lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-15 09:04:39 +00:00
Code Issues Packages Projects Releases Wiki Activity
11,598 Commits 1 Branch 0 Tags
Commit Graph

10711 Commits

Author SHA1 Message Date
Ad Schellevis
2a80d1a8a2 interfaces: make sure descriptions are properly cleansed, save description when disabled too (missed in https://github.com/opnsense/core/pull/3808) closes https://github.com/opnsense/core/issues/3942 2020-02-17 20:33:19 +01:00
Maurice
86afa90afb Remove 192.0.0.0/24 from rebinding prevention list 
ipv4only.arpa resolves to 192.0.0.170 and 192.0.0.171. This is required for DNS64 prefix detection (RFC7050).
 2020-02-17 18:08:39 +01:00
Ad Schellevis
64052fae97 install missing plugins configd call: configctl firmware confplugins for https://github.com/opnsense/core/issues/1663 2020-02-17 10:19:49 +01:00
Ad Schellevis
1e2cc4724a pluginctl: add -g to extract config.xml values, e.g. pluginctl -g system.firmware.plugins (https://github.com/opnsense/core/issues/1663) 2020-02-17 09:57:11 +01:00
Ad Schellevis
862a60b774 stylesweep previous 2020-02-16 19:34:30 +01:00
xx4h
7d72dbdc28
(Auth) fix expiry and validity for vouchers (#3931) 
Always check if voucher is not expired (either
because of never expires or because of expiry
date is in the future) and ensure session timeout
will be the lowest of validity based on the first
usage, the starttime or expiry (if not never expires).
If one of those conditions is not true, reject
authentication.

Fix #3930
 2020-02-17 08:58:23 +01:00
Franco Fichtner
e690ff6fec src: style sweep 2020-02-14 13:24:19 +01:00
Franco Fichtner
2856288bbf unbound: remove previous, security risk asssesment by @maurice-w 
PR: https://github.com/opnsense/core/issues/3797
 2020-02-13 10:48:54 +01:00
Ad Schellevis
8691618bdd filter: pass object in filter_core_get_port_alias to allow large sets of aliases 2020-02-13 10:18:11 +01:00
Franco Fichtner
877361d3c0 dhcp: guard against primary address grab fail 2020-02-12 09:33:36 +01:00
Franco Fichtner
1c42d3462e dhcp: copy+paste fail 2020-02-12 09:29:39 +01:00
Franco Fichtner
8801097cbc dhcp: support VIPs in auto-radvd case 2020-02-12 09:27:43 +01:00
Maurice
20efa4f46c radvd.conf for tracking LAN interfaces, cleanup 
For tracking LAN interfaces with manual configuration disabled, some odd radvd configuration choices were made:
MinRtrAdvInterval / MaxRtrAdvInterval were set to very low values (3 / 10) for no apparent reason. Now removed so radvd defaults (200 / 600) will be used.
The DHCPv6 server is enabled and configured with a range6, but the Managed flag was not set. Now set to on.
DeprecatePrefix was only set if the IPv6 configuration type of the tracked WAN interface was SLAAC. Now always set to on.
 2020-02-12 08:49:56 +01:00
Ad Schellevis
65b80e6a55 interfaces., missing break. closes https://github.com/opnsense/core/issues/3922 2020-02-11 17:20:15 +01:00
Ad Schellevis
9f3f4d7336 user manager: add valid from and to dates to user certs, remember last ca to create a new internal cert. 
small improvement when trying to create a new cert for a user, you need to delete the old cert, which is difficult to distinct because both have the same name (validity helps) and the new cert very often needs to use the same ca, set this one as default when requesting a new one.
 2020-02-11 17:06:57 +01:00
Franco Fichtner
d21780177b interfaces: subnet bits as extra return value 2020-02-10 23:41:21 +01:00
Franco Fichtner
74901aacd1 interfaces: actually... #3310 2020-02-10 22:37:18 +01:00
Franco Fichtner
c76c61e24c interfaces: typo #3310 2020-02-10 20:42:16 +01:00
Franco Fichtner
d3b5d9ede2 interfaces: sneak in primary IPv6 info before it defaults to "something" #3310 2020-02-10 20:38:31 +01:00
Franco Fichtner
d75cae031a interfaces: turn dhcpd function into generic function #3310 2020-02-10 20:24:39 +01:00
Franco Fichtner
08beb7b6ad dhcpd: get realif if not specified otherwise #3310 2020-02-10 20:16:35 +01:00
Maurice
1fde0b7e2d radvd: don't set Router Address flag 
The Router Address flag "indicates that the Prefix field contains a complete IP address assigned to the sending router" (RFC 6275). This does not apply, we only send a prefix. This flag is only relevant for Mobile IPv6.
It has been there (for unknown reasons) since pfSense switched to radvd 8 years ago: 3f9cc8e44c
 2020-02-10 20:02:47 +01:00
Ad Schellevis
769d7a9a2e mirrors: Quantum Mirror 2020-02-07 14:55:59 +01:00
Ad Schellevis
e4db773f14 dhcpd: cleanup code related to https://github.com/opnsense/core/pull/3910 2020-02-07 12:15:22 +01:00
Ad Schellevis
6c1ac9e96a Merge branch 'add-dhcpv6-ddns' of https://github.com/trunet/core into trunet-add-dhcpv6-ddns 2020-02-07 10:37:00 +01:00
Marcel Menzel
7603744ba5
Add an option to configure IPsec tunnel timeouts via strongSwawn's inactivity parameter (#3912) 2020-02-07 08:41:39 +01:00
Franco Fichtner
f66582d7ed src: style fixes 2020-02-06 19:20:36 +01:00
Franco Fichtner
098af83c85 unbound: extend ACL to delegatable prefix #3797 
Maybe this is wishful thinking: if the prefix changes the
whole idea falls apart anyway.
 2020-02-06 19:08:22 +01:00
Franco Fichtner
4b68737256 dhcp: manual radvd fix #3310 2020-02-06 18:42:16 +01:00
Franco Fichtner
d6b7845227 dhcp: fix page info #3310 2020-02-06 18:32:10 +01:00
Franco Fichtner
a0464ab3d3 dhcp: same for radvd #3310 2020-02-06 18:11:50 +01:00
Franco Fichtner
5ebae48efd dhcp: fix refactor issue and scope hiccup #3310 2020-02-06 17:51:27 +01:00
Tyler Ham
f66c3bf812
dhcp: add icons next to online/offline lease status (#3911) 2020-02-06 15:49:13 +01:00
Ad Schellevis
0268363d0c system_general. empty dnsallowoverride_exclude causes PHP Warning: implode(): Invalid arguments passed ... 2020-02-05 10:21:29 +01:00
Franco Fichtner
29b6820117 interfaces: missed review opportunities 2020-02-05 09:07:12 +01:00
Len White
13f8ba2347 - Update maximum MTU for 10Gb NICs 2020-02-04 12:52:51 +01:00
Wagner Sartori Junior
8eedfcdb5e
Implement working DHCPv6 DDNS (Dynamic DNS) 
Follows PR #3909 and fixes #3908
 2020-02-04 12:12:36 +01:00
Ad Schellevis
5833339c3d log: ppp log type, in c56fff792d changed ppps for ppp. 2020-02-03 17:12:17 +01:00
Ad Schellevis
ff290c95ec OpenVPN ipv6-push, another try for https://github.com/opnsense/core/issues/3907 2020-02-03 14:27:57 +01:00
Ad Schellevis
f670ba6e2d fix previous, for https://github.com/opnsense/core/issues/3907 2020-02-03 14:13:29 +01:00
Ad Schellevis
ccc0f37098 OpenVPN csc ipv6, wrong ifconfig-ipv6-push format. for https://github.com/opnsense/core/issues/3907 2020-02-03 14:08:15 +01:00
Franco Fichtner
57de0596f4 interfaces: typo in previous #3310 2020-02-03 08:01:25 -03:00
Franco Fichtner
a93815f1e9 dhcpd: refactor, needs second caller #3310 2020-02-03 11:58:17 +01:00
Franco Fichtner
b8beea435d dhcp: blacklist aliases in IPv6 case #3310 
This code is probably relevant in other parts as well.
 2020-02-03 07:31:26 -03:00
Ad Schellevis
6cb988ea06 system_usermanager / authorizedkeys: input with for https://github.com/opnsense/core/issues/3905 (+ height to 10 after click) 2020-02-03 09:21:03 +01:00
Ad Schellevis
5c1756e6e9 flowd: netflow_egress_only missing separator, caused by 5f3936ab36 2020-01-31 19:47:22 +01:00
Franco Fichtner
79c454cfd7 system: old template is obsolete as well 2020-01-31 11:28:52 +01:00
Franco Fichtner
e05aed2617 system: drop unused services.inc 2020-01-31 11:20:06 +01:00
Franco Fichtner
adc7f3fc78 pkg: this is 20.1 now 2020-01-30 20:50:13 +01:00
Franco Fichtner
7ad13cd08e system: join carp scripts, move to priority 90 like port script 2020-01-30 20:47:02 +01:00