aboutsummaryrefslogtreecommitdiffstats
path: root/package/network/config
Commit message (Collapse)AuthorAgeFilesLines
* netifd: fix VTI ikey/okey endianessJo-Philipp Wich2016-03-041-2/+2
| | | | | | | | | Ensure that ikey and okey are sent in network byte order to the kernel. Also don't mangle external IP addrs and routes when reconfiguring iinterfaces. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 48919
* ltq-vdsl-app: Enable T1.413 in Annex A xTSE setJohn Crispin2016-02-251-1/+1
| | | | | | | | | Before r47933 Bit 1 (first bit) of xTSE Octet 1 (first octet) defaulted to 1, which allowed T1.413 to operate. Signed-off-by: Jonathan A. Kollasch <jakllsch@kollasch.net> SVN-Revision: 48763
* vti: fix kmod dependenciesJohn Crispin2016-02-121-2/+2
| | | | | | Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be> SVN-Revision: 48704
* swconfig: support setting SWITCH_TYPE_LINK attributesRafał Miłecki2016-02-031-0/+51
| | | | | | | | | | Supported syntax is inspired by ethtool. Example usages: swconfig dev switch0 port 2 set link "duplex half speed 100" swconfig dev switch0 port 2 set link "autoneg on" Signed-off-by: Rafał Miłecki <zajec5@gmail.com> SVN-Revision: 48624
* gre: Support multicast configurable gre interfacesFelix Fietkau2016-02-011-2/+5
| | | | | | | | | | | UCI paramater multicast is added which allows to toggle multicast support on gre interfaces. By default multicast support is enabled as gre tunnels are often used in combination with routing protocols using multicast. Signed-off-by: Hans Dedecker <dedeckeh@gmail.com> Signed-off-by: Nick Podolak <nicholas.podolak@dtechlabs.com> SVN-Revision: 48596
* netifd: update to the latest version, adds many fixesFelix Fietkau2016-02-011-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48595
* firewall: drop invalid by default, remove chain indirection, fix invert ↵Jo-Philipp Wich2016-01-291-3/+3
| | | | | | | | | | | | flags (#21738) * Enable drop_invalid by default to catch unnatted packets (#21738) * Fix processing of inversions for -i, -o, -s, -d and -p flags * Remove delegate_* chain indirection but rely on xt_id to identify own rules Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 48551
* ltq-vdsl-app: mask out VDSL bits when ATM is selected, fixes compatibility ↵Felix Fietkau2016-01-231-2/+5
| | | | | | | | issues with some DSLAMs Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48457
* qos-scripts: bump versionFelix Fietkau2016-01-221-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48455
* qos-scripts: Add IPv6 supportFelix Fietkau2016-01-222-28/+64
| | | | | | | | | | | | | | | This adds IPv6 support to qos-scripts for both tc/qdisc and the iptables classification rules. The tc/qdisc part is accomplished by removing "protocol ip" from the tc command line, causing the rule to be applied to all protocols. The iptables part is accomplished by adding each rule using both iptables and ip6tables. This patch is based on previous work by Ilkka Ollakka and Dominique Martinet. Signed-off-by: Michael Marley <michael@michaelmarley.com> SVN-Revision: 48452
* qos-scripts: Allow classification by the traffic's source interfaceFelix Fietkau2016-01-211-0/+3
| | | | | | | | | | | This adds a "srciface" option that can be used on classification rules in /etc/config/qos. This is useful to allow prioritization based on the local network from which the traffic originates, for example to deprioritize traffic from a guest network. Signed-off-by: Michael Marley <michael@michaelmarley.com> SVN-Revision: 48446
* qos-scripts: stop overriding tx queue lengthFelix Fietkau2016-01-211-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48445
* netifd: update to the latest version, adds a cosmetic fix for a wpa related ↵Felix Fietkau2016-01-201-2/+2
| | | | | | | | variable Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48397
* qos-scripts: Fix classification of ingress trafficFelix Fietkau2016-01-191-1/+1
| | | | | | | | | | | Set the save-mark mask for the qos_${cg} chain to 0xff instead of 0xf0. With the old value, the nibble that was saved would be masked during the restore, preventing ingress traffic from being classified. Thanks to nbd for recommending the fix. Signed-off-by: Michael Marley <michael@michaelmarley.com> SVN-Revision: 48388
* firewall: add CONFIG_IPV6 to PKG_CONFIG_DEPENDS to fix a rebuild errorFelix Fietkau2016-01-181-0/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48315
* netifd: fix PKG_VERSION (#21630)Jo-Philipp Wich2016-01-171-1/+1
| | | | | | Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 48280
* network: add virtual tunnel interface (VTI) supportFelix Fietkau2016-01-172-0/+216
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This adds support for configuring VTI interfaces within /etc/config/network. VTI interfaces are used to create IPsec tunnel interfaces. These interfaces may be used for routing and other purposes. Example config: config interface 'vti1' option proto 'vti' option mtu '1500' option tunlink 'wan' option peeraddr '192.168.5.16' option zone 'VPN' option ikey 2 option okey 2 config interface 'vti1_static' option proto 'static' option ifname '@vti1' option ipaddr '192.168.7.2/24' The options ikey and okey correspond to the fwmark value of a ipsec policy. The may be null if you do not want fwmarks. Also peeraddr may be 0.0.0 if you want all ESP packets go through the interface. Example strongswan config: conn vti left=%any leftcert=peer2.test.der leftid=@peer2.test right=192.168.5.16 rightid=@peer3.test leftsubnet=0.0.0.0/0 rightsubnet=0.0.0.0/0 mark=2 auto=route Signed-off-by: André Valentin <avalentin@marcant.net> SVN-Revision: 48274
* netifd: update to the latest version, adds VTI support and a policy routing fixFelix Fietkau2016-01-171-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48273
* swconfig: support sending SWITCH_TYPE_LINK to kernelRafał Miłecki2016-01-061-0/+28
| | | | | | Signed-off-by: Rafał Miłecki <zajec5@gmail.com> SVN-Revision: 48141
* firewall: move to git.openwrt.orgFelix Fietkau2016-01-041-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48128
* packages: use OPENWRT_GIT to point at the main openwrt git repoFelix Fietkau2016-01-041-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48118
* package/network/config/gre: ipv6 gre kmod package name was wrongFelix Fietkau2016-01-031-1/+1
| | | | | | | | | | Source package gre was depending on kmod-ip6-gre, however the actual kernel module package that is created is kmod-gre6. Therefore update (source) package gre for ipv6 gre support. Signed-off-by: Daniel Dickinson <openwrt@daniel.thecshore.com> SVN-Revision: 48100
* ltq-vdsl-app: re-add lowlevel settingsJohn Crispin2016-01-011-0/+88
| | | | | | | | | | | | | | | | Add back a slightly modified version of the lowlevel settings which where removed with r46920. In compare to the old lowlevel settings, the B43c tone is added to tone_adsl_b and tone_adsl_bv. If an unsupported tone value is used, the auto probing mode is used, in compare to the fallback to tone_adsl_av and tone_vdsl_av with the old lowlevel settings. Signed-off-by: Mathias Kresin <openwrt@kresin.me> SVN-Revision: 48054
* ltq-vdsl-app: enable G.993.5 XTSE bit by defaultJohn Crispin2016-01-011-3/+7
| | | | | | | | | | | | | According to ITU-T G.997.1 Amendment 2 (04/2013) section 2.1, bit 3 of XTSE octet 8 either allow or denies the initialization of G.993.5. Even if the current redistributable xDSL firmware doesn't include G.993.5 vectoring support, enable this bit by default to allow people to get their G.993.5 line working using a custom xDSL firmware. Signed-off-by: Mathias Kresin <openwrt@kresin.me> SVN-Revision: 48053
* ltq-vdsl-app: let the driver/app probe the xtse on missing annexJohn Crispin2016-01-011-3/+0
