Remove return value of interface_bridge_configure
Fix holdcount/holdcnt parameter confusion
Add a note about rdr pass not supporting Multi-WAN.
Make synamic firewall logs and widget add new rows:
The Dynamic Firewall Log page doesn't add rows, it only updates the phpgenerated rows which means that if it's loaded after the log is cleared,it'll never show any activity. The same occurs for the log widget....
Use class tabcont for table
Make IPv4/IPv6 validation on IPSec
It should fix #2769
Fix indent and blanks at EOL
Don't forget the wizard...
Allow specifying multiple local/remote networks for OpenVPN separated by commas. While I'm here, fix up the IPv6 tunnel/remote/local network input validation. Simplify some code using functions.
Ensure DHCP main range, pools ranges and static IP addresses don't overlap each other. It should fix #2773
Move is_inrange() to util.inc and rename it to is_inrange_v6()
Fix logic of v6 version of is_inrange()
Move is_inrange() to util.inc and rename it to is_inrange_v4()
Fix logic of is_inrange()
Remove call-time pass-by-reference
Fixes #804. Correct deletion of ipv6 routes.
Correctly bring down an interface older configuration. Fixes #2758
Validate before taking the input and do anything with it
Put some more sanity checking for various interface configurations
Allow set DHCP options per reservation
Correct reference to OpenVPN connect so it doesn't only refer to iOS.
Convert all captiveportal code to not use ipfw_set_context since its not needed anymore. Also add code to validate cpzone on webgui pages before being used
Fix indent and whitespaces issues
Fix indent and whitespace issues
Add GUI option to use "topology subnet" for OpenVPN, since the OpenVPN Connect iOS client requires it for IPv6
Validate bridge interface before delete it
Fix indent and remove extra whitespaces between tabs and at EOL
Validate vlan interface before delete it
Validate QinQ vlan interface to be sure it exists
Fix indent and blank at EOL
When QinQ members are changed, make sure interfaces are created/destroyed (attempt 2)
Revert "When QinQ members are changed, make sure interfaces are created/destroyed"
This reverts commit a2bf1347c95bbb988bbd79d2cb091c28d9f075ed.
When QinQ members are changed, make sure interfaces are created/destroyed
If entering an action take the redir and exit even though the action was not successful to avoid any issue
Validate the cpzone parameter passed that it actually is a valid zone
Use more secure file name for the operations to avoid issues
Allow selecting the digest algorithm when creating a CA or Cert. Implements #2765
No reason for the ppp log to use this display method, use dump_clog() instead.
A couple fixes for openvpn routing table display. Feature #2766
Run IPsec logs through htmlspecialchars before display.
Add routing table display for each OpenVPN ssl/tls server instance, collapsed by default. Part of feature #2766
Add version check to package install
Fix build list of widgets
Only consider files ending in ".php" to restrict widgets and avoid loadwrong files. It should fix #2761
Preserve "Idle timeout" parameter on interfaces gui. It fixes a problem pointed out on ticket #2641
Validate passed parameters to smart commands, and the target device. Also escape when used in shell commands even after validation.Discovered-By: Bernhard Thaler
Tidy up HTML Colour Names
With XHTML 1.0, the extended colour names are invalid, to make pfSenseas W3C compliant as possible, need to go back to using the HEX code.
Tidy up malformed URI warnings
"/usr/local/etc/status.php" has lots of "malformed URI" warnings, thisupdate tidies these up, adds a missing end table cell tag </td> adds a"summary" parameter to <table> to make this more W3C compliant.
Add option to disable resolution, and drop down to select the gateway that your traceroute should use
Merge pull request #326 from fsSnowboard/master
Modern games added to Traffic Shaper Wizard
fixed spelling
Bold and note manifest entries that match the current architecture, and add a note cautioning against a cross-architecture upgrade.
Merge pull request #324 from ExolonDX/master
Update PHP shorthand tag
Merge pull request #323 from lcapriotti/master
Allow manual voucher expiration
Spelling mistake
Remove a couple of call-time pass-by-reference for interface_ipalias_configure()
Standardise all PHP start tags from "
Add page to allow manual vouchers expiration
Set adaptive.start/adaptive.end to disabled. Also allow them to be customized through system->advanced->firewall. This allows the firewall to be reachable if the state limit is hit but default.
more games for traffic shaper
fixed spelling mistake
added traffic shaper game rules
Update usr/local/www/status_services.php
Missing include which defines functions such as get_shortcut_by_service_name()
Fix some typos
Show the hostname if it doesn't match
Add a page to perform tcp connection tests to check if a host is responding on a given port.
