From d78707d22efded921f8e36bcedbba1c741086628 Mon Sep 17 00:00:00 2001
From: latham <latham@ispconfig3>
Date: Thu, 30 Jun 2011 15:21:38 +0000
Subject: [PATCH] Start the iptables upload, disabled in menu, sql coming in a
 minute

---
 interface/web/admin/form/iptables.tform.php   | 109 ++++++++++++++++++
 interface/web/admin/iptables_del.php          |  50 ++++++++
 interface/web/admin/iptables_edit.php         |  58 ++++++++++
 interface/web/admin/iptables_list.php         |  51 ++++++++
 interface/web/admin/lib/lang/en_iptables.lng  |  15 +++
 .../web/admin/lib/lang/en_iptables_list.lng   |  35 ++++++
 interface/web/admin/lib/module.conf.php       |  12 +-
 interface/web/admin/list/iptables.list.php    | 107 +++++++++++++++++
 .../web/admin/templates/iptables_edit.htm     |  65 +++++++++++
 .../web/admin/templates/iptables_list.htm     |  72 ++++++++++++
 10 files changed, 567 insertions(+), 7 deletions(-)
 create mode 100644 interface/web/admin/form/iptables.tform.php
 create mode 100644 interface/web/admin/iptables_del.php
 create mode 100644 interface/web/admin/iptables_edit.php
 create mode 100644 interface/web/admin/iptables_list.php
 create mode 100644 interface/web/admin/lib/lang/en_iptables.lng
 create mode 100644 interface/web/admin/lib/lang/en_iptables_list.lng
 create mode 100644 interface/web/admin/list/iptables.list.php
 create mode 100644 interface/web/admin/templates/iptables_edit.htm
 create mode 100644 interface/web/admin/templates/iptables_list.htm

diff --git a/interface/web/admin/form/iptables.tform.php b/interface/web/admin/form/iptables.tform.php
new file mode 100644
index 0000000000..87f7b7f830
--- /dev/null
+++ b/interface/web/admin/form/iptables.tform.php
@@ -0,0 +1,109 @@
+<?php
+
+$form["title"] 			= "IPTables";
+$form["description"] 	= "IPTables based firewall";
+$form["name"] 			= "iptables";
+$form["action"]			= "iptables_edit.php";
+$form["db_table"]		= "iptables";
+$form["db_table_idx"]	= "iptables_id";
+$form["db_history"]		= "no";
+$form["tab_default"]	= "iptables";
+$form["list_default"]	= "iptables_list.php";
+//$form["auth"]			= 'yes'; // yes / no
+
+//$form["auth_preset"]["userid"]  = 0; // 0 = id of the user, > 0 id must match with id of current user
+//$form["auth_preset"]["groupid"] = 0; // 0 = default groupid of the user, > 0 id must match with groupid of current user
+//$form["auth_preset"]["perm_user"] = 'riud'; //r = read, i = insert, u = update, d = delete
+//$form["auth_preset"]["perm_group"] = 'riud'; //r = read, i = insert, u = update, d = delete
+//$form["auth_preset"]["perm_other"] = ''; //r = read, i = insert, u = update, d = delete
+
+$form["tabs"]['iptables'] = array (
+	'title' 	=> "Rules",
+	'width' 	=> "100",
+	'template' 	=> "templates/iptables_edit.htm",
+	'fields' 	=> array (
+		'server_id' => array (
+			'datatype'	=> 'INTEGER',
+			'formtype'	=> 'SELECT',
+			'default'	=> '',
+			'datasource'	=> array ( 	'type'	=> 'SQL',
+										'querystring' => 'SELECT server_id,server_name FROM server WHERE {AUTHSQL} ORDER BY server_name',
+										'keyfield'=> 'server_id',
+										'valuefield'=> 'server_name'),
+			'value'		=> ''
+		),
+		'protocol' => array (
+						'datatype'	=> 'VARCHAR',
+						'formtype'	=> 'SELECT',
+						'default'	=> '',
+						'value'		=> array('none'=>'None','tcp'=>'TCP','udp'=>'UDP'),
+						'width'		=> '',
+						'maxlength'	=> ''
+		),
+		'table' => array (
+                        'datatype'      => 'VARCHAR',
+                        'formtype'      => 'SELECT',
+                        'validators'    => array (      0  => array ( 'type' => 'NOTEMPTY', 'errmsg' => 'table_error_empty')),
+                        'default'       => 'INPUT',
+                        'value'         => array('INPUT'=>'INPUT','OUTPUT'=>'OUTPUT','FORWARD'=>'FORWARD'),
+                        'width'         => '',
+                        'maxlength'     => ''
+                ),
+		'source_ip' => array (
+                        'datatype'      => 'VARCHAR',
+                        'formtype'      => 'TEXT',
+                        'default'       => '',
+                        'value'         => '',
+                        'width'         => '',
+                        'maxlength'     => ''
+                ),
+		'destination_ip' => array (
