summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2021-04-12bgp: T3328: route-map to zebra/kernel can not be removedChristian Poessinger
Removing the Zebra/Linux Kernel route-map added by "set protocols bgp route-map" was not removed once applied. This was because the removal must happen within the zebra daemon and not bgpd.
2021-04-11bgp: T3344: handle FRR vrf daemon configuration more elegantChristian Poessinger
2021-04-11smoketest: temporary disable test for 802.1ad interface ip address assignemntChristian Poessinger
For an unknown reason this regularely fails on the QEMU builds, thus the test for reading back IP addresses is temporary disabled. There is no big deal here, as this uses the same methods on 802.1q and here it works and is verified.
2021-04-10bgp: T3460: add verify() steps for local-as overrideChristian Poessinger
It is only possible to set one local-as override per BGP neighbor/peer-group. In addition to this, the override AS number is not allowed to be the same as the one from the global BGP process. If this would still be the case frr-reload would error out: > frr-reload output: 184 % Cannot have local-as same as BGP AS number
2021-04-10smoketest: configs: add bgp l3vpn evpn PE configurationChristian Poessinger
2021-04-10smoketest: configs: rename BGP related test configsChristian Poessinger
2021-04-09bgp: evpn: T1513: add support for ipv4/ipv6 prefix routes advertisementsChristian Poessinger
set vrf name red protocols bgp address-family l2vpn-evpn advertise ipv4 unicast
2021-04-09op-mode: bgp: add common commands to top level "show bgp" commandChristian Poessinger
2021-04-09op-mode: bgp: support VRF related "show bgp vrf" commandsChristian Poessinger
cpo@PE1:~$ show bgp vrf all Instance default: No BGP prefixes displayed, 0 exist Instance red: BGP table version is 1, local router ID is 10.2.1.1, vrf id 11 Default local pref 100, local AS 100 Status codes: s suppressed, d damped, h history, * valid, > best, = multipath, i internal, r RIB-failure, S Stale, R Removed Nexthop codes: @NNN nexthop's vrf id, < announce-nh-self Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *> 10.2.1.0/24 0.0.0.0 0 32768 ? Displayed 1 routes and 1 total paths Instance blue: BGP table version is 1, local router ID is 10.1.1.1, vrf id 10 Default local pref 100, local AS 100 Status codes: s suppressed, d damped, h history, * valid, > best, = multipath, i internal, r RIB-failure, S Stale, R Removed Nexthop codes: @NNN nexthop's vrf id, < announce-nh-self Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *> 10.1.1.0/24 0.0.0.0 0 32768 ? Displayed 1 routes and 1 total paths
2021-04-09op-mode: bgp: move common includes to include/bgp directoryChristian Poessinger
This change makes it easier to group all BGP related operational level command building blocks in one place.
2021-04-09op-mode: bgp: fix indention of common includeChristian Poessinger
2021-04-09bgp: T1711: remove extra script completion helper on peer-groupsChristian Poessinger
After commit 73557d68 ("bgp: T1711: remove ASN tagNode and move to 'local-as'") when the BGP tag node was removed there is no need anymore for a script based completion helper, we can rather rely on the build in "path" variant.
2021-04-09Merge pull request #791 from jack9603301/T3435Christian Poessinger
nat: op-mode: T3435: Filter extra rules that should not be processed
2021-04-09tunnel: T3030: re-enable erspan version 2 supportChristian Poessinger
This was not possible due to a regression in iproute2 where the erspan_dir key did not have a value. See [1] for more information. [1]: https://lore.kernel.org/netdev/3ac544c09842410fb863b332917a03ad@poessinger.com/
2021-04-09smoketest: bgp: enable peer-group ttl-security tests as this is now implementedChristian Poessinger
2021-04-09bgp: T3463: Jinja2 template re-ordering fir ebgp-requires-policyChristian Poessinger
This is a fix for commit 6f6f45c5 ("bgp: T3463: change no-ipv4-unicast order when applying configuration") as this changed the handling of the "else" path, which lead to failing smoketests as the "no bgp ebgp-requires-policy" option was no longer set.
2021-04-09Merge pull request #800 from c-po/ospf-support-hyphenChristian Poessinger
protocols: fix "bad" design and non working route-maps containing hyphens
2021-04-08bgp: T3463: change no-ipv4-unicast order when applying configurationChristian Poessinger
The "no bgp default ipv4-unicast" option must be applied to FRR before adding any neighbor to the system. If this is not the case, neighbors will start exchanging v4 routes over v6 peers.
2021-04-08bgp: T3464: use common helper functions to verify route-maps and prefix-listsChristian Poessinger
2021-04-08protocols: T3464: proper handling of routing policy configurationChristian Poessinger
The introduction of key_mangling=('-', '_') when working with get_config_dict() caused more harm then good. This commit extends common helpers and adds new helpers when verifying the existence of route-maps, access-lists or prefix-lists.
2021-04-08isis: T2271: zebra route-map can only be set for default VRFChristian Poessinger
2021-04-08ospf: T2271: zebra route-map can only be set for default VRFChristian Poessinger
2021-04-08bgp: T2271: zebra route-map can only be set for default VRFChristian Poessinger
2021-04-08xml: route-map: add missing constraintsChristian Poessinger
Port over the regex used in the old node.def code-base and make this limitation also live on the new CLI interface.
2021-04-08isis: T1316: re-use common route-map XML building blockChristian Poessinger
2021-04-08static: T3280: re-use common route-map XML building blockChristian Poessinger
2021-04-07vrf: T3344: re-add virtual network identifierChristian Poessinger
Commit 548d9057e3e (vrf: T3344: move dynamic routing protocols under "vrf name <name> protocols") temporary removed the possibility to specify the VNI for a given VRF to to changing of the CLI configuration nodes. As VNI is set inside zebra, we can re-use the now widely deployed frr python library to configure and change the configuration without any interference to other FRR daemons.
2021-04-05tunnel: T3030: move erspan type into regular tunnel interfaceChristian Poessinger
Instead of having a dedicated ERSPAN interface type, rather move the specifics into "interface tunnel". A migrator is not needed as there is yet no LTS release with this feature and this is considered experimental.
2021-04-05smoketest: config: tunnel-broker: adjust l2tpv3 local/remote addressesChristian Poessinger
For L2TPv3 to properly work there must be a routing entry present for the remote side of the tunnel, or use a directly connected subnet.
2021-04-05smoketest: l2tpv3: only remove modules if they are loadedChristian Poessinger
2021-04-05smoketest: config: evpn-leaf: set 1500 byte mtu on vxlan interfaceChristian Poessinger
RFC7348 recommends VXLAN tunnels preserve a 1500 byte MTU.
2021-04-05Merge pull request #799 from scj643/currentChristian Poessinger
interfaces: dhcp-client: T3454: add reject option
2021-04-05bgp: T3418: peer-group and remote-as must be present under interface nodeChristian Poessinger
When configuring a BGP neighbor via an interface, FRR requires that the peer-group and remote-as node from under the interface statement is used. This is now enforced by a verify() check.
2021-04-05vyos.template: T3418: add new is_interface helper functionChristian Poessinger
2021-04-05smoketest: config: bgp: remove graceful-restart option due to frr-reload bugChristian Poessinger
When loading a configuration for BGP that contains the graceful-restart options, the frr-reload script will not return 0, but the config is accepted. This is a false positive, and related to https://github.com/FRRouting/frr/issues/8403
2021-04-04smoketest: l2tpv3: unload kernel modules after testChristian Poessinger
2021-04-04bgp: T1711: fix completion helpers after as number cli changeChristian Poessinger
2021-04-04nat: op-mode: T3435: Improved validation logic for the output of operational ↵jack9603301
mode rules
2021-04-04nat: op-mode: T3435: Filter extra rules that should not be processedjack9603301
2021-04-04T3457: output the "monitor log" command in a colorful wayChristian Poessinger
Add a new CLI command "monitor log colored" to run the log file monitoring through grc (https://github.com/garabik/grc).
2021-04-03Debian: T2108: add minisign dependencyChristian Poessinger
2021-04-02interfaces: dhcp-client: T3454: add reject optionCharles Surett
Sometimes a modem might give a local IP before it retrieves a WAN IP. This can be an issue with failover routes, since the default route will get overridden.
2021-04-02Merge pull request #798 from sever-sever/T3217Christian Poessinger
frr: T3217: Ability to save routing configs
2021-04-02frr: T3217: Abbility to save routing configssever-sever
2021-04-02T3165: prevent override of populated node.def file with empty contentChristian Poessinger
2021-04-02Makefile: fix logic to detect empty "node.def" filesChristian Poessinger
Commit 5b22ebae ("T3170: check if any generated node.def files are empty") added an initial test to find empty node.def files created by build-command-templates or build-command-op-templates. The problem was that GNU find always returns 0, thus the condition to bail out on error was always met. This has been corrected to return false on hits only.
2021-04-02Makefile: T1579: do not remove interfaces "node.def" file anymoreChristian Poessinger
... this has been migrated to vyos-1x.
2021-04-02Revert "static: route: arp: T3170: prevent empty node.def from beeing generated"Christian Poessinger
This reverts commit d8c27642a3753513ae1d3c433fa46858a5ee946c.
2021-04-02Merge pull request #672 from dmbaturin/check-for-empty-nodesChristian Poessinger
T3170: check if any generated node.def files are empty.
2021-04-01static: route: arp: T3170: prevent empty node.def from beeing generatedChristian Poessinger
Currently if there are XML nodes defined in multiple places it can and will happen that one overrides the other. In this case, the "protocols static arp" definition file overwrites the node.def file in the "protocols static" folder that had a priority - the priority is essential for l2tpv3 to work.