Age | Commit message (Collapse) | Author | |
---|---|---|---|
2018-11-02 | T949: config issue when creating multiple wg interfaces at the same time. | hagbard | |
2018-11-02 | T939: Remove possibility to specify DHCP relay port | Christian Poessinger | |
2018-10-28 | T923: enable AgentX in FRR after SNMP is configured. | Daniil Baturin | |
2018-10-25 | T938: do not bind DHCP relay to default port if unspecified | Christian Poessinger | |
Binding isc-dhcp-relay to its default port (67 e.g. for IPv4) will result in an error when starting up the service: bad: ---- $ dhcrelay -q -4 -p 67 -c 10 -A 576 -m discard -i eth0.21 -i eth0 10.253.253.1 binding to user-specified port 67 good: ----- $ dhcrelay -q -4 -c 10 -A 576 -m discard -i eth0.21 -i eth0 10.253.253.1 Setting removed from the IPv6 implementation, too! | |||
2018-10-25 | T933: vrrp split brain while using unicast mode and virtual mac address | hagbard | |
- adding vmac_xmit_base to keepalived.conf when use_vmac is being used otherwise both nodes will become master | |||
2018-10-21 | T634: remove 'service ssh allow-root' | Christian Poessinger | |
2018-10-20 | SNMP: update comments in Python generator | Christian Poessinger | |
2018-10-20 | T923: support SNMP integration with FRR routing daemon | Christian Poessinger | |
2018-10-19 | Merge branch 'dhcp-relay' into current | Christian Poessinger | |
* dhcp-relay: dhcpv6-relay: added missing verify() step for listen and upstream interfaces T913: DHCP relay service XML/Python rewrite for IPv6 T913: DHCP relay service XML/Python rewrite for IPv4 vyos-1x now depends on isc-dhcp-relay dns-forwarding: fix XML interface indenting | |||
2018-10-19 | dhcpv6-relay: added missing verify() step for listen and upstream interfaces | Christian Poessinger | |
2018-10-19 | Add Client keepalive option for use with cloud-init | UnicronNL | |
Add option to specify multiple listening ports Clean up template generation layout | |||
2018-10-17 | T913: DHCP relay service XML/Python rewrite for IPv6 | Christian Poessinger | |
2018-10-17 | T913: DHCP relay service XML/Python rewrite for IPv4 | Christian Poessinger | |
2018-10-14 | T896: Fix dynamic DNS for CUSTOM provider | Christian Poessinger | |
JINJA2 templated missed the 'server=' statement when generating custom dynamic DNS entries in the resulting ddclient.conf. | |||
2018-10-14 | T898: add a script for checking if a bridge has configured members. | Daniil Baturin | |
2018-09-29 | T855: fix SNMP python verify() to allow non group assignment | Christian Poessinger | |
VyOS 1.1.8 support SNMPv3 without a group beeing assigned to a user. This was yet not supported in VyOS 1.2.0. Use for testing: ================ set service snmp v3 user testsnmpv3 auth plain 'authkey12345' set service snmp v3 user testsnmpv3 auth type sha set service snmp v3 user testsnmpv3 mode ro set service snmp v3 user testsnmpv3 privacy plain 'privkey12345' set service snmp v3 user testsnmpv3 privacy type aes | |||
2018-09-21 | Merge pull request #47 from Watcher7/current | Christian Poessinger | |
Bring VRRP configuration in line with keepalived config documentation. | |||
2018-09-16 | T850: SNMP: improve non existing listen-address assignments | Christian Poessinger | |
2018-09-16 | snmp: fix python script indention | Christian Poessinger | |
2018-09-16 | T850: tftp server: improve non existing listen-address assignments | Christian Poessinger | |
2018-09-10 | snmp.py: proper creation of non network bound SNMP communities | Christian Poessinger | |
2018-09-10 | snmp.py: improve JINJA2 template robustness | Christian Poessinger | |
2018-09-08 | T836: syslog messages split accross multiple files | hagbard | |
- logs now only to /var/log/messages per default - enforces the global template from /usr/share/vyos/rsyslog/rsyslog.conf | |||
2018-09-05 | T831: ntp.py: fix restrict configuration keyword to allow clients to sync up | Christian Poessinger | |
2018-09-04 | dhcp_server.py: bugfix pool assignment | Christian Poessinger | |
Commit 91c3b8bdd9 ("dhcp_server.py: cleanup") did not only cleanup parts of the code but in addition added support for DHCP failover. That support could lead to an empty pool {} statement if the subnet declaration only had static address assignments but no range at all. ---<snip>--- dhcpd: /etc/dhcp/dhcpd.conf line 70: Pool declaration with no address range. dhcpd: } dhcpd: ^ dhcpd: Pool declarations must always contain at least dhcpd: one range statement. ---</snip>--- | |||
2018-09-02 | Merge remote-tracking branch 'upstream/current' into T793 | hagbard | |
2018-09-02 | T793: wireguard preshared-key implementation | hagbard | |
- the psk is only read from a file, due to sudo it's redirection doesn't work file is created in /tmp (it's tmpfs), wg comand executed and the psk file is deleted again, to avoid leakage of the psk. It's create umaks(077) and root:root | |||
2018-09-02 | mdns_repeater: cleanup python implementation | Christian Poessinger | |
2018-09-01 | snmp.py: improve daemon startup | Christian Poessinger | |
The previous implementation used a hardcoded 2 seconds sleep until the daemon configuration was rendered by snmpd (user/password stuff). Waiting 2 seconds is error prone and was replaced by reading the configuration file until it shows a marker indicating that the file was properly processed by snmpd. | |||
2018-09-01 | snmp.py: beautify generated snmp.conf #2 | Christian Poessinger | |
2018-09-01 | snmp.py: bugfix - CLI client community node was not processed | Christian Poessinger | |
2018-09-01 | snmp.py: bugfix writing rocommunity string in config | Christian Poessinger | |
2018-09-01 | snmp.py: beautify generated snmp.conf | Christian Poessinger | |
2018-09-01 | T771: snmp.px: reduce syslog noise | Christian Poessinger | |
2018-08-31 | T811: dhcpv6_server.py: add missing validators when comitting config changes | Christian Poessinger | |
2018-08-31 | dhcp_server.py: cleanup | Christian Poessinger | |
2018-08-31 | bcast_relay.py: remove obsolete import statement | Christian Poessinger | |
2018-08-30 | Update vrrp.py | Watcher7 | |
2018-08-30 | T778: dhcpv6-server: XML and Python rewrite | Christian Poessinger | |
2018-08-30 | dhcp_server.py: rework verify() error messages/error checking | Christian Poessinger | |
Commit 067a6b1524 ("vyos: package: extend validator by is_subnet_connected()") added a mechanism to probe if a given IPv4/IPv6 address is connected to any interface on the subnet - or is part of this subnet. We now use this call instead of producing more and more biler-plate code! | |||
2018-08-30 | T813: fix the check for duplicate VRIDs on the same interface (patch by ↵ | Daniil Baturin | |
Watcher7). | |||
2018-08-29 | snmp.py: only write 'oldEngineID' to config if v3 is enabled | Christian Poessinger | |
2018-08-29 | T733: snmp.py: switch to new IP address validators | Christian Poessinger | |
Commit a30dac7c2 ("vyos package: add IP address validators") added system wide Python validators for IP addresses. Remove duplicated code and switch to single source. | |||
2018-08-29 | tftp_server.py: switch to new IP address validators | Christian Poessinger | |
Commit a30dac7c2 ("vyos package: add IP address validators") added system wide Python validators for IP addresses. Remove duplicated code and switch to a single source. | |||
2018-08-29 | dhcp_server.py: beautify error messages generated in verify() | Christian Poessinger | |
2018-08-29 | dhcp_server.py: check if AF_INET address is configure before using it in ↵ | Christian Poessinger | |
verify() | |||
2018-08-29 | dhcp_server.py: fix KeyError in verify() | Christian Poessinger | |
2018-08-29 | dhcp_server.py: improve handling of 'dhcpd.leases' file | Christian Poessinger | |
If there was yet no lease file present, dhcpd refused to start. Lease file is created if required. Ususally this is handeled by the isc-dhcp-server init script but we use our own path (for persistance) of that file. | |||
2018-08-28 | T778: harden dhcp_server.py for non existing files | Christian Poessinger | |
2018-08-28 | T810: bugfix broadcast-relay address validator, add 'disable' functionality | Christian Poessinger | |
Whole broadcast relay service can be temporary disabled via set service broadcast-relay disable Individual instances of the broadcast relay service can be disabled set service broadcast-relay id <n> disable |