4 files changed, 12 insertions, 8 deletions

diff --git a/data/configd-include.json b/data/configd-include.json
index b77d48001..2c3c389d6 100644
--- a/data/configd-include.json
+++ b/data/configd-include.json
@@ -1,9 +1,12 @@
 [
+"arp.py",
 "bcast_relay.py",
 "conntrack.py",
 "conntrack_sync.py",
 "dhcp_relay.py",
+"dhcp_server.py",
 "dhcpv6_relay.py",
+"dhcpv6_server.py",
 "dns_forwarding.py",
 "dynamic_dns.py",
 "flow_accounting_conf.py",
@@ -24,6 +27,7 @@
 "interfaces-pppoe.py",
 "interfaces-pseudo-ethernet.py",
 "interfaces-tunnel.py",
+"interfaces-vti.py",
 "interfaces-vxlan.py",
 "interfaces-wireguard.py",
 "interfaces-wireless.py",
diff --git a/data/templates/dhcp-server/dhcpd.conf.j2 b/data/templates/dhcp-server/dhcpd.conf.j2
index 4eb472951..4c2da0aa5 100644
--- a/data/templates/dhcp-server/dhcpd.conf.j2
+++ b/data/templates/dhcp-server/dhcpd.conf.j2
@@ -23,7 +23,7 @@ option rfc3442-static-route code 121 = array of integer 8;
 option windows-static-route code 249 = array of integer 8;
 option wpad-url code 252 = text;
 
-# Vendor specific options - Ubiquity Networks
+# Vendor specific options - Ubiquiti Networks
 option space ubnt;
 option ubnt.unifi-controller code 1 = ip-address;
 class "ubnt" {
@@ -203,8 +203,8 @@ shared-network {{ network }} {
         }
 {%                     endfor %}
 {%                 endif %}
-{%                 if subnet_config.vendor_option.ubiquity.unifi_controller is vyos_defined %}
-        option ubnt.unifi-controller {{ subnet_config.vendor_option.ubiquity.unifi_controller }};
+{%                 if subnet_config.vendor_option.ubiquiti.unifi_controller is vyos_defined %}
+        option ubnt.unifi-controller {{ subnet_config.vendor_option.ubiquiti.unifi_controller }};
 {%                 endif %}
 {%                 if subnet_config.range is vyos_defined %}
 {#           pool configuration can only be used if there follows a range option #}
diff --git a/data/templates/firewall/nftables-nat.tmpl b/data/templates/firewall/nftables-nat.tmpl
index 7a925b264..63aa48c77 100644
--- a/data/templates/firewall/nftables-nat.tmpl
+++ b/data/templates/firewall/nftables-nat.tmpl
@@ -6,14 +6,14 @@
 {%   set src_addr  = 'ip saddr ' ~ config.source.address.replace('!','!= ') if config.source.address is vyos_defined %}
 {%   set dst_addr  = 'ip daddr ' ~ config.destination.address.replace('!','!= ') if config.destination.address is vyos_defined %}
 {#   negated port groups need special treatment, move != in front of { } group #}
-{%   if config.source.port is vyos_defined and config.source.port.startswith('!=') %}
-{%     set src_port  = 'sport != { ' ~ config.source.port.replace('!=','') ~ ' }' %}
+{%   if config.source.port is vyos_defined and config.source.port.startswith('!') %}
+{%     set src_port  = 'sport != { ' ~ config.source.port.replace('!','') ~ ' }' %}
 {%   else %}
 {%     set src_port  = 'sport { ' ~ config.source.port ~ ' }' if config.source.port is vyos_defined %}
 {%   endif %}
 {#   negated port groups need special treatment, move != in front of { } group #}
-{%   if config.destination.port is vyos_defined and config.destination.port.startswith('!=') %}
-{%     set dst_port  = 'dport != { ' ~ config.destination.port.replace('!=','') ~ ' }' %}
+{%   if config.destination.port is vyos_defined and config.destination.port.startswith('!') %}
+{%     set dst_port  = 'dport != { ' ~ config.destination.port.replace('!','') ~ ' }' %}
 {%   else %}
 {%     set dst_port  = 'dport { ' ~ config.destination.port ~ ' }' if config.destination.port is vyos_defined %}
 {%   endif %}
diff --git a/data/templates/ipsec/swanctl/peer.tmpl b/data/templates/ipsec/swanctl/peer.tmpl
index b21dce9f0..61af85ed4 100644
--- a/data/templates/ipsec/swanctl/peer.tmpl
+++ b/data/templates/ipsec/swanctl/peer.tmpl
@@ -152,7 +152,7 @@
 {%       endif %}
             }
 {%       if tunnel_conf.passthrough is vyos_defined %}
-            peer_{{ name }}_tunnel_{{ tunnel_id }}_passthough {
+            peer_{{ name }}_tunnel_{{ tunnel_id }}_passthrough {
                 local_ts = {{ tunnel_conf.passthrough | join(",") }}
                 remote_ts = {{ tunnel_conf.passthrough | join(",") }}
                 start_action = trap