1 |
b2ffe419
|
Scott Ullrich
|
<?php
|
2 |
b46bfcf5
|
Bill Marquette
|
/* $Id$ */
|
3 |
5b237745
|
Scott Ullrich
|
/*
|
4 |
37e2071c
|
Scott Ullrich
|
firewall_rules.php
|
5 |
e4cabb75
|
Scott Ullrich
|
part of pfSense (http://www.pfsense.com)
|
6 |
|
|
Copyright (C) 2005 Scott Ullrich (sullrich@gmail.com)
|
7 |
b2ffe419
|
Scott Ullrich
|
|
8 |
e4cabb75
|
Scott Ullrich
|
originally part of m0n0wall (http://m0n0.ch/wall)
|
9 |
|
|
Copyright (C) 2003-2004 Manuel Kasper <mk@neon1.net>.
|
10 |
37e2071c
|
Scott Ullrich
|
All rights reserved.
|
11 |
b2ffe419
|
Scott Ullrich
|
|
12 |
37e2071c
|
Scott Ullrich
|
Redistribution and use in source and binary forms, with or without
|
13 |
|
|
modification, are permitted provided that the following conditions are met:
|
14 |
b2ffe419
|
Scott Ullrich
|
|
15 |
37e2071c
|
Scott Ullrich
|
1. Redistributions of source code must retain the above copyright notice,
|
16 |
|
|
this list of conditions and the following disclaimer.
|
17 |
b2ffe419
|
Scott Ullrich
|
|
18 |
37e2071c
|
Scott Ullrich
|
2. Redistributions in binary form must reproduce the above copyright
|
19 |
|
|
notice, this list of conditions and the following disclaimer in the
|
20 |
|
|
documentation and/or other materials provided with the distribution.
|
21 |
b2ffe419
|
Scott Ullrich
|
|
22 |
37e2071c
|
Scott Ullrich
|
THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
|
23 |
|
|
INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
|
24 |
|
|
AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
|
25 |
|
|
AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
|
26 |
|
|
OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
|
27 |
|
|
SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
|
28 |
|
|
INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
|
29 |
|
|
CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
|
30 |
|
|
ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
|
31 |
|
|
POSSIBILITY OF SUCH DAMAGE.
|
32 |
5b237745
|
Scott Ullrich
|
*/
|
33 |
7ac5a4cb
|
Scott Ullrich
|
/*
|
34 |
|
|
pfSense_MODULE: filter
|
35 |
|
|
*/
|
36 |
5b237745
|
Scott Ullrich
|
|
37 |
6b07c15a
|
Matthew Grooms
|
##|+PRIV
|
38 |
|
|
##|*IDENT=page-firewall-rules
|
39 |
|
|
##|*NAME=Firewall: Rules page
|
40 |
|
|
##|*DESCR=Allow access to the 'Firewall: Rules' page.
|
41 |
|
|
##|*MATCH=firewall_rules.php*
|
42 |
|
|
##|-PRIV
|
43 |
|
|
|
44 |
3cceb5d5
|
jim-p
|
$statusurl = "status_filter_reload.php";
|
45 |
|
|
$logurl = "diag_logs_filter.php";
|
46 |
|
|
|
47 |
5b237745
|
Scott Ullrich
|
require("guiconfig.inc");
|
48 |
7a927e67
|
Scott Ullrich
|
require_once("functions.inc");
|
49 |
|
|
require_once("filter.inc");
|
50 |
|
|
require_once("shaper.inc");
|
51 |
5b237745
|
Scott Ullrich
|
|
52 |
7a808e01
|
Carlos Eduardo Ramos
|
$pgtitle = array(gettext("Firewall"),gettext("Rules"));
|
53 |
|
|
|
54 |
00c82782
|
Renato Botelho
|
function delete_nat_association($id) {
|
55 |
|
|
global $config;
|
56 |
|
|
|
57 |
|
|
if (!$id || !is_array($config['nat']['rule']))
|
58 |
673d29c0
|
Renato Botelho
|
return;
|
59 |
|
|
|
60 |
00c82782
|
Renato Botelho
|
$a_nat = &$config['nat']['rule'];
|
61 |
|
|
|
62 |
|
|
foreach ($a_nat as &$natent)
|
63 |
|
|
if ($natent['associated-rule-id'] == $id)
|
64 |
|
|
$natent['associated-rule-id'] = '';
|
65 |
673d29c0
|
Renato Botelho
|
}
|
66 |
|
|
|
67 |
5b237745
|
Scott Ullrich
|
if (!is_array($config['filter']['rule'])) {
|
68 |
|
|
$config['filter']['rule'] = array();
|
69 |
|
|
}
|
70 |
|
|
filter_rules_sort();
|
71 |
|
|
$a_filter = &$config['filter']['rule'];
|
72 |
|
|
|
73 |
07bd3f83
|
Scott Ullrich
|
$if = $_GET['if'];
|
74 |
|
|
if ($_POST['if'])
|
75 |
|
|
$if = $_POST['if'];
|
76 |
b2ffe419
|
Scott Ullrich
|
|
77 |
cbe3ea96
|
Ermal Luçi
|
$ifdescs = get_configured_interface_with_descr();
|
78 |
07bd3f83
|
Scott Ullrich
|
|
79 |
32c58070
|
Scott Ullrich
|
// Drag and drop reordering
|
80 |
|
|
if($_REQUEST['dragdroporder']) {
|
81 |
|
|
// First create a new ruleset array and tmp arrays
|
82 |
cb53651f
|
Erik Fonnesbeck
|
$a_filter_before = array();
|
83 |
32c58070
|
Scott Ullrich
|
$a_filter_order = array();
|
84 |
|
|
$a_filter_order_tmp = array();
|
85 |
cb53651f
|
Erik Fonnesbeck
|
$a_filter_after = array();
|
86 |
|
|
$found = false;
|
87 |
32c58070
|
Scott Ullrich
|
$drag_order = $_REQUEST['dragtable'];
|
88 |
|
|
// Next traverse through rules building a new order for interface
|
89 |
|
|
for ($i = 0; isset($a_filter[$i]); $i++) {
|
90 |
cb53651f
|
Erik Fonnesbeck
|
if(( $_REQUEST['if'] == "FloatingRules" && isset($a_filter[$i]['floating']) ) || ( $a_filter[$i]['interface'] == $_REQUEST['if'] && !isset($a_filter[$i]['floating']) )) {
|
91 |
32c58070
|
Scott Ullrich
|
$a_filter_order_tmp[] = $a_filter[$i];
|
92 |
cb53651f
|
Erik Fonnesbeck
|
$found = true;
|
93 |
|
|
} else if (!$found)
|
94 |
|
|
$a_filter_before[] = $a_filter[$i];
|
95 |
|
|
else
|
96 |
|
|
$a_filter_after[] = $a_filter[$i];
|
97 |
32c58070
|
Scott Ullrich
|
}
|
98 |
|
|
// Reorder rules with the posted order
|
99 |
cb53651f
|
Erik Fonnesbeck
|
for ($i = 0; $i<count($drag_order); $i++)
|
100 |
32c58070
|
Scott Ullrich
|
$a_filter_order[] = $a_filter_order_tmp[$drag_order[$i]];
|
101 |
cb53651f
|
Erik Fonnesbeck
|
// In case $drag_order didn't account for some rules, make sure we don't lose them
|
102 |
|
|
if(count($a_filter_order) < count($a_filter_order_tmp)) {
|
103 |
|
|
for ($i = 0; $i<count($a_filter_order_tmp); $i++)
|
104 |
|
|
if(!in_array($i, $drag_order))
|
105 |
|
|
$a_filter_order[] = $a_filter_order_tmp[$i];
|
106 |
|
|
}
|
107 |
32c58070
|
Scott Ullrich
|
// Overwrite filter rules with newly created items
|
108 |
cb53651f
|
Erik Fonnesbeck
|
$config['filter']['rule'] = array_merge($a_filter_before, $a_filter_order, $a_filter_after);
|
109 |
32c58070
|
Scott Ullrich
|
// Write configuration
|
110 |
|
|
$config = write_config("Drag and drop firewall rules ordering update.");
|
111 |
|
|
// Redirect back to page
|
112 |
68cbabcb
|
Scott Ullrich
|
mark_subsystem_dirty('filter');
|
113 |
619f2dbd
|
Scott Ullrich
|
$undo = array();
|
114 |
|
|
foreach($_REQUEST['dragtable'] as $dt)
|
115 |
|
|
$undo[] = "";
|
116 |
|
|
$counter = 0;
|
117 |
|
|
foreach($_REQUEST['dragtable'] as $dt) {
|
118 |
|
|
$undo[$dt] = $counter;
|
119 |
|
|
$counter++;
|
120 |
|
|
}
|
121 |
|
|
foreach($undo as $dt)
|
122 |
|
|
$undotxt .= "&dragtable[]={$dt}";
|
123 |
|
|
Header("Location: firewall_rules.php?if=" . $_REQUEST['if'] . "&undodrag=true" . $undotxt);
|
124 |
32c58070
|
Scott Ullrich
|
exit;
|
125 |
|
|
}
|
126 |
|
|
|
127 |
be81b340
|
Erik Fonnesbeck
|
$icmptypes = array(
|
128 |
|
|
"" => gettext("any"),
|
129 |
a01ce4c7
|
jim-p
|
"echoreq" => gettext("Echo request"),
|
130 |
be81b340
|
Erik Fonnesbeck
|
"echorep" => gettext("Echo reply"),
|
131 |
|
|
"unreach" => gettext("Destination unreachable"),
|
132 |
|
|
"squench" => gettext("Source quench"),
|
133 |
|
|
"redir" => gettext("Redirect"),
|
134 |
|
|
"althost" => gettext("Alternate Host"),
|
135 |
|
|
"routeradv" => gettext("Router advertisement"),
|
136 |
|
|
"routersol" => gettext("Router solicitation"),
|
137 |
|
|
"timex" => gettext("Time exceeded"),
|
138 |
|
|
"paramprob" => gettext("Invalid IP header"),
|
139 |
|
|
"timereq" => gettext("Timestamp"),
|
140 |
|
|
"timerep" => gettext("Timestamp reply"),
