summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2021-03-29bgp: T1711: remove ASN tagNode and move to "local-as"Christian Poessinger
Every time when set configuration bgp, you need set AS number. There is very less benefit in this system so the AS number is moved from a tagNode level down to a leafNode with the name "local-as", same as on the neighbor or peer-group level. This changes the CLI configuration from: set protocols bgp 100 neighbor 10.10.1.2 remote-as 200 to set protocols bgp local-as 100 set protocols bgp neighbor 10.10.1.2 remote-as 200
2021-03-29isis: T3417: fix invalid call to exit() in migration scriptChristian Poessinger
2021-03-27vrf: vlan: T3438: do not automatically delete upper interfaceChristian Poessinger
Removing a VLAN (VIF) interface from the CLI always deleted all interfaces the kernel listed as "upper" in the /sys/class/net folder. This had the drawback that when deleting a VIF, also the VRF interface was simply deleted - killing all VRF related services.
2021-03-26Merge pull request #785 from jestabro/fastapi-jsonJohn Estabrook
http api: T3412: use FastAPI as web framework; support application/json
2021-03-26http api: T3412: use FastAPI as web framework; support application/jsonJohn Estabrook
Replace the Flask micro-framework with FastAPI, in order to support extensions to the API and OpenAPI 3.* generation. This change will remain backwards compatible with previous versions. Notably, the multipart forms version of requests remain supported; in addition application/json requests are now natively supported.
2021-03-26smoketest: ensure symlink exists /usr/sbin/ip -> /bin/ipChristian Poessinger
2021-03-26Merge pull request #790 from sever-sever/T3434Christian Poessinger
bgp: ospf: T3434: op-mode refactoring for support vrf
2021-03-26ospf: T3436: op-mode CLI refactoring for support vrfsever-sever
2021-03-26bgp: T3434: op-mode CLI refactoring for support vrfsever-sever
2021-03-25configd: T3426: include bgp, isis, ospf and static protocols in processingJohn Estabrook
vyos-configd now supports calling a script with a passed argument; re-include the conf_mode scripts that were excluded in ba251b3f2c.
2021-03-25configd: T3426: add support for script arguments to vyos-configdJohn Estabrook
2021-03-24smoketest: isis: drop trailing whitespace on "router isis" statementChristian Poessinger
After upgrading FRR to a newer revision in stable/7.5 branch we can drop the workaround where an additional whitespace was required after the "router isis FOOO " statement. Related to https://github.com/FRRouting/frr/pull/8306
2021-03-24Revert "isis: T3417: add workaround for FRR issue"Christian Poessinger
This reverts commit d89455ee7f5dc21d00bbeddd57eaee2e32f45f99.
2021-03-24Merge pull request #784 from sever-sever/T3217Christian Poessinger
routing: T3217: Save configs of daemon per commit
2021-03-24ddclient: T3422: Allow zone property with cloudflare protocolJustin
Allows Dynamic DNS services with custom names to use the zone field if the protocol is set to cloudflare (cherry picked from commit 5ab6c20f8acd4dda1870b9a71fe73129d2f78b24)
2021-03-23configd: T3426: correct pass_through function for scripts with argsJohn Estabrook
2021-03-23configd: T3426: check script name against include_set, not exclude_setJohn Estabrook
If the script name is mangled, for any reason (e.g. missing support for script arguments) checking against the exclude_set will yield a false positive; check against the include_set, even if this is a longer search.
2021-03-23routing: T3217: Save configs of daemon per commitsever-sever
2021-03-23vyos.configd: T3423: exclude bgp, isis, ospf and static protocols from ↵Christian Poessinger
processing vyos-configd does yet not support calling a script with a passed argument, thus we will exclude the routing protocols during this time from the vyos-configd processing.
2021-03-23vyos.util: dict_search() should not throw exception when inputs are NoneChristian Poessinger
2021-03-23vrf: T31: bump priority to 299 - still before any interface or serviceChristian Poessinger
2021-03-22Merge pull request #781 from erkin/currentChristian Poessinger
util: T3419: Handle IP addresses with netmasks and subnet prefixes in strip-private
2021-03-22configd: T3302: check vyos-config-status to determine if in boot sessionJohn Estabrook
2021-03-22Merge pull request #780 from jestabro/configqueryJohn Estabrook
configquery: T3402: add library for querying config values from op mode
2021-03-22util: T3419: Handle IP addresses with netmasks and subnet prefixes in ↵erkin
strip-private
2021-03-21configquery: T3402: add library for querying config values from op modeJohn Estabrook
A small library that allows querying existence or value(s) of config settings from op mode, and execution of arbitrary op mode commands.
2021-03-21Merge pull request #779 from c-po/isis-vrfChristian Poessinger
ISIS: add VRF support
2021-03-21op-mode: add "show zebra" commands to query RIB informationsChristian Poessinger
2021-03-21Merge pull request #778 from sever-sever/T3403Christian Poessinger
op-mode: T3403: Fix show pppoe sessions interupt
2021-03-21isis: T3417: drop artificial "domain" node identifying the IS-IS process nameChristian Poessinger
As we and FRR do not support multiple FRR process instances, there is no need to make this configurable for a user. We rather rely on a solid default "VyOS".
2021-03-21isis: T3417: ad per vrf op-mode commandsChristian Poessinger
2021-03-21isis: T3417: last byte of IS-IS network entity title must always be 0Christian Poessinger
2021-03-21isis: T3417: add workaround for FRR issueChristian Poessinger
We need to adjust the regex pattern for the default VRF as a trailing whitespace is required due to an FRR issue: https://github.com/FRRouting/frr/issues/8300
2021-03-21isis: T3417: verify route-map used in redistribute existsChristian Poessinger
2021-03-21isis: T3417: cleanup verify()Christian Poessinger
2021-03-21validate: T3418: interface-name should also allow all local present interfacesChristian Poessinger
The regex only validated interfaces according to the VyOS naming scheme, but third party interfacs that are legit (e.g. exists within the kernel) failed to validate. The validator now also supports any kind of local interfaces attached to the OS kernel.
2021-03-21ospf: vrf: T2271: ease FRR interaction for config reloadChristian Poessinger
Instead of multiple if/else paths, use a common vrf string variable which is either populated or not. In addtion when interfaces are configured for a given VRF, harden the regex for config reload.
2021-03-21isis: T3417: add VRF supportChristian Poessinger
VRF support can be tested using: set vrf name red table 1000 set vrf name red protocols isis domain FOOO set vrf name red protocols isis net 49.0001.1921.6800.1002.00 set vrf name red protocols isis interface eth1
2021-03-21smoketest: add initial IS-IS testcaseChristian Poessinger
2021-03-21isis: T3417: move from cli tagNode to nodeChristian Poessinger
As there can only be one running IS-IS process (FRR limitation) there is no need in having a tagNode here. This adds artifical restrictions/limitations when moving on to support VRFs for IS-IS protocol.
2021-03-21smoketest: config: add IS-IS example configurationChristian Poessinger
2021-03-21vrf: ospf: T2271: comment cleanupChristian Poessinger
2021-03-21policy: xml: T2425: add missing priority tagsChristian Poessinger
2021-03-21xml: isis: ospf: re-arrange include blocksChristian Poessinger
2021-03-21ntp: T3416: fix op-mode commands when running inside VRFChristian Poessinger
When NTP is executed inside a VRF context, we also must execute the op-mode commands inside the given VRF. This is a workaround until the op-mode programming library from T3402 is available.
2021-03-20op-mode: T3403: Fix show pppoe sessions interuptsever-sever
2021-03-20smoketest: config: evpn: move NTP into MGMT vrfChristian Poessinger
Within this example a MGMT VRF is used to administer the system, thus also move the NTP portion into that VRF.
2021-03-19bridge: T3415: add port isolation / private-vlan optionChristian Poessinger
Private VLAN, also known as port isolation, is a technique in computer networking where a VLAN contains switch ports that are restricted such that they can only communicate with a given "uplink". The restricted ports are called "private ports". Each private VLAN typically contains many private ports, and a single uplink. The uplink will typically be a port (or link aggregation group) connected to a router, firewall, server, provider network, or similar central resource. Q: https://en.wikipedia.org/wiki/Private_VLAN
2021-03-19isis: T2495: add missing priority nodeChristian Poessinger
2021-03-19ripng: T3281: add missing priority nodeChristian Poessinger