Age | Commit message (Collapse) | Author | |
---|---|---|---|
2024-03-07 | config: T4919: mount/unmount encrypted config on VyOS start/stop | sarthurdev | |
Re-implements https://github.com/vyos/vyatta-cfg/pull/54 | |||
2024-03-07 | config: T4919: Add support for encrypted config file with TPM | sarthurdev | |
2024-02-18 | Merge pull request #3030 from c-po/smoketest-t6043 | Christian Breunig | |
smoketest: T6043: proper cleanup after testcase | |||
2024-02-18 | smoketest: T6043: proper cleanup after testcase | Christian Breunig | |
This extends commit dbe8c613b ("bridge: T6043: do not call vxlan dependency if interface does not exist (yet)") with a proper cleanup of additional interfaces created during the testrun. | |||
2024-02-18 | Merge pull request #3026 from c-po/bridge-T6043 | Christian Breunig | |
bridge: T6043: do not call vxlan dependency if interface does not exist (yet) | |||
2024-02-17 | Merge pull request #3027 from c-po/nht-T5581 | Daniil Baturin | |
op-mode: T5581: add "show ipv6 nht" command | |||
2024-02-17 | op-mode: T5581: add "show ipv6 nht" command | Christian Breunig | |
This improves the implementation to support both IPv4 and IPv6 | |||
2024-02-17 | bridge: T6043: do not call vxlan dependency if interface does not exist (yet) | Christian Breunig | |
In order to keep the proper priority list during system startup and on initial setup/commit for this feature the dependent VXLAN code should not be called, if the interface in question does not exist (yet). | |||
2024-02-17 | Merge pull request #3024 from jestabro/pxe-boot | John Estabrook | |
image-tools: T6041: fix logic of is_live_boot to allow for PXE boot | |||
2024-02-17 | image-tools: T6041: fix logic of is_live_boot to allow for PXE boot | John Estabrook | |
2024-02-17 | Merge pull request #3019 from c-po/login-T5972 | Christian Breunig | |
login: T5972: add possibility to disable individual local user accounts | |||
2024-02-17 | Merge pull request #3021 from aapostoliuk/T3722-circinus | Christian Breunig | |
T3722: Fixed L-Time in 'show vpn ike sa' command | |||
2024-02-16 | T3722: Fixed L-Time in 'show vpn ike sa' command | aapostoliuk | |
Fixed L-Time in 'show vpn ike sa' command | |||
2024-02-16 | login: T5972: add possibility to disable individual local user accounts | Christian Breunig | |
* set system login user <name> disable | |||
2024-02-16 | Merge pull request #3016 from c-po/nht | Christian Breunig | |
T6001: add option to disable next-hop-tracking resolve-via-default | |||
2024-02-16 | T6001: add option to disable next-hop-tracking resolve-via-default in VRF ↵ | Christian Breunig | |
context * set vrf name <name> ip nht no-resolve-via-default * set vrf name <name> ipv6 nht no-resolve-via-default | |||
2024-02-16 | T6001: add option to disable next-hop-tracking resolve-via-default | Christian Breunig | |
* set system ip nht no-resolve-via-default * set system ipv6 nht no-resolve-via-default | |||
2024-02-16 | T5150: rename smoketest config egb-igp-route-maps -> egp-igp-route-maps | Christian Breunig | |
EDB should be EGP for exterior gateway protocol | |||
2024-02-15 | Merge pull request #3012 from sarthurdev/T5993 | Christian Breunig | |
dhcpv6-server: T5993: Extend interface migrator to check VLAN/QinQ | |||
2024-02-15 | Merge pull request #3011 from c-po/rpki-smoketests | Daniil Baturin | |
rpki: T6034: extend config migration testcase | |||
2024-02-15 | Merge pull request #3004 from aapostoliuk/T6029-circinus | Daniil Baturin | |
T6029: Rewritten Accel-PPP services to an identical feature set | |||
2024-02-15 | T6029: Rewritten Accel-PPP services to an identical feature set | aapostoliuk | |
Removed dhcp-interface option (l2tp) Added wins-server (sstp) Added description (ipoe, pppoe, sstp, pptp) Added exteded-script (l2tp, sstp, pptp) Added shaper (ipoe, pptp, sstp, l2tp) Added limits (ipoe, pptp, sstp, l2tp) Added snmp ( ipoe, pptp,sstp, l2tp) Refactoring and reformated code. | |||
2024-02-15 | eigrp: T2472: remove smoketest | Christian Breunig | |
Commit 0eb4168aa ("eigrp: T2472: improve code for later tests") added a basic smoketest for EIGRP, which is also run by the CI hence not having a +x bit at all. This just deletes the basic smoketest testing for ASN and EIGRP router-id. We can revert it once it's fixed in FRR upstream. https://github.com/FRRouting/frr/pull/14765 | |||
2024-02-14 | rpki: T6034: extend config migration testcase | Christian Breunig | |
