Age | Commit message (Collapse) | Author | |
---|---|---|---|
2022-12-14 | ocserv: T4881: return vyos.opmode.Errors on failure | John Estabrook | |
2022-12-14 | Merge pull request #1706 from jestabro/validator-file-exists | John Estabrook | |
validators: T4798: replace python file-exists validator with file-path | |||
2022-12-14 | Merge pull request #1705 from jestabro/validator-interface-name | John Estabrook | |
validators: T4875: use file-path to replace validator 'interface-name' | |||
2022-12-14 | validators: T4875: use file-path to replace validator 'interface-name' | John Estabrook | |
2022-12-13 | validators: T4798: replace python file-exists validator with file-path | John Estabrook | |
2022-12-12 | Merge pull request #1699 from jestabro/op-mode-openvpn | John Estabrook | |
openvpn: T4770: rewrite op-mode show/reset to use vyos.opmode | |||
2022-12-12 | openvpn: T4770: add openvpn.py to op-mode-standardized.json | John Estabrook | |
2022-12-12 | openvpn: T4770: update op-mode definition openvpn.xml.in for show/reset | John Estabrook | |
2022-12-12 | openvpn: T4770: add reset function to openvpn.py | John Estabrook | |
2022-12-12 | opmode: T4770: add CommitInProgess error | John Estabrook | |
2022-12-12 | openvpn: T4770: add openvpn.py with standardized show command | John Estabrook | |
2022-12-11 | Merge branch 't4792-sstpc' into current | Christian Poessinger | |
* t4792-sstpc: sstp: T4384: initial implementation of SSTP client CLI pppoe: T4384: remove unused import of leaf_node_changed pppoe: xml: T4792: split "no-peer-dns" CLI node into building block xml: ddns: T4792: split "server" CLI node into building block | |||
2022-12-11 | sstp: T4384: initial implementation of SSTP client CLI | Christian Poessinger | |
vyos@vyos# show interfaces sstpc sstpc sstpc10 { authentication { password vyos user vyos } server sstp.vyos.net ssl { ca-certificate VyOS-CA } } | |||
2022-12-11 | pppoe: T4384: remove unused import of leaf_node_changed | Christian Poessinger | |
2022-12-11 | pppoe: xml: T4792: split "no-peer-dns" CLI node into building block | Christian Poessinger | |
2022-12-11 | xml: ddns: T4792: split "server" CLI node into building block | Christian Poessinger | |
2022-12-11 | sstp: T4792: add sstp-client package dependency | Christian Poessinger | |
2022-12-10 | vyos.util: T4770: add precision arg, fix typo in bytes_to_human | John Estabrook | |
This is useful in general, but we will add in this context to replace the use of 'bytes2HR' in show_openvpn.py with util.bytes_to_human, while maintaining compatability with original precision=1. | |||
2022-12-10 | Merge pull request #1703 from jestabro/bug-tunnel-ip | John Estabrook | |
openvpn: T4872: fix parsing of tunnel IP in 'show openvpn server' | |||
2022-12-09 | openvpn: T4872: fix parsing of tunnel IP in 'show openvpn server' | John Estabrook | |
2022-12-09 | Merge pull request #1701 from sever-sever/T4865 | Christian Poessinger | |
T4865: Fix to generate container image from the file | |||
2022-12-09 | T4865: Fix to generate container image from the file | Viacheslav Hletenko | |
In case if we want generate own container image from a Dockerfile and if it requires update or install packages in container we get error. As it tries to use default network 'podman' and do own NAT translations via 'iptables'. If fact we don't use iptables in 1.4 As result it cannot build such image. Use '--net host' to fix it. | |||
2022-12-09 | Merge pull request #1700 from sever-sever/T4868 | Christian Poessinger | |
T4868: Fix l2tp ppp IPv6 options in template and config get dict | |||
2022-12-09 | T4868: Fix l2tp ppp IPv6 options in template and config get dict | Viacheslav Hletenko | |
L2TP 'ppp-options ipv6 x' can work without declaring IPv6 pool As we can get addresses via RADIUS attributes: - Framed-IPv6-Prefix - Delegated-IPv6-Prefix | |||
2022-12-08 | Merge pull request #1698 from sever-sever/T4117 | Christian Poessinger | |
T4117: Fix for L2TP DAE CoA server configuration | |||
2022-12-08 | T4117: Fix for L2TP DAE CoA server configuration | Viacheslav Hletenko | |
Fix l2tp dae server template and python config dict for correctlly handling Dynamic Authorization Extension server configuration | |||
