Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Jun 23 2021

erkin closed T3556: Commit-archive via scp causes 100% CPU on boot as Resolved.
Jun 23 2021, 9:51 AM · VyOS 1.4 Sagitta
FileGo added a comment to T3556: Commit-archive via scp causes 100% CPU on boot.

Looks fine on boot now.

Jun 23 2021, 9:46 AM · VyOS 1.4 Sagitta
Harliff added a comment to T3646: ospfd logs inacessbile for user.

I've not checked later versions. Maybe it was already fixed on 1.2.7 or 1.3/1.4 ?

Jun 23 2021, 9:45 AM · vyos-frr, VyOS 1.2 Crux
Harliff created T3646: ospfd logs inacessbile for user.
Jun 23 2021, 9:44 AM · vyos-frr, VyOS 1.2 Crux
erkin added a comment to T3556: Commit-archive via scp causes 100% CPU on boot.

Now that the Paramiko and Cryptography versions have been updated, does this problem persist with the newer nightlies? @SrividyaA @FileGo

Jun 23 2021, 9:19 AM · VyOS 1.4 Sagitta
erkin closed T3356: Script for remote file transfers, a subtask of T3355: Remove all remaining legacy Vyatta code, as Resolved.
Jun 23 2021, 9:11 AM · VyOS Rolling
erkin closed T3356: Script for remote file transfers as Resolved.
Jun 23 2021, 9:11 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
erkin changed the status of T3506: Migrate loadkey command to op-mode, a subtask of T3355: Remove all remaining legacy Vyatta code, from In progress to On hold.
Jun 23 2021, 8:49 AM · VyOS Rolling
erkin changed the status of T3506: Migrate loadkey command to op-mode from In progress to On hold.

Done with generate public-key-command. loadkey is deprecated and will be removed in a future version.

Jun 23 2021, 8:49 AM · VyOS 1.4 Sagitta
erkin changed the status of T3506: Migrate loadkey command to op-mode, a subtask of T3356: Script for remote file transfers, from In progress to On hold.
Jun 23 2021, 8:49 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
erkin closed T3644: Replace GCC with a simpler preprocessor for including nested XML snippets in XML documents as Resolved.
Jun 23 2021, 8:32 AM
raphielscape added a comment to T3640: Allow resetting Wireguard interface.
In T3640#96876, @c-po wrote:

If your host is behind NAT, could it possibly be that the NAT translation entry expired?

Does the following work:

ip link set dev wg0 down; ip link set dev wg0 up

Jun 23 2021, 6:23 AM
trae32566 added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.
In T3638#96831, @Viacheslav wrote:

Try to set single quotes.

Jun 23 2021, 3:31 AM · VyOS 1.4 Sagitta

Jun 22 2021

fernando added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

yes, I am using the following version :

Jun 22 2021, 7:28 PM · VyOS 1.4 Sagitta
c-po triaged T3645: Bullseye: ethtool changed output for ring-buffer information as High priority.
Jun 22 2021, 7:01 PM · VyOS 1.4 Sagitta
c-po closed T3645: Bullseye: ethtool changed output for ring-buffer information, a subtask of T3641: Upgrade base system from Debian Buster -> Debian Bullseye, as Resolved.
Jun 22 2021, 7:01 PM · VyOS 1.4 Sagitta
c-po closed T3645: Bullseye: ethtool changed output for ring-buffer information as Resolved.
Jun 22 2021, 7:01 PM · VyOS 1.4 Sagitta
c-po committed rVYOSONEX705eddbc7a2c: vyos.ethtool: T3645: fix compatibility with latest ethtool version.
Jun 22 2021, 7:01 PM
c-po committed rVYOSONEXd48dddab0509: vyos.ethtool: T3645: fix compatibility with latest ethtool version.
Jun 22 2021, 7:00 PM
c-po changed the status of T3645: Bullseye: ethtool changed output for ring-buffer information, a subtask of T3641: Upgrade base system from Debian Buster -> Debian Bullseye, from Open to In progress.
Jun 22 2021, 6:50 PM · VyOS 1.4 Sagitta
c-po changed the status of T3645: Bullseye: ethtool changed output for ring-buffer information from Open to In progress.
Jun 22 2021, 6:50 PM · VyOS 1.4 Sagitta
c-po created T3645: Bullseye: ethtool changed output for ring-buffer information.
Jun 22 2021, 6:50 PM · VyOS 1.4 Sagitta
GitHub <noreply@github.com> committed rVYOSONEX308069860351: Debian: add missing dependency on bridge-utils (authored by c-po).
Jun 22 2021, 6:14 PM
GitHub <noreply@github.com> committed rVYOSONEXed6b185c40f2: T3644: build: replace GCC preprocessor with a Python script for template… (authored by erkin).
Jun 22 2021, 6:09 PM
GitHub <noreply@github.com> committed rVYOSONEX91afeaca18e8: Debian: T3641: add dependency on squashfs-tools (authored by c-po).
Jun 22 2021, 6:08 PM
c-po added a comment to T3640: Allow resetting Wireguard interface.

