diff options
| author | hagbard <vyosdev@derith.de> | 2019-07-25 09:48:08 -0700 |
|---|---|---|
| committer | hagbard <vyosdev@derith.de> | 2019-07-25 09:48:08 -0700 |
| commit | ab5ca2796c1aad0043cc0db80299e4e2d42c1b22 (patch) | |
| tree | bd0bcd4232e3099c38a142c0953f3c5a89b20d4d /src/op_mode/show_vpn_ra.py | |
| parent | 36f8a1e4e5966c43c5330ff223fa2ef07d346b6e (diff) | |
| download | vyos-1x-ab5ca2796c1aad0043cc0db80299e4e2d42c1b22.tar.gz vyos-1x-ab5ca2796c1aad0043cc0db80299e4e2d42c1b22.zip | |
[accel-l2tp] - T834: l2tp implementation
- node.def deletion for show remote-access
- IPSec interface checking for L2TP
- IPSec x509 for l2tp
- verification of outside-address to warning since it was optional in the previous config
Diffstat (limited to 'src/op_mode/show_vpn_ra.py')
| -rwxr-xr-x | src/op_mode/show_vpn_ra.py | 58 |
1 files changed, 58 insertions, 0 deletions
diff --git a/src/op_mode/show_vpn_ra.py b/src/op_mode/show_vpn_ra.py new file mode 100755 index 000000000..cf6119c2f --- /dev/null +++ b/src/op_mode/show_vpn_ra.py @@ -0,0 +1,58 @@ +#!/usr/bin/env python3 +# +# Copyright (C) 2019 VyOS maintainers and contributors +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 or later as +# published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see <http://www.gnu.org/licenses/>. + +import os +import sys +import re +import subprocess +# from subprocess import Popen, PIPE + +# chech connection to pptp and l2tp daemon +def get_sessions(): + absent_pptp = False + absent_l2tp = False + pptp_cmd = ["accel-cmd", "-p 2003", "show sessions"] + l2tp_cmd = ["accel-cmd", "-p 2004", "show sessions"] + err_pattern = "^Connection.+failed$" + # This value for chack only output header without sessions. + len_def_header = 170 + + # Check pptp + ret = subprocess.Popen(pptp_cmd, stdout=subprocess.PIPE, stderr=subprocess.STDOUT) + (output, err) = ret.communicate() + if not err and len(output.decode("utf-8")) > len_def_header and not re.search(err_pattern, output.decode("utf-8")): + print(output.decode("utf-8")) + else: + absent_pptp = True + + # Check l2tp + ret = subprocess.Popen(l2tp_cmd, stdout=subprocess.PIPE, stderr=subprocess.STDOUT) + (output, err) = ret.communicate() + if not err and len(output.decode("utf-8")) > len_def_header and not re.search(err_pattern, output.decode("utf-8")): + print(output.decode("utf-8")) + else: + absent_l2tp = True + + if absent_l2tp and absent_pptp: + print("No active remote access VPN sessions") + + +def main(): + get_sessions() + + +if __name__ == '__main__': + main() |