bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-14 04:52:59 +02:00

Author	SHA1	Message	Date
Michael Tremer	16260e2c69	timectrl: Stop ntp daemon when disabled Fixes #11000 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2016-01-07 23:47:39 +00:00
Michael Tremer	b0a014b7f8	QoS: Improve saving enabled/disable state It was reported that the QoS did not stop when the user clicked the "stop" button. This patch fixes that. Fixes #10664 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org>	2016-01-05 21:04:05 +00:00
Michael Tremer	9a09d94ee3	qosctrl: Cleanup code by replacing hardcoded paths Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2016-01-05 20:44:26 +00:00
Michael Tremer	2b163f4497	Drop tripwire This add-on is likely to be unused Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-04 22:18:27 +00:00
Michael Tremer	80fbd89949	ipsec: Add block rules to avoid conntrack entries If an IPsec VPN connections is not established, there are rare cases when packets are supposed to be sent through that said tunnel and incorrectly handled. Those packets are sent to the default gateway an entry for this connection is created in the connection tracking table (usually only happens to UDP). All following packets are sent the same route even after the tunnel has been brought up. That leads to SIP phones not being able to register among other things. This patch adds firewall rules that these packets are rejected. That will sent a notification to the client that the tunnel is not up and avoid the connection to be added to the connection tracking table. Apart from a small performance penalty there should be no other side-effects. Fixes: #10908 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Cc: tomvend@rymes.com Cc: daniel.weismueller@ipfire.org Cc: morlix@morlix.de Reviewed-by: Timo Eissler <timo.eissler@ipfire.org>	2015-10-15 22:44:47 +01:00
Michael Tremer	e528fb2c73	rebuildhosts: Don't break when RED not online The hosts file was not regenerated when RED was not connected which should not be happening. This patch checks if the file exists. If not, the gateway line will not be written to /etc/hosts.	2015-06-03 18:00:13 +02:00
Michael Tremer	bd33c33227	rebuildhosts: Fix SEGV when not online Fixes #10867	2015-06-03 17:55:55 +02:00
Michael Tremer	a9600358d8	ipsecctrl: Use --wait switch for all iptables commands	2015-05-07 21:06:44 +02:00
Michael Tremer	d9e80e0b09	ipsecctrl: Remove unused code block	2015-05-07 21:05:50 +02:00
Stefan Schantl	1a8999b3d6	ddnsctrl: New binary. This helper binary is used to grand the ddns update client super user rights, when launched out of the webinterface.	2015-04-26 16:48:45 +02:00
Alexander Marx	c63e97bbaf	vpn-statistic: fix removal of rw rrd-data Due to a missing slash the rrd data of a deleted rrd-connection was not deleted	2015-04-11 08:33:19 +02:00
Michael Tremer	187590f791	openvpn: Move remving files in /var/run to openvpnctrl	2015-04-10 13:27:32 +02:00
Michael Tremer	e1297cbb76	openvpn: Properly remove all RRDs after a connection is removed	2015-04-09 16:32:39 +02:00
Alexander Marx	91c2eaec9a	vpn-statistic: create collectd wrapper to restart collectd when first vpn was created This wrapper is only used, when the first openvpn RW is created. Then the collectd has to be restarted to get the vpn Data and create rrd Data	2015-04-09 14:59:26 +02:00
Alexander Marx	8516edcc48	BUG10730: fix permissions of ovpnserver.log	2015-02-03 07:26:34 +01:00
Michael Tremer	3906cf7e85	Merge remote-tracking branch 'amarx/vpn-statistic1' into next	2015-01-13 17:37:18 +01:00
Alexander Marx	5795fc1b55	vpn-statistic: added new statistic page for OpenVPN Roadwarrior	2014-09-18 16:29:10 +02:00
Michael Tremer	aa7f55b2df	Merge remote-tracking branch 'origin/next' into install-raid	2014-08-20 21:46:49 +02:00
Michael Tremer	5a2ac8f701	misc-progs: Dynamically link against libsmooth.	2014-08-12 12:23:44 +02:00
Michael Tremer	0ffbb688d3	samba: Add GUI functionality to join a domain.	2014-06-10 20:15:32 +02:00
Michael Tremer	a8e327cd50	sambactrl: Re-indent file.	2014-06-10 20:13:23 +02:00
Michael Tremer	8fcb92530e	ipsecctrl: Fix compiler warning.	2014-03-26 23:47:14 +01:00
Michael Tremer	5c3de120aa	openvpnctrl: Allow ICMP error messages to pass the transfer net.	2014-03-01 16:51:03 +01:00
Michael Tremer	73372ed4e6	firewall: Move scripts from /var/ipfire/firewall/bin to /usr/lib/firewall.	2014-01-28 20:48:24 +01:00
Stefan Schantl	e1a51ebb85	openvpnctrl: Pass external IP address to N2N daemons. Fixes #10313.	2014-01-12 15:34:27 +01:00
Michael Tremer	7506baa2eb	wirelesscrtl: Add --wait to iptables command line. With a huge number of access rules, inserting all rules into the kernel took a long while in which other iptables tried to access the kernel's ruleset as well, which then lead to resource conflicts. Since iptables 1.4.20, the --wait parameter is supported that will wait for a global xtables lock and then proceed.	2013-12-12 21:05:56 +01:00
Michael Tremer	ab4876ad42	firewall: Don't require to enable the RW server for N2N networks. The firewall rules for OpenVPN have not been applied for N2N connections when the road warrior server was disabled.	2013-11-08 13:38:09 +01:00
Alexander Marx	8039a71099	Firewall: renamed forwardfwctrl to firewallctrl	2013-10-24 09:42:42 +02:00
Alexander Marx	6d8eb5dec7	Firewall: Renamed directory /var/ipfire/forward to /var/ipfire/firewall	2013-10-24 09:24:12 +02:00
Michael Tremer	0e43079789	firewall: Cleanup rules reloading. This has been messed up a lot because there were multiple files which indicated that a reload is needed; shell commands were used to create and remove the indicator file; some functions were duplicated.	2013-10-22 18:53:48 +02:00
Michael Tremer	2dcea58cc2	misc-progs: Re-indent setuid.c.	2013-10-12 18:47:16 +02:00
Michael Tremer	1293811896	misc-progs: Convert to right file encoding.	2013-10-12 18:25:33 +02:00
Michael Tremer	555637d156	misc-progs: Sync STRING_SIZE.	2013-10-12 18:25:14 +02:00
Michael Tremer	2b875b3985	misc-progs: Remove own copy of strlcat. Add compatibility define that uses strncat.	2013-10-12 18:23:40 +02:00
Michael Tremer	52e54c1c9a	misc-progs: Move network stuff to own header file.	2013-10-12 18:22:51 +02:00
Michael Tremer	42ec14cf2b	misc-progs: Remove unused functions.	2013-10-12 16:23:41 +02:00
Michael Tremer	ab89cb2253	misc-progs: Fix invalid command line argument parsing. Fixes #10431.	2013-10-12 16:20:20 +02:00
Arne Fitzenreiter	f7bb003150	wirelessctrl: fix blue access "enabled" checkbox.	2013-10-03 14:50:33 +02:00
Michael Tremer	ec36876e6a	wirelessctrl: Fix evaluation of configuration settings.	2013-10-01 17:45:00 +02:00
Michael Tremer	27ba58fb46	wirelessctrl: Silence error messages when no BLUE device is configured.	2013-09-07 16:10:02 +02:00
Michael Tremer	d69bf6191a	wirelessctrl: Re-indent the code.	2013-09-07 15:21:40 +02:00
Michael Tremer	8e9a041324	openvpnctrl: Silence PID file error message.	2013-09-02 21:52:35 +02:00
Michael Tremer	3ad23ee1d9	openvpnctrl: Suppress silly error messages and cleanup coding style.	2013-09-02 21:05:47 +02:00
Michael Tremer	8c60701a4f	forwardctrl: Remove unused and possibly dangerous flush option. Also remove unused header files.	2013-08-12 14:42:16 +02:00
Michael Tremer	d2c4a3cab9	openvpnctrl: Cleanup flushChain functions.	2013-08-09 14:15:28 +02:00
Michael Tremer	2181b55552	openvpnctl: Flush BLOCK and SNAT chain when needed.	2013-08-09 14:15:28 +02:00
Michael Tremer	c31f18b6a9	openvpnctrl: Block all transfer subnets.	2013-08-09 14:15:27 +02:00
Michael Tremer	7c50b04834	openvpnctrl: Remove unneeded code.	2013-08-09 14:15:27 +02:00
Alexander Marx	93b75f31ad	Forward Firewall: clean up some files Fix iptables loop wirelessctrl Fix firewall chain order Fix policies (added comment for statistic)	2013-08-09 14:11:56 +02:00
Alexander Marx	9efd8d1c7e	Forward Firewall: delete old portforwarding from system and fix for wlan-firewall part 1 (loop)	2013-08-09 14:11:56 +02:00

1 2 3 4 5 ...

256 Commits