Keep command line history WebGUI option. Implements #12675
GoDaddy DDNS wildcard support. Fixes #12750
Optimize openvpn_resync_all(). Fixes #12628
Delete static default route if default gateway is NONE. Fixes #12536 #11692
CARP status check for RADVD with link-local address. Fixes #12582
Remove link-local scope from IPv6 addresses in filter_nat_rules_generate_if(). Fixes #11984
GleSYS DDNS return code check fix. Issue #12672
Add IPv6 scope to DHCP6 link-local routes. Fixes #11764
Fix Custom(v6) requestif on STF interface with Force IPv4 DNS Resolution option. Issue #12590
Skip out-of-range entries on DHCP6 service start. Fixes #12527
Generate unbound ACLs for OpenVPN CSO. Fixes #12636
Reorganize UPnP options. Todo #12624
Initialize $cmp with an empty array. Fixes #12749
IPSec widget default tab option. Feature #2456
ACB notify improvements. Feature #12724
Fix disabling dhcpd rrd stats. Issue #12710
Static IPv6 route delete fix. Issue #12728
Change ACB main link to services_acb_backup.php. Todo #12093
Update Static Route and OpenVPN alias name when the alias is renamed. Fixes #12727
Only request copyright file is ews.netgate.com is resolvable. Issue #12141
Use http_build_query() for Google Domains DDNS post data. Fixes #12754
Reorganize CARP status page. Todo #12701
Eliminate duplicate shell commands from history file. Feature #12741
Convert OpenVPN Tunnel Network to correct format on save. Issue #11416
Button to toggle selected firewall rules. Implements #2505
Display interface interrupts. Fixes #12735
Firewall logs widget fixes. Issue #6253
Make ACB columns sortable. Implements #12773
L2TP/PPTP values reset fix. Fixes #12780
Check system default setting for NAT+Proxy mode in Port Forward input validation. Issue #12319
Add OpenVPN CSO to Automatic Outbound NAT. Fixes #12792
Correct NTP service status logic. Fixes #12775
Add UPnP NAT anchors before NAT rules. Fixes #7727
One-time NTP sync from static servers NG 7447
Sanity check the clock at boot. Issue NG 7447
Delete temporary ACB files. Fixes #12745
Clean up pkg filter text before use. Fixes #12725
Also remove unnecessary echos of the value.
Default repo selector to stable repo after upgrade to Plus
Detect correct setting for custom repo and call pkg_switch_repo to be sure
Revert clearing custom repo on boot
Revert "Move custom repo removal code to a better location in rc.reboot"
This reverts commit e696b0868a495af4f19505b8261f25d6604adc8d
Correct PHP syntax error. Fixes #12713
Move custom repo removal code to a better location in rc.reboot
openvpn.tls-verify.php exec() output fix. Issue #11829
Fix ARP table interface names. Fixes #12698
ldap_get_groups() return value fix. Issue #12699
Don't del ONAT rules w/o selection. Fixes #12694
Delete all custom files if the custom repo specification is incomplete
OpenVPN validation improvements. Fixes #12677
Added validation for the following fields:
Improve OpenVPN Data Cipher handling. Fixes #12677
Fix typo in warning text.Issue #12680
Update master to 2.7.0
Revert "Update master to 2.7.0"
This reverts commit ac7ec30f39a3069d3192a73b78e5977fc834482e.
Redirect user to / if Plus and attempting to directly access system_register.php
Make registration process contingent on PLus vs CE to accommodate automatic CE -> Plus merging
netgate-ca.pem is now in the base image at /usr/local/share/${product_name}/ssl/netgate-ca.pem
Update the git protocol.
For more details see: https://github.blog/2021-09-01-improving-git-protocol-security-github/
Use /conf/restore_config_data trigger file to restore extra data on install. Feature #12518
Fix default password warning check. Fixes #12666
Use the existing function to check the password to avoid duplicatingeffort.
Improve solo weighted GW in Failover. Issue #12660
If there is only one gateway to add in a macro definition, there isno point in repeating the string based on the gateway weight.
This is a potential contributing cause to issue #12660
Disable DNS Resolver recursion if the selected outgoing interfaces are not available. Fixes #12460
Originally-By: Viktor Gurov
Revert "Use OpenVPN async client-connect, clear stale rules, add option to limit connections per user. Implements #12407 and #12332 and #12267"
This reverts commit 7aaa20d95a345c4688e8786c755c7d0433451688.
Fix "assignement" typo. Fixes #12383
Update the Copyright year of the files owned by Rubicon/Netgate.
Create port forward rules for PPPoE Servers interface. Fixes #12452
Fix SSH keys permissions on restore. Fixes #12637
Do not update Dynamic DNS if the public IP address cannot be determined. Fixes #12617
Ignore DynDNS requestif for non-custom providers. Fixes #12631
Use installer_copied_config as an extra data restore trigger. Issue #12518
Fix PHP error on backup if SSH keys do not exists. Issue #12635
Merge pull request #4550 from znerol-forks/fix/master/radvd-search-list
Merge pull request #4541 from blkeller/document-auto-nat
Merge pull request #4546 from olehfb/namedotcom_dyndns
Merge pull request #4540 from spootle/master
Minor cosmetic fix in gateway widget.
Initialize searchliststring variable in every loop iteration
Make sure $sitems (skip items) is always an array.
Add tag 1 to Captive Portal passthrough MAC table. Fixes #12615
Do not update DNS RFC2136 if the public IP address cannot be determined. Fixes #12617
Pushover notifications fix. Issue #12614
Use Trusted Store CAs for Dynamic DNS. Fixes #12589
Bounce dipinger when bringing down interface that has a gateway
Restart RADVD on interface IPv6 address change. Fixes #12604
One.com DDNS update. Issue #12352
(cherry picked from commit 9a84d3b0b5e4709a5bde99d3edf4f8e89524b602)
2.6.0 is now BETA
Init tracker ID before filter reload. Fixes #12588
syslog: fix ridentifier retrieval when looking up by rule number
pf rules no longer include the ridentifier immediately after the rulenumber but instead list it as a separate keyword like this:
@4(0) block drop in log inet all label "Default deny rule IPv4" ridentifier 1000105583...
Send Telegram/Pushover/Slack notifications on CARP MASTER event. Fixes #12584
Use notify_all_remote() in /etc/rc.notify_message. Fixes #12585
syslog: fix ridentifier retrieval
@4(0) block drop in log inet all label "Default deny rule IPv4" ridentifier 1000105583
...
Rename 'tracker' to 'ridentifier'
FreeBSD has included our 'tracker' functionality, but calls it'ridentifier' instead. Change the rule generating code to cope withthat.
IPsec RADIUS Advanced Parameters default value reset fix. Issue #12575
IPsec IKEv2 Retransmission options. Implements #12184
Revert "move firewall functions to include file"
This reverts commit a5a4cf87eeacfaf922151ce356fca1eee53762eb
Revert "Certmanager mvc"
This reverts commit 033c3ae82d20ca5760ed483cf8d0c947764b2371
Certmanager mvc
Restore RRD and extra data on bsdinstall config.xml restore. Implements #12518
Add missing upload_url to acbupload.php. Fixes #12572
Gateway/Group link fix on the firewall rules page. Issue #12555