Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-01-23 | nptv6: T2518: Optimized implementation | jack9603301 | |
2021-01-23 | nptv6: T2518: Maintain the consistency of terms in the CLI configuration ↵ | jack9603301 | |
file, and use nat66 terms completely | |||
2021-01-23 | nptv6: T2518: outbound_interface cannot be any, inbound_interface can be any | jack9603301 | |
2021-01-23 | nptv6: T2518: DNPT does not need NDP agent | jack9603301 | |
2021-01-23 | nptv6: T2518: Support many to many DNPT(DNAT66) | jack9603301 | |
2021-01-23 | nptv6: T2518: Improved template generation | jack9603301 | |
2021-01-23 | nptv6: T2518: Initial support for nat66 (NPT) | jack9603301 | |
2021-01-23 | bgp: T2174: proper use ipv4net/ipv6net value helpers | Christian Poessinger | |
2021-01-23 | isis: T2495: proper use ipv4net/ipv6net value helpers | Christian Poessinger | |
2021-01-23 | xml: use "macaddr" key over individual "h:h:h:h:h:h" notation | Christian Poessinger | |
2021-01-23 | smoketest: configs: fix ospf-config | Christian Poessinger | |
Commit 4ed4d822cf ("ospf: T3236: provide full protocol support in XML and Python") added the arbitrary config to load from one of my lab VMs, but in order to properly run through the CI a serial port is required to not fail the expected outputs gathered via check-qemu-install. | |||
2021-01-23 | console-server: T2490: dropbear can restart as long as necessary | Christian Poessinger | |
Lift the default daemon startup rate-limit when launching the dropbear service used by SSH connections to the console port. | |||
2021-01-23 | smoketest: config: dmz-guest... remove config upload via commit-archive | Christian Poessinger | |
This will take forever as the TFTP target server can't be reached as there is none. | |||
2021-01-23 | Merge pull request #694 from c-po/t3236-ospf | Daniil Baturin | |
T3236: Rewrite of OSPF in XML and Python notation | |||
2021-01-23 | ospf: T3236: provide full protocol support in XML and Python | Christian Poessinger | |
This commit provides the implementation of the OSPF CLI with a Jinja2 template that is loaded by FRR reload. It also contains some initial smoketests. There is yet no verify() implementation! | |||
2021-01-22 | bgp: T1875: update CLI description under protocols and template indention level | Christian Poessinger | |
2021-01-22 | ospf: T3236: support processing by vyos-configd | Christian Poessinger | |
2021-01-22 | ospf: T3236: add default values | Christian Poessinger | |
2021-01-22 | frr: T2826: add additional debug output when loading new config | Christian Poessinger | |
2021-01-22 | bgp: T1875: support processing by vyos-configd | Christian Poessinger | |
2021-01-21 | xml: T3239: override default mtu values and remove workarounds | John Estabrook | |
2021-01-21 | bgp: T1875: validate() that peer-group specified via listen range exists | Christian Poessinger | |
2021-01-21 | Merge pull request #690 from Cheeze-It/current | Christian Poessinger | |
bgp: T1875: Adding BGP listen range FRR feature | |||
2021-01-21 | Merge pull request #691 from sever-sever/T3236 | Christian Poessinger | |
ospf: T3236: Add XML for new format ospf conf-mode | |||
2021-01-21 | dhcp: T3237: add constraint to static-mapping mac-address node | Christian Poessinger | |
The format of the CLI specified MAC address was not validated as only addresses with a colon as seperator are supported. Constraint has been added. | |||
2021-01-21 | Merge pull request #692 from jestabro/override-default | John Estabrook | |
XML: T2910: add support for override of tag 'defaultValue' values | |||
2021-01-21 | xml: T2910: add override script to Makefile | John Estabrook | |
2021-01-21 | xml: T2910: add script to support override of defaultValue elements | John Estabrook | |
2021-01-21 | ospf: T3236: Add XML for new format ospf conf-mode | sever-sever | |
2021-01-20 | bgp: T1875: Adding BGP listen range FRR feature | Cheeze_It | |
In this commit we are adding the FRR BGP listen range feature. Specifically it is useful for being able to specify a range in which BGP peers can connect to the local router. | |||
2021-01-20 | udev: import rule file from vyatta-cfg-system | Christian Poessinger | |
2021-01-20 | sysctl: as send_redirects is enabled for all interfaces, also add default | Christian Poessinger | |
2021-01-20 | Debian: add openvpn user via postinstall | Christian Poessinger | |
Migrated from vyatta-cfg-system. | |||
2021-01-20 | Debian: add radius_user and radius_priv_user via postinstall | Christian Poessinger | |
2021-01-20 | ospf: add skeleton for new XML/Python based implementation | Christian Poessinger | |
2021-01-20 | tunnel: T3173: bugfix nopmtu raw key | Christian Poessinger | |
The raw key was not copied into the class member variable. Also added a smoketest to ensure the configured parameters are always set. | |||
2021-01-19 | nat: T2947: add many-many translation | Christian Poessinger | |
Support a 1:1 or 1:n prefix translation. The following configuration will NAT source addresses from the 10.2.0.0/16 range to an address from 192.0.2.0/29. For this feature to work a Linux Kernel 5.8 or higher is required! vyos@vyos# show nat source { rule 100 { outbound-interface eth1 source { address 10.2.0.0/16 } translation { address 192.0.2.0/29 } } } This results in the nftables configuration: chain POSTROUTING { type nat hook postrouting priority srcnat; policy accept; oifname "eth1" counter packets 0 bytes 0 snat ip prefix to ip saddr map { 10.2.0.0/16 : 192.0.2.0/29 } comment "SRC-NAT-100" } | |||
2021-01-18 | bgp: T2174: fix validator for neighbor interface config | Christian Poessinger | |
2021-01-18 | options: T3231: bugfix ctrl-alt-delete option was not working | Christian Poessinger | |
Bug introduced in commit 193323ba5d (system: T3078: rename "system options" -> "system option") as the new key used in the dict was not migrated. | |||
2021-01-18 | options: T1919: beautify with open() for reboot on panic | Christian Poessinger | |
2021-01-18 | bgp: T2174: use better variable names when creating peers | Christian Poessinger | |
2021-01-18 | ssh: T3212: remove RestartPreventExitStatus from systemd unit | Christian Poessinger | |
When configuring SSH to only run inside a given VRF the system can not start SSHd on bootup as the Kernel will report EPERM (Operation not permitted) when loading the VRF BPF program. This returns the exit code 255 which is marked in the systemd unit file to stop restarting the service forever. Removing this limitation will restart the SSHd on startup and it will live inside the VRF till the end of days. | |||
2021-01-18 | bgp: T2174: print debug output before passing config down to FRR | Christian Poessinger | |
2021-01-17 | bgp: T2174: add debug option | Christian Poessinger | |
2021-01-17 | smoketest: configs: add complex home router config | Christian Poessinger | |
2021-01-17 | openvpn: T2994: proper cleanup all files on interface deletion | Christian Poessinger | |
2021-01-17 | openvpn: T2381: bugfix rendering multiple openvpn-options from CLI | Christian Poessinger | |
The CLI statement "set interfaces openvpn vtun10 openvpn-option '--tun-mtu 1500 --fragment 1300 --mssfix'" will render in vtun10.conf to: --tun-mtu 1500 --fragment 1300 --mssfix On startup OpenVPN complains about: openvpn-vtun10: Options error: Unrecognized option or missing or extra parameter(s) in vtun10.conf:76: tun-mtu (2.4.7) The options must be split on -- to a new configuration line. | |||
2021-01-17 | smoketest: configs: add very basic bgp rpki config | Christian Poessinger | |
2021-01-17 | sysctl: T671: import VyOS specific settings from vyatta-cfg-system | Christian Poessinger | |
2021-01-17 | ssh: T671: generate rsa, dsa and ed25519 keys on demand | Christian Poessinger | |