If your host is behind NAT, could it possibly be that the NAT translation entry expired?

Jun 22 2021, 4:56 PM
c-po changed the status of T3641: Upgrade base system from Debian Buster -> Debian Bullseye from Open to In progress.
Jun 22 2021, 4:37 PM · VyOS 1.4 Sagitta
c-po committed rVYOSONEX47604c76587c: snmp: T3606: Install MIBs into well known location.
Jun 22 2021, 4:35 PM
Viacheslav closed T3582: 'delete log file' does not work as Resolved.
Jun 22 2021, 4:23 PM · VyOS 1.2 Crux (VyOS 1.2.8)
Viacheslav edited projects for T3582: 'delete log file' does not work, added: VyOS 1.2 Crux (VyOS 1.2.8); removed VyOS 1.2 Crux (VyOS 1.2.7).
Jun 22 2021, 4:22 PM · VyOS 1.2 Crux (VyOS 1.2.8)
erkin added a parent task for T3639: GCC preprocessor clobbers C comments: T3644: Replace GCC with a simpler preprocessor for including nested XML snippets in XML documents.
Jun 22 2021, 4:06 PM · VyOS 1.4 Sagitta
erkin added a subtask for T3644: Replace GCC with a simpler preprocessor for including nested XML snippets in XML documents: T3639: GCC preprocessor clobbers C comments.
Jun 22 2021, 4:06 PM
erkin changed the status of T3644: Replace GCC with a simpler preprocessor for including nested XML snippets in XML documents from Open to In progress.
Jun 22 2021, 4:05 PM
Viacheslav added a comment to T1790: OSPF Exchanged Routes marked as invalid when run through a GRE PTMP/PTP OSPF between peers .

@SquirePug Can you check 1.2.7 release?

Jun 22 2021, 3:51 PM
raphielscape added a comment to T3640: Allow resetting Wireguard interface.
In T3640#96771, @Viacheslav wrote:

We don't use any configuration file for it, so I think we can't use wg-quick
We use "wg set"

$ sudo wg set --help
Usage: wg set <interface> [listen-port <port>] [fwmark <mark>] [private-key <file path>] [peer <base64 public key> [remove] [preshared-key <file path>] [endpoint <ip>:<port>] [persistent-keepalive <interval seconds>] [allowed-ips <ip1>/<cidr1>[,<ip2>/<cidr2>]...] ]...
Jun 22 2021, 3:37 PM
Viacheslav added a comment to T2892: Remove command: "set firewall options interface <interface> disable".

I don't see the reason to delete the "disable" option, as it uses for adjust-mss and adjust-mss6.
And you need temporarily disable it.

Jun 22 2021, 1:03 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav changed the status of T3636: SSTP / L2TP ipv6 support broken from Open to Needs testing.
Jun 22 2021, 12:56 PM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXb6d2abba08ef: sstp-l2tp: T3636: Add ipv6 options.
Jun 22 2021, 12:54 PM
GitHub <noreply@github.com> committed rVYOSONEXdebd7996f89b: Merge pull request #895 from sever-sever/T3636 (authored by c-po).
Jun 22 2021, 12:54 PM
Viacheslav reassigned T3629: IPoE server shifting address in the range from Viacheslav to Unknown Object (User).
Jun 22 2021, 12:46 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav closed T3629: IPoE server shifting address in the range as Resolved.
Jun 22 2021, 12:45 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a comment to T3636: SSTP / L2TP ipv6 support broken.

