/src/usr/local/www/system.php - Annotate - pfSense - pfSense bugtracker

| Branch: | Tag: | Revision:

root/src/usr/local/www/system.php @ 8f585441

1	04ad7c7c	Scott Ullrich	<?php
2	5b237745	Scott Ullrich	/*
3	c5d81585	Renato Botelho	* system.php
4	191cb31d	Stephen Beaver	*
5	c5d81585	Renato Botelho	* part of pfSense (https://www.pfsense.org)
6	38809d47	Renato Botelho do Couto	* Copyright (c) 2004-2013 BSD Perimeter
7			* Copyright (c) 2013-2016 Electric Sheep Fencing
8	8f585441	Luiz Souza	* Copyright (c) 2014-2021 Rubicon Communications, LLC (Netgate)
9	c5d81585	Renato Botelho	* All rights reserved.
10	54c605d4	Stephen Beaver	*
11	c5d81585	Renato Botelho	* originally based on m0n0wall (http://m0n0.ch/wall)
12			* Copyright (c) 2003-2004 Manuel Kasper <mk@neon1.net>.
13			* All rights reserved.
14	54c605d4	Stephen Beaver	*
15	b12ea3fb	Renato Botelho	* Licensed under the Apache License, Version 2.0 (the "License");
16			* you may not use this file except in compliance with the License.
17			* You may obtain a copy of the License at
18	54c605d4	Stephen Beaver	*
19	b12ea3fb	Renato Botelho	* http://www.apache.org/licenses/LICENSE-2.0
20	54c605d4	Stephen Beaver	*
21	b12ea3fb	Renato Botelho	* Unless required by applicable law or agreed to in writing, software
22			* distributed under the License is distributed on an "AS IS" BASIS,
23			* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
24			* See the License for the specific language governing permissions and
25			* limitations under the License.
26	54c605d4	Stephen Beaver	*/
27	5b237745	Scott Ullrich
28	6b07c15a	Matthew Grooms	##\|+PRIV
29			##\|*IDENT=page-system-generalsetup
30	5230f468	jim-p	##\|*NAME=System: General Setup
31	6b07c15a	Matthew Grooms	##\|*DESCR=Allow access to the 'System: General Setup' page.
32			##\|MATCH=system.php
33			##\|-PRIV
34
35	c81ef6e2	Phil Davis	require_once("guiconfig.inc");
36	7a927e67	Scott Ullrich	require_once("functions.inc");
37			require_once("filter.inc");
38			require_once("shaper.inc");
39	60ff91f1	Renato Botelho	require_once("system.inc");
40	5b237745	Scott Ullrich
41			$pconfig['hostname'] = $config['system']['hostname'];
42			$pconfig['domain'] = $config['system']['domain'];
43	a2d23e88	Phil Davis	$pconfig['dnsserver'] = $config['system']['dnsserver'];
44	0d8a219e	Scott Ullrich
45	d623f2da	Seth Mos	$arr_gateways = return_gateways_array();
46
47	e6367325	Phil Davis	// set default columns to two if unset
48	8f65151c	Phil Davis	if (!isset($config['system']['webgui']['dashboardcolumns'])) {
49	477db933	Jared Dillard	$config['system']['webgui']['dashboardcolumns'] = 2;
50			}
51
52	27db3c75	Phil Davis	// set default language if unset
53			if (!isset($config['system']['language'])) {
54	41817934	jim-p	$config['system']['language'] = $g['language'];
55	27db3c75	Phil Davis	}
56
57	7e8bfed2	jim-p	$dnshost_counter = 1;
58
59			while (isset($config["system"]["dns{$dnshost_counter}host"])) {
60			$pconfig_dnshost_counter = $dnshost_counter - 1;
61			$pconfig["dnshost{$pconfig_dnshost_counter}"] = $config["system"]["dns{$dnshost_counter}host"];
62			$dnshost_counter++;
63			}
64
65	a2d23e88	Phil Davis	$dnsgw_counter = 1;
66
67			while (isset($config["system"]["dns{$dnsgw_counter}gw"])) {
68			$pconfig_dnsgw_counter = $dnsgw_counter - 1;
69			$pconfig["dnsgw{$pconfig_dnsgw_counter}"] = $config["system"]["dns{$dnsgw_counter}gw"];
70			$dnsgw_counter++;
71			}
72	e180a6e3	Scott Ullrich
73	5b237745	Scott Ullrich	$pconfig['dnsallowoverride'] = isset($config['system']['dnsallowoverride']);
74			$pconfig['timezone'] = $config['system']['timezone'];
75			$pconfig['timeservers'] = $config['system']['timeservers'];
76	3e139f90	Vinicius Coque	$pconfig['language'] = $config['system']['language'];
77	a5995a8e	Stephen Beaver	$pconfig['webguicss'] = $config['system']['webgui']['webguicss'];
78	e79ff1ee	Steve Beaver	$pconfig['logincss'] = $config['system']['webgui']['logincss'];
79	3d29d2eb	Jared Dillard	$pconfig['webguifixedmenu'] = $config['system']['webgui']['webguifixedmenu'];
80	477db933	Jared Dillard	$pconfig['dashboardcolumns'] = $config['system']['webgui']['dashboardcolumns'];
81	1d3510cf	Phil Davis	$pconfig['interfacessort'] = isset($config['system']['webgui']['interfacessort']);
82	24f15b3a	NOYB	$pconfig['webguileftcolumnhyper'] = isset($config['system']['webgui']['webguileftcolumnhyper']);
83	d9058974	Phil Davis	$pconfig['disablealiaspopupdetail'] = isset($config['system']['webgui']['disablealiaspopupdetail']);
84	c05363c8	NOYB	$pconfig['dashboardavailablewidgetspanel'] = isset($config['system']['webgui']['dashboardavailablewidgetspanel']);
85			$pconfig['systemlogsfilterpanel'] = isset($config['system']['webgui']['systemlogsfilterpanel']);
86			$pconfig['systemlogsmanagelogpanel'] = isset($config['system']['webgui']['systemlogsmanagelogpanel']);
87	b1b8784a	NOYB	$pconfig['statusmonitoringsettingspanel'] = isset($config['system']['webgui']['statusmonitoringsettingspanel']);
88	e93242eb	Phil Davis	$pconfig['webguihostnamemenu'] = $config['system']['webgui']['webguihostnamemenu'];
89	f0c51530	jim-p	$pconfig['dnslocalhost'] = $config['system']['dnslocalhost'];
90	6c1f2a1c	Steve Beaver	//$pconfig['dashboardperiod'] = isset($config['widgets']['period']) ? $config['widgets']['period']:"10";
91	52e91f70	PiBa-NL	$pconfig['roworderdragging'] = isset($config['system']['webgui']['roworderdragging']);
