Age | Commit message (Collapse) | Author |
|
Add new feature to allow to use named pools
Can be used also with Radius attribute 'Framed-Pool'
set service ipoe-server client-ip-pool name POOL1 gateway-address '192.0.2.1'
set service ipoe-server client-ip-pool name POOL1 subnet '192.0.2.0/24'
|
|
support"
|
|
(cherry picked from commit 9d3acc2b55f2d1c563f1941e59c98c159211dc58)
|
|
(cherry picked from commit cabe0c06e2312cc872d3e22d91611a3ccecefdb0)
|
|
(cherry picked from commit 364009e4317fb5c6732635726b511613aa2ed519)
|
|
(cherry picked from commit 1b16a4eab926462c0d2752d698bedf28c995058d)
|
|
openvpn: T4230: Delete checks if local-host address assigned
|
|
(cherry picked from commit 999b1e50dfdea8694174e82d22b2438cb1bf5e28)
|
|
backport: T4515: T4219: policy local-route6 and inbound-interface support
|
|
In verify function for arp-monitor option was used by mistake an extra
conversion for incoming data before comparing items. This commit removed
these unnecessary conversions and makes the option operable.
(cherry picked from commit df4b544c29974e36b52fc42bcbf617f50738a4a6)
|
|
|
|
|
|
|
|
Adds support for `ip -6 rule` policy based routing.
Also, extends the existing ipv4 implemenation with a
`destination` key, which is translated as
`ip rule add to x.x.x.x/x` rules.
https://phabricator.vyos.net/T4151
|
|
|
|
|
|
(cherry picked from commit e64d45717940aa4fb4a072065bdfa04f884d00cc)
|
|
When changing "general" parameters like:
- interface IP address
- MTU
- description
the interface is destroyed and recreated ... this should not happen!
(cherry picked from commit 2373b232849c847717cbdcfac7390d8376e227ca)
|
|
This reverts commit e11a7ff1b2817cc8f4b595171fe82a43a209ebc2.
|
|
This reverts commit ed7c674da17519e6331a9cef8522c5e49251d505.
|
|
This reverts commit b71a04811bd61e1faf2bc4eaceaaae8bdbf97dc6.
|
|
This reverts commit 72d7152f794cfe48821797d62865024c1843096e.
|
|
(cherry picked from commit 3a605ad020d8d20b08a72cb1284f6e590d1fd7b5)
|
|
(cherry picked from commit 25b2f2a8057260ad0d2c59823618d7c9f0fba707)
|
|
VXLAN does support using multiple remotes but VyOS does not. Add the ability
to set multiple remotes and add their flood lists using "bridge" command.
(cherry picked from commit 0ecddff7cffa8900d351d5c15e32420f9d780c0b)
|
|
backport: T4515: T4219: policy local-route6 and inbound-interface support
|
|
|
|
Local-address should be checked/executed only if it exists in the
openvpn configuration, dictionary, jinja2 template
(cherry picked from commit 230ac0a202acd7ae9ad9bccb9e777ee5a0e0b7b7)
|
|
|
|
|
|
Adds support for `ip -6 rule` policy based routing.
Also, extends the existing ipv4 implemenation with a
`destination` key, which is translated as
`ip rule add to x.x.x.x/x` rules.
https://phabricator.vyos.net/T4151
|
|
(cherry picked from commit 122c7a53575f67759f157e02eca776f799658dc1)
|
|
interface
It is impossible for the OS kernel to distinguish multiple GRE tunnels when no
"gre key" is configured when sourcing tunnels from the same interface.
(cherry picked from commit 6f1326d6b68f6dcb83843374c876407ef2922bd1)
|
|
We always mangled and worked on the "ip rule" singleton even when nothing
needed to be changed. This resulted in a VRF hickup when the same VRF was added
and removed multiple times.
set interfaces ethernet eth1 vrf foo
set vrf name foo table '1000'
commit
delete interfaces ethernet eth1 vrf
delete vrf
commit
set interfaces ethernet eth1 vrf foo
set vrf name foo table '1000'
commit
broke reachability on eth1 - a reboot was required.
This change will now only alter the ip rule tables once when VRF instances
are created for the first time and will not touch the Kernel "ip rule"
representation afterwards.
(cherry picked from commit 2cec431e5caf9df85640f707cd6dc3077c17c238)
|
|
Verify section conntrack_sync.py funciton 'is_addr_assigned'
should checks address as string not as list
|
|
OpenVPN can't start if it depends on VRRP virtual-address as
virtual-address is not yet assigned by HA (openvpn and ha
in one commit) as we have checks "if address assigned"
It depends on commit priorities:
460 interfaces/openvpn
800 high-availability
Replace check if local-host address assigned from raise ConfigError
to print (just notification)
Allow to bind OpenVPN service to nonlocal address
|
|
|
|
(cherry picked from commit 1a74e6b3ce061f3c866bcb3f119ee5c73b0c6796)
|
|
l2tp-server: T4117: Add dae-server configuration to template
|
|
(cherry picked from commit d2ca2ac1cf9cacd44a04fbb6da9a884c23f043f6)
|
|
|
|
(cherry picked from commit a70a4001fe0b3a91a7d86191ff32dcc7205d2eae)
|
|
(cherry picked from commit 4aaf0ba69139d84f89e5c3feee6edd845af8d1e5)
|
|
|
|
(cherry picked from commit 55f8ede2d09a9ad095f9ec5c2a729f8c5fb6aafa)
|
|
|
|
(cherry picked from commit 0e3c35e6517f5cfebb4206c735a2ea976a7fd383)
|
|
expose OS
(cherry picked from commit 9ccc353893a3a9a1dc7dfd59463d34449bf05afb)
|
|
|
|
|