summaryrefslogtreecommitdiff
path: root/src/conf_mode
AgeCommit message (Collapse)Author
2020-04-22Merge branch 'pptp-rewrite' of github.com:c-po/vyos-1x into currentChristian Poessinger
* 'pptp-rewrite' of github.com:c-po/vyos-1x: accel-ppp: fix wrong reference in verify() on missing attributes accel-ppp: T2314: bugfix wrong placement of endif in Jinja2 template vpn: pptp: T2351: add support for common radius-additions XML vpn: pptp: T2351: migrate to common radius CLI vpn: pptp: T2351: migrate to common name-server, wins-server nodes accel-ppp: provide common wins-server include definition vpn: pptp: T2351: use first IP from client pool as gateway address vpn: pptp: T2351: align configuration to other accel implementations vpn: pptp: T2351: migrate from SysVinit to systemd vyos.util: migrate all cpu_count() occurances to common get_half_cpus()
2020-04-22accel-ppp: fix wrong reference in verify() on missing attributesChristian Poessinger
2020-04-22vpn: pptp: T2351: migrate to common radius CLIChristian Poessinger
2020-04-22vpn: pptp: T2351: migrate to common name-server, wins-server nodesChristian Poessinger
2020-04-22vpn: pptp: T2351: use first IP from client pool as gateway addressChristian Poessinger
2020-04-22vpn: pptp: T2351: align configuration to other accel implementationsChristian Poessinger
2020-04-22Merge pull request #368 from DmitriyEshenko/mroute-pimChristian Poessinger
mroute: T2364: Implement CLI commands for mroute
2020-04-21mroute: T2364: Implement CLI commands for mrouteDmitriyEshenko
2020-04-21vpn: pptp: T2351: migrate from SysVinit to systemdChristian Poessinger
2020-04-21vyos.util: migrate all cpu_count() occurances to common get_half_cpus()Christian Poessinger
2020-04-21vpn: l2tp: T2314: pass proper content variable to render()Christian Poessinger
2020-04-21pppoe-server: T2314: pass proper content variable to render()Christian Poessinger
2020-04-21ipsec: T2317: pass proper content variable to render()Christian Poessinger
2020-04-21tunnel: T2204: add source-interfaceThomas Mangin
2020-04-21macvlan: pseudo-ethernet: 2341: bugfix empty source-interface on system bootChristian Poessinger
2020-04-21dns-forwarding: T2298: verify pdns path is existsChristian Poessinger
2020-04-21Merge pull request #363 from jjakob/dhcpv6-server-fixChristian Poessinger
dhcpv6-server: T2328: fix for service not starting
2020-04-20dhcpv6-server: T2328: fix for service not startingJernej Jakob
- fix wrong unindent - add missing 'else:' - add check for all shared-networks disabled
2020-04-20Merge pull request #361 from jjakob/openvpn-ipv6-proto-fixChristian Poessinger
openvpn: T2339: fix for IPv4 local-host addresses
2020-04-20bridge: T2320: fix to tunnelThomas Mangin
2020-04-20openvpn: T2339: fix for IPv4 local-host addressesJernej Jakob
Commit bb9f998 introduced a bug where openvpn fails to start if 'local-host' is an IPv4 address due to 'proto' wanting a IPv6 socket. This adds a conditional check and uses normal proto if it's IPv4.
2020-04-20bridge: T2320: add to tunnelThomas Mangin
2020-04-19l2tpv3: fix missing "," within default_config_dataChristian Poessinger
Commit 0e19d622a0410 ("bridge: T2232: move helper to vyos.validate") added a new key to the dictionary but missed out the required "," at the end.
2020-04-19openvpn: T2336: delete auth-user-pass file when interface is unused #2Christian Poessinger
2020-04-19Revert "openvpn: T2336: delete auth-user-pass file when interface is unused"Christian Poessinger
This reverts commit 26adfd6d0d03af44a03f327478199f3009f2ad3c.
2020-04-19openvpn: T2336: delete auth-user-pass file when interface is unusedChristian Poessinger
Unused means disabled or even deleted - there should be no secrets left-over.
