summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2023-02-13Merge pull request #1813 from sever-sever/T4971-eqChristian Breunig
T4971: PPPoE server add named ip pool and attr Framed-Pool
2023-02-13Merge pull request #1812 from sever-sever/T1993-eqDaniil Baturin
T1993: PPPoE-server add section shaper and fwmark option
2023-02-13Merge pull request #1815 from c-po/equuleusDaniil Baturin
T5001: Replace links to the phabricator site (equuleus)
2023-02-12T5001: Replace links to the phabricator siteChristian Breunig
Replace links to the phabricator site from https://phabricator.vyos.net to https://vyos.dev (cherry-picked form commit bd9416a6aa9d5d0a746dc2cebc8d0330fd27d1a2)
2023-02-12T4971: PPPoE server add named ip pool and attr Framed-PoolViacheslav Hletenko
Add a new feature to allow to use named pools Also it can be used with RADIUS attribute 'Framed-Pool' set service pppoe-server client-ip-pool name POOL1 gateway-address '192.0.2.1' set service pppoe-server client-ip-pool name POOL1 subnet '192.0.2.0/24'
2023-02-12T4971: Add accel-ppp include client-ip-pool-nameViacheslav Hletenko
Add accel-ppp include client-ip-pool-name.xml.i Can be used in other accep-ppp CLI as "include"
2023-02-12T4999: Backport vyos util dict_search_recursiveViacheslav Hletenko
Backport "dict_search_recursive" from vyos.util 1.4 to 1.3 data = { 'interfaces': {'dummy': {'dum0': {'address': ['192.0.2.17/29']}}, 'ethernet': {'eth0': {'address': ['2001:db8::1/64', '192.0.2.1/29'], 'description': 'Test123', 'duplex': 'auto', 'hw_id': '00:00:00:00:00:01', 'speed': 'auto'}, 'eth1': {'address': ['192.0.2.9/29'], 'description': 'Test456', 'duplex': 'auto', 'hw_id': '00:00:00:00:00:02', 'speed': 'auto'}}} } dict_search_recursive(data, 'hw_id') will yield both '00:00:00:00:00:01' and '00:00:00:00:00:02' as generator object.
2023-02-12T1993: PPPoE-server add section shaper and fwmark optionViacheslav Hletenko
Extended PPPoE-server rate-limiter to avoid shaping marked resources Often this feature needs for ISP, which provides access to some IX or its resources. set service pppoe-server shaper fwmark '223'
2023-02-11Merge pull request #1806 from sever-sever/T2603-eqDaniil Baturin
T2603: PPPoE-server change default min-mtu value 1280 for Equuleus
2023-02-08T2603: PPPoE-server change default min-mtu value 1280 for EquuleusViacheslav Hletenko
Minimum acceptable MTU. If client will try to negotiate less then specified MTU then it will be NAKed or disconnected if rejects greater MTU. Change 'min-mtu' from 1492 to 1280 for 1.3.3
2023-02-05Merge pull request #1801 from c-po/fix-tftp-smoketestChristian Breunig
smoketest: tftp: T4012: add busy waiting loop when validating service availability
2023-02-05smoketest: tftp: T4012: add busy waiting loop when validating service ↵Christian Breunig
availability TFTP daemon is started as "fire and forget" and systemctl can return (thus commit will return) but the daemon itself is not yet running. This adds a loop checking if the service runs and will fail after 10 seconds.
2023-02-05Merge pull request #1798 from c-po/t4975-equuleusChristian Breunig
T4975: always sync() filesystem after commit (equuleus)
2023-02-04Revert "login: T4975: Fixed broken CLI commands"Christian Breunig
This reverts commit 7b36c363cd5b0168bd83c399f50a0a360ba3ee58. A general solution is implemented in Commit ae9dde04 ("T4975: always sync() filesystem after commit").
2023-02-04T4975: always sync() filesystem after commitChristian Breunig
(cherry picked from commit 29a44a73c638cb22839aa32986de367231b6efe9)
2023-02-03Merge pull request #1796 from zdc/T4975-equuleusDaniil Baturin
login: T4975: Fixed broken CLI commands
2023-02-02login: T4975: Fixed broken CLI commandszsdc
User profile files are not saved to disk after configuration is fully applied. Because of this, after a fast system reset, profile files can be empty, and CLI is broken. This fix adds a `sync()` call after the user's configuration, which should protect from data loss and fix the problem with profiles.
2023-01-26Merge pull request #1781 from c-po/T4947-container-fixesChristian Breunig
T4947: container: fix existing issues in equuleus after backport from 1.4
2023-01-25op-mode: container: T4947: there is no standardised vyos.opmode in equuleusChristian Breunig
2023-01-25container: xml: T4947: add missing default value in CLI helpChristian Breunig
VyOS 1.3 does not support automatic generation of the (default: <>) string from XML defaultValue nodes. Specify help string manually.
2023-01-25container: T4947: backport missing port-range validatorChristian Breunig
2023-01-25Merge pull request #1775 from c-po/t4948-backportChristian Breunig
pppoe: T4948: add CLI option to allow definition of host-uniq flag (equuleus backport)
2023-01-24Merge pull request #1773 from c-po/equuleusChristian Breunig
container: T4947: support mounting container volumes as ro or rw (equuleus backport)
2023-01-24Merge pull request #1776 from c-po/t4949-backportsChristian Breunig
T4949: Backport "monitor log" and "show log" op-mode definitions from current to equuleus
2023-01-23op-mode: add "show|monitor log pppoe-server" commandChristian Breunig
(cherry picked from commit 1bd69a81dc32fdaa62be27e4f5ae3cfe333f2a26)
2023-01-23op-mode: T4949: add "show|monitor log ipoe-server" commandChristian Breunig
(cherry picked from commit 68a8cd2612cb1b00d381059747de8107f38e8c96)
2023-01-23op-mode: T4949: backport "monitor log" commands from currentChristian Breunig
2023-01-23pppoe: T4948: add CLI option to allow definition of host-uniq flagChristian Breunig
Some ISPs seem to use the host-uniq flag to authenticate client equipment. Add CLI option in VyOS to allow specification of the host-uniq flag. set interfaces pppoe pppoeN host-uniq <value> (cherry-picked from commit 38bab79324087df5a9057c23b85a0a784c09540a)
2023-01-22Merge pull request #1774 from c-po/t4875-backportChristian Breunig
validators: T4875: use file-path to replace validator 'interface-name' (backport)
2023-01-22validators: T4798: replace python file-exists validator with file-pathChristian Breunig
(cherry-picked from commit 046bb9ccd56ac5e97c638bb4a9ca856d3d36026a)
2023-01-21validators: T4875: use file-path to replace validator 'interface-name'Christian Breunig
(cherry picked from commit f0bc6c62016d285f0645c4b3ba8b1451c40c637f)
2023-01-21container: T4947: support mounting container volumes as ro or rwChristian Breunig
Whenever a container is used and a folder is mounted, this happenes as read-write which is the default in Docker/Podman - so is the default in VyOS. A new option is added "set container name foo volume mode <ro|rw>" to specify explicitly if rw (default) or ro should be used for this mounted folder. (cherry picked from commit 275ea7303cfdb79c042da1b710622aee17a488a8)
2023-01-20Merge pull request #1772 from c-po/equuleusChristian Breunig
Smoketest fixes backport for equuleus
2023-01-20smoketest: tftp: do not add/remove interfaces for each testrun, use setUpClass()Christian Breunig
(cherry picked from commit 5cd2cd89b295c728f21c418c3fa081560a00eefc)
2023-01-20dhcp: T4832: fix TypeError in smoketestChristian Poessinger
Commit cca7ec3e ("T4832: dhcp: Add IPv6-only dhcp option support (RFC 8925)") extended the smoketests but used int over str when calilng the CLI wrapper. This led to: TypeError: sequence item 7: expected str instance, int found (cherry picked from commit a741a9297f02f938653aeaa1af3c4a57364e9215)
2023-01-17Merge pull request #1762 from sever-sever/T4906-eqViacheslav Hletenko
T4906: Fix show vpn ipsec connections data
2023-01-17T4906: Fix show vpn ipsec connections dataViacheslav Hletenko
We get incorrect data when shows connections As we get list of all connections we should compare the connection name with entries in list and set correct data if they match
2023-01-16Merge pull request #1759 from sever-sever/T4575Christian Breunig
vyos.util: T4575: Add new wrapper "rc_cmd"
2023-01-16vyos.util: T4575: Add new wrapper "rc_cmd"Viacheslav Hletenko
It is useful to have both a return code and output of the command Add a new wrapper "rc_cmd" that returns both % rc_cmd('uname') (0, 'Linux') % rc_cmd('ip link show dev fake') (1, 'Device "fake" does not exist.') (cherry picked from commit 14418b6d80ef4652a44d9280baf369c8e3c429fd)
2023-01-15Merge pull request #1670 from vfreex/dhcp-v6-only-option-1.3Christian Breunig
[1.3] T4832: dhcp: Add dhcp option to signal IPv6-only support (RFC 8925)
2023-01-12Merge pull request #1750 from roedie/1.3-T4918Christian Breunig
Backport: T4918: op_mode interfaces: Fix show int
2023-01-11Backport: T4918: op_mode interfaces: Fix show intSander Klein
`show interfaces ethernet eth0` and `show interface bonding eth0` produces the same output. While this is not a big problem it does make usage a bit odd sometimes. This commit adds the --intf_type option to all instances of interfaces.py to make output consistent.
2023-01-11Merge pull request #1749 from aapostoliuk/T4927-equuleusDaniil Baturin
webproxy: T4927: Changed restart to reload-or-restart in commit
2023-01-11webproxy: T4927: Changed restart to reload-or-restart in commitaapostoliuk
Changed restart to reload-or-restart in the commit. It allows to reload the config and not restart webproxy service during the commit. Backported from 1.4
2023-01-08Merge pull request #1743 from c-po/t2651-ssh-clientChristian Breunig
T4922: T4922: ssh-client backports for equuleus
2023-01-08ssh: T4922: extend verify() when both source-address and source-interface is ↵Christian Poessinger
used We need to ensure that source-address is assigned on source-interface before applying the configuration, else SSH client will have a hard time talking to someone. (cherry picked from commit d1ef90e1eb51334b99ad716969e17c7f257e1a39)
2023-01-08ssh: T4922: add source-interface support ssh-clientChristian Poessinger
(cherry picked from commit 87cc636bd2baf576a2a5ece7a4f8318eb4f69c2e)
2023-01-08ssh: T2651: use Debian style include directve for ssh_config.dChristian Poessinger
Commit 846e306700a ("ssh: T2651: add cli options for source address") added support for a basic SSH client option, but it grabbed the entire /etc/ssh/ssh_config file without the ability to make custom user adjustments via the /etc/ssh/ssh_config.d/ folder. This commit places the VyOS SSH options under /etc/ssh/ssh_config.d/ leaving the common override system alive. (cherry picked from commit 7763de6c4b93d3372ab3f4572d9fa6b7536102b3)
2023-01-02Merge pull request #1734 from c-po/equuleusViacheslav Hletenko
smoketest: container: T578: adjust to podman 3.0.1 JSON output
2023-01-02smoketest: container: T578: adjust to podman 3.0.1 JSON outputChristian Poessinger
The podman version used in VyOS 1.3 differs from the one used in VyOS 1.4 as it is currently not possible to build podman 4.2 for Debian Buster. Due to this restriction we need to adjust the handling of the JSON output when working with container networks.