summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2021-11-09atop: T3774: Atop log file rotation fixzsdc
The systemd unit for atop service is changed, so the log file name and location will be always the same. It also adds the logrotate configuration to conditionally rotate a log file. Hardcoded values: - maximum log file size: 10 MB - maximum count of files: 10 These values can be easily changed within the `/etc/logrotate.d/vyos-atop`, no additional configuration is required. Rotation will be done hourly, if necessary, according to `/etc/cron.hourly/vyos-logrotate-hourly`. This change has two benefits: - rotation strategy control can be done via logrotate, and can be exposed to CLI now; - the total size of all logs is now controlled more aggressively, so the chance to get a situation when atop logs took all the space on a drive is significantly lower. Also, if this will be necessary, rotation may be done even each minute what reduces risks related to logs size even more.
2021-11-08T3912: remove duplicate "Welcome to VyOS!" already shown by pre-loginChristian Poessinger
2021-11-07http-api: T2768: update dhcp-server example for migration 5-to-6John Estabrook
2021-11-07T3912: use a more informative default login bannerChristian Poessinger
2021-11-07protocols: static: T3680: fix indention and if branch logicChristian Poessinger
This fixes an indention bug and a wrong if-statememnt from commit 05aa22dc ("protocols: static: T3680: do not delete DHCP received routes")
2021-11-07dhcp: T3680: fix lease filename for Vlan interfacesChristian Poessinger
2021-11-07protocols: static: T3680: do not delete DHCP received routesChristian Poessinger
An ISC DHCP hook script is used to install the received default route into FRR by simple calls to vtysh. By moving to frr-reload.py the DHCP default route was deleted as it was not found in the running config. This commit checks all interfaces if DHCP is enabled and if so - will dynamically add the route to the generated FRR configuration.
2021-11-07xml: provide and use common interface-name building blocksChristian Poessinger
2021-11-07bonding: T1614: add constraint on member interface names to be usedChristian Poessinger
2021-11-07policy: T2425: add generic-interface XML building blockChristian Poessinger
2021-11-06openvpn: T3966: fix KeyError when removing interfaces without TOTPChristian Poessinger
2021-11-05smoketest: T3972: test removal of vif-c interfacesChristian Poessinger
2021-11-05vyos.configdict: T3972: bugfix QinQ vif-c removal triggered KeyErrorChristian Poessinger
Generic get_removed_vlans() function replaced the entire config dict when any QinQ vif-c subinterface was deleted.
2021-11-04containers: T2216: remove superfluous import statementsChristian Poessinger
2021-11-04containers: T2216: bugfix config error on image upgradeChristian Poessinger
As it takes time for the OS to settle while booting up the first time a container is started after image upgrade it will fail big time. To prevent this we try to start the container up to 10 times before we generate a hard error. This makes error-free image upgrade possible again when using containers.
2021-11-04Merge pull request #1065 from sever-sever/T3969Christian Poessinger
containers: T3969: Fix F-string format for network ConfigError
2021-11-04containers: T3969: Fix F-string format for network ConfigErrorViacheslav
2021-11-04Merge pull request #1063 from vyos/t3964-add-missing-validatorChristian Poessinger
sstp: accel-ppp: T3964: add missing input validator for static-ip assignment
2021-11-03Merge pull request #1064 from UnicronNL/currentKim
openvpn: T3966: OpenVPN fix the smoketests
2021-11-03openvpn: T3966: OpenVPN fix the smoketestsKim Hagen
2021-11-03sstp: accel-ppp: T3964: add missing input validator for static-ip assignmentChristian Poessinger
2021-11-03sstp: T2566: use XML defaultValue over Jinja2 hardcoded valueChristian Poessinger
(cherry picked from commit 01ed77040ec9493e4ca1cf868ff3c22847da4487)
2021-11-03sstp: T2566: Fix to allow IPv6 only poolsViacheslav
To allow IPv6 only for vpn sstp sessions we have to add 'ppp-options' which can disable IPv4 allocation explicity. Additional IPv6 ppp-options and fix template for it. (cherry picked from commit dd036c62d1370f655a8d2075577597f24ffff7dc)
2021-11-03Merge pull request #1058 from sever-sever/T2281Christian Poessinger
interfaces: T2281: Ability to set static and DHCP addr on same interface
2021-11-03Merge pull request #1062 from sarthurdev/T3931Christian Poessinger
sstp: T3931: Fixes PKI integration with SSTP
2021-11-03sstp: T3931: Fixes PKI integration with SSTPsarthurdev
2021-11-01Merge pull request #1059 from UnicronNL/currentKim
openvpn: T3958: OpenVPN breaks the smoketests
2021-11-01openvpn: T3958: OpenVPN breaks the smoketestsKim Hagen
2021-11-01Merge pull request #1021 from zdc/T3350-sagittaChristian Poessinger
OpenVPN: T3350: Changed custom options for OpenVPN processing
2021-11-01Merge branch 'current' into T3350-sagittazdc
2021-11-01interfaces: T2281: Ability to set static and DHCP addr on same interfaceViacheslav
There are not any reason to enable only DHCP or only static address on interface at the same time It is possible to have both.
2021-10-31tunnel: T3956: GRE key check must not be run on our own interface instanceChristian Poessinger
(cherry picked from commit e482377b29df05e60dbdb31d6276ae2030ffa2f9)
2021-10-31netflow: T3953: use warning if "netflow source-ip" does not exist instead of ↵Christian Poessinger
error
2021-10-31openvpn: T3834: Support for Two Factor Authentication totpKim
2021-10-31smoketest: config: add DMVPN hub and spoke examplesChristian Poessinger
2021-10-31console: udev: T3954: adjust rule script to new systemd-udev versionChristian Poessinger
We can no longer use bash veriable string code vor string manipulation. Move to a more robust "cut" implementation.
2021-10-31console: T3954: bugfix RuntimeError: dictionary keys changed during iterationChristian Poessinger
2021-10-29https: pki: T3642: embed CA certificate into chain if specifiedChristian Poessinger
2021-10-29L3VPN: T3952: add sh bgp ipv4/ipv6 vpn commandgoodNETnick
2021-10-28Merge pull request #1047 from franciosi/patch-1Christian Poessinger
Quick Improvements in README.md
2021-10-28Merge pull request #1048 from sever-sever/T3951Christian Poessinger
op-mode: T3951: Fix for reset IPSec tunnels
2021-10-28Merge pull request #1049 from sever-sever/T3941Daniil Baturin
IPSec: T3941: Fix uptime for tunnels sa op-mode
2021-10-28IPSec: T3941: Fix uptime for tunnels sa op-modeViacheslav
The current uptime for tunnels is getting from parent SA That incorrect as we should get value from child SA
2021-10-28op-mode: T3951: Fix for reset IPSec tunnelsViacheslav
Fix for correct resetting all child SA's of the tunnel
2021-10-27vrrp: T3944: reload daemon instead of restart when already runningChristian Poessinger
This prevents a failover from MASTER -> BACKUP when changing any MASTER related configuration.
2021-10-26Quick Improvements in README.mdFranciosi
Quick ones, mostly caps
2021-10-26bgp: T3945: relax Jinja2 for loop for aggregate-addressChristian Poessinger
2021-10-26Merge pull request #1045 from sever-sever/T3945Christian Poessinger
bgp: T3945: Add route-map for aggregate-address
2021-10-26bgp: T3945: Add route-map for aggregate-addressViacheslav
2021-10-26Merge pull request #1044 from sever-sever/T3942Christian Poessinger
op-mode: T3942: Add feature Generate IPSec debug-archive
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-24 09:19:54 +0000