summaryrefslogtreecommitdiff
path: root/templates
diff options
context:
space:
mode:
Diffstat (limited to 'templates')
-rw-r--r--templates/interfaces/bonding/node.tag/ip/proxy-arp-pvlan/node.def3
-rw-r--r--templates/interfaces/bonding/node.tag/vif-s/node.def2
-rw-r--r--templates/interfaces/bonding/node.tag/vif/node.def2
-rw-r--r--templates/interfaces/ethernet/node.tag/ip/proxy-arp-pvlan/node.def3
-rw-r--r--templates/interfaces/pseudo-ethernet/node.tag/ip/proxy-arp-pvlan/node.def3
-rw-r--r--templates/interfaces/tunnel/node.def30
-rw-r--r--templates/interfaces/tunnel/node.tag/address/node.def2
-rw-r--r--templates/interfaces/tunnel/node.tag/encapsulation/node.def7
-rw-r--r--templates/interfaces/tunnel/node.tag/local-ip/node.def4
-rw-r--r--templates/interfaces/tunnel/node.tag/parameters/ip/key/node.def4
-rw-r--r--templates/interfaces/tunnel/node.tag/parameters/ip/tos/node.def4
-rw-r--r--templates/interfaces/tunnel/node.tag/parameters/ip/ttl/node.def4
-rw-r--r--templates/service/snmp/contact/node.def4
-rw-r--r--templates/service/snmp/description/node.def4
-rw-r--r--templates/service/snmp/location/node.def3
-rw-r--r--templates/system/disable-dhcp-nameservers/node.def5
16 files changed, 55 insertions, 29 deletions
diff --git a/templates/interfaces/bonding/node.tag/ip/proxy-arp-pvlan/node.def b/templates/interfaces/bonding/node.tag/ip/proxy-arp-pvlan/node.def
new file mode 100644
index 00000000..a6cf9494
--- /dev/null
+++ b/templates/interfaces/bonding/node.tag/ip/proxy-arp-pvlan/node.def
@@ -0,0 +1,3 @@
+help: Enable private VLAN proxy ARP on this interface
+create:expression: "sudo sh -c \"echo 1 > /proc/sys/net/ipv4/conf/$VAR(../../@)/proxy_arp_pvlan\" "
+delete:expression: "sudo sh -c \"echo 0 > /proc/sys/net/ipv4/conf/$VAR(../../@)/proxy_arp_pvlan\" "
diff --git a/templates/interfaces/bonding/node.tag/vif-s/node.def b/templates/interfaces/bonding/node.tag/vif-s/node.def
index 64aabe2e..5a2e8dee 100644
--- a/templates/interfaces/bonding/node.tag/vif-s/node.def
+++ b/templates/interfaces/bonding/node.tag/vif-s/node.def
@@ -15,4 +15,4 @@ create: read -a SLAVES </sys/class/net/$VAR(../@)/bonding/slaves
/opt/vyatta/sbin/vyatta-link-detect "$VAR(../@).$VAR(@)" on
delete: [ -d /sys/class/net/$VAR(../@).$VAR(@) ] || exit 0
- ip link delete dev ".$VAR(../@).$VAR(@)" type vlan proto 802.1ad id $VAR(@)
+ ip link delete dev "$VAR(../@).$VAR(@)" type vlan proto 802.1ad id $VAR(@)
diff --git a/templates/interfaces/bonding/node.tag/vif/node.def b/templates/interfaces/bonding/node.tag/vif/node.def
index 16d5972f..63394e44 100644
--- a/templates/interfaces/bonding/node.tag/vif/node.def
+++ b/templates/interfaces/bonding/node.tag/vif/node.def
@@ -15,4 +15,4 @@ create: read -a SLAVES </sys/class/net/$VAR(../@)/bonding/slaves
/opt/vyatta/sbin/vyatta-link-detect "$VAR(../@).$VAR(@)" on
