]>
git.ipfire.org Git - people/pmueller/ipfire-2.x.git/blob - html/cgi-bin/optionsfw.cgi
2 ###############################################################################
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2007-2024 IPFire Team <info@ipfire.org> #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
20 ###############################################################################
22 # enable only the following on debugging purpose
24 #use CGI::Carp 'fatalsToBrowser';
26 require '/var/ipfire/general-functions.pl';
27 require "${General::swroot}/lang.pl";
28 require "${General::swroot}/header.pl";
31 my %checked =(); # Checkbox manipulations
35 my %configoutgoingfw=();
37 my $configfwdfw = "${General::swroot}/firewall/config";
38 my $configoutgoing = "${General::swroot}/firewall/outgoing";
39 my $errormessage = '';
41 my $filename = "${General::swroot}/optionsfw/settings";
43 &General
::readhash
("${General::swroot}/firewall/settings", \
%fwdfwsettings);
44 &Header
::showhttpheaders
();
47 &Header
::getcgihash
(\
%settings);
48 if ($settings{'ACTION'} eq $Lang::tr
{'save'}) {
49 if ($settings{'defpol'} ne '1'){
50 $errormessage .= $Lang::tr
{'new optionsfw later'};
51 &General
::writehash
($filename, \
%settings); # Save good settings
52 &General
::system("/usr/local/bin/firewallctrl");
54 if ($settings{'POLICY'} ne ''){
55 $fwdfwsettings{'POLICY'} = $settings{'POLICY'};
57 if ($settings{'POLICY1'} ne ''){
58 $fwdfwsettings{'POLICY1'} = $settings{'POLICY1'};
60 my $MODE = $fwdfwsettings{'POLICY'};
61 my $MODE1 = $fwdfwsettings{'POLICY1'};
63 $fwdfwsettings{'POLICY'} = "$MODE";
64 $fwdfwsettings{'POLICY1'} = "$MODE1";
65 &General
::writehash
("${General::swroot}/firewall/settings", \
%fwdfwsettings);
66 &General
::readhash
("${General::swroot}/firewall/settings", \
%fwdfwsettings);
67 &General
::system("/usr/local/bin/firewallctrl");
69 &General
::readhash
($filename, \
%settings); # Load good settings
72 &Header
::openpage
($Lang::tr
{'options fw'}, 1, '');
73 &Header
::openbigbox
('100%', 'left', '', $errormessage);
74 &General
::readhash
($filename, \
%settings);
76 &Header
::openbox
('100%', 'left', $Lang::tr
{'warning messages'});
77 print "<font color='red'>$errormessage </font>";
82 if (!$settings{'MASQUERADE_GREEN'}) {
83 $settings{'MASQUERADE_GREEN'} = 'on';
85 if (!$settings{'MASQUERADE_ORANGE'}) {
86 $settings{'MASQUERADE_ORANGE'} = 'on';
88 if (!$settings{'MASQUERADE_BLUE'}) {
89 $settings{'MASQUERADE_BLUE'} = 'on';
91 if (!$settings{'DROPSPOOFEDMARTIAN'}) {
92 $settings{'DROPSPOOFEDMARTIAN'} = 'on';
94 if (!$settings{'DROPHOSTILE'}) {
95 $settings{'DROPHOSTILE'} = 'off';
97 if (!$settings{'LOGDROPHOSTILEIN'}) {
98 $settings{'LOGDROPHOSTILEIN'} = 'on';
100 if (!$settings{'LOGDROPHOSTILEOUT'}) {
101 $settings{'LOGDROPHOSTILEOUT'} = 'on';
103 if (!$settings{'LOGDROPCTINVALID'}) {
104 $settings{'LOGDROPCTINVALID'} = 'on';
107 $checked{'DROPNEWNOTSYN'}{'off'} = '';
108 $checked{'DROPNEWNOTSYN'}{'on'} = '';
109 $checked{'DROPNEWNOTSYN'}{$settings{'DROPNEWNOTSYN'}} = "checked='checked'";
110 $checked{'DROPINPUT'}{'off'} = '';
111 $checked{'DROPINPUT'}{'on'} = '';
112 $checked{'DROPINPUT'}{$settings{'DROPINPUT'}} = "checked='checked'";
113 $checked{'DROPFORWARD'}{'off'} = '';
114 $checked{'DROPFORWARD'}{'on'} = '';
115 $checked{'DROPFORWARD'}{$settings{'DROPFORWARD'}} = "checked='checked'";
116 $checked{'DROPOUTGOING'}{'off'} = '';
117 $checked{'DROPOUTGOING'}{'on'} = '';
118 $checked{'DROPOUTGOING'}{$settings{'DROPOUTGOING'}} = "checked='checked'";
119 $checked{'DROPPORTSCAN'}{'off'} = '';
120 $checked{'DROPPORTSCAN'}{'on'} = '';
121 $checked{'DROPPORTSCAN'}{$settings{'DROPPORTSCAN'}} = "checked='checked'";
122 $checked{'DROPWIRELESSINPUT'}{'off'} = '';
123 $checked{'DROPWIRELESSINPUT'}{'on'} = '';
124 $checked{'DROPWIRELESSINPUT'}{$settings{'DROPWIRELESSINPUT'}} = "checked='checked'";
125 $checked{'DROPWIRELESSFORWARD'}{'off'} = '';
126 $checked{'DROPWIRELESSFORWARD'}{'on'} = '';
127 $checked{'DROPWIRELESSFORWARD'}{$settings{'DROPWIRELESSFORWARD'}} = "checked='checked'";
128 $checked{'DROPSPOOFEDMARTIAN'}{'off'} = '';
129 $checked{'DROPSPOOFEDMARTIAN'}{'on'} = '';
130 $checked{'DROPSPOOFEDMARTIAN'}{$settings{'DROPSPOOFEDMARTIAN'}} = "checked='checked'";
131 $checked{'DROPHOSTILE'}{'off'} = '';
132 $checked{'DROPHOSTILE'}{'on'} = '';
133 $checked{'DROPHOSTILE'}{$settings{'DROPHOSTILE'}} = "checked='checked'";
134 $checked{'LOGDROPHOSTILEIN'}{'off'} = '';
135 $checked{'LOGDROPHOSTILEIN'}{'on'} = '';
136 $checked{'LOGDROPHOSTILEIN'}{$settings{'LOGDROPHOSTILEIN'}} = "checked='checked'";
137 $checked{'LOGDROPHOSTILEOUT'}{'off'} = '';
138 $checked{'LOGDROPHOSTILEOUT'}{'on'} = '';
139 $checked{'LOGDROPHOSTILEOUT'}{$settings{'LOGDROPHOSTILEOUT'}} = "checked='checked'";
140 $checked{'LOGDROPCTINVALID'}{'off'} = '';
141 $checked{'LOGDROPCTINVALID'}{'on'} = '';
142 $checked{'LOGDROPCTINVALID'}{$settings{'LOGDROPCTINVALID'}} = "checked='checked'";
143 $checked{'DROPPROXY'}{'off'} = '';
144 $checked{'DROPPROXY'}{'on'} = '';
145 $checked{'DROPPROXY'}{$settings{'DROPPROXY'}} = "checked='checked'";
146 $checked{'DROPSAMBA'}{'off'} = '';
147 $checked{'DROPSAMBA'}{'on'} = '';
148 $checked{'DROPSAMBA'}{$settings{'DROPSAMBA'}} = "checked='checked'";
149 $checked{'SHOWCOLORS'}{'off'} = '';
150 $checked{'SHOWCOLORS'}{'on'} = '';
151 $checked{'SHOWCOLORS'}{$settings{'SHOWCOLORS'}} = "checked='checked'";
152 $checked{'SHOWREMARK'}{'off'} = '';
153 $checked{'SHOWREMARK'}{'on'} = '';
154 $checked{'SHOWREMARK'}{$settings{'SHOWREMARK'}} = "checked='checked'";
155 $checked{'SHOWTABLES'}{'off'} = '';
156 $checked{'SHOWTABLES'}{'on'} = '';
157 $checked{'SHOWTABLES'}{$settings{'SHOWTABLES'}} = "checked='checked'";
