| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2023-01-18 | T4857: change description in cli, and change word oid to uppercase OIDs in ↵ | Nicolas Fort | |
| warning message | |||
| 2023-01-18 | T4857: Cleaning pr | Nicolas Fort | |
| 2022-12-19 | T4886: Firewall and route policy: Add connection-mark feature to vyos. | Nicolas Fort | |
| 2022-12-17 | Merge pull request #1669 from vfreex/dhcp-v6-only-option-1.4 | Christian Poessinger | |
| T4832: dhcp: Add IPv6-only dhcp option support (RFC 8925) | |||
| 2022-12-17 | Merge pull request #1626 from nicolas-fort/fwall_group_interface | Christian Poessinger | |
| T4780: Firewall: add firewall groups in firewall. Extend matching cri… | |||
| 2022-12-17 | Merge pull request #1709 from initramfs/current-T4882 | Christian Poessinger | |
| firewall: T4882: add missing ICMPv6 type names | |||
| 2022-12-17 | Merge pull request #1712 from roedie/T4809-2 | Christian Poessinger | |
| T4809: radvd: Allow the use of AdvRASrcAddress | |||
| 2022-12-17 | Merge pull request #1358 from sever-sever/T1237 | Christian Poessinger | |
| routing: T1237: Add new feature failover route | |||
| 2022-12-16 | T4809: radvd: Allow the use of AdvRASrcAddress | Sander Klein | |
| This add the AdvRASrcAddress configuration option to configure a source address for the router advertisements. The source address still must be configured on the system. This is useful for VRRP setups where you want fe80::1 on the VRRP interface for cleaner VRRP failovers. | |||
| 2022-12-15 | firewall: T4882: add missing ICMPv6 type names | initramfs | |
| 2022-12-14 | routing: T1237: Add new feature failover route | Viacheslav Hletenko | |
| Failover route allows to install static routes to the kernel routing table only if required target or gateway is alive When target or gateway doesn't respond for ICMP/ARP checks this route deleted from the routing table Routes are marked as protocol 'failover' (rt_protos) cat /etc/iproute2/rt_protos.d/failover.conf 111 failover ip route add 203.0.113.1 metric 2 via 192.0.2.1 dev eth0 proto failover $ sudo ip route show proto failover 203.0.113.1 via 192.0.2.1 dev eth0 metric 1 So we can safely flush such routes | |||
| 2022-12-14 | Merge pull request #1706 from jestabro/validator-file-exists | John Estabrook | |
| validators: T4798: replace python file-exists validator with file-path | |||
| 2022-12-14 | validators: T4875: use file-path to replace validator 'interface-name' | John Estabrook | |
| 2022-12-13 | validators: T4798: replace python file-exists validator with file-path | John Estabrook | |
| 2022-12-11 | sstp: T4384: initial implementation of SSTP client CLI | Christian Poessinger | |
| vyos@vyos# show interfaces sstpc sstpc sstpc10 { authentication { password vyos user vyos } server sstp.vyos.net ssl { ca-certificate VyOS-CA } } | |||
| 2022-12-11 | pppoe: xml: T4792: split "no-peer-dns" CLI node into building block | Christian Poessinger | |
| 2022-12-11 | xml: ddns: T4792: split "server" CLI node into building block | Christian Poessinger | |
| 2022-12-08 | T4117: Fix for L2TP DAE CoA server configuration | Viacheslav Hletenko | |
| Fix l2tp dae server template and python config dict for correctlly handling Dynamic Authorization Extension server configuration | |||
| 2022-12-02 | T4854: route reflector allows to apply route-maps | fett0 | |
| 2022-12-02 | T4858: Fix l3vpn Route Distinguisher validator | fett0 | |
| 2022-11-29 | xml: telegraf: T4680: add missing comment in listen-address-single.xml.i | Christian Poessinger | |
| 2022-11-25 | veth: T4825: add dhcp(v6) client options to CLI | Christian Poessinger | |
| 2022-11-24 | Merge pull request #1641 from Rain/T4612-arbitrary-netmasks | Christian Poessinger | |
| firewall: T4612: Support arbitrary netmasks | |||
| 2022-11-24 | veth: T4825: minor improvements on XML peer-name handling | Christian Poessinger | |
| 2022-11-24 | Merge branch 'T4825' of https://github.com/sever-sever/vyos-1x into t4825-veth | Christian Poessinger | |
| * 'T4825' of https://github.com/sever-sever/vyos-1x: T4825: Add basic smoketest for veth interfaces T4825: Add interface type veth | |||
| 2022-11-24 | T4825: Add interface type veth | Viacheslav Hletenko | |
| Add interface type veth (Virtual ethernet) One of the usecases it's interconnect different vrf's and default vrf via bridge set interfaces virtual-ethernet veth0 peer-name 'veth1010' set interfaces virtual-ethernet veth1010 address '10.0.0.10/24' set interfaces virtual-ethernet veth1010 peer-name 'veth0' set interfaces virtual-ethernet veth1010 vrf 'foo' set interfaces bridge br0 address '10.0.0.1/24' set interfaces bridge br0 member interface veth0 | |||
| 2022-11-22 | container: T4834: Limit network names to 11 characters (15 char max ↵ | sarthurdev | |
| including "cni-" prefix) * Error: unable to start container "<id>": plugin type="bridge" failed (add): cni plugin bridge failed: failed to create bridge "cni-thisismorethan15chars": could not add "cni-thisismorethan15chars": numerical result out of range | |||
| 2022-11-21 | T4832: dhcp: Add IPv6-only dhcp option support (RFC 8925) | Yuxiang Zhu | |
| Clients supporting this DHCP option (DHCP option 108, RFC 8925) will disable its IPv4 network stack for configured number of seconds and operate in IPv6-only mode. This option is known to work on iOS 15+ and macOS 12.0.1+. Example command: ```sh set service dhcp-server shared-network-name LAN6 subnet 192.168.64.0/24 ipv6-only-preferred 0 ``` | |||
| 2022-11-19 | T4780: Firewall: add firewall groups in firewall. Extend matching criteria ↵ | Nicolas Fort | |
| so this new group can be used in inbound and outbound matcher | |||
| 2022-11-18 | T4826: Fix login pubkey key type ed25519-sk ecdsa-sk | Viacheslav Hletenko | |
| Requires full key type name like sk-ecdsa-sha2-nistp256@openssh.com and sk-ssh-ed25519@openssh.com | |||
| 2022-11-17 | Merge pull request #1654 from sarthurdev/pbr_refactor | Christian Poessinger | |
| policy: T2199: T4605: Migrate policy route interface node | |||
| 2022-11-13 | T4813: add l3vpn over gre option from route-map | fett0 | |
| 2022-11-13 | l3VPN : T4182: add l3vpn over gre option from route-map | fett0 | |
| 2022-11-11 | policy: T2199: T4605: Migrate policy route interface to `policy route|route6 ↵ | sarthurdev | |
| <name> interface <ifname>` * Include refactor to policy route to allow for deletion of mangle table instead of complex cleanup * T4605: Rename mangle table to vyos_mangle | |||
| 2022-11-10 | dns: T738: add CLI option for PowerDNS local-port | Zen3515 | |
| 2022-11-05 | container: T4802: support per container shared-memory size configuration | Christian Poessinger | |
| Size of /dev/shm within a container can be defined via --shm-size when invoking the container. Add corresponding CLI node. | |||
| 2022-11-03 | Merge pull request #1633 from sarthurdev/fqdn | Christian Poessinger | |
| firewall: T970: T1877: Add source/destination fqdn, refactor domain resolver, firewall groups in NAT | |||
| 2022-11-03 | nat: T1877: T970: Add firewall groups to NAT | sarthurdev | |
| 2022-11-03 | firewall: T970: Refactor domain resolver, add firewall source/destination ↵ | sarthurdev | |
| `fqdn` node | |||
| 2022-11-03 | validators: T4795: migrate mac-address python validator to validate-value | Christian Poessinger | |
| Instead of spawning the Python interpreter for every mac-address to validate, rather use the base validate-value OCaml implementation which is much faster. This removes redundant code and also makes the CLI more responsive. Validator is moved out to a dedicated file instead of using XML inlined <regex> for the reason of re-usability. So if that regex needs to be touched again - it can all happen in one single file. | |||
| 2022-11-03 | xml: T4795: superseed allowed-vlan validator by numeric range validator | Christian Poessinger | |
| Reduce CPU time when spawning the python interpreter. Same can be done by the numeric validator. | |||
| 2022-11-03 | xml: T4795: provide common and re-usable XML definitions for policy | Christian Poessinger | |
| Remove duplicated code and move to single-source of truth. | |||
| 2022-11-01 | login: T4750: add ecdsa-sk and ed25519-sk as supported public key type | Christian Poessinger | |
| 2022-10-31 | ipsec: T4787: add support for road-warrior/remote-access RADIUS timeout | Christian Poessinger | |
| This enabled users to also use 2FA/MFA authentication with a radius backend as there is enough time to enter the second factor. | |||
| 2022-10-30 | snmp: T4785: allow @, * and # in SNMP community name | Christian Poessinger | |
| 2022-10-29 | snmp: T4785: allow ! in community name | Christian Poessinger | |
| 2022-10-29 | static: T4784: add description node for static route/route6 tagNodes | Christian Poessinger | |
| 2022-10-25 | graphql: T4574: add interface definitions for authentication settings | John Estabrook | |
| 2022-10-21 | graphql: T4768: change name of api child node from 'gql' to 'graphql' | John Estabrook | |
| 2022-10-17 | ssh: T4720: Ability to configure SSH-server HostKeyAlgorithms | Viacheslav Hletenko | |
| Ability to configure SSH-server HostKeyAlgorithms. Specifies the host key signature algorithms that the server offers. Can accept multiple values. | |||
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |
path: root/interface-definitions