Add switch config to status output. Implements #8525
(cherry picked from commit 03ce110725129b5f35c62f4985f631a1e3b5d046)
Fix reference to non-existent variable in IPsec P1. Fixes #8543
(cherry picked from commit ac976b7e061f19d108a6f60a57ce6866dd0a9499)
Do not disable rekeying by default on IPsec P1 entries. Fixes #8540
Fix crash reporter download button display when there are only PHP errors, no textdumps.
(cherry picked from commit 3db214ddb99bea076c964bd90538d5975287456b)
Fix crash reporter "submit" wording (can't submit anymore!)
(cherry picked from commit ca06add8b4a61c8ad020e97cb55471bf52c0929c)
Rework crash reporter page so users can download the data files directly rather than submitting to a server.
Store the old LAN IP address and temporarily add it to the alt hostnames to work around a referer check issue in the setup wizard. Fixes #8524
(cherry picked from commit 21f630def08b5505f5504606958ead93dbb9358d)
Redact some more info from the status.php output. Fixes #8394
(cherry picked from commit 21fdf72c0b3caf960512373ad903fe03ccc578ff)
Bug #8469 - Modify show_advdns function pageload conditions to allow for ddnsdomainkeyalgorithm default value, i.e., hmac-md5
(cherry picked from commit 3e1b29c7ba3a586cb94268d76ecb78874c2f5007)
Prevent pressing Enter in the filter field of diag_pftop.php. Fixes #8494
(cherry picked from commit e2654541019b59f544cda76fb0e63ea7a4a5d040)
Correct pconfig_to_address() so its logic matches the input validation used for checking port numbers. Fixes #8410
(cherry picked from commit 885e9b2a1df256f4d50367f96b4d39c1106b2448)
Cleaner fix for Bug #8447: Cannot change Gateway in Firewall > Rules
(cherry picked from commit 96fa3e3616c1b46cbd23593df8c08cceb23a61e6)
Fixed #8447
(cherry picked from commit 1d523d1e4e7b16519ed3fd9dfb9e6b4dd84b4285)
Replace incomplete list of pf reserved words with a list of pf tokens pulled from the pf source. Fixes #8445
Also, move the list to a central location so it does not need to be duplicated.
(cherry picked from commit b20cfb55125207e21d81a29a107ea77230fbc7fb)
Only alter users/groups via XMLRPC when the primary is set to do so. Fixes #8450
(cherry picked from commit be4693a1e79d89cfc6ea797fcb7fb56b5052c26d)
Fixed #8486 via htmlspecialchars()
(cherry picked from commit 687e50fd439179ba61a518c7b68c91b168e56e50)
Fixed #8485 by POSTing fixed string and looking up the required file name
(cherry picked from commit c29a1fe90f89c1ae392df2ef2092207e282ddc37)
remove whitespace - pt. 2
(cherry picked from commit 523849d312daae129a287f9cf43cbdeadafd1fcb)
Fix #8417
- Changed default value for Maximum Table Entries to 400000 in order to make bogonsv6 to work- Added code to upgrade config and set default value on systems where it's not defined- Changed default config to match new default and version 18.0...
Remove Whitespace
I'm aware this is a very large commit. Let me know if you'd rather have it broken down by file type (ie: PHP/shell scripts) so it would be easier to review.
-RJ
(cherry picked from commit 179377b01cc93b0842e07b3865df9812608c8f2c)
Ensure the OpenVPN wizard protocol is valid for use in firewall rules. Fixes #8391
(cherry picked from commit 5ac478f23b69d42b29ce7f960ba48b2f425f0754)
Make copyright notice downloadable from serverTrigger cpyright notice on completion of setup wizard
Don't read picture file if it does not exist
Initial steps for 2.4.3-RC
Revise picture widget to store inamge on file system, not in XML config
Fix case where $_POST['if'] == 0 in sprint_info_box()
Deduplicate build_repo_list() and get_repo_name()
Merge pull request #3911 from PiBa-NL/20180304-igmp-disable
Merge pull request #3910 from PiBa-NL/20180304-fix-log-link
igmp, Add option to disable the igmp service
fix log link
small addition to augment jim-p's 58a2ba621c390362170aa2e377e4b41c8fdce1c6
Replace some hardcoded paths.
Add missing firewall rule tracker info to automatically generated rules. Fixes #8353
Add tracker ID to firewall rule list and edit page. Implements #8348
Fix #7972
Rework the way Captive Portal vouchers are synchronized on HA:
- When voucher use is enabled on primary, do the same on secondary- When voucher rolls are created/modified/deleted, sync to secondary- When voucher is used, disconnected or expired, sync it in both...
Add GUI support to display and set the PTI state.
Update translation files
Regenerate pot
Merge pull request #3892 from al-right/master
Merge pull request #3906 from phil-davis/system_authservers-authentication-containers-01
Merge pull request #3907 from phil-davis/auth-server-test-output-01
Trim domain for learned DNS entries. Ticket #6847
If the CN is already an FQDN on the given domain, this prevents thedomain from being present in the record twice (e.g. host.example.comas a CN leads to records for host.example.com.example.com)
Report correct auth server host when testing LDAP auth server
Mark authentication containers label as required field
Fix #7469
Sort users / groups alphabetically on config.xml
Fix typo
Update the copyright year on login page.
Ticket: #8331
Allow Dual Stack IPsec P1 interface. Fixes #6886
Allow "Both" to be selected for IPv4/IPv6 on IPsec P1, in the config use both addresses as "left =" if they both exist.Some cases where a single address was assumed (e.g. ping hosts) default to using the first address....
Correct variable used to populate the IPv4/IPv6 selector on status_logs_settings.php. Fixes #8323
Do not apply a DHCP static mapping uniqueness test for hostnames or IP addresses. The DHCP daemon allows the entries to be duplicated provided they have unique MAC addresses or identifiers. Fixes #8220
Merge pull request #3711 from PiBa-NL/20170427-ipsec-multiple-P1-algo
Add DDNS client update option to DHCPv4 configuraiton
Fixed #8303
Fixed #8301 CSRF Enabled on all widgets.
Enabled CSRF on all widgets.
Silence warnings generated by sysctl to standard error.
Update OpenVPN wizard with current protocol selection options. Fixes #8298
Add input validation to traffic_graphs_widget.php and fix JS encoding. Fixes #8302
Re-enable CSRF protection in traffic_graphs_widget.php. Ticket #8301
Fix a potential encoding issue in diag_system_activity.php. Fixes #8300
Merge pull request #3830 from PiBa-NL/20170925-pppoe-on-carpmaster
Fixed #8296
Merge pull request #3862 from marjohn56/pfsense
Fix get_cpu_crypto_support() to not overwrite $cpucrypto_type.
Merge pull request #6400 from loonylion/master
Add an update source control to RFC2136 dynamic DNS updates. Implements #8278
Add localhost to list of interfaces for packet capture. Implements #8257
Merge pull request #3889 from kangtastic/master
Follow-up to syntax, file order and other changes
[services_dyndns_edit] Clarify use of @ for Cloudflare
Add GUI prompts corresponding to #7357 that allows users toenter @ for the hostname, and have it replaced with an empty hostname.
Signed-off-by: Earl Chew <earl_chew@yahoo.com>
Fix certificate SAN input validation so it does not improperly allow an IP address when FQDN is selected. Fixes #8275
Fixed #8268
Add an option to push a gatewy address to bridged tap clients. Implements #8267
Fixed #8266 by removing JS alerts
re-adding changes made to fix bug#6400, includes fixes for bug#8222 and bug#8223 that were introduced with the initial commit of this code.
original pull request was #3868
Encode rangedescr before display in firewall_schedules.php. Fixes #8259
Update the Copyright notice for pfSense.
Merge pull request #3893 from JoeriCapens/ddns-rfc2136-algorithm-choice
Add keyalgorithm input validation.
Change how SANs are generated from the CN, considering that not all CNs will produce a valid SAN. Fixes #8252
Add RFC 2136 Client key algorithm choice. Implements #8244
Use consistent variable order, remove unused variable.
Replace Dynamic DNS dnssec-keygen style files with simpler ddns-confgen style file.
Merge pull request #3887 from JoeriCapens/dhcp-ddns-algorithm-choice
ipsec, multiple phase1 ciphers, make use of 'repeatable' group
ipsec, allow configuration of multiple ike phase1 encryption ciphers (algo/bits/hash/dh)this is useful for mobile users that need to connect with different operating systems. This way there is no need to find a single commonly supported weaker cipher.
Fix the unnecessary 'RAM Disk has settings has changed' reboot every time the miscellaneous settings are saved.
Revert "Fix a bug in interfaces.php that will cause a failure on first 'Save' of 'OPT1' with some hardware configurations."
This reverts commit 373513a56140215c93282252186a938b7cefcf47.
Merge pull request #3792 from PiBa-NL/20170731-status_queues-realtime
Merge pull request #3891 from miken32/patch-1
Fixed #8129 Updated to show timezones that have half hour increments i.e. asia/kolkata
Revert "Merge pull request #3868 from loonylion/master" Caused issues reported in https://redmine.pfsense.org/issues/8223This reverts commit 74c55258b21ada7a542965c2470fbaa45ce19689, reversingchanges made to 2acb4025ee7fef074a67d1021a5e62a0aff9fd37.
Optimze ICMP description processing
Fixes #8219Escape single quotes when they arise from ICMP description translations
Fixes #7413: Some DHCPv6 leases are not displayed in the GUI
. Better handling/parsing of ISC dhcpv6 leases file and removal of unnecessary properties.. Experimental Pools/failover handling in the parsing of DHCPv6.. Cleanup on the Status DHCVPv6 Leases page....
Fix input field help texts
make inputs a bit wider for fahrenheit
address comments
fix copy/paste error