Activity - pfSense - pfSense bugtracker

Activity

30 days up to

User

Subprojects

Activity

From 10/27/2010 to 11/25/2010

11/25/2010

12:31 PM Revision 979c816c: Do not guess the defaultgw this is static info.: Ermal LUÇI
12:29 PM Revision a980df9c: Resolves #1040. Fix dynamic addition of gateways from routes edit screen.: Ermal LUÇI
11:57 AM Revision e1b17c7a: Ticket #1037. Add suggestion in the ticket for using the CA supplied to openvpn for authenticating to SSL LDAP.: Ermal LUÇI
11:11 AM Revision 02d7e4a4: Resolves #1043. Do not allow limiters in floating rules without direction. It is invalid practice and while the backend skips it the user should be warned.: Ermal LUÇI

11/24/2010

06:08 PM Revision fedab998: Nuke trailing c/r: Scott Ullrich
06:04 PM Revision 6bd471ee: Nuke trailing c/r: Scott Ullrich
06:03 PM Revision 31c3942c: Set memory to 256M on amd64: Scott Ullrich
10:42 AM Revision e46616a7: Fix text for the P1 table header.: Erik Fonnesbeck

11/23/2010

11:54 PM Revision 7fd51c68: Add st and si options: Scott Ullrich
10:54 PM Revision 79992f17: Rename to pfInfo for consistency: Scott Ullrich
10:48 PM Revision 9242ba15: Adding Diagnostics: Limiter: Scott Ullrich
10:41 PM Revision b3584478: Increase setTimeout: Scott Ullrich
10:37 PM Revision 438d04f6: Adding Diagnostics: pf Info which shows the output of pfctl -vvi and pfctl -vvI via AJAX: Scott Ullrich
10:01 PM Revision 004b1e69: Cleanup code and fix dynamic firewall log reverse view, fixes #1031: Jim Pingle
06:54 PM Revision d9114ce0: Ensure returned item is an array.: Scott Ullrich
06:52 PM Revision 19f101d7: Return CARP IP Addresses in get_configured_ip_addresses(): Scott Ullrich
04:58 PM Revision bafe2769: Remove this since it does not make anymore sense after code arrangements.: Ermal LUÇI
04:57 PM Revision a0b205f0: Do not output done. because it does not related overall to the output messages.: Ermal LUÇI
12:58 PM Revision 2bfade90: Initialize variable. Ticket #1023.: Ermal LUÇI
12:57 PM Revision 4ed5ad5a: Ticket #1023. Correct carp status even on the status page.: Ermal LUÇI
12:47 PM Revision 108cfddf: Ticket #1023. Correct the widget code bringing it full speed with latest carp code.: Ermal LUÇI
11:33 AM Revision 83ae8103: Try 3 times to resolve the host to ip before giving up. Leave a proper log if we fail to resolve. Ticket #943.: Ermal LUÇI
11:32 AM Revision 51d0f816: Use full path to command binaries.: Ermal LUÇI

11/22/2010

06:38 PM Revision a2b6c52f: Add option to control automatic creation of NAT rules which assist forwarding rules that send traffic out to the same subnet it originated from.: Erik Fonnesbeck
04:23 PM Revision bddcbff2: When adding/editing a gateway, check IP alias subnets, too. Fixes #1015: Erik Fonnesbeck
03:53 PM Revision d48dbceb: Add other interfaces to local network selection and show proper names. Fixes #965: Erik Fonnesbeck
02:32 PM Revision e63d59c0: Do not save settings related to ports when protocol does not use ports. Ticket #953: Erik Fonnesbeck
01:39 PM Revision ae46e8b8: Do not save fields from translation section when "Do not NAT" is checked. Ticket #952: Erik Fonnesbeck
12:27 PM Revision 4389352c: In filter_generate_reflection_nat, generate a rule with the actual subnet instead of using the interface:network shortcut. Ticket #737: Erik Fonnesbeck
08:33 AM Revision 1452fa57: Use correct names for integer and boolean types in DHCP options and fix typo in hexadecimal validation for strings. Fixes #962: Erik Fonnesbeck

11/21/2010

10:40 PM Revision b3a4ff7c: Add newlines: Scott Ullrich
09:26 PM Revision 279f4da8: nuke ;: Scott Ullrich
09:22 PM Revision 558dda01: Remove hw.bce.tso_enable item it is loader.conf only per jimp: Scott Ullrich
09:21 PM Revision f41b7bdf: Remove bce item it is loader.conf only per jimp: Scott Ullrich
09:20 PM Revision fb182cb2: Define hw.bce.tso_enable: Scott Ullrich
05:36 PM Revision ed32aef7: Don't consider the HTTP referrer check as passing if it was skipped. Ticket #1027: Erik Fonnesbeck
05:23 PM Revision 0f806eca: Upon restoring a config, replacing whole sections, or editing config.xml in edit.php, prevent possible accidental lockout from DNS rebind and HTTP referrer checks by disabling them until reboot or the next time they pass, whichever comes sooner. Ticket #1027: Erik Fonnesbeck

11/20/2010

07:42 PM Revision 2b8bdfe4: Add missing </item>: Scott Ullrich
07:40 PM Revision 24352196: oops, typo: Scott Ullrich
07:40 PM Revision feae85bc: Increase vfs.read_max to 32. See http://ivoras.sharanet.org/blog/tree/2010-11-19.ufs-read-ahead.html .. This can help dramatically if using Squid or any other packae that does a lot of hard disk reads.: Scott Ullrich
05:19 AM Revision c049daef: Disable this test, it was causing some package file downloads to be skipped for me, and nothing else seems to set/use this variable anywhere.: Jim Pingle

11/19/2010

06:24 PM Revision 37c8e07d: Fix reading the ip from the right file for dyndns.: Ermal LUÇI
03:44 PM Revision e3924384: Reorder some code and combine the nobind test with the lport code to ensure only the needed options are used in any given combination.: Jim Pingle
03:34 PM Revision ad88ff3f: Cleanup some code and properly handle failure of pkg_fetch_recursive.: Ermal LUÇI
03:31 PM Revision 5708241f: When the local port is left blank on an OpenVPN client, use 'lport 0' to direct the client to use a random source port. Fixes #1025: Jim Pingle
03:21 PM Revision d08b0064: Clarify message.: Ermal LUÇI
03:17 PM Revision 0cdf4e87: Use correct extension of tgz rather than tgz for automatically discovered dependencies.: Ermal LUÇI
12:12 AM Revision c132bdb0: Honor the config parsed var if set.: Ermal LUÇI
12:10 AM Revision 1883455a: Hopefully now the reinclusion of config will not override vars.: Ermal LUÇI
12:03 AM Revision d8333a24: Use full path when we might not have full environment setup.: Ermal LUÇI
12:02 AM Revision 01a6e665: globals.inc is better first.: Ermal LUÇI
12:00 AM Revision d9426abc: More safety belts.: Ermal LUÇI

11/18/2010

11:44 PM Revision d465a277: Fix fetching of package list.: Ermal LUÇI
06:56 PM Revision 21bc451b: Add myself to the copyright. Have modified enough the file.: Ermal LUÇI
05:31 PM Revision 4830e56a: Some fixes for the upgrade code for captive portal users.: Erik Fonnesbeck
04:13 PM Revision 8784a3bb: Remove the old field even if empty in rename_field.: Erik Fonnesbeck
01:04 PM Revision d7bf3178: Various fixes and improvements for the DNS rebind and HTTP referrer checks.: * Only compare with full host from referrer, since someone can put whatever they want at the left side of the period ... Erik Fonnesbeck
12:57 PM Revision 2addd5b2: Fix problem with syslog adding/removing for pacakges. Fix sync pacakges to call the right functions. Optimizations and code cleanup along the way.: Ermal LUÇI
09:34 AM Revision 0bee2010: Save the host name and domain to a temporary location until the setup wizard is finished to prevent triggering the DNS rebind message. Fixes #1022 Also use this information to implement the redirect for changed host for ticket #455: Erik Fonnesbeck
07:23 AM Revision b8d4d7cd: Handling this properly when the web gui is on an alternate port number.: Erik Fonnesbeck
03:00 AM Revision 6898927f: Make this check more general in case someone makes a wizard that changes an opt interface's IP address and wants to use the "Reload in progress" step. Ticket #455: Erik Fonnesbeck
12:37 AM Revision 9c37f8cd: Properly reflect ports in the GUI view of the anti-lockout rule since Ermal's changes restricted it to only ssh/gui ports.: Jim Pingle
12:16 AM Revision 916ee745: Show CRL download link only for imported certificates or CRLs with revoked certificates.: Jim Pingle
12:12 AM Revision 304af9d8: Some CRL fixes.: Jim Pingle

