Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
O
OpnSense
Project
Project
Details
Activity
Releases
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
Kulya
OpnSense
Commits
23f5c04a
Commit
23f5c04a
authored
Aug 12, 2015
by
Ad Schellevis
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
(legacy) refactor diag_ipsec.php
parent
7ab583ed
Changes
1
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
256 additions
and
301 deletions
+256
-301
diag_ipsec.php
src/www/diag_ipsec.php
+256
-301
No files found.
src/www/diag_ipsec.php
View file @
23f5c04a
...
@@ -29,36 +29,11 @@
...
@@ -29,36 +29,11 @@
POSSIBILITY OF SUCH DAMAGE.
POSSIBILITY OF SUCH DAMAGE.
*/
*/
global
$g
;
$pgtitle
=
array
(
gettext
(
"Status"
),
gettext
(
"IPsec"
));
$shortcut_section
=
"ipsec"
;
require_once
(
"guiconfig.inc"
);
require_once
(
"guiconfig.inc"
);
require_once
(
"vpn.inc"
);
require_once
(
"vpn.inc"
);
require_once
(
"services.inc"
);
require_once
(
"services.inc"
);
require_once
(
"interfaces.inc"
);
require_once
(
"interfaces.inc"
);
include
(
"head.inc"
);
function
ipsec_get_descr
(
$ikeid
)
{
global
$config
;
if
(
!
isset
(
$config
[
'ipsec'
][
'phase1'
])
||
!
is_array
(
$config
[
'ipsec'
][
'phase1'
]))
return
""
;
$descr
=
''
;
$a_phase1
=
$config
[
'ipsec'
][
'phase1'
];
foreach
(
$a_phase1
as
$p1
)
{
if
(
$p1
[
'ikeid'
]
==
$ikeid
)
{
$descr
=
$p1
[
'descr'
];
break
;
}
}
unset
(
$a_phase1
);
return
$descr
;
}
function
ipsec_fixup_network
(
$network
)
{
function
ipsec_fixup_network
(
$network
)
{
if
(
substr
(
$network
,
-
3
)
==
'|/0'
)
if
(
substr
(
$network
,
-
3
)
==
'|/0'
)
...
@@ -75,26 +50,6 @@ function ipsec_fixup_network($network) {
...
@@ -75,26 +50,6 @@ function ipsec_fixup_network($network) {
return
$result
;
return
$result
;
}
}
if
(
$_GET
[
'act'
]
==
'connect'
)
{
if
(
ctype_digit
(
$_GET
[
'ikeid'
]))
{
mwexec
(
"/usr/local/sbin/ipsec down con"
.
escapeshellarg
(
$_GET
[
'ikeid'
]));
mwexec
(
"/usr/local/sbin/ipsec up con"
.
escapeshellarg
(
$_GET
[
'ikeid'
]));
}
}
else
if
(
$_GET
[
'act'
]
==
'ikedisconnect'
)
{
if
(
ctype_digit
(
$_GET
[
'ikeid'
]))
{
if
(
!
empty
(
$_GET
[
'ikesaid'
])
&&
ctype_digit
(
$_GET
[
'ikesaid'
]))
mwexec
(
"/usr/local/sbin/ipsec down con"
.
escapeshellarg
(
$_GET
[
'ikeid'
])
.
"["
.
escapeshellarg
(
$_GET
[
'ikesaid'
])
.
"]"
);
else
mwexec
(
"/usr/local/sbin/ipsec down con"
.
escapeshellarg
(
$_GET
[
'ikeid'
]));
}
}
else
if
(
$_GET
[
'act'
]
==
'childdisconnect'
)
{
if
(
ctype_digit
(
$_GET
[
'ikeid'
]))
{
if
(
!
empty
(
$_GET
[
'ikesaid'
])
&&
ctype_digit
(
$_GET
[
'ikesaid'
]))
mwexec
(
"/usr/local/sbin/ipsec down con"
.
escapeshellarg
(
$_GET
[
'ikeid'
])
.
"{"
.
escapeshellarg
(
$_GET
[
'ikesaid'
])
.
"}"
);
}
}
if
(
!
is_array
(
$config
[
'ipsec'
]))
{
if
(
!
is_array
(
$config
[
'ipsec'
]))
{
$config
[
'ipsec'
]
=
array
();
$config
[
'ipsec'
]
=
array
();
}
}
...
@@ -103,206 +58,242 @@ if (!is_array($config['ipsec']['phase1'])) {
...
@@ -103,206 +58,242 @@ if (!is_array($config['ipsec']['phase1'])) {
$config
[
'ipsec'
][
'phase1'
]
=
array
();
$config
[
'ipsec'
][
'phase1'
]
=
array
();
}
}
$a_phase1
=
&
$config
[
'ipsec'
][
'phase1'
];
if
(
$_SERVER
[
'REQUEST_METHOD'
]
===
'POST'
)
{
// check if post can be valid
if
(
!
empty
(
$_POST
[
'ikeid'
])
&&
ctype_digit
(
$_POST
[
'ikeid'
])
&&
!
empty
(
$_POST
[
'action'
]))
{
$act
=
$_POST
[
'action'
];
$ikeid
=
$_POST
[
'ikeid'
];
// check if a valid ikesaid is provided
if
(
!
empty
(
$_POST
[
'ikesaid'
])
&&
ctype_digit
(
$_POST
[
'ikesaid'
]))
{
$ikesaid
=
$_POST
[
'ikesaid'
];
}
else
{
$ikesaid
=
null
;
}
// todo: move to configctl calls
switch
(
$act
)
{
case
'connect'
:
mwexec
(
"/usr/local/sbin/ipsec down con"
.
$ikeid
);
mwexec
(
"/usr/local/sbin/ipsec up con"
.
$ikeid
);
break
;
case
'ikedisconnect'
:
mwexec
(
"/usr/local/sbin/ipsec down con"
.
$ikeid
);
break
;
case
'ikedisconnectconn'
:
if
(
$ikesaid
!==
null
)
{
mwexec
(
"/usr/local/sbin/ipsec down con"
.
$ikeid
.
"["
.
$ikesaid
.
"]"
);
}
else
{
$status
=
ipsec_smp_dump_status
();
}
case
'childdisconnect'
:
mwexec
(
"/usr/local/sbin/ipsec down con"
.
$ikeid
.
"{"
.
$ikesaid
.
"}"
);
break
;
?>
}
}
}
$status
=
ipsec_smp_dump_status
();
$pconfig
=
$config
[
'ipsec'
][
'phase1'
];
legacy_html_escape_form_data
(
$pconfig
);
legacy_html_escape_form_data
(
$status
);
$pgtitle
=
array
(
gettext
(
"Status"
),
gettext
(
"IPsec"
));
$shortcut_section
=
"ipsec"
;
include
(
"head.inc"
);
?>
<script
type=
"text/javascript"
>
//
<!
[
CDATA
[
function
show_childsa
(
id
,
buttonid
)
{
document
.
getElementById
(
buttonid
).
innerHTML
=
''
;
aodiv
=
document
.
getElementById
(
id
);
aodiv
.
style
.
display
=
""
;
}
//]]>
</script>
<body>
<body>
<?php
include
(
"fbegin.inc"
);
?>
<?php
include
(
"fbegin.inc"
);
?>
<section
class=
"page-content-main"
>
<section
class=
"page-content-main"
>
<div
class=
"container-fluid"
>
<div
class=
"container-fluid"
>
<div
class=
"row"
>
<div
class=
"row"
>
<?php
if
(
isset
(
$input_errors
)
&&
count
(
$input_errors
)
>
0
)
print_input_errors
(
$input_errors
);
?>
<?php
if
(
isset
(
$input_errors
)
&&
count
(
$input_errors
)
>
0
)
print_input_errors
(
$input_errors
);
?>
<section
class=
"col-xs-12"
>
<section
class=
"col-xs-12"
>
<?
$active_tab
=
"/diag_ipsec.php"
;
<?
