Restart unbound after clearing logs (Bug #6915)
Handle clearing the individual log as well.
Redmine #5549 Allow variable number of DNS Servers
Simplify logic
Ticket #6712: Create system_hosts_entries()
This function will return an array all items to be added to /etc/hosts.
Ticket #6712: Create system_hosts_dhcpd_entries()
This function will return an array with dhcpd and dhcpdv6 items to be added to/etc/hosts.
Ticket #6712: Create system_hosts_override_entries()
This function will return an array with dnsmasq or unbound items to be added to/etc/hosts
Ticket #6712: Create system_hosts_local_entries()
This function will return an array with 127.0.0.1, ::1 and LAN (orfirst interface with no gateway when LAN is not there) items to beadded to /etc/hosts
Kill dhcpleases after we are sure we can write /etc/hosts
Fix style
Make sure IP address is v4 before create /etc/hosts entry
Do not write a 'restrict' line to the NTP config if it will be empty. Fixes #7110
Add VMware detection to system_identify_specific_platform(). Ticket #6882
Merge pull request #3315 from plumbeo/accounting-on-disable-reboot
Captive portal: rework logging and RADIUS accounting when disabling a zone or rebooting
Make captiveportal_radius_stop_all() log the disconnections in the system log and fix it so that it works with the zone id parameter and sends complete RADIUS accounting packets....
Add reroot support to system_reboot_sync() and to the /etc/rc.initial.reboot menu. Ticket #6045
Exclude /var/empty from tar extract and make sure its permissions are respected when it's created
Add missing include
Add specific platform detection for PC Engines APU2
Based detection on $product rather than $hw_model, because $hw_modelreturns the name of the AMD SoC, which might be used on other boards.
Add BIND logging to proper facility (Bug #5524)
Stop the /etc/inc/system.inc patching by dns/pfSense-pkg-bind9 package.
Silence kenv calls
Remove config files symlinks from /etc to /var/etc. Fixes #5538
Use the ntpd "pool" command for more robust timekeeping. Attempting to automatically determine if we are using a pool, and allow it to be set optionally otherwise. Implements #5985
syslogd, create configured logsocket directories
Fix #6828
Until 2.3.x pfSense carried a patch that changed the behavior of 'routechange' command, making it add the route when it fails to change.On 2.4 this patch was removed and will not be added back. This changeadjust PHP code to deal with route add / change and make it work...
Deprecate nanobsd platform and remove all conditionals that uses it
Remove all calls to conf_mount_r* functions
Merge pull request #3171 from phroggster/patch-2
Fixup ntpd IPv6 restrict clauses.
This should eliminate the following errors from the ntpd log file whenusing IPv6 or dual-stack networks:"syntax error, unexpected T_Mask, expecting T_EOC"
Fix static blackhole routes. Bug was introduced in8be135cd114fbc9294ec9dafed2125d0e553956c (February, 2013).
Merge pull request #3135 from phil-davis/pdlen
Merge pull request #2616 from k-paulius/patch-pkg-syslog-v2
Fix #6768 IPv6 static mapping on delegated prefixes
For example, WAN receives a /48 delegated from the upstream (ISP...),e.g. "2001:470:abcd::" pfSense then uses this as a starting point tocalculate the addresses on LAN, OPT1, OPT2 etc where they have been...
Fix up/catch up remote syslog areas. Fixes #6780
More pptp bits
Remove some more dangling PPTP bits.
Move copyright from ESF to Netgate
Merge pull request #3122 from NewEraCracker/patch-11
Improve dhcpd and dhcpleases reload
1) Avoid running services_dhcpd_configure() more times than needed.2) Always restart dhcpleases after it's killed during interface recycle.3) It's not necessary to restart dhcpdv4 when doing changes in ipv6 config.
system_dhcpleases_configure() - Improve pidfile handling
1) Set the pidfile variable in the correct place. pidfile variable is required in both 'if' and 'else' blocks.
2) Ensure pidfile is valid before sending term signal
Set HTTP_PROXY to empty as recommended at https://httpoxy.org/#fix-now
Move to Apache License 2.0
Review license / copyright on all files (final round)
Review license / copyright on all files (1st round)
Exclude non-qualified hostnames from hosts file. Ticket #6064
Missing closing quote
Create /var/run/dmesg.boot symlink for vm-bhyve (Feature #6573)
See https://redmine.pfsense.org/issues/6573
Include interface scope on IPv6 static routes to link local gateway IPs. Ticket #6506
This needs a newline
Set keepalive_timeout 0 where captive portal in use, and update otherwise to nginx's current default of 75. Ticket #6421
Prefer index.php over index.html where both exist.
A simple fix for #6120
- Retire system_console_configure()- Replace above call on rc.bootup by setup_serial_port()
Add Hyper-V support to system_identify_specific_platform, and disable S.M.A.R.T. actions in Hyper-V guests. Ticket #6147
Ticket #6053
- Do not call ntpdate before start ntpd, ntpd g parameter is enough Deprecate /usr/local/sbin/ntpdate_sync_once.sh- Remove system_ntp_configure parameter and always start ntpd
(cherry picked from commit 5a758355ec9a20ff75c9191b6915df64255fb8be)
Remove unused function sync_system_time()
(cherry picked from commit 67c934440521e8081d90850f4a10a40e82603db3)
Implement system_get_serial()
Remove dead code
Identify specific hardware models of some Netgate products
Rename variable to a name that make sense
Don't log 404s for captive portal. Ticket #6027
Remove ssl_stapling. Ticket #6020
Don't log to filter.log when local logging is disabled. Ticket #6018
Cleanup nginx configuration file
- Fix indentations- Use the `ssl` parameter of the `listen` directive [1]- Change the rewrite rule to use the recommended syntax [2]
[1]: http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl[2]: http://nginx.org/en/docs/http/converting_rewrite_rules.html
Use product name rather than smbios here.
Disable TLSv1.0 for web GUI's nginx instance. Ticket #5984
Merge RCC add, 1540 name fix, from 2_2 branch.
log dhcpleases and dhcpleases6 to dhcpd.log. Ticket #5968
Remove duplicated text/javascript
Update nginx gzip_types. Remove text/html since it's redundant, and add a few others. Particularly useful, json, since status_monitoring.php uses it. Reduces load time on slow connections to about 1/4th of what it is without gzip on json. Ticket #5498
Move NTP access restrictions to their own tab and add the ability to craft custom restrictions for arbitrary networks. Fixes #4463
Fix #3029
Teach system_hosts_generate() to deal with PD length != 64
Ticket #3029
Import patch from @Robert-Nelson to enable DHCPv6 Server/RA tointerfaces configured to track DHCP-PD
This patch only works for PD with length 64
Internationalize etc inc i through s
Code style changes
Prefer dnsmasq's host overrides when it's enabled. Ticket #5883
Allow packages to request syslogd log socket to be created inside chroot by specifying it in /package/logging/logsocket element. Implements #4898.
Example:<package> <logging> <logsocket>/var/appname/var/run/log</logsocket> </logging>...
Fix style issues.
Review of CARP uniqid changes.
It turns out that current CARP implementation is not much different from an IP alias.
This commit converts the IP alias to also use the CARP uniqid scheme, this simplify the code in all other places because now we have only two different cases to deal with:...
Enable gzip compression in nginx.
Set fastcgi_read_timeout to 180 seconds rather than the default 60 for the occasional long-running page.
Remove all additional packages from the system before reset to factory default. Fixes #5829
Remove static routes to DNS servers when gateway is disabled. It should fix #4921
Fix dns test for localhost inclusion, when saving now the port value can be set but empty. Fixes #5775
Update license on files from /etc/inc
Use case-insensitive regex matching for http_host in nginx captive portal configs.
Match nginx max body size with PHP's upload_max_filesize
set nginx client_max_body_size large enough for config restore and other purposes.
10m ssl_session_cache is adequate for our use cases.
Use the local dh-parameters for nginx rather than the default.
Make sure httpsname is a valid domain to avoid breaking nginx conf
Merge pull request #2355 from jlduran/no-preload-in-hsts
Include limit_conn config for CP maxprocperip
Only log to remote syslog server(s) if remote logging is enabled
Remove preload token from HSTS header
Please see the documentation on how to include your domain in thepreload lists:
https://hstspreload.appspot.com
Fix nginx startup on NanoBSD
Fix spaces and indent
fix redirurl for nginx
Include CA chain in certificate for nginx
Add nginx redirection for captive portal