Age | Commit message (Collapse) | Author | |
---|---|---|---|
2023-01-26 | T4916: Rewrite IPsec peer authentication and psk migration | Viacheslav Hletenko | |
Rewrite strongswan IPsec authentication to reflect structure from swanctl.conf The most important change is that more than one local/remote ID in the same auth entry should be allowed replace: 'ipsec site-to-site peer <tag> authentication pre-shared-secret xxx' => 'ipsec authentication psk <tag> secret xxx' set vpn ipsec authentication psk <tag> id '192.0.2.1' set vpn ipsec authentication psk <tag> id '192.0.2.2' set vpn ipsec authentication psk <tag> secret 'xxx' set vpn ipsec site-to-site peer <tag> authentication local-id '192.0.2.1' set vpn ipsec site-to-site peer <tag> authentication mode 'pre-shared-secret' set vpn ipsec site-to-site peer <tag> authentication remote-id '192.0.2.2' Add template filter for Jinja2 'generate_uuid4' | |||
2023-01-13 | ethernet: rps: T4928: adjust to Kernel ABI changes #2 | Christian Breunig | |
Fix ValueError: Unknown format code 'x' for object of type 'str' added in commit c0ffb8ba4e663 ("ethernet: rps: T4928: adjust to Kernel ABI changes"). | |||
2023-01-12 | ethernet: rps: T4928: adjust to Kernel ABI changes | Christian Breunig | |
In the past we could simply set all bits for all CPUs even if they did not exist. With 6.1.y Kernel series this is no longer possible and the input data is validated against the available number of CPUs. | |||
2023-01-12 | Merge pull request #1751 from dmbaturin/colon-separated-error | Christian Breunig | |
vyos.util: T4933: informative error for bad colon-separated lines in vyos.util.colon_separated_to_dict | |||
2023-01-12 | vyos.util: T4933: informative error for bad colon-separated lines | Daniil Baturin | |
in vyos.util.colon_separated_to_dict | |||
2023-01-11 | Merge pull request #1747 from dmbaturin/op-mode-generate-method | Viacheslav Hletenko | |
opmode: T4564: add generate to the list of op mode functions | |||
2023-01-11 | container: T4880: fix name collision | John Estabrook | |
2023-01-10 | opmode: T4564: add generate to the list of op mode functions | Daniil Baturin | |
2023-01-10 | opmode: T2546: add UnsupportedOperation to op mode errors | Daniil Baturin | |
2023-01-09 | container: T4880: add REST API endpoint for add/delelete/show images | John Estabrook | |
2023-01-09 | container: T4880: include 'add'/'delete' in standard op-mode functions | John Estabrook | |
2023-01-04 | qos: T4284: replace qdisc/class instead of always adding it | Christian Poessinger | |
This makes transitions/updates faster and less error prone | |||
2023-01-04 | qos: T4284: add bandwidth percentage value | Christian Poessinger | |
2023-01-03 | Merge pull request #1729 from jestabro/cache-diff | John Estabrook | |
configdiff: T4900: cache diff_tree/diff_dict in Config instance | |||
2023-01-01 | qos: T4284: first implementation introducing a new vyos.qos module | Christian Poessinger | |
2022-12-30 | configdiff: T4900: cache diff_tree and diff_dict in Config instance | John Estabrook | |
2022-12-19 | T4886: Firewall and route policy: Add connection-mark feature to vyos. | Nicolas Fort | |
2022-12-17 | Merge pull request #1626 from nicolas-fort/fwall_group_interface | Christian Poessinger | |
T4780: Firewall: add firewall groups in firewall. Extend matching cri… | |||
2022-12-12 | Merge pull request #1699 from jestabro/op-mode-openvpn | John Estabrook | |
openvpn: T4770: rewrite op-mode show/reset to use vyos.opmode | |||
2022-12-12 | opmode: T4770: add CommitInProgess error | John Estabrook | |
2022-12-11 | sstp: T4384: initial implementation of SSTP client CLI | Christian Poessinger | |
vyos@vyos# show interfaces sstpc sstpc sstpc10 { authentication { password vyos user vyos } server sstp.vyos.net ssl { ca-certificate VyOS-CA } } | |||
2022-12-10 | vyos.util: T4770: add precision arg, fix typo in bytes_to_human | John Estabrook | |
This is useful in general, but we will add in this context to replace the use of 'bytes2HR' in show_openvpn.py with util.bytes_to_human, while maintaining compatability with original precision=1. | |||
2022-12-04 | T4804: Fix check for PPPoE server local-users | Viacheslav Hletenko | |
We check if local_users is None Check also and empty dict {'access_concentrator': 'vyos-ac', 'authentication': {'local_users': {}, | |||
2022-11-29 | conf-mode: T4820: add support for tagnode argument | John Estabrook | |
2022-11-29 | conf-mode: T4820: add full type hints | John Estabrook | |
2022-11-28 | conf-mode: T4845: add external file for dict of config-mode dependencies | John Estabrook | |
2022-11-28 | frr: T3753: extend ConfigurationNotValid() with failing daemon | Christian Poessinger | |
2022-11-24 | Merge pull request #1641 from Rain/T4612-arbitrary-netmasks | Christian Poessinger | |
firewall: T4612: Support arbitrary netmasks | |||
2022-11-24 | Merge branch 'T4825' of https://github.com/sever-sever/vyos-1x into t4825-veth | Christian Poessinger | |
* 'T4825' of https://github.com/sever-sever/vyos-1x: T4825: Add basic smoketest for veth interfaces T4825: Add interface type veth | |||
2022-11-24 | T4825: Add interface type veth | Viacheslav Hletenko | |
Add interface type veth (Virtual ethernet) One of the usecases it's interconnect different vrf's and default vrf via bridge set interfaces virtual-ethernet veth0 peer-name 'veth1010' set interfaces virtual-ethernet veth1010 address '10.0.0.10/24' set interfaces virtual-ethernet veth1010 peer-name 'veth0' set interfaces virtual-ethernet veth1010 vrf 'foo' set interfaces bridge br0 address '10.0.0.1/24' set interfaces bridge br0 member interface veth0 | |||
2022-11-20 | macvlan: pseudo-ethernet: T2104: _create() should place interface in A/D state | Christian Poessinger | |
2022-11-20 | T4830: nat66: remove external IPv6 check on bracketize_ipv6() | Christian Poessinger | |
vyos.template.bracketize_ipv6() has a build-in check if the supplied address is of IPv6 AFI. No need to code an external check arround that. | |||
2022-11-19 | T4830: nat66: fix how nat66 rules are written in nftables, so translation ↵ | Nicolas Fort | |
works as expected | |||
2022-11-19 | T4780: Firewall: add firewall groups in firewall. Extend matching criteria ↵ | Nicolas Fort | |
so this new group can be used in inbound and outbound matcher | |||
2022-11-18 | IPsec: T4828: raise op-mode error on incorrect value | John Estabrook | |
2022-11-18 | Merge pull request #1662 from jestabro/config-script-dependency | Daniil Baturin | |
firewall: T4821: correct calling of conf_mode script dependencies | |||
2022-11-17 | firewall: T4821: add support for adding conf_mode script dependencies | John Estabrook | |
2022-11-16 | firewall: T4821: add utility to load script as module | John Estabrook | |
2022-11-16 | T4819: Allow printing Warning messages in multiple lines with \n | aapostoliuk | |
Allow printing Warning messages and DeprecationWarning in multiple lines with \n | |||
2022-11-10 | migration: T4808: print configtree operations during migration | John Estabrook | |
Print configtree operations to stdout during migration; the migrator will log the output. | |||
2022-11-10 | migration: T4808: replace custom logging with standard Python logging | John Estabrook | |
2022-11-10 | T4789: Ability to get op-mode raw data for PPPoE L2TP SSTP IPoE | Viacheslav Hletenko | |
Ability to get 'raw' data sessions and statistics for accel-ppp protocols IPoE/PPPoE/L2TP/PPTP/SSTP server | |||
2022-11-03 | Merge pull request #1633 from sarthurdev/fqdn | Christian Poessinger | |
firewall: T970: T1877: Add source/destination fqdn, refactor domain resolver, firewall groups in NAT | |||
2022-11-03 | nat: T1877: T970: Add firewall groups to NAT | sarthurdev | |
2022-11-03 | firewall: T970: Refactor domain resolver, add firewall source/destination ↵ | sarthurdev | |
`fqdn` node | |||
2022-11-01 | op-mode: T4791: decamelize raw output of 'show_*' before normalization | John Estabrook | |
2022-10-28 | Merge pull request #1624 from dmbaturin/op-mode-bytes | Viacheslav Hletenko | |
T4779: output raw memory and storage values in bytes | |||
2022-10-28 | Merge pull request #1619 from jestabro/component-version-string | John Estabrook | |
T4291: consolidate component version string read/write functions | |||
2022-10-28 | T4765: handle non-string fields in the raw op mode output normalizer | Daniil Baturin | |
2022-10-28 | T4779: add vyos.util.human_to_bytes | Daniil Baturin | |