|
141 |
|
|
"inforeq" => gettext("Information request"),
|
142 |
|
|
"inforep" => gettext("Information reply"),
|
143 |
|
|
"maskreq" => gettext("Address mask request"),
|
144 |
|
|
"maskrep" => gettext("Address mask reply")
|
145 |
|
|
);
|
146 |
|
|
|
147 |
90ba56ad
|
Scott Ullrich
|
/* add group interfaces */
|
148 |
|
|
if (is_array($config['ifgroups']['ifgroupentry']))
|
149 |
|
|
foreach($config['ifgroups']['ifgroupentry'] as $ifgen)
|
150 |
|
|
if (have_ruleint_access($ifgen['ifname']))
|
151 |
|
|
$iflist[$ifgen['ifname']] = $ifgen['ifname'];
|
152 |
|
|
|
153 |
aef4dc74
|
Ermal Luçi
|
foreach ($ifdescs as $ifent => $ifdesc)
|
154 |
|
|
if(have_ruleint_access($ifent))
|
155 |
|
|
$iflist[$ifent] = $ifdesc;
|
156 |
88bcd1d2
|
Scott Dale
|
|
157 |
617f8d25
|
Ermal Lu?i
|
if ($config['l2tp']['mode'] == "server")
|
158 |
|
|
if(have_ruleint_access("l2tp"))
|
159 |
|
|
$iflist['l2tp'] = "L2TP VPN";
|
160 |
|
|
|
161 |
07bd3f83
|
Scott Ullrich
|
if ($config['pptpd']['mode'] == "server")
|
162 |
d81c2ad1
|
Scott Ullrich
|
if(have_ruleint_access("pptp"))
|
163 |
|
|
$iflist['pptp'] = "PPTP VPN";
|
164 |
50e0d2a1
|
Scott Ullrich
|
|
165 |
b0899ee4
|
Ermal
|
if (is_array($config['pppoes']['pppoe'])) {
|
166 |
|
|
foreach ($config['pppoes']['pppoe'] as $pppoes)
|
167 |
|
|
if (($pppoes['mode'] == 'server') && have_ruleint_access("pppoe"))
|
168 |
|
|
$iflist['pppoe'] = "PPPoE Server";
|
169 |
|
|
}
|
170 |
0c554ff6
|
Scott Ullrich
|
|
171 |
88bcd1d2
|
Scott Dale
|
/* add ipsec interfaces */
|
172 |
c6dfd289
|
jim-p
|
if (isset($config['ipsec']['enable']) || isset($config['ipsec']['client']['enable']))
|
173 |
d81c2ad1
|
Scott Ullrich
|
if(have_ruleint_access("enc0"))
|
174 |
0f266b2e
|
Chris Buechler
|
$iflist["enc0"] = "IPsec";
|
175 |
07bd3f83
|
Scott Ullrich
|
|
176 |
bfb60ac8
|
Ermal Luçi
|
/* add openvpn/tun interfaces */
|
177 |
d799787e
|
Matthew Grooms
|
if ($config['openvpn']["openvpn-server"] || $config['openvpn']["openvpn-client"])
|
178 |
|
|
$iflist["openvpn"] = "OpenVPN";
|
179 |
bfb60ac8
|
Ermal Luçi
|
|
180 |
4a6cf823
|
Scott Ullrich
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/interfaces_override");
|
181 |
|
|
|
182 |
92125c97
|
Ermal Luçi
|
if (!$if || !isset($iflist[$if])) {
|
183 |
|
|
if ("any" == $if)
|
184 |
15160475
|
Ermal Luçi
|
$if = "FloatingRules";
|
185 |
0416d9a0
|
Darren Embry
|
else if ("FloatingRules" != $if) {
|
186 |
|
|
if (isset($iflist['wan']))
|
187 |
|
|
$if = "wan";
|
188 |
|
|
else
|
189 |
|
|
$if = "FloatingRules";
|
190 |
|
|
}
|
191 |
92125c97
|
Ermal Luçi
|
}
|
192 |
07bd3f83
|
Scott Ullrich
|
|
193 |
5b237745
|
Scott Ullrich
|
if ($_POST) {
|
194 |
|
|
|
195 |
|
|
$pconfig = $_POST;
|
196 |
|
|
|
197 |
|
|
if ($_POST['apply']) {
|
198 |
37e2071c
|
Scott Ullrich
|
$retval = 0;
|
199 |
9a7e416c
|
Scott Ullrich
|
$retval = filter_configure();
|
200 |
|
|
|
201 |
a368a026
|
Ermal Lu?i
|
clear_subsystem_dirty('filter');
|
202 |
a985eac2
|
Scott Ullrich
|
|
203 |
1a700ea6
|
Scott Ullrich
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/apply");
|
204 |
|
|
|
205 |
b807a161
|
Scott Ullrich
|
$savemsg = sprintf(gettext("The settings have been applied. The firewall rules are now reloading in the background.<br/>You can also %s monitor %s the reload progress"),"<a href='status_filter_reload.php'>","</a>");
|
206 |
5b237745
|
Scott Ullrich
|
}
|
207 |
|
|
}
|
208 |
|
|
|
209 |
d97c50cd
|
Bill Marquette
|
if ($_GET['act'] == "del") {
|
210 |
673d29c0
|
Renato Botelho
|
if ($a_filter[$_GET['id']]) {
|
211 |
|
|
if (!empty($a_filter[$_GET['id']]['associated-rule-id'])) {
|
212 |
00c82782
|
Renato Botelho
|
delete_nat_association($a_filter[$_GET['id']]['associated-rule-id']);
|
213 |
673d29c0
|
Renato Botelho
|
}
|
214 |
|
|
unset($a_filter[$_GET['id']]);
|
215 |
|
|
write_config();
|
216 |
a368a026
|
Ermal Lu?i
|
mark_subsystem_dirty('filter');
|
217 |
673d29c0
|
Renato Botelho
|
header("Location: firewall_rules.php?if={$if}");
|
218 |
|
|
exit;
|
219 |
|
|
}
|
220 |
d97c50cd
|
Bill Marquette
|
}
|
221 |
|
|
|
222 |
32c58070
|
Scott Ullrich
|
// Handle save msg if defined
|
223 |
|
|
if($_REQUEST['savemsg'])
|
224 |
|
|
$savemsg = htmlentities($_REQUEST['savemsg']);
|
225 |
|
|
|
226 |
07bd3f83
|
Scott Ullrich
|
if (isset($_POST['del_x'])) {
|
227 |
|
|
/* delete selected rules */
|
228 |
|
|
if (is_array($_POST['rule']) && count($_POST['rule'])) {
|
229 |
|
|
foreach ($_POST['rule'] as $rulei) {
|
230 |
00c82782
|
Renato Botelho
|
delete_nat_association($a_filter[$rulei]['associated-rule-id']);
|
231 |
07bd3f83
|
Scott Ullrich
|
unset($a_filter[$rulei]);
|
232 |
|
|
}
|
233 |
5b237745
|
Scott Ullrich
|
write_config();
|
234 |
a368a026
|
Ermal Lu?i
|
mark_subsystem_dirty('filter');
|
235 |
07bd3f83
|
Scott Ullrich
|
header("Location: firewall_rules.php?if={$if}");
|
236 |
5b237745
|
Scott Ullrich
|
exit;
|
237 |
|
|
}
|
238 |
07bd3f83
|
Scott Ullrich
|
} else if ($_GET['act'] == "toggle") {
|
239 |
|
|
if ($a_filter[$_GET['id']]) {
|
240 |
f53b85a3
|
Scott Ullrich
|
if(isset($a_filter[$_GET['id']]['disabled']))
|
241 |
734edbdf
|
Bill Marquette
|
unset($a_filter[$_GET['id']]['disabled']);
|
242 |
|
|
else
|
243 |
|
|
$a_filter[$_GET['id']]['disabled'] = true;
|
244 |
5b237745
|
Scott Ullrich
|
write_config();
|
245 |
a368a026
|
Ermal Lu?i
|
mark_subsystem_dirty('filter');
|
246 |
07bd3f83
|
Scott Ullrich
|
header("Location: firewall_rules.php?if={$if}");
|
247 |
5b237745
|
Scott Ullrich
|
exit;
|
248 |
|
|
}
|
249 |
07bd3f83
|
Scott Ullrich
|
} else {
|
250 |
b2ffe419
|
Scott Ullrich
|
/* yuck - IE won't send value attributes for image buttons, while Mozilla does -
|
251 |
37e2071c
|
Scott Ullrich
|
so we use .x/.y to fine move button clicks instead... */
|
252 |
07bd3f83
|
Scott Ullrich
|
unset($movebtn);
|
253 |
|
|
foreach ($_POST as $pn => $pd) {
|
254 |
|
|
if (preg_match("/move_(\d+)_x/", $pn, $matches)) {
|
255 |
|
|
$movebtn = $matches[1];
|
256 |
|
|
break;
|
257 |
|
|
}
|
258 |
5b237745
|
Scott Ullrich
|
}
|
259 |
07bd3f83
|
Scott Ullrich
|
/* move selected rules before this rule */
|
260 |
|
|
if (isset($movebtn) && is_array($_POST['rule']) && count($_POST['rule'])) {
|
261 |
|
|
$a_filter_new = array();
|
262 |
b2ffe419
|
Scott Ullrich
|
|
263 |
07bd3f83
|
Scott Ullrich
|
/* copy all rules < $movebtn and not selected */
|
264 |
|
|
for ($i = 0; $i < $movebtn; $i++) {
|
265 |
|
|
if (!in_array($i, $_POST['rule']))
|
266 |
|
|
$a_filter_new[] = $a_filter[$i];
|
267 |
|
|
}
|
268 |
b2ffe419
|
Scott Ullrich
|
|
269 |
07bd3f83
|
Scott Ullrich
|
/* copy all selected rules */
|
270 |
|
|
for ($i = 0; $i < count($a_filter); $i++) {
|
271 |
|
|
if ($i == $movebtn)
|
272 |
|
|
continue;
|
273 |
|
|
if (in_array($i, $_POST['rule']))
|
274 |
|
|
$a_filter_new[] = $a_filter[$i];
|
275 |
|
|
}
|
276 |
b2ffe419
|
Scott Ullrich
|
|
277 |
07bd3f83
|
Scott Ullrich
|
/* copy $movebtn rule */
|
278 |
|
|
if ($movebtn < count($a_filter))
|
279 |
|
|
$a_filter_new[] = $a_filter[$movebtn];
|
280 |
b2ffe419
|
Scott Ullrich
|
|
281 |
07bd3f83
|
Scott Ullrich
|
/* copy all rules > $movebtn and not selected */
|
282 |
|
|
for ($i = $movebtn+1; $i < count($a_filter); $i++) {
|
283 |
|
|
if (!in_array($i, $_POST['rule']))
|
284 |
|
|
$a_filter_new[] = $a_filter[$i];
|
285 |
|
|
}
|
286 |
b2ffe419
|
Scott Ullrich
|
|
287 |
07bd3f83
|
Scott Ullrich
|
$a_filter = $a_filter_new;
|
288 |
5b237745
|
Scott Ullrich
|
write_config();
|
289 |
a368a026
|
Ermal Lu?i
|
mark_subsystem_dirty('filter');
|
290 |
07bd3f83
|
Scott Ullrich
|
header("Location: firewall_rules.php?if={$if}");
|
291 |
5b237745
|
Scott Ullrich
|
exit;
|
292 |
|
|
}
|
293 |
|
|
}
|
294 |
3a54b6ca
|
Scott Dale
|
$closehead = false;
|
295 |
5b237745
|
Scott Ullrich
|
|
296 |
9a25487b
|
Scott Ullrich
|
include("head.inc");
|
297 |
|
|
|
298 |
3a54b6ca
|
Scott Dale
|
echo "<script type=\"text/javascript\" language=\"javascript\" src=\"/javascript/domTT/domLib.js\"></script>";
|
299 |
|
|
echo "<script type=\"text/javascript\" language=\"javascript\" src=\"/javascript/domTT/domTT.js\"></script>";
|
300 |
|
|
echo "<script type=\"text/javascript\" language=\"javascript\" src=\"/javascript/domTT/behaviour.js\"></script>";
|
301 |
|
|
echo "<script type=\"text/javascript\" language=\"javascript\" src=\"/javascript/domTT/fadomatic.js\"></script>";
|
302 |
5b237745
|
Scott Ullrich
|
?>
|
303 |
e5c6bd24
|
Scott Ullrich
|
<link rel="stylesheet" href="/javascript/chosen/chosen.css" />
|
304 |
3a54b6ca
|
Scott Dale
|
</head>
|
305 |
|
|
|
306 |
5b237745
|
Scott Ullrich
|
<body link="#0000CC" vlink="#0000CC" alink="#0000CC">
|
307 |
6134cc8f
|
Vinicius Coque
|
<script src="/javascript/chosen/chosen.jquery.js" type="text/javascript"></script>
|
308 |
5b237745
|
Scott Ullrich
|
<?php include("fbegin.inc"); ?>
|
309 |
|
|
<form action="firewall_rules.php" method="post">
|
310 |
6dc83d52
|
Scott Ullrich
|
|
311 |
625dcc40
|
Bill Marquette
|
<script type="text/javascript" language="javascript" src="/javascript/row_toggle.js">
|
312 |
fa65a62b
|
Scott Ullrich
|
</script>
|
313 |
5b237745
|
Scott Ullrich
|
<?php if ($savemsg) print_info_box($savemsg); ?>
|
314 |
a368a026
|
Ermal Lu?i
|
<?php if (is_subsystem_dirty('filter')): ?><p>
|
315 |
619f2dbd
|
Scott Ullrich
|
<?php
|
316 |
|
|
if($_REQUEST['undodrag']) {
|
317 |
|
|
foreach($_REQUEST['dragtable'] as $dt)
|
318 |
|
|
$dragtable .= "&dragtable[]={$dt}";
|
319 |
891d4f60
|
Renato Botelho
|
print_info_box_np_undo(gettext("The firewall rule configuration has been changed.<br>You must apply the changes in order for them to take effect."), "apply" , gettext("Apply changes") , "firewall_rules.php?if={$_REQUEST['if']}&dragdroporder=true&{$dragtable}");
|
320 |
619f2dbd
|
Scott Ullrich
|
} else {
|
321 |
891d4f60
|
Renato Botelho
|
print_info_box_np(gettext("The firewall rule configuration has been changed.<br>You must apply the changes in order for them to take effect."));
|
322 |
619f2dbd
|
Scott Ullrich
|
}
|
323 |
|
|
?>
|
324 |
|
|
<br>
|
325 |
5b237745
|
Scott Ullrich
|
<?php endif; ?>
|
326 |
df222163
|
Scott Ullrich
|
<div id="loading" style="visibity:hidden">
|
327 |
6dc83d52
|
Scott Ullrich
|
<img src="/themes/<?=$g['theme']?>/images/misc/loader.gif"> Loading, please wait...
|
328 |
|
|
<p/>
|
329 |
|
|
</div>
|
330 |
3a4ca65e
|
Scott Ullrich
|
<?php
|
331 |
|
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/before_table");
|
332 |
|
|
?>
|
333 |
07bd3f83
|
Scott Ullrich
|
<table width="100%" border="0" cellpadding="0" cellspacing="0">
|
334 |
37e2071c
|
Scott Ullrich
|
<tr><td class="tabnavtbl">
|
335 |
0366b748
|
Scott Ullrich
|
<?php
|
336 |
|
|
/* active tabs */
|
337 |
|
|
$tab_array = array();
|
338 |
92125c97
|
Ermal Luçi
|
if ("FloatingRules" == $if)
|
339 |
|
|
$active = true;
|
340 |
|
|
else
|
341 |
|
|
$active = false;
|
342 |
38f90dc8
|
Rafael Lucas
|
$tab_array[] = array(gettext("Floating"), $active, "firewall_rules.php?if=FloatingRules");
|
343 |
0366b748
|
Scott Ullrich
|
$tabscounter = 0; $i = 0; foreach ($iflist as $ifent => $ifname) {
|
344 |
|
|
if ($ifent == $if)
|
345 |
|
|
$active = true;
|
346 |
|
|
else
|
347 |
|
|
$active = false;
|
348 |
|
|
$tab_array[] = array($ifname, $active, "firewall_rules.php?if={$ifent}");
|
349 |
|
|
}
|
350 |
|
|
display_top_tabs($tab_array);
|
351 |
|
|
?>
|
352 |
07bd3f83
|
Scott Ullrich
|
</td></tr>
|
353 |
b2ffe419
|
Scott Ullrich
|
<tr>
|
354 |
d732f186
|
Bill Marquette
|
<td>
|
355 |
|
|
<div id="mainarea">
|
356 |
1db196b2
|
Scott Ullrich
|
<table class="tabcont" width="100%" border="0" cellpadding="0" cellspacing="0">
|
357 |
b733ce0d
|
Scott Ullrich
|
<?php
|
358 |
|
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/before_first_tr");
|
359 |
|
|
?>
|
360 |
1db196b2
|
Scott Ullrich
|
<tr id="frheader">
|
361 |
|
|
<td width="3%" class="list"> </td>
|
362 |
|
|
<td width="5%" class="list"> </td>
|
363 |
5fec5fe4
|
Scott Ullrich
|
<td width="3%" class="listhdrr"><?=gettext("ID");?></td>
|
364 |
1db196b2
|
Scott Ullrich
|
<?php
|
365 |
|
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/pre_id_tablehead");
|
366 |
|
|
?>
|
367 |
|
|
<td width="6%" class="listhdrr"><?=gettext("Proto");?></td>
|
368 |
|
|
<td width="12%" class="listhdrr"><?=gettext("Source");?></td>
|
369 |
|
|
<td width="6%" class="listhdrr"><?=gettext("Port");?></td>
|
370 |
|
|
<td width="12%" class="listhdrr"><?=gettext("Destination");?></td>
|
371 |
|
|
<td width="6%" class="listhdrr"><?=gettext("Port");?></td>
|
372 |
|
|
<td width="5%" class="listhdrr"><?=gettext("Gateway");?></td>
|
373 |
|
|
<td width="8%" class="listhdrr"><?=gettext("Queue");?></td>
|
374 |
|
|
<td width="5%" class="listhdrr"><?=gettext("Schedule");?></td>
|
375 |
|
|
<?php
|
376 |
10995178
|
Scott Ullrich
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/pre_desc_tablehead");
|
377 |
1db196b2
|
Scott Ullrich
|
?>
|
378 |
|
|
<td width="19%" class="listhdr"><?=gettext("Description");?></td>
|
379 |
|
|
<td width="10%" class="list">
|
380 |
d415d821
|
Seth Mos
|
<table border="0" cellspacing="0" cellpadding="1">
|
381 |
|
|
<tr>
|
382 |
|
|
<?php
|
383 |
|
|
$nrules = 0;
|
384 |
|
|
for ($i = 0; isset($a_filter[$i]); $i++) {
|
385 |
|
|
$filterent = $a_filter[$i];
|
386 |
92125c97
|
Ermal Luçi
|
if ($filterent['interface'] != $if && !isset($filterent['floating']))
|
387 |
f1c49ff4
|
Scott Ullrich
|
continue;
|
388 |
|
|
if (isset($filterent['floating']) && "FloatingRules" != $if)
|
389 |
d415d821
|
Seth Mos
|
continue;
|
390 |
|
|
$nrules++;
|
391 |
|
|
}
|
392 |
|
|
?>
|
393 |
|
|
<td>
|
394 |
|
|
<?php if ($nrules == 0): ?>
|
395 |
7a808e01
|
Carlos Eduardo Ramos
|
<img src="./themes/<?= $g['theme']; ?>/images/icons/icon_x_d.gif" width="17" height="17" title="<?gettext("delete selected rules"); ?>" border="0"><?php else: ?>
|
396 |
d281f557
|
Vinicius Coque
|
<input name="del" type="image" src="./themes/<?= $g['theme']; ?>/images/icons/icon_x.gif" width="17" height="17" title="<?=gettext("delete selected rules");?>" onclick="return confirm('<?=gettext('Do you really want to delete the selected rules?');?>')"><?php endif; ?>
|
397 |
d415d821
|
Seth Mos
|
</td>
|
398 |
dd5bf424
|
Scott Ullrich
|
<td align="center" valign="middle"><a href="firewall_rules_edit.php?if=<?=htmlspecialchars($if);?>&after=-1"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_plus.gif" title="<?=gettext("add new rule");?>" width="17" height="17" border="0"></a></td>
|
399 |
d415d821
|
Seth Mos
|
</tr>
|
400 |
|
|
</table>
|
401 |
|
|
</td>
|
402 |
|
|
</tr>
|
403 |
03976254
|
jim-p
|
<?php // Show the anti-lockout rule if it's enabled, and we are on LAN with an if count > 1, or WAN with an if count of 1.
|
404 |
|
|
if (!isset($config['system']['webgui']['noantilockout']) &&
|
405 |
|
|
(((count($config['interfaces']) > 1) && ($if == 'lan'))
|
406 |
9c37f8cd
|
jim-p
|
|| ((count($config['interfaces']) == 1) && ($if == 'wan')))):
|
407 |
|
|
|
408 |
|
|
$guiport = "80";
|
409 |
|
|
if (isset($config['system']['webgui']['port']) && $config['system']['webgui']['port'] <> "")
|
410 |
|
|
$guiport = "{$config['system']['webgui']['port']}";
|
411 |
|
|
if ($config['system']['webgui']['protocol'] == "https")
|
412 |
|
|
$guiport .= "<br/>443";
|
413 |
|
|
|
414 |
|
|
$sshport = "";
|
415 |
|
|
if (isset($config['system']['enablesshd'])) {
|
416 |
d3347fdf
|
jim-p
|
$sshport = ($config['system']['ssh']['port']) ? $config['system']['ssh']['port'] : 22;
|
417 |
9c37f8cd
|
jim-p
|
}
|
418 |
d3347fdf
|
jim-p
|
$sshport = "{$sshport}<br/>";
|
419 |
9c37f8cd
|
jim-p
|
?>
|
420 |
03976254
|
jim-p
|
<tr valign="top" id="antilockout">
|
421 |
|
|
<td class="list"> </td>
|
422 |
|
|
<td class="listt" align="center"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_pass.gif" width="11" height="11" border="0"></td>
|
423 |
|
|
<td class="listlr" style="background-color: #E0E0E0"></td>
|
424 |
5fec5fe4
|
Scott Ullrich
|
<?php
|
425 |
|
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/pre_id_tr_antilockout");
|
426 |
|
|
?>
|
427 |
03976254
|
jim-p
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
428 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
429 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
430 |
|
|
<td class="listr" style="background-color: #E0E0E0"><?=$iflist[$if];?> Address</td>
|
431 |
9c37f8cd
|
jim-p
|
<td class="listr" style="background-color: #E0E0E0"><?= $sshport . $guiport ?></td>
|
432 |
03976254
|
jim-p
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
433 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
434 |
|
|
<td class="listr" style="background-color: #E0E0E0"></td>
|
435 |
|
|
<td class="listbg"><?=gettext("Anti-Lockout Rule");?></td>
|
436 |
|
|
<td valign="middle" nowrap class="list">
|
437 |
|
|
<table border="0" cellspacing="0" cellpadding="1">
|
438 |
|
|
<tr>
|
439 |
|
|
<td><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_left_d.gif" width="17" height="17" title="<?=gettext("move selected rules before this rule");?>"></td>
|
440 |
|
|
<td><a href="system_advanced_admin.php"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_e.gif" title="<?=gettext("edit rule");?>" width="17" height="17" border="0"></a></td>
|
441 |
|
|
</tr>
|
442 |
|
|
<tr>
|
443 |
|
|
<td align="center" valign="middle"></td>
|
444 |
|
|
<td><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_plus_d.gif" title="<?=gettext("add a new rule based on this one");?>" width="17" height="17" border="0"></td>
|
445 |
|
|
</tr>
|
446 |
|
|
</table>
|
447 |
|
|
</td>
|
448 |
|
|
</tr>
|
449 |
|
|
<?php endif; ?>
|
450 |
|
|
|
451 |
f1f60c92
|
Ermal Luçi
|
<?php if (isset($config['interfaces'][$if]['blockpriv'])): ?>
|
452 |
d9eeccbd
|
Scott Ullrich
|
<tr valign="top" id="frrfc1918">
|
453 |
664742f7
|
Renato Botelho
|
<td class="list"> </td>
|
454 |
f77830b3
|
Scott Ullrich
|
<td class="listt" align="center"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_block.gif" width="11" height="11" border="0"></td>
|
455 |
56a10568
|
Scott Ullrich
|
<td class="listlr" style="background-color: #E0E0E0"></td>
|
456 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
457 |
|
|
<td class="listr" style="background-color: #E0E0E0"><?=gettext("RFC 1918 networks");?></td>
|
458 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
459 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
460 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
461 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
462 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
463 |
|
|
<td class="listr" style="background-color: #E0E0E0"></td>
|
464 |
38f90dc8
|
Rafael Lucas
|
<td class="listbg"><?=gettext("Block private networks");?></td>
|
465 |
d9eeccbd
|
Scott Ullrich
|
<td valign="middle" nowrap class="list">
|
466 |
|
|
<table border="0" cellspacing="0" cellpadding="1">
|
467 |
|
|
<tr>
|
468 |
38f90dc8
|
Rafael Lucas
|
<td><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_left_d.gif" width="17" height="17" title="<?=gettext("move selected rules before this rule");?>"></td>
|
469 |
dd5bf424
|
Scott Ullrich
|
<td><a href="interfaces.php?if=<?=htmlspecialchars($if)?>#rfc1918"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_e.gif" title="<?=gettext("edit rule");?>" width="17" height="17" border="0"></a></td>
|
470 |
d9eeccbd
|
Scott Ullrich
|
</tr>
|
471 |
|
|
<tr>
|
472 |
|
|
<td align="center" valign="middle"></td>
|
473 |
38f90dc8
|
Rafael Lucas
|
<td><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_plus_d.gif" title="<?=gettext("add a new rule based on this one");?>" width="17" height="17" border="0"></td>
|
474 |
d9eeccbd
|
Scott Ullrich
|
</tr>
|
475 |
|
|
</table>
|
476 |
|
|
</td>
|
477 |
|
|
</tr>
|
478 |
c20c0f5a
|
Scott Ullrich
|
<?php endif; ?>
|
479 |
f1f60c92
|
Ermal Luçi
|
<?php if (isset($config['interfaces'][$if]['blockbogons'])): ?>
|
480 |
c20c0f5a
|
Scott Ullrich
|
<tr valign="top" id="frrfc1918">
|
481 |
664742f7
|
Renato Botelho
|
<td class="list"> </td>
|
482 |
c20c0f5a
|
Scott Ullrich
|
<td class="listt" align="center"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_block.gif" width="11" height="11" border="0"></td>
|
483 |
56a10568
|
Scott Ullrich
|
<td class="listlr" style="background-color: #E0E0E0"></td>
|
484 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
485 |
|
|
<td class="listr" style="background-color: #E0E0E0"><?=gettext("Reserved/not assigned by IANA");?></td>
|
486 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
487 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
488 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
489 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
490 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
491 |
|
|
<td class="listr" style="background-color: #E0E0E0">*</td>
|
492 |
38f90dc8
|
Rafael Lucas
|
<td class="listbg"><?=gettext("Block bogon networks");?></td>
|
493 |
c20c0f5a
|
Scott Ullrich
|
<td valign="middle" nowrap class="list">
|
494 |
|
|
<table border="0" cellspacing="0" cellpadding="1">
|
495 |
|
|
<tr>
|
496 |
38f90dc8
|
Rafael Lucas
|
<td><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_left_d.gif" width="17" height="17" title="<?=gettext("move selected rules before this rule");?>"></td>
|
497 |
dd5bf424
|
Scott Ullrich
|
<td><a href="interfaces.php?if=<?=htmlspecialchars($if)?>#rfc1918"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_e.gif" title="<?=gettext("edit rule");?>" width="17" height="17" border="0"></a></td>
|
498 |
c20c0f5a
|
Scott Ullrich
|
</tr>
|
499 |
|
|
<tr>
|
500 |
|
|
<td align="center" valign="middle"></td>
|
501 |
38f90dc8
|
Rafael Lucas
|
<td><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_plus_d.gif" title="<?=gettext("add a new rule based on this one");?>" width="17" height="17" border="0"></td>
|
502 |
c20c0f5a
|
Scott Ullrich
|
</tr>
|
503 |
|
|
</table>
|
504 |
|
|
</td>
|
505 |
|
|
</tr>
|
506 |
|
|
<?php endif; ?>
|
507 |
32c58070
|
Scott Ullrich
|
<tbody id="dragtable" width="100%">
|
508 |
07bd3f83
|
Scott Ullrich
|
<?php $nrules = 0; for ($i = 0; isset($a_filter[$i]); $i++):
|
509 |
20246b93
|
Scott Ullrich
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/row_start");
|
510 |
07bd3f83
|
Scott Ullrich
|
$filterent = $a_filter[$i];
|
511 |
92125c97
|
Ermal Luçi
|
if ($filterent['interface'] != $if && !isset($filterent['floating']))
|
512 |
f1c49ff4
|
Scott Ullrich
|
continue;
|
513 |
|
|
if (isset($filterent['floating']) && "FloatingRules" != $if)
|
514 |
|
|
continue;
|
515 |
8e0c3760
|
Ermal
|
$isadvset = firewall_check_for_advanced_options($filterent);
|
516 |
f1c49ff4
|
Scott Ullrich
|
if($isadvset)
|
517 |
e36c52f4
|
Erik Fonnesbeck
|
$advanced_set = "<img src=\"./themes/{$g['theme']}/images/icons/icon_advanced.gif\" title=\"" . gettext("advanced settings set") . ": {$isadvset}\" border=\"0\">";
|
518 |
f1c49ff4
|
Scott Ullrich
|
else
|
519 |
7c1e7572
|
Scott Ullrich
|
$advanced_set = "";
|
520 |
07bd3f83
|
Scott Ullrich
|
?>
|
521 |
37e2071c
|
Scott Ullrich
|
<tr valign="top" id="fr<?=$nrules;?>">
|
522 |
f1c49ff4
|
Scott Ullrich
|
<td class="listt">
|
523 |
|
|
<input type="checkbox" id="frc<?=$nrules;?>" name="rule[]" value="<?=$i;?>" onClick="fr_bgcolor('<?=$nrules;?>')" style="margin: 0; padding: 0; width: 15px; height: 15px;">
|
524 |
|
|
<?php echo $advanced_set; ?>
|
525 |
|
|
</td>
|
526 |
37e2071c
|
Scott Ullrich
|
<td class="listt" align="center">
|
527 |
5b237745
|
Scott Ullrich
|
<?php if ($filterent['type'] == "block")
|
528 |
|
|
$iconfn = "block";
|
529 |
|
|
else if ($filterent['type'] == "reject") {
|
530 |
e91baab8
|
Chris Buechler
|
$iconfn = "reject";
|
531 |
5b237745
|
Scott Ullrich
|
} else
|
532 |
|
|
$iconfn = "pass";
|
533 |
|
|
if (isset($filterent['disabled'])) {
|
534 |
|
|
$textss = "<span class=\"gray\">";
|
535 |
|
|
$textse = "</span>";
|
536 |
|
|
$iconfn .= "_d";
|
537 |
|
|
} else {
|
538 |
|
|
$textss = $textse = "";
|
539 |
|
|
}
|
540 |
|
|
?>
|
541 |
dd5bf424
|
Scott Ullrich
|
<a href="?if=<?=htmlspecialchars($if);?>&act=toggle&id=<?=$i;?>"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_<?=$iconfn;?>.gif" width="11" height="11" border="0" title="<?=gettext("click to toggle enabled/disabled status");?>"></a>
|
542 |
5b237745
|
Scott Ullrich
|
<?php if (isset($filterent['log'])):
|
543 |
6fecc73b
|
Scott Dale
|
$iconfnlog = "log_s";
|
544 |
5b237745
|
Scott Ullrich
|
if (isset($filterent['disabled']))
|
545 |
6fecc73b
|
Scott Dale
|
$iconfnlog .= "_d";
|
546 |
5b237745
|
Scott Ullrich
|
?>
|
547 |
6fecc73b
|
Scott Dale
|
<br><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_<?=$iconfnlog;?>.gif" width="11" height="15" border="0">
|
548 |
5b237745
|
Scott Ullrich
|
<?php endif; ?>
|
549 |
|
|
</td>
|
550 |
3a54b6ca
|
Scott Dale
|
<?php
|
551 |
2a9db752
|
Scott Dale
|
|
552 |
2a113ca9
|
Scott Dale
|
//build Alias popup box
|
553 |
3a54b6ca
|
Scott Dale
|
$span_end = "";
|
554 |
|
|
$alias_src_span_begin = "";
|
555 |
|
|
$alias_src_port_span_begin = "";
|
556 |
|
|
$alias_dst_span_begin = "";
|
557 |
|
|
$alias_dst_port_span_begin = "";
|
558 |
|
|
|
559 |
2a9db752
|
Scott Dale
|
$alias_popup = rule_popup($filterent['source']['address'],pprint_port($filterent['source']['port']),$filterent['destination']['address'],pprint_port($filterent['destination']['port']));
|
560 |
|
|
$span_end = "</U></span>";
|
561 |
3a54b6ca
|
Scott Dale
|
|
562 |
2a9db752
|
Scott Dale
|
$alias_src_span_begin = $alias_popup["src"];
|
563 |
|
|
|
564 |
|
|
$alias_src_port_span_begin = $alias_popup["srcport"];
|
565 |
|
|
|
566 |
|
|
$alias_dst_span_begin = $alias_popup["dst"];
|
567 |
|
|
|
568 |
|
|
$alias_dst_port_span_begin = $alias_popup["dstport"];
|
569 |
3a54b6ca
|
Scott Dale
|
|
570 |
2a113ca9
|
Scott Dale
|
//build Schedule popup box
|
571 |
|
|
$a_schedules = &$config['schedules']['schedule'];
|
572 |
|
|
$schedule_span_begin = "";
|
573 |
|
|
$schedule_span_end = "";
|
574 |
d2aa8cd6
|
sullrich
|
$sched_caption_escaped = "";
|
575 |
eace1363
|
Scott Dale
|
$sched_content = "";
|
576 |
3b907eb1
|
Scott Dale
|
$schedstatus = false;
|
577 |
38f90dc8
|
Rafael Lucas
|
$dayArray = array (gettext('Mon'),gettext('Tues'),gettext('Wed'),gettext('Thur'),gettext('Fri'),gettext('Sat'),gettext('Sun'));
|
578 |
|
|
$monthArray = array (gettext('January'),gettext('February'),gettext('March'),gettext('April'),gettext('May'),gettext('June'),gettext('July'),gettext('August'),gettext('September'),gettext('October'),gettext('November'),gettext('December'));
|
579 |
b6ab9bd2
|
Ermal
|
if($config['schedules']['schedule'] <> "" and is_array($config['schedules']['schedule'])) {
|
580 |
8ce97a08
|
Scott Dale
|
foreach ($a_schedules as $schedule)
|
581 |
|
|
{
|
582 |
|
|
if ($schedule['name'] == $filterent['sched'] ){
|
583 |
60120e37
|
Ermal Lu?i
|
$schedstatus = filter_get_time_based_rule_status($schedule);
|
584 |
8ce97a08
|
Scott Dale
|
|
585 |
|
|
foreach($schedule['timerange'] as $timerange) {
|
586 |
|
|
$tempFriendlyTime = "";
|
587 |
|
|
$tempID = "";
|
588 |
|
|
$firstprint = false;
|
589 |
|
|
if ($timerange){
|
590 |
|
|
$dayFriendly = "";
|
591 |
|
|
$tempFriendlyTime = "";
|
592 |
|
|
|
593 |
|
|
//get hours
|
594 |
|
|
$temptimerange = $timerange['hour'];
|
595 |
|
|
$temptimeseparator = strrpos($temptimerange, "-");
|
596 |
2a113ca9
|
Scott Dale
|
|
597 |
8ce97a08
|
Scott Dale
|
$starttime = substr ($temptimerange, 0, $temptimeseparator);
|
598 |
|
|
$stoptime = substr ($temptimerange, $temptimeseparator+1);
|
599 |
2a113ca9
|
Scott Dale
|
|
600 |
8ce97a08
|
Scott Dale
|
if ($timerange['month']){
|
601 |
|
|
$tempmontharray = explode(",", $timerange['month']);
|
602 |
|
|
$tempdayarray = explode(",",$timerange['day']);
|
603 |
|
|
$arraycounter = 0;
|
604 |
|
|
$firstDayFound = false;
|
605 |
|
|
$firstPrint = false;
|
606 |
|
|
foreach ($tempmontharray as $monthtmp){
|
607 |
|
|
$month = $tempmontharray[$arraycounter];
|
608 |
|
|
$day = $tempdayarray[$arraycounter];
|
609 |
2a113ca9
|
Scott Dale
|
|
610 |
|
|
if (!$firstDayFound)
|
611 |
|
|
{
|
612 |
8ce97a08
|
Scott Dale
|
$firstDay = $day;
|
613 |
|
|
$firstmonth = $month;
|
614 |
2a113ca9
|
Scott Dale
|
$firstDayFound = true;
|
615 |
|
|
}
|
616 |
8ce97a08
|
Scott Dale
|
|
617 |
|
|
$currentDay = $day;
|
618 |
|
|
$nextDay = $tempdayarray[$arraycounter+1];
|
619 |
|
|
$currentDay++;
|
620 |
|
|
if (($currentDay != $nextDay) || ($tempmontharray[$arraycounter] != $tempmontharray[$arraycounter+1])){
|
621 |
|
|
if ($firstPrint)
|
622 |
2a113ca9
|
Scott Dale
|
$dayFriendly .= ", ";
|
623 |
|
|
$currentDay--;
|
624 |
|
|
if ($currentDay != $firstDay)
|
625 |
8ce97a08
|
Scott Dale
|
$dayFriendly .= $monthArray[$firstmonth-1] . " " . $firstDay . " - " . $currentDay ;
|
626 |
2a113ca9
|
Scott Dale
|
else
|
627 |
8ce97a08
|
Scott Dale
|
$dayFriendly .= $monthArray[$month-1] . " " . $day;
|
628 |
2a113ca9
|
Scott Dale
|
$firstDayFound = false;
|
629 |
8ce97a08
|
Scott Dale
|
$firstPrint = true;
|
630 |
|
|
}
|
631 |
|
|
$arraycounter++;
|
632 |
2a113ca9
|
Scott Dale
|
}
|
633 |
|
|
}
|
634 |
8ce97a08
|
Scott Dale
|
else
|
635 |
|
|
{
|
636 |
|
|
$tempdayFriendly = $timerange['position'];
|
637 |
|
|
$firstDayFound = false;
|
638 |
|
|
$tempFriendlyDayArray = explode(",", $tempdayFriendly);
|
639 |
|
|
$currentDay = "";
|
640 |
|
|
$firstDay = "";
|
641 |
|
|
$nextDay = "";
|
642 |
|
|
$counter = 0;
|
643 |
|
|
foreach ($tempFriendlyDayArray as $day){
|
644 |
|
|
if ($day != ""){
|
645 |
|
|
if (!$firstDayFound)
|
646 |
|
|
{
|
647 |
|
|
$firstDay = $tempFriendlyDayArray[$counter];
|
648 |
|
|
$firstDayFound = true;
|
649 |
|
|
}
|
650 |
|
|
$currentDay =$tempFriendlyDayArray[$counter];
|
651 |
|
|
//get next day
|
652 |
|
|
$nextDay = $tempFriendlyDayArray[$counter+1];
|
653 |
|
|
$currentDay++;
|
654 |
|
|
if ($currentDay != $nextDay){
|
655 |
|
|
if ($firstprint)
|
656 |
|
|
$dayFriendly .= ", ";
|
657 |
|
|
$currentDay--;
|
658 |
|
|
if ($currentDay != $firstDay)
|
659 |
|
|
$dayFriendly .= $dayArray[$firstDay-1] . " - " . $dayArray[$currentDay-1];
|
660 |
|
|
else
|
661 |
|
|
$dayFriendly .= $dayArray[$firstDay-1];
|
662 |
|
|
$firstDayFound = false;
|
663 |
|
|
$firstprint = true;
|
664 |
|
|
}
|
665 |
|
|
$counter++;
|
666 |
|
|
}
|
667 |
|
|
}
|
668 |
|
|
}
|
669 |
|
|
$timeFriendly = $starttime . " - " . $stoptime;
|
670 |
|
|
$description = $timerange['rangedescr'];
|
671 |
|
|
$sched_content .= $dayFriendly . "; " . $timeFriendly . "<br>";
|
672 |
|
|
}
|
673 |
2a113ca9
|
Scott Dale
|
}
|
674 |
d2aa8cd6
|
sullrich
|
$sched_caption_escaped = str_replace("'", "\'", $schedule['descr']);
|
675 |
|
|
$schedule_span_begin = "<span style=\"cursor: help;\" onmouseover=\"domTT_activate(this, event, 'content', '<h1>{$sched_caption_escaped}</h1><p>{$sched_content}</p>', 'trail', true, 'delay', 0, 'fade', 'both', 'fadeMax', 93, 'styleClass', 'niceTitle');\" onmouseout=\"this.style.color = ''; domTT_mouseout(this, event);\"><U>";
|
676 |
8ce97a08
|
Scott Dale
|
$schedule_span_end = "</U></span>";
|
677 |
2a113ca9
|
Scott Dale
|
}
|
678 |
|
|
}
|
679 |
|
|
}
|
680 |
6fecc73b
|
Scott Dale
|
$printicon = false;
|
681 |
616dd997
|
Scott Dale
|
$alttext = "";
|
682 |
|
|
$image = "";
|
683 |
|
|
if (!isset($filterent['disabled'])){
|
684 |
|
|
if ($schedstatus)
|
685 |
|
|
{
|
686 |
|
|
if ($iconfn == "block" || $iconfn == "reject")
|
687 |
|
|
{
|
688 |
5b552ac7
|
Scott Dale
|
$image = "icon_block";
|
689 |
38f90dc8
|
Rafael Lucas
|
$alttext = gettext("Traffic matching this rule is currently being denied");
|
690 |
616dd997
|
Scott Dale
|
}
|
691 |
|
|
else
|
692 |
|
|
{
|
693 |
5b552ac7
|
Scott Dale
|
$image = "icon_pass";
|
694 |
38f90dc8
|
Rafael Lucas
|
$alttext = gettext("Traffic matching this rule is currently being allowed");
|
695 |
616dd997
|
Scott Dale
|
}
|
696 |
|
|
$printicon = true;
|
697 |
|
|
}
|
698 |
|
|
else if ($filterent['sched'])
|
699 |
|
|
{
|
700 |
|
|
if ($iconfn == "block" || $iconfn == "reject")
|
701 |
5b552ac7
|
Scott Dale
|
$image = "icon_block_d";
|
702 |
616dd997
|
Scott Dale
|
else
|
703 |
5b552ac7
|
Scott Dale
|
$image = "icon_block";
|
704 |
38f90dc8
|
Rafael Lucas
|
$alttext = gettext("This rule is not currently active because its period has expired");
|
705 |
616dd997
|
Scott Dale
|
$printicon = true;
|
706 |
|
|
}
|
707 |
|
|
}
|
708 |
3a54b6ca
|
Scott Dale
|
?>
|
709 |
98e29097
|
Bill Marquette
|
<td class="listlr" onClick="fr_toggle(<?=$nrules;?>)" id="frd<?=$nrules;?>" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';">
|
710 |
b9e28d57
|
unknown
|
<?=$textss;?><?php if (isset($filterent['id'])) echo $filterent['id']; else echo ""; ?><?=$textse;?>
|
711 |
|
|
</td>
|
712 |
5fec5fe4
|
Scott Ullrich
|
<?php
|
713 |
|
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/pre_id_tr");
|
714 |
|
|
?>
|
715 |
b9e28d57
|
unknown
|
<td class="listr" onClick="fr_toggle(<?=$nrules;?>)" id="frd<?=$nrules;?>" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';">
|
716 |
be81b340
|
Erik Fonnesbeck
|
<?=$textss;?><?php
|
717 |
290797ea
|
Seth Mos
|
if (isset($filterent['ipprotocol'])) {
|
718 |
|
|
switch($filterent['ipprotocol']) {
|
719 |
|
|
case "inet":
|
720 |
|
|
echo "IPv4 ";
|
721 |
|
|
break;
|
722 |
|
|
case "inet6":
|
723 |
|
|
echo "IPv6 ";
|
724 |
|
|
break;
|
725 |
|
|
}
|
726 |
|
|
} else {
|
727 |
|
|
echo "IPv4 ";
|
728 |
|
|
}
|
729 |
be81b340
|
Erik Fonnesbeck
|
if (isset($filterent['protocol'])) {
|
730 |
|
|
echo strtoupper($filterent['protocol']);
|
731 |
|
|
if (strtoupper($filterent['protocol']) == "ICMP" && !empty($filterent['icmptype'])) {
|
732 |
|
|
echo ' <span style="cursor: help;" title="ICMP type: ' . $icmptypes[$filterent['icmptype']] . '"><u>';
|
733 |
|
|
echo $filterent['icmptype'];
|
734 |
|
|
echo '</u></span>';
|
735 |
|
|
}
|
736 |
|
|
} else echo "*";
|
737 |
|
|
?><?=$textse;?>
|
738 |
5b237745
|
Scott Ullrich
|
</td>
|
739 |
98e29097
|
Bill Marquette
|
<td class="listr" onClick="fr_toggle(<?=$nrules;?>)" id="frd<?=$nrules;?>" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';">
|
740 |
3a54b6ca
|
Scott Dale
|
<?=$textss;?><?php echo $alias_src_span_begin;?><?php echo htmlspecialchars(pprint_address($filterent['source']));?><?php echo $alias_src_span_end;?><?=$textse;?>
|
741 |
5b237745
|
Scott Ullrich
|
</td>
|
742 |
98e29097
|
Bill Marquette
|
<td class="listr" onClick="fr_toggle(<?=$nrules;?>)" id="frd<?=$nrules;?>" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';">
|
743 |
3a54b6ca
|
Scott Dale
|
<?=$textss;?><?php echo $alias_src_port_span_begin;?><?php echo htmlspecialchars(pprint_port($filterent['source']['port'])); ?><?php echo $alias_src_port_span_end;?><?=$textse;?>
|
744 |
5b237745
|
Scott Ullrich
|
</td>
|
745 |
98e29097
|
Bill Marquette
|
<td class="listr" onClick="fr_toggle(<?=$nrules;?>)" id="frd<?=$nrules;?>" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';">
|
746 |
3a54b6ca
|
Scott Dale
|
<?=$textss;?><?php echo $alias_dst_span_begin;?><?php echo htmlspecialchars(pprint_address($filterent['destination'])); ?><?php echo $alias_dst_span_end;?><?=$textse;?>
|
747 |
5b237745
|
Scott Ullrich
|
</td>
|
748 |
3a54b6ca
|
Scott Dale
|
<td class="listr" onClick="fr_toggle(<?=$nrules;?>)" id="frd<?=$nrules;?>" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';">
|
749 |
|
|
<?=$textss;?><?php echo $alias_dst_port_span_begin;?><?php echo htmlspecialchars(pprint_port($filterent['destination']['port'])); ?><?php echo $alias_dst_port_span_end;?><?=$textse;?>
|
750 |
5b237745
|
Scott Ullrich
|
</td>
|
751 |
b504c2f8
|
Scott Ullrich
|
<td class="listr" onClick="fr_toggle(<?=$nrules;?>)" id="frd<?=$nrules;?>" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';">
|
752 |
e9832b41
|
Bill Marquette
|
<?=$textss;?><?php if (isset($config['interfaces'][$filterent['gateway']]['descr'])) echo htmlspecialchars($config['interfaces'][$filterent['gateway']]['descr']); else echo htmlspecialchars(pprint_port($filterent['gateway'])); ?><?=$textse;?>
|
753 |
b504c2f8
|
Scott Ullrich
|
</td>
|
754 |
32c58070
|
Scott Ullrich
|
<td class="listr" onClick="fr_toggle(<?=$nrules;?>)" id="frd<?=$nrules;?>" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';"><?=$textss;?>
|
755 |
197bfe96
|
Ermal Luçi
|
<?php
|
756 |
|
|
if (isset($filterent['ackqueue']) && isset($filterent['defaultqueue'])) {
|
757 |
|
|
$desc = $filterent['ackqueue'] ;
|
758 |
|
|
echo "<a href=\"firewall_shaper_queues.php?queue={$filterent['ackqueue']}&action=show\">{$desc}</a>";
|
759 |
|
|
$desc = $filterent['defaultqueue'];
|
760 |
|
|
echo "/<a href=\"firewall_shaper_queues.php?queue={$filterent['defaultqueue']}&action=show\">{$desc}</a>";
|
761 |
|
|
} else if (isset($filterent['defaultqueue'])) {
|
762 |
|
|
$desc = $filterent['defaultqueue'];
|
763 |
|
|
echo "<a href=\"firewall_shaper_queues.php?queue={$filterent['defaultqueue']}&action=show\">{$desc}</a>"; }
|
764 |
7a808e01
|
Carlos Eduardo Ramos
|
else echo gettext("none");
|
765 |
197bfe96
|
Ermal Luçi
|
?><?=$textse;?>
|
766 |
|
|
</td>
|
767 |
3595b631
|
Scott Dale
|
<td class="listr" onClick="fr_toggle(<?=$nrules;?>)" id="frd<?=$nrules;?>" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';"><font color="black">
|
768 |
d3bcf522
|
Scott Dale
|
<?php if ($printicon) { ?><img src="./themes/<?= $g['theme']; ?>/images/icons/<?php echo $image; ?>.gif" title="<?php echo $alttext;?>" border="0"><?php } ?> <?=$textss;?><?php echo $schedule_span_begin;?><?=htmlspecialchars($filterent['sched']);?><?php echo $schedule_span_end; ?><?=$textse;?>
|
769 |
7738faa8
|
Scott Ullrich
|
</td>
|
770 |
1db196b2
|
Scott Ullrich
|
<?php
|
771 |
|
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/pre_descr_tr");
|
772 |
|
|
?>
|
773 |
c2a6f323
|
Scott Ullrich
|
<td class="listbg" onClick="fr_toggle(<?=$nrules;?>)" ondblclick="document.location='firewall_rules_edit.php?id=<?=$i;?>';" class="descr">
|
774 |
07bd3f83
|
Scott Ullrich
|
<?=$textss;?><?=htmlspecialchars($filterent['descr']);?> <?=$textse;?>
|
775 |
5b237745
|
Scott Ullrich
|
</td>
|
776 |
|
|
<td valign="middle" nowrap class="list">
|
777 |
07bd3f83
|
Scott Ullrich
|
<table border="0" cellspacing="0" cellpadding="1">
|
778 |
|
|
<tr>
|
779 |
7a808e01
|
Carlos Eduardo Ramos
|
<td><input name="move_<?=$i;?>" type="image" src="./themes/<?= $g['theme']; ?>/images/icons/icon_left.gif" width="17" height="17" title="<?=gettext("move selected rules before this rule"); ?>" onMouseOver="fr_insline(<?=$nrules;?>, true)" onMouseOut="fr_insline(<?=$nrules;?>, false)"></td>
|
780 |
|
|
<td><a href="firewall_rules_edit.php?id=<?=$i;?>"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_e.gif" title="<?=gettext("edit rule"); ?>" width="17" height="17" border="0"></a></td>
|
781 |
07bd3f83
|
Scott Ullrich
|
</tr>
|
782 |
|
|
<tr>
|
783 |
dd5bf424
|
Scott Ullrich
|
<td align="center" valign="middle"><a href="firewall_rules.php?act=del&if=<?=htmlspecialchars($if);?>&id=<?=$i;?>"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_x.gif" width="17" height="17" border="0" title="<?=gettext("delete rule"); ?>" onclick="return confirm('Do you really want to delete this rule?')"></a></td>
|
784 |
7a808e01
|
Carlos Eduardo Ramos
|
<td><a href="firewall_rules_edit.php?dup=<?=$i;?>"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_plus.gif" title="<?=gettext("add a new rule based on this one"); ?>" width="17" height="17" border="0"></a></td>
|
785 |
07bd3f83
|
Scott Ullrich
|
</tr>
|
786 |
|
|
</table>
|
787 |
5b237745
|
Scott Ullrich
|
</td>
|
788 |
|
|
</tr>
|
789 |
07bd3f83
|
Scott Ullrich
|
<?php $nrules++; endfor; ?>
|
790 |
32c58070
|
Scott Ullrich
|
</tbody>
|
791 |
07bd3f83
|
Scott Ullrich
|
<?php if ($nrules == 0): ?>
|
792 |
37e2071c
|
Scott Ullrich
|
<td class="listt"></td>
|
793 |
07bd3f83
|
Scott Ullrich
|
<td class="listt"></td>
|
794 |
d5a1008d
|
Scott Ullrich
|
<td class="listlr" colspan="10" align="center" valign="middle">
|
795 |
07bd3f83
|
Scott Ullrich
|
<span class="gray">
|
796 |
7be46353
|
jim-p
|
<?php if ($_REQUEST['if'] == "FloatingRules"): ?>
|
797 |
|
|
<?=gettext("No floating rules are currently defined."); ?><br/><br/>
|
798 |
|
|
<?php else: ?>
|
799 |
|
|
<?=gettext("No rules are currently defined for this interface"); ?><br/>
|
800 |
|
|
<?=gettext("All incoming connections on this interface will be blocked until you add pass rules."); ?><br/><br/>
|
801 |
|
|
<?php endif; ?>
|
802 |
dd5bf424
|
Scott Ullrich
|
<?=gettext("Click the"); ?> <a href="firewall_rules_edit.php?if=<?=htmlspecialchars($if);?>"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_plus.gif" title="<?=gettext("add new rule");?>" border="0" width="17" height="17" align="absmiddle"></a><?=gettext(" button to add a new rule.");?></span>
|
803 |
07bd3f83
|
Scott Ullrich
|
</td>
|
804 |
|
|
<?php endif; ?>
|
805 |
37e2071c
|
Scott Ullrich
|
<tr id="fr<?=$nrules;?>">
|
806 |
|
|
<td class="list"></td>
|
807 |
|
|
<td class="list"></td>
|
808 |
8c5bf3d7
|
Scott Ullrich
|
<?php
|
809 |
|
|
pfSense_handle_custom_code("/usr/local/pkg/firewall_rules/pre_id_tr_belowtable");
|
810 |
|
|
?>
|
811 |
37e2071c
|
Scott Ullrich
|
<td class="list"> </td>
|
812 |
|
|
<td class="list"> </td>
|
813 |
|
|
<td class="list"> </td>
|
814 |
b9e28d57
|
unknown
|
<td class="list"> </td>
|
815 |
1c7e3ec6
|
Bill Marquette
|
<td class="list"> </td>
|
816 |
|
|
<td class="list"> </td>
|
817 |
|
|
<td class="list"> </td>
|
818 |
37e2071c
|
Scott Ullrich
|
<td class="list"> </td>
|
819 |
|
|
<td class="list"> </td>
|
820 |
|
|
<td class="list"> </td>
|
821 |
07bd3f83
|
Scott Ullrich
|
<td class="list">
|
822 |
|
|
<table border="0" cellspacing="0" cellpadding="1">
|
823 |
|
|
<tr>
|
824 |
|
|
<td>
|
825 |
38f90dc8
|
Rafael Lucas
|
<?php if ($nrules == 0): ?><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_left_d.gif" width="17" height="17" title="<?=gettext("move selected rules to end");?>" border="0"><?php else: ?><input name="move_<?=$i;?>" type="image" src="./themes/<?= $g['theme']; ?>/images/icons/icon_left.gif" width="17" height="17" title="<?=gettext("move selected rules to end");?>" onMouseOver="fr_insline(<?=$nrules;?>, true)" onMouseOut="fr_insline(<?=$nrules;?>, false)"><?php endif; ?></td>
|
826 |
37e2071c
|
Scott Ullrich
|
<td></td>
|
827 |
07bd3f83
|
Scott Ullrich
|
</tr>
|
828 |
|
|
<tr>
|
829 |
3086d0f8
|
Scott Ullrich
|
<td>
|
830 |
|
|
<?php if ($nrules == 0): ?>
|
831 |
38f90dc8
|
Rafael Lucas
|
<img src="./themes/<?= $g['theme']; ?>/images/icons/icon_x_d.gif" width="17" height="17" title="<?=gettext("delete selected rules");?>" border="0"><?php else: ?>
|
832 |
d281f557
|
Vinicius Coque
|
<input name="del" type="image" src="./themes/<?= $g['theme']; ?>/images/icons/icon_x.gif" width="17" height="17" title="<?=gettext("delete selected rules");?>" onclick="return confirm('<?=gettext('Do you really want to delete the selected rules?');?>')"><?php endif; ?>
|
833 |
3086d0f8
|
Scott Ullrich
|
</td>
|
834 |
dd5bf424
|
Scott Ullrich
|
<td><a href="firewall_rules_edit.php?if=<?=htmlspecialchars($if);?>"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_plus.gif" title="<?=gettext("add new rule");?>" width="17" height="17" border="0"></a></td>
|
835 |
07bd3f83
|
Scott Ullrich
|
</tr>
|
836 |
|
|
</table>
|
837 |
|
|
</td>
|
838 |
5b237745
|
Scott Ullrich
|
</tr>
|
839 |
|
|
</table>
|
840 |
d732f186
|
Bill Marquette
|
<table class="tabcont" width="100%" border="0" cellspacing="0" cellpadding="0">
|
841 |
b2ffe419
|
Scott Ullrich
|
<tr>
|
842 |
677c0869
|
Erik Kristensen
|
<td width="16"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_pass.gif" width="11" height="11"></td>
|
843 |
38f90dc8
|
Rafael Lucas
|
<td><?=gettext("pass");?></td>
|
844 |
5b237745
|
Scott Ullrich
|
<td width="14"></td>
|
845 |
677c0869
|
Erik Kristensen
|
<td width="16"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_block.gif" width="11" height="11"></td>
|
846 |
38f90dc8
|
Rafael Lucas
|
<td><?=gettext("block");?></td>
|
847 |
5b237745
|
Scott Ullrich
|
<td width="14"></td>
|
848 |
677c0869
|
Erik Kristensen
|
<td width="16"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_reject.gif" width="11" height="11"></td>
|
849 |
38f90dc8
|
Rafael Lucas
|
<td><?=gettext("reject");?></td>
|
850 |
5b237745
|
Scott Ullrich
|
<td width="14"></td>
|
851 |
677c0869
|
Erik Kristensen
|
<td width="16"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_log.gif" width="11" height="11"></td>
|
852 |
38f90dc8
|
Rafael Lucas
|
<td><?=gettext("log");?></td>
|
853 |
5b237745
|
Scott Ullrich
|
</tr>
|
854 |
b2ffe419
|
Scott Ullrich
|
<tr>
|
855 |
677c0869
|
Erik Kristensen
|
<td><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_pass_d.gif" width="11" height="11"></td>
|
856 |
38f90dc8
|
Rafael Lucas
|
<td nowrap><?=gettext("pass (disabled)");?></td>
|
857 |
d732f186
|
Bill Marquette
|
<td> </td>
|
858 |
677c0869
|
Erik Kristensen
|
<td><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_block_d.gif" width="11" height="11"></td>
|
859 |
38f90dc8
|
Rafael Lucas
|
<td nowrap><?=gettext("block (disabled)");?></td>
|
860 |
d732f186
|
Bill Marquette
|
<td> </td>
|
861 |
677c0869
|
Erik Kristensen
|
<td><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_reject_d.gif" width="11" height="11"></td>
|
862 |
38f90dc8
|
Rafael Lucas
|
<td nowrap><?=gettext("reject (disabled)");?></td>
|
863 |
d732f186
|
Bill Marquette
|
<td> </td>
|
864 |
677c0869
|
Erik Kristensen
|
<td width="16"><img src="./themes/<?= $g['theme']; ?>/images/icons/icon_log_d.gif" width="11" height="11"></td>
|
865 |
38f90dc8
|
Rafael Lucas
|
<td nowrap><?=gettext("log (disabled)");?></td>
|
866 |
5b237745
|
Scott Ullrich
|
</tr>
|
867 |
d732f186
|
Bill Marquette
|
<tr>
|
868 |
05860c07
|
Scott Ullrich
|
<td colspan="10">
|
869 |
c662cc9d
|
Scott Ullrich
|
<p/>
|
870 |
|
|
<strong>
|
871 |
45a06eeb
|
Renato Botelho
|
<span class="red"><?=gettext("Hint:");?></span>
|
872 |
c662cc9d
|
Scott Ullrich
|
</strong><br>
|
873 |
|
|
<ul>
|
874 |
badc2340
|
jim-p
|
<? if ("FloatingRules" != $if): ?>
|
875 |
|
|
<li><?=gettext("Rules are evaluated on a first-match basis (i.e. " .
|
876 |
|
|
"the action of the first rule to match a packet will be executed). " .
|
877 |
|
|
"This means that if you use block rules, you'll have to pay attention " .
|
878 |
|
|
"to the rule order. Everything that isn't explicitly passed is blocked " .
|
879 |
|
|
"by default. ");?>
|
880 |
|
|
</li>
|
881 |
|
|
<? else: ?>
|
882 |
|
|
<li><?=gettext("Floating rules are evaluated on a first-match basis (i.e. " .
|
883 |
|
|
"the action of the first rule to match a packet will be executed) only " .
|
884 |
|
|
"if the 'quick' option is checked on a rule. Otherwise they will only apply if no " .
|
885 |
|
|
"other rules match. Pay close attention to the rule order and options " .
|
886 |
|
|
"chosen. If no rule here matches, the per-interface or default rules are used. ");?>
|
887 |
|
|
</li>
|
888 |
|
|
<? endif; ?>
|
889 |
c662cc9d
|
Scott Ullrich
|
</ul>
|
890 |
d732f186
|
Bill Marquette
|
</td>
|
891 |
|
|
</tr>
|
892 |
|
|
</table>
|
893 |
|
|
</div>
|
894 |
|
|
</td>
|
895 |
|
|
</tr>
|
896 |
|
|
</table>
|
897 |
dd5bf424
|
Scott Ullrich
|
<input type="hidden" name="if" value="<?=htmlspecialchars($if);?>">
|
898 |
32c58070
|
Scott Ullrich
|
<script type="text/javascript">
|
899 |
7abaeb1f
|
Scott Ullrich
|
var number_of_rules = <?=$nrules?>;
|
900 |
32c58070
|
Scott Ullrich
|
<?php $nrules = 0; for ($i = 0; isset($a_filter[$i]); $i++): ?>
|
901 |
7ff41586
|
Scott Ullrich
|
/*
|
902 |
32c58070
|
Scott Ullrich
|
Sortable.create("dragtable", {
|
903 |
|
|
tag:"tr",
|
904 |
|
|
format:"fr([0-9999999])",
|
905 |
|
|
containment:["dragtable"],
|
906 |
7abaeb1f
|
Scott Ullrich
|
onChange:function(affected) {
|
907 |
|
|
document.body.style.cursor = 'move';
|
908 |
32c58070
|
Scott Ullrich
|
},
|
909 |
7abaeb1f
|
Scott Ullrich
|
onUpdate:function(container) {
|
910 |
|
|
document.body.style.cursor = 'move';
|
911 |
32c58070
|
Scott Ullrich
|
updateOrder(Sortable.serialize('dragtable', 'tr'));
|
912 |
|
|
}
|
913 |
|
|
});
|
914 |
7ff41586
|
Scott Ullrich
|
*/
|
915 |
32c58070
|
Scott Ullrich
|
<?php endfor; ?>
|
916 |
|
|
function updateOrder(order) {
|
917 |
12c54789
|
Scott Ullrich
|
if(document.getElementById("redboxtable"))
|
918 |
df39dd8a
|
Vinicius Coque
|
jQuery('#redboxtable').hide();
|
919 |
|
|
jQuery('#loading').show();
|
920 |
32c58070
|
Scott Ullrich
|
document.body.style.cursor = 'wait';
|
921 |
dd5bf424
|
Scott Ullrich
|
document.location = 'firewall_rules.php?if=<?=htmlspecialchars($if);?>&dragdroporder=true&' + Sortable.serialize('dragtable', 'tr');
|
922 |
32c58070
|
Scott Ullrich
|
return;
|
923 |
|
|
}
|
924 |
df39dd8a
|
Vinicius Coque
|
jQuery('#loading').hide();
|
925 |
32c58070
|
Scott Ullrich
|
</script>
|
926 |
07bd3f83
|
Scott Ullrich
|
</form>
|
927 |
5b237745
|
Scott Ullrich
|
<?php include("fend.inc"); ?>
|
928 |
af4aa061
|
Scott Ullrich
|
</body>
|
929 |
|
|
</html>
|