]> git.ipfire.org Git - people/pmueller/ipfire-2.x.git/blob - html/cgi-bin/outgoingfw.cgi
projects / people / pmueller / ipfire-2.x.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Ended core 5 and started core 6
[people/pmueller/ipfire-2.x.git] / html / cgi-bin / outgoingfw.cgi
1 #!/usr/bin/perl
2 ###############################################################################
3 # #
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2007 Michael Tremer & Christian Schmidt #
6 # #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
11 # #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
16 # #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
19 # #
20 ###############################################################################
21
22 use strict;
23 # enable only the following on debugging purpose
24 #use warnings;
25 #use CGI::Carp 'fatalsToBrowser';
26
27 require '/var/ipfire/general-functions.pl';
28 require "${General::swroot}/lang.pl";
29 require "${General::swroot}/header.pl";
30
31 my %outfwsettings = ();
32 my %checked = ();
33 my %selected= () ;
34 my %netsettings = ();
35 my $errormessage = "";
36 my $configentry = "";
37 my @configs = ();
38 my @configline = ();
39 my $p2pentry = "";
40 my @p2ps = ();
41 my @p2pline = ();
42
43 my $configfile = "/var/ipfire/outgoing/rules";
44 my $p2pfile = "/var/ipfire/outgoing/p2protocols";
45 my $servicefile = "/var/ipfire/outgoing/defaultservices";
46
47 my %color = ();
48 my %mainsettings = ();
49 &General::readhash("${General::swroot}/main/settings", \%mainsettings);
50 &General::readhash("/srv/web/ipfire/html/themes/".$mainsettings{'THEME'}."/include/colors.txt", \%color);
51
52 &General::readhash("${General::swroot}/ethernet/settings", \%netsettings);
53
54 &Header::showhttpheaders();
55
56 ### Values that have to be initialized
57 $outfwsettings{'ACTION'} = '';
58 $outfwsettings{'VALID'} = 'yes';
59 $outfwsettings{'EDIT'} = 'no';
60 $outfwsettings{'NAME'} = '';
61 $outfwsettings{'SNET'} = '';
62 $outfwsettings{'SIP'} = '';
63 $outfwsettings{'SPORT'} = '';
64 $outfwsettings{'SMAC'} = '';
65 $outfwsettings{'DIP'} = '';
66 $outfwsettings{'DPORT'} = '';
67 $outfwsettings{'PROT'} = '';
68 $outfwsettings{'STATE'} = '';
69 $outfwsettings{'DISPLAY_DIP'} = '';
70 $outfwsettings{'DISPLAY_DPORT'} = '';
71 $outfwsettings{'DISPLAY_SMAC'} = '';
72 $outfwsettings{'DISPLAY_SIP'} = '';
73 $outfwsettings{'POLICY'} = 'MODE0';
74 $outfwsettings{'MODE1LOG'} = 'off';
75
76 &General::readhash("${General::swroot}/outgoing/settings", \%outfwsettings);
77 &Header::getcgihash(\%outfwsettings);
78
79 $checked{'MODE1LOG'}{'off'} = '';
80 $checked{'MODE1LOG'}{'on'} = '';
81 $checked{'MODE1LOG'}{$outfwsettings{'MODE1LOG'}} = "checked='checked'";
82
83 if ($outfwsettings{'POLICY'} eq 'MODE0'){ $selected{'POLICY'}{'MODE0'} = 'selected'; } else { $selected{'POLICY'}{'MODE0'} = ''; }
84 if ($outfwsettings{'POLICY'} eq 'MODE1'){ $selected{'POLICY'}{'MODE1'} = 'selected'; } else { $selected{'POLICY'}{'MODE1'} = ''; }
85 if ($outfwsettings{'POLICY'} eq 'MODE2'){ $selected{'POLICY'}{'MODE2'} = 'selected'; } else { $selected{'POLICY'}{'MODE2'} = ''; }
86
87 &Header::openpage('Ausgehende Firewall', 1, '');
88 &Header::openbigbox('100%', 'left', '', $errormessage);
89
90 ############################################################################################################################
91 ############################################################################################################################
92
93 if ($outfwsettings{'ACTION'} eq $Lang::tr{'reset'})
94 {
95 $outfwsettings{'POLICY'}='MODE0';
96 unlink $configfile;
97 system("/usr/bin/touch $configfile");
98 my $MODE = $outfwsettings{'POLICY'};
99 %outfwsettings = ();
100 $outfwsettings{'POLICY'} = "$MODE";
101 &General::writehash("${General::swroot}/outgoing/settings", \%outfwsettings);
102 }
103 if ($outfwsettings{'ACTION'} eq $Lang::tr{'save'})
104 {
105 my $MODE = $outfwsettings{'POLICY'};
106 my $MODE1LOG = $outfwsettings{'MODE1LOG'};
107 %outfwsettings = ();
108 $outfwsettings{'POLICY'} = "$MODE";
109 $outfwsettings{'MODE1LOG'} = "$MODE1LOG";
110 &General::writehash("${General::swroot}/outgoing/settings", \%outfwsettings);
111 system("/usr/local/bin/outgoingfwctrl");
112 }
113 if ($outfwsettings{'ACTION'} eq 'enable')
114 {
115 open( FILE, "< $p2pfile" ) or die "Unable to read $p2pfile";
116 @p2ps = <FILE>;
117 close FILE;
118 open( FILE, "> $p2pfile" ) or die "Unable to write $p2pfile";
119 foreach $p2pentry (sort @p2ps)
120 {
121 @p2pline = split( /\;/, $p2pentry );
122 if ($p2pline[1] eq $outfwsettings{'P2PROT'}) {
123 print FILE "$p2pline[0];$p2pline[1];on;\n";
124 } else {
125 print FILE "$p2pline[0];$p2pline[1];$p2pline[2];\n";
126 }
127 }
128 close FILE;
129 system("/usr/local/bin/outgoingfwctrl");
130 }
131 if ($outfwsettings{'ACTION'} eq 'disable')
132 {
133 open( FILE, "< $p2pfile" ) or die "Unable to read $p2pfile";
134 @p2ps = <FILE>;
135 close FILE;
136 open( FILE, "> $p2pfile" ) or die "Unable to write $p2pfile";
137 foreach $p2pentry (sort @p2ps)
138 {
139 @p2pline = split( /\;/, $p2pentry );
140 if ($p2pline[1] eq $outfwsettings{'P2PROT'}) {
141 print FILE "$p2pline[0];$p2pline[1];off;\n";
142 } else {
143 print FILE "$p2pline[0];$p2pline[1];$p2pline[2];\n";
144 }
145 }
146 close FILE;
147 system("/usr/local/bin/outgoingfwctrl");
148 }
149 if ($outfwsettings{'ACTION'} eq $Lang::tr{'edit'})
150 {
151 open( FILE, "< $configfile" ) or die "Unable to read $configfile";
152 @configs = <FILE>;
153 close FILE;
154 open( FILE, "> $configfile" ) or die "Unable to write $configfile";
155 foreach $configentry (sort @configs)
156 {
157 @configline = split( /\;/, $configentry );
158 unless (($configline[0] eq $outfwsettings{'STATE'}) &&
159 ($configline[1] eq $outfwsettings{'ENABLED'}) &&
160 ($configline[2] eq $outfwsettings{'SNET'}) &&
161 ($configline[3] eq $outfwsettings{'PROT'}) &&
162 ($configline[4] eq $outfwsettings{'NAME'}) &&
163 ($configline[5] eq $outfwsettings{'SIP'}) &&
164 ($configline[6] eq $outfwsettings{'SMAC'}) &&
165 ($configline[7] eq $outfwsettings{'DIP'}) &&
166 ($configline[9] eq $outfwsettings{'LOG'}) &&
167 ($configline[8] eq $outfwsettings{'DPORT'}))
168 {
169 print FILE $configentry;
170 }
171 }
172 close FILE;
173 $selected{'SNET'}{"$outfwsettings{'SNET'}"} = 'selected';
174 $selected{'PROT'}{"$outfwsettings{'PROT'}"} = 'selected';
175 $selected{'LOG'}{"$outfwsettings{'LOG'}"} = 'selected';
176 &addrule();
177 &Header::closebigbox();
178 &Header::closepage();
179 exit
180 system("/usr/local/bin/outgoingfwctrl");
181 }
182 if ($outfwsettings{'ACTION'} eq $Lang::tr{'delete'})
183 {
184 open( FILE, "< $configfile" ) or die "Unable to read $configfile";
185 @configs = <FILE>;
186 close FILE;
187 open( FILE, "> $configfile" ) or die "Unable to write $configfile";
188 foreach $configentry (sort @configs)
189 {
190 @configline = split( /\;/, $configentry );
191 unless (($configline[0] eq $outfwsettings{'STATE'}) &&
192 ($configline[1] eq $outfwsettings{'ENABLED'}) &&
193 ($configline[2] eq $outfwsettings{'SNET'}) &&
194 ($configline[3] eq $outfwsettings{'PROT'}) &&
195 ($configline[4] eq $outfwsettings{'NAME'}) &&
196 ($configline[5] eq $outfwsettings{'SIP'}) &&
197 ($configline[6] eq $outfwsettings{'SMAC'}) &&
198 ($configline[7] eq $outfwsettings{'DIP'}) &&
199 ($configline[9] eq $outfwsettings{'LOG'}) &&
200 ($configline[8] eq $outfwsettings{'DPORT'}))
201 {
202 print FILE $configentry;
203 }
204 }
205 close FILE;
206 system("/usr/local/bin/outgoingfwctrl");
207 }
208 if ($outfwsettings{'ACTION'} eq $Lang::tr{'add'})
209 {
210 if ( $outfwsettings{'VALID'} eq 'yes' ) {
211 open( FILE, ">> $configfile" ) or die "Unable to write $configfile";
212 print FILE <<END
213 $outfwsettings{'STATE'};$outfwsettings{'ENABLED'};$outfwsettings{'SNET'};$outfwsettings{'PROT'};$outfwsettings{'NAME'};$outfwsettings{'SIP'};$outfwsettings{'SMAC'};$outfwsettings{'DIP'};$outfwsettings{'DPORT'};$outfwsettings{'LOG'};
214 END
215 ;
216 close FILE;
217 system("/usr/local/bin/outgoingfwctrl");
218 } else {
219 $outfwsettings{'ACTION'} = 'Add rule';
220 }
221 }
222 if ($outfwsettings{'ACTION'} eq 'Add rule')
223 {
224 &addrule();
225 exit
226 }
227
228 &General::readhash("${General::swroot}/outgoing/settings", \%outfwsettings);
229
230 if ($errormessage) {
231 &Header::openbox('100%', 'left', $Lang::tr{'error messages'});
232 print "<class name='base'>$errormessage\n";
233 print "&nbsp;</class>\n";
234 &Header::closebox();
235 }
236
237 ############################################################################################################################
238 ############################################################################################################################
239
240 if ($outfwsettings{'POLICY'} ne 'MODE0'){
241 &Header::openbox('100%', 'center', 'Rules');
242 print <<END
243 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
244 <input type='submit' name='ACTION' value='Add rule' />
245 </form>
246 END
247 ;
248 open( FILE, "< $configfile" ) or die "Unable to read $configfile";
249 @configs = <FILE>;
250 close FILE;
251 if (@configs) {
252 print <<END
253 <hr />
254 <table border='0' width='100%' cellspacing='0'>
255 <tr bgcolor='$color{'color22'}'>
256 <td width='14%' align='center'><b>Protokoll</b>
257 <td width='14%' align='center'><b>Netzwerk</b>
258 <td width='14%' align='center'><b>Ziel</b>
259 <td width='14%' align='center'><b>Anmerkung</b>
260 <td width='14%' align='center'><b>Politik</b>
261 <td width='16%' align='center'><b>Logging</b>
262 <td width='14%' align='center'><b>Aktionen</b>
263 END
264 ;
265 foreach $configentry (sort @configs)
266 {
267 @configline = split( /\;/, $configentry );
268 $outfwsettings{'STATE'} = $configline[0];
269 $outfwsettings{'ENABLED'} = $configline[1];
270 $outfwsettings{'SNET'} = $configline[2];
271 $outfwsettings{'PROT'} = $configline[3];
272 $outfwsettings{'NAME'} = $configline[4];
273 $outfwsettings{'SIP'} = $configline[5];
274 $outfwsettings{'SMAC'} = $configline[6];
275 $outfwsettings{'DIP'} = $configline[7];
276 $outfwsettings{'DPORT'} = $configline[8];
277 $outfwsettings{'LOG'} = $configline[9];
278 if ($outfwsettings{'DIP'} eq ''){ $outfwsettings{'DISPLAY_DIP'} = 'ALL'; } else { $outfwsettings{'DISPLAY_DIP'} = $outfwsettings{'DIP'}; }
279 if ($outfwsettings{'DPORT'} eq ''){ $outfwsettings{'DISPLAY_DPORT'} = 'ALL'; } else { $outfwsettings{'DISPLAY_DPORT'} = $outfwsettings{'DPORT'}; }
280 if ($outfwsettings{'STATE'} eq 'DENY'){ $outfwsettings{'DISPLAY_STATE'} = "<img src='/images/stock_stop.png' alt='DENY' />"; }
281 if ($outfwsettings{'STATE'} eq 'ALLOW'){ $outfwsettings{'DISPLAY_STATE'} = "<img src='/images/stock_ok.png' alt='ALLOW' />"; }
282 if ((($outfwsettings{'POLICY'} eq 'MODE1') && ($outfwsettings{'STATE'} eq 'ALLOW')) || (($outfwsettings{'POLICY'} eq 'MODE2') && ($outfwsettings{'STATE'} eq 'DENY'))){
283 print <<END
284 <tr bgcolor='$color{'color20'}'>
285 <td align='center'>$outfwsettings{'PROT'}
286 <td align='center'>$outfwsettings{'SNET'}
287 <td align='center'>$outfwsettings{'DISPLAY_DIP'}:$outfwsettings{'DISPLAY_DPORT'}
288 <td align='center'>$outfwsettings{'NAME'}
289 <td align='center'>$outfwsettings{'DISPLAY_STATE'}
290 <td align='center'>$outfwsettings{'LOG'}
291 <td align='center'>
292 <table border='0' cellpadding='0' cellspacing='0'><tr>
293 <td><form method='post' action='$ENV{'SCRIPT_NAME'}'>
294 <input type='hidden' name='PROT' value='$outfwsettings{'PROT'}' />
295 <input type='hidden' name='STATE' value='$outfwsettings{'STATE'}' />
296 <input type='hidden' name='SNET' value='$outfwsettings{'SNET'}' />
297 <input type='hidden' name='DPORT' value='$outfwsettings{'DPORT'}' />
298 <input type='hidden' name='DIP' value='$outfwsettings{'DIP'}' />
299 <input type='hidden' name='SIP' value='$outfwsettings{'SIP'}' />
300 <input type='hidden' name='NAME' value='$outfwsettings{'NAME'}' />
301 <input type='hidden' name='SMAC' value='$outfwsettings{'SMAC'}' />
302 <input type='hidden' name='ENABLED' value='$outfwsettings{'ENABLED'}' />
303 <input type='hidden' name='LOG' value='$outfwsettings{'LOG'}' />
304 <input type='hidden' name='ACTION' value=$Lang::tr{'edit'} />
305 <input type='image' src='/images/edit.gif' width="20" height="20" alt=$Lang::tr{'edit'} />
306 </form>
307 <td><form method='post' action='$ENV{'SCRIPT_NAME'}'>
308 <input type='hidden' name='PROT' value='$outfwsettings{'PROT'}' />
309 <input type='hidden' name='STATE' value='$outfwsettings{'STATE'}' />
310 <input type='hidden' name='SNET' value='$outfwsettings{'SNET'}' />
311 <input type='hidden' name='DPORT' value='$outfwsettings{'DPORT'}' />
312 <input type='hidden' name='DIP' value='$outfwsettings{'DIP'}' />
313 <input type='hidden' name='SIP' value='$outfwsettings{'SIP'}' />
314 <input type='hidden' name='NAME' value='$outfwsettings{'NAME'}' />
315 <input type='hidden' name='SMAC' value='$outfwsettings{'SMAC'}' />
316 <input type='hidden' name='ENABLED' value='$outfwsettings{'ENABLED'}' />
