summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2024-05-21Merge pull request #3490 from sever-sever/T6366Christian Breunig
T6366: CGNAT add ability to get external and internal allocations
2024-05-21Merge pull request #3493 from l0crian1/T6375-fix-add-nat-loggingChristian Breunig
T6375: Fix/Update NAT logging
2024-05-21T6375: Fix/Update NAT loggingl0crian1
Fixed broken logging for "show log nat" Added the following commands: show log nat source show log nat source rule <ruleNum> show log nat destination nat show log nat destination nat rule <ruleNum> show log nat static show log nat static rule <ruleNum>
2024-05-21Merge pull request #3489 from c-po/commit-archiveDaniil Baturin
op-mode: T6367: fix "force commit-archive" TypeError
2024-05-21T6366: CGNAT add ability to get external and internal allocationsViacheslav Hletenko
Add the ability to show port allocation per external or internal address With huge entries, it is necessary to filter it by specific external/internal IP address
2024-05-20op-mode: T6367: fix "force commit-archive" TypeErrorChristian Breunig
/usr/bin/config-mgmt requires an argument OR to be symbolically linked to *commit-revision or *commit-archive, for which it interprets argv[0] through the useful trickery: https://github.com/vyos/vyos-1x/blob/current/python/vyos/config_mgmt.py#L693-L700 Traceback (most recent call last): File "/usr/bin/config-mgmt", line 33, in <module> sys.exit(load_entry_point('vyos==1.3.0', 'console_scripts', 'config-mgmt')()) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/lib/python3/dist-packages/vyos/config_mgmt.py", line 746, in run func = getattr(config_mgmt, args['subcommand']) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ TypeError: attribute name must be string, not 'NoneType'
2024-05-20Merge pull request #3488 from vyos/feature/T6372-add-codeownersChristian Breunig
T6372: added codeowners
2024-05-20T6372: added codeownerskumvijaya
2024-05-19Merge pull request #3483 from sever-sever/T6364Daniil Baturin
T6364: CGNAT drop hard limit that allows only one translation rule
2024-05-18T6349: updated pr-labels workflow permission (#3485)Vijayakumar A
2024-05-18T5169: Allow to set CGNAT multiple internal poolsViacheslav Hletenko
Allow to set multiple CGNAT internal pools ``` set nat cgnat pool internal int-01 range '100.64.0.0/28' set nat cgnat pool internal int-01 range '100.64.222.11-100.64.222.14' ```
2024-05-18T6364: CGNAT drop hard limit that allows only one translation ruleViacheslav Hletenko
As PoC for CGNAT had a hard limit of using only one translation rule for one internal pool. Drop this limit and extend the usage number of the rules. ``` set nat cgnat rule 100 source pool 'int-01' set nat cgnat rule 100 translation pool 'ext-01' set nat cgnat rule 120 source pool 'vyos-int-02' set nat cgnat rule 120 translation pool 'vyos-ext-02' ```
2024-05-18Merge pull request #3479 from sever-sever/T5169Daniil Baturin
T5169: Add smoketest for CGNAT
2024-05-18Merge pull request #3480 from jestabro/fix-circularDaniil Baturin
T6354: do an explicit read from version file to avoid circular reference
2024-05-18T6349: updated conflict check workflow (#3468)Vijayakumar A
* T6349: updated conflict workflow * T6349: updated conflict workflow * T6349: updated all workflows to use reusable workflows * T6349: updated all workflows to use reusable workflows
2024-05-17T6354: do an explicit read from version file to avoid circular referenceJohn Estabrook
2024-05-17T5169: Add smoketest for CGNATViacheslav Hletenko
2024-05-17Merge pull request #3471 from natali-rs1985/T6348-currentChristian Breunig
op mode: T6348: SNAT op-mode fails with flowtable offload entries
2024-05-17Merge pull request #3474 from HollyGurza/T6354Christian Breunig
T6354: Get rid of the custom boot type check in version.py
2024-05-17Merge pull request #3472 from nvollmar/T6358Christian Breunig
T6358: Container config option to enable host pid
2024-05-17T6354: Get rid of the custom boot type check in version.pykhramshinr
2024-05-17T6358: Add config option for host process namespaceNicolas Vollmar
2024-05-17T6358: Remove duplicate host name handlingNicolas Vollmar
2024-05-17Merge pull request #3466 from sever-sever/T6350Daniil Baturin
T6350: CGNAT add op-mode to show allocation
2024-05-17Merge pull request #3464 from sever-sever/T6351Daniil Baturin
T6351: CGNAT add verification if the pool exists
2024-05-17op mode: T6348: SNAT op-mode fails with flowtable offload entriesNataliia Solomko
2024-05-17Merge pull request #3463 from sever-sever/T6347Christian Breunig
T6347: CGNAT fix error if pool contain dashes in the name
2024-05-16T6350: CGNAT add op-mode to show allocationViacheslav Hletenko
Add op-mode command `show nat cgnat allocation` to get CGNAT allocations (internal address, external address, port-range)
2024-05-16Merge pull request #3458 from l0crian1/T6335-add-evpn-opChristian Breunig
T6335: Add/Update EVPN op commands
2024-05-16T6351: CGNAT add verification if the pool existsViacheslav Hletenko
Add verification if the external/internal pools are exists before we can use them in the source and translation rules
2024-05-16T6347: CGNAT fix error if pool contain dashes in the nameViacheslav Hletenko
2024-05-16T6335: Add/Update EVPN op commandsl0crian1
Converted completion helpers from python to bash for performance Previous commit: Added the following commands: show evpn show evpn es show evpn es <es-id> show evpn es detail show evpn es-evi show evpn es-evi detail show evpn es-evi vni <num> show evpn vni show evpn vni detail show evpn vni <num> Updated the following commands: show evpn access-vlan show evpn arp-cache show evpn mac show evpn next-hops show evpn rmac
2024-05-16Merge pull request #3457 from dmbaturin/T3355-legacy-installationsViacheslav Hletenko
op mode: T3355: remove the mention of legacy non-image installations
2024-05-16Merge pull request #3450 from HollyGurza/T5756Christian Breunig
T5756: L2TP RADIUS backup and weight settings
2024-05-16Merge pull request #3456 from dmbaturin/T6339-show-version-flavorChristian Breunig
op mode: T6339: display build flavor and comment in "show version"
2024-05-15T6335: Add/Update EVPN op commandsl0crian1
Added the following commands: show evpn show evpn es show evpn es <es-id> show evpn es detail show evpn es-evi show evpn es-evi detail show evpn es-evi vni <num> show evpn vni show evpn vni detail show evpn vni <num> Updated the following commands: show evpn access-vlan show evpn arp-cache show evpn mac show evpn next-hops show evpn rmac
2024-05-15op mode: T3355: remove the mention of legacy non-image installationsDaniil Baturin
They were never supported by VyOS, that was just for very old systens upgraded from Vyatta Core
2024-05-15op mode: T6339: display build flavor and comment in "show version"Daniil Baturin
2024-05-15T5756: L2TP RADIUS backup and weight settingskhramshinr
2024-05-14Merge pull request #3454 from c-po/ospfChristian Breunig
smoketest: ospf: T4739: add timeout in ldp test
2024-05-14smoketest: ospf: T4739: add timeout in ldp testChristian Breunig
2024-05-14Merge pull request #3452 from sever-sever/T3420Viacheslav Hletenko
T3420: Remove service upnp
2024-05-14T3420: Remove service upnpViacheslav Hletenko
Remove `service upnp` as it never worked as expected, nft rules do not integrated and custom patches do not seem like a suitable solution for now. Security: UPnP has been historically associated with security risks due to its automatic and potentially unauthenticated nature. UPnP devices might be vulnerable to unauthorized access or exploitation.
2024-05-13Merge pull request #3451 from HollyGurza/T6251Daniil Baturin
T6251: Extend table number limits for policy route-map set table
2024-05-13T6251: Extend table number limits for policy route-map set tablekhramshinr
2024-05-12Merge pull request #3447 from c-po/evpn-uplink-t6306Daniil Baturin
ethernet: T6306: add support for EVPN MH uplink/core tracking
2024-05-12Merge pull request #3442 from nicolas-fort/T6329Christian Breunig
T6329: firewall: add a patch for op-mode command <show firewall group>
2024-05-12T6329: firewall: use isinstance() in op-mode scriptChristian Breunig
2024-05-11ethernet: T6306: add support for EVPN MH uplink/core trackingChristian Breunig
When all the underlay links go down the PE no longer has access to the VxLAN +overlay. To prevent blackholing of traffic the server/ES links are protodowned on the PE. A link can be setup for uplink tracking via the following configuration: set interfaces ethernet eth0 evpn uplink
2024-05-11Merge pull request #3445 from jestabro/addendum-fix-boot-consoleChristian Breunig
image-tools: T6176: addendum to fixes for boot console