aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
* keepalived: fix config typoFlorian Eckert2020-06-15
| | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* Merge pull request #12229 from aaronjg/bugfix/mwan3-ipv6Florian Eckert2020-06-15
|\ | | | | mwan3: ipv6 improvements
| * mwan3: address reviewer comments on 5147dfc7Aaron Goodman2020-06-13
| | | | | | | | Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
| * mwan3: Use /128 for ipv6 if no other source address was foundAaron Goodman2020-05-29
| | | | | | | | Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
| * mwan3: Allow user to specify rules based on source interfaceAaron Goodman2020-05-29
| | | | | | | | | | | | | | | | | | | | | | | | | | Add an option for adding rules based on source interface. The default 0.0.0.0/0 src and destination ip addresses has been removed. It is unclear how the 'any' family of rules would have worked, as it appears each rule always required an ipv4 or ipv6 address src and destination address. With this change, the any family will work again. I also cleaned up a bunch of repeated code around adding the iptables rules for ipv4/ipv6/any in making the change. Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
| * mwan3: Do not mangle outgoing ipv6 pingsAaron Goodman2020-05-29
| | | | | | | | Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
| * mwan3: version bump to 2.8.6Aaron Goodman2020-05-22
| | | | | | | | Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
| * mwan3: force busybox pingAaron Goodman2020-05-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | openwrt 19.07 uses iputils 20101006-1 This ancient version of iputils has a bug where the -I option is not respected. https://github.com/iputils/iputils/issues/55 https://github.com/iputils/iputils/issues/56 https://bugs.openwrt.org/index.php?do=details&task_id=1486 Thus, we should force using busybox ping at "/bin/ping" until the iputils version gets an upgrade in the next major release Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
| * mwan3: don't add ipv6 link local address to routing tablesAaron Goodman2020-05-20
| | | | | | | | Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
| * mwan3: reduce calls to `ip route list'Aaron Goodman2020-05-20
| | | | | | | | Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
* | samba4: unbundle libunwind, icuAndy Walsh2020-06-14
| | | | | | | | | | | | * add unbundle libunwind, icu patches Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
* | geth: update to 1.9.14Rosen Penev2020-06-13
| | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | Merge pull request #12504 from EricLuehrsen/unbound_ifautoEtienne Champetier2020-06-13
|\ \ | | | | | | unbound: make option interface_auto default on
| * | unbound: make option interface_auto default onEric Luehrsen2020-06-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Unbound has a quirk and may reply on a different device address. When Unbound answers with from-address different than it received queries on, it may cause trouble for select VPN and firewall configurations. Ensure Unbound replies with the same address by changing this default. Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
* | | simple-adblock: racially-neutral namesStan Grishin2020-06-13
|/ / | | | | | | Signed-off-by: Stan Grishin <stangri@melmac.net>
* | Merge pull request #12494 from dibdot/adblockDirk Brenken2020-06-13
|\ \ | | | | | | adblock: update 4.0.6
| * | adblock: update 4.0.6Dirk Brenken2020-06-13
| | | | | | | | | | | | | | | | | | | | | | | | * add anti_ad blocklist source * made SafeSearch provider configurable, you can limit SafeSearch to certain providers * update readme Signed-off-by: Dirk Brenken <dev@brenken.org>
* | | Merge pull request #12485 from stangri/masterDirk Brenken2020-06-13
|\ \ \ | | | | | | | | vpn-policy-routing: fix README .ovpn instructions
| * | | vpn-policy-routing: fix README .ovpn instructionsStan Grishin2020-06-11
| | | | | | | | | | | | | | | | Signed-off-by: Stan Grishin <stangri@melmac.net>
* | | | samba4: update to 4.12.3Andy Walsh2020-06-13
| |/ / |/| | | | | | | | | | | | | | | | | | | | * update to 4.12.3 * update/remove patches * disable netbios port 139 on 'DISABLE_NETBIOS' option or missing 'nmbd' Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
* | | dawn: update to latest versionDavid Woodhouse2020-06-12
|/ / | | | | | | | | | | | | | | | | | | | | Includes: - test_storage: further refactoring, added test functionality, and TESTING.md to describe testing approach - tcpsocket: implement client_read_cb with ustream_read my wheels are much worse than offical wheels. - Revert "tcpsocket: implement client_read_cb with ustream_read my wheels are much worse than offical wheels." - uci: fix arm64 compiling Fixes: #12488 Signed-off-by: David Woodhouse <dwmw2@infradead.org>
* | adblock: update 4.0.5-5Dirk Brenken2020-06-11
| | | | | | | | | | | | | | * add regional list source for czech/slovak * add regional list source for korea * adapt oisd_nl changes, switch to adb-syntax domains Signed-off-by: Dirk Brenken <dev@brenken.org>
* | haproxy: Update HAProxy to v2.1.7Christian Lachner2020-06-10
| | | | | | | | | | | | - Update haproxy download URL and hash Signed-off-by: Christian Lachner <gladiac@gmail.com>
* | dawn: update to latest versionDavid Woodhouse2020-06-10
| | | | | | | | | | | | | | | | | | Includes: - uci: truncate hostname at first dot - ubus/uci/datastorage: add iface and hostname - ubus: use strncpy and add backwards compatibility Signed-off-by: David Woodhouse <dwmw2@infradead.org>
* | Merge pull request #12464 from Andy2244/softethervpn5-9674Hannu Nyman2020-06-09
|\ \ | | | | | | softethervpn5: update to 9672
| * | softethervpn5: update to 9672Andy Walsh2020-06-09
| | | | | | | | | | | | | | | | | | * update to 9672 Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
* | | wsdd2: update to git 2020-05-06Andy Walsh2020-06-09
|/ / | | | | | | | | | | | | * update to git 2020-05-06 * Fix '-b' option parsing Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
* | Merge pull request #12389 from TDT-AG/pr/20200603-xinetd-uciFlorian Eckert2020-06-09
|\ \ | | | | | | xinetd: add uci support
| * | xinetd: do not save xinet.d configrations on sysupgradeFlorian Eckert2020-06-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Since we can now configure xinet.d with uci, it is no longer necessary to save the configuration in /etc/xinet.d/* when upgrading the system. This was wrong anyway, because other packages can also store configuration there. If this configuration get changed then the new/changed one will never get applied, because the configration is always replaced with the saved configration during sysupgrade. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * | xinetd: add support for UCI configurationHelge Mader2020-06-09
| | | | | | | | | | | | Signed-off-by: Helge Mader <ma@dev.tdt.de>
* | | Merge pull request #12324 from aaronjg/openfortivpn/netifdRosen Penev2020-06-08
|\ \ \ | | | | | | | | openfortivpn: Use netifd for script rather than init script
| * | | openfortivpn: avoid flash writes on pppd scriptAaron Goodman2020-06-04
| | | | | | | | | | | | | | | | Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
| * | | openfortivpn: Use netifd for script rather than init scriptAaron Goodman2020-06-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | By using the netifd for open fortivpn we are able to set up multiple VPN connections and manage them through the netifd toolset. This also adds support for binding an openfortivpn client to a given interface, in which case when that interface comes online, the vpn will be initiated via a hotplug script. This is a breaking commit and configurations will need to be migrated from openfortivpn.config into the /etc/config/networks. Example configuration via /etc/config/network: config interface 'ftvpn' option proto 'openfortivpn' option server 'example.com' option username 'USERNAME' option password 'PASSWORD' # optional arguments follow option local_ip '192.0.5.1' option port '443' option iface_name 'wan' option trusted_cert 'CERT_HASH' option set_dns '0' option pppd_use_peerdns '0' option metric '10' Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
| * | | openfortivpn: version bump to 1.14.1Aaron Goodman2020-06-04
| | | | | | | | | | | | | | | | Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
* | | | Merge pull request #12388 from neheb/dnsdRosen Penev2020-06-08
|\ \ \ \ | | | | | | | | | | dnsdist: fix compilation with libcxx 10
| * | | | dnsdist: fix compilation with libcxx 10Rosen Penev2020-06-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | string_view is available with both boost and std. Backported extra patch getting rid of using namespace std. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | | | simple-adblock: remove obsolete dshield.org links from configStan Grishin2020-06-08
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Stan Grishin <stangri@melmac.net>
* | | | | dawn: fix network packet format to be host-agnosticDavid Woodhouse2020-06-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I tried Dawn and it whined at me because it didn't understand its own packets from a different-endian host. Mon Jun 8 10:49:12 2020 daemon.err dawn[19742]: not complete msg, len:308, expected len:872480768 Mon Jun 8 10:49:12 2020 daemon.err dawn[19742]: not complete msg, len:708, expected len:3288465408 https://github.com/berlin-open-wireless-lab/DAWN/issues/92 Signed-off-by: David Woodhouse <dwmw2@infradead.org>
* | | | | gnurl: update to version 7.70.0Daniel Golle2020-06-07
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* | | | | Merge pull request #12096 from tohojo/sqm-scripts-dep-fixHannu Nyman2020-06-06
|\ \ \ \ \ | |/ / / / |/| | | | sqm-scripts: Switch sch_cake dependency to new virtual package
| * | | | sqm-scripts: Switch sch_cake dependency to new virtual packageToke Høiland-Jørgensen2020-05-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | As reported in https://github.com/openwrt/packages/issues/12072, the imagebuilder fails due to a dependency resolution error when the userspace packages are built using a target that has a different kernel version than that which is being run. To resolve this, move the sqm-scripts dependency to a new virtual package, which hopefully should be consistent with the actual kernel module being built. Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
* | | | | Merge pull request #12295 from neheb/ola2Rosen Penev2020-06-06
|\ \ \ \ \ | | | | | | | | | | | | ola: fix compilation with GCC4
| * | | | | ola: replace gnu++11 patch with a configure varRosen Penev2020-05-31
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Simpler. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | | | | Merge pull request #12236 from ja-pa/tor-0.4.3.5Rosen Penev2020-06-06
|\ \ \ \ \ \ | | | | | | | | | | | | | | tor: update to version 0.4.3.5
| * | | | | | tor: update to version 0.4.3.5Jan Pavlinec2020-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
* | | | | | | Merge pull request #12306 from d-bourdon/coova-enable-jsonRosen Penev2020-06-06
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | coova-chilli: Add json interface build option
| * | | | | | | coova-chilli: Update pkg_releaseDylan Bourdon2020-05-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Dylan Bourdon <dbourdon@student.42.fr>
| * | | | | | | coova-chilli: Add json interface build optionDylan Bourdon2020-05-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Dylan Bourdon <dbourdon@student.42.fr>
* | | | | | | | dawn: update to latest versionNick Hainke2020-06-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Includes: - ubus: fix wrong parsing policy Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | | | | | Merge pull request #12360 from rs/nextdns-1.6.4-masterRosen Penev2020-06-05
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | nextdns: Update to version 1.6.4
Powered by cgit, Themed by Ted Yin.