opnsense · ZephireNZ · Jan 9, 2024 · Jan 9, 2024 · Jan 9, 2024 · Jan 9, 2024
diff --git a/net/udpbroadcastrelay/Makefile b/net/udpbroadcastrelay/Makefile
@@ -1,6 +1,5 @@
 PLUGIN_NAME=		udpbroadcastrelay
-PLUGIN_VERSION=		1.0
-PLUGIN_REVISION=	5
+PLUGIN_VERSION=		1.1
 PLUGIN_COMMENT=		Control udpbroadcastrelay processes
 PLUGIN_DEPENDS=		udpbroadcastrelay
 PLUGIN_MAINTAINER=	[email protected]

diff --git a/...astrelay/src/opnsense/mvc/app/controllers/OPNsense/UDPBroadcastRelay/forms/dialogEdit.xml b/...astrelay/src/opnsense/mvc/app/controllers/OPNsense/UDPBroadcastRelay/forms/dialogEdit.xml
@@ -43,6 +43,31 @@
       <type>checkbox</type>
       <help><![CDATA[Use the ID to set the TTL Value of the packet (Original method) rather than DSCP, default is not ticked]]></help>
    </field>
+   <field>
+      <id>udpbroadcastrelay.allowcidr</id>
+      <label>Allowed CIDRs</label>
+      <style>tokenize</style>
+      <type>select_multiple</type>
+      <allownew>true</allownew>
+      <help><![CDATA[Only allow packets from a range of IP source addresses]]></help>
+      <advanced>true</advanced>
+   </field>
+   <field>
+      <id>udpbroadcastrelay.blockcidr</id>
+      <label>Blocked CIDRs</label>
+      <style>tokenize</style>
+      <type>select_multiple</type>
+      <allownew>true</allownew>
+      <help><![CDATA[Block packets from a range of IP source addresses<br/>Where overlapping CIDRs are specified with the Block/Allow CIDRs, the most specific match (longest prefix) will take effect]]></help>
+      <advanced>true</advanced>
+   </field>
+   <field>
+      <id>udpbroadcastrelay.msearch</id>
+      <label>M-SEARCH processing</label>
+      <type>text</type>
+      <help><![CDATA[A space-separated list of M-SEARCH processing actions, use a comma before search terms for example <code>block,search-term</code><br/>Please refer to the <a href="https://github.com/marjohn56/udpbroadcastrelay#usage">UDP Broadcast Relay documentation</a> for more information]]></help>
+      <advanced>true</advanced>
+   </field>
    <field>
       <id>udpbroadcastrelay.description</id>
       <label>Description</label>

diff --git a/...oadcastrelay/src/opnsense/mvc/app/models/OPNsense/UDPBroadcastRelay/UDPBroadcastRelay.xml b/...oadcastrelay/src/opnsense/mvc/app/models/OPNsense/UDPBroadcastRelay/UDPBroadcastRelay.xml
@@ -50,6 +50,32 @@
             <default>0</default>
             <Required>Y</Required>
          </RevertTTL>
+         <allowcidr type="NetworkField">
+            <default></default>
+            <Required>N</Required>
+            <FieldSeparator>,</FieldSeparator>
+            <AsList>Y</AsList>
+            <NetMaskRequired>N</NetMaskRequired>
+            <NetMaskAllowed>Y</NetMaskAllowed>
+            <AddressFamily>ipv4</AddressFamily>
+            <WildcardEnabled>N</WildcardEnabled>
+         </allowcidr>
+         <blockcidr type="NetworkField">
+            <default></default>
+            <Required>N</Required>
+            <FieldSeparator>,</FieldSeparator>
+            <AsList>Y</AsList>
+            <NetMaskRequired>N</NetMaskRequired>
+            <NetMaskAllowed>Y</NetMaskAllowed>
+            <AddressFamily>ipv4</AddressFamily>
+            <WildcardEnabled>N</WildcardEnabled>
+         </blockcidr>
+         <msearch type="TextField">
+            <default></default>
+            <Required>N</Required>
+            <mask>/^(?:(?:block|fwd|proxy|dial)(?:,\S+|) )*(?:block|fwd|proxy|dial)(?:,\S+|)$/</mask>
+            <ValidationMessage>Must be a space separated list of actions, with optional search term.</ValidationMessage>
+         </msearch>
          <description type="TextField">
             <Required>N</Required>
             <mask>/^([\t\n\v\f\r 0-9a-zA-Z.,_\x{00A0}-\x{FFFF}]){1,255}$/u</mask>

diff --git a/net/udpbroadcastrelay/src/opnsense/service/templates/OPNsense/UDPBroadcastRelay/rc.conf.d b/net/udpbroadcastrelay/src/opnsense/service/templates/OPNsense/UDPBroadcastRelay/rc.conf.d
@@ -24,6 +24,21 @@ osudpbroadcastrelay_enable="YES"
 {%    if osudpbroadcastrelay.sourceaddress %}
 {%     do Parameters.append("-s " ~ osudpbroadcastrelay.sourceaddress) %}
 {%    endif %}
+{%    if osudpbroadcastrelay.allowcidr %}
+{%    for allowcidr in osudpbroadcastrelay.allowcidr %}
+{%     do Parameters.append("--allowcidr " ~ allowcidr) %}
+{%    endfor %}
+{%    endif %}
+{%    if osudpbroadcastrelay.blockcidr %}
+{%    for blockcidr in osudpbroadcastrelay.blockcidr %}
+{%     do Parameters.append("--allowcidr " ~ blockcidr) %}
+{%    endfor %}
+{%    endif %}
+{%    if osudpbroadcastrelay.msearch %}
+{%    for msearch in osudpbroadcastrelay.msearch.split(' ') %}
+{%     do Parameters.append("--msearch " ~ (msearch | shlex_quote)) %}
+{%    endfor %}
+{%    endif %}
 {%    if osudpbroadcastrelay.RevertTTL|default('0') == '1' %}
 {%     do Parameters.append("-t ") %}
 {%    endif %}