summaryrefslogtreecommitdiff
path: root/docs/changelog/1.4.rst
diff options
context:
space:
mode:
Diffstat (limited to 'docs/changelog/1.4.rst')
-rw-r--r--docs/changelog/1.4.rst550
1 files changed, 543 insertions, 7 deletions
diff --git a/docs/changelog/1.4.rst b/docs/changelog/1.4.rst
index 89d1b64e..465febef 100644
--- a/docs/changelog/1.4.rst
+++ b/docs/changelog/1.4.rst
@@ -8,6 +8,549 @@
_ext/releasenotes.py
+2023-04-10
+==========
+
+* :vytask:`T5151` (bug): EAP-TLS TLSv1.0/1.1 regression after T5003
+
+
+2023-04-07
+==========
+
+* :vytask:`T5149` (bug): op-mode openvpn should not raise error in case interface is disabled
+
+
+2023-04-06
+==========
+
+* :vytask:`T5147` (bug): Can't Commit with Container Network
+* :vytask:`T5142` (feature): One of the requirements is to use a system auditing tool to monitor and log all security-relevant events.
+* :vytask:`T5125` (feature): Add op-mode commands for hsflowd based sflow
+
+
+2023-04-05
+==========
+
+* :vytask:`T5145` (feature): Add maxsyslogins maximum number of all logins on system
+* :vytask:`T5135` (default): Rewrite opennhrp script using vyos.ipsec library
+* :vytask:`T4975` (bug): CLI does not work after cutting off the power or reset
+* :vytask:`T5136` (bug): Possible config corruption on upgrade
+
+
+2023-04-04
+==========
+
+* :vytask:`T5141` (feature): Add numbers for dhclient-exit-hooks.d to enforce script order execution
+* :vytask:`T5093` (bug): Command 'reset vpn ipsec-profile' doesn't work
+* :vytask:`T4362` (bug): Wan Load Balancing - Can't create routing tables
+
+
+2023-04-03
+==========
+
+* :vytask:`T5139` (feature): IKE life-time should start from 0 for disable rekey
+* :vytask:`T4173` (bug): Wan Load Balancing - Error on firewall NAT rules
+
+
+2023-04-02
+==========
+
+* :vytask:`T5134` (feature): Try if netavark networks can be moved to a VRF instance
+
+
+2023-04-01
+==========
+
+* :vytask:`T5082` (feature): container: switch to netavark network stack
+* :vytask:`T5047` (bug): Recreate only a specific container
+* :vytask:`T5132` (default): Operational command "show isis vrf XXX route | neighbord" aren't working
+
+
+2023-03-31
+==========
+
+* :vytask:`T5129` (feature): Add AWS build flavour
+* :vytask:`T5126` (feature): http-api: add 'allow-client' to restrict IP address of client connections
+
+
+2023-03-30
+==========
+
+* :vytask:`T5130` (bug): op-mode: drop remaining reference to obsoleted 'show_interfaces.py'
+* :vytask:`T4866` (feature): Rewrite show_interfaces to standardized form
+* :vytask:`T366` (bug): SNMP Query for BGP Tunnels Returns IPv4 Tunnels Only
+
+
+2023-03-29
+==========
+
+* :vytask:`T5100` (feature): Update FRR to 8.5
+* :vytask:`T5094` (bug): FRR systemd logs unknow key LimitNOFILESoft
+* :vytask:`T5085` (bug): ospfv3 route-map not applied in FRR configuration
+* :vytask:`T5056` (bug): IPoE server vlan-mon is not working
+* :vytask:`T5033` (bug): generate-public-key command fails for address with multiple public keys like GitHub