+                        'datatype'      => 'VARCHAR',
+                        'formtype'      => 'TEXT',
+                        'default'       => '',
+                        'value'         => '',
+                        'width'         => '',
+                        'maxlength'     => ''
+                ),
+		'singleport' => array (
+                        'datatype'      => 'VARCHAR',
+                        'formtype'      => 'TEXT',
+                        'default'       => '',
+                        'value'         => '',
+                        'width'         => '',
+                        'maxlength'     => ''
+                ),
+		'multiport' => array (
+                        'datatype'      => 'VARCHAR',
+                        'formtype'      => 'TEXT',
+                        'default'       => '',
+                        'value'         => '',
+                        'width'         => '',
+                        'maxlength'     => ''
+                ),
+		'state' => array (
+                        'datatype'      => 'VARCHAR',
+                        'formtype'      => 'TEXT',
+                        'default'       => '',
+                        'value'         => '',
+                        'width'         => '',
+                        'maxlength'     => ''
+                ),
+		'target' => array (
+                        'datatype'      => 'VARCHAR',
+                        'formtype'      => 'SELECT',
+                        'validators'    => array (      0  => array ( 'type' => 'NOTEMPTY', 'errmsg' => 'target_error_empty')),
+                        'default'       => '',
+                        'value'         => array('ACCEPT'=>'ACCEPT','DROP'=>'DROP','REJECT'=>'REJECT'),
+                        'width'         => '',
+                        'maxlength'     => ''
+                ),
+		'active' => array (
+			'datatype'	=> 'VARCHAR',
+			'formtype'	=> 'CHECKBOX',
+			'default'	=> 'y',
+			'value'		=> array(0 => 'n',1 => 'y')
+		),
+	)
+);
+?>
\ No newline at end of file
diff --git a/interface/web/admin/iptables_del.php b/interface/web/admin/iptables_del.php
new file mode 100644
index 0000000000..2f1830fee7
--- /dev/null
+++ b/interface/web/admin/iptables_del.php
@@ -0,0 +1,50 @@
+<?php
+/*
+Copyright (c) 2011, Andrew "lathama" Latham, Till Brehm, projektfarm Gmbh
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright notice,
+      this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright notice,
+      this list of conditions and the following disclaimer in the documentation
+      and/or other materials provided with the distribution.
+    * Neither the name of ISPConfig nor the names of its contributors
+      may be used to endorse or promote products derived from this software without
+      specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
+INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
+BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
+OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
+EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+*/
+
+/******************************************
+* Begin Form configuration
+******************************************/
+
+$list_def_file = "list/iptables.list.php";
+$tform_def_file = "form/iptables.tform.php";
+
+/******************************************
+* End Form configuration
+******************************************/
+
+require_once('../../lib/config.inc.php');
+require_once('../../lib/app.inc.php');
+
+//* Check permissions for module
+$app->auth->check_module_permissions('admin');
+
+$app->uses("tform_actions");
+$app->tform_actions->onDelete();
+
+?>
\ No newline at end of file
diff --git a/interface/web/admin/iptables_edit.php b/interface/web/admin/iptables_edit.php
new file mode 100644
index 0000000000..cf9152b574
--- /dev/null
+++ b/interface/web/admin/iptables_edit.php
@@ -0,0 +1,58 @@
+<?php
+/*
+Copyright (c) 2011, Andrew "lathama" Latham, Till Brehm, projektfarm Gmbh
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright notice,
+      this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright notice,
+      this list of conditions and the following disclaimer in the documentation
+      and/or other materials provided with the distribution.
+    * Neither the name of ISPConfig nor the names of its contributors
+      may be used to endorse or promote products derived from this software without
+      specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
+INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
+BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
+OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
+EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+*/
+
+
+/******************************************
+* Begin Form configuration
+******************************************/
+
+$tform_def_file = "form/iptables.tform.php";
+
+/******************************************
+* End Form configuration
+******************************************/
+
+require_once('../../lib/config.inc.php');
+require_once('../../lib/app.inc.php');
+
+//* Check permissions for module
+$app->auth->check_module_permissions('admin');
+
+// Loading classes
+$app->uses('tpl,tform,tform_actions');
+$app->load('tform_actions');
+
+class page_action extends tform_actions {
+	
+}
+
+$page = new page_action;
+$page->onLoad();
+
+?>
\ No newline at end of file
diff --git a/interface/web/admin/iptables_list.php b/interface/web/admin/iptables_list.php
new file mode 100644
index 0000000000..71f8887510
--- /dev/null
+++ b/interface/web/admin/iptables_list.php
@@ -0,0 +1,51 @@
+<?php
+/*
+Copyright (c) 2011, Andrew "lathama" Latham, Till Brehm, projektfarm Gmbh
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright notice,
+      this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright notice,
+      this list of conditions and the following disclaimer in the documentation
+      and/or other materials provided with the distribution.
+    * Neither the name of ISPConfig nor the names of its contributors
+      may be used to endorse or promote products derived from this software without
+      specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
+INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
+BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
+OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
+EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+*/
+
+require_once('../../lib/config.inc.php');
+require_once('../../lib/app.inc.php');
+
+/******************************************
+* Begin Form configuration
+******************************************/
+
+$list_def_file = "list/iptables.list.php";
+
+/******************************************
+* End Form configuration
+******************************************/
+
+//* Check permissions for module
+$app->auth->check_module_permissions('admin');
+
+$app->uses('listform_actions');
+
+$app->listform_actions->onLoad();
+
+
+?>
\ No newline at end of file
diff --git a/interface/web/admin/lib/lang/en_iptables.lng b/interface/web/admin/lib/lang/en_iptables.lng
new file mode 100644
index 0000000000..c675592f96
--- /dev/null
+++ b/interface/web/admin/lib/lang/en_iptables.lng
@@ -0,0 +1,15 @@
+<?php
+
+$wb["server_id_txt"] = 'Server';
+$wb["multiport_txt"] = 'Multi Port';
+$wb["singleport_txt"] = 'Single Port';
+$wb["protocol_txt"] = 'Protocol';
+$wb["table_txt"] = 'Table';
+$wb["target_txt"] = 'Target';
+$wb["state_txt"] = 'State';
+$wb["destination_ip_txt"] = 'Destination Address';
+$wb["source_ip_txt"] = 'Source Address';
+$wb["active_txt"] = 'Active';
+$wb["iptables_error_unique"] = 'There is already a firewall record for this server.';
+
+?>
diff --git a/interface/web/admin/lib/lang/en_iptables_list.lng b/interface/web/admin/lib/lang/en_iptables_list.lng
new file mode 100644
index 0000000000..0b9f68697b
--- /dev/null
+++ b/interface/web/admin/lib/lang/en_iptables_list.lng
@@ -0,0 +1,35 @@
+<?php
+/*
+templates/iptables_list.htm:<h2><tmpl_var name="list_head_txt"></h2>
+templates/iptables_list.htm:          <span>{tmpl_var name="add_new_rule_txt"}</span>
+templates/iptables_list.htm:    <fieldset><legend><tmpl_var name="list_head_txt"></legend>
