Add a GUI field to adjust the max number of processes for lighttpd.
Bug #1437. Dropdown list for country codes for CSRs (Cert Manager)
Bug #1437. Check for invalid characters in the fields for ca, cert and csr.
Bug #1437. Dropdown list for country codes (CA manager)
Remove obsolete file lurking on installs.
Ticket #1598. Correctly handle ipalias vips when re-enabling carp from the carp_status screen.
Show the OpenVPN instance description when listing interfaces to assign in the gui.
Allow Accounting Updates to become configurable when Accounting is selected.
Allow people to enter another user than admin for syncrhonizing in the carp settings page.
Correct displaying any availble default value.
Correct check for ipaliases over carp so we do not allow the deletion.
NEw functiong does_vip_exist() which works for carp and ipalias type vips to help in carp sync issues. Fixes #1598
Do not assume that every merge is about vips. Found-by: Jim
unset after checking that no reconfiguring is needed.
Allow packages to specify that their tabmenus should not be a drop-down list by using a <no_drop_down/> tag.
Fixes #1327. Trigger synching of vouchers to config through check_reload_status. Retire the saveinterval option since it is not useful anymore. Use the prune process of captiveportal to sync vouchers as well to fix issues as reported-by: http://forum.pfsense.org/index.php/topic,37636.0.html
Fixes #1327. Put description that a full qualified hostname is required.
Allow OpenNTPD to listen on Virtual IPs, not just interfaces. Fixes #342
Actually make this code more readble.
Remove the entry from old entries even when there are no changes to prevent marking them down.
Generate proper index for unsetting so we do not destroy all the vips in the backup.
Nuke trailing newline
Oops correct the POST destination page.
Add a div around input errors box so that it can be hidden on subequent page posting
Correct whitespace.
Ticket #1412. Provide even a link to this page through System->User Manager
Ticket #1412. Fixing the access login to the user manager presented another problem since now users cannot change their passwords anymore. Allow this through another page and an extra priviledge needed to be added to the user for allowing them to change the password.
Restoring gray background to the right of some tables in GUI (theme pfsense_ng).
Reverting class="sortable" damaged by commit 17d5077f61d963178f47e016b8768b768800ba68
Merge remote branch 'origin/master'
Restoring gray background to the right of some tables in GUI.
s/WAN//
fix typo, add warning
Show the MAC on the page rather than just a hover, too many times it needs to be copied/pasted or quickly viewed, and the vendor isn't nearly as useful as the actual MAC.
Allow duplicating an IPsec phase 2. The code was already on vpn_ipsec_phase2.php but unlinked.
Add a GUI selection for racoon's generate_policy directive since it may be useful in certain configurations, especially for mobile clients.
Add a button here to clear the package lock.
Instead of showing an emtpy drop-down for CA/Cert/CRL, show an error that there are none defined, and link to the page to create one.
Remove the warning message that a user doesn't have any CA/Certs when viewing OpenVPN connections. This is just confusing people, and isn't relevant to people using only shared key tunnels.
Redirect back to the CA/Cert management page after delete so a person can't refresh and accidentally delete other CA/Certs. (CRLs are deleted differently and don't need this fix)
Show how much data has passed on an SAD entry.
Patch from EvgenyY to allow editing an existing p2 without it being flagged a duplicate.
Add "Default" choice that will unset the media/mediaopt, otherwise whatever is first in the list is saved in the config.
Correct input object name from wrong copy/pasto. Reported-by: http://forum.pfsense.org/index.php/topic,37369.0.html
Bug #1560.IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1 (improvement of previous patch)
Make the ICMP echo request type less ambiguous, and since it's likely the main one to get used, move it to the top.
Add tunable, by default disabled, to enable the default gateway switching feature when the default one 'disappears'.
Fixes #1412. Properly pass the page to match so users are not always presented with the change password screen. Proper fix.
Fixes #1412. Properly pass the page to match so users are not always presented with the change password screen.
Ticket #944. Also destory the previous interface if the user changing the vlan tag of an existing vlan entry.
Fixes #944. Use the correct interface name to destroy the previous vlan if the parent is changed.
Bug #1560. IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1(site-to-site).
Use array_overlay()
Use array_extend
Remove debugging code
Add merge handler code
Remove bogus protection. We have better handling of this now.
Bug #1560. IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1(mobile clients).
Bug#1528. Automatically create outbound NAT rules on WAN for localhost when switching to manual.
Use aon plugin
Add plugin features to aon edit
Add missing plugin code. Move the pre_write section up a bit.
Merge pull request #1 from EvgenyY/6e2a15e677fa0558ba0c9b1700be38f4065a76f6
Speed/duplex select for interfaces
Bug #1403. Filter Rules description do not get saved when "(quote) present as character
Add note about voucher sync (only enable on slave nodes).
Clarify auth option to include Vouchers
Hiding mediaopt under Advanced button
Fix #1277Wasn't able to remove the multicast RIPv2 discovery at startup, butall ripv1 response's are gone now.
Free ipfw rule number after mac pass-through deletion.
Bring more consistent style to CP edit mac and ip passthrough pages.
Remove decimals from cumulative users graph.
Adding a new hook system for firewall nat edit and firewall rules edit page.Basically if the directory exists it will suck in the files to extend these pags.
/usr/local/pkg/firewall_nat/input_validation/usr/local/pkg/firewall_nat/pre_write_config/usr/local/pkg/firewall_nat/htmlphpearly...
Disable csrf checks when posting from scripts.
Provide a voucher_expire function so that voucher can be expired through a POST.
Update some code to be more readble and more compliant to php5
Fix automatic and manual outbound NAT for PPTP. Fixes #954
Fixes #1444. Implements the same fix that issue ermal made in #1522 to the console menu
Adding gui to choose media options for interfaces.
Fix config sync issue. Resolves #1547 Fixed-by: Ermal
Fix clearing of PPTP/PPPoE/L2TP server raw logs. Fixes #1340
Correct password variable name for input validation test on PPTP users. Fixes #1239
Reject alias names that are too long. Fixes #1510
Fixes #1514. Differentiate in the carp settings between layer7, limiter and queues so layer7 and limiters do not rely on queues being active.
Micro optimization.
Fixes #1522. Call interface reconfigure so we bring down the interface and than re-configure it.
Ticket #1534, #1433. Remove custom sync code for vip, since it array_merge() replaces same keys data when merging. But make the code for reloading only changed vips after merge better and some more checks.
Ticket #1534, #1433. Properly merge carp interfaces and do not reload carp interfaces that have not change any configuration parameter. Also make merge_config_section_xmlrpc() an alias for restore_config_section_xmlrpc() since that what it is.
fix missing images for CRLs
Ticket #1534. Serialize all the xmlrpc requests coming to the firewall. Seems such request can stomp into each other and create either corruption of xmlrpc request or other issues.
Make sure all CP form elements are disabled/enabled with the master checkbox.
Fixup MAC display on this other path too
Print the MAC mfg on another line in a smaller font if it's found. Less obtrusive than completely replacing the MAC.
Use base 1000 on user graphs and display cumulative of Total users logged in over the 'x' period.
Ensure that $timestamp is only ever written out if it contains a value and let file be retained through reboots.
MAC prefix to vendor resolution at Status->Interfaces, Status->DHCP leases, Diagnostics->ARP table
Merge branch 'axscode-pfs'
Merge branch 'master' into yakatz-ssl