| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2022-12-17 | Merge pull request #1626 from nicolas-fort/fwall_group_interface | Christian Poessinger | |
| T4780: Firewall: add firewall groups in firewall. Extend matching cri… | |||
| 2022-12-17 | Merge pull request #1709 from initramfs/current-T4882 | Christian Poessinger | |
| firewall: T4882: add missing ICMPv6 type names | |||
| 2022-12-17 | Merge pull request #1712 from roedie/T4809-2 | Christian Poessinger | |
| T4809: radvd: Allow the use of AdvRASrcAddress | |||
| 2022-12-17 | Merge pull request #1358 from sever-sever/T1237 | Christian Poessinger | |
| routing: T1237: Add new feature failover route | |||
| 2022-12-16 | T4809: radvd: Allow the use of AdvRASrcAddress | Sander Klein | |
| This add the AdvRASrcAddress configuration option to configure a source address for the router advertisements. The source address still must be configured on the system. This is useful for VRRP setups where you want fe80::1 on the VRRP interface for cleaner VRRP failovers. | |||
| 2022-12-15 | firewall: T4882: add missing ICMPv6 type names | initramfs | |
| 2022-12-14 | routing: T1237: Add new feature failover route | Viacheslav Hletenko | |
| Failover route allows to install static routes to the kernel routing table only if required target or gateway is alive When target or gateway doesn't respond for ICMP/ARP checks this route deleted from the routing table Routes are marked as protocol 'failover' (rt_protos) cat /etc/iproute2/rt_protos.d/failover.conf 111 failover ip route add 203.0.113.1 metric 2 via 192.0.2.1 dev eth0 proto failover $ sudo ip route show proto failover 203.0.113.1 via 192.0.2.1 dev eth0 metric 1 So we can safely flush such routes | |||
| 2022-12-14 | Merge pull request #1706 from jestabro/validator-file-exists | John Estabrook | |
| validators: T4798: replace python file-exists validator with file-path | |||
| 2022-12-14 | validators: T4875: use file-path to replace validator 'interface-name' | John Estabrook | |
| 2022-12-13 | validators: T4798: replace python file-exists validator with file-path | John Estabrook | |
| 2022-12-11 | sstp: T4384: initial implementation of SSTP client CLI | Christian Poessinger | |
| vyos@vyos# show interfaces sstpc sstpc sstpc10 { authentication { password vyos user vyos } server sstp.vyos.net ssl { ca-certificate VyOS-CA } } | |||
| 2022-12-11 | pppoe: xml: T4792: split "no-peer-dns" CLI node into building block | Christian Poessinger | |
| 2022-12-11 | xml: ddns: T4792: split "server" CLI node into building block | Christian Poessinger | |
| 2022-12-08 | T4117: Fix for L2TP DAE CoA server configuration | Viacheslav Hletenko | |
| Fix l2tp dae server template and python config dict for correctlly handling Dynamic Authorization Extension server configuration | |||
| 2022-12-02 | T4854: route reflector allows to apply route-maps | fett0 | |
| 2022-12-02 | T4858: Fix l3vpn Route Distinguisher validator | fett0 | |
| 2022-11-29 | xml: telegraf: T4680: add missing comment in listen-address-single.xml.i | Christian Poessinger | |
| 2022-11-25 | veth: T4825: add dhcp(v6) client options to CLI | Christian Poessinger | |
| 2022-11-24 | Merge pull request #1641 from Rain/T4612-arbitrary-netmasks | Christian Poessinger | |
| firewall: T4612: Support arbitrary netmasks | |||
| 2022-11-24 | veth: T4825: minor improvements on XML peer-name handling | Christian Poessinger | |
| 2022-11-24 | Merge branch 'T4825' of https://github.com/sever-sever/vyos-1x into t4825-veth | Christian Poessinger | |
| * 'T4825' of https://github.com/sever-sever/vyos-1x: T4825: Add basic smoketest for veth interfaces T4825: Add interface type veth | |||
| 2022-11-24 | T4825: Add interface type veth | Viacheslav Hletenko | |
| Add interface type veth (Virtual ethernet) One of the usecases it's interconnect different vrf's and default vrf via bridge set interfaces virtual-ethernet veth0 peer-name 'veth1010' set interfaces virtual-ethernet veth1010 address '10.0.0.10/24' set interfaces virtual-ethernet veth1010 peer-name 'veth0' set interfaces virtual-ethernet veth1010 vrf 'foo' set interfaces bridge br0 address '10.0.0.1/24' set interfaces bridge br0 member interface veth0 | |||
| 2022-11-22 | container: T4834: Limit network names to 11 characters (15 char max ↵ | sarthurdev | |
| including "cni-" prefix) * Error: unable to start container "<id>": plugin type="bridge" failed (add): cni plugin bridge failed: failed to create bridge "cni-thisismorethan15chars": could not add "cni-thisismorethan15chars": numerical result out of range | |||
| 2022-11-19 | T4780: Firewall: add firewall groups in firewall. Extend matching criteria ↵ | Nicolas Fort | |
| so this new group can be used in inbound and outbound matcher | |||
| 2022-11-18 | T4826: Fix login pubkey key type ed25519-sk ecdsa-sk | Viacheslav Hletenko | |
| Requires full key type name like sk-ecdsa-sha2-nistp256@openssh.com and sk-ssh-ed25519@openssh.com | |||
| 2022-11-17 | Merge pull request #1654 from sarthurdev/pbr_refactor | Christian Poessinger | |
| policy: T2199: T4605: Migrate policy route interface node | |||
| 2022-11-13 | T4813: add l3vpn over gre option from route-map | fett0 | |
| 2022-11-13 | l3VPN : T4182: add l3vpn over gre option from route-map | fett0 | |
| 2022-11-11 | policy: T2199: T4605: Migrate policy route interface to `policy route|route6 ↵ | sarthurdev | |
| <name> interface <ifname>` * Include refactor to policy route to allow for deletion of mangle table instead of complex cleanup * T4605: Rename mangle table to vyos_mangle | |||
| 2022-11-10 | dns: T738: add CLI option for PowerDNS local-port | Zen3515 | |
| 2022-11-05 | container: T4802: support per container shared-memory size configuration | Christian Poessinger | |
| Size of /dev/shm within a container can be defined via --shm-size when invoking the container. Add corresponding CLI node. | |||
| 2022-11-03 | Merge pull request #1633 from sarthurdev/fqdn | Christian Poessinger | |
| firewall: T970: T1877: Add source/destination fqdn, refactor domain resolver, firewall groups in NAT | |||
| 2022-11-03 | nat: T1877: T970: Add firewall groups to NAT | sarthurdev | |
| 2022-11-03 | firewall: T970: Refactor domain resolver, add firewall source/destination ↵ | sarthurdev | |
| `fqdn` node | |||
| 2022-11-03 | validators: T4795: migrate mac-address python validator to validate-value | Christian Poessinger | |
| Instead of spawning the Python interpreter for every mac-address to validate, rather use the base validate-value OCaml implementation which is much faster. This removes redundant code and also makes the CLI more responsive. Validator is moved out to a dedicated file instead of using XML inlined <regex> for the reason of re-usability. So if that regex needs to be touched again - it can all happen in one single file. | |||
| 2022-11-03 | xml: T4795: superseed allowed-vlan validator by numeric range validator | Christian Poessinger | |
| Reduce CPU time when spawning the python interpreter. Same can be done by the numeric validator. | |||
| 2022-11-03 | xml: T4795: provide common and re-usable XML definitions for policy | Christian Poessinger | |
| Remove duplicated code and move to single-source of truth. | |||
| 2022-11-01 | login: T4750: add ecdsa-sk and ed25519-sk as supported public key type | Christian Poessinger | |
| 2022-10-31 | ipsec: T4787: add support for road-warrior/remote-access RADIUS timeout | Christian Poessinger | |
| This enabled users to also use 2FA/MFA authentication with a radius backend as there is enough time to enter the second factor. | |||
| 2022-10-30 | snmp: T4785: allow @, * and # in SNMP community name | Christian Poessinger | |
| 2022-10-29 | snmp: T4785: allow ! in community name | Christian Poessinger | |
| 2022-10-29 | static: T4784: add description node for static route/route6 tagNodes | Christian Poessinger | |
| 2022-10-25 | graphql: T4574: add interface definitions for authentication settings | John Estabrook | |
| 2022-10-21 | graphql: T4768: change name of api child node from 'gql' to 'graphql' | John Estabrook | |
| 2022-10-17 | ssh: T4720: Ability to configure SSH-server HostKeyAlgorithms | Viacheslav Hletenko | |
| Ability to configure SSH-server HostKeyAlgorithms. Specifies the host key signature algorithms that the server offers. Can accept multiple values. | |||
| 2022-10-14 | login: 2fa: T874: fix Google authenticator issues | Christian Poessinger | |
| Move default values of TOTP configuration from a global to a per user setting. This makes the entire code easier as no global configuration must be blended into the per user config dict. Also it should be possible to set the authentication window "multiple concurrent keys" individual per user. set system login user vyos authentication otp key 'gzkmajid7na2oltajs4kbuq7lq' set system login user vyos authentication plaintext-password 'vyos' | |||
| 2022-10-13 | T4739: OSPF segment routing being refactored | Cheeze_It | |
| 2022-10-13 | T4739: ISIS segment routing being refactored | Cheeze_It | |
| 2022-10-13 | monitoring: T4312: Ability to set IP address in the URL | Viacheslav Hletenko | |
| Use common "url.xml" which allow URL as domain name or IP entrie | |||
| 2022-10-12 | Merge pull request #1555 from goodNETnick/ssh_otp | Christian Poessinger | |
| system login: T874: add 2FA support for local and ssh authentication | |||
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |
path: root/interface-definitions