aboutsummaryrefslogtreecommitdiffstats
path: root/config
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #425 from PiBa-NL/haproxy-devel-2.1Jim P2013-04-136-121/+151
|\ | | | | haproxy-devel, added support for combining acl's,lb-agent-chk,multiple port's,openssl1.0.1
| * haproxy-devel, added support for combining acl'sPiBa-NL2013-04-146-121/+151
| | | | | | | | | | | | | | -Agent check (lb-agent-chk) -binding multiple port's -new try at including OpenSSL 1.0.1 -fix combining frontends
* | Update squid_nac.xmlAlexander Wilke2013-04-111-0/+18
| | | | | | GUI option to block user-agent and reply_mime_types like javascript
* | Update squid.incAlexander Wilke2013-04-111-0/+28
| | | | | | GUI option to block user-agent and reply_mime_types like javascript
* | Fix longstanding bug with enable/disable SID codebmeeks82013-04-101-6/+13
| |
* | Merge pull request #423 from bmeeks8/masterErmal Luçi2013-04-1016-389/+1090
|\ \ | | | | | | Update Snort Package to ver 2.5.5 - New features and bug fixes
| * | Update Snort to 2.5.5 - New features and bug fixesbmeeks82013-04-0913-380/+1076
| | |
| * | Add tip to restart Snort after making changes on page.bmeeks82013-04-093-9/+14
| | |
* | | Merge pull request #420 from PiBa-NL/haproxy-devel-2.1Jim P2013-04-074-123/+276
|\ \ \ | | |/ | |/| haproxy-devel, add options for checking server health
| * | haproxy-devel, add options for checking server healthPiBa-NL2013-04-074-123/+276
| | | | | | | | | | | | | | | -fix adding a new server -show advanced options icon in serverpool overview
* | | Fix this test so it will also remove squidGuard's options from squid config ↵jim-p2013-04-051-2/+1
| | | | | | | | | | | | when disabling.
* | | Flush output buffer while running bgp status commands to avoid a php crashjim-p2013-04-051-0/+1
| | |
* | | Add newline at cert concatMax Mack2013-04-021-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I got an error that haproxy can't load the cert. I looked into it and saw that the two parts are concationated together without a newline. Wrong: -----END CERTIFICATE----------BEGIN RSA PRIVATE KEY----- Correct: -----END CERTIFICATE-----\r\n -----BEGIN RSA PRIVATE KEY----- It works for me now...
* | | bandwidthd add enable optionPhil Davis2013-03-311-6/+12
| | |
* | | bandwidthd add enable optionPhil Davis2013-03-311-36/+51
| | |
* | | Add "auto apply" bit to system patches which will attempt to apply a patch ↵jim-p2013-03-295-4/+90
| | | | | | | | | | | | during earlyshellcmd at boot time, to help patches survive across reboots and upgrades.
* | | Add one more little note.jim-p2013-03-291-1/+1
| | |
* | | Some more refinements for the mail reports package.jim-p2013-03-296-10/+44
| | |
* | | Add command output and log output capabilities to the "mail reports" package.jim-p2013-03-288-41/+494
| | |
* | | pfBlocker allow list ranges that are not exact subnetsPhil Davis2013-03-281-27/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes #2892 I made a "nasty" list as follows: 192.168.100.0-192.168.101.255 192.168.103.8-192.168.103.23 192.168.104.1-192.168.104.254 192.168.105.22-192.168.106.66 192.168.107.3-192.168.107.33 And this code turns it into: 192.168.100.0/23 192.168.103.8/29 192.168.103.16/29 192.168.104.1/32 192.168.104.2/31 192.168.104.4/30 192.168.104.8/29 192.168.104.16/28 192.168.104.32/27 192.168.104.64/26 192.168.104.128/26 192.168.104.192/27 192.168.104.224/28 192.168.104.240/29 192.168.104.248/30 192.168.104.252/31 192.168.104.254/32 192.168.105.22/31 192.168.105.24/29 192.168.105.32/27 192.168.105.64/26 192.168.105.128/25 192.168.106.0/26 192.168.106.64/31 192.168.106.66/32 192.168.107.3/32 192.168.107.4/30 192.168.107.8/29 192.168.107.16/28 192.168.107.32/31 Which is the correct group of CIDRs to represent the given ranges.
