Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-06-27 | [IPoE] T989 - IPoE implementation | hagbard | |
* chap-secrets file generation * noauth in accel config as option * local auth with csid implemented * radius implementation * shaper per user implemented * op comands for stats | |||
2019-06-22 | bfd: T1183: move "multiplier" configuration node to "interval multiplier" | Christian Poessinger | |
2019-06-22 | bfd: T1183: add rx/tx interval configuration | Christian Poessinger | |
vyos@vyos# show protocols bfd { peer 1.1.1.1 { interval { receive 400 transmit 300 } } } | |||
2019-06-22 | bfd: T1183: add support to configure detection multiplier | Christian Poessinger | |
Configures the detection multiplier to determine packet loss. The remote transmission interval will be multiplied by this value to determine the connection loss detection timer. The default value is 3. Example: when the local system has detect-multiplier 3 and the remote system has transmission interval 300, the local system will detect failures only after 900 milliseconds without receiving packets. | |||
2019-06-22 | bfd: T1183: adjust CLI syntax for source address/interface | Christian Poessinger | |
Place address/interface under new source node. vyis@vyos# show protocols bfd peer 1.1.1.1 { source { address 1.2.3.4 interface eth0.201 } } | |||
2019-06-22 | bfd: T1183: add support for multihop | Christian Poessinger | |
multihop tells the BFD daemon that we should expect packets with TTL less than 254 (because it will take more than one hop) and to listen on the multihop port (4784). When using multi-hop mode echo-mode will not work (see RFC 5883 section 3). | |||
2019-06-22 | bfd: T1183: initial CLI implementation | Christian Poessinger | |
vyos@vyos# show protocols bfd peer 172.18.202.10 { local-address 172.18.201.10 local-interface eth0.201 shutdown } peer 172.18.202.12 { shutdown } | |||
2019-06-19 | [wireguard] T1425 - assign a /31 address on Wireguard interface | hagbard | |
- added a validator for checking if the address is any cidr noted address | |||
2019-06-18 | [pppoe-server] T1452 - add vendor option to shaper | hagbard | |
2019-06-16 | T1439: remove beginning and end anchors, they are implied with re.fullmatch | Jernej Jakob | |
2019-06-16 | T1439: move DUID validator to regex | Jernej Jakob | |
2019-06-16 | T1439: add dhcpv6-client-id validator | Jernej Jakob | |
2019-06-16 | dhcpv6-server: Add name constraint, clarify help, fix typos | Jernej Jakob | |
2019-04-26 | [pppoe-server] adding CIDR based prefixes as client-ip-pool option | hagbard | |
2019-04-23 | [pppoe-server] - fixed default RADIUS attribute Filter-Id | hagbard | |
2019-04-21 | [firewall] T314: add firewall options for MSS clamping | Christian Poessinger | |
* clamp MSS IPv4 set firewall options interface pppoe0 adjust-mss '1452' * clamp MSS IPv6 set firewall options interface pppoe0 adjust-mss6 '1452' * disable entire rule set firewall options interface pppoe0 disable Output ------ $ sudo iptables-save -t mangle # Generated by iptables-save v1.4.21 on Sun Apr 21 12:56:25 2019 *mangle :PREROUTING ACCEPT [1217:439885] :INPUT ACCEPT [290:52459] :FORWARD ACCEPT [920:375774] :OUTPUT ACCEPT [301:100053] :POSTROUTING ACCEPT [1221:475827] :VYOS_FW_OPTIONS - [0:0] -A FORWARD -j VYOS_FW_OPTIONS -A VYOS_FW_OPTIONS -o pppoe0 -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --set-mss 1452 COMMIT Completed on Sun Apr 21 12:56:25 2019 (cherry picked from commit 476aa4c3a561ea0ef0bf9b4c26ec8b78d18a5d02) | |||
2019-04-20 | Revert "[hostname] T1336: trailing dots in system domain-name are invalid" | Christian Poessinger | |
This reverts commit 05c539ea5595790b297904569cbe13089ce79e18. | |||
2019-04-20 | [hostname] T1336: trailing dots in system domain-name are invalid | Christian Poessinger | |
Debian/Systemd provides hostnamectl which disabllows setting a FQDN when there is a trailing (.) in the provided hostname. Extend regex when setting "system domain-name" that there can't be a trailing (.). Provide migration script for current installations to remove the dot. | |||
