summaryrefslogtreecommitdiff
path: root/interface-definitions
AgeCommit message (Collapse)Author
3 daysMerge pull request #4420 from c-po/veth-mtuChristian Breunig
virtual-ethernet: T7293: add support to define interface MTU
6 daysMerge pull request #4409 from woodsb02/patch-2Christian Breunig
syslog: T7270: fix typos in rsyslog.conf
6 daysT7286: Add CLI option to disable LDP establish packetsViacheslav Hletenko
If a router has not formed an LDP neighbor adjacency yet, it answers all received LDP Hello packets from non-neighbors with new Hello packets. This leads to flooding LDP packets to all routers for each LDP incoming packet. Add configuration option to disable this behavior ``` set protocols mpls ldp interface eth0 disable-establish-hello ```
6 daysvirtual-ethernet: T7293: add support to define interface MTUChristian Breunig
9 daysMerge pull request #4326 from Embezzle/T5493Daniil Baturin
firewall: T5493: Implement remote-group
10 dayssyslog: T7270: improve descriptions of format optionsBen Woods
13 daysfirewall: T5493: Implement remote-groupAlex W
2025-03-20Merge pull request #4402 from c-po/wireguard-key-T7246Christian Breunig
wireguard: T7246: verify Base64 encoded 32byte boundary on keys
2025-03-20wireguard: T7246: verify Base64 encoded 32byte boundary on keysChristian Breunig
Not 31 bytes or 33 bytes, but exactly 32. This matters, because 32 does not divide evenly by .75, so there's a padding character and the penultimate character does not include the whole base64 alphabet. Extend the base64 validator with an optional argument to define the length to match of the decrypted Base64 encoded string. Source: https://lists.zx2c4.com/pipermail/wireguard/2020-December/006222.html
2025-03-18Merge pull request #4399 from sever-sever/T7252Daniil Baturin
T7252: Allow vpptun and vpptap for constraint validator
2025-03-18bgp: T7157: Allow using route-maps for VRF route leaking in BGP (#4404)aapostoliuk
* bgp: T7157: Allow using route-maps for VRF route leaking in BGP Added the possibility of using route-map in route leaking. * Improve the constraint error message --------- Co-authored-by: Daniil Baturin <daniil@baturin.org>
2025-03-17T7252: Allow vpptun and vpptap for constraint validatorViacheslav Hletenko
It fixes cases whey we want to use VPP kernel interfaces for OSPF But VPP kernel interface is not exists on this step set vpp interfaces loopback lo0 kernel-interface 'vpptun0' set protocols ospf interface vpptun0 area '0' Incorrect path /sys/class/net/vpptun0: no such file or directory
2025-03-11Merge pull request #4321 from sskaje/T7092Daniil Baturin
T7092: Add Container Registry Mirror
2025-03-11T7092: Change validators: regex to host-name|address + port + pathsskaje
2025-03-11T7092: Update interface-definitions/container.xml.insskaje
Co-authored-by: Daniil Baturin <daniil@baturin.org>
2025-03-04syslog: T6989: add option do disable "MARK"syslog-typos-T6989Christian Breunig
New CLI command set system syslog marker disable
2025-03-04syslog: T6989: fix validator range to match completion helperChristian Breunig
2025-02-27Merge pull request #4374 from sever-sever/T7204Daniil Baturin
T7204: Container add capability MKNOD
2025-02-27Merge pull request #4371 from talmakion/bugfix/T7116/remove-obsolete-communityChristian Breunig
policy: T7116: Remove unsupported use of BGP community "internet"
2025-02-27Merge pull request #4372 from aapostoliuk/T7118-circinusChristian Breunig
T7118: Added the ability to redistribute NHRP routes to other protocols
2025-02-27T7204: Container add capability MKNODViacheslav Hletenko
2025-02-27Merge pull request #4373 from aapostoliuk/T7158-circinusChristian Breunig
policy: T7158: Added match source-vrf to route-map
2025-02-26wlb: T7196: Migrate interface wildcards to nftables formatSimon
* wlb: T7196: Migrate interface wildcards to nftables format * wlb: T7196: Fix exclude/interface verify check * wlb: T7196: Extra sanity check on ipv4 address function
2025-02-26policy: T7158: Added match source-vrf to route-mapaapostoliuk
Added match source-vrf to route-map
2025-02-26T7118: Added the ability to redistribute NHRP routes to other protocolsaapostoliuk
Added the ability to redistribute NHRP routes to: OSPF BGP Babel RIP IS-IS
2025-02-26policy: T7116: migrate legacy use of "internet" as a well-known community nameAndrew Topp
This has been split into a separate commit in case this is overkill for the fix. 1.2 and 1.3 installs predate the change to FRR that removed support, but "internet" is already broken on 1.4.
