summaryrefslogtreecommitdiff
path: root/src/conf_mode
AgeCommit message (Collapse)Author
2022-05-01Merge pull request #1284 from c-po/t4363-salt-equuleusChristian Poessinger
T4363: salt-minion: default mine_interval option is not set
2022-04-29openvpn: T4369: enforce daemon-restart on openvpn-option CLI changeChristian Poessinger
(cherry picked from commit e36efa6b5df764982678a470b7aa82a33c1c369c)
2022-04-28Merge pull request #1286 from c-po/t4633-geneve-equuleusChristian Poessinger
geneve: T4366: prevent interface re-creation when not required
2022-04-18dhcp-server: T4344: Fix underscores for shared network nameViacheslav Hletenko
Shared network name should not be handled by tag node mangling I.e. should not replace underscores with dashed set service dhcp-server shared-network-name NET_01 shared-network NET_01 { authoritative; ... on commit { set shared-networkname = "NET_01"; } } (cherry picked from commit b75b351b7dd2ec87407f98668468b1fc146428bf)
2022-04-18geneve: T4366: prevent interface re-creation on nasic parameter changeChristian Poessinger
Changing the geneve interface description does destroy the interface on the kernel level - this should be avoided as it's ... stupid! (cherry picked from commit 3cbe7878bcadc0f3ecbaeab46d745b5510c26b0d)
2022-04-15salt-minion: T4363: mine_interval option is not setChristian Poessinger
(cherry picked from commit 3ec3c7f5b523b464a3bc7168b2362611d9c2c153)
2022-04-08Merge pull request #1263 from c-po/wwan-t4324-equuleusDaniil Baturin
T4324, T4338, T4339 WWAN interface bugfixes
2022-04-07ipv6: T4346: deprecate CLI command to disable IPv6 address familyChristian Poessinger
(cherry picked from commit 0f7e5371e702d4e2389f6fa6dfbda11bc9da6257)
2022-04-07Merge pull request #1268 from c-po/t4341-ssh-loginDaniil Baturin
T4341 SSH and system login fixes + smoketests
2022-04-07Merge pull request #1261 from c-po/t4319-disable-ipv6-equuleusDaniil Baturin
T4319: bugfixes for disabled IPv6 (equuleus)
2022-04-05dns: forwarding: T3804: bugfix DHCP name-servers used for recursionChristian Poessinger
Commit 2ecf7a9f9c ('name-server: T3804: merge "system name-servers-dhcp" into "system name-server"') missed out an old dictionary key "system_name_server_dhcp" and thus system nameservers configured via DHCP did not get used for the DNS forwar recursor. (cherry picked from commit 806ff50bf1a970d731c2227f9d2cd2342b8a1b4e)
2022-04-04login: T4341: busy wait on userdel(8) until the account was deleted successfullyChristian Poessinger
(cherry picked from commit 796178f69ce09e28ab9f20c7b5e1ce97ef00a1ff)
2022-04-04login: T4341: disable user account prior to deletionChristian Poessinger
(cherry picked from commit efa753bc661d04967237e7ec3d72d3757230aaf9)
2022-04-04wwan: T4338: changing interface description should not trigger reconnectChristian Poessinger
Changing the WWAN interface description will trigger an interface reconnect. Reconnects should only be triggered in changes to the connection parameters like bond interfaces. (cherry picked from commit 76a049c7d30f3e64989b9697d65d15bfd3005316)
2022-04-03wwan: T4324: properly start/stop ModemManager and cron helper on interface ↵Christian Poessinger
add/removal (cherry picked from commit c58a03ad76b2a0680a33fcfec3ab7a3545374abb)
2022-03-30vrf: T4319: do not add IPv6 localhost address if IPv6 is disabledChristian Poessinger
(cherry picked from commit c33a96f6f0f0259808992b246b1a550fcf9a454a)
2022-03-28Revert "backport: T4515: T4219: policy local-route6 and inbound-interface ↵Daniil Baturin
support"
2022-03-27graphql: T3993: add unsettable gql option; this is not exposed by CLIJohn Estabrook
(cherry picked from commit 9d3acc2b55f2d1c563f1941e59c98c159211dc58)
2022-03-25mpls: T915: use vyos.util.sysctl_write() helper functionChristian Poessinger
(cherry picked from commit cabe0c06e2312cc872d3e22d91611a3ccecefdb0)
2022-03-25vyos.util: T4319: rename sysctl() -> sysctl_write()Christian Poessinger
(cherry picked from commit 364009e4317fb5c6732635726b511613aa2ed519)
2022-03-25system: T4319: align ipv6 settings with ipv4 by using get_config_dict()Christian Poessinger
(cherry picked from commit 1b16a4eab926462c0d2752d698bedf28c995058d)
2022-03-24Merge pull request #1210 from sever-sever/T4230-equChristian Poessinger
openvpn: T4230: Delete checks if local-host address assigned
2022-03-24openvpn: T4294: force service restart on openvpn-option node changeChristian Poessinger
(cherry picked from commit 999b1e50dfdea8694174e82d22b2438cb1bf5e28)
2022-03-23Merge pull request #1235 from hensur/equuleus-ipv6-local-routeChristian Poessinger
backport: T4515: T4219: policy local-route6 and inbound-interface support
2022-03-15bonding: T4301: Fixed arp-monitor optionzsdc
In verify function for arp-monitor option was used by mistake an extra conversion for incoming data before comparing items. This commit removed these unnecessary conversions and makes the option operable. (cherry picked from commit df4b544c29974e36b52fc42bcbf617f50738a4a6)
2022-02-23backport: policy: T4219: add local-route(6) incoming-interfaceHenning Surmeier
2022-02-23backport: policy: T4151: remove all previous rules on editHenning Surmeier
2022-02-23backport: policy: T4151: Bugfix policy ipv6-local-routeHenning Surmeier
2022-02-23backport: policy: T4151: Add policy ipv6-local-routeHenning Surmeier
Adds support for `ip -6 rule` policy based routing. Also, extends the existing ipv4 implemenation with a `destination` key, which is translated as `ip rule add to x.x.x.x/x` rules. https://phabricator.vyos.net/T4151
2022-02-23pbr: T3702: Fix incorrect splits for fwmarkViacheslav
2022-02-23pbr: T3702: Add rules match fwmarkViacheslav
2022-02-23tunnel: T4267: "parameters ip key" on GRE not required for different remotesChristian Poessinger
(cherry picked from commit e64d45717940aa4fb4a072065bdfa04f884d00cc)
2022-02-22vxlan: T4264: interface is destroyed and rebuild on description changeChristian Poessinger
When changing "general" parameters like: - interface IP address - MTU - description the interface is destroyed and recreated ... this should not happen! (cherry picked from commit 2373b232849c847717cbdcfac7390d8376e227ca)
2022-02-22Revert "backport: policy: T4151: Add policy ipv6-local-route"Christian Poessinger
This reverts commit e11a7ff1b2817cc8f4b595171fe82a43a209ebc2.
