Projet

Général

Profil

Télécharger (14,4 ko) Statistiques
| Branche: | Tag: | Révision:

univnautes / etc / inc / filter_log.inc @ 0b857543

# Date Auteur Commentaire
0b857543 16 septembre 2014 18:13 Phil Davis

Fix #3866 Firewall Log Filtering

on master
939f4e39 30 juin 2014 15:47 Renato Botelho

Fix #3725:

- Fix match_filter_field() and also simplify logic
- Fix $filterfieldsarray initialization
- Avoid to have double spaces on filterfieldsarray['act']
- Fix filter on Firewall Logs
c4107752 03 juin 2014 11:24 Phil Davis

Handle firewall log filter regex input better bug #3689

If the user inputs an invalid regex in any of the filter fields, then a page full of "warning" messages appear in the GUI, about whatever is invalid.
If for some reason the user wants to match a forward slash somewhere, then they have to realize to escape it, doing "\/" instead of just "/". Be nice to this special case, because the user does not necessarily know that "/" is being used as the delimiter in the preg_match call. Turn "/" into "\/" (when the "\" is not already put in by the user)....
efa26483 27 mai 2014 14:35 Renato Botelho

Add ICMP to filter parser, it should fix #3663
472455e8 07 mai 2014 19:21 jim-p

Work around some quirks in global handling to show filter rule descriptions in their own row/column when configured for that behavior.
ec26979b 06 mai 2014 21:06 jim-p

Use egrep here (and full path)
481b97b0 06 mai 2014 21:00 jim-p

Consider tracker IDs when looking up filter log entries, if present
2a50fd8a 28 avril 2014 16:54 Renato Botelho

Move clog from /usr to /usr/local
115b7b81 14 avril 2014 14:47 Renato Botelho

Start using filterlog
7b27b18b 04 février 2014 21:14 Renato Botelho

Fix some wrong escapeshellarg() calls
873c1701 04 février 2014 15:34 Renato Botelho

Add escapeshellarg() calls on exec parameters. While I'm here, replace some exec() calls by php functions like symlink, copy, unlink, mkdir
2a45e05f 02 janvier 2014 11:41 Renato Botelho

Fix filter regex
ba1c86d9 30 décembre 2013 17:14 Ermal

Remove scrub as well
32fd1703 30 décembre 2013 16:27 Ermal

Remove even negating nat rules
a03dfc60 30 décembre 2013 15:47 Ermal

Correct matching for single rule. Somehow the egrep did not work there!
b80e29e4 30 décembre 2013 15:34 Ermal

Speed up a bit rule number identification by avoiding going into kernel but using the rules parsing of pf which gives the same effect.
940ef0e3 12 décembre 2013 20:32 jim-p

Fix parsing of the rule number in the pf log on FreeBSD 10.x, part of Bug #2122
d2399f99 25 septembre 2013 17:49 jim-p

Make sure no extra spaces end up in the parsed IP, it can lead to issues in other places (Easy Rule, etc)
e56cb3de 19 août 2013 19:54 jim-p

Attempt to recognize pfsync entries from pf logs.
9486a580 22 mai 2013 03:49 N0YB

Widget Firewall Logs Fields

In the Firewall Log Widget view time field is of more use than source port and protocol.
Add time field and remove source port and protocol fields.
Fields: Action, Time, Interface, Source IP, Destination IP & Port
068e6891 02 avril 2013 18:54 jim-p

Show a little indicator icon if the direction of a firewall log entry is OUT, rather than the usual 'in'. No indicator is shown for IN.
74c6d36f 15 mars 2013 10:17 N0YB

System Firewall Log Filtering by Fields

Previous filter form retained for raw logs view.
fb6079db 25 janvier 2013 22:41 jim-p

Try a little harder to find the protocol rather than giving up. Fixes #2751
cd8155b1 07 décembre 2012 11:46 N0YB

Update etc/inc/filter_log.inc

Firewall Logs Widget FilteringOptions to filter on interfaces, 'pass', 'block', & 'reject'
90763c7f 01 octobre 2012 14:36 PiBa-NL

