pfSense

 */

function does_interface_exist($interface) {

	global $config;

	if(!$interface)

		return false;

 */

function does_vip_exist($vip) {

	global $config;

	if(!$vip)

		return false;

					$found = true;

					break;

				}

				$ports = explode(',',$ppp['ports']);

				foreach($ports as $pid => $port){

					$port = get_real_interface($port);

						$found = true;

						break;

					}

					* -- this could be better . . . */

					$parent_if = get_parent_interface($port);

					if ($realif == $parent_if[0]) {

			}

		}

	}

	if ($found == false) {

		$realif = get_real_interface($interface);

		pfSense_ngctl_detach("{$realif}:", $realif);

	/* Just in case anything is not working well */

	if ($smallermtu == 0)

	$flags = 0;

	if ($commonrx === false)

	if (isset($bridge['enablestp'])) {

		/* Choose spanning tree proto */

		if (!empty($bridge['stp'])) {

			$stpifs = explode(',', $bridge['stp']);

			foreach ($stpifs as $stpif) {

			}

			foreach ($ifpriority as $key => $value) {

				$realif = get_real_interface($key);

			}

		}

		if (!empty($bridge['ifpathcost'])) {

	}

	if($bridgeif)

		log_error(gettext("bridgeif not defined -- could not bring interface up"));

	return $bridgeif;

	$mtu = get_interface_mtu($bridgeif);

	$mtum = get_interface_mtu($interface);

	if ($mtu != $mtum && !(substr($interface, 0, 3) == "gif" && $mtu <= 1500))

		pfSense_interface_mtu($interface, $mtu);

	pfSense_bridge_add_member($bridgeif, $interface);

}

{

        global $config, $g;

			echo gettext("Configuring LAGG interfaces...");

        $i = 0;

		if (is_array($config['laggs']['lagg']) && count($config['laggs']['lagg'])) {

				$i++;

			}

		}

			echo gettext("done.") . "\n";

}

	$members = explode(',', $lagg['members']);

	if (!count($members))

		return -1;

	if ($g['booting'] || !(empty($lagg['laggif']))) {

		pfSense_interface_destroy($lagg['laggif']);

		pfSense_interface_create($lagg['laggif']);

		interfaces_bring_up($member);

		mwexec("/sbin/ifconfig {$laggif} laggport {$member}");

	}

	mwexec("/sbin/ifconfig {$laggif} laggproto {$lagg['proto']}");

	interfaces_bring_up($laggif);

	if($greif)

		interfaces_bring_up($greif);

		log_error(gettext("Could not bring greif up -- variable not defined."));

	if (isset($gre['link1']) && $gre['link1'])

	/* make sure the parent interface is up */

	if($realif)

		interfaces_bring_up($realif);

		log_error(gettext("could not bring realif up -- variable not defined -- interface_gif_configure()"));

	if ($g['booting'] || !(empty($gif['gifif']))) {

	$iflist = get_configured_interface_with_descr();

	$delayed_list = array();

	$bridge_list = array();

	/* This is needed to speedup interfaces on bootup. */

	$reload = false;

	if (!$g['booting'])

	foreach($iflist as $if => $ifname) {

		$realif = $config['interfaces'][$if]['if'];

			$bridge_list[$if] = $ifname;

		else if (strstr($realif, "gre"))

			$delayed_list[$if] = $ifname;

			if($g['debug'])

				log_error(sprintf(gettext("Configuring %s"), $ifname));

			interface_configure($if, $reload);

				echo gettext( "done.") . "\n";

		}

	}

		break;

	case "carp":

		$vipif = "{$vip['interface']}_vip{$vip['vhid']}";

			pfSense_interface_destroy($vipif);

		break;

	}

	global $config, $g;

	if (!isset($config['interfaces'][$interface]))

	log_error("Calling interface down for interface {$interface}, destroy is " . (($destroy) ? 'true' : 'false'));

