Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Oct 31 2020

c-po committed rVYOSONEX7e546be921e8: openvpn: T2994: temporary revert to 1.2 crux behavior for client pools.
Oct 31 2020, 3:08 PM
c-po committed rVYOSONEX929cdeed5e4e: openvpn: T2994: bugfix evaluating replace-default-route in template.
Oct 31 2020, 3:05 PM
c-po added a comment to T3024: DHCPv6 PD configuration doesn't really render an expected behavior.

which exact VyOS version are you using? Delegating from one interface to many should be doable and can be configured on the latest rolling version.

Oct 31 2020, 1:37 PM · VyOS 1.3 Equuleus (1.3.0)
dmbaturin triaged T3035: Allow IPv4 over IPv6 IPsec and vice versa as Normal priority.
Oct 31 2020, 10:54 AM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po claimed T3024: DHCPv6 PD configuration doesn't really render an expected behavior.
Oct 31 2020, 7:39 AM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T3034: Add WiFi WPA 3 support.
Oct 31 2020, 7:37 AM · VyOS 1.3 Equuleus (1.3.0)
c-po claimed T3034: Add WiFi WPA 3 support.
Oct 31 2020, 7:37 AM · VyOS 1.3 Equuleus (1.3.0)
c-po created T3034: Add WiFi WPA 3 support.
Oct 31 2020, 7:36 AM · VyOS 1.3 Equuleus (1.3.0)
c-po renamed T3033: Update Linux Kernel to v4.19.154 from Update Linux Kernel to v4.19.153 to Update Linux Kernel to v4.19.154.
Oct 31 2020, 7:10 AM · VyOS 1.3 Equuleus (1.3.0)

Oct 30 2020

c-po committed rVYOSONEX700d03d241b7: openvpn: T2994: verify DH key length.
Oct 30 2020, 8:14 PM
c-po committed rVYOSONEX5ffe914cb35f: Debian: add OpenSSL dependency, inherited by OpenVPN.
Oct 30 2020, 8:14 PM
c-po changed the status of T2994: Migrate OpenVPN interfaces to get_config_dict() syntax, a subtask of T2653: "set interfaces" Python handler code improvements - next iteration, from In progress to Needs testing.
Oct 30 2020, 8:14 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2994: Migrate OpenVPN interfaces to get_config_dict() syntax from In progress to Needs testing.
Oct 30 2020, 8:14 PM · VyOS 1.3 Equuleus (1.3.0)
c-po committed rVYOSONEXc8b7e5cd1cd1: openvpn: T2994: migrate to get_config_dict().
Oct 30 2020, 6:03 PM
c-po closed T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit, a subtask of T1579: Rewrite all interface types in new XML/Python style, as Resolved.
Oct 30 2020, 6:03 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit as Resolved.
Oct 30 2020, 6:03 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit, a subtask of T2994: Migrate OpenVPN interfaces to get_config_dict() syntax, as Resolved.
Oct 30 2020, 6:03 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit.

Closing in favor of T2994 - please try tomorrows rolling release. If there are new bugs (which might always happen on rewrites) please file a new Bug report and I try to fix them ASAP.

