summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2019-09-04[wireguard] - T1628: renaming member functions, removing wg_ prefixhagbard
2019-09-04Python/configdict: add function vlan_to_dictChristian Poessinger
A generic function which can parse the VLAN (vif, vif-s, cif-c) nodes in a config session. A dictionary describing the VLAN is returned. A good example will be the interface-bonding.py script used to generate bond interfaces in the system. It is used as follows: if conf.exists('vif'): for vif in conf.list_nodes('vif'): # set config level to vif interface conf.set_level(cfg_base + ' vif ' + vif) bond['vif'].append(vlan_to_dict(conf))
2019-09-04Python/configdict: add list_diff function to compare two listsChristian Poessinger
A list containing only unique elements not part of the other list is returned. This is usefull to check e.g. which IP addresses need to be removed from the OS.
2019-09-04[wireguard] - T1628: Adopt WireGuard configuration script to new ↵hagbard
vyos.ifconfig class
2019-09-04openvpn: T1617: T1632: support quotes in openvpn-optionChristian Poessinger
The following CLI command can be used to add a raw option to OpenVPN which requires quotes: > set interfaces openvpn vtun10 openvpn-option 'push "keepalive 1 10"' The resulting config file will then have the following set: > push "keepalive 1 10"
2019-09-04[service https] T1443: rename "server-names" option to "server-name".Daniil Baturin
2019-09-04[service https] T1443: correct the listen-address option in the script.Daniil Baturin
2019-09-04Merge pull request #124 from c-po/t1614-bondingChristian Poessinger
T1614 bonding
2019-09-04bridge: T1615: can not add member interface to bridge if it is also part of ↵Christian Poessinger
a bond
2019-09-04bonding: T1614: T532: new commit validatorsChristian Poessinger
As in the past during the priority race of the bash script invalid configuration could appear in the CLI and are de-synced from the kernle state, e.g. some bonding modes do not support arp_interval. This is no longer allowed and added to the migration script so that the config again represents the truth.
2019-09-04[service https] T1443: create /etc/vyos if it doesn't exist.Daniil Baturin
2019-09-04bonding: T1614: add vif-c VLAN interface supportChristian Poessinger
Tested using: ============= set interfaces bonding bond0 address 192.0.2.1/24 set interfaces bonding bond0 description "VyOS bonding" set interfaces bonding bond0 disable-link-detect set interfaces bonding bond0 hash-policy layer2+3 set interfaces bonding bond0 ip arp-cache-timeout 86400 set interfaces bonding bond0 mac 00:91:00:00:00:01 set interfaces bonding bond0 mode active-backup set interfaces bonding bond0 mtu 9000 set interfaces bonding bond0 member interface eth1 set interfaces bonding bond0 member interface eth2 set interfaces bonding bond0 vif-s 100 address 192.168.10.1/24 set interfaces bonding bond0 vif-s 100 description "802.1ad service VLAN 100" set interfaces bonding bond0 vif-s 100 mtu 1500 set interfaces bonding bond0 vif-s 100 mac 00:91:00:00:00:02 set interfaces bonding bond0 vif-s 100 vif-c 110 address "192.168.110.1/24" set interfaces bonding bond0 vif-s 100 vif-c 110 description "client VLAN 110" set interfaces bonding bond0 vif-s 100 vif-c 120 address "192.168.120.1/24" set interfaces bonding bond0 vif-s 100 vif-c 120 description "client VLAN 120" set interfaces bonding bond0 vif-s 100 vif-c 130 address "192.168.130.1/24" set interfaces bonding bond0 vif-s 100 vif-c 130 description "client VLAN 130" set interfaces bonding bond0 vif 400 address 192.168.40.1/24 set interfaces bonding bond0 vif 400 description "802.1q VLAN 400" set interfaces bonding bond0 vif 400 mtu 1500 set interfaces bonding bond0 vif 400 mac 00:91:00:00:00:03
2019-09-04bonding: T1614: identical ID on vif and vif-s is not allowedChristian Poessinger
2019-09-04bonding: T1614: T1557: add vif/vif-s VLAN interface supportChristian Poessinger
Support for vif-c interfaces is still missing
2019-09-04bonding: T1614: remove obsolete 'member_remove' dict-keyChristian Poessinger
2019-09-04bonding: T1614: can not set primary interface when it's not part of the bondChristian Poessinger
2019-09-04bonding: T1614: Initial version in new style XML/Python interfaceChristian Poessinger
The node 'interfaces ethernet eth0 bond-group' has been changed and de-nested. Bond members are now configured in the bond interface itself. set interfaces bonding bond0 member interface eth0
2019-09-01Merge pull request #119 from alkersan/T1621_misc_rewritesChristian Poessinger
[op-mode] T1621 rewrite misc commands to python/xml syntax
2019-09-01bridge: T1615: remove is_ip import from vyos.validateChristian Poessinger
2019-09-01bridge: T1615: support deleting interface descriptionChristian Poessinger
2019-08-31[boot-config-loader] T1622: Add failsafe and back traceJohn Estabrook
2019-08-31loopback: T1601: support deleting interface descriptionChristian Poessinger
2019-08-31dummy: T1580: support deleting interface descriptionChristian Poessinger
2019-08-31Merge pull request #121 from c-po/t1557-ifconfigChristian Poessinger
T1557 Create generic abstraction for configuring interfaces e.g. IP address
2019-08-31loopback: T1601: migrate from pyroute2 -> vyos.ifconfigChristian Poessinger
2019-08-31dummy: T1580: migrate from pyroute2 -> vyos.ifconfigChristian Poessinger
2019-08-31bridge: T1615: replace pyroute2 by vyos.ifconfigChristian Poessinger
2019-08-31[l2tp ipsec] T1605: Changed ipsec marking only for inbound policy, all ↵DmitriyEshenko
functionality must saved
2019-08-30T1598: fix vyos-hostsd unit dependencies.Daniil Baturin
2019-08-30[op-mode] T1621 rewrite misc commands to python/xml syntaxDmytro Aleksandrov
2019-08-30Python/ifconfig: rename interfaceconfig.py -> ifconfig.pyChristian Poessinger
2019-08-28bridge: T1615: add missing support for DHCP/DHCPv6 interface addressChristian Poessinger
This feature is not well supported by pyroute2 and thus uses the proof-of-concept vyos.interfaceconfig library. Maybe it's a better idea to write our own library from scratch.
