aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rwxr-xr-xconfig/squid3/34/squid_reverse.xml451
1 files changed, 0 insertions, 451 deletions
diff --git a/config/squid3/34/squid_reverse.xml b/config/squid3/34/squid_reverse.xml
deleted file mode 100755
index 3617debc..00000000
--- a/config/squid3/34/squid_reverse.xml
+++ /dev/null
@@ -1,451 +0,0 @@
-<?xml version="1.0" encoding="utf-8" ?>
-<!DOCTYPE packagegui SYSTEM "../schema/packages.dtd">
-<?xml-stylesheet type="text/xsl" href="../xsl/package.xsl"?>
-<packagegui>
- <copyright>
-<![CDATA[
-/* $Id$ */
-/* ====================================================================================== */
-/*
- squid_reverse.xml
- part of pfSense (https://www.pfSense.org/)
- Copyright (C) 2012-2014 Marcello Coutinho
- Copyright (C) 2015 ESF, LLC
- All rights reserved.
-*/
-/* ====================================================================================== */
-/*
- Redistribution and use in source and binary forms, with or without
- modification, are permitted provided that the following conditions are met:
-
-
- 1. Redistributions of source code must retain the above copyright notice,
- this list of conditions and the following disclaimer.
-
- 2. Redistributions in binary form must reproduce the above copyright
- notice, this list of conditions and the following disclaimer in the
- documentation and/or other materials provided with the distribution.
-
-
- THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
- INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
- AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
- AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
- OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
- SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
- INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
- CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
- ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
- POSSIBILITY OF SUCH DAMAGE.
-*/
-/* ====================================================================================== */
- ]]>
- </copyright>
- <name>squidreverse</name>
- <version>0.3.5</version>
- <title>Proxy Server: Reverse Proxy</title>
- <include_file>/usr/local/pkg/squid.inc</include_file>
- <tabs>
- <tab>
- <text>General</text>
- <url>/pkg_edit.php?xml=squid.xml&amp;id=0</url>
- </tab>
- <tab>
- <text>Upstream</text>
- <url>/pkg_edit.php?xml=squid_upstream.xml&amp;id=0</url>
- </tab>
- <tab>
- <text>Cache</text>
- <url>/pkg_edit.php?xml=squid_cache.xml&amp;id=0</url>
- </tab>
- <tab>
- <text>ACLs</text>
- <url>/pkg_edit.php?xml=squid_nac.xml&amp;id=0</url>
- </tab>
- <tab>
- <text>Traffic Mgmt</text>
- <url>/pkg_edit.php?xml=squid_traffic.xml&amp;id=0</url>
- </tab>
- <tab>
- <text>Reverse</text>
- <url>/pkg_edit.php?xml=squid_reverse.xml&amp;id=0</url>
- <active/>
- </tab>
- <tab>
- <text>Authentication</text>
- <url>/pkg_edit.php?xml=squid_auth.xml&amp;id=0</url>
- </tab>
- <tab>
- <text>Users</text>
- <url>/pkg.php?xml=squid_users.xml</url>
- </tab>
- <tab>
- <text>Real Time</text>
- <url>/squid_monitor.php</url>
- </tab>
- <tab>
- <text>Sync</text>
- <url>/pkg_edit.php?xml=squid_sync.xml</url>
- </tab>
- </tabs>
- <fields>
- <field>
- <name>Squid Reverse Proxy General Settings</name>
- <type>listtopic</type>
- </field>
- <field>
- <fielddescr>Reverse Proxy Interface</fielddescr>
- <fieldname>reverse_interface</fieldname>
- <description>
- <![CDATA[
- The interface(s) the reverse-proxy server will bind to.<br/>
- Use CTRL + click to select multiple interfaces.
- ]]>
- </description>
- <type>interfaces_selection</type>
- <required/>
- <default_value>wan</default_value>
- <multiple/>
- </field>
- <field>
- <fielddescr>User Defined Reverse Proxy IPs</fielddescr>
- <fieldname>reverse_ip</fieldname>
- <description>
- <![CDATA[
- Squid will additionally bind to these user-defined IPs for reverse proxy operation. Useful for virtual IPs such as CARP.<br/>
- <strong>Note: Separate entries by semi-colons (;)</strong>
- ]]>
- </description>
- <type>input</type>
- <size>70</size>
- </field>
- <field>
- <fielddescr>External FQDN</fielddescr>
- <fieldname>reverse_external_fqdn</fieldname>
- <description>The external fully qualified domain name of the WAN IP address.</description>
- <type>input</type>
- <required/>
- <size>70</size>
- </field>
- <field>
- <fielddescr>Reset TCP Connections on Unauthorized Requests</fielddescr>
- <fieldname>deny_info_tcp_reset</fieldname>
- <description>If checked, the reverse proxy will reset the TCP connection if the request is unauthorized.</description>
- <type>checkbox</type>
- <default_value>on</default_value>
- </field>
- <field>
- <name>Squid Reverse HTTP Settings</name>
- <type>listtopic</type>
- </field>
- <field>
- <fielddescr>Enable HTTP Reverse Mode</fielddescr>
- <fieldname>reverse_http</fieldname>
- <description>
- <![CDATA[
- If checked, the proxy server will act in HTTP reverse mode.<br/>
- <strong>Note: You must add a proper firewall rule with destination 'WAN Address'.</strong>
- ]]>
- </description>
- <type>checkbox</type>
- <enablefields>reverse_http_port,reverse_http_defsite</enablefields>
- <required/>
- <default_value>off</default_value>
- </field>
- <field>
- <fielddescr>Reverse HTTP Port</fielddescr>
- <fieldname>reverse_http_port</fieldname>
- <description>
- <![CDATA[
- This is the port the HTTP reverse proxy will listen on. Default value will be used if left empty.<br/>
- Default: 80
- ]]>
- </description>
- <type>input</type>
- <size>5</size>
- <default_value>80</default_value>
- </field>
- <field>
- <fielddescr>Reverse HTTP Default Site</fielddescr>
- <fieldname>reverse_http_defsite</fieldname>
- <description>
- <![CDATA[
- This is the HTTP reverse proxy default site.<br/>
- Note: Leave empty to use 'External FQDN' value specified above.
- ]]>
- </description>
- <type>input</type>
- <size>60</size>
- </field>
- <field>
- <name>Squid Reverse HTTPS Settings</name>
- <type>listtopic</type>
- </field>
- <field>
- <fielddescr>Enable HTTPS Reverse Proxy</fielddescr>
- <fieldname>reverse_https</fieldname>
- <description>
- <![CDATA[
- If checked, the proxy server will act in HTTPS reverse mode.<br/>
- <strong>Note: You must add a proper firewall rule with destination 'WAN Address'.</strong>
- ]]>
- </description>
- <type>checkbox</type>
- <enablefields>reverse_https_port,reverse_https_defsite,reverse_ssl_cert,reverse_int_ca,reverse_ignore_ssl_valid,reverse_owa,reverse_owa_ip,reverse_owa_webservice,reverse_owa_activesync,reverse_owa_rpchttp,reverse_owa_mapihttp,reverse_owa_autodiscover,reverse_ssl_chain</enablefields>
- <required/>
- <default_value>off</default_value>
- </field>
- <field>
- <fielddescr>Reverse HTTPS Port</fielddescr>
- <fieldname>reverse_https_port</fieldname>
- <description>
- <![CDATA[
- This is the port the HTTPS reverse proxy will listen on. Default value will be used if left empty.<br/>
- Default: 443
- ]]>
- </description>
- <type>input</type>
- <size>5</size>
- <default_value>443</default_value>
- </field>
- <field>
- <fielddescr>Reverse HTTPS Default Site</fielddescr>
- <fieldname>reverse_https_defsite</fieldname>
- <description>
- <![CDATA[
- This is the HTTPS reverse proxy default site.<br/>
- Note: Leave empty to use 'External FQDN' value specified above.
- ]]>
- </description>
- <type>input</type>
- <size>60</size>
- </field>
- <field>
- <fielddescr>Reverse SSL Certificate</fielddescr>
- <fieldname>reverse_ssl_cert</fieldname>
- <description>Choose the SSL Server Certificate here.</description>
- <type>select_source</type>
- <source>$config['cert']</source>
- <source_name>descr</source_name>
- <source_value>refid</source_value>
- </field>
- <field>
- <fielddescr>Intermediate CA Certificate (If Needed)</fielddescr>
- <fieldname>reverse_int_ca</fieldname>
- <description>
- <![CDATA[
- Paste a signed certificate in X.509 <strong>PEM format</strong> here.
- ]]>
- </description>
- <type>textarea</type>
- <cols>75</cols>
- <rows>5</rows>
- <encoding>base64</encoding>
- </field>
- <field>
- <fielddescr>Ignore Internal Certificate Validation</fielddescr>
- <fieldname>reverse_ignore_ssl_valid</fieldname>
- <description>If checked, internal certificate validation will be ignored.</description>
- <type>checkbox</type>
- <default_value>on</default_value>
- </field>
- <field>
- <name>OWA Reverse Proxy General Settings</name>
- <type>listtopic</type>
- </field>
- <field>
- <fielddescr>Enable OWA Reverse Proxy</fielddescr>
- <fieldname>reverse_owa</fieldname>
- <description>If checked, Squid will act as an accelerator/SSL offloader for Outlook Web App.</description>
- <type>checkbox</type>
- <enablefields>reverse_owa_ip,reverse_owa_activesync,reverse_owa_rpchttp,reverse_owa_mapihttp,reverse_owa_webservice,reverse_owa_autodiscover</enablefields>
- </field>
- <field>
- <fielddescr>CAS-Array / OWA Frontend IP Address</fielddescr>
- <fieldname>reverse_owa_ip</fieldname>
- <description>
- <![CDATA[
- These are the internal IPs of the CAS-Array (OWA frontend servers).<br/>
- <strong>Note: Separate entries by semi-colons (;)</strong>
- ]]>
- </description>
- <type>input</type>
- <size>70</size>
- </field>
- <field>
- <fielddescr>Enable ActiveSync</fielddescr>
- <fieldname>reverse_owa_activesync</fieldname>
- <description>If checked, ActiveSync will be enabled.</description>
- <type>checkbox</type>
- </field>
- <field>
- <fielddescr>Enable Outlook Anywhere</fielddescr>
- <fieldname>reverse_owa_rpchttp</fieldname>
- <description>If checked, RPC over HTTP will be enabled.</description>
- <type>checkbox</type>
- </field>
- <field>
- <fielddescr>Enable MAPI HTTP</fielddescr>
- <fieldname>reverse_owa_mapihttp</fieldname>
- <description>
- <![CDATA[
- If checked, MAPI over HTTP will be enabled.<br/>
- <strong>This feature is only available with at least Microsoft Exchange 2013 SP1</strong>
- ]]>
- </description>
- <type>checkbox</type>
- </field>
- <field>
- <fielddescr>Enable Exchange WebServices</fielddescr>
- <fieldname>reverse_owa_webservice</fieldname>
- <description>
- <![CDATA[
- If checked, Exchange WebServices will be enabled.<br/>
- <strong>There are potential DoS side effects to its use. Please avoid unless really required.</strong>
- ]]>
- </description>
- <type>checkbox</type>
- </field>
- <field>
- <fielddescr>Enable AutoDiscover</fielddescr>
- <fieldname>reverse_owa_autodiscover</fieldname>
- <description>
- <![CDATA[
- If checked, AutoDiscover will be enabled.<br/>
- <strong>You also should set up the autodiscover DNS record to point to you WAN IP.</strong>
- ]]>
- </description>
- <type>checkbox</type>
- </field>
- <field>
- <name>Squid Reverse Mappings</name>
- <type>listtopic</type>
- </field>
- <field>
- <fielddescr>
- <![CDATA[
- Peer Definitions<br/>
- Publishing Hosts
- ]]>
- </fielddescr>
