Age | Commit message (Collapse) | Author |
|
vrf: T4527: Prevent to create VRF with reserved names
|
|
VRF names: "add, all, broadcast, default, delete, dev, get, inet,
mtu, link, type, vrf" are reserved and cannot be used for vrf name
(cherry picked from commit 52342f389af2da2995b858d026e6fbcad5c8bfaa)
|
|
webproxy: T4468: Fix regex for squidguard source-group 1.3
|
|
accel-ppp: T4373: T4507: Add options multiplier for shaper
|
|
ntp: T4456: support listening on specified interface (equuleus)
|
|
dns: T4509: Add dns64-prefix option (equuleus)
|
|
(cherry picked from commit ee603b3a0f9f3add72c1e5ac2277c013d40cf5a4)
|
|
(cherry picked from commit 82945a7ff0899295776b5a4bc009fe6513bcdbda)
|
|
(cherry picked from commit 8e2f99db12ad97cfd371fdaa6466e2d443890645)
|
|
rfc6147: DNS Extensions for Network Address Translation
from IPv6 Clients to IPv4 Servers
set service dns forwarding dns64-prefix 2001:db8:aabb::/96
(cherry picked from commit 2bdf4798570222b57af2de2f0b443529abdc3feb)
|
|
webproxy: T4513: Fixed path to webroxy log files
|
|
Fixed path to webproxy log files in webproxy monitor commands
|
|
Add rate-limit options: attribute, muptiplier and vendor
set service ipoe-server auth radius rate-limit attribute 'Mikrotik-Rate-Limit'
set service ipoe-server auth radius rate-limit enable
set service ipoe-server auth radius rate-limit multiplier '0.001'
set service ipoe-server auth radius rate-limit vendor 'Miktorik'
|
|
Multiplier option is required by some vendors for correct shaping
For RADIUS based rate-limits
edit service pppoe-server
set authentication radius rate-limit multiplier '0.001'
|
|
hosts: T2683: Allow multiple entries for static-host-mapping (equuleus)
|
|
T4313: handle exceptions in the "generate public-key-command" script
|
|
This fixes `hostfile-update` in the dhcp-server
(cherry picked from commit 39d6ca61c50f70171b2f7bcccbba2c70d102cb7f)
|
|
(cherry picked from commit b1db3de80b8b5f4e2dcbc6d687d342986345c4b2)
|
|
It makes no sense to test against a VRF that might not exist at all.
(cherry picked from commit 171b224c1cf1303a608725ec74b545902daa243e)
|
|
When clients only use DHCP for interface addressing we can not bind NTPd to
an address - as it will fail if the address changes. This commit adds support
to bind ntpd to a given interface in addition to a given address.
set system ntp interface <name>
(cherry picked from commit 6732df1edd632b56d3d02970939f51d05d4262e9)
|
|
op-mode: T1375: Allow to clear dhcp-server lease
|
|
mpls: T4489: Set priority 400 for MPLS after tunnel
|
|
(cherry picked from commit c37829f1e902b84a5bc3bc5618ee97ae1ba0dd86)
|
|
Fix wrong behavior with priority by using tunnel interfaces
MPLS configuration must be applied after tunnel interfaces
as we use an addition sysctl option 'net.mpls.conf.tun0.input = 1'
which doesn't exist without a tunnel interface
Change priority:
299 protocols/mpls
380 interfaces/tunnel
To:
380 interfaces/tunnel
400 protocols/mpls
|
|
Allow to reset dhcp-leases per ip
Parse file '/config/dhcpd.leases' find match section 'lease x.x.x.x {}'
And remove this section
clear dhcp-server lease 192.0.2.21
(cherry picked from commit a83eecfeee1f925c914a46623dd35f96b48389f8)
|
|
http-api: T4459: Fix to set VRF in http(s) service
|
|
(cherry picked from commit fbd3bef2248de5785f96d2e7803a6811eee78710)
|
|
ipoe: T2580: Add pools and gateway options
|
|
dhcp6: pd: T4447: bugfix sla-id limits (must be greater then 128 (equuleus)
|
|
The http service doesn't use VRF info in conf mode.
Even if users set any VRF, the info isn't propagated to the process.
This commit set VRF parameter in http service.
|
|
smoketest: T4387: Add test for load-balancing wan
|
|
Create 2 network namespaces which allow us to emulate 2 ISP
with different static addresses
Check routing table 201 for the first ISP and table 202 for the
second ISP. Each table must contain default route
|
|
The sla-id parameter of DHCPv6 prefix delegations is limited to 128. While this
is enough to use all /64 subnets of a /57 prefix, with a /56 prefix that is no
longer sufficient.
Increased sla-id length tp 65535 so one could delegate an entire /48.
(cherry picked from commit 283276d457a09c100416c0d4ffccd4f94ccd2540)
|
|
http-api: T4442: Add action reset
|
|
Add action 'reset' (op-mode) for HTTP-API
http://localhost/reset
curl --unix-socket /run/api.sock -X POST -Fkey=mykey \
-Fdata='{"op": "reset", "path": ["ip", "bgp", "192.0.2.14"]}' \
http://localhost/reset
|
|
T4441: wwan: connection not possible after a change added after 1.3.1-S1 release - equuleus
|
|
|
|
Add new feature to allow to use named pools
Can be used also with Radius attribute 'Framed-Pool'
set service ipoe-server client-ip-pool name POOL1 gateway-address '192.0.2.1'
set service ipoe-server client-ip-pool name POOL1 subnet '192.0.2.0/24'
|
|
monitoring: T4315: Add telegraf output plugin prometheus-client
|
|
ldp: T4082: Add restart ldp command for op-mode
|
|
(cherry picked from commit 0ef775ab6563af8c20d72d3e30751d50946ab704)
|
|
Add output Plugin "prometheus-client" for telegraf
set service monitoring telegraf prometheus-client xxx
|
|
Add QoS smoketest config for equuleus
|
|
T4402: fix ifconfig-pool generation logic
|
|
T4405: Fix administrative distance of DHCP routes
|
|
T4361: equuleus backport vyos.config fix
|
|
Extend bonding smoketest
Add descriptions to bonding members
We encountered a situation where adding any configuration for
member of bonding interface excludes the interface from bonding
(cherry picked from commit ae815d1b11a4c17df6aea45e3fc87772a0e40e6a)
|
|
(cherry-picked from commit 63fee7ab0c082f3c614bb140de1e7482399dff2b)
|
|
- Default dhclient script only uses value of `$IF_MERIC` envvar for default route recived via `router` option.
- This variable has no effect on rotes received via `rfc3442-classless-static-routes` option
- Considering that Vyos overrrides `ip` command originating from `dhclient` this can be easily fixed in `iptovtysh()` function by using the `$IF_METRIC` envvar directly in the dhclient hook.
|
|
T4363: salt-minion: default mine_interval option is not set
|