pfSense

Update "Last Tested" date for freeDNS in comments

Attempted fix that should convert the old carp[$i] naming to vip[$vhid]

Make sure we iterate by the vlan number lest we end up with a empty variable? Hopefully fix new vlan name not being assigned to interfaces section

Correct the gateway group member name to the correct GW_". strtoupper($if) uppercase. This fixes outbound load balancer pools upgraded from 1.2.3
not working

Don't consider a cert as in use by the GUI if it's in HTTP mode. Fixes #1171

Move all functions from index.php for captiveportal.inc

Add Global reply-to disable checkbox, resolves the issue #1137

reversal of accidentally deleted files
Revert "Add Global reply-to disable checkbox, resolves the issue #1137"

This reverts commit c646776871dacebcaa4225b083aa0789dc0bfba6.

Add Global reply-to disable checkbox, resolves the issue #1137

Resolves #1288. Add alc(4) to altq(4) supported list.

Don't forget to include $g, otherwise the check will fail and still perform a DNS resolve

Hold off on resolve_retry during boot. The rest of the IPsec config is already delayed during boot for tunnels with hostnames

Add more safeguards and IP address checks

Do not resolve the hostname during boot, also make really sure we have a IP address here.

Prevent a empty remote gateway IP from ending up in the config

Make sure to initialize the remote gateway IP variable so that it does not end up with a broken config

log when CP is restarted. ticket #1278

fix log text

Comment out the "config write on bootup" error. This is normal now with the package reinstall, and the known issues with it should be OK now. The error is just confusing people.

Do not rely on php new foreach by reference and use the old method of chaning array members by using full path. This fixes nat 1:1 upgrades.

Add automatic rules to pass DHCP failover traffic if a failover peer is defined. See http://forum.pfsense.org/index.php/topic,32731.msg172839.html#msg172839

Add snort2c table back in for now.

Adding support for snortsam from Robert Z

Suppress curl errors (if we get a 404 it tosses its own error if there is no response body, just a 404 code.)

Add alias support for source and destination ports on outbound NAT.

Make update check a little more robust. Timeout after a few seconds, and if we get a non-200 http code, ignore the response.

In update_alias_names_upon_change function add capability to access more deeply nested sections and fields.

Allow action match to be passed down to pf.

Do not resolve the dyndns hostnames during boot. With many tunnels that have a hostname this can
cause huge boot issues if the DNS server is slow or not responding at all. By skipping those but
adding them to the DNS watchlist it should reload these later. This should allow the box to start...

There is no need to call the script to reconfigure CP here. Even more when it breaks all kind of things.

Also fix easyrule and auto->manual nat switch code. Ticket #1243

Generalize pppoe server enabled check and use it elsewhere in the GUI that needed fixed. Still needs changes in filter.inc - Ticket #1243

Allow autocomplete on login form (Fixes saving password on Firefox and Chrome)

Fix a date compare bug, resolves #1273

Allow renaming even shaper queues as an improvement.

Fixes #1207. Allow renaming a limiter. Also prevent a limiter to be deleted if it is referenced in filter rules.

Resolves #1265. Show the interfaces in the same order requested during assignment on console.

Adding crashreporterurl for rebrands

Add a global g option named disablecrashreporter which defaults to false for rebrands

minicron is now used on a number of items in the gui. tell the cp prune process to use the pid name cp-prunedb.pid

Do not launch multiple copies of the captive portal database pruner.

fix NTP server IPs in openvpn config

Add backend support for aliases on source and destination address of outbound NAT rules.

Note reinit will disconnect folks

Correctly grab the hostname from config for filterdns.

Do not use references here when building a ca_chain_array. Really fixes #1231 - CAs are no longer lost when a config write happens at bootup.

Fix typo (swapped parameters)

Fix typo

Correct configuration file name.

Added Captive Portal RRD graphs, there are two graphs one for the number of logged in users since last rrd poll, and concurrent number of users logged in.

Make this actually work as it should. The warnings about default queue should be ok now.

