Added the new resolve-cache options to my config after upgrading to VyOS 1.4-rolling-202308140557:
firewall { global-options { all-ping enable broadcast-ping disable ipv6-receive-redirects disable ipv6-src-route disable ip-src-route disable log-martians enable receive-redirects disable + resolver-cache + resolver-interval 60 send-redirects enable source-validation strict syn-cookies enable twa-hazards-protection disable }
However attempting a "commit" ends up with an error:
Traceback (most recent call last): File "/usr/libexec/vyos/conf_mode/firewall.py", line 420, in <module> apply(c) File "/usr/libexec/vyos/conf_mode/firewall.py", line 411, in apply post_apply_trap(firewall) File "/usr/libexec/vyos/conf_mode/firewall.py", line 363, in post_apply_trap for host, target_conf in firewall['trap_targets'].items(): ~~~~~~~~^^^^^^^^^^^^^^^^ KeyError: 'trap_targets' [[firewall]] failed Commit failed [edit] vyos@vyos#