summaryrefslogtreecommitdiff
path: root/src/conf_mode
AgeCommit message (Collapse)Author
2019-02-22pdns_recursor check improved, spits out a message for /var/run if it's not ↵hagbard
running.
2019-02-22bugfix: static-mapping-host alias not mandatory, verification adjustedhagbard
2019-02-21Fixes: T1257: implement 'set system static-host-mapping' in host_name.py and ↵hagbard
remove old function calls
2019-02-20T1255: read in modifications from third party scripts before altering /etc/hostsChristian Poessinger
E.g. DHCP server can update /etc/hosts with somw mappings - those mappings were lost on any subsequent invocation of host_name.py
2019-02-20T1255: add newlines for 3rd party script amendmentsChristian Poessinger
2019-02-17hostname: bugfix for overwriting search domainsChristian Poessinger
2019-02-16Add header to resolver configuration fileChristian Poessinger
2019-02-16hostname: additional test case fixesChristian Poessinger
2019-02-14T1174: migrate local hostname/DNS handling to vyos-1xChristian Poessinger
2019-02-10T1213: ddclient: proper enquote web-skip parameterChristian Poessinger
2019-02-08T1234: add missing option when processing dhcp-relay packetsChristian Poessinger
2019-02-05T1231: Remove cache file of 'service dns dynamic'Christian Poessinger
When deleting or changing "service dns dynamic" the cache file of ddclient is not removed, leading to abandoned host names which might be already gone.
2019-02-04enhancement: T1225 - wireguard implement 'set int wireguard wg0 peer name ↵hagbard
disable' to disable single peers
2019-02-01[broadcast-relay] T1224: fix missing newline between comment and options.Daniil Baturin
2019-01-30Fix: T1217 - cant delete wireguard wg0 interfacehagbard
2019-01-30T1213: fix ddclient when no server is givenChristian Poessinger
2019-01-30Add build time tests for NTPkamijin_fanta
2019-01-30T1160: fix (ro|rw)community ACLChristian Poessinger
WHen building up the SNMP v2 community ro/rw access all hosts from a INET version could access even when the community was locked to one INET family. Example #1: set service snmp community bar network 172.16.0.0/12 Allowed access only to IPv4 network 172.16.0.0/12 but it allowed acces from IPv6 ::/0. Example #2: set service snmp community baz network 2001:db8::/64 Limited IPv6 access to 2001:db8::/64 but IPv4 was open to 0.0.0.0/0
2019-01-25Fix: T1178: Scheduled script breaks ability to modify configurationhagbard
2019-01-22Revert "Fix: T1178 - Scheduled script breaks ability to modify configuration"hagbard
This reverts commit 632893abf5c7bf935d866462a107ed1eef1747b3.
2019-01-21Fix: T1178 - Scheduled script breaks ability to modify configurationhagbard
2019-01-12T1041: make upstream DNS server optionalChristian Poessinger
The name-server option under "service dns-forwarding" was never mandatory so users never needed to specify an upstream server. With the recent switch to PowerDNS recursor in VyOS 1.2.0 we will act as a full DNS recursor when there is no upstream DNS server configured.
2019-01-06Fix: T1162 - WireGuard: Unable to modify tunnels - KeyError: 'state'hagbard
2019-01-06T1129: replace quotes when dealing with 'subnet/global-parameters'Christian Poessinger
2019-01-06T1129: fix handling of raw DHCP 'subnet-parameters'Christian Poessinger
subnet-parameters were not added to the resulting configuration.
2019-01-03T1147: Fix SNMP config file generation on newly installed systemsChristian Poessinger
2018-12-31T1128: restart SNMP on hostname change.Daniil Baturin
2018-12-16Revert "T1087: Firewall on Wireguard Interface implementation"Daniil Baturin
This reverts commit 51f61991092a163f680e4ec8f122e73f4074ddf9. It's not how it's done, those templates are generated by a script in vyatta-cfg-firewall. If we are planning a firewall overhaul in 1.3.x, there's no reason to transplant the old approach to new code.
2018-12-11T1087: Firewall on Wireguard Interface implementationhagbard
2018-11-30Fixes: T1061: Wireguard: Missing option to administrativly shutdown interfacehagbard
2018-11-22T835: accel-ppp: pppoe implementationhagbard
- verify if an auth mode is set and if its local checking that a user and password for chap-secrets exists.
