summaryrefslogtreecommitdiff
path: root/src/migration-scripts
AgeCommit message (Collapse)Author
2020-03-20sstp: T2008: remove req-limit config nodeChristian Poessinger
Limiting the amount of requests passed to a server seems to be the wrong way to tackle a problem.
2020-03-20sstp: T2110: use uniform RADIUS CLI syntaxChristian Poessinger
- migrate RADIUS configuration to a more uniform syntax accross the system - authentication radius-server x.x.x.x to authentication radius server x.x.x.x - authentication radius-settings to authentication radius
2020-03-20sstp: T2008: dns: unwind configurationChristian Poessinger
2020-03-20sstp: T2008: move to vpn nodeChristian Poessinger
2020-03-09T1967: add a migration script for the enforce-first-as option.Daniil Baturin
2020-02-23pppoe: T1318: declutter name-server CLI nodesChristian Poessinger
Instead of letting the user choose between auto and none where auto is default, it makes more sesne to just offer an option to disable the default behavior.
2020-02-23pppoe: T2055: remove router-advert node in client interfaceChristian Poessinger
2020-02-23pppoe: T1318: migrate user-id and password nodes under an authentication nodeChristian Poessinger
2020-02-23pppoe: T1318: rename link to source-interfaceChristian Poessinger
2020-02-23pppoe: T1318: extend migrator for firewall, qos and ip routing nodesChristian Poessinger
2020-02-23pppoe: T1318: proper delete old interfaces in migratorChristian Poessinger
2020-02-23pppoe: T1318: fix migrator and add missing link statementChristian Poessinger
2020-02-23pppoe: T1318: add first version of new XML/Python implementationChristian Poessinger
vyos@vyos# show interfaces pppoe pppoe pppoe0 { default-route force link eth2.7 mtu 400 name-server auto password 12345678 user-id vyos@vyos.io }
2020-02-06migrator: system: add missing if when checking user level in 9-to-10Christian Poessinger
2020-02-06migrator: system: use base_level in 9-to-10Christian Poessinger
2020-02-06migrator: system: indent by 4 spacesChristian Poessinger
2020-02-02login: T1948: remove obsolete config nodes "group" and "level"Christian Poessinger
2020-02-02options: T1919: remove broken commentChristian Poessinger
2020-01-26lldp: T1896: remove MED civic based location informationChristian Poessinger
Civic based location information was not working for quiet some time and as an unused feature we should drop it to keep the codebase more simple and maintainable.
2019-12-30options: T1919: migrate 'system options' to XML/Python representationChristian Poessinger
2019-12-30l2tp: T1858: Delete deprecated outside-nexthopDmitriyEshenko
2019-12-28ipv6: T1915: remove 'system ipv6 blacklist'Christian Poessinger
2019-12-26time-zone: T1906: migrate unknown timezones to UTCChristian Poessinger
If - for whatever reason - a timezone specified is invalid ... migrate it to UTC, just in case!
2019-12-26time-zone: T1906: migrate to XML/PythonChristian Poessinger
The current node.def based implementtion should be migrated from vyatta-cfg-system to vyos-1x. During the migration also provide a migration script which transforms some ole timezones like "Los_Angeles" into a proper IANA assigned timezone which should be "America/Los_Angeles".
2019-12-06syslog: T1845: syslog host no longer accepts a porthagbard
- migrates 'system syslog host <ip_address:port>' to system syslog host <ip_address> port <port>
2019-12-05Revert "syslog: T1845: syslog host no longer accepts a port"hagbard
This reverts commit a93a1dbd7d18ff82246b4f7fb9a3757c14e6a9c7.
2019-12-04syslog: T1845: syslog host no longer accepts a porthagbard
- renamed interface xml - renamed syslog.py to system-syslog.py - moved protocol out of the facility node (bug) - node port created - migration script included
2019-11-24bridge: T1673: re-use "base" variableChristian Poessinger
2019-11-24bridge: T1673: add missing VLAN bridge member migrationChristian Poessinger
VLAN interfaces assigned to a bridge as member have not been migrated so far. This was the case for vif, vif-s and vif-c interfaces. The migration code has been generalized in migrate_bridge() so it is re-usable for regular interfaces, vif, vif-s and vif-c interfaces - all now use the same code.
2019-11-23Merge branch 't1627-wireless' of github.com:c-po/vyos-1x into currentChristian Poessinger
* 't1627-wireless' of github.com:c-po/vyos-1x: wireless: T1627: support station mode wireless: T1627: support DHCP(v6) addresses wireless: T1627: add support for RADIUS source-address wireless: T1627: RADIUS servers must have a key specified wireless: T1627: change RADIUS CLI syntax l2tp: harmonize RADIUS wording wireless: T1627: re-order WPA key in hostapd config wireless: T1627: change priority from 318 to 400 wireless: T1627: fix generated ht_capab and vht_capab wireless: T1627: fix regex for 'ht channel-set-width' wireless: T1627: config migrator does not support camel casing wireless: T1627: initial rewrite of show-wireless.pl in Python wireless: T1627: add op-mode commands wireless: T1627: initial rewrite in XML/Python style
2019-11-23wireless: T1627: change RADIUS CLI syntaxChristian Poessinger
Adopt RADIUS configuration and harmonize it with the rest of VyOS. Move the following configuration block: security { wpa { cipher CCMP mode wpa2 radius-server 172.16.100.10 { port 1812 secret secretkey } radius-server 172.16.100.11 { port 1812 secret secretkey } } } to the harmonized version of: security { wpa { cipher CCMP mode wpa2 radius { server 172.16.100.10 { port 1812 secret secretkey } server 172.16.100.11 { port 1812 secret secretkey } } } } And add the new "set interfaces wireless wlan0 security wpa radius source-address" CLI command to specify the origin of any RADIUS query on systems having multiple IP addresses.
2019-11-23wireless: T1627: config migrator does not support camel casingChristian Poessinger
convert all nodes to lowercase
2019-11-23wireless: T1627: initial rewrite in XML/Python styleChristian Poessinger
Working: - Wireless modes b, g, n, ac - WPA/WPA2 psk and RADIUS (tested using Microsoft NPS)
2019-11-18migration-scripts: l2tp: T1811: add missing check on server existenceEshenko Dmitriy
2019-11-11[OpenVPN]: T1704: Added function for ncp-ciphers, and ability to disable it.vindenesen
[OpenVPN]: T1704: Changed config structure for OpenVPN encryption to support ncp-ciphers. [OpenVPN]: T1704: Added migration scripts for interface 2-to-3
2019-10-27snmp: T1769: remove TSM (Transport Security Mode) supportChristian Poessinger
The SNMPv3 TSM is very complex and I know 0 users of it. Also this is untested and I know no way how it could be tested. Instead of carrying on dead and unused code we should favour a drop of it using a proper config migration script.
2019-10-27snmp: T818: T1738: remove per user/trap engine idChristian Poessinger
As of the SNMP specification an SNMP engine ID should be unique per device. To not make it more complicated for users - only use the global SNMP engine ID.
2019-10-17bgp: T1490: fix migrator file permissionsChristian Poessinger
2019-10-08[BGP] T1490: Added migration for obsoleted 'bgp scan-time' parameterzsdc
2019-09-04bonding: T1614: T532: new commit validatorsChristian Poessinger
As in the past during the priority race of the bash script invalid configuration could appear in the CLI and are de-synced from the kernle state, e.g. some bonding modes do not support arp_interval. This is no longer allowed and added to the migration script so that the config again represents the truth.
2019-09-04bonding: T1614: Initial version in new style XML/Python interfaceChristian Poessinger
The node 'interfaces ethernet eth0 bond-group' has been changed and de-nested. Bond members are now configured in the bond interface itself. set interfaces bonding bond0 member interface eth0
2019-08-24T1611: check if config node exists before getting valueJernej Jakob
2019-08-20powerdns: T1595: add config migrator to remove 'listen-on'Christian Poessinger
2019-08-20powerdns: T1524: support setting allow-from networkChristian Poessinger
Netmasks (both IPv4 and IPv6) that are allowed to use the server. The default allows access only from RFC 1918 private IP addresses. Due to the aggressive nature of the internet these days, it is highly recommended to not open up the recursor for the entire internet. Questions from IP addresses not listed here are ignored and do not get an answer. https://docs.powerdns.com/recursor/settings.html#allow-from Imagine an ISP network with non RFC1918 IP adresses - they can't make use of PowerDNS recursor. As of now VyOS hat allow-from set to 0.0.0.0/0 and ::/0 which created an open resolver. If there is no allow-from statement a config-migrator will add the appropriate nodes to the configuration, resulting in: service { dns { forwarding { allow-from 0.0.0.0/0 allow-from ::/0 cache-size 0 ignore-hosts-file listen-address 192.0.2.1 } } }
2019-08-07[bridge] T1156: add missing if statement in config-migrationChristian Poessinger
Fixes: Traceback (most recent call last): File "/opt/vyatta/etc/config-migrate/migrate/interfaces/0-to-1", line 27, in <module> for br in config.list_nodes(base): File "/usr/lib/python3/dist-packages/vyos/configtree.py", line 255, in list_nodes raise ConfigTreeError("Path [{}] doesn't exist".format(path_str)) vyos.configtree.ConfigTreeError: Path [b'interfaces bridge'] doesn't exist
2019-08-04[bridge] T1156: rename igmp-snooping node to igmpChristian Poessinger
2019-08-03[bridge] T1156: support adding and removing bridge member interfacesChristian Poessinger
This is the new syntax bridge br0 { member { interface eth0 { cost 10 } interface eth1 { cost 11 } } }
2019-08-02[bridge] T1156: add configuration migration scriptChristian Poessinger
2019-07-08[PPPoE] - T1489: vlan_mon config optionshagbard
2019-06-16Revert "T849: move BGP peer-group node to ipv4 address family"Christian Poessinger
This reverts commit 685b1e0d050c7883303733d710327161fe046b60.