Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Feb 20 2022

eronlloyd added a comment to T4256: Display static DHCP server leases in the operational command output.

Being able to quickly see reservations in an operational mode command would be convenient, avoiding the need to pull up the config.

Feb 20 2022, 11:36 AM · VyOS 1.5 Circinus
Viacheslav closed T4249: Add support for device mapping in containers as Resolved.
Feb 20 2022, 10:31 AM · VyOS 1.4 Sagitta
c-po assigned T4260: Extend vyos.configdict.node_changed() to support recursiveness to jestabro.
Feb 20 2022, 9:30 AM · VyOS 1.3 Equuleus (1.3.2)
c-po created T4260: Extend vyos.configdict.node_changed() to support recursiveness.
Feb 20 2022, 9:30 AM · VyOS 1.3 Equuleus (1.3.2)

Feb 19 2022

Viacheslav added a comment to T4259: The conntrackd daemon can be started wrongly.

It is used in keepalived Template

Feb 19 2022, 11:29 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav added a comment to T4249: Add support for device mapping in containers.

PR https://github.com/vyos/vyos-1x/pull/1229

Feb 19 2022, 6:16 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4249: Add support for device mapping in containers from Open to In progress.
Feb 19 2022, 5:23 PM · VyOS 1.4 Sagitta
c-po closed T4258: [DHCP-SERVER] error parameter on Failover as Resolved.
Feb 19 2022, 6:49 AM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po moved T4258: [DHCP-SERVER] error parameter on Failover from Need Triage to Finished on the VyOS 1.3 Equuleus ( 1.3.1) board.
Feb 19 2022, 6:49 AM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po moved T4258: [DHCP-SERVER] error parameter on Failover from Need Triage to 1.3.1 on the VyOS 1.3 Equuleus board.
Feb 19 2022, 6:49 AM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po moved T4258: [DHCP-SERVER] error parameter on Failover from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Feb 19 2022, 6:49 AM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta

Feb 18 2022

fernando added a comment to T4258: [DHCP-SERVER] error parameter on Failover.

PR :https://github.com/vyos/vyos-1x/pull/1228

Feb 18 2022, 9:29 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
fernando claimed T4258: [DHCP-SERVER] error parameter on Failover.
Feb 18 2022, 8:23 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
chenxiaolong closed T4244: eapol: commit fails with KeyError when PKI certificate name differs from the CA name as Resolved.
Feb 18 2022, 8:21 PM
Viacheslav added a project to T4258: [DHCP-SERVER] error parameter on Failover: VyOS 1.4 Sagitta.

Dhcp template https://github.com/vyos/vyos-1x/blob/9e626ce7bad2bd846826822a3622fedf2d937e09/data/templates/dhcp-server/dhcpd.conf.tmpl#L45-L47

Feb 18 2022, 7:36 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
zsdc created T4259: The conntrackd daemon can be started wrongly.
Feb 18 2022, 6:42 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
fernando renamed T4258: [DHCP-SERVER] error parameter on Failover from [DHCP-SERVER] error paramater on Failover to [DHCP-SERVER] error parameter on Failover.
Feb 18 2022, 6:37 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
fernando created T4258: [DHCP-SERVER] error parameter on Failover.
Feb 18 2022, 6:29 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav added a comment to T4254: VPN IPSec charon add options cisco_flexvpn and install_virtual_ip_on.

PR https://github.com/vyos/vyos-1x/pull/1226

Feb 18 2022, 10:52 AM · VyOS 1.4 Sagitta
Viacheslav updated the task description for T4254: VPN IPSec charon add options cisco_flexvpn and install_virtual_ip_on.
Feb 18 2022, 9:14 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4232: VyOS 1.2 traffic-policy shaper match interface not working.

@kirvio Could you check it on 1.3/1.4?

Feb 18 2022, 8:33 AM · VyOS 1.2 Crux
kirvio triaged T4232: VyOS 1.2 traffic-policy shaper match interface not working as High priority.
Feb 18 2022, 6:05 AM · VyOS 1.2 Crux
chenxiaolong added a comment to T4245: eapol: Support for specifying the full CA chain of trust for both client and server.

PR for documentation: https://github.com/vyos/vyos-documentation/pull/719

Feb 18 2022, 12:33 AM
chenxiaolong added a comment to T4245: eapol: Support for specifying the full CA chain of trust for both client and server.

I've submitted a PR here: https://github.com/vyos/vyos-1x/pull/1227

Feb 18 2022, 12:03 AM

Feb 17 2022

Viacheslav updated the task description for T4254: VPN IPSec charon add options cisco_flexvpn and install_virtual_ip_on.
Feb 17 2022, 9:14 PM · VyOS 1.4 Sagitta
xtremxyz closed T4253: default-route pppoe client connection as Resolved.

It's not a bug, to automatically add the routes when the link is disconnected, set the connect-on-demand parameter.

Feb 17 2022, 8:36 PM
Cheeze_It claimed T4257: Discussion on changing BGP autonomous system number syntax.
Feb 17 2022, 8:27 PM · VyOS 1.4 Sagitta
Cheeze_It updated subscribers of T4257: Discussion on changing BGP autonomous system number syntax.
Feb 17 2022, 8:24 PM · VyOS 1.4 Sagitta
Cheeze_It created T4257: Discussion on changing BGP autonomous system number syntax.
Feb 17 2022, 8:24 PM · VyOS 1.4 Sagitta
c-po closed T4255: Unexpected print of dict bridge on delete as Resolved.
Feb 17 2022, 8:13 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po moved T4255: Unexpected print of dict bridge on delete from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Feb 17 2022, 8:13 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po moved T4255: Unexpected print of dict bridge on delete from Need Triage to Finished on the VyOS 1.3 Equuleus ( 1.3.1) board.
Feb 17 2022, 8:12 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po changed the status of T4255: Unexpected print of dict bridge on delete from Open to In progress.
Feb 17 2022, 8:12 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav changed the status of T3600: DHCP Interface static route breaks PBR, a subtask of T3505: Commits do not respect changes in FRR that are not stored in a config, from In progress to Needs testing.
Feb 17 2022, 7:58 PM · VyOS 1.4 Sagitta (1.4.0-GA)
Viacheslav changed the status of T3600: DHCP Interface static route breaks PBR from In progress to Needs testing.
Feb 17 2022, 7:58 PM · VyOS 1.4 Sagitta
c-po closed T4154: Error add second gre tunnel with the same source interface as Resolved.
Feb 17 2022, 7:55 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
vplehto updated the task description for T4256: Display static DHCP server leases in the operational command output.
Feb 17 2022, 7:34 PM · VyOS 1.5 Circinus
Viacheslav closed T4241: ocserv openconnect looks broken in recent bulds of 1.3 Equuleus as Resolved.

@dutty Thanks for confirming.

Feb 17 2022, 7:18 PM · VyOS 1.3 Equuleus ( 1.3.1)
dutty added a comment to T4241: ocserv openconnect looks broken in recent bulds of 1.3 Equuleus.

I just built ISO from the 1.3 branch and tried (1.3-rolling-202202171824). ocserv works normal. The issue is probably resolved.
Thank you.

Feb 17 2022, 7:16 PM · VyOS 1.3 Equuleus ( 1.3.1)
vplehto created T4256: Display static DHCP server leases in the operational command output.
Feb 17 2022, 6:40 PM · VyOS 1.5 Circinus
Viacheslav created T4255: Unexpected print of dict bridge on delete.
Feb 17 2022, 4:36 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav changed the status of T4254: VPN IPSec charon add options cisco_flexvpn and install_virtual_ip_on from Open to In progress.
Feb 17 2022, 4:10 PM · VyOS 1.4 Sagitta
Viacheslav created T4254: VPN IPSec charon add options cisco_flexvpn and install_virtual_ip_on.
Feb 17 2022, 4:08 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T1972: Allow setting interface name for virtual_ipaddress in VRRP VRID from In progress to Needs testing.
Feb 17 2022, 3:53 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
jestabro moved T3474: Revisit storing syntax version of interface definitions in XML file from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Feb 17 2022, 3:32 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
jestabro changed the status of T3474: Revisit storing syntax version of interface definitions in XML file, a subtask of T1962: Add syntax version to schema, from In progress to Backport candidate.
Feb 17 2022, 3:32 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro changed the status of T3474: Revisit storing syntax version of interface definitions in XML file, a subtask of T3475: XML dictionary cache unable to process syntaxVersion elements, from In progress to Backport candidate.
Feb 17 2022, 3:32 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
jestabro changed the status of T3474: Revisit storing syntax version of interface definitions in XML file from In progress to Backport candidate.
Feb 17 2022, 3:32 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
dmbaturin claimed T4252: `show configuration json` (op mode) and `show | json` (conf mode) represent multi-value nodes differently.
Feb 17 2022, 2:31 PM · Restricted Project, Restricted Project, VyOS 1.5 Circinus
c-po closed T4240: Cannot add wlan0 to bridge via configure as Resolved.
Feb 17 2022, 1:54 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus ( 1.3.1)
c-po moved T4240: Cannot add wlan0 to bridge via configure from Need Triage to Finished on the VyOS 1.3 Equuleus ( 1.3.1) board.
Feb 17 2022, 1:54 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus ( 1.3.1)
xtremxyz created T4253: default-route pppoe client connection.
Feb 17 2022, 12:02 PM
Viacheslav changed the status of T4241: ocserv openconnect looks broken in recent bulds of 1.3 Equuleus from Confirmed to Needs testing.
Feb 17 2022, 10:34 AM · VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav added a comment to T4241: ocserv openconnect looks broken in recent bulds of 1.3 Equuleus.

CI job for re-build pkg ocserv should fix this issue.

Feb 17 2022, 10:28 AM · VyOS 1.3 Equuleus ( 1.3.1)
chenxiaolong renamed T4245: eapol: Support for specifying the full CA chain of trust for both client and server from eapol: Support for multiple CA certificates (eg. intermediate + root) to eapol: Support for specifying the full CA chain of trust for both client and server.
Feb 17 2022, 7:38 AM
chenxiaolong added a comment to T4245: eapol: Support for specifying the full CA chain of trust for both client and server.

After further testing, it looks like it's not necessary to have <iface>_ca.pem contain both the server and client chains of trust.

Feb 17 2022, 7:32 AM
chenxiaolong added a comment to T4245: eapol: Support for specifying the full CA chain of trust for both client and server.

I started working on implementing my "alternative" idea. It's a little bit more complicated than I first thought because we have to consider both the server and client chain of trust.

Feb 17 2022, 7:16 AM
chenxiaolong created T4252: `show configuration json` (op mode) and `show | json` (conf mode) represent multi-value nodes differently.
Feb 17 2022, 5:39 AM · Restricted Project, Restricted Project, VyOS 1.5 Circinus
bbabich created T4251: Add TLS functionality for rsyslog.
Feb 17 2022, 4:51 AM · VyOS 1.5 Circinus
jestabro added a comment to T3474: Revisit storing syntax version of interface definitions in XML file.

https://github.com/vyos/vyos-1x/pull/1225

Feb 17 2022, 3:51 AM · VyOS 1.4 Sagitta (1.4.0-epa1)
klipz added a comment to T4240: Cannot add wlan0 to bridge via configure.

@c-po Thank you for the work on this.

Feb 17 2022, 1:20 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus ( 1.3.1)

Feb 16 2022

Viacheslav edited projects for T4241: ocserv openconnect looks broken in recent bulds of 1.3 Equuleus, added: VyOS 1.3 Equuleus ( 1.3.1); removed VyOS 1.3 Equuleus.
Feb 16 2022, 11:26 PM · VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav changed the status of T4197: Vyos arm64-latest build issue with telegraf pkg from Open to Needs testing.
Feb 16 2022, 11:25 PM · VyOS 1.4 Sagitta
c-po moved T4240: Cannot add wlan0 to bridge via configure from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Feb 16 2022, 9:19 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav added a comment to T4241: ocserv openconnect looks broken in recent bulds of 1.3 Equuleus.

Install official pkg solve the issue

wget http://ftp.de.debian.org/debian/pool/main/o/ocserv/ocserv_0.12.2-3_amd64.deb
dpkg -i *.deb
`
Feb 16 2022, 9:12 PM · VyOS 1.3 Equuleus ( 1.3.1)
c-po changed the status of T4240: Cannot add wlan0 to bridge via configure from Open to Needs testing.
Feb 16 2022, 8:53 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav added a comment to T4249: Add support for device mapping in containers.
Feb 16 2022, 8:44 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4241: ocserv openconnect looks broken in recent bulds of 1.3 Equuleus.

Can be related
Found out some strange things, client address was banned:

ocserv[2072]: main: added 1 points (total 1) for IP '192.168.122.1' to ban list
Feb 16 2022, 7:14 PM · VyOS 1.3 Equuleus ( 1.3.1)
zsdc created T4250: Organize logrotate settings to avoid duplicates.
Feb 16 2022, 6:09 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4241: ocserv openconnect looks broken in recent bulds of 1.3 Equuleus from Open to Confirmed.
Feb 16 2022, 5:48 PM · VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav added a comment to T4241: ocserv openconnect looks broken in recent bulds of 1.3 Equuleus.

I don't see any issues with LTS 1.3.0

Feb 16 2022, 5:48 PM · VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav added a comment to T4249: Add support for device mapping in containers.

Thanks
Is it required point of binding in a container?
For example:

podman run --rm -it --device=/dev/vdb:/dev/xvdc:rwm --net host ubuntu bash
Feb 16 2022, 4:17 PM · VyOS 1.4 Sagitta
Yuanandyuan added a comment to T4249: Add support for device mapping in containers.
In T4249#118633, @Viacheslav wrote:

You can get access to host netwoks with set container name foo allow-host-networks

Feb 16 2022, 3:56 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4249: Add support for device mapping in containers.

You can get access to host netwoks with set container name foo allow-host-networks

Feb 16 2022, 3:44 PM · VyOS 1.4 Sagitta
Yuanandyuan created T4249: Add support for device mapping in containers.
Feb 16 2022, 3:39 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T1972: Allow setting interface name for virtual_ipaddress in VRRP VRID.

PR for 1.3 https://github.com/vyos/vyos-1x/pull/1224

Feb 16 2022, 3:09 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav reopened T1972: Allow setting interface name for virtual_ipaddress in VRRP VRID as "In progress".
Feb 16 2022, 2:57 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav closed T4237: Conntrack-sync error - error adding listen-address command as Resolved.
Feb 16 2022, 1:58 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav added a comment to T973: Create Prometheus Exporter for VyOS .

@anthr76 we have ready telegraf exporter, maybe it will work for you?
https://docs.vyos.io/en/latest/configuration/service/monitoring.html

Feb 16 2022, 1:34 PM · Restricted Project, VyOS 1.5 Circinus
anthr76 added a comment to T973: Create Prometheus Exporter for VyOS .

Does anyone at least have an example of how to use the snmp exporter? For example a snmp.yml or generate one with the given mibs?

Feb 16 2022, 1:28 PM · Restricted Project, VyOS 1.5 Circinus
Unknown Object (User) closed T3408: vyos 1.4 not delivering ipv6 to devices via PPPOE as Invalid.

Tested on 1.4-rolling-202202150317 and 1.3.0, all works

Feb 16 2022, 11:18 AM · VyOS 1.4 Sagitta
Viacheslav changed the subtype of T4248: There isn't a way to remove the only rule from the (traffic-policy) class. from "Task" to "Bug".
Feb 16 2022, 7:08 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Unknown Object (User) triaged T4248: There isn't a way to remove the only rule from the (traffic-policy) class. as Low priority.
Feb 16 2022, 1:10 AM · VyOS 1.4 Sagitta (1.4.0-epa3)

Feb 15 2022

pedro added a comment to T941: BGP neighbours with IPv6 link-local addresses.

this is very similar to https://phabricator.vyos.net/T3657 , so it seems that this is going to be fixed in 1.4 ( proof https://forum.vyos.io/t/bgp-peering-with-ipv6-link-local-addresses/7309/14 ). Is this going to be backported to 1.3 ? Anyone is able to find the commit that introduced the feature on 1.4? Maybe it is something easy to patch

Feb 15 2022, 11:26 PM · VyOS 1.3 Equuleus (1.3.9), test
Viacheslav moved T1292: Issues while deleting all rules from a firewall from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Feb 15 2022, 10:12 PM · VyOS 1.4 Sagitta
sarthurdev updated subscribers of T4145: Conntrack table not showing after firewall rewriting.

I think @c-po has started migrating it in T3579 but op-mode not yet complete.

Feb 15 2022, 7:10 PM · VyOS 1.4 Sagitta
n.fort added a comment to T4145: Conntrack table not showing after firewall rewriting.

Comman "show conntrack ..." not available any more in latest?

Feb 15 2022, 7:04 PM · VyOS 1.4 Sagitta
Unknown Object (User) closed T3494: DHCPv6 leases traceback when PD using as Resolved.
Feb 15 2022, 6:58 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
n.fort added a comment to T3989: Firewall - Can't delete rule in firewall entry and leave just default-action when firewall entry is in used.

Duplicate T1292 was assigned to 1.4 version, and I close it because it was solved.
This bug remains open for 1.3 Equuleus

Feb 15 2022, 6:56 PM · Restricted Project, VyOS 1.3 Equuleus (1.3.8), Known issue
n.fort closed T1292: Issues while deleting all rules from a firewall, a subtask of T2199: Rewrite firewall in new XML/Python style, as Resolved.
Feb 15 2022, 6:51 PM · VyOS 1.4 Sagitta (1.4.0-epa2)
n.fort closed T1292: Issues while deleting all rules from a firewall as Resolved.
Feb 15 2022, 6:51 PM · VyOS 1.4 Sagitta
n.fort added a comment to T1292: Issues while deleting all rules from a firewall.

Tested on VyOS 1.4-rolling-202202150317 and working as expected.

Feb 15 2022, 6:50 PM · VyOS 1.4 Sagitta
n.fort closed T4160: Firewall - Error in rules that matches everything except something as Resolved.
vyos@vyos# run show config comm | grep fire
set firewall name FOO rule 10 action 'accept'
set firewall name FOO rule 10 protocol 'tcp'
set firewall name FOO rule 10 tcp flags not ack
set firewall name FOO rule 10 tcp flags syn
set firewall name FOO rule 40 action 'accept'
set firewall name FOO rule 40 protocol '!gre'
[edit]
vyos@vyos# sudo nft list chain ip filter NAME_FOO
table ip filter {
	chain NAME_FOO {
		tcp flags & (syn | ack) == syn counter packets 0 bytes 0 return comment "FOO-10"
		meta l4proto != gre counter packets 0 bytes 0 return comment "FOO-40"
		counter packets 0 bytes 0 return comment "FOO default-action accept"
	}
}
Feb 15 2022, 6:44 PM · VyOS 1.4 Sagitta
n.fort closed T4201: Firewall - ICMPv6 matches not working as expected on 1.3.0 as Resolved.

Solved. New commands:

Feb 15 2022, 6:22 PM · VyOS 1.3 Equuleus (1.3.0)
rgrant created T4247: Access Control for SSH (and other?) services.
Feb 15 2022, 5:00 PM · VyOS 1.5 Circinus
Unknown Object (User) closed T3006: Accel-PPP & vlan-mon config get invalid VLAN as Resolved.
Feb 15 2022, 3:35 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav moved T4237: Conntrack-sync error - error adding listen-address command from Need Triage to Finished on the VyOS 1.3 Equuleus ( 1.3.1) board.

PR for current https://github.com/vyos/vyos-1x/pull/1223

Feb 15 2022, 12:53 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus ( 1.3.1)
Unknown Object (User) added a comment to T3494: DHCPv6 leases traceback when PD using.

PR for equuleus https://github.com/vyos/vyos-1x/pull/1222

Feb 15 2022, 12:28 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav moved T3686: Bridging OpenVPN tap with no local-address breaks from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Feb 15 2022, 12:23 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav edited projects for T3686: Bridging OpenVPN tap with no local-address breaks, added: VyOS 1.3 Equuleus ( 1.3.1); removed VyOS 1.3 Equuleus (1.3.0).

PR for 1.3 https://github.com/vyos/vyos-1x/pull/1221

Feb 15 2022, 12:23 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
First
Prev
Next