10 | 1 | -4/+4 |
| | |||||
* | - Should fix captive portal on carps Issue #116 | Ermal Luçi | 2009-11-10 | 1 | -3/+20 |
| | | | | | - Should fix the captive portal not working reports and Issue #118 NOTE: Now Captive portal is open on dns so no more is needed to add dns servers to pass through ips. | ||||
* | Previous commit on carp was strange and breaking the distinction and ↵ | Ermal Luçi | 2009-11-10 | 1 | -6/+17 |
| | | | | | | | | | usefulness of some functions. Make sure that the behaviour returns to the previous architecture and to keep things right. Carp needs some more work on handling the interface as all other interfaces, but that needs an upgrade path too. Leave it for some other time. | ||||
* | err, this defeats the entire purpose of NAT-T for clients behind the ↵ | Chris Buechler | 2009-11-08 | 1 | -2/+0 |
| | | | | firewall, let's not do this. | ||||
* | Stop spamming the logs with config_unlock() is depricated please use unlock(). | Scott Ullrich | 2009-11-07 | 1 | -2/+0 |
| | |||||
* | Don't add port on no nat rules. Fixes #120 | Chris Buechler | 2009-11-07 | 1 | -8/+9 |
| | |||||
* | Fix "Filter rule association" "Pass" option | unknown | 2009-11-07 | 1 | -9/+13 |
| | |||||
* | Move newer xmlreader code to xmlreader.inc. Restore old xmlparse code to ↵ | Scott Ullrich | 2009-11-06 | 4 | -4/+16 |
| | | | | xmlparse.inc. Default to the older xmlparse.inc but add a flag check if /cf/conf/use_xmlreader is present the newer code will be included instead until the remaining bugs can be resolved with it (see rcs for many). | ||||
* | Adding newer xmlreader code to it's own file so that it can be turned and ↵ | Scott Ullrich | 2009-11-06 | 2 | -52/+326 |
| | | | | off until remaining bugs are fixed | ||||
* | Nuke old dev bootstrap code that is no longer in use | Scott Ullrich | 2009-11-06 | 1 | -34/+10 |
| | |||||
* | Relax some very strict cases. | Ermal Luçi | 2009-11-03 | 1 | -6/+6 |
| | |||||
* | Be more strict on shaper checking and what is written to config. Clean up ↵ | Ermal Luçi | 2009-11-03 | 1 | -1136/+1345 |
| | | | | whitespace while here. | ||||
* | Unbreak returning the real mem and web interface in general. Pointy-hat-to: ↵ | Ermal Luçi | 2009-11-03 | 1 | -3/+3 |
| | | | | Scott. | ||||
* | Fallback to using hw.realmem and hw.physmem sysctl's when we cannot probe ↵ | Scott Ullrich | 2009-11-02 | 1 | -1/+15 |
| | | | | the available memory from bootup log file. RouterStationPRO is an example | ||||
* | The wizards do not set the rule type and queues should be enabled even on ↵ | Ermal Luçi | 2009-11-02 | 1 | -19/+17 |
| | | | | block rules so add the queues to the rules even if the type of rule is not set(which means pass btw). This unbreaks the traffic shaper wizards and block shaping rules. |