/src/usr/local/www/system.php - Annotate - pfSense - pfSense bugtracker

| Branch: | Tag: | Revision:

root/src/usr/local/www/system.php @ a69f79bd

1	04ad7c7c	Scott Ullrich	<?php
2	5b237745	Scott Ullrich	/*
3	c5d81585	Renato Botelho	* system.php
4	191cb31d	Stephen Beaver	*
5	c5d81585	Renato Botelho	* part of pfSense (https://www.pfsense.org)
6	38809d47	Renato Botelho do Couto	* Copyright (c) 2004-2013 BSD Perimeter
7			* Copyright (c) 2013-2016 Electric Sheep Fencing
8	8f585441	Luiz Souza	* Copyright (c) 2014-2021 Rubicon Communications, LLC (Netgate)
9	c5d81585	Renato Botelho	* All rights reserved.
10	54c605d4	Stephen Beaver	*
11	c5d81585	Renato Botelho	* originally based on m0n0wall (http://m0n0.ch/wall)
12			* Copyright (c) 2003-2004 Manuel Kasper <mk@neon1.net>.
13			* All rights reserved.
14	54c605d4	Stephen Beaver	*
15	b12ea3fb	Renato Botelho	* Licensed under the Apache License, Version 2.0 (the "License");
16			* you may not use this file except in compliance with the License.
17			* You may obtain a copy of the License at
18	54c605d4	Stephen Beaver	*
19	b12ea3fb	Renato Botelho	* http://www.apache.org/licenses/LICENSE-2.0
20	54c605d4	Stephen Beaver	*
21	b12ea3fb	Renato Botelho	* Unless required by applicable law or agreed to in writing, software
22			* distributed under the License is distributed on an "AS IS" BASIS,
23			* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
24			* See the License for the specific language governing permissions and
25			* limitations under the License.
26	54c605d4	Stephen Beaver	*/
27	5b237745	Scott Ullrich
28	6b07c15a	Matthew Grooms	##\|+PRIV
29			##\|*IDENT=page-system-generalsetup
30	5230f468	jim-p	##\|*NAME=System: General Setup
31	6b07c15a	Matthew Grooms	##\|*DESCR=Allow access to the 'System: General Setup' page.
32			##\|MATCH=system.php
33			##\|-PRIV
34
35	c81ef6e2	Phil Davis	require_once("guiconfig.inc");
36	7a927e67	Scott Ullrich	require_once("functions.inc");
37			require_once("filter.inc");
38			require_once("shaper.inc");
39	60ff91f1	Renato Botelho	require_once("system.inc");
40	5b237745	Scott Ullrich
41			$pconfig['hostname'] = $config['system']['hostname'];
42			$pconfig['domain'] = $config['system']['domain'];
43	a2d23e88	Phil Davis	$pconfig['dnsserver'] = $config['system']['dnsserver'];
44	0d8a219e	Scott Ullrich
45	d623f2da	Seth Mos	$arr_gateways = return_gateways_array();
46
47	e6367325	Phil Davis	// set default columns to two if unset
48	8f65151c	Phil Davis	if (!isset($config['system']['webgui']['dashboardcolumns'])) {
49	477db933	Jared Dillard	$config['system']['webgui']['dashboardcolumns'] = 2;
50			}
51
52	27db3c75	Phil Davis	// set default language if unset
53			if (!isset($config['system']['language'])) {
54	41817934	jim-p	$config['system']['language'] = $g['language'];
55	27db3c75	Phil Davis	}
56
57	7e8bfed2	jim-p	$dnshost_counter = 1;
58
59			while (isset($config["system"]["dns{$dnshost_counter}host"])) {
60			$pconfig_dnshost_counter = $dnshost_counter - 1;
61			$pconfig["dnshost{$pconfig_dnshost_counter}"] = $config["system"]["dns{$dnshost_counter}host"];
62			$dnshost_counter++;
63			}
64
65	a2d23e88	Phil Davis	$dnsgw_counter = 1;
66
67			while (isset($config["system"]["dns{$dnsgw_counter}gw"])) {
68			$pconfig_dnsgw_counter = $dnsgw_counter - 1;
69			$pconfig["dnsgw{$pconfig_dnsgw_counter}"] = $config["system"]["dns{$dnsgw_counter}gw"];
70			$dnsgw_counter++;
71			}
72	e180a6e3	Scott Ullrich
73	5b237745	Scott Ullrich	$pconfig['dnsallowoverride'] = isset($config['system']['dnsallowoverride']);
74			$pconfig['timezone'] = $config['system']['timezone'];
75			$pconfig['timeservers'] = $config['system']['timeservers'];
76	3e139f90	Vinicius Coque	$pconfig['language'] = $config['system']['language'];
77	a5995a8e	Stephen Beaver	$pconfig['webguicss'] = $config['system']['webgui']['webguicss'];
78	e79ff1ee	Steve Beaver	$pconfig['logincss'] = $config['system']['webgui']['logincss'];
79	3d29d2eb	Jared Dillard	$pconfig['webguifixedmenu'] = $config['system']['webgui']['webguifixedmenu'];
80	477db933	Jared Dillard	$pconfig['dashboardcolumns'] = $config['system']['webgui']['dashboardcolumns'];
81	1d3510cf	Phil Davis	$pconfig['interfacessort'] = isset($config['system']['webgui']['interfacessort']);
82	24f15b3a	NOYB	$pconfig['webguileftcolumnhyper'] = isset($config['system']['webgui']['webguileftcolumnhyper']);
83	d9058974	Phil Davis	$pconfig['disablealiaspopupdetail'] = isset($config['system']['webgui']['disablealiaspopupdetail']);
84	c05363c8	NOYB	$pconfig['dashboardavailablewidgetspanel'] = isset($config['system']['webgui']['dashboardavailablewidgetspanel']);
85			$pconfig['systemlogsfilterpanel'] = isset($config['system']['webgui']['systemlogsfilterpanel']);
86			$pconfig['systemlogsmanagelogpanel'] = isset($config['system']['webgui']['systemlogsmanagelogpanel']);
87	b1b8784a	NOYB	$pconfig['statusmonitoringsettingspanel'] = isset($config['system']['webgui']['statusmonitoringsettingspanel']);
88	e93242eb	Phil Davis	$pconfig['webguihostnamemenu'] = $config['system']['webgui']['webguihostnamemenu'];
89	f0c51530	jim-p	$pconfig['dnslocalhost'] = $config['system']['dnslocalhost'];
90	6c1f2a1c	Steve Beaver	//$pconfig['dashboardperiod'] = isset($config['widgets']['period']) ? $config['widgets']['period']:"10";
91	52e91f70	PiBa-NL	$pconfig['roworderdragging'] = isset($config['system']['webgui']['roworderdragging']);