PR https://github.com/vyos/vyos-1x/pull/895

Jun 22 2021, 12:27 PM · VyOS 1.4 Sagitta
Viacheslav assigned T3643: show vpn ipsec sa doesn't show tunnels in "down" state to sarthurdev.
Jun 22 2021, 10:59 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

Try to set single quotes.

Jun 22 2021, 10:13 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3643: show vpn ipsec sa doesn't show tunnels in "down" state.

Different format

vyos@r1-roll:~$ show vpn ipsec sa
Connection                State    Uptime    Bytes In/Out    Packets In/Out    Remote address    Remote ID    Proposal
------------------------  -------  --------  --------------  ----------------  ----------------  -----------  ----------
peer_192-0-2-2_tunnel_1   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_10  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_11  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_12  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_13  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_14  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_15  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_16  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_17  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_18  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_19  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_2   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_20  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_3   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_4   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_5   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_6   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_7   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_8   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_9   down     N/A       N/A             N/A               N/A               N/A          N/A
vyos@r1-roll:~$
Jun 22 2021, 10:07 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
trae32566 added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

Confirmed that's what is happening:

vyos@cr01a-vyos# TEST='variable'
[edit]
vyos@cr01a-vyos# set system login user vyos authentication plaintext-password HqNzXaK27k19$TEST
[edit]
vyos@cr01a-vyos# comp
[edit system login user vyos authentication]
+plaintext-password HqNzXaK27k19variable
Jun 22 2021, 8:35 AM · VyOS 1.4 Sagitta
trae32566 added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

@fernando Are you sure you're testing this on 1.3?

vyos@cr01a-vyos# run show ver
Jun 22 2021, 8:25 AM · VyOS 1.4 Sagitta
sarthurdev <965089+sarthurdev@users.noreply.github.com> committed rVYOSONEXa1aaf4fb9c0e: ipsec: T3643: T2816: Update IPSec VPN op-mode commands.
Jun 22 2021, 7:59 AM
GitHub <noreply@github.com> committed rVYOSONEX395595f832ac: Merge pull request #894 from sarthurdev/T3643 (authored by c-po).
Jun 22 2021, 7:59 AM
sarthurdev added a comment to T2816: Rewrite IPsec scripts with the new XML/Python approach.

@SrividyaA Fixed in PR https://github.com/vyos/vyos-1x/pull/894

Jun 22 2021, 7:45 AM · VyOS 1.4 Sagitta
sarthurdev added a comment to T3643: show vpn ipsec sa doesn't show tunnels in "down" state.

PR: https://github.com/vyos/vyos-1x/pull/894

Jun 22 2021, 7:44 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta

Jun 21 2021

fernando added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

I 've been checking this behavior with a different password , also I used the same password as you . But I couldn't reproduce the issue , both cases i add $ in the word and change the hash, let me show :