delete: [ -d /sys/class/net/$VAR(../@).$VAR(@) ] || exit 0
- ip link delete dev ".$VAR(../@).$VAR(@)" type vlan id $VAR(@)
+ ip link delete dev "$VAR(../@).$VAR(@)" type vlan id $VAR(@)
diff --git a/templates/interfaces/ethernet/node.tag/ip/proxy-arp-pvlan/node.def b/templates/interfaces/ethernet/node.tag/ip/proxy-arp-pvlan/node.def
new file mode 100644
index 00000000..a6cf9494
--- /dev/null
+++ b/templates/interfaces/ethernet/node.tag/ip/proxy-arp-pvlan/node.def
@@ -0,0 +1,3 @@
+help: Enable private VLAN proxy ARP on this interface
+create:expression: "sudo sh -c \"echo 1 > /proc/sys/net/ipv4/conf/$VAR(../../@)/proxy_arp_pvlan\" "
+delete:expression: "sudo sh -c \"echo 0 > /proc/sys/net/ipv4/conf/$VAR(../../@)/proxy_arp_pvlan\" "
diff --git a/templates/interfaces/pseudo-ethernet/node.tag/ip/proxy-arp-pvlan/node.def b/templates/interfaces/pseudo-ethernet/node.tag/ip/proxy-arp-pvlan/node.def
new file mode 100644
index 00000000..a6cf9494
--- /dev/null
+++ b/templates/interfaces/pseudo-ethernet/node.tag/ip/proxy-arp-pvlan/node.def
@@ -0,0 +1,3 @@
+help: Enable private VLAN proxy ARP on this interface
+create:expression: "sudo sh -c \"echo 1 > /proc/sys/net/ipv4/conf/$VAR(../../@)/proxy_arp_pvlan\" "
+delete:expression: "sudo sh -c \"echo 0 > /proc/sys/net/ipv4/conf/$VAR(../../@)/proxy_arp_pvlan\" "
diff --git a/templates/interfaces/tunnel/node.def b/templates/interfaces/tunnel/node.def
index f35bb401..426b9d26 100644
--- a/templates/interfaces/tunnel/node.def
+++ b/templates/interfaces/tunnel/node.def
@@ -12,31 +12,30 @@ commit:expression: $VAR(./encapsulation/) != "" ; \
"Must configure the tunnel encapsulation for $VAR(@)"
commit:expression:
exec "
- if [ $VAR(./encapsulation/@) == gre-multipoint ] && [ -n \"$VAR(./remote-ip/)\" ]; then \
- echo \"Remote-ip shouldn't be set for mGRE mode for $VAR(@)\"; \
- exit 1; \
+ if [ $VAR(./encapsulation/@) = gre ] && [ ! -n \"$VAR(./remote-ip/)\" ]; then \
+ echo \"No remote-ip configured for $VAR(@), tunnel can only be used for mGRE.\"; \
fi; \
- if [ $VAR(./encapsulation/@) != gre-multipoint ] && [ ! -n \"$VAR(./remote-ip/)\" ]; then \
+ if [ $VAR(./encapsulation/@) != gre ] && [ ! -n \"$VAR(./remote-ip/)\" ]; then \
echo \"Must configure the tunnel remote-ip for $VAR(@)\"; \
exit 1; \
fi;
exit 0"
-commit:expression: (!(pattern $VAR(./local-ip/@) ".*:.*") && $VAR(./encapsulation/@) == "gre-multipoint") || \
- $VAR(./encapsulation/@) != "gre-multipoint"; "IPv6 local-ip ($VAR(./local-ip/@)) is forbidden for gre-multipoint encapsulation type."
+commit:expression: (!(pattern $VAR(./local-ip/@) ".*:.*") && $VAR(./encapsulation/@) == "gre" && $VAR(./remote-ip/) == "") || \
+ $VAR(./encapsulation/@) != "gre" || ($VAR(./encapsulation/@) == "gre" && $VAR(./remote-ip/) != ""); "IPv6 local-ip ($VAR(./local-ip/@)) is forbidden for mGRE tunnels."
-commit:expression: (!(pattern $VAR(./address/@@) ".*:.*") && $VAR(./encapsulation/@) == "gre-multipoint") || \
- $VAR(./encapsulation/@) != "gre-multipoint"; "IPv6 addresses ($VAR(./address/@@)) are forbidden for gre-multipoint encapsulation type."
+commit:expression: (!(pattern $VAR(./address/@@) ".*:.*") && $VAR(./encapsulation/@) == "gre" && $VAR(./remote-ip/) == "") || \
+ $VAR(./encapsulation/@) != "gre" || ($VAR(./encapsulation/@) == "gre" && $VAR(./remote-ip/) != ""); "IPv6 addresses ($VAR(./address/@@)) are forbidden for mGRE tunnels."
create:
- if [ "$VAR(./encapsulation/@)" == "gre-multipoint" ]; then
+ if [ $VAR(./encapsulation/@) = gre ] && [ -z $VAR(./remote-ip/) ]; then
sudo invoke-rc.d opennhrp.init start;
fi
if [ x$VAR(./multicast/@) == xenable ]; then
MC="multicast on allmulticast on";
fi
case "$VAR(./encapsulation/@)" in
- "gre" | "ipip" | "sit" | "gre-multipoint")
+ "gre" | "ipip" | "sit")
if [ -n "$VAR(./parameters/ip/bridge-group/)" ] ; then
echo "interfaces tunnel $VAR(@): Tunnel encapsulation type must be gre-bridge if a bridge group is defined";
exit 1;
@@ -47,7 +46,7 @@ create:
if [ -n "$VAR(./parameters/ip/key/@)" ]; then
KEY="key $VAR(./parameters/ip/key/@)";
fi
- if [ "$VAR(./encapsulation/@)" == "gre-multipoint" ]; then
+ if [ "$VAR(./encapsulation/@)" == "gre" ] && [ -z $VAR(./remote-ip/) ]; then
ip tunnel add $VAR(@) local $VAR(./local-ip/@) mode gre $KEY $TTL
else
ip tunnel add $VAR(@) local $VAR(./local-ip/@) remote $VAR(./remote-ip/@) mode $VAR(./encapsulation/@) $KEY $TTL
@@ -70,16 +69,19 @@ create:
echo "interfaces tunnel $VAR(@): error setting tunnel interface active"
delete:
+ /opt/vyatta/sbin/vyos-update-nhrp.pl --checkref --tun $VAR(@)
ip link set $VAR(@) down
case "$VAR(./encapsulation/@)" in
"gre" | "ipip" | "sit")
- ip tunnel del $VAR(@) mode $VAR(./encapsulation/@);;
+ if [ -z $VAR(./remote-ip/) ]; then
+ ip tunnel del $VAR(@) mode gre
+ else
+ ip tunnel del $VAR(@) mode $VAR(./encapsulation/@)
+ fi;;
"gre-bridge")
ip link delete $VAR(@) ;;
"ipip6" | "ip6ip6")
ip -6 tunnel del $VAR(@) mode $VAR(./encapsulation/@);;
- "gre-multipoint")
- ip tunnel del $VAR(@) mode gre;;
esac
diff --git a/templates/interfaces/tunnel/node.tag/address/node.def b/templates/interfaces/tunnel/node.tag/address/node.def
index 539f7509..26c2f860 100644
--- a/templates/interfaces/tunnel/node.tag/address/node.def
+++ b/templates/interfaces/tunnel/node.tag/address/node.def
@@ -1,7 +1,7 @@
multi:
type: ipv4net,ipv6net
val_help: ipv4net; IPv4 address and prefix length
-val_help: ipv6net; IPv6 address and prefix length [NOTICE: unavailable for gre-multipoint encapsulation]
+val_help: ipv6net; IPv6 address and prefix length [NOTICE: unavailable for mGRE tunnels]
help: IP address
syntax:expression: exec "/opt/vyatta/sbin/valid_address $VAR(@)"
diff --git a/templates/interfaces/tunnel/node.tag/encapsulation/node.def b/templates/interfaces/tunnel/node.tag/encapsulation/node.def
index 5b47e5a9..c8d0c7c2 100644
--- a/templates/interfaces/tunnel/node.tag/encapsulation/node.def
+++ b/templates/interfaces/tunnel/node.tag/encapsulation/node.def
@@ -1,9 +1,9 @@
type: txt
help: Encapsulation of this tunnel interface [REQUIRED]
-syntax:expression: ((pattern $VAR(@) "^[-a-zA-Z0-9_]+$") && (exec "sudo /opt/vyatta/sbin/vyatta-encapsulation $VAR(@)"))
-
-allowed: sudo /opt/vyatta/sbin/vyatta-encapsulation
+syntax:expression: ((pattern $VAR(@) "^[-a-zA-Z0-9_]+$") && \
+ ($VAR(@) in "gre", "gre-bridge", "ipip", "sit", "ipip6", "ip6ip6"; \
+ "Must be (gre gre-bridge ipip sit ipip6 ip6ip6)\n"))
create:expression: "true"
update:expression: "false" ; \
@@ -11,7 +11,6 @@ update:expression: "false" ; \
val_help: gre; Generic Routing Encapsulation
val_help: gre-bridge; Generic Routing Encapsulation bridge interface
-val_help: gre-multipoint; Multipoint Generic Routing Encapsulation
val_help: ipip; IP in IP encapsulation
val_help: sit; Simple Internet Transition encapsulation
val_help: ipip6; IP in IP6 encapsulation
diff --git a/templates/interfaces/tunnel/node.tag/local-ip/node.def b/templates/interfaces/tunnel/node.tag/local-ip/node.def
index c6a82a03..8275243a 100644
--- a/templates/interfaces/tunnel/node.tag/local-ip/node.def
+++ b/templates/interfaces/tunnel/node.tag/local-ip/node.def
@@ -1,7 +1,7 @@
type: ipv4, ipv6
help: Local IP address for this tunnel [REQUIRED]
val_help: ipv4; Local IPv4 address for this tunnel [REQUIRED]
-val_help: ipv6; Local IPv6 address for this tunnel [REQUIRED] [NOTICE: unavailable for gre-multipoint encapsulation]
+val_help: ipv6; Local IPv6 address for this tunnel [REQUIRED] [NOTICE: unavailable for mGRE tunnels]
update:if ! /opt/vyatta/sbin/local_ip $VAR(@)
then
@@ -11,7 +11,7 @@ update:if ! /opt/vyatta/sbin/local_ip $VAR(@)
case "$VAR(../encapsulation/@)" in
"gre-bridge")
;;
- "gre" | "gre-multipoint" | "ipip" | "sit")
+ "gre" | "ipip" | "sit")
sudo ip tunnel cha $VAR(../@) local $VAR(@)
if [ -e "/opt/vyatta/sbin/dmvpn-config.pl" ]; then
sudo /opt/vyatta/sbin/dmvpn-config.pl \
diff --git a/templates/interfaces/tunnel/node.tag/parameters/ip/key/node.def b/templates/interfaces/tunnel/node.tag/parameters/ip/key/node.def
index a6ba8708..b9ed181e 100644
--- a/templates/interfaces/tunnel/node.tag/parameters/ip/key/node.def
+++ b/templates/interfaces/tunnel/node.tag/parameters/ip/key/node.def
@@ -10,8 +10,8 @@ syntax:expression: exec " \
exit 1 ; \
fi ; "
-commit:expression: $VAR(../../../encapsulation/@) in "gre", "gre-multipoint" ; \
- "Key only valid for GRE/GRE-MULTIPOINT for $VAR(../../../@)"
+commit:expression: $VAR(../../../encapsulation/@) in "gre" ; \
+ "Key only valid for GRE for $VAR(../../../@)"
create:expression: "true"
update:expression: "false" ; \
diff --git a/templates/interfaces/tunnel/node.tag/parameters/ip/tos/node.def b/templates/interfaces/tunnel/node.tag/parameters/ip/tos/node.def
index 32080dce..c784e512 100644
--- a/templates/interfaces/tunnel/node.tag/parameters/ip/tos/node.def
+++ b/templates/interfaces/tunnel/node.tag/parameters/ip/tos/node.def
@@ -3,8 +3,8 @@ help: Type of Service (TOS)
syntax:expression: $VAR(@) >= 0 && $VAR(@) <= 99; "Must be between 0-99"
val_help: u32:0-99; Type Of Service (TOS)
-commit:expression: $VAR(../../../encapsulation/@) in "gre", "gre-multipoint", "sit", "ipip" ; \
- "tunnel encapsulation must be GRE, GRE-MULTIPOINT, SIT or IPIP"
+commit:expression: $VAR(../../../encapsulation/@) in "gre", "sit", "ipip" ; \
+ "tunnel encapsulation must be GRE, SIT or IPIP"
update: ip tunnel change $VAR(../../../@) tos $VAR(@)
delete: ip tunnel change $VAR(../../../@) tos inherit
diff --git a/templates/interfaces/tunnel/node.tag/parameters/ip/ttl/node.def b/templates/interfaces/tunnel/node.tag/parameters/ip/ttl/node.def
index 3bb2ec72..24d27104 100644
--- a/templates/interfaces/tunnel/node.tag/parameters/ip/ttl/node.def
+++ b/templates/interfaces/tunnel/node.tag/parameters/ip/ttl/node.def
@@ -3,8 +3,8 @@ help: Time to live field
val_help: u32:0-255; Time to live (default 255)
syntax:expression: $VAR(@) >= 0 && $VAR(@) <= 255; "Must be between 0-255"
-commit:expression: $VAR(../../../encapsulation/@) in "gre", "gre-multipoint", "sit", "ipip" ; \
- "tunnel encapsulation must be GRE, GRE-MULTIPOINT, SIT or IPIP"
+commit:expression: $VAR(../../../encapsulation/@) in "gre", "sit", "ipip" ; \
+ "tunnel encapsulation must be GRE, SIT or IPIP"
update:sudo ip tunnel change $VAR(../../../@) ttl $VAR(@)
delete:sudo ip tunnel change $VAR(../../../@) ttl inherit
diff --git a/templates/service/snmp/contact/node.def b/templates/service/snmp/contact/node.def
index 039cd548..63a368cc 100644
--- a/templates/service/snmp/contact/node.def
+++ b/templates/service/snmp/contact/node.def
@@ -1,2 +1,6 @@
type: txt
help: Contact information
+
+syntax:expression: pattern $VAR(@) "^[[:print:]]{1,255}$" ; \
+ "Contact information is limited to 255 characters or less"
+
diff --git a/templates/service/snmp/description/node.def b/templates/service/snmp/description/node.def
index 61ec96b6..cd88099a 100644
--- a/templates/service/snmp/description/node.def
+++ b/templates/service/snmp/description/node.def
@@ -1,2 +1,6 @@
type: txt
help: Description information
+
+syntax:expression: pattern $VAR(@) "^[[:print:]]{1,255}$" ; \
+ "Description is limited to 255 characters or less"
+
diff --git a/templates/service/snmp/location/node.def b/templates/service/snmp/location/node.def
index a5b234ea..903b405f 100644
--- a/templates/service/snmp/location/node.def
+++ b/templates/service/snmp/location/node.def
@@ -1,3 +1,6 @@
type: txt
help: Location information
+syntax:expression: pattern $VAR(@) "^[[:print:]]{1,255}$" ; \
+ "Location is limited to 255 characters or less"
+
diff --git a/templates/system/disable-dhcp-nameservers/node.def b/templates/system/disable-dhcp-nameservers/node.def
new file mode 100644
index 00000000..adf84948
--- /dev/null
+++ b/templates/system/disable-dhcp-nameservers/node.def
@@ -0,0 +1,5 @@
+priority: 300
+help: Disable DHCP updates of DNS settings
+
+create: sudo /opt/vyatta/sbin/vyatta_update_resolv.pl --config-mode 1
+delete: sudo /opt/vyatta/sbin/vyatta_update_resolv.pl --config-mode 1