@c-po Shure, config attached to task https://phabricator.vyos.net/T1315 (left-r1, left-r2, right-r1, right-r2)
Section "Autostart commands"
- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Apr 9 2020
Apr 9 2020
GitHub <noreply@github.com> committed rVYOSONEXd7c1bab9b996: Merge pull request #316 from thomas-mangin/T2242 (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEXb10240816503: Merge pull request #317 from thomas-mangin/T2028-remote (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEXd4469e373df1: Merge pull request #314 from thomas-mangin/T2186 (authored by c-po).
jestabro renamed T2253: Fix use of cmd in merge config and remote function helpers from Fix use of cmd in vyos merge and remote function helper to Fix use of cmd in merge config and remote function helpers.
jestabro triaged T2253: Fix use of cmd in merge config and remote function helpers as Normal priority.
jestabro moved T2252: HTTP API add system image can return '504 Gateway Time-out' from Backport Candidates to Finished on the VyOS 1.3 Equuleus board.
jestabro moved T2252: HTTP API add system image can return '504 Gateway Time-out' from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.5) board.
The time-out issue is resolved in T2252; other issues as summarized above.
Apr 8 2020
Apr 8 2020
Is this normal?
vyos@rt-home# set interfaces ethernet eth4 vif 20 [edit] vyos@rt-home# commit [ interfaces ethernet eth4 ] DEBUG/ifconfig cmd '/sbin/ethtool -K eth4 gro off' DEBUG/ifconfig cmd '/sbin/ethtool -K eth4 gso off' DEBUG/ifconfig cmd '/sbin/ethtool -K eth4 sg off' DEBUG/ifconfig cmd '/sbin/ethtool -K eth4 tso off' DEBUG/ifconfig cmd '/sbin/ethtool -K eth4 ufo off' DEBUG/ifconfig returned: Cannot change udp-fragmentation-offload
T2199 for the firewall rewrite - free for the taking. I wouldn't stray much from the old code logic, as some things have hidden meanings. Especially leaving checks out could introduce bugs unless you're absolutely sure they can be bypassed.
There was a new upstream release 1.4.6 7 days ago, but that shouldn't make it to debian stable (buster). Only the patch done by elbandi via PR could get released as 1.4.5-3, but it hasn't been yet. We could make a backport of 1.4.6 into buster-backports and add a custom apt pin for the package. (I'd rather not go the backport route, as that means the backporter needs to always update the upload for security fixes, rather I'd add all patches for bugs into 1.4.5 for buster and ask for a new buster release).
jjakob triaged T2250: vyos-build "make iso" error if configure was ran outside of the docker container as Low priority.
tjh updated the task description for T2248: PPPoE Broken in Latest 1.3 Rolling (1.3-rolling-202004070629).
jjakob updated the task description for T2249: Interface definitions must always have the correct 'type:' set.
jjakob triaged T2249: Interface definitions must always have the correct 'type:' set as Low priority.
Please find below, with some comments redacted.
I can't reproduce it with the code in the rolling image that will be available by tomorrow.
c-po added a project to T2248: PPPoE Broken in Latest 1.3 Rolling (1.3-rolling-202004070629): VyOS 1.3 Equuleus.
Can you please share your configuration on the pppoe interface with us?
The only major differences I've noticed are the kernel versions:
c-po reassigned T2091: swanctl.conf file is not generated properly if more than one IPsec profile is used from c-po to Unknown Object (User).
c-po updated subscribers of T2091: swanctl.conf file is not generated properly if more than one IPsec profile is used.
Re-assigning to @Dmitry after checking with him as he's more experienced here.
Where do I get the local address from? Can you share your complete config? Maybe we need source-address or something similar in CLI.
Yes - there are some parts which make use of this bad practice (mostly introduced by me), cleanup required.
c-po closed T2244: WireGuard: cleanup Python implementation and reduce amount of boilerplate code, a subtask of T2232: Prevent deletion of bridge member interfaces, as Resolved.
c-po renamed T2244: WireGuard: cleanup Python implementation and reduce amount of boilerplate code from WireGuard: cleanup Python implementation and reduce amount of boiler plate code to WireGuard: cleanup Python implementation and reduce amount of boilerplate code.
zsdc changed the status of T2245: Need to create a common logging module for Python scripts from Open to In progress.
There is an issue with storing the state of the interface and then applying it in bulk. For some interface we want to admin it down before performing change and then bringing it back up.
If we store this then only the change and the up command will be applied, this is not going to work.
@cpo should another task be created to make sure we exclude the interfaces themself from source-interface (s) ?
GitHub <noreply@github.com> committed rVYOSONEX53754fcbbf92: Merge pull request #315 from jjakob/openvpn-template (authored by c-po).
c-po changed the status of T2244: WireGuard: cleanup Python implementation and reduce amount of boilerplate code from Open to In progress.
Viacheslav updated the task description for T2201: Rewrite protocol BGP [op-mode] to new XML/Python style.
GitHub <noreply@github.com> committed rVYOSONEXa15eae4bc572: Merge pull request #313 from DmitriyEshenko/dmvpn-fix1 (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEXb9c1722c8a73: Merge pull request #311 from thomas-mangin/T2028-explain (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEX27d70a21a2e0: Merge pull request #312 from DmitriyEshenko/patch-11 (authored by c-po).
zsdc changed the status of T1820: VRRP transition scripts for sync-groups are not supported in VyOS (anymore) from Open to Needs testing.
Hello, @adestis!
Support of transition-scripts was added to sync-groups in a rolling version.
I have investigated this a bit. Most operations for ports are doing one-by-one. Deleting as I see is always done in this way. Adding a range is done by a single command, but checking ports are doing one-by-one.
If we skip/change mentioned checking for adding ports, this should decrease initial commit time. But when we try to change/delete ports, the issue will back.
I think that there should be better to reimplement the whole firewall group section in Python, instead of fixing this logic now.
Unknown Object (User) changed the status of T2236: DMVPN broken after tunnel rewrite to XML/Python from Open to Needs testing.
Unknown Object (User) added a comment to T2236: DMVPN broken after tunnel rewrite to XML/Python.
PR for this task https://github.com/vyos/vyos-1x/pull/313
Viacheslav updated the task description for T2201: Rewrite protocol BGP [op-mode] to new XML/Python style.
thomas-mangin added a comment to T2186: Provide more information to the user when a traceback is reported to the user.
thanks to @runborg .. my own initial attempt to syslog failed (facility level ??)
This works
import logging
import logging.handlers
my_logger = logging.getLogger('MyLogger') # logger is singleton
my_logger.setLevel(logging.DEBUG)
handler = logging.handlers.SysLogHandler(address='/dev/log', facility="auth")
my_logger.addHandler(handler)
my_logger.critical('this is critical')thomas-mangin added a comment to T2186: Provide more information to the user when a traceback is reported to the user.
from shlex import quote
def systemd(self, level, message):
msg = quote(message)
run(f'echo {msg} | systemd-cat -p {self.level}')jjakob updated the task description for T2241: Changing settings on an interface causes it to fall out of bridge.
jjakob triaged T2241: Changing settings on an interface causes it to fall out of bridge as Urgent! priority.