Firewall log, allow filtering by interface.
f06f7cc0 16 septembre 2012 12:17 PiBa-NL

(line endings UNIX format..)
Firewall log alternating colored rows
Firewall log sortable
Fixed several sorting issues in widgets and other pages
Sorting now possible on multiple rows in the header tables
Sorting now possible for text that starts with IPv4:port
52b27268 10 septembre 2012 16:32 PiBa-NL

Added a setting for configuring the firewall log to either:
-Not load descriptions
-Show descriptions in a column
-Show descriptions on a second row (after a click on 'show descriptions')

'fixed' a few html validation issues..
a6d5e043 08 septembre 2012 14:41 PiBa-NL

Changed firewall log to show the applied rule description directly on screen, also layout optimization for "Show raw filter logs".
2ce660ad 20 janvier 2012 12:18 smos

Unbreak a number of explode() replacements which required preg_split()
cfbfd941 19 janvier 2012 20:33 smos

The function split() is replaced by the function explode(). Starting with PHP 5.3 this is deprecated and with version 6 gone.
Replacing it surpresses all the warnings
3f831035 29 novembre 2011 17:34 jim-p

If an IP is preceeded by "kip ", trim that off. Fixes #2027
8b6313a4 13 juillet 2011 01:57 jim-p

Merge remote-tracking branch 'upstream/master'

Conflicts:
etc/inc/easyrule.inc
etc/inc/filter.inc
etc/inc/interfaces.inc
etc/inc/services.inc
etc/inc/xmlrpc_client.inc
usr/local/www/fbegin.inc
usr/local/www/services_dhcp.php
22599010 26 janvier 2011 14:27 Seth Mos

Show the TCP protocol for ipv6 filter rules
addc0439 01 octobre 2010 15:17 Renato Botelho

Fix quotes to use %N$X on gettext calls
47f12397 31 août 2010 01:36 Renato Botelho

Fix gettext calls with printf to permit change strings order
8abd095a 16 août 2010 15:56 Carlos Eduardo Ramos

Implement gettext() calls on filter_log.inc
3b3170d0 04 août 2010 22:24 jim-p

Don't split the date/time when forming a line's timestamp, use both. Otherwise it can lead to oddities when crossing a date border. Fixes #478
1e357c00 15 juin 2010 22:26 jim-p

Add a safety check to prevent packets like those in #479 from breaking the filter log in the GUI.
24f2fa1d 15 février 2010 21:09 jim-p

Fix bug where the last line of the filter log wasn't displayed in WebGUI.
eb0facb8 18 décembre 2009 22:48 jim-p

Use _descr() instead for getting the log interface, so it uses the user-supplied name rather than wan/opt1/opt2/etc.
7fa79fff 15 décembre 2009 04:58 jim-p

This function appears to not be needed on 2.0 (It is needed on 1.2.3 where I originally coded this part). Use convert_real_interface_to_friendly_interface_name() instead, since it seems to have special case handling for PPPoE and such now. Tested and working on a static IP setup, still needs tested by a PPPoE user on 2.0. (Logs should show "WAN" in the interface column, not "pppoe0".)
2c97c5d9 15 décembre 2009 04:32 jim-p

Add include for config.inc. Without it, the log parser was failing when called from the CLI (e.g. filterparser.php)
e4e3f16e 12 décembre 2009 00:15 Chris Buechler

This breaks the firewall log. Unknown intent, Ermal if you want to improve it, please make sure it works.
Revert "Remove completely bogus code with propper one."

This reverts commit be620dfd9283ee644c57b3c558c7dd603d0f4897.
be620dfd 11 décembre 2009 12:30 Ermal Lu?i

Remove completely bogus code with propper one.
e390b503 15 novembre 2009 17:22 jim-p

Move two include files to /etc/inc instead of leaving them in the www dir. Move filterparser.php to /usr/local/bin since it's not meant to be used from the web interface.