summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2018-11-08T974: bugfix dns forwarder not listening on IPv6 addressesChristian Poessinger
By default PowerDNS only allows 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16 for incoming DNS queries - we changed this to 0.0.0.0/0 to be reachable by everyone. This only covered the IPv4 address space and any IPv6 related query was not handled by the server.
2018-11-07Merge branch 'igmproxy' into currentChristian Poessinger
* igmproxy: T959: XML/Python rewrite of "protocol igmp-proxy" and op-mode commands show-raid.xml: fixup indention Add missing VyOS copyright notices
2018-11-05T965: Fix Wireguard configuration inconsistencieshagbard
- pubkey updates now work - removing peers or interfaces work, was related tothe fact that tag nodes are called multiple times
2018-11-05T966: Traceback when deleting wireguard interfacehagbard
2018-11-05T288: add a script for normalizing IP(v6) addresses so that they can be ↵Daniil Baturin
safely passed to iproute2.
2018-11-05Merge branch 'current' of https://github.com/vyos/vyos-1x into currentDaniil Baturin
2018-11-05T950: make sure agentx is enabled in FRR only when SNMP is setup, and ↵Daniil Baturin
supress duplicate error messages.
2018-11-04T959: XML/Python rewrite of "protocol igmp-proxy" and op-mode commandsChristian Poessinger
Examples: ========= CFG commands: vyos@vyos# set protocols igmp-proxy disable-quickleave vyos@vyos# set protocols igmp-proxy interface eth0 alt-subnet '172.16.35.0/24' vyos@vyos# set protocols igmp-proxy interface eth0 alt-subnet '172.31.0.0/24' vyos@vyos# set protocols igmp-proxy interface eth0 role 'upstream' vyos@vyos# set protocols igmp-proxy interface eth1 role 'downstream' vyos@vyos# show protocols igmp-proxy { disable-quickleave interface eth0 { alt-subnet 172.16.35.0/24 alt-subnet 172.31.0.0/24 role upstream } interface eth1 { role downstream } } OP mode commands: ----------------- vyos@vyos:~$ show ip multicast interface Interface BytesIn PktsIn BytesOut PktsOut Local eth0 0.0b 0 0.0b 0 xxx.xxx.xxx.65 eth1 0.0b 0 0.0b 0 xxx.xxx.xx.201 vyos@vyos:~$ show ip multicast mfc Group Origin Pkts Bytes Wrong In Out xxx.x.xx.1 xxx.xx.0.1 10 9.81KB 0 eth0 eth1 xxx.x.xx.2 xxx.xx.0.1 --
2018-11-04show-raid.xml: fixup indentionChristian Poessinger
2018-11-04Add missing VyOS copyright noticesChristian Poessinger
2018-11-03T958: Problems with wireguard descriptionhagbard
2018-11-02T949: config issue when creating multiple wg interfaces at the same time.hagbard
2018-11-02T939: Remove possibility to specify DHCP relay portChristian Poessinger
2018-10-31Merge pull request #35 from ovsiannikov/componentversionsDaniil Baturin
T688: parsing component version string
2018-10-29T240: system integrity checkhagbard
2018-10-29T240: system integrity checkhagbard
2018-10-28T923: enable AgentX in FRR after SNMP is configured.Daniil Baturin
2018-10-28T931: fix passing arguments to tcpdump filter option.Daniil Baturin
We need to pass all completion words rather than just the first since filters can contain whitespace.
2018-10-26T886: validation logic in `interfaces wireguard wgX address x.x.x.x brokenhagbard
- removed ip-host from tree, iproute2 will detect faulty addresses and return exit 1
2018-10-25T938: do not bind DHCP relay to default port if unspecifiedChristian Poessinger
Binding isc-dhcp-relay to its default port (67 e.g. for IPv4) will result in an error when starting up the service: bad: ---- $ dhcrelay -q -4 -p 67 -c 10 -A 576 -m discard -i eth0.21 -i eth0 10.253.253.1 binding to user-specified port 67 good: ----- $ dhcrelay -q -4 -c 10 -A 576 -m discard -i eth0.21 -i eth0 10.253.253.1 Setting removed from the IPv6 implementation, too!
2018-10-25T937: proper handle IPv6 link-local addresses in vyos.validate moduleChristian Poessinger
The problem is that some IPv6 addresses reported by the system (mainly link-local addresses) contain an interface suffix like %eth0, this was not properly handeled in the validator script. Remove any given interface attribute on passed IPv6 addresses. If no interface suffix is added - there is no problem.
2018-10-25T933: vrrp split brain while using unicast mode and virtual mac addresshagbard
- adding vmac_xmit_base to keepalived.conf when use_vmac is being used otherwise both nodes will become master
2018-10-21T634: remove 'service ssh allow-root'Christian Poessinger
2018-10-20SNMP: update comments in Python generatorChristian Poessinger
2018-10-20T923: support SNMP integration with FRR routing daemonChristian Poessinger
2018-10-19Merge branch 'dhcp-relay' into currentChristian Poessinger
* dhcp-relay: dhcpv6-relay: added missing verify() step for listen and upstream interfaces T913: DHCP relay service XML/Python rewrite for IPv6 T913: DHCP relay service XML/Python rewrite for IPv4 vyos-1x now depends on isc-dhcp-relay dns-forwarding: fix XML interface indenting
2018-10-19dhcpv6-relay: added missing verify() step for listen and upstream interfacesChristian Poessinger
2018-10-19Add Client keepalive option for use with cloud-initUnicronNL
Add option to specify multiple listening ports Clean up template generation layout
2018-10-17Fixing check for local IP, using validator --is-any-host.hagbard
2018-10-17T913: DHCP relay service XML/Python rewrite for IPv6Christian Poessinger
2018-10-17T913: DHCP relay service XML/Python rewrite for IPv4Christian Poessinger
2018-10-17vyos-1x now depends on isc-dhcp-relayChristian Poessinger
2018-10-17dns-forwarding: fix XML interface indentingChristian Poessinger
2018-10-17Update show-bridge.xmlDaniil Baturin
2018-10-14T896: Fix dynamic DNS for CUSTOM providerChristian Poessinger
JINJA2 templated missed the 'server=' statement when generating custom dynamic DNS entries in the resulting ddclient.conf.
2018-10-14T898: add a script for checking if a bridge has configured members.Daniil Baturin
2018-10-14Merge pull request #54 from EwaldvanGeffen/patch-1Daniil Baturin
Show usage percentage as zero when there are no leases
2018-10-13Update show_dhcp.pyEwald van Geffen
I don't really do python, please check/test.
2018-10-10Merge pull request #53 from hagbard-01/currenthagbard-01
T886: validation logic in `interfaces wireguard wgX address x.x.x.x b…
2018-10-10T886: validation logic in `interfaces wireguard wgX address x.x.x.x brokenhagbard
2018-10-10Merge pull request #52 from hagbard-01/currenthagbard-01
T870: Commit-confirm restarts the server even after commit
2018-10-10T870: Commit-confirm restarts the server even after commithagbard
- adding removal of the at job and /var/run/confirm.job - indent fixed
2018-10-09T883: handle keyboard interrupts in the wireguard keypair command.Daniil Baturin
2018-10-02Merge branch 'current' of github.com:vyos/vyos-1x into currentDaniil Baturin
2018-10-02T866: add a post-upgrade script for setting correct /config ownership in ↵Daniil Baturin
case GIDs change.
2018-10-02T869: rsyslog configuration typoChristian Poessinger
(cherry picked from commit 8a1e66ef20e872bd4f6c9adc68befbf09e9ef122)
2018-09-30Merge pull request #51 from hagbard-01/currenthagbard-01
Added descriptive information for show wireguard
2018-09-30Added show like all the other nodes havehagbard
2018-09-30Added descriptive information for show wireguardhagbard
2018-09-29T855: fix SNMP python verify() to allow non group assignmentChristian Poessinger
VyOS 1.1.8 support SNMPv3 without a group beeing assigned to a user. This was yet not supported in VyOS 1.2.0. Use for testing: ================ set service snmp v3 user testsnmpv3 auth plain 'authkey12345' set service snmp v3 user testsnmpv3 auth type sha set service snmp v3 user testsnmpv3 mode ro set service snmp v3 user testsnmpv3 privacy plain 'privkey12345' set service snmp v3 user testsnmpv3 privacy type aes