Ermal
b2e2c6bc7f
Its long overdue the ez-ipupdate.cache file
2014-04-26 09:59:37 +00:00
Chris Buechler
30a5a9d771
trigger setup wizard
2009-11-16 01:44:37 -05:00
Bill Marquette
c755c01620
Remove duplicate config.xml and restore conf.default/config.xml if /conf/config.xml and no backups exist
2009-03-14 20:03:13 -05:00
mgrooms
0092b3bd47
Modify captive portal to use centralized user management. The user manager has
...
been modified to include an account expiration option to support this service.
2009-03-15 00:39:19 +00:00
mgrooms
0b7fd3e91d
Correct the configuration file IPsec certificate upgrade process.
2009-03-12 21:51:50 +00:00
Seth Mos
102b07152c
Update config.xml to 5.5 to prevent RRD database conversion from triggering.
...
add rrd tag to default enabled
2008-12-23 10:28:31 +00:00
Chris Buechler
beb9061ff6
change default to enable block bogons
2008-11-30 00:01:50 +00:00
Scott Ullrich
e858896b2a
Add TCP TSO = 0 sysctl
2008-11-04 04:33:11 +00:00
Scott Ullrich
138acd289b
Change default icmplim to 750.
2008-10-25 21:02:03 +00:00
Scott Ullrich
1a0cb96d71
Revise default allow all to any rule text. Remove > and attempt to cleanup
...
text to make it more friendly to a new user.
2008-09-10 23:29:29 +00:00
Matthew Grooms
bfea87fff2
Remove the page locking privileges after discussion with Scott on IRC. The
...
feature was confusing and offered little utility that I could see. If we
really need to provide serialized access to sections of the webui, IMO it
should be a global lock option and enabled or disabled manually and not a
privilege that is on all the time.
2008-09-03 17:52:15 +00:00
Matthew Grooms
e9e7d50186
Modify all the default configuration files to ensure the versions match.
...
While in globals.inc, remove the easyrsa path and do some whitespace
cleanup.
2008-09-02 16:46:13 +00:00
Scott Ullrich
3828b68ad6
Set net.inet.icmp.icmplim to 500. Apparently the low setting of 200
...
wrecked Seths firewall on upgrade due to overwhelming amounts of icmp
packets.
2008-09-01 19:38:34 +00:00
Scott Ullrich
43ac3acfda
Move WAN interface to appear first now that the interface code
...
programatically enumerates the interfaces. Not sure if we need
upgrade code to move the interface order.
2008-08-30 02:35:32 +00:00
Scott Ullrich
b51eff52be
Disable extended TCP debugging.
2008-08-11 18:00:28 +00:00
Ermal Luçi
6235e68339
Sync to new config version number.
2008-08-05 16:11:26 +00:00
Ermal Luçi
787295ea45
Epose if_bridge(4) sysctl members.
2008-08-05 16:03:39 +00:00
Matthew Grooms
6b07c15ad8
Rewrite the pfsense privilege system with the following goals in mind ...
...
1) Redefine page privileges to not use static urls
2) Accurate generation of privilege definitions from source
3) Merging the user and group privileges into a single set
4) Allow any privilege to be added to users or groups w/ inheritance
5) Cleaning up the related WebUI pages
2008-08-01 06:30:34 +00:00
Scott Ullrich
a8b1097cb0
* Switch XML tag from </pages> to <pages/>
...
* Sync the all group which appears to be missing
2008-07-30 23:31:18 +00:00
Scott Ullrich
a82db41db2
latest config.xml version is 4.9
2008-07-28 22:40:23 +00:00
Scott Ullrich
ee7ff1f007
Add TCP Inflight
2008-07-19 02:16:29 +00:00
Scott Ullrich
9deef53dde
Remove unused tag.
2008-03-10 01:27:08 +00:00
Scott Ullrich
e0ac25769d
Unbreak package manager
2008-03-10 00:52:13 +00:00
Scott Ullrich
8da7252b0f
Add missing bits from HEAD.
2008-02-20 01:11:21 +00:00
Scott Ullrich
2821f8e690
Switch over to the newly provisioned 0.pfsense.pool.ntp.org which
...
ntp.org has graciously setup for pfSense.
2008-02-18 18:07:44 +00:00
Scott Ullrich
d2f336469b
Really disable CTRL+ALT+DELETE.
