summaryrefslogtreecommitdiff
path: root/package/network/config
Commit message (Collapse)AuthorAgeFilesLines
* IPIP: IP in IP package supportSteven Barth2014-10-022-0/+119
| | | | | | | | | | | | | | | | | | The package supports IP in IP by registering the ipip protocol handler Following options are configurable -peeraddr (IPv4 remote address) -ipaddr (IPv4 local address) -ttl (time to live of encapsulating packet) -tos (type of service of encapsulating packet either inherit (outer header inherits the value of the inner header) or hex value) -df (don't fragment flag of encapsulating packet) -mtu (IPIP tunnel mtu) -tunlink (bind tunnel to this interface) -zone (firewall zone to which the IPIP tunnel will be added) Signed-off-by: Hans Dedecker <dedeckeh@gmail.com> SVN-Revision: 42746
* netifd: fix an error message during network shutdownSteven Barth2014-10-021-1/+2
| | | | | | | | | | | | | When 'wifi down' is called by /etc/init.d/network, it is run from stop_service( ). This function is in turn invoked from stop( ). stop( ) messes up the order by first procd_kill-ing the network settings, then calling wifi to down the wifi networking interfaces. By redefining stop( ) instead, the proper order is restored. Signed-off-by: Michel Stam <m.stam@fugro.nl> SVN-Revision: 42745
* netifd: add IPIP tunnel support (thx Hans Dedecker)Steven Barth2014-10-021-2/+2
| | | | SVN-Revision: 42744
* GRE: Tos supportSteven Barth2014-09-292-3/+5
| | | | | | | | | | Tos support is added as a generic grev4/grev6 parameter which can have the following values : -inherit (outer header inherits the tos value of the inner header) -hex value Signed-off-by: Hans Dedecker <dedeckeh@gmail.com> SVN-Revision: 42700
* netifd: add support for promisc and GRE tos optionSteven Barth2014-09-291-2/+2
| | | | SVN-Revision: 42699
* firewall: allow '*' as synonym for any / all in family and proto optionsJo-Philipp Wich2014-09-191-2/+2
| | | | | | Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 42620
* firewall: fix heap corruption in fw3_bitlen2netmask() with IPv6 addressesJo-Philipp Wich2014-09-181-2/+2
| | | | | | Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 42610
* firewall: fix invalid memory access when processing /128 IPv6 addresses from ↵Jo-Philipp Wich2014-09-171-2/+2
| | | | | | | | ubus, properly emit REDIRECT rules for local port forwards Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 42604
* lantiq: revert vr9 driver update as it causes problemsJohn Crispin2014-09-152-5/+5
| | | | | | Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 42556
* qos-scripts: disable fq_codel ecn by default to improve compatibilityFelix Fietkau2014-09-111-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 42479
* lantiq: update to a newer versions of the vr9 driversJohn Crispin2014-09-112-5/+5
| | | | | | Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 42478
* netifd: work-around kernel IPv6 on-link route issueSteven Barth2014-09-081-2/+2
| | | | SVN-Revision: 42439
* netifd: update to the latest version, adds interface cleanup fixesFelix Fietkau2014-08-311-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 42345
* netifd: update to the latest version, fixes proto-shell teardown after renewFelix Fietkau2014-08-311-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 42344
* package/*: remove useless explicit set of function returncodeJohn Crispin2014-08-252-18/+0
| | | | | | | | | | | | | | | | | | | | | | somebody started to set a function returncode in the validation stuff and everybody copies it, e.g. myfunction() { fire_command return $? } a function automatically returns with the last returncode, so we can safely remove the command 'return $?'. reference: http://tldp.org/LDP/abs/html/exit-status.html "The last command executed in the function or script determines the exit status." Signed-off-by: Bastian Bittorf <bittorf@bluebottle.com> SVN-Revision: 42278
* firewall: the firewall did not start properly on bootJohn Crispin2014-08-211-1/+1
| | | | | | | | https://dev.openwrt.org/ticket/17593 Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 42233
* netifd: assign ipv6-prefixes with length <64 with /64 on-link routesSteven Barth2014-08-131-2/+2
| | | | SVN-Revision: 42161
* firewall: fix potential NULL pointer accessJo-Philipp Wich2014-08-111-2/+2
| | | | | | | | Properly skip struct ifaddr entries with NULL ifa_addr, thanks Kostas Papadopoulos for reporting. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 42138
* firewall: implement selective conntrack flushing (#10225)Jo-Philipp Wich2014-08-111-2/+2
| | | | | | | | | | Utilize the new selective conntrack flushing facility to clear out active conntrack entries referring to old IP addresses after a firewall reload. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 42114
* netifd: unblock some proto shell actions in teardown stateSteven Barth2014-08-071-2/+2
| | | | SVN-Revision: 42032
* netifd: disable ds-lite, map & gre for old kernelsSteven Barth2014-08-061-2/+2
| | | | | | this unbreaks netifd compilation on old kernels SVN-Revision: 42019
* netifd: minor fixes (thanks Hans Dedecker)Steven Barth2014-08-051-2/+2
| | | | SVN-Revision: 42000
* gre: Change hostdependcy to remote endpoint tunnel addressSteven Barth2014-08-052-3/+3
| | | | | | | | | Depend on the GRE tunnel peeraddr to trigger setup of the tunnel interface. Addresses the issue reported in https://lists.openwrt.org/pipermail/openwrt-devel/2014-August/027201.html Signed-off-by: Hans Dedecker <dedeckeh@gmail.com> SVN-Revision: 41998
* gre: Generic Routing Encapsulation package supportSteven Barth2014-07-302-0/+299
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The package supports Generic Routing Encapsulation support by registering following protocol kinds: -gre -gretap -grev6 -grev6tap Following options are valid for gre and gretap kinds: -ipaddr -peeraddr -df -mtu -ttl -tunlink -zone -ikey -okey -icsum -ocsum -iseqno -oseqno The gretap kind supports additionally the network option Following options are valid for grev6 and grev6tap kinds: -ip6addr -peer6addr -weakif -mtu -ttl -tunlink -zone -ikey -okey -icsum -ocsum -iseqno -oseqno The grev6tap kind supports additionally the network option Typical network config for a GREv4 tunnel : config interface 'gre' option peeraddr '172.16.18.240' option mtu '1400' option proto 'gre' option tunlink 'wan' option zone 'tunnel' Typical network config for a GREv4 tap tunnel : config interface 'gretap' option peeraddr '195.207.5.79' option mtu '1400' option proto 'gretap' option zone 'tunnel' option tunlink 'wan' option network 'wlan_ap' I added myself as maintainer for the moment; feel free to change. Signed-off-by: Hans Dedecker <dedeckeh@gmail.com> SVN-Revision: 41897
* netifd: fixes and GRE support (thx Hans Dedecker)Steven Barth2014-07-301-2/+2
| | | | SVN-Revision: 41896
* netifd: suppress fw3 warnings in dhcp scriptSteven Barth2014-07-301-1/+1
| | | | | | Signed-off-by: Hans Dedecker <dedeckeh@gmail.com> SVN-Revision: 41892
* netifd: more race condition fixes in proto-shellSteven Barth2014-07-291-2/+2
| | | | SVN-Revision: 41887
* netifd: more dynamic interface improvementsSteven Barth2014-07-281-2/+2
| | | | SVN-Revision: 41862
* netifd: fix a small issue in r41831Felix Fietkau2014-07-261-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41836
* netifd: update to the latest version, fixes a race condition with renew/setupFelix Fietkau2014-07-261-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41831
* netifd: Fix some race-conditions in interface handlingSteven Barth2014-07-241-2/+2
| | | | SVN-Revision: 41825
* softwires: redesign dhcp(v6) provisioningSteven Barth2014-07-242-3/+15
| | | | | | Signed-off-by: Steven Barth <steven@midlink.org> SVN-Revision: 41823
* netifd: update to the latest version, enables bridge multicast querier and ↵Felix Fietkau2014-07-241-2/+2
| | | | | | | | fixes interface reload issues with wifi Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41818
* lantiq-dsl: add 2 ugly workarounds for the IB to workJohn Crispin2014-07-212-2/+2
| | | | | | | | | | the IB tries to run the enable target on all init.d scripts. It fails when including the dsl_control helper. Check for existence prior to the include. Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 41787
* firewall: implement support for abritary netmasksJo-Philipp Wich2014-07-191-2/+2
| | | | | | | | | | | Properly parse and pass arbritary netmasks to iptables, this allows specifying ranges like '::c23f:eff:fe7a:a094/::ffff:ffff:ffff:ffff' to match the host part of an IPv6 address regardless of the currently active IPv6 prefix. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 41760
* netifd: update to the latest version, adds a small validation fixFelix Fietkau2014-07-181-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41731
* qos-scripts: convert to procdFelix Fietkau2014-07-181-5/+17
| | | | | | | Signed-off-by: John Crispin <blogic@openwrt.org> Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41730
* netifd: update to the latest version, enables igmp snooping by defaultFelix Fietkau2014-07-171-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41683
* qos-scripts: fix ingress packet marking with ifbFelix Fietkau2014-07-172-13/+27
| | | | | | | | | | | | | | | | Split connection mark into two parts: The lower nibble contains the confirmed conntrack mark which is not generated by default/reclassify rules. The upper nibble contains the current value specified by default/reclassify rules. For egress, the default/reclassify value is preferred For ingress, the connection mark is preferred Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41682
* firewall: fix segfault introduced by latest updateJo-Philipp Wich2014-07-101-2/+2
| | | | | | Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 41558
* firewall: fix regressions introduced after latest ubus reworkJo-Philipp Wich2014-07-101-2/+2
| | | | | | | | | | The commit 92281eb747b56e748b7c3d754055919c23befdd4 broke fw3_ubus_addresses() so that no addresses where returned at all, this caused fw3 to not emit NAT reflection rules anymore. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 41556
* qos-scripts: remove maxsize options and packet size based reclassify from ↵Felix Fietkau2014-07-081-14/+0
| | | | | | | | | | | the default config They should be unnecessary with fq_codel, and simplifying rules helps with performance Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41549
* firewall: fix issue with parsing network optionsJo-Philipp Wich2014-07-031-2/+2
| | | | | | Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 41491
* firewall: update to the latest version, adds support for fetching firewall ↵Felix Fietkau2014-07-021-2/+2
| | | | | | | | rules from procd Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41480
* netifd: update to the latest version, fixes a crash on reload with ↵Felix Fietkau2014-06-291-1/+1
| | | | | | | | hotplugged devices Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41393
* netifd: update to the latest version, addds a few fixes and enables ↵Felix Fietkau2014-06-291-2/+2
| | | | | | | | multicast->unicast for igmp snooping on wireless devices Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 41390
* firewall3: add fw3 zone function to enumerate devicesSteven Barth2014-06-261-2/+2
| | | | SVN-Revision: 41349
* netifd: various routing table handling fixesSteven Barth2014-06-201-2/+2
| | | | SVN-Revision: 41287
* Revert "netifd: fix handling of "lookup main" for ip rules (#15315)"Jo-Philipp Wich2014-06-201-2/+2
| | | | | | | | The netifd fixes went to the wrong repository, revert until it is sorted out. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 41283
* netifd: fix handling of "lookup main" for ip rules (#15315)Jo-Philipp Wich2014-06-201-2/+2
| | | | | | | | | Reworks the handling of RT_TABLE_MAIN in system-linux.c so that ip rules with lookup main can be properly setup. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 41282