Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-10-21 | use vyos read_file and write_file functions | Kim Hagen | |
2021-10-10 | do not use Path | Kim Hagen | |
2021-10-10 | update writer to nicer read write | Kim Hagen | |
2021-10-07 | add openvpn-otp dependency | Kim Hagen | |
2021-10-07 | Merge branch 'current' into 2fa | Kim | |
2021-10-07 | openvpn: T3642: Fix password_protected check | Nicolas Riebesel | |
2021-10-07 | openvpn: T3805: fix bool logic in verify_pki() for client mode | Christian Poessinger | |
Add support for OpenVPN client mode with only the CA certificate of the server installed. | |||
2021-10-07 | openvpn: T3805: drop privileges using systemd - required for rtnetlink | Christian Poessinger | |
2021-10-07 | openvpn: T3805: use vyos.util.makedir() to create system directories | Christian Poessinger | |
2021-10-07 | openvpn: T3805: use vyos.util.write_file() to store certificates | Christian Poessinger | |
2021-10-07 | pull request fixes | Kim Hagen | |
2021-10-05 | op-mode: T3889: do not display redundant hostname when reading logs | Christian Poessinger | |
(cherry picked from commit 30cf3bc79e2253a004fcbbf76c9f99c52e7bc216) | |||
2021-10-05 | smoketest: bgp: T3741: bugfix invalid IP address (missing prefix size) | Christian Poessinger | |
2021-10-05 | Merge pull request #1020 from RyVolodya/T3881 | Daniil Baturin | |
container: T3881: Change description for container option "restart" | |||
2021-10-05 | container: T3881: Fix description for container | Volodymyr | |
2021-10-04 | bgp: T3741: "parameter default no-ipv4-unicast" is now a default option | Christian Poessinger | |
2021-10-04 | op-mode: dhcpv(v6): T3890: retrieve both server and client logfiles | Christian Poessinger | |
* rename: "show log dhcp" will become "show log dhcp server" * add: "show log dhcp client" to display logs from ALL DHCP client processes * add: "show log dhcp client interface <name>" to display logs from individual DHCP client processes * add: "show log dhcpv6 server" to display infos about running DHCPv6 server * add: "show log dhcpv6 client" to display logs from ALL DHCPv6 client processes * add: "show log dhcpv6 client interface <name>" to display logs from individual DHCPv6 client processes (cherry picked from commit ffd73958e42c20f69ded64393491966e0c9230c6) | |||
2021-10-04 | op-mode: T3889: migrate to journalctl when reading daemon logs | Christian Poessinger | |
(cherry picked from commit 3b2523b816556aa911459097c2476a2da4542151) | |||
2021-10-04 | T3889: Revert "dhcpv6-pd: T421: disable wide dhcpv6 client debug messages" | Christian Poessinger | |
This reverts commit 6b48900358ce9b01eaa78e3a086e95a26064f0df. | |||
2021-10-02 | vyos.ifconfig: T3883: bugfix VRF deletion | Christian Poessinger | |
We can not pass None as VRF name, this raises an exception. OSError: [Errno 255] failed to run command: ip link set dev eth2 master None (cherry picked from commit e687502b1cf4a3e15c562a3662afcbe0776b1fe7) | |||
2021-10-02 | dns: forwarding: T3882: remove deprecated code to work with PowerDNS 4.5 | Christian Poessinger | |
(cherry picked from commit 8e6c48563d1612916bd7fcc665d70bfa77ec5667) | |||
2021-10-01 | smoketest: vrrp: validate rfc3768-compatibility is not set | Christian Poessinger | |
(cherry picked from commit eab6e6830a566af647d7e1b24197bf945788c3d0) | |||
2021-09-30 | dhcp-server: T2230: add subnet description into rendered config | Christian Poessinger | |
2021-09-30 | vyos.ethtool: T3874: do not throw exception if adapter has issues with autoneg | Christian Poessinger | |
Instead of throwing an exception when an adapters autoneg capabilities can not be detected, just pretend it does not support autoneg. | |||
2021-09-30 | Merge pull request #1019 from jestabro/interface-names | John Estabrook | |
T3869: Rewrite vyatta_net_name/vyatta_interface_rescan in Python | |||
2021-09-30 | interface-names: T3869: update udev rules | John Estabrook | |
2021-09-27 | interface-names: T3869: install vyos_net_name to udev directory | John Estabrook | |
2021-09-27 | interface-names: T3869: add vyos_net_name | John Estabrook | |
2021-09-27 | interface-names: T3869: add vyos_interface_rescan | John Estabrook | |
2021-09-27 | interface-names: T3869: add /run/udev/vyos to defaults | John Estabrook | |
