/src/usr/local/www/system.php - Annotate - pfSense - pfSense bugtracker

| Branch: | Tag: | Revision:

root/src/usr/local/www/system.php @ a6bd9e78

1	04ad7c7c	Scott Ullrich	<?php
2	5b237745	Scott Ullrich	/*
3	c5d81585	Renato Botelho	* system.php
4	191cb31d	Stephen Beaver	*
5	c5d81585	Renato Botelho	* part of pfSense (https://www.pfsense.org)
6	38809d47	Renato Botelho do Couto	* Copyright (c) 2004-2013 BSD Perimeter
7			* Copyright (c) 2013-2016 Electric Sheep Fencing
8			* Copyright (c) 2014-2019 Rubicon Communications, LLC (Netgate)
9	c5d81585	Renato Botelho	* All rights reserved.
10	54c605d4	Stephen Beaver	*
11	c5d81585	Renato Botelho	* originally based on m0n0wall (http://m0n0.ch/wall)
12			* Copyright (c) 2003-2004 Manuel Kasper <mk@neon1.net>.
13			* All rights reserved.
14	54c605d4	Stephen Beaver	*
15	b12ea3fb	Renato Botelho	* Licensed under the Apache License, Version 2.0 (the "License");
16			* you may not use this file except in compliance with the License.
17			* You may obtain a copy of the License at
18	54c605d4	Stephen Beaver	*
19	b12ea3fb	Renato Botelho	* http://www.apache.org/licenses/LICENSE-2.0
20	54c605d4	Stephen Beaver	*
21	b12ea3fb	Renato Botelho	* Unless required by applicable law or agreed to in writing, software
22			* distributed under the License is distributed on an "AS IS" BASIS,
23			* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
24			* See the License for the specific language governing permissions and
25			* limitations under the License.
26	54c605d4	Stephen Beaver	*/
27	5b237745	Scott Ullrich
28	6b07c15a	Matthew Grooms	##\|+PRIV
29			##\|*IDENT=page-system-generalsetup
30	5230f468	jim-p	##\|*NAME=System: General Setup
31	6b07c15a	Matthew Grooms	##\|*DESCR=Allow access to the 'System: General Setup' page.
32			##\|MATCH=system.php
33			##\|-PRIV
34
35	c81ef6e2	Phil Davis	require_once("guiconfig.inc");
36	7a927e67	Scott Ullrich	require_once("functions.inc");
37			require_once("filter.inc");
38			require_once("shaper.inc");
39	60ff91f1	Renato Botelho	require_once("system.inc");
40	5b237745	Scott Ullrich
41			$pconfig['hostname'] = $config['system']['hostname'];
42			$pconfig['domain'] = $config['system']['domain'];
43	a2d23e88	Phil Davis	$pconfig['dnsserver'] = $config['system']['dnsserver'];
44	0d8a219e	Scott Ullrich
45	d623f2da	Seth Mos	$arr_gateways = return_gateways_array();
46
47	e6367325	Phil Davis	// set default columns to two if unset
48	8f65151c	Phil Davis	if (!isset($config['system']['webgui']['dashboardcolumns'])) {
49	477db933	Jared Dillard	$config['system']['webgui']['dashboardcolumns'] = 2;
50			}
51
52	27db3c75	Phil Davis	// set default language if unset
53			if (!isset($config['system']['language'])) {
54	41817934	jim-p	$config['system']['language'] = $g['language'];
55	27db3c75	Phil Davis	}
56
57	7e8bfed2	jim-p	$dnshost_counter = 1;
58
59			while (isset($config["system"]["dns{$dnshost_counter}host"])) {
60			$pconfig_dnshost_counter = $dnshost_counter - 1;
61			$pconfig["dnshost{$pconfig_dnshost_counter}"] = $config["system"]["dns{$dnshost_counter}host"];
62			$dnshost_counter++;
63			}
64
65	a2d23e88	Phil Davis	$dnsgw_counter = 1;
66
67			while (isset($config["system"]["dns{$dnsgw_counter}gw"])) {
68			$pconfig_dnsgw_counter = $dnsgw_counter - 1;
69			$pconfig["dnsgw{$pconfig_dnsgw_counter}"] = $config["system"]["dns{$dnsgw_counter}gw"];
70			$dnsgw_counter++;
71			}
72	e180a6e3	Scott Ullrich
73	5b237745	Scott Ullrich	$pconfig['dnsallowoverride'] = isset($config['system']['dnsallowoverride']);
74			$pconfig['timezone'] = $config['system']['timezone'];
75			$pconfig['timeservers'] = $config['system']['timeservers'];
76	3e139f90	Vinicius Coque	$pconfig['language'] = $config['system']['language'];
77	a5995a8e	Stephen Beaver	$pconfig['webguicss'] = $config['system']['webgui']['webguicss'];
78	e79ff1ee	Steve Beaver	$pconfig['logincss'] = $config['system']['webgui']['logincss'];
79	3d29d2eb	Jared Dillard	$pconfig['webguifixedmenu'] = $config['system']['webgui']['webguifixedmenu'];
80	477db933	Jared Dillard	$pconfig['dashboardcolumns'] = $config['system']['webgui']['dashboardcolumns'];
81	1d3510cf	Phil Davis	$pconfig['interfacessort'] = isset($config['system']['webgui']['interfacessort']);
82	24f15b3a	NOYB	$pconfig['webguileftcolumnhyper'] = isset($config['system']['webgui']['webguileftcolumnhyper']);
83	d9058974	Phil Davis	$pconfig['disablealiaspopupdetail'] = isset($config['system']['webgui']['disablealiaspopupdetail']);
84	c05363c8	NOYB	$pconfig['dashboardavailablewidgetspanel'] = isset($config['system']['webgui']['dashboardavailablewidgetspanel']);
85			$pconfig['systemlogsfilterpanel'] = isset($config['system']['webgui']['systemlogsfilterpanel']);
86			$pconfig['systemlogsmanagelogpanel'] = isset($config['system']['webgui']['systemlogsmanagelogpanel']);
87	b1b8784a	NOYB	$pconfig['statusmonitoringsettingspanel'] = isset($config['system']['webgui']['statusmonitoringsettingspanel']);
88	e93242eb	Phil Davis	$pconfig['webguihostnamemenu'] = $config['system']['webgui']['webguihostnamemenu'];
89	8ca95ed8	jim-p	$pconfig['dnslocalhost'] = isset($config['system']['dnslocalhost']);
90	6c1f2a1c	Steve Beaver	//$pconfig['dashboardperiod'] = isset($config['widgets']['period']) ? $config['widgets']['period']:"10";
91	52e91f70	PiBa-NL	$pconfig['roworderdragging'] = isset($config['system']['webgui']['roworderdragging']);