Oct 30 2020, 6:03 PM · VyOS 1.3 Equuleus (1.3.0)
c-po merged T2950: DHCP server cannot start on live CD into T2958: DHCP server doesn't work from a live CD.
Oct 30 2020, 5:53 PM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
c-po merged task T2950: DHCP server cannot start on live CD into T2958: DHCP server doesn't work from a live CD.
Oct 30 2020, 5:53 PM · VyOS 1.3 Equuleus (1.3.0)
c-po assigned T3021: We shouldn't be using pool.ntp.org to syncer.
Oct 30 2020, 5:52 PM · VyOS 1.3 Equuleus (1.3.0)
c-po committed rVYOSONEX406083932ae6: vyos.util: T2995: change comment style for "make test" output.
Oct 30 2020, 5:41 PM
c-po committed rVYOSONEXd0a5df6b3563: smoketest: openvpn: extend server verify() test with TLS auth keys.
Oct 30 2020, 4:14 PM
c-po renamed T3005: Intel: update out-of-tree drivers, i40e driver warning from i40e driver warning to Intel: update out-of-tree drivers, i40e driver warning.
Oct 30 2020, 4:04 PM · VyOS 1.3 Equuleus (1.3.0)
c-po committed rVYOSONEX31f4075c95fc: smoketest: openvpn: test server mode verify() steps.
Oct 30 2020, 3:14 PM
c-po committed rVYOSONEXd5dfdb5bac8d: smoketest: openvpn: test client mode verify() steps.
Oct 30 2020, 3:14 PM
c-po committed rVYOSONEX720e88a0c811: smoketest: openvpn: test site2site mode verify() steps.
Oct 30 2020, 3:14 PM
rizkidtn added a comment to T1289: route-map set route-type blackhole.
In T1289#78883, @Viacheslav wrote:

Like this?

vyos@r4-roll# set policy route-map FJFFJJF rule 10 set ip-next-hop 
Possible completions:
   <x.x.x.x>    IP address

where x.x.x.x route to blackhole?

Oct 30 2020, 2:05 PM · VyOS 1.3 Equuleus (1.3.5)
GitHub <noreply@github.com> committed rVYOSONEX6b5ddd5e03a7: Merge pull request #588 from sever-sever/T3031 (authored by c-po).
Oct 30 2020, 1:14 PM
Viacheslav added a comment to T1289: route-map set route-type blackhole.

Like this?

Oct 30 2020, 11:07 AM · VyOS 1.3 Equuleus (1.3.5)
rizkidtn added a comment to T1289: route-map set route-type blackhole.
In T1289#35636, @dmbaturin wrote:

The usual procedure is to create a route-map that sets the nexthop to a blackholed address if the advertisment has a specific community string set.
So when a customer advertises an address (rather a /32 network) to you with that string set, it automatically ends up blackholed.

Do you just want a shortcut for that, or you are having issues with community string-based approach?

Oct 30 2020, 10:59 AM · VyOS 1.3 Equuleus (1.3.5)
Viacheslav added a comment to T1518: Removing full OSPF protocol is not possible.

This logic does not allow for the complete removal of the protocol.
https://github.com/vyos/vyatta-cfg-quagga/blob/32cbb1e5059c6c27449b7013f790aff1c50a9831/templates/protocols/ospf/passive-interface/node.def#L29-L35

Oct 30 2020, 10:53 AM · VyOS 1.3 Equuleus (1.3.3)
Viacheslav added a comment to T2258: VRF route leaking from BGP.

@Azayaka do you mean import routes to a specific table? T3032
Can you check it with the next rolling release?

Oct 30 2020, 10:28 AM · VyOS 1.3 Equuleus (1.3.5)
Viacheslav added a comment to T1289: route-map set route-type blackhole.

@rizkidtn Update, please your request. Is the community works for you for blackholing?

Oct 30 2020, 10:24 AM · VyOS 1.3 Equuleus (1.3.5)
Viacheslav closed T2790: Add ability to set ipv6 protocol route-map for OSPFv3 as Resolved.
Oct 30 2020, 10:07 AM · VyOS 1.3 Equuleus (1.3.0)
jack9603301 added a comment to T2424: Ability to choose the direction of Mirroring.

I found some interesting information, it seems that inbound/outbound port mirroring can be achieved

Oct 30 2020, 9:51 AM · VyOS 1.3 Equuleus (1.3.4)
Viacheslav added a comment to T3031: Error in Equuleus' help for IPv6 ECMP.