2019-04-18 | [pppoe-server] - typo corrected | hagbard | |
2019-04-18 | [pppoe-server] T1341 - Adding rate-limiter for pppoe server users | hagbard | |
- RADIUS shaper settings | |||
2019-04-18 | [pppoe-server] T1341 - Adding rate-limiter for pppoe server users | hagbard | |
- implementation for locally definied users | |||
2019-04-03 | [dhcpv6-relay] T1322: support multiple upstream servers | Christian Poessinger | |
Add support for relaying a DHCPv6 packet to multiple servers on one upstream interface. | |||
2019-03-11 | [arp] - T1288: python implemtation of 'set protocols static arp' | hagbard | |
2019-03-08 | T103: [dhcp-server] add support to configure host declarative names | Christian Poessinger | |
2019-03-07 | [rsyslog] T1282 - Configure VyOS to send syslog messages to remote syslog ↵ | hagbard | |
using fully-qualified domain name | |||
2019-03-06 | [pptp] added command completion and regex to check user input | hagbard | |
2019-03-06 | [pptp] adding mppe interface menu | hagbard | |
2019-03-06 | Merge remote-tracking branch 'upstream/current' into current | hagbard | |
2019-03-06 | [dhcp-relay] add completion helper to relay-agents-packets | Christian Poessinger | |
2019-03-05 | T833: accel-ppp: pptp implementation | hagbard | |
2019-02-21 | Fixes: T1257: implement 'set system static-host-mapping' in host_name.py and ↵ | hagbard | |
remove old function calls | |||
2019-02-14 | T1174: migrate local hostname/DNS handling to vyos-1x | Christian Poessinger | |
2019-02-11 | IP validation for allowed ip corrected. | hagbard | |
2019-02-09 | fixes T1238 - Wireguard allows invalid IP's | hagbard | |
2019-02-04 | description text changed back for interface disable | hagbard | |
2019-02-04 | enhancement: T1225 - wireguard implement 'set int wireguard wg0 peer name ↵ | hagbard | |
disable' to disable single peers | |||
2019-01-30 | dynamic-dns: add completion list for service providers | Christian Poessinger | |
2019-01-12 | T1041: make upstream DNS server optional | Christian Poessinger | |
The name-server option under "service dns-forwarding" was never mandatory so users never needed to specify an upstream server. With the recent switch to PowerDNS recursor in VyOS 1.2.0 we will act as a full DNS recursor when there is no upstream DNS server configured. | |||
2018-12-16 | Revert "T1087: Firewall on Wireguard Interface implementation" | Daniil Baturin | |
This reverts commit 51f61991092a163f680e4ec8f122e73f4074ddf9. It's not how it's done, those templates are generated by a script in vyatta-cfg-firewall. If we are planning a firewall overhaul in 1.3.x, there's no reason to transplant the old approach to new code. | |||
2018-12-11 | T1087: Firewall on Wireguard Interface implementation | hagbard | |
2018-12-09 | T1091: extend DNS forwarding/DNSSEC completion help text | Christian Poessinger | |
2018-12-09 | T1091: add DNS forwarding completion helpers for DNSSEC | Christian Poessinger | |
2018-11-30 | Fixes: T1061: Wireguard: Missing option to administrativly shutdown interface | hagbard | |
2018-11-26 | T835: improve help text for PPPoE CLI. | Daniil Baturin | |
2018-11-23 | T835: adding description to ppp-options | hagbard | |
2018-11-19 | T835: migration script for radius' secret vs. key, rolled back the | hagbard | |
change to 'mode local|radius' | |||
2018-11-18 | T835: adding default pado delay and mode autocomplete | hagbard | |
2018-11-17 | T1018: remove obsoleted 'dynamic' option from NTP | Christian Poessinger | |
Increase NTP config version from 0 to 1. For more information see [1]. ntpd: Warning: the "dynamic" keyword has been obsoleted and will be removed in the next release [1]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=553976 | |||
2018-11-14 | Fixes: T940 adding immark to syslog options | hagbard | |
2018-11-14 | T835: accel-ppp pppoe implemetaion | hagbard | |
- ipv6 DNS, ippv6pool, ipv6 PD, ipv6 inf IDs - snmp subagent and master mode - connlimits configurable - more ppp options configurable (mppe, lcp-echo intervals, mtu, mru etc.) - radius extended options (for HA etc.) |