Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Jun 9 2022

c-po renamed T3318: Update Linux Kernel to v5.4.208 / 5.10.142 from Update Linux Kernel to v5.4.191 / 5.10.113 to Update Linux Kernel to v5.4.197 / 5.10.121.
Jun 9 2022, 7:40 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
Viacheslav closed T2580: Support for ip pools for ippoe, a subtask of T4085: Rewrite L2TP/PPTP/SSTP/PPPoE services to get_config_dict, as Resolved.
Jun 9 2022, 5:05 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav closed T2580: Support for ip pools for ippoe as Resolved.
Jun 9 2022, 5:05 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
GitHub <noreply@github.com> committed rVYOSONEXa3559f7e429c: Merge pull request #1271 from sever-sever/T2580-equ (authored by c-po).
Jun 9 2022, 5:04 PM
Viacheslav committed rVYOSONEXe37cd2035594: ipoe: T2580: Add pools and gateway options.
Jun 9 2022, 5:04 PM
c-po committed rVYOSONEX82c187df1a53: smoketest: sstp: T4444: verify port can be changed.
Jun 9 2022, 5:02 PM
goodNETnick <pknet@ya.ru> committed rVYOSONEX1aeaedb06928: sstp: T4444. Port number changing support.
Jun 9 2022, 5:02 PM
c-po committed rVYOSONEXb85d3be8d70c: sstp: T4444: merge of defaultValue already done in get_accel_dict().
Jun 9 2022, 5:02 PM
c-po committed rVYOSONEX441baebb90b7: xml: sstp: T4444: re-use port-number.xml.i building block.
Jun 9 2022, 5:02 PM
c-po committed rVYOSONEX23f610f1a1fe: Merge branch 'sstp_port' of https://github.com/goodNETnick/vyos-1x into current.
Jun 9 2022, 5:02 PM
c-po closed T4444: sstp: Feature request. Port number changing support as Resolved.
Jun 9 2022, 5:02 PM · VyOS 1.4 Sagitta
Viacheslav lowered the priority of T970: Support matching domain name in firewall rules from High to Normal.
Jun 9 2022, 5:01 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
c-po claimed T4444: sstp: Feature request. Port number changing support.
Jun 9 2022, 4:59 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T970: Support matching domain name in firewall rules from In progress to Needs testing.
Jun 9 2022, 4:58 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
n.fort claimed T4461: Improve negated firewall groups in cli.
Jun 9 2022, 4:53 PM · VyOS Rolling
daniil added a comment to T4303: BGP neighbor interface v6only fails to commit.

This configuration commits without errors. Can the report be closed?

Jun 9 2022, 4:39 PM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXe990b2f4c045: firewall: T970: Add firewall group domain-group.
Jun 9 2022, 4:32 PM
Viacheslav committed rVYOSONEX654c403cebe3: Merge pull request #2 from sarthurdev/T970.
Jun 9 2022, 4:32 PM
sarthurdev committed rVYOSONEXd1bdf2b9d80d: firewall: T970: Maintain a domain state to fallback if resolution fails.
Jun 9 2022, 4:32 PM
Viacheslav committed rVYOSONEX3c5e1f748250: firewall: T970: domain-group should not starts with numeric.
Jun 9 2022, 4:32 PM
GitHub <noreply@github.com> committed rVYOSONEX5294710b9280: Merge pull request #1327 from sever-sever/T970 (authored by c-po).
Jun 9 2022, 4:32 PM
a.apostoliuk created T4463: Missing check in edit command.
Jun 9 2022, 2:49 PM · VyOS Rolling
v.huti created T4462: FRR operational-data pagination.
Jun 9 2022, 2:00 PM · VyOS Rolling
n.fort created T4461: Improve negated firewall groups in cli.
Jun 9 2022, 11:58 AM · VyOS Rolling
e.khudiyev edited a custom field on T4460: nhrp not starting due to missing cisco-authentication value.
Jun 9 2022, 7:46 AM · Bugs, VyOS 1.4 Sagitta (1.4.0-GA), Restricted Project
e.khudiyev added a comment to T4460: nhrp not starting due to missing cisco-authentication value.
In T4460#124345, @Viacheslav wrote:

From provided log syntax error in config string 6
‘holding-time 300’

But yes “ cisco-authentication” shouldn’t be without values

Jun 9 2022, 6:31 AM · Bugs, VyOS 1.4 Sagitta (1.4.0-GA), Restricted Project
Viacheslav changed the status of T4028: FRR 8.1 routes not being applied to routing table after reboot if an interface has 2 ip addresses from Open to Needs testing.
Jun 9 2022, 3:41 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4460: nhrp not starting due to missing cisco-authentication value.

From provided log syntax error in config string 6
‘holding-time 300’

Jun 9 2022, 2:47 AM · Bugs, VyOS 1.4 Sagitta (1.4.0-GA), Restricted Project

Jun 8 2022

c-po committed rVYOSONEXab4735480d62: arp: T4397: bugfix on address iteration - ARP is IPv4 only.
Jun 8 2022, 6:04 PM
Viacheslav changed the status of T3083: Add feature event-handler from Open to Needs testing.
Jun 8 2022, 10:54 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEX0bbe8d655df4: event-handler: T3083: Add simple event-handler.
Jun 8 2022, 10:40 AM
zsdc committed rVYOSONEX74454c341a57: event-handler: T3083: Optimized event-handler.
Jun 8 2022, 10:40 AM
Viacheslav committed rVYOSONEXcfcd75b99372: event-handler: T3083: Optimized event-handler.
Jun 8 2022, 10:40 AM
Viacheslav committed rVYOSONEXd542bf338aa1: event-handler: T3083: Move system to service event-handler.
Jun 8 2022, 10:40 AM
Viacheslav committed rVYOSONEX03d236f3905a: event-handler: T3083: Add arguments and environment options XML.
Jun 8 2022, 10:40 AM
Viacheslav committed rVYOSONEX06c0d2f2f9f4: event-handler: T3083: Extended event-handler features (authored by zsdc).
Jun 8 2022, 10:39 AM
Viacheslav committed rVYOSONEX5f9d0ad5b258: event-handler: Change tagNode event-handler to node.
Jun 8 2022, 10:39 AM
GitHub <noreply@github.com> committed rVYOSONEXcfd958c08d2b: Merge pull request #1340 from sever-sever/T3083 (authored by c-po).
Jun 8 2022, 10:39 AM
c-po closed T4350: DMVPN opennhrp spokes dont work behind NAT as Resolved.
Jun 8 2022, 6:50 AM · VyOS 1.3 Equuleus (1.3.2)
c-po closed T4447: DHCPv6 prefix delegation `sla-id` limited to 128 as Resolved.
Jun 8 2022, 6:50 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.2)
c-po moved T4350: DMVPN opennhrp spokes dont work behind NAT from In Progress to Finished on the VyOS 1.3 Equuleus (1.3.2) board.
Jun 8 2022, 6:50 AM · VyOS 1.3 Equuleus (1.3.2)
c-po moved T4447: DHCPv6 prefix delegation `sla-id` limited to 128 from In Progress to Finished on the VyOS 1.3 Equuleus (1.3.2) board.
Jun 8 2022, 6:50 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.2)
c-po committed rVYOSONEX9c37885c89a8: dhcp6: pd: T4447: bugfix sla-id limits (must be greater then 128.
Jun 8 2022, 6:36 AM
GitHub <noreply@github.com> committed rVYOSONEX3586dad839e3: Merge pull request #1336 from c-po/t4447-dhcpv6-pd-equuleus (authored by dmbaturin).
Jun 8 2022, 6:36 AM
c-po moved T4350: DMVPN opennhrp spokes dont work behind NAT from Need Triage to In Progress on the VyOS 1.3 Equuleus (1.3.2) board.
Jun 8 2022, 5:55 AM · VyOS 1.3 Equuleus (1.3.2)

Jun 7 2022

e.khudiyev created T4460: nhrp not starting due to missing cisco-authentication value.
Jun 7 2022, 12:32 PM · Bugs, VyOS 1.4 Sagitta (1.4.0-GA), Restricted Project

Jun 6 2022

dmbaturin committed rVYOSONEX67b342a2c590: T4446: use a unified neighbor display script.
Jun 6 2022, 10:51 AM
dmbaturin committed rVYOSONEXe75ce8b7fc02: T4446: use format strings instead of old-fasionhed format method.
Jun 6 2022, 10:51 AM
GitHub <noreply@github.com> committed rVYOSONEXc40b9064d97d: Merge pull request #1347 from dmbaturin/T4446 (authored by Viacheslav).
Jun 6 2022, 10:51 AM
Viacheslav added a comment to T4457: L2TP/IPSec Remote Access VPN does not work as expected in 1.3.1-S1.

