| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Add RW/RO commands for Aliastables Archiving for Nano/Ramdisk Installs.
|
|
|
|
|
|
| |
1) Add Filter Regex to Alerts Tab (Based on Firewall Diag Logs & Snort
pkg)
2) Change Suppression icon to use "Green +" Icon
|
| |
|
|
|
|
|
|
| |
As spotted by phil.davis -
https://github.com/phil-davis/pfsense-packages/commit/c5b497d4ea370e8f076bd95af5259d547894f2fa
|
|
|
|
| |
This reverts commit e49ea2af46ed44cd955c1f4513b66ca984c2fc8a.
|
|
|
|
| |
This reverts commit 7a9603b71a68fd1edec153151ce78eff7a17b05f.
|
| |
|
|
|
|
| |
https://redmine.pfsense.org/issues/4373#change-17404
|
| |
|
|
|
|
| |
Improve Alerts Tab for IPv6 entries.
|
| |
|
| |
|
|
|
|
|
| |
Move the unlink_if_exists outside of the if statement, as it needs to be
called independently.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
A significant change to the Alerts Tab. This was previously using the
pfSense conv_log_filter function which for this purpose was too bulky.
Added a new function conv_log_filter_lite to improve the process.
75% improvement in Processing Time/CPU Load ( even with alerts counts
>500 )
Improved the Javascript function so that its not called when not
required. This was spinning up additional php-fpm processes.
Changed !empty to !isset for Deny/Permit/Match Alert Counts. Previously
could not enter a "0" value with !empty.
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
1. On Nano/Ramdisk Installations, the /var/db/aliastables folder gets
deleted on reboot. This causes a 60 second delay per alias. This PR
archives the /var/db/aliastable/pfB_*.txt files to the pfBNG pbi /etc
folder. On reboot the contents of this archive are restored.
2. Remove the previous Fetch Timeout code.
3. Improve the IPv6 Regex code.
4. Minor text improvements
5. Add conf_mount RW/RO to the sh script.
6. Add the aliastables() function to restore the aliastables files on
reboot.
|
|
|
|
|
|
|
|
| |
1) Move Hostname lookup to top of script to improve lookup speed.
2) Remove un-necessary Include
3) Use clog instead of grep command
4) If List Column is greater then 17 Characters, Truncate it.
5) Add Timeout to Auto-Hostname Lookup.
|
|
|
|
|
| |
Add functionality to skip lines beginning with a comment (#) when
querying for IP Addresses.
|
|
|
|
|
| |
Move the "Keep Settings" Checkbox below the Enable "pfBlockerNG"
checkbox to make it more visible to the user.
|
|
|
|
|
|
| |
1) Add 0.0.0.0/32 to Regex for Suppression.
2) Improve IPv4 Regex validation.
3) Move Cron Define/Apply function to last step.
|
| |
|
|
|
|
|
|
|
|
|
| |
- Missed removing the /cc folder reference in pfblockerng.xml.
No Version bump is required as this is only required for new
installations.
The countrycodes.tar.bz2 file is provided as a backup in case the user
has a download failure from MaxMind Inc. Website.
|
|
|
|
| |
Add new MaxMind "Anonymous Proxy and Satellite Providers" data.
|
|
|
|
|
|
|
|
|
| |
Changes:
1) When the User selects "Force Cron" and "no updates" are required, the
function doesn't complete properly, and didn't restore the Cron Task.
2) XMLRPC Sync add Maxmind "Annonymous Proxy and Satellite Providers"
|
|
|
|
|
|
|
|
|
|
|
| |
Changes:
1) Add missing $pfbfolder variable to Cron Update function
2) Modify how the include files get loaded.
3) Reputation Tab only requires IPv4, simplify code to use IPv4 only for
this function.
4) Update geoipupdate.sh to use the New PBI folder location and remove
Archive folders after MaxMind Update process
|
|
|
|
| |
Remove alerts bak file (Added Incorrectly)
|
|
|
|
|
|
|
|
| |
1) Improve/Condense the code to determine if a List needs to be Updated.
2) Condense the IPv4/V6 code for MaxMind Database Conversion into a
single process and add the MaxMind Anon. Proxy and Satellite Providers
capability.
|
|
|
|
|
| |
1) Mods for MaxMind Anonymous Proxy and Satellite Providers
2) Mods to MaxMind Dat file location from /var/db to /usr/pbi folders.
|
|
|
|
|
| |
1) Mods for MaxMind Anonymous Proxy and Satellite Providers
2) Add Country Folder viewing capability.
|
|
|
|
|
|
| |
1) Mods for MaxMind Anonymous Proxy and Satellite Providers.
