function add_tunnel($mode, $type, $devnam, $inf, $remote, $local, $mtu) { /* Prepare the remote/local commands. */ if ($remote != "") { $rcmd = " remote " . $remote; } if ($local != "") { $lcmd = " local " . $local; } /* add the tunnel. */ if ($mode == "6IN4" || $mode == "6TO4" || $mode == "6RD") { echo "ip tunnel add " . $devnam . " mode sit ttl 128" . $rcmd . $lcmd . "\n"; } else { if ($mode == "TSP") { if ($type == "v6v4") { echo "ip tunnel add " . $devnam . " mode sit ttl 64" . $rcmd . $lcmd . "\n"; } else { echo "ip tuntap add " . $devnam . " mode tun\n"; } } else { return ""; } } if ($mode == "6RD") { $p = XNODE_getpathbytarget("/runtime", "inf", "uid", $inf, 0); $ipaddr = query($p . "/inet/ipv6/ipv6in4/rd/ipaddr"); $prefix = query($p . "/inet/ipv6/ipv6in4/rd/prefix"); $v4mask = query($p . "/inet/ipv6/ipv6in4/rd/v4mask"); $hubspoke = query($p . "/inet/ipv6/ipv6in4/rd/hubspokemode"); $networkid = ipv4networkid($local, $v4mask); if ($v4mask != "0") { $rpcmd = " 6rd-relay_prefix " . $networkid . "/" . $v4mask; } else { $rpcmd = ""; } if ($hubspoke != "1") { echo "ip tunnel 6rd dev " . $devnam . " 6rd-prefix " . $ipaddr . "/" . $prefix . $rpcmd . "\n"; } } /* Enable IPv6 on the tunnel device. */ if ($mtu != "") { echo "ip link set " . $devnam . " mtu " . $mtu . "\n"; } echo "ip link set " . $devnam . " up\n"; echo "echo 0 > /proc/sys/net/ipv6/conf/" . $devnam . "/disable_ipv6\n"; $uid = "TUN." . $inf; $p = PHYINF_setup($uid, "tunnel", $devnam); set($p . "/tunnel/mode", $mode); set($p . "/tunnel/type", $type); set($p . "/tunnel/remote", $remote); set($p . "/tunnel/local", $local); return $uid; }
function INET_validv4network($ipaddr, $lanip, $mask) { $ipid = ipv4networkid($ipaddr, $mask); if ($ipid == "") { return 0; } $lanid = ipv4networkid($lanip, $mask); if ($lanid == "") { return 0; } if ($ipid == $lanid) { return 1; } else { return 0; } }
function check_ipv4($path, $needgw) { anchor($path); $static = query("static"); if ($static != "1") { set("static", "0"); } TRACE_debug("FATLADY: INET_IPV4: static = " . $static); if ($static == "1") { $ip = query("ipaddr"); $mask = query("mask"); $dhcps4 = INF_getinfinfo($_GLOBALS["FATLADY_INF_UID"], "dhcps4"); TRACE_debug("FATLADY: INET_IPV4: ip = " . $ip); TRACE_debug("FATLADY: INET_IPV4: mask = " . $mask); if (INET_validv4addr($ip) == 0) { set_result("FAILED", $path . "/ipaddr", i18n("Invalid IP address")); return; } if ($mask == "") { set_result("FAILED", $path . "/mask", i18n("No Subnet Mask value")); return; } if ($mask < 0 || $mask > 32) { set_result("FAILED", $path . "/mask", i18n("Invalid Subnet Mask value")); return; } if (INET_validv4host($ip, $mask) == 0) { set_result("FAILED", $path . "/ipaddr", i18n("Invalid IP address")); return; } if (INET_addr_strip0($gw) == $ip) { set_result("FAILED", $path . "/gateway", i18n("The IP address and gateway address cannot be the same")); return; } set("ipaddr", INET_addr_strip0($ip)); $ip = query("ipaddr"); $gw = query("gateway"); TRACE_debug("FATLADY: INET_IPV4: gw=" . $gw); if ($gw == "") { if ($needgw == "1" && $static == "1") { set_result("FAILED", $path . "/gateway", i18n("No default gateway IP address")); return; } } else { if (INET_validv4host($gw, $mask) == 0) { set_result("FAILED", $path . "/gateway", i18n("Invalid default gateway IP address")); return; } if (ipv4networkid($gw, $mask) != ipv4networkid($ip, $mask)) { set_result("FAILED", $path . "/gateway", i18n("The default gateway should be in the same network")); return; } if (INET_addr_strip0($gw) == $ip) { set_result("FAILED", $path . "/gateway", i18n("The IP address and gateway address cannot be the same")); return; } set("gateway", INET_addr_strip0($gw)); } } else { if (query("dhcpplus/enable") != "") { /* User Name & Password */ if (query("dhcpplus/enable") == "1" && query("dhcpplus/username") == "") { set_result("FAILED", $path . "/dhcpplus/username", i18n("The user name cannot be