Age | Commit message (Collapse) | Author |
|
rfc6147: DNS Extensions for Network Address Translation
from IPv6 Clients to IPv4 Servers
set service dns forwarding dns64-prefix 2001:db8:aabb::/96
(cherry picked from commit 2bdf4798570222b57af2de2f0b443529abdc3feb)
|
|
op-mode: T1375: Allow to clear dhcp-server lease
|
|
Allow to reset dhcp-leases per ip
Parse file '/config/dhcpd.leases' find match section 'lease x.x.x.x {}'
And remove this section
clear dhcp-server lease 192.0.2.21
(cherry picked from commit a83eecfeee1f925c914a46623dd35f96b48389f8)
|
|
http-api: T4459: Fix to set VRF in http(s) service
|
|
ipoe: T2580: Add pools and gateway options
|
|
The http service doesn't use VRF info in conf mode.
Even if users set any VRF, the info isn't propagated to the process.
This commit set VRF parameter in http service.
|
|
Add action 'reset' (op-mode) for HTTP-API
http://localhost/reset
curl --unix-socket /run/api.sock -X POST -Fkey=mykey \
-Fdata='{"op": "reset", "path": ["ip", "bgp", "192.0.2.14"]}' \
http://localhost/reset
|
|
|
|
Add new feature to allow to use named pools
Can be used also with Radius attribute 'Framed-Pool'
set service ipoe-server client-ip-pool name POOL1 gateway-address '192.0.2.1'
set service ipoe-server client-ip-pool name POOL1 subnet '192.0.2.0/24'
|
|
monitoring: T4315: Add telegraf output plugin prometheus-client
|
|
(cherry picked from commit 0ef775ab6563af8c20d72d3e30751d50946ab704)
|
|
Add output Plugin "prometheus-client" for telegraf
set service monitoring telegraf prometheus-client xxx
|
|
- Default dhclient script only uses value of `$IF_MERIC` envvar for default route recived via `router` option.
- This variable has no effect on rotes received via `rfc3442-classless-static-routes` option
- Considering that Vyos overrrides `ip` command originating from `dhclient` this can be easily fixed in `iptovtysh()` function by using the `$IF_METRIC` envvar directly in the dhclient hook.
|
|
T4363: salt-minion: default mine_interval option is not set
|
|
(cherry picked from commit e36efa6b5df764982678a470b7aa82a33c1c369c)
|
|
geneve: T4366: prevent interface re-creation when not required
|
|
Add python script for op-mode 'show vpn debug'
|
|
Shared network name should not be handled by tag node mangling
I.e. should not replace underscores with dashed
set service dhcp-server shared-network-name NET_01
shared-network NET_01 {
authoritative;
...
on commit {
set shared-networkname = "NET_01";
}
}
(cherry picked from commit b75b351b7dd2ec87407f98668468b1fc146428bf)
|
|
Changing the geneve interface description does destroy the interface on the
kernel level - this should be avoided as it's ... stupid!
(cherry picked from commit 3cbe7878bcadc0f3ecbaeab46d745b5510c26b0d)
|
|
(cherry picked from commit 3ec3c7f5b523b464a3bc7168b2362611d9c2c153)
|
|
T4324, T4338, T4339 WWAN interface bugfixes
|
|
(cherry picked from commit 0f7e5371e702d4e2389f6fa6dfbda11bc9da6257)
|
|
T4341 SSH and system login fixes + smoketests
|
|
T4319: bugfixes for disabled IPv6 (equuleus)
|
|
Commit 2ecf7a9f9c ('name-server: T3804: merge "system name-servers-dhcp" into
"system name-server"') missed out an old dictionary key "system_name_server_dhcp"
and thus system nameservers configured via DHCP did not get used for the DNS
forwar recursor.
(cherry picked from commit 806ff50bf1a970d731c2227f9d2cd2342b8a1b4e)
|
|
(cherry picked from commit 796178f69ce09e28ab9f20c7b5e1ce97ef00a1ff)
|
|
(cherry picked from commit efa753bc661d04967237e7ec3d72d3757230aaf9)
|
|
Changing the WWAN interface description will trigger an interface reconnect.
Reconnects should only be triggered in changes to the connection parameters
like bond interfaces.
(cherry picked from commit 76a049c7d30f3e64989b9697d65d15bfd3005316)
|
|
add/removal
(cherry picked from commit c58a03ad76b2a0680a33fcfec3ab7a3545374abb)
|
|
(cherry picked from commit 5faeacd1111a83e5859b98ccc4193cb6017cdba8)
|
|
|
|
(cherry picked from commit c33a96f6f0f0259808992b246b1a550fcf9a454a)
|
|
(cherry picked from commit df0fbfeedce0f163e9d10be21d58ad4dc797a28a)
|
|
support"
|
|
This reverts commit 382d5aa16d81b745e522a14122b429750ee64789.
|
|
(cherry picked from commit 9d3acc2b55f2d1c563f1941e59c98c159211dc58)
|
|
(cherry picked from commit cabe0c06e2312cc872d3e22d91611a3ccecefdb0)
|
|
(cherry picked from commit 364009e4317fb5c6732635726b511613aa2ed519)
|
|
(cherry picked from commit 1b16a4eab926462c0d2752d698bedf28c995058d)
|
|
(cherry picked from commit 1cbcbf40b7721849f9696c05fac65db010a66b7c)
|
|
openvpn: T4230: Delete checks if local-host address assigned
|
|
(cherry picked from commit 999b1e50dfdea8694174e82d22b2438cb1bf5e28)
|
|
backport: T4515: T4219: policy local-route6 and inbound-interface support
|
|
In verify function for arp-monitor option was used by mistake an extra
conversion for incoming data before comparing items. This commit removed
these unnecessary conversions and makes the option operable.
(cherry picked from commit df4b544c29974e36b52fc42bcbf617f50738a4a6)
|
|
|
|
(cherry picked from commit aa8080d316dbeb4d26bf67f6d67efeda43b2bc07)
|
|
(cherry picked from commit 2c94c3ec72a559de405b29b4399250db3085717e)
|
|
(cherry picked from commit c06861440cd21ff7c668b35ed1039f5fac4101b9)
|
|
After hardning the regex validator to be preceeded with ^ and ending with $
it was no longer possible to have a comma separated list as SSH ciphers. The
migrations cript is altered to migrate the previous comma separated list
to individual multi node entries - cipher and key-exchange always had been
multinodes - so this just re-arranges some values and does not break CLI
compatibility
(cherry picked from commit 61fa1c95164e4222e79b078b1a796f41397e0ee3)
|
|
|