Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-12-07 | FRR: T4020: Updated CLI options processing for FRR daemons | zsdc | |
Instead of analyzing options for each daemon now we use a single template for the whole configuration file. This makes logic a bit less flexible, but much easier. Removed unnecessary check for returned by the `conf.get_config_dict(base)` config. Also, added the ability to disable `strip()` of file content while using `read_file()` what is necessary for proper comparing with updated content. | |||
2021-11-21 | Merge pull request #1074 from sever-sever/T4010 | Christian Poessinger | |
dmvpn: T4010: Fix template ipsec profile rekey_time | |||
2021-11-18 | dmvpn: T4010: Fix template ipsec profile rekey_time | Viacheslav | |
2021-11-18 | console-server: T2490: display /etc/issue.net on SSH logins | Christian Poessinger | |
2021-11-18 | dhcp: T4008: change client retry interval form 300 -> 60 seconds | Christian Poessinger | |
(cherry picked from commit e1539b6fffaf10863e41a73a380f9de40f6aece6) | |||
2021-11-15 | vrf: T3960: when adding multiple VRFs and VNIs - do not delete previous ones | Christian Poessinger | |
2021-11-07 | protocols: static: T3680: do not delete DHCP received routes | Christian Poessinger | |
An ISC DHCP hook script is used to install the received default route into FRR by simple calls to vtysh. By moving to frr-reload.py the DHCP default route was deleted as it was not found in the running config. This commit checks all interfaces if DHCP is enabled and if so - will dynamically add the route to the generated FRR configuration. | |||
2021-11-03 | sstp: T2566: use XML defaultValue over Jinja2 hardcoded value | Christian Poessinger | |
(cherry picked from commit 01ed77040ec9493e4ca1cf868ff3c22847da4487) | |||
2021-11-03 | sstp: T2566: Fix to allow IPv6 only pools | Viacheslav | |
To allow IPv6 only for vpn sstp sessions we have to add 'ppp-options' which can disable IPv4 allocation explicity. Additional IPv6 ppp-options and fix template for it. (cherry picked from commit dd036c62d1370f655a8d2075577597f24ffff7dc) | |||
2021-11-01 | Merge branch 'current' into T3350-sagitta | zdc | |
2021-10-31 | openvpn: T3834: Support for Two Factor Authentication totp | Kim | |
2021-10-26 | bgp: T3945: relax Jinja2 for loop for aggregate-address | Christian Poessinger | |
2021-10-26 | bgp: T3945: Add route-map for aggregate-address | Viacheslav | |
2021-10-25 | Merge pull request #1037 from sever-sever/T2683 | Christian Poessinger | |
hosts: T2683: Allow multiple entries for static-host-mapping | |||
2021-10-25 | snmp: T2763: Add protocol TCP for service snmp | Viacheslav | |
2021-10-22 | hosts: T2683: Allow multiple entries for static-host-mapping | Viacheslav | |
2021-10-20 | Merge pull request #1030 from sarthurdev/mdns-avahi | Christian Poessinger | |
mdns: T3917: Change to avahi-daemon for IPv4 + IPv6 mDNS repeater | |||
2021-10-19 | mdns: T3917: Change to avahi-daemon for IPv4 + IPv6 mDNS repeater | sarthurdev | |
2021-10-18 | Merge pull request #1022 from sever-sever/T3897 | Christian Poessinger | |
ddclient: T3897: Add option for IPv6 Dynamic DNS | |||
2021-10-18 | ddclient: T3897: Add option for IPv6 Dynamic DNS | Viacheslav | |
2021-10-16 | l2tp: T3724: allow setting accel-ppp l2tp host-name | Marek Isalski | |
2021-10-15 | dhclient: T3832: Add hexadecimal format for client-id | Viacheslav | |
The hedadecimal option dhcp-cliend-identifier format is required to set values without quotes, separated by colons. | |||
2021-10-13 | ntp: T3904: Fix NTP pool associations | Georgiy Tugai | |
As of NTP 4.2.7, 'nopeer' also blocks pool associations. See https://bugs.ntp.org/show_bug.cgi?id=2657 See also https://github.com/geerlingguy/ansible-role-ntp/pull/84 (cherry picked from commit 854c68d43d8f1cf20417edd12284ea20f9e7ec9a) | |||
2021-10-10 | lcd: T2564: add support for hd44780 displays | Christian Poessinger | |
2021-10-07 | Merge branch 'current' into 2fa | Kim | |
2021-10-07 | openvpn: T3805: drop privileges using systemd - required for rtnetlink | Christian Poessinger | |
2021-10-07 | pull request fixes | Kim Hagen | |
2021-10-04 | bgp: T3741: "parameter default no-ipv4-unicast" is now a default option | Christian Poessinger | |
2021-10-04 | OpenVPN: T3350: Changed custom options for OpenVPN processing | zsdc | |
