Services: Intrusion Detection - increase maintainability of suricata.yaml file.
The initial idea was to use php-yaml, parse/merge defaults and overlay the model options, but this doesn't seem to be very feasible due to the structure of the file.
Next best seems to be to remove all comments and default disabled options to make our options more clear, adding the additional + to inline if statements "{% ... +%}" decreases the chance of accidental breakage.
Firewall: Rules [new]: Add per rule state timeouts for udp.first, udp.multiple and udp.single (#9414)
* Firewall: Rules [new]: Add per rule state timeouts for udp.first, udp.multiple and udp.single
* Add subheaders to base_dialog.volt and use them in dialogFilterRule.xml
* whitespace
* Set a maximum value of 2^31 for all integer fields that handle states
* The list is long, put State into the subheader names to indicate relationship
(cherry picked from commit 9697631b03e961b7aa2f5344cb0d6a013a9cbe68)
interfaces: add suport to get "any" interface assigned to an interface #9369
Use it in the Dhcrelay code. It doesn't really care about the returned
address. It just wants to see if the interface has a good configuration.
Config - ditch isArraySequential() in favor of the new array_is_list() introduced in PHP 8.1. closes https://github.com/opnsense/core/pull/9424
This impacts $config usage in legacy code, a before and after comparison of the $config output shows no difference on a larger config file.
As mentioned by @swhite2, the performance of the internal check is much better than the one we're replacing now.
closes https://github.com/opnsense/core/pull/9424
dhcp/kea: Add lease commands, tabulator GroupBy, URL hashes (#9409)
This commit introduces the same features to Kea as already available in the Dnsmasq GUI:
- Lease commands added
- GroupBy will allow simpler filtering by subnet
- URL hashes to better reference the individual tabs
- Frontend code same style as Dnsmasq
dhcp/kea: Prepare dhcpv4.volt for URL hash reservation insertion
* dhcp/kea: Also group by subnet
* The group key is different for both grids due to model relation field
* Move data service widget update to apply button
* Refactor dhcpv6.volt the same way to introduce tabulator GroupBy, URL hashes and reservation autofill via hash
* Add lease commands and tabulator groupBy to leases4 and leases6 templates
* baseURL was wrong for reservations
* Add is_reserved key to LeasesController so leases can show different commands based on their reservation status
* Move upload_reservations and download_reservtions into layout_partial for dhcpv6.volt
[7 lines not shown]