+templates/iptables_list.htm:            <th class="tbl_col_active" scope="col"><tmpl_var name="active_txt"></th>
+templates/iptables_list.htm:            <th class="tbl_col_server_id" scope="col"><tmpl_var name="server_id_txt"></th>
+templates/iptables_list.htm:            <!-- th class="tbl_col_source_ip" scope="col"><tmpl_var name="source_ip_txt"></th>
+templates/iptables_list.htm:            <th class="tbl_col_destination_ip" scope="col"><tmpl_var name="destination_ip_txt"></th -->
+templates/iptables_list.htm:            <th class="tbl_col_port" scope="col"><tmpl_var name="singleport_txt"></th>
+templates/iptables_list.htm:            <th class="tbl_col_port" scope="col"><tmpl_var name="multiport_txt"></th>
+templates/iptables_list.htm:            <th class="tbl_col_protocol" scope="col"><tmpl_var name="protocol_txt"></th>
+templates/iptables_list.htm:                    <th class="tbl_col_table" scope="col"><tmpl_var name="table_txt"></th>
+templates/iptables_list.htm:                <th class="tbl_col_target" scope="col"><tmpl_var name="target_txt"></th>
+templates/iptables_list.htm:                <th class="tbl_col_state" scope="col"><tmpl_var name="state_txt"></th>
+templates/iptables_list.htm:                            <button type="button" class="icons16 icoFilter" name="Filter" id="Filter" value="{tmpl_var name="filter_txt"}" onClick="submitForm('pageForm','admin/iptables_list.php');">
+templates/iptables_list.htm:                            <span>{tmpl_var name="filter_txt"}filter_txt</span></button></div>
+templates/iptables_list.htm:                                    <span>{tmpl_var name='delete_txt'}</span></a>
+*/
+
+$wb["list_head_txt"] = 'IPTables';
+$wb["add_new_rule_txt"] = 'Add IPTables Rule';
+$wb["server_id_txt"] = 'Server';
+$wb["multiport_txt"] = 'Multi Port';
+$wb["singleport_txt"] = 'Single Port';
+$wb["protocol_txt"] = 'Protocol';
+$wb["table_txt"] = 'Table';
+$wb["target_txt"] = 'Target';
+$wb["state_txt"] = 'State';
+$wb["destination_ip_txt"] = 'Destination Address';
+$wb["source_ip_txt"] = 'Source Address';
+$wb["active_txt"] = 'Active';
+$wb["iptables_error_unique"] = 'There is already a firewall record for this server.';
+
+?>
diff --git a/interface/web/admin/lib/module.conf.php b/interface/web/admin/lib/module.conf.php
index 1ec23dea93..c4e1f5a412 100644
--- a/interface/web/admin/lib/module.conf.php
+++ b/interface/web/admin/lib/module.conf.php
@@ -84,8 +84,11 @@ $module['nav'][] = array(	'title'	=> 'System',
 							'items'	=> $items);
 // cleanup
 unset($items);
-
 /*
+$items[] = array( 'title' 	=> 'IPTables',
+				  'target' 	=> 'content',
+				  'link'	=> 'admin/iptables_list.php');
+
 $items[] = array( 'title' 	=> 'Firewall',
 				  'target' 	=> 'content',
 				  'link'	=> 'admin/firewall_list.php',
@@ -99,17 +102,12 @@ $items[] = array( 'title' 	=> 'Packet Filter',
 				  'target' 	=> 'content',
 				  'link'	=> 'admin/firewall_filter_list.php');				  
 
-
 $items[] = array( 'title' 	=> 'Port Forward',
 				  'target' 	=> 'content',
 				  'link'	=> 'admin/firewall_forward_list.php');				  
 
-
-	
-
-
 $module['nav'][] = array(	'title'	=> 'Firewall',
-							'open' 	=> 1,
+							'open' 	=> "1",
 							'items'	=> $items);
 
 
diff --git a/interface/web/admin/list/iptables.list.php b/interface/web/admin/list/iptables.list.php
new file mode 100644
index 0000000000..657f521330
--- /dev/null
+++ b/interface/web/admin/list/iptables.list.php
@@ -0,0 +1,107 @@
+<?php
+
+$liste["name"] 				= "iptables";
+$liste["table"] 			= "iptables";
+$liste["table_idx"]			= "iptables_id";
+$liste["search_prefix"] 	= "search_";
+$liste["records_per_page"] 	= "15";
+$liste["file"]				= "iptables_list.php";
+$liste["edit_file"]			= "iptables_edit.php";
+$liste["delete_file"]		= "iptables_del.php";
+$liste["paging_tpl"]		= "templates/paging.tpl.htm";
+$liste["auth"]				= "yes";
+
+$liste["item"][] = array(	'field'		=> "active",
+							'datatype'	=> "VARCHAR",
+							'formtype'	=> "SELECT",
