Age | Commit message (Collapse) | Author | |
---|---|---|---|
2020-06-09 | console: T2569: initial implementation with XML and Python | Christian Poessinger | |
Migrate the serial console subsystem to XML and Python. | |||
2020-06-07 | wwan: T2241: interface is not bond- or bridgeable | Christian Poessinger | |
Commit 2cb806271928 ("wirelessmodem: T2241: make VRF and bond/bridge membership mutually exclusive") added some logic which is not forseen/neither makes sense on a dialup interface, thus it's removed again | |||
2020-06-07 | wwan: T2488: remove generation of dedicated logfile | Christian Poessinger | |
... all information are present in journald. | |||
2020-06-07 | wwan: T2529: migrate device from ttyUSB to usbXbY.YpZ.Z | Christian Poessinger | |
During testing it was discovered that there is a well known problem (we had for ethernet interfaces) also in the serial port world. They will be enumerated and mapped to /dev/ttyUSBxxx differently from boot to boot. This is especially painful on my development APU4 board which also has a Sierra Wireless MC7710 LTE module installed. The serial port will toggle between ttyUSB2 and ttyUSB5 depending on the amount of serial port extenders attached (FT4232H). The shipped udev rule (/usr/lib/udev/rules.d/60-serial.rules) partly solves this by enumerating the devices into /dev/serial/by-id folder with their name and serial number - it's a very good idea but I've found that not all of the FT4232H dongles have a serial number programmed - this leads to the situation that when you plug in two cables with both having serial number 0 - only one device symlink will appear - the previous one is always overwritten by the latter one. Derive /usr/lib/udev/rules.d/60-serial.rules and create a /dev/serial/by-bus directory and group devices by attached USB root port. vyos@vyos:~$ find /dev/serial/by-bus/ -name usb* -exec basename {} \; | sort usb0b1.3p1.0 usb0b1.3p1.2 usb0b1.3p1.3 usb0b2.4p1.0 usb0b2.4p1.1 usb0b2.4p1.2 usb0b2.4p1.3 So we have USB root 0 with bus 1.3 and port 1.0. The enumeration is constant accross reboots. | |||
2020-06-06 | dhcpv6-pd: T2551: fix prefix length not set in config | Christian Poessinger | |
Retrieving the CLI nodes from current config was missed out and only implemented for PPPoE. | |||
2020-06-05 | Merge pull request #443 from mrozentsvayg/openvpn-T2550-ipv4-remote-host | Christian Poessinger | |
openvpn: T2550: fix for IPv4 remote-host addresses | |||
2020-06-04 | openvpn: T2550: fix for IPv4 remote-host addresses | Mikhail Rozentsvayg | |
Commit bb9f998 added IPv6 support for OpenVPN, but IPv4 only configurations stopped working (Address family for hostname not supported) Commit fc467519 fixed some scenarios by using IPv4 protocols if 'local-host' is IPv4 address, but the client mode is using 'remote-host' instead and was still broken. This commit in addition to 'local-host' also checks all the 'remote-host' addresses. | |||
2020-06-04 | Merge pull request #442 from L6NqLW/T2527 | Christian Poessinger | |
bonding: T2527: delete the last interface from bond | |||
2020-06-01 | bgp: T2387: proof-of-concept using get_config_dict() | Christian Poessinger | |
2020-05-31 | openvpn: T2532: add VRF support | Christian Poessinger | |
2020-05-30 | qat: use script file shipped from Intel | Christian Poessinger | |
2020-05-29 | Merge pull request #439 from thomas-mangin/T2088-explicit-airbag | Christian Poessinger | |
airbag :T2088: make airbag explicit | |||
2020-05-29 | airbag: T2088: explicit enabling of the feature | Thomas Mangin | |
airbag must now be explicitly installed. the patch also allow to fully disables the installation of the logging code at setup (and not just installing and doing nothing) | |||
2020-05-28 | bonding: T2527: delete the last interface from bond | Gabriel Skupien | |
2020-05-28 | ethernet: T2514: add warning when changing mac for bond member | L6NqLW | |
2020-05-27 | ethernet: T2476: do not override MAC of lower interface if bond member | L6NqLW | |
2020-05-26 | dhcpv6-pd: T2506: use common dictionary definition for config parameters | Christian Poessinger | |
2020-05-26 | dhcpv6-pd: T2506: add option to request specific prefix length | Christian Poessinger | |
Some ISPs (e.g. Comcast) only delegate a /64 by default. You have to explicitly "ask" for a bigger (e.g. /60) prefix. This commit adds a CLI node to request a specific prefix length in the range 32 - 64. dhcpv6-options { prefix-delegation { length 60 } } | |||
