summaryrefslogtreecommitdiff
path: root/interface-definitions
AgeCommit message (Collapse)Author
2021-04-29bgp: xml: T2387: restructure include files and make them easier to recognizeChristian Poessinger
2021-04-27Merge pull request #818 from sever-sever/T2216-portsChristian Poessinger
container: T2216: Add binding for ports and volumes
2021-04-27container: T2216: Add binding for ports and volumessever-sever
2021-04-25lldp: T1898: add completion helper to list assigned IPs for management-addressChristian Poessinger
2021-04-25policy: T3490: lower priority to keep up with Policy-Based-Routing (PBR)Christian Poessinger
PBR is implemented in vyatta-cfg-firewall and the new policy framework uses one script to rule them all that is triggered from the main policy level. As the PBR configuration is a subnode with a lower priority we get an inversion, thus all policy based configuration which applies to FRR only, is set to priority 200. Automated tests did not show any regression.
2021-04-21containers: T2216: refine implementationChristian Poessinger
This commit is a cleanup and refinement of the container hosting implementation. - Renamed CLI node ipv4-prefix -> prefix so both IPv4 and IPv6 prefix can be supplied in the future. This is currently limited to IPv4 only as when using IPv6 networks in combination with IPv4 the IPv4 prefix is altered randomly - De-nested if clauses - Use "for foo, bar in baz.items()" to more easily iterate of dictionary values, this means "bar" can be used to access "baz[foo]"
2021-04-20xml: T3488: when using regex one must use ^ and $ when checking string literalsChristian Poessinger
2021-04-20interfaces: T3488: harden regex for supplied address stringChristian Poessinger
The previously used regex allowed an address value of "dhcpfoo" which is invalid and will raise an OSError. Harden the regex that it explicitly must be dhcp or dhcpv6.
2021-04-18xml: policy: T2425: add additional valueHelp or completionHelp nodesChristian Poessinger
* community-list gained proper valueHelp nodes * route-map set community gained proper valueHelp nodes * route-map set comm-list now has a completion helper searching in "policy community-list"
2021-04-17policy: T2425: re-implement "policy" tree from vyatta-cfg-quagga in XML/PythonChristian Poessinger
2021-04-15bgp: T2771: add vpn, multicast, flowspec address familiesCheeze-It
In this commit we add more address families within BGP. This should bring VyOS the ability to enable the rest of the capabilities within FRR. Co-authored-by: Cheeze_It <none@none.com>
2021-04-14policy: T2425: rename files from policy-list to policyChristian Poessinger
2021-04-13Merge pull request #801 from sever-sever/T2216-podChristian Poessinger
containers: T2216: Add podman for containers
2021-04-12rip: T3328: route-map to zebra/kernel can not be removedChristian Poessinger
Removing the Zebra/Linux Kernel route-map added by "set protocols rip route-map" was not removed once applied. This was because the removal must happen within the zebra daemon and not ripd.
2021-04-12containers: T2216: Add podman for containerssever-sever
2021-04-09bgp: evpn: T1513: add support for ipv4/ipv6 prefix routes advertisementsChristian Poessinger
set vrf name red protocols bgp address-family l2vpn-evpn advertise ipv4 unicast
2021-04-09bgp: T1711: remove extra script completion helper on peer-groupsChristian Poessinger
After commit 73557d68 ("bgp: T1711: remove ASN tagNode and move to 'local-as'") when the BGP tag node was removed there is no need anymore for a script based completion helper, we can rather rely on the build in "path" variant.
2021-04-09tunnel: T3030: re-enable erspan version 2 supportChristian Poessinger
This was not possible due to a regression in iproute2 where the erspan_dir key did not have a value. See [1] for more information. [1]: https://lore.kernel.org/netdev/3ac544c09842410fb863b332917a03ad@poessinger.com/
2021-04-08isis: T2271: zebra route-map can only be set for default VRFChristian Poessinger
2021-04-08ospf: T2271: zebra route-map can only be set for default VRFChristian Poessinger
2021-04-08bgp: T2271: zebra route-map can only be set for default VRFChristian Poessinger
2021-04-08xml: route-map: add missing constraintsChristian Poessinger
Port over the regex used in the old node.def code-base and make this limitation also live on the new CLI interface.
2021-04-08isis: T1316: re-use common route-map XML building blockChristian Poessinger
2021-04-08static: T3280: re-use common route-map XML building blockChristian Poessinger
2021-04-07vrf: T3344: re-add virtual network identifierChristian Poessinger
Commit 548d9057e3e (vrf: T3344: move dynamic routing protocols under "vrf name <name> protocols") temporary removed the possibility to specify the VNI for a given VRF to to changing of the CLI configuration nodes. As VNI is set inside zebra, we can re-use the now widely deployed frr python library to configure and change the configuration without any interference to other FRR daemons.
2021-04-05tunnel: T3030: move erspan type into regular tunnel interfaceChristian Poessinger
Instead of having a dedicated ERSPAN interface type, rather move the specifics into "interface tunnel". A migrator is not needed as there is yet no LTS release with this feature and this is considered experimental.
2021-04-02interfaces: dhcp-client: T3454: add reject optionCharles Surett
Sometimes a modem might give a local IP before it retrieves a WAN IP. This can be an issue with failover routes, since the default route will get overridden.
2021-04-02Makefile: fix logic to detect empty "node.def" filesChristian Poessinger
Commit 5b22ebae ("T3170: check if any generated node.def files are empty") added an initial test to find empty node.def files created by build-command-templates or build-command-op-templates. The problem was that GNU find always returns 0, thus the condition to bail out on error was always met. This has been corrected to return false on hits only.
2021-04-02Makefile: T1579: do not remove interfaces "node.def" file anymoreChristian Poessinger
... this has been migrated to vyos-1x.
2021-04-02Revert "static: route: arp: T3170: prevent empty node.def from beeing generated"Christian Poessinger
This reverts commit d8c27642a3753513ae1d3c433fa46858a5ee946c.
2021-04-01static: route: arp: T3170: prevent empty node.def from beeing generatedChristian Poessinger
Currently if there are XML nodes defined in multiple places it can and will happen that one overrides the other. In this case, the "protocols static arp" definition file overwrites the node.def file in the "protocols static" folder that had a priority - the priority is essential for l2tpv3 to work.
2021-04-01Merge pull request #797 from erkin/currentDaniil Baturin
conf-mode: Add Dvorak layout
2021-04-01Add Dvorak layouterkin
2021-03-29bgp: T1711: remove ASN tagNode and move to "local-as"Christian Poessinger
Every time when set configuration bgp, you need set AS number. There is very less benefit in this system so the AS number is moved from a tagNode level down to a leafNode with the name "local-as", same as on the neighbor or peer-group level. This changes the CLI configuration from: set protocols bgp 100 neighbor 10.10.1.2 remote-as 200 to set protocols bgp local-as 100 set protocols bgp neighbor 10.10.1.2 remote-as 200
2021-03-23vrf: T31: bump priority to 299 - still before any interface or serviceChristian Poessinger
2021-03-21isis: T3417: drop artificial "domain" node identifying the IS-IS process nameChristian Poessinger
As we and FRR do not support multiple FRR process instances, there is no need to make this configurable for a user. We rather rely on a solid default "VyOS".
2021-03-21isis: T3417: add VRF supportChristian Poessinger
VRF support can be tested using: set vrf name red table 1000 set vrf name red protocols isis domain FOOO set vrf name red protocols isis net 49.0001.1921.6800.1002.00 set vrf name red protocols isis interface eth1
2021-03-21isis: T3417: move from cli tagNode to nodeChristian Poessinger
As there can only be one running IS-IS process (FRR limitation) there is no need in having a tagNode here. This adds artifical restrictions/limitations when moving on to support VRFs for IS-IS protocol.
2021-03-21policy: xml: T2425: add missing priority tagsChristian Poessinger
2021-03-21xml: isis: ospf: re-arrange include blocksChristian Poessinger
2021-03-19bridge: T3415: add port isolation / private-vlan optionChristian Poessinger
Private VLAN, also known as port isolation, is a technique in computer networking where a VLAN contains switch ports that are restricted such that they can only communicate with a given "uplink". The restricted ports are called "private ports". Each private VLAN typically contains many private ports, and a single uplink. The uplink will typically be a port (or link aggregation group) connected to a router, firewall, server, provider network, or similar central resource. Q: https://en.wikipedia.org/wiki/Private_VLAN
2021-03-19isis: T2495: add missing priority nodeChristian Poessinger
2021-03-19ripng: T3281: add missing priority nodeChristian Poessinger
2021-03-19rip: T2547: add missing priority nodeChristian Poessinger
2021-03-17vrf: T3344: adjust routing protocol priorities to be +1 after default VRFChristian Poessinger
2021-03-17static: T3280: add missing and required priority xml node to avoid racesChristian Poessinger
2021-03-17ipv6: eui64: T3413: add custom validatorChristian Poessinger
VyOS 1.2 (crux) rejected prefixes other then of site /64. [ interfaces ethernet eth0 ipv6 address eui64 2006:ab00:abe1::2/127 ] Error: Prefix lenght is 127. It must be 64. Same should be done on VyOS 1.3 and newer
2021-03-17ipv6: eui64: T3413: improve valueHelp string for address assignmentChristian Poessinger
2021-03-14xml: accel-ppp: move building blocks to subfolderChristian Poessinger
As the amount of include files now has reached a certain amount, it is getting more and more crowsded, thuse introducing "per topic" subdirectories on the filesystem to keep a clean structure makes sense.
2021-03-14static: T3280: move building blocks to subfolderChristian Poessinger
As the amount of include files now has reached a certain amount, it is getting more and more crowsded, thuse introducing "per topic" subdirectories on the filesystem to keep a clean structure makes sense.