Add tracking to enableallowallwan and change to single rule. Ticket #8353
Add tracker ID to firewall rule list and edit page. Implements #8348
Fix #7972
Rework the way Captive Portal vouchers are synchronized on HA:
- When voucher use is enabled on primary, do the same on secondary- When voucher rolls are created/modified/deleted, sync to secondary- When voucher is used, disconnected or expired, sync it in both...
Rename the variables on the rest of DHCP functions.
Remove some dead code, rename variables.
This function is not consumed only by WAN, so use more neutral names to avoid any assumptions.
Fix my broken code, continue would not work from another loop.
Filter vm.pmap.pti entries on loader.conf when necessary.
https://forum.pfsense.org/index.php?topic=144390.msg786182#msg786182
Add GUI support to display and set the PTI state.
Update translation files
Regenerate pot
Merge pull request #3892 from al-right/master
Merge pull request #3906 from phil-davis/system_authservers-authentication-containers-01
Merge pull request #3907 from phil-davis/auth-server-test-output-01
Trim domain for learned DNS entries. Ticket #6847
If the CN is already an FQDN on the given domain, this prevents thedomain from being present in the record twice (e.g. host.example.comas a CN leads to records for host.example.com.example.com)
Do not wipe the existing file contents. Return the actual data.
Fix the variable name.
Pointy-hat to: me
Report correct auth server host when testing LDAP auth server
Mark authentication containers label as required field
Fix #7469
Sort users / groups alphabetically on config.xml
Be more verbose about users/groups sync
Fix typo
Remove duplicate entries on loader.conf and loader.conf.local.
Update the copyright year in a couple of missing points.
Update the copyright year on login page.
Ticket: #8331
Break some long lines
Fix #8317
Verify if pipes were created in current system before attempt to removethem
Do no try to lock when file doesn't exist
Implement dry_run mode in captiveportal_free_dnrules()
To be used later on a fix for ticket #8317 just return the arraycontaining pipes to be removed without removing them fromcaptiveportaldn.rules
Fixing filename. Thanks Renato
Allow Dual Stack IPsec P1 interface. Fixes #6886
Allow "Both" to be selected for IPv4/IPv6 on IPsec P1, in the config use both addresses as "left =" if they both exist.Some cases where a single address was assumed (e.g. ping hosts) default to using the first address....
Consider IPv6 for IPsec bypasslan. Fixes #8321
Merge pull request #3905 from pulcov/master
Merge branch 'master' of gitlab.netgate.com:pfsense/pfsense
Correct variable used to populate the IPv4/IPv6 selector on status_logs_settings.php. Fixes #8323
Fixed #8322 to accommodate case where no VIPs are defined
Do not apply a DHCP static mapping uniqueness test for hostnames or IP addresses. The DHCP daemon allows the entries to be duplicated provided they have unique MAC addresses or identifiers. Fixes #8220
Revert "Add cxgbe to ALTQ list. Fixes #8314" Apparently it's not supported by the driver, despite what the man page claims.
This reverts commit 40f2c5d909220dd5aaa23515d25a04916438304d.
Add cxgbe to ALTQ list. Fixes #8314
Fixed #8091 Force Integers in GUIIt will use the ceil() function to always use the ceiling after loading a config.Also onchange of bandwidth will call the ceil function to put in a whole number.
Fix config version # arrising from merging older PR
Merge pull request #3711 from PiBa-NL/20170427-ipsec-multiple-P1-algo
Add DDNS client update option to DHCPv4 configuraiton
Fix #8290
On d9b05eb490a the way aliases containing a mix of IP address and FQDNsworks has changed and all items were added to filterdns to make surethe pf table created would be persistent. The flag $use_filterdns wasbeing set only when the array item used to control didn't exist yet....
Fixed #8226 Check for MAC duplicates
loop through auto pass MAC addresses for duplicatesbefore automatically adding a pass thru.