Custom OpenVPN options moved back to the command line from a configuration file. This should keep full compatibility with the `crux` branch, and allows to avoid mistakes with parsing options that contain `--` in the middle. The only smart part of this - handling a `push` option. Because of internal changes in OpenVPN, previously it did not require an argument in the double-quotes, but after version update in `equuleus` and `sagitta` old syntax became invalid. So, all the `push` options are processed to add quotes. The solution is still not complete, because if a single config line contains `push` with other options, it will not work, but it is better than nothing. | |||
2021-10-02 | dns: forwarding: T3882: remove deprecated code to work with PowerDNS 4.5 | Christian Poessinger | |
(cherry picked from commit 8e6c48563d1612916bd7fcc665d70bfa77ec5667) | |||
2021-09-30 | dhcp-server: T2230: add subnet description into rendered config | Christian Poessinger | |
2021-09-27 | igmp: T2230: fix Jinja2 and FRR indention | Christian Poessinger | |
2021-09-27 | frr: T2175: rename daemon Jinja2 templates to match (d)aemon suffix | Christian Poessinger | |
2021-09-27 | openvpn: T690: Fix template for gateway and metric | Viacheslav | |
Some OpenVPN clients doesnt support option gateway and metric. Set metric option only when 'metric' was added in config explicity. (cherry picked from commit 96681d8bf1ede069b573a4cbe3a2493c374d048e) | |||
2021-09-26 | ospfv3: T3859: add "log-adjacency-changes" CLI command | Christian Poessinger | |
2021-09-25 | bgp: T3657: add "neighbor fe80::202 interface source-interface 'eth1'" command | Christian Poessinger | |
2021-09-23 | openvpn: T3642: Openvpn does not work without dh parameter in EC mode | Nicolas Riebesel | |
2021-09-22 | vrrp: keepalived: T3847: enable no_tag_node_value_mangle for get_config_dict() | Christian Poessinger | |
Commit 761631d6 ("vrrp: keepalived: T3847: migrate to get_config_dict()") switched to the new python function get_config_dict(), when we deal with tag nodes that can contain a hyphen, we should also set no_tag_node_value_mangle in order to preserve it. This caused a dict lookup error as the hyphens in the test scripts got replaced by an _. | |||
2021-09-21 | vrrp: keepalived: T3847: migrate/streamline CLI options | Christian Poessinger | |
Rename virtual-address -> address as we always talk about an IP address. | |||
2021-09-21 | vrrp: keepalived: T3847: migrate to get_config_dict() | Christian Poessinger | |
2021-09-21 | vrrp: keepalived: T616: enable script security | Christian Poessinger | |
2021-09-21 | vrrp: keepalived: T616: move configuration to volatile /run directory | Christian Poessinger | |
Move keepalived configuration from /etc/keepalived to /run/keepalived. | |||
2021-09-21 | vrrp: keepalived: T2720: adjust to Jinja2 trim_blocks feature | Christian Poessinger | |
This is a successor to commit a2ac9fac16e ("vyos.template: T2720: always enable Jinja2 trim_blocks feature"). It only shifts the whitespaces / indents inside the keepalived configuration file. | |||
2021-09-21 | dhcp-server: T3839: support domain-search and ntp-server config per ↵ | Christian Poessinger | |
shared-network | |||
2021-09-19 | ipsec: T1441: Clean up vti-up-down script for XFRM interfaces | Lucas Christian | |
2021-09-19 | dhcp-server: T3672: bugfix Jinja2 template | Christian Poessinger | |
The DHCP servers pool {} option can only be used when there follows a range statement. This is invalid for a network with only "static" leases. | |||
2021-09-19 | dhcp-server: T3672: re-add missing "name" CLI option | Christian Poessinger | |
This option is mandatory and must be user configurable as it needs to match on both sides. | |||
2021-09-19 | dhcp-server: T3841: add option to perform ICMP check before address assignment | Christian Poessinger | |
2021-09-19 | dhcp-server: T3672: only one failover peer is supported | Christian Poessinger | |
2021-09-18 | dhcp-server: T3839: support name-servers and domain config per shared-network | Christian Poessinger | |
DHCP servers "shared-network" level only makes sense if one can specify configuration items that can be inherited by individual subnets. This is now possible for name-servers and the domain-name. set service dhcp-server shared-network-name LAN domain-name 'vyos.net' set service dhcp-server shared-network-name LAN name-server '192.0.2.1' |