2020-05-26 | dhcpv6-pd: pppoe: T2506: restructure CLI | Christian Poessinger | |
Rename the CLI nodes for prefix delegation from "dhcpv6-options delegate <interface>" to "dhcpv6-options prefix-delegation interface <interface>". The change is required to add the possibility to request for specific prefix sized via the CLI. That option was not possible with the old configuration tree. | |||
2020-05-26 | dhcpv6-pd: ethernet: T421: fix TypeError | Christian Poessinger | |
Copy/paste error resulting in: Traceback (most recent call last): File "/usr/libexec/vyos/conf_mode/interfaces-ethernet.py", line 303, in <module> apply(c) File "/usr/libexec/vyos/conf_mode/interfaces-ethernet.py", line 205, in apply e.dhcp.v6.options['dhcpv6_pd'] = e['dhcpv6_pd'] TypeError: 'EthernetIf' object is not subscriptable | |||
2020-05-22 | login: T2492: must use try/except when adding user for the first time | Christian Poessinger | |
2020-05-22 | login: T2492: re-use code from vyos.util | Christian Poessinger | |
2020-05-22 | login: T2492: force setting of encrypted password on first boot | Christian Poessinger | |
2020-05-22 | login: T2492: fix flake8 warnings | Christian Poessinger | |
2020-05-22 | login: T2492: do not set encrypted user password when it is not changed | Christian Poessinger | |
2020-05-22 | pppoe: T2488: bugfix, missing not in if condition prevented startup | Christian Poessinger | |
Commit 39c53aadbf9e ("pppoe: T2488: remove logfile generation") accidently missed a not in an if statement. | |||
2020-05-22 | macsec: T2491: add replay window protection | Christian Poessinger | |
2020-05-22 | macsec: T2023: flake8/autopep8 corrections | Christian Poessinger | |
2020-05-22 | macsec: T2023: fix wrong use or f-format string | Christian Poessinger | |
2020-05-22 | macsec: T2023: remove unused import | Christian Poessinger | |
2020-05-21 | pppoe: T2380: fix NameError: name 'intf' is not defined | Christian Poessinger | |
2020-05-21 | pppoe: T2380: dis-/connect should use proper systemd calls | Christian Poessinger | |
2020-05-21 | pppoe: T2488: remove logfile generation | Christian Poessinger | |
2020-05-21 | wireless: T1627: remove get_conf_file() | Christian Poessinger | |
2020-05-21 | macsec: T2023: delete wpa_supplicant config when interface is removed | Christian Poessinger | |
2020-05-21 | macsec: T2023: stop wpa_supplicant on interface deletion | Christian Poessinger | |
2020-05-21 | macsec: T2023: cleanup wpa_supplicant config file name | Christian Poessinger | |
2020-05-21 | macsec: T2023: improve verify() when encryption is enabled | Christian Poessinger | |
With enabled encryption keys must be configured. | |||
2020-05-21 | macsec: T2023: support MACsec Key Agreement protocol actor priority | Christian Poessinger | |
2020-05-21 | macsec: T2023: rename "security key" node to "security mka" | Christian Poessinger | |
MACsec always talks about MKA (MACsec Key Agreement protocol) thus the node should reflect that. | |||
2020-05-21 | macsec: T2023: use wpa_supplicant for key management | Christian Poessinger | |
2020-05-21 | macsec: T2023: cli: move "cipher" and "encryption" under new "secutiry" node | Christian Poessinger | |
This is best suited as a key is required, too. | |||
2020-05-21 | macsec: T2023: cipher suite is mandatory | Christian Poessinger | |
2020-05-21 | macsec: T2023: use list when working with Config() | Christian Poessinger | |
2020-05-21 | macsec: T2023: add optional encryption command | Christian Poessinger | |
By default MACsec only authenticates traffic but has support for optional encryption. Encryption can now be enabled using: set interfaces macsec <interface> encrypt | |||
2020-05-21 | macsec: T2023: add initial XML and Python interfaces | Christian Poessinger | |
2020-05-19 | Merge pull request #414 from thomas-mangin/T2467 | Christian Poessinger | |
util: T2467: automatically add sudo to known commands | |||
2020-05-19 | wireguard: T2481: support IPv6 based underlay | Christian Poessinger | |
2020-05-19 | util: T2467: add systemctl to autosudo | Thomas Mangin | |
2020-05-19 | nat: do not report unassigned IP address for DNAT | Christian Poessinger | |
That warning made no sense as the destination address where we forward a port to is by design not locally connected. |