+							'op'		=> "=",
+							'prefix'	=> "",
+							'suffix'	=> "",
+							'width'		=> "",
+							'value'		=> array("y" => "<div id=\"ir-Yes\" class=\"swap\"><span>Yes</span></div>","n" => "<div class=\"swap\" id=\"ir-No\"><span>No</span></div>"));
+
+$liste["item"][] = array(	'field'		=> "server_id",
+							'datatype'	=> "VARCHAR",
+							'formtype'	=> "SELECT",
+							'op'		=> "like",
+							'prefix'	=> "%",
+							'suffix'	=> "%",
+							'datasource'	=> array ( 	'type'	=> "SQL",
+														'querystring' => "SELECT server_id,server_name FROM server WHERE {AUTHSQL} AND db_server = 1 ORDER BY server_name",
+														'keyfield'=> "server_id",
+														'valuefield'=> "server_name"),
+							'width'		=> "",
+							'value'		=> "");
+
+$liste["item"][] = array(	'field'		=> "singleport",
+							'datatype'	=> "VARCHAR",
+							'formtype'	=> "TEXT",
+							'op'		=> "=",
+							'prefix'	=> "",
+							'suffix'	=> "",
+							'width'		=> "",
+							'value'		=> "");
+
+$liste["item"][] = array(	'field'		=> "multiport",
+							'datatype'	=> "VARCHAR",
+							'formtype'	=> "TEXT",
+							'op'		=> "=",
+							'prefix'	=> "",
+							'suffix'	=> "",
+							'width'		=> "",
+							'value'		=> "");
+
+$liste["item"][] = array(   'field'     => "protocol",
+                            'datatype'  => "VARCHAR",
+                            'formtype'  => "SELECT",
+                            'op'        => "=",
+                            'prefix'    => "",
+                            'suffix'    => "",
+                            'width'     => "",
+                            'value'     => array('none'=>'None','tcp' => "TCP",'udp' => "UDP"));
+
+$liste["item"][] = array(   'field'     => "table",
+                            'datatype'  => "VARCHAR",
+                            'formtype'  => "SELECT",
+                            'op'        => "=",
+                            'prefix'    => "",
+                            'suffix'    => "",
+                            'width'     => "",
+                            'value'     => array('INPUT' => "INPUT",'OUTPUT' => "OUTPUT",'FORWARD' => "FORWARD"));
+
+$liste["item"][] = array(   'field'     => "source_ip",
+                            'datatype'  => "VARCHAR",
+                            'formtype'  => "TEXT",
+                            'op'        => "like",
+                            'prefix'    => "%",
+                            'suffix'    => "%",
+                            'width'     => "16",
+                            'value'     => "");
+
+$liste["item"][] = array(   'field'     => "destination_ip",
+                            'datatype'  => "VARCHAR",
+                            'formtype'  => "TEXT",
+                            'op'        => "like",
+                            'prefix'    => "%",
+                            'suffix'    => "%",
+                            'width'     => "16",
+                            'value'     => "");
+
+$liste["item"][] = array(	'field'		=> "target",
+							'datatype'	=> "VARCHAR",
+							'formtype'	=> "SELECT",
+							'op'		=> "=",
+							'prefix'	=> "",
+							'suffix'	=> "",
+							'width'		=> "",
+                            'value'     => array('ACCEPT' => "ACCEPT",'DROP' => "DROP",'REJECT' => "REJECT",'LOG' => "LOG"));
+
+$liste["item"][] = array(	'field'		=> "state",
+							'datatype'	=> "VARCHAR",
+							'formtype'	=> "TEXT",
+							'op'		=> "=",
+							'prefix'	=> "",
+							'suffix'	=> "",
+							'width'		=> "",
+							'value'		=> "");
+?>
\ No newline at end of file
diff --git a/interface/web/admin/templates/iptables_edit.htm b/interface/web/admin/templates/iptables_edit.htm
new file mode 100644
index 0000000000..66c2e878bb
--- /dev/null
+++ b/interface/web/admin/templates/iptables_edit.htm
@@ -0,0 +1,65 @@
+<h2><tmpl_var name="list_head_txt"></h2>
+<p><tmpl_var name="list_desc_txt"></p>
+<div class="panel panel_iptables">
+ <div class="pnl_formsarea">
+  <fieldset class="inlineLabels">
+   <div class="ctrlHolder">
+    <label for="server_id">{tmpl_var name='server_id_txt'}</label>
+    <select name="server_id" id="server_id" class="selectInput">
+     {tmpl_var name='server_id'}
+    </select>
+   </div>
+   <div class="ctrlHolder">
+    <label for="table">{tmpl_var name='table_txt'}</label>
+    <select name="table" id="table" class="selectInput formLengthLimit">
+     {tmpl_var name='table'}
+    </select>
+   </div>
+   <div class="ctrlHolder">
+    <label for="protocol">{tmpl_var name='protocol_txt'}</label>
+    <select name="protocol" id="protocol" class="selectInput formLengthLimit">
+     {tmpl_var name='protocol'}
+    </select>
+   </div>
+   <div class="ctrlHolder">
+    <label for="singleport">{tmpl_var name='singleport_txt'}</label>
+    <input name="singleport" id="singleport" value="{tmpl_var name='singleport'}" size="10" maxlength="10" type="text" class="textInput formLengthLimit" />
+   </div>
+   <div class="ctrlHolder">
+    <label for="multiport">{tmpl_var name='multiport_txt'}</label>
+    <input name="multiport" id="multiport" value="{tmpl_var name='multiport'}" size="20" maxlength="40" type="text" class="textInput" />
+   </div>
+   <div class="ctrlHolder">
+    <label for="destination_ip">{tmpl_var name='destination_ip_txt'}</label>
+    <input name="destination_ip" id="destination_ip" value="{tmpl_var name='destination_ip'}" size="16" maxlength="20" type="text" class="textInput formLengthIPv4" />
+   </div>
+   <div class="ctrlHolder">
+    <label for="source_ip">{tmpl_var name='source_ip_txt'}</label>
+    <input name="source_ip" id="source_ip" value="{tmpl_var name='source_ip'}" size="16" maxlength="20" type="text" class="textInput formLengthIPv4" />
+   </div>
+   <div class="ctrlHolder">
+    <label for="state">{tmpl_var name='state_txt'}</label>
+    <input name="state" id="state" value="{tmpl_var name='state'}" size="16" maxlength="20" type="text" class="textInput" />
+   </div>
+   <div class="ctrlHolder">
+    <label for="target">{tmpl_var name='target_txt'}</label>
+    <select name="target" id="target" class="selectInput formLengthLimit">
+     {tmpl_var name='target'}
+    </select>
+   </div>
+   <div class="ctrlHolder">
+    <p class="label">{tmpl_var name='active_txt'}</p>
+    <div class="multiField">
+     {tmpl_var name='active'}
+    </div>
+   </div>
+  </fieldset>
+  <input type="hidden" name="id" value="{tmpl_var name='id'}">
+  <div class="buttonHolder buttons">
+   <button class="positive iconstxt icoPositive" type="button" value="{tmpl_var name='btn_save_txt'}" onClick="submitForm('pageForm','admin/iptables_edit.php');">
+    <span>{tmpl_var name='btn_save_txt'}</span></button>
+   <button class="negative iconstxt icoNegative" type="button" value="{tmpl_var name='btn_cancel_txt'}" onClick="loadContent('admin/iptables_list.php');">
+    <span>{tmpl_var name='btn_cancel_txt'}</span></button>
+  </div>
+ </div> 
+</div>
diff --git a/interface/web/admin/templates/iptables_list.htm b/interface/web/admin/templates/iptables_list.htm
new file mode 100644
index 0000000000..12826c60e6
--- /dev/null
+++ b/interface/web/admin/templates/iptables_list.htm
@@ -0,0 +1,72 @@
+<h2><tmpl_var name="list_head_txt"></h2>
+
+<div class="panel panel_list_iptables">
+
+  <div class="pnl_toolsarea">
+    <fieldset><legend>Tools</legend>
+      <div class="buttons">
+        <button class="iconstxt icoAdd" type="button" onClick="loadContent('admin/iptables_edit.php');">
+          <span>{tmpl_var name="add_new_rule_txt"}</span>
+        </button>
+      </div>
+    </fieldset>
+  </div>
+
+  <div class="pnl_listarea">
+    <fieldset><legend><tmpl_var name="list_head_txt"></legend>
+      <table class="list">
+        <thead>
+          <tr>
+            <th class="tbl_col_active" scope="col"><tmpl_var name="active_txt"></th>
+            <th class="tbl_col_server_id" scope="col"><tmpl_var name="server_id_txt"></th>