- <fieldname>reverse_cache_peer</fieldname>
- <description>
- <![CDATA[
- Enter each peer definition on a new line. Directives have to be separated by a semicolon(;).<br/><br/>
- Syntax: [peer alias];[internal ip address];[port];[HTTP/HTTPS]<br/>
- Example: HOST1;192.168.0.1;80;HTTP<br/>
- <strong><span class="errmsg">WARNING:</span> Wrong syntax usage will result in Squid not starting!</strong>
- ]]>
- </description>
- <type>textarea</type>
- <cols>60</cols>
- <rows>10</rows>
- <encoding>base64</encoding>
- </field>
- <field>
- <fielddescr>
- <![CDATA[
- URI Definitions<br/>
- Published URIs
- ]]>
- </fielddescr>
- <fieldname>reverse_uri</fieldname>
- <description>
- <![CDATA[
- Enter each reverse ACL definition on a separate line. Directives have to be separated by a semicolon(;)<br/><br/>
- Syntax: [group the uri belongs to];[URI to publish](;[vhost fqdn])<br/>
- Example: URI1;public;server.example.com<br/><br/>
- Notes:<br/>
- - A group can contain multiple URIs<br/>
- - If [vhost fqdn] is ommited, 'External FQDN' is used<br/>
- - You also can specify http:// or https://<br/><br/>
- <strong><span class="errmsg">WARNING:</span> Wrong syntax usage will result in Squid not starting!</strong>
- ]]>
- </description>
- <type>textarea</type>
- <cols>60</cols>
- <rows>10</rows>
- <encoding>base64</encoding>
- </field>
- <field>
- <fielddescr>
- <![CDATA[
- ACL Definitions<br/>
- Published URIs
- ]]>
- </fielddescr>
- <fieldname>reverse_acl</fieldname>
- <description>
- <![CDATA[
- Enter each reverse ACL definition on a new line. Directives have to be separated by a semicolon(;)<br/>
- Syntax: [peer alias];[uri group alias]<br/>
- Example: HOST1;URI1<br/>
- <strong><span class="errmsg">WARNING:</span> Wrong syntax usage will result in Squid not starting!</strong>
- ]]>
- </description>
- <type>textarea</type>
- <cols>60</cols>
- <rows>10</rows>
- <encoding>base64</encoding>
- </field>
- <!--
- <field>
- <fielddescr>Internal Hosts</fielddescr>
- <type>rowhelper</type>
- <rowhelper>
- <rowhelperfield>
- <fielddescr>IP Address</fielddescr>
- <fieldname>reverse_cache_peer_ip</fieldname>
- <type>input</type>
- <size>15</size>
- </rowhelperfield>
- <rowhelperfield>
- <fielddescr>Protocol</fielddescr>
- <fieldname>reverse_cache_peer_proto</fieldname>
- <type>select</type>
- <options>
- <option><name>HTTP</name><value>HTTP</value></option>
- <option><name>HTTPS</name><value>HTTPS</value></option>
- </options>
- </rowhelperfield>
- <rowhelperfield>
- <fielddescr>Port</fielddescr>
- <fieldname>reverse_cache_peer_port</fieldname>
- <type>input</type>
- <size>5</size>
- </rowhelperfield>
- <rowhelperfield>
- <fielddescr>Peer Name</fielddescr>
- <fieldname>reverse_cache_peer_name</fieldname>
- <type>input</type>
- <size>25</size>
- </rowhelperfield>
- </rowhelper>
- </field>
- <field>
- <fielddescr>Published URI</fielddescr>
- <type>rowhelper</type>
- <rowhelper>
- <rowhelperfield>
- <fielddescr>URI</fielddescr>
- <fieldname>reverse_cache_peer_uri</fieldname>
- <type>input</type>
- <size>50</size>
- </rowhelperfield>
- <rowhelperfield>
- <fielddescr>Peer Name</fielddescr>
- <fieldname>reverse_cache_peer</fieldname>
- <type>input</type>
- <size>25</size>
- </rowhelperfield>
- </rowhelper>
- </field>
- -->
- </fields>
- <custom_php_validation_command>
- squid_validate_reverse($_POST, $input_errors);
- </custom_php_validation_command>
- <custom_php_resync_config_command>
- squid_resync();
- </custom_php_resync_config_command>
-</packagegui>