158 $checked{'SHOWDROPDOWN'}{'off'} = '';
159 $checked{'SHOWDROPDOWN'}{'on'} = '';
160 $checked{'SHOWDROPDOWN'}{$settings{'SHOWDROPDOWN'}} = "checked='checked'";
161 $selected{'FWPOLICY'}{$settings{'FWPOLICY'}}= 'selected';
162 $selected{'FWPOLICY1'}{$settings{'FWPOLICY1'}}= 'selected';
163 $selected{'FWPOLICY2'}{$settings{'FWPOLICY2'}}= 'selected';
164 $selected{'MASQUERADE_GREEN'}{'off'} = '';
165 $selected{'MASQUERADE_GREEN'}{'on'} = '';
166 $selected{'MASQUERADE_GREEN'}{$settings{'MASQUERADE_GREEN'}} = 'selected="selected"';
167 $selected{'MASQUERADE_ORANGE'}{'off'} = '';
168 $selected{'MASQUERADE_ORANGE'}{'on'} = '';
169 $selected{'MASQUERADE_ORANGE'}{$settings{'MASQUERADE_ORANGE'}} = 'selected="selected"';
170 $selected{'MASQUERADE_BLUE'}{'off'} = '';
171 $selected{'MASQUERADE_BLUE'}{'on'} = '';
172 $selected{'MASQUERADE_BLUE'}{$settings{'MASQUERADE_BLUE'}} = 'selected="selected"';
174 &Header
::openbox
('100%', 'center',);
175 print "<form method='post' action='$ENV{'SCRIPT_NAME'}'>";
178 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
179 <table width='95%' cellspacing='0'>
180 <tr bgcolor='$color{'color20'}'>
181 <td colspan='2' align='left'><b>$Lang::tr{'masquerading'}</b></td>
184 <td align='left' width='60%'>$Lang::tr{'masquerade green'}</td>
186 <select name='MASQUERADE_GREEN'>
187 <option value='on' $selected{'MASQUERADE_GREEN'}{'on'}>$Lang::tr{'masquerading enabled'}</option>
188 <option value='off' $selected{'MASQUERADE_GREEN'}{'off'}>$Lang::tr{'masquerading disabled'}</option>
194 if (&Header
::orange_used
()) {
197 <td align='left' width='60%'>$Lang::tr{'masquerade orange'}</td>
199 <select name='MASQUERADE_ORANGE'>
200 <option value='on' $selected{'MASQUERADE_ORANGE'}{'on'}>$Lang::tr{'masquerading enabled'}</option>
201 <option value='off' $selected{'MASQUERADE_ORANGE'}{'off'}>$Lang::tr{'masquerading disabled'}</option>
208 if (&Header
::blue_used
()) {
211 <td align='left' width='60%'>$Lang::tr{'masquerade blue'}</td>
213 <select name='MASQUERADE_BLUE'>
214 <option value='on' $selected{'MASQUERADE_BLUE'}{'on'}>$Lang::tr{'masquerading enabled'}</option>
215 <option value='off' $selected{'MASQUERADE_BLUE'}{'off'}>$Lang::tr{'masquerading disabled'}</option>
227 <table width='95%' cellspacing='0'>
228 <tr bgcolor='$color{'color20'}'>
229 <td colspan='2' align='left'><b>$Lang::tr{'fw red'}</b></td>
232 <td align='left' width='60%'>$Lang::tr{'drop hostile'}</td>
234 $Lang::tr{'on'} <input type='radio' name='DROPHOSTILE' value='on' $checked{'DROPHOSTILE'}{'on'} />/
235 <input type='radio' name='DROPHOSTILE' value='off' $checked{'DROPHOSTILE'}{'off'} /> $Lang::tr{'off'}
241 <table width='95%' cellspacing='0'>
242 <tr bgcolor='$color{'color20'}'><td colspan='2' align='left'><b>$Lang::tr{'fw blue'}</b></td></tr>