$active_tab
=
"/diag_ipsec.php"
;
include
(
'diag_ipsec_tabs.inc'
);
?>
include
(
'diag_ipsec_tabs.inc'
);
?>
<div
class=
"tab-content content-box col-xs-12"
>
<div
class=
"tab-content content-box col-xs-12"
>
<div
class=
"table-responsive"
>
<div
class=
"table-responsive"
>
<table
class=
"table table-striped
table-sort
"
>
<table
class=
"table table-striped"
>
<thead>
<thead>
<tr>
<tr>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Description"
);
?>
</th>
<th>
<?=
gettext
(
"Description"
);
?>
</th>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Local ID"
);
?>
</th>
<th>
<?=
gettext
(
"Local ID"
);
?>
</th>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Local IP"
);
?>
</th>
<th>
<?=
gettext
(
"Local IP"
);
?>
</th>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Remote ID"
);
?>
</th>
<th>
<?=
gettext
(
"Remote ID"
);
?>
</th>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Remote IP"
);
?>
</th>
<th>
<?=
gettext
(
"Remote IP"
);
?>
</th>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Role"
);
?>
</th>
<th>
<?=
gettext
(
"Role"
);
?>
</th>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Status"
);
?>
</th>
<th>
<?=
gettext
(
"Status"
);
?>
</th>
<th></th>
</tr>
</tr>
</thead>
</thead>
<tbody>
<tbody>
<?php
<?php
$ipsecconnected
=
array
();
$ipsecconnected
=
array
();
if
(
is_array
(
$status
[
'query'
])
&&
is_array
(
$status
[
'query'
][
'ikesalist'
])
&&
is_array
(
$status
[
'query'
][
'ikesalist'
][
'ikesa'
]))
{
if
(
isset
(
$status
[
'query'
][
'ikesalist'
][
'ikesa'
]))
:
foreach
(
$status
[
'query'
][
'ikesalist'
][
'ikesa'
]
as
$ikeid
=>
$ikesa
)
{
foreach
(
$status
[
'query'
][
'ikesalist'
][
'ikesa'
]
as
$ikeid
=>
$ikesa
)
:
// first do formatting
$con_id
=
substr
(
$ikesa
[
'peerconfig'
],
3
);
$con_id
=
substr
(
$ikesa
[
'peerconfig'
],
3
);
$ipsecconnected
[
$con_id
]
=
$con_id
;
$ipsecconnected
[
$con_id
]
=
$con_id
;
$ipsec_get_descr
=
''
;
if
(
ipsec_phase1_status
(
$status
[
'query'
][
'ikesalist'
][
'ikesa'
],
$ikesa
[
'id'
]))
{
foreach
(
$pconfig
as
$p1
)
{
$icon
=
"glyphicon glyphicon-play text-success"
;
if
(
$p1
[
'ikeid'
]
==
$con_id
)
{
}
elseif
(
!
isset
(
$config
[
'ipsec'
][
'enable'
]))
{
$ipsec_get_descr
=
$p1
[
'descr'
];
$icon
=
"glyphicon glyphicon-remove text-danger"
;
break
;
}
else
{
$icon
=
"glyphicon glyphicon-remove text-warning"
;
}
}
?>
}
<tr>
$ipsec_local_identification
=
'Unknown'
;
<td
class=
"listr"
>
<?php
echo
htmlspecialchars
(
ipsec_get_descr
(
$con_id
));
?>
</td>
<td
class=
"listr"
>
<?php
if
(
!
is_array
(
$ikesa
[
'local'
]))
{
echo
"Unknown"
;
}
else
{
if
(
!
empty
(
$ikesa
[
'local'
][
'identification'
]))
{
if
(
!
empty
(
$ikesa
[
'local'
][
'identification'
]))
{
if
(
$ikesa
[
'local'
][
'identification'
]
==
'%any'
)
if
(
$ikesa
[
'local'
][
'identification'
]
=
"%any"
){
echo
'Any identifier'
;
$ipsec_local_identification
=
'Any identifier'
;
else
echo
htmlspecialchars
(
$ikesa
[
'local'
][
'identification'
]);
}
else
{
}
else
{
echo
'Unknown'
;
$ipsec_local_identification
=
$ikesa
[
'local'
][
'identification'
]
;
}
}
}
}
?>
$ipsec_local_address
=
'Unknown'
;
</td>
<td
class=
"listr"
>
<?php
if
(
!
is_array
(
$ikesa
[
'local'
]))
{
echo
"Unknown"
;
}
else
{
if
(
!
empty
(
$ikesa
[
'local'
][
'address'
]))
{
if
(
!
empty
(
$ikesa
[
'local'
][
'address'
]))
{
echo
htmlspecialchars
(
$ikesa
[
'local'
][
'address'
])
.
'<br/>Port:'
.
htmlspecialchars
(
$ikesa
[
'local'
][
'port'
]);
$ipsec_local_address
=
$ikesa
[
'local'
][
'address'
]
.
'<br/>Port:'
.
$ikesa
[
'local'
][
'port'
];
}
else
{
echo
'Unknown'
;
}
}
if
(
$ikesa
[
'local'
][
'nat'
]
!=
'false'
)
{
if
(
isset
(
$ikesa
[
'local'
][
'nat'
])
&&
$ikesa
[
'local'
][
'nat'
]
!=
'false'
)
{
echo
" NAT-T"
;
$ipsec_local_address
.=
' NAT-T'
;
}
}
}
?>
$ipsec_remote_identification
=
'Unknown'
;
</td>
<td
class=
"listr"
>
<?php
if
(
!
is_array
(
$ikesa
[
'remote'
]))
{
echo
"Unknown"
;
}
else
{
$identity
=
""
;
if
(
!
empty
(
$ikesa
[
'remote'
][
'identification'
]))
{
if
(
!
empty
(
$ikesa
[
'remote'
][
'identification'
]))
{
if
(
$ikesa
[
'remote'
][
'identification'
]
==
'%any'
)
{
if
(
$ikesa
[
'remote'
][
'identification'
]
==
'%any'
)
{
$identity
=
'Any identifier'
;
$ipsec_remote_identification
=
'Any identifier'
;
}
else
{
$identity
=
htmlspecialchars
(
$ikesa
[
'remote'
][
'identification'
]);
}
}
if
(
is_array
(
$ikesa
[
'remote'
][
'auth'
])
&&
!
empty
(
$ikesa
[
'remote'
][
'auth'
][
0
][
'identity'
]))
{
echo
htmlspecialchars
(
$ikesa
[
'remote'
][
'auth'
][
0
][
'identity'
]);
echo
"<br/>
{
$identity
}
"
;
}
else
{
if
(
empty
(
$identity
))
{
echo
"Unknown"
;
}
else
{
}
else
{
echo
$identity
;
$ipsec_remote_identification
=
$ikesa
[
'remote'
][
'identification'
]
;
}
}
}
}
if
(
!
empty
(
$ikesa
[
'remote'
][
'auth'
][
0
][
'identity'
]))
{
$ipsec_remote_identification
=
$ikesa
[
'remote'
][
'auth'
][
0
][
'identity'
]
.
'<br/>'
.
$ipsec_remote_identification
;
}
}
?>
</td>
$ipsec_remote_address
=
'Unknown'
;
<td
class=
"listr"
>
<?php
if
(
!
is_array
(
$ikesa
[
'remote'
]))
{
echo
"Unknown"
;
}
else
{
if
(
!
empty
(
$ikesa
[
'remote'
][
'address'
]))
{
if
(
!
empty
(
$ikesa
[
'remote'
][
'address'
]))
{
echo
htmlspecialchars
(
$ikesa
[
'remote'
][
'address'
])
.
'<br/>Port:'
.
htmlspecialchars
(
$ikesa
[
'remote'
][
'port'
]);
$ipsec_remote_address
=
$ikesa
[
'remote'
][
'address'
]
.
'<br/>Port:'
;
}
else
{
echo
'Unknown'
;
}
}
if
(
$ikesa
[
'remote'
][
'nat'
]
!=
'false'
)
{
if
(
isset
(
$ikesa
[
'remote'
][
'nat'
])
&&
$ikesa
[
'remote'
][
'nat'
]
!=
'false'
)
{
echo
" NAT-T"
;
$ipsec_remote_address
.=
' NAT-T'
;
}
}
$connected
=
false
;
if
(
ipsec_phase1_status
(
$status
[
'query'
][
'ikesalist'
][
'ikesa'
],
$ikesa
[
'id'
]))
{
$icon
=
"glyphicon glyphicon-play text-success"
;
$connected
=
true
;
}
elseif
(
!