PR https://github.com/vyos/vyos-1x/pull/588

Oct 30 2020, 9:27 AM · vyatta-cfg-system
Viacheslav claimed T3031: Error in Equuleus' help for IPv6 ECMP.
Oct 30 2020, 9:22 AM · vyatta-cfg-system
c-po closed T3033: Update Linux Kernel to v4.19.154 as Resolved.
Oct 30 2020, 9:15 AM · VyOS 1.3 Equuleus (1.3.0)
c-po created T3033: Update Linux Kernel to v4.19.154.
Oct 30 2020, 9:15 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav changed the status of T3032: Ability to "set table" in the policy route-map from Open to Needs testing.
Oct 30 2020, 9:06 AM · VyOS 1.2 Crux (VyOS 1.2.8)
Viacheslav added a comment to T3032: Ability to "set table" in the policy route-map.

PR https://github.com/vyos/vyatta-cfg-quagga/pull/56

Oct 30 2020, 9:04 AM · VyOS 1.2 Crux (VyOS 1.2.8)
c-po committed rVYOSONEX55941ffa0ff5: smoketest: ssh: add bond to vrf testcase.
Oct 30 2020, 8:12 AM
c-po committed rVYOSONEXa1327d2b970d: ssh: T2635: reuse common verify_vrf() function.
Oct 30 2020, 8:12 AM
Viacheslav created T3032: Ability to "set table" in the policy route-map.
Oct 30 2020, 7:29 AM · VyOS 1.2 Crux (VyOS 1.2.8)
SrividyaA added a comment to T3017: bridge will lose the tuntap member after reboots.

Can you please share the entire configuration and version of the VyOS to reproduce the issue in the lab.

Oct 30 2020, 6:28 AM · Invalid

Oct 29 2020

Unknown Object (User) created T3031: Error in Equuleus' help for IPv6 ECMP.
Oct 29 2020, 8:32 PM · vyatta-cfg-system
c-po added a comment to T2587: Cannot enable the interface when the MTU is set to less than 1280.

set interfaces ethernet eth1 ipv6 address no-default-link-local is the right command, yes

Oct 29 2020, 4:27 PM · VyOS 1.3 Equuleus (1.3.0)
c-po committed rVYOSONEXf8c99aebd0e2: verify: T2587: allow MTU < 1280 when IPv6 is disabled on an interface.
Oct 29 2020, 4:27 PM
c-po added a comment to T2587: Cannot enable the interface when the MTU is set to less than 1280.

Bug ;) will be fixed soon

Oct 29 2020, 4:26 PM · VyOS 1.3 Equuleus (1.3.0)
jack9603301 added a comment to T3030: Support ERSPAN Tunnel Protocol.

Yes, but iptables tee seems to support packet copy of various rules

Oct 29 2020, 4:26 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3030: Support ERSPAN Tunnel Protocol.

Do you mean that?

set interfaces ethernet eth1 mirror
Oct 29 2020, 4:15 PM · VyOS 1.4 Sagitta
jack9603301 triaged T3030: Support ERSPAN Tunnel Protocol as Wishlist priority.
Oct 29 2020, 3:58 PM · VyOS 1.4 Sagitta
jack9603301 created T3030: Support ERSPAN Tunnel Protocol.
Oct 29 2020, 3:57 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T2387: Create XML scheme for [conf_mode] BGP .
  1. Not all interfaces can be used as "update-source"

Missed "vti | dum | lo" etc.
https://github.com/vyos/vyos-1x/blob/current/interface-definitions/protocols-bgp.xml.in#L639

Oct 29 2020, 2:49 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro claimed T2847: System freezes after attempting commit with insufficient memory.
Oct 29 2020, 1:43 PM · VyOS 1.3 Equuleus
GitHub <noreply@github.com> committed rVYOSONEX736ca991e86d: Merge pull request #587 from sever-sever/T2850 (authored by c-po).
Oct 29 2020, 1:14 PM
Viacheslav added a comment to T2850: Add BGP template for FRR.

PR https://github.com/vyos/vyos-1x/pull/587
Fix the FRR template for new bgp implementation.

