summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2020-04-04vrf: T2221: when deleting vrf also delete unreachable routeChristian Poessinger
If the unreachable routes for IPv4 and IPv6 are not deleted, there will be an error when creating the same VRF again after removal. Error changing VRF: Command '['sudo', 'ip', '-4', 'route', 'del', 'vrf', 'Blue', 'unreachable', 'default', 'metric', '4278198272']' returned non-zero exit status 2.
2020-04-04vrf: T2221: only set l3mdev when changedChristian Poessinger
2020-04-04vxlan: T2172: remove group or remote check in verify()Christian Poessinger
This is a low level requirement for supporting l2vpn evpn.
2020-04-04Merge pull request #302 from thomas-mangin/T2190Christian Poessinger
ifconfig: T2190: option to prevent Interface creation
2020-04-04Merge pull request #303 from alainlamar/T2211Christian Poessinger
wireless: T2211: bugfix: vht_oper_chwidth was not set in hostapd config
2020-04-04Merge pull request #298 from jjakob/openvpn-multihomeChristian Poessinger
openvpn: T2222: set 'multihome' option when local-host is unset
2020-04-04Merge pull request #301 from alainlamar/T2208Christian Poessinger
wireless: T2208: bugfix: errors in the XML and Python file
2020-04-04openvpn: T2184: skip unactive interfaceThomas Mangin
Should the openvpn status file not be present, present a blank interface.
2020-04-04wireless: T2211: bugfix: Bugfix for the bugfix: set no defaultsAlain Lamar
When any defaults are set, VHT capabilities are automatically assumed for all WiFi modes which does not match the reality. Therefore we must leave this undefined by default.
2020-04-04wireless: T2211: bugfix: vht_oper_chwidth was not set in hostapd configAlain Lamar
When operating in certain modes, channel width must be configured for WiFi interfaces. The hostapd config does this in two separate lines which must both be configured: vht_oper_chwidth=(0|1|2|3) vht_capab+=[VHT160] for 160MHz in one block or vht_capab+=[VHT160-80PLUS80] for 160MHz as 2x 80MHz in two separate blocks.
2020-04-04wireless: T2208: bugfix: errors in the XML and Python fileAlain Lamar
Commits to "interfaces wireless wlanX capabilities vht link-adaptation (unsolicited|both)" always failed.
2020-04-04ifconfig: T2190: option to prevent Interface creationThomas Mangin
a new option was added to the Interface class "create". By default the value is set to True, and when an instance of the class is created and the underlying interface does not exists, the class will create it. If the option "create" is set to False, the interface will not be created and instead the class will raise an error when it is instantiated.
2020-04-04openvpn: T2222: set 'multihome' option when local-host is unsetjjakob
If configured with protocol udp and no local-host, openvpn needs the 'multihome' option to correctly work on all addresses.
2020-04-04pppoe: T1318: bugfix: proper use of ip-pre-up.d directoryChristian Poessinger
Commit b250b233ec1 ("pppoe: T1318: move Jinja2 templates to data/templates folder") actually placed the pre-up configuration script into the ip-up folder.
2020-04-04pppoe: T2219: move adding of default route to ip-(up|down) scriptChristian Poessinger
As PPPoE interfaces should be part of a VRF it is required that the default can also be set into the specified VRF. The default way of PPP by setting the "defaultroute" option does not take a VRF into account. In this case PPP installs a Kernel route forwarding all default traffic over this interface. This change installs a static route with metric 1 instead into the routing table via FRR. This is not the same as a Kernel route in terms of metric 1 compared to 0 but it should do the trick.
2020-04-04wwan: T1988: move default route scripts to Jinja templatesChristian Poessinger
2020-04-04pppoe: T1318: move Jinja2 templates to data/templates folderChristian Poessinger
This makes the actual code which generates the configs much more human readable.
2020-04-04vyos.util: use common subprocess_cmd wrapperChristian Poessinger
2020-04-04wwan: T1988: move Jinja2 templates to data/templates folderChristian Poessinger
This makes the actual code which generates the configs much more human readable.
2020-04-04wwan: T1988: move vrf/ifalias to ip-pre-up scriptChristian Poessinger
A ip-pre-up script is better the ip-up as this is done before any addresses have been added and any traffic flows.
2020-04-03Merge pull request #296 from zdc/T1820Christian Poessinger
VRRP: T1820: Added transition-script support for sync-groups
2020-04-03pppoe: T1318: minor cleanupsChristian Poessinger
2020-04-03wwan: T1988: minor cleanupsChristian Poessinger
2020-04-03Merge pull request #293 from zdc/T2193Christian Poessinger
VRRP: T2193: Added disabled VRRP instances to `show vrrp`
2020-04-03vrf: T31: Allow vrf name to look more like interface nameRunar Borge
Fix the regex to allow vrf instances like "eth0vrf" but not to allow "eth0"
2020-04-03validate: mac: autopep8Christian Poessinger
2020-04-03ipv6: T1831: add autoconf/eui64 addressing to interfacesChristian Poessinger
2020-04-03vrf: T31: name of isntance is not allowed to mimic an interface nameChristian Poessinger
Every VRF that's created is not allowed to be named like any interface that can be active on the system. This includes eth, lan, br, dum, lo .... In theoriy this would work but as soon as such a regular interface is created things will go sideways rather quick thus we limit the namespace which can be used to create a VRF. Appending an interface name is still possible like coolvrf-eth0.
2020-04-03pppoe: bugfix template name after migration to ip-up scriptsChristian Poessinger
Commit 6a0c6783d8b2 ("pppoe: migrate alias and vrf script from pre-up to up") changed the name of the ip-up script template but the template definition has been forgotten. This caused: NameError: name 'config_pppoe_ip_up_tmpl' is not defined
2020-04-02bgp: T2100: migration to drop parameter disable-network-import-checkJohn Estabrook
2020-04-02wwan: migrate alias and vrf script from pre-up to upChristian Poessinger
As the pre-up script is only run once when the interface is brought up but not when the interface maybe only comes up 20 seconds later due to the remote site some actions can not be performed as placing the interface e.g. into a VRF instance. TODO: also move the backup default route parts to this new script.
2020-04-02pppoe: migrate alias and vrf script from pre-up to upChristian Poessinger
As the pre-up script is only run once when the interface is brought up but not when the interface maybe only comes up 20 seconds later due to the remote site some actions can not be performed as placing the interface e.g. into a VRF instance.
2020-04-02wwan: migrate to new new helpers in vyos.utilChristian Poessinger
Commit d2cf287 ("vyos.util: add chown_file and chmod_x_file helpers") added common helper functions to chown or chmod +x a file. Make use of those helpers.
2020-04-02pppoe: migrate to new new helpers in vyos.utilChristian Poessinger
Commit d2cf287 ("vyos.util: add chown_file and chmod_x_file helpers") added common helper functions to chown or chmod +x a file. Make use of those helpers.
2020-04-02pppoe: vrf: bugfix - only pppoe0 could be assigned to a VRFChristian Poessinger
2020-04-02wwan: vrf: T2200: add CLI options and parse configuration to dictionaryChristian Poessinger
2020-04-02VRRP: T1820: Added transition-script support for sync-groupszsdc
Note: if transition-scripts configured for both vrrp instance and sync group, which are it a member of, both scripts will be executed.
2020-04-02VRRP: T2193: Added disabled VRRP instances to `show vrrp`zsdc
Disabled VRRP instances will be listed in a `show vrrp` command at the end of the list with the DISABLED status
2020-04-01keepalived: T1350: Replaced transition scripts logiczsdc
In old implementation, all notify scripts are configured directly inside a keepalived.conf. This way is not recommended even by keepalived as scripts execution is not tracked and they may be running not in order and killed before the actual work will be finished. We have observed such situations in very rare cases during tests. New implementation use FIFO pipe, to which keepalived send any state changes. And these notifications are read by a daemon, saved in a queue and processed one by one, which eliminates the situation when the scripts creating inconsistent config or environment.
2020-03-31Merge pull request #283 from thomas-mangin/T2057-wg-dumpChristian Poessinger
ifconfig: T2057: Move code from interface.py to wireguard.py
2020-03-31ifconfig: T2057: centralise wireguard codeThomas Mangin
Some left over wireguard code was left in the interface.py file. The code was moved into the wireguard.py file and the now empty interface.py file removed as no longer holdin any code.
2020-03-30config load: T2053: update for version string syntax changeJohn Estabrook
2020-03-30config merge: T2052: update for version string syntax changeJohn Estabrook
2020-03-30migration: T2029: run virtual migration before migrationJohn Estabrook
Update syntax of component version string, before passing config file to configtree in migration scripts.
2020-03-30migration: T2029: set default vintage; remove target from virtualJohn Estabrook
The VirtualMigrator updates the syntax of the component version string. Remove the default target, allowing downgrade to old syntax.
2020-03-30http api: T2160: allow restricting HTTP API to specific serversJohn Estabrook
By default, the HTTP API will be proxied by any nginx virtual server. Allow specifying a subset of servers to act as proxy.
2020-03-30wireless: T2151: support phys that provide multiple mac addressesChristian Poessinger
A user reported a PHY that provides two consecutive MAC addresses, this case has been added as I was not aware of such cards. As we manipulate the MAC address anyways its safe to take only the first one.
2020-03-29vrf: T31: bugfix after converting remove list to dictChristian Poessinger
The list of VRFs to remove has been converted to a dict. The deletion of a VRF was no longer triggered as the logic still thought it is a list.
2020-03-29vyos.util: increase usage of process_running() and remove duplicated codeChristian Poessinger
OpenVPN, WIFI, SSTP all had the same boiler plate copied about checking if a process associated with a pidfile is running or not. This has been migrated to the common library function vyos.util.process_running().
2020-03-29wwan: T1988: add missing support for backup default routesChristian Poessinger