2008-02-02 19:37:48 +00:00
Scott Ullrich
ae1ffb162f
Disable CTRL+ALT+DELETE reboot sequence on keyboard.
...
Admnins commonly have to press this sequence to login to winderz boxen and
if you have a shared KVM you might accidently reboot your firewall.
2008-02-02 19:36:31 +00:00
Ermal Luçi
49ff6e4083
Revert previous patch to retain compatibility in the GUI.
2008-02-01 22:56:56 +00:00
Ermal Luçi
2a2f3167f9
Add defualt pass rule on lan interface and remove it from config.
...
It is a default policy so lets keep it with defaults and let the user override it when pleases.
Remove it from here since it is part of the default policy and allow that on a new installation,
after shaper wizard run packets don't go to the default queue.
2008-02-01 21:59:47 +00:00
Scott Ullrich
2672d65db3
Move update bogons script to 3am.
...
Discussed on pfSense-support@
2007-11-28 19:51:27 +00:00
Scott Ullrich
d35fa17e1d
* Download bogons entries from pfsense.com
...
* Do not update on every minute on the 1st of the month
* Sleep for a random period before updating to avoid killing the server
2007-11-27 20:22:05 +00:00
Scott Ullrich
94f01c71bf
Increase net.inet.ip.intr_queue_maxlen to 1000 which is the IP input queue.
2007-08-22 18:01:11 +00:00
Scott Ullrich
0ca9fb6095
Reset slbd every 140 minutes as opposed to 300 minutes.
2007-08-02 02:14:23 +00:00
Scott Ullrich
df23ccfe82
Set the ephemeral port range starting port to 1024 instead of 49152.
On a busy firewall it is possible to run out of ephemeral ports and then the system will block new connections until a port is available.
2007-07-05 16:13:38 +00:00
Scott Ullrich
53747d8e8c
s/bin/sbin/
2007-06-27 19:43:15 +00:00
Scott Ullrich
b1d7bc0178
Reset SLBD every 5 hours to avoid 100% cpu utilization
Ticket #1316
2007-06-27 19:37:11 +00:00
Scott Ullrich
f3f5b5d6d1
We need to expire entries every hour, not every half hour. (snort)
2007-06-02 21:32:42 +00:00
Scott Ullrich
9299ceaf2c
Add overlooked sysctl's.
2007-05-26 22:34:48 +00:00
Scott Ullrich
6df9d7e359
Add system tunables area which allows the user to fine control sysctl's.
2007-05-26 22:00:36 +00:00
Scott Ullrich
7995441eac
Oops, we need /etc/ping_hosts.sh to run every 5 minutes.
2007-05-15 20:29:31 +00:00
Seth Mos
ad1719997b
Add NTP server field to dhcp config.
...
From: Alexander Schaber
2007-05-08 14:47:07 +00:00
Scott Ullrich
cff4feea02
We actually have 2.9 has the default now.
2007-03-14 22:06:07 +00:00
Scott Ullrich
fd416a1088
* Bump config version to 2.8
...
* Automatically install a IPSEC pass rule for unsuspecting users
2007-02-09 16:54:59 +00:00
Scott Ullrich
1071e028a5
Backport cron handling from HEAD.
...
Patches-submitted-by: DSH@
2007-01-29 04:09:12 +00:00
Scott Ullrich
7c59d0c154
Change default theme to nervecenter.
...
No objections from any of the 13 other people in IRC. Make it so.
2007-01-18 23:45:00 +00:00
Scott Ullrich
e15a47935d
Disable NAT reflection by default.
2006-03-09 20:44:27 +00:00
Scott Ullrich
478743e1fa
Set theme back to metallic and avoid the lynching
2006-01-01 03:53:30 +00:00
Scott Ullrich
7185e415cc
Change default theme back to pfsense.
...
Some people claim the fancy metallic theme is slower.
See http://forums.whirlpool.net.au/forum-replies-archive.cfm/436523.html
2005-12-28 00:55:46 +00:00
Scott Ullrich
e265e49fa8
Change back to sis0 and sis1 for embedded. CDROM platform and other will pull in conf.defaults which is set for VMWARE if need be.
2005-11-17 21:52:47 +00:00
Scott Ullrich
644d1f1cf1
Change the default interface setup in PC version to vmware.
2005-11-16 01:27:37 +00:00