summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2024-02-29vyos-hostsd: T4270: resolve only hostname without domain name to 127.0.1.1Christian Breunig
This is a fix for commit 665ae50729 ("vyos-hostsd: T4270: do not resolve local router FQDN to 127.0.1.1") as it made calls to sudo super slow due to: sudo: unable to resolve host vyos: System error To avoid the initial issue we only add the hostname without domain name, thus the FQDN is not resolved by powerdns.
2024-02-29Merge pull request #2659 from jestabro/remove-trivial-redundanciesJohn Estabrook
configdep: T5839: remove trivially redundant config dependency calls
2024-02-29Merge pull request #3052 from up-n-atom/fix-ethtool-out-of-bounds-accessChristian Breunig
vyos.ethtool: T6070: fix EEE reading the incorrect status line
2024-02-29Merge pull request #3056 from natali-rs1985/T5504-currentChristian Breunig
T5504: Keepalived VRRP ability to set more than one peer-address
2024-02-29Merge pull request #3060 from c-po/bannerDaniil Baturin
banner: T6077: implement ASCII contest winner default logo
2024-02-29T5504: Added smoketest for multiple peer addressesNataliia Solomko
2024-02-28configdep: T5660: remove global redundancies under vyos-configdJohn Estabrook
2024-02-28configdep: T5839: remove trivially redundant config dependency callsJohn Estabrook
2024-02-28banner: T6077: implement ASCII contest winner default logoChristian Breunig
Implement VyOS ASCII art contest winners logo as the default for our MOTD
2024-02-28Merge pull request #3055 from sarthurdev/T6073Christian Breunig
vrf: conntrack: T6073: Populate VRF zoning chains only while conntrack is required
2024-02-28Merge pull request #3054 from c-po/hostsd-T4270Daniil Baturin
vyos-hostsd: T4270: do not resolve local router FQDN to 127.0.1.1
2024-02-28Merge pull request #3053 from c-po/container-t6074Daniil Baturin
container: T6074: do not allow deleting images which have a container running
2024-02-28T5504 Keepalived VRRP ability to set more than one peer-addressNataliia Solomko
2024-02-27vrf: conntrack: T6073: Populate VRF zoning chains only while conntrack is ↵sarthurdev
required
2024-02-27vyos-hostsd: T4270: do not resolve local router FQDN to 127.0.1.1Christian Breunig
Clients using VyOS as their DNS server and trying to resolve the FQDN of the router will receive 127.0.1.1 as answer. set service dns forwarding allow-from '172.16.0.0/12' set service dns forwarding listen-address '172.31.0.254' set service dns forwarding negative-ttl '60' set system domain-name 'vyos.net' set system host-name 'R1' Will return: $ host R1.vyos.net 172.31.0.254 Using domain server: Name: 172.31.0.254 Address: 172.31.0.254#53 Aliases: R1.vyos.net has address 127.0.1.1 When it should rather return the real IP address assigned via DNS.
2024-02-27container: T6074: do not allow deleting images which have a container runningChristian Breunig
The current VyOS container image manipulation "delete container image" command allows force removal of container images - even if they still have a container running. Drop the --force option from the op-mode script. vyos@vyos:~$ delete container image 2636705a815a Error: image used by 6adb0175d47f.. image is in use by a container: consider listing external containers and force-removing image
2024-02-27smoketest: T5160: Deduplicate nftables verify functions to testcase class, ↵sarthurdev
remove obsolete imports
2024-02-26vyos.ethtool: T6070: fix EEE reading the incorrect status lineup-n-atom
EEE enabled status is on the 2nd line of ethtool output and not the 3rd. Subsequently, reading the 3rd line was causing an out-of-bounds access for the bnx2x driver as well.
2024-02-26Merge pull request #3049 from sarthurdev/T6063Daniil Baturin
dhcp-server: T6063: Add `ignore-client-id` to relax client identifier checks for leases
2024-02-25dhcp-server: T6063: Add `ignore-client-id` to relax client identifier checks ↵sarthurdev
for leases
2024-02-24Merge pull request #3046 from c-po/container-T6060Christian Breunig
container: T6060: support removing all container images at once via op-mode
2024-02-24container: T6060: support removing all container images at once via op-modeChristian Breunig
cpo@LR1.wue3:~$ show container image REPOSITORY TAG IMAGE ID CREATED SIZE docker.io/library/busybox latest 3f57d9401f8d 5 weeks ago 4.5 MB docker.io/jacobalberty/unifi v7.5 f6df690d6c67 4 months ago 827 MB docker.io/jacobalberty/unifi v7.4 7838b75ef7b9 7 months ago 786 MB cpo@LR1.wue3:~$ delete container image Possible completions: 3f57d9401f8d Delete container image 7838b75ef7b9 all f6df690d6c67 cpo@LR1.wue3:~$ delete container image all cpo@LR1.wue3:~$ show container image REPOSITORY TAG IMAGE ID CREATED SIZE
2024-02-24Merge pull request #3044 from c-po/container-T5909Christian Breunig
container: T5909: move registry login to op-mode
2024-02-24container: T5909: move registry login to op-modeChristian Breunig
It does not make sense to perform the "podman login" command when setting up containers, as images are not automatically pulled in from the registry - due to issues with the default route during startup. The same issue manifests in "podman login" where we can not login to a registry unless there is a default route present. This commit changes the behavior that the container registry is part of the configuration, but it is only referenced during "add container image" and thus never during system boot.
