#!/usr/bin/perl ############################################################################### # # # IPFire.org - A linux based firewall # # Copyright (C) 2007 Michael Tremer & Christian Schmidt # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation, either version 3 of the License, or # # (at your option) any later version. # # # # This program is distributed in the hope that it will be useful, # # but WITHOUT ANY WARRANTY; without even the implied warranty of # # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # # GNU General Public License for more details. # # # # You should have received a copy of the GNU General Public License # # along with this program. If not, see . # # # ############################################################################### use strict; # enable only the following on debugging purpose #use warnings; #use CGI::Carp 'fatalsToBrowser'; require '/var/ipfire/general-functions.pl'; require "${General::swroot}/lang.pl"; require "${General::swroot}/header.pl"; my %cgiparams=(); my %pppsettings=(); my %modemsettings=(); my %netsettings=(); my %ddnssettings=(); my $warnmessage = ''; my $refresh = ""; my $ipaddr=''; &Header::showhttpheaders(); $cgiparams{'ACTION'} = ''; &Header::getcgihash(\%cgiparams); $pppsettings{'VALID'} = ''; $pppsettings{'PROFILENAME'} = 'None'; &General::readhash("${General::swroot}/ppp/settings", \%pppsettings); &General::readhash("${General::swroot}/modem/settings", \%modemsettings); &General::readhash("${General::swroot}/ethernet/settings", \%netsettings); &General::readhash("${General::swroot}/ddns/settings", \%ddnssettings); my %color = (); my %mainsettings = (); &General::readhash("${General::swroot}/main/settings", \%mainsettings); &General::readhash("/srv/web/ipfire/html/themes/".$mainsettings{'THEME'}."/include/colors.txt", \%color); my $connstate = &Header::connectionstatus(); if ($cgiparams{'ACTION'} eq $Lang::tr{'shutdown'} || $cgiparams{'ACTION'} eq $Lang::tr{'reboot'}) { $refresh = ""; } elsif ($connstate =~ /$Lang::tr{'connecting'}/ || /$Lang::tr{'connection closed'}/ ){ $refresh = ""; } elsif ($connstate =~ /$Lang::tr{'dod waiting'}/ || -e "${General::swroot}/main/refreshindex") { $refresh = ""; } if ($cgiparams{'ACTION'} eq $Lang::tr{'dial profile'}) { my $profile = $cgiparams{'PROFILE'}; my %tempcgiparams = (); $tempcgiparams{'PROFILE'} = ''; &General::readhash("${General::swroot}/ppp/settings-$cgiparams{'PROFILE'}", \%tempcgiparams); # make a link from the selected profile to the "default" one. unlink("${General::swroot}/ppp/settings"); link("${General::swroot}/ppp/settings-$cgiparams{'PROFILE'}", "${General::swroot}/ppp/settings"); system ("/usr/bin/touch", "${General::swroot}/ppp/updatesettings"); # read in the new params "early" so we can write secrets. %cgiparams = (); &General::readhash("${General::swroot}/ppp/settings", \%cgiparams); $cgiparams{'PROFILE'} = $profile; $cgiparams{'BACKUPPROFILE'} = $profile; &General::writehash("${General::swroot}/ppp/settings-$cgiparams{'PROFILE'}", \%cgiparams); # write secrets file. open(FILE, ">/${General::swroot}/ppp/secrets") or die "Unable to write secrets file."; flock(FILE, 2); my $username = $cgiparams{'USERNAME'}; my $password = $cgiparams{'PASSWORD'}; print FILE "'$username' * '$password'\n"; chmod 0600, "${General::swroot}/ppp/secrets"; close FILE; &General::log("$Lang::tr{'profile made current'} $tempcgiparams{'PROFILENAME'}"); $cgiparams{'ACTION'} = "$Lang::tr{'dial'}"; } if ($cgiparams{'ACTION'} eq $Lang::tr{'dial'}) { system('/usr/local/bin/redctrl start > /dev/null') == 0 or &General::log("Dial failed: $?"); sleep 1;} elsif ($cgiparams{'ACTION'} eq $Lang::tr{'hangup'}) { system('/usr/local/bin/redctrl stop > /dev/null') == 0 or &General::log("Hangup failed: $?"); sleep 1;} my $c; my $maxprofiles = 5; my @profilenames = (); for ($c = 1; $c <= $maxprofiles; $c++) { my %temppppsettings = (); $temppppsettings{'PROFILENAME'} = ''; &General::readhash("${General::swroot}/ppp/settings-$c", \%temppppsettings); $profilenames[$c] = $temppppsettings{'PROFILENAME'}; } my %selected; for ($c = 1; $c <= $maxprofiles; $c++) { $selected{'PROFILE'}{$c} = ''; } $selected{'PROFILE'}{$pppsettings{'PROFILE'}} = "selected='selected'"; my $dialButtonDisabled = "disabled='disabled'"; &Header::openpage($Lang::tr{'main page'}, 1, $refresh); &Header::openbigbox('', 'center'); &Header::openbox('100%', 'center', &Header::cleanhtml(`/bin/uname -n`,"y")); if ( ( $pppsettings{'VALID'} eq 'yes' && $modemsettings{'VALID'} eq 'yes' ) || ( $netsettings{'CONFIG_TYPE'} =~ /^(1|2|3|4)$/ && $netsettings{'RED_TYPE'} =~ /^(DHCP|STATIC)$/ )) { if (open(IPADDR,"${General::swroot}/ddns/ipcache")) { $ipaddr = ; close IPADDR; chomp ($ipaddr); } if (open(IPADDR,"${General::swroot}/red/local-ipaddress")) { $ipaddr = ; close IPADDR; chomp ($ipaddr); } } elsif ($modemsettings{'VALID'} eq 'no') { print "$Lang::tr{'modem settings have errors'}\n \n"; } else { print "$Lang::tr{'profile has errors'}\n \n"; } #if ( $netsettings{'RED_TYPE'} =~ /^(DHCP|STATIC)$/ ) { # $ipaddr = $netsettings{'RED_ADDRESS'}; #} my $death = 0; my $rebirth = 0; if ($cgiparams{'ACTION'} eq $Lang::tr{'shutdown'}) { $death = 1; &General::log($Lang::tr{'shutting down ipfire'}); system '/usr/local/bin/ipfirereboot down'; } elsif ($cgiparams{'ACTION'} eq $Lang::tr{'reboot'}) { $rebirth = 1; &General::log($Lang::tr{'rebooting ipfire'}); system '/usr/local/bin/ipfirereboot boot'; } if ($death == 0 && $rebirth == 0) { if ($mainsettings{'REBOOTQUESTION'} eq "off") { print <