2018-11-21T835: syslog debug message removed (to verbose)hagbard
2018-11-19T835: add missing call to write_chap_secrets() to generate()Daniil Baturin
2018-11-18T835: adding default pado delay and mode autocompletehagbard
2018-11-17T1018: remove obsoleted 'dynamic' option from NTPChristian Poessinger
Increase NTP config version from 0 to 1. For more information see [1]. ntpd: Warning: the "dynamic" keyword has been obsoleted and will be removed in the next release [1]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=553976
2018-11-14Bugfix: T835 - verify radius server settingshagbard
2018-11-14Fixes: T940 adding immark to syslog optionshagbard
2018-11-14T835: accel-ppp pppoe implemetaionhagbard
- ipv6 DNS, ippv6pool, ipv6 PD, ipv6 inf IDs - snmp subagent and master mode - connlimits configurable - more ppp options configurable (mppe, lcp-echo intervals, mtu, mru etc.) - radius extended options (for HA etc.)
2018-11-11T998: "service dns dynamic" does now honor the "use-web" statementChristian Poessinger
This bug was present since the old Vyatta days as the use-web statement was only put into action when also "use-web skip" was defined. The service https://ipinfo.io/ip does not place any crap in front of the IP address so the skip statement was not used and made no sense.
2018-11-09T835: accel-ppp pppoe implementationhagbard
2018-11-08T978: Support PowerDNS Recursor outbound queries over IPv6.Geoff Adams
This requires adding a query-local-address6 setting to enable outbound IPv6 queries in general, and also formatting upstream nameserver IPv6 addresses in such a way that Recursor can parse them.
2018-11-08dhcp - move commit hook into shared-networkBob
Move the on commit in a generated dhcpd.conf into the shared-network to fix hostfile-update not working.
2018-11-08T974: bugfix dns forwarder not listening on IPv6 addressesChristian Poessinger
By default PowerDNS only allows 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16 for incoming DNS queries - we changed this to 0.0.0.0/0 to be reachable by everyone. This only covered the IPv4 address space and any IPv6 related query was not handled by the server.
2018-11-07Merge branch 'igmproxy' into currentChristian Poessinger
* igmproxy: T959: XML/Python rewrite of "protocol igmp-proxy" and op-mode commands show-raid.xml: fixup indention Add missing VyOS copyright notices
2018-11-05T965: Fix Wireguard configuration inconsistencieshagbard
- pubkey updates now work - removing peers or interfaces work, was related tothe fact that tag nodes are called multiple times
2018-11-05T966: Traceback when deleting wireguard interfacehagbard
2018-11-05Merge branch 'current' of https://github.com/vyos/vyos-1x into currentDaniil Baturin
2018-11-05T950: make sure agentx is enabled in FRR only when SNMP is setup, and ↵Daniil Baturin
supress duplicate error messages.
2018-11-04T959: XML/Python rewrite of "protocol igmp-proxy" and op-mode commandsChristian Poessinger
Examples: ========= CFG commands: vyos@vyos# set protocols igmp-proxy disable-quickleave vyos@vyos# set protocols igmp-proxy interface eth0 alt-subnet '172.16.35.0/24' vyos@vyos# set protocols igmp-proxy interface eth0 alt-subnet '172.31.0.0/24' vyos@vyos# set protocols igmp-proxy interface eth0 role 'upstream' vyos@vyos# set protocols igmp-proxy interface eth1 role 'downstream' vyos@vyos# show protocols igmp-proxy { disable-quickleave interface eth0 { alt-subnet 172.16.35.0/24 alt-subnet 172.31.0.0/24 role upstream } interface eth1 { role downstream } } OP mode commands: ----------------- vyos@vyos:~$ show ip multicast interface Interface BytesIn PktsIn BytesOut PktsOut Local eth0 0.0b 0 0.0b 0 xxx.xxx.xxx.65 eth1 0.0b 0 0.0b 0 xxx.xxx.xx.201 vyos@vyos:~$ show ip multicast mfc Group Origin Pkts Bytes Wrong In Out xxx.x.xx.1 xxx.xx.0.1 10 9.81KB 0 eth0 eth1 xxx.x.xx.2 xxx.xx.0.1 --
2018-11-02T949: config issue when creating multiple wg interfaces at the same time.hagbard