Age | Commit message (Collapse) | Author |
|
|
|
automatically close the socket
|
|
SFTP transfers.
|
|
|
|
|
|
|
|
T3563: Add support for IPv6 source addresses in SSH connections
|
|
|
|
|
|
|
|
|
|
|
|
A VTI interface also requires an IPSec configuration - VyOS 1.2 supported
having a VTI interface in the CLI but no IPSec configuration - drop VTI
configuration if this is the case for VyOS 1.4.
|
|
|
|
nhrp: T3599: Update config path to new /run directory
|
|
|
|
|
|
- set vpn ipsec nat-traversal
- set vpn ipsec nat-networks allowed-network
|
|
|
|
T3508, T3356: remote: Friendly download procedure for user-facing scripts
|
|
|
|
|
|
nhrp: T3599: Migrate NHRP to XML/Python
|
|
|
|
|
|
|
|
ipsec: T2816: Fix typo from refactor
|
|
|
|
|
|
(cherry picked from commit 95cc2e4b4c11414cc71749af12abb575e96e5bd4)
|
|
tunnels: T3592: Set default TTL to 64
|
|
|
|
Set default TTL value for tunnels from 0 to 64
There are a lot of situation when default value 0 (inherit)
not work properly when you have routing configuration for OSPF
or BGP over the tunnels. To fix it you need explicit set TTL
value other then 0. Or hardcode another value as default.
|
|
|
|
|
|
|
|
|
|
Some application layer gateway (ALG) modules can be disabled during runtime
if requireq.
|
|
|
|
|
|
|
|
|
|
... this is done for easier readability of the commands
|
|
|
|
|
|
We do not need to query the actual configuration if the VTI peer is configured
or not. This can be done in a much more simples way by just checking if the
desired interface exists on the running system.
This is safe to do as the VTI priority is less then IPSec.
|
|
|
|
|
|
|
|
|