]> git.ipfire.org Git - people/pmueller/ipfire-2.x.git/blame - html/cgi-bin/fwhosts.cgi
projects / people / pmueller / ipfire-2.x.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Forward Firewall: Bugfix: now the Protocols are corrected in the tablerule if a servi...
[people/pmueller/ipfire-2.x.git] / html / cgi-bin / fwhosts.cgi
CommitLineData
2a81ab0d
AM		 1#!/usr/bin/perl
2###############################################################################
3# #
4# IPFire.org - A linux based firewall #
5# Copyright (C) 2011 IPFire Team <info@ipfire.org> #
6# #
7# This program is free software: you can redistribute it and/or modify #
8# it under the terms of the GNU General Public License as published by #
9# the Free Software Foundation, either version 3 of the License, or #
10# (at your option) any later version. #
11# #
12# This program is distributed in the hope that it will be useful, #
13# but WITHOUT ANY WARRANTY; without even the implied warranty of #
14# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15# GNU General Public License for more details. #
16# #
17# You should have received a copy of the GNU General Public License #
18# along with this program. If not, see <http://www.gnu.org/licenses/>. #
19# #
20###############################################################################
21# New function for forwarding firewall. To make it comfortable to create #
22# rules, we need "spelling names" for single Hosts. If you have any questions #
23# <amarx@ipfire.org> #
24###############################################################################
25use strict;
26
27# enable only the following on debugging purpose
28use warnings;
29use CGI::Carp 'fatalsToBrowser';
30no warnings 'uninitialized';
31require '/var/ipfire/general-functions.pl';
32require "${General::swroot}/lang.pl";
33require "${General::swroot}/header.pl";
34
35my %fwhostsettings=();
36my %customnetwork=();
37my %customhost=();
38my %customgrp=();
39my %customservice=();
40my %customservicegrp=();
41my %ccdnet=();
42my %ccdhost=();
43my %ipsecconf=();
44my %icmptypes=();
45my %color=();
46my %defaultNetworks=();
47my %mainsettings=();
48my %ownnet=();
49my %ipsecsettings=();
62fc8511
AM		 50my %fwfwd=();
51my %fwinp=();
2a81ab0d
AM		 52
53my $errormessage;
54my $hint;
55my $update=0;
56my $confignet = "${General::swroot}/fwhosts/customnetworks";
57my $confighost = "${General::swroot}/fwhosts/customhosts";
58my $configgrp = "${General::swroot}/fwhosts/customgroups";
59my $configccdnet = "${General::swroot}/ovpn/ccd.conf";
60my $configccdhost = "${General::swroot}/ovpn/ovpnconfig";
61my $configipsec = "${General::swroot}/vpn/config";
62my $configsrv = "${General::swroot}/fwhosts/customservices";
63my $configsrvgrp = "${General::swroot}/fwhosts/customservicegrp";
62fc8511
AM		 64my $fwconfigfwd = "${General::swroot}/forward/config";
65my $fwconfiginp = "${General::swroot}/forward/input";
2a81ab0d
AM		 66
67unless (-e $confignet) { system("touch $confignet"); }
68unless (-e $confighost) { system("touch $confighost"); }
69unless (-e $configgrp) { system("touch $configgrp"); }
70unless (-e $configsrv) { system("touch $configsrv"); }
71unless (-e $configsrvgrp) { system("touch $configsrvgrp"); }
72
73&General::readhash("${General::swroot}/main/settings", \%mainsettings);
74&General::readhash("/srv/web/ipfire/html/themes/".$mainsettings{'THEME'}."/include/colors.txt", \%color);
75&General::readhash("${General::swroot}/ethernet/settings", \%ownnet);
76&Header::getcgihash(\%fwhostsettings);
77
78&Header::showhttpheaders();
79&Header::openpage($Lang::tr{'fwhost hosts'}, 1, '');
80&Header::openbigbox('100%', 'center');
81
82## ACTION ####
83# Update
84if ($fwhostsettings{'ACTION'} eq 'updatenet' )
85{
86 &General::readhasharray("$confignet", \%customnetwork);
87 foreach my $key (keys %customnetwork)
88 {
89 if($customnetwork{$key}[0] eq $fwhostsettings{'orgname'})
90 {
91 $fwhostsettings{'orgname'} = $customnetwork{$key}[0];
92 $fwhostsettings{'orgip'} = $customnetwork{$key}[1];
93 $fwhostsettings{'orgsub'} = $customnetwork{$key}[2];
94 $fwhostsettings{'count'} = $customnetwork{$key}[3];
95 delete $customnetwork{$key};
96
97 }
98 }
99 &General::writehasharray("$confignet", \%customnetwork);
100 $fwhostsettings{'actualize'} = 'on';
101 $fwhostsettings{'ACTION'} = 'savenet';
102}
103if ($fwhostsettings{'ACTION'} eq 'updatehost')
104{
105 my ($ip,$subnet);
106 &General::readhasharray("$confighost", \%customhost);
107 foreach my $key (keys %customhost)
108 {
109 if($customhost{$key}[0] eq $fwhostsettings{'orgname'})
110 {
111 $fwhostsettings{'orgname'} = $customhost{$key}[0];
112 if ($customhost{$key}[1] eq 'ip'){
113 ($ip,$subnet) = split (/\//,$customhost{$key}[2]);
114 }else{
115 $ip = $customhost{$key}[2];
116 }
117 $fwhostsettings{'orgip'} = $ip;
118 $fwhostsettings{'count'} = $customhost{$key}[3];
119 delete $customhost{$key};
120 }
121 }
122 &General::writehasharray("$confighost", \%customhost);
123 $fwhostsettings{'actualize'} = 'on';
124 $fwhostsettings{'ACTION'} = 'savehost';
125}
126if ($fwhostsettings{'ACTION'} eq 'updateservice')
127{
128 my $count=0;
129 my $needrules=0;
130 $errormessage=&checkports(\%customservice);
2a81ab0d
AM		 131 if (!$errormessage){
132 &General::readhasharray("$configsrv", \%customservice);
133 foreach my $key (keys %customservice)
134 {
135 if ($customservice{$key}[0] eq $fwhostsettings{'oldsrvname'})
136 {
137 $count=$customservice{$key}[4];
138 delete $customservice{$key};
139 &General::writehasharray("$configsrv", \%customservice);
140 last;
141 }
142 }
143 if ($fwhostsettings{'PROT'} ne 'ICMP'){
144 $fwhostsettings{'ICMP_TYPES'}='BLANK';
145 }
146 my $key1 = &General::findhasharraykey(\%customservice);
147 foreach my $i (0 .. 4) { $customservice{$key1}[$i] = "";}
148 $customservice{$key1}[0] = $fwhostsettings{'SRV_NAME'};
149 $customservice{$key1}[1] = $fwhostsettings{'SRV_PORT'};
150 $customservice{$key1}[2] = $fwhostsettings{'PROT'};
151 $customservice{$key1}[3] = $fwhostsettings{'ICMP_TYPES'};
152 $customservice{$key1}[4] = $count;
153 &General::writehasharray("$configsrv", \%customservice);
154 if($fwhostsettings{'updatesrv'} eq 'on'){
155 if($count gt 0 && $fwhostsettings{'oldsrvport'} ne $fwhostsettings{'SRV_PORT'} ){
156 $needrules='on';
157 }
158 if($count gt 0 && $fwhostsettings{'oldsrvprot'} ne $fwhostsettings{'PROT'} ){
159 $needrules='on';
160 }
161 }
162 $fwhostsettings{'SRV_NAME'} = '';
163 $fwhostsettings{'SRV_PORT'} = '';
164 $fwhostsettings{'PROT'} = '';
2a81ab0d
AM		 165 }else{
166 $fwhostsettings{'SRV_NAME'} = $fwhostsettings{'oldsrvname'};
167 $fwhostsettings{'SRV_PORT'} = $fwhostsettings{'oldsrvport'};
168 $fwhostsettings{'PROT'} = $fwhostsettings{'oldsrvprot'};
169 $fwhostsettings{'updatesrv'}= 'on';
170 }
2a81ab0d
AM		 171 if($needrules eq 'on'){
172 $errormessage="reread!";
173 &rules;
174 }
2a81ab0d
AM		 175 &addservice;
176}
177# save
178if ($fwhostsettings{'ACTION'} eq 'savenet' )
179{
180 my $count=0;
181 my $needrules=0;
182 if ($fwhostsettings{'orgname'} eq ''){$fwhostsettings{'orgname'}=$fwhostsettings{'HOSTNAME'};}
2a81ab0d
AM		 183 #check if all fields are set
184 if ($fwhostsettings{'HOSTNAME'} eq '' || $fwhostsettings{'IP'} eq '' || $fwhostsettings{'SUBNET'} eq '')
185 {
186 $errormessage=$errormessage.$Lang::tr{'fwhost err empty'};
187 &addnet;
188 &viewtablenet;
189 }else{
190 #check valid ip
191 if (!&General::validipandmask($fwhostsettings{'IP'}."/".$fwhostsettings{'SUBNET'}))
192 {
193 $errormessage=$errormessage.$Lang::tr{'fwhost err addr'};
194 $fwhostsettings{'BLK_HOST'} ='readonly';
195 $fwhostsettings{'NOCHECK'} ='false';
196 $fwhostsettings{'error'} ='on';
197 }
198 #check if subnet is sigle host
199 if(&General::iporsubtocidr($fwhostsettings{'SUBNET'}) eq '32')
200 {
201 $errormessage=$errormessage.$Lang::tr{'fwhost err sub32'};
2a81ab0d
AM		 202 }
203 if($fwhostsettings{'error'} ne 'on'){
204 #check if we use one of ipfire's networks (green,orange,blue)
205 if (($ownnet{'GREEN_NETADDRESS'} ne '' && $ownnet{'GREEN_NETADDRESS'} ne '0.0.0.0') && &General::IpInSubnet($fwhostsettings{'IP'},$ownnet{'GREEN_NETADDRESS'},$ownnet{'GREEN_NETMASK'}))
206 {
207 $errormessage=$errormessage.$Lang::tr{'ccd err green'}."<br>";
208 $fwhostsettings{'HOSTNAME'} = $fwhostsettings{'orgname'};
209 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}='editnet';}
210 }
211 if (($ownnet{'ORANGE_NETADDRESS'} ne '' && $ownnet{'ORANGE_NETADDRESS'} ne '0.0.0.0') && &General::IpInSubnet($fwhostsettings{'IP'},$ownnet{'ORANGE_NETADDRESS'},$ownnet{'ORANGE_NETMASK'}))
212 {
213 $errormessage=$errormessage.$Lang::tr{'ccd err orange'}."<br>";
214 $fwhostsettings{'HOSTNAME'} = $fwhostsettings{'orgname'};
215 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}='editnet';}
216 }
217 if (($ownnet{'BLUE_NETADDRESS'} ne '' && $ownnet{'BLUE_NETADDRESS'} ne '0.0.0.0') && &General::IpInSubnet($fwhostsettings{'IP'},$ownnet{'BLUE_NETADDRESS'},$ownnet{'BLUE_NETMASK'}))
218 {
219 $errormessage=$errormessage.$Lang::tr{'ccd err blue'}."<br>";
220 $fwhostsettings{'HOSTNAME'} = $fwhostsettings{'orgname'};
221 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}='editnet';}
222 }
223 if (($ownnet{'RED_NETADDRESS'} ne '' && $ownnet{'RED_NETADDRESS'} ne '0.0.0.0') && &General::IpInSubnet($fwhostsettings{'IP'},$ownnet{'RED_NETADDRESS'},$ownnet{'RED_NETMASK'}))
224 {
225 $errormessage=$errormessage.$Lang::tr{'ccd err red'}."<br>";
226 $fwhostsettings{'HOSTNAME'} = $fwhostsettings{'orgname'};
227 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}='editnet';}
228 }
229 }
230 #only check plausi when no error till now
231 if (!$errormessage){
232 &plausicheck("editnet");
233 }
2a81ab0d
AM		 234 #check if network ip is part of an already used one
235 if(&checksubnet(\%customnetwork))
236 {
237 $errormessage=$errormessage.$Lang::tr{'fwhost err partofnet'};
238 $fwhostsettings{'HOSTNAME'} = $fwhostsettings{'orgname'};
239 }
2a81ab0d
AM		 240 if($fwhostsettings{'actualize'} eq 'on' && $fwhostsettings{'newnet'} ne 'on' && $errormessage)
241 {
242 $fwhostsettings{'actualize'} = '';
243 my $key = &General::findhasharraykey (\%customnetwork);
244 foreach my $i (0 .. 3) { $customnetwork{$key}[$i] = "";}
245 $customnetwork{$key}[0] = $fwhostsettings{'orgname'} ;
246 $customnetwork{$key}[1] = $fwhostsettings{'orgip'} ;
247 $customnetwork{$key}[2] = $fwhostsettings{'orgsub'};
248 $customnetwork{$key}[3] = $fwhostsettings{'count'};
249 &General::writehasharray("$confignet", \%customnetwork);
250 undef %customnetwork;
251 }
2a81ab0d
AM		 252 if (!$errormessage){
253 &General::readhasharray("$confignet", \%customnetwork);
254 if ($fwhostsettings{'ACTION'} eq 'updatenet'){
255 if ($fwhostsettings{'update'} == '0'){
256 foreach my $key (keys %customnetwork) {
257 if($customnetwork{$key}[0] eq $fwhostsettings{'orgname'}){
258 $count=$customnetwork{$key}[3];
259 delete $customnetwork{$key};
260 last;
261 }
262 }
263 }
264 }
265 #get count if actualize is 'on'
266 if($fwhostsettings{'actualize'} eq 'on'){
267 $fwhostsettings{'actualize'} = '';
268 $count=$fwhostsettings{'count'};
269 #check if we need to reload rules
270 if($fwhostsettings{'orgip'} ne $fwhostsettings{'IP'} && $count gt '0'){
271 $needrules='on';
272 }
273 if ($fwhostsettings{'orgname'} ne $fwhostsettings{'HOSTNAME'}){
274 #check if we need to update groups
275 &General::readhasharray("$configgrp", \%customgrp);
276 foreach my $key (sort keys %customgrp){
277 if($customgrp{$key}[2] eq $fwhostsettings{'orgname'}){
278 $customgrp{$key}[2]=$fwhostsettings{'HOSTNAME'};
279 last;
280 }
281 }
282 &General::writehasharray("$configgrp", \%customgrp);
62fc8511
AM		 283 #check if we need to update firewallrules
284 if ( ! -z $fwconfigfwd ){
285 &General::readhasharray("$fwconfigfwd", \%fwfwd);
286 foreach my $line (sort keys %fwfwd){
287 if ($fwfwd{$line}[4] eq $fwhostsettings{'orgname'}){
288 $fwfwd{$line}[4] = $fwhostsettings{'HOSTNAME'};
289 }
290 if ($fwfwd{$line}[6] eq $fwhostsettings{'orgname'}){
291 $fwfwd{$line}[6] = $fwhostsettings{'HOSTNAME'};
292 }
293 }
294 &General::writehasharray("$fwconfigfwd", \%fwfwd);
295 }
296 if ( ! -z $fwconfiginp ){
297 &General::readhasharray("$fwconfiginp", \%fwinp);
298 foreach my $line (sort keys %fwinp){
299 if ($fwfwd{$line}[4] eq $fwhostsettings{'orgname'}){
300 $fwfwd{$line}[4] = $fwhostsettings{'HOSTNAME'};
301 }
302 }
303 &General::writehasharray("$fwconfiginp", \%fwinp);
304 }
2a81ab0d
AM		 305 }
306 }
307 my $key = &General::findhasharraykey (\%customnetwork);
308 foreach my $i (0 .. 3) { $customnetwork{$key}[$i] = "";}
309 $fwhostsettings{'SUBNET'} = &General::iporsubtocidr($fwhostsettings{'SUBNET'});
310 $customnetwork{$key}[0] = $fwhostsettings{'HOSTNAME'};
311 #convert ip when leading '0' in byte
312 $fwhostsettings{'IP'}=&General::ip2dec($fwhostsettings{'IP'});
313 $fwhostsettings{'IP'}=&General::dec2ip($fwhostsettings{'IP'});
314 $customnetwork{$key}[1] = &General::getnetworkip($fwhostsettings{'IP'},$fwhostsettings{'SUBNET'}) ;
315 $customnetwork{$key}[2] = &General::iporsubtodec($fwhostsettings{'SUBNET'}) ;
316 if($fwhostsettings{'newnet'} eq 'on'){$count=0;}
317 $customnetwork{$key}[3] = $count;
318 &General::writehasharray("$confignet", \%customnetwork);
319 $fwhostsettings{'IP'}=$fwhostsettings{'IP'}."/".&General::iporsubtodec($fwhostsettings{'SUBNET'});
320 undef %customnetwork;
321 $fwhostsettings{'HOSTNAME'}='';
322 $fwhostsettings{'IP'}='';
323 $fwhostsettings{'SUBNET'}='';
324 #check if an edited net affected groups and need to reload rules
325 if ($needrules eq 'on'){
326 &rules;
327 }
328 &addnet;
329 &viewtablenet;
330 }else
331 {
332 &addnet;
333 &viewtablenet;
334 }
335 }
2a81ab0d
AM		 336}
337if ($fwhostsettings{'ACTION'} eq 'savehost')
338{
339 my $count=0;
340 my $needrules=0;
341 if ($fwhostsettings{'orgname'} eq ''){$fwhostsettings{'orgname'}=$fwhostsettings{'HOSTNAME'};}
2a81ab0d 342 $fwhostsettings{'SUBNET'}='32';
2a81ab0d
AM		 343 #check if all fields are set
344 if ($fwhostsettings{'HOSTNAME'} eq '' || $fwhostsettings{'IP'} eq '' || $fwhostsettings{'SUBNET'} eq '')
345 {
346 $errormessage=$errormessage.$Lang::tr{'fwhost err empty'};
347 $fwhostsettings{'ACTION'} = 'edithost';
348 }else{
2a81ab0d
AM		 349 if($fwhostsettings{'type'} eq 'ip' && $fwhostsettings{'IP'}=~/^([0-9a-fA-F]{1,2}:){5}[0-9a-fA-F]{1,2}$/){
350 $fwhostsettings{'type'} = 'mac';
351 }elsif($fwhostsettings{'type'} eq 'mac' && $fwhostsettings{'IP'}=~/^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/){
352 $fwhostsettings{'type'} = 'ip';
353 }elsif($fwhostsettings{'type'} eq 'mac' && $fwhostsettings{'IP'}=~/^([0-9a-fA-F]{1,2}:){5}[0-9a-fA-F]{1,2}$/){
354 $fwhostsettings{'type'} = 'mac';
355 }elsif($fwhostsettings{'type'} eq 'ip' && $fwhostsettings{'IP'}=~/^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/){
356 $fwhostsettings{'type'} = 'ip';
357 }else{
358 $fwhostsettings{'type'} = '';
359 $errormessage=$Lang::tr{'fwhost err ipmac'};
360 }
2a81ab0d
AM		 361 if($fwhostsettings{'type'} eq 'mac' )
362 {
363 if ($fwhostsettings{'IP'}!~/^([0-9a-fA-F]{1,2}:){5}[0-9a-fA-F]{1,2}$/ )
364 {
365 $errormessage=$Lang::tr{'fwhost err mac'};
2a81ab0d
AM		 366 }
367 }
368 #CHECK IP-PART
369 if ($fwhostsettings{'type'} eq 'ip'){
370 #check for subnet
371 if (rindex($fwhostsettings{'IP'},'/') eq '-1' ){
372 if($fwhostsettings{'type'} eq 'ip' && !&General::validipandmask($fwhostsettings{'IP'}."/32"))
373 {
374 $errormessage.=$errormessage.$Lang::tr{'fwhost err ip'};
375 $fwhostsettings{'error'}='on';
376 }
2a81ab0d
AM		 377 }elsif(rindex($fwhostsettings{'IP'},'/') ne '-1' ){
378 $errormessage=$errormessage.$Lang::tr{'fwhost err ipwithsub'};
379 $fwhostsettings{'error'}='on';
380 }
381 #check if net or broadcast
382 my @tmp= split (/\./,$fwhostsettings{'IP'});
383 if (($tmp[3] eq "0") || ($tmp[3] eq "255")){
384 $errormessage=$Lang::tr{'fwhost err hostip'};
385 }
386 }
2a81ab0d
AM		 387 #only check plausi when no error till now
388 if (!$errormessage){
389 &plausicheck("edithost");
390 }
2a81ab0d
AM		 391 if($fwhostsettings{'actualize'} eq 'on' && $fwhostsettings{'newhost'} ne 'on' && $errormessage){
392 $fwhostsettings{'actualize'} = '';
393 my $key = &General::findhasharraykey (\%customhost);
394 foreach my $i (0 .. 3) { $customhost{$key}[$i] = "";}
395 $customhost{$key}[0] = $fwhostsettings{'orgname'} ;
396 $customhost{$key}[1] = $fwhostsettings{'type'} ;
397 if($customhost{$key}[1] eq 'ip'){
398 $customhost{$key}[2] = $fwhostsettings{'orgip'}."/".&General::iporsubtodec($fwhostsettings{'SUBNET'});
399 }else{
400 $customhost{$key}[2] = $fwhostsettings{'orgip'};
401 }
402 $customhost{$key}[3] = $fwhostsettings{'count'};
403 &General::writehasharray("$confighost", \%customhost);
404 undef %customhost;
2a81ab0d 405 }
2a81ab0d
AM		 406 if (!$errormessage){
407 #get count if host was edited
408 if($fwhostsettings{'actualize'} eq 'on'){
409 $count=$fwhostsettings{'count'};
410 if($fwhostsettings{'orgip'} ne $fwhostsettings{'IP'} && $count gt '0' ){
411 $needrules='on';
412 }
413 if($fwhostsettings{'orgname'} ne $fwhostsettings{'HOSTNAME'}){
414 #check if we need to update groups
415 &General::readhasharray("$configgrp", \%customgrp);
416 foreach my $key (sort keys %customgrp){
417 if($customgrp{$key}[2] eq $fwhostsettings{'orgname'}){
418 $customgrp{$key}[2]=$fwhostsettings{'HOSTNAME'};
419 last;
420 }
421 }
422 &General::writehasharray("$configgrp", \%customgrp);
62fc8511
AM		 423 #check if we need to update firewallrules
424 if ( ! -z $fwconfigfwd ){
425 &General::readhasharray("$fwconfigfwd", \%fwfwd);
426 foreach my $line (sort keys %fwfwd){
427 if ($fwfwd{$line}[4] eq $fwhostsettings{'orgname'}){
428 $fwfwd{$line}[4] = $fwhostsettings{'HOSTNAME'};
429 }
430 if ($fwfwd{$line}[6] eq $fwhostsettings{'orgname'}){
431 $fwfwd{$line}[6] = $fwhostsettings{'HOSTNAME'};
432 }
433 }
434 &General::writehasharray("$fwconfigfwd", \%fwfwd);
435 }
436 if ( ! -z $fwconfiginp ){
437 &General::readhasharray("$fwconfiginp", \%fwinp);
438 foreach my $line (sort keys %fwinp){
439 if ($fwfwd{$line}[4] eq $fwhostsettings{'orgname'}){
440 $fwfwd{$line}[4] = $fwhostsettings{'HOSTNAME'};
441 }
442 }
443 &General::writehasharray("$fwconfiginp", \%fwinp);
444 }
2a81ab0d 445 }
2a81ab0d
AM		 446 }
447 my $key = &General::findhasharraykey (\%customhost);
448 foreach my $i (0 .. 3) { $customhost{$key}[$i] = "";}
449 $customhost{$key}[0] = $fwhostsettings{'HOSTNAME'} ;
450 $customhost{$key}[1] = $fwhostsettings{'type'} ;
451 if ($fwhostsettings{'type'} eq 'ip'){
452 #convert ip when leading '0' in byte
453 $fwhostsettings{'IP'}=&General::ip2dec($fwhostsettings{'IP'});
454 $fwhostsettings{'IP'}=&General::dec2ip($fwhostsettings{'IP'});
455 $customhost{$key}[2] = $fwhostsettings{'IP'}."/".&General::iporsubtodec($fwhostsettings{'SUBNET'});
456 }else{
457 $customhost{$key}[2] = $fwhostsettings{'IP'};
458 }
459 if($fwhostsettings{'newhost'} eq 'on'){$count=0;}
460 $customhost{$key}[3] = $count;
461 &General::writehasharray("$confighost", \%customhost);
2a81ab0d
AM		 462 #$fwhostsettings{'IP'} = $fwhostsettings{'IP'}."/".&General::iporsubtodec($fwhostsettings{'SUBNET'});
463 undef %customhost;
464 $fwhostsettings{'HOSTNAME'}='';
465 $fwhostsettings{'IP'}='';
466 $fwhostsettings{'type'}='';
467 #check if we need to update rules while host was edited
468 if($needrules eq 'on'){
469 &rules;
470 }
471 &addhost;
472 &viewtablehost;
473 }else{
474 &addhost;
475 &viewtablehost;
476 }
2a81ab0d 477 }
2a81ab0d
AM		 478}
479if ($fwhostsettings{'ACTION'} eq 'savegrp')
480{
481 my $grp;
482 my $rem=$fwhostsettings{'remark'};
483 my $count;
484 my $type;
485 my $updcounter='off';
486 my @target;
487 my @newgrp;
488 &General::readhasharray("$configgrp", \%customgrp);
489 &General::readhasharray("$confignet", \%customnetwork);
490 &General::readhasharray("$confighost", \%customhost);
491 $grp=$fwhostsettings{'grp_name'};
7772ae73 492 if (!&validhostname($grp)){$errormessage=$errormessage.$Lang::tr{'fwhost err name'};}
2a81ab0d
AM		 493 ###check standard networks
494 if ($fwhostsettings{'grp2'} eq 'std_net'){
495 @target=$fwhostsettings{'DEFAULT_SRC_ADR'};
496 $type='Standard Network';
497 }
498 ##check custom networks
499 if ($fwhostsettings{'grp2'} eq 'cust_net' && $fwhostsettings{'CUST_SRC_NET'} ne ''){
500 @target=$fwhostsettings{'CUST_SRC_NET'};
501 $updcounter='net';
502 $type='Custom Network';
503 }elsif($fwhostsettings{'grp2'} eq 'cust_net' && $fwhostsettings{'CUST_SRC_NET'} eq ''){
504 $errormessage=$Lang::tr{'fwhost err groupempty'}."<br>";
505 $fwhostsettings{'grp_name'}='';
506 $fwhostsettings{'remark'}='';
507 }
508 #check custom addresses
509 if ($fwhostsettings{'grp2'} eq 'cust_host' && $fwhostsettings{'CUST_SRC_HOST'} ne ''){
510 @target=$fwhostsettings{'CUST_SRC_HOST'};
511 $updcounter='host';
512 $type='Custom Host';
513 }elsif($fwhostsettings{'grp2'} eq 'cust_host' && $fwhostsettings{'CUST_SRC_HOST'} eq ''){
514 $errormessage=$Lang::tr{'fwhost err groupempty'}."<br>";
515 $fwhostsettings{'grp_name'}='';
516 $fwhostsettings{'remark'}='';
517 }
518 #get address from ovpn ccd static net
519 if ($fwhostsettings{'grp2'} eq 'ovpn_net' && $fwhostsettings{'OVPN_CCD_NET'} ne ''){
520 @target=$fwhostsettings{'OVPN_CCD_NET'};
521 $type='OpenVPN static network';
522 }elsif($fwhostsettings{'grp2'} eq 'ovpn_net' && $fwhostsettings{'OVPN_CCD_NET'} eq ''){
523 $errormessage=$Lang::tr{'fwhost err groupempty'};
524 $fwhostsettings{'grp_name'}='';
525 $fwhostsettings{'remark'}='';
526 }
527 #get address from ovpn ccd static host
528 if ($fwhostsettings{'grp2'} eq 'ovpn_host' && $fwhostsettings{'OVPN_CCD_HOST'} ne ''){
529 @target=$fwhostsettings{'OVPN_CCD_HOST'};
530 $type='OpenVPN static host';
531 }elsif ($fwhostsettings{'grp2'} eq 'ovpn_host' && $fwhostsettings{'OVPN_CCD_HOST'} eq ''){
532 $errormessage=$Lang::tr{'fwhost err groupempty'};
533 }
534 #get address from ovpn ccd Net-2-Net
535 if ($fwhostsettings{'grp2'} eq 'ovpn_n2n' && $fwhostsettings{'OVPN_N2N'} ne ''){
536 @target=$fwhostsettings{'OVPN_N2N'};
537 $type='OpenVPN N-2-N';
538 }elsif ($fwhostsettings{'grp2'} eq 'ovpn_n2n' && $fwhostsettings{'OVPN_N2N'} eq ''){
539 $errormessage=$Lang::tr{'fwhost err groupempty'};
540 $fwhostsettings{'grp_name'}='';
541 $fwhostsettings{'remark'}='';
542 }
2a81ab0d
AM		 543 #get address from IPSEC HOST
544 if ($fwhostsettings{'grp2'} eq 'ipsec_host' && $fwhostsettings{'IPSEC_HOST'} ne ''){
545 @target=$fwhostsettings{'IPSEC_HOST'};
546 $type='IpSec Host';
547 }elsif ($fwhostsettings{'grp2'} eq 'ipsec_host' && $fwhostsettings{'IPSEC_HOST'} eq ''){
548 $errormessage=$Lang::tr{'fwhost err groupempty'};
549 $fwhostsettings{'grp_name'}='';
550 $fwhostsettings{'remark'}='';
551 }
552 #get address from IPSEC NETWORK
553 if ($fwhostsettings{'grp2'} eq 'ipsec_net' && $fwhostsettings{'IPSEC_NET'} ne ''){
554 @target=$fwhostsettings{'IPSEC_NET'};
555 $type='IpSec Network';
556 }elsif ($fwhostsettings{'grp2'} eq 'ipsec_net' && $fwhostsettings{'IPSEC_NET'} eq ''){
557 $errormessage=$Lang::tr{'fwhost err groupempty'};
558 $fwhostsettings{'grp_name'}='';
559 $fwhostsettings{'remark'}='';
560 }
2a81ab0d
AM		 561 #check if host/net exists in grp
562 my $test="$grp,$fwhostsettings{'oldremark'},@target";
563 foreach my $key (keys %customgrp) {
564 my $test1="$customgrp{$key}[0],$customgrp{$key}[1],$customgrp{$key}[2]";
565 if ($test1 eq $test){
566 $errormessage=$Lang::tr{'fwhost err isingrp'};
567 $fwhostsettings{'update'} = 'on';
568 }
569 }
2a81ab0d
AM		 570 if (!$errormessage){
571 #on first save, we have an empty @target, so fill it with nothing
572 my $targetvalues=@target;
573 if ($targetvalues == '0'){
574 @target=$Lang::tr{'fwhost empty'};
575 }
576 #on update, we have to delete the dummy entry
2a81ab0d
AM		 577 foreach my $key (keys %customgrp){
578 if ($customgrp{$key}[0] eq $grp && $customgrp{$key}[2] eq $Lang::tr{'fwhost empty'}){
579 delete $customgrp{$key};
580 last;
581 }
582 }
583 &General::writehasharray("$configgrp", \%customgrp);
584 &General::readhasharray("$configgrp", \%customgrp);
2a81ab0d
AM		 585 #get count used
586 foreach my $key (keys %customgrp)
587 {
588 if($customgrp{$key}[0] eq $grp)
589 {
590 $count=$customgrp{$key}[4];
591 last;
592 }
593 }
594 if ($count eq '' ){$count='0';}
595
596 #create array with new lines
597 foreach my $line (@target){
598 push (@newgrp,"$grp,$rem,$line");
599 }
600 #append new entries
601 my $key = &General::findhasharraykey (\%customgrp);
602 foreach my $line (@newgrp){
603 foreach my $i (0 .. 4) { $customgrp{$key}[$i] = "";}
604 my ($a,$b,$c,$d) = split (",",$line);
605 $customgrp{$key}[0] = $a;
606 $customgrp{$key}[1] = $b;
607 $customgrp{$key}[2] = $c;
608 $customgrp{$key}[3] = $type;
609 $customgrp{$key}[4] = $count;
610 }
611 &General::writehasharray("$configgrp", \%customgrp);
2a81ab0d
AM		 612 #update counter in Host/Net
613 if($updcounter eq 'net'){
614 foreach my $key (keys %customnetwork) {
615 if($customnetwork{$key}[0] eq $fwhostsettings{'CUST_SRC_NET'}){
616 $customnetwork{$key}[3] = $customnetwork{$key}[3]+1;
617 last;
618 }
619 }
620 &General::writehasharray("$confignet", \%customnetwork);
621 }elsif($updcounter eq 'host'){
622 foreach my $key (keys %customhost) {
623 if ($customhost{$key}[0] eq $fwhostsettings{'CUST_SRC_HOST'}){
624 $customhost{$key}[3]=$customhost{$key}[3]+1;
625 }
626 }
627 &General::writehasharray("$confighost", \%customhost);
628 }
2a81ab0d 629 $fwhostsettings{'update'}='on';
2a81ab0d 630 }
fb70d3d5 631 if ($fwhostsettings{'remark'} ne $fwhostsettings{'oldremark'} )
2a81ab0d 632 {
fb70d3d5 633 foreach my $key (sort keys %customgrp)
2a81ab0d
AM		 634 {
635 if($customgrp{$key}[0] eq $grp && $customgrp{$key}[1] eq $fwhostsettings{'oldremark'})
636 {
637 $customgrp{$key}[1]='';
638 $customgrp{$key}[1]=$rem;
639 }
640 }
fb70d3d5 641 &General::writehasharray("$configgrp", \%customgrp);
2a81ab0d 642 $errormessage='';
2a81ab0d
AM		 643 $fwhostsettings{'update'}='on';
644 }
645 #check if ruleupdate is needed
646 if($count > 0 )
647 {
648 &rules;
649 }
650 &addgrp;
651 &viewtablegrp;
2a81ab0d
AM		 652}
653if ($fwhostsettings{'ACTION'} eq 'saveservice')
654{
655 my $ICMP;
2a81ab0d
AM		 656 &General::readhasharray("$configsrv", \%customservice );
657 $errormessage=&checkports(\%customservice);
2a81ab0d
AM		 658 if ($fwhostsettings{'PROT'} eq 'ICMP'){
659 &General::readhasharray("${General::swroot}/fwhosts/icmp-types", \%icmptypes);
660 foreach my $key (keys %icmptypes){
661 if ("$icmptypes{$key}[0] ($icmptypes{$key}[1])" eq $fwhostsettings{'ICMP_TYPES'}){
662 $ICMP=$icmptypes{$key}[0];
663 }
664 }
665 }
666 if($ICMP eq ''){$ICMP='BLANK';}
667 if (!$errormessage){
2a81ab0d
AM		 668 my $key = &General::findhasharraykey (\%customservice);
669 foreach my $i (0 .. 4) { $customservice{$key}[$i] = "";}
670 $customservice{$key}[0] = $fwhostsettings{'SRV_NAME'};
671 $customservice{$key}[1] = $fwhostsettings{'SRV_PORT'};
672 $customservice{$key}[2] = $fwhostsettings{'PROT'};
673 $customservice{$key}[3] = $ICMP;
674 $customservice{$key}[4] = 0;
675 &General::writehasharray("$configsrv", \%customservice );
676 #reset fields
677 $fwhostsettings{'SRV_NAME'}='';
678 $fwhostsettings{'SRV_PORT'}='';
679 $fwhostsettings{'PROT'}='';
680 $fwhostsettings{'ICMP_TYPES'}='';
2a81ab0d 681 }
2a81ab0d 682 &addservice;
2a81ab0d
AM		 683}
684if ($fwhostsettings{'ACTION'} eq 'saveservicegrp')
685{
686 my $prot;
687 my $port;
688 my $count=0;
689 &General::readhasharray("$configsrvgrp", \%customservicegrp );
690 &General::readhasharray("$configsrv", \%customservice );
2a81ab0d 691 $errormessage=&checkservicegroup;
2a81ab0d
AM		 692 if (!$errormessage){
693 #on first save, we have to enter a dummy value
694 if ($fwhostsettings{'CUST_SRV'} eq ''){$fwhostsettings{'CUST_SRV'}=$Lang::tr{'fwhost empty'};}
2a81ab0d
AM		 695 #on update, we have to delete the dummy entry
696 foreach my $key (keys %customservicegrp){
697 if ($customservicegrp{$key}[2] eq $Lang::tr{'fwhost empty'}){
698 delete $customservicegrp{$key};
699 last;
700 }
701 }
702 &General::writehasharray("$configsrvgrp", \%customservicegrp );
703 #check if remark has also changed
704 if ($fwhostsettings{'SRVGRP_REMARK'} ne $fwhostsettings{'oldsrvgrpremark'} && $fwhostsettings{'updatesrvgrp'} eq 'on')
705 {
706 foreach my $key (keys %customservicegrp)
707 {
708 if($customservicegrp{$key}[0] eq $fwhostsettings{'SRVGRP_NAME'} && $customservicegrp{$key}[1] eq $fwhostsettings{'oldsrvgrpremark'})
709 {
710 $customservicegrp{$key}[1]='';
711 $customservicegrp{$key}[1]=$fwhostsettings{'SRVGRP_REMARK'};
712 }
713 }
714 }
715 #get count used
716 foreach my $key (keys %customservicegrp)
717 {
718 if($customservicegrp{$key}[0] eq $fwhostsettings{'SRVGRP_NAME'})
719 {
720 $count=$customservicegrp{$key}[5];
721 last;
722 }
723 }
724 if ($count eq '' ){$count='0';}
725
726 foreach my $key (sort keys %customservice){
727 if($customservice{$key}[0] eq $fwhostsettings{'CUST_SRV'}){
728 $port=$customservice{$key}[1];
729 $prot=$customservice{$key}[2];
730 $customservice{$key}[4]++;
731 }
732 }
733 &General::writehasharray("$configsrv", \%customservice );
2a81ab0d
AM		 734 my $key = &General::findhasharraykey (\%customservicegrp);
735 foreach my $i (0 .. 3) { $customservice{$key}[$i] = "";}
736 $customservicegrp{$key}[0] = $fwhostsettings{'SRVGRP_NAME'};
737 $customservicegrp{$key}[1] = $fwhostsettings{'SRVGRP_REMARK'};
738 $customservicegrp{$key}[2] = $fwhostsettings{'CUST_SRV'};
937d4e08 739 $customservicegrp{$key}[3] = $count;
2a81ab0d
AM		 740 &General::writehasharray("$configsrvgrp", \%customservicegrp );
741 $fwhostsettings{'updatesrvgrp'}='on';
742 }
743 if ($fwhostsettings{'SRVGRP_REMARK'} ne $fwhostsettings{'oldsrvgrpremark'} && $errormessage){
744 foreach my $key (keys %customservicegrp)
745 {
746 if($customservicegrp{$key}[0] eq $fwhostsettings{'SRVGRP_NAME'} && $customservicegrp{$key}[1] eq $fwhostsettings{'oldsrvgrpremark'})
747 {
748 $customservicegrp{$key}[1]='';
749 $customservicegrp{$key}[1]=$fwhostsettings{'SRVGRP_REMARK'};
750 }
751 }
752 &General::writehasharray("$configsrvgrp", \%customservicegrp);
753 $errormessage='';
754 $hint=$Lang::tr{'fwhost changeremark'};
755 $fwhostsettings{'update'}='on';
756 }
757 if ($count gt 0){
758 &rules;
759 }
760 &addservicegrp;
761 &viewtableservicegrp;
762}
763# edit
764if ($fwhostsettings{'ACTION'} eq 'editnet')
765{
766 &addnet;
767 &viewtablenet;
768}
769if ($fwhostsettings{'ACTION'} eq 'edithost')
770{
771 &addhost;
772 &viewtablehost;
773}
774if ($fwhostsettings{'ACTION'} eq 'editgrp')
775{
776 $fwhostsettings{'update'}='on';
777 &addgrp;
778 &viewtablegrp;
779}
780if ($fwhostsettings{'ACTION'} eq 'editservice')
781{
782 $fwhostsettings{'updatesrv'}='on';
783 &addservice;
784}
785if ($fwhostsettings{'ACTION'} eq 'editservicegrp')
786{
787 $fwhostsettings{'updatesrvgrp'} = 'on';
788 &addservicegrp;
789 &viewtableservicegrp;
790}
791# reset
792if ($fwhostsettings{'ACTION'} eq 'resetnet')
793{
794 $fwhostsettings{'HOSTNAME'} ="";
795 $fwhostsettings{'IP'} ="";
796 $fwhostsettings{'SUBNET'} ="";
797 &showmenu;
798}
799if ($fwhostsettings{'ACTION'} eq 'resethost')
800{
801 $fwhostsettings{'HOSTNAME'} ="";
802 $fwhostsettings{'IP'} ="";
803 $fwhostsettings{'type'} ="";
804 &showmenu;
805}
806# delete
807if ($fwhostsettings{'ACTION'} eq 'delnet')
808{
809 &General::readhasharray("$confignet", \%customnetwork);
810 foreach my $key (keys %customnetwork) {
811 if($fwhostsettings{'key'} eq $customnetwork{$key}[0]){
812 delete $customnetwork{$key};
813 &General::writehasharray("$confignet", \%customnetwork);
814 last;
815 }
816 }
817 &addnet;
818 &viewtablenet;
819}
820if ($fwhostsettings{'ACTION'} eq 'delhost')
821{
822 &General::readhasharray("$confighost", \%customhost);
823 foreach my $key (keys %customhost) {
824 if($fwhostsettings{'key'} eq $customhost{$key}[0]){
825 delete $customhost{$key};
826 &General::writehasharray("$confighost", \%customhost);
827 last;
828 }
829 }
830 &addhost;
831 &viewtablehost;
2a81ab0d
AM		 832}
833if ($fwhostsettings{'ACTION'} eq 'deletegrphost')
834{
835 &General::readhasharray("$configgrp", \%customgrp);
836 foreach my $key (keys %customgrp){
837 if($customgrp{$key}[0].",".$customgrp{$key}[1].",".$customgrp{$key}[2].",".$customgrp{$key}[3] eq $fwhostsettings{'delhost'}){
838 #decrease count from source host/net
839 if ($customgrp{$key}[3] eq 'Custom Network'){
840 &General::readhasharray("$confignet", \%customnetwork);
841 foreach my $key1 (keys %customnetwork){
842 if ($customnetwork{$key1}[0] eq $customgrp{$key}[2]){
843 $customnetwork{$key1}[3] = $customnetwork{$key1}[3]-1;
844 last;
845 }
846 }
847 &General::writehasharray("$confignet", \%customnetwork);
848 }
849 if ($customgrp{$key}[3] eq 'Custom Host'){
850 &General::readhasharray("$confighost", \%customhost);
851 foreach my $key1 (keys %customhost){
852 if ($customhost{$key1}[0] eq $customgrp{$key}[2]){
853 $customhost{$key1}[3] = $customhost{$key1}[3]-1;
854 last;
855 }
856 }
857 &General::writehasharray("$confighost", \%customhost);
858 }
859 delete $customgrp{$key};
860 }
861 }
862 &General::writehasharray("$configgrp", \%customgrp);
863 &rules;
864 &addgrp;
865 &viewtablegrp;
866}
867if ($fwhostsettings{'ACTION'} eq 'delgrp')
868{
869 &General::readhasharray("$configgrp", \%customgrp);
870 &decrease($fwhostsettings{'grp_name'});
871 foreach my $key (sort keys %customgrp)
872 {
873 if($customgrp{$key}[0] eq $fwhostsettings{'grp_name'})
874 {
875 delete $customgrp{$key};
876 }
877 }
878 &General::writehasharray("$configgrp", \%customgrp);
879 $fwhostsettings{'grp_name'}='';
880 &addgrp;
881 &viewtablegrp;
882}
883if ($fwhostsettings{'ACTION'} eq 'delservice')
884{
885 &General::readhasharray("$configsrv", \%customservice);
886 foreach my $key (keys %customservice) {
887 if($customservice{$key}[0] eq $fwhostsettings{'SRV_NAME'}){
888 #&deletefromgrp($customhost{$key}[0],$configgrp);
889 delete $customservice{$key};
890 &General::writehasharray("$configsrv", \%customservice);
891 last;
892 }
893 }
894 $fwhostsettings{'SRV_NAME'}='';
895 $fwhostsettings{'SRV_PORT'}='';
896 $fwhostsettings{'PROT'}='';
897 &addservice;
898}
899if ($fwhostsettings{'ACTION'} eq 'delservicegrp')
900{
901 &General::readhasharray("$configsrvgrp", \%customservicegrp);
902 &decreaseservice($fwhostsettings{'SRVGRP_NAME'});
903 foreach my $key (sort keys %customservicegrp)
904 {
905 if($customservicegrp{$key}[0] eq $fwhostsettings{'SRVGRP_NAME'})
906 {
907 delete $customservicegrp{$key};
908 }
909 }
910 &General::writehasharray("$configsrvgrp", \%customservicegrp);
911 $fwhostsettings{'SRVGRP_NAME'}='';
912 &addservicegrp;
913 &viewtableservicegrp;
914}
915if ($fwhostsettings{'ACTION'} eq 'delgrpservice')
916{
917 &General::readhasharray("$configsrvgrp", \%customservicegrp);
918 &General::readhasharray("$configsrv", \%customservice);
919 foreach my $key (keys %customservicegrp){
920 if($customservicegrp{$key}[0].",".$customservicegrp{$key}[1].",".$customservicegrp{$key}[2].",".$customservicegrp{$key}[3] eq $fwhostsettings{'delsrvfromgrp'})
921 {
922 #decrease count from source service
923 foreach my $key1 (sort keys %customservice){
924 if($customservice{$key1}[0] eq $customservicegrp{$key}[2]){
925 $customservice{$key1}[4]--;
926 last;
927 }
928 }
929 &General::writehasharray("$configsrv", \%customservice);
930 delete $customservicegrp{$key}
931 }
932 }
933 &General::writehasharray("$configsrvgrp", \%customservicegrp);
934 &rules;
935 &addservicegrp;
936 &viewtableservicegrp;
937
938}
939if ($fwhostsettings{'ACTION'} eq $Lang::tr{'fwhost newnet'})
940{
941 &addnet;
942 &viewtablenet;
943}
944if ($fwhostsettings{'ACTION'} eq $Lang::tr{'fwhost newhost'})
945{
946 &addhost;
947 &viewtablehost;
948}
949if ($fwhostsettings{'ACTION'} eq $Lang::tr{'fwhost newgrp'})
950{
951 &addgrp;
952 &viewtablegrp;
953}
954if ($fwhostsettings{'ACTION'} eq $Lang::tr{'fwhost newservice'})
955{
956 &addservice;
957}
958if ($fwhostsettings{'ACTION'} eq $Lang::tr{'fwhost newservicegrp'})
959{
960 &addservicegrp;
961 &viewtableservicegrp;
962}
963### VIEW ###
964if($fwhostsettings{'ACTION'} eq '')
965{
966 &showmenu;
967}
968### FUNCTIONS ###
969sub showmenu
970{
971
972 &Header::openbox('100%', 'left',$Lang::tr{'fwhost menu'});
973 print<<END;
974 <table border='0' width='100%'><form method='post'>
975 <tr><td><input type='submit' name='ACTION' value='$Lang::tr{'fwhost newnet'}' /><input type='submit' name='ACTION' value='$Lang::tr{'fwhost newhost'}' /><input type='submit' name='ACTION' value='$Lang::tr{'fwhost newgrp'}' /></td>
976 <td align='right'><input type='submit' name='ACTION' value='$Lang::tr{'fwhost newservice'}' /><input type='submit' name='ACTION' value='$Lang::tr{'fwhost newservicegrp'}' /></td></tr>
977 <tr><td colspan='6'><hr></hr></td></tr></table></form>
978END
979
980 &Header::closebox();
981
982}
983# Add
984sub addnet
985{
986 &error;
987 &showmenu;
988 &Header::openbox('100%', 'left', $Lang::tr{'fwhost addnet'});
989 $fwhostsettings{'orgname'}=$fwhostsettings{'HOSTNAME'};
990 print<<END;
991 <table border='0' width='100%'><form method='post' style='display:inline' >
1aec05a6 992 <tr><td>$Lang::tr{'name'}:</td><td><input type='TEXT' name='HOSTNAME' id='textbox1' value='$fwhostsettings{'HOSTNAME'}' $fwhostsettings{'BLK_HOST'}><script>document.getElementById('textbox1').focus()</script></td><td>$Lang::tr{'fwhost netaddress'}</td><td><input type='TEXT' name='IP' value='$fwhostsettings{'IP'}' $fwhostsettings{'BLK_IP'} size='14'></td><td align='right'>$Lang::tr{'netmask'}:</td><td align='right'><input type='TEXT' name='SUBNET' value='$fwhostsettings{'SUBNET'}' $fwhostsettings{'BLK_IP'} size='14'></td></tr>
2a81ab0d
AM		 993 <tr><td colspan='6'><hr></hr></td></tr><tr>
994END
995 if ($fwhostsettings{'ACTION'} eq 'editnet' || $fwhostsettings{'error'} eq 'on')
996 {
7f5b2820 997 print "<td colspan='6' align='right' ><input type='submit' value='$Lang::tr{'update'}' style='min-width:100px;'><input type='hidden' name='ACTION' value='updatenet'><input type='hidden' name='orgname' value='$fwhostsettings{'orgname'}' ><input type='hidden' name='update' value='on'><input type='hidden' name='newnet' value='$fwhostsettings{'newnet'}'>";
2a81ab0d 998 }else{
7f5b2820 999 print "<td colspan='6' align='right'><input type='submit' value='$Lang::tr{'save'}' style='min-width:100px;'/><input type='hidden' name='ACTION' value='savenet'><input type='hidden' name='newnet' value='on'>";
2a81ab0d 1000 }
7f5b2820 1001 print "</form><form method='post' style='display:inline'><input type='submit' value='$Lang::tr{'fwhost back'}' style='min-width:100px;' ><input type='hidden' name='ACTION' value='resetnet'></td></tr></table></form>";
2a81ab0d
AM		 1002 &Header::closebox();
1003}
1004sub addhost
1005{
1006 &error;
1007 &showmenu;
1008 &Header::openbox('100%', 'left', $Lang::tr{'fwhost addhost'});
1009 $fwhostsettings{'orgname'}=$fwhostsettings{'HOSTNAME'};
1010 print<<END;
1011 <table border='0' width='100%'><form method='post' style='display:inline'>
1aec05a6 1012 <tr><td>$Lang::tr{'name'}:</td><td width='35%'><input type='TEXT' name='HOSTNAME' id='textbox1' value='$fwhostsettings{'HOSTNAME'}' $fwhostsettings{'BLK_HOST'} ><script>document.getElementById('textbox1').focus()</script></td><td><select name='type'>
2a81ab0d
AM		 1013END
1014 if ($fwhostsettings{'type'} eq 'ip'){print "<option value='ip' selected >IP</option>";}else{print "<option value='ip' >IP</option>";}
1015 if ($fwhostsettings{'type'} eq 'mac'){print "<option value='mac' selected >MAC</option>";}else{print "<option value='mac' >MAC</option>";}
1016 print<<END;
1017 </option></select></td><td align='right' width='15%'>IP/MAC:</td><td align='right'><input type='TEXT' name='IP' value='$fwhostsettings{'IP'}' $fwhostsettings{'BLK_IP'} ></td></tr>
