summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2021-01-23nptv6: T2518: outbound_interface cannot be any, inbound_interface can be anyjack9603301
2021-01-23nptv6: T2518: DNPT does not need NDP agentjack9603301
2021-01-23nptv6: T2518: Support many to many DNPT(DNAT66)jack9603301
2021-01-23nptv6: T2518: Improved template generationjack9603301
2021-01-23nptv6: T2518: Initial support for nat66 (NPT)jack9603301
2021-01-23bgp: T2174: proper use ipv4net/ipv6net value helpersChristian Poessinger
2021-01-23isis: T2495: proper use ipv4net/ipv6net value helpersChristian Poessinger
2021-01-23xml: use "macaddr" key over individual "h:h:h:h:h:h" notationChristian Poessinger
2021-01-23smoketest: configs: fix ospf-configChristian Poessinger
Commit 4ed4d822cf ("ospf: T3236: provide full protocol support in XML and Python") added the arbitrary config to load from one of my lab VMs, but in order to properly run through the CI a serial port is required to not fail the expected outputs gathered via check-qemu-install.
2021-01-23console-server: T2490: dropbear can restart as long as necessaryChristian Poessinger
Lift the default daemon startup rate-limit when launching the dropbear service used by SSH connections to the console port.
2021-01-23smoketest: config: dmz-guest... remove config upload via commit-archiveChristian Poessinger
This will take forever as the TFTP target server can't be reached as there is none.
2021-01-23Merge pull request #694 from c-po/t3236-ospfDaniil Baturin
T3236: Rewrite of OSPF in XML and Python notation
2021-01-23ospf: T3236: provide full protocol support in XML and PythonChristian Poessinger
This commit provides the implementation of the OSPF CLI with a Jinja2 template that is loaded by FRR reload. It also contains some initial smoketests. There is yet no verify() implementation!
2021-01-22bgp: T1875: update CLI description under protocols and template indention levelChristian Poessinger
2021-01-22ospf: T3236: support processing by vyos-configdChristian Poessinger
2021-01-22ospf: T3236: add default valuesChristian Poessinger
2021-01-22frr: T2826: add additional debug output when loading new configChristian Poessinger
2021-01-22bgp: T1875: support processing by vyos-configdChristian Poessinger
2021-01-21xml: T3239: override default mtu values and remove workaroundsJohn Estabrook
2021-01-21bgp: T1875: validate() that peer-group specified via listen range existsChristian Poessinger
2021-01-21Merge pull request #690 from Cheeze-It/currentChristian Poessinger
bgp: T1875: Adding BGP listen range FRR feature
2021-01-21Merge pull request #691 from sever-sever/T3236Christian Poessinger
ospf: T3236: Add XML for new format ospf conf-mode
2021-01-21dhcp: T3237: add constraint to static-mapping mac-address nodeChristian Poessinger
The format of the CLI specified MAC address was not validated as only addresses with a colon as seperator are supported. Constraint has been added.
2021-01-21Merge pull request #692 from jestabro/override-defaultJohn Estabrook
XML: T2910: add support for override of tag 'defaultValue' values
2021-01-21xml: T2910: add override script to MakefileJohn Estabrook
2021-01-21xml: T2910: add script to support override of defaultValue elementsJohn Estabrook
2021-01-21ospf: T3236: Add XML for new format ospf conf-modesever-sever
2021-01-20bgp: T1875: Adding BGP listen range FRR featureCheeze_It
In this commit we are adding the FRR BGP listen range feature. Specifically it is useful for being able to specify a range in which BGP peers can connect to the local router.
2021-01-20udev: import rule file from vyatta-cfg-systemChristian Poessinger
2021-01-20sysctl: as send_redirects is enabled for all interfaces, also add defaultChristian Poessinger
2021-01-20Debian: add openvpn user via postinstallChristian Poessinger
Migrated from vyatta-cfg-system.
2021-01-20Debian: add radius_user and radius_priv_user via postinstallChristian Poessinger
2021-01-20ospf: add skeleton for new XML/Python based implementationChristian Poessinger
2021-01-20tunnel: T3173: bugfix nopmtu raw keyChristian Poessinger
The raw key was not copied into the class member variable. Also added a smoketest to ensure the configured parameters are always set.
2021-01-19nat: T2947: add many-many translationChristian Poessinger
Support a 1:1 or 1:n prefix translation. The following configuration will NAT source addresses from the 10.2.0.0/16 range to an address from 192.0.2.0/29. For this feature to work a Linux Kernel 5.8 or higher is required! vyos@vyos# show nat source { rule 100 { outbound-interface eth1 source { address 10.2.0.0/16 } translation { address 192.0.2.0/29 } } } This results in the nftables configuration: chain POSTROUTING { type nat hook postrouting priority srcnat; policy accept; oifname "eth1" counter packets 0 bytes 0 snat ip prefix to ip saddr map { 10.2.0.0/16 : 192.0.2.0/29 } comment "SRC-NAT-100" }
2021-01-18bgp: T2174: fix validator for neighbor interface configChristian Poessinger
2021-01-18options: T3231: bugfix ctrl-alt-delete option was not workingChristian Poessinger
Bug introduced in commit 193323ba5d (system: T3078: rename "system options" -> "system option") as the new key used in the dict was not migrated.
2021-01-18options: T1919: beautify with open() for reboot on panicChristian Poessinger
2021-01-18bgp: T2174: use better variable names when creating peersChristian Poessinger
2021-01-18ssh: T3212: remove RestartPreventExitStatus from systemd unitChristian Poessinger
When configuring SSH to only run inside a given VRF the system can not start SSHd on bootup as the Kernel will report EPERM (Operation not permitted) when loading the VRF BPF program. This returns the exit code 255 which is marked in the systemd unit file to stop restarting the service forever. Removing this limitation will restart the SSHd on startup and it will live inside the VRF till the end of days.
2021-01-18bgp: T2174: print debug output before passing config down to FRRChristian Poessinger
2021-01-17bgp: T2174: add debug optionChristian Poessinger
2021-01-17smoketest: configs: add complex home router configChristian Poessinger
2021-01-17openvpn: T2994: proper cleanup all files on interface deletionChristian Poessinger
2021-01-17openvpn: T2381: bugfix rendering multiple openvpn-options from CLIChristian Poessinger
The CLI statement "set interfaces openvpn vtun10 openvpn-option '--tun-mtu 1500 --fragment 1300 --mssfix'" will render in vtun10.conf to: --tun-mtu 1500 --fragment 1300 --mssfix On startup OpenVPN complains about: openvpn-vtun10: Options error: Unrecognized option or missing or extra parameter(s) in vtun10.conf:76: tun-mtu (2.4.7) The options must be split on -- to a new configuration line.
2021-01-17smoketest: configs: add very basic bgp rpki configChristian Poessinger
2021-01-17sysctl: T671: import VyOS specific settings from vyatta-cfg-systemChristian Poessinger
2021-01-17ssh: T671: generate rsa, dsa and ed25519 keys on demandChristian Poessinger
2021-01-17Merge pull request #689 from jack9603301/currentChristian Poessinger
smoketest: bridge: T3226: Remove redundant code
2021-01-17smoketest: bridge: T3226: Remove redundant codejack9603301
In 558e1ca9, we found that the interface created by a test case was not cleaned up completely, which led to the destruction of smoke test. But in fact, the test case function retained an invalid deletion configuration code. We added a repair patch and forgot to delete the invalid code. Now we delete it
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-22 23:17:41 +0000