summaryrefslogtreecommitdiff
path: root/interface-definitions/include
AgeCommit message (Collapse)Author
2025-04-22Merge pull request #4392 from symysak/T4627Daniil Baturin
interface: T4627: support setting of IPv6 Interface Identifier(Token)
2025-04-22T6773: RFC-2136 support for Kea DHCP4 server (#4153)Alex Bukharov
2025-04-18interface: T4627: support IPv6 Interface Identifier (token) for SLAACYoshiaki Suyama
Add common IPv6 CLI option (use ethernet as example): set interfaces ethernet eth0 ipv6 address interface-identifier Co-authored-by: Christian Breunig <christian@breunig.cc>
2025-04-15Merge pull request #4412 from sarthurdev/kea_2.6Daniil Baturin
kea: T7281: Add ping-check, use built-in option for classless static routes
2025-04-15Merge pull request #4214 from dmbaturin/T6919-good-bye-fastnetmonDaniil Baturin
ids: T7241: remove Fastnetmon from the base system
2025-04-14kea: T7310: add support for RFC-5417 (option 138) (#4430)David Vølker
* dhcp-server: T7310: add support for option 138 CAPWAP AC to KEA * kea: T7310: Update data/templates/dhcp-server/kea-dhcp4.conf.j2 Co-authored-by: Simon <965089+sarthurdev@users.noreply.github.com> * kea: T7310: Update python/vyos/kea.py Co-authored-by: Simon <965089+sarthurdev@users.noreply.github.com> * kea: T7310: add smoketest for capwap-ac-v4 * kea: T7310: Update python/vyos/kea.py Co-authored-by: Simon <965089+sarthurdev@users.noreply.github.com> --------- Co-authored-by: David Vølker <davvol@davvol.dk> Co-authored-by: Simon <965089+sarthurdev@users.noreply.github.com>
2025-04-14ids: T7241: remove Fastnetmon from the base systemDaniil Baturin
It will eventually be moved to an addon
2025-04-14kea: T7281: Add support for ping-check in Keasarthurdev
2025-03-25Merge pull request #4326 from Embezzle/T5493Daniil Baturin
firewall: T5493: Implement remote-group
2025-03-21firewall: T5493: Implement remote-groupAlex W
2025-03-20Merge pull request #4402 from c-po/wireguard-key-T7246Christian Breunig
wireguard: T7246: verify Base64 encoded 32byte boundary on keys
2025-03-20wireguard: T7246: verify Base64 encoded 32byte boundary on keysChristian Breunig
Not 31 bytes or 33 bytes, but exactly 32. This matters, because 32 does not divide evenly by .75, so there's a padding character and the penultimate character does not include the whole base64 alphabet. Extend the base64 validator with an optional argument to define the length to match of the decrypted Base64 encoded string. Source: https://lists.zx2c4.com/pipermail/wireguard/2020-December/006222.html
2025-03-18Merge pull request #4399 from sever-sever/T7252Daniil Baturin
T7252: Allow vpptun and vpptap for constraint validator
2025-03-18bgp: T7157: Allow using route-maps for VRF route leaking in BGP (#4404)aapostoliuk
* bgp: T7157: Allow using route-maps for VRF route leaking in BGP Added the possibility of using route-map in route leaking. * Improve the constraint error message --------- Co-authored-by: Daniil Baturin <daniil@baturin.org>
2025-03-17T7252: Allow vpptun and vpptap for constraint validatorViacheslav Hletenko
It fixes cases whey we want to use VPP kernel interfaces for OSPF But VPP kernel interface is not exists on this step set vpp interfaces loopback lo0 kernel-interface 'vpptun0' set protocols ospf interface vpptun0 area '0' Incorrect path /sys/class/net/vpptun0: no such file or directory
2025-02-27Merge pull request #4371 from talmakion/bugfix/T7116/remove-obsolete-communityChristian Breunig
policy: T7116: Remove unsupported use of BGP community "internet"
2025-02-27Merge pull request #4372 from aapostoliuk/T7118-circinusChristian Breunig
T7118: Added the ability to redistribute NHRP routes to other protocols
2025-02-26wlb: T7196: Migrate interface wildcards to nftables formatSimon
* wlb: T7196: Migrate interface wildcards to nftables format * wlb: T7196: Fix exclude/interface verify check * wlb: T7196: Extra sanity check on ipv4 address function
2025-02-26T7118: Added the ability to redistribute NHRP routes to other protocolsaapostoliuk
Added the ability to redistribute NHRP routes to: OSPF BGP Babel RIP IS-IS
2025-02-26policy: T7116: migrate legacy use of "internet" as a well-known community nameAndrew Topp
This has been split into a separate commit in case this is overkill for the fix. 1.2 and 1.3 installs predate the change to FRR that removed support, but "internet" is already broken on 1.4.
2025-02-26policy: T7116: remove completions & constraints for unsupported community ↵Andrew Topp
"internet"
2025-02-25Merge pull request #4365 from c-po/lldp-t7165Daniil Baturin
lldp: T7165: add support to enable only rx/tx on specific interfaces
2025-02-24lldp: T7165: add support to enable only rx or tx on specific interfaceChristian Breunig
LLDP is a stateless protocol which does not necessitate sending to receive advertisements. There are multiple scenarios such as provider peering links in which it is advantageous to receive LLDP but not disclose internal information to the provider. Add new CLI command: * set service lldp interface <name> mode [disable|rx-tx|rx|tx] The default is unchanged and will be rx-tx. Furthermore if an interface has an explicit LLDP disable configured under "set service lldp interface <name> disable" this will be migrated to "set service lldp interface <name> mode disable"
2025-02-24T7190: Add haproxy default timeout options configurableViacheslav Hletenko
Add the ability to configurate default timeout and frontend client timeout ``` set load-balancing haproxy service web timeout client '600' set load-balancing haproxy timeout check '4' set load-balancing haproxy timeout client '600' set load-balancing haproxy timeout connect '12' set load-balancing haproxy timeout server '120' ```
2025-02-20Merge pull request #4351 from markh0338/int-group-container-validationChristian Breunig
firewall: T7177: Update interface-name constraint to allow "pod-" interface names
2025-02-19firewall: T7177: update interface-name.xml.i constraint and smoketest to ↵Mark
support pod interfaces from containers
2025-02-19T6628: IPoE-server rename "static-ip" to "ip-address" for local authNataliia Solomko
2025-02-13bgp: T7163: add CLI route-map and metric support for "redistribute table"Christian Breunig
* set protocols bgp address-family <ipv4-unicast|ipv6-unicast> redistribute table <n> [metric <n>] [route-map <name>]
2025-02-13bgp: T7161: fix IPv4/IPv6 unicast AFI "redistribute table" commandChristian Breunig
Re-use existing XML constraint added via commit 8f6246da6 ("xml: T7161: provide re-usable building block for alternative routing tables") and add handy CLI completion helper. FRRouting supports redistribution of multiple non-main tables, thus make this a multi node in addition, too.
2025-02-13bgp: T7161: support "redistribute isis" for IPv6 unicast AFIChristian Breunig
2025-02-13bgp: T7161: add re-usable XML definition for redistribute other protocolsChristian Breunig
2025-02-13xml: T7161: provide re-usable building block for alternative routing tablesChristian Breunig
2025-02-03syslog: T6989: remove "file" logging destinationChristian Breunig
2025-01-24Merge pull request #4216 from HollyGurza/T6641Daniil Baturin
T6641: Add vyos-network-event-logger Service
2025-01-21T6895: Merge the hsflowd-based sFlow and uacctd-based sFlow (#4310)Nataliia S.
2025-01-21T6641: Add vyos-network-event-logger Servicekhramshinr
The service parses and logs network events for improved monitoring and diagnostics. Supported event types include: - `RTM_NEWROUTE`, `RTM_DELROUTE` - `RTM_NEWLINK`, `RTM_DELLINK` - `RTM_NEWADDR`, `RTM_DELADDR` - `RTM_NEWNEIGH`, `RTM_DELNEIGH`, `RTM_GETNEIGH` - `RTM_NEWRULE`, `RTM_DELRULE` Added operational mode commands for filtered log retrieval: - `show log network-event <event-type> <interface>`: Retrieve logs filtered by event type and interface. - `show interfaces <type> <name> event-log <event-type>`: Display interface-specific logs filtered by event type.
2025-01-13Merge pull request #4217 from aapostoliuk/T2326-circinusChristian Breunig
nhrp: T2326: NHRP migration to FRR
2025-01-09nhrp: T2326: NHRP migration to FRRaapostoliuk
NHRP migration to FRR
2025-01-09Merge pull request #4293 from indrajitr/haproxy-backend-completionChristian Breunig
haproxy: T5222: Enable backend completion in service ruleset
2025-01-09xml: T5738: Reuse predefined regex constraintIndrajit Raychaudhuri
2025-01-09haproxy: T5222: Enable backend completion in service rulesetIndrajit Raychaudhuri
Enable completion for backend in haproxy service ruleset like so: ``` set load-balancing haproxy service NAME rule 10 set backend ```
2025-01-06T6841: firewall: improve config parsing for ZBF when using VRFs and ↵Nicolas Fort
interfaces attached to VRFs
2024-12-31T6949: adds blackbox exporter (#4255)Nicolas Vollmar
* T6949: adds blackbox exporter * T6949: adds basic config generation * T6949: extract shared module config options * T6949: switch to ipv4/6 literals * T6949: moves config file to /run * T6949: adds dns query name option * T6949: adds dns query type values * T6949: adds blackbox exporter to debian/control
2024-12-23xml: T5738: re-use XML building blocks for interfaces as much as possibleChristian Breunig
Change XML definitions to re-use already existing building blocks, or merge two building block sinto one (e.g. static route interfaces).
2024-12-20Merge pull request #4242 from nvollmar/T6953Christian Breunig
T6953: merges node and frr exporter under prometheus section
2024-12-19T6953: add migration for old configurationNicolas Vollmar
2024-12-18Merge pull request #4233 from HollyGurza/T6934Christian Breunig
T6934: Add preshared key for zabbix-agent monitoring service
2024-12-18Merge pull request #4223 from HollyGurza/T6874Christian Breunig
T6874: [QoS] Add class filter by ether
2024-12-18Merge pull request #4236 from opswill/currentDaniil Baturin
T6918: Accept invalid PPPoE Session in stateful bridge firewall.
2024-12-18T6874: [QoS] Add class filter by etherkhramshinr
Implement a command to configure QoS policy filters by ether properties. The supported match types include: - Destination: Specify the Ethernet destination address. - Protocol: Define the Ethernet protocol. - Source: Set the Ethernet source address. `set qos policy <type> <name> class <id> match <match-id> ether <destination|protocol|source> <val>`
generated by cgit v1.2.3 (git 2.39.1) at 2025-08-18 18:34:26 +0000