Age | Commit message (Collapse) | Author | |
---|---|---|---|
2022-07-18 | Merge pull request #1407 from sever-sever/T4523 | Christian Poessinger | |
conntrack: T4523: Extend conntrack output direciton, mark, zone | |||
2022-07-17 | op-mode: T3435: Fix SNAT any address and DNAT port dict check | Viacheslav Hletenko | |
If SNAT source address in not exists use 'any' Add check if 'port' exists in dictionary | |||
2022-07-11 | conntrack: T4523: Extend conntrack output direciton, mark, zone | Viacheslav Hletenko | |
Extent op-mode "show conntrack table ipv4" Add ability to see direction of flow: origianl - "Original src", "Original dst" reply - "Reply src", "Reply dst" Add "mark" and "zone" options | |||
2022-07-09 | nat: T4499: Fix NAT not showing a single flow entry | Viacheslav Hletenko | |
We must change dictionary if we get only onle flow entry I.e one NAT record With single entry we get: OrderedDict([('meta', xxx])) We expect: [OrderedDict([('meta', xxx]))] | |||
2022-07-09 | conntrack: T4145: Add show conntrack table ipv4 | Viacheslav Hletenko | |
After firewall rewriting, we lost the ability to show conntrack table as it used old code Rewrite and add it to XML/Python | |||
2022-07-07 | op-mode: T4503: Prevent restart service if commit in progress | Viacheslav Hletenko | |
Prevent op-mode scripts from restarting services if commit in progress | |||
2022-07-05 | op-mode: bgp: T4494: re-use available building blocks for BGP resets | Christian Poessinger | |
2022-07-05 | op-mode: bgp: T4494: add "reset bgp" op-mode tree | Christian Poessinger | |
2022-07-01 | Revert "op-mode: T4429: Ability to detect external IP address" | Daniil Baturin | |
2022-06-25 | firewall: T4484: Fix op-mode summary for address groups with ranges. | sarthurdev | |
2022-06-16 | op-mode: T1375: Allow to clear dhcp-server lease | Viacheslav Hletenko | |
Allow to reset dhcp-leases per ip Parse file '/config/dhcpd.leases' find match section 'lease x.x.x.x {}' And remove this section clear dhcp-server lease 192.0.2.21 | |||
2022-06-10 | Merge pull request #1326 from sever-sever/T4429 | Christian Poessinger | |
op-mode: T4429: Ability to detect external IP address | |||
2022-06-06 | T4446: use format strings instead of old-fasionhed format method | Daniil Baturin | |
2022-06-02 | T4446: use a unified neighbor display script | Daniil Baturin | |
2022-05-31 | pki: T3642: Enable `generate pki openvpn ...` to install into config | sarthurdev | |
2022-05-30 | pki: T3642: Add ability to import files into PKi configuration | sarthurdev | |
2022-05-25 | Merge pull request #1319 from goodNETnick/ocserv_sh_otp_key | Viacheslav Hletenko | |
ocserv: T4420: show configured 2FA OTP key | |||
2022-05-19 | T4432: display load averages normalized for the number of CPU cores | Daniil Baturin | |
2022-05-17 | op-mode: T4429: Ability to detect external IP address | Viacheslav Hletenko | |
In some cases, it is useful to detect own external IP address for example if the host behind NAT Send curl request to random online service from the list to detect IP address ; show ip external ; 192.0.2.95 | |||
2022-05-16 | ocserv: T4420: show configured 2FA OTP key | goodNETnick | |
2022-05-08 | container: op-mode: T3852: use XML inline podman commands | Christian Poessinger | |
Reduce bloat of containers_op.py wrapper script. All commands can be passed directly to podman via the XML script. This also makes the execution faster, as no Python environment needs to be build up. | |||
2022-05-06 | openvpn: T4381: Add tunnel ip column for status command | srividya0208 | |
Added the tunnel ip column to see the assigned ip address in server mode | |||
2022-05-05 | op-mode: T4416: Rewrite 'traceroute' op-command and expand available options ↵ | 3roin | |
using python | |||
2022-05-01 | ipsec: T4353: fix Jinja2 linting errors | Christian Poessinger | |
2022-05-01 | conntrackd: T4353: fix Jinja2 linting errors | Christian Poessinger | |
2022-04-29 | T2216: containers need to be added via "add container image" in advance ↵ | Christian Poessinger | |
before using them | |||
2022-04-26 | Merge pull request #1294 from goodNETnick/ocserv_otp_keygen | Christian Poessinger | |
ocserv: T4380: 2FA OTP key generator in VyOS CLI | |||
2022-04-26 | Merge pull request #1301 from sever-sever/T4236 | Christian Poessinger | |
op-mode: T4236: Split to new lines openvpn client certs | |||
2022-04-26 | op-mode: T4236: Split to new lines openvpn client certs | Viacheslav Hletenko | |
The command "generate openvpn client-config" generates client.ovpn file and CA and client certificate are displayed in one line To fix it Add 'fill' that set new line after every x characters | |||
2022-04-25 | op-mode: T4395: Extend show vpn debug | Viacheslav Hletenko | |
Get more VPN IPSec information with swanctl and iproute2 commands | |||
2022-04-21 | ocserv: T4380: 2FA OTP key generator in VyOS CLI | goodNETnick | |
2022-04-16 | vyos.base: use Warning() helper for op-mode commands | Christian Poessinger | |
2022-03-22 | T4313: handle exceptions in the "generate public-key-command" script | Daniil Baturin | |
2022-03-04 | op-mode: lldp: T3999: bugfix cap' referenced before assignment | Christian Poessinger | |
2022-02-21 | Merge pull request #1233 from dmbaturin/structured-op-mode | John Estabrook | |
T2719: initial batch of standardized structure op mode scripts | |||
2022-02-21 | T2719: initial batch of standardized structure op mode scripts | Daniil Baturin | |
2022-02-20 | T4115:Reboot:Options "in" and "at" are not working | srividya0208 | |
When reboot is executed with "in" option it only accepts minutes till 99 value and does not accept greater values and "at" is also working same like in option where as it should work with exact timings. | |||
2022-02-10 | openvpn: T4236: Add generator for ovpn configurations in op-mode | Viacheslav Hletenko | |
This generator generates client .ovpn files with required initial configuration It gets information from interface vtun, pki ca and certificates | |||
2022-02-10 | Merge pull request #1133 from zdc/T1925-sagitta | Daniil Baturin | |
ipsec: T1925: Fixed `show vpn ipsec sa` output | |||
2022-01-29 | firewall: T4218: Adds a prefix to all user defined chains | sarthurdev | |
2022-01-22 | bandwidth-test: T4153: Fixed bandwidth-test initiate, which was not working ↵ | Nicolas Fort | |
with ipv4 | |||
2022-01-18 | firewall: T3560: Add support for MAC address groups | sarthurdev | |
2022-01-14 | Merge pull request #1164 from sever-sever/T4179 | Christian Poessinger | |
op-mode: T4179: Add op-mode CLI show virtual-server | |||
2022-01-13 | op-mode: T4179: Add op-mode CLI show virtual-server | Viacheslav | |
2022-01-13 | vrrp: T4182: Check if VRRP configured in op mode | Viacheslav | |
There is a situation when service keepalived is active but there a no any "vrrp" configuration. In that case "show vrrp" hangs up because it expect data from keepalived daemon which can't get Check if "vrrp" exists in configuration and only then check if pid is active | |||
2022-01-11 | policy: T2199: Update op-mode syntax to `route6` | sarthurdev | |
2022-01-11 | ipsec: T1925: Fixed `show vpn ipsec sa` output | zsdc | |
After the a1aaf4fb9c0e4111670ef3dd491796fa35a2311f commit, only single (latest) CHILD_SA for each connection can be displayed in the `show vpn ipsec sa` output. This commit backs the proper behavior for the command and adds a little optimization to the formatter to make it easier. | |||
2022-01-11 | policy: T2199: Refactor policy route script for better error handling | sarthurdev | |
* Migrates all policy route references from `ipv6-route` to `route6` * Update test config `dialup-router-medium-vpn` to test migration of `ipv6-route` to `route6` | |||
2022-01-11 | firewall: op-mode: T4131: Display `show firewall group` reference and member ↵ | sarthurdev | |
items sorted and one per line | |||
2021-12-31 | Merge branch 'firewall' of https://github.com/sarthurdev/vyos-1x into current | Christian Poessinger | |
* 'firewall' of https://github.com/sarthurdev/vyos-1x: zone_policy: T3873: Implement intra-zone-filtering policy: T2199: Migrate policy route op-mode to XML/Python policy: T2199: Migrate policy route to XML/Python zone-policy: T2199: Migrate zone-policy op-mode to XML/Python zone-policy: T2199: Migrate zone-policy to XML/Python firewall: T2199: Migrate firewall op-mode to XML/Python firewall: T2199: Migrate firewall to XML/Python |