92	a22947a4	Steve Beaver	$pconfig['loginshowhost'] = isset($config['system']['webgui']['loginshowhost']);
93	88081ea2	derelict-pf	$pconfig['requirestatefilter'] = isset($config['system']['webgui']['requirestatefilter']);
94	8ca95ed8	jim-p
95	2ee8dea1	Phil Davis	if (!$pconfig['timezone']) {
96	ecaca752	Renato Botelho	if (isset($g['default_timezone']) && !empty($g['default_timezone'])) {
97			$pconfig['timezone'] = $g['default_timezone'];
98			} else {
99			$pconfig['timezone'] = "Etc/UTC";
100			}
101	2ee8dea1	Phil Davis	}
102	ecaca752	Renato Botelho
103	2ee8dea1	Phil Davis	if (!$pconfig['timeservers']) {
104	5b237745	Scott Ullrich	$pconfig['timeservers'] = "pool.ntp.org";
105	2ee8dea1	Phil Davis	}
106	04ad7c7c	Scott Ullrich
107	79eaddf4	Renato Botelho	$changedesc = gettext("System") . ": ";
108	62d01225	Bill Marquette	$changecount = 0;
109	417c6042	Bill Marquette
110	5b237745	Scott Ullrich	function is_timezone($elt) {
111			return !preg_match("/\/$/", $elt);
112			}
113
114	2ee8dea1	Phil Davis	if ($pconfig['timezone'] <> $_POST['timezone']) {
115	744306c6	jim-p	filter_pflog_start(true);
116	aa1ab1da	Scott Ullrich	}
117
118	60ff91f1	Renato Botelho	$timezonelist = system_get_timezone_list();
119	e5f4c829	Renato Botelho	$timezonedesc = $timezonelist;
120
121			/*
122			* Etc/GMT entries work the opposite way to what people expect.
123			* Ref: https://github.com/eggert/tz/blob/master/etcetera and Redmine issue 7089
124			* Add explanatory text to entries like:
125			* Etc/GMT+1 and Etc/GMT-1
126			* but not:
127			* Etc/GMT or Etc/GMT+0
128			*/
129			foreach ($timezonedesc as $idx => $desc) {
130			if (substr($desc, 0, 7) != "Etc/GMT" \|\| substr($desc, 8, 1) == "0") {
131			continue;
132			}
133
134			$direction = substr($desc, 7, 1);
135
136			switch ($direction) {
137			case '-':
138	88de4ab0	Phil Davis	$direction_str = gettext('AHEAD of');
139	e5f4c829	Renato Botelho	break;
140			case '+':
141			$direction_str = gettext('BEHIND');
142			break;
143			default:
144	86ec819a	jim-p	continue 2;
145	e5f4c829	Renato Botelho	}
146
147			$hr_offset = substr($desc, 8);
148	88de4ab0	Phil Davis	$timezonedesc[$idx] = $desc . " " .
149	d93d8c9c	Steve Beaver	sprintf(ngettext('(%1$s hour %2$s GMT)', '(%1$s hours %2$s GMT)', intval($hr_offset)), $hr_offset, $direction_str);
150	e5f4c829	Renato Botelho	}
151	5b237745	Scott Ullrich
152	f211d7c0	luckman212	$multiwan = 0;
153	7922db8a	Seth Mos	$interfaces = get_configured_interface_list();
154	2ee8dea1	Phil Davis	foreach ($interfaces as $interface) {
155			if (interface_has_gateway($interface)) {
156	f211d7c0	luckman212	$multiwan++;
157	6038cba7	luckman212	if ($multiwan > 1) {
158			break;
159			}
160	7922db8a	Seth Mos	}
161			}
162	77446beb	Matthew Grooms
163	5b237745	Scott Ullrich	if ($_POST) {
164
165	c668c964	Scott Ullrich	$changecount++;
166	1180e4f0	Sjon Hortensius
167	5b237745	Scott Ullrich	unset($input_errors);
168			$pconfig = $_POST;
169
170			/* input validation */
171	cfbfd941	smos	$reqdfields = explode(" ", "hostname domain");
172	2ee8dea1	Phil Davis	$reqdfieldsn = array(gettext("Hostname"), gettext("Domain"));
173	04ad7c7c	Scott Ullrich
174	1e9b4611	Renato Botelho	do_input_validation($_POST, $reqdfields, $reqdfieldsn, $input_errors);
175	04ad7c7c	Scott Ullrich
176	2d86ee95	Phil Davis	if ($_POST['hostname']) {
177			if (!is_hostname($_POST['hostname'])) {
178			$input_errors[] = gettext("The hostname can only contain the characters A-Z, 0-9 and '-'. It may not start or end with '-'.");
179			} else {
180			if (!is_unqualified_hostname($_POST['hostname'])) {
181			$input_errors[] = gettext("A valid hostname is specified, but the domain name part should be omitted");
182			}
183			}
184	5b237745	Scott Ullrich	}
185	8ee5aa03	Viktor Gurov	if ($_POST['domain'] && (!is_domain($_POST['domain'], false, false))) {
186	7465d12c	Carlos Eduardo Ramos	$input_errors[] = gettext("The domain may only contain the characters a-z, 0-9, '-' and '.'.");
187	5b237745	Scott Ullrich	}
188	9ceace25	jim-p	validate_webguicss_field($input_errors, $_POST['webguicss']);
189			validate_webguifixedmenu_field($input_errors, $_POST['webguifixedmenu']);
190			validate_webguihostnamemenu_field($input_errors, $_POST['webguihostnamemenu']);
191			validate_dashboardcolumns_field($input_errors, $_POST['dashboardcolumns']);
192	d623f2da	Seth Mos
193	58b07c57	NewEraCracker	$dnslist = $ignore_posted_dnsgw = array();
194	df4471e2	Phil Davis
195	a2d23e88	Phil Davis	$dnscounter = 0;
196			$dnsname = "dns{$dnscounter}";
197
198			while (isset($_POST[$dnsname])) {
199			$dnsgwname = "dnsgw{$dnscounter}";
200	7e8bfed2	jim-p	$dnshostname = "dnshost{$dnscounter}";
201	a936104b	Stephen Beaver	$dnslist[] = $_POST[$dnsname];
202
203	d623f2da	Seth Mos	if (($_POST[$dnsname] && !is_ipaddr($_POST[$dnsname]))) {
204	a2d23e88	Phil Davis	$input_errors[] = sprintf(gettext("A valid IP address must be specified for DNS server %s."), $dnscounter+1);
205	52acb1ff	Phil Davis	} else {
206	7e8bfed2	jim-p	if (!empty($_POST[$dnshostname]) && !is_hostname($_POST[$dnshostname])) {
207			$input_errors[] = sprintf(gettext('The hostname provided for DNS server "%1$s" is not valid.'), $_POST[$dnsname]);
208			}
209	2ee8dea1	Phil Davis	if (($_POST[$dnsgwname] <> "") && ($_POST[$dnsgwname] <> "none")) {
210	52acb1ff	Phil Davis	// A real gateway has been selected.
211			if (is_ipaddr($_POST[$dnsname])) {
212	2ee8dea1	Phil Davis	if ((is_ipaddrv4($_POST[$dnsname])) && (validate_address_family($_POST[$dnsname], $_POST[$dnsgwname]) === false)) {
213	1bab4a10	NOYB	$input_errors[] = sprintf(gettext('The IPv6 gateway "%1$s" can not be specified for IPv4 DNS server "%2$s".'), $_POST[$dnsgwname], $_POST[$dnsname]);
214	52acb1ff	Phil Davis	}
215	2ee8dea1	Phil Davis	if ((is_ipaddrv6($_POST[$dnsname])) && (validate_address_family($_POST[$dnsname], $_POST[$dnsgwname]) === false)) {
216	1bab4a10	NOYB	$input_errors[] = sprintf(gettext('The IPv4 gateway "%1$s" can not be specified for IPv6 DNS server "%2$s".'), $_POST[$dnsgwname], $_POST[$dnsname]);
217	52acb1ff	Phil Davis	}
218			} else {
219	df4471e2	Phil Davis	// The user selected a gateway but did not provide a DNS address. Be nice and set the gateway back to "none".
220			$ignore_posted_dnsgw[$dnsgwname] = true;
221	52acb1ff	Phil Davis	}
222	13ea7caa	smos	}
223	d623f2da	Seth Mos	}
224	a2d23e88	Phil Davis	$dnscounter++;
225			$dnsname = "dns{$dnscounter}";
226	5b237745	Scott Ullrich	}
227	d623f2da	Seth Mos
228	c25e42c8	Mark Furneaux	if (count(array_filter($dnslist)) != count(array_unique(array_filter($dnslist)))) {
229	f700dc99	Chris Buechler	$input_errors[] = gettext('Each configured DNS server must have a unique IP address. Remove the duplicated IP.');
230			}
231
232	a2d23e88	Phil Davis	$dnscounter = 0;
233			$dnsname = "dns{$dnscounter}";
234
235	985fc0fb	Ermal Lu?i	$direct_networks_list = explode(" ", filter_get_direct_networks_list());
236	a2d23e88	Phil Davis	while (isset($_POST[$dnsname])) {
237			$dnsgwname = "dnsgw{$dnscounter}";
238			if ($_POST[$dnsgwname] && ($_POST[$dnsgwname] <> "none")) {
239	d8587952	Phil Davis	foreach ($direct_networks_list as $direct_network) {
240	a2d23e88	Phil Davis	if (ip_in_subnet($_POST[$dnsname], $direct_network)) {
241	86212d70	luckman212	$input_errors[] = sprintf(gettext("A gateway cannot be specified for %s because that IP address is part of a directly connected subnet %s. To use that nameserver, change its Gateway to `none`."), $_POST[$dnsname], $direct_network);
242	c98d28e1	Seth Mos	}
243			}
244			}
245	a2d23e88	Phil Davis	$dnscounter++;
246			$dnsname = "dns{$dnscounter}";
247	c98d28e1	Seth Mos	}
248
249	8adb814b	David P Hilton	# it's easy to have a little too much whitespace in the field, clean it up for the user before processing.
250			$_POST['timeservers'] = preg_replace('/[[:blank:]]+/', ' ', $_POST['timeservers']);
251			$_POST['timeservers'] = trim($_POST['timeservers']);
252	5b237745	Scott Ullrich	foreach (explode(' ', $_POST['timeservers']) as $ts) {
253	518fa664	kiokoman	if (!is_domain($ts) && (!is_ipaddr($ts))) {
254			$input_errors[] = gettext("NTP Time Server names must be valid domain names, IPv4 addresses, or IPv6 addresses");
255	5b237745	Scott Ullrich	}
256			}
257
258	a2d23e88	Phil Davis	if ($input_errors) {
259			// Put the user-entered list back into place so it will be redisplayed for correction.
260			$pconfig['dnsserver'] = $dnslist;
261			} else {
262	f211d7c0	luckman212	// input validation passed, so we can proceed with removing static routes for dead DNS gateways
263			if (is_array($config['system']['dnsserver'])) {
264			$dns_servers_arr = $config['system']['dnsserver'];
265			foreach ($dns_servers_arr as $arr_index => $this_dnsserver) {
266			$i = (int)$arr_index + 1;
267			$this_dnsgw = $config['system']['dns'.$i.'gw'];
268			unset($gatewayip);
269			unset($inet6);
270			if ((!empty($this_dnsgw)) && ($this_dnsgw != 'none') && (!empty($this_dnsserver))) {
271			$gatewayip = lookup_gateway_ip_by_name($this_dnsgw);
272			$inet6 = is_ipaddrv6($gatewayip) ? '-inet6 ' : '';
273	ded361f5	Viktor G	mwexec("/sbin/route -q delete -host {$inet6}{$this_dnsserver} " . escapeshellarg($gatewayip));
274	f211d7c0	luckman212	}
275			}
276			}
277
278	f1a34790	N0YB	update_if_changed("hostname", $config['system']['hostname'], $_POST['hostname']);
279			update_if_changed("domain", $config['system']['domain'], $_POST['domain']);
280	9eab73da	Bill Marquette	update_if_changed("timezone", $config['system']['timezone'], $_POST['timezone']);
281			update_if_changed("NTP servers", $config['system']['timeservers'], strtolower($_POST['timeservers']));
282	04ad7c7c	Scott Ullrich
283	2ee8dea1	Phil Davis	if ($_POST['language'] && $_POST['language'] != $config['system']['language']) {
284	3e139f90	Vinicius Coque	$config['system']['language'] = $_POST['language'];
285	ceecd29b	Renato Botelho	set_language();
286	3e139f90	Vinicius Coque	}
287
288	1d3510cf	Phil Davis	unset($config['system']['webgui']['interfacessort']);
289			$config['system']['webgui']['interfacessort'] = $_POST['interfacessort'] ? true : false;
290
291	24f15b3a	NOYB	unset($config['system']['webgui']['webguileftcolumnhyper']);
292			$config['system']['webgui']['webguileftcolumnhyper'] = $_POST['webguileftcolumnhyper'] ? true : false;
293
294	d9058974	Phil Davis	unset($config['system']['webgui']['disablealiaspopupdetail']);
295			$config['system']['webgui']['disablealiaspopupdetail'] = $_POST['disablealiaspopupdetail'] ? true : false;
296
297	c05363c8	NOYB	unset($config['system']['webgui']['dashboardavailablewidgetspanel']);
298			$config['system']['webgui']['dashboardavailablewidgetspanel'] = $_POST['dashboardavailablewidgetspanel'] ? true : false;
299
300			unset($config['system']['webgui']['systemlogsfilterpanel']);
301			$config['system']['webgui']['systemlogsfilterpanel'] = $_POST['systemlogsfilterpanel'] ? true : false;
302
303			unset($config['system']['webgui']['systemlogsmanagelogpanel']);
304			$config['system']['webgui']['systemlogsmanagelogpanel'] = $_POST['systemlogsmanagelogpanel'] ? true : false;
305
306	b1b8784a	NOYB	unset($config['system']['webgui']['statusmonitoringsettingspanel']);
307			$config['system']['webgui']['statusmonitoringsettingspanel'] = $_POST['statusmonitoringsettingspanel'] ? true : false;
308
309	9ceace25	jim-p	// if ($_POST['dashboardperiod']) {
310			// $config['widgets']['period'] = $_POST['dashboardperiod'];
311			// }
312
313			if ($_POST['webguicss']) {
314			$config['system']['webgui']['webguicss'] = $_POST['webguicss'];
315			} else {
316			unset($config['system']['webgui']['webguicss']);
317			}
318
319			$config['system']['webgui']['roworderdragging'] = $_POST['roworderdragging'] ? true:false;
320
321			if ($_POST['logincss']) {
322			$config['system']['webgui']['logincss'] = $_POST['logincss'];
323			} else {
324			unset($config['system']['webgui']['logincss']);
325			}
326
327			$config['system']['webgui']['loginshowhost'] = $_POST['loginshowhost'] ? true:false;
328
329			if ($_POST['webguifixedmenu']) {
330			$config['system']['webgui']['webguifixedmenu'] = $_POST['webguifixedmenu'];
331			} else {
332			unset($config['system']['webgui']['webguifixedmenu']);
333			}
334
335			if ($_POST['webguihostnamemenu']) {
336			$config['system']['webgui']['webguihostnamemenu'] = $_POST['webguihostnamemenu'];
337			} else {
338			unset($config['system']['webgui']['webguihostnamemenu']);
339			}
340
341			if ($_POST['dashboardcolumns']) {
342			$config['system']['webgui']['dashboardcolumns'] = $_POST['dashboardcolumns'];
343			} else {
344			unset($config['system']['webgui']['dashboardcolumns']);
345			}
346
347			$config['system']['webgui']['requirestatefilter'] = $_POST['requirestatefilter'] ? true : false;
348
349	4fbf63aa	Bill Marquette	/* XXX - billm: these still need updating after figuring out how to check if they actually changed */
350	52acb1ff	Phil Davis	$olddnsservers = $config['system']['dnsserver'];
351	5b237745	Scott Ullrich	unset($config['system']['dnsserver']);
352	a2d23e88	Phil Davis
353			$dnscounter = 0;
354			$dnsname = "dns{$dnscounter}";
355
356			while (isset($_POST[$dnsname])) {
357			if ($_POST[$dnsname]) {
358			$config['system']['dnsserver'][] = $_POST[$dnsname];
359			}
360			$dnscounter++;
361			$dnsname = "dns{$dnscounter}";
362	2ee8dea1	Phil Davis	}
363	04ad7c7c	Scott Ullrich
364	a2d23e88	Phil Davis	// Remember the new list for display also.
365			$pconfig['dnsserver'] = $config['system']['dnsserver'];
366
367	07bd3f83	Scott Ullrich	$olddnsallowoverride = $config['system']['dnsallowoverride'];
368	20b90e0a	Scott Ullrich
369	0d8a219e	Scott Ullrich	unset($config['system']['dnsallowoverride']);
370	5b237745	Scott Ullrich	$config['system']['dnsallowoverride'] = $_POST['dnsallowoverride'] ? true : false;
371	e180a6e3	Scott Ullrich
372	f0c51530	jim-p	if ($_POST['dnslocalhost']) {
373			$config['system']['dnslocalhost'] = $_POST['dnslocalhost'];
374	2ee8dea1	Phil Davis	} else {
375	8ca95ed8	jim-p	unset($config['system']['dnslocalhost']);
376	2ee8dea1	Phil Davis	}
377	8ca95ed8	jim-p
378	e180a6e3	Scott Ullrich	/* which interface should the dns servers resolve through? */
379	a2d23e88	Phil Davis	$dnscounter = 0;
380			// The $_POST array key of the DNS IP (starts from 0)
381			$dnsname = "dns{$dnscounter}";
382	df4471e2	Phil Davis	$outdnscounter = 0;
383	a2d23e88	Phil Davis	while (isset($_POST[$dnsname])) {
384			// The $_POST array key of the corresponding gateway (starts from 0)
385			$dnsgwname = "dnsgw{$dnscounter}";
386	7e8bfed2	jim-p	$dnshostname = "dnshost{$dnscounter}";
387			// The numbering of DNS GW/host entries in the config starts from 1
388	a2d23e88	Phil Davis	$dnsgwconfigcounter = $dnscounter + 1;
389	7e8bfed2	jim-p	$dnshostconfigcounter = $dnscounter + 1;
390	a2d23e88	Phil Davis	// So this is the array key of the DNS GW entry in $config['system']
391			$dnsgwconfigname = "dns{$dnsgwconfigcounter}gw";
392	7e8bfed2	jim-p	$dnshostconfigname = "dns{$dnshostconfigcounter}host";
393	a2d23e88	Phil Davis
394			$olddnsgwname = $config['system'][$dnsgwconfigname];
395	7e8bfed2	jim-p	$olddnshostname = $config['system'][$dnshostconfigname];
396	df4471e2	Phil Davis
397	2ee8dea1	Phil Davis	if ($ignore_posted_dnsgw[$dnsgwname]) {
398	df4471e2	Phil Davis	$thisdnsgwname = "none";
399	2ee8dea1	Phil Davis	} else {
400	df4471e2	Phil Davis	$thisdnsgwname = $pconfig[$dnsgwname];
401	2ee8dea1	Phil Davis	}
402	7e8bfed2	jim-p	$thisdnshostname = $pconfig[$dnshostname];
403	df4471e2	Phil Davis
404			// "Blank" out the settings for this index, then we set them below using the "outdnscounter" index.
405	a2d23e88	Phil Davis	$config['system'][$dnsgwconfigname] = "none";
406	df4471e2	Phil Davis	$pconfig[$dnsgwname] = "none";
407	7e8bfed2	jim-p	$config['system'][$dnshostconfigname] = "";
408			$pconfig[$dnshostname] = "";
409	df4471e2	Phil Davis	$pconfig[$dnsname] = "";
410
411			if ($_POST[$dnsname]) {
412			// Only the non-blank DNS servers were put into the config above.
413			// So we similarly only add the corresponding gateways sequentially to the config (and to pconfig), as we find non-blank DNS servers.
414			// This keeps the DNS server IP and corresponding gateway "lined up" when the user blanks out a DNS server IP in the middle of the list.
415	a2d23e88	Phil Davis
416			// The $pconfig array key of the DNS IP (starts from 0)
417			$outdnsname = "dns{$outdnscounter}";
418			// The $pconfig array key of the corresponding gateway (starts from 0)
419			$outdnsgwname = "dnsgw{$outdnscounter}";
420	7e8bfed2	jim-p	// The $pconfig array key of the corresponding hostname (starts from 0)
421			$outdnshostname = "dnshost{$outdnscounter}";
422
423			// The numbering of DNS GW/host entries in the config starts from 1
424	a2d23e88	Phil Davis	$outdnsgwconfigcounter = $outdnscounter + 1;
425	7e8bfed2	jim-p	$outdnshostconfigcounter = $outdnscounter + 1;
426	a2d23e88	Phil Davis	// So this is the array key of the output DNS GW entry in $config['system']
427			$outdnsgwconfigname = "dns{$outdnsgwconfigcounter}gw";
428	7e8bfed2	jim-p	$outdnshostconfigname = "dns{$outdnshostconfigcounter}host";
429	a2d23e88	Phil Davis
430	df4471e2	Phil Davis	$pconfig[$outdnsname] = $_POST[$dnsname];
431	2ee8dea1	Phil Davis	if ($_POST[$dnsgwname]) {
432	a2d23e88	Phil Davis	$config['system'][$outdnsgwconfigname] = $thisdnsgwname;
433	df4471e2	Phil Davis	$pconfig[$outdnsgwname] = $thisdnsgwname;
434			} else {
435			// Note: when no DNS GW name is chosen, the entry is set to "none", so actually this case never happens.
436	a2d23e88	Phil Davis	unset($config['system'][$outdnsgwconfigname]);
437	df4471e2	Phil Davis	$pconfig[$outdnsgwname] = "";
438	0d192133	jim-p	}
439			if ($_POST[$dnshostname]) {
440			$config['system'][$outdnshostconfigname] = $thisdnshostname;
441			$pconfig[$outdnshostname] = $thisdnshostname;
442			} else {
443			// Note: when no DNS hostname is chosen, unset the value.
444	7e8bfed2	jim-p	unset($config['system'][$outdnshostconfigname]);
445			$pconfig[$outdnshostname] = "";
446	df4471e2	Phil Davis	}
447	a2d23e88	Phil Davis	$outdnscounter++;
448	d623f2da	Seth Mos	}
449	a2d23e88	Phil Davis
450			$dnscounter++;
451			// The $_POST array key of the DNS IP (starts from 0)
452			$dnsname = "dns{$dnscounter}";
453	d623f2da	Seth Mos	}
454	04ad7c7c	Scott Ullrich
455	f211d7c0	luckman212	// clean up dnsgw orphans
456			$oldgwcounter = 1;
457			$olddnsgwconfigname = "dns{$oldgwcounter}gw";
458			while (isset($config['system'][$olddnsgwconfigname])) {
459			if (empty($config['system']['dnsserver'][$oldgwcounter - 1])) {
460			unset($config['system'][$olddnsgwconfigname]);
461			}
462			$oldgwcounter++;
463			$olddnsgwconfigname = "dns{$oldgwcounter}gw";
464			}
465			unset($oldgwcounter);
466			unset($olddnsgwconfigname);
467
468	2ee8dea1	Phil Davis	if ($changecount > 0) {
469	62d01225	Bill Marquette	write_config($changedesc);
470	2ee8dea1	Phil Davis	}
471	04ad7c7c	Scott Ullrich
472	44c42356	Phil Davis	$changes_applied = true;
473	5b237745	Scott Ullrich	$retval = 0;
474	44c42356	Phil Davis	$retval \|= system_hostname_configure();
475	3cfdba5f	Scott Ullrich	$retval \|= system_hosts_generate();
476			$retval \|= system_resolvconf_generate();
477	2ee8dea1	Phil Davis	if (isset($config['dnsmasq']['enable'])) {
478	1e2c8821	Warren Baker	$retval \|= services_dnsmasq_configure();
479	2ee8dea1	Phil Davis	} elseif (isset($config['unbound']['enable'])) {
480	1e2c8821	Warren Baker	$retval \|= services_unbound_configure();
481	2ee8dea1	Phil Davis	}
482	3cfdba5f	Scott Ullrich	$retval \|= system_timezone_configure();
483			$retval \|= system_ntp_configure();
484
485	2ee8dea1	Phil Davis	if ($olddnsallowoverride != $config['system']['dnsallowoverride']) {
486	b8292903	Ermal	$retval \|= send_event("service reload dns");
487	2ee8dea1	Phil Davis	}
488	3cfdba5f	Scott Ullrich
489	e7d967d8	Scott Ullrich	// Reload the filter - plugins might need to be run.
490	0027de0a	Ermal Lu?i	$retval \|= filter_configure();
491	5b237745	Scott Ullrich	}
492	df4471e2	Phil Davis
493			unset($ignore_posted_dnsgw);
494	5b237745	Scott Ullrich	}
495	4df96eff	Scott Ullrich
496	2ee8dea1	Phil Davis	$pgtitle = array(gettext("System"), gettext("General Setup"));
497	4df96eff	Scott Ullrich	include("head.inc");
498
499	8f65151c	Phil Davis	if ($input_errors) {
500	41ea4cf3	Sjon Hortensius	print_input_errors($input_errors);
501	8f65151c	Phil Davis	}
502	ddb84143	Stephen Beaver
503	44c42356	Phil Davis	if ($changes_applied) {
504			print_apply_result_box($retval);
505	8f65151c	Phil Davis	}
506	5b237745	Scott Ullrich	?>
507	41ea4cf3	Sjon Hortensius	<div id="container">
508	b40bcb23	Sjon Hortensius	<?php
509	1180e4f0	Sjon Hortensius
510	b40bcb23	Sjon Hortensius	$form = new Form;
511	a32c0623	Sjon Hortensius	$section = new Form_Section('System');
512			$section->addInput(new Form_Input(
513	a97531c5	Sjon Hortensius	'hostname',
514	153c3aa6	Phil Davis	'*Hostname',
515	a32c0623	Sjon Hortensius	'text',
516			$pconfig['hostname'],
517			['placeholder' => 'pfSense']
518			))->setHelp('Name of the firewall host, without domain part');
519	512f2c10	Stephen Beaver
520	a32c0623	Sjon Hortensius	$section->addInput(new Form_Input(
521	a97531c5	Sjon Hortensius	'domain',
522	153c3aa6	Phil Davis	'*Domain',
523	a32c0623	Sjon Hortensius	'text',
524			$pconfig['domain'],
525			['placeholder' => 'mycorp.com, home, office, private, etc.']
526	ef77e40e	stilez	))->setHelp('Do not use \'.local\' as the final part of the domain (TLD), The \'.local\' domain is %1$swidely used%2$s by '.
527	d751dee3	stilez	'mDNS (including Avahi and Apple OS X\'s Bonjour/Rendezvous/Airprint/Airplay), and some Windows systems and networked devices. ' .
528	ef77e40e	stilez	'These will not network correctly if the router uses \'.local\'. Alternatives such as \'.local.lan\' or \'.mylocal\' are safe.',
529			'<a target="_blank" href="https://www.unbound.net/pipermail/unbound-users/2011-March/001735.html">',
530			'</a>'
531			);
532	512f2c10	Stephen Beaver
533	b40bcb23	Sjon Hortensius	$form->add($section);
534
535	70dc5cd6	Phil Davis	$section = new Form_Section('DNS Server Settings');
536	b40bcb23	Sjon Hortensius
537	a2d23e88	Phil Davis	if (!is_array($pconfig['dnsserver'])) {
538			$pconfig['dnsserver'] = array();
539			}
540
541			$dnsserver_count = count($pconfig['dnsserver']);
542			$dnsserver_num = 0;
543			$dnsserver_help = gettext("Address") . '<br/>' . gettext("Enter IP addresses to be used by the system for DNS resolution.") . " " .
544			gettext("These are also used for the DHCP service, DNS Forwarder and DNS Resolver when it has DNS Query Forwarding enabled.");
545	7e8bfed2	jim-p	$dnshost_help = gettext("Hostname") . '<br/>' . gettext("Enter the DNS Server Hostname for TLS Verification in the DNS Resolver (optional).");
546	a2d23e88	Phil Davis	$dnsgw_help = gettext("Gateway") . '<br/>'. gettext("Optionally select the gateway for each DNS server.") . " " .
547			gettext("When using multiple WAN connections there should be at least one unique DNS server per gateway.");
548
549			// If there are no DNS servers, make an empty entry for initial display.