92	a22947a4	Steve Beaver	$pconfig['loginshowhost'] = isset($config['system']['webgui']['loginshowhost']);
93	88081ea2	derelict-pf	$pconfig['requirestatefilter'] = isset($config['system']['webgui']['requirestatefilter']);
94	8ca95ed8	jim-p
95	2ee8dea1	Phil Davis	if (!$pconfig['timezone']) {
96	ecaca752	Renato Botelho	if (isset($g['default_timezone']) && !empty($g['default_timezone'])) {
97			$pconfig['timezone'] = $g['default_timezone'];
98			} else {
99			$pconfig['timezone'] = "Etc/UTC";
100			}
101	2ee8dea1	Phil Davis	}
102	ecaca752	Renato Botelho
103	2ee8dea1	Phil Davis	if (!$pconfig['timeservers']) {
104	5b237745	Scott Ullrich	$pconfig['timeservers'] = "pool.ntp.org";
105	2ee8dea1	Phil Davis	}
106	04ad7c7c	Scott Ullrich
107	79eaddf4	Renato Botelho	$changedesc = gettext("System") . ": ";
108	62d01225	Bill Marquette	$changecount = 0;
109	417c6042	Bill Marquette
110	5b237745	Scott Ullrich	function is_timezone($elt) {
111			return !preg_match("/\/$/", $elt);
112			}
113
114	2ee8dea1	Phil Davis	if ($pconfig['timezone'] <> $_POST['timezone']) {
115	744306c6	jim-p	filter_pflog_start(true);
116	aa1ab1da	Scott Ullrich	}
117
118	60ff91f1	Renato Botelho	$timezonelist = system_get_timezone_list();
119	e5f4c829	Renato Botelho	$timezonedesc = $timezonelist;
120
121			/*
122			* Etc/GMT entries work the opposite way to what people expect.
123			* Ref: https://github.com/eggert/tz/blob/master/etcetera and Redmine issue 7089
124			* Add explanatory text to entries like:
125			* Etc/GMT+1 and Etc/GMT-1
126			* but not:
127			* Etc/GMT or Etc/GMT+0
128			*/
129			foreach ($timezonedesc as $idx => $desc) {
130			if (substr($desc, 0, 7) != "Etc/GMT" \|\| substr($desc, 8, 1) == "0") {
131			continue;
132			}
133
134			$direction = substr($desc, 7, 1);
135
136			switch ($direction) {
137			case '-':
138	88de4ab0	Phil Davis	$direction_str = gettext('AHEAD of');
139	e5f4c829	Renato Botelho	break;
140			case '+':
141			$direction_str = gettext('BEHIND');
142			break;
143			default:
144	86ec819a	jim-p	continue 2;
145	e5f4c829	Renato Botelho	}
146
147			$hr_offset = substr($desc, 8);
148	88de4ab0	Phil Davis	$timezonedesc[$idx] = $desc . " " .
149	d93d8c9c	Steve Beaver	sprintf(ngettext('(%1$s hour %2$s GMT)', '(%1$s hours %2$s GMT)', intval($hr_offset)), $hr_offset, $direction_str);
150	e5f4c829	Renato Botelho	}
151	5b237745	Scott Ullrich
152	f211d7c0	luckman212	$multiwan = 0;
153	7922db8a	Seth Mos	$interfaces = get_configured_interface_list();
154	2ee8dea1	Phil Davis	foreach ($interfaces as $interface) {
155			if (interface_has_gateway($interface)) {
156	f211d7c0	luckman212	$multiwan++;
157	6038cba7	luckman212	if ($multiwan > 1) {
158			break;
159			}
160	7922db8a	Seth Mos	}
161			}
162	77446beb	Matthew Grooms
163	5b237745	Scott Ullrich	if ($_POST) {
164
165	c668c964	Scott Ullrich	$changecount++;
166	1180e4f0	Sjon Hortensius
167	5b237745	Scott Ullrich	unset($input_errors);
168			$pconfig = $_POST;
169
170			/* input validation */
171	cfbfd941	smos	$reqdfields = explode(" ", "hostname domain");
172	2ee8dea1	Phil Davis	$reqdfieldsn = array(gettext("Hostname"), gettext("Domain"));
173	04ad7c7c	Scott Ullrich
174	1e9b4611	Renato Botelho	do_input_validation($_POST, $reqdfields, $reqdfieldsn, $input_errors);
175	04ad7c7c	Scott Ullrich
176	2d86ee95	Phil Davis	if ($_POST['hostname']) {
177			if (!is_hostname($_POST['hostname'])) {
178			$input_errors[] = gettext("The hostname can only contain the characters A-Z, 0-9 and '-'. It may not start or end with '-'.");
179			} else {
180			if (!is_unqualified_hostname($_POST['hostname'])) {
181			$input_errors[] = gettext("A valid hostname is specified, but the domain name part should be omitted");
182			}
183			}
184	5b237745	Scott Ullrich	}
185	8ee5aa03	Viktor Gurov	if ($_POST['domain'] && (!is_domain($_POST['domain'], false, false))) {
186	41e0d95f	jim-p	$input_errors[] = gettext("The domain may only contain the characters a-z, 0-9, '-' and '.', and it cannot start with '.' or '-'.");
187	5b237745	Scott Ullrich	}
188	9ceace25	jim-p	validate_webguicss_field($input_errors, $_POST['webguicss']);
189			validate_webguifixedmenu_field($input_errors, $_POST['webguifixedmenu']);
190			validate_webguihostnamemenu_field($input_errors, $_POST['webguihostnamemenu']);
191			validate_dashboardcolumns_field($input_errors, $_POST['dashboardcolumns']);
192	d623f2da	Seth Mos
193	58b07c57	NewEraCracker	$dnslist = $ignore_posted_dnsgw = array();
194	df4471e2	Phil Davis
195	a2d23e88	Phil Davis	$dnscounter = 0;
196			$dnsname = "dns{$dnscounter}";
197
198			while (isset($_POST[$dnsname])) {
199			$dnsgwname = "dnsgw{$dnscounter}";
200	7e8bfed2	jim-p	$dnshostname = "dnshost{$dnscounter}";
201	a936104b	Stephen Beaver	$dnslist[] = $_POST[$dnsname];
202
203	d623f2da	Seth Mos	if (($_POST[$dnsname] && !is_ipaddr($_POST[$dnsname]))) {
204	a2d23e88	Phil Davis	$input_errors[] = sprintf(gettext("A valid IP address must be specified for DNS server %s."), $dnscounter+1);
205	52acb1ff	Phil Davis	} else {
206	7e8bfed2	jim-p	if (!empty($_POST[$dnshostname]) && !is_hostname($_POST[$dnshostname])) {
207			$input_errors[] = sprintf(gettext('The hostname provided for DNS server "%1$s" is not valid.'), $_POST[$dnsname]);
208			}
209	2ee8dea1	Phil Davis	if (($_POST[$dnsgwname] <> "") && ($_POST[$dnsgwname] <> "none")) {
210	52acb1ff	Phil Davis	// A real gateway has been selected.
