Commit Graph

1235 Commits

Author SHA1 Message Date
Franco Fichtner
f67b03e0fb net/zerotier: register device from plugin 2022-08-29 09:56:28 +02:00
Michael
86135ce282 net/wireguard: adjust naming validation (#3102) 2022-08-29 08:29:55 +02:00
Franco Fichtner
2c54478a8a net/frr: new version and migrate to NAME_setup use
PR: https://github.com/opnsense/core/issues/5917
2022-08-19 09:23:31 +02:00
Patrik Kernstock
b867e45c22 Allow specifying multiple PrefixLists and CommunityLists 2022-08-19 09:19:36 +02:00
Frank Wall
e2611c0b9f net/haproxy: bump model version 2022-08-10 21:03:40 +02:00
Jan Winkler
48abe360bb net/haproxy: bump version 2022-08-09 15:21:23 +02:00
Jan Winkler
996c01166d net/haproxy: add 2 new cache parameters, closes #2908 2022-08-09 15:11:45 +02:00
Franco Fichtner
8dd163fd48 net/relayd: phpunit 9 fix 2022-08-05 10:52:32 +02:00
Franco Fichtner
4c74529f61 plugins: remove obsolete _var_mfs; closes #3002 2022-08-01 09:29:17 +02:00
Franco Fichtner
9f89264b38 net/haproxy: bump revision for fix 2022-08-01 08:08:50 +02:00
Frank Wall
7d682dd143 Merge pull request #3043 from g-a-c/haproxy-php8-deprecations
Re-order function parameters due to PHP8 deprecation notice
2022-07-27 14:48:52 +02:00
Michael
d27499dbcc net/freeradius: Remove TTLS-GTC from default eap type (#3052) 2022-07-27 08:57:27 +02:00
Gavin Chappell
ad0905e575 missed one function 2022-07-15 21:52:43 +01:00
Gavin Chappell
19c614ee00 Re-order function parameters due to PHP8 deprecation notice
This changes the parameters for four functions in HAProxy.php.

The ACME Client appears to call these functions with positional rather than named params
so also switch the order of the parameters in these function calls in
2022-07-15 21:31:29 +01:00
Franco Fichtner
ffa4e71576 net/firewall: bump version for change 2022-07-04 12:27:48 +02:00
Maurice Walker
40b4fb4f14 net/tayga: add custom IPv6 routing feature (#2313)
* Convert TAYGA virtual interface to interface group

Allows nat64 interface assignment (required for adding custom routes).

* Add nat64 interface to tayga interface group

Required because TAYGA virtual interface was converted to interface group in c350c81e49.

* Add TAYGA configuration item to disable IPv6 route

* Add TAYGA GUI option to disable IPv6 prefix route

Required for adding custom routes.

* Add variable for disabling TAYGA IPv6 route

Required for adding custom routes.

* Add IPv6 route disable switch to TAYGA rc.d

Required for adding custom routes.

* Update TAYGA plugin to version 1.2

New feature: Custom IPv6 Routing

* Update TAYGA plugin to version 1.2

New feature: Custom IPv6 Routing

* Configure routes after TAYGA start

Required for custom routes.
2022-06-29 15:16:17 +02:00
corentin
285dcd88c3 read Filter property instead of FilterRule 2022-06-20 15:56:37 +02:00
Franco Fichtner
216ecc2c5c net/frr: document latest change, no version bump 2022-06-09 15:32:31 +02:00
Ad Schellevis
3370683d1e net/frr - BGP weight option and bug fix for disable-connected-check option (#2993)
* net/frr add bgp weight attribute and move disable-connected-check to the correct place. it looked like "community lists" missed a toggle action, added that as well.
2022-06-03 19:19:19 +02:00
Franco Fichtner
86a8cfc43e net/frr: prepare for next release 2022-05-25 15:04:13 +02:00
Ad Schellevis
f98282b821 net/frr add disable-connected-check option (#2989)
While working on an Azure setup where the neighbor isn't within visible range, we stumbled upon the "disable-connected-check" option to allow loopback addresses.
Reading a bit further there seem to be different ways of dealing with similar kind of situations.

Either by setting an ebgp-multihop ttl value or to enable the disable-connected-check option. Since the multihop didn't come with a help text, it seemed like a good idea to add at least the upstream frr one. Knowning that the current multihop fieldtype currently is wrong ("enabling" will set a ttl of 255, where it should have been a number)
2022-05-24 17:45:09 +02:00
Budiman Jojo
579adb0ea9 net/wireguard: fix newlines and typos (#2983) 2022-05-16 11:59:19 +02:00
Franco Fichtner
576e202b39 net/wireguard: update changelog 2022-05-16 09:23:10 +02:00
Michael
b6f550e0df Update resolve-dns.bash (#2984) 2022-05-14 12:46:50 +02:00
Malware Utkonos
8f8714c769 Trim whitespace around public and private keys in config. (#2982) 2022-05-13 20:07:19 +02:00
Franco Fichtner
c253ba6ddd net/vnstat: vnstat is console-based, but the plugin is not 2022-05-13 10:30:26 +02:00
Franco Fichtner
10aee293e8 net/wireguard: fix lint issues
755 is actually required here, .bash suffix to not break POSIX
shell lint.
2022-05-12 10:47:07 +02:00
Dr. Uwe Meyer-Gruhl
f31a35b31a os-wireguard: add script to enable cron renewal of DNS for stale connections (#2956) 2022-05-12 10:42:10 +02:00
Michael
3d21442232 net/frr: allow prefix-lists up to 10000 (#2972) 2022-05-06 12:13:42 +02:00
Ad Schellevis
85f40b884a net/frr: (BGP) according to the FRR documentation and the ui validations, match is optional (https://docs.frrouting.org/en/latest/routemap.html#term-Matching-Conditions). Likely fixes https://github.com/opnsense/plugins/issues/2955 (#2965) 2022-04-29 10:54:36 +02:00
Ad Schellevis
cf917d94fd net/relayd - upgrade version 2022-04-26 20:40:08 +02:00
Ad Schellevis
fd30e06017 net/relayd - add listen address and port (range) to Virtual Server tab. closes https://github.com/opnsense/plugins/issues/2959 (#2960) 2022-04-27 13:00:46 +02:00
Ad Schellevis
c7fea104ed net / frr - Routing: Diagnostics: OSPF - asbrRouter is an optional field, safeguard before usage. 2022-04-23 00:13:35 +02:00
Franco Fichtner
00f5664c56 net/frr: small cleanups 2022-04-21 11:59:22 +02:00
Ad Schellevis
8d45144ad4 FRR: OSPF ipv6 influence interface cost via carp (#2929)
add event handler for ospf6 carp demotion including required interface fields (carp_depend_on and cost_demoted).
while here polish some small usability issues, knowing:

o Interface networktype and interfacename should be single dropdown boxes
o diagnostics / bgp - fix search in grid, should only use a formatter for presentation purposes.
o carp_frr_ospf6 rc.carp_service_status.d event handler
o add "CARP demote" to model, form and template
o bugfix previous, missing IFS= (internal field seperator)
o missing ospf6d in log event handler
2022-04-21 11:33:59 +02:00
Franco Fichtner
0d4c3ae410 net/chrony: whitespace sweep 2022-04-04 20:12:01 +02:00
Michael
4664a4c72f net/chrony: add fallbackpeer and no cert check (#2774) 2022-03-29 09:24:56 +02:00
Franco Fichtner
ff9a7211aa net/freeradius: bump after fix 2022-03-16 08:10:38 +01:00
c-goes
b0fcd82305 net/freeradius: Fix template for sites-enabled-inner-tunnel (#2881) 2022-03-07 11:40:12 +01:00
Michael
acabf82813 Update sites-enabled-inner-tunnel (#2835) 2022-02-15 21:15:29 +01:00
Michael
18225b7a4a net/freeradius: Allow LDAP in inner-tunnel (#2626) 2022-02-15 10:00:21 +01:00
Franco Fichtner
0cd0919f3b net/frr: fix notes and version 2022-02-15 08:29:36 +01:00
Ad Schellevis
3e64ff9251 WIP net/frr: Add BGP password support (#2800)
Add BGP password support [https://github.com/opnsense/plugins/pull/2645]

Try to figure out which entries belong to FRR before removing them, so neighbour changes won't be left on the machine after apply.
Flush our desired configuration into /usr/local/etc/frr/sa_policies.conf for easy reading and testing.

Since we don't know if passwords have changed, we will have to drop SA's first. When this is a bit bumpy, we may also try to alter the existing SA's, this shouldn't be too hard to add later on.

Co-authored-by: Michael <m.muenz@gmail.com>
2022-02-03 10:35:06 +01:00
Franco Fichtner
88148b1943 net/mdns-repeater: new release 1.1 2022-02-01 08:24:39 +01:00
Markus Reiter
9ff548829c Add CARP hook for mDNS repeater. (#2762)
Only run the repeater on one node.

Fixes #2595.
2022-02-01 08:05:41 +01:00
Franco Fichtner
8bdd618652 plugins: style sweep 2022-01-31 08:36:13 +01:00
Markus Reiter
d737686eed mDNS repeater: cosmetic fixes 2022-01-21 21:08:24 +01:00
Michael
95250aaeb6 net/frr: Dont set empty defaults on required fields (#2761) 2022-01-21 15:36:09 +01:00
Michael
6f7127fdc6 net/wireguard: Allow 100 instances (#2760) 2022-01-21 11:41:15 +01:00
Frank Wall
f2adc7799e net/haproxy: fix link to tunables page 2022-01-20 00:23:35 +01:00