| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2023-01-01 | qos: T4284: first implementation introducing a new vyos.qos module | Christian Poessinger | |
| 2022-12-23 | firewall: T2199: Fix typo in `rule-log-level.xml.i` header | sarthurdev | |
| 2022-12-23 | firewall: T2199: Add mac-address match to `destination` side | sarthurdev | |
| 2022-12-23 | container: T4870: bump package version 0 -> 1 for filesystem change | Christian Poessinger | |
| move from vfs to overlay driver The following pre iage upgrade script must be executed to have containers after the reboot: for pod in $(cli-shell-api listActiveNodes container name); do systemctl stop vyos-container-${pod//\'}.service done sed -i 's/vfs/overlay/g' /etc/containers/storage.conf /usr/share/vyos/templates/container/storage.conf.j2 rm -rf /usr/lib/live/mount/persistence/container/storage/libpod for pod in $(cli-shell-api listActiveNodes container name); do image=$(cli-shell-api returnActiveValue container name ${pod//\'} image) podman image pull $image systemctl start vyos-container-${pod//\'}.service done for dir in vfs vfs-containers vfs-images vfs-layers; do rm -rf /usr/lib/live/mount/persistence/container/storage/$dir done | |||
| 2022-12-19 | T4886: Firewall and route policy: Add connection-mark feature to vyos. | Nicolas Fort | |
| 2022-12-17 | Merge pull request #1626 from nicolas-fort/fwall_group_interface | Christian Poessinger | |
| T4780: Firewall: add firewall groups in firewall. Extend matching cri… | |||
| 2022-12-15 | firewall: T4882: add missing ICMPv6 type names | initramfs | |
| 2022-12-14 | Merge pull request #1706 from jestabro/validator-file-exists | John Estabrook | |
| validators: T4798: replace python file-exists validator with file-path | |||
| 2022-12-14 | validators: T4875: use file-path to replace validator 'interface-name' | John Estabrook | |
| 2022-12-13 | validators: T4798: replace python file-exists validator with file-path | John Estabrook | |
| 2022-12-11 | pppoe: xml: T4792: split "no-peer-dns" CLI node into building block | Christian Poessinger | |
| 2022-12-11 | xml: ddns: T4792: split "server" CLI node into building block | Christian Poessinger | |
| 2022-12-02 | T4854: route reflector allows to apply route-maps | fett0 | |
| 2022-12-02 | T4858: Fix l3vpn Route Distinguisher validator | fett0 | |
| 2022-11-29 | xml: telegraf: T4680: add missing comment in listen-address-single.xml.i | Christian Poessinger | |
| 2022-11-24 | Merge pull request #1641 from Rain/T4612-arbitrary-netmasks | Christian Poessinger | |
| firewall: T4612: Support arbitrary netmasks | |||
| 2022-11-19 | T4780: Firewall: add firewall groups in firewall. Extend matching criteria ↵ | Nicolas Fort | |
| so this new group can be used in inbound and outbound matcher | |||
| 2022-11-11 | policy: T2199: T4605: Migrate policy route interface to `policy route|route6 ↵ | sarthurdev | |
| <name> interface <ifname>` * Include refactor to policy route to allow for deletion of mangle table instead of complex cleanup * T4605: Rename mangle table to vyos_mangle | |||
| 2022-11-03 | Merge pull request #1633 from sarthurdev/fqdn | Christian Poessinger | |
| firewall: T970: T1877: Add source/destination fqdn, refactor domain resolver, firewall groups in NAT | |||
| 2022-11-03 | nat: T1877: T970: Add firewall groups to NAT | sarthurdev | |
| 2022-11-03 | firewall: T970: Refactor domain resolver, add firewall source/destination ↵ | sarthurdev | |
| `fqdn` node | |||
| 2022-11-03 | validators: T4795: migrate mac-address python validator to validate-value | Christian Poessinger | |
| Instead of spawning the Python interpreter for every mac-address to validate, rather use the base validate-value OCaml implementation which is much faster. This removes redundant code and also makes the CLI more responsive. Validator is moved out to a dedicated file instead of using XML inlined <regex> for the reason of re-usability. So if that regex needs to be touched again - it can all happen in one single file. | |||
| 2022-11-03 | xml: T4795: provide common and re-usable XML definitions for policy | Christian Poessinger | |
| Remove duplicated code and move to single-source of truth. | |||
| 2022-10-31 | ipsec: T4787: add support for road-warrior/remote-access RADIUS timeout | Christian Poessinger | |
| This enabled users to also use 2FA/MFA authentication with a radius backend as there is enough time to enter the second factor. | |||
| 2022-10-29 | static: T4784: add description node for static route/route6 tagNodes | Christian Poessinger | |
| 2022-10-21 | graphql: T4768: change name of api child node from 'gql' to 'graphql' | John Estabrook | |
| 2022-10-13 | T4739: OSPF segment routing being refactored | Cheeze_It | |
