Age | Commit message (Collapse) | Author | |
---|---|---|---|
2020-03-04 | vrf: T31: remove superfluous vyos.vrf library functions | Christian Poessinger | |
vyos.vrf.list_vrfs() was only used in one function thus building a library is no longer needed. If it is needed in the future it should be placed into a library again. | |||
2020-03-04 | vrf: T31: reduce script complexity | Christian Poessinger | |
Keep it simple and stupid :) | |||
2020-03-04 | vrf: T31: no need to use sudo calls in vrf.py | Christian Poessinger | |
All configuration mode scripts are already run with sudo. | |||
2020-03-04 | vrf: T31: make 'show vrf' command behave like other 'show interface commands' | Christian Poessinger | |
- remove the additional depth for querying discrete VRF names - retrieve available VRF names from via <path> from CLI rather then invoking an external script | |||
2020-03-04 | vrf: T31: use embedded regex on 'vrf name' instead of python script | Christian Poessinger | |
2020-03-04 | vrf: T31: initial support for a VRF backend in XML/Python | Thomas Mangin | |
This is a work in progress to complete T31 whoever thought it was less than 1 hour of work was ..... optimistic. Only VRF vreation and show is supported right now. No interface can be bound to any one VRF. | |||
2020-03-03 | interfaces: T1579: fix c/p error when evaluating ↵ | Christian Poessinger | |
os.environ['VYOS_TAGNODE_VALUE'] This has been only a theoretical problem but then the error condition was triggered - only an error has been printed instead of raising an Exception. | |||
2020-03-03 | dhcp-server: T2092: add default route to rfc3442-static-route option | Andras Elso | |
2020-03-03 | dhcp-server: T2062: Fix static route bytes | Andras Elso | |
2020-03-01 | syslog: T2086: do not log cron and su to regular syslog | Christian Poessinger | |
2020-03-01 | login: radius: T2089: only query servers when uid matches ... | Christian Poessinger | |
Do not query RADIUS servers when commit is running started from a non RADIUS user (localuser, root). This should reduce the overall system boot time. | |||
2020-03-01 | vmware: T1028: readd static IP address after resume | Christian Poessinger | |
2020-03-01 | pppoe: T2087: enable unlimited connection attempts | Christian Poessinger | |
2020-03-01 | syslog: T2086: move sudo session open/close log entries to auth.log | Christian Poessinger | |
2020-02-27 | Merge pull request #227 from thomas-mangin/T2057 | Christian Poessinger | |
ifconfig: T2057: generalised Interface configuration | |||
2020-02-27 | openvpn: T2075: add support for OpenVPN tls-crypt file option | Christian Poessinger | |
Encrypt and authenticate all control channel packets with the key from keyfile. Encrypting (and authenticating) control channel packets: * provides more privacy by hiding the certificate used for the TLS connection * makes it harder to identify OpenVPN traffic as such * provides "poor-man's" post-quantum security, against attackers who will never know the pre-shared key (i.e. no forward secrecy) | |||
2020-02-27 | login: T2050: retrieve home directory for SSH keys from OS and not guess it | Christian Poessinger | |
We should not rely on the home dir value stored in user['home_dir'] as if a crazy user will choose username root or any other system user this will fail. Should be deny using root at all? | |||
2020-02-25 | [service https] T1443: set default HTTPS listen port | John Estabrook | |
2020-02-25 | login: T1948: migrade local and radius configurations | Christian Poessinger | |
Splitting was not a good idea. By combining both we can create a RADIUS server XML include file which can be reused by multiple implementations to get a uniformed CLI for the users. | |||
2020-02-25 | login: radius: T2071: support disabling individual server | Christian Poessinger | |
2020-02-25 | pppoe: T2055: verify logfile really exists | Christian Poessinger | |
2020-02-25 | Merge branch 'pppoe-t2070' of github.com:c-po/vyos-1x into current | Christian Poessinger | |
* 'pppoe-t2070' of github.com:c-po/vyos-1x: pppoe: T2070: rewrite (dis-)connect op-mode commands in XML and Python gitignore: fix ignore pattern of all debhelper files pppoe: T2055: make logfile owned by root/vyattacfg pppoe: T1318: validate existing source-interface | |||
2020-02-25 | pppoe: T2070: rewrite (dis-)connect op-mode commands in XML and Python | Christian Poessinger | |
2020-02-25 | pppoe: T2055: make logfile owned by root/vyattacfg | Christian Poessinger | |
2020-02-25 | pppoe: T1318: validate existing source-interface | Christian Poessinger | |
It is not only sufficient to check if there is a source-interface configured, but rather it must also be checked if the source-interface exists at all in the system. If the interface does not exist pppd will complain with: pppd[2778]: /usr/sbin/pppd: In file /etc/ppp/peers/pppoe1: unrecognized option 'eth0.202' | |||
2020-02-24 | ifconfig: T2057: generalised Interface configuration | Thomas Mangin | |
Provides a way to pass options to interface consistent between subclasses of Interface | |||
2020-02-24 | pppoe-client: T2069: Use rp_pppoe_service for send correct service-name | DmitriyEshenko | |
2020-02-23 | service-pppoe: T2067: Allow setting multiple service-names | hagbard | |
2020-02-23 | openvpn: T2065: move daemon parameter to start-stop-daemon command-line | Christian Poessinger | |
2020-02-23 | pppoe: T1318: set interface description | Christian Poessinger | |
2020-02-23 | pppoe: T2055: do not try to start a deleted dialer interface | Christian Poessinger | |
2020-02-23 | pppoe: T1318: declutter name-server CLI nodes | Christian Poessinger | |
Instead of letting the user choose between auto and none where auto is default, it makes more sesne to just offer an option to disable the default behavior. | |||
2020-02-23 | pppoe: T2055: remove router-advert node in client interface | Christian Poessinger | |
2020-02-23 | pppoe: T1318: migrate user-id and password nodes under an authentication node | Christian Poessinger | |
2020-02-23 | pppoe: T1318: rename link to source-interface | Christian Poessinger | |
2020-02-23 | pppoe: T1318: extend migrator for firewall, qos and ip routing nodes | Christian Poessinger | |
2020-02-23 | pppoe: T1318: proper delete old interfaces in migrator | Christian Poessinger | |
2020-02-23 | pppoe: T1318: fix migrator and add missing link statement | Christian Poessinger | |
2020-02-23 | pppoe: T1318: use lists rather then strings on Config() | Christian Poessinger | |
2020-02-23 | pppoe: T1318: support interface description | Christian Poessinger | |
2020-02-23 | pppoe: T1318: remove obsolete ipv6-up.d script | Christian Poessinger | |
The generated script was not called at all. Verified in vyOS 1.2.3 and rolling. Looks like a leftover from the past. If this functionality is required - it should be re-implemented the proper way! | |||
2020-02-23 | pppoe: T1318: add op-mode commands for link information | Christian Poessinger | |
2020-02-23 | pppoe: T1318: use systemd to manage connection | Christian Poessinger | |
This reduces the amount of self written code to start-stop-daemon and also kill the process if it has no connection yet (there won't be a PID file in this case) and getting the proper PID for multiple processes would require me to walk the /proc/<pid>/cmdline for every binary involved. | |||
2020-02-23 | pppoe: T1318: remove process startup debug output | Christian Poessinger | |
We no longer need to see the command which is used to spawn up PPPd and dial the connection. | |||
2020-02-23 | pppoe: T1318: move process startup to apply() | Christian Poessinger | |
2020-02-23 | pppoe: T1318: "link" option is mandatory | Christian Poessinger | |
2020-02-23 | pppoe: T1318: add first version of new XML/Python implementation | Christian Poessinger | |
vyos@vyos# show interfaces pppoe pppoe pppoe0 { default-route force link eth2.7 mtu 400 name-server auto password 12345678 user-id vyos@vyos.io } | |||
2020-02-21 | [service https] T1443: bug: set HTTPS listen port for listen-address '*' | John Estabrook | |
2020-02-19 | snmp: T1769: fix indentation error and add try clause | John Estabrook | |
2020-02-18 | snmp: T1769: cleanup leftove code path for certificate migration | Christian Poessinger | |