Difference between revisions of "Proposed enhancements"

From VyOS Wiki
Jump to: navigation, search
(Repoint to trello roadmap)
 
Line 1: Line 1:
If you see something that is already implemented, please remove from the list.
+
This page now suppressed by the public roadmap that can be found here - https://trello.com/b/KhGDOsmr/vyos-public-roadmap
 
 
 
 
{| class="wikitable"
 
|-
 
! Enhancement
 
! Comments
 
! Status
 
|-
 
|Sr and srv6
 
|Sr and srv6
 
|-
 
|is-is
 
|Support isis routing protocol
 
|-
 
|Dynamic vlan
 
| In L2TP environment, dynamic vlan is issued through radius specific attributes
 
|
 
|-
 
|Dynamic ACL or Firewall Policy
 
|In L2TP environment, dynamic firewall policy is issued through radius specific attributes
 
|
 
|-
 
| What about a reliable Data Center Interconnect (DCI) solution, i.e. VXLAN + separate control plane (BGP) => EVPN? Vyos support VXLAN. Now combine it with BaGPipe BGP
 
| https://github.com/Orange-OpenSource/bagpipe-bgp
 
|
 
|-
 
| DoS/DDoS load analyzer (NetFlow v5, v9, IPFIX, sFLOW v5, Port mirror/SPAN)
 
| https://github.com/FastVPSEestiOu/fastnetmon
 
|
 
|-
 
| MPLS switching, Traffic engineering and Vpls
 
| Requires system changes and large amount of work, but very important. Could use [https://github.com/rwestphal/quagga-public/tree/mpls/ldpd Quagga ldpd], iproute > 4.4 and linux kernel version > 4.4 (MPLS support was initially added in linux 4.1)
 
|
 
|-
 
| VRF
 
| It exists some [https://github.com/upa/vrf-vyatta vyatta implementation] using kernel namespaces but requires quagga multi  vty patch.
 
|
 
|-
 
| Mikrotik EoIP
 
| A [https://github.com/bbonev/eoip kernel module with userland tool] is available for kernel 3.2, need some cli commands.
 
|
 
|-
 
| E1/T1/SS7 gateway
 
| Using Dahdi + Libpri + Asterisk 11.7 LTS + some basic cli commands
 
|
 
|-
 
| Multicast routing
 
| Do any working implementations exist? Is it possible to salvage it from XORP?
 
|
 
|-
 
| Config sync
 
|
 
|
 
|-
 
| Spanning tree protocols (RSTP etc.)
 
|
 
|
 
|-
 
| OpenVPN RADIUS auth
 
|
 
|
 
|-
 
| OpenVPN 2FA
 
| Two-factor authentication with TOTP (time-based one-time password algorithm), such as Google Authenticator (or any client supporting TOTP)
 
|
 
|-
 
| UPnP
 
| Do we really want an automated security hole creator? :) 
 
Appended comment: Couldn't we limit which addresses may have ports opened and which ports specifically are allowed or not allowed by some means in config?
 
|
 
|-
 
| L7 filter
 
|patch https://github.com/betolj/ndpi-netfilter - Debian7 Doc - http://www.sysadmin.in.ua/info/index/21/35/50 and other Doc http://huntertelecom.ru/?p=15  -- nDPI Roadmap http://www.ntop.org/announce/ntop-2015-roadmap
 
|
 
|-
 
| Clientless VPN
 
|
 
|
 
|-
 
| Bandwith monitor
 
| Vyos include iptraf but seems that is unable to see vlan or bonding interfaces traffic. Take a look to [http://sourceforge.net/projects/bwmng/ bwm-ng]. Other very useful tool.  iftop http://www.ex-parrot.com/pdw/iftop/
 
|
 
|-
 
| PPPoE server
 
| Can be pulled from EdgeOS probably
 
|
 
|-
 
| PPTP client
 
| Implemented in EdgeOS. Totally insecure - should be considered very low priority
 
|
 
|-
 
| WCCP
 
| A very outdated implementation exists
 
|
 
|-
 
| VLAN priority tag
 
|
 
|
 
|-
 
| SSTP VPN
 
| Do implementations exist? => www.softether.org (GPL license)
 
|
 
|-
 
| IPv6 web proxy
 
|
 
|
 
|-
 
| Pseudo-ethernet on VLAN
 
|
 
|
 
|-
 
| PPPoE on pseudo-ethernet
 
|
 
|
 
|-
 
| DHCP option 82
 
|
 
|
 
|-
 
| Sysctl tunning
 
| see [https://github.com/SO3Group/vyatta-ip-options  SO3Group / vyatta-ip-options].
 
|
 
|-
 
| Lisa L2 Switching
 
| see [http://lisa.mindbit.ro Lisa project]. 3.x Kernel driver is currently development and problably will released soon.
 
|
 
|-
 
| L2TP without encryption
 
| See [http://www.prol2tp.com prol2tp] as reference. It's very usefull for xDSL bras
 
|
 
|-
 
| MLAG - Multi-chassis link aggregation
 
| See [https://github.com/open-ethernet/MLAG https://github.com/open-ethernet/MLAG] as reference. As Vyatta 6.6 supports clustering, could this be used for an active-active cluster?
 
|
 
|-
 
| Description for static route
 
| [https://github.com/rogerlz/vyatta-route-description patch exists for vyatta].
 
|
 
|-
 
| Authentication profile
 
| For example LDAP profiles that can be used with webproxy or for local user local
 
|
 
|-
 
| Wifi Hotspot
 
| Using chilispot or coova chili for example
 
|
 
|-
 
| Web GUI
 
| HTML 5 /Css 3 light weight GUI -- perhaps it can be used https://embedthis.com/blog//blog/2014/05/21/esp-10/ and Demo: https://embedthis.com/appweb/demo/
 
|
 
|-  
 
| Web API
 
| XML-RPC, SOAP, REST ...
 
|
 
|-
 
| VyOS based on more current debian (wheezy vs squeeze)
 
| Which will include a more modern kernel 3.2 with many new features
 
|
 
|-
 
|-
 
| Cloud integration (cloud-init or similar)
 
| Configuration through config-drives, SSH key insertion, more?
 
|
 
|-
 
|}
 
 
 
[[Category: Development]]
 

Latest revision as of 18:45, 12 May 2019

This page now suppressed by the public roadmap that can be found here - https://trello.com/b/KhGDOsmr/vyos-public-roadmap