+* :vytask:`T4876` (bug): mpls - LSP broken on FRR 8.4.1
+* :vytask:`T5097` (bug): the operational command "show interfaces ethernet ethx" doesn't reflect a call to 'clear counters'
+* :vytask:`T5089` (enhancment): Add unit test of config_diff
+* :vytask:`T5088` (enhancment): Add lexicographical-numeric compare function for vytree/configtree
+* :vytask:`T5087` (enhancment): Add support for lexical ordering of nodes in config_tree
+* :vytask:`T4885` (feature): Rewrite 'clear interfaces counters' from Perl to Python
+* :vytask:`T4846` (bug): L3VPN- network command doesn't install direct connected prefix
+
+
+2023-03-28
+==========
+
+* :vytask:`T5043` (feature): Need to create reset command for IKEv2 remote-access vpn connections
+
+
+2023-03-27
+==========
+
+* :vytask:`T5099` (feature): IPoE server add option 'next-pool' for named ip pools
+* :vytask:`T5106` (feature): Extend generation of API client requests to configsession native functions and composite requests
+* :vytask:`T5104` (bug): DHCP default route issues with static routes in VRFs
+* :vytask:`T5079` (feature): xml: schema extension to support defaultValues on tagNodes
+* :vytask:`T5114` (feature): bgp: implement new CLI commands introduced in FRR 8.5
+
+
+2023-03-23
+==========
+
+* :vytask:`T5108` (feature): Get rate limit for L2TP/PPTP/SSTP/IPoE in raw format
+* :vytask:`T5086` (feature): Integrate hsflowd for sflow accounting
+* :vytask:`T5107` (bug): Raise error in op-mode dns.py instead of calling exit
+
+
+2023-03-22
+==========
+
+* :vytask:`T5068` (feature): Generate op-mode API client requests along with schema generation
+
+
+2023-03-21
+==========
+
+* :vytask:`T5098` (feature): PPPoE client holdoff configuration
+* :vytask:`T3694` (bug): Static routes not installed into kernel nor frr
+* :vytask:`T5102` (feature): ospf: "redistribute babel" is always set
+
+
+2023-03-20
+==========
+
+* :vytask:`T5057` (bug): IPoE server incorrect interface regex
+* :vytask:`T5095` (feature): Return list instead of dict for 'raw' output of op-mode openvpn
+
+
+2023-03-19
+==========
+
+* :vytask:`T4925` (feature): Need to add the possibility to configure Pseudo-Random Functions (PRF) in IKEv2
+
+
+2023-03-17
+==========
+
+* :vytask:`T5092` (bug): IPoE-server named pool must not rely on the authentication type
+* :vytask:`T5091` (bug): IPoE server with RADIUS authentication does not verify radius configuration
+
+
+2023-03-16
+==========
+
+* :vytask:`T5073` (bug): IPoE-server interface option failed to parse
+* :vytask:`T5063` (bug): IPoE-server ethX vlan must not be used with client-subnet
+* :vytask:`T5058` (feature): Extend template filter range_to_regex
+* :vytask:`T3083` (feature): Add feature event-handler
+* :vytask:`T2516` (bug): vyos-container: cannot configure ethernet interface
+
+
+2023-03-13
+==========
+
+* :vytask:`T5074` (bug): Show IPSEC SA failed if remote access IKEv2 vpn is used.