Oct 29 2020, 12:51 PM · VyOS 1.3 Equuleus (1.3.0)
GitHub <noreply@github.com> committed rVYOSONEXaed4cac87220: Merge pull request #586 from cjeanneret/nginx-redirect (authored by jestabro).
Oct 29 2020, 12:32 PM
cjeanneret added a comment to T3029: Generated NGINX configuration is wrong for the redirection (http -> https).

Pull request is up: https://github.com/vyos/vyos-1x/pull/586

Oct 29 2020, 11:06 AM · VyOS 1.3 Equuleus (1.3.0)
cjeanneret claimed T3029: Generated NGINX configuration is wrong for the redirection (http -> https).
Oct 29 2020, 11:00 AM · VyOS 1.3 Equuleus (1.3.0)
cjeanneret created T3029: Generated NGINX configuration is wrong for the redirection (http -> https).
Oct 29 2020, 10:59 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a comment to T2587: Cannot enable the interface when the MTU is set to less than 1280.

How to do it?

Oct 29 2020, 6:54 AM · VyOS 1.3 Equuleus (1.3.0)

Oct 28 2020

zsdc changed the status of T3028: Create a default user when metadata is not available (for Cloud-init builds) from In progress to Needs testing.
Oct 28 2020, 10:40 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2587: Cannot enable the interface when the MTU is set to less than 1280.

You actually can when setting ipv6 disable-link-local addressing on the particular interface.

Oct 28 2020, 8:38 PM · VyOS 1.3 Equuleus (1.3.0)
c-po committed rVYOSONEX58e99dc96e52: smoketest: accel: T2631: check disable-accounting option.
Oct 28 2020, 7:21 PM
c-po committed rVYOSONEX25551c5a30bd: vyos.util: T2995: rename vyos_dict_search() -> dict_search().
Oct 28 2020, 7:21 PM
c-po closed T2995: Enhancements/bugfixes for vyos_dict_search() as Resolved.
Oct 28 2020, 6:25 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2995: Enhancements/bugfixes for vyos_dict_search().
Oct 28 2020, 6:25 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2968: Add support for Intel Atom C2000 series QAT as Resolved.
Oct 28 2020, 6:21 PM · VyOS 1.3 Equuleus (1.3.0)
c-po committed rVYOSONEX4a83a9ac55ca: qat: T2968: adjust to C200xx PCI ID from Intel drivers.
Oct 28 2020, 6:20 PM
c-po committed rVYOSONEX8e11d9cc51b1: mtu: T2630: add support for ethernet MTU up to 16000 bytes.
Oct 28 2020, 6:07 PM
c-po closed T2630: Allow Interface MTU over 9000 as Resolved.
Oct 28 2020, 6:06 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2630: Allow Interface MTU over 9000.
vyos@vyos# set interfaces ethernet eth2 mtu 16000
[edit]
vyos@vyos# commit
[ interfaces ethernet eth2 ]
Interface MTU too high, maximum supported MTU is 9000!
Oct 28 2020, 6:05 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2630: Allow Interface MTU over 9000.
Oct 28 2020, 5:49 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T3027: Unable to update system Signature check FAILED as Resolved.
Oct 28 2020, 4:28 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T3027: Unable to update system Signature check FAILED.

The root cause for this is the sha256 checksum file itself. It contains the hash and the filename. When running sha256 --check during the upgrade it expects the "real" filename when calculating and verifying the hash. The real filename differs when using the vyos-rolling-latest.iso symlink on the webserver as it will tell the running VyOS installation a different filename and the validation fails. This is now fixed by not depending on the filename when verifying the has. We simply calculate the hash of the downloaded file and compare it to the hash we saved inside the checksum file and totally ignore the filename itself.

