Skip to content

O
OpnSense
Commit 78148368 authored by Ad Schellevis's avatar Ad Schellevis
Browse files
Options

(legacy) vpn_openvpn_client.php add duplicate option + some style fixes and... 

(legacy) vpn_openvpn_client.php add duplicate option + some style fixes and cleanups. closes https://github.com/opnsense/core/issues/676
parent 2d531c30
Hide whitespace changes
Inline Side-by-side
Showing with 735 additions and 768 deletions
src/www/vpn_openvpn_client.php
View file @ 78148368
<?php <?php
/* /*
Copyright (C) 2014-2015 Deciso B.V. Copyright (C) 2014-2016 Deciso B.V.
Copyright (C) 2008 Shrew Soft Inc. Copyright (C) 2008 Shrew Soft Inc.
All rights reserved. All rights reserved.
Redistribution and use in source and binary forms, with or without Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions are met: modification, are permitted provided that the following conditions are met:
1. Redistributions of source code must retain the above copyright notice, 1. Redistributions of source code must retain the above copyright notice,
this list of conditions and the following disclaimer. this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright 2. Redistributions in binary form must reproduce the above copyright
notice, this list of conditions and the following disclaimer in the notice, this list of conditions and the following disclaimer in the
documentation and/or other materials provided with the distribution. documentation and/or other materials provided with the distribution.
THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
POSSIBILITY OF SUCH DAMAGE. POSSIBILITY OF SUCH DAMAGE.
*/ */
require_once("guiconfig.inc"); require_once("guiconfig.inc");
...@@ -44,35 +44,39 @@ $a_client = &$config['openvpn']['openvpn-client']; ...@@ -44,35 +44,39 @@ $a_client = &$config['openvpn']['openvpn-client'];
$vpnid = 0; $vpnid = 0;
$act = null; $act = null;
if ($_SERVER['REQUEST_METHOD'] === 'GET') { if ($_SERVER['REQUEST_METHOD'] === 'GET') {
if (isset($_GET['id']) && is_numericint($_GET['id'])) { if (isset($_GET['dup']) && isset($a_client[$_GET['dup']])) {
$configId = $_GET['dup'];
} elseif (isset($_GET['id']) && isset($a_client[$_GET['id']])) {
$id = $_GET['id']; $id = $_GET['id'];
$configId = $id;
} }
if (isset($_GET['act'])) { if (isset($_GET['act'])) {
$act = $_GET['act']; $act = $_GET['act'];
} }
$pconfig = array(); $pconfig = array();
// set defaults // set defaults
$pconfig['autokey_enable'] = "yes"; // just in case the modes switch $pconfig['autokey_enable'] = "yes"; // just in case the modes switch
$pconfig['autotls_enable'] = "yes"; // just in case the modes switch $pconfig['autotls_enable'] = "yes"; // just in case the modes switch
$pconfig['tlsauth_enable'] = "yes"; $pconfig['tlsauth_enable'] = "yes";
$pconfig['digest'] = "SHA1"; $pconfig['digest'] = "SHA1";
$pconfig['verbosity_level'] = 1; // Default verbosity is 1 $pconfig['verbosity_level'] = 1; // Default verbosity is 1
// edit existing. // edit existing.
if ($act=="edit" && isset($id) && $a_client[$id]) { if (isset($configId)) {
// 1 on 1 copy of config attributes // 1 on 1 copy of config attributes
$copy_fields = "auth_user,auth_pass,disable,mode,protocol,interface $copy_fields = "auth_user,auth_pass,disable,mode,protocol,interface
,local_port,server_addr,server_port,resolve_retry ,local_port,server_addr,server_port,resolve_retry
,proxy_addr,proxy_port,proxy_user,proxy_passwd,proxy_authtype,description ,proxy_addr,proxy_port,proxy_user,proxy_passwd,proxy_authtype,description
,custom_options,ns_cert_type,dev_mode,caref,certref,crypto,digest,engine ,custom_options,ns_cert_type,dev_mode,caref,certref,crypto,digest,engine
,tunnel_network,tunnel_networkv6,remote_network,remote_networkv6,use_shaper ,tunnel_network,tunnel_networkv6,remote_network,remote_networkv6,use_shaper
,compression,passtos,no_tun_ipv6,route_no_pull,route_no_exec,verbosity_level"; ,compression,passtos,no_tun_ipv6,route_no_pull,route_no_exec,verbosity_level";
foreach (explode(",", $copy_fields) as $fieldname) { foreach (explode(",", $copy_fields) as $fieldname) {
$fieldname = trim($fieldname); $fieldname = trim($fieldname);
if (isset($a_client[$id][$fieldname])) { if (isset($a_client[$configId][$fieldname])) {
$pconfig[$fieldname] = $a_client[$id][$fieldname]; $pconfig[$fieldname] = $a_client[$configId][$fieldname];
} elseif (!isset($pconfig[$fieldname])) { } elseif (!isset($pconfig[$fieldname])) {
// initialize element // initialize element
$pconfig[$fieldname] = null; $pconfig[$fieldname] = null;
...@@ -80,36 +84,36 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') { ...@@ -80,36 +84,36 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') {
} }
// load / convert // load / convert
if (!empty($a_client[$id]['ipaddr'])) { if (!empty($a_client[$configId]['ipaddr'])) {
$pconfig['interface'] = $pconfig['interface'] . '|' . $a_client[$id]['ipaddr']; $pconfig['interface'] = $pconfig['interface'] . '|' . $a_client[$configId]['ipaddr'];
} }
if (isset($a_client[$id]['tls'])) { if (isset($a_client[$configId]['tls'])) {
$pconfig['tls'] = base64_decode($a_client[$id]['tls']); $pconfig['tls'] = base64_decode($a_client[$configId]['tls']);
} else { } else {
$pconfig['tls'] = null; $pconfig['tls'] = null;
$pconfig['tlsauth_enable'] = null; $pconfig['tlsauth_enable'] = null;
} }
if (isset($a_client[$id]['shared_key'])) { if (isset($a_client[$configId]['shared_key'])) {
$pconfig['shared_key'] = base64_decode($a_client[$id]['shared_key']); $pconfig['shared_key'] = base64_decode($a_client[$configId]['shared_key']);
} else { } else {
$pconfig['shared_key'] = null ; $pconfig['shared_key'] = null ;
} }
if (isset($id) && $a_client[$id]) { if (isset($id)) {
$vpnid = $a_client[$id]['vpnid']; $vpnid = $a_client[$id]['vpnid'];
} }
} elseif ($act=="new") { } elseif ($act=="new") {
// create new // create new
$pconfig['interface'] = "wan"; $pconfig['interface'] = "wan";
$pconfig['server_port'] = 1194; $pconfig['server_port'] = 1194;
$init_fields = "auth_user,auth_pass,disable,mode,protocol,interface $init_fields = "auth_user,auth_pass,disable,mode,protocol,interface
,local_port,server_addr,server_port,resolve_retry ,local_port,server_addr,server_port,resolve_retry
,proxy_addr,proxy_port,proxy_user,proxy_passwd,proxy_authtype,description ,proxy_addr,proxy_port,proxy_user,proxy_passwd,proxy_authtype,description
,custom_options,ns_cert_type,dev_mode,caref,certref,crypto,digest,engine ,custom_options,ns_cert_type,dev_mode,caref,certref,crypto,digest,engine
,tunnel_network,tunnel_networkv6,remote_network,remote_networkv6,use_shaper ,tunnel_network,tunnel_networkv6,remote_network,remote_networkv6,use_shaper
,compression,passtos,no_tun_ipv6,route_no_pull,route_no_exec,verbosity_level"; ,compression,passtos,no_tun_ipv6,route_no_pull,route_no_exec,verbosity_level";
foreach (explode(",", $init_fields) as $fieldname) { foreach (explode(",", $init_fields) as $fieldname) {
$fieldname = trim($fieldname); $fieldname = trim($fieldname);
...@@ -119,30 +123,30 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') { ...@@ -119,30 +123,30 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') {
} }
} }
} elseif ($_SERVER['REQUEST_METHOD'] === 'POST') { } elseif ($_SERVER['REQUEST_METHOD'] === 'POST') {
if (isset($_POST['id']) && is_numericint($_POST['id'])) { if (isset($_POST['id']) && isset($a_client[$_POST['id']])) {
$id = $_POST['id']; $id = $_POST['id'];
} }
if (isset($_POST['act'])) { if (isset($_POST['act'])) {
$act = $_POST['act']; $act = $_POST['act'];
} }
if ($act == "del") { if ($act == "del") {
// remove client // remove client
if (!isset($id) || !isset($a_client[$id])) { if (!isset($id)) {
header("Location: vpn_openvpn_client.php"); header("Location: vpn_openvpn_client.php");
exit; exit;
} }
if (!empty($a_client[$id])) { if (!empty($a_client[$id])) {
openvpn_delete('client', $a_client[$id]); openvpn_delete('client', $a_client[$id]);
} }
unset($a_client[$id]); unset($a_client[$id]);
write_config(); write_config();
} else { } else {
// update client (after validation) // update client (after validation)