11/17/2010

10:45 PM Revision fa15f4ae: Clear up some code.: Ermal LUÇI
10:42 PM Revision d98d6f7f: Boost timeout for file downloads to 60 seconds: Scott Ullrich
08:17 PM Revision eab543ed: Ticket #1017. Move the fwrite and fd_log initializing to a function. Name the function pkg_debug to properly show what is its purpose and also make it write something only when $debug is set.: Ermal LUÇI
07:47 PM Revision 4c3d9312: Ticket #1017. Put a @ before each fwrite to silence errors. Also setup the log file in the beginning rather than on each individual function.: Ermal LUÇI
07:36 PM Revision 1ae5c631: Resolves #1018. Provide a more unique host name for the file.: Ermal LUÇI
05:34 PM Revision 53d41b68: The way this option is currently defined, the configuration variable is always set; for this case, isset is not the correct condition. Reported at http://forum.pfsense.org/index.php/topic,30153.0.html: Erik Fonnesbeck
03:35 PM Revision a219c643: Add workaround for referrer check to not be triggered on the previous IP address when redirected by the setup wizard.: Erik Fonnesbeck
02:01 PM Revision fd7f136b: Redirect to the correct IP at the end of the setup wizard if accessing it on an IP address that was changed. Fixes #455: Erik Fonnesbeck
10:43 AM Revision 54dd88ba: Merge remote branch 'mainline/master' into inc: Conflicts:
etc/inc/pkg-utils.inc Renato Botelho
10:42 AM Revision 3ec86ca8: Merge remote branch 'mainline/master' into inc: Conflicts:
etc/inc/pkg-utils.inc Renato Botelho
10:32 AM Revision cfcebf07: Fix typo: Renato Botelho
04:47 AM Revision b450c94e: Fix typo in comment.: Jim Pingle
01:38 AM Revision f02f0675: Ensure this is an array before entering the foreach loop. Fixes #1012: Erik Fonnesbeck

11/16/2010

10:59 PM Revision aeaa7358: Make the pkg_fetch_recursive code stronger and try also to fetch from freebsd repo when fails to fetch from pfSense one.: Ermal LUÇI
10:38 PM Revision 7b228323: Avoid exec() and use php calls.: Ermal LUÇI
10:11 PM Revision 1b28121f: Correctly form the url from where to fetch packages if a base is not specified. This unbreaks packages on amd64! Also do no remove a package which is required by other installations.: Ermal LUÇI
07:56 PM Revision fe81116d: Correct variable name.: Ermal LUÇI
07:40 PM Revision fcf92dae: * Use pkg_info -E pkgname* for testing if a package is installed.: * Do not call eval if we cannot include an .inc file since that will make the whole script fail.
* Keep the log from ... Ermal LUÇI
04:32 PM Revision 73c30884: Merge remote branch 'mainline/master' into inc: Renato Botelho
04:29 PM Revision 55910da7: Tighten check even more. Ticket #1006.: Ermal LUÇI
04:21 PM Revision b878ad36: Ticket #1006. Make sure to interpret the response as needed. First check if we got 0 and then check if we have a faultCode().: Ermal LUÇI
11:31 AM Revision 39a8090a: Merge remote branch 'mainline/master' into inc: Conflicts:
etc/inc/PEAR.inc
etc/inc/filter.inc Renato Botelho
03:56 AM Revision e6b960cc: Make sure this isn't searching the referrer using a blank host or IP, which will always match the referrer.: Erik Fonnesbeck
03:35 AM Revision 55068970: Fix case for testing the referrer check setting. Ticket #1011: Erik Fonnesbeck

11/15/2010

08:01 PM Revision efe259cf: Remove these anchors they just provide overhead and are not really used much in pfSense.: Ermal LUÇI
07:55 PM Revision d268d457: Remove gre helping rules they are not anymore needed.: Ermal LUÇI
07:16 PM Revision 99b1cc43: Disable CSRF checks on the backup page.: Scott Ullrich
06:50 PM Revision 0dcdbc85: Send errors to 2>: Scott Ullrich
11:46 AM Revision 172007f5: Merge remote branch 'upstream/master': Conflicts:
etc/inc/filter.inc
etc/inc/system.inc
usr/local/www/interfaces.php
usr/loc... Seth Mos
09:53 AM Revision 4f376815: Properly format the IPv6 address within brackets so that Carp sync to a ipv6 address works: Seth Mos
08:37 AM Revision 3c009080: Adjust the config file for dhcpv6. We can not support Failover at this point, missing docs.: Seth Mos
08:22 AM Revision cf327478: We do not have a ipv6 specific function, the old one now understands ipv6: Seth Mos
08:21 AM Revision a05b2f42: add support for IPv6 routing tables for IPv6 so that guess_interface_from_ip works: Seth Mos

