v0.6.0

OpenWrt collection will soon be merged into managemynetwork collection: https://github.com/imp1sh/ansible_managemynetwork https://galaxy.ansible.com/ui/repo/published/imp1sh/ansible_managemynetwork/
It will happen next release cycle. It won't change a lot for you. You will only have to install and reference a different collection.

This release features:

• restic role added features

  • encpassphrase can now be set in backup item list so you can define
    individual encryption passphrases for each target.
  • added support for s3 target
  • now sourcing restic config for cron jobs. These may be redundant
    because restic commandn in openwrt explicitly wants -p and -r switches

• changes to openwrt_system will trigger log and system service restart
  so changes to logging will take effect e.g.

• updated x86 imagebuilder url 23.05.2

• if no firewall rules whatsoever are defined the role will halt and ask if you really want it. This is a failsafe, because when the firewall dict contains errors (non existant variables for example) it might be rendered empty.

• Add support for IP routing rules
  Upstream documentation at:

  https://openwrt.org/docs/guide-user/network/routing/ip_rules

  Example configuration:

  PBR for traffic arriving on 'guest' interface rerouted to table 2000 which routes to VPN:

  openwrt_network_rules4:
    guest_wifi_through_vpn:
      in: guest_wifi
      lookup: '2000'
      priority: '3000'

  or IPV6:

  openwrt_network_rules6:
    dmz_nullroute_fdca:
      in: dmz
      dest: 'fdca:1234::/64'
      action: 'blackhole'

• common interface options optimized

v0.5.1

Updates in v0.5.1

• This will probably be the last release to support 22.03. Version v0.6 will have changes for 23.05
• fix for proto list in firewall rules
• updated imagebuilder default url for x86 to 22.03.5
• added plenty of missing ipv6 options for networking role
• add new role prometheus_node_exporter for exporting data into e.g. .grafana
• fixed major bug in restic backup role. CRON job tried to use wrong password file
• fix small error in uhttpd role when running in imagebuilder mode

v0.5.0

• imagebuilder support for removing opkg packages
• update x86 default imagebuilder url update 22.03.4
• babeld role now ready to be used
• ansible_openwrtimagebuilder now supports:
  • ansible_openwrtwireless
  • ansible_openwrtuhttpd
• added missing options in dhcp
• odhcpd fix for not showing active dhcpv6 leases in LUCI
• firewall default rules ports now int not string
• experimented with firewall rule checks
• reworked prepare task for ansible_openwrtpackages:
  now after prepare a list is coming out. They are being
  transformed in place if necessary
• allowed_ips for wireguar now optional
• network interface with dhcpv6 now supports defining clientid (duid)

v0.4.3

New release supporting uhttpd

v0.4.1

• major rework of restic backup role, see: https://wiki.junicast.de/en/junicast/docs/AnsibleOpenWrtCollection/roleRestic

• defining rules in firewall role is now more fault tolerant:
  src_port fallback names:

  • src-port
  • srcport
    dest_port fallback names:
  • dest-port
  • destport
  • port

  new fallback option for rule (port)
  It is a common error to not use the 'dest_port' attribute for a rule but
  to write 'port' instaed. This could lead to somewhat catastrophic
  results, as the rule would accept every traffic for e.g.
  udp / tcp or udptcp withtout a restriction to the destination
  port.
  As a fallback in case someone writes port instead of dest_port this
  now also works and will have the same result if one would have
  written dest_port.

v0.4.0

• tinyproxy support
• docs now english
• small fixes

v0.3.1

• ansible-lint / yamllint optimizations
• variable names in restic fix
• imagebuilder rework, see https://wiki.junicast.de/de/junicast/docs/AnsibleOpenWrtCollection/RolleImagebuilder
• more usage of ansible fully qualified names
• added webroot option for acme role
• added pxe boot options for dhcp role
• added luci and luci-base as default packages for imagebuilder role
• breaking change in dropbear module, see new variable names: https://wiki.junicast.de/de/junicast/docs/AnsibleOpenWrtCollection/RolleDropbear

v0.3.0

• Major improvements for imagebuilder, see https://wiki.junicast.de/e/de/junicast/docs/AnsibleOpenWrtCollection/RolleImagebuilder
• some ansible-lint fixes
• Rework of how ansible_openwrtpackages works. Other roles will not install packages by themselves. They will now make use of the functionality of the ansible_openwrtpackages role. See https://wiki.junicast.de/de/junicast/docs/AnsibleOpenWrtCollection/RollePackages
• breaking change: Variable renamed in ansible_openwrtpackages. All relevant variables now: openwrt_packages_* to be more consistent

v0.2.2

• important fix: firewall rule proto
  this fixes a bug for firewall rules where a proto is set.
  it was not possible to set the "all" directive, instead "tcp/udp" was
  set as this is the default if no proto is given. This is now fixed.
  On top it is now also possible to define ah, sctp udplite as proto.
  Protocol numbers are currently not supported. So are protocol names from /etc/protocols
• optimizations for imagebuilder
• new role ansible_openwrtimagebuilder that will build an OpenWrt image with your packages and configuration files. Documentation will soon come, but there will also be some more optimizations

v0.2.1

Accidentally skipped release v0.2.0 here on github, what's new comparing to v0.2.0

• small optimizations and bugfixes
• ipv6 for pppoe and ppp now configurable via the 'ipv6' parameter in openwrt_network
• 802.11r parameters added, thx to @PhilipWhiteside
• small optimizations to wireguard role