550			if ($dnsserver_count == 0) {
551			$pconfig['dnsserver'][] = '';
552			}
553
554			foreach ($pconfig['dnsserver'] as $dnsserver) {
555	54c605d4	Stephen Beaver
556	05025e63	Steve Beaver	$is_last_dnsserver = (($dnsserver_num == $dnsserver_count - 1) \|\| $dnsserver_count == 0);
557	a2d23e88	Phil Davis	$group = new Form_Group($dnsserver_num == 0 ? 'DNS Servers':'');
558			$group->addClass('repeatable');
559	54c605d4	Stephen Beaver
560			$group->add(new Form_Input(
561	a2d23e88	Phil Davis	'dns' . $dnsserver_num,
562	54c605d4	Stephen Beaver	'DNS Server',
563			'text',
564	a2d23e88	Phil Davis	$dnsserver
565			))->setHelp(($is_last_dnsserver) ? $dnsserver_help:null);
566	b40bcb23	Sjon Hortensius
567	7e8bfed2	jim-p	$group->add(new Form_Input(
568			'dnshost' . $dnsserver_num,
569			'DNS Hostname',
570			'text',
571			$pconfig['dnshost' . $dnsserver_num]
572			))->setHelp(($is_last_dnsserver) ? $dnshost_help:null);
573
574	86212d70	luckman212	if ($multiwan > 1) {
575	b40bcb23	Sjon Hortensius	$options = array('none' => 'none');
576
577	8f65151c	Phil Davis	foreach ($arr_gateways as $gwname => $gwitem) {
578			if ((is_ipaddrv4(lookup_gateway_ip_by_name($pconfig[$dnsgw])) && (is_ipaddrv6($gwitem['gateway'])))) {
579	b40bcb23	Sjon Hortensius	continue;
580			}
581	54c605d4	Stephen Beaver
582	8f65151c	Phil Davis	if ((is_ipaddrv6(lookup_gateway_ip_by_name($pconfig[$dnsgw])) && (is_ipaddrv4($gwitem['gateway'])))) {
583	b40bcb23	Sjon Hortensius	continue;
584			}
585	1180e4f0	Sjon Hortensius
586	b40bcb23	Sjon Hortensius	$options[$gwname] = $gwname.' - '.$gwitem['friendlyiface'].' - '.$gwitem['gateway'];
587			}
588	1180e4f0	Sjon Hortensius
589	a97531c5	Sjon Hortensius	$group->add(new Form_Select(
590	a2d23e88	Phil Davis	'dnsgw' . $dnsserver_num,
591	e4dd8be4	NOYB	'Gateway',
592	a2d23e88	Phil Davis	$pconfig['dnsgw' . $dnsserver_num],
593	a97531c5	Sjon Hortensius	$options
594	f211d7c0	luckman212	))->setWidth(4)->setHelp(($is_last_dnsserver) ? $dnsgw_help:null);
595	b40bcb23	Sjon Hortensius	}
596	1180e4f0	Sjon Hortensius
597	a2d23e88	Phil Davis	$group->add(new Form_Button(
598			'deleterow' . $dnsserver_num,
599			'Delete',
600			null,
601			'fa-trash'
602	f211d7c0	luckman212	))->setWidth(2)->addClass('btn-warning');
603	54c605d4	Stephen Beaver
604	b40bcb23	Sjon Hortensius	$section->add($group);
605	a2d23e88	Phil Davis	$dnsserver_num++;
606	b40bcb23	Sjon Hortensius	}
607	1180e4f0	Sjon Hortensius
608	a2d23e88	Phil Davis	$section->addInput(new Form_Button(
609			'addrow',
610			'Add DNS Server',
611			null,
612			'fa-plus'
613			))->addClass('btn-success addbtn');
614
615	a005a836	Sjon Hortensius	$section->addInput(new Form_Checkbox(
616	a97531c5	Sjon Hortensius	'dnsallowoverride',
617	70dc5cd6	Phil Davis	'DNS Server Override',
618	b40bcb23	Sjon Hortensius	'Allow DNS server list to be overridden by DHCP/PPP on WAN',
619			$pconfig['dnsallowoverride']
620	314a088a	Phil Davis	))->setHelp('If this option is set, %s will use DNS servers '.
621	a32c0623	Sjon Hortensius	'assigned by a DHCP/PPP server on WAN for its own purposes (including '.
622	a56e37ca	doktornotor	'the DNS Forwarder/DNS Resolver). However, they will not be assigned to DHCP '.
623	573ec19d	Renato Botelho do Couto	'clients.', $g['product_label']);
624	b40bcb23	Sjon Hortensius
625	f0c51530	jim-p	$section->addInput(new Form_Select(
626	a97531c5	Sjon Hortensius	'dnslocalhost',
627	f0c51530	jim-p	'DNS Resolution Behavior',
628			$pconfig['dnslocalhost'],
629			array(
630			'' => 'Use local DNS (127.0.0.1), fall back to remote DNS Servers (Default)',
631			'local' => 'Use local DNS (127.0.0.1), ignore remote DNS Servers',
632			'remote' => 'Use remote DNS Servers, ignore local DNS',
633			)
634			))->setHelp('By default the firewall will use local DNS service (127.0.0.1, DNS '.
635			'Resolver or Forwarder) as the first DNS server when possible, and it '.
636			'will fall back to remote DNS servers otherwise. Use this option to '.
637			'choose alternate behaviors.');
638	b40bcb23	Sjon Hortensius
639			$form->add($section);
640
641	a005a836	Sjon Hortensius	$section = new Form_Section('Localization');
642	512f2c10	Stephen Beaver
643	a005a836	Sjon Hortensius	$section->addInput(new Form_Select(
644	a97531c5	Sjon Hortensius	'timezone',
645	153c3aa6	Phil Davis	'*Timezone',
646	a32c0623	Sjon Hortensius	$pconfig['timezone'],
647	e5f4c829	Renato Botelho	array_combine($timezonelist, $timezonedesc)
648	781d9ce4	Phil Davis	))->setHelp('Select a geographic region name (Continent/Location) to determine the timezone for the firewall. %1$s' .
