ยซ Changelog History


Nebula v1.2.0 Release Notes

Release Date: 2020-04-08 // about 4 years ago

  • โž• Added

    โž• Add logging.timestamp_format config option. The primary purpose of this
    ๐Ÿ”„ change is to allow logging timestamps with millisecond precision. (#187)

    ๐Ÿ‘Œ Support unsafe_routes on Windows. (#184)

    ๐Ÿ‘ Add lighthouse.remote_allow_list to filter which subnets we will use to
    ๐Ÿ‘€ handshake with other hosts. See the example config for more details. (#217)

    ๐Ÿ‘ Add lighthouse.local_allow_list to filter which local IP addresses and/or
    ๐Ÿ‘€ interfaces we advertise to the lighthouses. See the example config for more
    details. (#217)

    ๐Ÿ”Œ Wireshark dissector plugin. Add this file in dist/wireshark to your
    ๐Ÿ‘€ Wireshark plugins folder to see Nebula packet headers decoded. (#216)

    systemd unit for Arch, so it can be built entirely from this repo. (#216)

    ๐Ÿ”„ Changed

    โž• Added a delay to punching via lighthouse signal to deal with race conditions
    ๐Ÿง in some linux conntrack implementations. (#210)

    ๐Ÿ‘€ See deprecated, this also adds a new punchy.delay option that defaults to 1s.

    Validate all lighthouse.hosts and static_host_map VPN IPs are in the
    subnet defined in our cert. Exit with a fatal error if they are not in our
    ๐Ÿ”ง subnet, as this is an invalid configuration (we will not have the proper
    routes set up to communicate with these hosts). (#170)

    ๐ŸŽ Use absolute paths to system binaries on macOS and Windows. (#191)

    โž• Add configuration options for handshakes. This includes options to tweak
    try_interval, retries and wait_rotation. See example config for
    descriptions. (#179)

    ๐Ÿ‘ Allow -config file to not end in .yaml or yml. Useful when using
    โœ… -test and automated tools like Ansible that create temporary files without
    ๐Ÿ›  suffixes. (#189)

    โœ… The config test mode, -test, is now more thorough and catches more parsing
    issues. (#177)

    ๐Ÿ“š Various documentation and example fixes. (#196)

    ๐Ÿ‘Œ Improved log messages. (#181, #200)

    โšก๏ธ Dependencies updated. (#188)

    ๐Ÿ—„ Deprecated

    ๐Ÿ”ง punchy, punch_back configuration options have been collapsed under the
    now top level punchy config directive. (#210)

    punchy.punch - This is the old punchy option. Should we perform NAT hole
    0๏ธโƒฃ punching (default false)?

    punchy.respond - This is the old punch_back option. Should we respond to
    0๏ธโƒฃ hole punching by hole punching back (default false)?

    ๐Ÿ›  Fixed

    โฌ‡๏ธ Reduce memory allocations when not using unsafe_routes. (#198)

    Ignore packets from self to self. (#192)

    ๐Ÿ›  MTU fixed for unsafe_routes. (#209)