summaryrefslogtreecommitdiff
path: root/interface-definitions
AgeCommit message (Collapse)Author
2020-02-27openvpn: T2075: add support for OpenVPN tls-crypt file optionChristian Poessinger
Encrypt and authenticate all control channel packets with the key from keyfile. Encrypting (and authenticating) control channel packets: * provides more privacy by hiding the certificate used for the TLS connection * makes it harder to identify OpenVPN traffic as such * provides "poor-man's" post-quantum security, against attackers who will never know the pre-shared key (i.e. no forward secrecy)
2020-02-25login: T1948: sync banner and login node.def fileChristian Poessinger
2020-02-25Revert "login: T1948: also set properties for banner"Christian Poessinger
This reverts commit 998361ed0ac972a6856f373f1fc86e8a73cf141b.
2020-02-25login: T1948: also set properties for bannerChristian Poessinger
2020-02-25login: T1948: migrade local and radius configurationsChristian Poessinger
Splitting was not a good idea. By combining both we can create a RADIUS server XML include file which can be reused by multiple implementations to get a uniformed CLI for the users.
2020-02-25login: radius: T2071: support disabling individual serverChristian Poessinger
2020-02-25login: user: radius: T1948: only allow IPv4 server addressChristian Poessinger
2020-02-23service-pppoe: T2067: Allow setting multiple service-nameshagbard
2020-02-23pppoe: T1318: declutter name-server CLI nodesChristian Poessinger
Instead of letting the user choose between auto and none where auto is default, it makes more sesne to just offer an option to disable the default behavior.
2020-02-23pppoe: T1318: migrate user-id and password nodes under an authentication nodeChristian Poessinger
2020-02-23pppoe: T1318: rename link to source-interfaceChristian Poessinger
2020-02-23pppoe: T1318: use include files for disable and descriptionxChristian Poessinger
2020-02-23pppoe: T1318: rephrase help text on default-routeChristian Poessinger
2020-02-23interface-definitions: include: disable: rephrase help textChristian Poessinger
2020-02-23pppoe: T1318: increase priority so PPPoE is run after bond interfacesChristian Poessinger
2020-02-23pppoe: T1318: support interface descriptionChristian Poessinger
2020-02-23pppoe: T1318: add first version of new XML/Python implementationChristian Poessinger
vyos@vyos# show interfaces pppoe pppoe pppoe0 { default-route force link eth2.7 mtu 400 name-server auto password 12345678 user-id vyos@vyos.io }
2020-02-13macvlan: T1635: migrate pseudo-ethernet interface definition to XML/PythonChristian Poessinger
2020-02-13ddclient: T1908: CloudFlares zone option can now also be specified manuallyChristian Poessinger
If there is no zone option given it will be "guessed" as in the past. This means (hostname -> resulting zone entry) domain.com -> com foo.domain.com -> domain.com bar.foo.domain.com -> foo.domain.com I have zero experience in the CloudFlare zone option what it is and what it does. SO maybe we still have a chance to auto render this setting.
2020-02-10banner: T2024: fix type on pre-login nodeChristian Poessinger
2020-02-10banner: T2024: migrate "system login banner" to XML/Python representationChristian Poessinger
2020-02-09user: remove ssh-key completionHelperChristian Poessinger
2020-02-09user: T2020: bugfix on wrong regex preventing ssh-ed25519 public keysChristian Poessinger
2020-02-05Merge branch 't1948-system-login' of github.com:c-po/vyos-1x into currentChristian Poessinger
* 't1948-system-login' of github.com:c-po/vyos-1x: radius: T1948: add libnss-mapname support radius: T1948: rename server dictionary radius: T1948: supply PAM configuration template user: T1948: fix system user creation ogin: user: radius: T1948: use discrete configuration for each system login: T1948: remove obsolete config nodes "group" and "level" login: T1948: SSH keys can only be added after user has been created login: T1948: initial support for RADIUS configuration login: T1948: support for SSH keys login: T1948: add/remove local users login: T1948: initial rewrite in XML/Python options: T1919: remove broken comment
2020-02-05ogin: user: radius: T1948: use discrete configuration for each systemChristian Poessinger
Split combined XML/Python code to individual code for local user accounts and RADIUS authenticated accounts.
2020-02-06Merge pull request #212 from thomas-mangin/typoDaniil Baturin
fix typo in interfaces l2tpv3 encapsulation property
2020-02-05fix typo in interfaces l2tpv3 encapsulation propertyThomas Mangin
2020-02-05service https: T1585: add support for letsencrypt certificatesJohn Estabrook
2020-02-04service https: T1443: reorder elements for clarityJohn Estabrook
2020-02-02login: T1948: add/remove local usersChristian Poessinger
2020-02-02login: T1948: initial rewrite in XML/PythonChristian Poessinger
2020-02-01sstp: shorten completion helper on "protocols"Christian Poessinger
2020-02-01sstp: add XML valueHelp node for subnet definitionChristian Poessinger
2020-01-30vpn-pptp: adjusting name schemeshagbard
2020-01-30Merge branch 't1896-remove-lldp-civic' of github.com:c-po/vyos-1x into currentChristian Poessinger
* 't1896-remove-lldp-civic' of github.com:c-po/vyos-1x: lldp: T1896: remove MED civic based location information
2020-01-26service-ipoe: rename scripts and schemeshagbard
2020-01-26Interfaces: unify interface help textChristian Poessinger
2020-01-26WireGuard: rephrase constraint error messageChristian Poessinger
2020-01-26lldp: T1896: remove MED civic based location informationChristian Poessinger
Civic based location information was not working for quiet some time and as an unused feature we should drop it to keep the codebase more simple and maintainable.
2020-01-25bonding: fix "arp-monitor target" help stringChristian Poessinger
2020-01-24pppoe-server: T1985: Enable ipv6 modules if ipv6 not deniedDmitriyEshenko
2020-01-23service-pppoe: T1956: support PADO-delayhagbard
2020-01-22Merge pull request #202 from zdc/T1953Christian Poessinger
dynamic DNS: T1953: Relaxed service name check
2020-01-16snmpd: T1964: SNMP Script-extensions allows names with spaces,hagbard
but commit fails
2020-01-14vrrp: T1884: Keep transition-script native behaviour and implement ↵DmitriyEshenko
transaction-script 'stop'
2020-01-13vxlan: T1961: Adjusting MTU limitskroy
2020-01-09service-snmp: T1955: snmp - cli config val_help missinghagbard
* set for trap-(source|target)
2020-01-09dynamic DNS: T1953: Relaxed service name checkzsdc
Internally, we can accept more than one server of each type for sending dynamic DNS updates, but due to a strong check in CLI, it is not possible to add more than one server with the same protocol (except "custom", but it allows to add only one more server). The patch relaxing this limitation by allowing adding as many servers with the same protocol, as needed.
2020-01-03ifconfig: T1939: provide abstraction for interface "ip" optionChristian Poessinger
Provide an XML/Python abstraction to * ip disable-arp-filter * ip enable-arp-accept * ip enable-arp-announce * ip enable-arp-ignore The old implementation can co-exist until the last interfaces have been migrated.
2020-01-02xml: vif-s: convert DOS to UNIX line endingsChristian Poessinger
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-11 09:41:26 +0000