/usr/local/www/diag_logs_ipsec.php - Annotate - pfSense - pfSense bugtracker

| Branch: | Tag: | Revision:

root/usr/local/www/diag_logs_ipsec.php @ 334ca9d7

1	32887d33	Scott Ullrich	<?php
2	b46bfcf5	Bill Marquette	/* $Id$ */
3	32887d33	Scott Ullrich	/*
4			diag_logs.php
5	13d193c2	Scott Ullrich	Copyright (C) 2004-2009 Scott Ullrich
6	32887d33	Scott Ullrich	All rights reserved.
7
8			originally part of m0n0wall (http://m0n0.ch/wall)
9			Copyright (C) 2003-2004 Manuel Kasper <mk@neon1.net>.
10			All rights reserved.
11
12			Redistribution and use in source and binary forms, with or without
13			modification, are permitted provided that the following conditions are met:
14
15			1. Redistributions of source code must retain the above copyright notice,
16			this list of conditions and the following disclaimer.
17
18			2. Redistributions in binary form must reproduce the above copyright
19			notice, this list of conditions and the following disclaimer in the
20			documentation and/or other materials provided with the distribution.
21
22			THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
23			INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
24			AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
25			AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
26			OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
27			SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
28			INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
29			CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
30			ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
31			POSSIBILITY OF SUCH DAMAGE.
32			*/
33
34	13d193c2	Scott Ullrich	/*
35			pfSense_BUILDER_BINARIES: /sbin/ifconfig /usr/bin/awk
36			pfSense_MODULE: ipsec
37			*/
38
39	6b07c15a	Matthew Grooms	##\|+PRIV
40			##\|*IDENT=page-status-systemlogs-ipsecvpn
41			##\|*NAME=Status: System logs: IPsec VPN page
42			##\|*DESCR=Allow access to the 'Status: System logs: IPsec VPN' page.
43			##\|MATCH=diag_logs_ipsec.php
44			##\|-PRIV
45
46	32887d33	Scott Ullrich	require("guiconfig.inc");
47	483e6de8	Scott Ullrich	require("ipsec.inc");
48	32887d33	Scott Ullrich
49	bc7f52e2	Colin Smith	$ipsec_logfile = "{$g['varlog_path']}/ipsec.log";
50	4a2e189b	Seth Mos
51	0f266b2e	Chris Buechler	/* Create array with all IPsec tunnel descriptions */
52	4a2e189b	Seth Mos	$search = array();
53			$replace = array();
54	a93e56c5	Matthew Grooms	if(is_array($config['ipsec']['phase1']))
55			foreach($config['ipsec']['phase1'] as $ph1ent) {
56	d09641af	Seth Mos	$gateway = ipsec_get_phase1_dst($ph1ent);
57	9e050072	smos	if(!is_ipaddr($gateway))
58			continue;
59	413a327e	Seth Mos	$search[] = "/(racoon: )(INFO[:].?)({$gateway}\[[0-9].+\]\|{$gateway})(.)/i";
60			$search[] = "/(racoon: )(\[{$gateway}\]\|{$gateway})(.*)/i";
61			$replace[] = "$1<strong>[{$ph1ent['descr']}]</strong>: $2$3$4";
62	a93e56c5	Matthew Grooms	$replace[] = "$1<strong>[{$ph1ent['descr']}]</strong>: $2$3$4";
63	7fad5151	Scott Ullrich	}
64	eb3a6710	Seth Mos	/* collect all our own ip addresses */
65	413a327e	Seth Mos	exec("/sbin/ifconfig \| /usr/bin/awk '/inet/ {print $2}'", $ip_address_list);
66	eb3a6710	Seth Mos	foreach($ip_address_list as $address) {
67	413a327e	Seth Mos	$search[] = "/(racoon: )(INFO[:].*?)({$address}\[[0-9].+\])/i";
68			$search[] = "/(racoon: )(\[{$address}\]\|{$address})(.*)/i";
69			$replace[] = "$1<strong>[Self]</strong>: $2$3$4";
70	eb3a6710	Seth Mos	$replace[] = "$1<strong>[Self]</strong>: $2$3$4";
71			}
72	963d5343	Bill Marquette
73	840d845f	Seth Mos	$search[] = "/(time up waiting for phase1)/i";
74			$search[] = "/(failed to pre-process ph1 packet)/i";
75			$search[] = "/(failed to pre-process ph2 packet)/i";
76			$search[] = "/(no proposal chosen)/i";
77			$replace[] = "$1 <strong>[Remote Side not responding]</strong>";
78			$replace[] = "$1 <strong>[Check Phase 1 settings, lifetime, algorithm]</strong>";
79			$replace[] = "$1 <strong>[Check Phase 2 settings, networks]</strong>";
80			$replace[] = "$1 <strong>[Check Phase 2 settings, algorithm]</strong>";
81
82	32887d33	Scott Ullrich	$nentries = $config['syslog']['nentries'];
83			if (!$nentries)
84			$nentries = 50;
85
86	d6abaa18	Scott Ullrich	if ($_POST['clear'])
87			clear_log_file($ipsec_logfile);
88	32887d33	Scott Ullrich
89	eb3a6710	Seth Mos	$ipsec_logarr = return_clog($ipsec_logfile, $nentries);
90
91	f8ec8de4	Renato Botelho	$pgtitle = array(gettext("Status"),gettext("System logs"),gettext("IPsec VPN"));
92	b32dd0a6	jim-p	$shortcut_section = "ipsec";
93	b63695db	Scott Ullrich	include("head.inc");
94	32887d33	Scott Ullrich
95	b63695db	Scott Ullrich	?>
96	32887d33	Scott Ullrich	<body link="#0000CC" vlink="#0000CC" alink="#0000CC">
97			<?php include("fbegin.inc"); ?>
98			<table width="100%" border="0" cellpadding="0" cellspacing="0">
99	0913a099	Erik Kristensen	<tr>
100			<td>
101	b63695db	Scott Ullrich	<?php
102			$tab_array = array();
103	f8ec8de4	Renato Botelho	$tab_array[] = array(gettext("System"), false, "diag_logs.php");
104			$tab_array[] = array(gettext("Firewall"), false, "diag_logs_filter.php");
105			$tab_array[] = array(gettext("DHCP"), false, "diag_logs_dhcp.php");
106			$tab_array[] = array(gettext("Portal Auth"), false, "diag_logs_auth.php");
107			$tab_array[] = array(gettext("IPsec"), true, "diag_logs_ipsec.php");
108			$tab_array[] = array(gettext("PPP"), false, "diag_logs_ppp.php");
109			$tab_array[] = array(gettext("VPN"), false, "diag_logs_vpn.php");
110			$tab_array[] = array(gettext("Load Balancer"), false, "diag_logs_relayd.php");
111			$tab_array[] = array(gettext("OpenVPN"), false, "diag_logs_openvpn.php");
112	ae2c143a	jim-p	$tab_array[] = array(gettext("NTP"), false, "diag_logs_ntpd.php");
113	f8ec8de4	Renato Botelho	$tab_array[] = array(gettext("Settings"), false, "diag_logs_settings.php");
114	b63695db	Scott Ullrich	display_top_tabs($tab_array);
115			?>
116	0913a099	Erik Kristensen	</td>
117			</tr>
118			<tr>
119			<td>
120			<div id="mainarea">
121			<table class="tabcont" width="100%" border="0" cellspacing="0" cellpadding="0">
122			<tr>
123	f8ec8de4	Renato Botelho	<td colspan="2" class="listtopic"><?php printf(gettext("Last %s IPsec log entries"),$nentries);?></td>
124	0913a099	Erik Kristensen	</tr>
125	4a2e189b	Seth Mos	<?php
126			foreach($ipsec_logarr as $logent){
127	7ee7ed46	jim-p	$logent = htmlspecialchars($logent);
128	eb3a6710	Seth Mos	foreach($search as $string) {
129			if(preg_match($string, $logent))
130			$match = true;
131			}
132			if(isset($match)) {
133			$logent = preg_replace($search, $replace, $logent);
134			} else {
135			$searchs = "/(racoon: )([A-Z:].?)([0-9].+\.[0-9].+.[0-9].+.[0-9].+\[[0-9].+\])(.)/i";
136	f8ec8de4	Renato Botelho	$replaces = "$1<strong><font color=red>[".gettext("Unknown Gateway/Dynamic")."]</font></strong>: $2$3$4";
137	eb3a6710	Seth Mos	$logent = preg_replace($searchs, $replaces, $logent);
138			}
139	4a2e189b	Seth Mos	$logent = preg_split("/\s+/", $logent, 6);
140			echo "<tr valign=\"top\">\n";
141			$entry_date_time = htmlspecialchars(join(" ", array_slice($logent, 0, 3)));
142	3ac9b8ae	N0YB	echo "<td class=\"listlr\" nowrap=\"nowrap\">" . $entry_date_time . "</td>\n";
143	4a2e189b	Seth Mos	echo "<td class=\"listr\">" . $logent[4] . " " . $logent[5] . "</td>\n";
144			echo "</tr>\n";
145			}
146			?>
147	0913a099	Erik Kristensen	<tr>
148			<td>
149	3ac9b8ae	N0YB	<br />
150	1a2da578	Scott Ullrich	<form action="diag_logs_ipsec.php" method="post">
151	3ac9b8ae	N0YB	<input name="clear" type="submit" class="formbtn" value="<?=gettext("Clear log"); ?>"/>
152	0913a099	Erik Kristensen	</form>
153			</td>
154			</tr>
155			</table>
156			</div>
157			</td>
158			</tr>
159	32887d33	Scott Ullrich	</table>
160			<?php include("fend.inc"); ?>
161			</body>
162			</html>

Project

General

Profile

pfSense