summaryrefslogtreecommitdiff
path: root/src/op_mode
AgeCommit message (Collapse)Author
2022-07-18Merge pull request #1407 from sever-sever/T4523Christian Poessinger
conntrack: T4523: Extend conntrack output direciton, mark, zone
2022-07-17op-mode: T3435: Fix SNAT any address and DNAT port dict checkViacheslav Hletenko
If SNAT source address in not exists use 'any' Add check if 'port' exists in dictionary
2022-07-11conntrack: T4523: Extend conntrack output direciton, mark, zoneViacheslav Hletenko
Extent op-mode "show conntrack table ipv4" Add ability to see direction of flow: origianl - "Original src", "Original dst" reply - "Reply src", "Reply dst" Add "mark" and "zone" options
2022-07-09nat: T4499: Fix NAT not showing a single flow entryViacheslav Hletenko
We must change dictionary if we get only onle flow entry I.e one NAT record With single entry we get: OrderedDict([('meta', xxx])) We expect: [OrderedDict([('meta', xxx]))]
2022-07-09conntrack: T4145: Add show conntrack table ipv4Viacheslav Hletenko
After firewall rewriting, we lost the ability to show conntrack table as it used old code Rewrite and add it to XML/Python
2022-07-07op-mode: T4503: Prevent restart service if commit in progressViacheslav Hletenko
Prevent op-mode scripts from restarting services if commit in progress
2022-07-05op-mode: bgp: T4494: re-use available building blocks for BGP resetsChristian Poessinger
2022-07-05op-mode: bgp: T4494: add "reset bgp" op-mode treeChristian Poessinger
2022-07-01Revert "op-mode: T4429: Ability to detect external IP address"Daniil Baturin
2022-06-25firewall: T4484: Fix op-mode summary for address groups with ranges.sarthurdev
2022-06-16op-mode: T1375: Allow to clear dhcp-server leaseViacheslav Hletenko
Allow to reset dhcp-leases per ip Parse file '/config/dhcpd.leases' find match section 'lease x.x.x.x {}' And remove this section clear dhcp-server lease 192.0.2.21
2022-06-10Merge pull request #1326 from sever-sever/T4429Christian Poessinger
op-mode: T4429: Ability to detect external IP address
2022-06-06T4446: use format strings instead of old-fasionhed format methodDaniil Baturin
2022-06-02T4446: use a unified neighbor display scriptDaniil Baturin
2022-05-31pki: T3642: Enable `generate pki openvpn ...` to install into configsarthurdev
2022-05-30pki: T3642: Add ability to import files into PKi configurationsarthurdev
2022-05-25Merge pull request #1319 from goodNETnick/ocserv_sh_otp_keyViacheslav Hletenko
ocserv: T4420: show configured 2FA OTP key
2022-05-19T4432: display load averages normalized for the number of CPU coresDaniil Baturin
2022-05-17op-mode: T4429: Ability to detect external IP addressViacheslav Hletenko
In some cases, it is useful to detect own external IP address for example if the host behind NAT Send curl request to random online service from the list to detect IP address ; show ip external ; 192.0.2.95
2022-05-16ocserv: T4420: show configured 2FA OTP keygoodNETnick
2022-05-08container: op-mode: T3852: use XML inline podman commandsChristian Poessinger
Reduce bloat of containers_op.py wrapper script. All commands can be passed directly to podman via the XML script. This also makes the execution faster, as no Python environment needs to be build up.
2022-05-06openvpn: T4381: Add tunnel ip column for status commandsrividya0208
Added the tunnel ip column to see the assigned ip address in server mode
2022-05-05op-mode: T4416: Rewrite 'traceroute' op-command and expand available options ↵3roin
using python
2022-05-01ipsec: T4353: fix Jinja2 linting errorsChristian Poessinger
2022-05-01conntrackd: T4353: fix Jinja2 linting errorsChristian Poessinger
2022-04-29T2216: containers need to be added via "add container image" in advance ↵Christian Poessinger
before using them
2022-04-26Merge pull request #1294 from goodNETnick/ocserv_otp_keygenChristian Poessinger
ocserv: T4380: 2FA OTP key generator in VyOS CLI
2022-04-26Merge pull request #1301 from sever-sever/T4236Christian Poessinger
op-mode: T4236: Split to new lines openvpn client certs
2022-04-26op-mode: T4236: Split to new lines openvpn client certsViacheslav Hletenko
The command "generate openvpn client-config" generates client.ovpn file and CA and client certificate are displayed in one line To fix it Add 'fill' that set new line after every x characters
2022-04-25op-mode: T4395: Extend show vpn debugViacheslav Hletenko
Get more VPN IPSec information with swanctl and iproute2 commands
2022-04-21ocserv: T4380: 2FA OTP key generator in VyOS CLIgoodNETnick
2022-04-16vyos.base: use Warning() helper for op-mode commandsChristian Poessinger
2022-03-22T4313: handle exceptions in the "generate public-key-command" scriptDaniil Baturin
2022-03-04op-mode: lldp: T3999: bugfix cap' referenced before assignmentChristian Poessinger
2022-02-21Merge pull request #1233 from dmbaturin/structured-op-modeJohn Estabrook
T2719: initial batch of standardized structure op mode scripts
2022-02-21T2719: initial batch of standardized structure op mode scriptsDaniil Baturin
2022-02-20T4115:Reboot:Options "in" and "at" are not workingsrividya0208
When reboot is executed with "in" option it only accepts minutes till 99 value and does not accept greater values and "at" is also working same like in option where as it should work with exact timings.
2022-02-10openvpn: T4236: Add generator for ovpn configurations in op-modeViacheslav Hletenko
This generator generates client .ovpn files with required initial configuration It gets information from interface vtun, pki ca and certificates
2022-02-10Merge pull request #1133 from zdc/T1925-sagittaDaniil Baturin
ipsec: T1925: Fixed `show vpn ipsec sa` output
2022-01-29firewall: T4218: Adds a prefix to all user defined chainssarthurdev
2022-01-22bandwidth-test: T4153: Fixed bandwidth-test initiate, which was not working ↵Nicolas Fort
with ipv4
2022-01-18firewall: T3560: Add support for MAC address groupssarthurdev
2022-01-14Merge pull request #1164 from sever-sever/T4179Christian Poessinger
op-mode: T4179: Add op-mode CLI show virtual-server
2022-01-13op-mode: T4179: Add op-mode CLI show virtual-serverViacheslav
2022-01-13vrrp: T4182: Check if VRRP configured in op modeViacheslav
There is a situation when service keepalived is active but there a no any "vrrp" configuration. In that case "show vrrp" hangs up because it expect data from keepalived daemon which can't get Check if "vrrp" exists in configuration and only then check if pid is active
2022-01-11policy: T2199: Update op-mode syntax to `route6`sarthurdev
2022-01-11ipsec: T1925: Fixed `show vpn ipsec sa` outputzsdc
After the a1aaf4fb9c0e4111670ef3dd491796fa35a2311f commit, only single (latest) CHILD_SA for each connection can be displayed in the `show vpn ipsec sa` output. This commit backs the proper behavior for the command and adds a little optimization to the formatter to make it easier.
2022-01-11policy: T2199: Refactor policy route script for better error handlingsarthurdev
* Migrates all policy route references from `ipv6-route` to `route6` * Update test config `dialup-router-medium-vpn` to test migration of `ipv6-route` to `route6`
2022-01-11firewall: op-mode: T4131: Display `show firewall group` reference and member ↵sarthurdev
items sorted and one per line
2021-12-31Merge branch 'firewall' of https://github.com/sarthurdev/vyos-1x into currentChristian Poessinger
* 'firewall' of https://github.com/sarthurdev/vyos-1x: zone_policy: T3873: Implement intra-zone-filtering policy: T2199: Migrate policy route op-mode to XML/Python policy: T2199: Migrate policy route to XML/Python zone-policy: T2199: Migrate zone-policy op-mode to XML/Python zone-policy: T2199: Migrate zone-policy to XML/Python firewall: T2199: Migrate firewall op-mode to XML/Python firewall: T2199: Migrate firewall to XML/Python