- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Aug 29 2022
Aug 29 2022
Viacheslav changed the status of T4367: NAT - Config tmp file not available from Open to In progress.
@Viacheslav can we close this one?
or should it be included in 1.4 ?
@Viacheslav - how does the bug around which you were working manifest itself? I just pulled the 1.1.6 sources and built from that repo using the same command as the Jenkinsfile. Happy to test for whatever condition was being fixed in the local build
Viacheslav changed the status of T4526: keepalived-fifo.py unable to load config from Open to Needs testing.
In T4533#126598, @c-po wrote:In T4533#126578, @Viacheslav wrote:It is operator level, that shouldn’t have permission for configurations. Only basic diagnostics (op-mode)
Operator mode is no longer supported in VyOS 1.4
Even if so - we should still try to "support" it somehow for the upcoming future when there is a true secure op-mode again.
Could you please add a new Cmnd_Alias vor VRF to /etc/sudoers.d/vyos and allow it for the %operator group?
ip vrf exec requires the CAP_SYS_ADMIN capability which somehow is more or less equal to root.
Viacheslav added a comment to T4617: VRF specification is needed for telegraf prometheus-client listen-address <address> .
It seems working:
● telegraf.service - The plugin-driven server agent for reporting metrics into InfluxDB
Loaded: loaded (/lib/systemd/system/telegraf.service; disabled; vendor preset: enabled)
Drop-In: /etc/systemd/system/telegraf.service.d
└─10-override.conf
Active: active (running) since Mon 2022-08-29 12:51:47 EEST; 1min 7s ago
Docs: https://github.com/influxdata/telegraf
Main PID: 6740 (telegraf)
Tasks: 9 (limit: 9409)
Memory: 49.7M
CPU: 836ms
CGroup: /system.slice/telegraf.service
└─vrf
└─foo
└─6740 /usr/bin/telegraf --config /run/telegraf/telegraf.conf --config-directory /etc/telegraf/telegraf.d --pidfile /run/telegraf/telegraf.pidViacheslav moved T4654: RPKI cache incorrect description from Open to Finished on the VyOS 1.4 Sagitta board.
Viacheslav closed T4594: Rewrite op-mode IPsec to vyos.opmode format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, as Resolved.
Viacheslav closed T4623: Add show conntrack statistics, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, as Resolved.
Viacheslav edited projects for T3702: Policy: Allow routing by fwmark, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
@Viacheslav is this backported and present in 1.3.2?
syncer triaged T3937: Rewrite "show system memory" in Python to make it usable as a library function as Normal priority.
syncer edited projects for T3937: Rewrite "show system memory" in Python to make it usable as a library function, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
GitHub <noreply@github.com> committed rVYOSONEXedb2d72c3487: Merge pull request #1503 from sever-sever/T4654 (authored by c-po).
Viacheslav renamed T4654: RPKI cache incorrect description from RPKI cache incorrect desctiption to RPKI cache incorrect description.
syncer edited projects for T75: pmacct-based NetFlow implementation's performance is insufficient for modern networks, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T102: Add a command like "set service dns dynamic http-request url ...", added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T109: VyOS Can Lose Parts Of Its Config On Reboot - In Certain Situations, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T177: SSD tweaks, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T117: Cannot install from ISO via serial console on ttyS1, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T305: loadbalancing does not work with one pppoe connection and another connection of either dhcp or static , added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T190: two factor authentication for OpenVPN remote VPN tunnels, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T366: SNMP Query for BGP Tunnels Returns IPv4 Tunnels Only, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T425: AWS CloudWatch monitoring scripts, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T440: VTI/IPSec with dynamic peer, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T362: Proper target dependencies and error checking in the vyos-build makefile, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T445: iptables error with policy routing, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T577: Unconfigured Ethernet interface discovery partial failure on boot, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T469: Problem after commit with errors, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T659: Static DHCP mappings aren't available on DNS, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T681: Shaper QoS policy does not recognize 'lowdelay' DSCP value, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T693: net-snmp-cert missing in rolling release, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T660: 802.1p CoS priority support, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T695: Address-group commits with duplicate, but fails when adding rule later., added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T732: Netflow: generate ASNs from the uacctd BGP thread., added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T725: Cake and FQ-PIE, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T840: VRRP V3 backup router sending ND RA, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T738: Add local-port and resolver port options for powerdns in CLI configuration tree, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T922: OSPF - Process Crash after peer reboot, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T927: IPv6 GRE packets not being forwarded, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T925: Debug image, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T941: BGP neighbours with IPv6 link-local addresses, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T970: Support matching domain name in firewall rules, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T971: authentication public-keys options quoting issue, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T948: integrate aws cloud watch scripts into AMI, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T973: Create Prometheus Exporter for VyOS , added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1005: Support for multiple SSID in station mode , WPA-EAP, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1002: install image - fast install, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1012: vyos-build configure script should check /etc/issue to avoid confusion, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1014: Mellanox cards, problem with interrupts, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1024: Policy Based Routing by DSCP, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1022: Set Channel number in mode a , added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1028: Suspending and resuming VyOS in VMware will result in loss of static ip addresses, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1044: Dead loop on virtual device, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1035: SNMP BGP 32 bit AS number fail, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1055: Duplicate Address Detection happens on interfaces other than eth0, too, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1078: Problems in RED/WRED implementation (QoS), added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1085: Certificates containing CRLF aren't accepted, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1110: DHCP lease wont changed it's IP after creating static mac-ip mapping, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1101: Spoke site dynamic IP over NAT connect to Hub site, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1113: Unwanted/broken "disable" option in firewall state, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1125: GPG signature warning, default 'no' still goes ahead and starts installing, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1118: Obsolete "utc" option in time selector in firewall, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1124: Support BGP Prefix Origin Validation State Extended Community (RFC 8097), added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1155: VyOS don't install on USB Stick , added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1161: Does Vyos take advantage of linux's improved security features?, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1185: Firewall rulesets are ignored in RFC-compliant VRRP setups, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1166: Flow-accounting not working with PPPoE interfaces, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1190: Separate out build-host setup shell commands from Dockerfile to shell script, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1199: SNMP BGP4-MIB: bgp4PathAttrCalcLocalPref and bgp4PathAttrLocalPref filled incorrectly, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1198: Extra hyphen in suggested image name on upgrade, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1200: SNMP GET broken at least for BGP4-MIB, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1230: Improving Boot Time for Large Firewall Configurations, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1216: EAP-TTLS-PAP support for RADIUS, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1215: Should the vyatta-cfg-firewall control file list vyatta-wirelessmodem in Replaces?, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1237: Static Route Path Monitoring, failover, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1253: Feature Request: FRR Flowspec, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1262: dhcp requested WAN ip address doesn't get search parameter in /etc/resolv.conf in 1.2.0-rolling+201902210337, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
Aug 29 2022, 7:13 AM · VyOS 1.3 Equuleus (1.3.0), Restricted Project, VyOS 1.2 Crux (VyOS 1.2.9), test
syncer edited projects for T1244: Add support for StartupResync in conntrack-sync, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1276: dhcp relay + VLAN fails, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1281: Ability to start DHCP cluster in degraded state, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1288: FRR: rewrite staticd backend (/opt/vyatta/share/vyatta-cfg/templates/protocols/static/*), added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1289: route-map set route-type blackhole, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).
syncer edited projects for T1297: Add GARP settings to VRRP/keepalived, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).