Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-06-10 | ipsec: T2816: add .py extenstion to dhclient helper script for processing | Christian Poessinger | |
dhclient fails to execute the script without the extension. | |||
2021-06-09 | GitHub: fix workflow token warning | Christian Poessinger | |
2021-06-09 | Merge pull request #871 from vyos/c-po-patch-1 | Christian Poessinger | |
xml: cron: remove whitespaces | |||
2021-06-09 | xml: cron: remove whitespaces | Christian Poessinger | |
2021-06-09 | GitHub: Add workflow to auto assign reviewers | Christian Poessinger | |
2021-06-09 | GitHub: rename Workflow to "PR Triage" | Christian Poessinger | |
2021-06-09 | Merge pull request #870 from erkin/current | Christian Poessinger | |
remote, util: Move general helper routines from `remote.py` to `util.py` | |||
2021-06-09 | GitHub: add action to assign PR author as assignee | Christian Poessinger | |
2021-06-09 | remote, util: Move general helper routines from `remote.py` to `util.py` | erkin | |
2021-06-08 | remote: import is_ipv6 from vyos.template | Christian Poessinger | |
2021-06-08 | Merge pull request #867 from erkin/current | Christian Poessinger | |
T3563: Add support for IPv6 source addresses in SSH connections | |||
2021-06-08 | remote: Use `is_ipv6()` instead of ad hoc IPv6 check | erkin | |
2021-06-08 | policy: T3605: add support to prefer IPv6 global next-hop address in route-map | Christian Poessinger | |
2021-06-07 | smoketest: ipsec: chmod +x testcase | Christian Poessinger | |
2021-06-07 | nhrp: T3599: adjust Jinja2 template to common style pattern | Christian Poessinger | |
2021-06-07 | ipsec: T2816: adjust Jinja2 template to common style pattern | Christian Poessinger | |
2021-06-07 | vti: T3588: remove interfaces not bound to IPSec tunnel | Christian Poessinger | |
A VTI interface also requires an IPSec configuration - VyOS 1.2 supported having a VTI interface in the CLI but no IPSec configuration - drop VTI configuration if this is the case for VyOS 1.4. | |||
2021-06-07 | ipsec: T3588: remove site-to-site tunnel CLI options only valid in Openswan | Christian Poessinger | |
2021-06-07 | Merge pull request #868 from sarthurdev/current | Christian Poessinger | |
nhrp: T3599: Update config path to new /run directory | |||
2021-06-07 | nhrp: T3599: Update config path to new /run directory | sarthurdev | |
2021-06-06 | T3563: Add support for IPv6 source addresses in SSH connections | erkin | |
2021-06-06 | ipsec: T3588: remove CLI options deprecated by strongSwan | Christian Poessinger | |
- set vpn ipsec nat-traversal - set vpn ipsec nat-networks allowed-network | |||
2021-06-06 | T1168: ipsec: add copyright header to migration script | Christian Poessinger | |
2021-06-06 | Merge pull request #846 from erkin/current | Christian Poessinger | |
T3508, T3356: remote: Friendly download procedure for user-facing scripts | |||
2021-06-06 | Debian: add missing dependency on vyatta-cfg | Christian Poessinger | |
2021-06-06 | nhrp: T3599: replace vyos-opennhrp with opennhrp package | Christian Poessinger | |
2021-06-06 | Merge pull request #865 from sarthurdev/current | Christian Poessinger | |
nhrp: T3599: Migrate NHRP to XML/Python | |||
2021-06-06 | nhrp: T3599: Remove vpn_ipsec.py from configd until bug is resolved | sarthurdev | |
2021-06-06 | nhrp: T3599: Migrate NHRP to XML/Python | sarthurdev | |
2021-06-05 | ipsec: T3093: drop superfluous top level priority | Christian Poessinger | |
2021-06-05 | Merge pull request #866 from sarthurdev/fix-ipsec | Christian Poessinger | |
ipsec: T2816: Fix typo from refactor | |||
2021-06-04 | ipsec: T2816: Fix typo from refactor | sarthurdev | |
2021-06-04 | vti: T3595: error out when adding VTI interface withouth IPSec | Christian Poessinger | |
2021-06-04 | flow-accounting: T3132: fix egress iptables chain | Jan-Philipp Benecke | |
(cherry picked from commit 95cc2e4b4c11414cc71749af12abb575e96e5bd4) | |||
2021-06-04 | Merge pull request #861 from sever-sever/T3592 | Christian Poessinger | |
tunnels: T3592: Set default TTL to 64 | |||
2021-06-03 | pppoe-server: T3593: Change called-sid position in template | Eshenko Dmitriy | |
2021-06-02 | tunnels: T3592: Set default TTL to 64 | sever-sever | |
Set default TTL value for tunnels from 0 to 64 There are a lot of situation when default value 0 (inherit) not work properly when you have routing configuration for OSPF or BGP over the tunnels. To fix it you need explicit set TTL value other then 0. Or hardcode another value as default. | |||
2021-06-01 | op-mode: T3384: fix default help string for bandwidth test | Christian Poessinger | |
2021-06-01 | op-mode: T3384: support UDP bandwidth testing | JACK | |
2021-06-01 | pppoe-server: T3593: Add extended-scripts feature | Eshenko Dmitriy | |
2021-06-01 | ipsec: T2816: XML in op-mode should not contain ' in the help string | Christian Poessinger | |
2021-05-31 | conntrack: T3579: add module disable options | Christian Poessinger | |
Some application layer gateway (ALG) modules can be disabled during runtime if requireq. | |||
2021-05-31 | ipsec: T2816: Continued refactor, added proper ipsec-interfaces handling | Simon | |
2021-05-30 | bgp: T3590: limiting maximum number of prefixes to be sent to a peer | Christian Poessinger | |
2021-05-30 | ipsec: T2816: Refactor to remove global variable and tidy up | Simon | |
2021-05-30 | op-mode: T3589: add "clear log" command to vacuume journald | Christian Poessinger | |
2021-05-30 | op-mode: T3589: replace short journalctl options with long names | Christian Poessinger | |
... this is done for easier readability of the commands | |||
2021-05-30 | T3356: Add progressbars to SFTP and HTTP transfers | erkin | |
2021-05-29 | Debian: T1888: raise required strongSwan version to >= 5.8 for xfrm support | Christian Poessinger | |
2021-05-29 | vpn: ipsec: T3093: test for VTI interface availability the easy way | Christian Poessinger | |
We do not need to query the actual configuration if the VTI peer is configured or not. This can be done in a much more simples way by just checking if the desired interface exists on the running system. This is safe to do as the VTI priority is less then IPSec. |