2021-09-27 | nat66: T3863: ndppd requires interfaces to be present | Christian Poessinger | |
2021-09-27 | igmp: T2230: fix Jinja2 and FRR indention | Christian Poessinger | |
2021-09-27 | frr: T2175: rename daemon Jinja2 templates to match (d)aemon suffix | Christian Poessinger | |
2021-09-27 | smoketest: interface test base class QoS cleanup | Christian Poessinger | |
There is no need to delete the old ingres-qos and egres-qos values as it's not a multi node and thus the values are simply overwritten. Also address validation is not required as it's done in a dedicates test. | |||
2021-09-27 | smoketest: interface test base class for 802.1q should not extend testing to QoS | Christian Poessinger | |
2021-09-27 | openvpn: T690: Fix template for gateway and metric | Viacheslav | |
Some OpenVPN clients doesnt support option gateway and metric. Set metric option only when 'metric' was added in config explicity. (cherry picked from commit 96681d8bf1ede069b573a4cbe3a2493c374d048e) | |||
2021-09-27 | Merge pull request #1016 from sever-sever/T3853 | Christian Poessinger | |
nat66: T3853: Change priority to 500 | |||
2021-09-27 | nat66: T3853: Change priority to 500 | Viacheslav | |
Service ndppd should start after tunnels. | |||
2021-09-26 | vxlan: T3867: add multicast validator for group address | Christian Poessinger | |
The group CLI node takes a multicast IPv4 or IPv6 address - this must be input validated to not case any OS exception cpo@LR1.wue3# show interfaces vxlan vxlan vxlan0 { + group 254.0.0.1 source-address 172.18.254.201 + source-interface dum0 vni 10 } Results in OSError beeing rasied with the following context: Error: argument "254.0.0.1" is wrong: invalid group address | |||
2021-09-26 | T3866: ignore interfaces without "address" in DNS forwarding migration | Daniil Baturin | |
2021-09-26 | op-mode: pki: T3826: perform input validation when listing certificates | Christian Poessinger | |
2021-09-26 | ospf: T3757: add completion help when refering to area ID | Christian Poessinger | |
This extends commit 6f87d8c910 ("ospf: T3757: support to configure area at an interface level") with a completion helper to show which Area ID is already in use when configuring the area for an interface. | |||
2021-09-26 | vyos.ifconfig: T3860: bugfix in get_mac_synthetic() | Christian Poessinger | |
Commit 081e23996f (vyos.ifconfig: get_mac_synthetic() must generate a stable "MAC") calculated a "stable" synthetic MAC address per the interface based on UUID and the interface name. The problem is that this calculation is too stable when run on multiple instances of VyOS on different hosts/hypervisors. Having R1 and R2 setup a connection both via "tun10" interface will become the same "synthetic" MAC address manifesting in the same link-local IPv6 address. This e.g. breaks OSPFv3 badly as both neighbors communicate using the same link-local address. As workaround one can: set interfaces tunnel tun1337 address 'fe80::1:1337/64' set interfaces tunnel tun1337 ipv6 address no-default-link-local This commit changes the way in how the synthetic MAC address is generated. It's based on the first 48 bits of a sha256 sum build from a CPU ID retrieved via DMI, the MAC address of eth0 and the interface name as used before. This should add enough entropy to get a stable pseudo MAC address. | |||
2021-09-26 | ospfv3: T3859: add "log-adjacency-changes" CLI command | Christian Poessinger | |
2021-09-26 | op-mode: reboot/poweroff: T3857: send wall message to all users | Christian Poessinger | |
2021-09-25 | bgp: T3657: add "neighbor fe80::202 interface source-interface 'eth1'" command | Christian Poessinger | |
2021-09-25 | bgp: xml: T2387: use "generic-description" building block over BGP specific one | Christian Poessinger | |
There is no benefit in the BGP specific definition of a "description" node. | |||
2021-09-25 | op-mode: bgp: "show bgp ipv4|ipv6" should display routing table | Christian Poessinger | |
The <command> node was missed out when adding the XML definitions. | |||
2021-09-25 | ipsec: T2816: ipsec-dhclient-hook should only run if swanctl.conf exists | Christian Poessinger | |
2021-09-25 | ipsec: T2816: ipsec-dhclient-hook should use exit(0) | Christian Poessinger | |