system_gateway_groups.php 9.08 KB
Newer Older
Ad Schellevis's avatar
Ad Schellevis committed
1
<?php
2

Ad Schellevis's avatar
Ad Schellevis committed
3
/*
4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27
    Copyright (C) 2014-2015 Deciso B.V.
    Copyright (C) 2010 Seth Mos <seth.mos@dds.nl>
    All rights reserved.

    Redistribution and use in source and binary forms, with or without
    modification, are permitted provided that the following conditions are met:

    1. Redistributions of source code must retain the above copyright notice,
       this list of conditions and the following disclaimer.

    2. Redistributions in binary form must reproduce the above copyright
       notice, this list of conditions and the following disclaimer in the
       documentation and/or other materials provided with the distribution.

    THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
    INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
    AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
    AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
    OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
    SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
    INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
    CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
    ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
    POSSIBILITY OF SUCH DAMAGE.
Ad Schellevis's avatar
Ad Schellevis committed
28 29
*/

30
require_once("guiconfig.inc");
31
require_once("interfaces.inc");
Ad Schellevis's avatar
Ad Schellevis committed
32
require_once("openvpn.inc");
33
require_once("system.inc");
34
require_once("services.inc");
35
require_once("pfsense-utils.inc");
36
require_once("rrd.inc");
Ad Schellevis's avatar
Ad Schellevis committed
37

38 39
// Resync and restart all VPNs using a gateway group.
function openvpn_resync_gwgroup($gwgroupname = "") {
40 41 42 43 44 45 46 47 48 49 50
    global $config;

    if (!empty($gwgroupname)) {
        if (isset($config['openvpn']['openvpn-server'])) {
            foreach ($config['openvpn']['openvpn-server'] as & $settings) {
                if ($gwgroupname == $settings['interface']) {
                    log_error("Resyncing OpenVPN for gateway group " . $gwgroupname . " server " . $settings["description"] . ".");
                    openvpn_resync('server', $settings);
                }
            }
        }
51

52 53 54 55 56 57 58 59 60 61 62 63
        if (isset($config['openvpn']['openvpn-client'])) {
            foreach ($config['openvpn']['openvpn-client'] as & $settings) {
                if ($gwgroupname == $settings['interface']) {
                    log_error("Resyncing OpenVPN for gateway group " . $gwgroupname . " client " . $settings["description"] . ".");
                    openvpn_resync('client', $settings);
                }
            }
        }
        // Note: no need to resysnc Client Specific (csc) here, as changes to the OpenVPN real interface do not effect these.
    } else {
        log_error("openvpn_resync_gwgroup called with null gwgroup parameter.");
    }
64 65 66
}


67 68 69 70
if (!isset($config['gateways']['gateway_group']) || !is_array($config['gateways']['gateway_group'])) {
    $a_gateway_groups = array();
} else {
    $a_gateway_groups = &$config['gateways']['gateway_group'];
71
}
Ad Schellevis's avatar
Ad Schellevis committed
72

Ad Schellevis's avatar
Ad Schellevis committed
73
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
74 75 76 77 78 79 80 81 82 83 84 85 86 87
    if (isset($_POST['act']) && $_POST['act'] == "del" ) {
        if (!empty($a_gateway_groups[$_POST['id']])) {
            foreach ($config['filter']['rule'] as $idx => $rule) {
                if ($rule['gateway'] == $a_gateway_groups[$_POST['id']]['name']) {
                    unset($config['filter']['rule'][$idx]['gateway']);
                }
            }
            unset($a_gateway_groups[$_POST['id']]);
            write_config();
            mark_subsystem_dirty('staticroutes');
            header("Location: system_gateway_groups.php");
            exit;
        }
    } elseif (isset($_POST['apply'])) {
88 89
        $retval = 0;
        $retval = system_routing_configure();
Ad Schellevis's avatar
Ad Schellevis committed
90

91 92 93
        configd_run('dyndns reload');
        configd_run('ipsecdns reload');
        configd_run('filter reload');
Ad Schellevis's avatar
Ad Schellevis committed
94

95 96
        /* reconfigure our gateway monitor */
        setup_gateways_monitor();
97

98 99 100
        if ($retval == 0) {
            clear_subsystem_dirty('staticroutes');
        }
Ad Schellevis's avatar
Ad Schellevis committed
101

102 103 104 105 106 107 108 109 110 111
        foreach ($a_gateway_groups as $gateway_group) {
            $gw_subsystem = 'gwgroup.' . $gateway_group['name'];
            if (is_subsystem_dirty($gw_subsystem)) {
                openvpn_resync_gwgroup($gateway_group['name']);
                clear_subsystem_dirty($gw_subsystem);
            }
        }
        header("Location: system_gateway_groups.php");
        exit;
    }
Ad Schellevis's avatar
Ad Schellevis committed
112 113
}

114
legacy_html_escape_form_data($a_gateway_groups);
115

116
$service_hook = 'apinger';
117

Ad Schellevis's avatar
Ad Schellevis committed
118 119
include("head.inc");

Ad Schellevis's avatar
Ad Schellevis committed
120
$main_buttons = array(
121
    array('label'=> gettext('Add group'), 'href'=>'system_gateway_groups_edit.php'),
Ad Schellevis's avatar
Ad Schellevis committed
122 123
);

Ad Schellevis's avatar
Ad Schellevis committed
124
?>
125 126 127 128 129 130 131
<script type="text/javascript">
$( document ).ready(function() {
    // remove group
    $(".act-del-group").click(function(event){
      var id = $(this).data('id');
      event.preventDefault();
      BootstrapDialog.show({
Fabian Franz's avatar
Fabian Franz committed
132
          type:BootstrapDialog.TYPE_DANGER,
133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150
          title: "<?= gettext("Gateway-group");?>",
          message: '<?=gettext("Do you really want to delete this gateway group?");?>',
          buttons: [{
                  label: "<?= gettext("No");?>",
                  action: function(dialogRef) {
                    dialogRef.close();
                  }}, {
                    label: "<?= gettext("Yes");?>",
                    action: function(dialogRef) {
                      $("#id").val(id);
                      $("#act").val("del");
                      $("#iform").submit();
                  }
          }]
      });
    });
});
</script>
Ad Schellevis's avatar
Ad Schellevis committed
151
<body>
Ad Schellevis's avatar
Ad Schellevis committed
152
<?php include("fbegin.inc"); ?>
153 154 155 156 157 158 159
  <section class="page-content-main">
    <div class="container-fluid">
      <div class="row">
<?php
      if (is_subsystem_dirty('staticroutes')) {
         print_info_box_apply(sprintf(gettext("The gateway configuration has been changed.%sYou must apply the changes in order for them to take effect."), "<br />"));
      }
160
?>
161
      <section class="col-xs-12">
162 163
        <div class="container-fluid">
          <div class="tab-content content-box">
164 165 166 167
            <form action="system_gateway_groups.php" method="post" name="iform" id="iform">
              <input type="hidden" id="act" name="act" value="" />
              <input type="hidden" id="id" name="id" value="" />
              <div class="table-responsive">
168
                <table class="table table-striped">
169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200
                  <thead>
                    <tr>
                      <td><?=gettext("Group Name");?></td>
                      <td class="hidden-xs"><?=gettext("Gateways");?></td>
                      <td class="hidden-xs"><?=gettext("Priority");?></td>
                      <td><?=gettext("Description");?></td>
                      <td></td>
                    </tr>
                  </thead>
                  <tbody>
<?php
                  $i = 0;
                  foreach ($a_gateway_groups as $gateway_group) :
?>
                    <tr>
                      <td> <?=$gateway_group['name'];?> </td>
                      <td class="hidden-xs">
<?php
                      foreach ($gateway_group['item'] as $item):?>
                           <?=strtoupper(explode("|", $item)[0]);?> <br/>
<?php
                      endforeach;?>
                      </td>
                      <td class="hidden-xs">
<?php
                        foreach ($gateway_group['item'] as $item):?>
                             <?=gettext('Tier ');?><?=explode("|", $item)[1];?> <br/>
<?php
                        endforeach;?>
                      </td>
                      <td><?=$gateway_group['descr'];?></td>
                      <td>
201
                        <a href="system_gateway_groups_edit.php?id=<?=$i;?>" class="btn btn-default btn-xs"
202
                            title="edit group" data-toggle="tooltip">
203 204
                          <span class="glyphicon glyphicon-pencil"></span>
                        </a>
205
                        <button type="button" class="btn btn-default btn-xs act-del-group"
206 207
                            data-id="<?=$i?>" title="<?=gettext("delete group");?>" data-toggle="tooltip">
                          <span class="fa fa-trash text-muted"></span>
208
                        </button>
209
                        <a href="system_gateway_groups_edit.php?dup=<?=$i;?>" class="btn btn-default btn-xs"
210
                            title="clone group" data-toggle="tooltip">
211 212
                          <span class="fa fa-clone text-muted"></span>
                        </a>
213 214 215 216 217
                      </td>
                    </tr>
<?php $i++;
                    endforeach; ?>
                  </tbody>
218 219 220 221 222 223 224 225
                  <tfoot>
                    <tr class="hidden-xs">
                      <td colspan="5">
                        <b><?=gettext("Note:");?></b>
                        <?=gettext("Remember to use these Gateway Groups in firewall rules in order to enable load balancing, failover, or policy-based routing. Without rules directing traffic into the Gateway Groups, they will not be used.");?>
                      </td>
                    </tr>
                  </tfoot>
226 227 228 229 230 231 232 233 234
                </table>
                </div>
              </form>
            </div>
          </div>
        </section>
      </div>
    </div>
  </section>
235
<?php include("foot.inc");