Do not show the user/pass for pre shared key on Openvpn since its not-supported.
Change copyright statement to reflect reality
Add a note clarifying the usage of OpenVPN's Auth Digest setting.
Update vpn_openvpn_client.php
removed comments
Default values for verb if it is not set when edit
patchpack1
-Fix #3401 (Added tun option "Disable IPv6" -Added new options: route-nopull, route-noexec, verb;
Whitespace fixes
Allow the user to select "None" for OpenVPN client certificate, so long as they supply and auth user/pass. Ticket #3633
Tidy up "vpn_openvpn_client.php" XHTML
Add CDATA section to SCRIPTSAdd SUMMARY to TABLESRemove Unordered List for tabsClose BR, INPUT and IMG tags and ALT to IMGMove NOWRAP into CLASS statementDeprecate Ampersand in Anchor tagsMove TFOOT between THEAD and TBODY (quirk of HTML!)...
replaced uppercase html tags with lowercasejs files saved as UTF-8 / LFlanguage="JavaScript" deprecated, replaced with type="text/javascript"
Merge pull request #907 from PiBa-NL/openvpn_client_usercredentials
openvpn, allow for entering client user credentials in the WebGUI
xhtml Compliancereplaced <br>, <br/> and </br> with <br />
Improve checks for params 'id', 'dup' and other similar ones to make sure they are numeric integer, also, pass them through htmlspecialchars() before print
Change OpenVPN Compression settings to cover the full range of allowed settings on OpenVPN (unset, off, on, adaptive) rather than a simple off/on switch that either doesn't set the value or enables it with adaptive (OpenVPN's default).
Add an Authentication Digest Algorithm drop-down to OpenVPN server/client (SHA1 is the default since that is OpenVPN's default)
Remove call-time pass by reference for do_input_validation, helps ticket #2565
Permit openvpn to use same port on different interfaces. It should fix #814
Document remote network lists in OpenVPN GUI
Also, now the advanced route command is not needed. So change the example to the "remote" command, which can be useful in the advanced box.
Allow specifying multiple local/remote networks for OpenVPN separated by commas. While I'm here, fix up the IPv6 tunnel/remote/local network input validation. Simplify some code using functions.
While I'm here, allow selecting "Localhost" as an OpenVPN interface.
Unbreak selecting "any" for OpenVPN client/server interface.
Add input validation to reject invalid combinations of IPv4/IPv6 openvpn protocols and interface/VIPs.
Refine OpenVPN client/server deletion to allow for removing invalid empty entries. Fixes #2643
Fix IPv6 remote_network typo
The IPv4 remote network was being displayed in both the IP4 and IPv6 input fields. Then whatever value was in the IPv6 field ended up in the config as the IPv4 remote network.Just a couple of missing "v6" on variable names.
Fixup openvpn shortcut bar status/control
Activate new shortcuts/status in the rest of the areas that are currently setup.
Add forgotten "ipv6 remote network", clean up a couple bits, make sure local network box is hidden for shared key servers.
OpenVPN Client config page - minor test fix
Allow for selecting the gateway group as a interface for the OpenVPN clients
Actually save the value typed in the bandwidth limit box for the openvpn client instead of ignoring it.
Converting javascript code from prototype to jQuery
Reverting class="sortable" damaged by commit 17d5077f61d963178f47e016b8768b768800ba68
Merge remote branch 'origin/master'
Restoring gray background to the right of some tables in GUI.
Instead of showing an emtpy drop-down for CA/Cert/CRL, show an error that there are none defined, and link to the page to create one.
Remove the warning message that a user doesn't have any CA/Certs when viewing OpenVPN connections. This is just confusing people, and isn't relevant to people using only shared key tunnels.
Don't test for a user cert here either, see previous commit.
Switch back to dev_mode so existing configs aren't broken by the other changes.
standardize the device_mode variable
Fix copypasto
Add drop-down to select OpenVPN hardware crypto (finds usable devices from "openssl engine" list) for clients and servers.
Fix vip descriptions in openvpn and ipsec screens. Ticket #1042
When the local port is left blank on an OpenVPN client, use 'lport 0' to direct the client to use a random source port. Fixes #1025
Fix XSS issues
Warn a user when entering the OpenVPN client/server screens that they need a CA/Cert if none exist.
Replace \r from custom options otherwise it breaks config.
Fix formatting
Fix this logic.
Indicate in various places if a certificate is revoked.
Rename 'name' to 'descr' for CA, Certificates, and CRLs, to gain CDATA protection and standardize field names. Ticket #320.
Make OpenVPN client list sortable.
CA/CERT Move
Use
Implement gettext() calls on vpn_openvpn_client.php
Remove logs tab from OpenVPN, since it is now replaced by the Log icon.
Add status and log urls to OpenVPN pages.
Fix copypasta error. Part of ticket #449.
Fix OpenVPN client disable variable. It is being set/tested improperly (or at least inconsistently). Partial fix for #449.
Fix the same problem with sharing an OpenVPN instance w/existing shared key on the client page this time.
add Logs tab
restore double click to edit
Show wizard tab for openvpn.
Add proxy authentication capabilities to OpenVPN client.
Feature #248. Ticket #248. Merge patch from Antonio No to add tap device type to OpenVPN.
Save TOS config in openvpn client
fix typos
fix up text
Add IP alias and 'any' support to OpenVPN. Feedback #69
Openvpn tunnel network should not be a required parameter as it was not reuired in 1.2.3- Resolves #212
Add carp support for OpenVPN. Ticket #69
Add openvpn client custom option. Ticket #103
Rework includes/require. This saves about 4 megabytes.Simplify get_memory(). Tested on mips/i386
Remove openvpn.inc from functions.inc since its just a subsystem that does not need to be present on all of the includes.
Fix OpenVPN automatic shared key generation.
Fix detection of TLS/Shared Key mode for OpenVPNThe wrong variable was being checked, so the result was always false.
Fix server hostname resolve option to correctly be set.
Fix broken OpenVPN client config. See http://forum.pfsense.org/index.php/topic,15608.0.html
Fix OpenVPN instance port change.It had been failing on any change, including valid unused choices.
Use listbg as all other pages do
Use get_configured_interface_with_descr() for OpenVPN gui pages. Suggestedby Ermal.
Make it possible for pakages to insert additional tabbed pages into anexisting tab group. This requires that each page in the tab group calladd_package_tabs() with the tab group name before display_top_tabs() sopages can be inserted. While far from optimal, this system is really a...
Minor re-work of OpenVPN configuration. Use operational modes to determinewhat configuration options are appropriate. The operational mode dictatesthe authentication method. They are defines as follows ...
Peer to Peer ( SSL/TLS )Peer to Peer ( Shared Key )...
Correct problems with OpenVPN that prevented the lzo compression and passtos options from being set correctly in configuration files.
move CSS header to correct location
Add CSS header
Correctly validate required input fields for OpenVPN screens.
Correct some problems with the filter code where we were calling foreachon data that wasn't necessarily a valid array.
Modify the OpenVPN code to stop passing the array index around and thenimmediately obtaining a reference to the array entry. We already have a...
Set some important default values for the new OpenVPN interface screens.Add functions and interface code to handle local port conflict detectionand resolution.
Rework most of the OpenVPN support. The interfaces have been updated tonot use the pkg system and the configuration has been migrated to anopenvpn prefix. The centralized user and certificate manager is now usedto support the openvpn configurations. Most of the files removed in this...