lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-20 03:16:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
11,916 Commits 1 Branch 0 Tags
Commit Graph

10994 Commits

Author SHA1 Message Date
Ad Schellevis
332cb8e89c cleanup previous 2020-06-01 16:42:36 +02:00
Ad Schellevis
27964002c5 IDPS: deprecate classtype in rules table, move functionality to new metadata_histogram table, which contains the relevant rule metadata properties including classtype. 
also removes endpoint /api/ids/settings/listRuleClasstypes
 2020-06-01 16:37:23 +02:00
90er
a8c410fd53
Proxy: fix wrong button label for Download ACLs (#4146) 2020-05-31 11:21:00 +02:00
Ad Schellevis
ad9d46696d IPsec:VTI, cleanse interface name. closes https://github.com/opnsense/core/issues/4143 2020-05-29 19:29:51 +02:00
Ad Schellevis
f89d8e6582 style 2020-05-29 19:26:35 +02:00
Franco Fichtner
08a3fd2233 system: finally use 3wire now that we have autologin support 
PR: https://github.com/opnsense/core/issues/3921
 2020-05-29 13:24:26 +02:00
Ad Schellevis
73f02a14c4 IDPS: support querying of metadata fields, move classtype to new rule_properties table as well. 
backwards compatible with existing ui functionality, contains some cleanups in the same area to increase reability
 2020-05-28 20:31:45 +02:00
Franco Fichtner
2cff1c5f12 interfaces: retain spacing 2020-05-27 13:13:36 +02:00
Maurice Walker
79e42f1359 fix stateless DHCPv6 for track6 interfaces 2020-05-27 13:10:07 +02:00
Franco Fichtner
69c276adeb system: add tcpflags filter #2195 2020-05-26 16:48:27 +02:00
Ad Schellevis
408df257cc IDPS: cleanup list_rules() in rulecache and parse all (metadata) tokens while there 2020-05-25 19:35:41 +02:00
Ad Schellevis
2966211a8f firewall: live log. switch from single log filter to one per attribute. might be enough for https://github.com/opnsense/core/issues/4065 2020-05-25 13:35:24 +02:00
Ad Schellevis
72e1c96d2f jquery-3.5.1: regression in updateServiceControlUI(), new jquery doesn't handle /> tags too well. 2020-05-25 10:09:26 +02:00
Tra5is
aeb6d2b0c3
When enabling rules prefixed with '# ' consume the extra space (#4129) 2020-05-25 08:57:05 +02:00
Franco Fichtner
92f2163cf3 src: style fix 2020-05-25 08:40:35 +02:00
Ad Schellevis
ae39e9be17 proxy: add missing ipv6 listener, from https://github.com/opnsense/core/pull/3882 2020-05-24 19:35:03 +02:00
Michael
8a630f40bb
Update Miscellaneous.xml (#4057) 2020-05-24 18:41:14 +02:00
Ad Schellevis
93528a79ba unboundplus: Use 'forward-tls-upstream' config key 
While 'forward-ssl-upstream' is indeed an alias/alternative syntax for the '*tls*' option, therefore it's more a cosmetic thing - specially because it's called DNS over TLS. Just to be consistent with terms used.

from dc7980a3e0
 2020-05-24 18:39:27 +02:00
Ad Schellevis
23729215e4 jquery: switch to 3.5.1, cleanup old version, leave one backup in place (3.4.1) for smoother migrations. closes https://github.com/opnsense/core/issues/4127 
although the changes between 3.4.1 and 3.5.1 are probably minor, the cleanups should not be released before 20.7
 2020-05-24 18:30:30 +02:00
Ad Schellevis
323c2f8286 firewall: categories typeahead issue, closes https://github.com/opnsense/core/issues/4126 
Although this isn't a great fix, we can prevent forking https://github.com/bassjobsen/Bootstrap-3-Typeahead for now and hope someone fixes the relative issue some day.
When Typeahead inputs aren't in relative containers, postition() returns the correct values, which is why our quick menu search likely still works.
 2020-05-24 15:19:29 +02:00
Franco Fichtner
e1365b50ea interfaces: fix a typo 2020-05-24 10:48:09 +02:00
Ad Schellevis
7bec4829f5 hasync: missing system.timeservers section 2020-05-19 22:12:14 +02:00
Ad Schellevis
7bc8922c4b whitespace 2020-05-19 22:02:43 +02:00
Ad Schellevis
33d7f9d247 hasync: network time missing in core, add core_xmlrpc_sync() hook for registration. 2020-05-19 22:00:36 +02:00
Ad Schellevis
be2cf16dc1 crash_reporter.php: change wording, some people don't seem to understand "bug" is a general concept, which could be related to all sorts of things. 2020-05-19 20:10:00 +02:00
Franco Fichtner
491a010ed7 interfaces: style sweep for Loopback register 2020-05-22 08:23:01 +02:00
Ad Schellevis
2ac50779f2
IDPS: Adding Profile Detection (#4124) 
* Adding Profile Detection

Made profile detection configurable.

Best practices by suricata is "high", keeping medium as default.

* use form style attribute to mark all advanced detection fields
* remove extra "hidden" style
* $("#ids\\.general\\.detect\\.Profile").change() is automatically being called after receiving data
* move settings to OPNsense.IDS.general.detect, to clarify where these properties belong to. Since suricata has a lot of options, chances are that toclient/toServer overlap by some future addition.

Co-authored-by: Xeroxxx <1109954+Xeroxxx@users.noreply.github.com>
 2020-05-21 10:36:24 +02:00
Ad Schellevis
3a20e5a614 firewall:alias, show partial alias content in tooltip, emphasis description and remove legacy "descr" support (non mvc model). closes https://github.com/opnsense/core/pull/4120 2020-05-19 09:51:31 +02:00
Ad Schellevis
c2123d5404 systemhealth: log viewer, fix typo 2020-05-19 02:10:20 +02:00
Franco Fichtner
354b44690f system: keep comma in previous 2020-05-18 15:05:17 +02:00
Ad Schellevis
59db45c6e8 syslog: remove unused keyword 2020-05-18 11:57:38 +02:00
Ad Schellevis
a95f943965 tunables: default net.inet.icmp.reply_from_interface to 1. 
The helpt text (man icmp) suggests this is a better default in our usecase:
-----------
(boolean) Use the IP address of the interface the
packet came through in for responses to packets which
are not directly addressed to us.  If enabled, this
rule is processed before all others.  By default,
continue with normal source selection.  Enabling this
option is particularly useful on routers because it
makes external traceroutes show the actual path a
packet has taken instead of the possibly different
return path.
-----------

ref https://github.com/opnsense/core/issues/4094
 2020-05-17 11:22:02 +02:00
Ad Schellevis
2d052a9bde IDPS: simplify download parser a bit further as suggested by @Tra5is (38ea28d0ad) 2020-05-15 18:53:16 +02:00
Ad Schellevis
38ea28d0ad IDPS: rule download, less sensitive rule parsing. for https://github.com/opnsense/core/pull/4115 2020-05-15 11:36:42 +02:00
Franco Fichtner
7b6e7af079 importer: misaligned password reset 2020-05-15 10:19:08 +02:00
Franco Fichtner
dd9be2e497 src: style sweep 2020-05-15 08:30:04 +02:00
Fabian Franz BSc
ef1bd41789
nextcloud: add support for upstream LDAP accounts (#4103) 2020-05-14 19:59:07 +02:00
Franco Fichtner
9effd6afda system: small refactor in default route code 2020-05-14 15:27:19 +02:00
Ad Schellevis
cfa0b713cd Firewall/alias: keep help_block_alias for https://github.com/opnsense/core/pull/4111 2020-05-14 14:14:34 +02:00
Ad Schellevis
d3e89eeb09 Merge branch 'Modify-Alias-GUI-text-to-be-more-intuitive' of https://github.com/marjohn56/core into marjohn56-Modify-Alias-GUI-text-to-be-more-intuitive 2020-05-14 14:11:18 +02:00
Martin Wasley
bb7c101d3a Update text in Aliases to be more intuitive 
Change text and add help.
 2020-05-14 09:42:20 +01:00
Michael
4ea15d6698
Proxy: add connect_timeout (#4112) 2020-05-14 08:30:52 +02:00
Ad Schellevis
52999e357a ssl_ciphers.py: add option to return a key value list, needed for https://github.com/opnsense/plugins/issues/1829 2020-05-13 15:30:25 +02:00
Ad Schellevis
bf30d129ce Proxy/MVC: add "S" option for AllowDynamic in InterfaceField type to select only static dynamic ip's, so we can select lo0 in proxy. 
Although it's not perfect, this seems like the least destructive option at the moment. Eventually we might need to refactor some of the proxy/interface selection, since it doesn't support ipv6 either.
 2020-05-13 14:34:09 +02:00
Ad Schellevis
c3d2dcfa21 iplugins/interfaces: register lo0, add ::1/128 as well 2020-05-13 14:04:03 +02:00
Ad Schellevis
57bd1f2b05 plugins/interfaces: register lo0 2020-05-13 13:40:58 +02:00
Franco Fichtner
42e9d86d68 radvd: use default value "0" on unknown mtu 2020-05-13 09:36:15 +02:00
Ad Schellevis
2eb1ee5f53 MVC: reference constraint pointing validation results to the wrong field (shows validation message on field where the option is set, should be the one it's pointing to). 
ref https://github.com/opnsense/plugins/pull/1733
 2020-05-12 12:43:07 +02:00
Franco Fichtner
02428bf5dd interfaces: remove this, new dhcp6c seems to work fine 2020-05-12 09:14:44 +02:00
Franco Fichtner
11017fa4ab system: fix static gatway wizard handing; closes #3873 
Mismatched our automatic gateway naming, assumed IPv6 on IPv4 and
did not disable monitor by default as we recommend.
 2020-05-11 05:10:55 +02:00