Age | Commit message (Collapse) | Author | |
---|---|---|---|
2024-05-23 | nat66: T6365: remove warnings for negated interface selections by name | Christian Breunig | |
(cherry picked from commit 59781ff365a5e1b15ef6c4c2481f3d3815548b9d) | |||
2024-04-02 | nat: T2199: always use full nft command name (e.g. --file over -f) | Christian Breunig | |
(cherry picked from commit e257155aea09b906d8784cb6143d3ab27578c4a8) | |||
2024-01-22 | firewall: T5729: T5681: T5217: backport subsystem from current branch | Christian Breunig | |
This is a combined backport for all accumulated changes done to the firewall subsystem on the current branch. | |||
2023-12-29 | nat: T5681: relax wording on non existing interface Warning message | Christian Breunig | |
Remove the word "error" from a Warning only message to not irritate the user. (cherry picked from commit 9f863a50f1ac6c81782df6c43f7df816d9e11b16) | |||
2023-12-21 | nat66: T2898: build fix after ndp-proxy backport | Christian Breunig | |
2023-12-21 | T2898: add ndp-proxy service | Christian Breunig | |
VyOS CLI command set service ndp-proxy interface eth0 prefix 2001:db8::/64 mode 'static' Will generate the following NDP proxy configuration $ cat /run/ndppd/ndppd.conf # autogenerated by service_ndp-proxy.py # This tells 'ndppd' how often to reload the route file /proc/net/ipv6_route route-ttl 30000 # This sets up a listener, that will listen for any Neighbor Solicitation # messages, and respond to them according to a set of rules proxy eth0 { # Turn on or off the router flag for Neighbor Advertisements router no # Control how long to wait for a Neighbor Advertisment message before invalidating the entry (milliseconds) timeout 500 # Control how long a valid or invalid entry remains in the cache (milliseconds) ttl 30000 # This is a rule that the target address is to match against. If no netmask # is provided, /128 is assumed. You may have several rule sections, and the # addresses may or may not overlap. rule 2001:db8::/64 { static } } (cherry picked from commit 4d721a58020971d00ab854c37b68e88359999f9c) | |||
2023-11-01 | T5681: Firewall,Nat and Nat66: simplified and standarize interface matcher ↵ | Nicolas Fort | |
firewal, nat and nat66. (cherry picked from commit 51abbc0f1b2ccf4785cf7f29f1fe6f4af6007ee6) | |||
2023-08-07 | T5319: remove workarounds for defaults in nat66.py | John Estabrook | |
2023-07-15 | T5195: vyos.util -> vyos.utils package refactoring part #2 | Christian Breunig | |
2023-07-14 | T5195: vyos.util -> vyos.utils package refactoring (#2093) | Christian Breunig | |
* T5195: move run, cmd, call, rc_cmd helper to vyos.utils.process * T5195: use read_file and write_file implementation from vyos.utils.file Changed code automatically using: find . -type f -not -path '*/\.*' -exec sed -i 's/^from vyos.util import read_file$/from vyos.utils.file import read_file/g' {} + find . -type f -not -path '*/\.*' -exec sed -i 's/^from vyos.util import write_file$/from vyos.utils.file import write_file/g' {} + * T5195: move chmod* helpers to vyos.utils.permission * T5195: use colon_separated_to_dict from vyos.utils.dict * T5195: move is_systemd_service_* to vyos.utils.process * T5195: fix boot issues with missing imports * T5195: move dict_search_* helpers to vyos.utils.dict * T5195: move network helpers to vyos.utils.network * T5195: move commit_* helpers to vyos.utils.commit * T5195: move user I/O helpers to vyos.utils.io | |||
2022-09-21 | nat66: T4605: Refactor NAT66 to use python module for parsing rules | sarthurdev | |
* Rename table to vyos_nat * Refactor tests to use `verify_nftables` format | |||
2022-08-05 | nat66: T4598: Add exclude options in nat66 | Nicolas Fort | |
2022-05-01 | firewall: T4353: fix Jinja2 linting errors | Christian Poessinger | |
2022-04-16 | vyos.base: use Warning() helper where applicable | Christian Poessinger | |
2022-01-01 | nat: T2199: rename iptables -> nftables variable prefix | Christian Poessinger | |
2021-12-06 | firewall: T2199: Migrate firewall to XML/Python | sarthurdev | |
2021-09-27 | nat66: T3863: ndppd requires interfaces to be present | Christian Poessinger | |
2021-08-18 | nptv6: T2518: remove superfluous else clause on missing outbound-interface | Christian Poessinger | |
2021-08-18 | nptv6: T2518: add missing verify() stage for mandatory translation address | Christian Poessinger | |
2021-08-18 | nat66: ndppd: T2518: rename Jinja2 template folder to match common naming ↵ | Christian Poessinger | |
convention | |||
2021-03-14 | nat66: T2518: Modify the command line description of NAT/NAT66 | jack9603301 | |
2021-03-13 | nat: nat66: T2518: Support operation mode command | jack9603301 | |
2021-03-09 | nptv6: T2518: Support IPv6 address translation | jack9603301 | |
2021-01-24 | nptv6: T2518: Remove obsolete references | jack9603301 | |
2021-01-24 | nptv6: T2518: Delete redundant blank lines | jack9603301 | |
2021-01-23 | nptv6: T2518: Delete the ndppd configuration file when the ndppd service ↵ | jack9603301 | |
does not need to be enabled | |||
2021-01-23 | nptv6: T2518: Optimized implementation | jack9603301 | |
2021-01-23 | nptv6: T2518: outbound_interface cannot be any, inbound_interface can be any | jack9603301 | |
2021-01-23 | nptv6: T2518: Improved template generation | jack9603301 | |
2021-01-23 | nptv6: T2518: Initial support for nat66 (NPT) | jack9603301 | |