entrouvert
/
univnautes
Archived
17
0
Fork 0
Code Issues Pull Requests Releases Activity
24,219 Commits 3 Branches 21 Tags 59 MiB
Commit Graph

73 Commits

Author SHA1 Message Date
Ermal b2e2c6bc7f Its long overdue the ez-ipupdate.cache file 2014-04-26 09:59:37 +00:00
Chris Buechler 30a5a9d771 trigger setup wizard 2009-11-16 01:44:37 -05:00
Bill Marquette c755c01620 Remove duplicate config.xml and restore conf.default/config.xml if /conf/config.xml and no backups exist 2009-03-14 20:03:13 -05:00
mgrooms 0092b3bd47 Modify captive portal to use centralized user management. The user manager has 
been modified to include an account expiration option to support this service.
 2009-03-15 00:39:19 +00:00
mgrooms 0b7fd3e91d Correct the configuration file IPsec certificate upgrade process. 2009-03-12 21:51:50 +00:00
Seth Mos 102b07152c Update config.xml to 5.5 to prevent RRD database conversion from triggering. 
add rrd tag to default enabled
 2008-12-23 10:28:31 +00:00
Chris Buechler beb9061ff6 change default to enable block bogons 2008-11-30 00:01:50 +00:00
Scott Ullrich e858896b2a Add TCP TSO = 0 sysctl 2008-11-04 04:33:11 +00:00
Scott Ullrich 138acd289b Change default icmplim to 750. 2008-10-25 21:02:03 +00:00
Scott Ullrich 1a0cb96d71 Revise default allow all to any rule text. Remove > and attempt to cleanup 
text to make it more friendly to a new user.
 2008-09-10 23:29:29 +00:00
Matthew Grooms bfea87fff2 Remove the page locking privileges after discussion with Scott on IRC. The 
feature was confusing and offered little utility that I could see. If we
really need to provide serialized access to sections of the webui, IMO it
should be a global lock option and enabled or disabled manually and not a
privilege that is on all the time.
 2008-09-03 17:52:15 +00:00
Matthew Grooms e9e7d50186 Modify all the default configuration files to ensure the versions match. 
While in globals.inc, remove the easyrsa path and do some whitespace
cleanup.
 2008-09-02 16:46:13 +00:00
Scott Ullrich 3828b68ad6 Set net.inet.icmp.icmplim to 500. Apparently the low setting of 200 
wrecked Seths firewall on upgrade due to overwhelming amounts of icmp
packets.
 2008-09-01 19:38:34 +00:00
Scott Ullrich 43ac3acfda Move WAN interface to appear first now that the interface code 
programatically enumerates the interfaces.   Not sure if we need
upgrade code to move the interface order.
 2008-08-30 02:35:32 +00:00
Scott Ullrich b51eff52be Disable extended TCP debugging. 2008-08-11 18:00:28 +00:00
Ermal Luçi 6235e68339 Sync to new config version number. 2008-08-05 16:11:26 +00:00
Ermal Luçi 787295ea45 Epose if_bridge(4) sysctl members. 2008-08-05 16:03:39 +00:00
Matthew Grooms 6b07c15ad8 Rewrite the pfsense privilege system with the following goals in mind ... 
1) Redefine page privileges to not use static urls
2) Accurate generation of privilege definitions from source
3) Merging the user and group privileges into a single set
4) Allow any privilege to be added to users or groups w/ inheritance
5) Cleaning up the related WebUI pages
 2008-08-01 06:30:34 +00:00
Scott Ullrich a8b1097cb0 * Switch XML tag from </pages> to <pages/> 
* Sync the all group which appears to be missing
 2008-07-30 23:31:18 +00:00
Scott Ullrich a82db41db2 latest config.xml version is 4.9 2008-07-28 22:40:23 +00:00
Scott Ullrich ee7ff1f007 Add TCP Inflight 2008-07-19 02:16:29 +00:00
Scott Ullrich 9deef53dde Remove unused tag. 2008-03-10 01:27:08 +00:00
Scott Ullrich e0ac25769d Unbreak package manager 2008-03-10 00:52:13 +00:00
Scott Ullrich 8da7252b0f Add missing bits from HEAD. 2008-02-20 01:11:21 +00:00
Scott Ullrich 2821f8e690 Switch over to the newly provisioned 0.pfsense.pool.ntp.org which 
ntp.org has graciously setup for pfSense.
 2008-02-18 18:07:44 +00:00
Scott Ullrich d2f336469b Really disable CTRL+ALT+DELETE. 2008-02-02 19:37:48 +00:00
Scott Ullrich ae1ffb162f Disable CTRL+ALT+DELETE reboot sequence on keyboard. 
Admnins commonly have to press this sequence to login to winderz boxen and
if you have a shared KVM you might accidently reboot your firewall.
 2008-02-02 19:36:31 +00:00
Ermal Luçi 49ff6e4083 Revert previous patch to retain compatibility in the GUI. 2008-02-01 22:56:56 +00:00
Ermal Luçi 2a2f3167f9 Add defualt pass rule on lan interface and remove it from config. 
It is a default policy so lets keep it with defaults and let the user override it when pleases.

Remove it from here since it is part of the default policy and allow that on a new installation,
after shaper wizard run packets don't go to the default queue.
 2008-02-01 21:59:47 +00:00
Scott Ullrich 2672d65db3 Move update bogons script to 3am. 
Discussed on pfSense-support@
 2007-11-28 19:51:27 +00:00
Scott Ullrich d35fa17e1d * Download bogons entries from pfsense.com 
* Do not update on every minute on the 1st of the month
* Sleep for a random period before updating to avoid killing the server
 2007-11-27 20:22:05 +00:00
Scott Ullrich 94f01c71bf Increase net.inet.ip.intr_queue_maxlen to 1000 which is the IP input queue. 2007-08-22 18:01:11 +00:00
Scott Ullrich 0ca9fb6095 Reset slbd every 140 minutes as opposed to 300 minutes. 2007-08-02 02:14:23 +00:00
Scott Ullrich df23ccfe82 Set the ephemeral port range starting port to 1024 instead of 49152. On a busy firewall it is possible to run out of ephemeral ports and then the system will block new connections until a port is available. 2007-07-05 16:13:38 +00:00
Scott Ullrich 53747d8e8c s/bin/sbin/ 2007-06-27 19:43:15 +00:00
Scott Ullrich b1d7bc0178 Reset SLBD every 5 hours to avoid 100% cpu utilization Ticket #1316 2007-06-27 19:37:11 +00:00
Scott Ullrich f3f5b5d6d1 We need to expire entries every hour, not every half hour. (snort) 2007-06-02 21:32:42 +00:00
Scott Ullrich 9299ceaf2c Add overlooked sysctl's. 2007-05-26 22:34:48 +00:00
Scott Ullrich 6df9d7e359 Add system tunables area which allows the user to fine control sysctl's. 2007-05-26 22:00:36 +00:00
Scott Ullrich 7995441eac Oops, we need /etc/ping_hosts.sh to run every 5 minutes. 2007-05-15 20:29:31 +00:00
Seth Mos ad1719997b Add NTP server field to dhcp config. 
From: Alexander Schaber
 2007-05-08 14:47:07 +00:00
Scott Ullrich cff4feea02 We actually have 2.9 has the default now. 2007-03-14 22:06:07 +00:00
Scott Ullrich fd416a1088 * Bump config version to 2.8 
* Automatically install a IPSEC pass rule for unsuspecting users
 2007-02-09 16:54:59 +00:00
Scott Ullrich 1071e028a5 Backport cron handling from HEAD. 
Patches-submitted-by: DSH@
 2007-01-29 04:09:12 +00:00
Scott Ullrich 7c59d0c154 Change default theme to nervecenter. 
No objections from any of the 13 other people in IRC.  Make it so.
 2007-01-18 23:45:00 +00:00
Scott Ullrich e15a47935d Disable NAT reflection by default. 2006-03-09 20:44:27 +00:00
Scott Ullrich 478743e1fa Set theme back to metallic and avoid the lynching 2006-01-01 03:53:30 +00:00
Scott Ullrich 7185e415cc Change default theme back to pfsense. 
Some people claim the fancy metallic theme is slower.

See http://forums.whirlpool.net.au/forum-replies-archive.cfm/436523.html
 2005-12-28 00:55:46 +00:00
Scott Ullrich e265e49fa8 Change back to sis0 and sis1 for embedded. CDROM platform and other will pull in conf.defaults which is set for VMWARE if need be. 2005-11-17 21:52:47 +00:00
Scott Ullrich 644d1f1cf1 Change the default interface setup in PC version to vmware. 2005-11-16 01:27:37 +00:00