Project

General

Profile

Download (13.7 KB) Statistics
| Branch: | Tag: | Revision:

# Date Author Comment
42f4bbd9 06/15/2010 09:24 PM Ermal LUÇI

Ticket #655. Call vpn_ipsec_configured in all cases it knows how to handle enabled/disabled ipsec setting.

e85858df 06/01/2010 07:35 PM Jim Pingle

Remove Logs tab from OpenVPN, as it is no longer needed.

6deedfde 06/01/2010 07:33 PM Jim Pingle

Add status/log icons to IPsec pages.

6894b25a 05/13/2010 08:36 PM Jim Pingle

Add PSK tab to all IPsec pages, it was missing from some.

c443bb14 04/19/2010 10:52 PM Scott Ullrich

Show p2 items correctly (add missing td's)

fa03b3c1 12/13/2009 05:26 AM Pierre POMES

Remove some sort of extra space/break in ipsec screen. Ticket #211

895445e5 12/08/2009 03:45 AM Scott Ullrich

Remove ph2 add button. It is shown when needed

83221d3b 12/08/2009 03:42 AM Scott Ullrich

Pass ph1ent

afcda0d0 12/08/2009 03:38 AM Scott Ullrich

Make g a global and pass ph1ent

fbc8af8f 12/08/2009 03:23 AM Scott Ullrich

Replace dollarsigndollarsign with dollarsign

4494cf6a 12/07/2009 11:50 PM Chris Buechler

fix typos

7a927e67 11/22/2009 12:28 AM Scott Ullrich

Require filter.inc and shaper.inc

483e6de8 11/21/2009 09:08 PM Scott Ullrich

Rework includes/require. This saves about 4 megabytes.
Simplify get_memory(). Tested on mips/i386

09725e76 11/08/2009 03:21 AM Chris Buechler

add links to IPsec logs under IPsec status and other pages

c20acc35 11/08/2009 02:34 AM Scott Ullrich

Kill racoon when disabling IPSEC. Restart it if re-enabled.

abcb2bed 10/01/2009 03:19 PM Ermal Luçi
  • Convert carp/vips code to behave the same as other interfaces.
  • Make optimizations around it.
  • Make sure when we reload teh underlying interface we reload carp too.
  • Some fixes around the code.

Reviewed-by: scott@ and billm@

fe4397d2 09/23/2009 10:16 PM Scott Ullrich

Nuke sorting it apparently changed the ID association

bd875499 09/22/2009 09:18 PM Eirik Oeverby

WIP: IPSec changes

3b60a138 09/22/2009 09:10 PM Eirik Oeverby

WIP: fixing IPSec screens/config

53d4b84d 09/11/2009 07:44 PM Scott Ullrich

Sort items

0f84b741 08/23/2009 07:16 PM Scott Ullrich

Include functions.inc which will then include ipsec.inc

a03d18c0 08/23/2009 06:58 PM Scott Ullrich

Unbreak ipsec!

4da0e32a 07/15/2009 09:20 AM Seth Mos

Fix incorrect double click edit link for phase2 records.
The link referred the phase2 edit page with the phase1 id which was incorrect

a368a026 06/30/2009 05:15 PM Ermal Luçi
  • Reorganize the 'apply' button infrustructure in the GUI.
    - Present three new functions is/mark/clear_subsystem_dirty('name_of_subsystem'). This makes easier to create such things without needing to introduce new globals.
    - Convert all pages to the new infrustructure...
72bd8df5 06/18/2009 07:24 PM Ermal Luçi

Remove some unneccessary calls to filter_configure() they just give recursivity!

0027de0a 05/08/2009 06:42 PM Ermal Luçi
  • Create two new functions lock($subsystem)/unlock() to have more reliable locking using semaphores.
    This function can sleep till the resource is free and can help find not well behaving code.
  • Remove most of the config_lock/config_unlock logics on the whole scripts/pages it is an abuse of this....
04b46591 04/22/2009 09:21 AM Ermal Luçi
  • Do not apply the settings directly from hitting the SAVE button show the apply settings option for consistency with other pages.
4b96b367 03/15/2009 06:18 AM mgrooms

Modify IPsec code to allow for transport mode. All existing configurations are
marked as tunnel for backwards compatibility. There are problems with the spd
read code which Will likely choke on transport entries. We can fix this later.

87e07f52 03/15/2009 03:47 AM mgrooms

Move the IPsec pinghost option from phase1 to phase2. Correct some
bugs that were preventing the local address from being selected.

73fbece8 03/12/2009 08:06 AM mgrooms

Migrate IPsec certificate management to centralized system.

fabd8cdb 03/12/2009 07:30 AM Seth Mos

Make sure the field names and description match up

647c7c48 01/16/2009 03:02 PM Seth Mos

Add initial support for granular IPsec SPD changes.

04831121 12/07/2008 06:50 AM Bill Marquette

Make table headers reflect reality

96162327 10/26/2008 12:32 AM Scott Ullrich

Show header even when no records exists so the lonely + sign doe snot look
strange. This makes this page more consistent with all other pages when
no configuration records exist.

b9056c39 10/12/2008 08:19 PM Scott Ullrich

Use listbg

99bbd213 09/16/2008 06:04 PM Matthew Grooms

Fix a few minor problems with the IPsec configuration interface. Make sure
we don't copy the ikeid when duplicating a phase1 entry. Simplify the code
that deletes all associated phase2 entries when a phase1 is deleted. I was
and still am learning the finer points of php.

a0d4c5da 09/03/2008 06:20 PM Matthew Grooms

Correct all double click action urls in the main IPsec config screens.
Reported by Seth.

c82c89ac 08/29/2008 12:16 AM Scott Ullrich

Leave $j alone

b2a189a8 08/29/2008 12:15 AM Scott Ullrich

Show correct count of phase2 entries.

e1b74950 08/29/2008 12:11 AM Scott Ullrich

Show how many phase 2 entries are hidden.

Suggested-by: mgrooms

667725ce 08/24/2008 12:30 AM Matthew Grooms

Use additional tables to improve the formatting of several IPsec checkbox
configuration options.

f7ccb376 08/23/2008 11:20 PM Scott Ullrich

Minor nitpick, change - to +

abd378bf 08/23/2008 11:03 PM Scott Ullrich

Allow wrapping of phase entries.

7099acf8 08/23/2008 10:55 PM Scott Ullrich

Rename button to , we already show " Show Phase 2" behind it.

ffbe9dae 08/23/2008 10:33 PM Scott Ullrich

Style boxen better.

0a95b653 08/23/2008 10:18 PM Scott Ullrich

Add a Phase2 button and hide the phase 2 settings by default. Clicking the
button will unhide the phase2 block similar to our "Advacned" buttons on
various screens.

5bba8dfb 08/23/2008 09:43 PM Scott Ullrich

Begin reformatting IPSEC screen. Give a bit more padding, shift
over a little and turn bacgkround to grey instead of red.

fce61eda 08/23/2008 07:32 PM Matthew Grooms

Disallow the copy option for mobile phase1 entries. There can be only one.

6b07c15a 08/01/2008 06:30 AM Matthew Grooms

Rewrite the pfsense privilege system with the following goals in mind ...

1) Redefine page privileges to not use static urls
2) Accurate generation of privilege definitions from source
3) Merging the user and group privileges into a single set
4) Allow any privilege to be added to users or groups w/ inheritance...

3462a529 07/13/2008 11:28 PM Matthew Grooms

Introduce a new and improved version of IPsec mobile client support. The
mobile client tab is now used to configure user authentication (Xauth) and
client configuration (mode-cfg) options. User authentication is currently
limited to system password file entries. This will be extended to support...

a93e56c5 07/11/2008 01:55 AM Matthew Grooms

Overhaul IPsec related code. Shared functions have been consolidated into
a new file named /etc/ipsec.inc. Tunnel definitions have been split into
phase1 and phase2. This allows any number of phase2 definitions to be
created for a single phase1 definition. Several facets of configuration...

3e321df2 06/21/2008 05:38 PM Ermal Luçi

Continue interface improvements

6de5d673 06/05/2008 09:39 AM Seth Mos

Remove static route on deletion

69e108df 01/08/2008 02:10 AM Chris Buechler

touch up text

Ticket #1569

d88c6a9f 11/16/2007 12:48 AM Scott Ullrich

Switch over to array style page titles. Obtained-from: m0n0wall

518887aa 10/14/2007 02:06 AM Seth Mos

Fix missing tag.

b8a4d945 10/01/2007 10:18 PM Scott Ullrich

Do not show Apply button if IPSEC is disabled.

Ticket #1467

24e53389 06/05/2007 12:22 AM Scott Ullrich

Revert previous commits now that IPSEC is reloading correctly.

807e1c0e 06/02/2007 08:58 PM Scott Ullrich

Call vpn_ipsec_force_reload() when user clicks "Save"

1256bba5 05/29/2007 08:03 PM Seth Mos

add closing tr tag

127bd0ce 05/10/2007 02:29 PM Seth Mos

Add missing closing td tag.

d415d821 05/08/2007 10:09 PM Seth Mos

Add a plus button on the top header of these pages.
This to make it easier on large configurations.

33a0c37d 04/07/2007 07:24 PM Scott Ullrich

Remove IP Compression box. A lot of further refactoring is going to be required to make this work and we do not have enough time to do so before 1.2 beta.

91f1378c 04/06/2007 05:55 PM Scott Ullrich

Both -HEAD and -RELENG_1 have had a hidden feature to allow IPSEC compression. Add a checkbox to the screen to allow this hidden value to be toggled.

b7aa32c0 03/18/2007 03:40 AM Scott Ullrich

Show CARP IP in brackets () instead of a - which could be confusing

d6743cb0 03/18/2007 03:37 AM Scott Ullrich

RIP confusing Failover IPSEC tab. We now allow CARP interfaces per VPN

210b0258 03/18/2007 02:49 AM Scott Ullrich

Unbreak IPSEC editing

87e72a58 03/18/2007 01:58 AM Scott Ullrich

Allow CARP addresses to be the IPSEC endpoint.

This cleans up the code GREATLY and removes the FAILOVER IPSEC hack.

574a2b47 09/29/2006 11:56 PM Scott Ullrich

Call filter_configure() instead of /etc/rc.filter_configure from shell (extra exec call)

e54d4de6 01/02/2006 11:46 PM Scott Ullrich

Remove #!/usr/local/bin/php

3fdb04a6 12/26/2005 02:11 AM Scott Ullrich

Sync filter after deleting a tunnel

c62799be 10/18/2005 03:51 PM Scott Ullrich

MFC 6957
Specify 'id' to the edit screen!

fdc24e47 08/10/2005 03:28 AM Bill Marquette

Allow for doubleclick editing

c55a8ab9 07/30/2005 01:30 AM Holger Bauer

some crosslinking to "fly" from corrosponding setting to logs, diags and back

3851094f 07/24/2005 10:35 PM Scott Ullrich
  • Drop kick reboots bye bye
677c0869 07/21/2005 12:17 AM Erik Kristensen

updating files to use theme images
removing images from /usr/local/www
adding specific images into the correct theme directories

83c5299b 07/10/2005 10:23 PM Scott Ullrich

Move failver vpn settings to ipsec area in a tab

Suggested-by: hoba

f7049b0b 07/05/2005 05:42 PM Scott Ullrich

After applying the settings, reload the filter in the background to trigger sync operations, etc.

0f10aee4 07/04/2005 04:24 PM Bill Marquette

Last of the bottom round fixes
Turn top rounding back on now that those are all fixed

b128368a 07/03/2005 05:04 PM Bill Marquette

Use $pgtitle

a0509c58 07/03/2005 01:34 AM Scott Ullrich

Consolidate Apply changes button into the info box on the right hand side

323d040b 07/02/2005 08:51 PM Scott Ullrich
  • Fix diagnostics logging tab menus
  • Curve bottom of grey areas if needed
  • Curve tabs
  • Cleanup
4df96eff 07/02/2005 04:38 AM Scott Ullrich

include head.inc and round corners on tabs

4b8fffef 06/26/2005 02:43 AM Scott Ullrich

Set page title

c40fef82 06/21/2005 11:59 PM Scott Ullrich

Use white found color

d797cd0c 06/21/2005 11:57 PM Scott Ullrich

Don't use an array for page titles.

Switch back to pfSense style

422f27c0 06/21/2005 11:39 PM Scott Ullrich

Add back header

e2411886 06/21/2005 11:30 PM Scott Ullrich

Import m0n0wall ipsec cert code

5f9c0e68 04/12/2005 07:30 PM Bill Marquette

doubleclick to edit

a339c26a 04/04/2005 01:36 AM Bill Marquette

icon placement

b46bfcf5 03/27/2005 10:31 PM Bill Marquette

Add $Id$ tag

97f296de 03/17/2005 04:51 AM Bill Marquette

unused wan variable

f7ad479f 03/03/2005 02:32 AM Scott Ullrich

Backout this commit until I can further control the outgoing ip.

3216d4ba 03/03/2005 02:16 AM Scott Ullrich

Racoon interface listen selection

3da9a135 01/25/2005 09:32 PM Scott Ullrich

Add IPCOMP (IP Compression) support to IPSEC VPN's

cfc707f7 11/19/2004 11:12 PM Scott Ullrich

Add Copyright to each file that we have touched so far and re attribute the file to Manuel Kasper such as:

Copyright (C) 2004 Scott Ullrich
All rights reserved.
originally part of m0n0wall (http://m0n0.ch/wall)
Copyright (C) 2003-2004 Manuel Kasper <>....
bafc1e3f 11/19/2004 09:40 PM Scott Ullrich

Prefer older IPSEC SA's option.

dacc4f59 11/19/2004 09:24 PM Scott Ullrich

add support for net.key.preferred_oldsa and add a checkbox on IPSec screen

f0fe3d30 11/19/2004 06:45 PM Scott Ullrich

Convert description font color to white

5b237745 11/07/2004 03:06 AM Scott Ullrich

Initial revision