1. 11 Jan, 2021 1 commit
    • Hans Dedecker's avatar
      interface-ip: add unreachable route if address is offlink · c00c8335
      Hans Dedecker authored
      
      
      In order to avoid a routing loop add an unreachable route for the
      address prefix is the offlink flag is set for an address.
      This fixes a routing loop which is currently present on point-to-point
      links (e.g PPP) when the wan interface is assigned a globally unique
      prefix (e.g. 2001:db8:1:0::/64) from which an IPv6 address is picked
      and installed on the wan interface
      (e.g. 2001:db8:1:0:5054:ff:feab:d87c/64)
      
      The prefix route 2001:db8:1::/64 would be present in the routing table
      which will route any packet with as destination 2001:db8:1::/64 to the wan
      interface and would be routed back by the upstream router due to the
      wan interface due to the assigned global unique prefix.
      Besides not installing the prefix route 2001:db8:1::/64 on point-to-point links
      adding an unreachable route is required to avoid the routing loop.
      Signed-off-by: default avatarHans Dedecker <dedeckeh@gmail.com>
      c00c8335
  2. 09 Jan, 2021 1 commit
  3. 05 Jan, 2021 1 commit
  4. 28 Dec, 2020 1 commit
  5. 14 Dec, 2020 1 commit
  6. 13 Dec, 2020 1 commit
  7. 30 Nov, 2020 4 commits
  8. 26 Nov, 2020 2 commits
  9. 23 Nov, 2020 2 commits
  10. 20 Nov, 2020 2 commits
  11. 18 Nov, 2020 2 commits
  12. 13 Nov, 2020 1 commit
  13. 05 Nov, 2020 4 commits
  14. 28 Oct, 2020 4 commits
  15. 22 Oct, 2020 4 commits
  16. 10 Oct, 2020 1 commit
  17. 12 Sep, 2020 4 commits
    • Johannes Kimmel's avatar
      netifd: vxlan: add aging and maxaddress options · 55a7b6b7
      Johannes Kimmel authored
      
      
      For both options the values can just be passed to the kernel. All
      unsigned values are accepted, thus no range checking required.
      Signed-off-by: default avatarJohannes Kimmel <fff@bareminimum.eu>
      55a7b6b7
    • Johannes Kimmel's avatar
      netifd: vxlan: add most missing boolean options · 11223f55
      Johannes Kimmel authored
      
      
      adds the folloing missing options:
        - learning
        - rsc
        - proxy
        - l2miss
        - l3miss
        - gbp
      
      See ip-link(3) for their meaning.
      
      still missing:
        - external
        - gpe
      
      I'm not sure how to handle them at the moment. It's unclear to me what
      IFLA_VXLAN_* value corresponds to the 'external' option and according to
      the manpage, gpe depends on it.
      Signed-off-by: default avatarJohannes Kimmel <fff@bareminimum.eu>
      11223f55
    • Johannes Kimmel's avatar
      netifd: vxlan: refactor mapping of boolean attrs · 226566b9
      Johannes Kimmel authored
      
      
      Add a small function to handle boolean options and make use of it to handle:
        - rxcsum
        - txcsum
      Signed-off-by: default avatarJohannes Kimmel <fff@bareminimum.eu>
      226566b9
    • Johannes Kimmel's avatar
      netifd: vxlan: handle srcport range · a3c033e2
      Johannes Kimmel authored
      
      
      This adds adds the ability to set the source port range for vxlan
      interfaces.
      
      By default vxlans will use a random port within the ephermal range as
      source ports for packets. This is done to aid scaleability within a
      datacenter.
      
      But with these defaults it's impossible to punch through NATs or
      traverese most stateful firewalls easily. One solution is to fix the
      srcport to the same as dstport.
      
      If only srcportmin is specified, then srcportmax is set in a way that
      outgoing packets will only use srcportmin.
      
      If a range is to be specified, srcportmin and srcportmax have to be
      specified. srcportmax is exclusive.
      
      If only srcportmax is specified, the value is ignored and defaults are
      used.
      Signed-off-by: default avatarJohannes Kimmel <fff@bareminimum.eu>
      a3c033e2
  18. 08 Sep, 2020 1 commit
  19. 10 Aug, 2020 1 commit
  20. 07 Aug, 2020 1 commit
  21. 27 Jul, 2020 1 commit