summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2023-07-07Merge pull request #2042 from sever-sever/T775Viacheslav Hletenko
T775: Add service config-sync between 2 routers
2023-07-06Merge pull request #2074 from zdc/T1797-sagittaChristian Breunig
VPP: T1797: Optimizations for VPP memory allocation during startup
2023-07-06Merge pull request #2072 from nicolas-fort/T5340Christian Breunig
T5340: snmp: add checks while configuring snmp listen-address with an…
2023-07-06Merge pull request #2054 from JonSanMan/T5314-PRDaniil Baturin
T5314: Fix default QOS classes not getting qdisc
2023-07-06Merge pull request #2076 from jestabro/accel-dictDaniil Baturin
vyos.configdict: T5319: remove workarounds for incorrect defaults in get_accel_dict
2023-07-06VPP: T1797: Optimized memory allocation during startupzsdc
- changed memory requirement from total to available. This allows to start on systems with less total memory and protects from startup on systems with overloaded memory. - prevent startup if sysctl settings were not applied. This protects from situations when the system cannot allocate enough hugepages or apply other sysctl settings.
2023-07-05vyos.configdict: T5319: remove defaults workarounds in get_accel_dictJohn Estabrook
2023-07-05xml: T5218: add missing str.split() in defaults of multi nodeJohn Estabrook
2023-07-05util: T1797: Optimized sysctl helperszsdc
- modified `sysctl_read()` to return the whole value - modified `sysctl_write()` logic to return `True` only in case a value was changed successfully - added `sysctl_apply()` to apply a dictionary of values at once
2023-07-05T5314: Always run build_base_qdisc for defaultJon Sanchez
2023-07-05geneve: T5339: add option to use ipv4 instead of ethernetfett0
2023-07-05Merge pull request #2075 from Apachez-/T5336Christian Breunig
T5336: Add Swedish keyboard-layout
2023-07-05T5336: Add Swedish keyboard-layoutApachez
2023-07-05T5340: snmp: add checks while configuring snmp listen-address with and ↵Nicolas Fort
without vrf
2023-07-03Merge pull request #2070 from jvoss/isis-merge-configChristian Breunig
isis: T5335: fix invalid isis config base in migration script
2023-07-03Merge pull request #2069 from sever-sever/T5333Christian Breunig
T5333: Set prefix UD for PBR generated user-defined chain names
2023-07-03ospf: T5334: add support for external route summarisation Type-5 and Type-7 LSAsChristian Breunig
* set protocols ospf aggregation timer <seconds> * set protocols ospf summary-address x.x.x.x/x [tag 1-4294967295] * set protocols ospf summary-address x.x.x.x/x no-advertise
2023-07-03xml: policy: T2425: create building block for "tag" nodeChristian Breunig
2023-07-03Merge pull request #2071 from zdc/T1797-sagittaChristian Breunig
VPP: T1797: Added interfaces reinitialization
2023-07-03VPP: T1797: Added interfaces reinitializationzsdc
After an interface is added/removed from VPP, it will be reinitialized, which allows reconfiguring IP addresses on it. Also modified VPP load priority to start before interfaces, and avoid reconfiguration during boot.
2023-07-03isis: T5335: fix invalid isis config base in migration scriptJonathan Voss
2023-07-03T5333: Set prefix UD for PBR generated user-defined chain namesViacheslav Hletenko
We cannot use some specific names like POSTROUTING/PREROUTING as for PBR they overlaps with VyOS defined chains Chains aftoconfigured by VyOS itself: chain VYOS_PBR_PREROUTING chain VYOS_PBR_POSTROUTING If we try to use chain name "POSTROUTING" it generates 2 chains with the same name "chain VYOS_PBR_POSTROUTING" one is autoconfigured and the second defined by user set policy route POSTROUTING rule 100 Add the user-defined (UD) prefix to separate user defined names That allows to use any user-defined names
2023-07-03Merge pull request #2068 from sever-sever/T5048Viacheslav Hletenko
T5048: QoS do not add prio if it is already in tc command
2023-07-02T5048: QoS do not add prio if it is already in tc commandViacheslav Hletenko
Prevent duplicatte prio fot tc command
2023-07-02Merge pull request #2067 from sever-sever/T5332Christian Breunig
T5332: Fix show policy route without attahed interface
2023-07-02T5332: Fix show policy route without attahed interfaceViacheslav Hletenko
Interface may not be present in the op-mode dictionary, it cause KeyError: 'interface' for policy route
2023-07-02Merge pull request #2066 from sever-sever/T5048Christian Breunig
T5048: QoS index priority should be used only for shaper
2023-07-02T5048: QoS index priority should be used only for shaperViacheslav Hletenko
QoS index priority should be used only for qostype 'shaper' otherwise we set priority 2 times, that is incorrect. OSError: [Errno 255] failed to run command: tc filter add dev eth2 parent 1: prio 5 protocol all prio 1 u32 match ip src 10.1.1.0/24 flowid 1:1e exit code: 255 Fix it
2023-07-01Merge pull request #2065 from sever-sever/T5295Christian Breunig
T5295: QoS fix policy limiter tc filter rate limit
2023-07-01T5302: QoS fix class with multiple matches generate one ruleViacheslav Hletenko
Fix QoS tc class with multiple matches generates one rule but expects multiple filter rules: set qos policy shaper test class 23 match one ip protocol 'tcp' set qos policy shaper test class 23 match two ip protocol 'udp' tc filter add dev eth0 parent 1: protocol all prio 1 u32 match ip protocol 6 0xff flowid 1:17 tc filter add dev eth0 parent 1: protocol all prio 2 u32 match ip protocol 17 0xff flowid 1:17
2023-07-01T5295: QoS fix policy limiter tc filter rate limitViacheslav Hletenko
tc filter rate limit should be used only if qostype is 'limiter' and not 'shaper'
2023-07-01Merge pull request #2064 from sever-sever/T1797Christian Breunig
T1797: VPP verify minimal installed memory and apply sysctl
2023-07-01T1797: VPP verify minimal installed memory and apply sysctlViacheslav Hletenko
Do not allow configure VPP if on the systems with low amount installed memory Add sysctl VPP parameters (hugepages, kernel.shmmax)
2023-07-01T1797: Divert sysctl 80-vpp.confViacheslav Hletenko
2023-06-30bcast-relay: T5313: capitalize UDP protocol nameChristian Breunig
2023-06-30Merge pull request #2063 from srividya0208/T5329Daniil Baturin
T5329 : priority: tunnel config is committed before wireguard
2023-06-30T5329 : priority: tunnel config is committed before wireguardsrividya0208
2023-06-30T775: Add service config-sync between 2 routersViacheslav Hletenko
Service config-sync allows synchronizing a section of the configuration. As PoC allow only nat, nat66 and firewall sections Rertreive the configuration for a section from self node and send this configuration to the section of the 'secondary' node. This feature adds a symlink from helper 'vyos_config_sync.py' to '/config/scripts/commit/post-hooks.d' and config that is located in '/run/config_sync_conf.conf' It will synchronyze the config only if the setcion was changed. set service config-sync secondary address 192.0.2.11 set service config-sync secondary key xxx set service config-sync section nat set service config-sync section nat66 set service config-sync section firewall set service config-sync mode load
2023-06-29vpp: T1797: disable CLI in rolling releasesChristian Breunig
2023-06-29Merge pull request #2059 from sever-sever/T1797-vppChristian Breunig
T1797: Add initial vpp configuration
2023-06-29tacacs: T141: tacacs is not available for arm64 (yet)Christian Breunig
2023-06-29Merge pull request #8 from zdc/sever-sever_T1797-vppViacheslav Hletenko
VPP: T1797: Optimized interfaces add/remove
2023-06-29VPP: T1797: Optimized interfaces add/removezsdc
- added extra renaming operation to be sure that interface has the same name as before in the system after it was moved from VPP to kernel - added extra check after PCI device removal/adding - added check for proper `retval` for CPI calls where it is available - replaced empty return with an error in `_get_pci_address_by_interface()` because not resolved address will lead to inconsistency of the system later
2023-06-29policy: T4329: Fix regex for extcommunity rt #2Christian Breunig
The previous implementation did not iterate over the communit list, so only one match criteria was supported. set policy route-map FOO rule 10 action 'permit' set policy route-map FOO rule 10 set extcommunity rt '1111:2222222' worked but on the other hand this failed: set policy route-map FOO rule 20 action 'permit' set policy route-map FOO rule 20 set extcommunity rt '6500:24 6500:23 192.168.0.1:111 192.168.0.1:222'
2023-06-29Merge pull request #2060 from jestabro/warning-boot-config-errDaniil Baturin
T5320: warn on entering config mode if boot config errors present
2023-06-28T5320: check if unsaved commits are due to boot config errorJohn Estabrook
2023-06-28T5320: warn on entering config mode if boot config errors presentJohn Estabrook
2023-06-28Merge pull request #7 from zdc/sever-sever_T1797-vppViacheslav Hletenko
VPP: T1797: Improved PCI address search
2023-06-28VPP: T1797: Improved VPP supportzsdc
- added ability to add/remove interfaces without system reboot - added `attempts` and `interval` to the VPP API connection. This is helpful in case of high system load or when VPP was just started and API is not yet available. - added exceptions to API calls. This allows handling errors in communication with API properly in conf-mode scripts. - fixed PCI address search in VPP to match Linux kernel and ethtool style - fixed systemd daemons control - first reload, then restart - removed debug prints - removed `vm.nr_hugepages` configuration. It is not required now but increases RAM requirements a lot.
2023-06-27VPP: T1797: Improved PCI address searchzsdc
Use info from both ethtool and VPP to find PCI address for an interface.