Stack the queue graphs. Fixes #2692
Remove some debugging
Dont pass -o option to view types that dont support it, it causes a segfault. Also make sure that when viewing all states that the correct switch is passed
Rework layout a bit and add number of states to view as an option
Merge pull request #316 from rafaelabdo/master
Delete SPDs when an IPSec tunnel is deleted. Fix #2719.
Update usr/local/www/diag_system_pftop.php
Get rid of localization where it is not desired.
Rework the pfTOP page to provide the ability to select the view. Also provide better dropdown labels and remove the annoying onClick submit - its not needed since ajax will handle the post of the new value in the background
Delete SPDs when an IPSec tunnel is deleted.
- Add new function to delete SPDs (see 'remove_tunnel_spd_policy($phase1,$phase2)' on vpn.inc)- Change vpn_ipsec.php to delete SPDs on phase 2 and phase 1.- Change the method GET to delete phase 2 (needs to inform which is the phase 1)...
In the case that no bandwidth limits are configured for queues but PRIQ is been used then rather set a default otherwise a value of 0 is used in the CDEFs for RRD
use Sunday rather than Monday for weekly bogon update
List VLAN interfaces on Interfaces -> (assign) -> PPPs edit. It should fix #1767
Merge pull request #314 from phil-davis/master
Display gateways with matching IP protocol in Gateways list
Merge pull request #310 from bcyrill/bogons_patch1
Allow changing of bogons update frequency
Some gateways do not have traditional addresses hard-coded into them - e.g. for OpenVPN dynamic gateways are created in software on-the-fly (they are not actually entries in the config). So traditional tests like is_ipaddrv4 are not useful to determine if the gateway is IPv4 or IPv6....
While I'm here, allow selecting "Localhost" as an OpenVPN interface.
Unbreak selecting "any" for OpenVPN client/server interface.
Retain user configured values for all fields when a validation error occours. It should fix #2745
Fix typo
Add bogons update frequency selection
Update the GUI page for the DHCP6 server, add a if statement that prevents throwing range errors on interface that have no static IPv6 address.It is entirely valid to operate a DHCP6 server just for prefix delegation, but ISC doesn't appear to allow it yet.
Do not skip displaying outbound NAT rules with no interface or an invalid interface; it interferes with editing/deleting the skipped rule itself or rules after it.
Revert "Use get_Cofnigured_interface_with_descr() here since that's the purpose"
This reverts commit 0c8e9f0c26b29f57faa2ccef9a559774103fee79.
Use get_Cofnigured_interface_with_descr() here since that's the purpose
Fix outbound NAT rules when interface is deleted:
- When delete interface, do not touch outbound NAT rules- Skip outbound NAT rules when interface doesn't exist- Bump latest_config to 9.2- Since rules with no interface were considered as wan, convert old...
Cleanup unused pages that was supposed for upload_progress bars
This is needed since preload is now gone
Always commit the session fast to allow other consumers to proceed to their requests. This unbreaks now the lock up the GUI had allowing only one action from same source per time. Now even if you run a command that blocks indefinitely for example the GUI want lock anymore but allow you to proceed to other actions
Select default interface when WAN is disabled
If WAN is disabled, then the Traffic Graph does not default to a valid interface when it first displays. This fix selects the first valid interface if WAN is not there.e.g. at one site there used to be 2 ISPs, on WAN and OPT1. Now the ISP on WAN has been turned off, and the interface marked disabled. The default gateway etc is all on OPT1. After a bit of history at a site, it can happen like this that WAN is disabled in the config.
Merge pull request #270 from CarpeNoctem/CarpeNoctem
Added 'Copy my MAC address' to captive portal Pass-through MAC form, as ...
Fix: Captive Portal status widget
Merge pull request #297 from bcyrill/patch-15
Fix: last activity on CP status
Update usr/local/www/services_dhcp.php
Inform user how the Primary/Secondary DHCPd process is determined in a failover pair so they don't end up with two secondary servers. For example, when using advskew=64 (and advskew=164 if using settings sync to peer for carp ips) on the carp master machine which they think will be the DHCP primary.