yes, you are right:
- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Jan 12 2022
Jan 12 2022
sarthurdev changed the status of T4160: Firewall - Error in rules that matches everything except something from In progress to Needs testing.
Viacheslav closed T4174: Validation fails when entering port range with upper port 65535, a subtask of T2199: Rewrite firewall in new XML/Python style, as Resolved.
Viacheslav closed T4174: Validation fails when entering port range with upper port 65535 as Resolved.
sarthurdev moved T4131: Show firewall group incorrect format members from Open to In Progress on the VyOS 1.4 Sagitta board.
sarthurdev moved T4137: Firewall group configuration allows to set incorrect port range and invalid port from Open to In Progress on the VyOS 1.4 Sagitta board.
sarthurdev moved T4144: Firewall address-group - Improve error messages from Open to In Progress on the VyOS 1.4 Sagitta board.
sarthurdev moved T4148: Firewall - Error messages not that clear as it were in old firewall from Open to In Progress on the VyOS 1.4 Sagitta board.
sarthurdev moved T4155: PBR: `set table main` fails in `firewall.py` with newer rolling releases from Open to In Progress on the VyOS 1.4 Sagitta board.
sarthurdev moved T4160: Firewall - Error in rules that matches everything except something from Open to In Progress on the VyOS 1.4 Sagitta board.
Unknown Object (User) changed the status of T4167: DMVPN apply wrong param on the first configuration from In progress to Needs testing.
Unknown Object (User) added a comment to T4100: Firewall increase maximum number of rules.
Jan 11 2022
Jan 11 2022
sarthurdev changed the status of T4160: Firewall - Error in rules that matches everything except something from Open to In progress.
Forgot that my PR for WLB was still a draft. That the jump does seem to be created properly with this PR in place.
That build at 08:11 UTC was a couple of hours before the commit was merged: https://github.com/vyos/vyos-1x/commit/f97144259335102c3d96b232cbb0af4970120d62
yes , i'm using this version :
Unknown Object (User) added a comment to T4167: DMVPN apply wrong param on the first configuration.
Seems to be working on my latest build?
Unknown Object (User) changed the status of T4167: DMVPN apply wrong param on the first configuration from Open to In progress.
I've checked with this new build , it works with validator ranges/port :
GitHub <noreply@github.com> committed rVYOSONEX968afb9e67a2: Merge pull request #1160 from bjw-s/T4174 (authored by c-po).
Bᴇʀɴᴅ Sᴄʜᴏʀɢᴇʀs <me@bjw-s.dev> committed rVYOSONEX4793e2fc0baf: firewall: validators: T4174: Correct upper port range boundary.
GitHub <noreply@github.com> committed rVYOSONEXb55ac8e2c06c: Merge pull request #1159 from sarthurdev/firewall (authored by c-po).
bjw-s updated the task description for T4174: Validation fails when entering port range with upper port 65535.
I've been testing and it works :
Nicolas Fort <nicolasfort1988@gmail.com> committed rVYOSONEX1b8f421727ee: ike-group: T4162: Correct helper description for ikev2-reauth.
GitHub <noreply@github.com> committed rVYOSONEX24954d470102: Merge pull request #1157 from nicolas-fort/T4162 (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEX2b51513cf251: Merge pull request #1158 from sarthurdev/firewall (authored by c-po).
sarthurdev changed the status of T4164: PBR: network groups (as well as address and port groups) don't resolve in `nftables_policy.conf` from Open to Needs testing.
Thanks, I really like the include idea and have implemented it in the attached PR. Also added a check in firewall.py to reload policy-route script to keep any group changes updated.
sarthurdev changed the status of T4159: Empty firewall group (address, network & port) generates invalid nftables config, commit fails, a subtask of T2199: Rewrite firewall in new XML/Python style, from Open to Needs testing.
sarthurdev changed the status of T4159: Empty firewall group (address, network & port) generates invalid nftables config, commit fails from Open to Needs testing.
PR removes the empty line when there are no group members, also adds a warning message when empty groups are used in rules.
sarthurdev changed the status of T4131: Show firewall group incorrect format members from Open to Needs testing.
@Viacheslav Not using exact ipset format, however addresses are sorted and output one per line.
sarthurdev changed the status of T4144: Firewall address-group - Improve error messages from In progress to Needs testing.
Should resolve the rest of the error messages.
well , I think it should be something like this :
c-po changed the status of T4171: Interface config migration error on 1.2.8 -> 1.4 upgrade from Open to In progress.
erkin closed T3950: CLI backtrace on update if DNS not defined , a subtask of T3356: Script for remote file transfers, as Resolved.
Chained exceptions are covered too (and backported to Equuleus).
c-po committed rVYOSONEXd5775339f9d1: remote: T3950: Gracefully handle chained exceptions (authored by erkin).
c-po committed rVYOSONEXb5b9685c37aa: remote: T3950: Gracefully handle chained exceptions (authored by erkin).
Invalid - already available - I looked into an 1.2.8 image.
erkin reopened T3950: CLI backtrace on update if DNS not defined , a subtask of T3356: Script for remote file transfers, as In progress.
Unknown Object (User) assigned T4168: IPsec VPN is impossible to restart when DMVPN is configured to Viacheslav.
Unknown Object (User) created T4168: IPsec VPN is impossible to restart when DMVPN is configured.
Unknown Object (User) created T4167: DMVPN apply wrong param on the first configuration.
GitHub <noreply@github.com> committed rVYOSONEXc0d65731d904: Merge pull request #1153 from jestabro/frr_debug (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEX142c976ca4b3: containers: T2216: bugfix host networking on image upgrade (authored by Mathew Inkson <627767+imathew@users.noreply.github.com>).
GitHub <noreply@github.com> committed rVYOSONEX1a33b2f6db47: Merge pull request #1154 from imathew/current (authored by c-po).
Hi, I've just submitted a pull request (https://github.com/vyos/vyos-1x/pull/1154) to hopefully complete this bugfix.
Jan 10 2022
Jan 10 2022
jestabro triaged T4166: Debug output missing when frr.py called under vyos-configd as Normal priority.
@fernando Thanks, do you have any idea about syntax?
Viacheslav changed the status of T4152: NHRP shortcut-target holding-time does not work from In progress to Needs testing.
johannrichard updated the task description for T4164: PBR: network groups (as well as address and port groups) don't resolve in `nftables_policy.conf`.
GitHub <noreply@github.com> committed rVYOSONEX465939d9c9b4: Merge pull request #1152 from sarthurdev/firewall_validators (authored by c-po).
sarthurdev changed the status of T4144: Firewall address-group - Improve error messages from Open to In progress.
IPv4 address range error messages are included in PR: https://github.com/vyos/vyos-1x/pull/1152
sarthurdev changed the status of T4148: Firewall - Error messages not that clear as it were in old firewall from Open to Needs testing.
Error for rule being in use when deleting base node was fixed in https://github.com/vyos/vyos-1x/pull/1151
sarthurdev changed the status of T4137: Firewall group configuration allows to set incorrect port range and invalid port from Open to Needs testing.