11/14/2010

07:46 PM Revision 64ec1ddf: Add nocsrf flag: Scott Ullrich
07:29 PM Revision 364ecdd1: Fix misnamed form field on CRL import.: Jim Pingle
02:55 PM Revision fbd96b06: Fix variable names. Ticket #954: Erik Fonnesbeck
01:59 PM Revision bd32ac6c: Fix case of variable name for swap usage. Ticket #477: Erik Fonnesbeck
12:36 PM Revision ba8e0870: Copy /boot/loader.conf.local to the newly imaged slice. Ticket #892: Erik Fonnesbeck
11:05 AM Revision 0aa72c10: Don't perform referer check if display_error_form is not defined (captive portal), just like as is done for the DNS rebind check. Ticket #1007: Erik Fonnesbeck
10:10 AM Revision 0532e54d: Rework handling of ports for reflection on port forwards to work properly with port aliases. Ticket #672: Erik Fonnesbeck
06:06 AM Revision 856d2bf9: Unset this reference before reusing the variable name to prevent corruption of groups.: Erik Fonnesbeck
12:38 AM Revision ac503653: Open link in new tab/window: Scott Ullrich

11/13/2010

05:44 AM Revision bddc8818: Form image buttons are submit buttons and thus default buttons, causing unwanted behavior with the enter key. Use links instead, where possible.: Erik Fonnesbeck
03:05 AM Revision 6f7a9978: Add style to rowhelper normal text fields in packages for consistency.: Erik Fonnesbeck

11/12/2010

11:51 PM Revision 21699e76: Fix test for altq on vlans and wlan.: Ermal LUÇI
11:34 PM Revision 83fcd140: CSRF startup code has been moved to guiconfig.inc: Scott Ullrich
11:30 PM Revision fafd303e: Unbreak AJAX: Scott Ullrich
09:45 PM Revision f48d337f: Add ipv6 local addresses to the IP address list for the rebinding check: Seth Mos
09:38 PM Revision 293079d1: Make sure that we enable SSL properly for the ipv6 vhost as well: Seth Mos
09:05 PM Revision c895ab7b: Misc XSS fixes: Scott Ullrich
05:29 PM Revision 2bf0ada5: Protect against XSS by someone broadcasting an HTML SSID... (better to be safe...): Jim Pingle
05:15 PM Revision f01d8c49: One more potential XSS vector. Not sure how it would have text injected here, but better safe than sorry.: Jim Pingle
05:02 PM Revision 060d4c5e: More notice XSS fixes.: Jim Pingle
04:36 PM Revision dd5bf424: Fix XSS issues: Scott Ullrich
04:35 PM Revision 4656943e: Fix a theoretical/potential XSS in the http_referer check warning.: Jim Pingle
04:29 PM Revision 190d5d58: Fix XSS in notices.: Jim Pingle
04:03 PM Revision 225a2f0b: Bring in XSS id fixes from m0n0wall: Scott Ullrich
11:53 AM Revision 5812e717: Add whitespace to avoid breaking the resulting rule.: Ermal LUÇI
11:52 AM Revision f27789bf: Whitespace fixes.: Ermal LUÇI
11:51 AM Revision f829d532: Make sure there is a direction specified otherwise errors might occur.: Ermal LUÇI
11:49 AM Revision 9869cf3e: Initialize rule keeping array to avoid possible caching effects on php.: Ermal LUÇI
09:17 AM Revision 19310a56: Clarify these descriptions a bit more on 1:1 edit.: Erik Fonnesbeck

11/11/2010

08:35 PM Revision e9cfd6b0: Once more, with feeling: Seth Mos
08:31 PM Revision d99bcf10: Alter the requires to their new file names: Seth Mos
08:27 PM Revision b3c6aec9: Update the current XML RPC client and server parts from the PEAR library, now version 1.5.4: Seth Mos
03:39 PM Revision 5b6661d8: Fix more typos, I can't code for toffees: Seth Mos
03:33 PM Revision 4f66ad1f: Fix the syntax error: Seth Mos
03:26 PM Revision 543ecd59: Use the information from the wiki about letting lighty listen on v4 and v6 together.: http://redmine.lighttpd.net/projects/lighttpd/wiki/IPv6-Config Seth Mos
02:44 PM Revision ca94f214: Enable IPv6 binding for Lighttpd: Seth Mos
02:17 PM Revision a2f38ac4: Handle AJAX: Scott Ullrich
10:51 AM Revision 6f567a59: NiftyCheck already included in bottom-loader.js otherwise div mainarea gets rounded twice.: Warren Baker
09:53 AM Revision cea355a5: Separate this into the original case with the floating rule cases above it to fix some scenarios where the order was still wrong.: Erik Fonnesbeck
09:24 AM Revision cb53651f: Small rework of code for applying drag and drop reordering of rules and some extra checks added to fix some potential bugs. Ticket #878: Also minimizes the extent of the changes performed (useful when comparing config.xml files from before and after). Erik Fonnesbeck
07:51 AM Revision a5ebdeff: Fix handling of floating rules in the drag and drop reordering code. Fix for part of ticket #878: Erik Fonnesbeck
05:58 AM Revision baaa8bb1: Move this function to allow removing it from easyrule.: Erik Fonnesbeck
05:43 AM Revision 88bc2760: Fix filter_rules_sort's compare function to know about floating rules so it won't change their order.: Erik Fonnesbeck
04:27 AM Revision ea57ccb8: Use this sort before saving, so the rule just added is sorted into the proper category like the rest.: Erik Fonnesbeck
04:14 AM Revision ce2078f7: Unbreak graphs: Scott Ullrich
02:56 AM Revision 2b30323e: Copy logic for when to show the cellular tab from status_rrd_graph.php. Fixes #714: Jim Pingle
01:30 AM Revision fa6c42d0: Return this field to its old name to prevent a conflict of names and since the code that uses it still refers to it by that name. Issue reported at http://forum.pfsense.org/index.php/topic,29985.0.html: This caused the full name field to be ignored when creating a user and prevented making a certificate at the creation... Erik Fonnesbeck

