lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-13 08:09:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
10,345 Commits 1 Branch 0 Tags
Commit Graph

10345 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Franco Fichtner
0b879022ae www: d+f for #3218 2019-02-14 12:31:48 +01:00
Franco Fichtner
8f80173401 www: a few for #3218 2019-02-14 12:17:07 +01:00
Franco Fichtner
d8f2251d7b LICENSE: sync 2019-02-14 12:16:59 +01:00
Ad Schellevis
2eabec274f temp fix for https://github.com/opnsense/core/issues/3222, partly revert adf314a4ab 2019-02-14 10:29:45 +01:00
Franco Fichtner
c0bbb4bbcb firewall: capture "nat" traffic like we do for "rdr" #3033 2019-02-14 09:41:46 +01:00
Ad Schellevis
67f4948670 OpenVPN, extract ca chain for https://github.com/opnsense/core/issues/1487 2019-02-13 11:19:13 +01:00
Ad Schellevis
2006837d18 system tunables, allow reset sysctl to factory defaults. between versions our defaults may vary, this provides an easy option to just use the current defaults. 2019-02-13 10:02:03 +01:00
Ad Schellevis
b424a2f9b3 defaults, more hardened defaults, prevent icmp redirects being send. 2019-02-13 09:57:40 +01:00
Ad Schellevis
7eb9a4f755 Merge branch 'fabianfrz-rspamd_fix_constraint' 2019-02-13 08:52:10 +01:00
Ad Schellevis
74f7ae60b1 style sweep 2019-02-13 08:51:54 +01:00
Ad Schellevis
e5d6107bee Merge branch 'rspamd_fix_constraint' of https://github.com/fabianfrz/core into fabianfrz-rspamd_fix_constraint 2019-02-13 08:47:11 +01:00
Franco Fichtner
fdb7f22982 ntp: remove a confusing GPS logging hint 2019-02-12 23:20:06 +01:00
Ad Schellevis
7b758564cf IDS, support required rules/files in metadata package, closes https://github.com/opnsense/core/issues/3228 2019-02-12 21:22:09 +01:00
Ad Schellevis
8695737563 IPS, set stream.inline: true to avoid https://redmine.openinfosecfoundation.org/issues/2811, for https://github.com/opnsense/core/issues/3211 2019-02-12 16:58:36 +01:00
Ad Schellevis
1bda0f495d
Update issue templates 
Initial issue templates
 2019-02-12 16:39:02 +01:00
Ad Schellevis
d00fb61c92 LDAP, rename setUpCaEnv to setupCaEnv and fix StartTLS in system_usermanager_settings_ldapacpicker.php, closes https://github.com/opnsense/core/issues/3206 2019-02-12 09:05:16 +01:00
Franco Fichtner
7f3f522673 dhcp: style 2019-02-12 07:05:28 +01:00
Ad Schellevis
3e8c67bddd Merge branch 'MichaelDeciso-feature/3034' 2019-02-11 22:27:23 +01:00
Ad Schellevis
287851c52b HAsync, minor cleanups 2019-02-11 22:26:55 +01:00
Ad Schellevis
7b16b99b73 Merge branch 'feature/3034' of https://github.com/MichaelDeciso/core into MichaelDeciso-feature/3034 2019-02-11 22:06:45 +01:00
Ad Schellevis
3acb8c4d90 Auth/LDAP, move tls options https://github.com/opnsense/core/issues/3206 2019-02-11 19:27:27 +01:00
Fabian Franz
b135ee8bba rspamd: fix constraint 2019-02-11 18:07:01 +01:00
Franco Fichtner
cac40cfd95 system: fix translation 2019-02-11 15:29:53 +01:00
Franco Fichtner
e4f27ab8ba system: html_safe() for value='' 2019-02-11 09:41:10 +01:00
Ad Schellevis
12b80b85a8 Auth/ldap, fix for https://github.com/opnsense/core/issues/3206 closes https://github.com/opnsense/core/pull/3217 2019-02-11 08:46:55 +01:00
Franco Fichtner
93ebf02468 tzdata: sync with tzdata2018i 2019-02-10 20:14:23 +01:00
Ad Schellevis
b3a6440aca opnsense.js, fix setFormData() htmldecode + minor style fixes, closes https://github.com/opnsense/core/pull/3209 2019-02-10 20:09:59 +01:00
Ad Schellevis
0cb7758f36 Firewall/alias, prevent new alias creation when adding an address in addAction, pfctl -T add will automatically create a new alias when not found, which leads to confusing behaviour. 
There is a small side effect, aliases not created by the user can not be appended anymore (bogons), but since these are system managed it's likely a small price to pay for clarity.

Closes https://github.com/opnsense/core/issues/3215
 2019-02-10 19:11:27 +01:00
Ad Schellevis
50c25eaf6b Firewall/alias, oddity with empty(), closes https://github.com/opnsense/core/issues/3214 2019-02-10 17:31:22 +01:00
Ad Schellevis
d718992c76 Auth/ldap, chmod ca file 644, change putenv to ldap_set_option when available and improve logging, for https://github.com/opnsense/core/issues/3206 2019-02-10 13:38:26 +01:00
Franco Fichtner
da690969c4 rc: move all template generation to early 
It's unlikely the config.xml will change and backup scripts in
early are going to need it anyway.
 2019-02-10 13:14:24 +01:00
Ad Schellevis
afcbdee036 Auth cleanup, ditch ldap_setup_caenv() in favour of LDAP->setUpCaEnv(), for https://github.com/opnsense/core/issues/3206 2019-02-09 22:03:52 +01:00
Martin Wasley
7960f2ab77 Add validation check for time period for Dpinger (#3190) 2019-02-09 20:56:51 +01:00
Franco Fichtner
b20f71b19e interfaces: our dhclient-script doesn't clobber resolv.conf #3197 
The FreeBSD one does, but we have different code that is "safe"
for multiple DHCP connections.
 2019-02-08 22:23:18 +01:00
Franco Fichtner
a1dbbb5ef1 interfaces: remove arp flush from dhclient-script #3197 
PR: https://forum.opnsense.org/index.php?topic=11037.0
 2019-02-08 22:21:54 +01:00
Ad Schellevis
692faae42c IDS/IPS, less extensive logging. 
- version info and rules might be cached, only log the uncached actions (first try)
 2019-02-08 20:37:32 +01:00
Ad Schellevis
f768bf743a Merge branch 'fredronnv-dev/dhcp_failover' 2019-02-08 16:16:55 +01:00
Ad Schellevis
f2be8ad1b6 fix failover_peerip logic in services_dhcpdv4_configure() 2019-02-08 16:15:48 +01:00
Ad Schellevis
1c44888646 Merge branch 'dev/dhcp_failover' of https://github.com/fredronnv/core into fredronnv-dev/dhcp_failover 2019-02-08 16:10:01 +01:00
Ad Schellevis
52baca6eff Merge branch 'fredronnv-dev/sourcehashkey' 2019-02-08 15:14:13 +01:00
Ad Schellevis
a5505463ab minor cleanups in firewall_nat_out_edit.php for https://github.com/opnsense/core/pull/3204 
- strict page validation
- disable input's when hidden (generic page issue)
 2019-02-08 15:12:31 +01:00
Ad Schellevis
8d78811e32 Merge branch 'dev/sourcehashkey' of https://github.com/fredronnv/core into fredronnv-dev/sourcehashkey 2019-02-08 14:50:43 +01:00
Fredrik Rönnvall
1e7b0d2082 Allow explicitly setting Source Hash Key 
This key is randomly assigned unless set every time the ruleset is
loaded. In order to make it persist, allow setting it to a predetermined
value.
 2019-02-08 14:21:46 +01:00
Franco Fichtner
3381598685 firmware: bump RageNetwork mirror to HTTPS 2019-02-08 09:19:40 +01:00
Franco Fichtner
1e32993339 firmware: avoid trailing slash in URL, it is appended later 2019-02-08 09:15:57 +01:00
Ad Schellevis
77bf613efe mirror, add University of Kent to the list 2019-02-08 09:04:56 +01:00
Franco Fichtner
73a03c4954 firmware: make this error a little clearer 2019-02-08 08:36:10 +01:00
Fredrik Rönnvall
85d2657ce6 Fix behaviour of determining dhcp primary/secondary 
When there is more than one CARP address per interface with different
skews, check only the first CARP if and skew in order to determine
primary. This prevents a misconfiguration where both hosts are
configured as dhcp primary.
 2019-02-08 08:30:40 +01:00
Franco Fichtner
2e314c016e interfaces: push dhclient and dhcp6c to system log 
Easier to see what's going on, both trigger most system reconfigure
events anyway.

PR: https://github.com/opnsense/core/issues/3197
Discussed with: @adschellevis
 2019-02-07 18:17:20 +01:00
Ad Schellevis
7aab4a99d3 probe media before applying new settings, exclude vlan's (align to configure_interface_hardware()). for https://github.com/opnsense/core/issues/3198 
We could debate that media is hardware setting and thus should move to configure_interface_hardware(), but seems to be the case for more settings in interface_configure().
Maybe it's an idea to move all of these things to a single point later, so legacy_interface_details() only needs to be called once.
 2019-02-06 18:58:20 +01:00