2) Add str_replace array to remove ") which will break the Auto Log
Viewer from functioning.
|
| |
|
|
|
|
| |
Mods to XML files for MaxMind Anon. Proxy/Satellite and priv inc file.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changes -
1) Relocate MaxMind folder from /var/db to /usr/pbi Folder. Nano and
Ramdisk Installations have the /var/db folder wiped on Reboot.
2) Add code to support MaxMind "Anonymous Proxy and Satellite Providers"
to inc file.
3) Move $pfb_alias_lists_all below the conditional "IF" statements.
4) Improve Header Name Validation.
5) Install/De-install - Changes to support MaxMind "Anonymous Proxy and
Satellite Providers" configuration. Delete previously used Folder
location, and remove MaxMind Working files after Installation is
completed.
|
|
|
|
|
|
|
| |
Some IBlock lists have an issue with the existing Range to CIDR
function. The Stilez Range to CIDR Function does not exhibit this
behaviour. Once the existing Range to CIDR function is fixed/or replaced
with the Stilez Function, this PR can be reverted.
|
| |
|
|
|
|
|
| |
When the user clicked "Cancel" in the second JS Prompt, it would not
cancel the Suppression process. This change fixes that issue.
|
|
|
|
|
|
|
|
| |
1) Add missing "&id=0" lines
2) sync.xml - Text modifications
2) Sync.xml - Add Username to the GUI
3) Remove un-necessary Field Names
4) Update pfblockerng.php (XML file builder code)
|
|
|
|
|
|
|
|
|
|
|
|
| |
1. Compressed CC file is provided as a backup in case the Download from
the maxmind.com website fails to complete during Installation.
2. Update pfblockerng.xml
a) Reflect Compressed Archive file changes.
b) Add missing "&id=0" to xml files.
c) Cleanup some text.
d) Add priv.inc file to xml <additional_files_needed>
|
| |
|
|
|
|
| |
Changes as per the previous commit for XMLRPC sync.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Move $pfb['cc'] Variable to global array
- Edit log_error texts.
- Maxmind Update Cron task changes. Cron tasks are now launched via a
php script using the 'dc' Argument.
- Re-work of the XMLRPC Sync code.
- Previous code did not validate IP addresses or Port.
- Previous code did not use the "Replication Target" Hosts enabled
checkbox setting in Replication Target Lines.
- Add htmlspecialchars() to the Password entry
- Previous code did not use the correct user - defined "Protocol" entry.
- Previous code did not use the $username entry.
- Remove the 'post Sync' Host Target code execution as this can
collide with a Cron Task or User Forced Update.
- Allow user to skip the sync of the "General Tab" Settings.
- Clean up all the log_error() texts.. To make the system.log easier to
read.
|
|
|
|
|
|
|
|
|
|
| |
- Modify code to use fopen() and fgetcsv() instead of array_map() and
str_getcsv(). This reduces the memory requirements dramatically.
This version has now been tested on an ALIX board.
- Change Maxmind Cron Task from Cron Shell script task to Cron php task
using the 'dc' Arg. (Refer to the next commit for INC file Changes)
|
|
|
|
| |
Add CDATA sections to Javascripts
|
|
|
|
|
|
| |
- Remove un-necessary code in de-install function of inc file.
- Remove check for logfile extension as other file extensions can now be
deleted in log browser.
|
|
|
|
|
|
| |
- Remove redundant $row['format'] variable
- When "Keep Settings" is enabled and a full uninstall is performed, the
widget does not uninstall cleanly. These changes fix this issue.
|
|
|
|
| |
This reverts commit 161032f05e1819550a32735d60c7b71994b1d9ef.
|
|
|
|
|
|
| |
- remove redundant $row['format'] variable
- When "Keep" Settings is enabled and a full uninstall is performed, the
widget doesn't uninstall cleanly. These changes fix this issue.
|
|
|
|
| |
Add extra spaces to improve text clarity.
|
|
|
|
|
| |
Allow user access to delete Files ( in the following folders - "Deny,
Permit, Match and Native") from the Log Browser Tab.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
pfblockerng.inc -
- Remove redundant ['action'] argument in if() statements.
- If no interfaces are selected, defined empty variable and Array.
- Separate "Skip & Hold" List download functionality into its own
['state'] process. This allows more fine grain control of each
individual list in an Alias.
- Remove argument for empty Interfaces in the Rules Re-order process.
pfblockerng_sync.xml -
- Fix broken link in sync file.
pfblockerng_v4lists.xml and _v6 -
- Separate "Skip & Hold" List download functionality into its own
['state'] process. This allows more fine grain control of each
individual list in an Alias.
- Minor Text improvements.
|
|
|
|
|
|
|
|
| |
- Mod the 'Global Enable Log' if() statement in the .inc file
- Use correct Folder Paths in Log Browser
- Check if syslog array exists in Alerts Tab.
|