Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-01-29 | ospf: T3267: move "interface ip ospf" configuration to "protocols ospf ↵ | Christian Poessinger | |
interface" For easier maintenance and operability move the interface specific protocol setting of OSPF to the OSPF protocol section. This is now also in-line with IS-IS. This means to migrate: ethernet eth0 { vif 202 { ip { ospf { authentication { md5 { key-id 10 { md5-key vyosvyos } } } dead-interval 40 hello-interval 10 priority 1 retransmit-interval 5 transmit-delay 1 } } } } to protocols { ospf { interface eth0.201 { authentication { md5 { key-id 10 { md5-key vyosvyos } } } dead-interval 40 hello-interval 10 priority 1 retransmit-interval 5 transmit-delay 1 } } | |||
2021-01-29 | rpki: T3266: support deleting entire section from FRR config | Christian Poessinger | |
2021-01-29 | rpki: T3255: provide full protocol support in XML and Python | Christian Poessinger | |
This commit provides the implementation of the OSPF CLI with a Jinja2 template that is loaded by FRR reload. | |||
2021-01-27 | dhcpv6: T3240: send DUID when only DHCPv6 PD is configured | Brandon Stepler | |
2021-01-25 | Merge pull request #697 from DmitriyEshenko/1x-pppoe-2501202101 | Christian Poessinger | |
pppoe: T3251: Add double-quotes to protect special characters | |||
2021-01-25 | pppoe: T3251: Add double-quotes to protect special characters | DmitriyEshenko | |
2021-01-25 | Merge pull request #693 from bstepler/T3240 | Christian Poessinger | |
dhcpv6: T3240: support per-interface client DUIDs | |||
2021-01-24 | bgp: T3247: bugfix import/export filter-list | Christian Poessinger | |
2021-01-24 | bgp: T3247: bugfix import/export prefix-list and distribution-list | Christian Poessinger | |
This is an amendment to commit 5ab6882f ("bgp: T2347: bugfix import/export route-map") which did not take care about fixing the other two if/elif statements. | |||
2021-01-24 | bgp: T2347: bugfix import/export route-map | Christian Poessinger | |
There can be both an import and an export route-map - the Jinja2 template syntax only allowed one direction and not the other. | |||
2021-01-24 | ospfv3: T3244: provide full protocol support in XML and Python | Christian Poessinger | |
This commit provides the implementation of the OSPFv3 (IPv6) CLI with a Jinja2 template that is loaded by FRR reload. It also contains some initial smoketests. There is yet no verify() implementation! | |||
2021-01-24 | bgp: T2850: bugfix templating neighbor interface statements | Christian Poessinger | |
2021-01-24 | nptv6: T2518: Delete redundant blank lines | jack9603301 | |
2021-01-23 | nptv6: T2518: Use better variable names | jack9603301 | |
2021-01-23 | nptv6: T2518: Remove trailing spaces | jack9603301 | |
2021-01-23 | nptv6: T2518: Optimized implementation | jack9603301 | |
2021-01-23 | nptv6: T2518: outbound_interface cannot be any, inbound_interface can be any | jack9603301 | |
2021-01-23 | nptv6: T2518: DNPT does not need NDP agent | jack9603301 | |
2021-01-23 | nptv6: T2518: Support many to many DNPT(DNAT66) | jack9603301 | |
2021-01-23 | nptv6: T2518: Improved template generation | jack9603301 | |
2021-01-23 | nptv6: T2518: Initial support for nat66 (NPT) | jack9603301 | |
2021-01-23 | ospf: T3236: provide full protocol support in XML and Python | Christian Poessinger | |
This commit provides the implementation of the OSPF CLI with a Jinja2 template that is loaded by FRR reload. It also contains some initial smoketests. There is yet no verify() implementation! | |||
2021-01-22 | dhcpv6: T3240: support per-interface client DUIDs | Brandon Stepler | |
2021-01-22 | ospf: T3236: support processing by vyos-configd | Christian Poessinger | |
2021-01-22 | bgp: T1875: update CLI description under protocols and template indention level | Christian Poessinger | |
2021-01-22 | bgp: T1875: support processing by vyos-configd | Christian Poessinger | |
2021-01-21 | Merge pull request #690 from Cheeze-It/current | Christian Poessinger | |
bgp: T1875: Adding BGP listen range FRR feature | |||
2021-01-20 | bgp: T1875: Adding BGP listen range FRR feature | Cheeze_It | |
