| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 8 days | Merge pull request #4321 from sskaje/T7092 | Daniil Baturin | |
| T7092: Add Container Registry Mirror | |||
| 8 days | T7092: Change validators: regex to host-name|address + port + path | sskaje | |
| 11 days | syslog: T7229: advanced format should not have IPv6 addresses in [] brackets | Christian Breunig | |
| Otherwise rsyslog will report an error: omfwd: could not get addrinfo for hostname '[2001:db8::2]':'514': System error | |||
| 12 days | login: T6712: add newline after motd warning message | Christian Breunig | |
| 13 days | ipsec: T7225: fix dynamic generation of IKE DiffieHellmanGroup in iOS profile | Christian Breunig | |
| Commit e97d86e ("T6617: T6618: vpn ipsec remote-access: fix profile generators") added a bug when working with DiffieHellmanGroup, it started becoming a boolead and no longer referencing the DH groups itself. This has been fixed. | |||
| 13 days | ipsec: T7225: iOS18+ always requires ExtendedAuthEnabled to be set | Christian Breunig | |
| If this is unset, loading the iOS VPN profile will error out on the device giving: Profile Installation Failed configuration is invalid: Missing identity My first assumption was an empty string in LocalIdentifier for IKE, but turned out only adding this flag solved it. This was made optional in commit e97d86e ("T6617: T6618: vpn ipsec remote-access: fix profile generators") but got reverted now. | |||
| 13 days | Merge pull request #4381 from c-po/ipsec-opmode-profile | Christian Breunig | |
| ipsec: T7225: "generate ipsec profile ios-remote-access" throws UndefinedError | |||
| 13 days | ipsec: T7225: "generate ipsec profile ios-remote-access" throws UndefinedError | Christian Breunig | |
| Calling "generate ipsec profile ios-remote-access rw remote ipsec.vyos.net name VYOS-NET profile VYOS" in op-mode causes File "/usr/share/vyos/templates/ipsec/ios_profile.j2", line 58, in top-level template code {% if authentication.client_mode.startswith("eap") %} ^^^^^^^^^^^^^^^^^^^^^^^^^ jinja2.exceptions.UndefinedError: 'dict object' has no attribute 'client_mode' | |||
| 13 days | T4406: Add public API endpoint to display information | oniko94 | |
| 2025-03-04 | syslog: T6989: add option do disable "MARK"syslog-typos-T6989 | Christian Breunig | |
| New CLI command set system syslog marker disable | |||
| 2025-02-27 | Merge pull request #4369 from natali-rs1985/T7166 | Daniil Baturin | |
| wireguard: T7166: Call vxlan dependency if interface exist | |||
| 2025-02-27 | wireguard: T7166: Call vxlan dependency if interface exist | Nataliia Solomko | |
| 2025-02-26 | policy: T7158: Added match source-vrf to route-map | aapostoliuk | |
| Added match source-vrf to route-map | |||
| 2025-02-25 | Merge pull request #4365 from c-po/lldp-t7165 | Daniil Baturin | |
| lldp: T7165: add support to enable only rx/tx on specific interfaces | |||
| 2025-02-24 | lldp: T7165: add support to enable only rx or tx on specific interface | Christian Breunig | |
| LLDP is a stateless protocol which does not necessitate sending to receive advertisements. There are multiple scenarios such as provider peering links in which it is advantageous to receive LLDP but not disclose internal information to the provider. Add new CLI command: * set service lldp interface <name> mode [disable|rx-tx|rx|tx] The default is unchanged and will be rx-tx. Furthermore if an interface has an explicit LLDP disable configured under "set service lldp interface <name> disable" this will be migrated to "set service lldp interface <name> mode disable" | |||
| 2025-02-24 | T7190: Add haproxy default timeout options configurable | Viacheslav Hletenko | |
| Add the ability to configurate default timeout and frontend client timeout ``` set load-balancing haproxy service web timeout client '600' set load-balancing haproxy timeout check '4' set load-balancing haproxy timeout client '600' set load-balancing haproxy timeout connect '12' set load-balancing haproxy timeout server '120' ``` | |||
| 2025-02-20 | firewall: T7148: Bridge state-policy uses drop in place of reject | sarthurdev | |
| 2025-02-20 | Merge pull request #4353 from natali-rs1985/T5810 | Daniil Baturin | |
| T5810: Add support for RPKI source ip | |||
| 2025-02-20 | Merge pull request #4352 from natali-rs1985/T6628-fix | Christian Breunig | |
| T6628: IPoE-server rename "static-ip" to "ip-address" for local auth | |||
| 2025-02-20 | Merge pull request #4356 from sarthurdev/wlb_python | Christian Breunig | |
| wlb: T4452: Use return for exclude statements | |||
| 2025-02-19 | wlb: T4452: Use return for exclude statements | sarthurdev | |
| 2025-02-19 | T5810: Add support for RPKI source ip | Nataliia Solomko | |
| 2025-02-19 | T6628: IPoE-server rename "static-ip" to "ip-address" for local auth | Nataliia Solomko | |
| 2025-02-18 | Merge pull request #4347 from c-po/bgp-redistr-table-T7163 | Daniil Baturin | |
| bgp: T7163: add CLI route-map and metric support for "redistribute table" | |||
| 2025-02-13 | wlb: T4470: Support WLB op-mode commands | sarthurdev | |
| 2025-02-13 | wlb: T4470: Migrate WAN load balancer to Python/XML | sarthurdev | |
| 2025-02-13 | bgp: T7163: add CLI route-map and metric support for "redistribute table" | Christian Breunig | |
| * set protocols bgp address-family <ipv4-unicast|ipv6-unicast> redistribute table <n> [metric <n>] [route-map <name>] | |||
| 2025-02-13 | bgp: T7161: fix IPv4/IPv6 unicast AFI "redistribute table" command | Christian Breunig | |
| Re-use existing XML constraint added via commit 8f6246da6 ("xml: T7161: provide re-usable building block for alternative routing tables") and add handy CLI completion helper. FRRouting supports redistribution of multiple non-main tables, thus make this a multi node in addition, too. | |||
| 2025-02-11 | webproxy: T7057: Fixed 'domain-nocache' command | aapostoliuk | |
| Fixed 'domain-nocache' command. Added config generation for this command. | |||
| 2025-02-10 | syslog: T6989: update default system configuration with new CLI syntax | Christian Breunig | |
| 2025-02-09 | T7092: Add Container Registry Mirror | sskaje | |
| 2025-02-04 | syslog: T6989: increase local log size form 256KiB -> 1MiB | Christian Breunig | |
| 2025-02-04 | syslog: T6989: add possibility to define VRF per remote | Christian Breunig | |
| Rsyslog supports individual VRFs per omfwd remote entry - so we should support this, too. | |||
| 2025-02-03 | syslog: T6989: remove RepeatedMsgReduction configuration option | Christian Breunig | |
| This is a feature that worked decades ago when logs were small and reviewed by a human, it fails badly on high volume logs processed by tools. https://www.rsyslog.com/doc/configuration/action/rsconf1_repeatedmsgreduction.html | |||
| 2025-02-03 | syslog: T6989: rename "global" to "local" | Christian Breunig | |
| The previously "global" options actually were only relevant for the local logging to /var/log/messages. | |||
| 2025-02-03 | syslog: T6989: move up "global marker" one level in CLI | Christian Breunig | |
| 2025-02-03 | syslog: T6989: move up "global preserve-fqdn" one level in CLI | Christian Breunig | |
| Move "global preserve-fqdn" one CLI level up, as it relates to all logging targets (console, global and remote). | |||
| 2025-02-03 | syslog: T6989: add new source-address CLI option for outgoing connections | Christian Breunig | |
| 2025-02-03 | syslog: T6989: convert old configuration format to "advanced" | Christian Breunig | |
| 2025-02-03 | syslog: T6989: rename "host" to "remote" | Christian Breunig | |
| 2025-02-03 | syslog: T6989: remove CLI option for user terminal logging | Christian Breunig | |
| Should be added as runtime option similar to "terminal monitor" known from other vendors. | |||
| 2025-02-03 | syslog: T6989: remove "file" logging destination | Christian Breunig | |
| 2025-01-28 | Merge pull request #4318 from sskaje/T7089 | Daniil Baturin | |
| T7089: Fix static route when using PPPoE default route | |||
| 2025-01-28 | Merge pull request #4322 from aapostoliuk/T2326-fix-3-circinus | Daniil Baturin | |
| nhrp: T2326: Fixed jinja template to generate NHRP config | |||
| 2025-01-27 | haproxy: T7081: Support HTTP compression (#4314) | Alex W | |
| 2025-01-27 | nhrp: T2326: Fixed jinja template to generate NHRP config | aapostoliuk | |
| Removed an unnecessary command that caused an error when creating a configuration with VRF and NHRP. | |||
| 2025-01-27 | T7089: Fix Indentation | sskaje | |
| 2025-01-27 | T7089: Fix static route when using PPPoE default route | sskaje | |
| 2025-01-21 | T6895: Merge the hsflowd-based sFlow and uacctd-based sFlow (#4310) | Nataliia S. | |
| 2025-01-20 | telegraf: T7017: Telegraf should log at least info to a configured logging ↵ | ds | |
| output (#4279) * T7017: Telegraf should have .info as input for syslog T7017: updating using vyos_defined keyword as suggested Co-authored-by: Christian Breunig <christian@breunig.cc> --------- Co-authored-by: Christian Breunig <christian@breunig.cc> | |||
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |