Page MenuHomeVyOS Platform
Create Task
Maniphest T4307

Policy routing anymore, Commit generating errors
Closed, InvalidPublic
Actions

Description

dp@fw# delete policy
[edit]
dp@fw# set policy route src-route rule 1001 destination address '0.0.0.0/0'
[edit]
dp@fw# set policy route src-route rule 1001 set table '1'
[edit]
dp@fw# set policy route src-route rule 1001 source address '172.21.50.14'
[edit]
dp@fw# commit
[ policy route src-route ]
VyOS had an issue completing a command.

We are sorry that you encountered a problem while using VyOS.
There are a few things you can do to help us (and yourself):
- Contact us using the online help desk if you have a subscription:
  https://support.vyos.io/
- Make sure you are running the latest version of VyOS available at:
  https://vyos.net/get/
- Consult the community forum to see how to handle this issue:
  https://forum.vyos.io
- Join us on Slack where our users exchange help and advice:
  https://vyos.slack.com

When reporting problems, please include as much information as possible:
- do not obfuscate any data (feel free to contact us privately if your
  business policy requires it)
- and include all the information presented below

Report time:      2022-03-18 13:42:05
Image version:    VyOS 1.4-rolling-202203180317
Release train:    sagitta

Built by:         autobuild@vyos.net
Built on:         Fri 18 Mar 2022 03:17 UTC
Build UUID:       2fefdd36-f460-4755-b9b6-b78746e6ed79
Build commit ID:  20fd8588efdc77

Architecture:     x86_64
Boot via:         installed image
System type:      bare metal

Hardware vendor:  Supermicro
Hardware model:   Super Server
Hardware S/N:     0123456789
Hardware UUID:    00000000-0000-0000-0000-0cc47a7c059a

Traceback (most recent call last):
  File "/usr/libexec/vyos/conf_mode/policy-route.py", line 257, in <module>
    generate(c)
  File "/usr/libexec/vyos/conf_mode/policy-route.py", line 204, in generate
    policy['cleanup_commands'] = cleanup_commands(policy)
  File "/usr/libexec/vyos/conf_mode/policy-route.py", line 181, in cleanup_commands
    json_str = cmd(f'nft -j list table {table}')
  File "/usr/lib/python3/dist-packages/vyos/util.py", line 161, in cmd
    raise OSError(code, feedback)
PermissionError: [Errno 1] failed to run command: nft -j list table ip mangle
returned:
exit code: 1

noteworthy:
cmd 'nft -j list table ip mangle'
returned (out):

returned (err):
Error: No such file or directory; did you mean table ‘mangle’ in family inet?
list table ip mangle
              ^^^^^^

[[policy route src-route]] failed
Commit failed

Details

Version
VyOS 1.4-rolling-202203180317
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Unspecified (please specify)

Event Timeline

danielpo created this task.Mar 18 2022, 12:45 PM
danielpo created this object in space S1 VyOS Public.
n.fort subscribed.Mar 18 2022, 1:41 PM

Can you share configuration that you are deleting? So far, I can't reproduce error

sarthurdev subscribed.Mar 18 2022, 1:42 PM

Error implies that firewall failed to configure on boot as mangle table is missing. Any logs/config trace from boot?

danielpo added a comment.Mar 18 2022, 1:52 PM

Thanks, Not really sure what happened, but I deleted config.boot and rebooted, Now it works to add a policy again.

SrividyaA closed this task as Invalid.Mar 18 2022, 2:06 PM
SrividyaA triaged this task as Low priority.