92	a22947a4	Steve Beaver	$pconfig['loginshowhost'] = isset($config['system']['webgui']['loginshowhost']);
93	88081ea2	derelict-pf	$pconfig['requirestatefilter'] = isset($config['system']['webgui']['requirestatefilter']);
94	8ca95ed8	jim-p
95	2ee8dea1	Phil Davis	if (!$pconfig['timezone']) {
96	ecaca752	Renato Botelho	if (isset($g['default_timezone']) && !empty($g['default_timezone'])) {
97			$pconfig['timezone'] = $g['default_timezone'];
98			} else {
99			$pconfig['timezone'] = "Etc/UTC";
100			}
101	2ee8dea1	Phil Davis	}
102	ecaca752	Renato Botelho
103	2ee8dea1	Phil Davis	if (!$pconfig['timeservers']) {
104	5b237745	Scott Ullrich	$pconfig['timeservers'] = "pool.ntp.org";
105	2ee8dea1	Phil Davis	}
106	04ad7c7c	Scott Ullrich
107	79eaddf4	Renato Botelho	$changedesc = gettext("System") . ": ";
108	62d01225	Bill Marquette	$changecount = 0;
109	417c6042	Bill Marquette
110	5b237745	Scott Ullrich	function is_timezone($elt) {
111			return !preg_match("/\/$/", $elt);
112			}
113
114	2ee8dea1	Phil Davis	if ($pconfig['timezone'] <> $_POST['timezone']) {
115	744306c6	jim-p	filter_pflog_start(true);
116	aa1ab1da	Scott Ullrich	}
117
118	60ff91f1	Renato Botelho	$timezonelist = system_get_timezone_list();
119	e5f4c829	Renato Botelho	$timezonedesc = $timezonelist;
120
121			/*
122			* Etc/GMT entries work the opposite way to what people expect.
123			* Ref: https://github.com/eggert/tz/blob/master/etcetera and Redmine issue 7089
124			* Add explanatory text to entries like:
125			* Etc/GMT+1 and Etc/GMT-1
126			* but not:
127			* Etc/GMT or Etc/GMT+0
128			*/
129			foreach ($timezonedesc as $idx => $desc) {
130			if (substr($desc, 0, 7) != "Etc/GMT" \|\| substr($desc, 8, 1) == "0") {
131			continue;
132			}
133
134			$direction = substr($desc, 7, 1);
135
136			switch ($direction) {
137			case '-':
138	88de4ab0	Phil Davis	$direction_str = gettext('AHEAD of');
139	e5f4c829	Renato Botelho	break;
140			case '+':
141			$direction_str = gettext('BEHIND');
142			break;
143			default:
144	86ec819a	jim-p	continue 2;
145	e5f4c829	Renato Botelho	}
146
147			$hr_offset = substr($desc, 8);
148	88de4ab0	Phil Davis	$timezonedesc[$idx] = $desc . " " .
149	d93d8c9c	Steve Beaver	sprintf(ngettext('(%1$s hour %2$s GMT)', '(%1$s hours %2$s GMT)', intval($hr_offset)), $hr_offset, $direction_str);
150	e5f4c829	Renato Botelho	}
151	5b237745	Scott Ullrich
152	f211d7c0	luckman212	$multiwan = 0;
153	7922db8a	Seth Mos	$interfaces = get_configured_interface_list();
154	2ee8dea1	Phil Davis	foreach ($interfaces as $interface) {
155			if (interface_has_gateway($interface)) {
156	f211d7c0	luckman212	$multiwan++;
157	6038cba7	luckman212	if ($multiwan > 1) {
158			break;
159			}
160	7922db8a	Seth Mos	}
161			}
162	77446beb	Matthew Grooms
163	5b237745	Scott Ullrich	if ($_POST) {
164
165	c668c964	Scott Ullrich	$changecount++;
166	1180e4f0	Sjon Hortensius
167	5b237745	Scott Ullrich	unset($input_errors);
168			$pconfig = $_POST;
169
170			/* input validation */
171	cfbfd941	smos	$reqdfields = explode(" ", "hostname domain");
172	2ee8dea1	Phil Davis	$reqdfieldsn = array(gettext("Hostname"), gettext("Domain"));
173	04ad7c7c	Scott Ullrich
174	1e9b4611	Renato Botelho	do_input_validation($_POST, $reqdfields, $reqdfieldsn, $input_errors);
175	04ad7c7c	Scott Ullrich
176	2d86ee95	Phil Davis	if ($_POST['hostname']) {
177			if (!is_hostname($_POST['hostname'])) {
178			$input_errors[] = gettext("The hostname can only contain the characters A-Z, 0-9 and '-'. It may not start or end with '-'.");
179			} else {
180			if (!is_unqualified_hostname($_POST['hostname'])) {
181			$input_errors[] = gettext("A valid hostname is specified, but the domain name part should be omitted");
182			}
183			}
184	5b237745	Scott Ullrich	}
185			if ($_POST['domain'] && !is_domain($_POST['domain'])) {
186	7465d12c	Carlos Eduardo Ramos	$input_errors[] = gettext("The domain may only contain the characters a-z, 0-9, '-' and '.'.");
187	5b237745	Scott Ullrich	}
188	9ceace25	jim-p	validate_webguicss_field($input_errors, $_POST['webguicss']);
189			validate_webguifixedmenu_field($input_errors, $_POST['webguifixedmenu']);
190			validate_webguihostnamemenu_field($input_errors, $_POST['webguihostnamemenu']);
191			validate_dashboardcolumns_field($input_errors, $_POST['dashboardcolumns']);
192	d623f2da	Seth Mos
193	58b07c57	NewEraCracker	$dnslist = $ignore_posted_dnsgw = array();
194	df4471e2	Phil Davis
195	a2d23e88	Phil Davis	$dnscounter = 0;
196			$dnsname = "dns{$dnscounter}";
197
198			while (isset($_POST[$dnsname])) {
199			$dnsgwname = "dnsgw{$dnscounter}";
200	7e8bfed2	jim-p	$dnshostname = "dnshost{$dnscounter}";
201	a936104b	Stephen Beaver	$dnslist[] = $_POST[$dnsname];
202
203	d623f2da	Seth Mos	if (($_POST[$dnsname] && !is_ipaddr($_POST[$dnsname]))) {
204	a2d23e88	Phil Davis	$input_errors[] = sprintf(gettext("A valid IP address must be specified for DNS server %s."), $dnscounter+1);
205	52acb1ff	Phil Davis	} else {
206	7e8bfed2	jim-p	if (!empty($_POST[$dnshostname]) && !is_hostname($_POST[$dnshostname])) {
207			$input_errors[] = sprintf(gettext('The hostname provided for DNS server "%1$s" is not valid.'), $_POST[$dnsname]);
208			}
209	2ee8dea1	Phil Davis	if (($_POST[$dnsgwname] <> "") && ($_POST[$dnsgwname] <> "none")) {
210	52acb1ff	Phil Davis	// A real gateway has been selected.
