summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2021-01-20Debian: add openvpn user via postinstallChristian Poessinger
Migrated from vyatta-cfg-system.
2021-01-20Debian: add radius_user and radius_priv_user via postinstallChristian Poessinger
2021-01-20ospf: add skeleton for new XML/Python based implementationChristian Poessinger
2021-01-20tunnel: T3173: bugfix nopmtu raw keyChristian Poessinger
The raw key was not copied into the class member variable. Also added a smoketest to ensure the configured parameters are always set.
2021-01-19nat: T2947: add many-many translationChristian Poessinger
Support a 1:1 or 1:n prefix translation. The following configuration will NAT source addresses from the 10.2.0.0/16 range to an address from 192.0.2.0/29. For this feature to work a Linux Kernel 5.8 or higher is required! vyos@vyos# show nat source { rule 100 { outbound-interface eth1 source { address 10.2.0.0/16 } translation { address 192.0.2.0/29 } } } This results in the nftables configuration: chain POSTROUTING { type nat hook postrouting priority srcnat; policy accept; oifname "eth1" counter packets 0 bytes 0 snat ip prefix to ip saddr map { 10.2.0.0/16 : 192.0.2.0/29 } comment "SRC-NAT-100" }
2021-01-18bgp: T2174: fix validator for neighbor interface configChristian Poessinger
2021-01-18options: T3231: bugfix ctrl-alt-delete option was not workingChristian Poessinger
Bug introduced in commit 193323ba5d (system: T3078: rename "system options" -> "system option") as the new key used in the dict was not migrated.
2021-01-18options: T1919: beautify with open() for reboot on panicChristian Poessinger
2021-01-18bgp: T2174: use better variable names when creating peersChristian Poessinger
2021-01-18ssh: T3212: remove RestartPreventExitStatus from systemd unitChristian Poessinger
When configuring SSH to only run inside a given VRF the system can not start SSHd on bootup as the Kernel will report EPERM (Operation not permitted) when loading the VRF BPF program. This returns the exit code 255 which is marked in the systemd unit file to stop restarting the service forever. Removing this limitation will restart the SSHd on startup and it will live inside the VRF till the end of days.
2021-01-18bgp: T2174: print debug output before passing config down to FRRChristian Poessinger
2021-01-17bgp: T2174: add debug optionChristian Poessinger
2021-01-17smoketest: configs: add complex home router configChristian Poessinger
2021-01-17openvpn: T2994: proper cleanup all files on interface deletionChristian Poessinger
2021-01-17openvpn: T2381: bugfix rendering multiple openvpn-options from CLIChristian Poessinger
The CLI statement "set interfaces openvpn vtun10 openvpn-option '--tun-mtu 1500 --fragment 1300 --mssfix'" will render in vtun10.conf to: --tun-mtu 1500 --fragment 1300 --mssfix On startup OpenVPN complains about: openvpn-vtun10: Options error: Unrecognized option or missing or extra parameter(s) in vtun10.conf:76: tun-mtu (2.4.7) The options must be split on -- to a new configuration line.
2021-01-17smoketest: configs: add very basic bgp rpki configChristian Poessinger
2021-01-17sysctl: T671: import VyOS specific settings from vyatta-cfg-systemChristian Poessinger
2021-01-17ssh: T671: generate rsa, dsa and ed25519 keys on demandChristian Poessinger
2021-01-17Merge pull request #689 from jack9603301/currentChristian Poessinger
smoketest: bridge: T3226: Remove redundant code
2021-01-17smoketest: bridge: T3226: Remove redundant codejack9603301
In 558e1ca9, we found that the interface created by a test case was not cleaned up completely, which led to the destruction of smoke test. But in fact, the test case function retained an invalid deletion configuration code. We added a repair patch and forgot to delete the invalid code. Now we delete it
2021-01-17smoketest: add testcases for "system ipv6"Christian Poessinger
2021-01-17ntp: T2185: store configuration in volatile /run areaChristian Poessinger
2021-01-17Merge pull request #688 from jack9603301/currentChristian Poessinger
smoketest: bridge: T3226: Repair bridge smoke test damage
2021-01-17smoketest: bridge: T3226: Repair bridge smoke test damagejack9603301
2021-01-16smoketest: interfaces: use provided unittest framework assert methodsChristian Poessinger
2021-01-16smoketest: loopback: interface can not be deleted, it must always existChristian Poessinger
Commit 35b049aa ("smoketest: interfaces: verify deletion of interfaces") validated that when the test completed (tearDown()) there must be no interfaces left registered for the tests. This is invalid for the loopback interface as it can not be deleted from the system.
2021-01-16Merge pull request #687 from jack9603301/T3137Christian Poessinger
bridge: T3137: Fix variable errors in VLAN sensor bridge configuration program
2021-01-17bridge: T3137: Fix variable errors in VLAN sensor bridge configuration programjack9603301
2021-01-16smoketest: interfaces: verify deletion of interfacesChristian Poessinger
When deleting the test interfaces, ensure after each run that there are no leftovers from a previous run, indicating that there was a problem while removing the interfaces.
2021-01-16vrf: T31: add support for - and _ in VRF namesChristian Poessinger
2021-01-16vyos.configdict: node_changed() now accepts key mangling parameterChristian Poessinger
2021-01-16Merge pull request #686 from jack9603301/T3137Christian Poessinger
bridge: T3137: Support disable native VLAN
2021-01-16bridge: T3137: Support disable native VLANjack9603301
2021-01-16Merge pull request #685 from sever-sever/T3222Christian Poessinger
bgp: T3222: Fix help descriptions for dampening
2021-01-16bgp: T3222: Fix help descriptions for dampeningsever-sever
2021-01-16smoketest: interface: test "disable" CLI optionChristian Poessinger
Verify interface is in admin down state afterwards.
2021-01-16vrf: T31: migrate to get_config_dict()Christian Poessinger
2021-01-16Merge pull request #677 from jack9603301/T3137Christian Poessinger
bridge: T3137: Let VLAN aware bridge approach the behavior of professional equipment
2021-01-16bridge: T3137: Improved verification logicjack9603301
2021-01-15op-mode: restart: cleanup help stringsChristian Poessinger
2021-01-15ssh: T631: add op-mode "restart ssh" commandChristian Poessinger
2021-01-15snmp: T652: enable interface_replace_old option and restart commandChristian Poessinger
- Remove all old ifTable entries with the same ifName as newly appeared interface (with different ifIndex) - this is the case on e.g. ppp interfaces - Add new op-mode command "restart snmp" to restart the daemon
2021-01-15tunnel: T3173: path MTU discovery option should be valuelessChristian Poessinger
2021-01-15Merge branch 'T3173' of https://github.com/sever-sever/vyos-1x into pmtuChristian Poessinger
* 'T3173' of https://github.com/sever-sever/vyos-1x: tunnel: T3173: Add nopmtudisc parameter for tunnels conf-mode
2021-01-15Merge pull request #681 from jjakob/T3219-openvpn-ipv6-irouteChristian Poessinger
openvpn: T3219: fix for server client subnet IPv6 iroute
2021-01-15Merge pull request #683 from sever-sever/T3157Christian Poessinger
salt: T3157: Fix location for log file
2021-01-15Merge pull request #684 from sever-sever/T3215Christian Poessinger
op-mode: T3215: Fix show ipv6 route overlaps in nodes
2021-01-15smoketest: T3003: remove unneeded empty fileJohn Estabrook
An empty file was accidentally included in the original commit, da8ad8f.
2021-01-15op-mode: T3215: Fix show ipv6 route overlaps in nodessever-sever
2021-01-15salt: T3157: Fix location for log filesever-sever