summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2020-04-13openvpn: T2235: add custom server pool handlingjjakob
- add config options and logic for server client-ip-pool - add function for determining default IPs for the server in different configurations - verify for pool IPs and maximum subnet prefix length - move remote netmask logic for client ifconfig-push to use new function - add topology 'net30' , set it as default (as it already was) - replace generic ip_* with IPv4* where necessary - print warning to console when server client IP is in server pool - fix server subnet help field
2020-04-13openvpn: T2235: use IPv4Network where input is already validatedjjakob
2020-04-13Merge pull request #338 from thomas-mangin/T2028-bootChristian Poessinger
tunnel: T2028: fix issue when booting without gre remote
2020-04-12tunnel: T2028: fix issue when booting without gre remoteThomas Mangin
2020-04-12dhcp-server: T2185: add comment on config dir generationChristian Poessinger
2020-04-12dhcpv6-server: T2185: migrate from SysVinit to systemdChristian Poessinger
2020-04-12dhcp-server: T2185: create directories in /run on-demandChristian Poessinger
Commit bc68244 ("dhcp-server: T2185: migrate from SysVinit to systemd") migrated the DHCP subsystem to systemd, necessary directories in the volatile /run directory have not been created.
2020-04-12dhcp-server: T2185: fixup ConditionPathExists variableChristian Poessinger
Commit bc68244 ("dhcp-server: T2185: migrate from SysVinit to systemd") migrated the DHCP subsystem to systemd, but on the test-system there was still the old configuration file present not triggering this condition.
2020-04-12dhcp-server: T2185: migrate from SysVinit to systemdChristian Poessinger
2020-04-12ntp: T2230: fix wrong import after template migrationChristian Poessinger
Commit 1fbaa2c ("template: T2230: use render to generate templates") did try to import render from the wrong module.
2020-04-12template: T2230: use render to generate templatesThomas Mangin
convert all call to jinja to use template.render
2020-04-12vpn: l2tp: T2185: move generated files to volatile /run/accel-ppp directoryChristian Poessinger
2020-04-12vpn: sstp: T2185: move generated files to volatile /run/accel-ppp directoryChristian Poessinger
2020-04-12vpn: sstp: T2008: bugfix chap-secrets generationChristian Poessinger
Commit 13510cac5a4a ("vpn: sstp: T2008: migrate from SysVinit -> systemd") unfortunately wrote the filename into the chap-secrets file instead of the rendered secrets.
2020-04-12wireless: T2185: migrate from SysVinit to systemdChristian Poessinger
2020-04-12op-mode: openvpn: T2273: migrate from SysVinit to systemdChristian Poessinger
2020-04-12openvpn: T2273: cleanup client config generationChristian Poessinger
2020-04-12openvpn: T2273: cleanup config dir generationChristian Poessinger
2020-04-12vyos.util: openvpn: migrate to chmod_600()Christian Poessinger
2020-04-12vyos.util: rename chmod_x() -> chmod_755()Christian Poessinger
2020-04-12openvpn: T2273: migrate volatile data to /run/openvpnChristian Poessinger
2020-04-12T2185: move systemd unit files to proper locationChristian Poessinger
2020-04-12wireless: T1627: typo bugfix for VLAN interfacesDavide Beatrici
The typos cause the configurator to throw an exception when a wireless VLAN is specified: Traceback (most recent call last): File "/usr/libexec/vyos/conf_mode/interfaces-wireless.py", line 1463, in <module> apply(c) File "/usr/libexec/vyos/conf_mode/interfaces-wireless.py", line 1433, in apply vlan = e.add_vlan(vif['id']) NameError: name 'e' is not defined
2020-04-11openvpn: T2273: re-use vyos.util library functionsChristian Poessinger
2020-04-11openvpn: T2273: migrate from SysVinit to systemdChristian Poessinger
2020-04-11Merge pull request #329 from thomas-mangin/T2226Christian Poessinger
util: T2226: improvement and fixes
2020-04-11Merge pull request #330 from alainlamar/T2213Christian Poessinger
wireless: T2213: bugfix: Use ieee80211n and ieee80211ac if require_vht not set
2020-04-11completion: T2238: use interface dataThomas Mangin
Use the data in the default dict of the interface to generate the output of list interface.
2020-04-11ifconfig: T2223: rename Section.listing to interfacesThomas Mangin
update all code using the API. Interface.interfaces() could be used but the code was change to use Section.interfaces() which make more sense when reading it.
2020-04-11ifconfig: T2223: rename Register to SectionThomas Mangin
While the class does indeed all the registration, it work is really to map classes to interface section. ie: interface ethernet -> EthernetIf Therefore it can also list which interface are from which type, therefore the name change. Other function name will also be renamed as a consequence
2020-04-11Merge branch 't2264-l2tp' of github.com:c-po/vyos-1x into currentChristian Poessinger
* 't2264-l2tp' of github.com:c-po/vyos-1x: (25 commits) vpn: l2tp: sstp: T2264: create config dir on demand vpn: l2tp: T2264: migrate IPv6 prefix node to common CLI style vpn: l2tp: T2264: simplify IPv6 config dictionary elements vpn: sstp: T2008: migrate from SysVinit -> systemd vpn: sstp: T2008: bugfix KeyError 'client_gateway' vpn: l2tp: T2264: migrate from SysVinit -> systemd vpn: l2tp: T2264: remove debug pprint vpn: l2tp: T2264: proper set PPP default values to ease Jinja2 template vpn: l2tp: T2110: re-use RADIUS XML include file vpn: l2tp: T2264: remove RADIUS req-limit node vpn: l2tp: T2264: migrate to new dictionary keys for radius auth vpn: sstp: T2008: set accell default values in config dict vpn: l2tp: T2264: use "with open()" when writing config vpn: l2tp: T2264: migrate to new dictionary keys for local auth vpn: sstp: T2008: improve error message for non existent local-users vpn: l2tp: T2264: cleanup thread_cnt generation vpn: sstp: T2008: cleanup thread_cnt generation vpn: l2tp: T2264: combine WINS CLI syntax vpn: l2tp: T2264: combine IPv4/IPv6 name-server CLI syntax vpn: sstp: T2008: adjust DNS error message ...
2020-04-11vpn: l2tp: sstp: T2264: create config dir on demandChristian Poessinger
2020-04-11wireless: T2213: bugfix: Use ieee80211n and ieee80211ac if require_vht not setAlain Lamar
Use WiFi modes ieee80211ac and ieee80211n if VHT capabilities are optional. ieee80211n = 1 ieee80211ac = 1 Use only ieee80211ac if VHT capabilities are required (ieee80211n=0). ieee80211ac = 1 ieee80211n = 0 require_vht = 1 In order to make this decision, the desired WiFi operation mode needs to be known. Therefore, we must require users to set the WiFi mode. mode = (a|b|g|n|ac)
2020-04-11util: T2205: convert system login to call and cmdThomas Mangin
2020-04-11util: T2226: do not use 2> but DEVNULLThomas Mangin
2020-04-11util: T2226: do not use universal_newlinesThomas Mangin
2020-04-11util: T2226: send shutdown stdout back to the programThomas Mangin
The previous code conversion did not match the previous code.
2020-04-11Merge pull request #326 from thomas-mangin/T2265Christian Poessinger
dhcp: T2265: refactor DHCP class
2020-04-11vpn: l2tp: T2264: migrate IPv6 prefix node to common CLI styleChristian Poessinger
Combining multiple options into a single CLI node is considered bad practice. IPv6 prefixes consited of the prefix itself and a mask send to the client in one node only. The following CLI parts have been migrated from client-ipv6-pool { delegate-prefix fc00:0:1::/48,64 prefix 2001:db8::/64,64 } to client-ipv6-pool { delegate fc00:0:1::/48 { delegation-prefix 48 } prefix 2001:db8::/48 { mask 64 } } Thus regular validation steps from the VyOS CLI can be used when a prefix is configured.
2020-04-11vpn: l2tp: T2264: simplify IPv6 config dictionary elementsChristian Poessinger
2020-04-11dhcp: T2265: refactor DHCP classThomas Mangin
Break the code between v4 and v6, remove need for getter/setter as they are just exposing the underlying dict. Move FixedDict from tunnel code and expose it to other part so it can be used to prevent accidental change to the dhcp option if no default exists already.
2020-04-11dhcp: T2265: v4/v6 conflict for lease fileThomas Mangin
The vyatta-dhclient-hook is not differentiating between v4 and v6 and attempting to use the same lease file for both protocol. Therefore only dhcp v4 or v6 could be setup on an interface and not both.
2020-04-11vpn: sstp: T2008: migrate from SysVinit -> systemdChristian Poessinger
2020-04-11vpn: sstp: T2008: bugfix KeyError 'client_gateway'Christian Poessinger
2020-04-11vpn: l2tp: T2264: migrate from SysVinit -> systemdChristian Poessinger
2020-04-11vpn: l2tp: T2264: remove debug pprintChristian Poessinger
2020-04-11vpn: l2tp: T2264: proper set PPP default values to ease Jinja2 templateChristian Poessinger
2020-04-11vpn: l2tp: T2264: remove RADIUS req-limit nodeChristian Poessinger
It makes less sense for the user to specify this behavior.
2020-04-11vpn: l2tp: T2264: migrate to new dictionary keys for radius authChristian Poessinger
2020-04-11vpn: sstp: T2008: set accell default values in config dictChristian Poessinger
This will remove the required if/else parts int he Jinja2 template.