Don't have any issues with Ubuntu

set interfaces dummy dum0 address '192.0.2.1/32'
set interfaces dummy dum4 address '203.0.113.1/24'
set interfaces ethernet eth0 address '192.168.122.11/24'
set interfaces ethernet eth0 description 'WAN'
set vpn ipsec ipsec-interfaces interface 'eth0'
set vpn l2tp remote-access authentication local-users username test password 'test'
set vpn l2tp remote-access authentication mode 'local'
set vpn l2tp remote-access client-ip-pool start '192.168.255.2'
set vpn l2tp remote-access client-ip-pool stop '192.168.255.254'
set vpn l2tp remote-access ipsec-settings authentication mode 'pre-shared-secret'
set vpn l2tp remote-access ipsec-settings authentication pre-shared-secret 'secret'
set vpn l2tp remote-access outside-address '192.0.2.1'
Jun 6 2022, 10:03 AM · VyOS 1.3 Equuleus ( 1.3.1)

Jun 5 2022

n.fort added a comment to T4387: Create additional smoketests for multiwan PBR & load-balanced configurations .

Added more options. PR https://github.com/vyos/vyos-1x/pull/1350

Jun 5 2022, 8:12 PM · VyOS 1.4 Sagitta
n.fort committed rVYOSONEX13f8cf1bc70c: T4387: add more firewall checks for WLB smoketests..
Jun 5 2022, 7:04 PM
GitHub <noreply@github.com> committed rVYOSONEXa28833922ff0: Merge pull request #1350 from nicolas-fort/T4387-WLB-smoketest (authored by c-po).
Jun 5 2022, 7:04 PM
Unknown Object (User) added a comment to T4457: L2TP/IPSec Remote Access VPN does not work as expected in 1.3.1-S1.

@NikolayP , Looks like MTU and MPPE issue. Stoping daemon does not related to this I think.

Jun 5 2022, 6:56 PM · VyOS 1.3 Equuleus ( 1.3.1)
c-po added a comment to T2472: Ability to configure EIGRP protocol.

I already merged your XML definition ;)

Jun 5 2022, 2:02 PM · VyOS Rolling
Viacheslav renamed T1237: Static Route Path Monitoring, failover from Static Route Path Monitoring to Static Route Path Monitoring, failover.
Jun 5 2022, 12:04 PM · VyOS 1.4 Sagitta
Viacheslav added a project to T1237: Static Route Path Monitoring, failover: VyOS 1.4 Sagitta.
Jun 5 2022, 12:04 PM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXbdbe235f1d77: smoketest: T4387: Add test for load-balancing wan.
Jun 5 2022, 10:48 AM
GitHub <noreply@github.com> committed rVYOSONEX256ad3fc329a: Merge pull request #1346 from sever-sever/T4387-curr (authored by Viacheslav).
Jun 5 2022, 10:48 AM
Viacheslav added a comment to T2472: Ability to configure EIGRP protocol.

I once made XML, it might come in handy

Jun 5 2022, 10:36 AM · VyOS Rolling
kajiuray created T4459: API service with VRF doesn't work in 1.3.1.
Jun 5 2022, 9:39 AM · VyOS 1.3 Equuleus (1.3.4)

Jun 4 2022

n.fort committed rVYOSONEX8ab854a6f6d4: Policy: T3976-T4449-nexthop: add - match ipv6 nexthop type - as available for….
Jun 4 2022, 6:59 PM
GitHub <noreply@github.com> committed rVYOSONEXb6da1332a14c: Merge pull request #1348 from nicolas-fort/T3976-T4449-nexthop (authored by c-po).
Jun 4 2022, 6:59 PM
n.fort added a comment to T3976: Missing prefix-list and access-list option from ipv6 route-map.

