summaryrefslogtreecommitdiff
path: root/src/conf_mode
AgeCommit message (Collapse)Author
2022-05-25ipoe: T2580: Add pools and gateway optionsViacheslav Hletenko
Add new feature to allow to use named pools Can be used also with Radius attribute 'Framed-Pool' set service ipoe-server client-ip-pool name POOL1 gateway-address '192.0.2.1' set service ipoe-server client-ip-pool name POOL1 subnet '192.0.2.0/24'
2022-03-28Revert "backport: T4515: T4219: policy local-route6 and inbound-interface ↵Daniil Baturin
support"
2022-03-27graphql: T3993: add unsettable gql option; this is not exposed by CLIJohn Estabrook
(cherry picked from commit 9d3acc2b55f2d1c563f1941e59c98c159211dc58)
2022-03-25mpls: T915: use vyos.util.sysctl_write() helper functionChristian Poessinger
(cherry picked from commit cabe0c06e2312cc872d3e22d91611a3ccecefdb0)
2022-03-25vyos.util: T4319: rename sysctl() -> sysctl_write()Christian Poessinger
(cherry picked from commit 364009e4317fb5c6732635726b511613aa2ed519)
2022-03-25system: T4319: align ipv6 settings with ipv4 by using get_config_dict()Christian Poessinger
(cherry picked from commit 1b16a4eab926462c0d2752d698bedf28c995058d)
2022-03-24Merge pull request #1210 from sever-sever/T4230-equChristian Poessinger
openvpn: T4230: Delete checks if local-host address assigned
2022-03-24openvpn: T4294: force service restart on openvpn-option node changeChristian Poessinger
(cherry picked from commit 999b1e50dfdea8694174e82d22b2438cb1bf5e28)
2022-03-23Merge pull request #1235 from hensur/equuleus-ipv6-local-routeChristian Poessinger
backport: T4515: T4219: policy local-route6 and inbound-interface support
2022-03-15bonding: T4301: Fixed arp-monitor optionzsdc
In verify function for arp-monitor option was used by mistake an extra conversion for incoming data before comparing items. This commit removed these unnecessary conversions and makes the option operable. (cherry picked from commit df4b544c29974e36b52fc42bcbf617f50738a4a6)
2022-02-23backport: policy: T4219: add local-route(6) incoming-interfaceHenning Surmeier
2022-02-23backport: policy: T4151: remove all previous rules on editHenning Surmeier
2022-02-23backport: policy: T4151: Bugfix policy ipv6-local-routeHenning Surmeier
2022-02-23backport: policy: T4151: Add policy ipv6-local-routeHenning Surmeier
Adds support for `ip -6 rule` policy based routing. Also, extends the existing ipv4 implemenation with a `destination` key, which is translated as `ip rule add to x.x.x.x/x` rules. https://phabricator.vyos.net/T4151
2022-02-23pbr: T3702: Fix incorrect splits for fwmarkViacheslav
2022-02-23pbr: T3702: Add rules match fwmarkViacheslav
2022-02-23tunnel: T4267: "parameters ip key" on GRE not required for different remotesChristian Poessinger
(cherry picked from commit e64d45717940aa4fb4a072065bdfa04f884d00cc)
2022-02-22vxlan: T4264: interface is destroyed and rebuild on description changeChristian Poessinger
When changing "general" parameters like: - interface IP address - MTU - description the interface is destroyed and recreated ... this should not happen! (cherry picked from commit 2373b232849c847717cbdcfac7390d8376e227ca)
2022-02-22Revert "backport: policy: T4151: Add policy ipv6-local-route"Christian Poessinger
This reverts commit e11a7ff1b2817cc8f4b595171fe82a43a209ebc2.
2022-02-22Revert "backport: policy: T4151: Bugfix policy ipv6-local-route"Christian Poessinger
This reverts commit ed7c674da17519e6331a9cef8522c5e49251d505.
2022-02-22Revert "backport: policy: T4151: remove all previous rules on edit"Christian Poessinger
This reverts commit b71a04811bd61e1faf2bc4eaceaaae8bdbf97dc6.
2022-02-22Revert "backport: policy: T4219: add local-route(6) incoming-interface"Christian Poessinger
This reverts commit 72d7152f794cfe48821797d62865024c1843096e.
2022-02-21vxlan: T4120: code cleanup for multiple remotesChristian Poessinger
(cherry picked from commit 3a605ad020d8d20b08a72cb1284f6e590d1fd7b5)
2022-02-21bridge: remove unreferenced import -> leaf_node_changedChristian Poessinger
(cherry picked from commit 25b2f2a8057260ad0d2c59823618d7c9f0fba707)
2022-02-21vxlan: T4120: add ability to set multiple remotes (PR #1127)Andreas
VXLAN does support using multiple remotes but VyOS does not. Add the ability to set multiple remotes and add their flood lists using "bridge" command. (cherry picked from commit 0ecddff7cffa8900d351d5c15e32420f9d780c0b)
2022-02-19Merge pull request #1219 from hensur/equuleus-ipv6-local-routeChristian Poessinger
backport: T4515: T4219: policy local-route6 and inbound-interface support
2022-02-16backport: policy: T4219: add local-route(6) incoming-interfaceHenning Surmeier
2022-02-15openvpn: T3686: Fix for check local-address in script and tmplViacheslav Hletenko
Local-address should be checked/executed only if it exists in the openvpn configuration, dictionary, jinja2 template (cherry picked from commit 230ac0a202acd7ae9ad9bccb9e777ee5a0e0b7b7)
2022-02-14backport: policy: T4151: remove all previous rules on editHenning Surmeier
2022-02-14backport: policy: T4151: Bugfix policy ipv6-local-routeHenning Surmeier
2022-02-14backport: policy: T4151: Add policy ipv6-local-routeHenning Surmeier
Adds support for `ip -6 rule` policy based routing. Also, extends the existing ipv4 implemenation with a `destination` key, which is translated as `ip rule add to x.x.x.x/x` rules. https://phabricator.vyos.net/T4151
2022-02-14tunnel: T4154: import cleanupChristian Poessinger
(cherry picked from commit 122c7a53575f67759f157e02eca776f799658dc1)
2022-02-14tunnel: T4154: verify() no more then one GRE tunnel is used w/o "ip key" per ↵Christian Poessinger
interface It is impossible for the OS kernel to distinguish multiple GRE tunnels when no "gre key" is configured when sourcing tunnels from the same interface. (cherry picked from commit 6f1326d6b68f6dcb83843374c876407ef2922bd1)
2022-02-13vrf: T4191: bugfix for "ip rule" when VRFs are createdChristian Poessinger
We always mangled and worked on the "ip rule" singleton even when nothing needed to be changed. This resulted in a VRF hickup when the same VRF was added and removed multiple times. set interfaces ethernet eth1 vrf foo set vrf name foo table '1000' commit delete interfaces ethernet eth1 vrf delete vrf commit set interfaces ethernet eth1 vrf foo set vrf name foo table '1000' commit broke reachability on eth1 - a reboot was required. This change will now only alter the ip rule tables once when VRF instances are created for the first time and will not touch the Kernel "ip rule" representation afterwards. (cherry picked from commit 2cec431e5caf9df85640f707cd6dc3077c17c238)
2022-02-11conntrack-sync: T4237: Fix checks for listen-address list to strViacheslav Hletenko
Verify section conntrack_sync.py funciton 'is_addr_assigned' should checks address as string not as list
2022-02-09openvpn: T4230: Delete checks if local-host address assignedViacheslav Hletenko
OpenVPN can't start if it depends on VRRP virtual-address as virtual-address is not yet assigned by HA (openvpn and ha in one commit) as we have checks "if address assigned" It depends on commit priorities: 460 interfaces/openvpn 800 high-availability Replace check if local-host address assigned from raise ConfigError to print (just notification) Allow to bind OpenVPN service to nonlocal address
2022-02-08monitoring: T3872: Add new feature service monitoring telegrafViacheslav Hletenko
2022-01-09squid: T3299: Add listen address 0.0.0.0sever-sever
(cherry picked from commit 1a74e6b3ce061f3c866bcb3f119ee5c73b0c6796)
2021-12-30Merge pull request #1125 from DmitriyEshenko/eq-1x-29122021-01Daniil Baturin
l2tp-server: T4117: Add dae-server configuration to template
2021-12-29configd: T4086: use 'copy' on mutable global var default_config_dataJohn Estabrook
(cherry picked from commit d2ca2ac1cf9cacd44a04fbb6da9a884c23f043f6)
2021-12-29l2tp-server: T4117: Add dae-server configuration to templateDmitriyEshenko
2021-12-27snmp: T4093: add missing verify() step for required group per snmp v3 userChristian Poessinger
(cherry picked from commit a70a4001fe0b3a91a7d86191ff32dcc7205d2eae)
2021-12-26http: api: T4055: add VRF supportChristian Poessinger
(cherry picked from commit 4aaf0ba69139d84f89e5c3feee6edd845af8d1e5)
2021-12-19T4084: dehardcode the post-login bannerDaniil Baturin
2021-12-16http-api: T4076: allow setting CORS option 'Access-Control-Allow-Origin'John Estabrook
(cherry picked from commit 55f8ede2d09a9ad095f9ec5c2a729f8c5fb6aafa)
2021-12-15pppoe-server: T3006: Add range to regex generatorDmitriyEshenko
2021-12-14http-api: T4071: allow API to bind to unix domain socketJohn Estabrook
(cherry picked from commit 0e3c35e6517f5cfebb4206c735a2ea976a7fd383)
2021-12-11T3912: migrate "Welcome to VyOS" from issue file to motd to not silently ↵Christian Poessinger
expose OS (cherry picked from commit 9ccc353893a3a9a1dc7dfd59463d34449bf05afb)
2021-12-10wwan: T3795: remove superfluous import (render)Christian Poessinger
2021-12-10wwan: T3795: only enable cron helper when interface is in useChristian Poessinger