Age | Commit message (Collapse) | Author | |
---|---|---|---|
2022-06-14 | firewall: T4147: Use named sets for firewall groups | sarthurdev | |
* Refactor nftables clean-up code * Adds policy route test for using firewall groups | |||
2022-06-14 | Improve IPsec help strings | Daniil Baturin | |
2022-06-12 | Merge pull request #1357 from sarthurdev/geoip | Christian Poessinger | |
firewall: T4299: Add support for GeoIP filtering | |||
2022-06-11 | firewall: T4299: Add support for GeoIP filtering | sarthurdev | |
2022-06-10 | Merge pull request #1356 from sarthurdev/nested_groups | Christian Poessinger | |
firewall: T478: Add support for nesting groups | |||
2022-06-10 | firewall: T478: Add support for nesting groups | sarthurdev | |
2022-06-10 | scripts: T4465: node.def generation requires whitespace on multiple use of ↵ | Christian Poessinger | |
<path> | |||
2022-06-10 | Merge pull request #1355 from nicolas-fort/T4458-ipv4-ttl | Christian Poessinger | |
Firewall:T4458: Add ttl match option in firewall | |||
2022-06-10 | Merge pull request #1326 from sever-sever/T4429 | Christian Poessinger | |
op-mode: T4429: Ability to detect external IP address | |||
2022-06-10 | xml: drop not always applicable REQUIRED suffix from completion help string | Christian Poessinger | |
If a parameter is required is determined from the Python string on commit. This "indicator" is not used consistently and sometimes missing, or added where it is not required anymore due to Python script improvement/rewrite. | |||
2022-06-10 | Firewall:T4458: Add ttl match option in firewall | Nicolas Fort | |
2022-06-10 | Revert "dmvpn: nhrp: T4434: secret length can not exceed 8 characters" | Christian Poessinger | |
This reverts commit 6f818ee9033ee3abeedbed73eb44331dc27e7408. | |||
2022-06-10 | nhrp: T4460: update error message for cisco-authentication password length | Christian Poessinger | |
2022-06-10 | Merge pull request #1353 from nicolas-fort/T4460 | Christian Poessinger | |
Protocols: T4460: Add input checks for cisco-authentication in nhrp | |||
2022-06-10 | Merge pull request #1354 from sever-sever/T970 | Christian Poessinger | |
firewall: T970: Fix for Regex for domain and check empty group | |||
2022-06-10 | firewall: T970: Fix for Regex for domain and check empty group | Viacheslav Hletenko | |
It can be more then 5 symbols in top-level-domain address for example '.photography' and '.accountants' Firewall group can be added without address: * set firewall group domain-group DOMAIN Check if 'address' exists in group_config | |||
2022-06-10 | Protocols: T4460: Add input checks for cisco-authentication parameter in ↵ | Nicolas Fort | |
nhrp protocol | |||
2022-06-10 | Merge pull request #1322 from nicolas-fort/T3907-fwall-log | Daniil Baturin | |
Firewall: T3907: add log-level options in firewall | |||
2022-06-10 | Merge pull request #1352 from sever-sever/T970-test | John Estabrook | |
smoketest: T970: Add commit after static-host-mapping | |||
2022-06-10 | smoketest: T970: Add commit after static-host-mapping | Viacheslav Hletenko | |
Staic-host-mapping 'example.com' should be exists before we configure firewall domain-group FOO address example.com | |||
2022-06-09 | smoketest: sstp: T4444: verify port can be changed | Christian Poessinger | |
2022-06-09 | sstp: T4444: merge of defaultValue already done in get_accel_dict() | Christian Poessinger | |
2022-06-09 | xml: sstp: T4444: re-use port-number.xml.i building block | Christian Poessinger | |
2022-06-09 | Merge branch 'sstp_port' of https://github.com/goodNETnick/vyos-1x into current | Christian Poessinger | |
* 'sstp_port' of https://github.com/goodNETnick/vyos-1x: sstp: T4444. Port number changing support | |||
2022-06-09 | Merge pull request #1327 from sever-sever/T970 | Christian Poessinger | |
firewall: T970: Add firewall group domain-group | |||
2022-06-08 | arp: T4397: bugfix on address iteration - ARP is IPv4 only | Christian Poessinger | |
2022-06-08 | Merge pull request #1340 from sever-sever/T3083 | Christian Poessinger | |
event-handler: T3083: Add simple event-handler | |||
2022-06-08 | event-handler: Change tagNode event-handler to node | Viacheslav Hletenko | |
Before: set service event-handler Foo After: set service event-handler event Foo | |||
2022-06-07 | event-handler: T3083: Extended event-handler features | zsdc | |
* Added the ability to filter by a syslog identifier * Added the ability to pass arguments to a script * Added the ability to pass preconfigured environment variables to a script * A message that triggered a script is now passed in the `message` variable and can be used in a script * Replaced `call()` to `run()`, since stdout are not need to be printed | |||
2022-06-07 | firewall: T970: domain-group should not starts with numeric | Viacheslav Hletenko | |
Edit regex to check firewall-group | |||
2022-06-07 | event-handler: T3083: Add arguments and environment options XML | Viacheslav Hletenko | |
2022-06-07 | event-handler: T3083: Move system to service event-handler | Viacheslav Hletenko | |
Move 'system event-handler' to 'service event-handler' | |||
2022-06-07 | event-handler: T3083: Optimized event-handler | Viacheslav Hletenko | |
2022-06-06 | event-handler: T3083: Optimized event-handler | zsdc | |
* Removed dynamic generating for systemd unit * Optimized configuration file deleting process * Added exceptions handlers to event-handler script to protect service from most obvious potential troubles * Improved logging * Moved pattern compilation outside a messages loop to avoid extra operations * Added signal handlers for proper systemd integration | |||
2022-06-06 | event-handler: T3083: Add simple event-handler | Viacheslav Hletenko | |
Event-handler allows executing a custom script when in logs it detects configured "pattern" A simple implemenation set system event-handler first pattern '.*ssh2.*' set system event-handler first script '/config/scripts/hello.sh' | |||
2022-06-06 | Merge pull request #1347 from dmbaturin/T4446 | Viacheslav Hletenko | |
T4446: use a unified neighbor display script | |||
2022-06-06 | T4446: use format strings instead of old-fasionhed format method | Daniil Baturin | |
2022-06-05 | Merge pull request #1350 from nicolas-fort/T4387-WLB-smoketest | Christian Poessinger | |
T4387: add more firewall checks for WLB smoketests. | |||
2022-06-05 | T4387: add more firewall checks for WLB smoketests. | Nicolas Fort | |
2022-06-05 | Merge pull request #1346 from sever-sever/T4387-curr | Viacheslav Hletenko | |
smoketest: T4387: Add test for load-balancing wan | |||
2022-06-05 | Merge pull request #2 from sarthurdev/T970 | Viacheslav Hletenko | |
firewall: T970: Maintain a domain state to fallback if resolution fails | |||
2022-06-05 | firewall: T970: Maintain a domain state to fallback if resolution fails | sarthurdev | |
2022-06-04 | Merge pull request #1348 from nicolas-fort/T3976-T4449-nexthop | Christian Poessinger | |
Policy: T3976-T4449-nexthop: add - match ipv6 nexthop type - | |||
2022-06-04 | Policy: T3976-T4449-nexthop: add - match ipv6 nexthop type - as available ↵ | Nicolas Fort | |
for ipv4 | |||
2022-06-02 | T4446: use a unified neighbor display script | Daniil Baturin | |
2022-06-02 | smoketest: T4387: Add test for load-balancing wan | Viacheslav Hletenko | |
Create 2 network namespaces which allow us to emulate 2 ISP with different static addresses Check routing table 201 for the first ISP and table 202 for the second ISP. Each table must contain default route (cherry picked from commit 6b75cbb0575ca95806e969f5d7f219c0cbeea334) | |||
2022-06-02 | Merge pull request #1345 from sever-sever/T4222 | Christian Poessinger | |
sla: T4222: Add OWAMP and TWAMP for service sla | |||
2022-06-02 | sla: T4222: Add OWAMP and TWAMP for service sla | Viacheslav Hletenko | |
OWAMP is a command line client application and a policy daemon used to determine one way latencies between hosts. OWAMP session control uses traditional client-server communication between a control-client and a server, TWAMP (two-way active measurement protocol) Add configuration and operation modes set service sla owamp-server set service sla twamp-server run force owping 192.0.2.120 run force twping 192.0.2.190 | |||
2022-05-31 | Merge pull request #1344 from sarthurdev/pki_update | Christian Poessinger | |
pki: T3642: Update conf scripts using changed PKI objects | |||
2022-05-31 | pki: T3642: Update conf scripts using changed PKI objects | sarthurdev | |