empty")); return; } } } $cnt = query("dns/count"); $i = 0; while ($i < $cnt) { $i++; $value = query("dns/entry:" . $i); TRACE_debug("FATLADY: INET_IPV4: dns" . $i . "=" . $value); if (INET_validv4addr($value) == 0) { set_result("FAILED", $path . "/dns/entry:" . $i, i18n("Invalid DNS address")); return; } set("dns/entry:" . $i, INET_addr_strip0($value)); if ($static == "1") { if (ipv4networkid($value, $mask) == ipv4networkid($ip, $mask)) { TRACE_debug("FATLADY: INET_IPV4: dns" . $i . "=" . $value . " is in the same network as IP:" . $ip); if (INET_validv4host($value, $mask) == 0) { set_result("FAILED", $path . "/dns/entry:" . $i, i18n("Invalid DNS address")); return; } if ($value == $ip) { set_result("FAILED", $path . "/dns/entry:" . $i, i18n("Invalid DNS address")); return; } } } if ($i > 1) { $j = $i - 1; $k = 0; while ($k < $j) { $k++; $dns = query("dns/entry:" . $k); if ($value == $dns) { set_result("FAILED", $path . "/dns/entry:2", i18n("Secondary DNS server should not be the same as Primary DNS server.")); return; } } } } $mtu = query("mtu"); TRACE_debug("FATLADY: INET_IPV4: mtu=" . $mtu); if ($mtu != "") { if (isdigit($mtu) == "0") { set_result("FAILED", $path . "/mtu", i18n("The MTU value is invalid.")); return; } if ($mtu < 576) { set_result("FAILED", $path . "/mtu", i18n("The MTU value is too small, the valid value is 576 ~ 1500.")); return; } if ($mtu > 1500) { set_result("FAILED", $path . "/mtu", i18n("The MTU value is too large, the valid value is 576 ~ 1500.")); return; } } set_result("OK", "", ""); }
function check_ipv4($path, $needgw) { include "/htdocs/webinc/feature.php"; anchor($path); $static = query("static"); $ipipmode = query($path . "/ipv4in6/mode"); if ($ipipmode != "") { TRACE_debug("FATLADY: INET_IPV4: IPIP mode :" . $ipipmode); $ipipremote = query($path . "/ipv4in6/remote"); if ($ipipremote != "") { TRACE_debug("FATLADY: IPIP remote IPv6 address :" . $ipipremote); //if(INET_validv6addr($ipipremote) == 0) if (ipv6checkip($ipipremote) != 1) { set_result("FAILED", $path . "/ipaddr", i18n("Invalid IPv6 address")); return; } //$type = INET_v6addrtype($ipipremote); $type = ipv6addrtype($ipipremote); TRACE_debug("FATLADY: IPIP remote IPv6 address type :" . $type); if ($type == "ANY" || $type == "MULTICAST" || $type == "LOOPBACK") { set_result("FAILED", $path . "/ipaddr", i18n("Invalid IPv6 address type")); return; } } $ip = query("ipaddr"); /* ip address of B4 */ if ($ip != "") { $ip_part = cut($ip, 3, '.'); if ($ip_part < 2 || $ip_part > 7) { set_result("FAILED", $path . "/ipaddr", i18n("The range of B4 IPv4 address is from 192.0.0.2 to 192.0.0.7")); return; } } set_result("OK", "", ""); return; } if ($static != "1") { set("static", "0"); } TRACE_debug("FATLADY: INET_IPV4: static = " . $static); if ($static == "1") { $ip = query("ipaddr"); $mask = query("mask"); $dhcps4 = INF_getinfinfo($_GLOBALS["FATLADY_INF_UID"], "dhcps4"); TRACE_debug("FATLADY: INET_IPV4: ip = " . $ip); TRACE_debug("FATLADY: INET_IPV4: mask = " . $mask); if (INET_validv4addr($ip) == 0) { set_result("FAILED", $path . "/ipaddr", i18n("Invalid IP Address")); return; } if ($mask == "") { set_result("FAILED", $path . "/mask", i18n("No Subnet Mask value")); return; } if ($mask < 0 || $mask > 32) { set_result("FAILED", $path . "/mask", i18n("Invalid Subnet Mask value")); return; } if ($mask < 8) { set_result("FAILED", $path . "/mask", i18n("The router would not support the subnet mask which length is less than Class A.")); return; } if (INET_validv4host($ip, $mask) == 0) { set_result("FAILED", $path . "/ipaddr", i18n("Invalid IP Address")); return; } if (INET_addr_strip0($gw) == $ip) { set_result("FAILED", $path . "/gateway", i18n("The IP address can not be equal to the gateway address")); return; } set("ipaddr", INET_addr_strip0($ip)); $ip = query("ipaddr"); $gw = query("gateway"); TRACE_debug("FATLADY: INET_IPV4: gw=" . $gw); if ($gw == "") { if ($needgw == "1" && $static == "1") { set_result("FAILED", $path . "/gateway", i18n("No gateway address")); return; } } else { if (INET_validv4host($gw, $mask) == 0) { set_result("FAILED", $path . "/gateway", i18n("Invalid Default Gateway address")); return; } if (ipv4networkid($gw, $mask) != ipv4networkid($ip, $mask)) { set_result("FAILED", $path . "/gateway", i18n("The default gateway should be in the same network")); return; } if (INET_addr_strip0($gw) == $ip) { set_result("FAILED", $path . "/gateway", i18n("The IP address can not be equal to the Default Gateway address")); return; } set("gateway", INET_addr_strip0($gw)); } } else { if (query("dhcpplus/enable") != "") { /* User Name & Password */ if (query("dhcpplus/enable") == "1" && query("dhcpplus/username") == "") { set_result("FAILED", $path . "/dhcpplus/username", i18n("The user name can not be empty")); return; } } } $cnt = query("dns/count"); $i = 0; while ($i < $cnt) { $i++; $value = query("dns/entry:" . $i); TRACE_debug("FATLADY: INET_IPV4: dns" . $i . "=" . $value); if (INET_validv4addr($value) == 0) { set_result("FAILED", $path . "/dns/entry:" . $i, i18n("Invalid DNS address")); return; } set("dns/entry:" . $i, INET_addr_strip0($value)); if ($static == "1") { if (ipv4networkid($value, $mask) == ipv4networkid($ip, $mask)) { TRACE_debug("FATLADY: INET_IPV4: dns" . $i . "=" . $value . " is in the same network as IP:" . $ip); if (INET_validv4host($value, $mask) == 0) { set_result("FAILED", $path . "/dns/entry:" . $i, i18n("Invalid DNS address")); return; } if ($value == $ip) { set_result("FAILED", $path . "/dns/entry:" . $i, i18n("Invalid DNS address")); return; } } } if ($i > 1) { $j = $i - 1; $k = 0; while ($k < $j) { $k++; $dns = query("dns/entry:" . $k); if ($value == $dns) { set_result("FAILED", $path . "/dns/entry:2", i18n("Secondary DNS server should not be the same as Primary DNS server.")); return; } } } } $mtu = query("mtu"); TRACE_debug("FATLADY: INET_IPV4: mtu=" . $mtu); if ($mtu != "") { if (isdigit($mtu) == "0") { set_result("FAILED", $path . "/mtu", i18n("The MTU value is invalid.")); return; } if ($mtu < 576 && $FEATURE_NOIPV6 == 1) { set_result("FAILED", $path . "/mtu", i18n("The MTU value is too small, the valid value is 576 ~ 1500.")); return; } if ($mtu < 1280 && $FEATURE_NOIPV6 == 0) { set_result("FAILED", $path . "/mtu", i18n("The MTU value is too small, the valid value is 1280 ~ 1500.")); return; } if ($mtu > 1500) { if ($FEATURE_NOIPV6 == 0) { set_result("FAILED", $path . "/mtu", i18n("The MTU value is too large, the valid value is 1280 ~ 1500.")); } else { set_result("FAILED", $path . "/mtu", i18n("The MTU value is too large, the valid value is 576 ~ 1500.")); } return; } } set_result("OK", "", ""); }
*/ $laninf = PHYINF_getruntimeifname("LAN-1"); if ($SSL == '0') { $ipt_cmd = "PRE.WFA -i " . $laninf . " -p tcp --dport " . $E_PORT . " -j DNAT --to-destination " . $wan_ip . ":" . query("/webaccess/httpport") . " &"; } else { $ipt_cmd = "PRE.WFA -i " . $laninf . " -p tcp --dport " . $E_PORT . " -j DNAT --to-destination " . $wan_ip . ":" . query("/webaccess/httpsport") . " &"; } if ($ipt_cmd != "") { $del_ipt = "iptables -t nat -D " . $ipt_cmd; exe_ouside_cmd($del_ipt); $add_ipt = "iptables -t nat -A " . $ipt_cmd; exe_ouside_cmd($add_ipt); } //if($wan_st!="public" && $mask != "") if ($wan_st != "ppp" && $mask != "") { $host_ip = ipv4networkid($wan_ip, $mask); if ($SSL == '0') { $ipt_cmd = "PRE.WFA -p tcp -s " . $host_ip . "/" . $mask . " --dport " . $E_PORT . " -j REDIRECT --to-ports " . query("/webaccess/httpport") . " &"; } else { $ipt_cmd = "PRE.WFA -p tcp -s " . $host_ip . "/" . $mask . " --dport " . $E_PORT . " -j REDIRECT --to-ports " . query("/webaccess/httpsport") . " &"; } if ($ipt_cmd != "") { $del_ipt = "iptables -t nat -D " . $ipt_cmd; exe_ouside_cmd($del_ipt); $add_ipt = "iptables -t nat -A " . $ipt_cmd; exe_ouside_cmd($add_ipt); } } // } //} }