211			if (is_ipaddr($_POST[$dnsname])) {
212	2ee8dea1	Phil Davis	if ((is_ipaddrv4($_POST[$dnsname])) && (validate_address_family($_POST[$dnsname], $_POST[$dnsgwname]) === false)) {
213	1bab4a10	NOYB	$input_errors[] = sprintf(gettext('The IPv6 gateway "%1$s" can not be specified for IPv4 DNS server "%2$s".'), $_POST[$dnsgwname], $_POST[$dnsname]);
214	52acb1ff	Phil Davis	}
215	2ee8dea1	Phil Davis	if ((is_ipaddrv6($_POST[$dnsname])) && (validate_address_family($_POST[$dnsname], $_POST[$dnsgwname]) === false)) {
216	1bab4a10	NOYB	$input_errors[] = sprintf(gettext('The IPv4 gateway "%1$s" can not be specified for IPv6 DNS server "%2$s".'), $_POST[$dnsgwname], $_POST[$dnsname]);
217	52acb1ff	Phil Davis	}
218			} else {
219	df4471e2	Phil Davis	// The user selected a gateway but did not provide a DNS address. Be nice and set the gateway back to "none".
220			$ignore_posted_dnsgw[$dnsgwname] = true;
221	52acb1ff	Phil Davis	}
222	13ea7caa	smos	}
223	d623f2da	Seth Mos	}
224	a2d23e88	Phil Davis	$dnscounter++;
225			$dnsname = "dns{$dnscounter}";
226	5b237745	Scott Ullrich	}
227	d623f2da	Seth Mos
228	c25e42c8	Mark Furneaux	if (count(array_filter($dnslist)) != count(array_unique(array_filter($dnslist)))) {
229	f700dc99	Chris Buechler	$input_errors[] = gettext('Each configured DNS server must have a unique IP address. Remove the duplicated IP.');
230			}
231
232	a2d23e88	Phil Davis	$dnscounter = 0;
233			$dnsname = "dns{$dnscounter}";
234
235	985fc0fb	Ermal Lu?i	$direct_networks_list = explode(" ", filter_get_direct_networks_list());
236	a2d23e88	Phil Davis	while (isset($_POST[$dnsname])) {
237			$dnsgwname = "dnsgw{$dnscounter}";
238			if ($_POST[$dnsgwname] && ($_POST[$dnsgwname] <> "none")) {
239	d8587952	Phil Davis	foreach ($direct_networks_list as $direct_network) {
240	a2d23e88	Phil Davis	if (ip_in_subnet($_POST[$dnsname], $direct_network)) {
241	86212d70	luckman212	$input_errors[] = sprintf(gettext("A gateway cannot be specified for %s because that IP address is part of a directly connected subnet %s. To use that nameserver, change its Gateway to `none`."), $_POST[$dnsname], $direct_network);
242	c98d28e1	Seth Mos	}
243			}
244			}
245	a2d23e88	Phil Davis	$dnscounter++;
246			$dnsname = "dns{$dnscounter}";
247	c98d28e1	Seth Mos	}
248
249	8adb814b	David P Hilton	# it's easy to have a little too much whitespace in the field, clean it up for the user before processing.
250			$_POST['timeservers'] = preg_replace('/[[:blank:]]+/', ' ', $_POST['timeservers']);
251			$_POST['timeservers'] = trim($_POST['timeservers']);
252	5b237745	Scott Ullrich	foreach (explode(' ', $_POST['timeservers']) as $ts) {
253			if (!is_domain($ts)) {
254	7465d12c	Carlos Eduardo Ramos	$input_errors[] = gettext("A NTP Time Server name may only contain the characters a-z, 0-9, '-' and '.'.");
255	5b237745	Scott Ullrich	}
256			}
257
258	a2d23e88	Phil Davis	if ($input_errors) {
259			// Put the user-entered list back into place so it will be redisplayed for correction.
