aboutsummaryrefslogtreecommitdiffstats
path: root/packages/squidGuard/squidguard_acl.xml
diff options
context:
space:
mode:
authorD. V. Serg <dvserg@pfsense.org>2008-08-20 16:19:17 +0000
committerD. V. Serg <dvserg@pfsense.org>2008-08-20 16:19:17 +0000
commitce28757f9a40cc074b968e5085c82035be0ec38b (patch)
treeb03d925460a94ca020d2fd471dd0a956a896e1c0 /packages/squidGuard/squidguard_acl.xml
parent4987b62d62b2ebd91c85f871594dfc2482e4f9b6 (diff)
downloadpfsense-packages-ce28757f9a40cc074b968e5085c82035be0ec38b.tar.gz
pfsense-packages-ce28757f9a40cc074b968e5085c82035be0ec38b.tar.bz2
pfsense-packages-ce28757f9a40cc074b968e5085c82035be0ec38b.zip
Changes in GUI:
sources - add user name support acl, destination - add redirection type general page - remove redirection type - add error-showing when 'Apply' changes Also many optimisations in .inc files.
Diffstat (limited to 'packages/squidGuard/squidguard_acl.xml')
-rw-r--r--packages/squidGuard/squidguard_acl.xml424
1 files changed, 230 insertions, 194 deletions
diff --git a/packages/squidGuard/squidguard_acl.xml b/packages/squidGuard/squidguard_acl.xml
index 3439e674..f7e8c7b7 100644
--- a/packages/squidGuard/squidguard_acl.xml
+++ b/packages/squidGuard/squidguard_acl.xml
@@ -6,13 +6,13 @@
<requirements>Describe your package requirements here</requirements>
<faq>Currently there are no FAQ items provided.</faq>
- <name>squidguardacl</name>
- <version>none</version>
- <title>Proxy Content filter SquidGuard: Access Control List (ACL)</title>
- <include_file>/usr/local/pkg/squidguard.inc</include_file>
+ <name>squidguardacl</name>
+ <version>none</version>
+ <title>Proxy Content filter SquidGuard: Access Control List (ACL)</title>
+ <include_file>/usr/local/pkg/squidguard.inc</include_file>
- <delete_string>A proxy server user has been deleted.</delete_string>
- <addedit_string>A proxy server user has been created/modified.</addedit_string>
+ <delete_string>A proxy server user has been deleted.</delete_string>
+ <addedit_string>A proxy server user has been created/modified.</addedit_string>
<tabs>
<tab>
@@ -45,194 +45,230 @@
<url>/pkg_edit.php?xml=squidguard_log.xml</url>
</tab>
</tabs>
-
- <adddeleteeditpagefields>
- <columnitem>
- <fielddescr>Disable</fielddescr>
- <fieldname>disabled</fieldname>
- </columnitem>
- <columnitem>
- <fielddescr>Order</fielddescr>
- <fieldname>order</fieldname>
- </columnitem>
- <columnitem>
- <fielddescr>Name</fielddescr>
- <fieldname>name</fieldname>
- </columnitem>
- <columnitem>
- <fielddescr>Destinations</fielddescr>
- <fieldname>dest</fieldname>
- </columnitem>
- <columnitem>
- <fielddescr>Time</fielddescr>
- <fieldname>time</fieldname>
- </columnitem>
- <columnitem>
- <fielddescr>Description</fielddescr>
- <fieldname>description</fieldname>
- </columnitem>
- </adddeleteeditpagefields>
- <fields>
- <field>
- <fielddescr>Disabled</fielddescr>
- <fieldname>disabled</fieldname>
- <description>Check this for disable this ACL rule.</description>
- <type>checkbox</type>
- </field>
-<!--
- <field>
- <fielddescr>Source name</fielddescr>
- <fieldname>source</fieldname>
- <description>Select source name here (required). Any ACL must have unique source name.</description>
- <required/>
- <type>select</type>
- </field>
+ <adddeleteeditpagefields>
+ <columnitem>
+ <fielddescr>Disable</fielddescr>
+ <fieldname>disabled</fieldname>
+ </columnitem>
+ <columnitem>
+ <fielddescr>Order</fielddescr>
+ <fieldname>order</fieldname>
+ </columnitem>
+ <columnitem>
+ <fielddescr>Name</fielddescr>
+ <fieldname>name</fieldname>
+ </columnitem>
+ <columnitem>
+ <fielddescr>Source</fielddescr>
+ <fieldname>source</fieldname>
+ </columnitem>
+ <!--columnitem>
+ <fielddescr>Destinations</fielddescr>
+ <fieldname>dest</fieldname>
+ </columnitem-->
+ <columnitem>
+ <fielddescr>Time</fielddescr>
+ <fieldname>time</fieldname>
+ </columnitem>
+ <columnitem>
+ <fielddescr>Description</fielddescr>
+ <fieldname>description</fieldname>
+ </columnitem>
+ </adddeleteeditpagefields>
+
+ <fields>
+ <field>
+ <fielddescr>Disabled</fielddescr>
+ <fieldname>disabled</fieldname>
+ <description>Check this for disable this ACL rule.</description>
+ <type>checkbox</type>
+ </field>
+ <field>
+ <fielddescr>Name</fielddescr>
+ <fieldname>name</fieldname>
+ <description>
+ Enter the unique name here.
+ Name must consist of minimum 2 symbols, first from which letter. &lt;br&gt;
+ All other symbols must be [a-Z_0-9].
+ </description>
+ <type>input</type>
+ <required/>
+ <size>100</size>
+ </field>
+ <field>
+ <fielddescr>Order</fielddescr>
+ <fieldname>order</fieldname>
+ <description>
+ The order defines a place in the list of ACL. &lt;br&gt;
+ &lt;b&gt;Note:&lt;/b&gt; &lt;br&gt;
+ Search for a suitable ACL by field 'source' will occur before the first match. If you want to define an exception for some sources (IP) from the IP range, put them on first of the list. &lt;br&gt;
+ &lt;b&gt;For example:&lt;/b&gt; &lt;br&gt;
+ Right order:
+ ACL0 with source ip 10.0.0.15, then ACL1 with ip-range 10.0.0.0/24 &lt;br&gt;
+ </description>
+ <type>input</type>
+ <size>5</size>
+ </field>
+ <field>
+ <fielddescr>Source IP adresses and domains</fielddescr>
+ <fieldname>source</fieldname>
+ <description>
+ Enter source IP address or domain or "username" here. For separate use space.
+ &lt;br&gt;&lt;b&gt;Example:&lt;/b&gt;
+ &lt;br&gt;ip: 192.168.0.1 or subnet 192.168.0.0/24 or subnet 192.168.1.0/255.255.255.0 or range 192.168.1.1-192.168.1.10
+ &lt;br&gt;domain: foo.bar match foo.bar or *.foo.bar
+ &lt;br&gt;username: 'user1'
+ </description>
+ <type>textarea</type>
+ <cols>65</cols>
+ <rows>3</rows>
+ <required/>
+ </field>
+ <!--field>
+ <fielddescr>Source IP addresses</fielddescr>
+ <fieldname>iplist</fieldname>
+ <description>
+ Enter source IP addresses here with space(' ') divider.
+ IP addresses must have format:&lt;br&gt;
+ single example: '192.168.0.1' &lt;br&gt;
+ range examples: '192.168.0.0/24', '192.168.1.0/255.255.255.0', '192.168.1.1-192.168.1.10'
+ </description>
+ <type>textarea</type>
+ <cols>65</cols>
+ <rows>3</rows>
+ </field>
+ <field>
+ <fielddescr>Source Domains</fielddescr>
+ <fieldname>domains</fieldname>
+ <description>
+ Enter source domains names here with space(' ') divider.
