Aerleon

Latest version: v1.9.0

Safety actively analyzes 690691 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 3

1.9.0

What's Changed

Aerleon is built and released using a SLSA Level 3 build process. Releases can be verified using the steps described in https://aerleon.readthedocs.io/en/latest/install/#verifying-installation.


Bug Fixes
* Speedway: erroneous post-jump statements are no longer added when using nochainedterms by ankenyr in https://github.com/aerleon/aerleon/pull/359

New Features
* Nokia: new R24.3 ACL syntax ("acl-filter") is now supported using filter option "r24.3" by jbemmel in https://github.com/aerleon/aerleon/pull/366 and ankenyr in https://github.com/aerleon/aerleon/pull/367 .
* Nokia: filter-level stats ("statistics-per-entry") are now supported using filter option "stats" by jbemmel in https://github.com/aerleon/aerleon/pull/366 and ankenyr in https://github.com/aerleon/aerleon/pull/367 .

Internal Tooling
* All tests now use real Naming instances instead of mock Naming instances. This significantly speeds up the test suite and reveals (and corrects) several places where the naming library was invoked incorrectly inside tests. by ankenyr in https://github.com/aerleon/aerleon/pull/356

**Full Changelog**: https://github.com/aerleon/aerleon/compare/1.8.0...1.9.0

1.8.0

What's Changed

Aerleon is built and released using a SLSA Level 3 build process. Releases can be verified using the steps described in https://aerleon.readthedocs.io/en/latest/install/#verifying-installation.

New Features
* Iptables, Speedway: the default behavior of jumping to a filter chain for each policy term can now be disabled with option "nochainedterms" in https://github.com/aerleon/aerleon/pull/352
* NokiaSRL: the entry "description" field now contains the term name, and the term comment is moved in field "_annotate_description". Previously the term comment would be used for the "description" field. By jbemmel in https://github.com/aerleon/aerleon/pull/349
* NokiaSRL: repository tags are now generated in NokiaSRL output. By jbemmel in https://github.com/aerleon/aerleon/pull/344

Internal Tooling
* File py.typed is now included in the project by jlost in https://github.com/aerleon/aerleon/pull/348
* Python 3.7 is removed from the test matrix as it is EOL. by ankenyr in https://github.com/aerleon/aerleon/pull/350
* Update formatting using latest black version by jbemmel in https://github.com/aerleon/aerleon/pull/343
* README: add `brew` install instructions by p-linnane in https://github.com/aerleon/aerleon/pull/346
* Add Nokia SRL sample by jbemmel in https://github.com/aerleon/aerleon/pull/351

New Contributors
* p-linnane made their first contribution in https://github.com/aerleon/aerleon/pull/346
* jlost made their first contribution in https://github.com/aerleon/aerleon/pull/348

**Full Changelog**: https://github.com/aerleon/aerleon/compare/1.7.0...1.8.0

1.7.0

What's Changed

Aerleon is built and released using a SLSA Level 3 build process. Releases can be verified using the steps described in https://aerleon.readthedocs.io/en/latest/install/#verifying-installation.

New Features
* Nokia SR Linux is now included as a built-in generator target. Special thanks to jbemmel in 333.
* OpenConfig/SONiC: add support for tcp-established option by XioNoX in https://github.com/aerleon/aerleon/pull/320
* Add Nokia SR Linux support for established and tcp-established options, and comments by jbemmel in https://github.com/aerleon/aerleon/pull/339

Bug Fixes
* Juniper: switch from `icmpv6` to `icmp6` in output files. See 334.
* Speedway: add packet/byte count for compatibility with iptables-restore. See 335.
* Warnings are no longer generated when the target address family is "mixed" and a term has protocol match conditions specific to a single address family. See 329.

Internal Tooling
* Add Python v3.11 to set of versions to verify, bump black version by jbemmel in https://github.com/aerleon/aerleon/pull/340

New Contributors
* jbemmel made their first contribution in https://github.com/aerleon/aerleon/pull/333

**Full Changelog**: https://github.com/aerleon/aerleon/compare/1.6.0...1.7.0

1.6.0

What's Changed

Aerleon is built and released using a SLSA Level 3 build process. Releases can be verified using the steps described in https://aerleon.readthedocs.io/en/latest/install/#verifying-installation.

New Features
* OpenConfig now produces an `acl-set` instead of an `acl-entry` so that the generated output includes the ACL name and address family. Thanks to XioNoX in 313.
* SRX now supports `destination-fqdn` and `source-fqdn` which generates address book entries with `dns-name`. By ankenyr in 330.
* Policy files can now include other policy files using the `include` statement. A new top-level keyword `filters_include_only` indicates the current file may be included by other files but will not generate its own ACL. See 328.

Bug Fixes
* Warnings are no longer generated when the target address family is "mixed" and a term has match conditions specific to a single address family. See 329.


**Full Changelog**: https://github.com/aerleon/aerleon/compare/1.5.0...1.6.0

1.5.0

What's Changed

Aerleon is built and released using a SLSA Level 3 build process. Releases can be verified using the steps described in https://aerleon.readthedocs.io/en/latest/install/#verifying-installation.

New Features
* Juniper: Added address family `ethernet-switching` to Juniper. See the documentation at [Juniper CLI Explorer](https://www.juniper.net/documentation/us/en/software/junos/interfaces-ethernet-switches/topics/ref/statement/family-ethernet-switching-edit-interfaces-qfx-series-elsies.html). Thanks to ProtonBruno in #318
* Dependabot: Bump cryptography from 39.0.1 to 41.0.2 322

**Full Changelog**: https://github.com/aerleon/aerleon/compare/1.4.0...1.5.0

1.4.0

What's Changed

Aerleon is built and released using a SLSA Level 3 build process. Releases can be verified using the steps described in https://aerleon.readthedocs.io/en/latest/install/#verifying-installation.

New Features
* NSX-T is now included as a built-in generator target. Special thanks to netgun in https://github.com/aerleon/aerleon/pull/303
* Juniper: "not-syn-ack" (NotSynAck) subtoken option is now available. Thanks to ProtonBruno in https://github.com/aerleon/aerleon/pull/314

Bug Fixes
* OpenConfig: move the transport key one level up by XioNoX in https://github.com/aerleon/aerleon/pull/311
* OpenConfig: add required sequence-id field by XioNoX in https://github.com/aerleon/aerleon/pull/312
* FQDN values that include a schema are now correctly rejected by jtwb in https://github.com/aerleon/aerleon/pull/300
* Networks and services with lowercase names are correctly allowed by the YAML schema by jtwb in https://github.com/aerleon/aerleon/pull/302
* Fix the usage of SIP on Arista by using integer. by ankenyr in https://github.com/aerleon/aerleon/pull/305

New Contributors
* netgun made their first contribution in https://github.com/aerleon/aerleon/pull/303
* XioNoX made their first contribution in https://github.com/aerleon/aerleon/pull/311
* ProtonBruno made their first contribution in https://github.com/aerleon/aerleon/pull/314

**Full Changelog**: https://github.com/aerleon/aerleon/compare/1.3.0...1.4.0

Page 1 of 3

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.