Fixed #8303
Fixed #8301 CSRF Enabled on all widgets.
Enabled CSRF on all widgets.
Silence warnings generated by sysctl to standard error.
Merge pull request #3895 from PiBa-NL/20180106-openvpn-fix-subnet31
Update OpenVPN wizard with current protocol selection options. Fixes #8298
Add input validation to traffic_graphs_widget.php and fix JS encoding. Fixes #8302
Re-enable CSRF protection in traffic_graphs_widget.php. Ticket #8301
Fix a potential encoding issue in diag_system_activity.php. Fixes #8300
Fix dyndns update with gateway group
Fixed #8297 If user has no page permissions it will automatically log them out so they don't get stuck on the logout page
Improve the CARP description.
No functional change.
Merge pull request #3830 from PiBa-NL/20170925-pppoe-on-carpmaster
Fix syntax error in interfaces.inc
Do no configure the virtual IPs if the parent is disabled.
Ticket #6677
off-by-one fix in an error text.
Fixed #8296
Fixes a bug in primary DHCPD host detection for failover.
Properly detect the master host based on CARP skew at setup time when used with HA.
Merge pull request #3862 from marjohn56/pfsense
Fix get_cpu_crypto_support() to not overwrite $cpucrypto_type.
fix typos
Merge pull request #6400 from loonylion/master
Merge pull request #3898 from alistair23/alistair/master
Change sshd compression to 'delayed' to match current FreeBSD default. Fixes #8245
Add an update source control to RFC2136 dynamic DNS updates. Implements #8278
Add localhost to list of interfaces for packet capture. Implements #8257
Add ospf6d to routing logs.
Merge pull request #3889 from kangtastic/master
Merge pull request #3899 from PiBa-NL/20180111-bootup-step-messages
Merge pull request #3900 from PiBa-NL/20180111-pf-busy
Follow-up to syntax, file order and other changes
[services_dyndns_edit] Clarify use of @ for Cloudflare
Add GUI prompts corresponding to #7357 that allows users toenter @ for the hostname, and have it replaced with an empty hostname.
Signed-off-by: Earl Chew <earl_chew@yahoo.com>
Fix certificate SAN input validation so it does not improperly allow an IP address when FQDN is selected. Fixes #8275
openvpn, clear route also for /31 for ptp interfaces
pf, device-busy, add another item DIOCADDRULE to the list of results to retry
bootup, add information about what bootup step is being done
Fixed #8268
Add an option to push a gatewy address to bridged tap clients. Implements #8267
upgrade_config.inc: Remove all restore_rrd() calls
Commit 0869605131ba3e5d7e502af7a799e54f27d2e7f6 removed therestore_rrd() function. To avoid errors when restoring older configsremove all callers to it.
Bug: https://redmine.pfsense.org/issues/8231Signed-off-by: Alistair Francis <alistair@alistair23.me>
Fixed #8266 by removing JS alerts
re-adding changes made to fix bug#6400, includes fixes for bug#8222 and bug#8223 that were introduced with the initial commit of this code.
original pull request was #3868
Change get_interface_subnet() to use configured value if available.
openvpn, fix the ifconfig ip1 ip2 when subnet /31 is used
Encode rangedescr before display in firewall_schedules.php. Fixes #8259
Fix foreach error on hosts that have no dyndns entries.
Update the Copyright notice for pfSense.
Merge pull request #3893 from JoeriCapens/ddns-rfc2136-algorithm-choice
Add keyalgorithm input validation.
Delete keytype field from config, remove unnecessary file cleanup.
Change how SANs are generated from the CN, considering that not all CNs will produce a valid SAN. Fixes #8252
Do not make a bypasslan IPsec config block when it should be disable/empty. Fixes #8239
Update language selections
Remove old dnssec-keygen style files during upgrade
Add RFC 2136 Client key algorithm choice. Implements #8244
Use consistent variable order, remove unused variable.