Franco Fichtner
d2b9c6eebd
src: style sweep
2022-01-31 08:43:25 +01:00
kulikov-a
f530e4fb4b
Logs: add backward compatibility ( #5522 )
2022-01-30 14:05:28 +01:00
Ad Schellevis
52d3e7c676
system: routes: configuration - changing interface gateway will be ignored as the delete/add combination adds the new gateway in it's delete action.
...
Looks like a very old regression in ab1cadea90https://github.com/opnsense/core/issues/5304 ) and persist the requested state, but short term it probably makes more sense to fix the "route delete" action, so we can close https://github.com/opnsense/core/issues/5520
2022-01-28 21:02:23 +01:00
ppascher
130ef3a6e7
Fix typo causing error on IPv6 login
2022-01-28 19:38:17 +01:00
kulikov-a
317b3601d0
Firewall / Aliases - encode rules names ( #5507 )
...
encode firewall rules descriptions to prevent possible XSS
2022-01-27 19:37:31 +01:00
Ad Schellevis
eac975d7df
Firewall: Aliases - exclude external aliass for nesting as these will be empty according to our administration.
2022-01-27 13:53:57 +01:00
Franco Fichtner
d1dbeb3d5e
firmware: update upgrade hint
2022-01-27 11:44:15 +01:00
Franco Fichtner
602a5b416d
firmware: patch header in consistently
...
The information is relatively helpful so we might as well
complete the script use.
2022-01-26 08:06:06 +01:00
Franco Fichtner
546bfd41ba
src: one more whitespace issue in previous
2022-01-26 08:00:00 +01:00
Ad Schellevis
70d113db59
whitespace (^M)
2022-01-25 15:37:09 +01:00
Franco Fichtner
dd5f357f17
firmware: fix import listing for one ZFS pool
2022-01-25 10:28:08 +01:00
Franco Fichtner
84a41ab1e0
pkg: fix plist
2022-01-25 10:26:22 +01:00
Ad Schellevis
b01da7a918
Fr5487 adaptive timeouts ( #5502 )
...
* per-rule adaptive timeouts
allow per-rule adaptive timeouts. 0 is possibe to disable adaptive timeouts
* Firewall / Rules - allow per-rule adaptive timeouts, small cleanups for https://github.com/opnsense/core/pull/5492
* Firewall / Rules - allow per-rule adaptive timeouts, values may be 0 as well, so "positive" should be "non-negative" for https://github.com/opnsense/core/pull/5492
Co-authored-by: kulikov-a <36099472+kulikov-a@users.noreply.github.com>
2022-01-25 08:49:16 +01:00
Stephan de Wit
161d24650b
unbound: overrides: migrate to mvc model ( #5488 )
...
* unbound: overrides: migrate to mvc model
* unbound: overrides: generate host_entries via model, revert template generation
* unbound: overrides migration: fix missing include
* unbound: overrides: clean up
Co-authored-by: Stephan de Wit <stephan.de.wit@deciso.com>
2022-01-24 20:19:06 +01:00
Stephan de Wit
4ca55d9dc6
MVC - BaseField: Overload __isset() magic method ( #5499 )
2022-01-24 15:29:06 +01:00
Franco Fichtner
fd778ae210
firmware: to pull off previous we need to support -l
2022-01-24 10:05:22 +01:00
Franco Fichtner
910c1f2a7b
firmware: more changes here in the future
2022-01-24 09:49:09 +01:00
Franco Fichtner
a7007e08b0
firmware: almost there
2022-01-24 08:45:08 +01:00
Franco Fichtner
ff7a0a9d1b
interfaces: reduce diff
2022-01-24 08:24:57 +01:00
Franco Fichtner
28e4cf9172
system: try to take into account 522ba38061a91 here
2022-01-24 08:13:37 +01:00
kulikov-a
279de63e63
util/log_error: keep it clear. add a log_msg ( #5498 )
...
add log_msg() and keep log_error() as is.
2022-01-23 19:50:21 +01:00
kulikov-a
9225fc3b40
util/log_error: use severity levels ( #5497 )
...
* extend log_error to support levels
* mark auth messages as notice
2022-01-23 11:45:16 +01:00
Ad Schellevis
ad2a5758d9
Firewall: Settings: Normalization - support "no scrub" option so specific traffic can easily be excluded from scubbing.
2022-01-22 19:31:11 +01:00
Franco Fichtner
123808d9c3
dhcp: fix array access when no alias/carp was found
...
Simplify code while at it.
PR: https://forum.opnsense.org/index.php?topic=26456.0
2022-01-21 15:32:52 +01:00
Ad Schellevis
cebee292d2
Services / Captiveportal - prevent session removal crashing out when we there's no IP address registered
2022-01-20 18:22:51 +01:00
Franco Fichtner
6560bd9bbc
firmware: use new feature of opnsense-update
...
