vyos-1x.git - VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git)

Age	Commit message (Collapse)	Author
2024-03-21	vti: T6085: interface is always down and only enabled by IPSec daemon	Christian Breunig
	When a VTI interface is just created, it is in ADMIN UP state by default, even if an IPSec peer is not connected. After the peer is disconnected the interface goes to DOWN state as expected. This breaks routing logic - for example, static routes through VTI interfaces will be active even if a peer is not connected. This changes to logic so ADMIN UP/DOWN state can only be changed by the vti-up-down helper script. Error was introduced during the Perl -> Python migration and move to the generic vyos.ifconfig abstraction during the 1.4 development cycle. (cherry picked from commit 9eb018c4935235d292d7c693ac15da5761be064a)
2023-12-03	vti: T5769: restore interface settings on down -> up event	Christian Breunig
	On VTI interface link down the link-local IPv6 address is removed. As soon as the IPSec tunnel is online again, vti-up-down helper is called which only places the interface in up state using iproute2 command sudo ip link set vti0 up This does not restore the IPv6 LL address. Instead use vyos.ifconfig to properly re-initialize the VTI interface using the generic update() method. (cherry picked from commit d90ca4415bed8ce99c854243dca3036e76497270)
2023-07-14	T5195: vyos.util -> vyos.utils package refactoring (#2093)	Christian Breunig
	* T5195: move run, cmd, call, rc_cmd helper to vyos.utils.process * T5195: use read_file and write_file implementation from vyos.utils.file Changed code automatically using: find . -type f -not -path '/\.' -exec sed -i 's/^from vyos.util import read_file$/from vyos.utils.file import read_file/g' {} + find . -type f -not -path '/\.' -exec sed -i 's/^from vyos.util import write_file$/from vyos.utils.file import write_file/g' {} + * T5195: move chmod* helpers to vyos.utils.permission * T5195: use colon_separated_to_dict from vyos.utils.dict * T5195: move is_systemd_service_* to vyos.utils.process * T5195: fix boot issues with missing imports * T5195: move dict_search_* helpers to vyos.utils.dict * T5195: move network helpers to vyos.utils.network * T5195: move commit_* helpers to vyos.utils.commit * T5195: move user I/O helpers to vyos.utils.io
2021-09-19	ipsec: T1441: Clean up vti-up-down script for XFRM interfaces	Lucas Christian

2021-08-26	ipsec: T3780: shutting down vti when tunnel is down	krox2

2021-08-09	ipsec: T3720: assigning vti secondary address caused interface in A/D state	Christian Poessinger

2021-06-15	ipsec: T2816: T645: T3613: Migrated IPsec to swanctl, includes multiple ↵	sarthurdev
	selectors, and selectors with VTI.
2021-05-29	vti: ipsec: T2816: Fix vti-up-down	sarthurdev

2021-05-28	ipsec: T2816: drop absolute path on calls to iproute2	Christian Poessinger

2021-05-28	ipsec: T2816: fix executable permission on vti-up-down helper	Christian Poessinger

2021-05-28	ipsec: T2816: IPSec python rework, includes DMVPN and VTI support	Simon