Age | Commit message (Collapse) | Author | |
---|---|---|---|
2020-05-16 | nat: T2198: extend verify() for destination ports | Christian Poessinger | |
Destination NAT configuration: destination ports can only be specified when protocol is tcp, udp or tcp_udp. | |||
2020-05-16 | nat: T2198: migrate "log enable" node to only "log" | Christian Poessinger | |
2020-05-16 | nat: T2198: migrate "show nat" commands to XML and Python | Christian Poessinger | |
- "show nat source|destination statistics" is now implemented in Python - "show nat source|destination rules" needs a new implementation, see T2459 - "show nat source|destination translations" has been copied over from the old repo and is here until it is rewritten, this was not possible for "rules" as there would have been too much dependencies. This one only requires libxml-simple-perl | |||
2020-05-16 | nat: T2198: add some basic verify() rules | Christian Poessinger | |
2020-05-16 | nat: T2198: add ipv4-{address,prefix,rage}-exclude validators | Christian Poessinger | |
Exclude validators are required to support the ! (not) operator on the CLI to exclude addresses from NAT. | |||
2020-05-16 | nat: T2198: add new ipv4-range validator | Christian Poessinger | |
2020-05-16 | nat: T2198: make use of jmespath when walking nftables JSON output | Christian Poessinger | |
2020-05-16 | nat: T2198: implement deletion of NAT subsystem | Christian Poessinger | |
2020-05-16 | nat: T2198: automatically determine handler numbers | Christian Poessinger | |
When instantiating NAT it is required to isntall some nftable jump targets. The targets need to be added after a specific other target thus we need to dynamically query the handler number. This is done by get_handler() which could be moved to vyos.util at a later point in time so it can be reused for a firewall rewrite. | |||
2020-05-16 | nat: T2198: move from iptables to nftables | Christian Poessinger | |
2020-05-16 | nat: T2198: migrate to common template for source/destination NAT | Christian Poessinger | |
2020-05-16 | nat: T2198: destination nat template for iptables-restore | Christian Poessinger | |
2020-05-16 | nat: T2198: initial XML and Python representation | Christian Poessinger | |
2020-05-15 | T2467: Restarting of service needs `sudo` | kroy-the-rabbit | |
2020-05-13 | flow-accounting: T2456: Replace old function | DmitriyEshenko | |
2020-05-12 | T2449: Fixing key to appropriate one | kroy-the-rabbit | |
2020-05-12 | tunnel: T2449: bugfix KeyError 'address' | Christian Poessinger | |
Commit 9e5c6a935e2f55 ("tunnel: T2449: set accept_ra=2 if ipv6 address autoconf or dhcpv6 is set") referenced wrong key in dict. | |||
2020-05-11 | wireless: T2449: set accept_ra on wireless interfaces | Jernej Jakob | |
2020-05-11 | vxlan: T2449: set accept_ra=2 if ipv6 address autoconf or dhcpv6 is set | Jernej Jakob | |
To make SLAAC and DHCPv6 work when forwarding=1, accept_ra must be 2 (default for accept_ra is 1). | |||
2020-05-11 | tunnel: T2449: set accept_ra=2 if ipv6 address autoconf or dhcpv6 is set | Jernej Jakob | |
To make SLAAC and DHCPv6 work when forwarding=1, accept_ra must be 2 (default for accept_ra is 1). | |||
2020-05-11 | pseudo-ethernet: T2449: set accept_ra on pseudo-ethernet interfaces | Jernej Jakob | |
2020-05-11 | openvpn: T2449: set accept_ra=2 if ipv6 address autoconf or dhcpv6 is set | Jernej Jakob | |
To make SLAAC and DHCPv6 work when forwarding=1, accept_ra must be 2 (default for accept_ra is 1). | |||
2020-05-11 | l2tpv3: T2449: set accept_ra=2 if ipv6 address autoconf or dhcpv6 is set | Jernej Jakob | |
To make SLAAC and DHCPv6 work when forwarding=1, accept_ra must be 2 (default for accept_ra is 1). | |||
2020-05-11 | ethernet: T2449: set accept_ra on ethernet interfaces | Jernej Jakob | |
2020-05-11 | bridge: T2449: set accept_ra=2 if ipv6 address autoconf or dhcpv6 is set | Jernej Jakob | |
To make SLAAC and DHCPv6 work when forwarding=1, accept_ra must be 2 (default for accept_ra is 1). | |||
2020-05-11 | bonding: T2449: set accept_ra on bonding interfaces | Jernej Jakob | |
2020-05-08 | T2441: Fix parse error | kroy-the-rabbit | |
2020-05-09 | T2431: remove the numeric validator for it now lives in vyos-utils. | Daniil Baturin | |
2020-05-08 | Merge pull request #395 from thomas-mangin/T2417 | Christian Poessinger | |
validator: T2417: try to make the code clearer | |||
2020-05-08 | Merge branch 'current' of github.com:thomas-mangin/vyos-1x into T2417 | Thomas Mangin | |
2020-05-08 | Merge pull request #399 from jjakob/disable-address-fix-T2427 | Christian Poessinger | |
wireless: T2427: migrate to use common configdict and vlan functions, add common interface includes to template | |||
2020-05-08 | Merge pull request #398 from jjakob/bridge-fix-T2241 | Christian Poessinger | |
openvpn: T2241: fix wrong indent caused by 66e15005 | |||
2020-05-08 | Merge pull request #402 from jjakob/fix-syntax-T2435 | Christian Poessinger | |
T2435: fix syntax errors | |||
2020-05-08 | dhcpv6-relay: T2438: change systemd service type | Jernej Jakob | |
The default of systemd services Type=simple isn't suitable for dhcrelay and other daemons. - change service type to forking - add RuntimeDirectory - set PIDFile | |||
2020-05-08 | dhcp-relay: T2438: change systemd service type | Jernej Jakob | |
The default of systemd services Type=simple isn't suitable for dhcrelay and other daemons. - change service type to forking - add RuntimeDirectory - set PIDFile | |||
2020-05-08 | dhcpv6-server: T2438: change systemd service type, validate config file | Jernej Jakob | |
The default of systemd services Type=simple isn't suitable for dhcpd and other daemons. - change service type to forking - add RuntimeDirectory - set paths to files in Environment - set PIDFile - validate config and lease file in ExecStartPre - add -q to make dhcpd quiet and only log to syslog - set Restart=always | |||
2020-05-08 | dhcp-server: T2438: change systemd service type, validate config file | Jernej Jakob | |
The default of systemd services Type=simple isn't suitable for dhcpd and other daemons. - change service type to forking - add RuntimeDirectory - set paths to files in Environment - set PIDFile - validate config and lease file in ExecStartPre - add -q to make dhcpd quiet and only log to syslog - set Restart=always | |||
2020-05-08 | vxlan: T2435: fix syntax error | Jernej Jakob | |
2020-05-08 | pseudo-ethernet: T2435: fix syntax and copy-paste error | Jernej Jakob | |
2020-05-07 | T2431: use native versions of validate-value and numeric validator. | Daniil Baturin | |
2020-05-07 | openvpn: T2241: fix wrong indent caused by 66e15005 | Jernej Jakob | |
2020-05-07 | wireless: T2427: migrate to use common configdict and vlan functions | Jernej Jakob | |
Other interfaces were previously migrated, but this one was forgotten, causing a commit error: File "/usr/libexec/vyos/conf_mode/interfaces-wireless.py", line 621, in verify verify_vlan_config(wifi) File "/usr/lib/python3/dist-packages/vyos/ifconfig_vlan.py", line 155, in verify_vlan_config for vif in config['vif'].values(): AttributeError: 'list' object has no attribute 'values' | |||
2020-05-06 | http api: T2395: add waitress as production WSGI server | John Estabrook | |
2020-05-06 | http api: T2395: replace bottle with flask as microframework | John Estabrook | |
2020-05-06 | http api: use decorator to get command data from request | John Estabrook | |
2020-05-06 | http api: catch appropriate errors | John Estabrook | |
2020-05-06 | http api: function names should be consistent | John Estabrook | |
2020-05-06 | sstp: T2392: add IPv6 DNS support | Christian Poessinger | |
New command added: * set vpn sstp network-settings name-server 2001:db8::1111 | |||
2020-05-06 | sstp: T2392: add initial IPv6 support | Christian Poessinger | |
New commands added: * set vpn sstp network-settings client-ipv6-pool prefix 2001:db8::/64 mask 112 * set vpn sstp network-settings client-ipv6-pool delegate 2001:db8:100::/48 delegation-prefix 64 | |||
2020-05-06 | validator: T2417: try to make the code clearer | Thomas Mangin | |