lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-13 16:14:40 +00:00
Code Issues Packages Projects Releases Wiki Activity
12,309 Commits 1 Branch 0 Tags
Commit Graph

12309 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ad Schellevis
2c3c8e7a02 firewall: live log - sort interfaces in log_filters endpoint. closes https://github.com/opnsense/core/pull/4402 2021-01-08 16:24:19 +01:00
Ad Schellevis
bbeb2e71fa firewall: live log - remove dup dst (from https://github.com/opnsense/core/pull/4402) 2021-01-08 16:17:39 +01:00
Ad Schellevis
58abe70aed firewall: live log - pull in "!" filters from https://github.com/opnsense/core/pull/4402 2021-01-08 16:16:11 +01:00
Ad Schellevis
8f929489e4 UI: tooltip service widgets, closes https://github.com/opnsense/core/issues/4188 2021-01-08 16:00:24 +01:00
Franco Fichtner
952637011e console: makes more sense #4572 2021-01-08 09:54:47 +01:00
Franco Fichtner
fb49c70e10 console: more questions, more recovery #4572 
I see no easy way to untangle this for now.  At least make sure
the user is asked for the defaults to be restored making this
a little better than before.
 2021-01-08 09:50:34 +01:00
Franco Fichtner
6cdf5bb48d openssh: honour MAX_LISTEN_SOCKS; closes #4403 2021-01-08 09:32:24 +01:00
Franco Fichtner
ccb32474bf pkg: fix plist 2021-01-08 09:20:26 +01:00
Franco Fichtner
a70c6a2374 make: on a fresh clone ensure the stable branch exists 2021-01-08 08:50:22 +01:00
Ad Schellevis
41eefdd105 IDPS: revert content part of 09f74fe1ce7b4805c1bb8354e5d0c5b98955497b until ETPro telemetry ships new content. 2021-01-07 20:32:21 +01:00
Ad Schellevis
2bed9fa877 firewall_rules.php: cleanup 2021-01-07 09:10:37 +01:00
Franco Fichtner
646628e593 dhcp: style sweep 2021-01-06 19:30:12 +01:00
Ad Schellevis
b185418cd7 filter / automatic IPv6 rules, add RFC4890 as suggested by @shonjir for https://github.com/opnsense/core/issues/4565 2021-01-06 18:21:47 +01:00
Ad Schellevis
f0b79d0b53 filter: category selector missing caption 2021-01-06 16:41:47 +01:00
Martin Wasley
61ea8d7993
Correct DHCPv6 Custom Options Unsigned Integer field (#4573) 
Custom Options is incorrectly inserting quotes around the integer value.
 2021-01-06 11:22:45 +01:00
Franco Fichtner
92c019b913 firmware: pretty sure parsing REMOVED was working in pkg 1.12 2021-01-05 17:02:31 +01:00
Franco Fichtner
ecec55ca0c captive portal: no longer needed 2021-01-05 15:52:02 +01:00
Franco Fichtner
8c91019880 system: ok, extra mile on previous 2021-01-05 15:45:59 +01:00
Franco Fichtner
f8844af85d system: unify code to extract issuer/subject 
The code was adding an extra ", " at the end.
 2021-01-05 15:31:33 +01:00
Franco Fichtner
444b8f405e system: TLS compatibility in custom cipher option for now 2021-01-05 15:01:12 +01:00
Ad Schellevis
d9891b1ff9 filter/aliases: minor regression in maintaining target alias file (/var/db/aliastables/%s.txt). when it's either changed, expired or simply not there, it should dump the contents before loading it with pfctl 2021-01-05 14:52:44 +01:00
Franco Fichtner
f29c0b9728 system: pick up recommendations from #4533 
Since the new default is TLS 1.2 only use the upstream recommended
list and fall back to TLS 1.1 and above for less secure ciphers if
the user specificed them manually.

We could support TLS 1.3 now but that seems to be an exclusive option
without a fallback.
 2021-01-05 13:46:30 +01:00
Franco Fichtner
a90ecbab5f system: generate a better self-signed certificate 2021-01-05 13:29:56 +01:00
Franco Fichtner
071722a082 github: more issue template foo 2021-01-05 09:43:53 +01:00
Franco Fichtner
77ed9823d7 github: improve bug report template a bit more 2021-01-05 09:31:45 +01:00
Franco Fichtner
cf609e2e6a src: small style update 2021-01-05 09:12:02 +01:00
Franco Fichtner
622a3038ce license: sync 2021-01-05 08:58:56 +01:00
Franco Fichtner
9e2f42abb8 src: style sweep 2021-01-05 08:38:10 +01:00
Franco Fichtner
683f452295 firmware: add fingerprint for 21.1 2021-01-04 14:49:16 +01:00
Franco Fichtner
7216e3a241 system: allow self-signed renew for web GUI; closes #4567 
The command to issue a reset is:

