Project

General

Profile

Download (31.1 KB) Statistics
| Branch: | Tag: | Revision:

root/usr/local/www/vpn_ipsec_phase1.php @ 310a9d7b

# Date Author Comment
dd5bf424 11/12/2010 04:36 PM Scott Ullrich

Fix XSS issues
f2a86ca9 10/19/2010 06:19 PM Jim Pingle

Rename 'name' to 'descr' for CA, Certificates, and CRLs, to gain CDATA protection and standardize field names. Ticket #320.
0a7c9c8e 10/11/2010 05:36 PM Jim Pingle

Fixup comments a little.
99642234 10/11/2010 05:34 PM Jim Pingle

Correct and cleanup this input validation logic for IPsec Phase 1 PSK/Cert config. In some cases the test was not being evaluated as expected.
b4e6524c 09/01/2010 07:26 PM Jim Pingle

CA/CERT Move
a22d475f 08/13/2010 06:15 PM Jim Pingle

Let the user choose the IPsec CA instead of assuming.
812dd35d 08/13/2010 05:57 PM Jim Pingle

Add a GUI selection for the proposal_check config option. Provide all the choices from racoon.conf(5) plus a "default" which will keep the old behavior.
ddc55e12 08/12/2010 04:18 AM Erik Fonnesbeck

Modify various (s)printf format strings to allow translations to change the order of the inserted strings.
cd82ab61 07/30/2010 01:40 PM Carlos Eduardo Ramos

Fix gettext implementation on vpn_ipsec_phase1.php
2fbb33f1 07/27/2010 04:07 PM Carlos Eduardo Ramos

Implement gettext() calls on vpn_ipsec_phase1.php
e85858df 06/01/2010 07:35 PM Jim Pingle

Remove Logs tab from OpenVPN, as it is no longer needed.
6deedfde 06/01/2010 07:33 PM Jim Pingle

Add status/log icons to IPsec pages.
1f65618b 05/06/2010 08:13 PM Jim Pingle

Only enforce peer ID and psk on p1 screen if we are NOT dealing with a pure-psk mobile tunnel (which is the behavior in 1.2.3). Hide irrelevant options. Part of ticket #108.
71d61aa5 05/06/2010 07:43 PM Jim Pingle

Reorder Auth. Method and PSK field to a more logical sequence. Part of ticket #108.
fad728ab 12/02/2009 10:37 PM Scott Ullrich

Move { and } to same line.
483e6de8 11/21/2009 09:08 PM Scott Ullrich

Rework includes/require. This saves about 4 megabytes.
Simplify get_memory(). Tested on mips/i386
09725e76 11/08/2009 03:21 AM Chris Buechler

add links to IPsec logs under IPsec status and other pages
abcb2bed 10/01/2009 03:19 PM Ermal Luçi
  • Convert carp/vips code to behave the same as other interfaces.
  • Make optimizations around it.
  • Make sure when we reload teh underlying interface we reload carp too.
  • Some fixes around the code.

Reviewed-by: scott@ and billm@
0f84b741 08/23/2009 07:16 PM Scott Ullrich

Include functions.inc which will then include ipsec.inc
80fc966b 08/23/2009 06:27 PM Scott Ullrich

Unbreak ipsec. ipsec.inc is needed to set the various drop down box values such as 'IP Address, Encryption Algo, etc.. Someone needs a big pointy hat.
4d828a9a 07/07/2009 10:55 AM Ermal Luçi

Fix interface list usage

WARN: Please ask before introducing old code on what have changed!
7fc26246 07/06/2009 01:26 PM Seth Mos

Fix ipsec vpn phase1 post code so that we correctly try to delete the old static route if required.
a368a026 06/30/2009 05:15 PM Ermal Luçi
  • Reorganize the 'apply' button infrustructure in the GUI.
    - Present three new functions is/mark/clear_subsystem_dirty('name_of_subsystem'). This makes easier to create such things without needing to introduce new globals.
    - Convert all pages to the new infrustructure...
87e07f52 03/15/2009 03:47 AM mgrooms

Move the IPsec pinghost option from phase1 to phase2. Correct some
bugs that were preventing the local address from being selected.
73fbece8 03/12/2009 08:06 AM mgrooms

Migrate IPsec certificate management to centralized system.
5a3b0d3b 03/12/2009 01:46 AM mgrooms

Cleanup ipsec interfaces a bit and make sure they are displayed in tabs for consistency.
647c7c48 01/16/2009 03:02 PM Seth Mos

Add initial support for granular IPsec SPD changes.
99bbd213 09/16/2008 06:04 PM Matthew Grooms

Fix a few minor problems with the IPsec configuration interface. Make sure
we don't copy the ikeid when duplicating a phase1 entry. Simplify the code
that deletes all associated phase2 entries when a phase1 is deleted. I was
and still am learning the finer points of php.
0cece4a2 08/30/2008 08:09 PM Scott Ullrich

Add CSS header
d799787e 08/26/2008 04:48 AM Matthew Grooms

Rework most of the OpenVPN support. The interfaces have been updated to
not use the pkg system and the configuration has been migrated to an
openvpn prefix. The centralized user and certificate manager is now used
to support the openvpn configurations. Most of the files removed in this...
4e2af464 08/24/2008 12:23 AM Matthew Grooms

Only read ipsec phase1 configuration values that are relvent for the
configured authentication method. This silences harmless php warnings.
Reported by Scott Ullrich.
6b07c15a 08/01/2008 06:30 AM Matthew Grooms

Rewrite the pfsense privilege system with the following goals in mind ...

1) Redefine page privileges to not use static urls
2) Accurate generation of privilege definitions from source
3) Merging the user and group privileges into a single set
4) Allow any privilege to be added to users or groups w/ inheritance...
3462a529 07/13/2008 11:28 PM Matthew Grooms

Introduce a new and improved version of IPsec mobile client support. The
mobile client tab is now used to configure user authentication (Xauth) and
client configuration (mode-cfg) options. User authentication is currently
limited to system password file entries. This will be extended to support...
a93e56c5 07/11/2008 01:55 AM Matthew Grooms

Overhaul IPsec related code. Shared functions have been consolidated into
a new file named /etc/ipsec.inc. Tunnel definitions have been split into
phase1 and phase2. This allows any number of phase2 definitions to be
created for a single phase1 definition. Several facets of configuration...