lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-13 08:09:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
16,240 Commits 1 Branch 0 Tags
Commit Graph

16240 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Franco Fichtner
2cfe2fdc1c firmware: allow os-squid install during major upgrade; closes #7030 2024-01-11 10:15:06 +01:00
Franco Fichtner
713809efeb firewall: src sweep 2024-01-11 10:14:49 +01:00
Franco Fichtner
0803a233d0 firewall: fix a warning and integrate menu nicer #6383 2024-01-11 09:37:51 +01:00
Franco Fichtner
6ab8f8cf2d firewall: patch in missing sync sections #6383 2024-01-11 09:27:56 +01:00
Franco Fichtner
b121118fc1 system: mark new tunables as required 2024-01-10 11:53:09 +01:00
Ad Schellevis
d766ae211c System: Settings: Tunables - change zfs transcation group defaults. (timeout from 5 --> 90 seconds, dirty data sync percentage from 20 --> 5) 
Usually firewalls are not processing a lot of disk write operations, in which case a forced every 5 second flush will lead to quite some wear on the underlying storage device (usually a solid state one these days).
Roughly 20GB per day is being written when using the upstream defaults and without much actual load. To compensate a bit for the reduction of forced syncs, we lower the threshold on the dirty data.
 2024-01-10 11:36:02 +01:00
Franco Fichtner
b339f21817 filter: remove pfplugin use from below backend #6390 2024-01-09 16:25:31 +01:00
Franco Fichtner
f78549137a mvc: style sweep 2024-01-09 16:15:17 +01:00
Ad Schellevis
4d8c9d1c4f MVC: ditch phalcon's syslog implementation for a simple wrapper of our own. for https://github.com/opnsense/core/issues/6389 2024-01-09 14:23:01 +01:00
Ad Schellevis
84e43caf2d MVC - add a field type for descriptions and uniform description uses in core modules. 2024-01-08 16:24:25 +01:00
Ad Schellevis
135a663e33 Firewall: NAT: NPTv6 - allow ip addresses without subnet and fix migration. for https://github.com/opnsense/core/issues/6390 2024-01-08 10:01:23 +01:00
Franco Fichtner
dfc834dabb src: style sweep and plist fix 2024-01-07 21:03:04 +01:00
Franco Fichtner
490efb1e97 firewall: merge pfplugin.inc into pf.inc 2024-01-07 20:51:27 +01:00
Ad Schellevis
8591377778 Firewall: NAT: NPTv6 - add MVC migration and cleanup old legacy pages. 2024-01-07 18:29:00 +01:00
Ad Schellevis
8e299d3efe import net/os-firewall from plugins (https://github.com/opnsense/core/issues/6390) 2024-01-07 16:56:35 +01:00
Ad Schellevis
3daff54655 Services: Intrusion Detection: Policy - show rule origin in rule adjustments grid. As we need to fetch all rule labels in order to link them and the number of installed rules may be quite large (>100k) we need a small work-around here to prevent other model callers from always having to wait for [msg, source] being populated. 
closes https://github.com/opnsense/core/issues/7121
 2024-01-07 16:22:17 +01:00
Ad Schellevis
e385b1cd3e VPN: WireGuard: Settings - ad unique constrain on pubkey fields in model. closes https://github.com/opnsense/core/issues/7110 2024-01-07 11:46:27 +01:00
Ad Schellevis
b5008a9cbf VPN: WireGuard: Settings - API cleanup for 24.1 [2] 2024-01-07 11:43:20 +01:00
Ad Schellevis
4dacd81ab0 VPN: WireGuard: Settings - API cleanup for 24.1 2024-01-07 11:32:41 +01:00
Ad Schellevis
7b599680bc VPN: WireGuard: Settings - add button to generate a pre-shared key (wg genpsk). closes https://github.com/opnsense/plugins/issues/3164 2024-01-07 11:27:28 +01:00
Stephan de Wit
a40e6ae0a6
MVC: remove Phalcon migration glue (#7117) 
* MVC: remove phalcon migration glue

* fix plist

* remove commented out autoloader code
 2024-01-05 18:29:05 +01:00
Franco Fichtner
ac61446b21 pkg: fix plist 2024-01-05 14:50:37 +01:00
Franco Fichtner
001f5e2a9a firmware: add upgrade hint for first RC 2024-01-05 14:00:54 +01:00
Franco Fichtner
a933d2b0a8 firmware: add fingerprint for 24.1 2024-01-05 13:59:44 +01:00
Ad Schellevis
43a1743749 VPN: OpenVPN: Instances - (optional) ocsp check, fix "pass" criteria, result should be good and verified. (https://github.com/opnsense/core/pull/7082, https://github.com/opnsense/core/issues/7114) 2024-01-04 21:11:51 +01:00
Ad Schellevis
57f0175a94 System: Trust: Revocation - add ocsp index.txt file download, needed for demonstration purposes (https://github.com/opnsense/core/issues/7114), minor bugfix in previous 2024-01-04 20:19:01 +01:00
Ad Schellevis
043a3dd756 VPN: OpenVPN: Instances - (optional) ocsp check, make sure to flush our CA when ocsp is enabled and improve logging (https://github.com/opnsense/core/pull/7082, https://github.com/opnsense/core/issues/7114) 2024-01-04 19:30:25 +01:00
Ad Schellevis
da5b772ba1 System: Trust: Revocation - add ocsp index.txt file download, needed for demonstration purposes (https://github.com/opnsense/core/issues/7114) 2024-01-04 17:22:25 +01:00
Ad Schellevis
d0e43f829d System: Trust: Revocation - show CA and CRL name and hide new CRL option when one or more CRL's are found. for https://github.com/opnsense/core/issues/7015 2024-01-04 16:15:39 +01:00
Ad Schellevis
92f282b295 mvc/bootgrid - show tooltip when grid td content doesn't fit and remove similar functionality from Reporting: Unbound DNS to avoid duplication. 2024-01-04 16:01:31 +01:00
Ad Schellevis
eed630092c configctl - regression in 42fd27df77 , ignoring -q 2024-01-04 11:39:31 +01:00
Franco Fichtner
763d2fd4dd ui: fix the missing dialog padding in some modals 
It appears that dialogRef.getModalBody() is one of our
ancient modal implementations and a simple 'message' does
the trick.
 2024-01-04 10:47:25 +01:00
Franco Fichtner
f1ae49b803 unbound: update root hints; closes #7115 2024-01-04 08:56:25 +01:00
Franco Fichtner
a345bb14fe system: prep trad. Chinese for upcoming release 2024-01-04 08:49:51 +01:00
Franco Fichtner
fac978204d mvc: more minor copyright style 
One of these days I'll write that automated style tool...
 2024-01-04 08:13:05 +01:00
Franco Fichtner
aab1e8be68 mvc: copyright header style 2024-01-04 08:00:14 +01:00
Ad Schellevis
318a1ae322 VPN: OpenVPN: Instances - add (optional) ocsp check (https://github.com/opnsense/core/pull/7082, https://github.com/opnsense/core/issues/7114) 
* initial implementation, needs some testing.
 2024-01-03 21:54:49 +01:00
Franco Fichtner
9980b717e5 LICENSE: sync 2024-01-03 14:45:41 +01:00
Franco Fichtner
fed77572a6 dhcp: clean up dpulicated domain-name-servers option; closes #6751 2024-01-03 12:59:15 +01:00
Franco Fichtner
29db6b9ff4 ui: patch all the other spots 2024-01-03 12:06:50 +01:00
Shane Lord
27dcad8403
ui: include meta tags for standalone/full-screen on Android & iOS (#6696) 
Add meta tags for Android and iOS to allow the WebUI to run in fullscreen/standalone mode on mobile browsers.
 2024-01-03 12:03:24 +01:00
doktornotor
44d9a11bb8
Add word break in interface_statistics.widget.php (#7106) 
* Add word break in interface_statistics.widget.php

* Add word break to interface descriptions as well
 2024-01-03 11:04:01 +01:00
Franco Fichtner
cd3fa5a268 firewall: redirect interface seelctor for #6158 2024-01-03 10:55:59 +01:00
Franco Fichtner
600b5bf84e firewall: binat never supported redirect target alias #6158 
There were error(s) loading the rules: /tmp/rules.debug:109: invalid use
of table <__lan_network> as the redirect address of a binat rule - The line
in question reads [109]: binat on igb1 inet6 from ff00:: -> $__lan_network

That also means aliases are useless here and we need to have an interface
selector anyway.

Also pconfig_to_addr() doesn't store /128 which may cause an error in the
prefix translation at the moment.
 2024-01-02 23:23:56 +01:00
Ad Schellevis
2ab6a8f188 mvc/bootgrid - increase standard search delay from 250ms to 1sec to prevent excessive command executions. closes https://github.com/opnsense/core/issues/7109 2024-01-02 15:07:30 +01:00
Franco Fichtner
6ce648d507 pkg: happy new year! 2024-01-02 10:17:35 +01:00
Franco Fichtner
d820d74a45 openvpn: style sweep 2024-01-02 08:09:27 +01:00
Ad Schellevis
2ef916de0c Services: ISC DHCPv6: Leases - regression in 5b0b4139b6 (off by 1). https://github.com/opnsense/core/issues/7107 2024-01-01 19:01:00 +01:00
Ad Schellevis
1fe104dce6 Wireguard / OpenVPN [client] - handle disabled carp vhid's by initialising to 'DISABLED' (same as 9ff64a3e41) 2023-12-31 13:34:55 +01:00
Ad Schellevis
5b0b4139b6 Services: ISC DHCPv6: Leases - cleanup get_lease6 script and fix parsing issue, closes https://github.com/opnsense/core/issues/7107 2023-12-30 22:54:50 +01:00