s.addremove = true
s.anonymous = true
-iface = s:option(ListValue, "zone", "Firewallzone")
+zone = s:option(ListValue, "zone", "Firewallzone")
luci.model.uci.foreach("firewall", "zone",
function (section)
- iface:value(section.name)
+ zone:value(section.name)
end)
-gateway = s:option(Value, "gateway", "Gateway")
+iface = s:option(ListValue, "network", "Netzwerk")
+luci.model.uci.foreach("network", "interface",
+ function (section)
+ if section[".name"] ~= "loopback" then
+ iface:value(section[".name"])
+ end
+ end)
+
+luci.model.uci.foreach("network", "alias",
+ function (section)
+ iface:value(section[".name"])
+ end)
s = m:section(TypedSection, "whitelist", "Automatische Freigabe")
s.template = "cbi/tblsection"
config_get zone "$cfg" zone
[ -n "$zone" ] || return 0
- config_get gw "$cfg" gateway
- [ -n "$gw" ] || return 0
+ config_get net "$cfg" network
+ [ -n "$net" ] || return 0
- iptables -t nat -A zone_${zone}_prerouting -j luci_splash_portal
+ config_get ipaddr "$net" ipaddr
+ [ -n "$ipaddr" ] || return 0
- for i in $gw
- do
- iptables -t nat -A luci_splash_portal -d "$i" -p tcp -m multiport --dports 22,80,443 -j RETURN
- done
+ config_get netmask "$net" netmask
+ [ -n "$netmask" ] || return 0
+
+ eval "$(ipcalc.sh $ipaddr $netmask)"
+
+ iptables -t nat -A zone_${zone}_prerouting -s "$NETWORK/$PREFIX" -p ! tcp -j luci_splash_portal
+ iptables -t nat -A zone_${zone}_prerouting -s "$NETWORK/$PREFIX" -d ! "$ipaddr" -j luci_splash_portal
+ iptables -t nat -A zone_${zone}_prerouting -s "$NETWORK/$PREFIX" -d "$ipaddr" -p tcp -m multiport ! --dport 22,80,443 -j luci_splash_portal
}
blacklist_add() {
]]--
m = Map("network", translate("interfaces"), translate("a_n_ifaces1"))
-s = m:section(TypedSection, "interface", "")
-function s.filter(section)
- return section ~= "loopback" and (not arg or #arg == 0 or
- luci.util.contains(arg, section))
+s = m:section(TypedSection, "interface", translate("interfaces"))
+function s.filter(self, section)
+ return section ~= "loopback" and
+ (not arg or not arg[1] or arg[1] == section)
end
-if not arg or #arg == 0 then
+if not arg or not arg[1] then
s.addremove = true
end
s:depends("proto", "static")
end
end
+
ipaddr = s:option(Value, "ipaddr", translate("ipaddress"))
ipaddr.rmempty = true
ipaddr:depends("proto", "static")
gw:depends("proto", "static")
gw.rmempty = true
+bcast = s:option(Value, "bcast", translate("broadcast"))
+bcast:depends("proto", "static")
+bcast.optional = true
+
ip6addr = s:option(Value, "ip6addr", translate("ip6address"), translate("cidr6"))
-ip6addr.rmempty = true
+ip6addr.optional = true
ip6addr:depends("proto", "static")
ip6gw = s:option(Value, "ip6gw", translate("gateway6"))
ip6gw:depends("proto", "static")
-ip6gw.rmempty = true
+ip6gw.optional = true
dns = s:option(Value, "dns", translate("dnsserver"))
dns:depends("proto", "static")
mac = s:option(Value, "macaddr", translate("macaddress"))
mac.optional = true
-return m
\ No newline at end of file
+
+
+
+s2 = m:section(TypedSection, "alias", translate("aliases"))
+s2.addremove = true
+
+if arg and arg[1] and luci.model.uci.get("network", arg[1]) then
+ s2:depends("interface", arg[1])
+ s2.defaults.interface = arg[1]
+else
+ parent = s2:option(ListValue, "interface", translate("interface"))
+ luci.model.uci.foreach("network", "interface",
+ function (section)
+ if section[".name"] ~= "loopback" then
+ parent:value(section[".name"])
+ end
+ end
+ )
+end
+
+
+s2.defaults.proto = "static"
+
+ipaddr = s2:option(Value, "ipaddr", translate("ipaddress"))
+ipaddr.rmempty = true
+
+nm = s2:option(Value, "netmask", translate("netmask"))
+nm.rmempty = true
+nm:value("255.255.255.0")
+nm:value("255.255.0.0")
+nm:value("255.0.0.0")
+
+gw = s2:option(Value, "gateway", translate("gateway"))
+gw.rmempty = true
+
+bcast = s2:option(Value, "bcast", translate("broadcast"))
+bcast.optional = true
+
+ip6addr = s2:option(Value, "ip6addr", translate("ip6address"), translate("cidr6"))
+ip6addr.optional = true
+
+ip6gw = s2:option(Value, "ip6gw", translate("gateway6"))
+ip6gw.optional = true
+
+dns = s2:option(Value, "dns", translate("dnsserver"))
+dns.optional = true
+
+return m
projects / project / luci.git / commitdiff