1018 <tr><td colspan='7'><br><br><b>$Lang::tr{'fwhost attention'}</b><br>$Lang::tr{'fwhost macwarn'}</td></tr>
1019 <tr><td colspan='7'><hr></hr></td></tr>
1020END
1021
1022 if ($fwhostsettings{'ACTION'} eq 'edithost' || $fwhostsettings{'error'} eq 'on')
1023 {
1024
7f5b2820 1025 print " <td colspan='6' align='right'><input type='submit' value='$Lang::tr{'update'}' style='min-width:100px;'/><input type='hidden' name='ACTION' value='updatehost'><input type='hidden' name='orgname' value='$fwhostsettings{'orgname'}' ><input type='hidden' name='update' value='on'><input type='hidden' name='newhost' value='$fwhostsettings{'newhost'}'></form>";
2a81ab0d 1026 }else{
7f5b2820 1027 print " <td colspan='6' align='right'><input type='submit' name='savehost' value='$Lang::tr{'save'}'style='min-width:100px;' /><input type='hidden' name='ACTION' value='savehost' /><input type='hidden' name='newhost' value='on'>";
2a81ab0d 1028 }
7f5b2820 1029 print " </form><form method='post' style='display:inline'><input type='submit' value='$Lang::tr{'fwhost back'}' style='min-width:100px;' ><input type='hidden' name='ACTION' value='resethost'></td></tr></table></form>";
2a81ab0d
AM		 1030 &Header::closebox();
1031}
1032sub addgrp
1033{
1034 &hint;
1035 &error;
1036 &showmenu;
1037 &Header::openbox('100%', 'left', $Lang::tr{'fwhost addgrp'});
1038 &General::setup_default_networks(\%defaultNetworks);
1039 my %checked=();
1040 $checked{'check1'}{'off'} = '';
1041 $checked{'check1'}{'on'} = '';
1042 $checked{'grp2'}{$fwhostsettings{'grp2'}} = 'CHECKED';
1043 $fwhostsettings{'oldremark'}=$fwhostsettings{'remark'};
1044
1045 if ($fwhostsettings{'update'} eq ''){
1046 print<<END;
1047 <table width='100%' border='0'><form method='post'>
7f5b2820 1048 <tr><td>$Lang::tr{'fwhost addgrpname'}</td><td><input type='TEXT' name='grp_name' value='$fwhostsettings{'grp_name'}'></td><td>$Lang::tr{'remark'}:</td><td width='1%'><input type='TEXT' name='remark' size='35' value='$fwhostsettings{'remark'}'></tr>
2a81ab0d
AM		 1049 <tr><td colspan='5'><hr></td></tr></table>
1050END
1051 }else{
1052 print<<END;
1053 <table width='100%' border='0'><form method='post'>
7f5b2820 1054 <tr><td nowrap='nowrap' width='16%'>$Lang::tr{'fwhost addgrpname'}</td><td><input type='TEXT' name='grp_name' value='$fwhostsettings{'grp_name'}' readonly ></td><td>$Lang::tr{'remark'}:</td><td><input type='TEXT' name='remark' size='35' value='$fwhostsettings{'remark'}'></tr>
2a81ab0d
AM		 1055 <tr><td colspan='5'><hr></td></tr></table>
1056END
1057
1058 }
1059 if ($fwhostsettings{'update'} eq 'on'){
1060
1061
1062 print<<END;
1063 <table width='100%' border='0'><tr><td width='1%'><input type='radio' name='grp2' value='std_net' checked></td><td nowrap='nowrap' width='16%'>$Lang::tr{'fwhost stdnet'}</td><td><select name='DEFAULT_SRC_ADR' style='min-width:185px;'>
1064
1065END
1066 foreach my $network (sort keys %defaultNetworks)
1067 {
1068 next if($defaultNetworks{$network}{'LOCATION'} eq "IPCOP");
62fc8511 1069 next if($defaultNetworks{$network}{'NAME'} eq "RED");
2a81ab0d
AM		 1070 print "<option value='$defaultNetworks{$network}{'NAME'}'";
1071 print " selected='selected'" if ($fwhostsettings{'DEFAULT_SRC_ADR'} eq $defaultNetworks{$network}{'NAME'});
1072 print ">$network</option>";
1073 }
1074
1075 print<<END;
1076 </select></td><td width='1%'><input type='radio' name='grp2' value='ovpn_net' $checked{'grp2'}{'ovpn_net'}></td><td nowrap='nowrap' width='16%'>$Lang::tr{'fwhost ccdnet'}</td><td nowrap='nowrap' width='1%'><select name='OVPN_CCD_NET' style='min-width:185px;'>
1077END
1078 &General::readhasharray("$configccdnet", \%ccdnet);
1079 foreach my $key (sort { uc($ccdnet{$a}[0]) cmp uc($ccdnet{$b}[0]) } keys %ccdnet)
1080 {
1081 print"<option value='$ccdnet{$key}[0]'>$ccdnet{$key}[0]</option>";
1082 }
1083
1084 print<<END;
1085 </select></td></tr>
1086 <tr><td><input type='radio' name='grp2' value='cust_net' $checked{'grp2'}{'cust_net'}></td><td>$Lang::tr{'fwhost cust net'}</td><td><select name='CUST_SRC_NET' style='min-width:185px;'>
1087END
1088 &General::readhasharray("$confignet", \%customnetwork);
1089 foreach my $key (sort { uc($customnetwork{$a}[0]) cmp uc($customnetwork{$b}[0]) } keys %customnetwork) {
1090 print"<option>$customnetwork{$key}[0]</option>";
1091 }
1092
1093 print<<END;
1094 </select></td><td width='1%'><input type='radio' name='grp2' value='ovpn_host' $checked{'grp2'}{'ovpn_host'}></td><td nowrap='nowrap' width='16%'>$Lang::tr{'fwhost ccdhost'}</td><td nowrap='nowrap' width='1%'><select name='OVPN_CCD_HOST' style='min-width:185px;'>
1095END
1096 &General::readhasharray("$configccdhost", \%ccdhost);
1097 foreach my $key (sort { uc($ccdhost{$a}[0]) cmp uc($ccdhost{$b}[0]) } keys %ccdhost)
1098 {
1099 if ($ccdhost{$key}[33] ne ''){
1100 print"<option value='$ccdhost{$key}[1]'>$ccdhost{$key}[1]</option>";
1101 }
1102 }
1103
1104 print<<END;
1105 </select></td></tr>
1106 <tr><td valign='top'><input type='radio' name='grp2' value='cust_host' $checked{'grp2'}{'cust_host'}></td><td valign='top'>$Lang::tr{'fwhost cust addr'}</td><td><select name='CUST_SRC_HOST' style='min-width:185px;'>
1107END
1108 &General::readhasharray("$confighost", \%customhost);
1109 foreach my $key (sort { uc($customhost{$a}[0]) cmp uc($customhost{$b}[0]) } keys %customhost) {
1110 print"<option>$customhost{$key}[0]</option>";
1111 }
1112 print<<END;
1113 </select></td><td width='1%'><input type='radio' name='grp2' value='ovpn_n2n' $checked{'grp2'}{'ovpn_n2n'}></td><td valign='top'>$Lang::tr{'fwhost ovpn_n2n'}</td><td colspan='3'><select name='OVPN_N2N' style='min-width:185px;'>
1114END
1115 &General::readhasharray("$configccdhost", \%ccdhost);
1116 foreach my $key (sort { uc($ccdhost{$a}[0]) cmp uc($ccdhost{$b}[0]) } keys %ccdhost) {
1117 if($ccdhost{$key}[3] eq 'net'){
1118 print"<option>$ccdhost{$key}[1]</option>";
1119 }
1120 }
1121 print<<END;
1122 </select></td></tr>
1123 <tr><td colspan='3'></td><td valign='top'><input type='radio' name='grp2' value='ipsec_net' $checked{'grp2'}{'ipsec_net'}></td><td valign='top'>$Lang::tr{'fwhost ipsec net'}</td><td><select name='IPSEC_NET' style='min-width:185px;'>
1124END
1125 &General::readhasharray("$configipsec", \%ipsecconf);
1126 foreach my $key (sort { uc($ipsecconf{$a}[0]) cmp uc($ipsecconf{$b}[0]) } keys %ipsecconf) {
1127 if ($ipsecconf{$key}[3] eq 'net'){
1128 print"<option value='$ipsecconf{$key}[1]'>$ipsecconf{$key}[1]</option>";
1129 }
1130 }
1131 print<<END;
1132 </select></td></tr></table>
1133END
1134# <td colspan='3'></td><td valign='top'><input type='radio' name='grp2' value='ipsec_host' $checked{'grp2'}{'ipsec_host'}></td><td valign='top'>$Lang::tr{'fwhost ipsec host'}</td><td><select name='IPSEC_HOST' style='min-width:185px;'>
1135#END
1136# &General::readhasharray("$configipsec", \%ipsecconf);
1137# foreach my $key (sort { uc($ipsecconf{$a}[0]) cmp uc($ipsecconf{$b}[0]) } keys %ipsecconf) {
1138# if ($ipsecconf{$key}[3] eq 'host'){
1139# print"<option>$ipsecconf{$key}[1]</option>";
1140# }
1141# }
1142# print<<END;
1143# </select></td></tr>
1144# <tr>
1145 print<<END;
1146 <br><br><br>
1147 <b>$Lang::tr{'fwhost attention'}:</b><br>
1148 $Lang::tr{'fwhost macwarn'}<br><hr>
1149END
1150 }
1151 print<<END;
1152 <table border='0' width='100%'>
1153 <tr><td align='right'><input type='submit' value='$Lang::tr{'add'}' style='min-width:100px;' /><input type='hidden' name='oldremark' value='$fwhostsettings{'oldremark'}'><input type='hidden' name='ACTION' value='savegrp' ></form><form method='post' style='display:inline'><input type='submit' value='$Lang::tr{'fwhost back'}' style='min-width:100px;'><input type='hidden' name='ACTION' value'reset'></td></td>
1154 </table></form>
1155END
1156
1157 &Header::closebox();
1158}
1159sub addservice
1160{
1161 &error;
1162 &showmenu;
1163 &Header::openbox('100%', 'left', $Lang::tr{'fwhost newservice'});
1164 if ($fwhostsettings{'updatesrv'} eq 'on')
1165 {
1166 $fwhostsettings{'oldsrvname'} = $fwhostsettings{'SRV_NAME'};
1167 $fwhostsettings{'oldsrvport'} = $fwhostsettings{'SRV_PORT'};
1168 $fwhostsettings{'oldsrvprot'} = $fwhostsettings{'PROT'};
1169 }
1170 print<<END;
1171 <table width='100%' border='0'><form method='post'>
62fc8511 1172 <tr><td width='1%' nowrap='nowrap'>$Lang::tr{'fwhost srv_name'}:</td><td width='1%' nowrap='nowrap'><input type='text' name='SRV_NAME' id='textbox1' value='$fwhostsettings{'SRV_NAME'}'><script>document.getElementById('textbox1').focus()</script></td><td width='1%' nowrap='nowrap'>$Lang::tr{'fwhost prot'}:</td><td><select name='PROT'>
2a81ab0d
AM		 1173END
1174 foreach ("TCP","UDP","ICMP")
1175 {
1176 if ($_ eq $fwhostsettings{'PROT'})
1177 {
1178 print"<option selected>$_</option>";
1179 }else{
1180 print"<option>$_</option>";
1181 }
1182 }
1183 print<<END;
1184 </select></td><td>$Lang::tr{'fwhost port'}:</td><td><input type='text' name='SRV_PORT' value='$fwhostsettings{'SRV_PORT'}' maxlength='11' size='9'></td></tr>
1185 <tr><td></td><td></td><td nowrap='nowrap'>$Lang::tr{'fwhost icmptype'}</td><td colspan='4'><select name='ICMP_TYPES'>
1186END
1187 &General::readhasharray("${General::swroot}/fwhosts/icmp-types", \%icmptypes);
1188 print"<option>All ICMP-Types</option>";
1189 foreach my $key (sort { uc($icmptypes{$a}[0]) cmp uc($icmptypes{$b}[0]) }keys %icmptypes){
1190 print"<option>$icmptypes{$key}[0] ($icmptypes{$key}[1])</option>";
1191 }
1192
1193 print<<END;
1194 </select></td>
1195 <tr><td colspan='6'><hr></td></tr>
1196 <tr><td colspan='6' align='right'>
1197END
1198 if ($fwhostsettings{'updatesrv'} eq 'on')
1199 {
1200 print<<END;
7f5b2820 1201 <input type='submit' value='$Lang::tr{'update'}'style='min-width:100px;' >
2a81ab0d
AM		 1202 <input type='hidden' name='ACTION' value='updateservice'>
1203 <input type='hidden' name='oldsrvname' value='$fwhostsettings{'oldsrvname'}'>
1204 <input type='hidden' name='oldsrvport' value='$fwhostsettings{'oldsrvport'}'>
1205 <input type='hidden' name='oldsrvprot' value='$fwhostsettings{'oldsrvprot'}'></form>
1206END
1207
1208 }else{
7f5b2820 1209 print"<input type='submit' value='$Lang::tr{'save'}' style='min-width:100px;'><input type='hidden' name='ACTION' value='saveservice'></form>";
2a81ab0d
AM		 1210 }
1211 print<<END;
7f5b2820 1212 <form style='display:inline;' method='post'><input type='submit' value='$Lang::tr{'fwhost back'}' style='min-width:100px;'></form></td></tr>
2a81ab0d
AM		 1213 </table></form>
1214
1215
1216END
1217 &Header::closebox();
1218 &viewtableservice;
1219}
1220sub addservicegrp
1221{
1222 &hint;
1223 &error;
1224 &showmenu;
1225 &Header::openbox('100%', 'left', $Lang::tr{'fwhost newservicegrp'});
1226 $fwhostsettings{'oldsrvgrpremark'}=$fwhostsettings{'SRVGRP_REMARK'};
1227
1228 if ($fwhostsettings{'updatesrvgrp'} eq ''){
1229 print<<END;
1230 <table width='100%' border='0'><form method='post'>
1231 <tr><td>$Lang::tr{'fwhost addgrpname'}</td><td><input type='text' name='SRVGRP_NAME' value='$fwhostsettings{'SRVGRP_NAME'}'></td><td>$Lang::tr{'remark'}:</td><td width='1%'><input type='text' name='SRVGRP_REMARK' size='35' value='$fwhostsettings{'SRVGRP_REMARK'}'></td></tr>
1232 <tr><td colspan='4'><hr></td></td></tr>
1233 </table>
1234END
1235 }else{
1236 print<<END;
1237 <table width='100%' border='0'><form method='post'>
1238 <tr><td>$Lang::tr{'fwhost addgrpname'}</td><td><input type='text' name='SRVGRP_NAME' value='$fwhostsettings{'SRVGRP_NAME'}' readonly ></td><td>$Lang::tr{'remark'}:</td><td width='1%'><input type='text' name='SRVGRP_REMARK' size='35' value='$fwhostsettings{'SRVGRP_REMARK'}'></td></tr>
1239 <tr><td colspan='4'><hr></td></td></tr>
1240 </table>
1241END
1242 }
1243 if($fwhostsettings{'updatesrvgrp'} eq 'on'){
2a81ab0d 1244 print<<END;
7f5b2820 1245 <table border='0' width='100%'>
2a81ab0d
AM		 1246 <tr><td width='1%' nowrap='nowrap'>$Lang::tr{'fwhost cust service'}</td><td><select name='CUST_SRV' style='min-width:185px;'>
1247END
1248 &General::readhasharray("$configsrv", \%customservice);
0f869e32 1249 foreach my $key (sort {$a <=> $b} keys %customservice)
2a81ab0d
AM		 1250 {
1251 print "<option>$customservice{$key}[0]</option>";
1252 }
1253 print<<END;
1254 </select></td></tr>
1255 <tr><td colspan='4'><br><br><br></td></tr>
1256 <tr><td colspan='4'><hr></td></tr>
1257 </table>
1258END
1259 }
1260 print<<END;
7f5b2820
AM		 1261 <table width='100%' border='0'>
1262 <tr><td align='right'><input type='submit' value='$Lang::tr{'add'}' style='min-width:100px;' /><input type='hidden' name='updatesrvgrp' value='$fwhostsettings{'updatesrvgrp'}'><input type='hidden' name='oldsrvgrpremark' value='$fwhostsettings{'oldsrvgrpremark'}'><input type='hidden' name='ACTION' value='saveservicegrp' ></form><form style='display:inline;' method='post'><input type='submit' value='$Lang::tr{'fwhost back'}' style='min-width:100px;'></td></tr>
2a81ab0d
AM		 1263 </table></form>
1264END
1265
1266 &Header::closebox();
1267}
1268# View
1269sub viewtablenet
1270{
1271 if(! -z $confignet){
1272 &Header::openbox('100%', 'left', $Lang::tr{'fwhost cust net'});
1273 &General::readhasharray("$confignet", \%customnetwork);
1274 if (!keys %customnetwork)
1275 {
1276 print "<center><b>$Lang::tr{'fwhost empty'}</b>";
1277 }else{
1278 print<<END;
1279 <table border='0' width='100%'>
1280 <tr><td align='center'><b>$Lang::tr{'name'}</td><td align='center'><b>$Lang::tr{'fwhost netaddress'}</td><td align='center'><b>$Lang::tr{'netmask'}</td><td align='center'><b>$Lang::tr{'used'}</td><td></td><td width='3%'></td></tr>
1281END
1282 }
1283 my $count=0;
ed62bbfb 1284 foreach my $key (sort {$a <=> $b} keys %customnetwork) {
2a81ab0d
AM		 1285 if ($fwhostsettings{'ACTION'} eq 'editnet' && $fwhostsettings{'HOSTNAME'} eq $customnetwork{$key}[0]) {
1286 print" <tr bgcolor='${Header::colouryellow}'>";
1287 }elsif ($count % 2)
1288 {
1289 print" <tr bgcolor='$color{'color22'}'>";
1290 }else
1291 {
1292 print" <tr bgcolor='$color{'color20'}'>";
1293 }
1294 print<<END;
937d4e08 1295 <td width='40%'><form method='post'>$customnetwork{$key}[0]</td><td width=25%'>$customnetwork{$key}[1]</td><td width='25%'>$customnetwork{$key}[2]</td><td align='center'>$customnetwork{$key}[3]x</td>
2a81ab0d
AM		 1296 <td width='1%'><input type='image' src='/images/edit.gif' align='middle' alt=$Lang::tr{'edit'} title=$Lang::tr{'edit'} />
1297 <input type='hidden' name='ACTION' value='editnet'>
1298 <input type='hidden' name='HOSTNAME' value='$customnetwork{$key}[0]' />
1299 <input type='hidden' name='IP' value='$customnetwork{$key}[1]' />
1300 <input type='hidden' name='SUBNET' value='$customnetwork{$key}[2]' />
1301 </td></form>
1302END
1303 if($customnetwork{$key}[3] == '0')
1304 {
1305 print"<td width='1%'><form method='post'><input type='image' src='/images/delete.gif' align='middle' alt=$Lang::tr{'delete'} title=$Lang::tr{'delete'} /><input type='hidden' name='ACTION' value='delnet' /><input type='hidden' name='key' value='$customnetwork{$key}[0]' /></td></form></tr>";
1306 }else{
1307 print"<td></td></form></tr>";
1308 }
1309 $count++;
1310 }
1311 print"</table>";
1312 &Header::closebox();
1313 }
1314
1315}
1316sub viewtablehost
1317{
1318 if (! -z $confighost){
1319 &Header::openbox('100%', 'left', $Lang::tr{'fwhost cust addr'});
1320 &General::readhasharray("$confighost", \%customhost);
1321 if (!keys %customhost)
1322 {
1323 print "<center><b>$Lang::tr{'fwhost empty'}</b>";
1324 }else{
1325 print<<END;
1326 <table border='0' width='100%'>
1327 <tr><td align='center'><b>$Lang::tr{'name'}</td><td align='center'><b>$Lang::tr{'fwhost ip_mac'}</td><td align='center'><b>$Lang::tr{'used'}</td><td></td><td width='3%'></td></tr>
1328END
1329 }
1330 my $count=0;
fb70d3d5 1331 foreach my $key (sort { uc($customhost{$a}[0]) cmp uc($customhost{$b}[0])|| $a <=> $b } keys %customhost) {
2a81ab0d
AM		 1332 if ( ($fwhostsettings{'ACTION'} eq 'edithost' || $fwhostsettings{'error'}) && $fwhostsettings{'HOSTNAME'} eq $customhost{$key}[0]) {
1333 print" <tr bgcolor='${Header::colouryellow}'>";
1334 }elsif ($count % 2){ print" <tr bgcolor='$color{'color22'}'>";}
1335 else{ print" <tr bgcolor='$color{'color20'}'>";}
1336 my ($ip,$sub)=split(/\//,$customhost{$key}[2]);
1337 print<<END;
937d4e08 1338 <td width='40%'><form method='post'>$customhost{$key}[0]</td><td width='50%'>$customhost{$key}[2]</td><td align='center'>$customhost{$key}[3]x</td>
2a81ab0d
AM		 1339 <td width='1%'><input type='image' src='/images/edit.gif' align='middle' alt=$Lang::tr{'edit'} title=$Lang::tr{'edit'} />
1340 <input type='hidden' name='ACTION' value='edithost' />
1341 <input type='hidden' name='HOSTNAME' value='$customhost{$key}[0]' />
1342 <input type='hidden' name='IP' value='$ip' />
1343 <input type='hidden' name='type' value='$customhost{$key}[1]' />
1344 </td></form>
1345END
1346 if($customhost{$key}[3] == '0')
1347 {
1348 print"<td width='1%'><form method='post'><input type='image' src='/images/delete.gif' align='middle' alt=$Lang::tr{'delete'} title=$Lang::tr{'delete'} /><input type='hidden' name='ACTION' value='delhost' /><input type='hidden' name='key' value='$customhost{$key}[0]' /></td></form></tr>";
1349 }else{
1350 print"<td width='1%'></td></tr>";
1351 }
1352 $count++;
1353 }
1354 print"</table>";
1355 &Header::closebox();
1356 }
1357}
1358sub viewtablegrp
1359{
1360 if(! -z "$configgrp"){
1361 &Header::openbox('100%', 'left', $Lang::tr{'fwhost cust grp'});
1362 &General::readhasharray("$configgrp", \%customgrp);
1363 &General::readhasharray("$configipsec", \%ipsecconf);
1364 &General::readhasharray("$configccdhost", \%ccdhost);
1365 &General::readhasharray("$configccdnet", \%ccdnet);
1366 &General::readhasharray("$confighost", \%customhost);
1367 &General::readhasharray("$confignet", \%customnetwork);
1368 my @grp=();
1369 my $helper='';
1370 my $count=0;
1371 my $grpname;
1372 my $remark;
1373 my $number=keys %customgrp;
1374 if (!keys %customgrp)
1375 {
1376 print "<center><b>$Lang::tr{'fwhost empty'}</b>";
1377 }else{
20c00d4b 1378 foreach my $key (sort { uc($customgrp{$a}[0]) cmp uc($customgrp{$b}[0]) } sort { uc($customgrp{$a}[2]) cmp uc($customgrp{$b}[2]) } keys %customgrp){
2a81ab0d
AM		 1379
1380 $count++;
1381 if ($helper ne $customgrp{$key}[0]){
1382 $grpname=$customgrp{$key}[0];
1383 $remark=$customgrp{$key}[1];
1384 if($count >=2){print"</table>";}
1385 print "<br><b><u>$grpname</u></b> &nbsp &nbsp";
1386 print " <b>$Lang::tr{'remark'}:</b>&nbsp $remark &nbsp " if ($remark ne '');
937d4e08 1387 print "<b>$Lang::tr{'used'}:</b> $customgrp{$key}[4]x";
2a81ab0d
AM		 1388 if($customgrp{$key}[4] == '0')
1389 {
1390 print"<form method='post' style='display:inline'><input type='image' src='/images/delete.gif' alt=$Lang::tr{'delete'} title=$Lang::tr{'delete'} align='right' /><input type='hidden' name='grp_name' value='$grpname' ><input type='hidden' name='ACTION' value='delgrp'></form>";
1391 }
1392 print"<form method='post' style='display:inline'><input type='image' src='/images/edit.gif' alt=$Lang::tr{'edit'} title=$Lang::tr{'edit'} align='right' /><input type='hidden' name='grp_name' value='$grpname' ><input type='hidden' name='remark' value='$remark' ><input type='hidden' name='ACTION' value='editgrp'></form>";
1393 print"<table width='100%' style='border: 1px solid #000000;' rules='none' ><tr><td align='center'><b>Name</b></td><td align='center'><b>$Lang::tr{'ip address'}</b></td><td align='center' width='25%'><b>$Lang::tr{'fwhost type'}</td></tr>";
1394 }
1395 if ( ($fwhostsettings{'ACTION'} eq 'editgrp' || $fwhostsettings{'update'} ne '') && $fwhostsettings{'grp_name'} eq $customgrp{$key}[0]) {
1396 print" <tr bgcolor='${Header::colouryellow}'>";
1397 }elsif ($count %2 == 0){print"<tr bgcolor='$color{'color22'}'>";}else{print"<tr bgcolor='$color{'color20'}'>";}
1398 my $ip=&getipforgroup($customgrp{$key}[2],$customgrp{$key}[3]);
1399 if ($ip eq ''){print"<tr bgcolor='${Header::colouryellow}'>";}
1400
1401
1402 print "<td width='39%'>";
1403 if($customgrp{$key}[3] eq 'Standard Network'){
1404 print &get_name($customgrp{$key}[2])."</td>";
1405 }else{
1406 print "$customgrp{$key}[2]</td>";
1407 }
1408 if ($ip eq '' && $customgrp{$key}[2] ne $Lang::tr{'fwhost empty'}){
1409 print "<td align='center'>$Lang::tr{'fwhost deleted'}</td><td>$customgrp{$key}[3]</td><td width='1%'><form method='post'>";
1410 }else{
1411 print"<td>$ip</td><td>$customgrp{$key}[3]</td><td width='1%'><form method='post'>";
1412 }
1413 if ($number gt '1' && $ip ne ''){
1414 print"<input type='image' src='/images/delete.gif' align='middle' alt=$Lang::tr{'delete'} title=$Lang::tr{'delete'} />";
1415 }
1416 print"<input type='hidden' name='ACTION' value='deletegrphost'><input type='hidden' name='delhost' value='$grpname,$remark,$customgrp{$key}[2],$customgrp{$key}[3]'></form></td></tr>";
1417
1418 $helper=$customgrp{$key}[0];
1419 }
1420 print"</table>";
1421
1422 }
1423 &Header::closebox();
1424}
1425
1426}
1427sub viewtableservice
1428{
1429 my $count=0;
1430 if(! -z "$configsrv")
1431 {
1432 &Header::openbox('100%', 'left', $Lang::tr{'fwhost services'});
1433 &General::readhasharray("$configsrv", \%customservice);
1434 print<<END;
1435 <table width='100%' border='0'>
1436 <tr><td align='center'><b>$Lang::tr{'fwhost srv_name'}</td><td align='center'><b>$Lang::tr{'fwhost prot'}</td><td align='center'><b>$Lang::tr{'fwhost port'}</td><td align='center'><b>ICMP</td><td align='center'><b>$Lang::tr{'fwhost used'}</td><td></td><td width='3%'></td></tr>
1437END
937d4e08 1438 foreach my $key (sort { uc($customservice{$a}[0]) cmp uc($customservice{$b}[0])|| $a <=> $b } keys %customservice)
2a81ab0d
AM		 1439 {
1440 $count++;
1441 if ( ($fwhostsettings{'updatesrv'} eq 'on' || $fwhostsettings{'error'}) && $fwhostsettings{'SRV_NAME'} eq $customservice{$key}[0]) {
1442 print" <tr bgcolor='${Header::colouryellow}'>";
1443 }elsif ($count % 2){ print" <tr bgcolor='$color{'color22'}'>";}else{ print" <tr bgcolor='$color{'color20'}'>";}
1444 print<<END;
1445 <td>$customservice{$key}[0]</td><td align='center'>$customservice{$key}[2]</td><td align='center'>$customservice{$key}[1]</td><td align='center'>
1446END
1447 if($customservice{$key}[3] ne 'BLANK'){print $customservice{$key}[3];}
1448
1449 print<<END;
1450 </td><td align='center'>$customservice{$key}[4]x</td>
1451 <td width='1%'><form method='post'><input type='image' src='/images/edit.gif' align='middle' alt=$Lang::tr{'edit'} title=$Lang::tr{'edit'} /><input type='hidden' name='ACTION' value='editservice' />
1452 <input type='hidden' name='SRV_NAME' value='$customservice{$key}[0]' />
1453 <input type='hidden' name='SRV_PORT' value='$customservice{$key}[1]' />
1454 <input type='hidden' name='PROT' value='$customservice{$key}[2]' /></form></td>
1455END
1456 if ($customservice{$key}[4] eq '0')
1457 {
1458 print"<td width='1%'><form method='post'><input type='image' src='/images/delete.gif' align='middle' alt=$Lang::tr{'delete'} title=$Lang::tr{'delete'} /><input type='hidden' name='ACTION' value='delservice' /><input type='hidden' name='SRV_NAME' value='$customservice{$key}[0]'></td></tr></form>";
1459 }else{
1460 print"<td></td></tr>";
1461 }
1462 }
1463 print"</table>";
1464 &Header::closebox();
1465 }
1466}
1467sub viewtableservicegrp
1468{
1469 my $count=0;
1470 my $grpname;
1471 my $remark;
1472 my $helper;
937d4e08
AM		 1473 my $port;
1474 my $protocol;
2a81ab0d 1475 if (! -z $configsrvgrp){
2a81ab0d
AM		 1476 &Header::openbox('100%', 'left', $Lang::tr{'fwhost cust srvgrp'});
1477 &General::readhasharray("$configsrvgrp", \%customservicegrp);
937d4e08 1478 &General::readhasharray("$configsrv", \%customservice);
2a81ab0d 1479 my $number= keys %customservicegrp;
0f869e32 1480 foreach my $key (sort { uc($customservicegrp{$a}[0]) cmp uc($customservicegrp{$b}[0])|| $a <=> $b } keys %customservicegrp){
2a81ab0d
AM		 1481 $count++;
1482 if ($helper ne $customservicegrp{$key}[0]){
1483 $grpname=$customservicegrp{$key}[0];
1484 $remark=$customservicegrp{$key}[1];
1485 if($count >=2){print"</table>";}
1486 print "<br><b><u>$grpname</u></b> &nbsp &nbsp ";
1487 print "<b>$Lang::tr{'remark'}:</b>&nbsp $remark " if ($remark ne '');
937d4e08
AM		 1488 print "&nbsp <b>$Lang::tr{'used'}:</b> $customservicegrp{$key}[3]x";
1489 if($customservicegrp{$key}[3] == '0')
2a81ab0d
AM		 1490 {
1491 print"<form method='post' style='display:inline'><input type='image' src='/images/delete.gif' alt=$Lang::tr{'delete'} title=$Lang::tr{'delete'} align='right' /><input type='hidden' name='SRVGRP_NAME' value='$grpname' ><input type='hidden' name='ACTION' value='delservicegrp'></form>";
1492 }
1493 print"<form method='post' style='display:inline'><input type='image' src='/images/edit.gif' alt=$Lang::tr{'edit'} title=$Lang::tr{'edit'} align='right' /><input type='hidden' name='SRVGRP_NAME' value='$grpname' ><input type='hidden' name='SRVGRP_REMARK' value='$remark' ><input type='hidden' name='ACTION' value='editservicegrp'></form>";
1494 print"<table width='100%' style='border: 1px solid #000000;' rules='none' ><tr><td align='center'><b>Name</b></td><td align='center'><b>$Lang::tr{'port'}</b></td><td align='center' width='25%'><b>$Lang::tr{'fwhost prot'}</td></tr>";
1495 }
1496 if( $fwhostsettings{'SRVGRP_NAME'} eq $customservicegrp{$key}[0]) {
1497 print" <tr bgcolor='${Header::colouryellow}'>";
937d4e08
AM		 1498 }
1499 if ($count %2 == 0){
0f869e32
AM		 1500 print"<tr bgcolor='$color{'color22'}'>";
1501 }else{
1502 print"<tr bgcolor='$color{'color20'}'>";
1503 }
1504 print "<td width='39%'>$customservicegrp{$key}[2]</td>";
937d4e08
AM		 1505 foreach my $srv (sort keys %customservice){
1506 if ($customservicegrp{$key}[2] eq $customservice{$srv}[0]){
1507 $protocol=$customservice{$srv}[2];
1508 $port=$customservice{$srv}[1];
1509 last;
1510 }
1511 }
1512 print"<td align='center'>$port</td><td align='center'>$protocol</td><td width='1%'><form method='post'>";
0f869e32
AM		 1513 if ($number gt '1'){
1514 print"<input type='image' src='/images/delete.gif' align='middle' alt=$Lang::tr{'delete'} title=$Lang::tr{'delete'} />";
1515 }
1516 print"<input type='hidden' name='ACTION' value='delgrpservice'><input type='hidden' name='delsrvfromgrp' value='$grpname,$remark,$customservicegrp{$key}[2],$customservicegrp{$key}[3]'></form></td></tr>";
1517 $helper=$customservicegrp{$key}[0];
2a81ab0d
AM		 1518 }
1519 print"</table>";
1520 &Header::closebox();
1521 }
1522}
1523# Check
1524sub checkname
1525{
1526 my %hash=%{(shift)};
1527 foreach my $key (keys %hash) {
1528 if($hash{$key}[0] eq $fwhostsettings{'HOSTNAME'}){
1529 return 0;
1530 }
1531 }
1532 return 1;
1533
1534}
1535sub checkip
1536{
1537
1538 my %hash=%{(shift)};
1539 my $a=shift;
1540 foreach my $key (keys %hash) {
1541 if($hash{$key}[$a] eq $fwhostsettings{'IP'}."/".&General::iporsubtodec($fwhostsettings{'SUBNET'})){
1542 return 0;
1543 }
1544 }
1545 return 1;
1546}
1547sub checksubnet
1548{
1549
1550 my %hash=%{(shift)};
1551 &General::readhasharray("$confignet", \%hash);
1552 foreach my $key (keys %hash) {
1553 if(&General::IpInSubnet($fwhostsettings{'IP'},$hash{$key}[1],$hash{$key}[2]))
1554 {
1555 return 1;
1556 }
1557 }
1558 return 0;
1559}
1560sub checkservicegroup
1561{
1562 &General::readhasharray("$configsrvgrp", \%customservicegrp);
1563
1564
1565 #check name
7772ae73 1566 if ( ! &validhostname($fwhostsettings{'SRVGRP_NAME'}))
2a81ab0d
AM		 1567 {
1568 $errormessage.=$Lang::tr{'fwhost err name'}."<br>";
1569 return $errormessage;
1570 }
1571 #check remark
1572 if ( ($fwhostsettings{'SRVGRP_REMARK'} ne '') && (! &validhostname($fwhostsettings{'SRVGRP_REMARK'})))
1573 {
1574 $errormessage.=$Lang::tr{'fwhost err remark'}."<br>";
1575 }
1576 #check empty selectbox
1577 if (keys %customservice lt 1)
1578 {
1579 $errormessage.=$Lang::tr{'fwhost err groupempty'}."<br>";
1580 }
1581
1582 #check if name already exists
1583 if ($fwhostsettings{'updatesrvgrp'} ne 'on'){
1584 foreach my $key (keys %customservicegrp) {
1585 if( $customservicegrp{$key}[0] eq $fwhostsettings{'SRVGRP_NAME'} ){
1586 $errormessage.=$Lang::tr{'fwhost err grpexist'}."<br>";
1587
1588 }
1589 }
1590 }
1591 #check if service already exists in group
1592 foreach my $key (keys %customservicegrp) {
1593 if($customservicegrp{$key}[0] eq $fwhostsettings{'SRVGRP_NAME'} && $customservicegrp{$key}[2] eq $fwhostsettings{'CUST_SRV'} ){
1594 $errormessage.=$Lang::tr{'fwhost err srvexist'}."<br>";
1595
1596 }
1597 }
1598
1599
1600
1601 return $errormessage;
1602}
1603sub error
1604{
1605 if ($errormessage) {
1606 &Header::openbox('100%', 'left', $Lang::tr{'error messages'});
1607 print "<class name='base'>$errormessage\n";
1608 print "&nbsp;</class>\n";
1609 &Header::closebox();
1610 }
1611}
1612sub hint
1613{
1614 if ($hint) {
1615 &Header::openbox('100%', 'left', $Lang::tr{'fwhost hint'});
1616 print "<class name='base'>$hint\n";
1617 print "&nbsp;</class>\n";
1618 &Header::closebox();
1619 }
1620}
1621sub get_name
1622{
1623 my $val=shift;
1624 &General::setup_default_networks(\%defaultNetworks);
1625 foreach my $network (sort keys %defaultNetworks)
1626 {
1627 return "$network" if ($val eq $defaultNetworks{$network}{'NAME'});
1628 }
1629}
1630sub deletefromgrp
1631{
1632 my $target=shift;
1633 my $config=shift;
1634 my %hash=();
1635 &General::readhasharray("$config",\%hash);
1636 foreach my $key (keys %hash) {
1637 $errormessage.="lese $hash{$key}[2] und $target<br>";
1638 if($hash{$key}[2] eq $target){
1639
1640 delete $hash{$key};
1641 $errormessage.="Habe $target aus Gruppe gelöscht!<br>";
1642 }
1643 }
1644 &General::writehasharray("$config",\%hash);
1645
1646}
1647sub plausicheck
1648{
1649
1650 my $edit=shift;
1651 #check hostname
1652 if (!&General::validhostname($fwhostsettings{'HOSTNAME'}))
1653 {
1654 $errormessage=$errormessage.$Lang::tr{'fwhost err name'};
1655 $fwhostsettings{'BLK_IP'}='readonly';