| | | | | | | | | | | r47933 revealed that the driver/app in combination with the chosen firmware does a good job in selecting a working xtse. Use this probing mode if no annex is specified. Signed-off-by: Mathias Kresin <openwrt@kresin.me> SVN-Revision: 48052
* ltq-vdsl-app: add/enable missing G.993.2 XTSE bitsJohn Crispin2016-01-011-10/+9
| | | | | | | | | | | | | | | | | This patch adds the missing VDSL2 bits to the annex specific XTSE (like it should be according to the comments above the XTSE bits). Since r47933 it's mandatory to remove the annex option to switch to VDSL2 (only) operation mode. As shown by ticket #21436 and a few mails I received personally, even experienced users are not aware that they have to remove the annex option to get their VDSL2 line working and as shown by this patch it doesn't need to be that "complicated". Signed-off-by: Mathias Kresin <openwrt@kresin.me> SVN-Revision: 48051
* ltq-vdsl-app: use the final xtse formatJohn Crispin2016-01-011-5/+5
| | | | | | | | This way we can drop the call to sed. Signed-off-by: Mathias Kresin <openwrt@kresin.me> SVN-Revision: 48050
* swconfig: support receiving SWITCH_TYPE_LINK from kernelJohn Crispin2015-12-233-0/+92
| | | | | | | | | When using cli, print link state the same way kernel used to do it. This will allow kernel switching PORT_LINK from SWITCH_TYPE_STRING. Signed-off-by: Rafał Miłecki <zajec5@gmail.com> SVN-Revision: 47998
* ltq-vdsl-app: enable Annex-M support, disable unsupported Annex-A modesFelix Fietkau2015-12-181-6/+3
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47934
* ltq-vdsl-app: remove whitespace after -i, it prevents vdsl_cpe_control from ↵Felix Fietkau2015-12-181-1/+1
| | | | | | | | parsing the XTSE bits Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47933
* netifd: update to the latest version, fixes more route table issuesFelix Fietkau2015-12-161-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47897
* netifd: update to the latest version, fixes reload issues on routing table ↵Felix Fietkau2015-12-151-2/+2
| | | | | | | | changes Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47893
* lantiq: ltq-vdsl-app: cleanup MakefileFelix Fietkau2015-12-131-14/+8
| | | | | | | | | | | | | | | | - CONFIG_IFX_CLI is unused, couldn't find any reference to this config variable - use disable-feature instead of enable-feature=no - reorder configure args to have depending args together - remove configure args which set the default value - group enable-model and configure args which enable or disable features that are covered by the feature set The config.log contains the same values as before. The vdsl_cpe_control binary has the same checksum as before. Signed-off-by: Mathias Kresin <openwrt@kresin.me> SVN-Revision: 47888
* lantiq: ltq-vdsl-app: re-add showtime counters supportFelix Fietkau2015-12-131-1/+2
| | | | | | | | | | | | | The typicial feature set doesn't include "DSL PM showtime counters support" (INCLUDE_DSL_CPE_PM_SHOWTIME_COUNTERS). This feature provides the vdsl_cpe_control command 'pmccsg', which is used by 'dsl_control status' to get the line uptime. The binary size increases to 103912 byte (+4256 byte) uncompressed. Signed-off-by: Mathias Kresin <openwrt@kresin.me> SVN-Revision: 47887
* netifd: ifup-shellscript - fix wrong usage of 'local'Felix Fietkau2015-12-101-3/+1
| | | | | | | | | | | | | | | | | | this error was not visible until recent bump to busybox 1.24.1 stable which introduced a warning message when keyword 'local' is not used with a shell-function. this does not change behavior and is a cosmetic cleanup. fixes the following output: root@box:~ ifup <interface> /sbin/ifup: local: line 362: not in a function /sbin/ifup: local: line 362: not in a function /sbin/ifup: local: line 1: not in a function Signed-off-by: Bastian Bittorf <bittorf@bluebottle.com> SVN-Revision: 47828
* lantiq: debloat the ltq-vdsl-app binaryFelix Fietkau2015-12-041-2/+2
| | | | | | | | | | | Use the 'typical' compile configuration instead of 'full', which most notably excludes the soap support. /sbin/vdsl_cpe_control shrinks down to ~50%, from 178kb(!) to 90kb. Signed-off-by: Andre Heider <a.heider@gmail.com> SVN-Revision: 47769
* lantiq: move esi calls to dsl_cpe_control scripts to fix ordering wrt. ↵Felix Fietkau2015-12-043-1/+4
| | | | | | | | loading vr9 drivers Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47764
* netifd: update to the latest version, fixes an issue with moving a wifi ↵Felix Fietkau2015-12-021-2/+2
| | | | | | | | iface to a different network Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47683
* lantiq: ltq-vdsl-app: update to version 4.16.6.3John Crispin2015-11-245-20/+46
| | | | | | | | | | | In this upstream dsl driver app version the autoboot is deactivated activate it again. In addition to the update this also fixes some build warnings and makes it use the same configure option as used in Lantiq UGW. Signed-off-by: Hauke Mehrtens <hauke.mehrtens@lantiq.com> SVN-Revision: 47637
* lantiq: ltq-vdsl-app: add dsl_cpe_pipe.shJohn Crispin2015-11-242-1/+21
| | | | | | Signed-off-by: Hauke Mehrtens <hauke.mehrtens@lantiq.com> SVN-Revision: 47636
* qos-scripts: remove faulty fallback of the device variable to eth0 (#20834)Felix Fietkau2015-11-241-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47629
* netifd: fix device status reporting for external interfacesJo-Philipp Wich2015-11-171-2/+2
| | | | | | Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 47493
* ltq-app-vdsl: convert init script to procd, add support for switching ↵Felix Fietkau2015-11-163-12/+27
| | | | | | | | between atm and ptm Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47485
* netifd: update to the latest version, contains several fixes, including one ↵Felix Fietkau2015-11-121-2/+2
| | | | | | | | for interface ip4/ip6table for device routes Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47460
* cosmetic: remove trailing whitespacesLuka Perkov2015-10-151-1/+1
| | | | | | Signed-off-by: Luka Perkov <luka@openwrt.org> SVN-Revision: 47197
* netifd: update to the latest version, fixes spurious client isolation in ↵Felix Fietkau2015-09-261-2/+2
| | | | | | | | unbridged AP configurations (#20574) Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47053
* firewall: allow DHCPv6 traffic to/from fc00::/6 instead of fe80::/10Jo-Philipp Wich2015-09-251-2/+2
| | | | | | | | | | There is no RFC requirement that DHCPv6 servers must reply with a link local address and some ISP servers in the wild appear to using addresses in the ULA range to send DHCPv6 offers. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 47048
* package: Remove dependencies to kmod-ipv6Steven Barth2015-09-211-1/+1
| | | | | | | | | Since r46834, IPv6 support is builtin if selected. Therefor, dependencies on kmod-ipv6 can no longer be fulfilled, since it is not a module anymore. Signed-off-by: Arjen de Korte <arjen+openwrt@de-korte.org> SVN-Revision: 47022
* firewall: depend on kmod-ipt-conntrack (#20542)Jo-Philipp Wich2015-09-171-1/+1
| | | | | | | | | Our ruleset requires kernel support for conntrack state matching, therfore depend on the require kmod. Fixes #20542. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 46990
* lantiq: Update to the latest DSL driver / application versionsJohn Crispin2015-09-143-131/+22
| | | | | | | | | | | Thanks to Sylwester Petela for testing my patch (successfully on an ADSL connection) and for pointing out some configuration mistakes. Others (including me) have also successfully tested this extensively on VDSL connections. Signed-off-by: Martin Blumenstingl <martin.blumenstingl@googlemail.com> SVN-Revision: 46920