260			$pconfig['dnsserver'] = $dnslist;
261			} else {
262	f211d7c0	luckman212	// input validation passed, so we can proceed with removing static routes for dead DNS gateways
263			if (is_array($config['system']['dnsserver'])) {
264			$dns_servers_arr = $config['system']['dnsserver'];
265			foreach ($dns_servers_arr as $arr_index => $this_dnsserver) {
266			$i = (int)$arr_index + 1;
267			$this_dnsgw = $config['system']['dns'.$i.'gw'];
268			unset($gatewayip);
269			unset($inet6);
270			if ((!empty($this_dnsgw)) && ($this_dnsgw != 'none') && (!empty($this_dnsserver))) {
271			$gatewayip = lookup_gateway_ip_by_name($this_dnsgw);
272			$inet6 = is_ipaddrv6($gatewayip) ? '-inet6 ' : '';
273	86212d70	luckman212	mwexec("/sbin/route -q delete -host {$inet6}{$this_dnsserver}");
274	f211d7c0	luckman212	}
275			}
276			}
277
278	f1a34790	N0YB	update_if_changed("hostname", $config['system']['hostname'], $_POST['hostname']);
279			update_if_changed("domain", $config['system']['domain'], $_POST['domain']);
280	9eab73da	Bill Marquette	update_if_changed("timezone", $config['system']['timezone'], $_POST['timezone']);
281			update_if_changed("NTP servers", $config['system']['timeservers'], strtolower($_POST['timeservers']));
282	04ad7c7c	Scott Ullrich
283	2ee8dea1	Phil Davis	if ($_POST['language'] && $_POST['language'] != $config['system']['language']) {
284	3e139f90	Vinicius Coque	$config['system']['language'] = $_POST['language'];
285	ceecd29b	Renato Botelho	set_language();
286	3e139f90	Vinicius Coque	}
287
288	1d3510cf	Phil Davis	unset($config['system']['webgui']['interfacessort']);
289			$config['system']['webgui']['interfacessort'] = $_POST['interfacessort'] ? true : false;
290
291	24f15b3a	NOYB	unset($config['system']['webgui']['webguileftcolumnhyper']);
292			$config['system']['webgui']['webguileftcolumnhyper'] = $_POST['webguileftcolumnhyper'] ? true : false;
293
294	d9058974	Phil Davis	unset($config['system']['webgui']['disablealiaspopupdetail']);
295			$config['system']['webgui']['disablealiaspopupdetail'] = $_POST['disablealiaspopupdetail'] ? true : false;
296
297	c05363c8	NOYB	unset($config['system']['webgui']['dashboardavailablewidgetspanel']);
298			$config['system']['webgui']['dashboardavailablewidgetspanel'] = $_POST['dashboardavailablewidgetspanel'] ? true : false;
299
300			unset($config['system']['webgui']['systemlogsfilterpanel']);
301			$config['system']['webgui']['systemlogsfilterpanel'] = $_POST['systemlogsfilterpanel'] ? true : false;
302
303			unset($config['system']['webgui']['systemlogsmanagelogpanel']);
304			$config['system']['webgui']['systemlogsmanagelogpanel'] = $_POST['systemlogsmanagelogpanel'] ? true : false;
305
306	b1b8784a	NOYB	unset($config['system']['webgui']['statusmonitoringsettingspanel']);
307			$config['system']['webgui']['statusmonitoringsettingspanel'] = $_POST['statusmonitoringsettingspanel'] ? true : false;
308
309	9ceace25	jim-p	// if ($_POST['dashboardperiod']) {
310			// $config['widgets']['period'] = $_POST['dashboardperiod'];
311			// }
312
313			if ($_POST['webguicss']) {
314			$config['system']['webgui']['webguicss'] = $_POST['webguicss'];
315			} else {
316			unset($config['system']['webgui']['webguicss']);
317			}
318
319			$config['system']['webgui']['roworderdragging'] = $_POST['roworderdragging'] ? true:false;
320
321			if ($_POST['logincss']) {
322			$config['system']['webgui']['logincss'] = $_POST['logincss'];
323			} else {
324			unset($config['system']['webgui']['logincss']);
325			}
326
327			$config['system']['webgui']['loginshowhost'] = $_POST['loginshowhost'] ? true:false;
328
329			if ($_POST['webguifixedmenu']) {
330			$config['system']['webgui']['webguifixedmenu'] = $_POST['webguifixedmenu'];
331			} else {
332			unset($config['system']['webgui']['webguifixedmenu']);
333			}
334
335			if ($_POST['webguihostnamemenu']) {
336			$config['system']['webgui']['webguihostnamemenu'] = $_POST['webguihostnamemenu'];
337			} else {
338			unset($config['system']['webgui']['webguihostnamemenu']);
339			}
340
341			if ($_POST['dashboardcolumns']) {
342			$config['system']['webgui']['dashboardcolumns'] = $_POST['dashboardcolumns'];
343			} else {
344			unset($config['system']['webgui']['dashboardcolumns']);
345			}
346
347			$config['system']['webgui']['requirestatefilter'] = $_POST['requirestatefilter'] ? true : false;
348
349	4fbf63aa	Bill Marquette	/* XXX - billm: these still need updating after figuring out how to check if they actually changed */
350	52acb1ff	Phil Davis	$olddnsservers = $config['system']['dnsserver'];
351	5b237745	Scott Ullrich	unset($config['system']['dnsserver']);
352	a2d23e88	Phil Davis
353			$dnscounter = 0;
354			$dnsname = "dns{$dnscounter}";
355
356			while (isset($_POST[$dnsname])) {
357			if ($_POST[$dnsname]) {
358			$config['system']['dnsserver'][] = $_POST[$dnsname];
359			}
360			$dnscounter++;
361			$dnsname = "dns{$dnscounter}";
362	2ee8dea1	Phil Davis	}
363	04ad7c7c	Scott Ullrich
364	a2d23e88	Phil Davis	// Remember the new list for display also.
365			$pconfig['dnsserver'] = $config['system']['dnsserver'];
366
367	07bd3f83	Scott Ullrich	$olddnsallowoverride = $config['system']['dnsallowoverride'];
368	20b90e0a	Scott Ullrich
369	0d8a219e	Scott Ullrich	unset($config['system']['dnsallowoverride']);
370	5b237745	Scott Ullrich	$config['system']['dnsallowoverride'] = $_POST['dnsallowoverride'] ? true : false;
371	e180a6e3	Scott Ullrich
372	2ee8dea1	Phil Davis	if ($_POST['dnslocalhost'] == "yes") {
373	8ca95ed8	jim-p	$config['system']['dnslocalhost'] = true;
374	2ee8dea1	Phil Davis	} else {
375	8ca95ed8	jim-p	unset($config['system']['dnslocalhost']);
376	2ee8dea1	Phil Davis	}
377	8ca95ed8	jim-p
378	e180a6e3	Scott Ullrich	/* which interface should the dns servers resolve through? */
379	a2d23e88	Phil Davis	$dnscounter = 0;
380			// The $_POST array key of the DNS IP (starts from 0)
381			$dnsname = "dns{$dnscounter}";
382	df4471e2	Phil Davis	$outdnscounter = 0;
383	a2d23e88	Phil Davis	while (isset($_POST[$dnsname])) {
384			// The $_POST array key of the corresponding gateway (starts from 0)
385			$dnsgwname = "dnsgw{$dnscounter}";
386	7e8bfed2	jim-p	$dnshostname = "dnshost{$dnscounter}";
387			// The numbering of DNS GW/host entries in the config starts from 1
388	a2d23e88	Phil Davis	$dnsgwconfigcounter = $dnscounter + 1;
389	7e8bfed2	jim-p	$dnshostconfigcounter = $dnscounter + 1;
390	a2d23e88	Phil Davis	// So this is the array key of the DNS GW entry in $config['system']
391			$dnsgwconfigname = "dns{$dnsgwconfigcounter}gw";
392	7e8bfed2	jim-p	$dnshostconfigname = "dns{$dnshostconfigcounter}host";
393	a2d23e88	Phil Davis
394			$olddnsgwname = $config['system'][$dnsgwconfigname];
395	7e8bfed2	jim-p	$olddnshostname = $config['system'][$dnshostconfigname];
396	df4471e2	Phil Davis
397	2ee8dea1	Phil Davis	if ($ignore_posted_dnsgw[$dnsgwname]) {
398	df4471e2	Phil Davis	$thisdnsgwname = "none";
399	2ee8dea1	Phil Davis	} else {
400	df4471e2	Phil Davis	$thisdnsgwname = $pconfig[$dnsgwname];
401	2ee8dea1	Phil Davis	}
402	7e8bfed2	jim-p	$thisdnshostname = $pconfig[$dnshostname];
403	df4471e2	Phil Davis
404			// "Blank" out the settings for this index, then we set them below using the "outdnscounter" index.
405	a2d23e88	Phil Davis	$config['system'][$dnsgwconfigname] = "none";
406	df4471e2	Phil Davis	$pconfig[$dnsgwname] = "none";
407	7e8bfed2	jim-p	$config['system'][$dnshostconfigname] = "";
408			$pconfig[$dnshostname] = "";
409	df4471e2	Phil Davis	$pconfig[$dnsname] = "";
410
411			if ($_POST[$dnsname]) {
412			// Only the non-blank DNS servers were put into the config above.
413			// So we similarly only add the corresponding gateways sequentially to the config (and to pconfig), as we find non-blank DNS servers.
414			// This keeps the DNS server IP and corresponding gateway "lined up" when the user blanks out a DNS server IP in the middle of the list.
415	a2d23e88	Phil Davis
416			// The $pconfig array key of the DNS IP (starts from 0)
417			$outdnsname = "dns{$outdnscounter}";
418			// The $pconfig array key of the corresponding gateway (starts from 0)
419			$outdnsgwname = "dnsgw{$outdnscounter}";
420	7e8bfed2	jim-p	// The $pconfig array key of the corresponding hostname (starts from 0)
421			$outdnshostname = "dnshost{$outdnscounter}";
422
423			// The numbering of DNS GW/host entries in the config starts from 1
424	a2d23e88	Phil Davis	$outdnsgwconfigcounter = $outdnscounter + 1;
425	7e8bfed2	jim-p	$outdnshostconfigcounter = $outdnscounter + 1;
426	a2d23e88	Phil Davis	// So this is the array key of the output DNS GW entry in $config['system']
427			$outdnsgwconfigname = "dns{$outdnsgwconfigcounter}gw";
428	7e8bfed2	jim-p	$outdnshostconfigname = "dns{$outdnshostconfigcounter}host";
429	a2d23e88	Phil Davis
430	df4471e2	Phil Davis	$pconfig[$outdnsname] = $_POST[$dnsname];
431	2ee8dea1	Phil Davis	if ($_POST[$dnsgwname]) {
432	a2d23e88	Phil Davis	$config['system'][$outdnsgwconfigname] = $thisdnsgwname;
433	df4471e2	Phil Davis	$pconfig[$outdnsgwname] = $thisdnsgwname;
434	7e8bfed2	jim-p	$config['system'][$outdnshostconfigname] = $thisdnshostname;
435			$pconfig[$outdnshostname] = $thisdnshostname;
436	df4471e2	Phil Davis	} else {
437			// Note: when no DNS GW name is chosen, the entry is set to "none", so actually this case never happens.
438	a2d23e88	Phil Davis	unset($config['system'][$outdnsgwconfigname]);
439	df4471e2	Phil Davis	$pconfig[$outdnsgwname] = "";
440	7e8bfed2	jim-p	unset($config['system'][$outdnshostconfigname]);
441			$pconfig[$outdnshostname] = "";
442	df4471e2	Phil Davis	}
443	a2d23e88	Phil Davis	$outdnscounter++;
444	d623f2da	Seth Mos	}
445	a2d23e88	Phil Davis
446			$dnscounter++;
447			// The $_POST array key of the DNS IP (starts from 0)
448			$dnsname = "dns{$dnscounter}";
449	d623f2da	Seth Mos	}
450	04ad7c7c	Scott Ullrich
451	f211d7c0	luckman212	// clean up dnsgw orphans
452			$oldgwcounter = 1;
453			$olddnsgwconfigname = "dns{$oldgwcounter}gw";
454			while (isset($config['system'][$olddnsgwconfigname])) {
455			if (empty($config['system']['dnsserver'][$oldgwcounter - 1])) {
456			unset($config['system'][$olddnsgwconfigname]);
457			}
458			$oldgwcounter++;
459			$olddnsgwconfigname = "dns{$oldgwcounter}gw";
460			}
461			unset($oldgwcounter);
462			unset($olddnsgwconfigname);
463
464	2ee8dea1	Phil Davis	if ($changecount > 0) {
465	62d01225	Bill Marquette	write_config($changedesc);
466	2ee8dea1	Phil Davis	}
467	04ad7c7c	Scott Ullrich
468	44c42356	Phil Davis	$changes_applied = true;
469	5b237745	Scott Ullrich	$retval = 0;
470	44c42356	Phil Davis	$retval \|= system_hostname_configure();
471	3cfdba5f	Scott Ullrich	$retval \|= system_hosts_generate();
472			$retval \|= system_resolvconf_generate();
473	2ee8dea1	Phil Davis	if (isset($config['dnsmasq']['enable'])) {
474	1e2c8821	Warren Baker	$retval \|= services_dnsmasq_configure();
475	2ee8dea1	Phil Davis	} elseif (isset($config['unbound']['enable'])) {
476	1e2c8821	Warren Baker	$retval \|= services_unbound_configure();
477	2ee8dea1	Phil Davis	}
478	3cfdba5f	Scott Ullrich	$retval \|= system_timezone_configure();
479			$retval \|= system_ntp_configure();
480
481	2ee8dea1	Phil Davis	if ($olddnsallowoverride != $config['system']['dnsallowoverride']) {
482	b8292903	Ermal	$retval \|= send_event("service reload dns");
483	2ee8dea1	Phil Davis	}
484	3cfdba5f	Scott Ullrich
485	e7d967d8	Scott Ullrich	// Reload the filter - plugins might need to be run.
486	0027de0a	Ermal Lu?i	$retval \|= filter_configure();
487	5b237745	Scott Ullrich	}
488	df4471e2	Phil Davis
489			unset($ignore_posted_dnsgw);
490	5b237745	Scott Ullrich	}
491	4df96eff	Scott Ullrich
492	2ee8dea1	Phil Davis	$pgtitle = array(gettext("System"), gettext("General Setup"));
493	4df96eff	Scott Ullrich	include("head.inc");
494
495	8f65151c	Phil Davis	if ($input_errors) {
496	41ea4cf3	Sjon Hortensius	print_input_errors($input_errors);
497	8f65151c	Phil Davis	}
498	ddb84143	Stephen Beaver
499	44c42356	Phil Davis	if ($changes_applied) {
500			print_apply_result_box($retval);
501	8f65151c	Phil Davis	}
502	5b237745	Scott Ullrich	?>
503	41ea4cf3	Sjon Hortensius	<div id="container">
504	b40bcb23	Sjon Hortensius	<?php
505	1180e4f0	Sjon Hortensius
506	b40bcb23	Sjon Hortensius	$form = new Form;
507	a32c0623	Sjon Hortensius	$section = new Form_Section('System');
508			$section->addInput(new Form_Input(
509	a97531c5	Sjon Hortensius	'hostname',
510	153c3aa6	Phil Davis	'*Hostname',
511	a32c0623	Sjon Hortensius	'text',
512			$pconfig['hostname'],
513			['placeholder' => 'pfSense']
514			))->setHelp('Name of the firewall host, without domain part');
515	512f2c10	Stephen Beaver
516	a32c0623	Sjon Hortensius	$section->addInput(new Form_Input(
517	a97531c5	Sjon Hortensius	'domain',
518	153c3aa6	Phil Davis	'*Domain',
519	a32c0623	Sjon Hortensius	'text',
520			$pconfig['domain'],
521			['placeholder' => 'mycorp.com, home, office, private, etc.']
522	ef77e40e	stilez	))->setHelp('Do not use \'.local\' as the final part of the domain (TLD), The \'.local\' domain is %1$swidely used%2$s by '.
523	d751dee3	stilez	'mDNS (including Avahi and Apple OS X\'s Bonjour/Rendezvous/Airprint/Airplay), and some Windows systems and networked devices. ' .
524	ef77e40e	stilez	'These will not network correctly if the router uses \'.local\'. Alternatives such as \'.local.lan\' or \'.mylocal\' are safe.',
525			'<a target="_blank" href="https://www.unbound.net/pipermail/unbound-users/2011-March/001735.html">',
526			'</a>'
527			);
528	512f2c10	Stephen Beaver
529	b40bcb23	Sjon Hortensius	$form->add($section);
530
531	70dc5cd6	Phil Davis	$section = new Form_Section('DNS Server Settings');
532	b40bcb23	Sjon Hortensius
533	a2d23e88	Phil Davis	if (!is_array($pconfig['dnsserver'])) {
534			$pconfig['dnsserver'] = array();
535			}
536
537			$dnsserver_count = count($pconfig['dnsserver']);
538			$dnsserver_num = 0;
539			$dnsserver_help = gettext("Address") . '<br/>' . gettext("Enter IP addresses to be used by the system for DNS resolution.") . " " .
540			gettext("These are also used for the DHCP service, DNS Forwarder and DNS Resolver when it has DNS Query Forwarding enabled.");
541	7e8bfed2	jim-p	$dnshost_help = gettext("Hostname") . '<br/>' . gettext("Enter the DNS Server Hostname for TLS Verification in the DNS Resolver (optional).");
542	a2d23e88	Phil Davis	$dnsgw_help = gettext("Gateway") . '<br/>'. gettext("Optionally select the gateway for each DNS server.") . " " .
543			gettext("When using multiple WAN connections there should be at least one unique DNS server per gateway.");
544
545			// If there are no DNS servers, make an empty entry for initial display.
546			if ($dnsserver_count == 0) {
547			$pconfig['dnsserver'][] = '';
548			}
549
550			foreach ($pconfig['dnsserver'] as $dnsserver) {
551	54c605d4	Stephen Beaver
552	a2d23e88	Phil Davis	$is_last_dnsserver = ($dnsserver_num == $dnsserver_count - 1);
553			$group = new Form_Group($dnsserver_num == 0 ? 'DNS Servers':'');
554			$group->addClass('repeatable');
555	54c605d4	Stephen Beaver
556			$group->add(new Form_Input(
557	a2d23e88	Phil Davis	'dns' . $dnsserver_num,
558	54c605d4	Stephen Beaver	'DNS Server',
559			'text',
560	a2d23e88	Phil Davis	$dnsserver
561			))->setHelp(($is_last_dnsserver) ? $dnsserver_help:null);
562	b40bcb23	Sjon Hortensius
563	7e8bfed2	jim-p	$group->add(new Form_Input(
564			'dnshost' . $dnsserver_num,
565			'DNS Hostname',
566			'text',
567			$pconfig['dnshost' . $dnsserver_num]
568			))->setHelp(($is_last_dnsserver) ? $dnshost_help:null);
569
570	86212d70	luckman212	if ($multiwan > 1) {
571	b40bcb23	Sjon Hortensius	$options = array('none' => 'none');
572
573	8f65151c	Phil Davis	foreach ($arr_gateways as $gwname => $gwitem) {
574			if ((is_ipaddrv4(lookup_gateway_ip_by_name($pconfig[$dnsgw])) && (is_ipaddrv6($gwitem['gateway'])))) {
575	b40bcb23	Sjon Hortensius	continue;
576			}
577	54c605d4	Stephen Beaver
578	8f65151c	Phil Davis	if ((is_ipaddrv6(lookup_gateway_ip_by_name($pconfig[$dnsgw])) && (is_ipaddrv4($gwitem['gateway'])))) {
579	b40bcb23	Sjon Hortensius	continue;
580			}
581	1180e4f0	Sjon Hortensius
582	b40bcb23	Sjon Hortensius	$options[$gwname] = $gwname.' - '.$gwitem['friendlyiface'].' - '.$gwitem['gateway'];
583			}
584	1180e4f0	Sjon Hortensius
585	a97531c5	Sjon Hortensius	$group->add(new Form_Select(
586	a2d23e88	Phil Davis	'dnsgw' . $dnsserver_num,
587	e4dd8be4	NOYB	'Gateway',
588	a2d23e88	Phil Davis	$pconfig['dnsgw' . $dnsserver_num],
589	a97531c5	Sjon Hortensius	$options
590	f211d7c0	luckman212	))->setWidth(4)->setHelp(($is_last_dnsserver) ? $dnsgw_help:null);
591	b40bcb23	Sjon Hortensius	}
592	1180e4f0	Sjon Hortensius
593	a2d23e88	Phil Davis	$group->add(new Form_Button(
594			'deleterow' . $dnsserver_num,
595			'Delete',
596			null,
597			'fa-trash'
598	f211d7c0	luckman212	))->setWidth(2)->addClass('btn-warning');
599	54c605d4	Stephen Beaver
600	b40bcb23	Sjon Hortensius	$section->add($group);
601	a2d23e88	Phil Davis	$dnsserver_num++;
602	b40bcb23	Sjon Hortensius	}
603	1180e4f0	Sjon Hortensius
604	a2d23e88	Phil Davis	$section->addInput(new Form_Button(
605			'addrow',
606			'Add DNS Server',
607			null,
608			'fa-plus'
609			))->addClass('btn-success addbtn');
610
611	a005a836	Sjon Hortensius	$section->addInput(new Form_Checkbox(
612	a97531c5	Sjon Hortensius	'dnsallowoverride',
613	70dc5cd6	Phil Davis	'DNS Server Override',
614	b40bcb23	Sjon Hortensius	'Allow DNS server list to be overridden by DHCP/PPP on WAN',
615			$pconfig['dnsallowoverride']
616	314a088a	Phil Davis	))->setHelp('If this option is set, %s will use DNS servers '.
617	a32c0623	Sjon Hortensius	'assigned by a DHCP/PPP server on WAN for its own purposes (including '.
618	a56e37ca	doktornotor	'the DNS Forwarder/DNS Resolver). However, they will not be assigned to DHCP '.
619	314a088a	Phil Davis	'clients.', $g['product_name']);
620	b40bcb23	Sjon Hortensius
621	a005a836	Sjon Hortensius	$section->addInput(new Form_Checkbox(
622	a97531c5	Sjon Hortensius	'dnslocalhost',
623	70dc5cd6	Phil Davis	'Disable DNS Forwarder',
624	a56e37ca	doktornotor	'Do not use the DNS Forwarder/DNS Resolver as a DNS server for the firewall',
625	b40bcb23	Sjon Hortensius	$pconfig['dnslocalhost']
626	e4dd8be4	NOYB	))->setHelp('By default localhost (127.0.0.1) will be used as the first DNS '.
627	a32c0623	Sjon Hortensius	'server where the DNS Forwarder or DNS Resolver is enabled and set to '.
628	a56e37ca	doktornotor	'listen on localhost, so system can use the local DNS service to perform '.
629			'lookups. Checking this box omits localhost from the list of DNS servers in resolv.conf.');
630	b40bcb23	Sjon Hortensius
631			$form->add($section);
632
633	a005a836	Sjon Hortensius	$section = new Form_Section('Localization');
634	512f2c10	Stephen Beaver
635	a005a836	Sjon Hortensius	$section->addInput(new Form_Select(
636	a97531c5	Sjon Hortensius	'timezone',
637	153c3aa6	Phil Davis	'*Timezone',
638	a32c0623	Sjon Hortensius	$pconfig['timezone'],
639	e5f4c829	Renato Botelho	array_combine($timezonelist, $timezonedesc)
640	781d9ce4	Phil Davis	))->setHelp('Select a geographic region name (Continent/Location) to determine the timezone for the firewall. %1$s' .
