summaryrefslogtreecommitdiff
path: root/src/conf_mode
AgeCommit message (Collapse)Author
2020-04-12vyos.util: openvpn: migrate to chmod_600()Christian Poessinger
2020-04-12vyos.util: rename chmod_x() -> chmod_755()Christian Poessinger
2020-04-12wireless: T1627: typo bugfix for VLAN interfacesDavide Beatrici
The typos cause the configurator to throw an exception when a wireless VLAN is specified: Traceback (most recent call last): File "/usr/libexec/vyos/conf_mode/interfaces-wireless.py", line 1463, in <module> apply(c) File "/usr/libexec/vyos/conf_mode/interfaces-wireless.py", line 1433, in apply vlan = e.add_vlan(vif['id']) NameError: name 'e' is not defined
2020-04-11openvpn: T2273: re-use vyos.util library functionsChristian Poessinger
2020-04-11openvpn: T2273: migrate from SysVinit to systemdChristian Poessinger
2020-04-11Merge pull request #329 from thomas-mangin/T2226Christian Poessinger
util: T2226: improvement and fixes
2020-04-11Merge pull request #330 from alainlamar/T2213Christian Poessinger
wireless: T2213: bugfix: Use ieee80211n and ieee80211ac if require_vht not set
2020-04-11ifconfig: T2223: rename Section.listing to interfacesThomas Mangin
update all code using the API. Interface.interfaces() could be used but the code was change to use Section.interfaces() which make more sense when reading it.
2020-04-11Merge branch 't2264-l2tp' of github.com:c-po/vyos-1x into currentChristian Poessinger
* 't2264-l2tp' of github.com:c-po/vyos-1x: (25 commits) vpn: l2tp: sstp: T2264: create config dir on demand vpn: l2tp: T2264: migrate IPv6 prefix node to common CLI style vpn: l2tp: T2264: simplify IPv6 config dictionary elements vpn: sstp: T2008: migrate from SysVinit -> systemd vpn: sstp: T2008: bugfix KeyError 'client_gateway' vpn: l2tp: T2264: migrate from SysVinit -> systemd vpn: l2tp: T2264: remove debug pprint vpn: l2tp: T2264: proper set PPP default values to ease Jinja2 template vpn: l2tp: T2110: re-use RADIUS XML include file vpn: l2tp: T2264: remove RADIUS req-limit node vpn: l2tp: T2264: migrate to new dictionary keys for radius auth vpn: sstp: T2008: set accell default values in config dict vpn: l2tp: T2264: use "with open()" when writing config vpn: l2tp: T2264: migrate to new dictionary keys for local auth vpn: sstp: T2008: improve error message for non existent local-users vpn: l2tp: T2264: cleanup thread_cnt generation vpn: sstp: T2008: cleanup thread_cnt generation vpn: l2tp: T2264: combine WINS CLI syntax vpn: l2tp: T2264: combine IPv4/IPv6 name-server CLI syntax vpn: sstp: T2008: adjust DNS error message ...
2020-04-11vpn: l2tp: sstp: T2264: create config dir on demandChristian Poessinger
2020-04-11wireless: T2213: bugfix: Use ieee80211n and ieee80211ac if require_vht not setAlain Lamar
Use WiFi modes ieee80211ac and ieee80211n if VHT capabilities are optional. ieee80211n = 1 ieee80211ac = 1 Use only ieee80211ac if VHT capabilities are required (ieee80211n=0). ieee80211ac = 1 ieee80211n = 0 require_vht = 1 In order to make this decision, the desired WiFi operation mode needs to be known. Therefore, we must require users to set the WiFi mode. mode = (a|b|g|n|ac)
2020-04-11util: T2205: convert system login to call and cmdThomas Mangin
2020-04-11util: T2226: do not use universal_newlinesThomas Mangin
2020-04-11Merge pull request #326 from thomas-mangin/T2265Christian Poessinger
dhcp: T2265: refactor DHCP class
2020-04-11vpn: l2tp: T2264: migrate IPv6 prefix node to common CLI styleChristian Poessinger
Combining multiple options into a single CLI node is considered bad practice. IPv6 prefixes consited of the prefix itself and a mask send to the client in one node only. The following CLI parts have been migrated from client-ipv6-pool { delegate-prefix fc00:0:1::/48,64 prefix 2001:db8::/64,64 } to client-ipv6-pool { delegate fc00:0:1::/48 { delegation-prefix 48 } prefix 2001:db8::/48 { mask 64 } } Thus regular validation steps from the VyOS CLI can be used when a prefix is configured.
2020-04-11vpn: l2tp: T2264: simplify IPv6 config dictionary elementsChristian Poessinger
2020-04-11dhcp: T2265: refactor DHCP classThomas Mangin
Break the code between v4 and v6, remove need for getter/setter as they are just exposing the underlying dict. Move FixedDict from tunnel code and expose it to other part so it can be used to prevent accidental change to the dhcp option if no default exists already.
2020-04-11vpn: sstp: T2008: migrate from SysVinit -> systemdChristian Poessinger
2020-04-11vpn: sstp: T2008: bugfix KeyError 'client_gateway'Christian Poessinger
2020-04-11vpn: l2tp: T2264: migrate from SysVinit -> systemdChristian Poessinger
2020-04-11vpn: l2tp: T2264: remove debug pprintChristian Poessinger
2020-04-11vpn: l2tp: T2264: proper set PPP default values to ease Jinja2 templateChristian Poessinger
2020-04-11vpn: l2tp: T2264: migrate to new dictionary keys for radius authChristian Poessinger
2020-04-11vpn: sstp: T2008: set accell default values in config dictChristian Poessinger
This will remove the required if/else parts int he Jinja2 template.
2020-04-11vpn: l2tp: T2264: use "with open()" when writing configChristian Poessinger
2020-04-11vpn: l2tp: T2264: migrate to new dictionary keys for local authChristian Poessinger
2020-04-11vpn: sstp: T2008: improve error message for non existent local-usersChristian Poessinger
2020-04-11vpn: l2tp: T2264: cleanup thread_cnt generationChristian Poessinger
2020-04-11vpn: sstp: T2008: cleanup thread_cnt generationChristian Poessinger
2020-04-11vpn: l2tp: T2264: combine WINS CLI syntaxChristian Poessinger
There is no reason to distinguish between WINS servers in terms of priority. This is solely a task which can be done in the underlaying Python scripts.
2020-04-11vpn: l2tp: T2264: combine IPv4/IPv6 name-server CLI syntaxChristian Poessinger
There is no reason to distinguish between an IPv4 and IPv6 name-server node on the CLI - this can be done in the underlaying Python scripts.
2020-04-11vpn: sstp: T2008: adjust DNS error messageChristian Poessinger
2020-04-11vpn: l2tp: T2264: comment cleanup on chk_con()Christian Poessinger
2020-04-11vpn: l2tp: T2264: use default_config_data dictChristian Poessinger
2020-04-11vpn: l2tp: T2264: introduce common config baseChristian Poessinger
2020-04-11vpn: l2tp: T2264: import cleanupChristian Poessinger
2020-04-11vpn: l2tp: T2264: rename files to match CLI levelsChristian Poessinger
2020-04-10openvpn: T2266: fix verify for client-server bridged modejjakob
2020-04-10pppoe: T2248: connect-on-demand and vrf are mutually exclusiveChristian Poessinger
As PPP can be used to establish a connection on-demand it manages the Kernel default route. This can not be used when using VRFs which are managed by the ip-up.d and ip-down.d scripts - thus those options are now mutially exclusive. The best fix would be adding support for VRFs into PPP.
2020-04-09vxlan: T2172: add source-address optionChristian Poessinger
This is a base requirement for l2vpn evpn. When source-address is configured, the option "local <source-addr> nolearning" is appended when creating the interface as mentioned here: https://vincent.bernat.ch/en/blog/2017-vxlan-bgp-evpn
2020-04-09Revert "vxlan: T2172: remove group or remote check in verify()"Christian Poessinger
This reverts commit 195e1da6a518ee3a2cbc0e1d454317e3c05e3e6e.
2020-04-09Merge branch 'vxlan' of github.com:c-po/vyos-1x into currentChristian Poessinger
* 'vxlan' of github.com:c-po/vyos-1x: vxlan: pseudo-ethernet: T2260: convert link nodes to source-interface wireguard: T2206: fix comment in migration script pppoe: enable Jinja2 trim_blocks
2020-04-09vxlan: pseudo-ethernet: T2260: convert link nodes to source-interfaceChristian Poessinger
2020-04-09pppoe: enable Jinja2 trim_blocksChristian Poessinger
2020-04-09util: T2226: os.system was wrongly converted to runThomas Mangin
os.system does print the ouput of the command, run() does not. A new function called call() does the printing and return the error code.
2020-04-09Revert "tunnel: T2028: prevent single 'remote' keyword"Christian Poessinger
This reverts commit 37973a13bbc168c09e5f4d1e606f91fd7ffbb41a.
2020-04-09Merge pull request #317 from thomas-mangin/T2028-remoteChristian Poessinger
tunnel: T2028: fix remote and registration
2020-04-08tunnel: T2028: prevent single 'remote' keywordThomas Mangin
When the remote keywrod is ommited, the default value of '' is still set, therefore the ip command will include it. Remote is now removed if unset.
2020-04-08vyos.util: introduce chmod_750() for files/directoriesChristian Poessinger
2020-04-08wireguard: T2244: re-use interface removal code from WireGuardIf classChristian Poessinger