317 <input type='hidden' name='LOG' value='$outfwsettings{'LOG'}' />
318 <input type='hidden' name='ACTION' value=$Lang::tr{'delete'} />
319 <input type='image' src='/images/delete.gif' width="20" height="20" alt=$Lang::tr{'delete'} />
320 </form></table>
321 END
322 ;
323 if (($outfwsettings{'SIP'}) || ($outfwsettings{'SMAC'})) {
324 unless ($outfwsettings{'SIP'}) { $outfwsettings{'DISPLAY_SIP'} = 'ALL'; } else { $outfwsettings{'DISPLAY_SIP'} = $outfwsettings{'SIP'}; }
325 unless ($outfwsettings{'SMAC'}) { $outfwsettings{'DISPLAY_SMAC'} = 'ALL'; } else { $outfwsettings{'DISPLAY_SMAC'} = $outfwsettings{'SMAC'}; }
326 print <<END
327 <tr><td width='14%' align='right'>Quell-IP-Adresse:
328 <td width='14%' align='left'>$outfwsettings{'DISPLAY_SIP'}
329 <td width='14%' align='right'>Quell-MAC-Adresse:
330 <td width='14%' align='left'>$outfwsettings{'DISPLAY_SMAC'}
331 <td width='44%' colspan='2' align='center'>
332 END
333 ;
334 }
335 print <<END
336 </form>
337 END
338 ;
339 }
340 }
341 if ($outfwsettings{'POLICY'} eq 'MODE1'){
342 print <<END
343 <tr bgcolor='$color{'color20'}'><form method='post' action='$ENV{'SCRIPT_NAME'}'>
344 <td align='center'>tcp&udp
345 <td align='center'>all
346 <td align='center'>ALL
347 <td align='center'>drop
348 <td align='center'><img src='/images/stock_stop.png' alt='DENY' />
349 <td align='center'>on <input type='radio' name='MODE1LOG' value='on' $checked{'MODE1LOG'}{'on'} /><input type='radio' name='MODE1LOG' value='off' $checked{'MODE1LOG'}{'off'} /> off
350 <td align='center'><input type='hidden' name='ACTION' value=$Lang::tr{'save'} /><input type='image' src='/images/media-floppy.png' width="18" height="18" alt=$Lang::tr{'save'} /></form></tr>
351 <table border='0' cellpadding='0' cellspacing='0'><tr>
352 <td>
353 <td></table>
354 END
355 ;
356 }
357 print <<END
358 </table>
359 END
360 ;
361
362 }
363 &Header::closebox();
364 }
365
366 if ($outfwsettings{'POLICY'} ne 'MODE0'){
367 open( FILE, "< $p2pfile" ) or die "Unable to read $p2pfile";
368 @p2ps = <FILE>;
369 close FILE;
370 &Header::openbox('100%', 'center', 'P2P-Block');
371 print <<END
372 <table width='40%'>
373 <tr bgcolor='$color{'color22'}'><td width='66%' align=center><b>Protokoll</b>
374 <td width='33%' align=center><b>Status</b>
375 END
376 ;
377 my $id = 1;
378 foreach $p2pentry (sort @p2ps)
379 {
380 @p2pline = split( /\;/, $p2pentry );
381 print <<END
382 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
383 END
384 ;
385 print "\t\t\t<tr bgcolor='$color{'color20'}'>\n";
386 print <<END
387 <td width='66%' align='center'>$p2pline[0]:
388 <td width='33%' align='center'><input type='hidden' name='P2PROT' value='$p2pline[1]' />
389 END
390 ;
391 if ($p2pline[2] eq 'on') {
392 print <<END
393 <input type='hidden' name='ACTION' value='disable' />
394 <input type='image' name='submit' src='/images/stock_ok.png' alt='' />
395 END
396 ;
397 } else {
398 print <<END
399 <input type='hidden' name='ACTION' value='enable' />
400 <input type='image' name='submit' src='/images/stock_stop.png' alt='' />
401 END
402 ;
403 }
404 print <<END
405 </form>
406 END
407 ;
408 }
409 print <<END
410 </table>
411 <br />Klicken Sie auf die Symbole um das entsprechende iptables P2P-Blockmodul zu (de-)aktivieren.
412 END
413 ;
414 &Header::closebox();
415 }
416
417 &Header::openbox('100%', 'center', 'Policy');
418 print <<END
419 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
420 <table width='100%'>
421 <tr><td width='10%' align='left'><b>Modus 0:</b><td width='90%' align='left' colspan='2'>In diesem Modus ist es allen Rechnern im Netzwerk uneingeschraenkt moeglich Verbindungen ins Internet aufzubauen.</td></tr>
422 <tr><td width='10%' align='left'><b>Modus 1:</b><td width='90%' align='left' colspan='2'>In diesem Modus werden nur Verbindungen nach den oben definierten Regeln zugelassen.</td></tr>
423 <tr><td width='10%' align='left'><b>Modus 2:</b><td width='90%' align='left' colspan='2'>In diesem Modus werden saemtliche Verbindungen erlaubt, bis auf die oben definierten Block-Regeln.</td></tr>
424 <tr><td colspan='3'><hr /></td></tr>
425 <tr><td width='10%' align='left'> <select name='POLICY' style="width: 85px"><option value='MODE0' $selected{'POLICY'}{'MODE0'}>Modus 0</option><option value='MODE1' $selected{'POLICY'}{'MODE1'}>Modus 1</option><option value='MODE2' $selected{'POLICY'}{'MODE2'}>Modus 2</option></select>
426 <td width='45%' align='left'><input type='submit' name='ACTION' value=$Lang::tr{'save'} />
427 <td width='45%' align='left'>
428 END
429 ;
430 if ($outfwsettings{'POLICY'} ne 'MODE0') {
431 print <<END
432 Alle Regeln loeschen: <input type='submit' name='ACTION' value=$Lang::tr{'reset'} />
433 END
434 ;
435 }
436 print <<END
437 </table>
438 </form>
439 END
440 ;
441 &Header::closebox();
442
443 &Header::closebigbox();
444 &Header::closepage();
445
446 ############################################################################################################################
447 ############################################################################################################################
448
449 sub addrule
450 {
451 &Header::openbox('100%', 'center', 'Rules hinzufuegen');
452 if ($outfwsettings{'EDIT'} eq 'no') { $selected{'ENABLED'} = 'checked'; }
453 print <<END
454 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
455 <table width='80%'>
456 <tr><td width='20%' align='right'>Anmerkung: <img src='/blob.gif' />
457 <td width='30%' align='left'><input type='text' name='NAME' maxlength='30' value='$outfwsettings{'NAME'}' />
458 <td width='20%' align='right'>Aktiviert:
459 <td width='30%' align='left'><input type='checkbox' name='ENABLED' $selected{'ENABLED'} />
460 <tr><td width='20%' align='right'>Protokoll:
461 <td width='30%' align='left'><select name='PROT'><option value='tcp' $selected{'PROT'}{'tcp'}>TCP</option><option value='tcp&udp' $selected{'PROT'}{'tcp&udp'}>TCP & UDP</option><option value='udp' $selected{'PROT'}{'udp'}>UDP</option></select>
462 <td width='20%' align='right'>Sicherheitspolitik:
463 <td width='30%' align='left'>
464 END
465 ;
466 if ($outfwsettings{'POLICY'} eq 'MODE1'){
467 print "\t\t\tALLOW<input type='hidden' name='STATE' value='ALLOW' />\n";
468 } elsif ($outfwsettings{'POLICY'} eq 'MODE2'){
469 print "\t\t\tDENY<input type='hidden' name='STATE' value='DENY' />\n";
470 }
471 print <<END
472 <tr><td width='20%' align='right'>Quellnetz:
473 <td width='30%' align='left'><select name='SNET'>
474 <option value='all' $selected{'SNET'}{'ALL'}>alle</option>
475 <option value='ip' $selected{'SNET'}{'ip'}>Quell-IP/MAC benutzen</option>
476 <option value='green' $selected{'SNET'}{'green'}>$Lang::tr{'green'}</option>
477 END
478 ;
479 if (&Header::blue_used()){
480 print "\t\t\t<option value='blue' $selected{'SNET'}{'blue'}>$Lang::tr{'wireless'}</option>\n";
481 }
482 if (&Header::orange_used()){
483 print "\t\t\t<option value='orange' $selected{'SNET'}{'orange'}>$Lang::tr{'dmz'}</option>\n";
484 }
485 print <<END
486 </select>
487 <td width='20%' align='right'>Quell-IP-Adresse: <img src='/blob.gif' />
488 <td width='30%' align='left'><input type='text' name='SIP' maxlength='15' value='$outfwsettings{'SIP'}' />
489 <tr><td width='20%' align='right'>Logging:
490 <td width='30%' align='left'><select name='LOG'><option value='$Lang::tr{'active'}' $selected{'LOG'}{$Lang::tr{'active'}}>$Lang::tr{'active'}</option><option value='$Lang::tr{'inactive'}' $selected{'LOG'}{$Lang::tr{'inactive'}}>$Lang::tr{'inactive'}</option></select></td>
491 <td width='20%' align='right'>Quell-MAC-Adresse: <img src='/blob.gif' />
492 <td width='30%' align='left'><input type='text' name='SMAC' maxlength='23' value='$outfwsettings{'SMAC'}' />
493 <tr><td width='20%' align='right'>Ziel-IP-Adresse: <img src='/blob.gif' />
494 <td width='30%' align='left'><input type='text' name='DIP' maxlength='15' value='$outfwsettings{'DIP'}' />
495 <td width='20%' align='right'>Ziel-Port: <img src='/blob.gif' />
496 <td width='30%' align='left'><input type='text' name='DPORT' maxlength='11' value='$outfwsettings{'DPORT'}' />
497 <tr><td colspan='4'>
498 <tr><td width='40%' align='right' colspan='2'><img src='/blob.gif' />$Lang::tr{'this field may be blank'}
499 <td width='60%' align='left' colspan='2'><input type='submit' name='ACTION' value=$Lang::tr{'add'} />
500 </table></form>
501 END
502 ;
503 &Header::closebox();
504
505 if ($outfwsettings{'POLICY'} eq 'MODE1' || $outfwsettings{'POLICY'} eq 'MODE2')
506 {
507 &Header::openbox('100%', 'center', 'Quick Add');
508
509 open( FILE, "< /var/ipfire/outgoing/defaultservices" ) or die "Unable to read default services";
510 my @defservices = <FILE>;
511 close FILE;
512
513 print "<table width='100%'><tr bgcolor='$color{'color20'}'><td><b>$Lang::tr{'service'}</b></td><td><b>$Lang::tr{'description'}</b></td><td><b>$Lang::tr{'port'}</b></td><td><b>$Lang::tr{'protocol'}</b></td><td><b>$Lang::tr{'source net'}</b></td><td><b>$Lang::tr{'logging'}</b></td><td></td></tr>";
514 foreach my $serviceline(@defservices)
515 {
516 my @service = split(/,/,$serviceline);
517 print <<END
518 <tr><form method='post' action='$ENV{'SCRIPT_NAME'}'>
519 <td>$service[0]<input type='hidden' name='NAME' value='@service[0]' /></td>
520 <td>$service[3]</td>
521 <td><a href='http://isc.sans.org/port_details.php?port=$service[1]' target='top'>$service[1]</a><input type='hidden' name='DPORT' value='@service[1]' /></td>
522 <td>$service[2]<input type='hidden' name='PROT' value='@service[2]' /></td>
523 <td><select name='SNET'><option value='all' $selected{'SNET'}{'ALL'}>$Lang::tr{'all'}</option><option value='green' $selected{'SNET'}{'green'}>$Lang::tr{'green'}</option>
524 END
525 ;
526 if (&Header::blue_used()){
527 print "<option value='blue' $selected{'SNET'}{'blue'}>$Lang::tr{'wireless'}</option>";
528 }
529 if (&Header::orange_used()){
530 print "<option value='orange' $selected{'SNET'}{'orange'}>$Lang::tr{'dmz'}</option>";
531 }
532 print <<END
533 </select></td>
534 <td><select name='LOG'><option value='$Lang::tr{'active'}'>$Lang::tr{'active'}</option><option value='$Lang::tr{'inactive'}' 'selected'>$Lang::tr{'inactive'}</option></select></td><td>
535 <input type='hidden' name='ACTION' value=$Lang::tr{'add'} />
536 <input type='image' alt='$Lang::tr{'add'}' src='/images/add.gif' />
537 <input type='hidden' name='ENABLED' value='on' />
538 END
539 ;
540 if ($outfwsettings{'POLICY'} eq 'MODE1'){ print "<input type='hidden' name='STATE' value='ALLOW' /></form></td></tr>";}
541 elsif ($outfwsettings{'POLICY'} eq 'MODE2'){print "<input type='hidden' name='STATE' value='DENY' /></form></td></tr>";}
542 }
543 print "</table>";
544 &Header::closebox();
545 }
546 }
Peter's tree of IPFire 2.x