$pconfig = $_POST; $pconfig = $_POST;
$input_errors = array(); $input_errors = array();
if (isset($id) && $a_client[$id]) { if (isset($id)) {
$vpnid = $a_client[$id]['vpnid']; $vpnid = $a_client[$id]['vpnid'];
} }
if (isset($pconfig['mode']) && $pconfig['mode'] != "p2p_shared_key") { if (isset($pconfig['mode']) && $pconfig['mode'] != "p2p_shared_key") {
...@@ -151,17 +155,17 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') { ...@@ -151,17 +155,17 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') {
$tls_mode = false; $tls_mode = false;
} }
// generate new key // generate new key
if (!empty($pconfig['autokey_enable'])) { if (!empty($pconfig['autokey_enable'])) {
$pconfig['shared_key'] = openvpn_create_key(); $pconfig['shared_key'] = openvpn_create_key();
} }
/* input validation */ /* input validation */
if (strpos($pconfig['interface'], '|') !== false) { if (strpos($pconfig['interface'], '|') !== false) {
list($iv_iface, $iv_ip) = explode("|", $pconfig['interface']); list($iv_iface, $iv_ip) = explode("|", $pconfig['interface']);
} else { } else {
$iv_iface = $pconfig['interface']; $iv_iface = $pconfig['interface'];
$iv_ip = null; $iv_ip = null;
} }
if (is_ipaddrv4($iv_ip) && (stristr($pconfig['protocol'], "6") !== false)) { if (is_ipaddrv4($iv_ip) && (stristr($pconfig['protocol'], "6") !== false)) {
...@@ -175,7 +179,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') { ...@@ -175,7 +179,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') {
} }
if (!empty($pconfig['local_port'])) { if (!empty($pconfig['local_port'])) {
if (empty($pconfig['local_port']) || !is_numeric($pconfig['local_port']) || $pconfig['local_port'] < 0 || ($pconfig['local_port'] > 65535)) { if (empty($pconfig['local_port']) || !is_numeric($pconfig['local_port']) || $pconfig['local_port'] < 0 || ($pconfig['local_port'] > 65535)) {
$input_errors[] = gettext("The field Local port must contain a valid port, ranging from 0 to 65535."); $input_errors[] = gettext("The field Local port must contain a valid port, ranging from 0 to 65535.");
} }
$portused = openvpn_port_used($pconfig['protocol'], $pconfig['interface'], $pconfig['local_port'], $vpnid); $portused = openvpn_port_used($pconfig['protocol'], $pconfig['interface'], $pconfig['local_port'], $vpnid);
if (($portused != $vpnid) && ($portused != 0)) { if (($portused != $vpnid) && ($portused != 0)) {
...@@ -183,19 +187,19 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') { ...@@ -183,19 +187,19 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') {
} }
} }
if (empty($pconfig['server_addr']) || (!is_domain($pconfig['server_addr']) && !is_ipaddr($pconfig['server_addr']))) { if (empty($pconfig['server_addr']) || (!is_domain($pconfig['server_addr']) && !is_ipaddr($pconfig['server_addr']))) {
$input_errors[] = gettext("The field Server host or address must contain a valid IP address or domain name.") ; $input_errors[] = gettext("The field Server host or address must contain a valid IP address or domain name.") ;
} }
if (empty($pconfig['server_port']) || !is_numeric($pconfig['server_port']) || $pconfig['server_port'] < 0 || ($pconfig['server_port'] > 65535)) { if (empty($pconfig['server_port']) || !is_numeric($pconfig['server_port']) || $pconfig['server_port'] < 0 || ($pconfig['server_port'] > 65535)) {
$input_errors[] = gettext("The field Server port must contain a valid port, ranging from 0 to 65535."); $input_errors[] = gettext("The field Server port must contain a valid port, ranging from 0 to 65535.");
} }
if (!empty($pconfig['proxy_addr'])) { if (!empty($pconfig['proxy_addr'])) {
if (empty($pconfig['proxy_addr']) || (!is_domain($pconfig['proxy_addr']) && !is_ipaddr($pconfig['proxy_addr']))) { if (empty($pconfig['proxy_addr']) || (!is_domain($pconfig['proxy_addr']) && !is_ipaddr($pconfig['proxy_addr']))) {
$input_errors[] = gettext("The field Proxy host or address must contain a valid IP address or domain name.") ; $input_errors[] = gettext("The field Proxy host or address must contain a valid IP address or domain name.") ;
} }
if (empty($pconfig['proxy_port']) || !is_numeric($pconfig['proxy_port']) || $pconfig['proxy_port'] < 0 || ($pconfig['proxy_port'] > 65535)) { if (empty($pconfig['proxy_port']) || !is_numeric($pconfig['proxy_port']) || $pconfig['proxy_port'] < 0 || ($pconfig['proxy_port'] > 65535)) {
$input_errors[] = gettext("The field Proxy port must contain a valid port, ranging from 0 to 65535."); $input_errors[] = gettext("The field Proxy port must contain a valid port, ranging from 0 to 65535.");
} }
if (isset($pconfig['proxy_authtype']) && $pconfig['proxy_authtype'] != "none") { if (isset($pconfig['proxy_authtype']) && $pconfig['proxy_authtype'] != "none") {
if (empty($pconfig['proxy_user']) || empty($pconfig['proxy_passwd'])) { if (empty($pconfig['proxy_user']) || empty($pconfig['proxy_passwd'])) {
...@@ -245,22 +249,22 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') { ...@@ -245,22 +249,22 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') {
$reqdfieldsn = array(gettext('Shared key')); $reqdfieldsn = array(gettext('Shared key'));
} }
do_input_validation($pconfig, $reqdfields, $reqdfieldsn, $input_errors); do_input_validation($pconfig, $reqdfields, $reqdfieldsn, $input_errors);
if (($pconfig['mode'] != "p2p_shared_key") && empty($pconfig['certref']) && empty($pconfig['auth_user']) && empty($pconfig['auth_pass'])) { if (($pconfig['mode'] != "p2p_shared_key") && empty($pconfig['certref']) && empty($pconfig['auth_user']) && empty($pconfig['auth_pass'])) {
$input_errors[] = gettext("If no Client Certificate is selected, a username and password must be entered."); $input_errors[] = gettext("If no Client Certificate is selected, a username and password must be entered.");
} }
if (count($input_errors) == 0) { if (count($input_errors) == 0) {
// save data // save data
$client = array(); $client = array();
// 1 on 1 copy of config attributes // 1 on 1 copy of config attributes
$copy_fields = "auth_user,auth_pass,protocol,dev_mode,local_port $copy_fields = "auth_user,auth_pass,protocol,dev_mode,local_port
,server_addr,server_port,resolve_retry,proxy_addr,proxy_port ,server_addr,server_port,resolve_retry,proxy_addr,proxy_port
,proxy_authtype,proxy_user,proxy_passwd,description,mode,crypto,digest ,proxy_authtype,proxy_user,proxy_passwd,description,mode,crypto,digest
,engine,tunnel_network,tunnel_networkv6,remote_network,remote_networkv6 ,engine,tunnel_network,tunnel_networkv6,remote_network,remote_networkv6
,use_shaper,compression,passtos,no_tun_ipv6,route_no_pull,route_no_exec ,use_shaper,compression,passtos,no_tun_ipv6,route_no_pull,route_no_exec
,verbosity_level,interface"; ,verbosity_level,interface";
foreach (explode(",", $copy_fields) as $fieldname) { foreach (explode(",", $copy_fields) as $fieldname) {
$fieldname = trim($fieldname); $fieldname = trim($fieldname);
...@@ -297,7 +301,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') { ...@@ -297,7 +301,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') {
$client['shared_key'] = base64_encode($pconfig['shared_key']); $client['shared_key'] = base64_encode($pconfig['shared_key']);
} }
if (isset($id) && isset($a_client[$id])) { if (isset($id)) {
$a_client[$id] = $client; $a_client[$id] = $client;
} else { } else {
$a_client[] = $client; $a_client[] = $client;
...@@ -328,676 +332,642 @@ $main_buttons = array( ...@@ -328,676 +332,642 @@ $main_buttons = array(
<script type="text/javascript"> <script type="text/javascript">
//<![CDATA[ //<![CDATA[
$( document ).ready(function() { $( document ).ready(function() {
// init form (old stuff) // init form (old stuff)
if (document.iform != undefined) { if (document.iform != undefined) {
mode_change(); mode_change();
autokey_change(); autokey_change();
tlsauth_change(); tlsauth_change();
useproxy_changed(); useproxy_changed();
} }
// link delete buttons // link delete buttons
$(".act_delete").click(function(){ $(".act_delete").click(function(){
var id = $(this).attr("id").split('_').pop(-1); var id = $(this).attr("id").split('_').pop(-1);
