Age | Commit message (Collapse) | Author |
|
To have a consitent IPv4/IPv6 CLI a lot of BGP neighbor nodes have been
migrated. The IPv4 peer-group has been forgotten, leaving a non consistent CLI.
Previously:
-----------
neighbor 2001:DB8:FFFF::1 {
address-family {
ipv6-unicast {
peer-group iBGP
}
}
peer-group iBGP
}
Now:
----
neighbor 2001:DB8:FFFF::1 {
address-family {
ipv6-unicast {
peer-group iBGP
}
}
address-family {
ipv4-unicast {
peer-group iBGP
}
}
}
|
|
|
|
|
|
Accessing Kernel DMI data (under /sys/class/dmi) requires elevated permission
and thus retrieving a Board Serial/UUID was not possible.
version.py is now called via sudo to gether all facts.
|
|
|
|
... to have the same pattern as the DHCPDv6 lease file
|
|
A wrong lease file caused the show command to fail:
vyos@vyos:~$ show dhcpv6 server leases
Traceback (most recent call last):
File "/usr/libexec/vyos/op_mode/show_dhcpv6.py", line 81, in <module>
leases = get_leases(lease_file, state='active')
File "/usr/libexec/vyos/op_mode/show_dhcpv6.py", line 44, in get_leases
leases = IscDhcpLeases(lease_file).get()
File "/usr/lib/python3/dist-packages/isc_dhcp_leases/iscdhcpleases.py", line 110, in get
with open(self.filename) as lease_file:
FileNotFoundError: [Errno 2] No such file or directory: '/config/dhcpdv6.leases'
|
|
|
|
functions under it.
This is required for programs running outside a CLI session, like the future API daemon.
|
|
The merge config script restores the ability to restrict changes to a
specified path. In the initial implementation, the path was checked for
validity only with respect to the effective config; fix to allow valid
paths from merge config as well.
|
|
|
|
The ouput of config.show_config (cli-shell-api showConfig) does not
escape backslashes, whereas configtree expects escaped backslashes.
Values containing unescaped backslashes consequently lead to a parsing
error; cf. T1001.
|
|
|
|
API with.
|
|
|
|
[wireguard] T1428: correct handling of the fwmark option
|
|
T1334: Migration script runner rewrite
|
|
Python script and support code to replace the
vyatta_config_migrate.pl script.
|
|
|
|
|
|
In the recent rewrite of the config merge script, support for merging
remote config files checks and adds the host key in known_hosts;
however, this function fails if known_hosts is not present. Fix.
|
|
|
|
|
|
|
|
T1397: Rewrite the config merge script
|
|
Add the script vyos-merge-config.py to separate the merge function from
the config load script and remove dependency on XorpConfigParser.
|
|
Add vyos.config.show_config to show working configuration.
Add vyos.remote.get_config_remote() for obtaining remote config files.
|
|
|
|
|
|
|
|
|
|
The Git commit ID will be crucial for the future when the full VyOS
build can be reproduced by the one Git commit ID, thus start recording it in
the version file.
|
|
Rewrite vyatta-config-migrate/migrate/system/6-to-7 in the canonical
style and add to vyos-1x migration-scripts. This completes the
collection of scripts needed to drop compatability with Vyatta Core
older than 6.5.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- rsyslog appears now to be started via systemd automatically,
checking for the pid to avoid restart race condition between systemd
vyos conf script
|
|
|
|
radius-source-address was backported to vyOS 1.2.2 so also migrate this node.
|
|
* clamp MSS IPv4
set firewall options interface pppoe0 adjust-mss '1452'
* clamp MSS IPv6
set firewall options interface pppoe0 adjust-mss6 '1452'
* disable entire rule
set firewall options interface pppoe0 disable
Output
------
$ sudo iptables-save -t mangle
# Generated by iptables-save v1.4.21 on Sun Apr 21 12:56:25 2019
*mangle
:PREROUTING ACCEPT [1217:439885]
:INPUT ACCEPT [290:52459]
:FORWARD ACCEPT [920:375774]
:OUTPUT ACCEPT [301:100053]
:POSTROUTING ACCEPT [1221:475827]
:VYOS_FW_OPTIONS - [0:0]
-A FORWARD -j VYOS_FW_OPTIONS
-A VYOS_FW_OPTIONS -o pppoe0 -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --set-mss 1452
COMMIT
Completed on Sun Apr 21 12:56:25 2019
(cherry picked from commit 476aa4c3a561ea0ef0bf9b4c26ec8b78d18a5d02)
|
|
|
|
T786: Add tagNode value as a Env.variable passed into config script
|
|
|
|
Remove possible trialing (.) when invoking hostnamectl. A hostname with
a trailing (.) is not supported in hostnamectl.
|
|
This reverts commit 05c539ea5595790b297904569cbe13089ce79e18.
|
|
Debian/Systemd provides hostnamectl which disabllows setting a FQDN when
there is a trailing (.) in the provided hostname. Extend regex when setting
"system domain-name" that there can't be a trailing (.).
Provide migration script for current installations to remove the dot.
|
|
|