Age | Commit message (Collapse) | Author | |
---|---|---|---|
2023-02-24 | ipsec: T4985: Changed 'reset vpn ipsec-peer' to use vici library | aapostoliuk | |
1. Changed reset IPSEC, IKE SAs to use vici library. 2. Created package vyos.ipsec to communicate with vici library. | |||
2023-02-23 | Merge pull request #1842 from sever-sever/T5027 | Christian Breunig | |
T5027: Enable legacy provider to support current ciphers | |||
2023-02-23 | Merge pull request #1829 from sever-sever/T5013 | Daniil Baturin | |
T5013: Extend accelppp op-mode script to get statistic | |||
2023-02-23 | Merge pull request #1845 from sever-sever/T5017 | Daniil Baturin | |
T5017: Add interface ifbX to constraint interface-name | |||
2023-02-23 | T5017: Add interface ifbX to constraint interface-name | Viacheslav Hletenko | |
2023-02-23 | Update README.md | Yuriy Andamasov | |
2023-02-23 | Update sonar-project.properties | Yuriy Andamasov | |
2023-02-23 | T5027: Enable legacy provider to support current ciphers | Viacheslav Hletenko | |
* We will need to remove insecure ciphers as a long-term solution (BF-CBC, DES...) | |||
2023-02-23 | Update sonar-project.properties | Yuriy Andamasov | |
2023-02-23 | Update sonar-project.properties | Yuriy Andamasov | |
2023-02-23 | Create build.yml | Yuriy Andamasov | |
2023-02-22 | Merge pull request #1841 from sever-sever/T5025 | Christian Breunig | |
T5025: Fix timezones and validator use timedatectl | |||
2023-02-22 | T5025: Fix timezones and validator use timedatectl | Viacheslav Hletenko | |
Fix timezones completion help and validotor Use 'timedatectl' insted of find zoneinfo | |||
2023-02-22 | Merge pull request #1840 from sarthurdev/T5023 | Christian Breunig | |
openconnect: T5023: Conf script missing optional config parameter | |||
2023-02-22 | openconnect: T5023: Conf script missing optional config parameter | sarthurdev | |
2023-02-22 | Merge pull request #1839 from sarthurdev/ipsec | Christian Breunig | |
ipsec: T4593: Remove references to deleted variables | |||
2023-02-22 | ipsec: T4593: Remove references to deleted variables | sarthurdev | |
2023-02-21 | Merge pull request #1835 from sever-sever/T5020 | Christian Breunig | |
T5020: Extend openvpn op-mode to get list of configured clients | |||
2023-02-21 | Merge pull request #1834 from sever-sever/T5007 | Christian Breunig | |
T5007: Fix multicast implementation for the tunnel interfaces | |||
2023-02-21 | Merge pull request #1837 from sever-sever/T4978 | Christian Breunig | |
T4978: Default values of port rewrite default container values | |||
2023-02-21 | T4978: Default values of port rewrite default container values | Viacheslav Hletenko | |
As we have the same variable name 'default_values' for container name, port and volume, it rewrites default container parameters with default port parameters Fix it | |||
2023-02-20 | T5020: Extend openvpn op-mode to get list of configured clients | Viacheslav Hletenko | |
Extend openvpn.py op-mode script to get list of configured clients for the '--raw' output | |||
2023-02-20 | T5007: Fix multicast implementation for the tunnel interfaces | Viacheslav Hletenko | |
Multicast has not been implemented for the tunnel interfaces. We have only configuration CLI commands that do anything. Fix it. ip link set dev <tag> multicast on ip link set dev <tag> multicast off | |||
2023-02-18 | Merge pull request #1831 from nicolas-fort/T4886-add-cero-matcher | Christian Breunig | |
T4886: allow connection-mark 0 value, which is acceptable | |||
2023-02-18 | T4886: allow connection-mark 0 value, which is acceptable | Nicolas Fort | |
2023-02-18 | Merge pull request #1830 from sever-sever/T5011 | Christian Breunig | |
T5011: Set default values for min_mtu max_mtu | |||
2023-02-18 | T5011: Set default values for min_mtu max_mtu | Viacheslav Hletenko | |
Some interface drivers don't support/provide min_mtu and max_mtu values For example VyOS in docker container with 'veth' driver on some platforms As a workarund add default values for min/max MTU for calculations and pass function "verify_mtu(config)" | |||