2019-08-27openvpn: T1617: bugfix for server push-routeChristian Poessinger
2019-08-27Merge branch 't1614-bonding' into currentChristian Poessinger
* t1614-bonding: Python/VyOS validate: add is_ip() to check for IPv4 or IPv4 address bridge: T1556: remove unused function freeze() list-interfaces: T1614: support listing interfaces which can be bonded
2019-08-27[service https] T1443: Correct the use of listen/server_name directivesJohn Estabrook
2019-08-27bridge: T1556: remove unused function freeze()Christian Poessinger
2019-08-27list-interfaces: T1614: support listing interfaces which can be bondedChristian Poessinger
2019-08-27dummy: T1580: migrate implementation to pyroute2Christian Poessinger
2019-08-26Merge pull request #118 from c-po/pyroute2Christian Poessinger
loopback: T1601: migrate to pyroute2
2019-08-26loopback: T1601: migrate to pyroute2Christian Poessinger
2019-08-26bridge: T1556: fix commentChristian Poessinger
2019-08-26Merge pull request #117 from c-po/pyroute2Christian Poessinger
bridge: T1556: migrate to pyroute2
2019-08-26bridge: T1556: migrate interface configuration to pyroute2Christian Poessinger
Tested with: set interfaces bridge br0 address '192.0.2.1/24' set interfaces bridge br0 aging '500' set interfaces bridge br0 disable-link-detect set interfaces bridge br0 forwarding-delay '11' set interfaces bridge br0 hello-time '5' set interfaces bridge br0 igmp querier set interfaces bridge br0 max-age '11' set interfaces bridge br0 member interface eth1 cost '1000' set interfaces bridge br0 member interface eth1 priority '4' set interfaces bridge br0 member interface eth2 cost '1001' set interfaces bridge br0 member interface eth2 priority '56'
2019-08-26T1598: make dns_forwarding.py retrieve name servers from vyos-hostsd.Daniil Baturin
2019-08-26T1598: add a vyos-hostsd operation for retrieving name servers by tag.Daniil Baturin
2019-08-26bridge: T1608: deny adding non existing interfaces to bridge configChristian Poessinger
2019-08-26bridge: T1556: reword exception error when beeing member of multiple bridgesChristian Poessinger
2019-08-26openvpn: T1548: add missing if statement in 'show openvpn' commandChristian Poessinger
2019-08-26openvpn: T1548: add 'show openvpn' commandChristian Poessinger
vyos@vyos:~$ show openvpn site-to-site OpenVPN status on vtun1 Client CN Remote Host Local Host TX bytes RX bytes Connected Since --------- ----------- ---------- -------- -------- --------------- None (PSK) N/A 172.18.201.10:1195 3.3 KiB 3.3 KiB N/A vyos@vyos:~$ show openvpn server OpenVPN status on vtun10 Client CN Remote Host Local Host TX bytes RX bytes Connected Since --------- ----------- ---------- -------- -------- --------------- client1 172.18.202.10:58644 172.18.201.10:1194 63.6 KiB 63.4 KiB Mon Aug 26 11:47:56 2019 client3 172.18.204.10:52641 172.18.201.10:1194 63.1 KiB 62.7 KiB Mon Aug 26 11:47:58 2019 OpenVPN status on vtun11 Client CN Remote Host Local Host TX bytes RX bytes Connected Since --------- ----------- ---------- -------- -------- --------------- client2 172.18.203.10:39472 172.18.201.10:1200 61.2 KiB 61.5 KiB Mon Aug 26 11:50:30 2019
2019-08-25Merge pull request #112 from alkersan/T1607_reset_ip_conntrack_rewriteChristian Poessinger
[op-mode] T1607 rewrite 'reset conntrack' and 'reset & show ip[v6]' to python/xml syntax