Never done this before. I hope that PR is correct:
https://github.com/vyos/vyos-1x/pull/1126
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
All Stories
Dec 29 2021
Just fork the repository vyos-1x and create a PR with propper commit format.
https://docs.vyos.io/en/equuleus/contributing/development.html#fork-repository-and-submit-patch
https://github.com/vyos/vyos-1x/blob/current/CONTRIBUTING.md
Related task https://phabricator.vyos.net/T4119
Maybe "is_addr_assigned" on "python/vyos/validate.py" needs to be patched too.
When I set "listen-address fe80::abc2%eth0" to service tftp-server then "is_addr_assigned" got called and run into an error:
At the moment I am testing the patch with some common services and found a tiny issue inside the auto completion feature.
Dec 28 2021
In T4014#114910, @johannrichard wrote:@Viacheslav, appreciate your question, and yes, there is:
ntopng/ntopng (https://hub.docker.com/r/ntop/ntopng/) as well as nprobe require that their configuration options and/or an option with the path to a config file are passed as arguments, it won’t just pick up a/any file, and thus won’t run without proper command arguments.
There are certainly others, but these are the ones I’m working towards running on VyOS.*
@Viacheslav, appreciate your question, and yes, there is:
One issue with static + dhcp on one interface at the same time.
After renew, the static address 192.168.122.11 is disappears
To reproduce:
vyos@r11-roll:~$ show conf com | match eth0 set interfaces ethernet eth0 address '192.168.122.11/24' set interfaces ethernet eth0 address 'dhcp'
Renew dhcp:
vyos@r11-roll:~$ renew dhcp interface eth0
Static address not in the system:
vyos@r11-roll:~$ show int Codes: S - State, L - Link, u - Up, D - Down, A - Admin Down Interface IP Address S/L Description --------- ---------- --- ----------- eth0 192.168.122.166/24 u/u WAN eth1 203.0.113.1/24 u/u
@johannrichard Is there any real example that you want to achieve?
thanks you @Viacheslav
PR https://github.com/vyos/vyos-1x/pull/1124
set service ssh disable-host-validation set service ssh listen-address '192.168.122.11' set service ssh listen-address 'fe80::5054:ff:fe48:a0c6%eth0'
Chek service and listen-addresses:
vyos@r11-roll# cat /run/sshd/sshd_config | grep List ListenAddress 192.168.122.11 ListenAddress fe80::5054:ff:fe48:a0c6%eth0
In VyOS 1.3.0-epa3
It still doesn't work for 1.3
This regex not for all IPv6 peers
PR for 1.2:
https://github.com/vyos/vyatta-cfg-vpn/pull/55
PR for 1.3:
https://github.com/vyos/vyatta-cfg-vpn/pull/54
Dec 27 2021
Although this works, there’s still some mandatory config statements that are required. You can just lob everything into a file to be included.
There is a task for "loadbalancing" T4109
Some of the options can be included in the config:
set interfaces openvpn vtun10 openvpn-option-include '/config/openvpn/included.conf'
Just configure minimal OpenVPN configuration and include what you want
Issue was a missing verify() step which requires every SNMPv3 user to have a group assigned.
PR for 1.3 https://github.com/vyos/vyos-1x/pull/1122
Somewhat related since about November builds of Vyos 1.4 I loose my firewall rules when I reboot and make a configuration change. If I do not make a configuration change it doesn't get wiped from the config. The ip table rules are still present but missing from the config causing a reboot to actually wipe the firewall rules... This is a little scary.
vyos@scr1-fw-1:~$ show ver
Its fixed in 1.3.0 release:
@Viacheslav thank you so much for your help!