2022-02-22Revert "backport: policy: T4151: Bugfix policy ipv6-local-route"Christian Poessinger
This reverts commit ed7c674da17519e6331a9cef8522c5e49251d505.
2022-02-22Revert "backport: policy: T4151: remove all previous rules on edit"Christian Poessinger
This reverts commit b71a04811bd61e1faf2bc4eaceaaae8bdbf97dc6.
2022-02-22Revert "backport: policy: T4219: add local-route(6) incoming-interface"Christian Poessinger
This reverts commit 72d7152f794cfe48821797d62865024c1843096e.
2022-02-21vxlan: T4120: code cleanup for multiple remotesChristian Poessinger
(cherry picked from commit 3a605ad020d8d20b08a72cb1284f6e590d1fd7b5)
2022-02-21bridge: remove unreferenced import -> leaf_node_changedChristian Poessinger
(cherry picked from commit 25b2f2a8057260ad0d2c59823618d7c9f0fba707)
2022-02-21vxlan: T4120: add ability to set multiple remotes (PR #1127)Andreas
VXLAN does support using multiple remotes but VyOS does not. Add the ability to set multiple remotes and add their flood lists using "bridge" command. (cherry picked from commit 0ecddff7cffa8900d351d5c15e32420f9d780c0b)
2022-02-19Merge pull request #1219 from hensur/equuleus-ipv6-local-routeChristian Poessinger
backport: T4515: T4219: policy local-route6 and inbound-interface support
2022-02-16backport: policy: T4219: add local-route(6) incoming-interfaceHenning Surmeier
2022-02-15openvpn: T3686: Fix for check local-address in script and tmplViacheslav Hletenko
Local-address should be checked/executed only if it exists in the openvpn configuration, dictionary, jinja2 template (cherry picked from commit 230ac0a202acd7ae9ad9bccb9e777ee5a0e0b7b7)
2022-02-14backport: policy: T4151: remove all previous rules on editHenning Surmeier
2022-02-14backport: policy: T4151: Bugfix policy ipv6-local-routeHenning Surmeier
2022-02-14backport: policy: T4151: Add policy ipv6-local-routeHenning Surmeier
Adds support for `ip -6 rule` policy based routing. Also, extends the existing ipv4 implemenation with a `destination` key, which is translated as `ip rule add to x.x.x.x/x` rules. https://phabricator.vyos.net/T4151
2022-02-14tunnel: T4154: import cleanupChristian Poessinger
(cherry picked from commit 122c7a53575f67759f157e02eca776f799658dc1)
2022-02-14tunnel: T4154: verify() no more then one GRE tunnel is used w/o "ip key" per ↵Christian Poessinger
interface It is impossible for the OS kernel to distinguish multiple GRE tunnels when no "gre key" is configured when sourcing tunnels from the same interface. (cherry picked from commit 6f1326d6b68f6dcb83843374c876407ef2922bd1)
2022-02-13vrf: T4191: bugfix for "ip rule" when VRFs are createdChristian Poessinger
We always mangled and worked on the "ip rule" singleton even when nothing needed to be changed. This resulted in a VRF hickup when the same VRF was added and removed multiple times. set interfaces ethernet eth1 vrf foo set vrf name foo table '1000' commit delete interfaces ethernet eth1 vrf delete vrf commit set interfaces ethernet eth1 vrf foo set vrf name foo table '1000' commit broke reachability on eth1 - a reboot was required. This change will now only alter the ip rule tables once when VRF instances are created for the first time and will not touch the Kernel "ip rule" representation afterwards. (cherry picked from commit 2cec431e5caf9df85640f707cd6dc3077c17c238)
2022-02-11conntrack-sync: T4237: Fix checks for listen-address list to strViacheslav Hletenko
Verify section conntrack_sync.py funciton 'is_addr_assigned' should checks address as string not as list