/usr/local/www/diag_logs_ipsec.php - Annotate - pfSense - pfSense bugtracker

| Branch: | Tag: | Revision:

root/usr/local/www/diag_logs_ipsec.php @ 93458cb1

1	32887d33	Scott Ullrich	<?php
2	b46bfcf5	Bill Marquette	/* $Id$ */
3	32887d33	Scott Ullrich	/*
4			diag_logs.php
5	13d193c2	Scott Ullrich	Copyright (C) 2004-2009 Scott Ullrich
6	32887d33	Scott Ullrich	All rights reserved.
7
8			originally part of m0n0wall (http://m0n0.ch/wall)
9			Copyright (C) 2003-2004 Manuel Kasper <mk@neon1.net>.
10			All rights reserved.
11
12			Redistribution and use in source and binary forms, with or without
13			modification, are permitted provided that the following conditions are met:
14
15			1. Redistributions of source code must retain the above copyright notice,
16			this list of conditions and the following disclaimer.
17
18			2. Redistributions in binary form must reproduce the above copyright
19			notice, this list of conditions and the following disclaimer in the
20			documentation and/or other materials provided with the distribution.
21
22			THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
23			INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
24			AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
25			AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
26			OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
27			SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
28			INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
29			CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
30			ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
31			POSSIBILITY OF SUCH DAMAGE.
32			*/
33
34	13d193c2	Scott Ullrich	/*
35			pfSense_BUILDER_BINARIES: /sbin/ifconfig /usr/bin/awk
36			pfSense_MODULE: ipsec
37			*/
38
39	6b07c15a	Matthew Grooms	##\|+PRIV
40			##\|*IDENT=page-status-systemlogs-ipsecvpn
41			##\|*NAME=Status: System logs: IPsec VPN page
42			##\|*DESCR=Allow access to the 'Status: System logs: IPsec VPN' page.
43			##\|MATCH=diag_logs_ipsec.php
44			##\|-PRIV
45
46	32887d33	Scott Ullrich	require("guiconfig.inc");
47	483e6de8	Scott Ullrich	require("ipsec.inc");
48	32887d33	Scott Ullrich
49	bc7f52e2	Colin Smith	$ipsec_logfile = "{$g['varlog_path']}/ipsec.log";
50	4a2e189b	Seth Mos
51	0f266b2e	Chris Buechler	/* Create array with all IPsec tunnel descriptions */
52	4a2e189b	Seth Mos	$search = array();
53			$replace = array();
54	a93e56c5	Matthew Grooms	if(is_array($config['ipsec']['phase1']))
55			foreach($config['ipsec']['phase1'] as $ph1ent) {
56	d09641af	Seth Mos	$gateway = ipsec_get_phase1_dst($ph1ent);
57	9e050072	smos	if(!is_ipaddr($gateway))
58			continue;
59	413a327e	Seth Mos	$search[] = "/(racoon: )(INFO[:].?)({$gateway}\[[0-9].+\]\|{$gateway})(.)/i";
60			$search[] = "/(racoon: )(\[{$gateway}\]\|{$gateway})(.*)/i";
61			$replace[] = "$1<strong>[{$ph1ent['descr']}]</strong>: $2$3$4";
62	a93e56c5	Matthew Grooms	$replace[] = "$1<strong>[{$ph1ent['descr']}]</strong>: $2$3$4";
63	7fad5151	Scott Ullrich	}
64	eb3a6710	Seth Mos	/* collect all our own ip addresses */
65	413a327e	Seth Mos	exec("/sbin/ifconfig \| /usr/bin/awk '/inet/ {print $2}'", $ip_address_list);
66	eb3a6710	Seth Mos	foreach($ip_address_list as $address) {
67	413a327e	Seth Mos	$search[] = "/(racoon: )(INFO[:].*?)({$address}\[[0-9].+\])/i";
68			$search[] = "/(racoon: )(\[{$address}\]\|{$address})(.*)/i";
69			$replace[] = "$1<strong>[Self]</strong>: $2$3$4";
70	eb3a6710	Seth Mos	$replace[] = "$1<strong>[Self]</strong>: $2$3$4";
71			}
72	963d5343	Bill Marquette
73	840d845f	Seth Mos	$search[] = "/(time up waiting for phase1)/i";
74			$search[] = "/(failed to pre-process ph1 packet)/i";
75			$search[] = "/(failed to pre-process ph2 packet)/i";
76			$search[] = "/(no proposal chosen)/i";
77			$replace[] = "$1 <strong>[Remote Side not responding]</strong>";