Don't pass these by reference. Might be related to ticket #1231

Ups actually single quotes are needed when / is the first char of a command. Requirment enforced by the parser.

Remove last references to dnswatch.

Use filterdns instead of dnswatch which will be retired.

Switch to filterdns new and shiny for taking care of dns in CP.

These are pf type aliases.

Silence warnings.

Fix case for disabling RRD graphing for spamd package.

Transform PORTAL_REDIRURL variable

Fix url. Do not include mod_accesslog twice

remove single quotes

Brute force dnswatch kill if needed

Launch dnswatch correctly.

Allowed hostname is now working. Make bw up and down checks a bit more strict using intval() and comparing >0. Fix bw and upload checks allowing either to be set.

Allowed hostname is now working. Make bw up and down checks a bit more strict using intval() and comparing >0. Fix bw and upload checks allowing either to be set.

Make allowedhostname an array.

Adding preliminary version of allowed hostnames. Allowed hostnames function similar to allowed IP addresses and permit the captive portal to pass traffic out. An example usage of this is to allow access to a hotel web page freely and then require authentcation hotlinking from this point.

Fix formatting. Die, VIM, DIE!

Reformat file. VIM needs to die a flaming death.

Comment out this code since it currently segfaults and get_real_interface could cause major slowdown here for some configurations.

Remove extra call to get_real_interface.

Use the first element of the array instead of the array itself for the comparison.

Revert "I think this is supposed to be get_real_interface too, not get_parent." - This function should not call get_real_interface here to avoid slowdown from recursion.

This reverts commit 54ac5d9080c2ea6669af07aa49a5ce660f2ede76.

Make get_parent_interface return an array to handle MLPPP and make it find vlan parents too.

Also, update interface_netgraph_needed to handle MLPPP on vlans.

Add NULL check to wireless functions.

The old interface_translate_type_to_real function used previously would return OPTX
if it was passed "OPTX" and OPTX existed but was unassigned, whereas get_real_interface returns NULL, so now we
check for NULL.

I think this is supposed to be get_real_interface too, not get_parent.

Revert if I mis-understood.

Change name of function "interface_translate_type_to_real" to match what it's doing (or should be doing.)

Next commits will change functionality of this function because before now
it's identical to "get_real_interface" function (because of bug mentioned below.)...

Resolves #1216. Do not create nat entries on ovpn interfaces.

Actually send a notice even if no default queue could not be found. This might be serious in some cases.

Do not put the queue config on the rules if there is no default queue, just log it. This prevents errors in rules loading which is worse than having no shaper.

Log the errors we know for not allowing a queue to be added.

Add the npt tag which is used by the IPv6 tree to the 2.0 mainline tree.
This prevents a config blowup when a ipv6 config loads on 2.0.

it's 2011

We don't want to detach netgraph nodes from interfaces that are used by
any PPPoE/PPTP/L2TP configurations.

Use a better method to determine the FTP URL for FreeBSD based on the version being used. The old method worked with 8.1-RELEASE-p2 but failed with just 8.1-RELEASE.

Add drop-down to select OpenVPN hardware crypto (finds usable devices from "openssl engine" list) for clients and servers.

Add the empty check otherwise all static routes are skipped. Reported-by: Seth

Add a checkbox for duplicate-cn on OpenVPN servers.

Comment what this variable does

Adding $builder_package_install variable. When set to true ignore library fixups and sync_package() directives.

Ticket #1210. Also here unset any previous value if none posted.

If no value is posted means we have no value to save in config and should unset any pervious set ones.

Resolves 1209. Correctly calculate the necessary data to return from an 'pfsense' format encrypted file.

This logic was reversed fix it. Reported-by: Seth

Ticket #259 trim the \n from the command output and return only the numeric part of it.

Prevent a IPv6 address from breaking system routing. This is a hack because we don't have the proper ip validation in 2.0 mainline

Do not put a config entry for dhcpd if we cannot determine the subnet address. Reported-by: http://forum.pfsense.org/index.php/topic,32303.0.html

Better way to determine the username for config descrs

Fix variable name reference