+* :vytask:`T4973` (bug): show dhcp server leases error for lease time 4294967295
+
+
+2023-03-11
+==========
+
+* :vytask:`T5076` (feature): CI/CD: Docker container is bloated by legacy and conflicting dependencies
+
+
+2023-03-09
+==========
+
+* :vytask:`T5066` (bug): Different GRE tunnel but same tunnel keys error
+* :vytask:`T4952` (feature): Improve interface completion helper CLI experience
+
+
+2023-03-08
+==========
+
+* :vytask:`T4381` (default): OpenVPN: Add "Tunnel IP" column in "show openvpn server" operational command
+* :vytask:`T4872` (bug): Op-mode show openvpn misses a case when parsing for tunnel IP
+
+
+2023-03-07
+==========
+
+* :vytask:`T2838` (bug): Ethernet device names changing, multiple hw-id being added
+* :vytask:`T5051` (feature): Use Literal types to provide op-mode CLI choices and API enums
+* :vytask:`T4900` (default): Cache intermediary results of get_config_diff in Config instance
+
+
+2023-03-05
+==========
+
+* :vytask:`T5040` (default): Generate API GraphQL schema on installation, rather than dynamically
+
+
+2023-03-03
+==========
+
+* :vytask:`T4625` (enhancment): Update ocserv to current revision (1.1.6)
+
+
+2023-03-02
+==========
+
+* :vytask:`T4967` (feature): Ability to set hostname for the container
+
+
+2023-03-01
+==========
+
+* :vytask:`T5015` (bug): Invalid format character error at hfsc class settings help text
+
+
+2023-02-28
+==========
+
+* :vytask:`T5029` (feature): Nginx change default root directory and fix regex
+* :vytask:`T5025` (bug): Time-zone validation failed
+* :vytask:`T4955` (bug): Openconnect radiusclient.conf generating with extra authserver
+* :vytask:`T4843` (feature): Command-line arguments in container config
+* :vytask:`T4219` (feature): support incoming-interface (iif) in local PBR
+* :vytask:`T3903` (bug): Containers: after command "reboot" the host system will reboot after 1.5 minutes
+
+
+2023-02-27
+==========
+
+* :vytask:`T5028` (feature): Add package exfatprogs to VyOS
+* :vytask:`T4985` (bug): reset vpn ipsec-peer command with peer name does not work
+
+
+2023-02-26
+==========
+
+* :vytask:`T4979` (feature): Add API request 'show_user_info' for UI
+
+
+2023-02-25
+==========
+
+* :vytask:`T5008` (bug): MACsec CKN of 32 chars is not allowed in CLI, but works fine
+* :vytask:`T5007` (bug): Interface multicast setting is invalid
+* :vytask:`T5027` (bug): OpenVPN options and site-to-site cannot pass smoketest
+* :vytask:`T4978` (bug): KeyError: 'memory' container_config['memory'] on upgrading to 1.4-rolling-202302041536
+* :vytask:`T5034` (bug): Migrate multicast CLI node to valueLess
+* :vytask:`T4948` (feature): pppoe: add CLI option to allow definition of host-uniq flag
+
+
+2023-02-24
+==========
+
+* :vytask:`T5030` (bug): HTTPS-API delete key without id error
+* :vytask:`T5006` (bug): Http api segfault with concurrent requests
+
+
+2023-02-23
+==========
+
+* :vytask:`T5013` (feature): Extend accelppp.py op-mode to get subnet start stop info from config
+* :vytask:`T5002` (feature): Add uk (United Kingdom) keymap
+
+
+2023-02-22
+==========
+
+* :vytask:`T5024` (bug): check-qemu-install VM is not shutdown the first time
+* :vytask:`T5011` (bug): Some interface drivers don't support min_mtu and max_mtu and verify_mtu check should be skipped
+
+
+2023-02-21
+==========
+
+* :vytask:`T5021` (bug): IPsec SA is closed before negotiating a new one or it is negotiated on every second if big life-time is set in swanctl.conf
+* :vytask:`T5020` (feature): Extend openvpn.py op-mode to get a list of configured clients
+
+
+2023-02-20
+==========
+
+* :vytask:`T5005` (feature): Skip user authentication for PPPoE Server with noauth option