END ; } else { if ($cgiparams{'ACTION'} eq $Lang::tr{'reboot ask'}) { print <

$Lang::tr{'reboot sure'}

END ; } elsif ($cgiparams{'ACTION'} eq $Lang::tr{'shutdown ask'}) { print <

$Lang::tr{'shutdown sure'}

END ; } else { print <

END ; } } print < "; } else { print ""; } my $active = "

$Lang::tr{'network'}

$Lang::tr{'status'}

$Lang::tr{'internet'}

$ipaddr

$connstate END if ( $netsettings{'RED_TYPE'} ne "STATIC" && $netsettings{'RED_TYPE'} ne "DHCP" ){ print `/usr/local/bin/dialctrl.pl show`; print <

END } else { print "$Lang::tr{'profile has errors'}\n \n"; } } my $HOSTNAME = (gethostbyaddr(pack("C4", split(/\./, $ipaddr)), 2))[0]; if ( "$HOSTNAME" ne "" ) { print <

Hostname:

$HOSTNAME

END } if ( -e "/var/ipfire/red/remote-ipaddress" ) { my $GATEWAY = `cat /var/ipfire/red/remote-ipaddress`; chomp($GATEWAY); print <

Gateway:

$GATEWAY

END } my $DNS1 = `cat /var/ipfire/red/dns1`; my $DNS2 = `cat /var/ipfire/red/dns2`; chomp($DNS1); chomp($DNS1); if ( $DNS1 ) { print <

DNS-Server:

$DNS1 END } if ( $DNS2 ) { print <$DNS2 END } else { print < END } if ( $netsettings{'GREEN_DEV'} ) { print <

$Lang::tr{'lan'}

$netsettings{'GREEN_ADDRESS'}

END if ( `cat /var/ipfire/proxy/advanced/settings | grep ^ENABLE=on` ) { print "Proxy an"; if ( `cat /var/ipfire/proxy/advanced/settings | grep ^TRANSPARENT=on` ) { print " (transparent)"; } } else { print "Proxy aus"; } } if ( $netsettings{'BLUE_DEV'} ) { print <

$Lang::tr{'wireless'}

$netsettings{'BLUE_ADDRESS'}

END if ( `cat /var/ipfire/proxy/advanced/settings | grep ^ENABLE_BLUE=on` ) { print "Proxy an"; if ( `cat /var/ipfire/proxy/advanced/settings | grep ^TRANSPARENT_BLUE=on` ) { print " (transparent)"; } } else { print "Proxy aus"; } } if ( $netsettings{'ORANGE_DEV'} ) { print <

$Lang::tr{'dmz'}

$netsettings{'ORANGE_ADDRESS'}

Online END } if ( `cat /var/ipfire/vpn/settings | grep ^ENABLED=on` || `cat /var/ipfire/vpn/settings | grep ^ENABLED_BLUE=on` ) { my $ipsecip = `cat /var/ipfire/vpn/settings | grep ^VPN_IP= | cut -c 8-`; my @status = `/usr/sbin/ipsec auto --status`; my %confighash = (); &General::readhasharray("${General::swroot}/vpn/config", \%confighash); print <

$Lang::tr{'vpn'}

$ipsecip

Online END my $id = 0; my $gif; foreach my $key (keys %confighash) { if ($confighash{$key}[0] eq 'on') { $gif = 'on.gif'; } else { $gif = 'off.gif'; } if ($id % 2) { print "

$confighash{$key}[1] / " . $Lang::tr{"$confighash{$key}[3]"} . " (" . $Lang::tr{"$confighash{$key}[4]"} . ")

$confighash{$key}[11]

$confighash{$key}[1] / " . $Lang::tr{"$confighash{$key}[3]"} . " (" . $Lang::tr{"$confighash{$key}[4]"} . ")

$confighash{$key}[11]

$Lang::tr{'capsclosed'}

"; if ($confighash{$key}[0] eq 'off') { $active = "

$Lang::tr{'capsclosed'}

"; } else { foreach my $line (@status) { if ($line =~ /\"$confighash{$key}[1]\".*IPsec SA established/) { $active = "

$Lang::tr{'capsopen'}

"; } } } print "$active"; } } if ( `cat /var/ipfire/ovpn/settings | grep ^ENABLED=on` || `cat /var/ipfire/ovpn/settings | grep ^ENABLED_BLUE=on` || `cat /var/ipfire/ovpn/settings | grep ^ENABLED_ORANGE=on`) { my $ovpnip = `cat /var/ipfire/ovpn/settings | grep ^DOVPN_SUBNET= | cut -c 14- | sed -e 's\/\\/255.255.255.0\/\/'`; print <OpenVPN
$ovpnip Online END } # Memory usage warning my @free = `/usr/bin/free`; $free[1] =~ m/(\d+)/; my $mem = $1; $free[2] =~ m/(\d+)/; my $used = $1; my $pct = int 100 * ($mem - $used) / $mem; if ($used / $mem > 90) { $warnmessage .= "

$Lang::tr{'high memory usage'}: $pct% !

\n"; } # Diskspace usage warning my @temp=(); my $temp2=(); my @df = `/bin/df -B M -x rootfs`; foreach my $line (@df) { next if $line =~ m/^Filesystem/; if ($line =~ m/root/ ) { $line =~ m/^.* (\d+)M.*$/; @temp = split(/ +/,$line); if ($1<5) { # available:plain value in MB, and not %used as 10% is too much to waste on small disk # and root size should not vary during time $warnmessage .= "$Lang::tr{'filesystem full'}: $temp[0] $Lang::tr{'free'}=$1M !\n"; } } else { # $line =~ m/^.* (\d+)m.*$/; $line =~ m/^.* (\d+)\%.*$/; if ($1>90) { @temp = split(/ /,$line); $temp2=int(100-$1); $warnmessage .= "$Lang::tr{'filesystem full'}: $temp[0] $Lang::tr{'free'}=$temp2% !\n"; } } } if ($warnmessage) { print "$warnmessage"; } print < END } else { my $message=''; if ($death) { $message = $Lang::tr{'ipfire has now shutdown'}; } else { $message = $Lang::tr{'ipfire has now rebooted'}; } print <

$message END ; } &Header::closebox(); &Header::closebigbox(); &Header::closepage();