pfSense

add note about 1:1s and interface IPs

remove unnecessary input validation checks

remove this check, the WAN IP can be used in binat now with no problems

remove bunk input validation

Improve NanoBSD slice updating/changing a bit, add some error checking. Resolves #534.

Relocate some NanoBSD functions to a central place. Change NanoBSD diagnostics and system info widget to use the new code. Ticket #533 and some prerequisite parts of Ticket #534.

Remove all code for directions it is not needed any more on passthrough ip's.

Add missing ;

Add a new alias type, urltable, which downloads a file of IP/CIDR addresses and loads them into a pf persist table instead of importing the addresses directly into a traditional alias. This allows for using huge tables of addresses that would otherwise break the GUI and/or fail to load into pf. Part of ticket #512

Validate imported URL data. Resolves #530.

Warn the user when we cannot get the MAC address on pass through auto add case. Also when a user does a logout through clicking the logout form exit after showing sending info on logout successful.

Allow a passthrough mac to be deleted by a POST. Take the neccessary actions to disconnect and remove the mac from CP.

Make pasthrough GUI code catch-up with the latest changes.

Use tables of ipfw for passthrough mac entries. This makes it scale way better than previously. Fix multiple entries on adding mac through entries automatically after login for the same user. The changes allow even pass through mac to be controlled from the Status->Captiveportal. Use serialize/unserialize on some files that keep temporary information to speed up calculations. Really allow mac passthrough to follow radius rules or time out rules when present.

Add a new option which allows the admin user to configure CP so that it automatically enters an MAC passthru entry. The MAC is taken from login details and has to be removed manually. Also do improvements on rules handling and pipes. Add some optmizations. Teach the GUI/backend on ip/mac passthrough to configure a bw limit for this entries.

Show p2 items correctly (add missing td's)

Perform IP/Host and Port number validation for Authentication servers in the OpenVPN Wizard.

Restrict country code entry in the OpenVPN wizard to two letters.

Fix default port choices for LDAP/RADIUS server in OpenVPN wizard.

Fix OpenVPN port default choice in Wizard. Also fix protocol specification. (Should be Uppercase)

Revert "Fix finding next OpenVPN port. Protocol should be lowercase." - This was wrong in the wizard, apparently, and not the main page.

This reverts commit a48613a65d8d04dfec2aeefdb37440bdd399cdab.

Fix finding next OpenVPN port. Protocol should be lowercase.

fix text

remove commented out bit that causes annoying pop ups in IE. Ticket #299

show port and proto

Fix growl issues.

Ticket #518
Ticket #519

Submibtted-by: Blake Skinner

Ticket #508. Make TFTP proxy configurable by System Advanced->Firewall/NAT for several interfaces.

Do not use the presence of lan as an indicator of having only one interface. Actually deduce that from the count of interfaces. It is perfectly legal on 2.0 to not have a lan interface and only opt/wan ones.

Do not use the presence of lan as an indicator of having only one interface. Actually deduce that from the count of interfaces. It is perfectly legal on 2.0 to not have a lan interface and only opt/wan ones.

Update system information widget to use new version checking mechanism.

Beef up the version comparison code. This should let us compare several combinations of local and remote versions and properly determine if the current version is older or the same as the remote version.

Fail over update check to report the supplied version from the remote server if it is not a build time/datestamp.

Fix whitespace

Fix CA cert dupe detection when no certs yet exist.

Add titles to wizard steps, change some wording to be more consistent.

Ticket #386. Add even the network address to the list of addresses on proxy arp vips to the naat out edit.

Ticket #483. Load the bcmath extension dynamically through PEAR for Radius accounting.

On Virtual IPs, the ip is stored on subnet xml tag, use it to compare with external-address.

source address is been checked 2 times and destination address no one, fix this

Perform more strict validation on CA and Cert names before proceeding in the wizard.

Prevent duplication of CA names and Cert names in the OpenVPN wizard. Ticket #500.

OpenVPN Wizard: Fix CA Cert selection for Local auth. Fix descriptions and some backend bits for RADIUS. Ticket #500.

Fixup OpenVPN wizard LDAP settings. Ticket #500.

Fix wizard handling of password fields. Ticket #500.