+
+
+2023-02-16
+==========
+
+* :vytask:`T4971` (feature): Radius attribute "Framed-Pool" for PPPoE
+
+
+2023-02-15
+==========
+
+* :vytask:`T4991` (bug): Restore path level information to compare output
+
+
+2023-02-14
+==========
+
+* :vytask:`T4968` (bug): VPN IPsec check dpd and close action for empty values
+* :vytask:`T1993` (feature): Extended pppoe rate-limiter
+
+
+2023-02-13
+==========
+
+* :vytask:`T4905` (feature): Convert show nhrp tunnel to tabulate format
+* :vytask:`T4153` (bug): Monitor bandwidth-test initiate not working
+
+
+2023-02-12
+==========
+
+* :vytask:`T4998` (bug): pppoe username validation too restrictive (regression)
+
+
+2023-02-11
+==========
+
+* :vytask:`T2603` (feature): pppoe-server: reduce min MTU
+
+
+2023-02-10
+==========
+
+* :vytask:`T4857` (feature): SNMP - Implement FRR SNMP recommendations
+* :vytask:`T4995` (feature): pppoe, wwan and sstp-client - rename user -> username on authentication
+
+
+2023-02-07
+==========
+
+* :vytask:`T4980` (bug): chrony not listening as a server
+* :vytask:`T4868` (bug): L2TP ppp-options ipv6 does not work without ipv6 pool but should
+* :vytask:`T4117` (bug): Does not possible to configure PoD/CoA for L2TP vpn
+
+
+2023-02-01
+==========
+
+* :vytask:`T4970` (default): pin OCaml pcre package to avoid JIT support
+
+
+2023-01-31
+==========
+
+* :vytask:`T4964` (bug): FRR bgp address-family l2vpn-evpn route-target export/import not working
+* :vytask:`T4780` (feature): Firewall - Add interface group
+* :vytask:`T4157` (default): Add jinja2 to pip test requirements
+
+
+2023-01-30
+==========
+
+* :vytask:`T4958` (feature): Add OpenConnect RADIUS Accounting support
+* :vytask:`T4954` (bug): DNS cannot be configured via Network-Config v1 received from ConfigDrive / Cloud-Init
+* :vytask:`T4118` (default): IPsec syntax overhaul
+
+
+2023-01-29
+==========
+
+* :vytask:`T4965` (default): empty description in firewall group causes configuration error on migration
+
+
+2023-01-28
+==========
+
+* :vytask:`T4961` (bug): Uncaught configtree error allows ntp migration 1-to-2 to fail silentlly on config.boot.default
+
+
+2023-01-27
+==========
+
+* :vytask:`T4960` (bug): Bugs in `cc_vyos.py` code (Cloud-Init)
+
+
+2023-01-26
+==========
+
+* :vytask:`T4886` (feature): Firewall and Policy - Add connection mark
+* :vytask:`T4957` (bug): config-mgmt should not attempt to archive config at boot
+* :vytask:`T4962` (bug): Fix typo in regex in vyos.config_mgmt compare function
+* :vytask:`T4912` (default): Rewrite the IGMP op mode in the new style
+
+
+2023-01-25
+==========
+
+* :vytask:`T4941` (bug): Accel-ppp IPoE incompatibility with kernel 6.1
+
+
+2023-01-24
+==========
+
+* :vytask:`T4947` (feature): Support mounting container volumes as ro or rw
+
+
+2023-01-23
+==========
+
+* :vytask:`T4798` (default): Migrate the file-exists validator away from Python
+* :vytask:`T4683` (enhancment): Add kitty-terminfo package to build
+* :vytask:`T4953` (bug): Remove convert_kwargs_to_snake_case decorator in dynamic generation of GraphQL resolvers
+* :vytask:`T4875` (default): Replace Python validator 'interface-name' to avoid Python startup cost
+* :vytask:`T4664` (bug): Add validation to reject whitespace in tag node value names
+
+
+2023-01-22
+==========
+
+* :vytask:`T4906` (bug): ipsec connections shows only one connection as up
+
+
+2023-01-21
+==========
+
+* :vytask:`T4799` (bug): PowerDNS >= 4.7 does not get reloaded by vyos-hostsd
+* :vytask:`T4878` (bug): Any interface bonding changes cause interface flapping
+* :vytask:`T4387` (default): Create additional smoketests for multiwan PBR & load-balanced configurations
+
+
+2023-01-20
+==========
+
+* :vytask:`T4551` (bug): IPsec rekeying collisions bug
+* :vytask:`T4942` (feature): Rewrite vyatta-config-mgmt to Python/XML
+
+
+2023-01-17
+==========
+
+* :vytask:`T4938` (bug): Interface input ifb does not work
+* :vytask:`T4902` (bug): snmpd: exclude container storage from monitoring
+* :vytask:`T4140` (bug): Lack of SNMP IANA mibs
+
+
+2023-01-15
+==========
+
+* :vytask:`T4832` (feature): dhcp: Add IPv6-only dhcp option support (RFC 8925)
+* :vytask:`T4937` (feature): ocserv: upgrade package to version 1.1.6
+* :vytask:`T4918` (bug): Odd show interface behavior
+* :vytask:`T3008` (feature): Migrate from ntpd to chronyd
+
+
+2023-01-13
+==========
+
+* :vytask:`T4911` (default): Rewrite the LLDP op mode in the new format
+* :vytask:`T4928` (feature): Upgrade Linux Kernel to 6.1.y (2022 LTS edition)
+
+
+2023-01-12
+==========
+
+* :vytask:`T4934` (bug): ospf: Fix inter-area route summarization
+* :vytask:`T4929` (feature): Update Intel QAT drivers to 4.20.0-00001
+
+
+2023-01-10
+==========
+
+* :vytask:`T4880` (feature): Expose 'add/delete container image' in HTTP-API
+
+
+2023-01-09
+==========
+
+* :vytask:`T4922` (feature): Add ssh-client source-interface CLI option
+* :vytask:`T4524` (bug): Squid webproxy not working properly
+
+
+2023-01-08
+==========
+
+* :vytask:`T4920` (bug): ospf: Fix `passive-interface default` option
+
+
+2023-01-07
+==========
+
+* :vytask:`T4884` (bug): Missing a community6 in snmpd config
+
+
+2023-01-05
+==========
+
+* :vytask:`T4904` (feature): Allow multiple ports for high-availability virtual-server
+* :vytask:`T4789` (feature): Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format
+* :vytask:`T3937` (default): Rewrite "show system memory" in Python to make it usable as a library function
+
+
+2023-01-04
+==========
+
+* :vytask:`T4848` (bug): Minor bug in OpenConnect server with default route
+* :vytask:`T4656` (feature): Support the listen-host config field of openconnect server
+
+
+2023-01-03
+==========
+
+* :vytask:`T4907` (bug): nat source translations couldn't show metrics
+
+
+2023-01-02
+==========
+
+* :vytask:`T4893` (feature): l2tp add ppp-options IPv6 interface identifier
+* :vytask:`T4717` (feature): Connect to console server by name
+* :vytask:`T725` (feature): Cake and FQ-PIE
+
+
+2022-12-31
+==========
+
+* :vytask:`T4898` (feature): Add mtu config option for dummy interfaces
+
+
+2022-12-30
+==========
+
+* :vytask:`T4834` (bug): Limit container network name to 15 characters
+* :vytask:`T4901` (bug): Update Podman to v4.3.1
+* :vytask:`T4899` (bug): Podman systemd services not being installed correctly
+
+
+2022-12-28
+==========
+
+* :vytask:`T4593` (feature): Upgrade strongswan to 5.9.8
+
+
+2022-12-26
+==========
+
+* :vytask:`T4511` (bug): IPv6 DNS lookup
+* :vytask:`T4809` (feature): radvd: Allow use of AdvRASrcAddress
+
+
2022-12-25
==========
@@ -1432,12 +1975,6 @@
* :vytask:`T4181` (bug): Firewall ipv6-network-group - incorrect description on helper
-2022-01-22
-==========
-
-* :vytask:`T4173` (bug): Wan Load Balancing - Error on firewall NAT rules
-
-
2022-01-21
==========
@@ -1818,7 +2355,6 @@
* :vytask:`T3612` (bug): IPoE Server address pool issues.
* :vytask:`T3995` (feature): OpenVPN: do not stop/start service on configuration change
-* :vytask:`T3680` (bug): Static routes with dhcp-interface are flaky
* :vytask:`T4008` (feature): dhcp: change client retry interval form 300 -> 60 seconds
* :vytask:`T3795` (bug): WWAN: issues with non connected interface / no signal
* :vytask:`T3510` (bug): RADIUS usersname is not shown on CLI
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-01 13:40:47 +0000