2025-02-26policy: T7116: remove completions & constraints for unsupported community ↵Andrew Topp
"internet"
2025-02-25snmp: T7180: Fixed verification of engineid in snmpv3 (#4366)aapostoliuk
* snmp: T7180: Fixed verification of engineid in snmpv3 EngineID must be configured if snmpv3 user is configured. Fixed engineid help string.
2025-02-25Merge pull request #4365 from c-po/lldp-t7165Daniil Baturin
lldp: T7165: add support to enable only rx/tx on specific interfaces
2025-02-25Merge pull request #4364 from natali-rs1985/T7171Daniil Baturin
T7171: Add dstport option to GENEVE tunnels
2025-02-25T7171: Add dstport option to GENEVE tunnelsNataliia Solomko
2025-02-24lldp: T7165: add support to enable only rx or tx on specific interfaceChristian Breunig
LLDP is a stateless protocol which does not necessitate sending to receive advertisements. There are multiple scenarios such as provider peering links in which it is advantageous to receive LLDP but not disclose internal information to the provider. Add new CLI command: * set service lldp interface <name> mode [disable|rx-tx|rx|tx] The default is unchanged and will be rx-tx. Furthermore if an interface has an explicit LLDP disable configured under "set service lldp interface <name> disable" this will be migrated to "set service lldp interface <name> mode disable"
2025-02-24Merge pull request #4360 from sever-sever/T7190Christian Breunig
T7190: Add haproxy default timeout options configurable
2025-02-24T7190: Add haproxy default timeout options configurableViacheslav Hletenko
Add the ability to configurate default timeout and frontend client timeout ``` set load-balancing haproxy service web timeout client '600' set load-balancing haproxy timeout check '4' set load-balancing haproxy timeout client '600' set load-balancing haproxy timeout connect '12' set load-balancing haproxy timeout server '120' ```
2025-02-22container: T7185: Allow tmpfs mounts within containersAlex W
2025-02-20Merge pull request #4353 from natali-rs1985/T5810Daniil Baturin
T5810: Add support for RPKI source ip
2025-02-20Merge pull request #4351 from markh0338/int-group-container-validationChristian Breunig
firewall: T7177: Update interface-name constraint to allow "pod-" interface names
2025-02-19T5810: Add support for RPKI source ipNataliia Solomko
2025-02-19firewall: T7177: update interface-name.xml.i constraint and smoketest to ↵Mark
support pod interfaces from containers
2025-02-19T6628: IPoE-server rename "static-ip" to "ip-address" for local authNataliia Solomko
2025-02-13bgp: T7163: add CLI route-map and metric support for "redistribute table"Christian Breunig
* set protocols bgp address-family <ipv4-unicast|ipv6-unicast> redistribute table <n> [metric <n>] [route-map <name>]
2025-02-13bgp: T7161: fix IPv4/IPv6 unicast AFI "redistribute table" commandChristian Breunig
Re-use existing XML constraint added via commit 8f6246da6 ("xml: T7161: provide re-usable building block for alternative routing tables") and add handy CLI completion helper. FRRouting supports redistribution of multiple non-main tables, thus make this a multi node in addition, too.
2025-02-13bgp: T7161: support "redistribute isis" for IPv6 unicast AFIChristian Breunig
2025-02-13bgp: T7161: add re-usable XML definition for redistribute other protocolsChristian Breunig
2025-02-13xml: T7161: provide re-usable building block for alternative routing tablesChristian Breunig
2025-02-09T7092: Update help messagesskaje
2025-02-09T7092: Regex for registry locationsskaje
2025-02-09T7092: Add Container Registry Mirrorsskaje
2025-02-04syslog: T6989: add possibility to define VRF per remoteChristian Breunig
Rsyslog supports individual VRFs per omfwd remote entry - so we should support this, too.
2025-02-03syslog: T6989: rename "global" to "local"Christian Breunig
The previously "global" options actually were only relevant for the local logging to /var/log/messages.
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-04 03:11:51 +0000