Age | Commit message (Collapse) | Author |
|
If Nginx address/port is already binded to another service
(for exampmle openconnect default port 443)
https api cannot start and we don't see any error in the output.
Add this check before applying service/commit
|
|
We check listen port before commit service if is port available and
not bounded, but when we start openconnect our own port starts be
bounded by "ocserv-main" process and next commit will be fail as
port is already bound
To fix it, extend check if port already bonded and it is not our
self process "ocserv-main"
|
|
When MACsec was bound to an ethernet interface and the underlaying
source-interface got changed (even description only) this terminated the
MACsec session running on top of it.
The root cause is when EAPoL was implemented in commit d59354e52a8a7f we
re-used the same systemd unit which is responsible for MACsec. That indeed lead
to the fact that wpa_supplicant was always stopped when anything happened on
the underlaying source-interface that was not related to EAPoL.
|
|
upnp: T4613: Verify listen key in dictionary
|
|
There is no check if 'listen' is exist in the dictionary, fix it
Fix odd ValueHelp format
|
|
|
|
ocserv: T4596: Rewrite show openconnect sessions op-mode
|
|
The command "restart dhcp relay-agent" doesn't restart "isc-dhcp-relay" service.
|
|
nat66: T4598: Add exclude options in nat66
|
|
Rewrite "show openconnect-server sessions" to vyos.opmode format
Ability to get raw and formatted output
Ability to get data via API
|
|
|
|
Check if openconnect listen port is available and not used by
another service
|
|
T2719: add an exception hierarchy for op mode errors
|
|
|
|
* https://github.com/Cheeze-It/vyos-1x:
bgp: T4257: Changing BGP "local-as" to "system-as"
|
|
|
|
nat66: T4586: Add SNAT destination prefix and DNAT address
|
|
|
|
Add IPV6 exclude validators:
- ipv6-address-exclude
- ipv6-prefix-exclude
Will use in nat66 source/destination
|
|
Add option restart to `containers.py`
|
|
Rewrite op-mode:
- show container
- show container network
- show container image
to the new vyos.opmode format
|
|
|
|
|
|
|
|
After commit 85d6c8f7c62 ("vyos.configdict: T4391: enable get_interface_dict()
to be used with ConfigTreeQuery()") we also need to use the full path when
working with Config() as previous calls to get_interface_dict() no longer change
the level of Config().
|
|
|
|
|
|
Check list of VRF's, check key 'ifname' is configured
If not configured, return message "VRF is not configured"
|
|
dns-forwarding: T4578: Rewrite show dns forwarding
|
|
Allows preferred lifetime for prefix advertisements to equal the
configured valid lifetime as per RFC 4861.
|
|
|
|
bgp: T4257: Changing BGP "local-as" to "system-as"
This change is to change the global BGP name for the node "local-as" to "system-as"
This is needed so that there's less ambiguity with the local-as feature per neighbor.
bgp: T4257: Changing BGP "local-as" to "system-as"
bgp: T4257: Changing BGP "local-as" to "system-as"
This change is to change the global BGP name for the node "local-as" to "system-as"
This is needed so that there's less ambiguity with the local-as feature per neighbor.
|
|
|
|
Rewrite op-mode "show dns forwarding statistics" to new format
Use vyos.opmode format
|
|
Rewrite op-mode "show nat destination rules" to new format
use "show_rules --direction destination"
Delete old script "show_nat_rules.py"
|
|
lb-wan: T4518: Add XML for conf mode load-balancing wan
|
|
graphql: T4554: Automate GraphQL handling of standardized op-mode requests
|
|
bridge: T4569: Extend bridge.py for op-mode
|
|
vxlan: T4570: Verify MTU for remote address if source not defined
|
|
nat: T4543: Fix and rewrite show nat source statistics
|
|
vrf: T4562: Rewrite show vrf name xxx delete old script op-mode
|
|
Signed-off-by: Date Huang <tjjh89017@hotmail.com>
|
|
Add option "--name" for function "show" to get required VRF name
Delete old script "show_vrf.py"
|
|
Rewrite "show nat source statistics"
Use new format 'vyos.opmode module'
Ability to get raw and formatted output
|
|
In some cases `source_address` can be not defined in the conf
So we should to check list of `remote` vxlanX addresses
If remote address is IPv6 - add overhead +20 bytes to default
overhead 50. I.e. +70 bytes for IPv6
|
|
Add default values for the function _get_formatted_output_rules
For variables:
sport, dport, proto, saddr, daddr
As in parser and loop those values or some of them may not occur
|
|
Extend bridge.py op-mode script, allow next commands to use own
op-mode functions
Add:
show bridge vlan
show bridge brX fdb
show bridge brX mdb
|
|
|
|
nhrp: T4546: Fixed gateway in route add command
|
|
bridge: T4569: Rewrite show bridge script of vyos.opmode format
|