Page MenuHomeVyOS Platform
Create Task
Maniphest T7166

VXLAN interfaces disappear if the parent wireguard interface was changed
Closed, ResolvedPublicBUG
Actions

Description

VXLAN interfaces disappear if wireguard interface was changed
To reproduce:

set interfaces wireguard wg1 address 10.20.30.1/24
set interfaces wireguard wg1 description 'First peer'
set interfaces wireguard wg1 peer first address '192.0.2.31'
set interfaces wireguard wg1 peer first allowed-ips '10.20.30.2/32'
set interfaces wireguard wg1 peer first persistent-keepalive '25'
set interfaces wireguard wg1 peer first port '55555'
set interfaces wireguard wg1 peer first public-key '6HXVzOzM3yYz+MkXUOajmLU22CEvYacISODOwQPqE34='
set interfaces wireguard wg1 port '50001'
set interfaces wireguard wg1 private-key '2L4gceJCIpL9QjPZnsO3Mfb+2if+dYtBINZE2F4mDXU='

set interfaces vxlan vxlan1 address '10.1.1.1/30'
set interfaces vxlan vxlan1 mtu '1350'
set interfaces vxlan vxlan1 port '4789'
set interfaces vxlan vxlan1 remote '192.0.2.31'
set interfaces vxlan vxlan1 source-interface 'wg1'
set interfaces vxlan vxlan1 vni '5'
commit && ip link show | match "wg|vxlan"

set interfaces wireguard wg1 peer first persistent-keepalive 15
commit && ip link show | match "wg|vxlan"

After the first commit we see both interfaces, after the second commit we see only wireguard but do not see vxlan interface

### first commit
vyos@r14# commit && ip link show | match "wg|vxlan"
[ interfaces vxlan vxlan1 ]

WARNING: RFC7348 recommends VXLAN tunnels preserve a 1500 byte MTU


11: wg1: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1420 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000
12: vxlan1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1350 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000
[edit]
vyos@r14# 
[edit]

### second commit
vyos@r14# set interfaces wireguard wg1 peer first persistent-keepalive 15
[edit]
vyos@r14# commit && ip link show | match "wg|vxlan"
13: wg1: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1420 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000
[edit]
vyos@r14#

Most likely needs a dependency wireguard => vxlan

Details

Version
VyOS 1.5-rolling-202502131743
Is it a breaking change?
Perfectly compatible
Issue type
Bug (incorrect behavior)
Story points
3

Related Objects

Event Timeline

Viacheslav created this task.Fri, Feb 14, 10:43 AM
Viacheslav triaged this task as Normal priority.
natali-rs1985 changed the task status from Open to In progress.Tue, Feb 25, 12:34 PM
natali-rs1985 claimed this task.
pasik subscribed.Tue, Feb 25, 12:59 PM
natali-rs1985 added a comment.Wed, Feb 26, 10:37 AM

https://github.com/vyos/vyos-1x/pull/4369

dmbaturin edited projects, added VyOS 1.4 Sagitta (1.4.2); removed VyOS 1.4 Sagitta (1.4.3).Thu, Feb 27, 4:07 PM
dmbaturin changed Is it a breaking change? from Unspecified (possibly destroys the router) to Perfectly compatible.
natali-rs1985 mentioned this in rVYOSONEX19dc0994af16: wireguard: T7166: Call vxlan dependency if interface exist.Thu, Feb 27, 4:10 PM
Restricted Repository Identity mentioned this in rVYOSONEX22af5b3e8a7c: Merge pull request #4369 from natali-rs1985/T7166.Thu, Feb 27, 4:10 PM
natali-rs1985 closed this task as Resolved.Mon, Mar 3, 10:35 AM
natali-rs1985 moved this task from Backlog to Finished on the VyOS 1.4 Sagitta (1.4.2) board.
natali-rs1985 moved this task from Open to Finished on the VyOS 1.5 Circinus board.
natali-rs1985 moved this task from Need Triage to Completed on the VyOS Rolling board.
dmbaturin renamed this task from VXLAN interfaces disappear if wireguard interface was changed to VXLAN interfaces disappear if the parent wireguard interface was changed.Wed, Mar 12, 5:28 PM