summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2018-05-16Merge pull request #8 from jbrodriguez/id/hostnameDaniil Baturin
T574: Add new style scripts and definitions for system host-name
2018-05-16T643: use fullmatch for regex validators so that people don't have to write ↵Daniil Baturin
^...$ all the time.
2018-05-16T643: correct support for regex validators.Daniil Baturin
2018-05-16Merge branch 'current' of github.com:vyos/vyos-1x into currentDaniil Baturin
2018-05-16T642: add value validation to NTP allow-clients option.Daniil Baturin
2018-05-16T642: add validators for common network address checking cases.Daniil Baturin
2018-05-16T643: correct the logic for generating node constraints and add emulation of ↵Daniil Baturin
multiple validation options.
2018-05-15Merge branch 'remove-ssh-allow-root' into currentChristian Poessinger
* remove-ssh-allow-root: T634: Remove 'service ssh allow-root'
2018-05-15T634: Remove 'service ssh allow-root'Christian Poessinger
2018-05-15Merge branch 't632-ssh-multi-nodes' into currentChristian Poessinger
* t632-ssh-multi-nodes: T632: allow multiple algoorithms for: Ciper, KEX, MACs T632: use multi node for SSH allow/deny users and groups
2018-05-15bugfix: DNS domain forward server syntaxChristian Poessinger
When generating a configuration for DNS domain forward to a local server with 'set service dns forwarding domain foo.com server 1.1.1.1' this resulted in # domain ... server ... forward-zones=bar.com = 2.1.1.1;2.1.1.2 forward-zones=foo.com = 1.1.1.1;1.1.1.2 On PowerDNS recursor restart the last line won and it totally forgot about 'bar.com'. This could be seen from the logfiles that only one domain was loaded: Redirecting queries for zone 'foo.com.' to: 1.1.1.1:53, 1.1.1.2:53 The manual at https://doc.powerdns.com/3/recursor/settings/#forward-zones shows that all domains have to be configured on one 'forward-zones=' line. In the above example this has to result in: forward-zones=bar.com=2.1.1.1;2.1.1.2, foo.com=1.1.1.1;1.1.1.2 A subsequent check within the logfiles reveal that it's now working: Redirecting queries for zone 'bar.com.' to: 2.2.2.2:53, 2.2.2.1:53 Redirecting queries for zone 'foo.com.' to: 1.1.1.1:53, 1.1.1.2:53
2018-05-15Merge remote-tracking branch 'upstream/current' into currentChristian Poessinger
* upstream/current: Do not try to decode data read from /sys files in the show version script, it's already an str. Dependencies on file and pystache, for install and show version scripts.. Add dependency on hvinfo, too. T637, T638: add dependencies on tcpdump and bmon. T638: new op mode CLI for the bandwidth monitor commands. T637: new op mode for traffic dumps based on tcpdump. Correct the logic of generating tag nodes for op mode. Add missing vyos.base module Fix cron interval regex to allow single digit values. Fix misplaces ConfigError exception. Some more valueless fixes. Mark nodes in SSH and NTP valueless (related to T602).
2018-05-15bugfix: vyos-config-dns-forwarding.py: adding name-server into dictionaryChristian Poessinger
2018-05-15bugfix: remove whitespaces in generated 'powerdns/recursor.conf'Christian Poessinger
2018-05-15Do not try to decode data read from /sys files in the show version script,Daniil Baturin
it's already an str.
2018-05-15Dependencies on file and pystache, for install and show version scripts..Daniil Baturin
2018-05-15Add dependency on hvinfo, too.Daniil Baturin
2018-05-15T637, T638: add dependencies on tcpdump and bmon.Daniil Baturin
2018-05-15T638: new op mode CLI for the bandwidth monitor commands.Daniil Baturin
2018-05-15T637: new op mode for traffic dumps based on tcpdump.Daniil Baturin
2018-05-15Correct the logic of generating tag nodes for op mode.Daniil Baturin
Unlike conf mode tag nodes, op mode "pseudo-tag nodes" have the real node.def inside the node.tag dir rather than at the top level. The required node.def at the top level is populated with the help string from the real one. A side effect is that commands that take arguments now must have their own words, e.g. "run show arp" and "run show arp eth0" is impossible and has to be "run show arp" and "run show arp interface eth0", which is probably a good thing.
2018-05-14Merge pull request #11 from higebu/add-missing-base-moduleChristian Poessinger
Add missing vyos.base module
2018-05-15Add missing vyos.base moduleYuya Kusakabe
2018-05-14Fix cron interval regex to allow single digit values.Daniil Baturin
2018-05-14Fix misplaces ConfigError exception.Daniil Baturin
2018-05-14Some more valueless fixes.Daniil Baturin
2018-05-14Mark nodes in SSH and NTP valueless (related to T602).Daniil Baturin
2018-05-14T632: allow multiple algoorithms for: Ciper, KEX, MACsChristian Poessinger
2018-05-14T632: use multi node for SSH allow/deny users and groupsChristian Poessinger
2018-05-14T564: initial implementation of the DNS forwarding op mode commands.Daniil Baturin
2018-05-14Move the show version command to the vyos-1x package and refactor it a bit.Daniil Baturin
2018-05-14T633: build integration and minor fixes in the op mode command generator.Daniil Baturin
2018-05-14T602: replace the now-gone type attribute with proper use of constraints in ↵Daniil Baturin
existing interface definitions.
2018-05-14Add some ipaddrcheck-based IP validators.Daniil Baturin
2018-05-14T602: remove support for the type element and correct the logic for setting ↵Daniil Baturin
the type in generated command templates.
2018-05-13T623: refactor NTP script and switch to jinja2Christian Poessinger
2018-05-13Merge branch 'ssh-rewrite' into currentChristian Poessinger
* ssh-rewrite: T631: small bugfix in config parsind for deny-users T631: improve help for access-control T631: refactor SSH script and switch to jinja2 T631: first full generated config file with XML and Python T631: use completionHelp for SSH rather then valueHelp T631: Rewrite SSH configuration as XML interface definition
2018-05-13T631: small bugfix in config parsind for deny-usersChristian Poessinger
2018-05-13T631: improve help for access-controlChristian Poessinger
2018-05-13T631: refactor SSH script and switch to jinja2Christian Poessinger
2018-05-12T560: bugfix access to NoneType objectChristian Poessinger
Commit f1bbc20716 ("Add jinja2 and ipaddrcheck to dependencies.") introduced access to a NoneType object when the service was removed. This happened after: $ delete service dns forwarding $ commit File "/opt/vyatta/sbin/vyos-config-dns-forwarding.py", line 201, in <module> verify(c) File "/opt/vyatta/sbin/vyos-config-dns-forwarding.py", line 164, in verify if not dns['interfaces']: TypeError: 'NoneType' object is not subscriptable
2018-05-12vyos-config-dns-forwarding.py remote obsolete 'import time'Christian Poessinger
2018-05-12T631: first full generated config file with XML and PythonChristian Poessinger
2018-05-12T631: use completionHelp for SSH rather then valueHelpChristian Poessinger
SSH is already probed for some possible values. ALso use completionHelp for available ciphers. In addition drop 'perl' from helper script in favor of 'tr'.
2018-05-12T631: Rewrite SSH configuration as XML interface definitionChristian Poessinger
2018-05-12Add jinja2 and ipaddrcheck to dependencies.Daniil Baturin
2018-05-11T560: refactor the pdns script and switch to jinja2.Daniil Baturin
2018-05-07Merge branch 't623-ntp-rewrite' into currentChristian Poessinger
* t623-ntp-rewrite: Switch to DNS hostnames for NTP servers T623: Rewrite NTP subsystem in new XML style interface definition
2018-05-07Switch to DNS hostnames for NTP serversChristian Poessinger
2018-05-06T623: Rewrite NTP subsystem in new XML style interface definitionChristian Poessinger