78			$replace[] = "$1 <strong>[Check Phase 1 settings, lifetime, algorithm]</strong>";
79			$replace[] = "$1 <strong>[Check Phase 2 settings, networks]</strong>";
80			$replace[] = "$1 <strong>[Check Phase 2 settings, algorithm]</strong>";
81
82	32887d33	Scott Ullrich	$nentries = $config['syslog']['nentries'];
83			if (!$nentries)
84			$nentries = 50;
85
86	d6abaa18	Scott Ullrich	if ($_POST['clear'])
87			clear_log_file($ipsec_logfile);
88	32887d33	Scott Ullrich
89	eb3a6710	Seth Mos	$ipsec_logarr = return_clog($ipsec_logfile, $nentries);
90
91	f8ec8de4	Renato Botelho	$pgtitle = array(gettext("Status"),gettext("System logs"),gettext("IPsec VPN"));
92	b63695db	Scott Ullrich	include("head.inc");
93	32887d33	Scott Ullrich
94	b63695db	Scott Ullrich	?>
95	32887d33	Scott Ullrich	<body link="#0000CC" vlink="#0000CC" alink="#0000CC">
96			<?php include("fbegin.inc"); ?>
97			<table width="100%" border="0" cellpadding="0" cellspacing="0">
98	0913a099	Erik Kristensen	<tr>
99			<td>
100	b63695db	Scott Ullrich	<?php
101			$tab_array = array();
102	f8ec8de4	Renato Botelho	$tab_array[] = array(gettext("System"), false, "diag_logs.php");
103			$tab_array[] = array(gettext("Firewall"), false, "diag_logs_filter.php");
104			$tab_array[] = array(gettext("DHCP"), false, "diag_logs_dhcp.php");
105			$tab_array[] = array(gettext("Portal Auth"), false, "diag_logs_auth.php");
106			$tab_array[] = array(gettext("IPsec"), true, "diag_logs_ipsec.php");
107			$tab_array[] = array(gettext("PPP"), false, "diag_logs_ppp.php");
108			$tab_array[] = array(gettext("VPN"), false, "diag_logs_vpn.php");
109			$tab_array[] = array(gettext("Load Balancer"), false, "diag_logs_relayd.php");
110			$tab_array[] = array(gettext("OpenVPN"), false, "diag_logs_openvpn.php");
111	ae2c143a	jim-p	$tab_array[] = array(gettext("NTP"), false, "diag_logs_ntpd.php");
112	f8ec8de4	Renato Botelho	$tab_array[] = array(gettext("Settings"), false, "diag_logs_settings.php");
113	b63695db	Scott Ullrich	display_top_tabs($tab_array);
114			?>
115	0913a099	Erik Kristensen	</td>
116			</tr>
117			<tr>
118			<td>
119			<div id="mainarea">
120			<table class="tabcont" width="100%" border="0" cellspacing="0" cellpadding="0">
121			<tr>
122	f8ec8de4	Renato Botelho	<td colspan="2" class="listtopic"><?php printf(gettext("Last %s IPsec log entries"),$nentries);?></td>
123	0913a099	Erik Kristensen	</tr>
124	4a2e189b	Seth Mos	<?php
125			foreach($ipsec_logarr as $logent){
126	eb3a6710	Seth Mos	foreach($search as $string) {
127			if(preg_match($string, $logent))
128			$match = true;
129			}
130			if(isset($match)) {
131			$logent = preg_replace($search, $replace, $logent);
132			} else {
133			$searchs = "/(racoon: )([A-Z:].?)([0-9].+\.[0-9].+.[0-9].+.[0-9].+\[[0-9].+\])(.)/i";
134	f8ec8de4	Renato Botelho	$replaces = "$1<strong><font color=red>[".gettext("Unknown Gateway/Dynamic")."]</font></strong>: $2$3$4";
135	eb3a6710	Seth Mos	$logent = preg_replace($searchs, $replaces, $logent);
136			}
137	4a2e189b	Seth Mos	$logent = preg_split("/\s+/", $logent, 6);
138			echo "<tr valign=\"top\">\n";
139			$entry_date_time = htmlspecialchars(join(" ", array_slice($logent, 0, 3)));
140			echo "<td class=\"listlr\" nowrap>" . $entry_date_time . "</td>\n";
141			echo "<td class=\"listr\">" . $logent[4] . " " . $logent[5] . "</td>\n";
142			echo "</tr>\n";
143			}
144			?>
145	0913a099	Erik Kristensen	<tr>
146			<td>
147			<br>
148	1a2da578	Scott Ullrich	<form action="diag_logs_ipsec.php" method="post">
149	2b315054	Carlos Eduardo Ramos	<input name="clear" type="submit" class="formbtn" value="<?=gettext("Clear log"); ?>">
150	0913a099	Erik Kristensen	</form>
151			</td>
152			</tr>
153			</table>
154			</div>
155			</td>
156			</tr>
157	32887d33	Scott Ullrich	</table>
158			<?php include("fend.inc"); ?>
159			</body>
160			</html>

Project

General

Profile

pfSense