isset
(
$config
[
'ipsec'
][
'enable'
]))
{
$icon
=
"glyphicon glyphicon-remove text-danger"
;
}
else
{
$icon
=
"glyphicon glyphicon-remove text-warning"
;
}
}
?>
?>
<tr>
<td>
<?=
$ipsec_get_descr
;
?>
</td>
<td>
<?=
$ipsec_local_identification
?>
</td>
<td>
<?=
$ipsec_local_address
?>
</td>
<td>
<?=
$ipsec_remote_identification
?>
</td>
<td>
<?=
$ipsec_remote_address
?>
</td>
<td>
<?=
$ikesa
[
'role'
];
?>
</td>
<td>
<span
class=
"
<?=
$icon
;
?>
"
title=
"
<?=
$ikesa
[
'status'
];
?>
"
alt=
""
></span>
<small>
<?=
$ikesa
[
'status'
];
?>
</small>
</td>
</td>
<td
class=
"listr"
>
<td>
<?php
echo
htmlspecialchars
(
$ikesa
[
'role'
]);
?>
<form
method=
"post"
>
<input
type=
"hidden"
value=
"
<?=
$con_id
?>
"
name=
"ikeid"
/>
</td>
<input
type=
"hidden"
value=
"
<?=
isset
(
$ikesa
[
'id'
])
?
$ikesa
[
'id'
]
:
""
?>
"
name=
"ikesaid"
/>
<td
class=
"listr"
>
<?php
if
(
!
$connected
)
:
?>
<span
class=
"
<?php
echo
$icon
;
?>
"
title=
"
<?php
echo
$ikesa
[
'status'
];
?>
"
alt=
""
></span>
<button
type=
"submit"
class=
"btn btn-xs"
name=
"action"
value=
"connect"
title=
"
<?=
gettext
(
"Connect VPN"
);
?>
"
>
<small>
<?php
echo
htmlspecialchars
(
$ikesa
[
'status'
]);
?>
</small>
<span
class=
"glyphicon glyphicon-play"
/>
</td>
</button>
<td
>
<?php
else
:
?>
<?php
if
(
$icon
!=
"glyphicon glyphicon-play text-success"
)
:
?>
<button
type=
"submit"
class=
"btn btn-xs"
name=
"action"
value=
"ikedisconnect"
title=
"
<?=
gettext
(
"Disconnect VPN"
);
?>
"
>
<a
href=
"diag_ipsec.php?act=connect&ikeid=
<?php
echo
$con_id
;
?>
"
>
<span
class=
"glyphicon glyphicon-stop"
/>
<span
class=
"glyphicon glyphicon-play text-default"
alt=
"Connect VPN"
title=
"Connect VPN"
></span>
</button>
</a>
<button
type=
"submit"
class=
"btn btn-xs"
name=
"action"
value=
"ikedisconnectconn"
title=
"
<?=
gettext
(
"Disconnect VPN Connection"
);
?>
"
>
<?php
else
:
?>
<span
class=
"glyphicon glyphicon-remove"
/>
<a
href=
"diag_ipsec.php?act=ikedisconnect&ikeid=
<?php
echo
$con_id
;
?>
"
>
</button>
<span
class=
"glyphicon glyphicon-stop text-default"
alt=
"Disconnect VPN"
title=
"Disconnect VPN"
></span>
<?php
endif
;
?>
</a>
</form>
<a
href=
"diag_ipsec.php?act=ikedisconnect&ikeid=
<?php
echo
$con_id
;
?>
&ikesaid=
<?php
echo
$ikesa
[
'id'
];
?>
"
>
<span
class=
"glyphicon glyphicon-remove text-default"
alt=
"Disconnect VPN Connection"
title=
"Disconnect VPN Connection"
border=
"0"
></span>
</a>
<?php
endif
;
?>
</td>
</td>
</tr>
</tr>
<?php
if
(
is_array
(
$ikesa
[
'childsalist'
])
)
:
?>
<?php
if
(
isset
(
$ikesa
[
'childsalist'
])
&&
is_array
(
$ikesa
[
'childsalist'
])
)
:
?>
<tr>
<tr>
<td
c
lass=
"listrborder"
colspan=
"10
"
>
<td
c
olspan=
"8
"
>
<div
id=
"btnchildsa-
<?=
$ikeid
;
?>
"
>
<div
id=
"btnchildsa-
<?=
$ikeid
;
?>
"
>
<input
type=
"button"
onclick=
"show_childsa('childsa-
<?=
$ikeid
;
?>
','btnchildsa-
<?=
$ikeid
;
?>
');"
value=
"+"
/>
- Show child SA entries
<button
class=
"btn btn-xs"
type=
"button"
onclick=
"show_childsa('childsa-
<?=
$ikeid
;
?>
','btnchildsa-
<?=
$ikeid
;
?>
');"
>
<i
class=
"fa fa-plus"
></i>
-
<?=
gettext
(
"Show child SA entries"
);
?>
</button>
</div>
</div>
<table
class=
"table table-sort
"
id=
"childsa-
<?=
$ikeid
;
?>
"
style=
"display:none"
>
<table
class=
"table table-condensed
"
id=
"childsa-
<?=
$ikeid
;
?>
"
style=
"display:none"
>
<thead>
<thead>
<tr>
<tr>
<th>
</th>
<th>
</th>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Local subnets"
);
?>
</th>
<th
>
<?php
echo
gettext
(
"Local subnets"
);
?>
</th>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Local SPI(s)"
);
?>
</th>
<th
>
<?php
echo
gettext
(
"Local SPI(s)"
);
?>
</th>
<th
class=
"listhdrr nowrap"
>
<?php
echo
gettext
(
"Remote subnets"
);
?>
</th>
<th
>
<?php
echo
gettext
(
"Remote subnets"
);
?>
</th>
</tr>
</tr>
</thead>
</thead>
<tbody>
<tbody>
<?php
<?php
if
(
is_array
(
$ikesa
[
'childsalist'
][
'childsa'
]))
{
if
(
is_array
(
$ikesa
[
'childsalist'
][
'childsa'
]))
{
foreach
(
$ikesa
[
'childsalist'
][
'childsa'
]
as
$childsa
)
{
foreach
(
$ikesa
[
'childsalist'
][
'childsa'
]
as
$childsa
)
{
?>
?>
<tr
valign=
"top"
>
<tr
>
<td>
<td>
<a
href=
"diag_ipsec.php?act=childdisconnect&ikeid=
<?php
echo
$con_id
;
?>
&ikesaid=
<?php
echo
$childsa
[
'reqid'
];
?>
"
>
<form
method=
"post"
>
<span
class=
"glyphicon glyphicon-remove text-default"
alt=
"Disconnect Child SA"
title=
"Disconnect Child SA"
></span>
<input
type=
"hidden"
value=
"
<?=
$con_id
?>
"
name=
"ikeid"
/>
</a>
<input
type=
"hidden"
value=
"
<?=
$childsa
[
'reqid'
];
?>
"
name=
"ikesaid"
/>
<button
type=
"submit"
class=
"btn btn-xs"
name=
"action"
value=
"childdisconnect"
>
<span
class=
"glyphicon glyphicon-remove text-default"
/>
</button>
</form>
</td>
</td>
<td
class=
"listlr nowrap"
>
<td>
<?php
if
(
is_array
(
$childsa
[
'local'
])
&&
is_array
(
$childsa
[
'local'
][
'networks'
])
&&
is_array
(
$childsa
[
'local'
][
'networks'
][
'network'
]))
{
<?php
if
(
isset
(
$childsa
[
'local'
][
'networks'
][
'network'
]))
:
foreach
(
$childsa
[
'local'
][
'networks'
][
'network'
]
as
$lnets
)
{
foreach
(
$childsa
[
'local'
][
'networks'
][
'network'
]
as
$lnets
)
:
echo
htmlspecialchars
(
ipsec_fixup_network
(
$lnets
))
.
"<br />"
;
?>
}
<?=
htmlspecialchars
(
ipsec_fixup_network
(
$lnets
));
?>
<br/>
}
else
<?php
endforeach
;
echo
"Unknown"
;
else
:
?>
?>
Unknown
<br/>
<?php
endif
;
?>
</td>
</td>
<td
class=
"listr nowrap"
>
<td>
<?php
if
(
is_array
(
$childsa
[
'local'
]))
<?php
if
(
isset
(
$childsa
[
'local'
][
'spi'
]))
:
echo
"Local: "
.
htmlspecialchars
(
$childsa
[
'local'
][
'spi'
]);
?>
?>
Local :
<?=
htmlspecialchars
(
$childsa
[
'local'
][
'spi'
]);
?>
<?php
if
(
is_array
(
$childsa
[
'remote'
]))
<?php
endif
;
echo
"<br/>Remote: "
.
htmlspecialchars
(
$childsa
[
'remote'
][
'spi'
]);
?>
?>
<?php
if
(
isset
(
$childsa
[
'remote'
][
'spi'
]))
:
?>
<br/>
Remote :
<?=
htmlspecialchars
(
$childsa
[
'remote'
][
'spi'
]);
?>
<?php
endif
;
?>
</td>
</td>
<td
class=
"listr nowrap"
>
<td>
<?php
if
(
is_array
(
$childsa
[
'remote'
])
&&
is_array
(
$childsa
[
'remote'
][
'networks'
])
&&
is_array
(
$childsa
[
'remote'
][
'networks'
][
'network'
]))
{
<?php
if
(
isset
(
$childsa
[
'remote'
][
'networks'
][
'network'
]))
:
foreach
(
$childsa
[
'remote'
][
'networks'
][
'network'
]
as
$rnets
)
{
foreach
(
$childsa
[
'remote'
][
'networks'
][
'network'
]
as
$rnets
)
:
echo
htmlspecialchars
(
ipsec_fixup_network
(
$rnets
))
.
"<br />"
;
?>
}
<?=
htmlspecialchars
(
ipsec_fixup_network
(
$rnets
));
?>
<br/>
}
else
<?php
endforeach
;
echo
"Unknown"
;
else
:
?>
?>
Unknown
<br/>
<?php
endif
;
?>
</td>
</td>
</tr>
</tr>
<?php
}
}
?>
<?php
}
}
?>
...
@@ -311,88 +302,60 @@ $status = ipsec_smp_dump_status();
...
@@ -311,88 +302,60 @@ $status = ipsec_smp_dump_status();
</table>
</table>
</td>
</td>
</tr>
</tr>
<?php
endif
;
<?php
endif
;
unset
(
$con_id
);
unset
(
$con_id
);
}
// close outer loop {foreach ($status['query']['ikesalist']['ikesa'] as $ikeid => $ikesa)}
}
endforeach
;
endif
;
$rgmap
=
array
();
$rgmap
=
array
();
foreach
(
$a_phase1
as
$ph1ent
)
:
foreach
(
$pconfig
as
$ph1ent
)
:
if
(
isset
(
$ph1ent
[
'remote-gateway'
]))
{
$rgmap
[
$ph1ent
[
'remote-gateway'
]]
=
$ph1ent
[
'remote-gateway'
];
$rgmap
[
$ph1ent
[
'remote-gateway'
]]
=
$ph1ent
[
'remote-gateway'
];
if
(
$ipsecconnected
[
$ph1ent
[
'ikeid'
]])
}
if
(
isset
(
$ipsecconnected
[
$ph1ent
[
'ikeid'
]]))
{
continue
;
continue
;
?>
}
<tr>
<td
class=
"listlr"
>
<?php
echo
htmlspecialchars
(
$ph1ent
[
'descr'
]);
?>
</td>
<td
class=
"listr"
>
<?php
list
(
$myid_type
,
$myid_data
)
=
ipsec_find_id
(
$ph1ent
,
"local"
);
if
(
empty
(
$myid_data
))
echo
"Unknown"
;
else
echo
htmlspecialchars
(
$myid_data
);
?>
</td>
<td
class=
"listr"
>
<?php
$ph1src
=
ipsec_get_phase1_src
(
$ph1ent
);
$ph1src
=
ipsec_get_phase1_src
(
$ph1ent
);
if
(
empty
(
$ph1src
))
$ph1dst
=
ipsec_get_phase1_dst
(
$ph1ent
);
echo
"Unknown"
;
list
(
$myid_type
,
$myid_data
)
=
ipsec_find_id
(
$ph1ent
,
"local"
);
else
echo
htmlspecialchars
(
$ph1src
);
?>
</td>
<td
class=
"listr"
>
<?php
list
(
$peerid_type
,
$peerid_data
)
=
ipsec_find_id
(
$ph1ent
,
"peer"
,
$rgmap
);
list
(
$peerid_type
,
$peerid_data
)
=
ipsec_find_id
(
$ph1ent
,
"peer"
,
$rgmap
);
if
(
empty
(
$peerid_data
))
echo
"Unknown"
;
?>
else
<tr>
echo
htmlspecialchars
(
$peerid_data
);
<td>
<?php
echo
htmlspecialchars
(
$ph1ent
[
'descr'
]);
?>
</td>
?>
<td>
<?=
!
empty
(
$myid_data
)
?
htmlspecialchars
(
$myid_data
)
:
"Unknown"
?>
</td>
</td>
<td>
<?=
!
empty
(
$ph1src
)
?
htmlspecialchars
(
$ph1src
)
:
"Unknown"
?>
</td>
<td
class=
"listr"
>
<td>
<?=
!
empty
(
$peerid_data
)
?
htmlspecialchars
(
$peerid_data
)
:
"Unknown"
?>
</td>
<?php
<td>
<?=
!
empty
(
$ph1dst
)
?
htmlspecialchars
(
$ph1dst
)
:
"Unknown"
?>
</td>
$ph1src
=
ipsec_get_phase1_dst
(
$ph1ent
);
<td></td>
if
(
empty
(
$ph1src
))
<td>
echo
"Unknown"
;
else
echo
htmlspecialchars
(
$ph1src
);
?>
</td>
<td
class=
"listr"
>
</td>
<td
class=
"listr"
>
<span
class=
"glyphicon glyphicon-remove text-warning"
title=
"Disconnected"
alt=
""
></span>
<span
class=
"glyphicon glyphicon-remove text-warning"
title=
"Disconnected"
alt=
""
></span>
<small>
Disconnected
</small>
<small>
Disconnected
</small>
</td>
</td>
<td
>
<td
>
<a
href=
"diag_ipsec.php?act=connect&ikeid=
<?php
echo
$ph1ent
[
'ikeid'
];
?>
"
>
<form
method=
"post"
>
<span
class=
"glyphicon glyphicon-play text-default"
alt=
"Connect VPN"
title=
"Connect VPN"
></span>
<input
type=
"hidden"
value=
"
<?=
$ph1ent
[
'ikeid'
]
?>
"
name=
"ikeid"
/>
</a>
<button
type=
"submit"
class=
"btn btn-xs"
name=
"action"
value=
"connect"
>
<span
class=
"glyphicon glyphicon-play"
/>
</button>
</form>
</td>
</td>
</tr>
</tr>
<?php
<?php
endforeach
;
endforeach
;
unset
(
$ipsecconnected
,
$phase1
,
$rgmap
);
?>
?>
<tr>
<tr
style=
"display:none;"
><td></td></tr>
<td
colspan=
"8"
>
</tbody>
</table>
<div
class=
"container-fluid"
>
<p
class=
"vexpl"
>
<span
class=
"text-danger"
>
<span
class=
"text-danger"
>
<strong>
<?php
echo
gettext
(
"Note:"
);
?>
<br
/></strong>
<strong>
<?php
echo
gettext
(
"Note:"
);
?>
<br
/></strong>
</span>
</span>
<?php
echo
gettext
(
"You can configure IPsec"
);
?>
<?php
echo
gettext
(
"You can configure IPsec"
);
?>
<a
href=
"vpn_ipsec.php"
>
here
</a>
.
<a
href=
"vpn_ipsec.php"
>
here
</a>
.
</p>
</p>
</td>
</div>
</tr>
</tbody>
</table>
</div>
</div>
</div>
</div>
</section>
</section>
...
@@ -403,13 +366,5 @@ $status = ipsec_smp_dump_status();
...
@@ -403,13 +366,5 @@ $status = ipsec_smp_dump_status();
<script
type=
"text/javascript"
>
<?php
//
<!
[
CDATA
[
include
(
"foot.inc"
);
?>
function
show_childsa
(
id
,
buttonid
)
{
document
.
getElementById
(
buttonid
).
innerHTML
=
''
;
aodiv
=
document
.
getElementById
(
id
);
aodiv
.
style
.
display
=
""
;
}
//]]>
</script>
<?php
unset
(
$status
);
include
(
"foot.inc"
);
?>
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment