Age | Commit message (Collapse) | Author | |
---|---|---|---|
2020-10-01 | nat: T2948: fix validation of IP address range | Christian Poessinger | |
2020-10-01 | configdict: T2372: use config.exists() when probing for interface removal | Christian Poessinger | |
We must use exists() as get_config_dict() will always return {} - even when an empty interface node like +macsec macsec1 { +} exists. | |||
2020-10-01 | macsec: T2023: use proper config path for source-interface on removal | Christian Poessinger | |
The config path is altered in get_interface_dict() to the base of the interface in question, e.g. 'interfaces macsec macsec1' - this must be reflected when calling othe methods of Config(). | |||
2020-10-01 | pppoe-server: T2936: move to get_config_dict() | Christian Poessinger | |
For easier configuration read in (CLI) validation and also template rendering it makes sense to drop the old, single implementation and move to the new, generic get_config_dict() approach. Recurring configuration parts like ip-pool, ipv6-pool and nameservers have also been split our into individual templates which will be included through Jinja2 - leading to a single-source of the template sections, too. | |||
2020-09-30 | wireguard: T2939: bugfix when removing individual peers | Christian Poessinger | |
When individual peers that have been removed got determined they have been added to the config dict as list instead of string - which broke the system plumbing commands as they can not handle a Python list. | |||
2020-09-30 | macsec: T2023: only remove interface when it exists | Christian Poessinger | |
If for whatever reason the macsec interface dropped out of the Kernel - only call .remove() when it still exists to avoid any exceptions at all. | |||
2020-09-29 | Merge pull request #557 from sever-sever/T2933 | Christian Poessinger | |
vrrp: T2933: Add option virtual-address-excluded | |||
2020-09-29 | vrrp: T2933: Add option virtual-address-excluded | sever-sever | |
2020-09-28 | Merge pull request #555 from DmitriyEshenko/cur-1x-pppoe-csid-format | Christian Poessinger | |
pppoe-server: T2919: Add possibility change Called-Station-Id format | |||
2020-09-28 | pppoe-server: T2919: Add possibility change Called-Station-Id format | DmitriyEshenko | |
2020-09-27 | vxlan: geneve: T2930: add CLI node to set MAC address | Christian Poessinger | |
2020-09-26 | Merge pull request #554 from sever-sever/T2918 | Christian Poessinger | |
accel-ppp: T2918: Add accounting interim jitter option | |||
2020-09-26 | macsec: T2023: shift priority to run on vxlan/geneve source-interface | Christian Poessinger | |
2020-09-26 | accel-ppp: T2918: Add accounting interim jitter option | sever-sever | |
2020-09-26 | macsec: vxlan: T2653: bugfix in verify() on lower interface MTU size | Christian Poessinger | |
Introduced in commit 818a75c024e ("ifconfig: T2653: get_mtu() should return int() for easier comparison") where the variable used in the formatted string has not been adjusted. | |||
2020-09-26 | login: migration: T2929: add missing if condition when probing for radius-server | Christian Poessinger | |
2020-09-26 | Merge pull request #553 from sever-sever/T2917_port | Christian Poessinger | |
accel-ppp: T2917: Add Preallocate NAS-port-id | |||
2020-09-26 | accel-ppp: T2917: Add Preallocate NAS-port-id | sever-sever | |
2020-09-26 | Debian: adding vyos-configd made this package architecture specific | Christian Poessinger | |
There is a shim which is compiled by GCC per target architecture. | |||
2020-09-26 | xml: interface-definitions: fix wrong file extension of inlcude files | Christian Poessinger | |
Files which are included by others whouls have the ".xml.i" extension. | |||
2020-09-26 | ifconfig: mtu: T2928: remove bridge mtu check as our bridge interface has no mtu | Christian Poessinger | |
2020-09-26 | ifconfig: mtu: disallow MTU < 1280 bytes when IPv6 is enabled on the interface | Christian Poessinger | |
Using an MTU less then the required 1280 bytes (as per RFC) on an interface where IPv6 is not explicitly disabled by: - set interfaces ethernet eth1 ipv6 address no-default-link-local - not having any other IPv6 address configured Will now trigger a commit error via verify() instead of raising FileNotFoundError! | |||
2020-09-26 | smoketest: platform: check for required virtio/vmxnet drivers | Christian Poessinger | |
2020-09-26 | Merge pull request #551 from kroy-the-rabbit/current | Christian Poessinger | |
