| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2022-04-26 | Merge pull request #1301 from sever-sever/T4236 | Christian Poessinger | |
| op-mode: T4236: Split to new lines openvpn client certs | |||
| 2022-04-26 | op-mode: T4236: Split to new lines openvpn client certs | Viacheslav Hletenko | |
| The command "generate openvpn client-config" generates client.ovpn file and CA and client certificate are displayed in one line To fix it Add 'fill' that set new line after every x characters | |||
| 2022-04-25 | vpn-ipsec: T4398: Fix unexpected passthrough policy for peer | Viacheslav Hletenko | |
| Set default passtrough list to None to prevent unexpected policy for peers with not overplapped local and remote prefixes | |||
| 2022-04-25 | pppoe: T4391: bugfix IPv6 DHCP-PD not working after reboot | Christian Poessinger | |
| When VyOS is booting and an interface is brought up (PPPoE) which requires a user callback script that is executed asynchronously when the interface is up we can not use Config(). The problem is, Config() is not available when the system starts and the initial commit is still processed. We need to move to ConfigTreeQuery() which was build for this exact same purpose. | |||
| 2022-04-25 | vyos.configdict: T4391: enable get_interface_dict() ti be used with ↵ | Christian Poessinger | |
| ConfigTreeQuery() When VyOS is booting and an interface is brought up (PPPoE) which requires a user callback script that is executed asynchronously when the interface is up we can not use Config(). The problem is, Config() is not available when the system starts and the initial commit is still processed. We need to move to ConfigTreeQuery() which was build for this exact same purpose. TO reduce side effects and also dependencies on the entire vyos.configdict library the set_level()/get_level() calls got eliminated from within the library. All calls to functions like: * get_removed_vlans() * is_node_changed() * leaf_node_changed() * is_mirror_intf() * ... Now require that the full config path to the node is passed. | |||
| 2022-04-25 | arp: T4397: migrate to get_config_dict() | Christian Poessinger | |
| 2022-04-25 | op-mode: T4395: Extend show vpn debug | Viacheslav Hletenko | |
| Get more VPN IPSec information with swanctl and iproute2 commands | |||
| 2022-04-22 | dhcpv6: T4357: use variable for systemd service name | Christian Poessinger | |
| 2022-04-22 | dhcpv6: T4357: only two IPv6 Cisco tftp servers should be defined | Christian Poessinger | |
| 2022-04-22 | dhcpv6: T4357: remove ConfigError() line breaks - this is done automatically | Christian Poessinger | |
| 2022-04-22 | dhcpv6: T4357: no need to make the vendor options conditional - they do not hurt | Christian Poessinger | |
| Always render int he vendor specific option definition - it doesn't hurt. | |||
| 2022-04-22 | Merge branch 'T4357' of https://github.com/sever-sever/vyos-1x into current | Christian Poessinger | |
| * 'T4357' of https://github.com/sever-sever/vyos-1x: dhcpv6: T4357: Add dhcpv6 options for cisco VoIP tftp | |||
| 2022-04-22 | dhcpv6: T4357: Add dhcpv6 options for cisco VoIP tftp | Viacheslav Hletenko | |
| Add vendor specific options for DHCPv6-server for working with cisco VoIP phone provisioning over IPv6 | |||
| 2022-04-21 | pppoe: T4384: replace default-route CLI option with common CLI nodes already ↵ | Christian Poessinger | |
| present for DHCP VyOS 1.4 still leverages PPPd internals on the CLI. pppd supports three options for a default route, none, auto, force. * none: No default route is installed on interface up * auto: Default route is only installed if there is yet no default route * force: overwrite any default route There are several drawbacks in this design for VyOS and the users. If auto is specified, this only counted for static default routes - but what about dynamic ones? Same for force, only a static default route got replaced but dynamic ones did not got taken into account. The CLI is changed and we now re-use already existing nodes from the DHCP interface configuration: * no-default-route: On link up no default route is installed, same as the previous default-route none * default-route-distance: We can now specify the distance of this route for the routing table on the system. This defaults to 210 as we have for DHCP interfaces. All this will be migrated using a CLI migration script. | |||
| 2022-04-21 | bgp: T4385: peer-group member cannot override remote-as of peer-group | Christian Poessinger | |
| 2022-04-20 | openvpn: T4369: enforce daemon-restart on openvpn-option CLI change | Christian Poessinger | |
| 2022-04-18 | vxlan: geneve: T4370: support configuration of DF bit option | Christian Poessinger | |
| set interfaces vxlan vxlan0 parameters ip df <set|unset|inherit> set interfaces geneve gnv0 parameters ip df <set|unset|inherit> | |||
| 2022-04-18 | openvpn: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-18 | bgp: T4368: AS specified for local-as can not be the same as remote-as | Christian Poessinger | |
| 2022-04-18 | Revert "salt-minion: T4364: use systemd FinalKillSignal as process sometimes ↵ | Christian Poessinger | |
| does not terminate" This reverts commit dda1b02932a5108ef257f59323dcfcf82582b805. | |||
| 2022-04-16 | geneve: T4366: prevent interface re-creation on nasic parameter change | Christian Poessinger | |
| Changing the geneve interface description does destroy the interface on the kernel level - this should be avoided as it's ... stupid! | |||
| 2022-04-16 | vyos.base: use Warning() helper for op-mode commands | Christian Poessinger | |
| 2022-04-16 | salt-minion: T4364: use systemd FinalKillSignal as process sometimes does ↵ | Christian Poessinger | |
| not terminate | |||
| 2022-04-16 | vyos.base: use Warning() helper where applicable | Christian Poessinger | |
| 2022-04-16 | salt-minion: T4364: issue warning - do not use sha1 hashing algorithm | Christian Poessinger | |
| 2022-04-16 | dhcp(v6)-relay: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-16 | salt-minion: T4364: remove debug print statement | Christian Poessinger | |
| 2022-04-16 | dns: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-15 | dhcp(v6)-server: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-15 | salt-minion: T4364: add source-interface CLI option support | Christian Poessinger | |
| 2022-04-15 | salt-minion: T4364: add support for source-interface definition | Christian Poessinger | |
| 2022-04-15 | salt-minion: T4364: migrate to get_config_dict() | Christian Poessinger | |
| 2022-04-15 | salt-minion: T4363: mine_interval option is not set | Christian Poessinger | |
| 2022-04-15 | salt-minion: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-14 | wifi: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-14 | macsec: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-14 | ethernet: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-14 | ssh: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-14 | ntp: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-14 | frr: T4353: fix Jinja2 linting errors | Christian Poessinger | |
| 2022-04-12 | frr: rpki: T4353: add ".j2" file extension on Jinja2 template | Christian Poessinger | |
| 2022-04-11 | snmp: T4346: remove IPv6 disabled code-path | Christian Poessinger | |
| 2022-04-10 | nat: T2199: bugfix dry-run newly generated config before install | Christian Poessinger | |
| Commit bb76e8d7f1635 ("nat: T2199: dry-run newly generated config before install") added support to verify the generated nftables ruleset. Unfortunately if the verify failed - a Python exception was triggered: NameError: name 'nftables_ct_file' is not defined This was due to bad copy/pasting. | |||
| 2022-04-09 | Merge pull request #1242 from goodNETnick/ocserv_local_otp | Christian Poessinger | |
| ocserv: T4231: Added OTP support for Openconnect 2FA | |||
| 2022-04-09 | ocserv: T4231: Added OTP support for Openconnect 2FA | goodNETnick | |
| 2022-04-08 | dhcp-server: T4344: Fix underscores for shared network name | Viacheslav Hletenko | |
| Shared network name should not be handled by tag node mangling I.e. should not replace underscores with dashed set service dhcp-server shared-network-name NET_01 shared-network NET_01 { authoritative; ... on commit { set shared-networkname = "NET_01"; } } | |||
| 2022-04-07 | http api: T4347: return complete and consistent error codes | John Estabrook | |
| 2022-04-07 | policy: T4194: simplify prefix-list duplication checks | Christian Poessinger | |
| Commit 5dafe255d ("policy: T4194: Add prefix-list duplication checks") added first support for FRR prefix-list duplication checks. FRR does not allow to specify the same profix list rule multiple times. vyos(config)# ip prefix-list foo seq 10 permit 192.0.2.0/24 vyos(config)# ip prefix-list foo seq 20 permit 192.0.2.0/24 % Configuration failed. Error type: validation Error description: duplicated prefix list value: 192.0.2.0/24 There is a VyOS verify() function which simply probed for the prefix, action, le and ge settings - but as Python has excellent support when comparing data, this can be as simple as a dictionary comparison using "==". | |||
| 2022-04-07 | ipv6: T4346: delete (migrate) CLI command to disable IPv6 address family | Christian Poessinger | |
| 2022-04-07 | ipv6: T4346: deprecate CLI command to disable IPv6 address family | Christian Poessinger | |
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |