| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2022-03-06 | smoketest: config: add "recent" firewall rule to dialup-router | Christian Poessinger | |
| 2022-02-28 | ssh: T4273: bugfix cipher and key-exchange multi nodes | Christian Poessinger | |
| After hardning the regex validator to be preceeded with ^ and ending with $ it was no longer possible to have a comma separated list as SSH ciphers. The migrations cript is altered to migrate the previous comma separated list to individual multi node entries - cipher and key-exchange always had been multinodes - so this just re-arranges some values and does not break CLI compatibility | |||
| 2022-01-17 | firewall: policy: T4178: Migrate and refactor tcp flags | sarthurdev | |
| * Add support for ECN and CWR flags | |||
| 2022-01-11 | policy: T2199: Refactor policy route script for better error handling | sarthurdev | |
| * Migrates all policy route references from `ipv6-route` to `route6` * Update test config `dialup-router-medium-vpn` to test migration of `ipv6-route` to `route6` | |||
| 2021-12-25 | flow-accounting: T4105: drop "sflow agent-address auto" | Christian Poessinger | |
| The implementation of the "auto" option to specify the sflow/netflow agent-address is very error prone. The current implementation will determine the IP address used for the "auto" value as follow: Get BGP router-id 1) If not found use OSPF router-id 2) If not found use OSPFv3 router-id 3) If not found use "the first IP address found on the system Well, what is the "first IP address found"? Also this changes if DHCP is in use. Also another disadvantage is when the BGP/OSPF/OSPFv3 router-id is changed, the agent-address is not updated upon the next reboot of the system. This task is about removing the "auto" keyword from the CLI at all and make it either entirely configurable by the user and hardcode the value in CLI, or not use this at all. If "auto" is specified we will query the system in the above order and set the proper router-id in the CLI. If none can be found the CLI node is removed. | |||
| 2021-10-31 | smoketest: config: add DMVPN hub and spoke examples | Christian Poessinger | |
| 2021-10-22 | tunnel: T3925: fix configtest - source-interface does not work with gretap | Christian Poessinger | |
| 2021-10-21 | tunnel: T3925: dhcp-interface was of no use - use source-interface instead | Christian Poessinger | |
| (cherry picked from commit c1015d8ce0013719eb898b60b14ffec192b8141c) | |||
| 2021-10-05 | smoketest: bgp: T3741: bugfix invalid IP address (missing prefix size) | Christian Poessinger | |
| 2021-10-04 | bgp: T3741: "parameter default no-ipv4-unicast" is now a default option | Christian Poessinger | |
| 2021-09-06 | smoketest: config: add DHCP name-server to dialup-router-medium-vpn config | Christian Poessinger | |
| T3804 changed how DHCP servers from DHCP interfaces are read in and passed to the system. The config migrator is tested with this addition. | |||
| 2021-08-26 | smoketest: config: drop empty newline at EOF for "isis-small" test | Christian Poessinger | |
| 2021-07-26 | smoketest: config: azure: also utilize "default-esp-group" feature | Christian Poessinger | |
| 2021-07-22 | ipsec: T2816: remove "auto-update" CLI option | Christian Poessinger | |
| Update/refresh of DNS records is now handled internally by Strongswan. | |||
| 2021-07-22 | pki: https: T3642: Migrate HTTPS to use PKI configuration | sarthurdev | |
| 2021-07-20 | pki: sstp: T3642: Migrate SSTP to PKI configuration | sarthurdev | |
| 2021-07-20 | pki: openconnect: T3642: Migrate OpenConnect SSL to PKI configuration | sarthurdev | |
| 2021-07-15 | pki: ipsec: l2tp: T2816: T3642: Move IPSec/L2TP code into vpn_ipsec.py and ↵ | sarthurdev | |
| update to use PKI. | |||
| 2021-07-07 | pki: T3642: Migrate rsa-keys to PKI configuration | sarthurdev | |
| 2021-06-29 | pki: ipsec: T3642: Migrate IPSec to use PKI configuration | sarthurdev | |
| 2021-06-17 | policy: T3631: migrate "set extcommunity-rt|soo" to "set extcommunity rt|soo" | Christian Poessinger | |
| migrate "set extcommunity-rt" and "set extcommunity-soo" to "set extcommunity rt|soo" to match FRR syntax. This also makes it easier to implement the "bandwidth" extended community. | |||
| 2021-05-20 | smoketest: config: sysctl: T3565: add migratable configuration | Christian Poessinger | |
| 2021-05-06 | smoketest: configs: azure: convert from DOS to UNIX line endings | Christian Poessinger | |
| 2021-05-05 | Revert "smoketest: config: bgp: remove graceful-restart option due to ↵ | Christian Poessinger | |
| frr-reload bug" This reverts commit 49cfd4e0c56a8b7a85128bfdb4a4e19157137129. | |||
| 2021-04-10 | smoketest: configs: add bgp l3vpn evpn PE configuration | Christian Poessinger | |
| 2021-04-10 | smoketest: configs: rename BGP related test configs | Christian Poessinger | |
