Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Get rid of NT-hash crap | Jim Thompson | 2015-08-25 | 1 | -1/+0 |
| | |||||
* | Replace php calls to php-cgi, binary is not being renamed anymore | Renato Botelho | 2015-08-20 | 9 | -10/+10 |
| | |||||
* | Use new base.mtree installed by upcoming core package | Renato Botelho | 2015-08-17 | 1 | -2/+2 |
| | |||||
* | Fix path for pre and post upgrade scripts | Renato Botelho | 2015-08-17 | 1 | -4/+4 |
| | |||||
* | Move scripts from /tmp -> /usr/local/share/pfSense | Renato Botelho | 2015-08-17 | 3 | -0/+153 |
| | |||||
* | Fix GUI auth from RADIUS to grab group names from the Class attribute. ↵ | jim-p | 2015-08-12 | 1 | -2/+3 |
| | | | | | | Implements #935 The RADIUS server must populate the Class attribute with a string, semicolon-separated, of user groups. Similar to LDAP, local groups must exist with matching names, and privileges are determined by the local matching groups. | ||||
* | Introduce a new item to $g global, 'product_version' and stop reading ↵ | Renato Botelho | 2015-07-31 | 7 | -17/+12 |
| | | | | /etc/version all around | ||||
* | Remove FreeBSD repo | Renato Botelho | 2015-07-31 | 1 | -5/+0 |
| | |||||
* | fix whitespace | Chris Buechler | 2015-07-30 | 1 | -2/+2 |
| | |||||
* | Add NUT package help location | Jared Dillard | 2015-07-30 | 1 | -1/+2 |
| | |||||
* | Remove WipePackages.php | Renato Botelho | 2015-07-30 | 1 | -65/+0 |
| | |||||
* | Remove bdiff support | Renato Botelho | 2015-07-30 | 1 | -2/+0 |
| | |||||
* | remove more old, unused platform stuff | Chris Buechler | 2015-07-30 | 1 | -3/+0 |
| | |||||
* | Fix killing of individual states for IPv6. Ticket #4906 | Chris Buechler | 2015-07-30 | 1 | -11/+27 |
| | |||||
* | fix whitespace | Chris Buechler | 2015-07-30 | 1 | -4/+4 |
| | |||||
* | Use the appropriate source and dest IPs for all state types. Ticket #4907 | Chris Buechler | 2015-07-30 | 1 | -2/+10 |
| | |||||
* | Add "sockstat" output to status.php | jim-p | 2015-07-29 | 1 | -0/+1 |
| | |||||
* | Move cleargpt.sh and cleargmirror.sh scripts to main repo | Renato Botelho | 2015-07-27 | 2 | -0/+39 |
| | |||||
* | Add 'any' option for peer ID, for mobile IPsec scenarios where you can't or ↵ | Chris Buechler | 2015-07-25 | 1 | -1/+3 |
| | | | | | | | don't want to check peer ID. Conflicts: usr/local/www/vpn_ipsec_phase1.php | ||||
* | Remove "auto", it's just a synonym for IKEv2. Ticket #4873 | Chris Buechler | 2015-07-23 | 1 | -3/+3 |
| | | | | | Conflicts: usr/local/www/vpn_ipsec_phase1.php | ||||
* | include vpn.inc so IPsec CRL reload works. require_once filter.inc in | Chris Buechler | 2015-07-23 | 1 | -1/+2 |
| | | | | vpn.inc for callers there that haven't already included it. | ||||
* | Most of the flowtable bits were removed some time ago, take out the last of ↵ | Chris Buechler | 2015-07-23 | 1 | -30/+0 |
| | | | | them too. | ||||
* | When a CRL is updated, refresh strongswan's CRLs. | Chris Buechler | 2015-07-23 | 1 | -0/+6 |
| | |||||
* | Add isset check for strictcrlpolicy | Phil Davis | 2015-07-23 | 1 | -1/+1 |
| | | | To be consistent with the checks in the rest of this code. | ||||
* | Add IPsec advanced option for strict CRL checking | Chris Buechler | 2015-07-22 | 1 | -0/+16 |
| | |||||
* | fix typo | Chris Buechler | 2015-07-22 | 1 | -1/+1 |
| | |||||
* | Handle IPsec Advanced Settings save before IPsec is enabled | Phil Davis | 2015-07-22 | 1 | -12/+16 |
| | | | | | | | | | | If the Advanced Settings are saved before any other IPsec is set up then $config['ipsec'] can be just the empty string. As a result you can get: a) If you select some debug settings then those are not saved. The code to save those settings was only executed when $config['ipsec'] was already an array. Actually the code already did the necessary "if isset() then unset()" stuuf. So I just took the the "if is_array()" away from the code block. b) Some potential unset() can go wrong with errors like: Fatal error: Cannot unset string offsets in /usr/local/www/vpn_ipsec_settings.php on line 168 This is corrected by adding more "if (isset())" checks. Fixes Redmine #4865 | ||||
* | Interfaces widget use more obscure separator | Phil Davis | 2015-07-22 | 2 | -5/+5 |
| | | | | | when acquiring the interface data. In particular the media information can have commas in it already as reported in Redmine bug #4859 | ||||
* | Add "netstat -ni" to status.php | jim-p | 2015-07-21 | 1 | -0/+1 |
| | |||||
* | Allow pre-filling (but no automatic action) of the download filename on ↵ | jim-p | 2015-07-21 | 2 | -2/+3 |
| | | | | exec.php. Setup a link to download the status output.tgz in status.php | ||||
* | Fix caps | doktornotor | 2015-07-18 | 1 | -1/+1 |
| | |||||
* | Bug #4551 - consistent usage of Forwarder/Resolver across the WebGUI | doktornotor | 2015-07-18 | 1 | -2/+2 |
| | | | Clarify that this applies to DNS Resolver as well. Update the translations template. | ||||
* | Bug #4551 - consistent usage of Forwarder/Resolver across the WebGUI | doktornotor | 2015-07-18 | 1 | -1/+1 |
| | | | Clarify that this applies to DNS Resolver as well. | ||||
* | Bug #4551 - consistent usage of Forwarder/Resolver across the WebGUI | doktornotor | 2015-07-18 | 1 | -1/+1 |
| | | | Clarify that this applies to DNS Resolver as well. | ||||
* | Merge pull request #1738 from phil-davis/Static-Routes | Renato Botelho | 2015-07-18 | 4 | -25/+83 |
|\ | |||||
| * | Switch logic of $disabled tests system_gateways | Phil Davis | 2015-07-18 | 1 | -10/+8 |
| | | |||||
| * | Static routes merge "else" and "if" into "else if" | Phil Davis | 2015-07-12 | 2 | -26/+22 |
| | | | | | | | | As suggested by Renato. | ||||
| * | Fix #4813 validation of enable/disable of gateways and static routes | Phil Davis | 2015-07-05 | 4 | -25/+89 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 1) A disabled gateway can always be enabled - no extra validation needed. 2) When disabling an enabled gateway, check to see that the gateway is not used in any gateway group or enabled static route (similar tests to what is already checked before deleting a gateway). 3) A static route can always be disabled - no extra checks needed. 4) When enabling a static route, check that the selected gateway is enabled - you cannot have a static route enabled on a disabled gateway. 5) Do the address family cross-check between static route and gateway even when the static route is disabled - we do not want to save mismatched IP address families in any case. This covers all the cases I can see to ensure that the enable/disable status combinations of Gateways and Static Routes is always valid. | ||||
* | | Fix Firewall - Aliases GUI inconsistencies for URL Table type aliases | doktornotor | 2015-07-17 | 1 | -4/+4 |
| | | | | | | The GUI should show descriptions according to what's selected from the dropdown, but currently does not for URL Table (IPs) and URL Table (Ports) type of aliases. | ||||
* | | Merge pull request #1758 from phil-davis/patch-2 | Renato Botelho | 2015-07-17 | 1 | -4/+4 |
|\ \ | |||||
| * | | Restrict serial ports glob to cua followed by alpha | Phil Davis | 2015-07-16 | 1 | -3/+3 |
| | | | | | | | | | Improve this a little more to match only alpha after /dev/cua (/dev/cuau for example) | ||||
| * | | Make serial ports glob cope with many more possibilities | Phil Davis | 2015-07-16 | 1 | -3/+3 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It originally coped with things like cuau1 cuau1.1 Then I made it cope with things like cuau1 cuau11 but it stopped working for cuau1.1 This one copes with: cuau1 cuau1.1 cuau1.11 cuau11 cuau11.1 cuau11.11 That should allow for all sorts of reasonable device name files without matching other stuff in /dev (like cuau1.init cuau1.lock) that we need to ignore. Please think if I have covered the bases here. | ||||
* | | | Revert "myid_data and peerid_data fields are not relevant with asn1dn." | Chris Buechler | 2015-07-16 | 1 | -5/+1 |
| | | | | | | | | | | | | This reverts commit 0e19c4bba659a5f4d28f9c8b20c80717a90964b9. | ||||
* | | | myid_data and peerid_data fields are not relevant with asn1dn. | Chris Buechler | 2015-07-16 | 1 | -1/+5 |
| | | | | | | | | | | | | | | | Conflicts: usr/local/www/vpn_ipsec_phase1.php | ||||
* | | | Remove old, unused NetUtils.js | Chris Buechler | 2015-07-16 | 1 | -114/+0 |
|/ / | |||||
* | | Merge pull request #1742 from phil-davis/patch-3 | Renato Botelho | 2015-07-15 | 1 | -1/+1 |
|\ \ | |||||
| * | | Firewall Aliases Import display error message for invalid alias name | Phil Davis | 2015-07-12 | 1 | -1/+1 |
| | | | | | | | | | | | | If you open firewall_aliases_import and enter just an invalid Alias Name (e.g. a$b) and press save or press save with all fields empty, then the screen redraws but the input error(s) is not displayed. This fixes it. | ||||
* | | | Merge pull request #1743 from phil-davis/patch-4 | Renato Botelho | 2015-07-15 | 1 | -0/+1 |
|\ \ \ | |||||
| * | | | Firewall Aliases Edit ensure input_addresses array exists | Phil Davis | 2015-07-12 | 1 | -0/+1 |
| |/ / | | | | | | | | | | | | | | | | If you click "+" to add an alias, then press Save without entering anything, you get: Warning: Invalid argument supplied for foreach() in /usr/local/www/firewall_aliases_edit.php on line 402 as well as the various messages related to $input_errors. This change ensures that $input_addresses array always exists (even if it has no real entries) so that the foreach() warning does not happen. | ||||
* | | | Merge pull request #1745 from phil-davis/patch-6 | Renato Botelho | 2015-07-15 | 1 | -2/+2 |
|\ \ \ |