PR: https://github.com/vyos/vyos-1x/pull/1348

Jun 4 2022, 4:19 PM
n.fort claimed T4458: Firewall - add support for matching ip ttl in firewall rules.
Jun 4 2022, 3:03 PM · VyOS 1.4 Sagitta
n.fort changed Version from - to 1.4 on T4458: Firewall - add support for matching ip ttl in firewall rules.
Jun 4 2022, 3:03 PM · VyOS 1.4 Sagitta
n.fort created T4458: Firewall - add support for matching ip ttl in firewall rules.
Jun 4 2022, 3:02 PM · VyOS 1.4 Sagitta
showipintbri renamed T4445: [EDIT] Service Restored: Outage: Interface stops forwarding, IPv4 martian seen in the logs from Outage: Interface stops forwarding, IPv4 martian seen in the logs to [EDIT] Service Restored: Outage: Interface stops forwarding, IPv4 martian seen in the logs.
Jun 4 2022, 3:39 AM
showipintbri added a comment to T4445: [EDIT] Service Restored: Outage: Interface stops forwarding, IPv4 martian seen in the logs.

Ultimately I moved my physical connection from port eth0 to eth4, and configured eth4 with the same config as was on eth0. Once I did that everything was stable and has been stable for days (nearly a week now). I'm not sure what could be causing an interface to work for an amount of time, then as if on-cue stop forwarding packets.

Jun 4 2022, 3:38 AM

Jun 3 2022

Viacheslav added a project to T4445: [EDIT] Service Restored: Outage: Interface stops forwarding, IPv4 martian seen in the logs: VyOS 1.4 Sagitta.
Jun 3 2022, 8:59 PM
n.fort changed the status of T4450: Route-map - Extend options for ip|ipv6 address match from Open to Needs testing.
Jun 3 2022, 3:49 PM · VyOS 1.4 Sagitta
Unknown Object (User) added a comment to T4457: L2TP/IPSec Remote Access VPN does not work as expected in 1.3.1-S1.

Not sure if this is relevant to the task.
But once when shutting down a VM with VyOS 1.3.1-S1, it took a long time to shut down:

image.png (117×1 px, 10 KB)

Jun 3 2022, 2:42 PM · VyOS 1.3 Equuleus ( 1.3.1)
Unknown Object (User) triaged T4457: L2TP/IPSec Remote Access VPN does not work as expected in 1.3.1-S1 as High priority.
Jun 3 2022, 2:31 PM · VyOS 1.3 Equuleus ( 1.3.1)
jack9603301 added a comment to T3420: Support UPNP protocol.

Should I make improvements to the remaining revisions in the PR?

Jun 3 2022, 1:06 PM
jack9603301 updated subscribers of T3420: Support UPNP protocol.

Sorry I just saw it now, I'll test it. But because of limited conditions, I may test in the future, please forgive me

Jun 3 2022, 12:21 PM
jack9603301 added a comment to T3435: NAT rules show corruption.
In T3435#115394, @n.fort wrote:

Error still present on VyOS 1.4-rolling-202201020317

vyos@vyos:~$ show nat source rules 
Traceback (most recent call last):
  File "/usr/libexec/vyos/op_mode/show_nat_rules.py", line 114, in <module>
    print(format_nat_rule.format(rule, srcdests[0], tran_addr, interface))
IndexError: list index out of range
Rule       Source                                             Translation                                        Outbound Interface
----       ------                                             -----------                                        ------------------
vyos@vyos:~$ show ver

Version:          VyOS 1.4-rolling-202201020317
Release train:    sagitta

Nat config in this example:

vyos@vyos:~$ show config comm | grep nat
set nat source rule 10 description 'Masquerade to NAT'
set nat source rule 10 outbound-interface 'eth0'
set nat source rule 10 translation address 'masquerade'
Jun 3 2022, 12:19 PM · VyOS 1.4 Sagitta

Jun 2 2022

zsdc added a comment to T4288: IPsec tunnel will break when ESP timeout.

@m.korobeinikov I believe that I already posted this some time ago, but just in case...
Not all combinations of DPD and close-action are safe. Actually, most of them sooner or later will lead to issues with IPSec. So, I created the next scheme. It is from 2020, so I will not say that nothing was changed from that time, however, it shows well how careful you should be while configuring IPSec. On the scheme, you can see the only safe configuration of the close-action option, depending on how the peer is configured, but the same logic can be applied to DPD.

IPSec site-to-site IKE configuration.png (780×1 px, 27 KB)

Jun 2 2022, 6:42 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4222: Support for TWAMP as round-trip metric.

