| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-03-20 | Merge pull request #4402 from c-po/wireguard-key-T7246 | Christian Breunig | |
| wireguard: T7246: verify Base64 encoded 32byte boundary on keys | |||
| 2025-03-20 | wireguard: T7246: verify Base64 encoded 32byte boundary on keys | Christian Breunig | |
| Not 31 bytes or 33 bytes, but exactly 32. This matters, because 32 does not divide evenly by .75, so there's a padding character and the penultimate character does not include the whole base64 alphabet. Extend the base64 validator with an optional argument to define the length to match of the decrypted Base64 encoded string. Source: https://lists.zx2c4.com/pipermail/wireguard/2020-December/006222.html | |||
| 2025-03-18 | Merge pull request #4399 from sever-sever/T7252 | Daniil Baturin | |
| T7252: Allow vpptun and vpptap for constraint validator | |||
| 2025-03-18 | bgp: T7157: Allow using route-maps for VRF route leaking in BGP (#4404) | aapostoliuk | |
| * bgp: T7157: Allow using route-maps for VRF route leaking in BGP Added the possibility of using route-map in route leaking. * Improve the constraint error message --------- Co-authored-by: Daniil Baturin <daniil@baturin.org> | |||
| 2025-03-17 | T7252: Allow vpptun and vpptap for constraint validator | Viacheslav Hletenko | |
| It fixes cases whey we want to use VPP kernel interfaces for OSPF But VPP kernel interface is not exists on this step set vpp interfaces loopback lo0 kernel-interface 'vpptun0' set protocols ospf interface vpptun0 area '0' Incorrect path /sys/class/net/vpptun0: no such file or directory | |||
| 2025-03-11 | Merge pull request #4321 from sskaje/T7092 | Daniil Baturin | |
| T7092: Add Container Registry Mirror | |||
| 2025-03-11 | T7092: Change validators: regex to host-name|address + port + path | sskaje | |
| 2025-03-11 | T7092: Update interface-definitions/container.xml.in | sskaje | |
| Co-authored-by: Daniil Baturin <daniil@baturin.org> | |||
| 2025-03-04 | syslog: T6989: add option do disable "MARK"syslog-typos-T6989 | Christian Breunig | |
| New CLI command set system syslog marker disable | |||
| 2025-03-04 | syslog: T6989: fix validator range to match completion helper | Christian Breunig | |
| 2025-02-27 | Merge pull request #4374 from sever-sever/T7204 | Daniil Baturin | |
| T7204: Container add capability MKNOD | |||
| 2025-02-27 | Merge pull request #4371 from talmakion/bugfix/T7116/remove-obsolete-community | Christian Breunig | |
| policy: T7116: Remove unsupported use of BGP community "internet" | |||
| 2025-02-27 | Merge pull request #4372 from aapostoliuk/T7118-circinus | Christian Breunig | |
| T7118: Added the ability to redistribute NHRP routes to other protocols | |||
| 2025-02-27 | T7204: Container add capability MKNOD | Viacheslav Hletenko | |
| 2025-02-27 | Merge pull request #4373 from aapostoliuk/T7158-circinus | Christian Breunig | |
| policy: T7158: Added match source-vrf to route-map | |||
| 2025-02-26 | wlb: T7196: Migrate interface wildcards to nftables format | Simon | |
| * wlb: T7196: Migrate interface wildcards to nftables format * wlb: T7196: Fix exclude/interface verify check * wlb: T7196: Extra sanity check on ipv4 address function | |||
| 2025-02-26 | policy: T7158: Added match source-vrf to route-map | aapostoliuk | |
| Added match source-vrf to route-map | |||
| 2025-02-26 | T7118: Added the ability to redistribute NHRP routes to other protocols | aapostoliuk | |
| Added the ability to redistribute NHRP routes to: OSPF BGP Babel RIP IS-IS | |||
| 2025-02-26 | policy: T7116: migrate legacy use of "internet" as a well-known community name | Andrew Topp | |
| This has been split into a separate commit in case this is overkill for the fix. 1.2 and 1.3 installs predate the change to FRR that removed support, but "internet" is already broken on 1.4. | |||
| 2025-02-26 | policy: T7116: remove completions & constraints for unsupported community ↵ | Andrew Topp | |
| "internet" | |||
| 2025-02-25 | snmp: T7180: Fixed verification of engineid in snmpv3 (#4366) | aapostoliuk | |
| * snmp: T7180: Fixed verification of engineid in snmpv3 EngineID must be configured if snmpv3 user is configured. Fixed engineid help string. | |||
| 2025-02-25 | Merge pull request #4365 from c-po/lldp-t7165 | Daniil Baturin | |
| lldp: T7165: add support to enable only rx/tx on specific interfaces | |||
| 2025-02-25 | Merge pull request #4364 from natali-rs1985/T7171 | Daniil Baturin | |
| T7171: Add dstport option to GENEVE tunnels | |||
| 2025-02-25 | T7171: Add dstport option to GENEVE tunnels | Nataliia Solomko | |
| 2025-02-24 | lldp: T7165: add support to enable only rx or tx on specific interface | Christian Breunig | |
| LLDP is a stateless protocol which does not necessitate sending to receive advertisements. There are multiple scenarios such as provider peering links in which it is advantageous to receive LLDP but not disclose internal information to the provider. Add new CLI command: * set service lldp interface <name> mode [disable|rx-tx|rx|tx] The default is unchanged and will be rx-tx. Furthermore if an interface has an explicit LLDP disable configured under "set service lldp interface <name> disable" this will be migrated to "set service lldp interface <name> mode disable" | |||
| 2025-02-24 | Merge pull request #4360 from sever-sever/T7190 | Christian Breunig | |
| T7190: Add haproxy default timeout options configurable | |||
| 2025-02-24 | T7190: Add haproxy default timeout options configurable | Viacheslav Hletenko | |
| Add the ability to configurate default timeout and frontend client timeout ``` set load-balancing haproxy service web timeout client '600' set load-balancing haproxy timeout check '4' set load-balancing haproxy timeout client '600' set load-balancing haproxy timeout connect '12' set load-balancing haproxy timeout server '120' ``` | |||
| 2025-02-22 | container: T7185: Allow tmpfs mounts within containers | Alex W | |
| 2025-02-20 | Merge pull request #4353 from natali-rs1985/T5810 | Daniil Baturin | |
| T5810: Add support for RPKI source ip | |||
| 2025-02-20 | Merge pull request #4351 from markh0338/int-group-container-validation | Christian Breunig | |
| firewall: T7177: Update interface-name constraint to allow "pod-" interface names | |||
| 2025-02-19 | T5810: Add support for RPKI source ip | Nataliia Solomko | |
| 2025-02-19 | firewall: T7177: update interface-name.xml.i constraint and smoketest to ↵ | Mark | |
| support pod interfaces from containers | |||
| 2025-02-19 | T6628: IPoE-server rename "static-ip" to "ip-address" for local auth | Nataliia Solomko | |
| 2025-02-13 | bgp: T7163: add CLI route-map and metric support for "redistribute table" | Christian Breunig | |
| * set protocols bgp address-family <ipv4-unicast|ipv6-unicast> redistribute table <n> [metric <n>] [route-map <name>] | |||
| 2025-02-13 | bgp: T7161: fix IPv4/IPv6 unicast AFI "redistribute table" command | Christian Breunig | |
| Re-use existing XML constraint added via commit 8f6246da6 ("xml: T7161: provide re-usable building block for alternative routing tables") and add handy CLI completion helper. FRRouting supports redistribution of multiple non-main tables, thus make this a multi node in addition, too. | |||
| 2025-02-13 | bgp: T7161: support "redistribute isis" for IPv6 unicast AFI | Christian Breunig | |
| 2025-02-13 | bgp: T7161: add re-usable XML definition for redistribute other protocols | Christian Breunig | |
| 2025-02-13 | xml: T7161: provide re-usable building block for alternative routing tables | Christian Breunig | |
| 2025-02-09 | T7092: Update help message | sskaje | |
| 2025-02-09 | T7092: Regex for registry location | sskaje | |
| 2025-02-09 | T7092: Add Container Registry Mirror | sskaje | |
| 2025-02-04 | syslog: T6989: add possibility to define VRF per remote | Christian Breunig | |
| Rsyslog supports individual VRFs per omfwd remote entry - so we should support this, too. | |||
| 2025-02-03 | syslog: T6989: rename "global" to "local" | Christian Breunig | |
| The previously "global" options actually were only relevant for the local logging to /var/log/messages. | |||
| 2025-02-03 | syslog: T6989: move up "global marker" one level in CLI | Christian Breunig | |
| 2025-02-03 | syslog: T6989: move up "global preserve-fqdn" one level in CLI | Christian Breunig | |
| Move "global preserve-fqdn" one CLI level up, as it relates to all logging targets (console, global and remote). | |||
| 2025-02-03 | syslog: T6989: add new source-address CLI option for outgoing connections | Christian Breunig | |
| 2025-02-03 | syslog: T6989: convert old configuration format to "advanced" | Christian Breunig | |
| 2025-02-03 | syslog: T6989: rename "host" to "remote" | Christian Breunig | |
| 2025-02-03 | syslog: T6989: remove CLI option for user terminal logging | Christian Breunig | |
| Should be added as runtime option similar to "terminal monitor" known from other vendors. | |||
| 2025-02-03 | syslog: T6989: remove "file" logging destination | Christian Breunig | |
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |
path: root/interface-definitions