vyos/vyos-documentation
1
0
Fork 0
mirror of https://github.com/vyos/vyos-documentation.git synced 2025-10-26 08:41:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
3,091 Commits 32 Branches 12 Tags
Commit Graph

745 Commits

Author SHA1 Message Date
strifel
5eeeb7bb5f
Update passive-interface default exclusion notice 
Update notice telling users how to exclude passive interface.
 2024-01-18 21:27:10 +01:00
Christian Breunig
1431c3736b https: add latest CLI changes 
(cherry picked from commit cecc0f3c32afb455ddb006b35faf343877061443)
 2024-01-11 06:32:08 +00:00
Christian Breunig
02446eb692 pki: T5886: add support for ACME protocol (LetsEncrypt) 
(cherry picked from commit 8e2932ebb426534b6727836c51395077ed8ed490)
 2024-01-11 06:30:03 +00:00
Trae Santiago
8a81c9ccfb added new NPTv6/DHCPv6 example 
(cherry picked from commit 1b1cc7986813c65b608ace38bf497622eb74f1cf)
 2024-01-11 06:28:58 +00:00
Bubun Das
98e93c7c6f Update monitoring.rst 
Updated docs for influxdb

(cherry picked from commit 8628ad46eb25d5e165cf2e03f52c2b7c7bc7b6ca)
 2024-01-08 20:19:16 +00:00
Christian Breunig
ca8b793cff dns: T5900: add dont-throttle-netmasks and serve-stale-extensions powerdns features 
(cherry picked from commit 9ca5e9dd89eabda161d974e7359ab2716fe56464)
 2024-01-06 20:55:30 +01:00
aapostoliuk
c72e0d8f9a accel-ppp: T5688: Changing CLI to create client address pool 
Changing CLI to create client address pool

(cherry picked from commit 1096cbcf95f96334d773ab98cce9d26d311f9e51)
 2023-12-30 22:16:53 +01:00
Christian Breunig
20a6836e16 system: T5877: Shorten system domain-search config path 
Documentation pdate for https://github.com/vyos/vyos-1x/pull/2718

(cherry picked from commit 05215848a5df37a4cc4075a58b05f19871a56306)
 2023-12-30 10:45:27 +01:00
Nicolas Fort
4b14c6c749 dhcp-server: update docs for op-mode command <show dhcp server leases> 
(cherry picked from commit 0893ca769b1796d2d61dc26a0c0c13d1eda56f5e)
 2023-12-28 10:37:55 +00:00
Christian Breunig
97a3df1722 firewall: sync to master branch 2023-12-27 12:03:44 +01:00
Viacheslav Hletenko
6414b4db09 Add system update-check example 
Add an example of online checking for updates
```
set system update-check auto-check
set system update-check url <url>
```

(cherry picked from commit fd3073eef7bcbd64112e0581ba10afb58100b30d)
 2023-12-26 12:21:19 +00:00
Christian Breunig
e5571ffdbf snmp: T5855: migrate "set service lldp snmp enable" to "set service lldp snmp" 
(cherry picked from commit 0ed155b05523c755a9eb777c49a3a0fd4b56149e)
 2023-12-25 11:01:31 +01:00
Christian Breunig
6f1ed9681b frr: T4020: document multiple per daemon config knobs 
(cherry picked from commit 4aeedc96c2168bd6e19c2be7d30584c8a9fa6ab7)
 2023-12-15 10:47:44 +01:00
Viacheslav Hletenko
0a5103984a NAT64: Add example of configuration for NAT64 
Add a simple description and example of NAT64

(cherry picked from commit 9a049c007001aaa463ba51f82ecf2fb7ed1e4f20)
 2023-12-11 19:25:07 +00:00
aapostoliuk
4fc7bdf5db policy: T4704: Added set metric (MED) to (+/-)rtt in route-map 
Added set metric (MED) to (+/-)rtt in route-map

(cherry picked from commit a78504e95cac31f84714268441781ed0cc8ff578)
 2023-12-08 08:38:51 +00:00
Christian Breunig
09a8acd602 vpn: update site2site VTI example 
(cherry picked from commit 0429c317884d8951cbf2e432981edeacd426f3ed)
 2023-12-02 20:56:32 +01:00
Giggum
690647a1df docs: fix to code snippet in Quick Start/Firewall and typo Firewall/Global Options 
sagitta/quick-start.html:
Fix to replace "interface-name" with "name" for rule 30 and 40 in code snippet to correct syntax error.

sagitta/configuration/firewall/global-options.html:
Fix to improve correctness is use of English language from "conform" to "confirming"

On branch sagitta_giggum
Changes to be committed:
	modified:   quick-start.rst
	modified:   configuration/firewall/global-options.rst
 2023-11-29 10:55:03 -05:00
Christian Breunig
84498945cc ipsec: gre: use dummy interface in example over loopback 
(cherry picked from commit 5953d6f69748c82cbd9eafbe662163924ae719e6)
 2023-11-24 21:29:53 +01:00
rebortg
5fb241c9ae fix some build warnings 2023-11-24 10:48:09 +01:00
rebortg
4aa0865d9f backport Firewall docs from master 2023-11-23 21:09:57 +01:00
Christian Breunig
32400cbbda vxlan: T5753: add support for VNI filtering 
(cherry picked from commit c8f8c2d10cca97bbc459c5a3565d4230e9fe61df)
 2023-11-22 11:06:09 +01:00
Christian Breunig
841cf147ec http: T5762: rename "virtual-host listen-port" -> "virtual-host port" 
(cherry picked from commit 2e3510f9886a5512b320267f21035d291c2fb3f5)
 2023-11-22 11:05:37 +01:00
Christian Breunig
2c61e8fa88 http: T5762: api: make API socket backend communication the one and only default 
Why: Smoketests fail as they can not establish IPv6 connection to uvicorn
backend server.

https://github.com/vyos/vyos-1x/pull/2481 added a bunch of new smoketests.

While debugging those failing, it was uncovered, that uvicorn only listens on
IPv4 connections

vyos@vyos# netstat -tulnp | grep 8080
(Not all processes could be identified, non-owned process info
 will not be shown, you would have to be root to see it all.)
tcp        0      0 127.0.0.1:8080          0.0.0.0:*               LISTEN      -

As the CLI already has an option to move the API communication from an IP to a
UNIX domain socket, the best idea is to make this the default way of
communication, as we never directly talk to the API server but rather use the
NGINX reverse proxy.

(cherry picked from commit 12ffd3e638dc00ae672b47c9dd2a64e0e68d0c01)
 2023-11-21 08:23:54 +01:00
Christian Breunig
21f0d774b5 pim: igmp: T5733: adjust to latest CLI syntax 
(cherry picked from commit 2de650e60c84c70e26cc02341c07fe84e6d1c1fa)
 2023-11-16 15:48:50 +01:00
JeffWDH
a98dc001a8 Add "monitor log ssh" and "monitor log ssh dynamic-protection" 
(cherry picked from commit 6b2d50c755a56ae62620961131bbaebefe110acc)
 2023-11-07 20:29:24 +00:00
JeffWDH
beb1af052e Update ssh.rst 
Added:
show log ssh
show log ssh dynamic-protection
show ssh fingerprints
show ssh fingerprints ascii
show ssh dynamic-protection

(cherry picked from commit c9a06800f999f6e68883ec7d3ae7fd97e3b6e4d5)
 2023-11-07 20:29:24 +00:00
Christian Breunig
c2b5fd2486 T5699: vxlan: migrate "external" CLI know to "parameters external" 
(cherry picked from commit 8c838d7ca979a0272052f8eb1dd41fa35645df1d)
 2023-10-31 07:38:06 +01:00
Christian Breunig
fa995c7dcb vxlan: T5668: add CLI knob to enable ARP/ND suppression 
(cherry picked from commit 11cb9979e0087c9742ce80d11dd06318bc533917)
 2023-10-31 07:33:15 +01:00
Christian Breunig
0834ca58cd vxlan: add missing "parameters nolearning" help 
(cherry picked from commit 8a5804881c580f2c2ff25b25b9c4a5abea9ca228)
 2023-10-28 21:35:04 +02:00
Christian Breunig
92d4956d53 wireless: extend example with missing country-code 
(cherry picked from commit 1ddce99cc861a3e7de23ef218baeb435efa81880)
 2023-10-17 21:19:30 +02:00
Christian Breunig
1a01a619ab T5630: pppoe: allow to specify MRU in addition to already configurable MTU 
(cherry picked from commit 7090b69845a8d304d1608e18efef383082114f33)
 2023-10-08 09:08:50 +02:00
Christian Breunig
55b1909b03 vrf: add NAT example 2023-09-13 19:11:17 +02:00
John Estabrook
93c8726ab9
Merge pull request #1075 from dmbaturin/T5270-openvpn-peer-fingerprint 
openvpn: Add peer fingerprint mode
 2023-09-13 09:54:20 -05:00
Daniil Baturin
14633c945f openvpn: Add peer fingerprint mode 2023-09-13 15:39:58 +01:00
Robert Göhler
0a2c9463b9
Merge pull request #1076 from nicolas-fort/Firewall_new_cli_update 
Firewall refactor: add visible note in firewall docs:
 2023-09-11 20:37:43 +02:00
Yuxiang Zhu
44f64352e3 T5518: Document protocols pim6 2023-09-10 20:36:09 +08:00
Christian Breunig
d80690d563 vxlan: T3700: support VLAN tunnel mapping of VLAN aware bridges 2023-09-09 07:27:57 +02:00
Nicolas Fort
24d9c9b9d0 Firewall refactor: add visible note in firewall docs: zone, quick-start and config blueprint zone-policy 2023-09-08 09:49:02 -03:00
srividya0208
54bdc76b3b correction of ipsec compression syntax and added a reference 
for changes done for zone based firewall
 2023-09-04 02:49:17 -04:00
Robert Göhler
02aafc3df3
Merge pull request #1065 from giga1699/T5447 
MACsec: Document static key configuration
 2023-08-26 21:45:51 +02:00
Giga Murphy
c3796b825a MACsec: Document static key configuration 2023-08-26 03:01:39 +00:00
srividya0208
b5db744ad6 firewall: correction of default-action for rule-set 2023-08-25 14:13:44 -04:00
fett0
0317aa327d l3vpn : add label allocation mode documentation 2023-08-23 13:54:19 -03:00
Christian Breunig
f600198501 wifi: fix CLI nodes for country-code definition 2023-08-19 16:43:17 +02:00
Christian Breunig
abd405b91e T5409: add per-client-thread CLI option for wireguard and wireless interfaces 2023-08-17 22:01:54 +02:00
Christian Breunig
f6a30534bd l3vpn: T5338: fix review comment 2023-08-16 21:41:23 +02:00
Christian Breunig
aa7bd60c02
Merge pull request #1043 from aapostoliuk/T5338-sagitta 
l3vpn: T5338: Added 'protocols bgp interface <int> mpls forwarding'
 2023-08-16 21:39:12 +02:00
Christian Breunig
1cbd6eb89c
Merge pull request #1035 from nicolas-fort/T5160-new_fwall_cli 
T5160: New firewall cli - Update documentation for new firewall structure
 2023-08-16 21:38:08 +02:00
Nicolás Fort
bea877c627
Update release version on index 2023-08-14 06:42:11 -03:00
Nicolas Fort
d1d64ac44d T5014: add NAT Load Balance commands and configuration example. 2023-08-08 08:23:33 -03:00