BootstrapDialog.show({ BootstrapDialog.show({
type:BootstrapDialog.TYPE_DANGER, type:BootstrapDialog.TYPE_DANGER,
title: "<?= gettext("OpenVPN");?>", title: "<?= gettext("OpenVPN");?>",
message: "<?= gettext("Do you really want to delete this client?"); ?>", message: "<?= gettext("Do you really want to delete this client?"); ?>",
buttons: [{ buttons: [{
label: "<?= gettext("No");?>", label: "<?= gettext("No");?>",
action: function(dialogRef) { action: function(dialogRef) {
dialogRef.close(); dialogRef.close();
}}, { }}, {
label: "<?= gettext("Yes");?>", label: "<?= gettext("Yes");?>",
action: function(dialogRef) { action: function(dialogRef) {
$.post(window.location, {act: 'del', id:id}, function(data) { $.post(window.location, {act: 'del', id:id}, function(data) {
location.reload(); location.reload();
}); });
dialogRef.close(); dialogRef.close();
} }
}] }]
}); });
}); });
}); });
function mode_change() { function mode_change() {
index = document.iform.mode.selectedIndex; index = document.iform.mode.selectedIndex;
value = document.iform.mode.options[index].value; value = document.iform.mode.options[index].value;
switch(value) { switch(value) {
case "p2p_tls": case "p2p_tls":
document.getElementById("tls").style.display=""; document.getElementById("tls").style.display="";
document.getElementById("tls_ca").style.display=""; document.getElementById("tls_ca").style.display="";
document.getElementById("tls_cert").style.display=""; document.getElementById("tls_cert").style.display="";
document.getElementById("psk").style.display="none"; document.getElementById("psk").style.display="none";
break; break;
case "p2p_shared_key": case "p2p_shared_key":
document.getElementById("tls").style.display="none"; document.getElementById("tls").style.display="none";
document.getElementById("tls_ca").style.display="none"; document.getElementById("tls_ca").style.display="none";
document.getElementById("tls_cert").style.display="none"; document.getElementById("tls_cert").style.display="none";
document.getElementById("psk").style.display=""; document.getElementById("psk").style.display="";
break; break;
} }
} }
function dev_mode_change() { function dev_mode_change() {
index = document.iform.dev_mode.selectedIndex; index = document.iform.dev_mode.selectedIndex;
value = document.iform.dev_mode.options[index].value; value = document.iform.dev_mode.options[index].value;
switch(value) { switch(value) {
case "tun": case "tun":
document.getElementById("chkboxNoTunIPv6").style.display=""; document.getElementById("chkboxNoTunIPv6").style.display="";
break; break;
case "tap": case "tap":
document.getElementById("chkboxNoTunIPv6").style.display="none"; document.getElementById("chkboxNoTunIPv6").style.display="none";
break; break;
} }
} }
function autokey_change() { function autokey_change() {
if (document.iform.autokey_enable != undefined && document.iform.autokey_enable.checked) if (document.iform.autokey_enable != undefined && document.iform.autokey_enable.checked)
document.getElementById("autokey_opts").style.display="none"; document.getElementById("autokey_opts").style.display="none";
else else
document.getElementById("autokey_opts").style.display=""; document.getElementById("autokey_opts").style.display="";
} }
function useproxy_changed() { function useproxy_changed() {
if (jQuery('#proxy_authtype').val() != 'none') { if (jQuery('#proxy_authtype').val() != 'none') {
jQuery('#proxy_authtype_opts').show(); jQuery('#proxy_authtype_opts').show();
} else { } else {
jQuery('#proxy_authtype_opts').hide(); jQuery('#proxy_authtype_opts').hide();
} }
} }
function tlsauth_change() { function tlsauth_change() {
<?php if (empty($pconfig['tls'])) : <?php if (empty($pconfig['tls'])) :
?> ?>
if (document.iform.tlsauth_enable.checked) if (document.iform.tlsauth_enable.checked)
document.getElementById("tlsauth_opts").style.display=""; document.getElementById("tlsauth_opts").style.display="";
else else
document.getElementById("tlsauth_opts").style.display="none"; document.getElementById("tlsauth_opts").style.display="none";
<?php <?php
endif; ?> endif; ?>
autotls_change(); autotls_change();
} }
function autotls_change() { function autotls_change() {
<?php if (empty($pconfig['tls'])) : <?php if (empty($pconfig['tls'])) :
?> ?>
autocheck = document.iform.autotls_enable.checked; autocheck = document.iform.autotls_enable.checked;
<?php <?php
else : else :
?> ?>
autocheck = false; autocheck = false;
<?php <?php
endif; ?> endif; ?>
if (document.iform.tlsauth_enable.checked && !autocheck) if (document.iform.tlsauth_enable.checked && !autocheck)
document.getElementById("autotls_opts").style.display=""; document.getElementById("autotls_opts").style.display="";
else else
document.getElementById("autotls_opts").style.display="none"; document.getElementById("autotls_opts").style.display="none";
} }
//]]> //]]>
</script> </script>
<section class="page-content-main"> <section class="page-content-main">
<div class="container-fluid"> <div class="container-fluid">
<div class="row"> <div class="row">
<?php <?php
if (isset($input_errors) && count($input_errors) > 0) { if (isset($input_errors) && count($input_errors) > 0) {
print_input_errors($input_errors); print_input_errors($input_errors);
} }
if (isset($savemsg)) { if (isset($savemsg)) {
print_info_box($savemsg); print_info_box($savemsg);
} }?>
?> <section class="col-xs-12">
<div class="tab-content content-box col-xs-12">
<section class="col-xs-12">
<div class="tab-content content-box col-xs-12">
<?php if ($act=="new" || $act=="edit") :
?>
<form action="vpn_openvpn_client.php" method="post" name="iform" id="iform">
<div class="table-responsive">
<table class="table table-striped">
<tr>
<td width="22%"><?=gettext("General information"); ?></td>
<td width="78%" align="right">
<small><?=gettext("full help"); ?> </small>
<i class="fa fa-toggle-off text-danger" style="cursor: pointer;" id="show_all_help_page" type="button"></i></a>
</td>
</tr>
<tr>
<td><a id="help_for_disable" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a><?=gettext("Disabled"); ?></td>
<td>
<input name="disable" type="checkbox" value="yes" <?= !empty($pconfig['disable']) ? "checked=\"checked\"" : "";?> />
<div class="hidden" for="help_for_disable">
<small><?=gettext("Set this option to disable this client without removing it from the list"); ?>.</small>
</div>
</td>
</tr>
<tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Server Mode");?></td>
<td>
<select name="mode" id="mode" class="form-control" onchange="mode_change()">
<?php <?php
$openvpn_client_modes = array( if ($act=="new" || $act=="edit") :?>
'p2p_tls' => gettext("Peer to Peer ( SSL/TLS )"), <form action="vpn_openvpn_client.php" method="post" name="iform" id="iform">
'p2p_shared_key' => gettext("Peer to Peer ( Shared Key )") ); <div class="table-responsive">
foreach ($openvpn_client_modes as $name => $desc) : <table class="table table-striped">
$selected = ""; <tr>
if ($pconfig['mode'] == $name) { <td width="22%"><?=gettext("General information"); ?></td>
$selected = "selected=\"selected\""; <td width="78%" align="right">
} <small><?=gettext("full help"); ?> </small>
?> <i class="fa fa-toggle-off text-danger" style="cursor: pointer;" id="show_all_help_page" type="button"></i></a>
<option value="<?=$name; </td>
?>" <?=$selected; </tr>
?>><?=$desc;?></option> <tr>
<td><a id="help_for_disable" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a><?=gettext("Disabled"); ?></td>
<td>
<input name="disable" type="checkbox" value="yes" <?= !empty($pconfig['disable']) ? "checked=\"checked\"" : "";?> />
<div class="hidden" for="help_for_disable">
<small><?=gettext("Set this option to disable this client without removing it from the list"); ?>.</small>
</div>
</td>
</tr>
<tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Server Mode");?></td>
<td>
<select name="mode" id="mode" class="form-control" onchange="mode_change()">
<?php <?php
endforeach; ?> $openvpn_client_modes = array(
</select> 'p2p_tls' => gettext("Peer to Peer ( SSL/TLS )"),
</td> 'p2p_shared_key' => gettext("Peer to Peer ( Shared Key )") );
</tr> foreach ($openvpn_client_modes as $name => $desc) :
<tr> $selected = "";
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Protocol");?></td> if ($pconfig['mode'] == $name) {
<td> $selected = "selected=\"selected\"";
<select name='protocol' class="form-control"> }?>
<option value="<?=$name;?>" <?=$selected;?>><?=$desc;?></option>
<?php <?php
foreach (array("UDP", "UDP6", "TCP", "TCP6") as $prot) : endforeach; ?>
$selected = ""; </select>
if ($pconfig['protocol'] == $prot) { </td>
$selected = "selected=\"selected\""; </tr>
} <tr>
?> <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Protocol");?></td>
<option value="<?=$prot; <td>
?>" <?=$selected; <select name='protocol' class="form-control">
?>><?=$prot;?></option>
<?php <?php
endforeach; ?> foreach (array("UDP", "UDP6", "TCP", "TCP6") as $prot) :
</select> $selected = "";
</td> if ($pconfig['protocol'] == $prot) {
</tr> $selected = "selected=\"selected\"";
<tr> }?>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Device mode");?></td> <option value="<?=$prot;?>" <?=$selected;?>><?=$prot;?></option>
<td>
<select name='dev_mode' class="form-control" onchange="dev_mode_change()">
<?php
foreach (array("tun", "tap") as $mode) :
$selected = "";
if ($pconfig['dev_mode'] == $mode) {
$selected = "selected=\"selected\"";
}
?>
<option value="<?=$mode;
?>" <?=$selected;
?>><?=$mode;?></option>
<?php <?php
endforeach; ?> endforeach; ?>
</select> </select>
</td> </td>
</tr> </tr>
<tr> <tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Interface"); ?></td> <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Device mode");?></td>
<td> <td>
<select name="interface" class="form-control"> <select name='dev_mode' class="form-control" onchange="dev_mode_change()">
<?php <?php
$interfaces = get_configured_interface_with_descr(); foreach (array("tun", "tap") as $mode) :
$carplist = get_configured_carp_interface_list(); $selected = "";
foreach ($carplist as $cif => $carpip) { if ($pconfig['dev_mode'] == $mode) {
$interfaces[$cif.'|'.$carpip] = $carpip." (".get_vip_descr($carpip).")"; $selected = "selected=\"selected\"";
} }?>
$aliaslist = get_configured_ip_aliases_list(); <option value="<?=$mode;?>" <?=$selected;?>><?=$mode;?></option>
foreach ($aliaslist as $aliasip => $aliasif) {
$interfaces[$aliasif.'|'.$aliasip] = $aliasip." (".get_vip_descr($aliasip).")";
}
$grouplist = return_gateway_groups_array();
foreach ($grouplist as $name => $group) {
if ($group['ipprotocol'] != inet) {
continue;
}
if ($group[0]['vip'] <> "") {
$vipif = $group[0]['vip'];
} else {
$vipif = $group[0]['int'];
}
$interfaces[$name] = "GW Group {$name}";
}
$interfaces['lo0'] = "Localhost";
$interfaces['any'] = "any";
foreach ($interfaces as $iface => $ifacename) :
$selected = "";
if ($iface == $pconfig['interface']) {
$selected = "selected=\"selected\"";
}
?>
<option value="<?=$iface;
?>" <?=$selected;
?>><?=htmlspecialchars($ifacename);?></option>
<?php <?php
endforeach; ?> endforeach; ?>
</select> <br /> </select>
</td> </td>
</tr> </tr>
<tr> <tr>
<td><a id="help_for_local_port" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Local port");?></td> <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Interface"); ?></td>
<td> <td>
<input name="local_port" type="text" class="form-control unknown" size="5" value="<?=$pconfig['local_port'];?>" /> <select name="interface" class="form-control">
<div class="hidden" for="help_for_local_port">
<em><small><?=gettext("Set this option if you would like to bind to a specific port. Leave this blank or enter 0 for a random dynamic port."); ?></small></em>
</div>
</td>
</tr>
<tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Server host or address");?></td>
<td>
<input name="server_addr" type="text" class="form-control unknown" size="30" value="<?=$pconfig['server_addr'];?>" />
</td>
</tr>
<tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Server port");?></td>
<td>
<input name="server_port" type="text" class="form-control unknown" size="5" value="<?=$pconfig['server_port'];?>" />
</td>
</tr>
<tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Proxy host or address");?></td>
<td>
<input name="proxy_addr" type="text" class="form-control unknown" size="30" value="<?=$pconfig['proxy_addr'];?>" />
</td>
</tr>
<tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Proxy port");?></td>
<td>
<input name="proxy_port" type="text" class="form-control unknown" size="5" value="<?=$pconfig['proxy_port'];?>" />
</td>
</tr>
<tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Proxy authentication extra options");?></td>
<td>
<?=gettext("Authentication method"); ?>
<select name="proxy_authtype" id="proxy_authtype" class="form-control select" onchange="useproxy_changed()">
<option value="none" <?=$pconfig['proxy_authtype'] == "none" ? "selected=\"selected\"" : "" ?> > <?=gettext("none"); ?></option>
<option value="basic" <?=$pconfig['proxy_authtype'] == "basic" ? "selected=\"selected\"" : "" ?> > <?=gettext("basic"); ?></option>
<option value="basic" <?=$pconfig['proxy_authtype'] == "ntlm" ? "selected=\"selected\"" : "" ?> > <?=gettext("ntlm"); ?></option>
</select>
<div style="display:none" id="proxy_authtype_opts">
<div><?=gettext("Username"); ?> <br/></div
<div><input name="proxy_user" id="proxy_user" class="form-control unknown" type="text" size="20" value="<?=$pconfig['proxy_user'];?>" /></div>
<div><?=gettext("Password"); ?> </div>
<div><input name="proxy_passwd" id="proxy_passwd" type="password" class="form-control pwd" size="20" value="<?=$pconfig['proxy_passwd'];?>" /></div>
</div>
</td>
</tr>
<tr>
<td><a id="help_for_resolve_retry" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Server host name resolution"); ?></td>
<td>
<input name="resolve_retry" type="checkbox" value="yes" <?= !empty($pconfig['resolve_retry']) ? "checked=\"checked\"" : "";?> />
<div class="hidden" for="help_for_resolve_retry">
<div><?=gettext("Infinitely resolve server"); ?></div>
<div><small><?=gettext("Continuously attempt to resolve the server host name. Useful when communicating with a server that is not permanently connected to the Internet"); ?></small></div>
</div>
</td>
</tr>
<tr>
<td><a id="help_for_description" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Description"); ?></td>
<td>
<input name="description" type="text" class="form-control unknown" size="30" value="<?=$pconfig['description'];?>" />
<div class="hidden" for="help_for_description">
<small><?=gettext("You may enter a description here for your reference (not parsed)"); ?>.</small>
</div>
</td>
</tr>
<tr>
<td colspan="2" class="list" height="12"></td>
</tr>
<tr>
<td colspan="2"><?=gettext("User Authentication Settings"); ?></td>
</tr>
<tr>
<td><a id="help_for_auth_user_pass" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("User name/pass"); ?></td>
<td>
<div><?=gettext("Username"); ?></div>
<div><input name="auth_user" id="auth_user" class="form-control unknown" type="text" size="20" value="<?=htmlspecialchars($pconfig['auth_user']);?>" /></div>
<div><?=gettext("Password"); ?></div>
<div><input name="auth_pass" id="auth_pass" type="password" class="form-control pwd" size="20" value="<?=htmlspecialchars($pconfig['auth_pass']);?>" /></div>
<div class="hidden" for="help_for_auth_user_pass">
<?=gettext("Leave empty when no user name and password are needed."); ?>
</div>
<br/>
</td>
</tr>
<tr>
<td colspan="2"><?=gettext("Cryptographic Settings"); ?></td>
</tr>
<tr id="tls">
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("TLS Authentication"); ?></td>
<td>
<input name="tlsauth_enable" id="tlsauth_enable" type="checkbox" value="yes" <?= !empty($pconfig['tlsauth_enable']) ? "checked=\"checked\"" : "";?> onclick="tlsauth_change()" />
<?=gettext("Enable authentication of TLS packets"); ?>.
<?php if (empty($pconfig['tls'])) :
?>
<div id="tlsauth_opts">
<input name="autotls_enable" id="autotls_enable" type="checkbox" value="yes"<?= !empty($pconfig['autotls_enable']) ? "checked=\"checked\"" : "";?> onclick="autotls_change()" />
<?=gettext("Automatically generate a shared TLS authentication key"); ?>.
</div>
<?php
endif; ?>
<div id="autotls_opts">
<textarea name="tls" cols="65" rows="7" class="formpre"><?=isset($pconfig['tls'])?$pconfig['tls']:"";?></textarea>
<p class="text-muted"><em><small><?=gettext("Paste your shared key here"); ?>.</small></em></p>
</div>
</td>
</tr>
<tr id="tls_ca">
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Peer Certificate Authority"); ?></td>
<td>
<?php if (isset($config['ca'])) :
?>
<select name='caref' class="form-control">
<?php <?php
foreach ($config['ca'] as $ca) : $interfaces = get_configured_interface_with_descr();
$selected = ""; $carplist = get_configured_carp_interface_list();
if (isset($pconfig['caref']) && $pconfig['caref'] == $ca['refid']) { foreach ($carplist as $cif => $carpip) {
$selected = "selected=\"selected\""; $interfaces[$cif.'|'.$carpip] = $carpip." (".get_vip_descr($carpip).")";
} }
?> $aliaslist = get_configured_ip_aliases_list();
<option value="<?=$ca['refid']; foreach ($aliaslist as $aliasip => $aliasif) {
?>" <?=$selected; $interfaces[$aliasif.'|'.$aliasip] = $aliasip." (".get_vip_descr($aliasip).")";
?>><?=$ca['descr'];?></option> }
$grouplist = return_gateway_groups_array();
foreach ($grouplist as $name => $group) {
if ($group['ipprotocol'] != inet) {
continue;
}
if ($group[0]['vip'] <> "") {
$vipif = $group[0]['vip'];
} else {
$vipif = $group[0]['int'];
}
$interfaces[$name] = "GW Group {$name}";
}
$interfaces['lo0'] = "Localhost";
$interfaces['any'] = "any";
foreach ($interfaces as $iface => $ifacename) :
$selected = "";
if ($iface == $pconfig['interface']) {
$selected = "selected=\"selected\"";
}?>
<option value="<?=$iface;?>" <?=$selected;?>><?=htmlspecialchars($ifacename);?></option>
<?php <?php
endforeach; ?> endforeach; ?>
</select> </select> <br />
<?php </td>
else : </tr>
?> <tr>
<b><?=gettext("No Certificate Authorities defined."); <td><a id="help_for_local_port" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Local port");?></td>
?></b> <br /><?=gettext("Create one under"); <td>
?> <a href="system_camanager.php"><?=gettext("System: Certificates");?></a>. <input name="local_port" type="text" class="form-control unknown" size="5" value="<?=$pconfig['local_port'];?>" />
<?php <div class="hidden" for="help_for_local_port">
endif; ?> <em><small><?=gettext("Set this option if you would like to bind to a specific port. Leave this blank or enter 0 for a random dynamic port."); ?></small></em>
</td> </div>
</tr> </td>
<tr id="tls_cert"> </tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Client Certificate"); ?></td> <tr>
<td> <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Server host or address");?></td>
<select name='certref' class="form-control"> <td>
<?php <input name="server_addr" type="text" class="form-control unknown" size="30" value="<?=$pconfig['server_addr'];?>" />
foreach (isset($config['cert']) ? $config['cert'] : array() as $cert) : </td>
$selected = ""; </tr>
$caname = ""; <tr>
$inuse = ""; <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Server port");?></td>
$revoked = ""; <td>
if (isset($cert['caref'])) { <input name="server_port" type="text" class="form-control unknown" size="5" value="<?=$pconfig['server_port'];?>" />
$ca = lookup_ca($cert['caref']); </td>
if (!empty($ca)) { </tr>
$caname = " (CA: {$ca['descr']})"; <tr>
} <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Proxy host or address");?></td>
} <td>
if (isset($pconfig['certref']) && $pconfig['certref'] == $cert['refid']) { <input name="proxy_addr" type="text" class="form-control unknown" size="30" value="<?=$pconfig['proxy_addr'];?>" />
$selected = "selected=\"selected\""; </td>
} </tr>
if (isset($cert['refid']) && cert_in_use($cert['refid'])) { <tr>
$inuse = " *In Use"; <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Proxy port");?></td>
} <td>
if (is_cert_revoked($cert)) { <input name="proxy_port" type="text" class="form-control unknown" size="5" value="<?=$pconfig['proxy_port'];?>" />
$revoked = " *Revoked"; </td>
} </tr>
?> <tr>
<option value="<?=$cert['refid']; <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Proxy authentication extra options");?></td>
?>" <?=$selected; <td>
?>><?=$cert['descr'] . $caname . $inuse . $revoked;?></option> <?=gettext("Authentication method"); ?>
<?php <select name="proxy_authtype" id="proxy_authtype" class="form-control select" onchange="useproxy_changed()">
endforeach; ?> <option value="none" <?=$pconfig['proxy_authtype'] == "none" ? "selected=\"selected\"" : "" ?> > <?=gettext("none"); ?></option>
<option value="" <?=empty($pconfig['certref'])? "selected=\"selected\"" : ""; <option value="basic" <?=$pconfig['proxy_authtype'] == "basic" ? "selected=\"selected\"" : "" ?> > <?=gettext("basic"); ?></option>
?>> <?=gettext("None"); <option value="basic" <?=$pconfig['proxy_authtype'] == "ntlm" ? "selected=\"selected\"" : "" ?> > <?=gettext("ntlm"); ?></option>
?> <?=gettext("(Username and Password required)");?></option> </select>
</select> <div style="display:none" id="proxy_authtype_opts">
<?php if (!isset($config['cert']) || count($config['cert']) == 0) : <div><?=gettext("Username"); ?> <br/></div>
?> <div><input name="proxy_user" id="proxy_user" class="form-control unknown" type="text" size="20" value="<?=$pconfig['proxy_user'];?>" /></div>
<b><?=gettext("No Certificates defined."); <div><?=gettext("Password"); ?> </div>
?></b> <br /><?=gettext("Create one under"); <div><input name="proxy_passwd" id="proxy_passwd" type="password" class="form-control pwd" size="20" value="<?=$pconfig['proxy_passwd'];?>" /></div>
?> <a href="system_certmanager.php"><?=gettext("System: Certificates"); </div>
?></a> <?=gettext("if one is required for this connection.");?> </td>
</tr>
<tr>
<td><a id="help_for_resolve_retry" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Server host name resolution"); ?></td>
<td>
<input name="resolve_retry" type="checkbox" value="yes" <?= !empty($pconfig['resolve_retry']) ? "checked=\"checked\"" : "";?> />
<div class="hidden" for="help_for_resolve_retry">
<div><?=gettext("Infinitely resolve server"); ?></div>
<div><small><?=gettext("Continuously attempt to resolve the server host name. Useful when communicating with a server that is not permanently connected to the Internet"); ?></small></div>
</div>
</td>
</tr>
<tr>
<td><a id="help_for_description" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Description"); ?></td>
<td>
<input name="description" type="text" class="form-control unknown" size="30" value="<?=$pconfig['description'];?>" />
<div class="hidden" for="help_for_description">
<small><?=gettext("You may enter a description here for your reference (not parsed)"); ?>.</small>
</div>
</td>
</tr>
<tr>
<td colspan="2" class="list" height="12"></td>
</tr>
<tr>
<td colspan="2"><?=gettext("User Authentication Settings"); ?></td>
</tr>
<tr>
<td><a id="help_for_auth_user_pass" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("User name/pass"); ?></td>
<td>
<div><?=gettext("Username"); ?></div>
<div><input name="auth_user" id="auth_user" class="form-control unknown" type="text" size="20" value="<?=htmlspecialchars($pconfig['auth_user']);?>" /></div>
<div><?=gettext("Password"); ?></div>
<div><input name="auth_pass" id="auth_pass" type="password" class="form-control pwd" size="20" value="<?=htmlspecialchars($pconfig['auth_pass']);?>" /></div>
<div class="hidden" for="help_for_auth_user_pass">
<?=gettext("Leave empty when no user name and password are needed."); ?>
</div>
<br/>
</td>
</tr>
<tr>
<td colspan="2"><?=gettext("Cryptographic Settings"); ?></td>
</tr>
<tr id="tls">
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("TLS Authentication"); ?></td>
<td>
<input name="tlsauth_enable" id="tlsauth_enable" type="checkbox" value="yes" <?= !empty($pconfig['tlsauth_enable']) ? "checked=\"checked\"" : "";?> onclick="tlsauth_change()" />
<?=gettext("Enable authentication of TLS packets"); ?>.
<?php <?php
endif; ?> if (empty($pconfig['tls'])) :?>
</td> <div id="tlsauth_opts">
</tr> <input name="autotls_enable" id="autotls_enable" type="checkbox" value="yes" <?= !empty($pconfig['autotls_enable']) ? "checked=\"checked\"" : "";?> onclick="autotls_change()" >
<tr id="psk"> <?=gettext("Automatically generate a shared TLS authentication key"); ?>.
<td><?=gettext("Shared Key"); ?></td> </div>
<td> <?php
<?php if (empty($pconfig['shared_key'])) : endif; ?>
?> <div id="autotls_opts">
<input name="autokey_enable" id="autokey_enable" type="checkbox" value="yes" <?= !empty($pconfig['autokey_enable']) ? "checked=\"checked\"" : "";?> onclick="autokey_change()" /> <textarea name="tls" cols="65" rows="7" class="formpre"><?=isset($pconfig['tls'])?$pconfig['tls']:"";?></textarea>
<?=gettext("Automatically generate a shared key"); ?>. <p class="text-muted"><em><small><?=gettext("Paste your shared key here"); ?>.</small></em></p>
</div>
<?php </td>
endif; ?> </tr>
<div id="autokey_opts"> <tr id="tls_ca">
<textarea name="shared_key" cols="65" rows="7" class="formpre"><?=isset($pconfig['shared_key']) ? $pconfig['shared_key'] : "";?></textarea> <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Peer Certificate Authority"); ?></td>
<em><small><?=gettext("Paste your shared key here"); ?>.</small></em> <td>
</div> <?php
</td> if (isset($config['ca'])) :?>
</tr> <select name='caref' class="form-control">
<tr> <?php
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Encryption algorithm"); ?></td> foreach ($config['ca'] as $ca) :
<td> $selected = "";
<select name="crypto" class="form-control"> if (isset($pconfig['caref']) && $pconfig['caref'] == $ca['refid']) {
<?php $selected = "selected=\"selected\"";
$cipherlist = openvpn_get_cipherlist(); }?>
foreach ($cipherlist as $name => $desc) : <option value="<?=$ca['refid'];?>" <?=$selected;?>><?=$ca['descr'];?></option>
$selected = ""; <?php
if ($name == $pconfig['crypto']) { endforeach; ?>
$selected = " selected=\"selected\""; </select>
} <?php
?> else :?>
<option value="<?=$name; <b><?=gettext("No Certificate Authorities defined.");?></b> <br />
?>"<?=$selected?>><?=htmlspecialchars($desc);?></option> <?=gettext("Create one under");?> <a href="system_camanager.php"><?=gettext("System: Certificates");?></a>.
<?php <?php
endforeach; ?> endif; ?>
</select> </td>
</td> </tr>
</tr> <tr id="tls_cert">
<tr> <td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Client Certificate"); ?></td>
<td><a id="help_for_digest" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Auth Digest Algorithm"); ?></td> <td>
<td> <select name='certref' class="form-control">
<select name="digest" class="form-control"> <?php
<?php foreach (isset($config['cert']) ? $config['cert'] : array() as $cert) :
$digestlist = openvpn_get_digestlist(); $selected = "";
foreach ($digestlist as $name => $desc) : $caname = "";
$selected = ""; $inuse = "";
if ($name == $pconfig['digest']) { $revoked = "";
$selected = " selected=\"selected\""; if (isset($cert['caref'])) {
} $ca = lookup_ca($cert['caref']);
?> if (!empty($ca)) {
<option value="<?=$name; $caname = " (CA: {$ca['descr']})";
?>"<?=$selected?>><?=htmlspecialchars($desc);?></option> }
<?php }
endforeach; ?> if (isset($pconfig['certref']) && $pconfig['certref'] == $cert['refid']) {
</select> $selected = "selected=\"selected\"";
<div class="hidden" for="help_for_digest"> }
<?=gettext("NOTE: Leave this set to SHA1 unless the server is set to match. SHA1 is the default for OpenVPN."); ?> if (isset($cert['refid']) && cert_in_use($cert['refid'])) {
</div> $inuse = " *In Use";
</td> }
</tr> if (is_cert_revoked($cert)) {
<tr id="engine"> $revoked = " *Revoked";
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Hardware Crypto"); ?></td> }?>
<td> <option value="<?=$cert['refid'];?>" <?=$selected;?>><?=$cert['descr'] . $caname . $inuse . $revoked;?></option>
<select name="engine" class="form-control"> <?php
<?php endforeach; ?>
$engines = openvpn_get_engines(); <option value="" <?=empty($pconfig['certref'])? "selected=\"selected\"" : "";?>>
foreach ($engines as $name => $desc) : <?=gettext("None");?> <?=gettext("(Username and Password required)");?>
$selected = ""; </option>
if ($name == $pconfig['engine']) { </select>
$selected = " selected=\"selected\""; <?php
} if (!isset($config['cert']) || count($config['cert']) == 0) :?>
?> <b><?=gettext("No Certificates defined.");?></b> <br /><?=gettext("Create one under");?>
<option value="<?=$name; <a href="system_certmanager.php"><?=gettext("System: Certificates");?></a> <?=gettext("if one is required for this connection.");?>
?>"<?=$selected?>><?=htmlspecialchars($desc);?></option> <?php
<?php endif; ?>
endforeach; ?> </td>
</select> </tr>
</td> <tr id="psk">
</tr> <td><?=gettext("Shared Key"); ?></td>
<tr> <td>
<td colspan="2" class="list" height="12"></td> <?php
</tr> if (empty($pconfig['shared_key'])) :?>
<tr> <input name="autokey_enable" id="autokey_enable" type="checkbox" value="yes" <?= !empty($pconfig['autokey_enable']) ? "checked=\"checked\"" : "";?> onclick="autokey_change()" />
<td colspan="2"><?=gettext("Tunnel Settings"); ?></td> <?=gettext("Automatically generate a shared key"); ?>.
</tr> <?php
<tr> endif; ?>
<td><a id="help_for_tunnel_network" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("IPv4 Tunnel Network"); ?></td> <div id="autokey_opts">
<td> <textarea name="shared_key" cols="65" rows="7" class="formpre"><?=isset($pconfig['shared_key']) ? $pconfig['shared_key'] : "";?></textarea>
<input name="tunnel_network" type="text" class="form-control unknown" size="20" value="<?=$pconfig['tunnel_network'];?>" /> <em><small><?=gettext("Paste your shared key here"); ?>.</small></em>
<div class="hidden" for="help_for_tunnel_network"> </div>
<?=gettext("This is the virtual network used for private " . </td>
</tr>
<tr>
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Encryption algorithm"); ?></td>
<td>
<select name="crypto" class="form-control">
<?php
$cipherlist = openvpn_get_cipherlist();
foreach ($cipherlist as $name => $desc) :
$selected = "";
if ($name == $pconfig['crypto']) {
$selected = " selected=\"selected\"";
}?>
<option value="<?=$name;?>"<?=$selected?>><?=htmlspecialchars($desc);?></option>
<?php
endforeach; ?>
</select>
</td>
</tr>
<tr>
<td><a id="help_for_digest" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Auth Digest Algorithm"); ?></td>
<td>
<select name="digest" class="form-control">
<?php
$digestlist = openvpn_get_digestlist();
foreach ($digestlist as $name => $desc) :
$selected = "";
if ($name == $pconfig['digest']) {
$selected = " selected=\"selected\"";
}?>
<option value="<?=$name;?>"<?=$selected?>><?=htmlspecialchars($desc);?></option>
<?php
endforeach; ?>
</select>
<div class="hidden" for="help_for_digest">
<?=gettext("NOTE: Leave this set to SHA1 unless the server is set to match. SHA1 is the default for OpenVPN."); ?>
</div>
</td>
</tr>
<tr id="engine">
<td><i class="fa fa-info-circle text-muted"></i> <?=gettext("Hardware Crypto"); ?></td>
<td>
<select name="engine" class="form-control">
<?php
$engines = openvpn_get_engines();
foreach ($engines as $name => $desc) :
$selected = "";
if ($name == $pconfig['engine']) {
$selected = " selected=\"selected\"";
}?>
<option value="<?=$name;?>"<?=$selected?>><?=htmlspecialchars($desc);?></option>
<?php
endforeach; ?>
</select>
</td>
</tr>
<tr>
<td colspan="2" class="list" height="12"></td>
</tr>
<tr>
<td colspan="2"><?=gettext("Tunnel Settings"); ?></td>
</tr>
<tr>
<td><a id="help_for_tunnel_network" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("IPv4 Tunnel Network"); ?></td>
<td>
<input name="tunnel_network" type="text" class="form-control unknown" size="20" value="<?=$pconfig['tunnel_network'];?>" />
<div class="hidden" for="help_for_tunnel_network">
<?=gettext("This is the virtual network used for private " .
"communications between this client and the " . "communications between this client and the " .
"server expressed using CIDR (eg. 10.0.8.0/24). " . "server expressed using CIDR (eg. 10.0.8.0/24). " .
"The first network address is assumed to be the " . "The first network address is assumed to be the " .
"server address and the second network address " . "server address and the second network address " .
"will be assigned to the client virtual " . "will be assigned to the client virtual " .
"interface"); ?>. "interface"); ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr> <tr>
<td><a id="help_for_tunnel_networkv6" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("IPv6 Tunnel Network"); ?></td> <td><a id="help_for_tunnel_networkv6" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("IPv6 Tunnel Network"); ?></td>
<td> <td>
<input name="tunnel_networkv6" type="text" class="form-control unknown" size="20" value="<?=$pconfig['tunnel_networkv6'];?>" /> <input name="tunnel_networkv6" type="text" class="form-control unknown" size="20" value="<?=$pconfig['tunnel_networkv6'];?>" />
<div class="hidden" for="help_for_tunnel_networkv6"> <div class="hidden" for="help_for_tunnel_networkv6">
<?=gettext("This is the IPv6 virtual network used for private " . <?=gettext("This is the IPv6 virtual network used for private " .
"communications between this client and the " . "communications between this client and the " .
"server expressed using CIDR (eg. fe80::/64). " . "server expressed using CIDR (eg. fe80::/64). " .