| 2022-10-13 | T4739: ISIS segment routing being refactored | Cheeze_It | |
| 2022-10-13 | monitoring: T4312: Ability to set IP address in the URL | Viacheslav Hletenko | |
| Use common "url.xml" which allow URL as domain name or IP entrie | |||
| 2022-10-11 | xml: ospf: isis: T4739: merge include files for MPLS segment-routing | Christian Poessinger | |
| 2022-10-11 | Merge pull request #1574 from Cheeze-It/current | Christian Poessinger | |
| isis: T4739: ISIS segment routing being refactored | |||
| 2022-10-11 | Merge pull request #1547 from initramfs/current-limiter-actions | Christian Poessinger | |
| qos: T4688: add xml template for limiter actions | |||
| 2022-10-11 | isis: T4739: ISIS segment routing being refactored | Cheeze_It | |
| This is to refactor ISIS segment routing to match up with OSPF segment routing. | |||
| 2022-10-10 | policy: T4742: Add policy route table auto-complete | sarthurdev | |
| 2022-10-08 | firewall: T4612: Support arbitrary netmasks | Rain | |
| Add support for arbitrary netmasks on source/destination addresses in firewall rules. This is particularly useful with DHCPv6-PD when the delegated prefix changes periodically. | |||
| 2022-10-07 | Merge pull request #1572 from Cheeze-It/current | Christian Poessinger | |
| ospf: T4707: Add OSPF segment routing for FRR | |||
| 2022-10-07 | Merge branch 'current' into radius-rate-limit-comp | Christian Poessinger | |
| 2022-10-06 | ospf: T4707: Add OSPF segment routing for FRR | Cheeze_It | |
| In this commit we add OSPF segment routing, smoke tests, handlers, FRR template changes, and CLI commands. | |||
| 2022-10-06 | xml: T4722: radius: remove superfluous "default" help string | Christian Poessinger | |
| vyos-1x automatically adds a "(default: ...)" hint to the CLI help if the <defaultValue> XML tag is used. No need to specify this manually. | |||
| 2022-10-06 | Merge pull request #1567 from aapostoliuk/T4660-sagitta | Christian Poessinger | |
| policy: T4660: Changed CLI syntax in route-map set community | |||
| 2022-10-03 | T4726: add completion help and validation for accel-ppp vendor option | Daniil Baturin | |
| 2022-10-03 | policy: T4660: Changed CLI syntax in route-map set community | aapostoliuk | |
| Changed CLI syntax in route-map set community, set large-community, set extcommunity Allows to add multiple communities, large-communities and extcommunities in clear view. Added new well-known communities. Added non-transitive feature in extcommunities. Fixed community's validators. | |||
| 2022-10-01 | T4722: consistently use the "RADIUS" spelling for the RADIUS protocol | Daniil Baturin | |
| 2022-09-30 | bgp: evpn: T1315: add route-target CLI node <multi/> property | Christian Poessinger | |
| FRR supports multiple route-targets to be used for import/export: address-family l2vpn evpn route-target import 20:10 route-target import 20:11 route-target import 20:12 route-target import 40:40 route-target export 1:2 route-target export 1:3 route-target export 40:40 exit-address-family Thus the <multi/> property is added to the relevant CLI nodes. | |||
| 2022-09-27 | Merge pull request #1560 from nicolas-fort/T4700 | Christian Poessinger | |
| T4700: Firewall: add interface matching criteria | |||
| 2022-09-26 | Merge pull request #1545 from sever-sever/T4557 | Christian Poessinger | |
| ids: T4557: Migrate threshold and add new threshold types | |||
| 2022-09-26 | ids: T4557: Migrate threshold and add new threshold types | Viacheslav Hletenko | |
| Migrate "service ids ddos-protection threshold xxx" to "service ids ddos-protection general threshold xxx" Add new threshold types: set service ids ddos-protection threshold tcp xxx set service ids ddos-protection threshold udp xxx set service ids ddos-protection threshold icmp xxx | |||
| 2022-09-26 | T4700: Firewall: add interface matching criteria | Nicolas Fort | |
| 2022-09-25 | interfaces: T4709: raise minimum TCP MSS clamping value | initramfs | |
| This commit raises the minimum TCP MSS clamping range to the MSS value corresponding to the minimum packet size that must be accepted for IPv4. | |||
| 2022-09-22 | xml: T4698: validating a range must be explicitly enabled in the validator | Christian Poessinger | |
| This extends commit 28573ffe4f ("xml: T4698: drop validator name="range" and replace it with numeric"). The first version allowed both a range and discrete numbers to be validated by the numeric validator. This had a flaw as both 22 and 22-30 were valid at the same time. The generic "port-number.xml.i" building block only allows a discrete number. Now if a user set port 22-30 for e.g. SSH the daemon did no longer start. This is why range validation must be explicitly enabled. | |||
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |