VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) https://git.amelek.net/vyos/vyos-1x.git/atom?h=mergify%2Fbp%2Fcircinus%2Fpr-3916 2024-02-09T07:32:15+00:00 2024-02-09T07:32:15+00:00 Christian Breunig christian@breunig.cc 2024-02-09T07:32:15+00:00 urn:sha1:63d53a17274349fd68defdbf9f7ce16be63fc9b1 CLI source node is port and not listen-port. 2024-01-29T17:22:38+00:00 John Estabrook jestabro@vyos.io 2024-01-29T17:17:12+00:00 urn:sha1:f057075409b024a18ea8a39b5e128fcde988c00e 2024-01-09T06:29:16+00:00 Christian Breunig christian@breunig.cc 2024-01-06T09:55:42+00:00 urn:sha1:d0d3071e99eb65edb888c26ef2fdc9e038438887 We have not seen the adoption of the https virtual-host CLI option. What it did? * Create multiple webservers each listening on a different IP/port (but in the same VRF) * All webservers shared one common document root * All webservers shared the same SSL certificates * All webservers could have had individual allow-client configurations * API could be enabled for a particular virtual-host but was always enabled on the default host This configuration tried to provide a full webserver via the CLI but VyOS is a router and the Webserver is there for an API or to serve files for a local-ui. Changes Remove support for virtual-hosts as it's an incomplete and thus mostly useless "thing". Migrate all allow-client statements to one top-level allow statement. 2024-01-06T07:33:33+00:00 Christian Breunig christian@breunig.cc 2024-01-05T21:35:59+00:00 urn:sha1:9ab6665c80c30bf446d94620fc9d85b052d48072 2023-12-31T22:49:48+00:00 Christian Breunig christian@breunig.cc 2023-12-30T22:25:20+00:00 urn:sha1:4ef110fd2c501b718344c72d495ad7e16d2bd465 We will use _ as CLI level divider. The XML definition filename and also the Python helper should match the CLI node. Example: set interfaces ethernet -> interfaces_ethernet.xml.in set interfaces bond -> interfaces_bond.xml.in set service dhcp-server -> service_dhcp-server-xml.in 2023-11-21T19:52:08+00:00 Christian Breunig christian@breunig.cc 2023-11-21T19:25:59+00:00 urn:sha1:0e885f1bf01424130b6876e769cc42612b19351b This complements commit f5e43b136 ("http: T5762: api: make API socket backend communication the one and only default") so we have a consistent port CLI node across VyOS components. 2023-11-20T16:17:25+00:00 Christian Breunig christian@breunig.cc 2023-11-20T09:13:21+00:00 urn:sha1:f5e43b1361fb59a9c260739bdb28729d5119507c Why: Smoketests fail as they can not establish IPv6 connection to uvicorn backend server. https://github.com/vyos/vyos-1x/pull/2481 added a bunch of new smoketests. While debugging those failing, it was uncovered, that uvicorn only listens on IPv4 connections vyos@vyos# netstat -tulnp | grep 8080 (Not all processes could be identified, non-owned process info will not be shown, you would have to be root to see it all.) tcp 0 0 127.0.0.1:8080 0.0.0.0:* LISTEN - As the CLI already has an option to move the API communication from an IP to a UNIX domain socket, the best idea is to make this the default way of communication, as we never directly talk to the API server but rather use the NGINX reverse proxy. 2023-08-02T09:12:23+00:00 Viacheslav Hletenko v.gletenko@vyos.io 2023-08-02T09:12:23+00:00 urn:sha1:d1923b7b58795f0d9635ae0e8df110f591881bdf The script's name is always provided as the first argument sys.argv[0] Expected length for argv is 2 (script itself + config file) Change: 'if (len(argv) < 1)' to 'if len(argv) < 2' 2022-10-21T13:46:25+00:00 John Estabrook jestabro@vyos.io 2022-10-21T13:41:26+00:00 urn:sha1:89fbe73b9fb9ad178a2a35bdf9c7c477dc72f054 2021-07-22T14:55:10+00:00 sarthurdev 965089+sarthurdev@users.noreply.github.com 2021-07-22T10:08:19+00:00 urn:sha1:1870a3db38e6469d9216343a4dc180d859651d84