211			if (is_ipaddr($_POST[$dnsname])) {
212	2ee8dea1	Phil Davis	if ((is_ipaddrv4($_POST[$dnsname])) && (validate_address_family($_POST[$dnsname], $_POST[$dnsgwname]) === false)) {
213	1bab4a10	NOYB	$input_errors[] = sprintf(gettext('The IPv6 gateway "%1$s" can not be specified for IPv4 DNS server "%2$s".'), $_POST[$dnsgwname], $_POST[$dnsname]);
214	52acb1ff	Phil Davis	}
215	2ee8dea1	Phil Davis	if ((is_ipaddrv6($_POST[$dnsname])) && (validate_address_family($_POST[$dnsname], $_POST[$dnsgwname]) === false)) {
216	1bab4a10	NOYB	$input_errors[] = sprintf(gettext('The IPv4 gateway "%1$s" can not be specified for IPv6 DNS server "%2$s".'), $_POST[$dnsgwname], $_POST[$dnsname]);
217	52acb1ff	Phil Davis	}
218			} else {
219	df4471e2	Phil Davis	// The user selected a gateway but did not provide a DNS address. Be nice and set the gateway back to "none".
220			$ignore_posted_dnsgw[$dnsgwname] = true;
221	52acb1ff	Phil Davis	}
222	13ea7caa	smos	}
223	d623f2da	Seth Mos	}
224	a2d23e88	Phil Davis	$dnscounter++;
225			$dnsname = "dns{$dnscounter}";
226	5b237745	Scott Ullrich	}
227	d623f2da	Seth Mos
228	c25e42c8	Mark Furneaux	if (count(array_filter($dnslist)) != count(array_unique(array_filter($dnslist)))) {
229	f700dc99	Chris Buechler	$input_errors[] = gettext('Each configured DNS server must have a unique IP address. Remove the duplicated IP.');
230			}
231
232	a2d23e88	Phil Davis	$dnscounter = 0;
233			$dnsname = "dns{$dnscounter}";
234
235	985fc0fb	Ermal Lu?i	$direct_networks_list = explode(" ", filter_get_direct_networks_list());
236	a2d23e88	Phil Davis	while (isset($_POST[$dnsname])) {
237			$dnsgwname = "dnsgw{$dnscounter}";
238			if ($_POST[$dnsgwname] && ($_POST[$dnsgwname] <> "none")) {
239	d8587952	Phil Davis	foreach ($direct_networks_list as $direct_network) {
240	a2d23e88	Phil Davis	if (ip_in_subnet($_POST[$dnsname], $direct_network)) {
241	86212d70	luckman212	$input_errors[] = sprintf(gettext("A gateway cannot be specified for %s because that IP address is part of a directly connected subnet %s. To use that nameserver, change its Gateway to `none`."), $_POST[$dnsname], $direct_network);
242	c98d28e1	Seth Mos	}
243			}
244			}
245	a2d23e88	Phil Davis	$dnscounter++;
246			$dnsname = "dns{$dnscounter}";
247	c98d28e1	Seth Mos	}
248
249	8adb814b	David P Hilton	# it's easy to have a little too much whitespace in the field, clean it up for the user before processing.
250			$_POST['timeservers'] = preg_replace('/[[:blank:]]+/', ' ', $_POST['timeservers']);
251			$_POST['timeservers'] = trim($_POST['timeservers']);
252	5b237745	Scott Ullrich	foreach (explode(' ', $_POST['timeservers']) as $ts) {
253	518fa664	kiokoman	if (!is_domain($ts) && (!is_ipaddr($ts))) {
254			$input_errors[] = gettext("NTP Time Server names must be valid domain names, IPv4 addresses, or IPv6 addresses");
255	5b237745	Scott Ullrich	}
256			}
257
258	a2d23e88	Phil Davis	if ($input_errors) {
259			// Put the user-entered list back into place so it will be redisplayed for correction.
260			$pconfig['dnsserver'] = $dnslist;
261			} else {
262	f211d7c0	luckman212	// input validation passed, so we can proceed with removing static routes for dead DNS gateways
263			if (is_array($config['system']['dnsserver'])) {
264			$dns_servers_arr = $config['system']['dnsserver'];
265			foreach ($dns_servers_arr as $arr_index => $this_dnsserver) {
266			$i = (int)$arr_index + 1;
267			$this_dnsgw = $config['system']['dns'.$i.'gw'];
268			unset($gatewayip);
269			unset($inet6);
270			if ((!empty($this_dnsgw)) && ($this_dnsgw != 'none') && (!empty($this_dnsserver))) {
271			$gatewayip = lookup_gateway_ip_by_name($this_dnsgw);
272			$inet6 = is_ipaddrv6($gatewayip) ? '-inet6 ' : '';
273	ded361f5	Viktor G	mwexec("/sbin/route -q delete -host {$inet6}{$this_dnsserver} " . escapeshellarg($gatewayip));
274	f211d7c0	luckman212	}
275			}
276			}
277
278	f1a34790	N0YB	update_if_changed("hostname", $config['system']['hostname'], $_POST['hostname']);
279			update_if_changed("domain", $config['system']['domain'], $_POST['domain']);
280	9eab73da	Bill Marquette	update_if_changed("timezone", $config['system']['timezone'], $_POST['timezone']);
281			update_if_changed("NTP servers", $config['system']['timeservers'], strtolower($_POST['timeservers']));
282	04ad7c7c	Scott Ullrich
283	2ee8dea1	Phil Davis	if ($_POST['language'] && $_POST['language'] != $config['system']['language']) {
284	3e139f90	Vinicius Coque	$config['system']['language'] = $_POST['language'];
285	ceecd29b	Renato Botelho	set_language();
286	3e139f90	Vinicius Coque	}
287
288	1d3510cf	Phil Davis	unset($config['system']['webgui']['interfacessort']);
289			$config['system']['webgui']['interfacessort'] = $_POST['interfacessort'] ? true : false;
290
291	24f15b3a	NOYB	unset($config['system']['webgui']['webguileftcolumnhyper']);
292			$config['system']['webgui']['webguileftcolumnhyper'] = $_POST['webguileftcolumnhyper'] ? true : false;
293
294	d9058974	Phil Davis	unset($config['system']['webgui']['disablealiaspopupdetail']);
295			$config['system']['webgui']['disablealiaspopupdetail'] = $_POST['disablealiaspopupdetail'] ? true : false;
296
297	c05363c8	NOYB	unset($config['system']['webgui']['dashboardavailablewidgetspanel']);
298			$config['system']['webgui']['dashboardavailablewidgetspanel'] = $_POST['dashboardavailablewidgetspanel'] ? true : false;
299
300			unset($config['system']['webgui']['systemlogsfilterpanel']);
301			$config['system']['webgui']['systemlogsfilterpanel'] = $_POST['systemlogsfilterpanel'] ? true : false;
302
303			unset($config['system']['webgui']['systemlogsmanagelogpanel']);
304			$config['system']['webgui']['systemlogsmanagelogpanel'] = $_POST['systemlogsmanagelogpanel'] ? true : false;
305
306	b1b8784a	NOYB	unset($config['system']['webgui']['statusmonitoringsettingspanel']);
307			$config['system']['webgui']['statusmonitoringsettingspanel'] = $_POST['statusmonitoringsettingspanel'] ? true : false;
308
309	9ceace25	jim-p	// if ($_POST['dashboardperiod']) {
310			// $config['widgets']['period'] = $_POST['dashboardperiod'];
311			// }
312
313			if ($_POST['webguicss']) {
314			$config['system']['webgui']['webguicss'] = $_POST['webguicss'];
315			} else {
316			unset($config['system']['webgui']['webguicss']);
317			}
318
319			$config['system']['webgui']['roworderdragging'] = $_POST['roworderdragging'] ? true:false;
320
321			if ($_POST['logincss']) {
322			$config['system']['webgui']['logincss'] = $_POST['logincss'];
323			} else {
324			unset($config['system']['webgui']['logincss']);
325			}
326
327			$config['system']['webgui']['loginshowhost'] = $_POST['loginshowhost'] ? true:false;
328
329			if ($_POST['webguifixedmenu']) {
330			$config['system']['webgui']['webguifixedmenu'] = $_POST['webguifixedmenu'];
331			} else {
332			unset($config['system']['webgui']['webguifixedmenu']);
333			}
334
335			if ($_POST['webguihostnamemenu']) {
336			$config['system']['webgui']['webguihostnamemenu'] = $_POST['webguihostnamemenu'];
337			} else {
338			unset($config['system']['webgui']['webguihostnamemenu']);
339			}
340
341			if ($_POST['dashboardcolumns']) {
342			$config['system']['webgui']['dashboardcolumns'] = $_POST['dashboardcolumns'];
343			} else {
344			unset($config['system']['webgui']['dashboardcolumns']);
345			}
346
347			$config['system']['webgui']['requirestatefilter'] = $_POST['requirestatefilter'] ? true : false;
348
349	4fbf63aa	Bill Marquette	/* XXX - billm: these still need updating after figuring out how to check if they actually changed */
350	52acb1ff	Phil Davis	$olddnsservers = $config['system']['dnsserver'];
351	5b237745	Scott Ullrich	unset($config['system']['dnsserver']);
352	a2d23e88	Phil Davis
353			$dnscounter = 0;
354			$dnsname = "dns{$dnscounter}";
355
356			while (isset($_POST[$dnsname])) {
357			if ($_POST[$dnsname]) {
358			$config['system']['dnsserver'][] = $_POST[$dnsname];
359			}
360			$dnscounter++;
361			$dnsname = "dns{$dnscounter}";
362	2ee8dea1	Phil Davis	}
363	04ad7c7c	Scott Ullrich
364	a2d23e88	Phil Davis	// Remember the new list for display also.
