This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "IPFire 2.x development tree".
The branch, master has been updated via b2d5dd6d4fedd97e8cdf66a94672ce54430dc9a8 (commit) from 3f0d97d2af880895055f1063b637fde48b685b9b (commit)
Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below.
- Log ----------------------------------------------------------------- commit b2d5dd6d4fedd97e8cdf66a94672ce54430dc9a8 Author: Arne Fitzenreiter arne_f@ipfire.org Date: Wed May 19 19:47:48 2010 +0200
IPSec: add lefthostaccess=yes to enable access to the gw itself.
-----------------------------------------------------------------------
Summary of changes: config/rootfiles/core/38/update.sh | 3 ++- html/cgi-bin/vpnmain.cgi | 1 + 2 files changed, 3 insertions(+), 1 deletions(-)
Difference in files: diff --git a/config/rootfiles/core/38/update.sh b/config/rootfiles/core/38/update.sh index 68c892d..9a95149 100644 --- a/config/rootfiles/core/38/update.sh +++ b/config/rootfiles/core/38/update.sh @@ -181,12 +181,13 @@ cat /var/ipfire/vpn/ipsec.conf.org | \ grep -v "disablearrivalcheck=" | \ grep -v "klipsdebug=" | \ grep -v "leftfirewall=" | \ +grep -v "lefthostaccess=" | \ grep -v "charonstart=" | \ grep -v "aggrmode=" > /var/ipfire/vpn/ipsec.conf sed -i "s|ipsec[0-9]=||g" /var/ipfire/vpn/ipsec.conf sed -i "s|nat_t ||g" /var/ipfire/vpn/ipsec.conf sed -i "s|klips ||g" /var/ipfire/vpn/ipsec.conf -sed -i "s|^conn [A-Za-z].*$|&\n\tleftfirewall=yes|g" /var/ipfire/vpn/ipsec.conf +sed -i "s|^conn [A-Za-z].*$|&\n\tleftfirewall=yes\n\tlefthostaccess=yes|g" /var/ipfire/vpn/ipsec.conf sed -i "s|^config setup$|&\n\tcharonstart=no|g" /var/ipfire/vpn/ipsec.conf chown nobody:nobody /var/ipfire/vpn/ipsec.conf chmod 644 /var/ipfire/vpn/ipsec.conf diff --git a/html/cgi-bin/vpnmain.cgi b/html/cgi-bin/vpnmain.cgi index 28ac30e..85bb713 100644 --- a/html/cgi-bin/vpnmain.cgi +++ b/html/cgi-bin/vpnmain.cgi @@ -316,6 +316,7 @@ sub writeipsecfiles { print CONF "\tleftnexthop=%defaultroute\n" if ($lconfighash{$key}[26] eq 'RED' && $lvpnsettings{'VPN_IP'} ne '%defaultroute'); print CONF "\tleftsubnet=$lconfighash{$key}[8]\n"; print CONF "\tleftfirewall=yes\n"; + print CONF "\tlefthostaccess=yes\n";
print CONF "\tright=$lconfighash{$key}[10]\n"; if ($lconfighash{$key}[3] eq 'net') {
hooks/post-receive -- IPFire 2.x development tree