649			'Choose a special or "Etc" zone only in cases where the geographic zones do not properly handle the clock offset required for this firewall.', '<br/>');
650	512f2c10	Stephen Beaver
651	a005a836	Sjon Hortensius	$section->addInput(new Form_Input(
652	a97531c5	Sjon Hortensius	'timeservers',
653	a32c0623	Sjon Hortensius	'Timeservers',
654			'text',
655			$pconfig['timeservers']
656			))->setHelp('Use a space to separate multiple hosts (only one required). '.
657	1bab4a10	NOYB	'Remember to set up at least one DNS server if a host name is entered here!');
658	512f2c10	Stephen Beaver
659	a005a836	Sjon Hortensius	$section->addInput(new Form_Select(
660	a97531c5	Sjon Hortensius	'language',
661	153c3aa6	Phil Davis	'*Language',
662	a32c0623	Sjon Hortensius	$pconfig['language'],
663			get_locale_list()
664			))->setHelp('Choose a language for the webConfigurator');
665	b40bcb23	Sjon Hortensius
666			$form->add($section);
667
668	1176360c	k-paulius	$section = new Form_Section('webConfigurator');
669	a5995a8e	Stephen Beaver
670	8bab524e	Phil Davis	gen_webguicss_field($section, $pconfig['webguicss']);
671			gen_webguifixedmenu_field($section, $pconfig['webguifixedmenu']);
672			gen_webguihostnamemenu_field($section, $pconfig['webguihostnamemenu']);
673			gen_dashboardcolumns_field($section, $pconfig['dashboardcolumns']);
674	1d3510cf	Phil Davis	gen_interfacessort_field($section, $pconfig['interfacessort']);
675	8bab524e	Phil Davis	gen_associatedpanels_fields(
676			$section,
677			$pconfig['dashboardavailablewidgetspanel'],
678			$pconfig['systemlogsfilterpanel'],
679			$pconfig['systemlogsmanagelogpanel'],
680			$pconfig['statusmonitoringsettingspanel']);
681	88081ea2	derelict-pf	gen_requirestatefilter_field($section, $pconfig['requirestatefilter']);
682	8bab524e	Phil Davis	gen_webguileftcolumnhyper_field($section, $pconfig['webguileftcolumnhyper']);
683	d9058974	Phil Davis	gen_disablealiaspopupdetail_field($section, $pconfig['disablealiaspopupdetail']);
684	24f15b3a	NOYB
685	52e91f70	PiBa-NL	$section->addInput(new Form_Checkbox(
686			'roworderdragging',
687			'Disable dragging',
688	86212d70	luckman212	'Disable dragging of firewall/NAT rules',
689	52e91f70	PiBa-NL	$pconfig['roworderdragging']
690			))->setHelp('Disables dragging rows to allow selecting and copying row contents and avoid accidental changes.');
691
692	e79ff1ee	Steve Beaver	$section->addInput(new Form_Select(
693			'logincss',
694	d58a7378	Steve Beaver	'Login page color',
695	e79ff1ee	Steve Beaver	$pconfig['logincss'],
696	1fe82d1d	Administrator	["1e3f75;" => gettext("Dark Blue"), "003300" => gettext("Dark green"), "770101" => gettext("Crimson red"),
697	626aefbe	Steve Beaver	"4b1263" => gettext("Purple"), "424142" => gettext("Gray"), "333333" => gettext("Dark gray"),
698	1fe82d1d	Administrator	"000000" => gettext("Black"), "633215" => gettext("Dark brown"), "bf7703" => gettext("Brown"),
699			"008000" => gettext("Green"), "007faa" => gettext("Light Blue"), "dc2a2a" => gettext("Red"),
700			"9b59b6" => gettext("Violet")]
701	d58a7378	Steve Beaver	))->setHelp('Choose a color for the login page');
702	e79ff1ee	Steve Beaver
703	a22947a4	Steve Beaver	$section->addInput(new Form_Checkbox(
704			'loginshowhost',
705			'Login hostname',
706			'Show hostname on login banner',
707			$pconfig['loginshowhost']
708			));
709	6c1f2a1c	Steve Beaver	/*
710	512f2c10	Stephen Beaver	$section->addInput(new Form_Input(
711			'dashboardperiod',
712			'Dashboard update period',
713			'number',
714			$pconfig['dashboardperiod'],
715	134ee13d	Stephen Beaver	['min' => '5', 'max' => '600']
716	512f2c10	Stephen Beaver	))->setHelp('Time in seconds between dashboard widget updates. Small values cause ' .
717			'more frequent updates but increase the load on the web server. ' .
718			'Minimum is 5 seconds, maximum 600 seconds');
719	6c1f2a1c	Steve Beaver	*/
720	a5995a8e	Stephen Beaver	$form->add($section);
721
722	b40bcb23	Sjon Hortensius	print $form;
723	7bb301eb	Stephen Beaver
724			$csswarning = sprintf(gettext("%sUser-created themes are unsupported, use at your own risk."), "<br />");
725
726	8c4ef875	NOYB	?>
727			</div>
728	7bb301eb	Stephen Beaver
729	46345696	Colin Fleming	<script type="text/javascript">
730	7bb301eb	Stephen Beaver	//<![CDATA[
731			events.push(function() {
732
733			function setThemeWarning() {
734			if ($('#webguicss').val().startsWith("pfSense")) {
735			$('#csstxt').html("").addClass("text-default");
736			} else {
737			$('#csstxt').html("<?=$csswarning?>").addClass("text-danger");
738			}
739			}
740
741			$('#webguicss').change(function() {
742			setThemeWarning();
743			});
744
745			setThemeWarning();
746	a2d23e88	Phil Davis
747			// Suppress "Delete row" button if there are fewer than two rows
748			checkLastRow();
749	7bb301eb	Stephen Beaver	});
750			//]]>
751			</script>
752
753	8c4ef875	NOYB	<?php
754	60ff91f1	Renato Botelho	include("foot.inc");
755	8c4ef875	NOYB	?>

Project

General

Profile

pfSense