365			$pconfig['dnsserver'] = $config['system']['dnsserver'];
366
367	07bd3f83	Scott Ullrich	$olddnsallowoverride = $config['system']['dnsallowoverride'];
368	20b90e0a	Scott Ullrich
369	0d8a219e	Scott Ullrich	unset($config['system']['dnsallowoverride']);
370	5b237745	Scott Ullrich	$config['system']['dnsallowoverride'] = $_POST['dnsallowoverride'] ? true : false;
371	e180a6e3	Scott Ullrich
372	f0c51530	jim-p	if ($_POST['dnslocalhost']) {
373			$config['system']['dnslocalhost'] = $_POST['dnslocalhost'];
374	2ee8dea1	Phil Davis	} else {
375	8ca95ed8	jim-p	unset($config['system']['dnslocalhost']);
376	2ee8dea1	Phil Davis	}
377	8ca95ed8	jim-p
378	e180a6e3	Scott Ullrich	/* which interface should the dns servers resolve through? */
379	a2d23e88	Phil Davis	$dnscounter = 0;
380			// The $_POST array key of the DNS IP (starts from 0)
381			$dnsname = "dns{$dnscounter}";
382	df4471e2	Phil Davis	$outdnscounter = 0;
383	a2d23e88	Phil Davis	while (isset($_POST[$dnsname])) {
384			// The $_POST array key of the corresponding gateway (starts from 0)
385			$dnsgwname = "dnsgw{$dnscounter}";
386	7e8bfed2	jim-p	$dnshostname = "dnshost{$dnscounter}";
387			// The numbering of DNS GW/host entries in the config starts from 1
388	a2d23e88	Phil Davis	$dnsgwconfigcounter = $dnscounter + 1;
389	7e8bfed2	jim-p	$dnshostconfigcounter = $dnscounter + 1;
390	a2d23e88	Phil Davis	// So this is the array key of the DNS GW entry in $config['system']
391			$dnsgwconfigname = "dns{$dnsgwconfigcounter}gw";
392	7e8bfed2	jim-p	$dnshostconfigname = "dns{$dnshostconfigcounter}host";
393	a2d23e88	Phil Davis
394			$olddnsgwname = $config['system'][$dnsgwconfigname];
395	7e8bfed2	jim-p	$olddnshostname = $config['system'][$dnshostconfigname];
396	df4471e2	Phil Davis
397	2ee8dea1	Phil Davis	if ($ignore_posted_dnsgw[$dnsgwname]) {
398	df4471e2	Phil Davis	$thisdnsgwname = "none";
399	2ee8dea1	Phil Davis	} else {
400	df4471e2	Phil Davis	$thisdnsgwname = $pconfig[$dnsgwname];
401	2ee8dea1	Phil Davis	}
402	7e8bfed2	jim-p	$thisdnshostname = $pconfig[$dnshostname];
403	df4471e2	Phil Davis
404			// "Blank" out the settings for this index, then we set them below using the "outdnscounter" index.
405	a2d23e88	Phil Davis	$config['system'][$dnsgwconfigname] = "none";
406	df4471e2	Phil Davis	$pconfig[$dnsgwname] = "none";
407	7e8bfed2	jim-p	$config['system'][$dnshostconfigname] = "";
408			$pconfig[$dnshostname] = "";
409	df4471e2	Phil Davis	$pconfig[$dnsname] = "";
410
411			if ($_POST[$dnsname]) {
412			// Only the non-blank DNS servers were put into the config above.
413			// So we similarly only add the corresponding gateways sequentially to the config (and to pconfig), as we find non-blank DNS servers.
414			// This keeps the DNS server IP and corresponding gateway "lined up" when the user blanks out a DNS server IP in the middle of the list.
415	a2d23e88	Phil Davis
416			// The $pconfig array key of the DNS IP (starts from 0)
417			$outdnsname = "dns{$outdnscounter}";
418			// The $pconfig array key of the corresponding gateway (starts from 0)
419			$outdnsgwname = "dnsgw{$outdnscounter}";
420	7e8bfed2	jim-p	// The $pconfig array key of the corresponding hostname (starts from 0)
421			$outdnshostname = "dnshost{$outdnscounter}";
422
423			// The numbering of DNS GW/host entries in the config starts from 1
424	a2d23e88	Phil Davis	$outdnsgwconfigcounter = $outdnscounter + 1;
425	7e8bfed2	jim-p	$outdnshostconfigcounter = $outdnscounter + 1;
426	a2d23e88	Phil Davis	// So this is the array key of the output DNS GW entry in $config['system']
427			$outdnsgwconfigname = "dns{$outdnsgwconfigcounter}gw";
428	7e8bfed2	jim-p	$outdnshostconfigname = "dns{$outdnshostconfigcounter}host";
429	a2d23e88	Phil Davis
430	df4471e2	Phil Davis	$pconfig[$outdnsname] = $_POST[$dnsname];
431	2ee8dea1	Phil Davis	if ($_POST[$dnsgwname]) {
432	a2d23e88	Phil Davis	$config['system'][$outdnsgwconfigname] = $thisdnsgwname;
433	df4471e2	Phil Davis	$pconfig[$outdnsgwname] = $thisdnsgwname;
434			} else {
435			// Note: when no DNS GW name is chosen, the entry is set to "none", so actually this case never happens.
436	a2d23e88	Phil Davis	unset($config['system'][$outdnsgwconfigname]);
437	df4471e2	Phil Davis	$pconfig[$outdnsgwname] = "";
438	0d192133	jim-p	}
439			if ($_POST[$dnshostname]) {
440			$config['system'][$outdnshostconfigname] = $thisdnshostname;
441			$pconfig[$outdnshostname] = $thisdnshostname;
442			} else {
443			// Note: when no DNS hostname is chosen, unset the value.
444	7e8bfed2	jim-p	unset($config['system'][$outdnshostconfigname]);
445			$pconfig[$outdnshostname] = "";
446	df4471e2	Phil Davis	}
447	a2d23e88	Phil Davis	$outdnscounter++;
448	d623f2da	Seth Mos	}
449	a2d23e88	Phil Davis
450			$dnscounter++;
451			// The $_POST array key of the DNS IP (starts from 0)
452			$dnsname = "dns{$dnscounter}";
453	d623f2da	Seth Mos	}
454	04ad7c7c	Scott Ullrich
455	f211d7c0	luckman212	// clean up dnsgw orphans
456			$oldgwcounter = 1;
457			$olddnsgwconfigname = "dns{$oldgwcounter}gw";
458			while (isset($config['system'][$olddnsgwconfigname])) {
459			if (empty($config['system']['dnsserver'][$oldgwcounter - 1])) {
460			unset($config['system'][$olddnsgwconfigname]);
461			}
462			$oldgwcounter++;
463			$olddnsgwconfigname = "dns{$oldgwcounter}gw";
464			}
465			unset($oldgwcounter);
466			unset($olddnsgwconfigname);
467
468	2ee8dea1	Phil Davis	if ($changecount > 0) {
469	62d01225	Bill Marquette	write_config($changedesc);
470	2ee8dea1	Phil Davis	}
471	04ad7c7c	Scott Ullrich
472	44c42356	Phil Davis	$changes_applied = true;
473	5b237745	Scott Ullrich	$retval = 0;
474	44c42356	Phil Davis	$retval \|= system_hostname_configure();
475	3cfdba5f	Scott Ullrich	$retval \|= system_hosts_generate();
476			$retval \|= system_resolvconf_generate();
477	2ee8dea1	Phil Davis	if (isset($config['dnsmasq']['enable'])) {
478	1e2c8821	Warren Baker	$retval \|= services_dnsmasq_configure();
479	2ee8dea1	Phil Davis	} elseif (isset($config['unbound']['enable'])) {
480	1e2c8821	Warren Baker	$retval \|= services_unbound_configure();
481	2ee8dea1	Phil Davis	}
482	3cfdba5f	Scott Ullrich	$retval \|= system_timezone_configure();
483			$retval \|= system_ntp_configure();
484
485	2ee8dea1	Phil Davis	if ($olddnsallowoverride != $config['system']['dnsallowoverride']) {
486	b8292903	Ermal	$retval \|= send_event("service reload dns");
487	2ee8dea1	Phil Davis	}
488	3cfdba5f	Scott Ullrich
489	e7d967d8	Scott Ullrich	// Reload the filter - plugins might need to be run.
490	0027de0a	Ermal Lu?i	$retval \|= filter_configure();
491	5b237745	Scott Ullrich	}
492	df4471e2	Phil Davis
493			unset($ignore_posted_dnsgw);
494	5b237745	Scott Ullrich	}
495	4df96eff	Scott Ullrich
496	2ee8dea1	Phil Davis	$pgtitle = array(gettext("System"), gettext("General Setup"));
497	4df96eff	Scott Ullrich	include("head.inc");
498
499	8f65151c	Phil Davis	if ($input_errors) {
500	41ea4cf3	Sjon Hortensius	print_input_errors($input_errors);
501	8f65151c	Phil Davis	}
502	ddb84143	Stephen Beaver
503	44c42356	Phil Davis	if ($changes_applied) {
504			print_apply_result_box($retval);
505	8f65151c	Phil Davis	}
506	5b237745	Scott Ullrich	?>
507	41ea4cf3	Sjon Hortensius	<div id="container">
508	b40bcb23	Sjon Hortensius	<?php
509	1180e4f0	Sjon Hortensius
510	b40bcb23	Sjon Hortensius	$form = new Form;
511	a32c0623	Sjon Hortensius	$section = new Form_Section('System');
512			$section->addInput(new Form_Input(
513	a97531c5	Sjon Hortensius	'hostname',
514	153c3aa6	Phil Davis	'*Hostname',
515	a32c0623	Sjon Hortensius	'text',
516			$pconfig['hostname'],
517			['placeholder' => 'pfSense']
518			))->setHelp('Name of the firewall host, without domain part');
519	512f2c10	Stephen Beaver
520	a32c0623	Sjon Hortensius	$section->addInput(new Form_Input(
521	a97531c5	Sjon Hortensius	'domain',
522	153c3aa6	Phil Davis	'*Domain',
523	a32c0623	Sjon Hortensius	'text',
524			$pconfig['domain'],
525	41e0d95f	jim-p	['placeholder' => 'example.com, home, office, private, etc.']
526			))->setHelp('Do not end the domain name with \'.local\' as the final part (Top Level Domain, TLD), ' .
527			'The \'local\' TLD is %1$swidely used%2$s by mDNS (e.g. Avahi, Bonjour, Rendezvous, Airprint, Airplay) ' .
528			'and some Windows systems and networked devices. ' .
529			'These will not network correctly if the router uses \'local\' as its TLD. ' .
530			'Alternative TLDs such as \'local.lan\' or \'mylocal\' are safe.',
531			'<a target="_blank" href="https://www.unbound.net/pipermail/unbound-users/2011-March/001735.html">',
532			'</a>'
533	ef77e40e	stilez	);
534	512f2c10	Stephen Beaver
535	b40bcb23	Sjon Hortensius	$form->add($section);
536
537	70dc5cd6	Phil Davis	$section = new Form_Section('DNS Server Settings');
538	b40bcb23	Sjon Hortensius
539	a2d23e88	Phil Davis	if (!is_array($pconfig['dnsserver'])) {
540			$pconfig['dnsserver'] = array();
541			}
542
543			$dnsserver_count = count($pconfig['dnsserver']);
544			$dnsserver_num = 0;
545			$dnsserver_help = gettext("Address") . '<br/>' . gettext("Enter IP addresses to be used by the system for DNS resolution.") . " " .
546			gettext("These are also used for the DHCP service, DNS Forwarder and DNS Resolver when it has DNS Query Forwarding enabled.");
547	7e8bfed2	jim-p	$dnshost_help = gettext("Hostname") . '<br/>' . gettext("Enter the DNS Server Hostname for TLS Verification in the DNS Resolver (optional).");
548	a2d23e88	Phil Davis	$dnsgw_help = gettext("Gateway") . '<br/>'. gettext("Optionally select the gateway for each DNS server.") . " " .
549			gettext("When using multiple WAN connections there should be at least one unique DNS server per gateway.");
550
551			// If there are no DNS servers, make an empty entry for initial display.