2023-02-18 | T5013: accelppp replace cpu key to cpu_load_percentage op-mode | Viacheslav Hletenko | |
Change op-mode raw statistics for accel_ppp.py dict key 'cpu' to 'cpu_load_percentage' and value to integer | |||
2023-02-18 | T5013: Extend accelppp op-mode script to get statistic | Viacheslav Hletenko | |
Extend accelppp.py op-mode script to get subnet/start/stop/gateway/client_ip_pool/ etc info from the configuration | |||
2023-02-17 | Merge pull request #1828 from rayzilt/fix-qos-classes-printf-help | Christian Breunig | |
qos: classes: helptext: T5015: Escape % in printf | |||
2023-02-17 | qos: classes: helptext: T5015: Escape % in printf | Silvan Raijer | |
2023-02-17 | Merge pull request #1826 from aapostoliuk/T5008-sagitta | Christian Breunig | |
macsec: T5008: Changed length of CKN to (2..64 hex-digits) | |||
2023-02-17 | Merge pull request #1827 from sever-sever/T5005 | Christian Breunig | |
T5005: PPPoE server allow any login with option noauth | |||
2023-02-17 | T5005: PPPoE server allow any login with option noauth | Viacheslav Hletenko | |
Disabling authentication is useful in emergency situations (e.g. RADIUS server is down) or testing purposes. Clients can connect with any login and username. set service pppoe-server authentication mode 'noauth' | |||
2023-02-17 | macsec: T5008: Changed length of CKN to (2..64 hex-digits) | aapostoliuk | |
Based on wpa_supplicant documentation. mka_ckn (CKN = CAK Name) takes a 1..32-bytes (8..256 bit) hex-string (2..64 hex-digits) Changed allowable length of CKN from strong 64 hex-digits to the range (2..64 hex-digits) | |||
2023-02-16 | Merge pull request #1825 from sever-sever/T5002 | Christian Breunig | |
T5002: Add uk United Kindom keymap | |||
2023-02-16 | T5002: Add uk United Kindom keymap | Viacheslav Hletenko | |
set system option keyboard-layout uk | |||
2023-02-15 | Merge pull request #1817 from sarthurdev/bookworm | Christian Breunig | |
debian: T5003: Upgrade base system to Debian 12 "Bookworm" | |||
2023-02-15 | Merge pull request #1811 from jestabro/udiff | Christian Breunig | |
config_mgmt: T4991: use configtree.show_diff instead of Python difflib | |||
2023-02-15 | Merge pull request #1821 from sarthurdev/ipsec | Christian Breunig | |
ipsec: T4593: Migrate and remove legacy `include-ipsec` nodes | |||
2023-02-15 | Merge pull request #1822 from sever-sever/T4971 | Christian Breunig | |
T4971: Accel-ppp verify if client_ip_pool key exists in config | |||
2023-02-15 | Merge pull request #1823 from jestabro/api-async | Viacheslav Hletenko | |
http-api: T5006: add explicit async to retrieve/configure methods for REST | |||
2023-02-15 | T4971: Accel-ppp verify if client_ip_pool key exists in config | Viacheslav Hletenko | |
If 'client_ip_pool' not exists in config we cannot search it in the dictionary dict_search_recursive(config, 'gateway_address', ['client_ip_pool', 'name']) Add check | |||
2023-02-15 | ipsec: T4593: Migrate and remove legacy `include-ipsec` nodes | sarthurdev | |
Not supported with swanctl | |||
2023-02-14 | http-api: T5006: add explicit async to retrieve/configure methods | John Estabrook | |
2023-02-14 | strongSwan: T4593: move to charon-systemd | Christian Breunig | |
2023-02-14 | Merge pull request #1819 from aapostoliuk/T4985-sagitta | Christian Breunig | |
ipsec: T4985: Fixed 'reset vpn ipsec-peer {peer}' command | |||
2023-02-14 | ipsec: T4985: Fixed 'reset vpn ipsec-peer {peer}' command | aapostoliuk | |
Fixed 'reset vpn ipsec-peer {peer}' command. The op-mode script uses value 'None' in the 'tunnel' parameter to clear all CHILD SAs. | |||
2023-02-13 | debian: T5003: Fix chronyd start error | sarthurdev | |
Fixes "chronyd: Fatal error : Not superuser" Fixes "ip[6394]: Failed to open mounts file: No such file or directory" when in VRF | |||
2023-02-13 | debian: T5003: Fixes dynamic DNS for Bookworm | sarthurdev | |