2024-02-23Merge pull request #3042 from nicolas-fort/T6054Christian Breunig
T6054: WLB: fix rules parsing when using multiple ports in one rule
2024-02-23T6054: WLB: fix rules parsing when using multiple ports in one ruleNicolas Fort
2024-02-23Merge pull request #3040 from sarthurdev/T6055Christian Breunig
pki: T6055: Cleanup unnecessary sudo, preserve env when sudo is needed
2024-02-23pki: T3642: Fix typo in PKI includessarthurdev
2024-02-23pki: T6055: Cleanup unnecessary sudo, preserve env when sudo is neededsarthurdev
2024-02-22Merge pull request #3037 from sarthurdev/T5376Christian Breunig
conntrack: T5376: Fix priority for CT helpers
2024-02-21conntrack: T5376: Fix priority for CT helperssarthurdev
Ref: https://www.spinics.net/lists/netfilter/msg59549.html
2024-02-20Merge pull request #3032 from gavol/currentChristian Breunig
vyos-event-handler.py: T6048: handling exception when _PID is not found
2024-02-20Merge pull request #3033 from aapostoliuk/T6050-circinusChristian Breunig
T6050: Fixed descriptions of 'extended-scripts' commands in accel-ppp
2024-02-20T6050: Fixed descriptions of 'extended-scripts' commands in accel-pppaapostoliuk
Removed word 'PPPoE' from descriptions in common template for all accel-ppp services.
2024-02-19event-handler: T6048: handling exception when _PID is not foundgavol
2024-02-18Merge pull request #3030 from c-po/smoketest-t6043Christian Breunig
smoketest: T6043: proper cleanup after testcase
2024-02-18smoketest: T6043: proper cleanup after testcaseChristian Breunig
This extends commit dbe8c613b ("bridge: T6043: do not call vxlan dependency if interface does not exist (yet)") with a proper cleanup of additional interfaces created during the testrun.
2024-02-18Merge pull request #3026 from c-po/bridge-T6043Christian Breunig
bridge: T6043: do not call vxlan dependency if interface does not exist (yet)
2024-02-17Merge pull request #3027 from c-po/nht-T5581Daniil Baturin
op-mode: T5581: add "show ipv6 nht" command
2024-02-17op-mode: T5581: add "show ipv6 nht" commandChristian Breunig
This improves the implementation to support both IPv4 and IPv6
2024-02-17bridge: T6043: do not call vxlan dependency if interface does not exist (yet)Christian Breunig
In order to keep the proper priority list during system startup and on initial setup/commit for this feature the dependent VXLAN code should not be called, if the interface in question does not exist (yet).
2024-02-17Merge pull request #3024 from jestabro/pxe-bootJohn Estabrook
image-tools: T6041: fix logic of is_live_boot to allow for PXE boot
2024-02-17image-tools: T6041: fix logic of is_live_boot to allow for PXE bootJohn Estabrook
2024-02-17Merge pull request #3019 from c-po/login-T5972Christian Breunig
login: T5972: add possibility to disable individual local user accounts
2024-02-17Merge pull request #3021 from aapostoliuk/T3722-circinusChristian Breunig
T3722: Fixed L-Time in 'show vpn ike sa' command
2024-02-16T3722: Fixed L-Time in 'show vpn ike sa' commandaapostoliuk
Fixed L-Time in 'show vpn ike sa' command
2024-02-16login: T5972: add possibility to disable individual local user accountsChristian Breunig
* set system login user <name> disable
2024-02-16Merge pull request #3016 from c-po/nhtChristian Breunig
T6001: add option to disable next-hop-tracking resolve-via-default
2024-02-16T6001: add option to disable next-hop-tracking resolve-via-default in VRF ↵Christian Breunig
context * set vrf name <name> ip nht no-resolve-via-default * set vrf name <name> ipv6 nht no-resolve-via-default
2024-02-16T6001: add option to disable next-hop-tracking resolve-via-defaultChristian Breunig
* set system ip nht no-resolve-via-default * set system ipv6 nht no-resolve-via-default