Enlarge subnet bits to 128
Merge remote branch 'upstream/master'
Conflicts: etc/inc/interfaces.inc etc/inc/system.inc
remove <strong> to make consistent with all other text
Add OSPF to firewall rule protocol choices
Conflicts: etc/inc/interfaces.inc etc/inc/vslb.inc usr/local/www/interfaces.php
Ticket #1043. Check for '' and not for 'default' since this is the default value of the select.
Do not allow gateways to be selected without a direction.
Allow floating rules without direction to be created again.
Resolves #1043. Do not allow limiters in floating rules without direction. It is invalid practice and while the backend skips it the user should be warned.
Conflicts: etc/inc/filter.inc etc/inc/system.inc usr/local/www/interfaces.php usr/local/www/interfaces_gif_edit.php
Fix XSS issues
Bring in XSS id fixes from m0n0wall
Use this sort before saving, so the rule just added is sorted into the proper category like the rest.
Conflicts: etc/inc/filter.inc
Change the firewall rule generation to look for the ipprotocol tag which defines inet or inet6. This makes sure that we use ipv6 addresses and change to the correct ipv6-icmp tag.
Balance <p> with </p>
Put </ul> tags inside the same <td> since they cannot span multiple of them.
Unhide the source port options on firewall rules when they are not at the defaults.
Revert "Shows source ports when they are already defined" - this only made it so they were never hidden.
This reverts commit d886ebd6d438cf9b397face67ed4f254de661a94.
Ticket #568. Do not show the save/cancel buttons on the edit page of firewall rules if that are advanced options set.
Fix text for the source port note on firewall rules.
Fix gettext mishap/typo. Cosmetic only. Fixes #857
Shows source ports when they are already defined
Merge remote branch 'mainline/master'
Conflicts: usr/local/www/diag_smart.php usr/local/www/firewall_rules_edit.php usr/local/www/interfaces.php usr/local/www/load_balancer_pool_edit.php usr/local/www/pkg_mgr_settings.php
Use
Fix gettext on firewall_rules_edit.php
Disable protocol box on associated rules, move the message, and clean up code a bit.
Remove or simplify some (s)printf calls.
Fixes #817. Tags/Marks can be used even outside floating rules.
Enforce the interface selection on associated filter rules. Ticket #780
Ticket #780. Disable the interface selection on associated nat rules.
Checked gettext() implementation on firewall_rules_edit.php
Merge remote branch 'mainline/master' into 2_firewall
Conflicts: usr/local/www/firewall_nat_out.php usr/local/www/firewall_rules.php usr/local/www/firewall_rules_edit.php
Properly select the interfaces when displaying the edit page for floating rules that have multiple selected interfaces. Fixes #726
Don't use the association when duplicating firewall rules. Fixes #634
Corrections gettext implementation on firewall_rules_edit.php
Fixing gettext() calls on firewall_rules_edit.php
Fixing gettext calls on firewall_rules_edit.php
Revert "Implemment gettext() calls"
This reverts commit 7502ef0a698a49d9652cd3616447eb717cba707d.A lot of mistakes
Conflicts:
usr/local/www/firewall_nat.php
This reverts commit 49031495b501e4477941fa6248fe94cc698f9dcd.A lot of mistakes
Implemment gettext() calls
Implement gettext() calls
Add status/log links to Firewall rules
Allow the use of ">" in filter rule descriptions. Even whilst stripping the > before the comparison htmlentitieswill still trigger on the <. It is safe to assume here that creating any sort of html tag is unlikely. Ticket #465
Fix source input validation, saving, and the "View the NAT rule" link on linked filter rules. Ticket #586
It wasn't clear enough why source port should usually be any. Make it more clear.
check more closely for match here, to fix multiple items being marked as "selected", leading to the wrong interface being selected.
Use common function to return gateway array so consinstency is preserved around code.
Ticket #568. Programatically decide if to show an advanced button or the value if non default.
Implement tcp flags and sloppy state on the GUI.
Fix indent
Add a new alias type, urltable, which downloads a file of IP/CIDR addresses and loads them into a pf persist table instead of importing the addresses directly into a traditional alias. This allows for using huge tables of addresses that would otherwise break the GUI and/or fail to load into pf. Part of ticket #512
Block source edit on associated firewall rules
Initialise the correct array if empty.
fix text
Redo most of the ppp interface handling to be consistent with the other mpd5 configurations. This way there is no more special handling for ppp around.
Ticket #14. Implement an advanced option to allow disabling autogenerated reply-to. Submitted-by: Dan Swartzendruber
Ticket #136.
Fix associated nat rules.Now both the filter rules and the nat ones contain a associated-rule-id tag which helps link the items together.The API to use for this is in itemid.inc.
All the issues should be solved now.
add PPP support to dynamic gateways
shift this around a little, put the dynamic gateways beneath the static ones, not beneath the gateway groups. Also show the dynamic gateways correctly ($ifent not $if)
clean up text
fix reject rules to the same as in 1_2. return is valid on all rules
fixup text
Add missing PF 'max' tracking option , and clarify message for 'max-src-nodes'
Add patch from lietu (Janne Enberg). Ticket #136
1) Multiple NAT rules can be assigned the same filter rule-> Fixed, added assigned-nat-rule-id to filter rules to keep track of the assignment
2) when removing the link (i.e. switching to "pass" or "none", the linked rule isn't deleted (should it be? probably yes)...
Add listtopic and extra save button.
Ticket #146 Fix typos ansd copy/pasto errors.
Oops, unbreak td
Fixup Source OS box
Minor formatting + hide Source OS behind Advanced box
Style / formatting changes
Show advanced option instead of Show state for every entry
Hide layer7 and in/out behind advanced button
Make xmlrpc sync, schedule, gateway, in/out, ackqueue and layer7 all advanced type buttons simplifying the firewall rule edit form for 99% of the cases
Resolves #146 Add propper validation on alias usage. Allow port type aliases only on port side and other aliases in ip specifications and similar. Introduce a new function is_portoralias to ressemble the is_ipaddroralias to check for the cases.
Ticket #146. Fix the autocompletion of ports aliases only for the ports and host/network aliases for the src/dst. Checking if a valid alias is entered end if it is a correct one for this box seems like to much overhead and work for this.
Seperate diffserv box into a <select> dropdown. Hide item behind advanced button. Move down one section near other advanced items. Resolves #60
Diffserv code point is not a reqired field
Include filter.inc and shaper.inc
Add support for 'max-src-conn' PF feature, to limit the maximum number of established connections per host
Fixes Issue #142
Add pfSense_BUILDER_BINARIES: and pfSense_MODULE:. Adjust Copyright to include 2009 on files that I have asserted (C) on
Pretty sure ruleid should be a hidden field.
Merge branch 'master' of git://rcs.pfsense.org/pfsense/automatically-managing-firewall-rules-with-nat-rules into review/master
Add avanced item indicator which will show when hovering the mouse over the icon which advanced item has been enabled
Added support for automatically managing firewall rules with NAT rules.
Fix typo its tagged and not tag.
Reported-by: mileswuPatch-extracted-from: https://rcs.pfsense.org/projects/pfsense/repos/mainline/merge_requests/30
Prevent users to misconfigure layer7 rules for now.(Ther are supported only on pass rules)
Fix some typos.
fix some other shortcuts provided by the GUI.
This commit fixes even Bug #27
Add l2tp
Fix interface list usage
WARN: Please ask before introducing old code on what have changed!