Jun 21 2021, 11:20 PM · VyOS 1.4 Sagitta
Viacheslav added a subtask for T2816: Rewrite IPsec scripts with the new XML/Python approach: T3643: show vpn ipsec sa doesn't show tunnels in "down" state.
Jun 21 2021, 8:57 PM · VyOS 1.4 Sagitta
Viacheslav added a parent task for T3643: show vpn ipsec sa doesn't show tunnels in "down" state: T2816: Rewrite IPsec scripts with the new XML/Python approach.
Jun 21 2021, 8:57 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav updated the task description for T3643: show vpn ipsec sa doesn't show tunnels in "down" state.
Jun 21 2021, 8:56 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a project to T3636: SSTP / L2TP ipv6 support broken: VyOS 1.4 Sagitta.
Jun 21 2021, 8:50 PM · VyOS 1.4 Sagitta
Viacheslav changed the subtype of T3636: SSTP / L2TP ipv6 support broken from "Bug" to "Feature Request".
Jun 21 2021, 8:50 PM · VyOS 1.4 Sagitta
Viacheslav renamed T3643: show vpn ipsec sa doesn't show tunnels in "down" state from show vpn ipsec sa doesn't show tunnel in "down" state to show vpn ipsec sa doesn't show tunnels in "down" state.
Jun 21 2021, 8:47 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav created T3643: show vpn ipsec sa doesn't show tunnels in "down" state.
Jun 21 2021, 8:46 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po committed rVYOSONEX106e174df83b: Debian: add missing dependencies on iproute2, sudo, sed and vyatta-bash.
Jun 21 2021, 7:27 PM
c-po committed rVYOSONEXfaec9b37e180: smoketest: ensure /config is a directory.
Jun 21 2021, 7:27 PM
c-po committed rVYOSONEX3ae265b30054: smoketest: ensure /config is a directory.
Jun 21 2021, 7:25 PM
c-po committed rVYOSONEX96dadf4b29e6: vyos.certbot: T3641: adjust to new python3-certbot-nginx API.
Jun 21 2021, 7:20 PM
SrividyaA added a comment to T2816: Rewrite IPsec scripts with the new XML/Python approach.

In fresh/new setup, the output of the command "show vpn ike sa" is throwing an exception error:

Jun 21 2021, 7:02 PM · VyOS 1.4 Sagitta
Viacheslav added a subtask for T2799: VyOS Certificates Manager: T3642: PKI configuration.
Jun 21 2021, 6:08 PM · VyOS 1.3 Equuleus (1.3.6)
Viacheslav added a parent task for T3642: PKI configuration: T2799: VyOS Certificates Manager.
Jun 21 2021, 6:08 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
dmbaturin created 1.2.8.
Jun 21 2021, 5:53 PM
sarthurdev updated the task description for T3642: PKI configuration.
Jun 21 2021, 5:18 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
sarthurdev updated the task description for T3642: PKI configuration.
Jun 21 2021, 5:18 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
sarthurdev created T3642: PKI configuration.
Jun 21 2021, 5:14 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
c-po committed rVYOSONEX1d2e99735f46: ipsec: T3641: Debian Bullseye uses python3-pycryptodome.
Jun 21 2021, 4:34 PM
Viacheslav added a comment to T3640: Allow resetting Wireguard interface.

We don't use any configuration file for it, so I think we can't use wg-quick
We use "wg set"

$ sudo wg set --help
Usage: wg set <interface> [listen-port <port>] [fwmark <mark>] [private-key <file path>] [peer <base64 public key> [remove] [preshared-key <file path>] [endpoint <ip>:<port>] [persistent-keepalive <interval seconds>] [allowed-ips <ip1>/<cidr1>[,<ip2>/<cidr2>]...] ]...
Jun 21 2021, 4:26 PM
raphielscape added a comment to T3640: Allow resetting Wireguard interface.
In T3640#96759, @Viacheslav wrote:

Is it helps in your case?

set interfaces wireguard wg0 disable 
commit
del interfaces wireguard wg0 disable 
commit

There is no any native command for reset wireguard interface in Linux (as I know). Also, we don't use any daemons which we can restart to "re-establish" session.
Is one host behind nat?

Jun 21 2021, 3:46 PM
erkin renamed T3378: commit-archive source-address broken for IPv6 addresses from commit-archive source-address Broken to commit-archive source-address broken for IPv6 addresses.
Jun 21 2021, 3:39 PM · VyOS 1.3 Equuleus (1.3.0)
erkin changed the subtype of T3378: commit-archive source-address broken for IPv6 addresses from "Task" to "Bug".
Jun 21 2021, 3:38 PM · VyOS 1.3 Equuleus (1.3.0)
c-po committed rVYOSONEX5b09d3571340: Revert "vmware: add tools.conf".
Jun 21 2021, 3:04 PM
c-po added a reverting change for rVYOSONEXb776edb38a47: vmware: add tools.conf: rVYOSONEX5b09d3571340: Revert "vmware: add tools.conf".
Jun 21 2021, 3:04 PM
c-po committed rVYOSONEXe42a5fd5f6c0: Python: T3641: adjust to changes in latest vesion of netifaces library.
Jun 21 2021, 3:04 PM
c-po committed rVYOSONEXfa09a06efbeb: Debian: T3641: add missing dependencies dh-python and fdisk.
Jun 21 2021, 3:04 PM
Viacheslav added a comment to T3640: Allow resetting Wireguard interface.

Is it helps in your case?

set interfaces wireguard wg0 disable 
commit
del interfaces wireguard wg0 disable 
commit

There is no any native command for reset wireguard interface in Linux (as I know). Also, we don't use any daemons which we can restart to "re-establish" session.
Is one host behind nat?

Jun 21 2021, 2:48 PM
erkin closed T3628: commit-archive source-address Interface Broken, a subtask of T3356: Script for remote file transfers, as Resolved.
Jun 21 2021, 4:56 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
erkin closed T3628: commit-archive source-address Interface Broken as Resolved.
Jun 21 2021, 4:56 AM · VyOS 1.4 Sagitta
erkin closed T3563: commit-archive breaks with IPv6 source addresses, a subtask of T3356: Script for remote file transfers, as Resolved.
Jun 21 2021, 4:55 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
erkin closed T3563: commit-archive breaks with IPv6 source addresses as Resolved.
Jun 21 2021, 4:55 AM · VyOS 1.4 Sagitta

Jun 20 2021

erkin committed rVYOSONEX58300075021e: T3268: remote: Determine source address from given network interface.
Jun 20 2021, 7:51 PM
GitHub <noreply@github.com> committed rVYOSONEX0de84e53c366: Merge pull request #893 from erkin/T3628 (authored by c-po).
Jun 20 2021, 7:51 PM
c-po committed rVYOSONEX9b71d555575c: Merge branch 'bullseye' into current.
Jun 20 2021, 6:42 PM
c-po committed rVYOSONEX70f7f06e778e: T3641: fastnetmon package is not available for Debian Bullseye.
Jun 20 2021, 6:42 PM
c-po committed rVYOSONEXa4bb1b77ff41: T3641: lcdproc.service is now shipped in lcdproc package.
Jun 20 2021, 6:42 PM
c-po committed rVYOSONEXb16939e5bf24: T3641: file /etc/ppp/ip-pre-up is already provided by ppp package.
Jun 20 2021, 6:42 PM
c-po committed rVYOSONEXb776edb38a47: vmware: add tools.conf.
Jun 20 2021, 6:35 PM
c-po moved T3641: Upgrade base system from Debian Buster -> Debian Bullseye from Open to In Progress on the VyOS 1.4 Sagitta board.
Jun 20 2021, 6:27 PM · VyOS 1.4 Sagitta
c-po created T3641: Upgrade base system from Debian Buster -> Debian Bullseye.
Jun 20 2021, 6:26 PM · VyOS 1.4 Sagitta
GitHub <noreply@github.com> committed rVYOSONEX62b501acee27: Debian: add missing dependencies on iproute2, sudo, sed and vyatta-bash (authored by c-po).
Jun 20 2021, 4:44 PM
erkin committed rVYOSONEXa2db767cccca: T3506: loadkey: Add `generate public-key-command` command.
Jun 20 2021, 4:31 PM
erkin committed rVYOSONEX72c92a5d3162: Add `save` line.
Jun 20 2021, 4:31 PM
erkin committed rVYOSONEXa80510875d1b: Escape the slash character to dodge GCC preprocessor.
Jun 20 2021, 4:31 PM
erkin committed rVYOSONEX35d98c78455f: Revert to the character entity reference version.
Jun 20 2021, 4:31 PM
erkin committed rVYOSONEX79ce4caf051c: Use `CDATA` to quote URL templates.
Jun 20 2021, 4:31 PM
erkin committed rVYOSONEX04a088bb2f96: Use `CDATA` to quote URL templates (redux).
Jun 20 2021, 4:31 PM
First
Prev
Next