T2926: Missing import | |||
2020-09-25 | T2926: Missing import | kroy | |
2020-09-25 | ethernet: T2912: verify() that hardware supports specified MTU value | Christian Poessinger | |
Check the hardware if MTU value is supported at all. | |||
2020-09-25 | ifconfig: T2912: add helper to verify interface min/max supported MTU | Christian Poessinger | |
Currently the MTU size of an interface is only checked when entered via CLI but if the interface supportes the configured MTU at all is not verified at all. New helper functions get_min_mtu(), get_max_mtu() and verify_mtu() have been added to provide a central API for validation. | |||
2020-09-25 | ifconfig: T2653: get_mtu() should return int() for easier comparison | Christian Poessinger | |
2020-09-25 | ifconfig: T2912: add helper to retrieve interface min/max supported MTU | Christian Poessinger | |
>>> from vyos.ifconfig import Interface >>> tmp=Interface('eth0') >>> tmp.get_min_mtu() 60 >>> tmp.get_max_mtu() 9000 | |||
2020-09-25 | syslog: T2899: shift system migration files +1 to allow for crux | John Estabrook | |
2020-09-25 | syslog: T1845: fix indentation level | John Estabrook | |
2020-09-25 | dns: forwarding: T2921: migrate to get_config_dict() | Christian Poessinger | |
2020-09-24 | dhcpv6-pd: verify: T2923: interface is required where the prefix is assigned | Christian Poessinger | |
When configuring DHCPv6-PD it is mandatory to also specify at least one interface where the newly delegated prefix will be used. Without this setting DHCPv6-PD makes no sense at all. | |||
2020-09-24 | smoketest: dns: dynamic: add missing import statement | Christian Poessinger | |
Commit 58ead741 ("smoketest: (re-)use process_named_running() from vyos.util") missed an import statement for process_named_running(). This has been fixed. | |||
2020-09-24 | wireless: T2241: add "wds" CLI option | Christian Poessinger | |
2020-09-24 | smoketest: (re-)use process_named_running() from vyos.util | Christian Poessinger | |
2020-09-24 | smoketest: dns: forwarding: T2921: add initial testcases | Christian Poessinger | |
2020-09-24 | dns: forwarding: T2921: template cleanup | Christian Poessinger | |
2020-09-22 | openvpn: T2906: tls-auth missing key direction | Marcus Hoff | |
2020-09-22 | openvpn: T2907: add 'none' encryption option to not encrypt any data | Marcus Hoff | |
2020-09-22 | Merge pull request #549 from sever-sever/T2915 | Christian Poessinger | |
conf-mode: T2915: Adding lost option proxy-arp-pvlan for vlan | |||
2020-09-22 | conf-mode: T2915: Adding lost option proxy-arp-pvlan for vlan | sever-sever | |
2020-09-22 | smoketest: macsec: T2023: check that source-interface is not used by any ↵ | Christian Poessinger | |
other interface | |||
2020-09-22 | ifconfig: T2653: bond: bridge: ensure member interface is not a source-interface | Christian Poessinger | |
As we already check that a bond/bridge member interface is not a member of any other bridge or bond, the check must be extended. We also need to ensure that the bond member interface is not used as a source-interface to pppoe, macsec, tunnel, pseudo-ethernet, vxlan interfaces. | |||
2020-09-22 | ifconfig: T2653: move is_member() from vyos.vylidate to vyos.configdict | Christian Poessinger | |
2020-09-21 | macsec: T2788: source-interface must not be member of a bridge | Christian Poessinger | |
Add verify() step to ensure the macsec source-interface is not already part of a bridge interface. This should probably also be checked for bond interfaces. | |||
2020-09-21 | bridge: ifconfig: T2653: only delete member interfaces which still exist | Christian Poessinger | |
When removing e.g. a macsec interface and also its associated member interface from the bridge, it will happen that the macsec interface instance is long gone before we reach the code in the bridge interface which will remove it from the bridge itself. When this is the case, we can not call BridgeIf.del_port() as it will throw an exception that the interface does not exist. We now only remove a bridge member if the interface in question is still available in the kernel. | |||
2020-09-21 | wireless: T2887: help when searching hidden SSIDs in station mode | Christian Poessinger | |
2020-09-21 | wireless: T2887: hostapd: add bridge option | Christian Poessinger | |
2020-09-21 | smoketest: kernel: check for mandatory bond/lacp and bridge options | Christian Poessinger | |