11/10/2010

11:14 PM Revision f233231b: Take into account if we have redirection active to allow even port 443.: Ermal LUÇI
11:14 PM Revision 30bd17f5: Make the antilockout rule match the webgui and ssh(if enabled) rather than any traffic destined to pfSense itself.: Ermal LUÇI
10:22 PM Revision 29f76490: Only use escapeshellarg when passing the arguments to the shell. Fixes #1005: Jim Pingle
09:42 PM Revision dd18038e: * Call get_configured_interface_* functions only once in the code: * Optimize the test if the passed interface is a vaild one
* Fix the apply settings to actually do something rather t... Ermal LUÇI
08:09 PM Revision e7d3fc15: Small improvement no functional change.: Ermal LUÇI
07:40 PM Revision fa112436: Use php calls rather than forking to shell.: Ermal LUÇI
07:34 PM Revision b06d7ebb: Use exec and check return value of command to avoid priting messages of stderr to console.: Ermal LUÇI
07:16 PM Revision 35d26b25: Not sure why sometimes works sometimes does not work when bound to localhost the lighttpd instance of CP. Back to previous setup! Though security of it is debatble.: Ermal LUÇI
06:43 PM Revision 7f8d463f: Bring interfaces up only if there is a mismatch to allow them to be reassigned.: Ermal LUÇI
06:27 PM Revision e9d7afeb: Ticket #904. Hmm fix the interface_has_gateway() too.: Ermal LUÇI
06:25 PM Revision f6b30142: Ticket #904. Actually correctly handle the assigned openvpn client as a dynamic gateway rather than breaking the behaviour of the system. Strange nobody has noticed broken gateway behaviour with openvpn assigned!: Ermal LUÇI
06:18 PM Revision c422a169: Actually was coorect before. 3rd parameter is length not index.: Revert "Correct this to make it actually work. This is also mentioned in Ticket #904 though it was already implemente... Ermal LUÇI
05:45 PM Revision 0bb28795: Correct HTTP_REFERER check when using an IP Address vs the Firewalls hostname: Scott Ullrich
05:25 PM Revision 612fa572: Note that this textbox controls HTTP_REFERER hostname checks as well: Scott Ullrich
05:00 PM Revision 9734b054: Remove trailing carriage return: Scott Ullrich
04:56 PM Revision 4fe9c2dc: * Adding function get_configured_ip_addresses() which returns all interfaces and their configured IP address: * Add checkbox to System -> Advanced -> Admin for HTTP_REFERER checks
* Add and enforce HTTP_REFERER check if checkbo... Scott Ullrich
02:49 PM Revision daab67a1: Fix misc XSS issues from davey b: Scott Ullrich
01:34 PM Revision fe73e93f: check the correct routing table array otherwise we can never change the default route: Seth Mos
10:03 AM Revision f0ce6758: Add option to System: Firmware: Settings for running gitsync after installing an update, hidden/disabled if git has not been installed yet.: Erik Fonnesbeck
07:28 AM Revision 2545af04: Remove csrf-magic include from functions.inc -- it was causing problems with console PHP scripts.: Erik Fonnesbeck

11/09/2010

11:37 PM Revision 6f2cc3a6: Correct this to make it actually work. This is also mentioned in Ticket #904 though it was already implemented.: Ermal LUÇI
10:17 PM Revision 7673cdb5: Use a shell script rather than bad hack to execute php code for pppoe periodic reset.: Ermal LUÇI
08:10 PM Revision 12dfe8ca: Fix display of queues on rules and layer7 containers.: Ermal LUÇI
06:07 PM Revision 506f6e90: Ensure csrf magic is loaded: Scott Ullrich
04:38 PM Revision 034f08e7: Fix Misc XSS issues: Scott Ullrich
04:26 PM Revision fea09886: Revert: Scott Ullrich
04:23 PM Revision 9b2bc1af: Testing csrf-magic: Scott Ullrich
03:28 PM Revision 5626a349: Set session.use_trans_sid to true: Scott Ullrich
12:14 PM Revision 678dfd0f: Add a setting for the data type of values used with DHCP option numbers and input validation for each type. Fixes #962: Erik Fonnesbeck
11:58 AM Revision 12984150: Merge remote branch 'mainline/master' into inc: Conflicts:
etc/inc/pkg-utils.inc
etc/inc/system.inc Renato Botelho
10:02 AM Revision 5d27a3dc: Add a function type to the field types allowed, to allow more field types without directly adding all of them to row helper.: Erik Fonnesbeck
02:23 AM Revision 58685470: fix input validation for GRE: Chris Buechler

11/08/2010

10:42 PM Revision 58db1fc4: Kill dhcplease before writing the hosts file so that it does not scramble the content from kqueue events.: Ermal LUÇI
10:21 PM Revision 6e8b0ec3: Add a button to connect a non-mobile IPsec VPN from Status > IPsec. Sends a ping from a local IP in the p2 subnet (if one exists on the router) to the remote p2 subnet.: Jim Pingle
03:53 PM Revision 61ab4cd3: Return disabled interfaces as well: Scott Ullrich
03:52 PM Revision 157b9d46: Return disabled interfaces as well: Scott Ullrich
06:55 AM Revision 08452bff: Cosmetic issue, add space before 'done', otherwise package XML name and done are combined.: Warren Baker
06:44 AM Revision 4395500c: Recent move (d32d3970d58683d02f89073103eb595eaa8f395f) of routed/ items required additional files to be updated to reflect correct path.: Warren Baker

11/06/2010

10:20 PM Revision d32d3970: Add routed/ items to obsoleted files. Force removal of file so that directories can be included in the future: Scott Ullrich
09:02 PM Revision 277d55d7: Ignore /var/etc directory to avoid these kinds of errors: tar: /var/etc/openvpn/client1.sock: tar format cannot archive socket: Scott Ullrich
07:34 PM Revision 818c54ee: Do not use sub array: Scott Ullrich
07:31 PM Revision 43a0ac8a: Make sure ipsec is incuded in valid interfaces: Scott Ullrich
07:24 PM Revision e5fee340: Move Note to bottom of page: Scott Ullrich
07:22 PM Revision 366e2be8: Show interface description: Scott Ullrich
06:40 PM Revision 2c4a13d9: Interface names should appear as uppercase: Scott Ullrich
06:38 PM Revision 9c3cac0c: Interface names should appear as uppercase: Scott Ullrich
06:34 PM Revision 5aaae0e3: Do not escape strings twice: Scott Ullrich
06:26 PM Revision 0f08affe: Misc fixes. Use htmlspecialchars() in more places. Use escaped shell argument.: Scott Ullrich
06:11 PM Revision 66d57db5: Interface names should appear as uppercase: Scott Ullrich
06:10 PM Revision 4cea35b3: Interface names should appear as uppercase: Scott Ullrich
06:08 PM Revision c1f95f5c: Various CRL fixes.: Jim Pingle
06:03 PM Revision e8ad860f: Interface names should appear as uppercase: Scott Ullrich
06:01 PM Revision 94556105: Define variable a bit earlier in case its shared: Scott Ullrich
06:00 PM Revision d815d5fa: Use get_configured_interface_list() so Ermal does not yell at me :): Scott Ullrich
04:40 PM Revision 98bcf1f8: Fix misc input validation errors. Move routed/* to same dir as pkg items: Scott Ullrich
04:31 PM Revision 6a937188: Ensure passed interface is valid: Scott Ullrich
04:24 PM Revision 8625c24f: Use htmlspecialchars() for santitized output: Scott Ullrich
04:15 PM Revision 50b2f6ab: Ensure that we are working with a proper passed interface..: Scott Ullrich

11/05/2010

06:33 PM Revision c62d973d: Spelling fix.: Warren Baker
02:12 PM Revision 03976254: If the anti-lockout rule is active, show it in the rules list for the LAN interface (or WAN if the interface count is 1, same rules as in filter.inc for putting the rule in the ruleset): Jim Pingle

11/04/2010

06:30 PM Revision 428e66b6: Warn a user when entering the OpenVPN client/server screens that they need a CA/Cert if none exist.: Jim Pingle
05:18 PM Revision 9882cbef: Use addslashes() here to prevent unescaped quotes from causing PHP errors. Fixes advanced/custom options in OpenVPN wizard.: Jim Pingle
03:14 PM Revision f09ce147: Merge remote branch 'upstream/master': Conflicts:
etc/inc/services.inc Seth Mos
02:39 PM Revision 3339c56f: Use a different variable name here to avoid colliding with another of the same name.: Jim Pingle
09:06 AM Revision 0996a81e: Enlarge the address fields so that ipv6 addresses fit properly: Seth Mos

11/03/2010

09:26 PM Revision 9ad0ab80: Use != here to avoid a potential issue with empty() testing intermediate arrays.: Jim Pingle
09:18 PM Revision 42724fdd: Add a button to the filter reload screen to force a config sync (only shows up if a config sync peer is defined).: Jim Pingle
09:00 PM Revision de651e21: Change the dhcpd startup for isc dhcpd server 4.1: Seth Mos
08:11 PM Revision 36600615: Fix saving of off/disabled PPPoE server instances. Fixes #987: Jim Pingle
08:08 PM Revision 79eea0c1: Activate code to allow ipsec to work normally.: Ermal LUÇI
02:53 PM Revision 4816e5ca: Merge remote branch 'mainline/master' into inc: Conflicts:
etc/inc/auth.inc
etc/inc/config.lib.inc
etc/inc/priv.defs.inc
etc/inc/syst... Renato Botelho
02:26 PM Revision b039f099: Don't show empty user IPsec keys.: Jim Pingle
01:25 PM Revision 9cb94dd4: Ticket #980. Bring CP widget up to date. Also bind lighty for CP to 127.0.0.1 it should not be accessible otherwise.: Ermal LUÇI
11:50 AM Revision 645ad665: This enabled finding of a carp vip on the ifconfig stack: Seth Mos
10:43 AM Revision 096cd5f5: Do not attempt to start relayd without entries: Seth Mos
10:32 AM Revision 6da3df4e: Enable both ipv4 and ipv6 forwarding before returning: Seth Mos
09:42 AM Revision 5bb1e653: Default to ipv6 routing on: Seth Mos
09:30 AM Revision 3502b5b1: Make it possible to create a inet6 carp address. This works surprisingly: What doesn't work is removing the previous IPv6 address from a interface. This should be hooked into the edit page Seth Mos
07:49 AM Revision 105d618d: Merge remote branch 'upstream/master': Seth Mos

11/02/2010

10:01 PM Revision 4ebde165: Make sure that the filter rules for static routes are correctly generated for ipv4 and ipv6: Seth Mos
09:16 PM Revision 72993196: Protect from strange situations on bootup by testing for is_array(). Do not add anymore the 127.0.0.2 route its not needed anymore. Also during bootup bring up all interfaces so the assignment process can deal with them(Possibly should be done in another code flow!).: Ermal LUÇI
09:00 PM Revision 14f565b4: Allow the entry of ipv6 networks, needs verification to prevent ipv4 gateways for ipv6 networks and vice versa: Seth Mos
08:48 PM Revision 6bc1e79a: Don't use pconfig in a widget, it can cause issues with other widget settings.: Jim Pingle
08:43 PM Revision 7617e245: Verify that we validate against a ipv6 subnet properly. This should help for static route gateways: Seth Mos
08:07 PM Revision 60e76c58: CSS changes, fixes misaligned cursor in some password fields. Fixes item 1 in ticket #830: Jim Pingle
07:14 PM Revision a6607b5f: More VPN log fixes, for consistency. Ticket #912: Jim Pingle
06:29 PM Revision f856e762: Fix typo (standart -> standard): Jim Pingle
06:11 PM Revision b2b61308: Switch from buttons to tabs, add a mode to view raw mpd logs for each vpn type, and some general cleanup. Fixes #912: Jim Pingle
05:22 PM Revision fbeaba66: Remove these now-obsolete linkup/linkdown scripts.: Jim Pingle
04:52 PM Revision 874e5f2c: Fix VPN log page to use the updated log format (again). Ticket #912.: Jim Pingle
03:57 PM Revision 2f9d2dc2: Use a unified vpn-linkup script that detects the type based on interface name.: Jim Pingle
03:43 PM Revision e9a95ac8: Switch to a unified vpn-linkup and vpn-linkdown.: Jim Pingle
02:07 PM Revision 2c7feef7: Fix l2tp interface naming. Fixes #985: Jim Pingle
01:21 PM Revision 27b82e7c: Remove debug flag from rtadvd: Seth Mos
09:13 AM Revision d57293a4: Fix services.inc dhcp6 configuration, add route advertising deamon config: Seth Mos

11/01/2010

09:02 PM Revision 14905d9f: Show login/logout events for pptp, pppoe server, and l2tp. Could use some work to simplify. Ticket #912.: Jim Pingle
08:22 PM Revision 917b0a56: Use individual linkdown scripts.: Jim Pingle
08:15 PM Revision 6d1091dc: Add individual linkdown scripts so the service type can be set in the log.: Jim Pingle
08:05 PM Revision d282c96c: Add service type to vpn log: Jim Pingle
06:46 PM Revision a2071365: Sync service status widget code with service status page. Fixes #984: Jim Pingle
06:13 PM Revision 08724afa: Test for arrays first, should fix #968: Jim Pingle
05:20 PM Revision 5fb9e6d3: Various sync fixes to ensure sections are pushed even if empty, otherwise the last entries of these sections cannot be deleted and have that deletion sync to the secondary.: Jim Pingle
12:11 PM Revision 11b8ca39: Merge remote branch 'upstream/master': Conflicts:
etc/inc/filter.inc Seth Mos
07:31 AM Revision a8a98fb4: Do not throw warnings on empty dhcpd arrays: Seth Mos

10/31/2010

09:36 PM Revision c75a8185: Add function for generating ipv6 subnet mask end, hook into ipv4 subnet mask check as well.: Seth Mos

10/29/2010

02:08 PM Revision 0e604b3a: Make isvalidpid() know about pidfile the same as the other *pid functions do.(consistency): Ermal LUÇI
09:55 AM Revision b7ccf315: Make the change here, too.: Erik Fonnesbeck
08:22 AM Revision 9d46f40b: Also mention that this allows access to the dashboard.: Erik Fonnesbeck

10/28/2010

06:34 PM Revision e3bbd29a: Replace \r from custom options otherwise it breaks config.: Ermal LUÇI
02:29 PM Revision 7c255188: Fix logging parameters.: Jim Pingle
02:29 PM Revision c815b877: Fix pfctl -b parameters to prevent the killing of unintended states.: Jim Pingle
01:56 PM Revision 9e303f2f: Fix formatting: Jim Pingle
01:56 PM Revision 5e58efd0: Fix this logic.: Jim Pingle
01:37 PM Revision 75337c33: Fix typo in services_dhcp_configure() for dhcp6 naming: Seth Mos
12:50 PM Revision ce76a45c: Add icmp6 rules so that stateless autoconfiguration can be used, this also requires that link local addresses work.: Seth Mos
12:29 PM Revision 2a1bd027: Add the rtadvd deamon to advertise the routing. We still need to make a proper config file if we want it to advertise the Carp IP instead of the interface IP: Also added safety guard for empty dhcp configs Seth Mos
10:56 AM Revision 65b1e7d5: Make sure that if either v4 or v6 dhcp servers are enabled that is_dhcp_enabled() will trigger: Seth Mos
08:49 AM Revision 99caa67c: Add the dhcpv6 server service page.: Seth Mos
08:46 AM Revision 693833cb: Update services.inc for configuring isc dhcp server 4.1 with ipv6 subnet support. Much configuration needs validation.: There is no router option support, this needs to be handled by the router advertisement deamon. Perhaps this should b... Seth Mos

10/27/2010

09:13 PM Revision da51f26c: Ooops use meant logic.: Ermal LUÇI
08:56 PM Revision f48b6205: Ticket #975. Properly initialize variables to avoid caching issues. Also check an array exists before trying to foreach to avoid errors.: Ermal LUÇI
08:56 PM Revision a8200dbf: Ticket #975. Rearrange code a little.: Ermal LUÇI
08:55 PM Revision 6bef0554: Do some is_array() testing before renaming fields, otherwise empty variables can be accidentally created.: Jim Pingle
08:30 PM Revision bacd881e: Fixes #976. Bring in the piecies for classless routing from FreeBSD 8.1 script.: Ermal LUÇI
06:32 PM Revision 1da69624: Add the dhcpv6 server menu item and allow for configuration: Seth Mos
05:11 PM Revision 64ce9d72: Do not require LDAP search base DN. Requiring this can prevent some valid LDAP configurations from properly authenticating. (See GDD-550841).: Jim Pingle
07:47 AM Revision 31ace4ea: Add the ipv6 address and subnet onto the existing ifinfo array until the pfsense module supports it: Seth Mos
12:29 AM Revision b019222a: Ticket #959: keep local ipalias and proxyarp vip's during a XMLRPC restore: Pierre POMES

Also available in: Atom