Scott Ullrich
84dd057a55
Time for 1.2-BETA-1
2007-04-09 00:48:02 +00:00
Scott Ullrich
d254fe7bfc
If the interface is "lan" and bridging is enabled then skip creation of the DHCP Server subnet.
Ticket #1281
2007-04-09 00:01:57 +00:00
Scott Ullrich
8f798977a2
Remove configuration lock that would be acquired when you login to ssh after a firmware update.
Ticket #1258
2007-04-08 23:46:26 +00:00
Scott Ullrich
89f4b6a3fb
Correct sysctl name.. it is movements not movement.
2007-04-08 23:22:09 +00:00
Bill Marquette
011bff69c0
startup routed on boot if it's enabled
2007-04-08 18:22:09 +00:00
Seth Mos
530c00446d
Correct rrd_gateway path
2007-04-08 11:50:10 +00:00
Scott Ullrich
ecd43b7fbe
Skip rule creation when interface_ip or remote_gateway is unknown
2007-04-07 20:58:49 +00:00
Scott Ullrich
6ec72f51f2
When a 0 byte configuration file is found, remove it (unlink) and continue processing.
2007-04-07 19:52:38 +00:00
Scott Ullrich
33a0c37d13
Remove IP Compression box. A lot of further refactoring is going to be required to make this work and we do not have enough time to do so before 1.2 beta.
2007-04-07 19:24:54 +00:00
Scott Dale
cd110adf99
Ticket 1280: updated
2007-04-07 05:00:42 +00:00
Scott Ullrich
be58a5d107
Use -o when loading the pf ruleset. From the pfctl man page:
-o Enable the ruleset optimizer. The ruleset optimizer attempts to
improve rulesets by removing rule duplication and making better
use of rule ordering. Specifically, it does four things:
1. remove duplicate rules
2. remove rules that are a subset of another rule
3. combine multiple rules into a table when advantageous
4. re-order the rules to improve evaluation performance
A second -o may be specified to use the currently loaded ruleset
as a feedback profile to tailor the optimization of the quick
rules to the actual network behavior.
It is important to note that the ruleset optimizer will modify
the ruleset to improve performance. A side effect of the ruleset
modification is that per-rule accounting statistics will have
different meanings than before.
...
Use -o when loading the pf ruleset. From the pfctl man page:
-o Enable the ruleset optimizer. The ruleset optimizer attempts to
improve rulesets by removing rule duplication and making better
use of rule ordering. Specifically, it does four things:
1. remove duplicate rules
2. remove rules that are a subset of another rule
3. combine multiple rules into a table when advantageous
4. re-order the rules to improve evaluation performance
A second -o may be specified to use the currently loaded ruleset
as a feedback profile to tailor the optimization of the quick
rules to the actual network behavior.
It is important to note that the ruleset optimizer will modify
the ruleset to improve performance. A side effect of the ruleset
modification is that per-rule accounting statistics will have
different meanings than before.
2007-04-07 02:10:12 +00:00
Scott Ullrich
3d8e2f77a1
Cleanup IPSEC rules a bit. More work will be performed in this area over the weekend.
2007-04-06 17:56:23 +00:00
Scott Ullrich
91f1378cef
Both -HEAD and -RELENG_1 have had a hidden feature to allow IPSEC compression. Add a checkbox to the screen to allow this hidden value to be toggled.
2007-04-06 17:55:43 +00:00
Scott Ullrich
e801f66230
Add UDP bit torrent traffic rule to wizard
2007-04-05 17:23:22 +00:00
Bill Marquette
914b7021c7
Fix bad paths resulting from move of routed package
...
Reported-by: Samer Chaer <samerchaer at gmail.com>
2007-04-05 14:13:00 +00:00
Scott Ullrich
d49ef3af11
Comment out what appears to be non-needed code.
2007-04-04 21:17:06 +00:00
Scott Ullrich
1318f78b2a
Allow multiple stacked rules (allow) to work correctly in the time based new world order. How deep this rabbit hole is yet to be deterimined.
2007-04-04 20:17:55 +00:00
Scott Dale
3595b631ac
highlight schedule column on single clicks
2007-04-04 14:07:30 +00:00
Scott Ullrich
2a08bf6bb7
Do not zap cron entries with a large hammer. Instead gently use a knife.
2007-04-03 22:14:29 +00:00
Seth Mos
ae84328ef4
Also configure loopback. Otherwise filter rules can not be loaded
2007-04-03 21:49:40 +00:00
Scott Ullrich
ee3f99f19c
Add back 59 minute option
2007-04-03 20:48:20 +00:00
Scott Ullrich
81f0619c4c
Deal with block type rules correctly during time based rule operations
2007-04-03 20:46:15 +00:00
Scott Ullrich
e73e73f67e
Do not unset cron entries.. This needs a bit more work.
2007-04-03 20:12:59 +00:00
Scott Ullrich
51282f04e4
Correctly report false
2007-04-03 19:19:16 +00:00
Scott Ullrich
9865652eb4
rework the check code to be more readable since it is falsing
2007-04-03 19:12:11 +00:00
Scott Ullrich
75aaf51c52
Add more debugging info
2007-04-03 19:07:23 +00:00
Scott Ullrich
431840f623
Add debugging info for hourstatus
2007-04-03 18:55:11 +00:00
Scott Ullrich
9271254522
Install deny rule correctly
2007-04-02 23:54:34 +00:00
Scott Ullrich
70b7618779
Deny rules are already the defeault. Do not switch to allow.
2007-04-02 21:42:02 +00:00
Scott Ullrich
b9f7b27775
* Remove 59
* Change 0 to 00 for consistency
2007-04-02 21:08:08 +00:00
Scott Ullrich
b8257606b5
* Add more debugging helpers to system logs
* Unbreak logic since the recent traffic shaper 'fix'
2007-04-02 20:52:36 +00:00
Scott Ullrich
02dee88eaa
Remove class elements from TD so that elements do not look strange.
...
Suggested-by: Scott Dale
2007-04-02 17:20:05 +00:00
Scott Ullrich
36df0acc64
Remove openvpn-csc when needed.
...
Submitted-By: Fernando Lemos
2007-04-02 16:33:16 +00:00
Scott Ullrich
031aed0137
Remove trailing space
2007-04-02 16:30:50 +00:00
Scott Ullrich
74f890cb94
Set /sbin/sysctl -n net.link.ether.inet.log_arp_movement=0 when shared physical net is checked
2007-04-02 16:29:50 +00:00
Scott Ullrich
6cb438cf5a
Use mwexec() to avoid printing out the sysctl operation
2007-04-02 16:28:16 +00:00
Scott Ullrich
f745ee765c
* Do no \n
* Be consistent on output
2007-04-01 21:27:35 +00:00
Scott Ullrich
0c247ed596
Add logging helper statements
2007-04-01 21:19:24 +00:00
Scott Ullrich
3db435180b
Correctly handle hour and minutes on the dot.
2007-04-01 18:07:49 +00:00
Scott Ullrich
0581660cbe
Do not output blank gateways
2007-03-31 23:22:18 +00:00
Scott Ullrich
e4913b9025
Handle port ranges correctly
2007-03-30 21:19:33 +00:00
Scott Ullrich
6df4e01c54
Do not foreach through an item that does not exist
2007-03-30 16:17:06 +00:00
Scott Dale
1a4f312392
more logic checks.
2007-03-30 09:45:05 +00:00
Scott Dale
636a69e6d4
more logic checks
2007-03-29 20:05:00 +00:00
Scott Dale
591ceb327f
corrected schedule_inuse function
2007-03-29 20:04:41 +00:00
Scott Dale
63724b020d
Added is_schedule_inuse()
2007-03-29 19:51:26 +00:00
Scott Ullrich
1e19ee66ce
Check that cron items exist before foreach()
2007-03-29 19:48:48 +00:00
Scott Ullrich
83e442099b
Remove debugging statement. Remove missed code from HEAD.
2007-03-29 19:46:31 +00:00
Scott Ullrich
17271f41d3
Remove bogus IPSEC interface checks
2007-03-29 19:27:11 +00:00
Scott Ullrich
00eee8416c
Correctly check if an alias is in use
2007-03-29 19:10:47 +00:00