Add/fix wording of descriptions in OpenVPN wizard.
While I'm here, convert leading spaces to tabs.

Merge branch 'master' of rcs.pfsense.org:pfsense/mainline

Revert changes as requested by Ermal

Simplify logic implemented on commit 673d29c0

Initialise the correct array if empty.

remove pfsense references, make generic

Fix enable STP checkbox as detailed in http://forum.pfsense.org/index.php/topic,24230.0.html

allow hostname for TFTP server

Implement reporting and logging of historical PPP uptime with data persistent through reboot.

Also, change the way uptime is captured. The mpd console is no longer used to
get PPP uptime data, which will prevent spamming of PPP logs with console access messages....

When delete a filter rule that is associated with a nat rule, cleanup the association

The sum of % for table size should be 100%, fixing it

Merge branch 'master' of rcs.pfsense.org:pfsense/mainline

Configure interface when changing settings, and fix init string field.

The interface configure function is called after "write_config()" because
we must write the new data to the config before reading the config to
bring up the interface with the new settings.

Add a new global option, disablehelpicon, to hide help icon from all pages

Add a few more examples to the list of domain examples.

Don't use "local" as a domain. It breaks DNS resolution for hosts running mDNS.

The "local" search domain signifies to local hosts that are running
mDNS (bonjour or avahi) that mDNS is to be used to look up local hosts
instead of doing a normal DNS query to the server listed in...

don't display disabled tunnels on diag_ipsec.php

fix up L2TP text

restore double click to edit

Check for an empty <config/> as the first setting for a given package's config. When present, this breaks saving for certain packages (namely Squid's caching tab).

Fix sortable to handle sorting of IP address columns properly. Resolves #469

fix text

fix editing of PARP ranges reverting to single entries, and duplicate "selected" in subnet_bits

Add iPad support

fix text

Do not create faulty gateway entires with just defaultgw set it breaks logic.

Ticket #462. Remove references to slbd it is not used anymore.

Remove PPP tab these all go to the system log now.

Changes to make PPP work again. mpd5 fails to establish a ppp link without
some username and password, so defaults are set if user enters nothing.
Removed interface_ppp_configure call from interfaces_ppp_edit.php. It was
useless there with the new structure, and it caused all PPP links to attempt...

Forgot re-editing.

Fix interface assignment and re-edit

Fix displaying ppp ports.

Fix PPP assignment.

Don't need the rm -f statement when using > redirect to overwrite the
file, and add the "then" to the if statements

Fix mistakes (now using "call" instead of "goto") and add check to SIM PIN setting routine
so we don't have to set the pin every time if it's already set.

Be safer use the remote-ip address for adding route.

Explicitly set the exit status of the script to not make mpd fail.

Use full patch to command and fix route add command parameter is -iface and not -if.

Tell that the interface is down.

Only sync on the wireless clones that were reassigned.

A location where the shared wireless configuration should have been synced had been missed (reassigning interfaces).

Make lan/wan behave as all other interfaces.

Redo most of the ppp interface handling to be consistent with the other mpd5 configurations. This way there is no more special handling for ppp around.

Fixed error in command to send the PIN to the SIM card. Missing double quotes.

I have PPP with mpd5 working really well now, including setting the APN and APN
Number, and the SIM PIN and wait time for the SIM to settle after the PIN is
entered.

Still no work on multilink PPP with serial port links.

Right now the code creates the mpd.secret file. I tested it using the set auth...

Correct MATCH name.

Fix code to show warnings properly.

Fix checks. Reported-by: Efonne

Catch up with php5. Reported-by: http://forum.pfsense.org/index.php/topic,23860.0.html

Ticket #318. Add an option to updater settings to allow updates for images with no signature. This makes auto-updater work and will not display an confirmation message during manual update.

'@' Is also a valid PPPoE username character.

Redirect to the correct page after deleting an item.

Actually its dns2 for the second entry.

Use the -s ident option of mpd to send the logs for the PPPoE/PPTP/L2TP servers to syslogs appropriate files. Create the files for these vpn's as for the others. Logs can be viewed in the VPN tab of the system log.

Resolve problems with dns server setup when allow override is set. Also add static routes for all nameservers to be friendly with multiwan.

fix text

fix text