243 <tr><td align='left' width='60%'>$Lang::tr{'drop proxy'}</td><td align='left'>$Lang::tr{'on'} <input type='radio' name='DROPPROXY' value='on' $checked{'DROPPROXY'}{'on'} />/
244 <input type='radio' name='DROPPROXY' value='off' $checked{'DROPPROXY'}{'off'} /> $Lang::tr{'off'}</td></tr>
245 <tr><td align='left' width='60%'>$Lang::tr{'drop samba'}</td><td align='left'>$Lang::tr{'on'} <input type='radio' name='DROPSAMBA' value='on' $checked{'DROPSAMBA'}{'on'} />/
246 <input type='radio' name='DROPSAMBA' value='off' $checked{'DROPSAMBA'}{'off'} /> $Lang::tr{'off'}</td></tr>
250 <table width='95%' cellspacing='0'>
251 <tr bgcolor='$color{'color20'}'>
252 <td colspan='2' align='left'><b>$Lang::tr{'fw logging'}</b></td>
255 <td align='left' width='60%'>$Lang::tr{'drop newnotsyn'}</td>
257 $Lang::tr{'on'} <input type='radio' name='DROPNEWNOTSYN' value='on' $checked{'DROPNEWNOTSYN'}{'on'} />/
258 <input type='radio' name='DROPNEWNOTSYN' value='off' $checked{'DROPNEWNOTSYN'}{'off'} /> $Lang::tr{'off'}
262 <td align='left' width='60%'>$Lang::tr{'log dropped conntrack invalids'}</td>
264 $Lang::tr{'on'} <input type='radio' name='LOGDROPCTINVALID' value='on' $checked{'LOGDROPCTINVALID'}{'on'} />/
265 <input type='radio' name='LOGDROPCTINVALID' value='off' $checked{'LOGDROPCTINVALID'}{'off'} /> $Lang::tr{'off'}
269 <td align='left' width='60%'>$Lang::tr{'drop input'}</td>
271 $Lang::tr{'on'} <input type='radio' name='DROPINPUT' value='on' $checked{'DROPINPUT'}{'on'} />/
272 <input type='radio' name='DROPINPUT' value='off' $checked{'DROPINPUT'}{'off'} /> $Lang::tr{'off'}
276 <td align='left' width='60%'>$Lang::tr{'drop forward'}</td>
278 $Lang::tr{'on'} <input type='radio' name='DROPFORWARD' value='on' $checked{'DROPFORWARD'}{'on'} />/
279 <input type='radio' name='DROPFORWARD' value='off' $checked{'DROPFORWARD'}{'off'} /> $Lang::tr{'off'}
283 <td align='left' width='60%'>$Lang::tr{'drop outgoing'}</td>
285 $Lang::tr{'on'} <input type='radio' name='DROPOUTGOING' value='on' $checked{'DROPOUTGOING'}{'on'} />/
286 <input type='radio' name='DROPOUTGOING' value='off' $checked{'DROPOUTGOING'}{'off'} /> $Lang::tr{'off'}
290 <td align='left' width='60%'>$Lang::tr{'drop portscan'}</td>
292 $Lang::tr{'on'} <input type='radio' name='DROPPORTSCAN' value='on' $checked{'DROPPORTSCAN'}{'on'} />/
293 <input type='radio' name='DROPPORTSCAN' value='off' $checked{'DROPPORTSCAN'}{'off'} /> $Lang::tr{'off'}
297 <td align='left' width='60%'>$Lang::tr{'drop wirelessinput'}</td>
299 $Lang::tr{'on'} <input type='radio' name='DROPWIRELESSINPUT' value='on' $checked{'DROPWIRELESSINPUT'}{'on'} />/
300 <input type='radio' name='DROPWIRELESSINPUT' value='off' $checked{'DROPWIRELESSINPUT'}{'off'} /> $Lang::tr{'off'}
304 <td align='left' width='60%'>$Lang::tr{'drop wirelessforward'}</td>
306 $Lang::tr{'on'} <input type='radio' name='DROPWIRELESSFORWARD' value='on' $checked{'DROPWIRELESSFORWARD'}{'on'} />/
307 <input type='radio' name='DROPWIRELESSFORWARD' value='off' $checked{'DROPWIRELESSFORWARD'}{'off'} /> $Lang::tr{'off'}
311 <td align='left' width='60%'>$Lang::tr{'drop spoofed martians'}</td>
313 $Lang::tr{'on'} <input type='radio' name='DROPSPOOFEDMARTIAN' value='on' $checked{'DROPSPOOFEDMARTIAN'}{'on'} />/
314 <input type='radio' name='DROPSPOOFEDMARTIAN' value='off' $checked{'DROPSPOOFEDMARTIAN'}{'off'} /> $Lang::tr{'off'}
318 <td align='left' width='60%'>$Lang::tr{'log drop hostile in'}</td>
320 $Lang::tr{'on'} <input type='radio' name='LOGDROPHOSTILEIN' value='on' $checked{'LOGDROPHOSTILEIN'}{'on'} />/
321 <input type='radio' name='LOGDROPHOSTILEIN' value='off' $checked{'LOGDROPHOSTILEIN'}{'off'} /> $Lang::tr{'off'}
325 <td align='left' width='60%'>$Lang::tr{'log drop hostile out'}</td>
327 $Lang::tr{'on'} <input type='radio' name='LOGDROPHOSTILEOUT' value='on' $checked{'LOGDROPHOSTILEOUT'}{'on'} />/
328 <input type='radio' name='LOGDROPHOSTILEOUT' value='off' $checked{'LOGDROPHOSTILEOUT'}{'off'} /> $Lang::tr{'off'}
334 <table width='95%' cellspacing='0'>
335 <tr bgcolor='$color{'color20'}'><td colspan='2' align='left'><b>$Lang::tr{'fw settings'}</b></td></tr>
336 <tr><td align='left' width='60%'>$Lang::tr{'fw settings color'}</td><td align='left'>$Lang::tr{'on'} <input type='radio' name='SHOWCOLORS' value='on' $checked{'SHOWCOLORS'}{'on'} />/
337 <input type='radio' name='SHOWCOLORS' value='off' $checked{'SHOWCOLORS'}{'off'} /> $Lang::tr{'off'}</td></tr>
338 <tr><td align='left' width='60%'>$Lang::tr{'fw settings remark'}</td><td align='left'>$Lang::tr{'on'} <input type='radio' name='SHOWREMARK' value='on' $checked{'SHOWREMARK'}{'on'} />/
339 <input type='radio' name='SHOWREMARK' value='off' $checked{'SHOWREMARK'}{'off'} /> $Lang::tr{'off'}</td></tr>
340 <tr><td align='left' width='60%'>$Lang::tr{'fw settings ruletable'}</td><td align='left'>$Lang::tr{'on'} <input type='radio' name='SHOWTABLES' value='on' $checked{'SHOWTABLES'}{'on'} />/
341 <input type='radio' name='SHOWTABLES' value='off' $checked{'SHOWTABLES'}{'off'} /> $Lang::tr{'off'}</td></tr>
342 <tr><td align='left' width='60%'>$Lang::tr{'fw settings dropdown'}</td><td align='left'>$Lang::tr{'on'} <input type='radio' name='SHOWDROPDOWN' value='on' $checked{'SHOWDROPDOWN'}{'on'} />/
343 <input type='radio' name='SHOWDROPDOWN' value='off' $checked{'SHOWDROPDOWN'}{'off'} /> $Lang::tr{'off'}</td></tr>
347 <table width='95%' cellspacing='0'>
348 <tr bgcolor='$color{'color20'}'><td colspan='2' align='left'><b>$Lang::tr{'fw default drop'}</b></td></tr>
349 <tr><td align='left' width='60%'>$Lang::tr{'drop action'}</td><td><select name='FWPOLICY'>
350 <option value='DROP' $selected{'FWPOLICY'}{'DROP'}>DROP</option>
351 <option value='REJECT' $selected{'FWPOLICY'}{'REJECT'}>REJECT</option></select>
353 <tr><td align='left' width='60%'>$Lang::tr{'drop action1'}</td><td><select name='FWPOLICY1'>
354 <option value='DROP' $selected{'FWPOLICY1'}{'DROP'}>DROP</option>
355 <option value='REJECT' $selected{'FWPOLICY1'}{'REJECT'}>REJECT</option></select>
357 <tr><td align='left' width='60%'>$Lang::tr{'drop action2'}</td><td><select name='FWPOLICY2'>
358 <option value='DROP' $selected{'FWPOLICY2'}{'DROP'}>DROP</option>
359 <option value='REJECT' $selected{'FWPOLICY2'}{'REJECT'}>REJECT</option></select>
364 <table width='100%' cellspacing='0'>
365 <tr><td align='right'><form method='post' action='$ENV{'SCRIPT_NAME'}'>
366 <input type='submit' name='ACTION' value='$Lang::tr{'save'}' />
374 &Header
::openbox
('100%', 'center', $Lang::tr
{'fwdfw pol title'});
375 if ($fwdfwsettings{'POLICY'} eq 'MODE1'){ $selected{'POLICY'}{'MODE1'} = 'selected'; } else { $selected{'POLICY'}{'MODE1'} = ''; }
376 if ($fwdfwsettings{'POLICY'} eq 'MODE2'){ $selected{'POLICY'}{'MODE2'} = 'selected'; } else { $selected{'POLICY'}{'MODE2'} = ''; }
377 if ($fwdfwsettings{'POLICY1'} eq 'MODE1'){ $selected{'POLICY1'}{'MODE1'} = 'selected'; } else { $selected{'POLICY1'}{'MODE1'} = ''; }
378 if ($fwdfwsettings{'POLICY1'} eq 'MODE2'){ $selected{'POLICY1'}{'MODE2'} = 'selected'; } else { $selected{'POLICY1'}{'MODE2'} = ''; }
380 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
381 <table width='100%' border='0'>
382 <tr><td colspan='3' style='font-weight:bold;color:red;' align='left'>FORWARD </td></tr>
383 <tr><td colspan='3' align='left'>$Lang::tr{'fwdfw pol text'}</td></tr>
384 <tr><td colspan='3'><hr /></td></tr>
385 <tr><td width='15%' align='left'> <select name='POLICY' style="width: 100px">
386 <option value='MODE1' $selected{'POLICY'}{'MODE1'}>$Lang::tr{'fwdfw pol block'}</option>
387 <option value='MODE2' $selected{'POLICY'}{'MODE2'}>$Lang::tr{'fwdfw pol allow'}</option></select>
388 <input type='submit' name='ACTION' value='$Lang::tr{'save'}' /><input type='hidden' name='defpol' value='1'></td>
390 print "</tr></table></form>";
393 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
394 <table width='100%' border='0'>
395 <tr><td colspan='3' style='font-weight:bold;color:red;' align='left'>OUTGOING </td></tr>
396 <tr><td colspan='3' align='left'>$Lang::tr{'fwdfw pol text1'}</td></tr>
397 <tr><td colspan='3'><hr /></td></tr>
398 <tr><td width='15%' align='left'> <select name='POLICY1' style="width: 100px">
399 <option value='MODE1' $selected{'POLICY1'}{'MODE1'}>$Lang::tr{'fwdfw pol block'}</option>
400 <option value='MODE2' $selected{'POLICY1'}{'MODE2'}>$Lang::tr{'fwdfw pol allow'}</option></select>
401 <input type='submit' name='ACTION' value='$Lang::tr{'save'}' /><input type='hidden' name='defpol' value='1'></td>
403 print "</tr></table></form>";
406 &Header
::closebigbox
();
407 &Header
::closepage
();