552			if ($dnsserver_count == 0) {
553			$pconfig['dnsserver'][] = '';
554			}
555
556			foreach ($pconfig['dnsserver'] as $dnsserver) {
557	54c605d4	Stephen Beaver
558	05025e63	Steve Beaver	$is_last_dnsserver = (($dnsserver_num == $dnsserver_count - 1) \|\| $dnsserver_count == 0);
559	a2d23e88	Phil Davis	$group = new Form_Group($dnsserver_num == 0 ? 'DNS Servers':'');
560			$group->addClass('repeatable');
561	54c605d4	Stephen Beaver
562			$group->add(new Form_Input(
563	a2d23e88	Phil Davis	'dns' . $dnsserver_num,
564	54c605d4	Stephen Beaver	'DNS Server',
565			'text',
566	a2d23e88	Phil Davis	$dnsserver
567			))->setHelp(($is_last_dnsserver) ? $dnsserver_help:null);
568	b40bcb23	Sjon Hortensius
569	7e8bfed2	jim-p	$group->add(new Form_Input(
570			'dnshost' . $dnsserver_num,
571			'DNS Hostname',
572			'text',
573			$pconfig['dnshost' . $dnsserver_num]
574			))->setHelp(($is_last_dnsserver) ? $dnshost_help:null);
575
576	86212d70	luckman212	if ($multiwan > 1) {
577	b40bcb23	Sjon Hortensius	$options = array('none' => 'none');
578
579	8f65151c	Phil Davis	foreach ($arr_gateways as $gwname => $gwitem) {
580			if ((is_ipaddrv4(lookup_gateway_ip_by_name($pconfig[$dnsgw])) && (is_ipaddrv6($gwitem['gateway'])))) {
581	b40bcb23	Sjon Hortensius	continue;
582			}
583	54c605d4	Stephen Beaver
584	8f65151c	Phil Davis	if ((is_ipaddrv6(lookup_gateway_ip_by_name($pconfig[$dnsgw])) && (is_ipaddrv4($gwitem['gateway'])))) {
585	b40bcb23	Sjon Hortensius	continue;
586			}
587	1180e4f0	Sjon Hortensius
588	b40bcb23	Sjon Hortensius	$options[$gwname] = $gwname.' - '.$gwitem['friendlyiface'].' - '.$gwitem['gateway'];
589			}
590	1180e4f0	Sjon Hortensius
591	a97531c5	Sjon Hortensius	$group->add(new Form_Select(
592	a2d23e88	Phil Davis	'dnsgw' . $dnsserver_num,
593	e4dd8be4	NOYB	'Gateway',
594	a2d23e88	Phil Davis	$pconfig['dnsgw' . $dnsserver_num],
595	a97531c5	Sjon Hortensius	$options
596	f211d7c0	luckman212	))->setWidth(4)->setHelp(($is_last_dnsserver) ? $dnsgw_help:null);
597	b40bcb23	Sjon Hortensius	}
598	1180e4f0	Sjon Hortensius
599	a2d23e88	Phil Davis	$group->add(new Form_Button(
600			'deleterow' . $dnsserver_num,
601			'Delete',
602			null,
603			'fa-trash'
604	f211d7c0	luckman212	))->setWidth(2)->addClass('btn-warning');
605	54c605d4	Stephen Beaver
606	b40bcb23	Sjon Hortensius	$section->add($group);
607	a2d23e88	Phil Davis	$dnsserver_num++;
608	b40bcb23	Sjon Hortensius	}
609	1180e4f0	Sjon Hortensius
610	a2d23e88	Phil Davis	$section->addInput(new Form_Button(
611			'addrow',
612			'Add DNS Server',
613			null,
614			'fa-plus'
615			))->addClass('btn-success addbtn');
616
617	a005a836	Sjon Hortensius	$section->addInput(new Form_Checkbox(
618	a97531c5	Sjon Hortensius	'dnsallowoverride',
619	70dc5cd6	Phil Davis	'DNS Server Override',
620	b40bcb23	Sjon Hortensius	'Allow DNS server list to be overridden by DHCP/PPP on WAN',
621			$pconfig['dnsallowoverride']
622	314a088a	Phil Davis	))->setHelp('If this option is set, %s will use DNS servers '.
623	a32c0623	Sjon Hortensius	'assigned by a DHCP/PPP server on WAN for its own purposes (including '.
624	a56e37ca	doktornotor	'the DNS Forwarder/DNS Resolver). However, they will not be assigned to DHCP '.
625	c67c74dd	Steve Beaver	'clients.', $g['product_label']);
626	b40bcb23	Sjon Hortensius
627	f0c51530	jim-p	$section->addInput(new Form_Select(
628	a97531c5	Sjon Hortensius	'dnslocalhost',
629	f0c51530	jim-p	'DNS Resolution Behavior',
630			$pconfig['dnslocalhost'],
631			array(
632			'' => 'Use local DNS (127.0.0.1), fall back to remote DNS Servers (Default)',
633			'local' => 'Use local DNS (127.0.0.1), ignore remote DNS Servers',
634			'remote' => 'Use remote DNS Servers, ignore local DNS',
635			)
636			))->setHelp('By default the firewall will use local DNS service (127.0.0.1, DNS '.
637			'Resolver or Forwarder) as the first DNS server when possible, and it '.
638			'will fall back to remote DNS servers otherwise. Use this option to '.
639			'choose alternate behaviors.');
640	b40bcb23	Sjon Hortensius
641			$form->add($section);
642
643	a005a836	Sjon Hortensius	$section = new Form_Section('Localization');
644	512f2c10	Stephen Beaver
645	a005a836	Sjon Hortensius	$section->addInput(new Form_Select(
646	a97531c5	Sjon Hortensius	'timezone',
647	153c3aa6	Phil Davis	'*Timezone',
648	a32c0623	Sjon Hortensius	$pconfig['timezone'],
649	e5f4c829	Renato Botelho	array_combine($timezonelist, $timezonedesc)
650	781d9ce4	Phil Davis	))->setHelp('Select a geographic region name (Continent/Location) to determine the timezone for the firewall. %1$s' .
651			'Choose a special or "Etc" zone only in cases where the geographic zones do not properly handle the clock offset required for this firewall.', '<br/>');
652	512f2c10	Stephen Beaver
653	a005a836	Sjon Hortensius	$section->addInput(new Form_Input(
654	a97531c5	Sjon Hortensius	'timeservers',
655	a32c0623	Sjon Hortensius	'Timeservers',
656			'text',
657			$pconfig['timeservers']
658			))->setHelp('Use a space to separate multiple hosts (only one required). '.
659	1bab4a10	NOYB	'Remember to set up at least one DNS server if a host name is entered here!');
660	512f2c10	Stephen Beaver
661	a005a836	Sjon Hortensius	$section->addInput(new Form_Select(
662	a97531c5	Sjon Hortensius	'language',
663	153c3aa6	Phil Davis	'*Language',
664	a32c0623	Sjon Hortensius	$pconfig['language'],
665			get_locale_list()
666			))->setHelp('Choose a language for the webConfigurator');
667	b40bcb23	Sjon Hortensius
668			$form->add($section);
669
670	1176360c	k-paulius	$section = new Form_Section('webConfigurator');
671	a5995a8e	Stephen Beaver
672	8bab524e	Phil Davis	gen_webguicss_field($section, $pconfig['webguicss']);
673			gen_webguifixedmenu_field($section, $pconfig['webguifixedmenu']);
674			gen_webguihostnamemenu_field($section, $pconfig['webguihostnamemenu']);
675			gen_dashboardcolumns_field($section, $pconfig['dashboardcolumns']);
676	1d3510cf	Phil Davis	gen_interfacessort_field($section, $pconfig['interfacessort']);
677	8bab524e	Phil Davis	gen_associatedpanels_fields(
678			$section,
679			$pconfig['dashboardavailablewidgetspanel'],
680			$pconfig['systemlogsfilterpanel'],
681			$pconfig['systemlogsmanagelogpanel'],
682			$pconfig['statusmonitoringsettingspanel']);
683	88081ea2	derelict-pf	gen_requirestatefilter_field($section, $pconfig['requirestatefilter']);
684	8bab524e	Phil Davis	gen_webguileftcolumnhyper_field($section, $pconfig['webguileftcolumnhyper']);
685	d9058974	Phil Davis	gen_disablealiaspopupdetail_field($section, $pconfig['disablealiaspopupdetail']);
686	24f15b3a	NOYB
687	52e91f70	PiBa-NL	$section->addInput(new Form_Checkbox(
688			'roworderdragging',
689			'Disable dragging',
690	86212d70	luckman212	'Disable dragging of firewall/NAT rules',
691	52e91f70	PiBa-NL	$pconfig['roworderdragging']
692			))->setHelp('Disables dragging rows to allow selecting and copying row contents and avoid accidental changes.');
693
694	e79ff1ee	Steve Beaver	$section->addInput(new Form_Select(
695			'logincss',
696	d58a7378	Steve Beaver	'Login page color',
697	e79ff1ee	Steve Beaver	$pconfig['logincss'],
698	1fe82d1d	Administrator	["1e3f75;" => gettext("Dark Blue"), "003300" => gettext("Dark green"), "770101" => gettext("Crimson red"),
699	626aefbe	Steve Beaver	"4b1263" => gettext("Purple"), "424142" => gettext("Gray"), "333333" => gettext("Dark gray"),
700	1fe82d1d	Administrator	"000000" => gettext("Black"), "633215" => gettext("Dark brown"), "bf7703" => gettext("Brown"),
701			"008000" => gettext("Green"), "007faa" => gettext("Light Blue"), "dc2a2a" => gettext("Red"),
702			"9b59b6" => gettext("Violet")]
703	d58a7378	Steve Beaver	))->setHelp('Choose a color for the login page');
704	e79ff1ee	Steve Beaver
705	a22947a4	Steve Beaver	$section->addInput(new Form_Checkbox(
706			'loginshowhost',
707			'Login hostname',
708			'Show hostname on login banner',
709			$pconfig['loginshowhost']
710			));
711	6c1f2a1c	Steve Beaver	/*
712	512f2c10	Stephen Beaver	$section->addInput(new Form_Input(
713			'dashboardperiod',
714			'Dashboard update period',
715			'number',
716			$pconfig['dashboardperiod'],
717	134ee13d	Stephen Beaver	['min' => '5', 'max' => '600']
718	512f2c10	Stephen Beaver	))->setHelp('Time in seconds between dashboard widget updates. Small values cause ' .
719			'more frequent updates but increase the load on the web server. ' .
720			'Minimum is 5 seconds, maximum 600 seconds');
721	6c1f2a1c	Steve Beaver	*/
722	a5995a8e	Stephen Beaver	$form->add($section);
723
724	b40bcb23	Sjon Hortensius	print $form;
725	7bb301eb	Stephen Beaver
726			$csswarning = sprintf(gettext("%sUser-created themes are unsupported, use at your own risk."), "<br />");
727
728	8c4ef875	NOYB	?>
729			</div>
730	7bb301eb	Stephen Beaver
731	46345696	Colin Fleming	<script type="text/javascript">
732	7bb301eb	Stephen Beaver	//<![CDATA[
733			events.push(function() {
734
735			function setThemeWarning() {
736			if ($('#webguicss').val().startsWith("pfSense")) {
737			$('#csstxt').html("").addClass("text-default");
738			} else {
739			$('#csstxt').html("<?=$csswarning?>").addClass("text-danger");
740			}
741			}
742
743			$('#webguicss').change(function() {
744			setThemeWarning();
745			});
746
747			setThemeWarning();
748	a2d23e88	Phil Davis
749			// Suppress "Delete row" button if there are fewer than two rows
750			checkLastRow();
751	7bb301eb	Stephen Beaver	});
752			//]]>
753			</script>
754
755	8c4ef875	NOYB	<?php
756	60ff91f1	Renato Botelho	include("foot.inc");
757	8c4ef875	NOYB	?>

Project

General

Profile

pfSense