afeiszli
|
def1487bcf
|
fix default acl
|
2022-09-19 16:20:58 -04:00 |
|
0xdcarns
|
f5a20ffcca
|
fixed default node acl logic
|
2022-09-16 14:28:00 -04:00 |
|
Alex Feiszli
|
758e6a8378
|
Merge branch 'develop' into feature_v0.16.0_ee_update
|
2022-09-14 16:33:44 -04:00 |
|
afeiszli
|
42f0af85b6
|
set networkuser access level
|
2022-09-14 15:33:26 -04:00 |
|
afeiszli
|
255e400be8
|
set NetworkUser defaults
|
2022-09-14 15:08:38 -04:00 |
|
afeiszli
|
b5a3ad7dbd
|
add * to allowed groups by default
|
2022-09-14 14:33:08 -04:00 |
|
afeiszli
|
b670755cce
|
refactoring for ee
|
2022-09-14 13:26:31 -04:00 |
|
afeiszli
|
8a1ba674a7
|
ee fixes
|
2022-09-14 09:58:01 -04:00 |
|
afeiszli
|
e340b49aa8
|
set nil settings
|
2022-09-13 17:03:17 -04:00 |
|
afeiszli
|
51bc7c2272
|
remove bad log
|
2022-09-13 16:42:28 -04:00 |
|
afeiszli
|
96772bb4bd
|
network and ACL initialization
|
2022-09-13 15:41:23 -04:00 |
|
0xdcarns
|
88cd0a6497
|
initial commit
|
2022-09-13 15:25:56 -04:00 |
|
Matthew R. Kasun
|
f47d89ef62
|
remove unnecessary nft rule
|
2022-09-13 13:56:47 -04:00 |
|
Matthew R. Kasun
|
e4761ef21b
|
add check in nft rules for dual stack internet gateway
|
2022-09-12 15:11:19 -04:00 |
|
Alex Feiszli
|
6a6b55623a
|
Merge pull request #1514 from gravitl/feature_v0.15.1_normalize_networks
normalize cidr on network/egress gateway creation
|
2022-09-12 11:51:35 -04:00 |
|
Alex Feiszli
|
5475aa90ee
|
Merge pull request #1539 from gravitl/bugfix_v0.15.2_RunCmds
use RunCmd for postup/postdown
|
2022-09-12 11:45:44 -04:00 |
|
Abhishek Kondur
|
db532fd03a
|
add servers
|
2022-09-12 18:27:47 +05:30 |
|
Abhishek Kondur
|
91cc77ee5b
|
added comments
|
2022-09-12 18:11:21 +05:30 |
|
Abhishek Kondur
|
8cbe796748
|
add servers to telemetry data
|
2022-09-12 18:06:17 +05:30 |
|
Matthew R. Kasun
|
7ec8c4be2a
|
use RunCmd for postup/postdown
|
2022-09-09 14:15:10 -04:00 |
|
Matthew R. Kasun
|
b61c4d1068
|
address code review comments
|
2022-09-09 13:15:37 -04:00 |
|
Matthew R. Kasun
|
ce58eed740
|
fix merge conflict
|
2022-09-07 14:11:56 -04:00 |
|
afeiszli
|
3481ba739f
|
remove access key
|
2022-09-07 08:24:47 -04:00 |
|
Matthew R Kasun
|
d8bcf33701
|
Merge branch 'develop' into feature_v0.15.1_normalize_networks
|
2022-09-07 06:57:14 -04:00 |
|
Alex Feiszli
|
3ead2b5469
|
Merge pull request #1509 from gravitl/feature_v0.15.1_ipv6_egress
IPv6 support for gateways
|
2022-09-06 17:03:26 -04:00 |
|
Matthew R. Kasun
|
e2b50d9a0f
|
ipv6 rules - case
|
2022-09-06 10:37:49 -04:00 |
|
Matthew R. Kasun
|
2d87d14da4
|
networkaddress vice firstaddress
|
2022-09-06 09:17:13 -04:00 |
|
Matthew R. Kasun
|
e364423beb
|
return error
|
2022-09-06 07:03:21 -04:00 |
|
Matthew R. Kasun
|
6b42cbe120
|
normalize cidr on network/egress gateway creation
|
2022-09-03 08:55:49 -04:00 |
|
Matthew R. Kasun
|
24cbaaa50b
|
fix case for iptables rules
|
2022-09-03 08:41:38 -04:00 |
|
Matthew R. Kasun
|
dd7945bb5c
|
fix postup/postdown for dualstack
|
2022-09-02 16:33:48 -04:00 |
|
afeiszli
|
2b1181c9be
|
fixing ipv6 gateway address, adding to installer docs
|
2022-09-02 16:06:59 -04:00 |
|
Alex Feiszli
|
d8b86eb2fc
|
Merge pull request #1506 from gravitl/bugfix_v0.15.1_server_egress_check
fixing ip check for server
|
2022-09-02 14:01:09 -04:00 |
|
Matthew R. Kasun
|
9ac0bdc41d
|
fix ingress rules
|
2022-09-02 11:31:17 -04:00 |
|
Matthew R. Kasun
|
ecc9ef5aac
|
clean up nft rules
|
2022-09-02 11:01:19 -04:00 |
|
Matthew R. Kasun
|
16959f395a
|
ipv6 nat
|
2022-09-02 09:25:17 -04:00 |
|
afeiszli
|
cb6ab5184c
|
fixing ip check for server
|
2022-09-01 11:41:20 -04:00 |
|
Matthew R. Kasun
|
ea3a1933e1
|
add ip6table rules for gateways
|
2022-09-01 08:10:49 -04:00 |
|
0xdcarns
|
7347085e5e
|
conflict resolution
|
2022-08-30 10:55:18 -04:00 |
|
0xdcarns
|
c05320a323
|
initial logic added
|
2022-08-30 10:52:04 -04:00 |
|
Matthew R. Kasun
|
0d00e8289f
|
fix nft rules for internet gateway
|
2022-08-25 14:55:03 -04:00 |
|
Matthew R. Kasun
|
ed7e263fb1
|
fix parsing postup/postdown
|
2022-08-25 09:38:36 -04:00 |
|
Matthew R. Kasun
|
b7ea52c3b2
|
fix ; spacing on postup/postdown
|
2022-08-25 08:35:48 -04:00 |
|
Matthew R Kasun
|
723e4ebeee
|
Merge branch 'develop' into feature_v0.14.7_explicit_routes
|
2022-08-25 07:31:34 -04:00 |
|
Matthew R. Kasun
|
5240da222a
|
freebsd saving post up/post down command to conf file
|
2022-08-25 06:59:12 -04:00 |
|
Matthew R. Kasun
|
cd5e9abe06
|
Revert "freebsd post up/post down logic"
This reverts commit a0c8795d38 .
|
2022-08-25 06:50:19 -04:00 |
|
Matthew R. Kasun
|
a0c8795d38
|
freebsd post up/post down logic
|
2022-08-25 06:40:37 -04:00 |
|
afeiszli
|
48f8dd79e7
|
disabling zombie logic
|
2022-08-24 11:04:52 -04:00 |
|
Matthew R. Kasun
|
b2e5b239db
|
fix range check
|
2022-08-23 16:35:36 -04:00 |
|
afeiszli
|
dbec514d5d
|
doing a backwards loop instead
|
2022-08-23 15:21:36 -04:00 |
|
afeiszli
|
f07a6dcf2f
|
add handling for slice size reduction to for loop
|
2022-08-23 15:21:36 -04:00 |
|
Matthew R. Kasun
|
eb3ad7974d
|
fix interation logic
|
2022-08-23 15:21:36 -04:00 |
|
afeiszli
|
2db1571afb
|
doing a backwards loop instead
|
2022-08-23 15:06:49 -04:00 |
|
afeiszli
|
4a247d8f41
|
add handling for slice size reduction to for loop
|
2022-08-23 15:06:49 -04:00 |
|
Matthew R. Kasun
|
447e80efee
|
remove internet gateway from server peers allowed ip
|
2022-08-23 15:06:49 -04:00 |
|
afeiszli
|
5b21b03a61
|
doing a backwards loop instead
|
2022-08-23 15:04:24 -04:00 |
|
afeiszli
|
d836718f04
|
add handling for slice size reduction to for loop
|
2022-08-23 15:04:24 -04:00 |
|
Matthew R. Kasun
|
b572a8cdaf
|
fix interation logic
|
2022-08-23 14:56:53 -04:00 |
|
Matthew R. Kasun
|
044e0734c1
|
remove internet gateway from server peers allowed ip
|
2022-08-23 14:36:39 -04:00 |
|
Alex Feiszli
|
45df9b6bac
|
Merge pull request #1467 from gravitl/refactor_v0.14.7_server_routing
refactor server routing
|
2022-08-22 09:37:10 -04:00 |
|
Matthew R. Kasun
|
f536f0465c
|
check firewall type on gateway creation
|
2022-08-19 15:32:25 -04:00 |
|
Matthew R. Kasun
|
abadb28a56
|
remove unused functions to pass staticchecks
|
2022-08-19 14:38:36 -04:00 |
|
Matthew R. Kasun
|
184e5a66d9
|
refactor server routing
|
2022-08-19 11:25:39 -04:00 |
|
Matthew R Kasun
|
d7384b6a81
|
Merge pull request #1462 from gravitl/refactor_v0.14.7_unnecessary_code
remove func NetworkNodesUpdatePullChanges
|
2022-08-18 15:51:01 -04:00 |
|
Matthew R. Kasun
|
43258b642e
|
Merge branch 'develop' into bugfix_v0.14.7_nft
|
2022-08-18 15:49:06 -04:00 |
|
Matthew R. Kasun
|
3a1dd8dc1e
|
remove func NetworkNodesUpdatePullChanges
|
2022-08-18 04:49:35 -04:00 |
|
Matthew R. Kasun
|
e3c1189008
|
flush tables vice delete rules for nft
|
2022-08-18 04:20:23 -04:00 |
|
Matthew R Kasun
|
65723e23dd
|
Merge branch 'develop' into feature_v0.14.8_internet_gateway
|
2022-08-09 13:55:16 -04:00 |
|
Matthew R. Kasun
|
85cb88f0ad
|
use 0.0.0.0/0 ::/0 as egress range for internet gateways
|
2022-08-09 13:51:28 -04:00 |
|
dcarns
|
c7a3d2b098
|
Merge pull request #1449 from gravitl/feature_v0.14.7_translateiftablestonftables
Feature v0.14.7 translateiftablestonftables
|
2022-08-09 09:06:20 -04:00 |
|
cameronts
|
82d8d4ff1e
|
Rearrange imports per PR comments.
|
2022-08-08 13:02:32 -07:00 |
|
cameronts
|
e190bff807
|
Fix failing test.
|
2022-08-07 20:28:10 -07:00 |
|
cameronts
|
a6660bb377
|
Pull firewall command building to separate functions for easier maintenance/reuse. Change DeleteIngressGateway's approach to preserving the egress gateway (if present).
|
2022-08-07 19:22:54 -07:00 |
|
cameronts
|
aeca559a8a
|
Update code handling of firewall commands and add more logging.
|
2022-08-06 15:00:20 -07:00 |
|
cameronts
|
9f92b20a15
|
Added chain creation for nftables.
|
2022-08-05 05:07:00 -07:00 |
|
0xdcarns
|
de91533372
|
added better state management to make OAuth sign-ins HA
|
2022-08-04 10:03:39 -04:00 |
|
cameronts
|
c858d76bad
|
Merge branch 'develop' of https://github.com/gravitl/netmaker into feature_v0.14.7_translateiftablestonftables
|
2022-08-03 12:25:40 -07:00 |
|
cameronts
|
7c2fce3a55
|
Change to expandable switch-based firewall detection.
|
2022-08-03 12:18:04 -07:00 |
|
Bob
|
e202b0a045
|
fix removal of egress range from relayed egress allowedips
|
2022-08-03 18:59:55 +00:00 |
|
cameronts
|
eab23b7022
|
Modified ingress deletion handling to preserve egress gateway if present. Removed ingress from FreeBSD as not supported.
|
2022-08-03 11:36:16 -07:00 |
|
cameronts
|
e6d7c95669
|
Add netclient detection of nftables.
|
2022-08-02 15:01:45 -07:00 |
|
cameronts
|
903a7a65c8
|
Fix nftFound handling in logger.Log call.
|
2022-08-01 16:52:30 -07:00 |
|
cameronts
|
1b01914c52
|
Added logging for nftables handling.
|
2022-08-01 15:52:49 -07:00 |
|
cameronts
|
81c896b22a
|
Add nftables support.
|
2022-08-01 11:12:25 -07:00 |
|
Matthew R. Kasun
|
437e672360
|
code review comments
|
2022-07-28 07:57:19 -04:00 |
|
Matthew R. Kasun
|
7a763fec66
|
add extclient ip if relayed node is ingress
|
2022-07-27 06:20:54 -04:00 |
|
Matthew R. Kasun
|
82fe2b60f5
|
relayed node peer update for ingress
|
2022-07-26 16:40:54 -04:00 |
|
Mathias Neerup
|
0b4aca18db
|
Make NatEnabled string instead of boolean + add tests
|
2022-07-20 13:01:28 +02:00 |
|
Mathias Neerup
|
f9666c0a66
|
Add option to select if source NATing should be enabled or not
|
2022-07-19 16:28:44 +02:00 |
|
afeiszli
|
da293409d8
|
fix egress on server
|
2022-07-06 13:52:05 -04:00 |
|
Alex Feiszli
|
23fff67bd5
|
Merge pull request #1274 from gravitl/bugfix_v0.14.5_HA
Bugfix v0.14.5 ha
|
2022-06-30 20:58:30 -04:00 |
|
dcarns
|
29f5a9250e
|
Merge pull request #1270 from gravitl/bugfix_v0.14.5_relayed_egress
add logic for calculating peers when relayed node is egress gateway
|
2022-06-30 20:55:47 -04:00 |
|
0xdcarns
|
60a1c00c99
|
added better checks for HA servers
|
2022-06-30 17:00:12 -04:00 |
|
dcarns
|
3f2a56d03e
|
Merge pull request #1266 from gravitl/bugfix_v0.14.5_static_checks
eliminate static check warnings
|
2022-06-30 10:24:09 -04:00 |
|
dcarns
|
10fcd8b5c2
|
Merge pull request #1267 from gravitl/bugfix_v0.14.5_network_names
don't allow . in network name
|
2022-06-30 10:22:47 -04:00 |
|
0xdcarns
|
d909fc28ec
|
added local server check before updating server
|
2022-06-30 09:28:03 -04:00 |
|
Matthew R Kasun
|
6ab994bd9e
|
add logic for calculating peers when relayed node is egress gateway
|
2022-06-29 14:58:18 +00:00 |
|
Matthew R. Kasun
|
29786cc9c4
|
removeLocalServer only if node.IsServer
|
2022-06-27 18:06:26 -04:00 |
|
Matthew R. Kasun
|
075a0aafd4
|
don't allow . in network name
|
2022-06-27 14:08:59 -04:00 |
|
Matthew R. Kasun
|
0c4f5b100b
|
update validation of usernames
|
2022-06-27 13:51:09 -04:00 |
|