2022-12-08 | Merge pull request #1695 from aapostoliuk/T4862-sagitta | Christian Poessinger | |
T4862: Added the generation config for webproxy domain-block | |||
2022-12-08 | T4862: Added the generation config for webproxy domain-block | aapostoliuk | |
Added the generation in the config file /etc/squid/squid.conf for command: set service webroxy domain-block <domain> | |||
2022-12-08 | Merge pull request #1696 from sever-sever/T4861 | Viacheslav Hletenko | |
T4861: Openconnect replace restart to reload-or-restart | |||
2022-12-07 | T4861: Openconnect replace restart to reload-or-restart | Viacheslav Hletenko | |
Every change in openconnect restarts the ocserv.service Replace "restart" to "reload-or-restart" to avoid disconnect clients during change configs | |||
2022-12-05 | Merge pull request #1693 from sever-sever/T4860 | Christian Poessinger | |
T4860: Verify if mode in openconnect ocserv dict | |||
2022-12-05 | Merge pull request #1690 from fett0/T4854 | Christian Poessinger | |
T4854: Route reflector allows to apply route-maps | |||
2022-12-05 | Merge pull request #1692 from sever-sever/T4848 | Christian Poessinger | |
T4848: Fix for default route vpn openconnect | |||
2022-12-05 | Merge pull request #1686 from sever-sever/T4804 | Christian Poessinger | |
T4804: Add check for PPPoE server and use defaults values | |||
2022-12-04 | T4860: Verify if mode in openconnect ocserv dict | Viacheslav Hletenko | |
openconnect authentication mode must be set check dict that 'mode' exists in openconnect authentication | |||
2022-12-04 | T4804: Fix check for PPPoE server local-users | Viacheslav Hletenko | |
We check if local_users is None Check also and empty dict {'access_concentrator': 'vyos-ac', 'authentication': {'local_users': {}, | |||
2022-12-04 | T4848: Fix for default route vpn openconnect | Viacheslav Hletenko | |
ocserv template expects list of routes but gets str "default" it cause wrong routes like: route = d route = e route = f route = a route = u route = l route = t Fix it | |||
2022-12-03 | Merge pull request #1691 from sarthurdev/T478 | Christian Poessinger | |
firewall: T478: Fix firewall group circular dependency check | |||
2022-12-03 | firewall: T478: Fix firewall group circular dependency check | sarthurdev | |
2022-12-02 | T4854: route reflector allows to apply route-maps | fett0 | |
2022-12-02 | Merge pull request #1688 from fett0/T4858 | Christian Poessinger | |
T4858: Fix l3vpn Route Distinguisher validator | |||
2022-12-02 | Merge pull request #1685 from sever-sever/T4805 | Christian Poessinger | |
T4805: Restart pppoe-server if client pool was changed | |||
2022-12-02 | Merge pull request #1687 from sever-sever/T4825 | Christian Poessinger | |
T4825: Verify if you are trying to add a new vethX to exists pair | |||
2022-12-02 | Merge pull request #1689 from jestabro/config-script-dependency | John Estabrook | |
http-api: T4859: correct calling of script dependencies from http-api.py | |||
2022-12-02 | T4858: Fix l3vpn Route Distinguisher validator | fett0 | |
2022-12-02 | http-api: T4859: correct calling of script dependencies from http-api.py | John Estabrook | |
2022-12-02 | T4825: Verify if you are trying to add a new vethX to exists pair | Viacheslav Hletenko | |
Verify if you are trying to add a new vethX to exists pair: set int virtual-ethernet veth0 peer-name 'veth1' set int virtual-ethernet veth1 peer-name 'veth0' set int virtual-ethernet veth12 peer-name 'veth0' Verify veth-name and peer-name cannot be the same: set interfaces virtual-ethernet veth0 peer-name veth0 | |||
2022-12-02 | T4805: Restart pppoe-server if client pool was changed | Viacheslav Hletenko | |
Some changes for 'service pppoe-server' require 'restart' the accel-ppp@pppoe.service But we use option 'reload-or-restart' that doesn't work correctly with 'accel-ppp' Restart pppoe-server if client pool was changed | |||
2022-12-02 | op-mode: T4767: drop sudo calls | Christian Poessinger | |
It's easier and more obvious if the script is called with sudo itself and not spawning a sudo sessionf or each individual command. | |||
2022-12-02 | Merge pull request #1646 from mkorobeinikov/4767py | Christian Poessinger | |
T4767: Rewrite generate ipsec archive to python |