* | | Correct permission otherwise openbgpd does not startErmal2013-03-281-2/+2
| | |
* | | Correctly write config file and also properly avoid php errors with some ↵Ermal2013-03-281-22/+24
| | | | | | | | | | | | extra safety belts
* | | Do not make mandatory the local addr but use the listenip if local address ↵Ermal2013-03-282-2/+12
| | | | | | | | | | | | is not set to easy configuration same as was previously done with setkey
* | | No need anymore for the setkey commandErmal2013-03-281-32/+6
| | |
* | | Actually the md5sigkey is directly given in hex revert partially previous commitErmal2013-03-271-10/+4
| | |
* | | Correctly generate the hex value needed for md5sigkey value. Use correct ↵Ermal2013-03-271-13/+15
| | | | | | | | | | | | permissions for configuration file when generating
* | | Merge pull request #414 from PiBa-NL/haproxy-devel-2.1Jim P2013-03-264-25/+67
|\| | | |/ |/| advanced bind options, extended username/password characters+escaping, c...
| * advanced bind options, extended username/password characters+escaping, ↵PiBa-NL2013-03-274-25/+67
| | | | | | | | change deprecated options to current equivalents, changed nbproc default to 1, for better (default settings) compatibility with other options.
* | Fix preproc auto-rule disable to skip disabled rules.bmeeks82013-03-221-1/+2
| |
* | Set correct VRT Rules tarball for Snort 2.9.4.1bmeeks82013-03-211-1/+1
| |
* | Move to latest available rulesetsErmal2013-03-211-3/+3
| |
* | Rename function to not clash with pfsense oneErmal2013-03-191-3/+3
| |
* | Merge pull request #410 from PiBa-NL/haproxy-devel-2.1Jim P2013-03-166-65/+114
|\| | | | | haproxy-devel, removed cert filtering, server options, fixed saving global advanced setting.
| * haproxy-develPiBa-NL2013-03-166-65/+114
| | | | | | | | | | | | | | -allow advanced configuration like a cookie per backend-server -show if ACLs have been used in the overview -fixed global advanced option saving -show all certificates, as filtering server certs didn't work properly..
* | Merge pull request #409 from PiBa-NL/systempatches_htmlspecialcharsJim P2013-03-151-1/+1
|\ \ | | | | | | systempatches, fix editing patch containing html code using: htmlspecialchars
| * | systempatches, fix editing patch containing html code using: htmlspecialcharsPiBa-NL2013-03-151-1/+1
| | |
* | | Correct descpritonErmal2013-03-151-2/+2
| | |
* | | bandwidthd - rotate log files when output_cdf is enabledPhil Davis2013-03-151-5/+21
| | | | | | | | | Improve the documentation of options on the GUI, including what happens when output_cdf is on.
* | | bandwidthd - rotate log files when output_cdf is enabledPhil Davis2013-03-151-2/+16
| | |
* | | Merge pull request #407 from PiBa-NL/haproxy-devel-2.1Jim P2013-03-144-112/+287
|\ \ \ | | |/ | |/| haproxy-devel, made frontend merging hide more irrelevant settings
| * | haproxy-devel, made frontend merging in such a way that it is more obvious ↵PiBa-NL2013-03-144-112/+287
| | | | | | | | | | | | that a lot of settings are not needed for 'secondary' frontends.
* | | bandwidthd on nanobsd - put logo and legend files in placePhil Davis2013-03-131-1/+6
| | | | | | | | | legend.gif and logo.gif were missing from the report/graph page. They need to be put in /var/bandwidthd/htdocs
* | | update repo locationChris Buechler2013-03-113-5/+5
|/ /
* | haproxy-devel, small bugfixes.. maintain ssl checkbox selection, dont use ↵PiBa-NL2013-03-093-12/+49
| | | | | | | | httpcheck for ssl backends, use req_ssl_hello_type for https with SNI acl's.
* | haproxy-devel, ssl backend support, X-Forwarded-Proto, server states ↵PiBa-NL2013-03-083-63/+90
| | | | | | | | active/backup/disabled/inactive, certificate purpose show 'server certs' only.
* | haproxy-devel,PiBa-NL2013-03-066-36/+89
| | | | | | | | | | -allow shared frontend with SSL offloading -error checking+reporting to user while applying configuration.
* | haproxy-devel, enable ssl selection box.PiBa-NL2013-03-051-4/+5
|/
* Change this quagga command order back, as it appears to be invalid syntax.jim-p2013-03-052-2/+2
|
* Fix typojim-p2013-03-051-1/+1
|
* this currently fails so disable for nowTorben Nielsen2013-03-041-2/+2
|