+ Example: &lt;b&gt;'foo.bar'&lt;/b&gt; match &lt;b&gt;'foo.bar'&lt;/b&gt; or &lt;b&gt;'*.foo.bar'&lt;/b&gt;.
+ </description>
+ <type>textarea</type>
+ <cols>65</cols>
+ <rows>3</rows>
+ </field-->
+ <field>
+ <fielddescr>Time</fielddescr>
+ <fieldname>time</fieldname>
+ <description>Enter time name in current which this rule permitted.</description>
+ <type>select</type>
+ </field>
+ <field>
+ <fielddescr>Destination</fielddescr>
+ <fieldname>dest</fieldname>
+ <description></description>
+ <type>input</type>
+ <size>100</size>
+ </field>
+ <field>
+ <fielddescr>Not to allow IP addresses in URL</fielddescr>
+ <fieldname>notallowingip</fieldname>
+ <description>
+ To make sure that people don't bypass the URL filter
+ by simply using the IP addresses instead of the fully qualified domain names, you can check this option.
+ </description>
+ <type>checkbox</type>
+ </field>
+ <field>
+ <fielddescr>Redirect mode</fielddescr>
+ <fieldname>redirect_mode</fieldname>
+ <description>
+ Select redirect mode here.
+ &lt;br&gt; Note: if you use 'transparent proxy', then 'int' redirect mode will not accessible.
+<!-- &lt;br&gt;&lt;b&gt; int size limit :&lt;/b&gt; if content size 0 or > 'size limit', then client moved to 'blank image' page; -->
+ &lt;br&gt; Options:
+ &lt;A title="To 'url' will added special client information;" &gt;
+ &lt;span style="background-color: #dddddd;" &gt;ext url err page&lt;/span&gt;&lt;/A&gt; ,
+ &lt;A title="Client view 'url' content without any notification about;" &gt;
+ &lt;span style="background-color: #dddddd;" &gt; ext url redirect&lt;/span&gt;&lt;/A&gt; ,
+ &lt;A title="Client will moved to specified url with displaying url in addres bar;" &gt;
+ &lt;span style="background-color: #dddddd;" &gt; ext url as 'move'&lt;/span&gt;&lt;/A&gt; ,
+ &lt;A title="Client will moved to specified url with showing progress(only!) in status bar;" &gt;
+ &lt;span style="background-color: #dddddd;" &gt; ext url as 'found'.&lt;/span&gt;&lt;/A&gt;
+ &lt;/u&gt;
+ </description>
+ <type>select</type>
+ <value>rmod_none</value>
+ <options>
+ <option><name>none</name> <value>rmod_none</value></option>
+ <option><name>int error page (enter error message)</name> <value>rmod_int</value></option>
+ <option><name>int blank page </name> <value>rmod_int_bpg</value></option>
+<!-- <option><name>int blank image</name> <value>rmod_int_bim</value></option> -->
+<!-- <option><name>int size limit (enter size in bytes)</name> <value>rmod_int_szl</value></option> -->
+ <option><name>ext url err page (enter URL)</name> <value>rmod_ext_err</value></option>
+ <option><name>ext url redirect (enter URL)</name> <value>rmod_ext_rdr</value></option>
+ <option><name>ext url move (enter URL)</name> <value>rmod_ext_mov</value></option>
+ <option><name>ext url found (enter URL)</name> <value>rmod_ext_fnd</value></option>
+ </options>
+ </field>
+ <field>
+ <fielddescr>Redirect</fielddescr>
+ <fieldname>redirect</fieldname>
+ <description>
+ Enter external redirection URL, error message or size (bytes) here.
+ </description>
+ <type>textarea</type>
+ <cols>65</cols>
+ <rows>2</rows>
+ </field>
+<!-- not need now
+ <field>
+ <fielddescr>Overtime redirect</fielddescr>
+ <fieldname>overredirect</fieldname>
+ <description>
+ Enter external redirection URL, error message or size (bytes) here.
+ </description>
+ <type>textarea</type>
+ <cols>65</cols>
+ <rows>2</rows>
+ </field>
-->
- <field>
- <fielddescr>Name</fielddescr>
- <fieldname>name</fieldname>
- <description>
- You can enter name here. Name consist minimum 2 symbols, first from which letter. &lt;br&gt;
- All other symbols is [a-Z_0-9]. Source name must be &lt;b&gt;unique&lt;/b&gt; .
- </description>
- <type>input</type>
- <required/>
- <size>100</size>
- </field>
- <field>
- <fielddescr>Order</fielddescr>
- <fieldname>order</fieldname>
- <description>
- Order source in list. &lt;br&gt;
- &lt;b&gt;Note:&lt;/b&gt; &lt;br&gt;
- Sources order have very high importance. Sources are evaluated on a first-match basis. &lt;br&gt;
- If your sources have an overlaying ranges, then act will be first in list. &lt;br&gt;
- &lt;b&gt;For example:&lt;/b&gt; &lt;br&gt;
- Wrong order:
- First source entry is the range 10.0.0.0/24 and second entry is 10.0.0.15 (or 10.0.0.15/32 ) &lt;br&gt;
- Right order:
- First source entry is the single ip 10.0.0.15 (or 10.0.0.15/32 ) then the overlaying range 10.0.0.0/24 &lt;br&gt;
- </description>
- <type>input</type>
- <size>5</size>
- </field>
- <field>
- <fielddescr>Source IP addresses</fielddescr>
- <fieldname>iplist</fieldname>
- <description>
- Enter source IP addresses here with space(' ') divider.
- IP addresses must have format:&lt;br&gt;
- single example: '192.168.0.1' &lt;br&gt;
- range examples: '192.168.0.0/24', '192.168.1.0/255.255.255.0', '192.168.1.1-192.168.1.10'
- </description>
- <type>textarea</type>
- <cols>65</cols>
- <rows>3</rows>
- </field>
- <field>
- <fielddescr>Source Domains</fielddescr>
- <fieldname>domains</fieldname>
- <description>
- Enter source domains names here with space(' ') divider.
- Example: &lt;b&gt;'foo.bar'&lt;/b&gt; match &lt;b&gt;'foo.bar'&lt;/b&gt; or &lt;b&gt;'*.foo.bar'&lt;/b&gt;.
- </description>
- <type>textarea</type>
- <cols>65</cols>
- <rows>3</rows>
- </field>
- <field>
- <fielddescr>Time</fielddescr>
- <fieldname>time</fieldname>
- <description>Enter time name in current which this rule permitted.</description>
- <type>select</type>
- </field>
- <field>
- <fielddescr>Destination</fielddescr>
- <fieldname>dest</fieldname>
- <description></description>
- <type>input</type>
- <size>100</size>
- </field>
- <field>
- <fielddescr>Not to allow IP addresses in URL</fielddescr>
- <fieldname>notallowingip</fieldname>
- <description>
- To make sure that people don't bypass the URL filter
- by simply using the IP addresses instead of the fully qualified domain names, you can check this option.
- </description>
- <type>checkbox</type>
- </field>
- <field>
- <fielddescr>Redirect</fielddescr>
- <fieldname>redirect</fieldname>
- <description>
- Enter redirection URL, Tag or Error page code for this rule, or leave blank. &lt;br&gt;
- Supported URL's: 'http://myurl', 'https://myurl'. &lt;br&gt;
- Supported tags: 'blank', 'blank_img'. &lt;br&gt;
- Supported error page codes: 3xx, 4xx, 5xx. Format: 'code' or 'code[space]reason message'.
- </description>
- <type>textarea</type>
- <cols>65</cols>
- <rows>2</rows>
- </field>
- <field>
- <fielddescr>Overtime redirect</fielddescr>
- <fieldname>overredirect</fieldname>
- <description>
- Enter redirection URL, Tag or Error page code for this rule, or leave blank. &lt;br&gt;
- Supported URL's: 'http://myurl', 'https://myurl'. &lt;br&gt;
- Supported tags: 'blank', 'blank_img'. &lt;br&gt;
- Supported error page codes: 3xx, 4xx, 5xx. Format: 'code' or 'code[space]reason message'.
- </description>
- <type>textarea</type>
- <cols>65</cols>
- <rows>2</rows>
- </field>
- <field>
- <fielddescr>Rewrite</fielddescr>
- <fieldname>rewrite</fieldname>
- <description>Enter rewrite condition name for this rule, or leave blank.</description>
- <type>select</type>
- </field>
- <field>
- <fielddescr>Overtime rewrite</fielddescr>
- <fieldname>overrewrite</fieldname>
- <description>Enter rewrite condition name for this rule, or leave blank.</description>
- <type>select</type>
- </field>
- <field>
- <fielddescr>Description</fielddescr>
- <fieldname>description</fieldname>
- <description>You may enter a description here for your reference (not parsed).</description>
- <type>input</type>
- <size>100</size>
- </field>
- <field>
- <fielddescr>Enable log</fielddescr>
- <fieldname>enablelog</fieldname>
- <description>Check this for enable log.</description>
- <type>checkbox</type>
- </field>
- </fields>
+ <field>
+ <fielddescr>Rewrite</fielddescr>
+ <fieldname>rewrite</fieldname>
+ <description>Enter rewrite condition name for this rule, or leave blank.</description>
+ <type>select</type>
+ </field>
+ <field>
+ <fielddescr>Overtime rewrite</fielddescr>
+ <fieldname>overrewrite</fieldname>
+ <description>Enter rewrite condition name for this rule, or leave blank.</description>
+ <type>select</type>
+ </field>
+ <field>
+ <fielddescr>Description</fielddescr>
+ <fieldname>description</fieldname>
+ <description>You may enter a description here for your reference (not parsed).</description>
+ <type>input</type>
+ <size>100</size>
+ </field>
+ <field>
+ <fielddescr>Enable log</fielddescr>
+ <fieldname>enablelog</fieldname>
+ <description>Check this for enable log.</description>
+ <type>checkbox</type>
+ </field>
+ </fields>
- <custom_php_validation_command>
- squidguard_validate_acl(&amp;$_POST, &amp;$input_errors);
- </custom_php_validation_command>
- <custom_php_command_before_form>
- squidguard_before_form_acl(&amp;$pkg);
- </custom_php_command_before_form>
- <custom_php_after_form_command>
- squidGuard_print_javascript();
- </custom_php_after_form_command>
- <custom_php_resync_config_command>
- squidguard_resync_acl();
- </custom_php_resync_config_command>
- <custom_delete_php_command>
- squidguard_resync_acl();
- </custom_delete_php_command>
- <custom_add_php_command>
- </custom_add_php_command>
- <custom_add_php_command_late>
- </custom_add_php_command_late>
-</packagegui>
+ <custom_php_validation_command>
+ squidguard_validate_acl(&amp;$_POST, &amp;$input_errors);
+ </custom_php_validation_command>
+ <custom_php_command_before_form>
+ squidguard_before_form_acl(&amp;$pkg);
+ </custom_php_command_before_form>
+ <custom_php_after_form_command>
+ squidGuard_print_javascript();
+ </custom_php_after_form_command>
+ <custom_php_resync_config_command>
+ squidguard_resync_acl();
+ </custom_php_resync_config_command>
+ <custom_delete_php_command>
+ squidguard_resync_acl();
+ </custom_delete_php_command>
+ <custom_add_php_command>
+ </custom_add_php_command>
+ <custom_add_php_command_late>
+ </custom_add_php_command_late>
+</packagegui> \ No newline at end of file
generated by cgit v1.2.3 (git 2.25.1) at 2024-10-05 18:20:53 +0000