Oct 28 2020, 4:25 PM · VyOS 1.3 Equuleus (1.3.0)
c-po claimed T3027: Unable to update system Signature check FAILED.
Oct 28 2020, 4:22 PM · VyOS 1.3 Equuleus (1.3.0)
Unknown Object (User) closed T2631: l2tp, sstp, pptp add option to disable radius accounting as Resolved.
Oct 28 2020, 4:00 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav updated the task description for T3027: Unable to update system Signature check FAILED.
Oct 28 2020, 3:55 PM · VyOS 1.3 Equuleus (1.3.0)
klase added a comment to T2631: l2tp, sstp, pptp add option to disable radius accounting.

I have tested both SSTP and L2TP and it works as expected - thank you for this addition!

Oct 28 2020, 2:12 PM · VyOS 1.3 Equuleus (1.3.0)
zsdc changed the status of T3028: Create a default user when metadata is not available (for Cloud-init builds) from Open to In progress.
Oct 28 2020, 2:08 PM · VyOS 1.3 Equuleus (1.3.0)
zsdc created T3028: Create a default user when metadata is not available (for Cloud-init builds).
Oct 28 2020, 2:08 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav changed the status of T3027: Unable to update system Signature check FAILED from Open to Confirmed.
Oct 28 2020, 1:01 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav created T3027: Unable to update system Signature check FAILED.
Oct 28 2020, 1:00 PM · VyOS 1.3 Equuleus (1.3.0)

Oct 27 2020

Cheeze_It added a comment to T915: MPLS Support.

Put in a PR to separate hello/hold timers for IPv4 and IPv6. Added IPv6 timers.

Oct 27 2020, 11:54 PM · VyOS 1.3 Equuleus (1.3.0-epa1), VyOS 1.4 Sagitta
klase added a comment to T2631: l2tp, sstp, pptp add option to disable radius accounting.

I will check it tomorrow and verify operation. Thank you!

Oct 27 2020, 7:55 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav closed T2587: Cannot enable the interface when the MTU is set to less than 1280 as Resolved.

Fixed

vyos@r4-roll# run show version
Oct 27 2020, 7:28 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a comment to T2631: l2tp, sstp, pptp add option to disable radius accounting.

@klase Check these options in the next rolling release (after 20201027)

Oct 27 2020, 7:15 PM · VyOS 1.3 Equuleus (1.3.0)
GitHub <noreply@github.com> committed rVYOSONEX9cf806a8b60a: Merge pull request #583 from jestabro/vyos-configtest (authored by c-po).
Oct 27 2020, 7:07 PM
GitHub <noreply@github.com> committed rVYOSONEXec099db69f58: Merge pull request #584 from sever-sever/T2387_oct (authored by c-po).
Oct 27 2020, 7:05 PM
GitHub <noreply@github.com> committed rVYOSONEX174ae56c6f49: Merge pull request #581 from sever-sever/T2631 (authored by c-po).
Oct 27 2020, 7:05 PM
lucasec closed T2961: Support "stateless" DHCP-v6 (information-request) clients as Resolved.
Oct 27 2020, 7:01 PM
lucasec closed T2964: pdns_recursor should support explicitly configuring query source address as Resolved.
Oct 27 2020, 7:01 PM
jestabro closed T2582: Script daemon to offload processing during commit as Resolved.
Oct 27 2020, 6:25 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro closed T2885: configd: print commit errors to config session terminal as Resolved.
Oct 27 2020, 6:25 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro closed T2885: configd: print commit errors to config session terminal, a subtask of T2582: Script daemon to offload processing during commit, as Resolved.
Oct 27 2020, 6:25 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro closed T2808: Add smoketest to ensure script consistency with config daemon, a subtask of T2582: Script daemon to offload processing during commit, as Resolved.
Oct 27 2020, 6:25 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro closed T2808: Add smoketest to ensure script consistency with config daemon as Resolved.
Oct 27 2020, 6:25 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro added a comment to T3003: Extend smoketest framework to allow loading an arbitrary config file.

https://github.com/vyos/vyos-1x/pull/583
https://github.com/vyos/vyos-build/pull/129

Oct 27 2020, 6:18 PM · VyOS 1.3 Equuleus (1.3.0)
First
Prev
Next