Age | Commit message (Collapse) | Author |
|
This reverts commit 44df1cea1ebc3296844c5c35cf053a92cda4b944.
|
|
This reverts commit 726cdf8bfd27d751737383102fa205f3c082710c.
|
|
Add op-mode CLI "show vpn ipsec connections"
Add the ability to show all configured connections/tunnels and
their states.
Ability to get --raw data
|
|
T4815: ip-up/down scripts needs the executable bit
|
|
ip-up/down scripts added in https://github.com/vyos/vyos-1x/pull/1656
need the executable bit.
|
|
migration: T4808: add details of configtree operations to migration log
|
|
T4813: Add L3vpn over gre option from route-map
|
|
T4815: Fix various name server config issues
|
|
1. When a PPPoE session is connected, `pppd` will update
`/etc/resolv.conf` regardless of `system name-server` option unless `no-peer-dns` is set.
This is because `pppd` vendors scripts `/etc/ppp/ip-up.d/0000usepeerdns` and `/etc/ppp/ip-down.d/0000usepeerdns`,
which updates `/etc/resolv.conf` on PPPoE connection and reverts the change on disconnection.
This PR removes those scripts and adds custom scripts to update name server entries through `vyos-hostsd` instead.
2. There is a typo in `/etc/dhcp/dhclient-enter-hooks.d/04-vyos-resolvconf, which misspells variable name `new_dhcp6_name_servers` as `new_dhcpv6_name_servers`.
This causes IPv6 name server entries in `vyos-hostsd` not updated
when dhclient receives nameservers from DHCPv6.
3. Regular expressions in scripts under `/etc/dhcp/dhclient-enter-hooks.d` and
`/etc/dhcp/dhclient-exit-hooks.d/` are not enclosed in `^$`, so those
IPv4 related branches (like `BOUND`) could be mistakenly executed when an IPv6
reason (like `BOUND6`) is given.
|
|
|
|
|
|
<name> interface <ifname>`
* Include refactor to policy route to allow for deletion of mangle table instead of complex cleanup
* T4605: Rename mangle table to vyos_mangle
|
|
|
|
|
|
update reviewers
|
|
Print configtree operations to stdout during migration; the migrator
will log the output.
|
|
|
|
T4810: fix show/monitor log of pppoe interface
|
|
T4496: Refactoring vrf_list function in ping command
|
|
T4789: Ability to get op-mode raw data for PPPoE L2TP SSTP IPoE
|
|
Ability to get 'raw' data sessions and statistics for accel-ppp
protocols IPoE/PPPoE/L2TP/PPTP/SSTP server
|
|
Changed the function code of vrf_list to using the function from
vyos.util
|
|
dns: T738: add CLI option for PowerDNS local-port
|
|
|
|
|
|
T4807: Fixed traceroute help completion
|
|
|
|
|
|
testing CodeQL scanning
|
|
Changes in traceroute command:
Added list of possible VRFs in the help.
Added list of possible interfaces in the help.
Changed, if an option was selected before,
it does not appear in possible completion.
Added error message when an unexpected option was selected
|
|
This reverts commit f3420a967ad5597c57093b5279a844dca4c516c0.
|
|
This reverts commit ff09d4f47e5f54fad8258cd27fb0adfaa4c552b3.
Process name is actually:
<bound method Process.name of psutil.Process(pid=5031, name='pdns-r/worker', status='sleeping', started='08:51:51')>
|
|
Made the following changes: 1) made changes to the "XML" file to replace the script from "sh" to "py" 2) changed the extension of the main script from "sh" to "py" 3) changed the script to "py"
|
|
containers: T2216: Image download moved to smoketest package, skip test if image not available
|
|
|
|
|
|
|
|
Size of /dev/shm within a container can be defined via --shm-size when invoking
the container. Add corresponding CLI node.
|
|
dns: T4799: fixed powerdns not being reloaded by vyos-hostsd
|
|
PowerDNS version 4.7 and above has changed the main process name from
'pdns-r/worker' to 'pdns_recursor'. This commit updates the process
name check to use the new name.
|
|
firewall: T970: T1877: Add source/destination fqdn, refactor domain resolver, firewall groups in NAT
|
|
|
|
`fqdn` node
|
|
|
|
current
* 'T4496-sagitta' of https://github.com/aapostoliuk/vyos-1x:
T4496: Added lists of values in the help of op-mode ping command
|
|
T4758: Rewrite show DHCP(v6) server leases to vyos.opmode format
|
|
Instead of spawning the Python interpreter for every mac-address to
validate, rather use the base validate-value OCaml implementation which
is much faster.
This removes redundant code and also makes the CLI more responsive.
Validator is moved out to a dedicated file instead of using XML inlined <regex>
for the reason of re-usability. So if that regex needs to be touched again - it
can all happen in one single file.
|
|
|
|
Reduce CPU time when spawning the python interpreter. Same can be done by the
numeric validator.
|
|
Remove duplicated code and move to single-source of truth.
|