| 2021-04-05 | smoketest: config: tunnel-broker: adjust l2tpv3 local/remote addresses | Christian Poessinger | |
| For L2TPv3 to properly work there must be a routing entry present for the remote side of the tunnel, or use a directly connected subnet. | |||
| 2021-04-05 | smoketest: config: evpn-leaf: set 1500 byte mtu on vxlan interface | Christian Poessinger | |
| RFC7348 recommends VXLAN tunnels preserve a 1500 byte MTU. | |||
| 2021-04-05 | smoketest: config: bgp: remove graceful-restart option due to frr-reload bug | Christian Poessinger | |
| When loading a configuration for BGP that contains the graceful-restart options, the frr-reload script will not return 0, but the config is accepted. This is a false positive, and related to https://github.com/FRRouting/frr/issues/8403 | |||
| 2021-03-21 | smoketest: config: add IS-IS example configuration | Christian Poessinger | |
| 2021-03-20 | smoketest: config: evpn: move NTP into MGMT vrf | Christian Poessinger | |
| Within this example a MGMT VRF is used to administer the system, thus also move the NTP portion into that VRF. | |||
| 2021-03-15 | smoketest: config: add BGP EVPN spine/leaf configurations | Christian Poessinger | |
| 2021-03-14 | vrf: T3344: move dynamic routing protocols under "vrf name <name> protocols" | Christian Poessinger | |
| Instead of having the dynamic routing protocols OSPF and BGP residing under the "protocols vrf <name> [ospf|bgp]" nodes, rather move them directly under the "vrf name <name> protocols [ospf|bgp]" node. Now all VRF related parts are placed under the same root node. This eases the verify steps tremendously, as we do not need to check wheter a VRF eists or not, it will always exist as we operate under a child node. | |||
| 2021-03-08 | bgp: T3391: migrate old IPv4 only maximum-paths config to new syntax | Christian Poessinger | |
| 2021-03-05 | smoketest: config: add azure VPN gateway example | Christian Poessinger | |
| 2021-02-28 | l2tpv3: T3366: migrate local-ip and remote-ip CLI options | Christian Poessinger | |
| Rename CLI options local-ip to source-address and remote-ip to remote to get a consistent CLI experience for the user. | |||
| 2021-02-28 | tunnel: T3364: rename encapsulation mode "gre-bridge" to "gretap" | Christian Poessinger | |
| The following list shows the mapping of VyOS tunnel encapsulation modes to the corresponding Linux modes. VyOS Linux gre gre gre-bridge gretap ipip ipip ipip6 ipip6 ip6ip6 ip6ip6 ip6gre ip6gre sit sit Besides gre-bridge this is pretty consistent. As bridge interfaces are also called tap interfaces gre-bridge will be renamed to gretap to make the post-processing much easier. This means (in detail) that there are no more child classes of _Tunnel and there will be now one geneirc TunnelIf class handling all sorts of encapsulation. | |||
| 2021-02-25 | smoketest: configs: extend bgp-small-internet-exchange with more policies | Christian Poessinger | |
| 2021-02-15 | bgp: T3311: remove remote-as from address-family | Christian Poessinger | |
| When moving from Quagga to FRR the BGP address-family was extended by an invalid peer-group statement. FRR always moved a configured peer-group from the AFI level down to the neighbor level. With the migration to FRR reload we must take care about this by ourselves. | |||
| 2021-02-14 | bgp: T2844: add IPv4 disable-send-community support | Christian Poessinger | |
| 2021-02-11 | ospfv3: T3267: move interface specific options to "protocols ospfv3" | Christian Poessinger | |
| 2021-02-11 | ripng: T3281: move interface specific options to "protocols ripng" | Christian Poessinger | |
| 2021-02-07 | smoketest: configs: rip: add VLAN interfaces to test migration scripts | Christian Poessinger | |
| 2021-02-07 | smoketest: configs: import basic rip-router | Christian Poessinger | |
| 2021-02-05 | vrf: T2450: provide full protocol support in XML and Python with new CLI | Christian Poessinger | |
| 2021-02-01 | smoketest: configs: import sample config provided by Andri Steiner | Christian Poessinger | |
| 2021-01-31 | smoketest: configs: import sample config provided by Tim Harman | Christian Poessinger | |
| 2021-01-31 | smoketest: configs: cleanup | Christian Poessinger | |
| 2021-01-24 | smoketest: configs: add small AS with VRRP example configuration | Christian Poessinger | |
| This is a live config from a specific site of mine. | |||
| 2021-01-23 | smoketest: configs: fix ospf-config | Christian Poessinger | |
| Commit 4ed4d822cf ("ospf: T3236: provide full protocol support in XML and Python") added the arbitrary config to load from one of my lab VMs, but in order to properly run through the CI a serial port is required to not fail the expected outputs gathered via check-qemu-install. | |||
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |