lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-18 02:25:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
12,486 Commits 1 Branch 0 Tags
Commit Graph

4072 Commits

Author SHA1 Message Date
Maurice Walker
028b129f87
radvd: remove ::/0 route (#4692) 
As discussed back in #3343: Router Advertisements should never contain a ::/0 route.
A default route is indicated by setting the Router Lifetime to > 0. This was originally fixed
by @fichtner in e67dade, but the ::/0 route is still added for CARP interfaces and "static
mode" interfaces (introduced in 66dc0e9).
 2021-02-10 08:25:45 +01:00
Franco Fichtner
20835a92b1 system: disable clog by default 2021-02-08 09:41:40 +01:00
Franco Fichtner
efd880b9db firmware: reroot is buggy, revert and rename while at it 2021-02-03 08:58:36 +01:00
Franco Fichtner
68b7c4ccfa firmware: revoke old business key 2021-02-02 15:33:04 +01:00
Franco Fichtner
090dd89aa1 interfaces: finally fix IPv6 misalignment in get_interfaces_info() 
Related to: https://github.com/opnsense/core/issues/4651
 2021-02-02 14:40:19 +01:00
Franco Fichtner
3782c3856d firmware: condense previous 2021-02-01 11:31:45 +01:00
Franco Fichtner
b029e67c21 firmware: more annotations 2021-02-01 11:12:43 +01:00
Franco Fichtner
9121ee88ce rc: refactor, add missing copyright header, rename 
Scott committed this in 2005 so it is safe to assume the BSD
license fits...

See also: https://github.com/pfsense/pfsense/commit/fa94531eaba
 2021-02-01 09:46:45 +01:00
Franco Fichtner
e6ced08e3d system: make a note that comconsole_port probably works just as well 2021-01-26 19:19:52 +01:00
Franco Fichtner
372e1cf5e5 system: omit console hint in existing setups 2021-01-26 10:19:43 +01:00
Franco Fichtner
d8711af025 system: set hw.uart.console appropriately 
PR: https://github.com/opnsense/tools/issues/209
 2021-01-26 10:13:51 +01:00
Marcel Hofer
866e8f2145
fix issue #4025: 6rd with single /64 prefix (#4635) 
Builds upon the 6rd routing fixes discussed in https://forum.opnsense.org/index.php?topic=20260.0

Instead of setting the calculated /64 subnet length on the _stf interface, I set the original ISP provided subnet length.
And change the gateway to be inside the ISP provided prefix instead of the calculated /64.

wan address will still be the same but the wider subnet solves any routing issues with single /64 prefixes
 2021-01-25 19:18:51 +01:00
Franco Fichtner
cde8b431c2 src: style and whitespace updates 2021-01-24 20:03:06 +01:00
vnxme
703faa82ff
interfaces.inc: Improve guess_interface_from_ip() (#4523) 2021-01-21 15:00:24 +01:00
Martin Wasley
8ded045899 Added toggle function and associated code for enable/disable RDNSS in dhcpv6 Moved Configuration to RADVD interface 
PR: https://github.com/opnsense/core/issues/4537
 2021-01-21 13:28:32 +01:00
Franco Fichtner
5c110105c6 dpinger: empty() forgives a faulty look-ahead, save two checks this way 2021-01-21 11:01:22 +01:00
Franco Fichtner
00e6895821 interfaces: a bit for #4622 
Make sure address deletion works for IPv4 and IPv6 always.
 2021-01-21 09:52:20 +01:00
Franco Fichtner
672896fd61 interfaces: fix typo, visual clutter in overview and add deprecated tag 2021-01-20 17:23:40 +01:00
Franco Fichtner
96b34bb506 dpinger: address is an array, expand after check 
PR: https://forum.opnsense.org/index.php?topic=21003.0
 2021-01-20 15:32:36 +01:00
Franco Fichtner
171d5cda9f interfaces: treat deprecated addresses as non-primary 2021-01-19 12:23:14 +01:00
Franco Fichtner
9ef6ff335f dhcp: deprecate prefixes in radvd, new try on 2.19 2021-01-19 12:22:38 +01:00
Franco Fichtner
7d5b8bc24e firmware: oops, to bring stderr into pipe move redirect here #4500 2021-01-16 13:37:56 +01:00
Franco Fichtner
74efc777fc firmware: only reroot on base upgrade #4500 2021-01-16 12:16:18 +01:00
Franco Fichtner
166b199de6 firmware: deal with *.pkgsave, offload post install bits to rc.syshook 
PR: https://github.com/opnsense/core/issues/4574
 2021-01-14 09:20:33 +01:00
Franco Fichtner
3772ca0a0c opendns: add standalone mode; closes #3857 2021-01-13 17:42:02 +01:00
Franco Fichtner
4992c11a53 system: reconfigure routes on bootup, may help #3414 2021-01-13 09:18:34 +01:00
Franco Fichtner
7e7c9901eb system: should be the case via 993c9e545fb5 2021-01-10 19:33:46 +01:00
Franco Fichtner
93e5105f9e src: style sweep 2021-01-08 19:44:45 +01:00
Ad Schellevis
993c9e545f WebGui-Auth: move authentication to unified service implementation. closes https://github.com/opnsense/core/issues/4505 
eventually we might want to consider using pam, but at the moment this won't offer much more and would involve additional complexity when it comes to password expiry.
 2021-01-08 18:46:30 +01:00
Ad Schellevis
a57abe792f legacy: ditch is_validaliasname() for good. closes https://github.com/opnsense/core/issues/4470 2021-01-08 17:33:00 +01:00
Franco Fichtner
6cdf5bb48d openssh: honour MAX_LISTEN_SOCKS; closes #4403 2021-01-08 09:32:24 +01:00
Franco Fichtner
646628e593 dhcp: style sweep 2021-01-06 19:30:12 +01:00
Ad Schellevis
b185418cd7 filter / automatic IPv6 rules, add RFC4890 as suggested by @shonjir for https://github.com/opnsense/core/issues/4565 2021-01-06 18:21:47 +01:00
Martin Wasley
61ea8d7993
Correct DHCPv6 Custom Options Unsigned Integer field (#4573) 
Custom Options is incorrectly inserting quotes around the integer value.
 2021-01-06 11:22:45 +01:00
Franco Fichtner
8c91019880 system: ok, extra mile on previous 2021-01-05 15:45:59 +01:00
Franco Fichtner
f8844af85d system: unify code to extract issuer/subject 
The code was adding an extra ", " at the end.
 2021-01-05 15:31:33 +01:00
Franco Fichtner
444b8f405e system: TLS compatibility in custom cipher option for now 2021-01-05 15:01:12 +01:00
Franco Fichtner
f29c0b9728 system: pick up recommendations from #4533 
Since the new default is TLS 1.2 only use the upstream recommended
list and fall back to TLS 1.1 and above for less secure ciphers if
the user specificed them manually.

We could support TLS 1.3 now but that seems to be an exclusive option
without a fallback.
 2021-01-05 13:46:30 +01:00
Franco Fichtner
a90ecbab5f system: generate a better self-signed certificate 2021-01-05 13:29:56 +01:00
Franco Fichtner
cf609e2e6a src: small style update 2021-01-05 09:12:02 +01:00
Franco Fichtner
9e2f42abb8 src: style sweep 2021-01-05 08:38:10 +01:00
Franco Fichtner
683f452295 firmware: add fingerprint for 21.1 2021-01-04 14:49:16 +01:00
Franco Fichtner
7216e3a241 system: allow self-signed renew for web GUI; closes #4567 
The command to issue a reset is:

  # configctl webgui restart renew
 2021-01-04 11:28:30 +01:00
Franco Fichtner
4e0fdb516a firewall: add type 128 to outgoing IPv6 essentials #4565 2021-01-03 21:39:52 +01:00
Franco Fichtner
7fda1670ce interfaces: l2tp/pptp cleanup; closes #2707 
The interfaces are created by mpd5 daemon during configuration.
We do not seem to have more than one issue here: IPv6 disable
is too soon but that is easily fixed.  Device creation moves
on ok and there is no apparent error in functionality with or
without it.

While here fix the link when a $pppid is set and properly protect
the redirect url.  Previously empty() was too strict and it ignored
$pppid of zero.

Also remove spurious "IP Address" help text from PPP device
configuration.
 2021-01-03 20:45:58 +01:00
Franco Fichtner
6b407b51dd openvpn: fix typo in wizard redirect 2021-01-03 20:42:35 +01:00
Ad Schellevis
f3e6a227e5 filter: refactor filter_rules_legacy while fixing antispoof issues on bridge interfaces. closes https://github.com/opnsense/core/issues/4564 2021-01-03 14:18:13 +01:00
Franco Fichtner
2053a24600 src: more EOD/EOF usage with missing newline 
Not fatal but better to fix style now.
 2020-12-21 21:20:33 +01:00
Ad Schellevis
28fef1f4e9 xmlrpc: when debug output is enabled, show number of bytes received. 2020-12-21 19:37:10 +01:00
Ad Schellevis
1adefd7440 DNSmasq: use domain override for static hosts, closes https://github.com/opnsense/core/pull/4539 2020-12-21 11:21:55 +01:00