In this commit we are adding the FRR BGP listen range feature. Specifically it is useful for being able to specify a range in which BGP peers can connect to the local router. | |||
2021-01-20 | ospf: add skeleton for new XML/Python based implementation | Christian Poessinger | |
2021-01-19 | nat: T2947: add many-many translation | Christian Poessinger | |
Support a 1:1 or 1:n prefix translation. The following configuration will NAT source addresses from the 10.2.0.0/16 range to an address from 192.0.2.0/29. For this feature to work a Linux Kernel 5.8 or higher is required! vyos@vyos# show nat source { rule 100 { outbound-interface eth1 source { address 10.2.0.0/16 } translation { address 192.0.2.0/29 } } } This results in the nftables configuration: chain POSTROUTING { type nat hook postrouting priority srcnat; policy accept; oifname "eth1" counter packets 0 bytes 0 snat ip prefix to ip saddr map { 10.2.0.0/16 : 192.0.2.0/29 } comment "SRC-NAT-100" } | |||
2021-01-18 | bgp: T2174: use better variable names when creating peers | Christian Poessinger | |
2021-01-18 | ssh: T3212: remove RestartPreventExitStatus from systemd unit | Christian Poessinger | |
When configuring SSH to only run inside a given VRF the system can not start SSHd on bootup as the Kernel will report EPERM (Operation not permitted) when loading the VRF BPF program. This returns the exit code 255 which is marked in the systemd unit file to stop restarting the service forever. Removing this limitation will restart the SSHd on startup and it will live inside the VRF till the end of days. | |||
2021-01-17 | openvpn: T2381: bugfix rendering multiple openvpn-options from CLI | Christian Poessinger | |
The CLI statement "set interfaces openvpn vtun10 openvpn-option '--tun-mtu 1500 --fragment 1300 --mssfix'" will render in vtun10.conf to: --tun-mtu 1500 --fragment 1300 --mssfix On startup OpenVPN complains about: openvpn-vtun10: Options error: Unrecognized option or missing or extra parameter(s) in vtun10.conf:76: tun-mtu (2.4.7) The options must be split on -- to a new configuration line. | |||
2021-01-17 | ntp: T2185: store configuration in volatile /run area | Christian Poessinger | |
2021-01-16 | vrf: T31: migrate to get_config_dict() | Christian Poessinger | |
2021-01-15 | snmp: T652: enable interface_replace_old option and restart command | Christian Poessinger | |
- Remove all old ifTable entries with the same ifName as newly appeared interface (with different ifIndex) - this is the case on e.g. ppp interfaces - Add new op-mode command "restart snmp" to restart the daemon | |||
2021-01-15 | Merge pull request #681 from jjakob/T3219-openvpn-ipv6-iroute | Christian Poessinger | |
openvpn: T3219: fix for server client subnet IPv6 iroute | |||
2021-01-15 | salt: T3157: Fix location for log file | sever-sever | |
2021-01-14 | openvpn: T3219: fix for server client subnet IPv6 iroute | Jernej Jakob | |
2021-01-14 | bgp: T2174: remove invalid "no bgp default ipv4-unicast" from default config | Christian Poessinger | |
2021-01-13 | ssh: T3212: do not make /run/sshd directory disappear on failure | Christian Poessinger | |
2021-01-13 | bgp: T2174: bugfix FRR template generation | Christian Poessinger | |
2021-01-12 | Merge pull request #679 from sever-sever/T3210 | Christian Poessinger | |
is-is: T3210: Fix three-way-handshake | |||
2021-01-12 | nat: T3186: fix negated addresses not applied from CLI | Christian Poessinger | |
2021-01-12 | Merge pull request #678 from sever-sever/T2387 | Christian Poessinger | |
bgp: T2387: Fix template for bgp redistribute proto ospfv3 | |||
2021-01-12 | is-is: T3210: Fix three-way-handshake | sever-sever | |
2021-01-12 | bgp: T2387: Fix template for bgp redistribute proto ospv3 | sever-sever | |
2021-01-12 | Revert "ntp: T2944: By default do not listen port 123 on any address" | sever-sever | |
This reverts commit ca61add5e7dea828c67ea074368196025f4cb4eb. | |||
2021-01-07 | login: radius: T3192: migrate to get_config_dict() | Christian Poessinger | |
2021-01-07 | ssh: T2635: harden Jinja2 template and daemon startup | Christian Poessinger | |