Routing, actually show the "(default)" mark on the default route as it is present on the OS
Most obvious problem was when manually switching from WANGW1 to WANGW2 it showed both as (default) after saving the setting and before applying it. Also after applying it would require another page refresh to show the updated situation. Also add a little information box that shows what (Default) means for the user.
Fix saving IPv6 over IPv4 tunneling NAT setting. Fixes #9264
Convert rc.disable_hdd_apm to use camcontrol
Update copyright notices to 2019. Happy New Year
Change alias name/pf keyword check to be case insensitive. Fixes #9231
Ensure IPsec P1 entries have a 'protocol' value. Fixes #9207
#9096 - updated login title
Init filter rules in firewall_nat.php. Fixes #9193
Merge pull request #4019 from GrantSheehan/master
Alternate swap device location tactics. Issue #9182
Fix nginx resolver handling when a cert needs OCSP stapling. Fixes #9160
Rework cert keylen/digest validation. Fixes #9180
Fix DigitalOcean DynDNS client
Fixes the check on the return value since it's been updated to useHTTP/2 syntax. Also adds logic to allow using `@` to denote updating theroot domain A record as well.
Fixed regression where calling station id was removed from openvpn
Fix array init in setup_wizard.xml. Fixes #9170
Fix NPt validation to allow single addresses. Fixes #9163
Add Korean to the list of available languages
Update translation files
Regenerate pot
Do not call interfaces_vlan_configure() every time an interface is edited in GUI.
This is just necessary when a parent interface is changed and we have to propagate the changes to all clones (MTU, FLAGS and others).
Add a logic to detect when a parent interface is changed and only then call interfaces_vlan_configure()....
Make the WF2Q+ the default scheduler for the dummynet limiters.
The WF2Q+ was the default scheduler in previous versions, it is well tested and support dynamic queues.
Add a note for the FIFO scheduler to make clear that it does not support dynamic queues (by design) and as such, it is working as intended....
Allow no username for FreeDNS-v6
Also include that and Digital Ocean in the help text.
Fix #9144: Init array before use
Fix #9121: Initialize arrays to prevent PHP 7 errors
Minor fixes related to #9121
Fix #8937: Show hwaddr for LAGG members
Fix #8465: Preserve default gw when switch to BACKUP
interfaces_carp_set_maintenancemode() calls interface_carp_configure()to each configured CARP and it ends up reconfiguring completely theinterface when it's not necessary.
Add a new parameter $maintenancemode_only to interface_carp_configure()...
Break long lines
Merge pull request #4016 from Augustin-FL/captiveportal-spelling
Merge pull request #9131 from Augustin-FL/patch-accounting
Merge pull request #4014 from Augustin-FL/captiveportal-blocked-mac
Merge pull request #4004 from NanoCaiordo/js-warnings
Fix few spelling issuesTicket #9134
Send MAC address as username if radmac is used for connecting an userTicket #9131
Init various arrays in easyrule before use with references. Fixes #9119
Remove obsolete OLSRD code. Implements #9117
Fix #9071: Make sure pkg metadata is updated when repo config changes
Remove unused variable
Simplify logic to remove packages section from backup
Redirect Blocked MAC without requiring credentials if Blocked MAC URL has been entered.
Redmine #9114
Always configure VTI routes when setting up the interface. Fixes #9116
Fix previous regex. Issue #9106
Replace '.' in radius name for strongSwan. Fixes #9106
Initialize QinQ arrays before use. Fixes #9109
Fix #9102: Suppress stream_select() undesired warnings
Fix change detection of GUI web server toggles. Fixes #9105
Add 0.0.0.0/0 to VTI left/rightsubnets. Fixes #8859
No negative feedback from testing, time for a wider push.
This helps with third party devices that require 0.0.0.0/0 to routetraffic on a VTI P2.
Add checkbox to disable SMTP SSL cert verification. Implements #9001
The default action is to validate the certificate. If the user knows theserver does not have a valid certificate (e.g. self-signed), this optionwill allow encryption to be used without validating the identity of the...
If the cert date is negative, use DateTime instead of date. Fixes #9100
Prevent CRL from using too large a lifetime on ARM. Fixes #9098
Improve handling of empty cert tags. Fixes #9099
Prevent log size from being too large, which breaks clog. Fixes #9081
Prevent PHP error when saving log config. Fixes #9095
Make MBT prefer video console. Fixes #9094
Avoids foot-shooting by restoring a config with serial enabled.
Use EFI console when needed. Fixes #8978
Update src/usr/local/www/vendor/d3/d3.min.js
Restored d3.min.js
Fix 9086: Remove gettext() from all 'Local Databases' strings
make sure to only pass valid options when supported by the browser
Removed js warnings
Skip empty IPsec P1 during upgrade to 17.5. Fixes #9083
Add help text to sshguard whitelistReduce delete button sizeChange label text to "Add address"
Fix #8864: Let users modify sshguard parameters and whitelist
Array initialization in NAT pages. Fixes #9080
Initialize package arrays before use. Fixes #9067
Add trailing slash to ECL check path for /config/. Fixes #9066
Fix processing of the 'all' group. Fixes #9051
All the 'all' group to the list of groups at the end, rather than thestart. This way it will be considered no matter how users login. Thisalso fixes issues some users had with the original changes.
Validate and protect powerd option values. Fixes #9061
Use the fw domain for DNS search when no other choices exist. Fixes #9056
Strictly define the EAP Identifier for custom local client entries. Fixes #9055
Merge pull request #3987 from PiBa-NL/20180920-apinger-wait-for-terminate
Merge pull request #4000 from Augustin-FL/patch-cp-3
Consider the "all" group when determining privileges. Fixes #9051
Rewrite /etc/rc.kill_states to use pfSense module state functions. Fixes #8554
Eliminates inaccurate shell exec/grep/preg_match syntax issues.
Fix Limiter validation check, which allows old queues to display. Fixes #8956
The AQM defaults to droptail when empty, but empty was being rejected asinvalid even though it was handled in the code.
Solve a package reinstall/start race condition. Fixes #9045
Show nvme controllers in SMART list. Fixes #9042
Revert "Show nvme devices in SMART disk list. Fixes #9042"
This reverts commit bdb6021f79f222b2c7d732436800e96cb34ea973.
Show nvme devices in SMART disk list. Fixes #9042
Fixes to ssh agent forwarding setting
ssh settings upgrade fixes
Restore the RADIUS NAS ID option to Captive Portal. Fixes #8998
Keeps the default of using CaptivePortal-<zonename> when not set,otherwise uses the value supplied by the user as with older versions.
generate a flag even if trying to perform RADIUS MAC authentication on a non-RADIUS server.
Implement login fallback for RADIUS MAC authentication
Merge pull request #3997 from Augustin-FL/patch-cp-2
Merge pull request #3996 from Augustin-FL/cp-logout-patch-1
Merge pull request #3993 from ssbarnea/master_ssh_forward
Add help.php entry for AWS VPC wizard.
Wording changes for PTI disable option. Fixes #9026
Include zone name in Nas-Identifier
Only display "you are connected" if :- Logout popup is disabled and no custom logout page is set- Logout popup is enabled and logout_id is missing
Added #8976 Allow traffic graph settings to be saved
Init schedules before use. Fixes #9009
Clean up test for CDATA tags and add common_name. Fixes #9006
Review fix.
Review fixes.
Unify and improve crash report checking. Fixes #8915
Disable display of Diagnostics->AutoConfigBackup menu item if config is restored from pfSense < 2.4.4Fixed #8959
Add top buttons if table > 24 rows