Givi Khojanashvili
1d9feab2d9
Feat fake dns address ( #902 )
...
Works only with userspace implementation:
1. Configure host to solve DNS requests via a fake DSN server address in the Netbird network.
2. Add to firewall catch rule for these DNS requests.
3. Resolve these DNS requests and respond by writing directly to wireguard device.
2023-06-08 13:46:57 +04:00
Bethuel
2c9583dfe1
Support authentication with client_secret ( #936 )
...
* add dashboard client_secret env
* add NETBIRD_AUTH_CLIENT_SECRET env test
2023-06-07 16:00:04 +02:00
Givi Khojanashvili
ef59001459
Fix routes allow acl rule ( #940 )
...
Modify rules in iptables and nftables to accept all traffic not from netbird network but routed through it.
2023-06-07 15:24:27 +02:00
Zoltan Papp
93608ae163
Remove unused field from peer state ( #939 )
...
On mobile system the direct flag is unused
2023-06-07 11:32:49 +02:00
pascal-fischer
7d1b6ea1fc
Merge pull request #937 from netbirdio/fix/kill_process_on_pkg_upgrade
...
Stop macOS app and service on update with pkg and brew
2023-06-07 10:10:36 +02:00
Givi Khojanashvili
803bbe0fff
Fix validation for ACL policy rules ports ( #938 )
2023-06-07 08:57:43 +02:00
Pascal Fischer
675abbddf6
remove service uninstall from brew install
2023-06-06 17:40:28 +02:00
Pascal Fischer
eac492be9b
move stopping app and service to preinstall
2023-06-06 17:35:27 +02:00
Pascal Fischer
a0e133bd92
stop the daemon on brew update/install if running
2023-06-06 13:02:32 +02:00
pascal-fischer
9460c4a91e
Merge pull request #931 from netbirdio/feature/add_docs_api_trigger
...
Add trigger for docs generation to release workflow
2023-06-06 12:56:58 +02:00
Pascal Fischer
bbf536be85
moved service uninstall and app close into postinstall
2023-06-06 00:04:57 +02:00
Pascal Fischer
933fe1964a
revert to pkill and adding service stop
2023-06-05 21:46:13 +02:00
Pascal Fischer
8f51985fa5
switch to clean stop
2023-06-05 21:23:42 +02:00
Pascal Fischer
05e642103c
kill netbird on pkg preinstall
2023-06-05 21:18:42 +02:00
Maycon Santos
f2df8f31cb
Import go mobile bind at the android package level ( #935 )
2023-06-05 17:28:13 +02:00
Zoltan Papp
dd69c1cd31
Struct Engine has methods on both value ( #934 )
...
Struct Engine has methods on both value and pointer receivers.
Such usage is not recommended by the Go Documentation.
2023-06-05 15:34:22 +02:00
Pascal Fischer
7c6d29c9c5
re-enable rest of release flow
2023-06-05 12:17:02 +02:00
Pascal Fischer
b50503f8b7
add ref to main
2023-06-05 12:13:28 +02:00
Pascal Fischer
11a3fef5bc
add trigger for docs generation
2023-06-05 12:10:18 +02:00
Maycon Santos
511f0a00be
Organize example setup.env with sections ( #928 )
2023-06-05 09:21:52 +02:00
Misha Bragin
8817765aeb
Add comment clarifying AddPeer race check ( #927 )
2023-06-02 18:04:24 +02:00
Bethuel
51502af218
Support IDP manager configuration with configure.sh ( #843 )
...
support IDP management configuration using configure.sh script
Add initial Zitadel configuration script
2023-06-02 17:34:36 +02:00
Misha Bragin
612ae253fe
Reject adding peer if already exists with the pub key ( #925 )
2023-06-02 17:32:55 +02:00
pascal-fischer
b2447cd9a3
Merge pull request #923 from netbirdio/chore/reorder_openapi
...
Update openapi doc
2023-06-02 14:26:08 +02:00
Givi Khojanashvili
5507e1f7a5
Add SSH accept rule on the client ( #924 )
2023-06-02 15:26:33 +04:00
Givi Khojanashvili
4cd9ccb493
Squash firewall rules by protocoll if they affects all peers ( #921 )
2023-06-02 10:14:47 +04:00
Pascal Fischer
5028450133
add examples
2023-06-02 01:50:15 +02:00
Pascal Fischer
2dcfa1efa3
fix summary
2023-06-02 01:32:48 +02:00
Pascal Fischer
75fbaf811b
update openapi
2023-06-02 01:09:18 +02:00
Givi Khojanashvili
1939973c2e
Use by default nftables on the linux systems ( #922 )
2023-06-01 19:51:13 +04:00
Maycon Santos
3e9b46f8d8
Prevent peer updates on flapping status and fix route score logic ( #920 )
...
Prevent peer updates if the status is not changing from disconnected to connected and vice versa.
Fixed route score calculation, added tests and changed the log message
fixed installer /usr/local/bin creation
2023-06-01 16:00:44 +02:00
pascal-fischer
47da362a70
Merge pull request #919 from netbirdio/fix/macos_installer_scripts_for_release
...
Fix pkg installer for macos
2023-05-31 21:19:11 +02:00
Pascal Fischer
980dbdb7c6
add creating log dir to macOS installer scripts
2023-05-31 20:37:21 +02:00
Pascal Fischer
5b9378e6cb
add creating log dir to macOS installer scripts
2023-05-31 19:31:37 +02:00
Givi Khojanashvili
293499c3c0
Extend protocol and firewall manager to handle old management ( #915 )
...
* Extend protocol and firewall manager to handle old management
* Send correct empty firewall rules list when delete peer
* Add extra tests for firewall manager and uspfilter
* Work with inconsistent state
* Review note
* Update comment
2023-05-31 19:04:38 +02:00
Zoltan Papp
45a6263adc
Feature/android route notification ( #868 )
...
Add new feature to notify the user when new client route has arrived.
Refactor the initial route handling. I move every route logic into the route
manager package.
* Add notification management for client rules
* Export the route notification for Android
* Compare the notification based on network range instead of id.
2023-05-31 18:25:24 +02:00
Maycon Santos
6425eb6732
Revert "setting cli flags to proper commands ( #860 )" ( #916 )
...
This reverts commit 0fa3abbec0
.
2023-05-31 16:06:42 +02:00
pascal-fischer
e87647c853
Merge pull request #913 from netbirdio/feature/add_selfhosted_metrics_for_pat_and_service_user
...
Add selfhosted metrics for PATs and service users
2023-05-31 14:41:34 +02:00
Pascal Fischer
9e045479cc
fix pats counting
2023-05-30 19:44:40 +02:00
Pascal Fischer
fe596c38c6
update rules count
2023-05-30 19:36:09 +02:00
Pascal Fischer
6fd13f563e
use new policy-rule object
2023-05-30 19:09:16 +02:00
Pascal Fischer
22e81f493b
fix metric creation from maps
2023-05-30 19:07:00 +02:00
Pascal Fischer
51f780dae9
initialize maps
2023-05-30 18:53:23 +02:00
Pascal Fischer
f164fad2c2
add some more metrics
2023-05-30 18:49:50 +02:00
Pascal Fischer
452b045bb0
expose service users metrics
2023-05-30 16:40:48 +02:00
Givi Khojanashvili
874c290205
Exclude second last IP from allocation to use it in the Fake DNS ( #912 )
2023-05-30 18:26:44 +04:00
Pascal Fischer
7a9b05c56d
add selfhosted metric for pat and service users
2023-05-30 16:22:34 +02:00
Bethuel
79736197cd
Read config from generic configs ( #909 )
2023-05-29 16:01:04 +02:00
Givi Khojanashvili
ba7a39a4fc
Feat linux firewall support ( #805 )
...
Update the client's engine to apply firewall rules received from the manager (results of ACL policy).
2023-05-29 16:00:18 +02:00
Bethuel
2eb9a97fee
Add Okta IdP ( #859 )
2023-05-29 14:52:04 +02:00