	$ifcfg = $config['interfaces'][$interface];

				mwexec("/sbin/ifconfig " . escapeshellarg($realif) . " inet6 {$ip6} delete", true);

			if ($destroy == true)

				pfSense_interface_flags($realif, -IFF_UP);

		break;

	default:

		if(does_interface_exist("$realif")) {

	unlink_if_exists("{$g['tmp_path']}/{$realif}_routerv6");

	unlink_if_exists("{$g['varetc_path']}/nameserver_{$realif}");

	unlink_if_exists("{$g['varetc_path']}/searchdomain_{$realif}");

	/* hostapd and wpa_supplicant do not need to be running when the interface is down.

	 * They will also use 100% CPU if running after the wireless clone gets deleted. */

	if (is_array($ifcfg['wireless'])) {

	if ($destroy == true) {

		if (preg_match("/^[a-z0-9]+_vip|^tun|^ovpn|^gif|^gre|^lagg|^bridge|vlan|^stf/i", $realif))

			pfSense_interface_destroy($realif);

	return;

}

	$pppif = "{$post_array['type']}{$post_array['ptpid']}";

	$cron_cmd_file = "{$g['varetc_path']}/pppoe_restart_{$pppif}";

	$itemhash = getMPDCRONSettings($pppif);

	// reset cron items if necessary and return

	if (empty($post_array['pppoe-reset-type'])) {

		if (isset($itemhash))

		return;

	}

		$itemhash = array();

	$item = array();

	if (isset($post_array['pppoe-reset-type']) && $post_array['pppoe-reset-type'] == "custom") {

	}

	if (empty($item))

		return;

		$config['cron']['item'][$item['ID']] = $item;

		$config['cron']['item'][] = $item;

}

		$type = "modem";

	else

		$type = $ppp['type'];

	if($g['booting']) {

		$descr = isset($ifcfg['descr']) ? $ifcfg['descr'] : strtoupper($interface);

	 */

	foreach($ports as $pid => $port){

		switch ($ppp['type']) {

				/* Bring the parent interface up */

				interfaces_bring_up($port);

				pfSense_ngctl_attach(".", $port);

					interfaces_bring_up($port);

				} else if (empty($localips[$pid]))

					$localips[$pid] = get_interface_ip($port); // try to get the interface IP from the port

				if(!is_ipaddr($localips[$pid])){

					log_error("Could not get a Local IP address for PPTP/L2TP link on {$port} in interfaces_ppps_configure. Using 0.0.0.0 ip!");

					$localips[$pid] = "0.0.0.0";

				/* XXX: This needs to go away soon! [It's commented out!] */

				/* Configure the gateway (remote IP ) */

				if (!$g['booting'] && !is_ipaddr($gateways[$pid]) && is_hostname($gateways[$pid])) {

					$gateways[$pid] = gethostbyname($gateways[$pid]);

					if(!is_ipaddr($gateways[$pid])) {

						log_error("Could not get a valid Gateway IP from {$port} via DNS in interfaces_ppps_configure.");

				break;

		}

	}

	if (is_array($ports) && count($ports) > 1)

		$multilink = "enable";

	else

		$multilink = "disable";

	if ($type == "modem"){

		if (is_ipaddr($ppp['localip']))

			$localip = $ppp['localip'];

		else

			$gateway = "10.64.64.{$pppid}";

		$ranges = "{$localip}/0 {$gateway}/0";

			$ppp['apnum'] = 1;

	} else

		$ranges = "0.0.0.0/0 0.0.0.0/0";

		$ondemand = "enable";

	else

		$ondemand = "disable";

			}

		}

	}

	if (($interface == "wan" && $founddefaultgw == false) || $setdefaultgw == true){

		$setdefaultgw = true;

		$mpdconf .= <<<EOD

	set iface addrs 10.10.1.1 10.10.1.2

EOD;

	if (isset($ppp['tcpmssfix']))

		$tcpmss = "disable";

	else

EOD;

		}

		$mpdconf .= "\topen\n";

	} //end foreach($port)

	/* fire up mpd */

	mwexec("/usr/local/sbin/mpd5 -b -k -d {$g['varetc_path']} -f mpd_{$interface}.conf -p {$g['varrun_path']}/{$ppp['type']}_{$interface}.pid -s ppp {$ppp['type']}client");

	if ($type == "pppoe") {

		if (!empty($ppp['pppoe-reset-type']))

			interface_setup_pppoe_reset_file($ppp['if'], $interface);

		mwexec("/sbin/sysctl net.inet.carp.arpbalance=1", true);

		mwexec("/sbin/sysctl net.inet.carp.preempt=0", true);

	} else

	mwexec("sbin/sysctl net.inet.carp.log=1", true);

	if (!empty($pfsyncinterface))

	/* setup pfsync interface */

	if ($carp_sync_int and $pfsyncenabled) {

		if (is_ipaddr($pfsyncpeerip))

		else

		sleep(1);

	}

	if($config['virtualip']['vip'])

	else

	if ($g['booting']) {

		unmute_kernel_msgs();

		echo gettext("done.") . "\n";

					$proxyif = $vipent['interface'];

				else

					$proxyif = "wan";

				if (!empty($interface) && $interface != $proxyif)

					continue;

                                else if (isset($paent['range']))

                                        $args .= " " . escapeshellarg($paent['range']['from'] . "-" . $paent['range']['to']);

                        }

		}

	} else if (count($paa) > 0) {

		foreach ($paa as $paif => $paents)  {

function interface_wireless_clone($realif, $wlcfg) {

	global $config, $g;

	 *   If it has not been cloned then go ahead and clone it.

	 */

	$needs_clone = false;

			}

			break;

		case 'hostap':

				$wpa_passphrase = "wpa_passphrase={$wlcfg['wpa']['passphrase']}\n";

				$wpa_passphrase = "";

			if (isset($wlcfg['wpa']['enable'])) {

				$wpa .= <<<EOD

}

				if($wlcfg['auth_server_addr'] && $wlcfg['auth_server_shared_secret']) {

					$auth_server_port = "1812";

						$auth_server_port = $wlcfg['auth_server_port'];

					$auth_server_port2 = "1812";

						$auth_server_port2 = $wlcfg['auth_server_port2'];

					$wpa .= <<<EOD

	$wlcmd_args = implode(" ", $wlcmd);

	mwexec("/sbin/ifconfig {$if} $wlcmd_args", false);

	sleep(1);

	/* execute hostapd and wpa_supplicant if required in shell */

	mwexec("/bin/sh {$g['tmp_path']}/{$if}_setup.sh");

	/* Disable Accepting router advertisements unless specifically requested */

	log_error("Deny router advertisements for interface {$interface}");

	mwexec("/sbin/ifconfig " . escapeshellarg($realif) . " inet6 -accept_rtadv");

	if (!$g['booting'] && !(substr($realif, 0, 4) == "ovpn")) {

		/* remove all IPv4 and IPv6 addresses */

		while (mwexec("/sbin/ifconfig " . escapeshellarg($realif) . " -alias", true) == 0);

	$mac = get_interface_mac($realhwif);

	/*	Don't try to reapply the spoofed MAC if it's already applied.

		which cycles the link again... */

	if ($wancfg['spoofmac'] && ($wancfg['spoofmac'] != $mac)) {

		mwexec("/sbin/ifconfig " . escapeshellarg($realhwif) .

		interfaces_bring_up($wancfg['if']);

	interface_netgraph_needed($interface);

	if (!$g['booting']) {

		link_interface_to_vips($interface, "update");

		$wancfg = array();

	$wanif = get_real_interface($interface);

	/* If the interface is not configured via another, exit */

	if(!$wancfg['track6-interface'] <> "") {

		return(false);

		$lancfg = array();

	$lanif = get_real_interface($interface);

	/* If the interface is not configured via another, exit */

	if(!$lancfg['track6-interface'] <> "") {

		return(false);

	}

	if(!is_numeric($lancfg['track6-prefix-id']))

		$lancfg['track6-prefix-id'] = 0;

	$wancfg = $config['interfaces'][$lancfg['track6-interface']];

	$wanif = $wancfg['if'];

	if (empty($wancfg))

		$wancfg = array();

	$ip4address = find_interface_ip($wanif);

	if((!is_ipaddrv4($ip4address)) || (is_private_ip($ip4address))) {

		log_error("The interface IPv4 '{$ip4address}' address on interface '{$wanif}' is not public, not configuring 6RD tunnel");

		return false;

	}

	$hexwanv4 = return_hex_ipv4($ip4address);

	/* create the long prefix notation for math, save the prefix length */

	$rd6prefix = explode("/", $wancfg['prefix-6rd']);

	$rd6prefixlen = $rd6prefix[1];

	/* binary presentation of the prefix for all 128 bits. */

	$rd6lanbin = convert_ipv6_to_128bit($rd6prefix);

	/* just save the left prefix length bits */

	$rd6lanbin = substr($rd6lanbin, 0, $rd6prefixlen);

	/* add the v4 address, offset n bits from the left */

	/* fill the rest out with zeros */

	$rd6lanbin = str_pad($rd6lanbin, 128, "0", STR_PAD_RIGHT);;

	$rd6lan = convert_128bit_to_ipv6($rd6lanbin) ."1";

	log_error("rd6 {$interface} with ipv6 address {$rd6lan} based on {$lancfg['track6-interface']} ipv4 {$ip4address}");

	mwexec("/sbin/ifconfig {$lanif} inet6 {$rd6lan} prefixlen 64");

	return 0;

		$lancfg = array();

	$lanif = get_real_interface($interface);

	/* If the interface is not configured via another, exit */

	if(!$lancfg['track6-interface'] <> "") {

		return(false);

	}

	if(!is_numeric($lancfg['track6-prefix-id']))

		$lancfg['track6-prefix-id'] = 0;

	$wancfg = $config['interfaces'][$lancfg['track6-interface']];

	$wanif = $wancfg['if'];

	if (empty($wancfg))

		$wancfg = array();

	$ip4address = find_interface_ip($wanif);

	if((!is_ipaddrv4($ip4address)) || (is_private_ip($ip4address))) {

		log_error("The interface IPv4 '{$ip4address}' address on interface '{$wanif}' is not public, not configuring 6RD tunnel");

		return false;

	}

	$hexwanv4 = return_hex_ipv4($ip4address);

	/* create the long prefix notation for math, save the prefix length */

	$sixto4prefix = "2002::";

	$sixto4prefixlen = 16;

	/* binary presentation of the prefix for all 128 bits. */

	$sixto4lanbin = convert_ipv6_to_128bit($sixto4prefix);

	/* just save the left prefix length bits */

	$sixto4lanbin = substr($sixto4lanbin, 0, $sixto4prefixlen);

	/* add the v4 address */

	$sixto4lanbin .= sprintf("%016b", $lancfg['track6-prefix-id']);

	/* fill the rest out with zeros */

	$sixto4lanbin = str_pad($sixto4lanbin, 128, "0", STR_PAD_RIGHT);;

	$sixto4lan = convert_128bit_to_ipv6($sixto4lanbin) ."1";

	log_error("sixto4 {$interface} with ipv6 address {$sixto4lan} based on {$lancfg['track6-interface']} ipv4 {$ip4address}");

	mwexec("/sbin/ifconfig {$lanif} inet6 {$sixto4lan} prefixlen 64");

	return 0;

		$lancfg = array();

	$lanif = get_real_interface($interface);

	/* If the interface is not configured via another, exit */

	if(!$lancfg['track6-interface'] <> "") {

		return(false);

	}

	if(!is_numeric($lancfg['track6-prefix-id']))

		$lancfg['track6-prefix-id'] = 0;

	$wancfg = $config['interfaces'][$lancfg['track6-interface']];

	$wanif = $wancfg['if'];

	if (empty($wancfg))

		$wancfg = array();

	$ifcfgipv6 = find_interface_ipv6($lanif);

	if(is_ipaddrv6($ifcfgipv6)) {

		$dhcp6lanarr = explode(":", Net_IPv6::uncompress($ifcfgipv6));

	global $config, $g;

	$iflist = get_configured_interface_with_descr(false, true);

	 *	with a public IPv4 address on the interface */

	$wancfg = $config['interfaces'][$interface];

		$wancfg = array();

	$wanif = get_real_interface($interface);

	$ip4address = find_interface_ip($wanif);

	$ip4gateway = get_interface_gateway($wanif);

	if((!is_ipaddrv4($ip4address)) || (is_private_ip($ip4address))) {

		return false;

	}

	$hexwanv4 = return_hex_ipv4($ip4address);

	if(!is_numeric($wancfg['prefix-6rd-v4plen']))

		$wancfg['prefix-6rd-v4plen'] = 0;

	/* we need the hex form of the broker IPv4 address */

	$hexbrv4 = return_hex_ipv4($wancfg['gateway-6rd']);

	/* binary presentation of the prefix for all 128 bits. */

	$rd6prefixbin = convert_ipv6_to_128bit($rd6prefix);

	/* just save the left prefix length bits */

	$rd6brprefixbin = substr($rd6prefixbin, 0, $rd6prefixlen);

	/* if the prefix length is not 32 bits we need to shave bits off from the left of the v4 address. */

	/* fill out the rest with 0's */

	$rd6brprefixbin = str_pad($rd6brprefixbin, 128, "0", STR_PAD_RIGHT);;

	$rd6brgw = convert_128bit_to_ipv6($rd6brprefixbin);

	/* just save the left prefix length bits */

	/* fill out the rest with 0's */

	$rd6prefixbin = str_pad($rd6prefixbin, 128, "0", STR_PAD_RIGHT);;

	$rd6prefix = convert_128bit_to_ipv6($rd6prefixbin);

	/* stf approach only works when embedding the entire 32 bits of the v4 */

	global $config, $g;

	$iflist = get_configured_interface_with_descr(false, true);

	 *	with a public IPv4 address on the interface */

	$wancfg = $config['interfaces'][$interface];

		$wancfg = array();

	$wanif = get_real_interface($interface);

	$ip4address = find_interface_ip($wanif);

	$ip4gateway = get_interface_gateway($wanif);

	if((!is_ipaddrv4($ip4address)) || (is_private_ip($ip4address))) {

		log_error("The interface IPv4 '{$ip4address}' address on interface '{$wanif}' is not public, not configuring 6RD tunnel");

		return false;

	}

	/* create the long prefix notation for math, save the prefix length */

	$stfprefixlen = 16;

	$stfprefix = Net_IPv6::uncompress("2002::");

	$stfarr = explode(":", $stfprefix);

	$v4prefixlen = "0";

	/* we need the hex form of the interface IPv4 address */

	$ip4arr = explode(".", $ip4address);

	$hexwanv4 = "";

	$hexbrv4 = "";

	foreach($ip4arr as $octet)

		$hexbrv4 .= sprintf("%02x", $octet);

	/* binary presentation of the prefix for all 128 bits. */

	$stfprefixbin = "";

	foreach($stfarr as $element) {

	$stflanbin = substr(sprintf("%032b", hexdec($hexwanv4)), $v4prefixlen, 32);

	$stflanbin = str_pad($stfprefixstartbin . $stflanbin, 128, "0", STR_PAD_RIGHT);;

	$stfbrarr = array();

	$stfbrbinarr = array();

	$stfbrbinarr = str_split($stfbrokerbin, 16);

		$stfbrarr[] = dechex(bindec($bin));

	$stfbrgw = Net_IPv6::compress(implode(":", $stfbrarr));

	$stflanarr = array();

	$stflanbinarr = array();

	$stflanbinarr = str_split($stflanbin, 16);

	mwexec("/sbin/ifconfig stf0 inet6 {$stflanpr} prefixlen 16");

	log_error("Set IPv6 address inet6 {$stflanpr} prefixlen 16 for stf0, route {$stfbrgw}");

	/* write out a default router file */

	file_put_contents("{$g['tmp_path']}/{$wanif}_routerv6", "{$stfbrgw}");

	file_put_contents("{$g['tmp_path']}/{$wanif}_defaultgwv6", "{$stfbrgw}");

		if($config['interfaces'][$if]['track6-interface'] == $interface)

			interface_track6_configure($if);

	}

	return 0;

}

		$dhcp6cconf .= "	script \"{$g['varetc_path']}/dhcp6c_{$interface}_script.sh\"; # we'd like some nameservers please\n";

		$dhcp6cconf .= "};\n";

	} else {

		$dhcp6cconf .= " 	send ia-na 0;	# request stateful address\n";

		if(is_numeric($wancfg['dhcp6-ia-pd-len'])) {

			$dhcp6cconf .= "	send ia-pd 0;	# request prefix delegation\n";

		return 0;

	}

 	$dhclientconf = "";

	$dhclientconf .= <<<EOD

interface "{$wanif}" {

timeout 60;

	/* bring wan interface up before starting dhclient */

	if($wanif)

		interfaces_bring_up($wanif);

		log_error(printf(gettext("Could not bring up %s interface in interface_dhcp_configure()"), $wanif));

	/* fire up dhclient */

	$interface = get_real_interface($interface);

	mwexec("/sbin/ifconfig {$interface} group {$groupname}", true);

}

/* COMPAT Function */

function convert_friendly_interface_to_real_interface_name($interface) {

	return get_real_interface($interface);

	// If we got a real interface, find it's friendly assigned name

	$interface = convert_real_interface_to_friendly_interface_name($interface);

	if (!empty($interface) && isset($config['interfaces'][$interface])) {

		$ifcfg = $config['interfaces'][$interface];

		switch ($ifcfg['ipaddr']) {

						foreach ($config['ppps']['ppp'] as $pppidx => $ppp) {

							if ($ifcfg['if'] == $ppp['if']) {

								$ports = explode(',', $ppp['ports']);

									$parents[$pid] = get_real_interface($parent_if);

								break;

							}

			default:

				// Handle _vlans

				if (strstr($realif,"_vlan"))

						foreach ($config['vlans']['vlan'] as $vlanidx => $vlan)

							if ($ifcfg['if'] == $vlan['vlanif']){

								$parents[0] = $vlan['if'];

				break;

		}

	}

	if (empty($parents))

		$parents[0] = $realif;

	return $parents;

}

		*/

		switch ($cfg['ipaddr']) {

			case "ppp":

				$wanif = $cfg['if'];

				break;

{

	/* if list */

	$ifdescrs = get_configured_interface_list();

	foreach ($ifdescrs as $ifdescr => $ifname) {

		if ($bits === null) {

			if ($ip == get_interface_ip($ifname)) {

	global $interface_sn_arr_cache;

	$interface = str_replace("\n", "", $interface);

	if (!does_interface_exist($interface))

		return;

	global $interface_ipv6_arr_cache;

	global $interface_snv6_arr_cache;

	global $config;

	$interface = trim($interface);

	$interface = get_real_interface($interface);

	if (!does_interface_exist($interface))

		return;

{

	global $interface_llv6_arr_cache;

	global $config;

	$interface = str_replace("\n", "", $interface);

	if (!does_interface_exist($interface))

		return;

			$wanif = $a_groups[$interface][0]['vip'];

		else

			$wanif = $a_groups[$interface][0]['int'];

		return $wanif;

	}

	/* fall through to get_real_interface */