"The first network address is assumed to be the " . "The first network address is assumed to be the " .
"server address and the second network address " . "server address and the second network address " .
"will be assigned to the client virtual " . "will be assigned to the client virtual " .
"interface"); ?>. "interface"); ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr> <tr>
<td><a id="help_for_remote_network" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("IPv4 Remote Network/s"); ?></td> <td><a id="help_for_remote_network" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("IPv4 Remote Network/s"); ?></td>
<td> <td>
<input name="remote_network" type="text" class="form-control unknown" size="40" value="<?=$pconfig['remote_network'];?>" /> <input name="remote_network" type="text" class="form-control unknown" size="40" value="<?=$pconfig['remote_network'];?>" />
<div class="hidden" for="help_for_remote_network"> <div class="hidden" for="help_for_remote_network">
<?=gettext("These are the IPv4 networks that will be routed through " . <?=gettext("These are the IPv4 networks that will be routed through " .
"the tunnel, so that a site-to-site VPN can be " . "the tunnel, so that a site-to-site VPN can be " .
"established without manually changing the routing tables. " . "established without manually changing the routing tables. " .
"Expressed as a comma-separated list of one or more CIDR ranges. " . "Expressed as a comma-separated list of one or more CIDR ranges. " .
"If this is a site-to-site VPN, enter the " . "If this is a site-to-site VPN, enter the " .
"remote LAN/s here. You may leave this blank to " . "remote LAN/s here. You may leave this blank to " .
"only communicate with other clients"); ?>. "only communicate with other clients"); ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr> <tr>
<td><a id="help_for_remote_networkv6" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("IPv6 Remote Network/s"); ?></td> <td><a id="help_for_remote_networkv6" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("IPv6 Remote Network/s"); ?></td>
<td> <td>
<input name="remote_networkv6" type="text" class="form-control unknown" size="40" value="<?=$pconfig['remote_networkv6'];?>" /> <input name="remote_networkv6" type="text" class="form-control unknown" size="40" value="<?=$pconfig['remote_networkv6'];?>" />
<div class="hidden" for="help_for_remote_networkv6"> <div class="hidden" for="help_for_remote_networkv6">
<?=gettext("These are the IPv6 networks that will be routed through " . <?=gettext("These are the IPv6 networks that will be routed through " .
"the tunnel, so that a site-to-site VPN can be " . "the tunnel, so that a site-to-site VPN can be " .
"established without manually changing the routing tables. " . "established without manually changing the routing tables. " .
"Expressed as a comma-separated list of one or more IP/PREFIX. " . "Expressed as a comma-separated list of one or more IP/PREFIX. " .
"If this is a site-to-site VPN, enter the " . "If this is a site-to-site VPN, enter the " .
"remote LAN/s here. You may leave this blank to " . "remote LAN/s here. You may leave this blank to " .
"only communicate with other clients"); ?>. "only communicate with other clients"); ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr> <tr>
<td><a id="help_for_use_shaper" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Limit outgoing bandwidth");?></td> <td><a id="help_for_use_shaper" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Limit outgoing bandwidth");?></td>
<td> <td>
<input name="use_shaper" type="text" class="form-control unknown" size="5" value="<?=$pconfig['use_shaper'];?>" /> <input name="use_shaper" type="text" class="form-control unknown" size="5" value="<?=$pconfig['use_shaper'];?>" />
<div class="hidden" for="help_for_use_shaper"> <div class="hidden" for="help_for_use_shaper">
<?=gettext("Maximum outgoing bandwidth for this tunnel. " . <?=gettext("Maximum outgoing bandwidth for this tunnel. " .
"Leave empty for no limit. The input value has " . "Leave empty for no limit. The input value has " .
"to be something between 100 bytes/sec and 100 " . "to be something between 100 bytes/sec and 100 " .
"Mbytes/sec (entered as bytes per second)"); ?>. "Mbytes/sec (entered as bytes per second)"); ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr> <tr>
<td><a id="help_for_compression" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Compression"); ?></td> <td><a id="help_for_compression" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Compression"); ?></td>
<td> <td>
<select name="compression" class="form-control"> <select name="compression" class="form-control">
<?php <?php
foreach ($openvpn_compression_modes as $cmode => $cmodedesc) : foreach ($openvpn_compression_modes as $cmode => $cmodedesc) :
$selected = ""; $selected = "";
if ($cmode == $pconfig['compression']) { if ($cmode == $pconfig['compression']) {
$selected = " selected=\"selected\""; $selected = " selected=\"selected\"";
} }
?> ?>
<option value="<?= $cmode ?>" <?= $selected ?>><?= $cmodedesc ?></option> <option value="<?= $cmode ?>" <?= $selected ?>><?= $cmodedesc ?></option>
<?php <?php
endforeach; ?> endforeach; ?>
</select> </select>
<div class="hidden" for="help_for_compression"> <div class="hidden" for="help_for_compression">
<?=gettext("Compress tunnel packets using the LZO algorithm. Adaptive compression will dynamically disable compression for a period of time if OpenVPN detects that the data in the packets is not being compressed efficiently."); ?>. <?=gettext("Compress tunnel packets using the LZO algorithm. Adaptive compression will dynamically disable compression for a period of time if OpenVPN detects that the data in the packets is not being compressed efficiently."); ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr> <tr>
<td><a id="help_for_passtos" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Type-of-Service"); ?></td> <td><a id="help_for_passtos" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Type-of-Service"); ?></td>
<td> <td>
<input name="passtos" type="checkbox" value="yes" <?=!empty($pconfig['passtos']) ? "checked=\"checked\"" : "" ;?> /> <input name="passtos" type="checkbox" value="yes" <?=!empty($pconfig['passtos']) ? "checked=\"checked\"" : "" ;?> />
<div class="hidden" for="help_for_passtos"> <div class="hidden" for="help_for_passtos">
<?=gettext("Set the TOS IP header value of tunnel packets to match the encapsulated packet value"); ?>. <?=gettext("Set the TOS IP header value of tunnel packets to match the encapsulated packet value"); ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr id="chkboxNoTunIPv6"> <tr id="chkboxNoTunIPv6">
<td><a id="help_for_no_tun_ipv6" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Disable IPv6"); ?></td> <td><a id="help_for_no_tun_ipv6" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Disable IPv6"); ?></td>
<td> <td>
<input name="no_tun_ipv6" type="checkbox" value="yes" <?=!empty($pconfig['no_tun_ipv6']) ? "checked=\"checked\"" : "" ;?> /> <input name="no_tun_ipv6" type="checkbox" value="yes" <?=!empty($pconfig['no_tun_ipv6']) ? "checked=\"checked\"" : "" ;?> />
<div class="hidden" for="help_for_no_tun_ipv6"> <div class="hidden" for="help_for_no_tun_ipv6">
<?=gettext("Don't forward IPv6 traffic"); ?>. <?=gettext("Don't forward IPv6 traffic"); ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr id="chkboxRouteNoPull"> <tr id="chkboxRouteNoPull">
<td><a id="help_for_route_no_pull" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Don't pull routes"); ?></td> <td><a id="help_for_route_no_pull" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Don't pull routes"); ?></td>
<td> <td>
<input name="route_no_pull" type="checkbox" value="yes" <?=!empty($pconfig['route_no_pull']) ? "checked=\"checked\"" : "" ;?> /> <input name="route_no_pull" type="checkbox" value="yes" <?=!empty($pconfig['route_no_pull']) ? "checked=\"checked\"" : "" ;?> />
<div class="hidden" for="help_for_route_no_pull"> <div class="hidden" for="help_for_route_no_pull">
<?=sprintf(gettext("Don't add or remove routes automatically. Instead pass routes to %s--route-up%s script using environmental variables"),'<strong>','</strong>') ?>. <?=sprintf(gettext("Don't add or remove routes automatically. Instead pass routes to %s--route-up%s script using environmental variables"),'<strong>','</strong>') ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr id="chkboxRouteNoExec"> <tr id="chkboxRouteNoExec">
<td><a id="help_for_route_no_exec" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Don't add/remove routes"); ?></td> <td><a id="help_for_route_no_exec" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Don't add/remove routes"); ?></td>
<td> <td>
<input name="route_no_exec" type="checkbox" value="yes" <?=!empty($pconfig['route_no_exec']) ? "checked=\"checked\"" : "" ;?> /> <input name="route_no_exec" type="checkbox" value="yes" <?=!empty($pconfig['route_no_exec']) ? "checked=\"checked\"" : "" ;?> />
<div class="hidden" for="help_for_route_no_exec"> <div class="hidden" for="help_for_route_no_exec">
<?=gettext("This option effectively bars the server from adding routes to the client's routing table, however note that this option still allows the server to set the TCP/IP properties of the client's TUN/TAP interface"); ?>. <?=gettext("This option effectively bars the server from adding routes to the client's routing table, however note that this option still allows the server to set the TCP/IP properties of the client's TUN/TAP interface"); ?>.
</div> </div>
</td> </td>
</tr> </tr>
<tr> <tr>
<td colspan="2" class="list" height="12"></td> <td colspan="2" class="list" height="12"></td>
</tr> </tr>
<tr> <tr>
<td colspan="2"><?=gettext("Advanced configuration"); ?></td> <td colspan="2"><?=gettext("Advanced configuration"); ?></td>
</tr> </tr>
<tr> <tr>
<td><a id="help_for_custom_options" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Advanced"); ?></td> <td><a id="help_for_custom_options" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Advanced"); ?></td>
<td> <td>
<textarea rows="6" cols="78" name="custom_options" id="custom_options"><?=$pconfig['custom_options'];?></textarea><br /> <textarea rows="6" cols="78" name="custom_options" id="custom_options"><?=$pconfig['custom_options'];?></textarea><br />
<div class="hidden" for="help_for_custom_options"> <div class="hidden" for="help_for_custom_options">
<?=gettext("Enter any additional options you would like to add to the OpenVPN client configuration here, separated by a semicolon"); ?><br /> <?=gettext("Enter any additional options you would like to add to the OpenVPN client configuration here, separated by a semicolon"); ?><br />
<?=gettext("EXAMPLE:"); ?> <strong>remote server.mysite.com 1194;</strong> or <strong>remote 1.2.3.4 1194;</strong> <?=gettext("EXAMPLE:"); ?> <strong>remote server.mysite.com 1194;</strong> or <strong>remote 1.2.3.4 1194;</strong>
</div> </div>
</td> </td>
</tr> </tr>
<tr id="comboboxVerbosityLevel"> <tr id="comboboxVerbosityLevel">
<td><a id="help_for_verbosity_level" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Verbosity level");?></td> <td><a id="help_for_verbosity_level" href="#" class="showhelp"><i class="fa fa-info-circle"></i></a> <?=gettext("Verbosity level");?></td>
<td> <td>
<select name="verbosity_level" class="form-control"> <select name="verbosity_level" class="form-control">
<?php <?php
foreach ($openvpn_verbosity_level as $verb_value => $verb_desc) : foreach ($openvpn_verbosity_level as $verb_value => $verb_desc) :
$selected = ''; $selected = '';
if ($pconfig['verbosity_level'] == $verb_value) { if ($pconfig['verbosity_level'] == $verb_value) {
...@@ -1005,95 +975,92 @@ endif; ?> ...@@ -1005,95 +975,92 @@ endif; ?>
} }
?> ?>
<option value="<?=$verb_value; ?>" <?=$selected; ?>><?=$verb_desc;?></option> <option value="<?=$verb_value; ?>" <?=$selected; ?>><?=$verb_desc;?></option>
<?php endforeach; ?> <?php endforeach; ?>
</select> </select>
<div class="hidden" for="help_for_verbosity_level"> <div class="hidden" for="help_for_verbosity_level">
<?=gettext("Each level shows all info from the previous levels. Level 3 is recommended if you want a good summary of what's happening without being swamped by output.") ?> <br /> <br /> <?=gettext("Each level shows all info from the previous levels. Level 3 is recommended if you want a good summary of what's happening without being swamped by output.") ?> <br /> <br />
<?=sprintf(gettext("%snone%s -- No output except fatal errors."),'<strong>','</strong>') ?> <br /> <?=sprintf(gettext("%snone%s -- No output except fatal errors."),'<strong>','</strong>') ?> <br />
<?=sprintf(gettext("%sdefault%s-%s4%s -- Normal usage range."),'<strong>','</strong>','<strong>','</strong>'); ?> <br /> <?=sprintf(gettext("%sdefault%s-%s4%s -- Normal usage range."),'<strong>','</strong>','<strong>','</strong>'); ?> <br />
<?=sprintf(gettext("%s5%s -- Output R and W characters to the console for each packet read and write, uppercase is used for TCP/UDP packets and lowercase is used for TUN/TAP packets."),'<strong>','</strong>') ?> <br /> <?=sprintf(gettext("%s5%s -- Output R and W characters to the console for each packet read and write, uppercase is used for TCP/UDP packets and lowercase is used for TUN/TAP packets."),'<strong>','</strong>') ?> <br />
<?=sprintf(gettext("%s6%s-%s11%s -- Debug info range."),'<strong>','</strong>','<strong>','</strong>') ?> <?=sprintf(gettext("%s6%s-%s11%s -- Debug info range."),'<strong>','</strong>','<strong>','</strong>') ?>
</div> </div>
</td> </td>
</tr> </tr>
</table>
</table> <br />
<table width="100%" border="0" cellpadding="6" cellspacing="0" summary="icons">
<br /> <tr>
<table width="100%" border="0" cellpadding="6" cellspacing="0" summary="icons"> <td>&nbsp;</td>
<tr> <td width="78%">
<td>&nbsp;</td> <input name="save" type="submit" class="btn btn-primary" value="<?=gettext("Save"); ?>" />
<td width="78%"> <input name="act" type="hidden" value="<?=$act;?>" />
<input name="save" type="submit" class="btn btn-primary" value="<?=gettext("Save"); ?>" /> <?php
<input name="act" type="hidden" value="<?=$act;?>" /> if (isset($id) && $a_client[$id]) :?>
<?php if (isset($id) && $a_client[$id]) : <input name="id" type="hidden" value="<?=htmlspecialchars($id);?>" />
?> <?php
<input name="id" type="hidden" value="<?=htmlspecialchars($id);?>" /> endif; ?>
<?php </td>
endif; ?> </tr>
</td> </table>
</tr> </div>
</table> </form>
</div> <?php
</form> else:?>
<table class="table table-striped">
<?php <thead>
else : <tr>
?> <td><?=gettext("Disabled"); ?></td>
<td><?=gettext("Protocol"); ?></td>
<table class="table table-striped"> <td><?=gettext("Server"); ?></td>
<thead> <td><?=gettext("Description"); ?></td>
<tr> <td></td>
<td width="10%" class="listhdrr"><?=gettext("Disabled"); ?></td> </tr>
<td width="10%" class="listhdrr"><?=gettext("Protocol"); ?></td> </thead>
<td width="30%" class="listhdrr"><?=gettext("Server"); ?></td> <tbody>
<td width="40%" class="listhdrr"><?=gettext("Description"); ?></td> <?php
<td width="10%" class="list"></td> $i = 0;
</tr> foreach ($a_client as $client) :
</thead> $disabled = "NO";
if (isset($client['disable'])) {
<tbody> $disabled = "YES";
<?php }
$i = 0; $server = "{$client['server_addr']}:{$client['server_port']}";?>
foreach ($a_client as $client) : <tr ondblclick="document.location='vpn_openvpn_client.php?act=edit&amp;id=<?=$i;?>'">
$disabled = "NO"; <td>
if (isset($client['disable'])) { <?=$disabled;?>
$disabled = "YES"; </td>
} <td>
$server = "{$client['server_addr']}:{$client['server_port']}"; <?=htmlspecialchars($client['protocol']);?>
?> </td>
<tr ondblclick="document.location='vpn_openvpn_client.php?act=edit&amp;id=<?=$i;?>'"> <td>
<td> <?=htmlspecialchars($server);?>
<?=$disabled;?> </td>
</td> <td>
<td> <?=htmlspecialchars($client['description']);?>
<?=htmlspecialchars($client['protocol']);?> </td>
</td> <td>
<td> <a href="vpn_openvpn_client.php?act=edit&amp;id=<?=$i;?>" class="btn btn-default btn-xs">
<?=htmlspecialchars($server);?> <span class="glyphicon glyphicon-pencil"></span>
</td> </a>
<td> <a id="del_<?=$i;?>" title="<?=gettext("delete client"); ?>" class="act_delete btn btn-default btn-xs">
<?=htmlspecialchars($client['description']);?> <span class="fa fa-trash text-muted"></span>
</td> </a>
<td> <a href="vpn_openvpn_client.php?act=new&dup=<?=$i;?>" class="btn btn-default btn-xs" data-toggle="tooltip" title="<?=gettext("clone rule");?>">
<a href="vpn_openvpn_client.php?act=edit&amp;id=<?=$i;?>" class="btn btn-default btn-xs"><span class="glyphicon glyphicon-pencil"></span></a> <span class="fa fa-clone text-muted"></span>
<a id="del_<?=$i; </a>
?>" title="<?=gettext("delete client"); ?>" class="act_delete btn btn-default btn-xs"><span class="fa fa-trash text-muted"></span></a> </td>
</td> </tr>
</tr> <?php
<?php $i++;
$i++; endforeach;?>
endforeach; </tbody>
?> </table>
</tbody> <?php
</table> endif; ?>
<?php
endif; ?>
</div> </div>
</section> </section>
</div> </div>
</div> </div>
</section> </section>
<?php include("foot.inc"); ?> <?php include("foot.inc"); ?>
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment

Technounit-GROUP 2023