2024-02-14 | eigrp: T2472: improve code for later tests | Christian Breunig | |
2024-02-14 | dhcpv6-server: T5993: Extend interface migrator to check VLAN/QinQ | sarthurdev | |
Updates smoketest config to test migrator change | |||
2024-02-13 | Merge pull request #3005 from sever-sever/T6019 | Christian Breunig | |
T6019: Fix smoketest test_system_conntrack custom timeout | |||
2024-02-13 | T6019: Fix smoketest test_system_conntrack custom timeout | Viacheslav Hletenko | |
After updateing netfilter in the commit https://github.com/vyos/vyos-build/commit/b31f5fe934bcb37534d49acdb5f7756bf05422e8 The nftables format for conntrack timeouts is different. Fix this. | |||
2024-02-13 | Merge pull request #2998 from sarthurdev/T5992 | Christian Breunig | |
dhcpv6-server: T5992: Fix op-mode DHCP lease output + updates | |||
2024-02-13 | Merge pull request #2999 from sever-sever/T5928 | Christian Breunig | |
T5928: Change firewall priority to 319 | |||
2024-02-13 | Merge pull request #3000 from sever-sever/T5064 | Christian Breunig | |
T5064: Firewall fix RegEx for for domain-group | |||
2024-02-13 | Merge pull request #2987 from c-po/evpn-macvrf-soo | Christian Breunig | |
bgp: T6032: add EVPN MAC-VRF Site-of-Origin support | |||
2024-02-13 | T5064: Firewall fix RegEx for for domain-group | Viacheslav Hletenko | |
Improve RegEx for firewall domain-groups. This domain group looks good, but the current RegEx validation fils: ``` set firewall group domain-group a_aa ``` | |||
2024-02-13 | T5928: Smoketest change firewall flowtable test to use VLAN | Viacheslav Hletenko | |
2024-02-13 | T5928: Change firewall priority to 319 | Viacheslav Hletenko | |
Change the firewall priority to 319, after interface ethernet configuration For example if we use VLANs and the vlan interface must be created before we can use it in the firewall/flowtable The current priority ``` 199 firewall 300 interfaces/dummy 300 interfaces/loopback 300 interfaces/virtual-ethernet 310 interfaces/bridge 310 interfaces/input 318 interfaces/ethernet ... ``` | |||
2024-02-13 | Merge pull request #2988 from c-po/pki-rpki-t6034 | Christian Breunig | |
rpki: T6034: move file based SSH keys for authentication to PKI subsystem | |||
2024-02-13 | Merge pull request #2997 from sarthurdev/T5993 | Christian Breunig | |
dhcpv6-server: T5993: Add subnet `interface` node, link subnet to locally connected interfaces | |||
2024-02-13 | dhcp: dhcpv6: T3316: Add op-mode for showing DHCP(v6) static-mappings | sarthurdev | |
2024-02-13 | dhcpv6-server: T3316: Display delegated prefix length in lease output | sarthurdev | |
2024-02-13 | dhcpv6-server: T5992: Fix op-mode Kea DHCP lease output | sarthurdev | |
Due to Kea's lease file cleanup, the CSV file content is inconsistent. This commit makes changes to use the Kea control socket to fetch current lease information. | |||
2024-02-13 | dhcpv6-server: T5993: Add subnet `interface` node, link subnet to locally ↵ | sarthurdev | |
connected interfaces Prior dhcpd behaviour implicitly handled requests for locally connected subnets. Kea requires an explicit link between subnets and an interface. | |||
2024-02-12 | rpki: T6034: Add missing sections to configtest | sarthurdev | |
2024-02-12 | Merge pull request #2993 from sarthurdev/T5981 | Christian Breunig | |
ipsec: T5981: Strip '@' from migrated peer PKI name | |||
2024-02-12 | Merge pull request #2994 from c-po/init-T2044 | Christian Breunig | |
init: T2044: fix "binary operator expected" when two or more RPKI caches are defined | |||
2024-02-12 | init: T2044: fix "binary operator expected" when two or more RPKI caches are ↵ | Christian Breunig | |
defined Fix commit 9b8e11e07 ("init: T2044: only start rpki if cache is configured") which showed a disturbing error on tty0 after boot that a "binary operator expected" when checking for RPKI caches when multiple results got returned. | |||
2024-02-12 | rpki: T6024: add migration scripts from file based keys to PKI subsystem | Christian Breunig | |
2024-02-12 | rpki: T6034: remove OpenSSH keys from /run/frr when unloaded | Christian Breunig | |
2024-02-12 | pki: T6034: add dependencies to trigger rpki re-run on openssh key update | Christian Breunig | |
2024-02-12 | ipsec: T5981: Strip '@' from migrated peer name | sarthurdev | |
2024-02-12 | Merge pull request #2991 from nicolas-fort/T6019 | Christian Breunig | |
T6019: fix smoketest after upgrading nftables and libnftnl packages. |