missing $
misc whitespace cleanups
Give this another shot
Fix admins group permission setting when upgrading from 1.2.3.
Correct IPsec carp interface upgrade code, off by one
Use full path to pw
Add missing _relayd group, and when upgrading from 1.2.3, add _relayd group and user.
Correct the test which displays an error if someone chose to save+test but doesn't have an ldap backend. Also, fix a typo.
Fix find again... apparently -xdev is depreciated and tosses errors, replaced by -x
Move this code up a bit and also use /root/tmp to fetch packages instead of /tmp so it won't fill up.
If we're on nanobsd, pass -t to pkg_add to specify a different "staging area" path.
Correct the vlan upgrade code to continue when we fixed up the interface
Correct the find command, pipe into xargs
Make sure to resolve the gateway name before passing it off to the IPsec reload function
Correct variable name. This could never have deleted the static route for IPsec vpns on multi wan
And one more place for PKG_TMPDIR... just in case.
Set PKG_TMPDIR here too, to help nanobsd pkg installs.
Allow queues on top of bridge. Though more investigation is needed on its correct meaning.
Set PKG_TMPDIR for embedded/nano because it will fill up /var trying to download packages otherwise. (From sullrich)
Don't forget to clear username field so it doesn't show up on next edit.
And if for some reason user enters a username, store it for them.
Merge branch 'master' of rcs.pfsense.org:pfsense/mainline
Try again, a little cleaner: Prevent GUI from giving error for freeDNS service since username and password
Revert "Prevent GUI from giving error for freeDNS service since username and password"
This reverts commit 740f745922549283e29d3d964c7a60266d7dbf0a.
This is a little ugly. Let's do it a little differently.
Update "Last Tested" date for freeDNS in comments
Prevent GUI from giving error for freeDNS service since username and passwordaren't required.
Also add a note for freeDNS users to enter "Authentication Token" in Hostname field. Zero out fake username and password before writing to configso they don't show up in the GUI when you edit the record again.
Correct the config path to the vip array
Attempted fix that should convert the old carp[$i] naming to vip[$vhid]
Make sure we iterate by the vlan number lest we end up with a empty variable? Hopefully fix new vlan name not being assigned to interfaces section
Correct the gateway group member name to the correct GW_". strtoupper($if) uppercase. This fixes outbound load balancer pools upgraded from 1.2.3not working
Do not cross filesystem boundaries when removing files lest we empty Seth' USB stick
Add a check if the configuration of dhcpd exists for wan before unset, resolves #1303
Remove direction from traffic shaper generated rules now that the match action is present to correctly put packets on proper queues. Before it was not possible since this would have also open firewall ports/holes.
Reset this var before this test, otherwise if the test is skipped, it will carry over the value from the previous run.
Don't consider a cert as in use by the GUI if it's in HTTP mode. Fixes #1171
Move all functions from index.php for captiveportal.inc
Add Global reply-to disable checkbox, resolves the issue #1137
reversal of accidentally deleted filesRevert "Add Global reply-to disable checkbox, resolves the issue #1137"
This reverts commit c646776871dacebcaa4225b083aa0789dc0bfba6.
Fix typo/spacing issue. Resolves #1300
Add the diag_ipsec_xml.php page, this provides a XML interface to thetunnel status built for a Coltex BV monitoring system
Prevent empty remote endpoints from skewing the log output
Trigger a VPN tunnel reload after configuring IPsec, it will handle all the hostname tunnels after boot finishes
Resolves #1288. Add alc(4) to altq(4) supported list.
Don't forget to include $g, otherwise the check will fail and still perform a DNS resolve
Hold off on resolve_retry during boot. The rest of the IPsec config is already delayed during boot for tunnels with hostnames
Add more safeguards and IP address checks
Do not resolve the hostname during boot, also make really sure we have a IP address here.
Prevent a empty remote gateway IP from ending up in the config
Make sure to initialize the remote gateway IP variable so that it does not end up with a broken config
Correct indentation
Make sure it is an array before foreach.
log when CP is restarted. ticket #1278
fix default password display
fix log text
Enforce FreeBSD's max username length of 16 chars. http://forum.pfsense.org/index.php/topic,33410.0.html
Fix whitespace formatting.
Allow sorting of DNS forwarder entries.
Add IPsec and OpenVPN to packet capture. Ticket #1032
Fix wording
Comment out the "config write on bootup" error. This is normal now with the package reinstall, and the known issues with it should be OK now. The error is just confusing people.
Do not rely on php new foreach by reference and use the old method of chaning array members by using full path. This fixes nat 1:1 upgrades.
Change this form to a POST instead of using GET with button inputs. For some reason using the GET method was causing things to be invoked twice, which led to two concurrent XMLRPC syncs, which can cause issues.
Add automatic rules to pass DHCP failover traffic if a failover peer is defined. See http://forum.pfsense.org/index.php/topic,32731.msg172839.html#msg172839
Use a better regex here, sometimes ad devices can be numbered >=10.
silence the music.
Break on 'You can also monitor the reload progress' instead of letting it wrap into a newline.
Add snort2c table back in for now.
Pass $notices to print_notices(), since it requires a parameter.
Adding support for snortsam from Robert Z
Back to beta5
Fix start/end test for an IP in DHCP pool. Resolves #1280
Fix update check fix. Skipped a parameter.
Get ready for tomorrow.
Suppress curl errors (if we get a 404 it tosses its own error if there is no response body, just a 404 code.)
Add alias support for source and destination ports on outbound NAT.
Make update check a little more robust. Timeout after a few seconds, and if we get a non-200 http code, ignore the response.
Check for aliases in 1:1 and outbound NAT rules, too.
Use autocomplete='off' like all other fields that accept aliases, to prevent web browser auto-complete from covering up the alias list popup.
Simply code for determining whether an alias is currently in use.
In update_alias_names_upon_change function add capability to access more deeply nested sections and fields.
Use alias style and add AutoSuggestControl for source and destination address fields.
The doubled "$rule = array();" lines are probably a copy/paste error. Probably meant to paste the line that sets the rule type to the match action like the rest of what was added in the affected commit.
Correctly verify the input on bandwith at voip step for traffic shaper wizards. Reported-by: http://forum.pfsense.org/index.php/topic,32833.0.html
Remove any previous file with the same name as the one that will be downloaded. This avoid the gui to always show update availble even though the site could not be reached.
Convert the shapers to the match action so the generated rules do not impact the filtering policy implemented.
Allow match action on Floating rules and exposed it with name Queue. More validation is needed.
Allow action match to be passed down to pf.
Do not resolve the dyndns hostnames during boot. With many tunnels that have a hostname this cancause huge boot issues if the DNS server is slow or not responding at all. By skipping those butadding them to the DNS watchlist it should reload these later. This should allow the box to start...
fix text
There is no need to call the script to reconfigure CP here. Even more when it breaks all kind of things.
Also fix easyrule and auto->manual nat switch code. Ticket #1243
Generalize pppoe server enabled check and use it elsewhere in the GUI that needed fixed. Still needs changes in filter.inc - Ticket #1243
Allow autocomplete on login form (Fixes saving password on Firefox and Chrome)
Add the 1.2.3 dashboard package's /usr/local/www/filter_log.inc to the obsoleted files list. (It's in /etc/inc/ now)
Fix a date compare bug, resolves #1273
Allow renaming even shaper queues as an improvement.
Check if this is an array first, just in case.
Fixes #1207. Allow renaming a limiter. Also prevent a limiter to be deleted if it is referenced in filter rules.
Turn off file size check