  # configctl webgui restart renew
 2021-01-04 11:28:30 +01:00
Franco Fichtner
e609494b59 system: adjust lifetime to new recommendation 2021-01-04 11:03:33 +01:00
Franco Fichtner
f187c63502 openvpn: adjust lifetime to new recommendation 2021-01-04 11:03:09 +01:00
Franco Fichtner
c008e97375 github: adjust templates used 2021-01-04 10:19:23 +01:00
Franco Fichtner
4e0fdb516a firewall: add type 128 to outgoing IPv6 essentials #4565 2021-01-03 21:39:52 +01:00
Franco Fichtner
7fda1670ce interfaces: l2tp/pptp cleanup; closes #2707 
The interfaces are created by mpd5 daemon during configuration.
We do not seem to have more than one issue here: IPv6 disable
is too soon but that is easily fixed.  Device creation moves
on ok and there is no apparent error in functionality with or
without it.

While here fix the link when a $pppid is set and properly protect
the redirect url.  Previously empty() was too strict and it ignored
$pppid of zero.

Also remove spurious "IP Address" help text from PPP device
configuration.
 2021-01-03 20:45:58 +01:00
Franco Fichtner
6b407b51dd openvpn: fix typo in wizard redirect 2021-01-03 20:42:35 +01:00
Ad Schellevis
f3e6a227e5 filter: refactor filter_rules_legacy while fixing antispoof issues on bridge interfaces. closes https://github.com/opnsense/core/issues/4564 2021-01-03 14:18:13 +01:00
Lorenzo Milesi
074ccb9a15
Nextcloud backup: allow subdir (#4077) 2021-01-02 10:53:03 +01:00
Franco Fichtner
a69351722c firmware: proper path to pkg-static 2021-01-01 20:04:25 +01:00
Ad Schellevis
06b1804a3d firewall rules, type in for for https://github.com/opnsense/core/issues/4493 closes https://github.com/opnsense/core/issues/4562 2020-12-31 17:31:16 +01:00
Franco Fichtner
921b7c69f0 firmware: emulate -s for core package 2021-01-01 10:15:27 +01:00
Franco Fichtner
9ceeafc370 pkg: happy new year! 2021-01-01 09:57:29 +01:00
Ad Schellevis
7331b2717b Firewall / live log - add manual refresh button. closes https://github.com/opnsense/core/issues/4550 2020-12-26 16:03:58 +01:00
Ad Schellevis
aa8a6ea717 Reporting / traffic: bugfixes and improvements to "top talkers" tab. while here add cumulative numbers, although the numbers will never be very accurate, it's not worse than it was when using rate in the previous version. 2020-12-26 13:21:33 +01:00
Ad Schellevis
4186f2bbe5 Reporting / traffic: add "top talkers" tab which shows the current (and max) bandwith usage per ip address sorted by total (in+out). 
some people seem to miss the numbers, since the top host graph uses the same information over time, it wouldn't hurt to add a tab containting the raw numbers for the selected interfaces.
The current version doesn't limit the number of results, we might need to add a limit at some point in time, depending on how many results iftop samples.

general remarks:

o total amount of traffic is not being displayed, although we could count the "cumulative" from iftop, the numbers would always be flawed (since sampled with an interval)
o no reverse lookups, maybe for a future version, let's first see if this helps.
o hosts not seen for 120 seconds will automatically be removed from the list (fixed ttl)
 2020-12-25 15:14:13 +01:00
kulikov-a
b4104cf0a3
QueryFilter.php: allow underscore in filter string (#4548) 2020-12-24 16:06:02 +01:00
Ad Schellevis
6c1b8a993e DHCPDv4: hostname validation should include domain, missed interface domain. ref https://github.com/opnsense/core/issues/4544 2020-12-23 15:00:56 +01:00
Ad Schellevis
51c04e7abf DHCPDv4: hostname validation should include domain. closes https://github.com/opnsense/core/issues/4544 2020-12-23 14:33:24 +01:00
Ad Schellevis
e686331888 Firewall:aliases - incorrect validation message for network type, addresses and hostnames are not allowed, only networks. 2020-12-22 09:44:38 +01:00
Franco Fichtner
2053a24600 src: more EOD/EOF usage with missing newline 
Not fatal but better to fix style now.
 2020-12-21 21:20:33 +01:00