PR https://github.com/vyos/vyos-build/pull/240
disable owamp|twamp.service by default

Jun 2 2022, 5:01 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
marekm created T4456: NTP client in VRF tries to bind to interfaces outside VRF, logs many messages.
Jun 2 2022, 3:30 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
Viacheslav created T4455: smp-affinity required by some platforms but doesn't exists in the CLI.
Jun 2 2022, 3:21 PM · VyOS Rolling
erkin triaged T4454: `install-image` should check free storage as Low priority.
Jun 2 2022, 2:14 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4222: Support for TWAMP as round-trip metric from Open to Needs testing.

@SrividyaA will be present in the next rolling release

Jun 2 2022, 10:39 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXb8671b56c153: sla: T4222: Add OWAMP and TWAMP for service sla.
Jun 2 2022, 10:21 AM
GitHub <noreply@github.com> committed rVYOSONEXb9a26085b493: Merge pull request #1345 from sever-sever/T4222 (authored by c-po).
Jun 2 2022, 10:21 AM
Viacheslav added a comment to T4387: Create additional smoketests for multiwan PBR & load-balanced configurations .

PR for the current https://github.com/vyos/vyos-1x/pull/1346

Jun 2 2022, 10:09 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T973: Create Prometheus Exporter for VyOS .
In T973#124168, @superq wrote:

I wouldn't call telegraf a very good option. It does a very bad job of producing Prometheus metrics.

Jun 2 2022, 10:04 AM · VyOS Rolling, VyOS 1.5 Circinus
Viacheslav added a comment to T141: TACACS+ Support.

For Debian11 requires pkg "libpam-tacplus" that is not available https://github.com/kravietz/pam_tacplus/issues/180

Jun 2 2022, 9:58 AM · VyOS 1.4 Sagitta
superq added a comment to T973: Create Prometheus Exporter for VyOS .

I wouldn't call telegraf a very good option. It does a very bad job of producing Prometheus metrics.

Jun 2 2022, 9:07 AM · VyOS Rolling, VyOS 1.5 Circinus
Viacheslav added a comment to T973: Create Prometheus Exporter for VyOS .

Prometheus-client already in 1.4
https://docs.vyos.io/en/latest/configuration/service/monitoring.html#prometheus-client

Jun 2 2022, 8:59 AM · VyOS Rolling, VyOS 1.5 Circinus

Jun 1 2022

Viacheslav added a comment to T4222: Support for TWAMP as round-trip metric.

PR https://github.com/vyos/vyos-1x/pull/1345

Jun 1 2022, 4:57 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
marekm updated the task description for T4453: dhclient fails to renew DHCP lease with VRF.
Jun 1 2022, 3:39 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
marekm created T4453: dhclient fails to renew DHCP lease with VRF.
Jun 1 2022, 8:38 AM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.5 Circinus, VyOS 1.4 Sagitta

May 31 2022

egoistdream added a comment to T3976: Missing prefix-list and access-list option from ipv6 route-map.

Yes on this version it is available the requested options for ipv6:

May 31 2022, 11:27 PM
fernando added a comment to T3976: Missing prefix-list and access-list option from ipv6 route-map.

yes, it was added on this version vyos-1.4-rolling-202205311706, please check again

May 31 2022, 11:13 PM
sarthurdev closed T3659: Configuration won't accept IPv6 addresses for site-to-site VPN tunnel prefixes/traffic selectors as Resolved.
May 31 2022, 6:13 PM · VyOS 1.4 Sagitta
sarthurdev closed T4148: Firewall - Error messages not that clear as it were in old firewall as Resolved.
May 31 2022, 6:11 PM · VyOS 1.4 Sagitta
sarthurdev closed T4199: Commit failed when setting icmpv6 type any as Resolved.
May 31 2022, 6:09 PM · VyOS 1.4 Sagitta
sarthurdev closed T4212: PermissionError when generating/installing server Certificate (generate pki certificate sign ...) as Resolved.
May 31 2022, 6:05 PM · VyOS 1.4 Sagitta
sarthurdev committed rVYOSONEXdf039e9c797a: pki: T3642: Update conf scripts using changed PKI objects.
May 31 2022, 4:52 PM
GitHub <noreply@github.com> committed rVYOSONEXc4d824d57d69: Merge pull request #1344 from sarthurdev/pki_update (authored by c-po).
May 31 2022, 4:52 PM
First
Prev
Next