1656 $fwhostsettings{'HOSTNAME'} = $fwhostsettings{'orgname'};
1657 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}=$edit;}
1658 }
1659 #check if name collides with CCD Netname
1660
1661 &General::readhasharray("$configccdnet", \%ccdnet);
1662 foreach my $key (keys %ccdnet) {
1663 if($ccdnet{$key}[0] eq $fwhostsettings{'HOSTNAME'}){
1664 $errormessage=$errormessage.$Lang::tr{'fwhost err isccdnet'};;
1665 $fwhostsettings{'HOSTNAME'} = $fwhostsettings{'orgname'};
1666 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}=$edit;}
1667 last;
1668 }
1669 }
1670
1671 #check if IP collides with CCD NetIP
1672 if ($fwhostsettings{'type'} ne 'mac'){
1673 &General::readhasharray("$configccdnet", \%ccdnet);
1674 foreach my $key (keys %ccdnet) {
1675 my $test=(&General::getnetworkip($fwhostsettings{'IP'},&General::iporsubtocidr($fwhostsettings{'SUBNET'})))."/".$fwhostsettings{'SUBNET'};
1676 if($ccdnet{$key}[1] eq $test){
1677 $errormessage=$errormessage.$Lang::tr{'fwhost err isccdipnet'};
1678 $fwhostsettings{'IP'} = $fwhostsettings{'orgip'};
1679 $fwhostsettings{'SUBNET'} = $fwhostsettings{'orgsubnet'};
1680 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}=$edit;}
1681 last;
1682 }
1683 }
1684 }
1685
1686
1687
1688 #check if name collides with CCD Hostname
1689 &General::readhasharray("$configccdhost", \%ccdhost);
1690 foreach my $key (keys %ccdhost) {
1691 my ($ip,$sub)=split(/\//,$ccdhost{$key}[33]);
1692 if($ip eq $fwhostsettings{'IP'}){
1693 $errormessage=$Lang::tr{'fwhost err isccdiphost'};
1694 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}=$edit;}
1695 last;
1696 }
1697 }
1698 #check if IP collides with CCD HostIP (only hosts)
1699 if ($edit eq 'edithost')
1700 {
1701 foreach my $key (keys %ccdhost) {
1702 if($ccdhost{$key}[1] eq $fwhostsettings{'HOSTNAME'}){
1703 $errormessage=$Lang::tr{'fwhost err isccdhost'};
1704 $fwhostsettings{'IP'} = $fwhostsettings{'orgname'};
1705 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}=$edit;}
1706 last;
1707 }
1708 }
1709 }
1710 #check if network with this name already exists
1711 &General::readhasharray("$confignet", \%customnetwork);
1712 if (!&checkname(\%customnetwork))
1713 {
1714 $errormessage=$errormessage."<br>".$Lang::tr{'fwhost err netexist'};
1715 $fwhostsettings{'HOSTNAME'} = $fwhostsettings{'orgname'};
1716 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}=$edit;}
1717 }
1718 #check if network ip already exists
1719 if (!&checkip(\%customnetwork,1))
1720 {
1721 $errormessage=$errormessage."<br>".$Lang::tr{'fwhost err net'};
1722 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}=$edit;}
1723 }
1724 #check if host with this name already exists
1725 &General::readhasharray("$confighost", \%customhost);
1726 if (!&checkname(\%customhost))
1727 {
1728 $errormessage=$errormessage."<br>".$Lang::tr{'fwhost err hostexist'};
1729 $fwhostsettings{'HOSTNAME'} = $fwhostsettings{'orgname'};
1730 if ($fwhostsettings{'update'} eq 'on'){$fwhostsettings{'ACTION'}=$edit;}
1731 }
1732 #check if host with this ip already exists
1733 if (!&checkip(\%customhost,2))
1734 {
1735 $errormessage=$errormessage."<br>".$Lang::tr{'fwhost err ipcheck'};
1736
1737 }
1738
1739
1740 return;
1741}
1742sub getipforgroup
1743{
1744 my $name=$_[0],
1745 my $type=$_[1];
1746 my $value;
1747
1748 #get address from IPSEC NETWORK
1749 if ($type eq 'IpSec Network'){
1750 foreach my $key (keys %ipsecconf) {
1751 if ($ipsecconf{$key}[1] eq $name){
1752 return $ipsecconf{$key}[11];
1753 }
1754 }
1755 &deletefromgrp($name,$configgrp);
1756 }
1757
1758 #get address from IPSEC HOST
1759 if ($type eq 'IpSec Host'){
1760 foreach my $key (keys %ipsecconf) {
1761 if ($ipsecconf{$key}[1] eq $name){
1762 return $ipsecconf{$key}[10];
1763 }
1764 }
1765 &deletefromgrp($name,$configgrp);
1766 }
1767
1768 #get address from ovpn ccd Net-2-Net
1769 if ($type eq 'OpenVPN N-2-N'){
1770 foreach my $key (keys %ccdhost) {
1771 if($ccdhost{$key}[1] eq $name){
1772 my ($a,$b) = split ("/",$ccdhost{$key}[11]);
1773 $b=&General::iporsubtodec($b);
1774 return "$a/$b";
1775 }
1776 }
1777 &deletefromgrp($name,$configgrp);
1778 }
1779
1780 #get address from ovpn ccd static host
1781 if ($type eq 'OpenVPN static host'){
1782 foreach my $key (keys %ccdhost) {
1783 if($ccdhost{$key}[1] eq $name){
1784 my ($a,$b) = split (/\//,$ccdhost{$key}[33]);
1785 $b=&General::iporsubtodec($b);
1786 return "$a/$b";
1787 }
1788 }
1789 &deletefromgrp($name,$configgrp);
1790 }
1791
1792 #get address from ovpn ccd static net
1793 if ($type eq 'OpenVPN static network'){
1794 foreach my $key (keys %ccdnet) {
1795 if ($ccdnet{$key}[0] eq $name){
1796 my ($a,$b) = split (/\//,$ccdnet{$key}[1]);
1797 $b=&General::iporsubtodec($b);
1798 return "$a/$b";
1799 }
1800 }
1801 }
1802
1803 #check custom addresses
1804 if ($type eq 'Custom Host'){
1805 foreach my $key (keys %customhost) {
1806 if ($customhost{$key}[0] eq $name){
1807 return $customhost{$key}[2];
1808 }
1809 }
1810 }
1811
1812 ##check custom networks
1813 if ($type eq 'Custom Network'){
1814 foreach my $key (keys %customnetwork) {
1815 if($customnetwork{$key}[0] eq $name){
1816 return $customnetwork{$key}[1]."/".$customnetwork{$key}[2];
1817 }
1818 }
1819 }
1820
1821 #check standard networks
1822 if ($type eq 'Standard Network'){
1823 if ($name =~ /OpenVPN/i){
1824 my %ovpn=();
1825 &General::readhash("${General::swroot}/ovpn/settings",\%ovpn);
1826 return $ovpn{'DOVPN_SUBNET'};
1827 }
1828 if ($name eq 'GREEN'){
1829 my %hash=();
1830 &General::readhash("${General::swroot}/ethernet/settings",\%hash);
1831 return $hash{'GREEN_NETADDRESS'}."/".$hash{'GREEN_NETMASK'};
1832 }
1833 if ($name eq 'BLUE'){
1834 my %hash=();
1835 &General::readhash("${General::swroot}/ethernet/settings",\%hash);
1836 return $hash{'BLUE_NETADDRESS'}."/".$hash{'BLUE_NETMASK'};
1837 }
1838 if ($name eq 'ORANGE'){
1839 my %hash=();
1840 &General::readhash("${General::swroot}/ethernet/settings",\%hash);
1841 return $hash{'ORANGE_NETADDRESS'}."/".$hash{'ORANGE_NETMASK'};
1842 }
1843 if ($name eq 'ALL'){
1844 return "0.0.0.0/0.0.0.0";
1845 }
1846 if ($name =~ /IPsec/i){
1847 my %hash=();
1848 &General::readhash("${General::swroot}/vpn/settings",\%hash);
1849 return $hash{'RW_NET'};
1850 }
1851 }
1852}
1853sub rules
1854{
1855 system ("/usr/local/bin/forwardfwctrl");
1856 system("rm ${General::swroot}/forward/reread");
1857}
1858sub decrease
1859{
1860 my $grp=$_[0];
1861 &General::readhasharray("$confignet", \%customnetwork);
1862 &General::readhasharray("$confighost", \%customhost);
1863 foreach my $key (sort keys %customgrp ){
1864 if ( ($customgrp{$key}[0] eq $grp) && ($customgrp{$key}[3] eq 'Custom Network')){
1865 foreach my $key1 (sort keys %customnetwork){
1866 if ($customnetwork{$key1}[0] eq $customgrp{$key}[2]){
1867 $customnetwork{$key1}[3]=$customnetwork{$key1}[3]-1;
1868 last;
1869 }
1870 }
1871 }
1872
1873 if (($customgrp{$key}[0] eq $grp) && ($customgrp{$key}[3] eq 'Custom Host')){
1874 foreach my $key2 (sort keys %customhost){
1875 if ($customhost{$key2}[0] eq $customgrp{$key}[2]){
1876 $customhost{$key2}[3]=$customhost{$key2}[3]-1;
1877 last;
1878 }
1879 }
1880
1881 }
1882 }
1883 &General::writehasharray("$confignet", \%customnetwork);
1884 &General::writehasharray("$confighost", \%customhost);
1885}
1886sub decreaseservice
1887{
1888 my $grp=$_[0];
1889 &General::readhasharray("$configsrv", \%customservice);
1890 &General::readhasharray("$configsrvgrp", \%customservicegrp);
1891
1892 foreach my $key (sort keys %customservicegrp){
1893 if ($customservicegrp{$key}[0] eq $grp ){
1894 foreach my $key2 (sort keys %customservice){
1895 if ($customservice{$key2}[0] eq $customservicegrp{$key}[2]){
1896 $customservice{$key2}[4]--;
1897 }
1898 }
1899 }
1900 }
1901 &General::writehasharray("$configsrv", \%customservice);
1902
1903}
1904sub checkports
1905{
1906
1907 my %hash=%{(shift)};
1908 #check empty fields
1909 if ($fwhostsettings{'SRV_NAME'} eq '' ){
1910 $errormessage=$Lang::tr{'fwhost err name1'};
1911 }
1912 if ($fwhostsettings{'SRV_PORT'} eq '' && $fwhostsettings{'PROT'} ne 'ICMP'){
1913 $errormessage=$Lang::tr{'fwhost err port'};
1914 }
1915 #check valid name
7772ae73 1916 if (! &validhostname($fwhostsettings{'SRV_NAME'})){
2a81ab0d
AM		 1917 $errormessage="<br>".$Lang::tr{'fwhost err name'};
1918 }
1919 #change dashes with :
1920 $fwhostsettings{'SRV_PORT'}=~ tr/-/:/;
1921
1922 if ($fwhostsettings{'SRV_PORT'} eq "*") {
1923 $fwhostsettings{'SRV_PORT'} = "1:65535";
1924 }
1925 if ($fwhostsettings{'SRV_PORT'} =~ /^(\D)\:(\d+)$/) {
1926 $fwhostsettings{'SRV_PORT'} = "1:$2";
1927 }
1928 if ($fwhostsettings{'SRV_PORT'} =~ /^(\d+)\:(\D)$/) {
1929 $fwhostsettings{'SRV_PORT'} = "$1:65535";
1930 }
1931 if($fwhostsettings{'PROT'} ne 'ICMP'){
1932 $errormessage = $errormessage.&General::validportrange($fwhostsettings{'SRV_PORT'}, 'src');
1933 }
1934 # a new service has to have a different name
1935 foreach my $key (keys %hash){
1936 if ($hash{$key}[0] eq $fwhostsettings{'SRV_NAME'}){
1937 $errormessage = "<br>".$Lang::tr{'fwhost err srv exists'};
1938 last;
1939 }
1940 }
1941 return $errormessage;
1942}
1943sub validhostname
1944{
1945 # Checks a hostname against RFC1035
1946 my $hostname = $_[0];
1947
1948 # Each part should be at least two characters in length
1949 # but no more than 63 characters
1950 if (length ($hostname) < 1 || length ($hostname) > 63) {
1951 return 0;}
1952 # Only valid characters are a-z, A-Z, 0-9 and -
7772ae73 1953 if ($hostname !~ /^[a-zA-ZäöüÖÄÜ0-9-_()\/\s]*$/) {
2a81ab0d
AM		 1954 return 0;}
1955 # First character can only be a letter or a digit
1956 if (substr ($hostname, 0, 1) !~ /^[a-zA-ZöäüÖÄÜ0-9]*$/) {
1957 return 0;}
1958 # Last character can only be a letter or a digit
7772ae73 1959 if (substr ($hostname, -1, 1) !~ /^[a-zA-ZöäüÖÄÜ0-9()]*$/) {
2a81ab0d
AM		 1960 return 0;}
1961 return 1;
1962}
1963
1964&Header::closebigbox();
1965&Header::closepage();
Peter's tree of IPFire 2.x