84dd057a55
Time for 1.2-BETA-1
2007-04-09 00:48:02 +00:00
d254fe7bfc
If the interface is "lan" and bridging is enabled then skip creation of the DHCP Server subnet.
Ticket #1281
2007-04-09 00:01:57 +00:00
8f798977a2
Remove configuration lock that would be acquired when you login to ssh after a firmware update.
Ticket #1258
2007-04-08 23:46:26 +00:00
89f4b6a3fb
Correct sysctl name.. it is movements not movement.
2007-04-08 23:22:09 +00:00
011bff69c0
startup routed on boot if it's enabled
2007-04-08 18:22:09 +00:00
530c00446d
Correct rrd_gateway path
2007-04-08 11:50:10 +00:00
ecd43b7fbe
Skip rule creation when interface_ip or remote_gateway is unknown
2007-04-07 20:58:49 +00:00
6ec72f51f2
When a 0 byte configuration file is found, remove it (unlink) and continue processing.
2007-04-07 19:52:38 +00:00
33a0c37d13
Remove IP Compression box. A lot of further refactoring is going to be required to make this work and we do not have enough time to do so before 1.2 beta.
2007-04-07 19:24:54 +00:00
cd110adf99
Ticket 1280: updated
2007-04-07 05:00:42 +00:00
be58a5d107
Use -o when loading the pf ruleset. From the pfctl man page:
-o Enable the ruleset optimizer. The ruleset optimizer attempts to
improve rulesets by removing rule duplication and making better
use of rule ordering. Specifically, it does four things:
1. remove duplicate rules
2. remove rules that are a subset of another rule
3. combine multiple rules into a table when advantageous
4. re-order the rules to improve evaluation performance
A second -o may be specified to use the currently loaded ruleset
as a feedback profile to tailor the optimization of the quick
rules to the actual network behavior.
It is important to note that the ruleset optimizer will modify
the ruleset to improve performance. A side effect of the ruleset
modification is that per-rule accounting statistics will have
different meanings than before.
...
Use -o when loading the pf ruleset. From the pfctl man page:
-o Enable the ruleset optimizer. The ruleset optimizer attempts to
improve rulesets by removing rule duplication and making better
use of rule ordering. Specifically, it does four things:
1. remove duplicate rules
2. remove rules that are a subset of another rule
3. combine multiple rules into a table when advantageous
4. re-order the rules to improve evaluation performance
A second -o may be specified to use the currently loaded ruleset
as a feedback profile to tailor the optimization of the quick
rules to the actual network behavior.
It is important to note that the ruleset optimizer will modify
the ruleset to improve performance. A side effect of the ruleset
modification is that per-rule accounting statistics will have
different meanings than before.
2007-04-07 02:10:12 +00:00
3d8e2f77a1
Cleanup IPSEC rules a bit. More work will be performed in this area over the weekend.
2007-04-06 17:56:23 +00:00
91f1378cef
Both -HEAD and -RELENG_1 have had a hidden feature to allow IPSEC compression. Add a checkbox to the screen to allow this hidden value to be toggled.
2007-04-06 17:55:43 +00:00
e801f66230
Add UDP bit torrent traffic rule to wizard
2007-04-05 17:23:22 +00:00
914b7021c7
Fix bad paths resulting from move of routed package
...
Reported-by: Samer Chaer <samerchaer at gmail.com>
2007-04-05 14:13:00 +00:00
d49ef3af11
Comment out what appears to be non-needed code.
2007-04-04 21:17:06 +00:00
1318f78b2a
Allow multiple stacked rules (allow) to work correctly in the time based new world order. How deep this rabbit hole is yet to be deterimined.
2007-04-04 20:17:55 +00:00
3595b631ac
highlight schedule column on single clicks
2007-04-04 14:07:30 +00:00
2a08bf6bb7
Do not zap cron entries with a large hammer. Instead gently use a knife.
2007-04-03 22:14:29 +00:00
ae84328ef4
Also configure loopback. Otherwise filter rules can not be loaded
2007-04-03 21:49:40 +00:00
ee3f99f19c
Add back 59 minute option
2007-04-03 20:48:20 +00:00
81f0619c4c
Deal with block type rules correctly during time based rule operations
2007-04-03 20:46:15 +00:00
e73e73f67e
Do not unset cron entries.. This needs a bit more work.
2007-04-03 20:12:59 +00:00
51282f04e4
Correctly report false
2007-04-03 19:19:16 +00:00
9865652eb4
rework the check code to be more readable since it is falsing
2007-04-03 19:12:11 +00:00
75aaf51c52
Add more debugging info
2007-04-03 19:07:23 +00:00
431840f623
Add debugging info for hourstatus
2007-04-03 18:55:11 +00:00
9271254522
Install deny rule correctly
2007-04-02 23:54:34 +00:00
70b7618779
Deny rules are already the defeault. Do not switch to allow.
2007-04-02 21:42:02 +00:00
b9f7b27775
* Remove 59
* Change 0 to 00 for consistency
2007-04-02 21:08:08 +00:00
b8257606b5
* Add more debugging helpers to system logs
* Unbreak logic since the recent traffic shaper 'fix'
2007-04-02 20:52:36 +00:00
02dee88eaa
Remove class elements from TD so that elements do not look strange.
...
Suggested-by: Scott Dale
2007-04-02 17:20:05 +00:00
36df0acc64
Remove openvpn-csc when needed.
...
Submitted-By: Fernando Lemos
2007-04-02 16:33:16 +00:00
031aed0137
Remove trailing space
2007-04-02 16:30:50 +00:00
74f890cb94
Set /sbin/sysctl -n net.link.ether.inet.log_arp_movement=0 when shared physical net is checked
2007-04-02 16:29:50 +00:00
6cb438cf5a
Use mwexec() to avoid printing out the sysctl operation
2007-04-02 16:28:16 +00:00
f745ee765c
* Do no \n
* Be consistent on output
2007-04-01 21:27:35 +00:00
0c247ed596
Add logging helper statements
2007-04-01 21:19:24 +00:00
3db435180b
Correctly handle hour and minutes on the dot.
2007-04-01 18:07:49 +00:00
0581660cbe
Do not output blank gateways
2007-03-31 23:22:18 +00:00
e4913b9025
Handle port ranges correctly
2007-03-30 21:19:33 +00:00
6df4e01c54
Do not foreach through an item that does not exist
2007-03-30 16:17:06 +00:00
1a4f312392
more logic checks.
2007-03-30 09:45:05 +00:00
636a69e6d4
more logic checks
2007-03-29 20:05:00 +00:00
591ceb327f
corrected schedule_inuse function
2007-03-29 20:04:41 +00:00
63724b020d
Added is_schedule_inuse()
2007-03-29 19:51:26 +00:00
1e19ee66ce
Check that cron items exist before foreach()
2007-03-29 19:48:48 +00:00
83e442099b
Remove debugging statement. Remove missed code from HEAD.
2007-03-29 19:46:31 +00:00
17271f41d3
Remove bogus IPSEC interface checks
2007-03-29 19:27:11 +00:00
00eee8416c
Correctly check if an alias is in use
2007-03-29 19:10:47 +00:00
Scott Ullrich
Bill Marquette
Seth Mos
Scott Dale