641			'Choose a special or "Etc" zone only in cases where the geographic zones do not properly handle the clock offset required for this firewall.', '<br/>');
642	512f2c10	Stephen Beaver
643	a005a836	Sjon Hortensius	$section->addInput(new Form_Input(
644	a97531c5	Sjon Hortensius	'timeservers',
645	a32c0623	Sjon Hortensius	'Timeservers',
646			'text',
647			$pconfig['timeservers']
648			))->setHelp('Use a space to separate multiple hosts (only one required). '.
649	1bab4a10	NOYB	'Remember to set up at least one DNS server if a host name is entered here!');
650	512f2c10	Stephen Beaver
651	a005a836	Sjon Hortensius	$section->addInput(new Form_Select(
652	a97531c5	Sjon Hortensius	'language',
653	153c3aa6	Phil Davis	'*Language',
654	a32c0623	Sjon Hortensius	$pconfig['language'],
655			get_locale_list()
656			))->setHelp('Choose a language for the webConfigurator');
657	b40bcb23	Sjon Hortensius
658			$form->add($section);
659
660	1176360c	k-paulius	$section = new Form_Section('webConfigurator');
661	a5995a8e	Stephen Beaver
662	8bab524e	Phil Davis	gen_webguicss_field($section, $pconfig['webguicss']);
663			gen_webguifixedmenu_field($section, $pconfig['webguifixedmenu']);
664			gen_webguihostnamemenu_field($section, $pconfig['webguihostnamemenu']);
665			gen_dashboardcolumns_field($section, $pconfig['dashboardcolumns']);
666	1d3510cf	Phil Davis	gen_interfacessort_field($section, $pconfig['interfacessort']);
667	8bab524e	Phil Davis	gen_associatedpanels_fields(
668			$section,
669			$pconfig['dashboardavailablewidgetspanel'],
670			$pconfig['systemlogsfilterpanel'],
671			$pconfig['systemlogsmanagelogpanel'],
672			$pconfig['statusmonitoringsettingspanel']);
673	88081ea2	derelict-pf	gen_requirestatefilter_field($section, $pconfig['requirestatefilter']);
674	8bab524e	Phil Davis	gen_webguileftcolumnhyper_field($section, $pconfig['webguileftcolumnhyper']);
675	d9058974	Phil Davis	gen_disablealiaspopupdetail_field($section, $pconfig['disablealiaspopupdetail']);
676	24f15b3a	NOYB
677	52e91f70	PiBa-NL	$section->addInput(new Form_Checkbox(
678			'roworderdragging',
679			'Disable dragging',
680	86212d70	luckman212	'Disable dragging of firewall/NAT rules',
681	52e91f70	PiBa-NL	$pconfig['roworderdragging']
682			))->setHelp('Disables dragging rows to allow selecting and copying row contents and avoid accidental changes.');
683
684	e79ff1ee	Steve Beaver	$section->addInput(new Form_Select(
685			'logincss',
686	d58a7378	Steve Beaver	'Login page color',
687	e79ff1ee	Steve Beaver	$pconfig['logincss'],
688	1fe82d1d	Administrator	["1e3f75;" => gettext("Dark Blue"), "003300" => gettext("Dark green"), "770101" => gettext("Crimson red"),
689	626aefbe	Steve Beaver	"4b1263" => gettext("Purple"), "424142" => gettext("Gray"), "333333" => gettext("Dark gray"),
690	1fe82d1d	Administrator	"000000" => gettext("Black"), "633215" => gettext("Dark brown"), "bf7703" => gettext("Brown"),
691			"008000" => gettext("Green"), "007faa" => gettext("Light Blue"), "dc2a2a" => gettext("Red"),
692			"9b59b6" => gettext("Violet")]
693	d58a7378	Steve Beaver	))->setHelp('Choose a color for the login page');
694	e79ff1ee	Steve Beaver
695	a22947a4	Steve Beaver	$section->addInput(new Form_Checkbox(
696			'loginshowhost',
697			'Login hostname',
698			'Show hostname on login banner',
699			$pconfig['loginshowhost']
700			));
701	6c1f2a1c	Steve Beaver	/*
702	512f2c10	Stephen Beaver	$section->addInput(new Form_Input(
703			'dashboardperiod',
704			'Dashboard update period',
705			'number',
706			$pconfig['dashboardperiod'],
707	134ee13d	Stephen Beaver	['min' => '5', 'max' => '600']
708	512f2c10	Stephen Beaver	))->setHelp('Time in seconds between dashboard widget updates. Small values cause ' .
709			'more frequent updates but increase the load on the web server. ' .
710			'Minimum is 5 seconds, maximum 600 seconds');
711	6c1f2a1c	Steve Beaver	*/
712	a5995a8e	Stephen Beaver	$form->add($section);
713
714	b40bcb23	Sjon Hortensius	print $form;
715	7bb301eb	Stephen Beaver
716			$csswarning = sprintf(gettext("%sUser-created themes are unsupported, use at your own risk."), "<br />");
717
718	8c4ef875	NOYB	?>
719			</div>
720	7bb301eb	Stephen Beaver
721	46345696	Colin Fleming	<script type="text/javascript">
722	7bb301eb	Stephen Beaver	//<![CDATA[
723			events.push(function() {
724
725			function setThemeWarning() {
726			if ($('#webguicss').val().startsWith("pfSense")) {
727			$('#csstxt').html("").addClass("text-default");
728			} else {
729			$('#csstxt').html("<?=$csswarning?>").addClass("text-danger");
730			}
731			}
732
733			$('#webguicss').change(function() {
734			setThemeWarning();
735			});
736
737			setThemeWarning();
738	a2d23e88	Phil Davis
739			// Suppress "Delete row" button if there are fewer than two rows
740			checkLastRow();
741	7bb301eb	Stephen Beaver	});
742			//]]>
743			</script>
744
745	8c4ef875	NOYB	<?php
746	60ff91f1	Renato Botelho	include("foot.inc");
747	8c4ef875	NOYB	?>

Project

General

Profile

pfSense