2020-04-19openvpn: T2336: fix auth-user-pass file generationChristian Poessinger
Bug introduced in commit b36e6e6 ("openvpn: T2273: migrate from SysVinit to systemd") as not all relevant configuration files have been re-rendered into /run/openvpn
2020-04-19bridge: T2232: bugfix - remove double colon (:)Christian Poessinger
2020-04-19bridge: T2232: move helper to vyos.validateChristian Poessinger
2020-04-19{pppoe,ipoe}-server: T2324: T2314: migrate CoA serverChristian Poessinger
2020-04-19pppoe-server: T2314: add common accel-radius-additions XML fileChristian Poessinger
2020-04-18ipoe-server: T2324: move template files to common accel-ppp template directoryChristian Poessinger
2020-04-18ipoe-server: T2324: migrate IPv6 client IP pool to common CLI nodesChristian Poessinger
2020-04-18ipoe-server: T2324: migrate RADIUS configuration to common CLI syntaxChristian Poessinger
2020-04-18ipoe-server: T2324: migrate IPv4/IPv6 name-servers to common nodeChristian Poessinger
2020-04-18ipoe-server: T2324: remove boilerplate code and adjust to other accel ↵Christian Poessinger
implementations
2020-04-18router-advert: rename XML/Python files for a common patternChristian Poessinger
2020-04-18ipoe-server: rename XML/Python files for a common patternChristian Poessinger
2020-04-18Merge branch 'pppoe-server-update' of github.com:c-po/vyos-1x into currentChristian Poessinger
* 'pppoe-server-update' of github.com:c-po/vyos-1x: accel-ppp: T2314: use common tempplate for chap-secrets pppoe-server: T2314: migrate IPv6 to common CLI nodes with embeeded validation pppoe-server: T2313: bugfix Floating Point Exception pppoe-server: T2314: migrate RADIUS configuration to common CLI syntax vpn: l2tp: pptp: sstp: rename files to common pattern pppoe-server: T2314: migrate IPv4/IPv6 name-servers to common node vpn: l2tp: sstp: ease unlinking of configuration files pppoe-server: T2314: remove boilerplate code and adjust pppoe-server: T2185: migrate from SysVinit to systemd
2020-04-18accel-ppp: T2314: use common tempplate for chap-secretsChristian Poessinger
2020-04-18pppoe-server: T2314: migrate IPv6 to common CLI nodes with embeeded validationChristian Poessinger
2020-04-18ipsec: T2317: Fix typo with delimiterDmitriyEshenko
2020-04-18pppoe-server: T2314: migrate RADIUS configuration to common CLI syntaxChristian Poessinger
2020-04-18vpn: l2tp: pptp: sstp: rename files to common patternChristian Poessinger
2020-04-18pppoe-server: T2314: migrate IPv4/IPv6 name-servers to common nodeChristian Poessinger
Instead of having "dns-server server-1|server-2" nodes and the same for IPv6 all DNS nameservers are migrated to a common name-servers node.
2020-04-18vpn: l2tp: sstp: ease unlinking of configuration filesChristian Poessinger
2020-04-18pppoe-server: T2314: remove boilerplate code and adjustChristian Poessinger
2020-04-18pppoe-server: T2185: migrate from SysVinit to systemdChristian Poessinger
2020-04-18ipsec: T2317: Fix adding params to ipsec configuration filesDmitriyEshenko
2020-04-17wireless: T2306: Add new cipher suites to the WiFi configurationAlain Lamar
Yet, VyOS knows these two encryption schemes for WiFi: 1. CCMP = AES in Counter mode with CBC-MAC (CCMP-128) 2. TKIP = Temporal Key Integrity Protocol These encryption schemes are new and especially the Galois counter mode cipher suites are very desirable! 1. CCMP-256 = AES in Counter mode with CBC-MAC with 256-bit key 2. GCMP = Galois/counter mode protocol (GCMP-128) 3. GCMP-256 = Galois/counter mode protocol with 256-bit key CCMP is supported by all WPA2 compatible NICs, so this remains the default cipher for bidirectional and group packets while using WPA2. Use 'iw list' to figure out which cipher suites your cards support prior to configuring other cipher suites than CCMP. AP NICs and STA NICs must both support at least one common cipher in a given list in order to associate successfully.
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-05 13:58:13 +0000