Age | Commit message (Collapse) | Author |
|
|
|
|
|
As the API daemon has the proper permissions and also the CLI op-mode calls the
script already with "sudo", there is no need to call "sudo" inside this script,
again.
|
|
login: T4751: 2FA OTP key generator in VyOS CLI
|
|
openvpn: T4770: rewrite op-mode show/reset to use vyos.opmode
|
|
|
|
vyos@vyos# show interfaces sstpc
sstpc sstpc10 {
authentication {
password vyos
user vyos
}
server sstp.vyos.net
ssl {
ca-certificate VyOS-CA
}
}
|
|
In case if we want generate own container image from a Dockerfile
and if it requires update or install packages in container we get
error. As it tries to use default network 'podman' and do own NAT
translations via 'iptables'. If fact we don't use iptables in 1.4
As result it cannot build such image.
Use '--net host' to fix it.
|
|
It's easier and more obvious if the script is called with sudo itself and not
spawning a sudo sessionf or each individual command.
|
|
T4767: Rewrite generate ipsec archive to python
|
|
|
|
Add op-mode CLI "show vpn ipsec connections"
Add the ability to show all configured connections/tunnels and
their states.
Ability to get --raw data
|
|
|
|
Made the following changes: 1) made changes to the "XML" file to replace the script from "sh" to "py" 2) changed the extension of the main script from "sh" to "py" 3) changed the script to "py"
|
|
|
|
Rewrite op-mode DHCP and DHCPv6 leases to vyos.opmode format
Abbility to show 'raw' format
show dhcp server leases
show dhcpv6 server leases
|
|
|
|
Use nat.py instead of old op-mode script
|
|
Fixed output list of neighbors in help for
"show bgp vrf VRF neighbors"
|
|
|
|
|
|
|
|
This adds a new 'alias' property to the console-server device definition
to allow users to connect to a console using a human-readable name
rather than just the device name.
For a configuration like:
service {
console-server {
device ttyUSB0 {
speed 115200
alias my-server
}
}
}
Users can connect either by doing `connect console ttyUSB0`, or
`connect console my-server`.
Names:
* Must be unique
* Are limited to 128 characters
* Are optional - if not specified, only the `connect console ttyX`
form can be used
|
|
Ability to terminate user TTY and PTS sessions
clear session pts/1
|
|
update-check: T3476: Allow update-check for VyOS images
|
|
|
|
|
|
|
|
Ability to autocheck available new images
Parse remote URL JSON image-version.json file and compare version
VyOS with a local current version, if find diff sent wall
message that the new image is available
Also, add op-mode command to check images "show system image"
With option "auto-check" check will be once per 12 hours
set system update-check auto-check
set system update-check url 'http://example.com/image-version.json'
If new version is available shows it per login (MOTD)
|
|
The CLI command was a duplicate of the "show dns forwarding" command and did
not follow or re-trigger the commadn to watch it. It produced 1:1 the same
output as "show dns forwarding".
|
|
Rewrite op-moe "show nat|nat66 translation" to vyos.opmode format
Ability to get machine-readable format "raw"
|
|
ipsec: T4594: Rewrite op-mode 'show vpn ipsec sa' to the new format
|
|
As we use in commit 8d4205a9 argument '--family' for the
function '_get_raw_data_rules(direction, family)' we must use it
and for 'nat.py show_statistics' as it get raw data from the same
function
|
|
nat66: T4626: Rewrite op-mode show nat66 rules
|
|
|
|
support monitoring
* all
* l2tp
* sstp
* pptp
|
|
|
|
Rewrite op-mode "show nat66 source|destination rules" to the
new format
use "show_rules --direction <direction> --family <inet|inet6>"
Delete old script show_nat66_rules.py
|
|
|
|
ocserv: T4596: Rewrite show openconnect sessions op-mode
|
|
Add 2 dashes for arg "name"
|
|
Rewrite "show openconnect-server sessions" to vyos.opmode format
Ability to get raw and formatted output
Ability to get data via API
|
|
Rewrite op-mode "show vpn ipsec sa" to new format
Use vyos.opmode format
Ability to get raw and formatted output
|
|
Add option restart to `containers.py`
|
|
Rewrite op-mode:
- show container
- show container network
- show container image
to the new vyos.opmode format
|
|
|
|
vyos@vyos:~$ generate macsec mka cak gcm-aes-128
6623f6ad9a0eae2db699b18f48af292b
vyos@vyos:~$ generate macsec mka cak gcm-aes-256
0d84ac9d7cb7367c02ab22fc8b5f5f1113a62b765752bcf8d6da52554f04a826
|
|
dns-forwarding: T4578: Rewrite show dns forwarding
|
|
|
|
Rewrite op-mode "show dns forwarding statistics" to new format
Use vyos.opmode format
|