lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-20 03:16:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
10,624 Commits 1 Branch 0 Tags
Commit Graph

3506 Commits

Author SHA1 Message Date
Kirpa Sergey
26f3d71662 Cleanup backups after saving in MVC 
Refactoring: Move legacy function cleanup_backups() to
OPNsense/Core/Config::cleanupBackups()
 2019-03-20 09:58:37 +02:00
Ad Schellevis
abcf334e92 filter, better describe force gateway rule. related to https://github.com/opnsense/core/issues/3312 2019-03-19 18:15:25 +01:00
Michael Steenbeek
3f673e3ce6 Fix it's, repeated words and a/an (#3332) 2019-03-19 17:08:47 +01:00
Ad Schellevis
a66852b433 gwlb.inc, an empty gateway group can cause "Warning: count(): Parameter must be an array or an object that implements Countable in /usr/local/etc/inc/gwlb.inc on line 757" 2019-03-19 13:42:53 +01:00
Ad Schellevis
15b9be0369 IPsec, route-based, don't add reqid when not using route-based, although it should funciton without issues, people seem to report problems with it. 2019-03-19 11:36:54 +01:00
Franco Fichtner
f2816f35ae interfaces: we dedup later on... 2019-03-18 07:47:10 +01:00
Franco Fichtner
4a46f7a09f src: style sweep 2019-03-16 15:15:24 +01:00
Franco Fichtner
429efafd8c interfaces: dedup interfaces while here 2019-03-16 14:44:56 +01:00
Franco Fichtner
a74ae3ab4f interfaces: take all unknown arguments as real interfaces; closes #3342 2019-03-16 14:30:53 +01:00
Franco Fichtner
d017fe2d4b system: properly initialise $filter array 2019-03-16 14:02:12 +01:00
Ad Schellevis
63141c019b filter, describe and reference "all the things" for https://github.com/opnsense/core/issues/3312 2019-03-15 15:46:49 +01:00
Ad Schellevis
33d687ae0b filter, wrong ref in auto lockout, for https://github.com/opnsense/core/issues/3312 2019-03-15 09:43:34 +01:00
Ad Schellevis
6452a8b321 filter: link rule hash to origin, related to https://github.com/opnsense/core/issues/3312 
Now we know where rules come from, we could use our live log to link to the place of origin.

This commit adds a couple of things:

- Extend plug to generate a rule hash for automatically generated (plugin) rules
- Support rule iteration in the rule framework, for easy access of registered rules
- Support #ref tag to point to place of origin (endpoint + field where option is set)
- Adds some examples in existing filter plugin code (more to add later)
- Adds a link to rid fields in livelog, which opens a new window with the original rule or setting.
 2019-03-14 18:41:51 +01:00
Franco Fichtner
cf721cf4b1 ipsec: only apply mobile PFS to mobile phase 2; closes #3323 2019-03-14 08:11:01 +01:00
Ad Schellevis
5f79544e59 IPsec Mobile Client: Split DNS, INTERNAL_DNS_DOMAIN, closes https://github.com/opnsense/core/issues/3325 2019-03-13 21:35:15 +01:00
Ad Schellevis
531c905572 filter, minor regression in eeae084150 , for https://github.com/opnsense/core/issues/3312 2019-03-13 17:24:28 +01:00
Ad Schellevis
c6f8c46709 interfaces, raw config access, leading to PHP Warning: Illegal string offset 'if', see https://github.com/opnsense/core/issues/3231 2019-03-13 10:11:21 +01:00
Ad Schellevis
eeae084150 filter, work in progress rule statistics https://github.com/opnsense/core/issues/3312 
replace label with md5 hash of the rule and align live log
 2019-03-12 18:43:46 +01:00
Thomas du Boÿs
fcbb92fe51 Fix facility for rtsold log about dhcp6c 2019-03-12 15:19:29 +01:00
Ad Schellevis
dfd48d2934 ipsec, mixed-up includes see https://github.com/opnsense/core/pull/3311 2019-03-12 14:38:05 +01:00
Ad Schellevis
a4d157db0b IPsec, change paths for https://github.com/opnsense/core/pull/3311 to align more with the standard sample configurations we ship 2019-03-12 11:10:13 +01:00
Ad Schellevis
a116ab9f54 Merge branch 'ipsec-includes' of https://github.com/godmodelabs/opnsense-core into godmodelabs-ipsec-includes 2019-03-12 10:49:04 +01:00
Ad Schellevis
c8e905c404 IPsec, double quote UNITY_BANNER, closes https://github.com/opnsense/core/issues/3317 2019-03-12 10:39:03 +01:00
Ad Schellevis
98673a0b30 filter/aliases, add optional table counters for https://github.com/opnsense/core/issues/3313 
- todo: parse statistics
 2019-03-11 16:56:40 +01:00
Franco Fichtner
a2b0a7d59e system: improve gateway status return; closes #3281 2019-03-11 12:48:33 +01:00
Mark Plomer
acdf14e636 implemented wildcard includes for ipsec/strongswan 2019-03-11 10:09:03 +01:00
Ad Schellevis
9d6bf15f13 fix is_interface_mismatch() for VTI, for https://github.com/opnsense/core/issues/2332 2019-03-06 14:32:52 +01:00
Ad Schellevis
2c2eca7e2f OpenVPN server, support static-challenge formatted password, closes https://github.com/opnsense/core/issues/3290 2019-03-06 10:20:02 +01:00
Ad Schellevis
ee8fd03c33 IPSec / routed (VTI), we shouldn't add route-to rules for ipsec interfaces, but the same likely counts for all that's plugged in automatically. for https://github.com/opnsense/core/issues/2332 2019-03-05 17:04:22 +01:00
Ad Schellevis
139ef623dc IPSec / routed (VTI), fix previous, https://github.com/opnsense/core/issues/2332 2019-03-05 15:59:17 +01:00
Ad Schellevis
77743cfc09 IPSec / routed (VTI), create virtual terminal interfaces for https://github.com/opnsense/core/issues/2332 
- ipsec_configure_vti() synchronizes local configuration with current ipsec% interfaces
- ipsec_interfaces() automatically adds these interfaces to the interfaces list, so the user can add a gateway and routes
 2019-03-05 15:27:54 +01:00
Ad Schellevis
8a55989d3b Interfaces, parse tunnel endpoints in legacy_interfaces_details(), required for https://github.com/opnsense/core/issues/2332 2019-03-05 11:44:49 +01:00
Ad Schellevis
858f68d7b9 IPsec, while working on https://github.com/opnsense/core/issues/2332 found some weirdness around ipsec_get_phase1_src() 
both get_interface_ipv6() and get_interface_ip() call get_failover_interface() which obscures the used parameters a lot (wan,lan,opt1 vs emX,emY,igbX)
 2019-03-05 11:38:42 +01:00
Franco Fichtner
a6de9b245e system: sync include paths for PHP 
/usr/local/share is for phpseclib and it should always be
reachable.
 2019-03-05 11:28:44 +01:00
Björn Kalkbrenner
8e361f3051 dhcp: added TFTP bootfile-name 
PR: https://github.com/opnsense/core/pull/3074
 2019-03-05 07:11:55 +01:00
Ad Schellevis
d9dbcaf052 IPSec / routed (VTI). add tunnel settings to phase2, https://github.com/opnsense/core/issues/2332 2019-03-04 19:41:44 +01:00
Ad Schellevis
a045d3e9f6 IPSec / routed (VTI), when auto_routes_disable is set, set auto = start in stead of route, for https://github.com/opnsense/core/issues/2332 2019-03-04 16:10:09 +01:00
Ad Schellevis
4c3d069ca4 IPSec / routed (VTI), make sure all connections use predefined reqid, for https://github.com/opnsense/core/issues/2332 
it would be good to refactor this code at some point, maybe wrap some of its logic in a class.
There's just too much logic in ipsec_configure_do at the moment
 2019-03-04 15:43:08 +01:00
Ad Schellevis
9ccabe68a6 IPsec / routed (VTI), make installpolicy optional, for https://github.com/opnsense/core/issues/2332 2019-03-04 14:10:05 +01:00
Franco Fichtner
7a40a22c2a system: small tweaks to auth templates 2019-03-04 12:58:11 +01:00
Ad Schellevis
060a3e2cbf IPsec+pam, forgot to add the template, for https://github.com/opnsense/core/issues/3265 2019-03-04 12:30:18 +01:00
Franco Fichtner
80feeafa46 unbound: remove debug output #3260 2019-03-04 07:29:32 +01:00
Franco Fichtner
0e407b1215 firmware: finally revoke 18.7 fingerprint 2019-03-01 19:06:46 +01:00
Franco Fichtner
0242bac1f9 src: style sweep 2019-03-01 19:02:32 +01:00
Ad Schellevis
2f919443dc cherry-pick https://github.com/opnsense/core/pull/3234 2019-03-01 18:35:50 +01:00
Ad Schellevis
3d07a9eb77 minor cleanups, closes https://github.com/opnsense/core/pull/3112 2019-03-01 14:55:36 +01:00
Franco Fichtner
81438578db unbound: add alias support for #3260 
Break the rules of the Dnsmasq implementation while at it:

An alias can consist of a host and/or domain and/or description.
At least a host name or a domain need to be set, the rest will be
taken from the original entry.

Missing GUI parts in the override section...
 2019-03-01 08:55:50 +01:00
Ad Schellevis
b214b89e20 HAsync, prevent sloppy apply behaviour in various places due to configuring the backup device and point the user to our status page. 
- since the apply never has been complete, the current situations either results in user not knowning where their waiting for  (an openvpn client for example) or users assuming all is in sync (which isn't the case)
- move restart filter action to existing sync page

closes https://github.com/opnsense/core/issues/3165
 2019-02-28 18:32:17 +01:00
Ad Schellevis
21f1580348 IPsec, switch to PAM, closes https://github.com/opnsense/core/issues/3265 2019-02-28 15:32:03 +01:00
Ad Schellevis
02fd4f4c7f Web proxy, switch to PAM, closes https://github.com/opnsense/core/issues/3261 2019-02-28 09:57:54 +01:00