Age | Commit message (Collapse) | Author |
|
The implementation of the "auto" option to specify the sflow/netflow
agent-address is very error prone. The current implementation will determine
the IP address used for the "auto" value as follow:
Get BGP router-id
1) If not found use OSPF router-id
2) If not found use OSPFv3 router-id
3) If not found use "the first IP address found on the system
Well, what is the "first IP address found"? Also this changes if DHCP is in use.
Also another disadvantage is when the BGP/OSPF/OSPFv3 router-id is changed,
the agent-address is not updated upon the next reboot of the system.
This task is about removing the "auto" keyword from the CLI at all and make it
either entirely configurable by the user and hardcode the value in CLI, or not
use this at all.
If "auto" is specified we will query the system in the above order and set the
proper router-id in the CLI. If none can be found the CLI node is removed.
|
|
sFlow uses the source-address CLI node and netflow uses source-ip this is just
confusing and should be synced to the common source-address CLI node.
|
|
|
|
|
|
After rewriting conntrack-sync to XML/python part of op-mode
parameters was missed
Add "status" and "statistics" for conntrack-sync
|
|
Can only concatenate str (not "int") to str
|
|
|
|
|
|
logs: T3774: Added CLI options to control atop logs rotation
|
|
* Added proper handling of default values from CLI.
* Replaced rsyslog restart postrotate action to native `rsyslog-rotate`
script.
* Removed unnecessary checks for `None` instead `dict` - with
default values the situation becomes impossible.
* Fixed default value from 10 to 1 in the rsyslog CLI.
|
|
|
|
|
|
Added the ability to control the `/var/log/messages` rotation.
Renamed the option `maxsize` to `max-size`.
|
|
Switched to `vyos.util.dict_search()` to keep the style common with the
rest components.
Removed config file comparison - almost the same result may be reached
by removing a configuration file with each boot, we already have such a
feature in the `vyos-router`.
|
|
|
|
|
|
|
|
|
|
The BGP conditional advertisement feature uses the non-exist-map or the
exist-map and the advertise-map keywords of the neighbor advertise-map command
in order to track routes by the route prefix.
non-exist-map
=============
* If a route prefix is not present in the output of non-exist-map command, then
advertise the route specified by the advertise-map command.
* If a route prefix is present in the output of non-exist-map command, then do
not advertise the route specified by the addvertise-map command.
exist-map
=========
* If a route prefix is present in the output of exist-map command, then
advertise the route specified by the advertise-map command.
* If a route prefix is not present in the output of exist-map command, then do
not advertise the route specified by the advertise-map command.
This feature is useful when some prefixes are advertised to one of its peers
only if the information from the other peer is not present (due to failure in
peering session or partial reachability etc).
The conditional BGP announcements are sent in addition to the normal
announcements that a BGP router sends to its peer.
CLI nodes can be found under:
* set protocols bgp neighbor <ip> address-family <afi> conditional-advertisement
* set protocols bgp peer-group <p> address-family <afi> conditional-advertisement
|
|
expose OS
|
|
|
|
|
|
|
|
(cherry picked from commit 5e7243db4ced47dbad48913f86909ba284fcc24d)
|
|
(cherry picked from commit e73b40a04ee90a91b778ce72a60cbb751f42a306)
|
|
(cherry picked from commit a8ebb4817955b3f33f773a4d05c753dfc77958cd)
|
|
|
|
Background information [1]. Specifies whether an external control plane
(e.g. ip route encap/EVPN) or the internal FDB should be used.
[1]: https://legacy.netdevconf.info/2.2/slides/prabhu-linuxbridge-tutorial.pdf
|
|
This prevented VyOS to actually boot as the configuration could not be
loaded, as "system host-name" was unable to commit.
|
|
in __init__"
This reverts commit bcfe967f607a83192d75c01e7f414655891eec60.
|
|
T562: Config syntax for defining DNS forward authoritative zones
|
|
|
|
... thus we simply read the configuration the first time it really becomes
necessary and a message requireing the data needs it actually.
|
|
Added CLI options to generate logrotate configuration file for atop logs
|
|
pppoe-server: T3006: Add range to regex generator
|
|
|
|
|
|
|
|
Remove superfluous print() statement added in commit 0852c588d55 ("https: pki:
T3642: embed CA certificate into chain if specified").
|
|
|
|
|
|
netns: T3829: Ability to configure network namespaces
|
|
|
|
validators: T4052: Fix for warn message in the validator script
|
|
|
|
|
|
Validator expects variable "script" for the Warning message
But it gets undeclared "path"
|
|
While mangling the config dict retrieved via get_config_dict() into a private
representation of a configuration dictionary sync-groups were never accounted
for. Instead everything always ended up in the regular vrrp transition-script
section.
The implementation has been changed to directly work on the content of
get_config_dict() to stop any confusion and making redundant data copies
obsolete.
|
|
|
|
|