Page MenuHomeVyOS Platform
Create Task
Maniphest T7219

VXLAN needs to make remote and group options mutually exclusive
Closed, ResolvedPublicBUG
Actions

Description

VXLAN does not verify if remote and group added together bug

To reproduce:

set interfaces ethernet eth1 address '192.0.2.1/24'
set interfaces vxlan vxlan10 group '239.4.4.5'
set interfaces vxlan vxlan10 mtu '1420'
set interfaces vxlan vxlan10 remote '192.0.2.254'
set interfaces vxlan vxlan10 source-address '192.0.2.1'
set interfaces vxlan vxlan10 source-interface 'eth1'
set interfaces vxlan vxlan10 vni '10'
commit

commit:

vyos@r14# commit
[ interfaces vxlan vxlan10 ]

WARNING: RFC7348 recommends VXLAN tunnels preserve a 1500 byte MTU

Traceback (most recent call last):
  File "/usr/libexec/vyos/services/vyos-configd", line 146, in run_script
    script.apply(c)
  File "/usr/libexec/vyos//conf_mode/interfaces_vxlan.py", line 246, in apply
    v = VXLANIf(**vxlan)
        ^^^^^^^^^^^^^^^^
  File "/usr/lib/python3/dist-packages/vyos/ifconfig/interface.py", line 341, in __init__
    self._create()
  File "/usr/lib/python3/dist-packages/vyos/ifconfig/vxlan.py", line 106, in _create
    self._cmd(cmd.format(**self.config))
  File "/usr/lib/python3/dist-packages/vyos/ifconfig/control.py", line 64, in _cmd
    return cmd(command, self.debug, env=env)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/lib/python3/dist-packages/vyos/utils/process.py", line 187, in cmd
    raise OSError(code, feedback)
PermissionError: [Errno 1] failed to run command:  ip link add vxlan10 type vxlan dstport 4789 group 239.4.4.5 df unset tos inherit ttl 16 remote 192.0.2.254 local 192.0.2.1 dev eth1 id 10
returned: 
exit code: 1

[[interfaces vxlan vxlan10]] failed
Commit failed
[edit]
vyos@r14#

Native commands:

vyos@r14# sudo ip link add vxlan10 type vxlan dstport 4789 group 239.4.4.5 df unset tos inherit ttl 16 remote 192.0.2.254 local 192.0.2.1 dev eth1 id 10
vxlan: both group and remote cannot be specified
[edit]
vyos@r14#

Details

Version
VyOS 1.5-rolling-202503030030
Is it a breaking change?
Perfectly compatible
Issue type
Bug (incorrect behavior)

Related Objects
Search...

Event Timeline

Viacheslav created this task.Mar 4 2025, 5:04 PM
Viacheslav triaged this task as Normal priority.
pasik subscribed.Mar 4 2025, 6:27 PM
Restricted Repository Identity mentioned this in rVYOSONEXc9ddcc6a24a3: T7219: Add check for remote and group command to verify.Mar 11 2025, 6:22 PM
Restricted Repository Identity mentioned this in rVYOSONEX4d5783a240c9: Merge pull request #4383 from oniko94/fix/T7219-fix-vxlan-verify.Mar 11 2025, 6:22 PM
dmbaturin renamed this task from VXLAN does not verify if remote and group added together bug to VXLAN needs to make remote and group options mutually exclusive.Mar 25 2025, 10:29 PM
dmbaturin added projects: VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.2).
dmbaturin changed Is it a breaking change? from Unspecified (possibly destroys the router) to Perfectly compatible.
dmbaturin moved this task from Open to Finished on the VyOS 1.5 Circinus board.
Viacheslav changed the task status from Open to In progress.Mar 26 2025, 8:03 AM
Viacheslav assigned this task to oniko94.
dmbaturin closed this task as Resolved.Apr 2 2025, 3:11 PM
dmbaturin moved this task from Backlog to Finished on the VyOS 1.4 Sagitta (1.4.2) board.
dmbaturin moved this task from Need Triage to Completed on the VyOS Rolling board.
dmbaturin mentioned this in 1.4.2.Apr 2 2025, 3:24 PM
c-po changed the status of subtask T7400: smoketest: fix unbound variable issue when checking for VXLAN remote and group error from Open to In progress.Apr 25 2025, 7:04 PM
c-po closed subtask T7400: smoketest: fix unbound variable issue when checking for VXLAN remote and group error as Resolved.Apr 25 2025, 8:20 PM
dmbaturin edited projects, added VyOS 1.5 Circinus (1.5-stream-2025-Q2); removed VyOS 1.5 Circinus.Jul 9 2025, 11:39 AM