summaryrefslogtreecommitdiff
path: root/data
AgeCommit message (Collapse)Author
2020-12-28webproxy: T563: migrate from old Perl code to XML and get_config_dict()Christian Poessinger
Basic proxy functionality is working but the squidguard smoketest still fails as this is yet not implemented.
2020-12-22Merge pull request #657 from Cheeze-It/currentChristian Poessinger
mpls: T915: Add ordered control for LDP
2020-12-22mpls: T915: Add ordered control for LDPCheeze_It
In here we are adding the latest FRR update to allow for LDP label distribution to operate in ordered control mode.
2020-12-21openvpn: T3143: Push routes in correct format <IP> <NETMASK>DmitriyEshenko
2020-12-21flow-accounting: T3141: remove legacy jinja2 templateJan-Philipp Benecke
2020-12-20flow-accounting: T3141: Fixing wrongly formated configJan-Philipp Benecke
2020-12-20wifi: T3043: country-code should be lower caseChristian Poessinger
2020-12-20Merge pull request #647 from jpbede/feature/flowacc-enable-egressChristian Poessinger
flow-accounting: T3132: enable egress traffic accounting
2020-12-17T3135: bfd template missing newlinesbedmisten
trim blocks removes newlines after {% endif %} blocks. Added the required newlines.
2020-12-17flow-accounting: T3132: enable egress traffic accountingJan-Philipp Benecke
2020-12-12dhcpv6-pd: pppoe: T2677: always restart daemonChristian Poessinger
2020-12-09dns: T3121: recursion zone bugfixNEOMorphey
2020-12-09Merge pull request #639 from Cheeze-It/currentChristian Poessinger
mpls-conf: T915: Add LDP import and export control
2020-12-08mpls-conf: T915: Add LDP import and export controlCheeze_It
In this commit we added the ability to control import and export of LDP FECs. This allows for an operator to specify which to filter on ingress, and which to not announce on egress.
2020-12-08openvpn: T3117: fix generated ncp-ciphers in server configChristian Poessinger
2020-12-08bgp: T2174: Fix Template. Update to use FRRConfig frameworksever-sever
2020-12-07Merge pull request #636 from c-po/t2562-dhcpChristian Poessinger
dhcp: T2562: add "listen-address" CLI node for better DHCP relay support
2020-12-06Merge pull request #635 from Cheeze-It/currentChristian Poessinger
mpls-conf: T915: Add LDP local label allocation control
2020-12-06dhcpv6: T3100: migrate server configuration to get_config_dict()Christian Poessinger
2020-12-06dhcp: T2562: add "listen-address" CLI node for better DHCP relay supportChristian Poessinger
Running ISC DHCP server as backend server for multiple pools served to relay agents requires DHCPd to explicitly listen on give interfaces or a "transit" subnet declaration facing the network where we receive the DHCPREQ messages on. This implements a new "listen-address" CLI node, the given address is validated if it is assigned to the system and upon success, a proper "subnet { }" statement is added into dhcpd.conf
2020-12-06dhcp: T3113: bugfix for multiple domain-search entriesChristian Poessinger
While rewriting the code to get_config_dict() in commit 84b7ade286 ("dhcp: T3100: migrate server configuration to get_config_dict()") a regression was added not properly joining strings when multiple search-somains had been given. Wrong: domain-search "domain1, domain2"; Correct: domain-search "domain1", "domain2";
2020-12-06mpls-conf: T915: Add LDP local label allocation control.Cheeze_It
In this commit we added the ability to control the local label allocation control for FECs. It allows for the router to not allocate a label for every interface, just the interfaces that are desired by the operator.
2020-12-04dhcp: T3100: migrate server configuration to get_config_dict()Christian Poessinger
2020-12-04pppoe: T3112: drop "ipv6 enable" optionChristian Poessinger
IPv6 enable can be considered once the ipv6 node is present!
2020-12-03Merge pull request #630 from sever-sever/T1316Christian Poessinger
isis: T1316: Fix isis delete section. Use an updated frr framework
2020-12-03isis: T1316: Fix isis delete section. Use an updated frr frameworksever-sever
2020-12-03hostsd: T3105: fix wrong new-line handling after template processor changeChristian Poessinger
Commit c87ad948999 ("vyos.template: T2720: fix remaining in-line time_block syntax") did not take into account when there is an if/endif statement on one line, the following new-line will be discarded.
2020-12-01smoketest: dhcp: T3100: add testcase for static host mappingsChristian Poessinger
2020-12-01dhcp: T3100: fix template indention levelsChristian Poessinger
2020-12-01dhcpv6: T1433: combine templates for v4 and v6Christian Poessinger
2020-11-29dhcpv6-relay: T3095: improve verify()Christian Poessinger
- Upstream interfaces require a DHCPv6 server to be configured - Listen interface must have a a global unicast address assigned, else ISC dhcrelay won't start.
2020-11-29dhcpv6-relay: T3095: migrate service to get_config_dict()Christian Poessinger
2020-11-29smoketest: dhcp-relay: T3095: remove non referenced function from unittestChristian Poessinger
2020-11-29ntp: T2297: support configuration of NTP poolChristian Poessinger
set system ntp server <server> pool
2020-11-29dhcp-relay: T3095: migrate service to get_config_dict()Christian Poessinger
2020-11-29smoketest: dhcp-relay: T3095: initial testsChristian Poessinger
2020-11-28nat: T3092: migrate to get_config_dict()Christian Poessinger
The NAT system consists out of nested tag nodes which makes manual parsing very hard. This is a perfect candidate for migrating this to get_config_dict() as there is already a smoketest in place. In addition this should make it easier to add features like static nat/hairpin.
2020-11-28vyos.template: T2720: fix remaining in-line time_block syntaxChristian Poessinger
Commit a2ac9fac ("vyos.template: T2720: always enable Jinja2 trim_blocks feature") globally enabled the trim_blocks feature. Some templates still used in-line trim_blocks "{%"- or "-%}" which caused miss-placed line endings. This is fixed by removing all in-line trim_block statememnts of Jinja2 templates.
2020-11-27vyos.template: T2720: fix resolv.conf trim blocksChristian Poessinger
After commit a2ac9fac16eeb626d3969092fecf463650750640 remove no longer required template trim block statements.
2020-11-27igmp-proxy: T3088: migrate to get_config_dict()Christian Poessinger
2020-11-23mpls: T915: drop superfluous "-%}" from Jinja2 templateChristian Poessinger
Trimming blocks manually is not needed as the renderer is already called with the 'trim_blocks' option.
2020-11-23openvpn: T3074: fix site-2-site operation modeChristian Poessinger
When rendering the configs "ifconfig" statement wrong IP addresses have been used for the "tun" operating mode. This has been corrected.
2020-11-23Merge pull request #616 from Cheeze-It/currentChristian Poessinger
mpls-conf: T915: Refactored template, handler, added global features
2020-11-22mpls-conf: T915: Refactored FRR LDP template, MPLS handler, added MPLS ↵Cheeze_It
global features So this is a big update. The first thing that was done was a refactor to the FRR LDP template, MPLS handler, and XML conf tree MPLS global additions. The refactors should work and I did test them in my lab. It seems that everything does work as needed so far in my testing. There is something here that is considered configuration breaking from the old setup though. In the old setup the MPLS interface operation (as in the interfaces accepting MPLS labels and processing them) was tied with LDP. What this means is that MPLS processing was enabled at the same time as LDP interfaces were configured. We do not want this behavior for the future as there's other MPLS underlay technologies like SR and RSVP. If someone wants to enable SR or RSVP without enabling LDP then they now can. Before, they couldn't. The other additions are global changes to MPLS TTL propagation and MPLS max TTL enforcement. They have now been added. Lastly, there is an frr-reload bug that Runar Borge found with this. We have found that when totally deleting LDP that there has to be 3 commits done. This is because frr-reload doesn't properly do what it needs to do in 1 operation so we had to do 3. This will only affect people that are doing an entire LDP clear using "delete protocols mpls ldp." Otherwise it isn't seen. Anyway, this refactor now works with the FRR daemon directly for all changes. This also makes it much easier for adding stuff in the future. Thank you
2020-11-22bgp: T2174: refactor Jinja template and reduce redundant pathsChristian Poessinger
The Jinja2 template contained a lot of redundant paths which only differed in either the address-family or neighbor vs. peer-group. This paths have been combined into for loops and a macro for generating a neighbor statement as peer-groups and regular neighbors share ~95% of the config.
2020-11-22openvpn: T3080: add missing multiplication on keepalive config optionChristian Poessinger
2020-11-21openvpn: T3060: fix client authentication username and password fileChristian Poessinger
2020-11-21openvpn: T3060: always listen op IPv4 and IPv6 socketsChristian Poessinger
2020-11-21system: T3078: fix vyos-configd handling for "system option" pathChristian Poessinger
In commit 193323ba ('system: T3078: rename "system options" -> "system option'") the Python handler was renamed but so was not the JSON file corresponding to the vyos-configd enabled scripts.
2020-11-20Merge pull request #614 from sever-sever/T439Christian Poessinger
policy-conf: T439: Add policy local-route PBR