+			<th class="tbl_col_table" scope="col"><tmpl_var name="table_txt"></th>
+            <th class="tbl_col_protocol" scope="col"><tmpl_var name="protocol_txt"></th>
+            <th class="tbl_col_port" scope="col"><tmpl_var name="singleport_txt"></th>
+            <th class="tbl_col_port" scope="col"><tmpl_var name="multiport_txt"></th>
+		    <th class="tbl_col_state" scope="col"><tmpl_var name="state_txt"></th>
+		    <th class="tbl_col_target" scope="col"><tmpl_var name="target_txt"></th>
+            <th class="tbl_col_buttons" scope="col">&nbsp;</th>
+          </tr>
+          <tr>
+            <td class="tbl_col_active"><select name="search_active" onChange="submitForm('pageForm','admin/iptables_list.php');">{tmpl_var name='search_active'}</select></td>
+            <td class="tbl_col_server_id"><select name="search_server_id" onChange="submitForm('pageForm','admin/iptables_list.php');">{tmpl_var name='search_server_id'}</select></td>
+            <td class="tbl_col_table"></td>
+	        <td class="tbl_col_protocol"><select name="search_protocol" onChange="submitForm('pageForm','admin/iptables_list.php');">{tmpl_var name='search_protocol'}</select></td>
+            <td class="tbl_col_singleport"></td>
+            <td class="tbl_col_multiport"></td>
+            <td class="tbl_col_state"></td>
+            <td class="tbl_col_target"><select name="search_target" onChange="submitForm('pageForm','admin/iptables_list.php');">{tmpl_var name='search_target'}</select></td>
+            <td class="tbl_col_buttons"><div class="buttons">
+				<button type="button" class="icons16 icoFilter" name="Filter" id="Filter" value="{tmpl_var name="filter_txt"}" onClick="submitForm('pageForm','admin/iptables_list.php');">
+				<span>{tmpl_var name="filter_txt"}filter_txt</span></button></div>
+			</td>
+          </tr>
+        </thead>
+        <tbody>
+          <tmpl_loop name="records">
+          <tr class="tbl_row_<tmpl_if name='__EVEN__'}even<tmpl_else>uneven</tmpl_if>">
+            <td class="tbl_col_active"><a href="#" onClick="loadContent('admin/iptables_edit.php?id={tmpl_var name='id'}');">{tmpl_var name="active"}</a></td>
+            <td class="tbl_col_server_id"><a href="#" onClick="loadContent('admin/iptables_edit.php?id={tmpl_var name='id'}');">{tmpl_var name="server_id"}</a></td>
+            <td class="tbl_col_table"><a href="#" onClick="loadContent('admin/iptables_edit.php?id={tmpl_var name='id'}');">{tmpl_var name="table"}</a></td>
+			<td class="tbl_col_protocol"><a href="#" onClick="loadContent('admin/iptables_edit.php?id={tmpl_var name='id'}');">{tmpl_var name="protocol"}</a></td>
+            <td class="tbl_col_singleport"><a href="#" onClick="loadContent('admin/iptables_edit.php?id={tmpl_var name='id'}');">{tmpl_var name="singleport"}</a></td>
+            <td class="tbl_col_multiport"><a href="#" onClick="loadContent('admin/iptables_edit.php?id={tmpl_var name='id'}');">{tmpl_var name="multiport"}</a></td>
+            <td class="tbl_col_state"><a href="#" onClick="loadContent('admin/iptables_edit.php?id={tmpl_var name='id'}');">{tmpl_var name="state"}</a></td>
+            <td class="tbl_col_target"><a href="#" onClick="loadContent('admin/iptables_edit.php?id={tmpl_var name='id'}');">{tmpl_var name="target"}</a></td>
+		    <td class="tbl_col_buttons"><div class="buttons icons16">    
+                <a class="icons16 icoDelete" 
+					href="javascript: del_record('admin/iptables_del.php?id={tmpl_var name='id'}&phpsessid={tmpl_var name='phpsessid'}','{tmpl_var name='delete_confirmation'}');"><span>{tmpl_var name='delete_txt'}</span></a>
+              </div>
+            </td>
+          </tr>
+          </tmpl_loop>
+        </tbody>
+        <tfoot>
+          <tr>
+            <td class="tbl_footer tbl_paging" colspan="9"><tmpl_var name="paging"></td>
+          </tr>
+        </tfoot>
+      </table>
+    </fieldset>
+  </div>
+</div>
-- 
GitLab