Remembers the last packages set upgraded to to avoid too
much spurious upgrade attempts.
2022-01-20 11:34:17 +01:00
Franco Fichtner
18b352b61e
system: spacing
2022-01-20 10:03:13 +01:00
Ad Schellevis
7869c116a7
Web application security measuers, explain where to disable rebind if needed ( https://github.com/opnsense/core/issues/5481 )
2022-01-20 09:52:27 +01:00
Franco Fichtner
f5964434e6
interfaces: remove link remnants from GRE
...
CC: @adschellevis
2022-01-20 07:46:19 +01:00
Ad Schellevis
15230c70f6
Interfaces: Other Types: GRE - remove non-existing link parameters inherited back in 2014.
...
Although "link1" does include some code, 22.1 should be safe to drop this hardly used feature (people can add static routes if needed).
2022-01-19 14:14:09 +01:00
Ad Schellevis
17052f04e4
Interfaces: Other Types: GIF - align user interface with base system options.
...
* Route caching (link0) was removed in 2014 [1]
* Add "Disable ingressn filtering" while here, although it's not new [2], no need to hide it either.
[1] 0b9f5f8a5f3384154590
2022-01-19 13:31:16 +01:00
Franco Fichtner
9181b5136d
firmware: print these here for diagnostics as well
2022-01-19 13:23:13 +01:00
Franco Fichtner
74958f2032
interfaces: get_interface_list() is a strange one for sure
...
It's supposed to be handing out physical interfaces only but
callers decided to exclude stuff they didn't want because it
is not physical instead of fixing the function.
2022-01-19 12:40:19 +01:00
Franco Fichtner
a26b45977b
console: strangely enough the code doesn't work as intended
2022-01-19 12:18:17 +01:00
Franco Fichtner
5a27e1988b
console: use full list at the end
2022-01-19 11:57:23 +01:00
Franco Fichtner
ffe1b675d1
console: improve input of LAGG
2022-01-19 11:52:43 +01:00
Franco Fichtner
d958c1d9c2
console: spacing still not optimal
2022-01-19 11:45:48 +01:00
Franco Fichtner
73811975d6
console: improve spacing
2022-01-19 11:39:06 +01:00
Franco Fichtner
7b41c2485e
console: skip LAGG/VLAN on empty interfaces, print full list at end only
2022-01-19 11:35:03 +01:00
Franco Fichtner
296ad203d6
console: spice things up further
2022-01-19 11:20:53 +01:00
Franco Fichtner
03f95e2ff9
config: some more pretty print
2022-01-19 11:08:35 +01:00
Franco Fichtner
ef1d0a7a01
console: a small audit and LAGG functionality test
...
Seems to work fine, but the new and old code has some oddities like
obsessing over the "up" flag, but we set all interfaces up before
we start the process. Some style updates and separation of use
while here.
Splitting on /\d/ seems overly toxic when the device is called
e.g. em10_vlan12 so address that in the utility code where it is
carried out. get_interface_list() is probably a function that
should be removed in the mid-term.
2022-01-19 10:53:21 +01:00
Franco Fichtner
c36385ae1c
firmware: 22.1.r2 is also possible now
2022-01-19 10:12:33 +01:00
Franco Fichtner
6728fd1b67
firewall: improve previous
2022-01-19 09:56:04 +01:00
Ad Schellevis
e7e09b52aa
Firewall : Shaper - support Gbit in pipe's
2022-01-19 09:27:27 +01:00
Ad Schellevis
09083b2404
Services : Intrusion Detection - make sure migration to 1.0.7 doesn't crash. ref https://github.com/opnsense/core/pull/5482
2022-01-19 09:08:37 +01:00
Ad Schellevis
99c9dc3da5
Firewall: Shaper - add kernel constraint for kernel bandwidth limitation, closes https://github.com/opnsense/core/issues/5224
2022-01-18 18:37:37 +01:00
Ad Schellevis
11b95376d9
Interfaces: Other Types: Bridge : improve validations and fix defaults as described by ifconfig(8)
2022-01-18 18:18:39 +01:00
Franco Fichtner
f5ea62e311
system: usual TAB-dance
2022-01-18 16:48:54 +01:00
Franco Fichtner
17b294b38e
system: generic rewrite of ssh advanced opts
...
o Batch the backend call calling from GUI once and
only if needed from configuration.
o Turn the configuration into a generic loop.
o Move advanced options to the back of the configuration.
o Warning level for both log messages.
2022-01-18 16:42:16 +01:00
