| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2022-01-10 | conntrack: T3579: dry-run newly generated config before install | Christian Poessinger | |
| Before installing a new conntrack policy into the OS Kernel, the new policy should be verified by nftables if it can be loaded at all or if it will fail to load. There is no need to load a "bad" configuration if we can pre-test it. | |||
| 2022-01-10 | conntrack: T3579: prepare for "conntrack timeout custom rule" CLI commands | Christian Poessinger | |
| 2022-01-10 | Merge pull request #1152 from sarthurdev/firewall_validators | Christian Poessinger | |
| firewall: validators: T4148: Improve validators and firewall validator usage | |||
| 2022-01-10 | conntrack: T3579: make the timeout tree re-usable as XML include | Christian Poessinger | |
| 2022-01-10 | conntrack: T3579: use "notrack" over "return" in nft statements | Christian Poessinger | |
| 2022-01-10 | conntrack: T3579: migrate "conntrack ignore" tree to vyos-1x and nftables | Christian Poessinger | |
| 2022-01-10 | validators: Stricter checking on port-range validator | sarthurdev | |
| 2022-01-10 | validators: T4148: Add text output when validators fail | sarthurdev | |
| 2022-01-10 | firewall: validators: T2199: Improve port validation | sarthurdev | |
| 2022-01-10 | Merge pull request #1151 from sarthurdev/firewall | Christian Poessinger | |
| firewall: policy: T4149: T4155: Fix incorrect table variable, fix handling of deleted base firewall node | |||
| 2022-01-10 | Merge pull request #1150 from nicolas-fort/T4161 | Christian Poessinger | |
| policy: T4161: Set correct description for local-preference | |||
| 2022-01-10 | firewall: 4149: Fix verify steps being bypassed when base node is removed | sarthurdev | |
| 2022-01-10 | policy: T4161: Set correct description for local-preference | Nicolas Fort | |
| 2022-01-10 | Merge pull request #1149 from tacerus/pip | Daniil Baturin | |
| T4157: Add `jinja2` to pip test requirements | |||
| 2022-01-09 | policy: T4155: Fix using incorrect table variable | sarthurdev | |
| 2022-01-09 | T4157: Add jinja2 to test-requirements.txt | Georg | |
| Signed-off-by: Georg <georg@lysergic.dev> | |||
| 2022-01-09 | Merge pull request #1143 from sever-sever/T1972 | Christian Poessinger | |
| vrrp: T1972: Ability to set IP address on not vrrp interface | |||
| 2022-01-09 | Merge pull request #1142 from sever-sever/T4150 | Christian Poessinger | |
| keepalived: T4150: Fix template option conntrack_sync_group | |||
| 2022-01-09 | Merge pull request #1145 from sever-sever/T4152 | Christian Poessinger | |
| nhrp: T4152: Fix template holding-time for nhrp | |||
| 2022-01-09 | nhrp: T4152: Fix template holding-time for nhrp | Viacheslav | |
| Add missed 'holding-time' option for shortcut-target address | |||
| 2022-01-09 | vrrp: T1972: Ability to set IP address on not vrrp interface | Viacheslav | |
| Ability to set virtual_address on not vrrp-listen interface Add ability don't track primary vrrp interface "exclude-vrrp-interface" Add ability to set tracking (state UP/Down) on desired interfaces For example eth0 is used for vrrp and we want to track another eth1 interface that not belong to any vrrp-group | |||
| 2022-01-08 | keepalived: T4150: Fix template option conntrack_sync_group | Viacheslav | |
| conntrack_sync_group option not under 'vrrp' section but part of high-avalability dictionary | |||
| 2022-01-07 | xml: nat: use generic bulding block for rule description | Christian Poessinger | |
| 2022-01-07 | xml: firewall: T4130: add protocol completion helper all and tcp_udp | Christian Poessinger | |
| 2022-01-07 | Debian: T4133: add required nfct package dependency | Christian Poessinger | |
| 2022-01-06 | https: T4146: do not listen on port 80 | John Estabrook | |
| 2022-01-06 | Merge pull request #1139 from sarthurdev/firewall | Christian Poessinger | |
| firewall: zone-policy: T4133: Prevent firewall from trying to clean-up zone-policy chains | |||
| 2022-01-06 | vrrp: T4141: bugfix missing {% if %} clause when adding sync-groups | Christian Poessinger | |
| 2022-01-05 | config: T3785: drop restriction to ascii in decode | John Estabrook | |
| Following the update to vyos1x-config, commit 64263617, UTF-8 characters are supported within the config file, hence in the output of showConfig. | |||
| 2022-01-05 | firewall: zone-policy: T4133: Prevent firewall from trying to clean-up ↵ | sarthurdev | |
| zone-policy chains * Prevent firewall names from using the reserved VZONE prefix | |||
| 2022-01-05 | Merge pull request #1138 from sever-sever/T4142 | John Estabrook | |
| op-mode: T4142: Fix for show input ifbX interfaces | |||
| 2022-01-05 | op-mode: T4142: Fix for show input ifbX interfaces | Viacheslav | |
| Ability to see interface type "input" ifbX from op-mode | |||
| 2022-01-05 | Merge pull request #1137 from sarthurdev/current | Christian Poessinger | |
| keepalived: T4109: Update configd-include.json to reflect filename change | |||
| 2022-01-05 | keepalived: T4109: Update configd-include.json to reflect filename change | sarthurdev | |
| 2022-01-05 | Merge pull request #1136 from sarthurdev/firewall | Christian Poessinger | |
| zone-policy: T4135: Raise error when using an invalid "from" zone. | |||
| 2022-01-05 | zone-policy: T4135: Raise error when using an invalid "from" zone. | sarthurdev | |
| 2022-01-05 | Merge pull request #1135 from sarthurdev/current | Christian Poessinger | |
| smoketest: shim: Optimise speed of `lsof` command | |||
| 2022-01-05 | Merge pull request #1134 from sarthurdev/firewall | Christian Poessinger | |
| firewall: zone-policy: T2199: T4130: Fixes for firewall, state-policy and zone-policy | |||
| 2022-01-05 | smoketest: shim: Optimise speed of `lsof` command | sarthurdev | |
| 2022-01-05 | firewall: zone-policy: T2199: T4130: Fixes for firewall, state-policy and ↵ | sarthurdev | |
| zone-policy | |||
| 2022-01-04 | Merge pull request #1131 from sever-sever/T4132 | Christian Poessinger | |
| firewall: T4132: Fix for op-mode show firewall group | |||
| 2022-01-04 | Merge pull request #1132 from sever-sever/T4134 | Christian Poessinger | |
| firewall: T4134: Fix completion help for protocols | |||
| 2022-01-04 | Merge pull request #1121 from sever-sever/T4109 | Christian Poessinger | |
| keepalived: T4109: Add high-availability virtual-server | |||
| 2022-01-04 | firewall: T4134: Fix completion help for protocols | Viacheslav | |
| 2022-01-04 | firewall: T4132: Fix for op-mode show firewall group | Viacheslav | |
| After firewall rewriting there is impossible to show a specific firewall group, this commit fixes it. Add tagNode and completion help for op-mode firewall group | |||
| 2022-01-04 | keepalived: T4109: Add high-availability virtual-server | Viacheslav | |
| Add new feature, high-availability virtual-server Change XML, python and templates Move vrrp to root node 'high-availability' as all logic are handler by root node 'high-availability' | |||
| 2022-01-04 | Merge pull request #1130 from sarthurdev/firewall | Christian Poessinger | |
| firewall: T4130: Fix firewall state-policy errors | |||
| 2022-01-04 | firewall: T4130: Add state-policy test to firewall smoketest | sarthurdev | |
| 2022-01-04 | firewall: T4130: Fix firewall state-policy errors | sarthurdev | |
| Also fixes: * Issue with multiple state-policy rules being created on firewall updates * Prevents interface rules being inserted before state-policy | |||
| 2022-01-03 | keepalived: T4128: add missing keepalived.service file | Christian Poessinger | |
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |