PR for the current https://github.com/vyos/vyos-1x/pull/1346
- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed Search
Jun 2 2022
Jun 2 2022
Viacheslav added a comment to T4387: Create additional smoketests for multiwan PBR & load-balanced configurations .
In T973#124168, @superq wrote:I wouldn't call telegraf a very good option. It does a very bad job of producing Prometheus metrics.
For Debian11 requires pkg "libpam-tacplus" that is not available https://github.com/kravietz/pam_tacplus/issues/180
Prometheus-client already in 1.4
https://docs.vyos.io/en/latest/configuration/service/monitoring.html#prometheus-client
Jun 1 2022
Jun 1 2022
May 30 2022
May 30 2022
May 29 2022
May 29 2022
Reset added in T4442
Viacheslav moved T2580: Support for ip pools for ippoe from Backport Candidates to Finished on the VyOS 1.4 Sagitta board.
Viacheslav edited projects for T2580: Support for ip pools for ippoe, added: VyOS 1.3 Equuleus (1.3.2); removed VyOS 1.3 Equuleus (1.3.0).
May 28 2022
May 28 2022
@fernando Could you try to set sysctl mark?
sysctl -w net.ipv4.conf.eth0.src_valid_mark=1 sysctl -w net.ipv4.conf.eth1.src_valid_mark=1
PR https://github.com/vyos/vyos-1x/pull/1340
set service event-handler event first filter pattern '.*ssh2.*' set service event-handler event first script arguments '192.0.2.5' set service event-handler event first script environment interface value 'eth0' set service event-handler event first script path '/config/scripts/hello.sh'
Viacheslav added a comment to T2218: Add support for the peeringdb module in salt (upgrade salt-minion to 2019.2).
The current salt-minion version 3003.4+ds-1
@maznu Do we need anything else for it?
May 26 2022
May 26 2022
Viacheslav moved T4442: HTTP API add action "reset" from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.2) board.
Some debug info:
PR for 1.3 https://github.com/vyos/vyos-1x/pull/1335
May 25 2022
May 25 2022
Viacheslav moved T2763: New SNMP resource request - SNMP over TCP from Open to Finished on the VyOS 1.4 Sagitta board.
Viacheslav closed T2194: "show firewall" garbled output, a subtask of T2199: Rewrite firewall in new XML/Python style, as Resolved.
May 20 2022
May 20 2022
Viacheslav renamed T4435: Policy route and firewall - error when using undefined group from Policy route without definded port-group erros to Policy route without defined port-group error.
Viacheslav reopened T3522: policy based routing not working, a subtask of T3505: Commits do not respect changes in FRR that are not stored in a config, as Open.
Viacheslav closed T3522: policy based routing not working, a subtask of T3505: Commits do not respect changes in FRR that are not stored in a config, as Resolved.
Viacheslav added a comment to T4431: route-map with match ip + ipv6 in same rule results in no advertisement of either.
FRR match always mean logical AND
In T4350#123620, @c-po wrote:Is the fix for DMVPN hub or spoke?
May 19 2022
May 19 2022
Viacheslav added a comment to T3933: The firewall does not filter incoming traffic on the interface with vrf..
There is an issue with vrf device for LOCAL direction
Imagine if you have 50 interfaces in one VRF and you want to drop all traffic from one interface for example - eth2 and don't touch other interfaces
You set firewall on eth2 Local - drop all traffic for device vrf and it will be affected to another 49 interfaces as iifname VRF_DEVICE the same
May 19 2022, 9:49 PM · Bugs, VyOS 1.3 Equuleus (1.3.9), VyOS 1.4 Sagitta (1.4.0-GA), Restricted Project
Viacheslav added a comment to T3933: The firewall does not filter incoming traffic on the interface with vrf..
PR https://github.com/vyos/vyos-1x/pull/1330
set firewall name FOO default-action 'accept' set firewall name FOO description 'desc' set firewall name FOO rule 10 action 'drop' set firewall name FOO rule 10 source address '8.8.8.8' set interfaces ethernet eth0 firewall local name 'FOO' set interfaces ethernet eth0 vrf 'ONE' set vrf name ONE table '150'
Check:
table ip filter {
chain VYOS_FW_LOCAL {
type filter hook input priority filter; policy accept;
iifname "ONE" counter packets 63 bytes 6024 jump NAME_FOO
jump VYOS_POST_FW
}
...
chain NAME_FOO {
ip saddr 8.8.8.8 counter packets 79 bytes 6636 drop comment "FOO-10"
counter packets 3 bytes 984 return comment "FOO default-action accept"
}
}May 19 2022, 6:33 PM · Bugs, VyOS 1.3 Equuleus (1.3.9), VyOS 1.4 Sagitta (1.4.0-GA), Restricted Project
Viacheslav changed the status of T2194: "show firewall" garbled output, a subtask of T2199: Rewrite firewall in new XML/Python style, from Open to Needs testing.
@jjakob could you re-check it with new fix?
May 18 2022
May 18 2022
Viacheslav changed the status of T4430: Show firewall output with visual shift default rule from Open to In progress.
May 17 2022
May 17 2022
Viacheslav updated the task description for T4429: Ability to detect external IP address from op-mode.
Viacheslav changed the status of T4429: Ability to detect external IP address from op-mode from Open to In progress.
May 16 2022
May 16 2022
Viacheslav changed the status of T4373: PPPoE-server add multiplier option for shaper from In progress to Needs testing.
Need testing:
set service pppoe-server authentication mode 'radius' set service pppoe-server authentication radius rate-limit attribute 'Mikrotik-Rate-Limit' set service pppoe-server authentication radius rate-limit enable set service pppoe-server authentication radius rate-limit multiplier '0.001' set service pppoe-server authentication radius rate-limit vendor 'Mikrotik' set service pppoe-server authentication radius server 192.0.2.1 key 'foo' set service pppoe-server client-ip-pool start '192.0.2.5' set service pppoe-server client-ip-pool stop '192.0.2.254' set service pppoe-server gateway-address '192.0.2.1' set service pppoe-server interface eth3
Or any live example
May 15 2022
May 15 2022
Viacheslav committed rVYOSONEX415a470f9dba: ldp: T4082: Add restart ldp command for op-mode (authored by devon).
May 13 2022
May 13 2022
Viacheslav added a project to T4377: generate tech-support archive includes previous archives: VyOS 1.4 Sagitta.
Viacheslav changed the status of T4377: generate tech-support archive includes previous archives from Open to Needs testing.
May 12 2022
May 12 2022
Viacheslav changed the status of T4424: policy local-route6 shows ipv4 format from Open to In progress.
PR for 1.3 https://github.com/vyos/vyos-1x/pull/1324
PR revert previous commit https://github.com/vyos/vyos-1x/pull/1323
May 11 2022
May 11 2022
Viacheslav changed the status of T4405: DHCP client sometimes ignores `no-default-route` option of an interface from Unknown Status to Resolved.
Viacheslav committed rVYOSONEX636e9dc5b2b8: T4405: Fix administrative distance of DHCP routes (authored by dtoux).
May 10 2022
May 10 2022
@dmbaturin Do we really need this?
Maybe it will fix it https://github.com/sematext/oxdpus/blob/master/pkg/xdp/prog/xdp.c
Viacheslav added a comment to T4422: WAN load-balance status failed on all interfaces if one of them failed.
I could be wrong
1.3.0-rc6 old release
Could you check it on more actual version?
Viacheslav added a comment to T4405: DHCP client sometimes ignores `no-default-route` option of an interface.
PR for 1.4 https://github.com/vyos/vyos-1x/pull/1321
Viacheslav added a comment to T4422: WAN load-balance status failed on all interfaces if one of them failed.
@zedalert Tested addresses should be different, as I remember it send pings with "interface" option
So targets should be different
Viacheslav closed T1972: Allow setting interface name for virtual_ipaddress in VRRP VRID as Resolved.
Viacheslav moved T4405: DHCP client sometimes ignores `no-default-route` option of an interface from Open to Backport Candidates on the VyOS 1.4 Sagitta board.
Viacheslav edited projects for T4405: DHCP client sometimes ignores `no-default-route` option of an interface, added: VyOS 1.3 Equuleus (1.3.2); removed VyOS 1.3 Equuleus ( 1.3.1).
Viacheslav closed T4405: DHCP client sometimes ignores `no-default-route` option of an interface as Unknown Status.
May 8 2022
May 8 2022
Viacheslav added a comment to T4415: Include license/copyright files in the image but remove user documentation from /usr/share/doc to reduce its size.
Duplicate T4359
Viacheslav changed the status of T4416: Convert 'traceroute' operation to the new syntax and expand available options using python from Open to Needs testing.
May 6 2022
May 6 2022
Viacheslav changed the status of T4410: Telegraf - Output to Splunk from Needs testing to In progress.
Viacheslav changed the status of T4418: Telegraf - output Plugin azure-data-explorer from Open to In progress.
Try to delete sync-group, as you use only one group
May 5 2022
May 5 2022
Viacheslav edited projects for T4315: Telegraf - Output to prometheus, added: VyOS 1.3 Equuleus (1.3.2); removed VyOS 1.3 Equuleus ( 1.3.1).
PR for 1.3 https://github.com/vyos/vyos-1x/pull/1315
Viacheslav moved T4315: Telegraf - Output to prometheus from Open to Finished on the VyOS 1.4 Sagitta board.
In 1.4 it working
set policy route-map FOO rule 10 action 'permit' set policy route-map FOO rule 10 set as-path-prepend 'last-as 2'