lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-15 00:54:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,294 Commits 1 Branch 0 Tags
Commit Graph

6683 Commits

Author SHA1 Message Date
Franco Fichtner
7e7af55d02 firmware: add GUI backend update glue 
This performs the full update, now we need to figure out how
this will look from the frontend side...
 2017-07-09 12:09:30 +02:00
Franco Fichtner
1b970b3752 rc: batch-run bootup command before starting services; closes #1699 2017-07-09 11:50:27 +02:00
Franco Fichtner
d4b0b2af88 rc: rebuild the command line backup restore 
This is a shell script to make recovery as recoverable as
possible, now with a clear license and the ability to apply
inline or reboot for a clean configuration cycle.
 2017-07-09 10:51:55 +02:00
Franco Fichtner
9d392294ab unbound: remove recently recovered optimization, because... 
error: setsockopt(..., SO_RCVBUF, ...) failed: No buffer space available
 2017-07-07 10:35:06 +02:00
Franco Fichtner
92d1886cde layout: update to Font-Awesome 4.7 2017-07-06 13:03:06 +02:00
Ad Schellevis
511cdd471e filter, cleanup, closes https://github.com/opnsense/core/issues/1681 2017-07-04 20:31:24 +02:00
Ad Schellevis
e5711dfb25 filter, replace macro with internal name, for https://github.com/opnsense/core/issues/1702 
In the longrun all macro entries should go, but for now a replace should be sufficient.
 2017-07-04 20:22:17 +02:00
Ad Schellevis
d57dbf5a07 ipsec, cleanup non-functional nat before ipsec logic and ui for 17.7. In case the feature will reemerge at some point, it would be better to move it to the firewall section anyway. for reference about this long standing issue see https://github.com/opnsense/core/issues/440 2017-07-04 20:05:45 +02:00
Ad Schellevis
c5f11e99a0 webgui, harden ssl. https://weakdh.org/ 2017-07-03 20:32:09 +02:00
Ad Schellevis
c7786bded7 rework last, add Secure/HttpOnly attributes on logout, remove duplicate sessionid cookie 2017-07-03 19:43:53 +02:00
Ad Schellevis
73dbbcd72c csrf/cookie, fix Secure Attribute and align session cookie in authgui.inc 2017-07-03 19:17:13 +02:00
Ad Schellevis
ac75ef6f10 mvc, add setMultiple() to OptionField, closes https://github.com/opnsense/core/issues/1693 2017-06-26 20:14:44 +02:00
Franco Fichtner
70253d9448 pkg: add fingerprint for 17.7 signing 2017-06-26 00:41:52 +02:00
Franco Fichtner
0f73d88f4f unbound: tweak previous 2017-06-25 16:21:46 +02:00
Franco Fichtner
32e545ef7a unbound: warning in PHP 7.1, the code can't really work 2017-06-25 16:16:10 +02:00
Franco Fichtner
8f15ca00a9 dyndns: move to plugins 2017-06-25 14:45:51 +02:00
Franco Fichtner
7884e3456e rfc2136: move to plugins 2017-06-25 14:34:59 +02:00
Franco Fichtner
59200fb2df system: Swedish was removed due to no progress 2017-06-25 13:35:44 +02:00
Alexander Leisentritt
6d8812c8a4 Fix DynDNS update for IPv6 2017-06-23 22:40:09 +02:00
Ad Schellevis
4d92687a6c filter, rule generation. don't wrap aliases in curly brackets, it seems to crash when a to port is written like {$portalias} 2017-06-22 21:11:23 +02:00
Ad Schellevis
efd256585a ipsec, add routed when SA is installed and routed, for https://github.com/opnsense/core/issues/1688 2017-06-22 20:10:24 +02:00
Ad Schellevis
d5c6ce3576 ipsec/diag, list non routed connections, for https://github.com/opnsense/core/issues/1688 2017-06-22 19:54:12 +02:00
Ad Schellevis
203ba24047 rework "item in" for our Volt templates, closes https://github.com/opnsense/core/issues/1682 2017-06-14 18:35:34 +02:00
Franco Fichtner
8527911968 system: remove duplicated hint 
We added the former, but it basically says the same thing.  ;)
 2017-06-13 08:31:27 +02:00
Ad Schellevis
88c5005d0c firewall, plugin, statetype only for type pass 2017-06-12 19:27:30 +02:00
Franco Fichtner
0d70a9c9ee test: "repair" tests for PHPUnit 6 2017-06-12 19:22:20 +02:00
Ad Schellevis
9ed1bd79f2 getInterfaceGateways() should only return first found entry per ipprotocol 2017-06-12 13:01:32 +02:00
Ad Schellevis
013f3c7e8f remove debug output 2017-06-12 13:01:32 +02:00
Ad Schellevis
d0ef517669 firewall, plugin. Add schedules back again, move state kill to end of processing and out of the rule registration. 2017-06-12 13:01:32 +02:00
Ad Schellevis
d18c97e731 ditch filter_generate_gateways() 2017-06-12 13:01:32 +02:00
Ad Schellevis
1a3cd61dee move skip_rules_gw_down feature to rule processing 2017-06-12 13:01:32 +02:00
Ad Schellevis
b4553f0454 kill global $GatewaysList in plugins.inc.d/pf.inc 2017-06-12 13:01:32 +02:00
Ad Schellevis
ce66450b4d kill global $GatewaysList; from firewall_nat_out.php 2017-06-12 13:01:32 +02:00
Ad Schellevis
64d362d5e3 firewall, plugin. missing tcpflags1, tcpflags2, tcpflags_any handling 2017-06-12 13:01:32 +02:00
Ad Schellevis
59a6705a28 firewall, cleanup old code 2017-06-12 13:01:32 +02:00
Ad Schellevis
ddc623ccd6 firewall, plugin. register user rules into framework. 2017-06-12 13:01:32 +02:00
Ad Schellevis
063a883bb0 firewall, plugin. move filter_generate_ipsec_rules() out of the way, move to plugin type rules later. 2017-06-12 13:01:32 +02:00
Ad Schellevis
522eec818a move allow outbound rules to filter_core_rules_system(). non functional change. 2017-06-12 13:01:32 +02:00
Ad Schellevis
594bfeeea4 firewall, plugin. start moving user generated rules into the same logic as the plugins. step by step. 
First enable our gateways and gatewaygroups on our plugin system and setup reply-to attributes in interface metadata (could be temporary, but good enough for now)
 2017-06-12 13:01:32 +02:00
Ad Schellevis
316ce1e05a firewall / plugin, add getInterfaceGateways() and additional metadata to fetch all related gateways. Needed for some of the current internal rules. 2017-06-11 17:11:34 +02:00
Franco Fichtner
3226dce27d interfaces: fix py-netaddr mac listing for new version 2017-06-11 09:36:16 +02:00
Franco Fichtner
f2f3b0c0c0 intrusion detection: wow, jinja is hard 2017-06-10 20:42:31 +02:00
Franco Fichtner
da313a94d9 intrusion detection: further reworked suricata rc script 2017-06-10 20:38:49 +02:00
Franco Fichtner
ca10d0a2f9 interfaces: remove renaming of interfaces 2017-06-10 20:06:50 +02:00
Franco Fichtner
a57d0e88c2 intrusion detection: undo previous, switch to --pcap=intX 2017-06-09 19:53:40 +02:00
Franco Fichtner
6223e0b558 intrusion detection: not my day ;) #1233 2017-06-09 19:40:35 +02:00
Franco Fichtner
f826593e2f intrusion detection: two times if #1233 2017-06-09 19:34:05 +02:00
Franco Fichtner
a298341db6 intrusion detection: or maybe this... #1233 2017-06-09 19:31:54 +02:00
Franco Fichtner
c9b7cdfe1f intrusion detection: fudge --pcap arg, maybe it helps with #1233 2017-06-09 19:15:29 +02:00
Ad Schellevis
983ae690cb rework prev 2017-06-09 11:30:38 +02:00