Feed All Stories

All Stories
Use Results
Edit Query
Hide Query

	Include stories about projects I am a member of.

Sep 29 2022

narey83 added a comment to T3626: Configuring and disabling DHCP Server.

Yeah, that new nightly release has fixed the issue, thanks. Strangely now getting some weird message in my show commands (WARNING: terminal is not fully functional). This message wasn't there on the previous nightly.

Sep 29 2022, 12:46 PM · VyOS 1.3 Equuleus (1.3.0-epa3), VyOS 1.2 Crux (VyOS 1.2.9), VyOS 1.4 Sagitta

pasik added a comment to T4466: intel i225-v nic does not detect link after boot.

So hmm, is it still the same issue in stock vyos 1.3.2 with i225 nics?

Sep 29 2022, 11:40 AM · VyOS 1.3 Equuleus

sarthurdev committed rVYOSONEX10a76e846be2: firewall: T2199: Fix op-mode script for interface migration and vyos_filter….

Sep 29 2022, 11:22 AM

GitHub <noreply@github.com> committed rVYOSONEXdaceea11d966: Merge pull request #1566 from sarthurdev/firewall_op (authored by c-po).

Sep 29 2022, 11:22 AM

Viacheslav closed T4697: policy route: Generating ConfigError failes when tcp flag is missing on set tcp-mss rule commit as Resolved.

Sep 29 2022, 10:40 AM · VyOS 1.4 Sagitta

Viacheslav added a comment to T4708: 'show nat destination rules' throwing an error.

@narey83 Could you re-check it with the latest rolling (start since vyos-1.4-rolling-202209290218-amd64.iso)?

Sep 29 2022, 10:21 AM · VyOS 1.4 Sagitta

Viacheslav added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.

@icyfire0573 Could you re-check it?
Should be fixed in vyos-1.4-rolling-202209290218-amd64.iso

Sep 29 2022, 10:17 AM · VyOS 1.4 Sagitta

Viacheslav updated subscribers of T2196: Dynamic ipv4 interface list hairpin.

Sep 29 2022, 10:02 AM · VyOS Rolling

Viacheslav added a comment to T4710: show openvpn server occasionally returns IndexError: list index out of range.

I can't reproduce it, VyOS 1.4-rolling-202209290218
Config:

vyos@r14:~$ show conf com | match openv
set interfaces openvpn vtun10 hash 'sha1'
set interfaces openvpn vtun10 keep-alive failure-count '60'
set interfaces openvpn vtun10 keep-alive interval '10'
set interfaces openvpn vtun10 local-host '203.0.113.1'
set interfaces openvpn vtun10 local-port '1194'
set interfaces openvpn vtun10 mode 'server'
set interfaces openvpn vtun10 openvpn-option '--data-ciphers-fallback BF-CBC'
set interfaces openvpn vtun10 openvpn-option '--data-ciphers AES-128-CBC:AES-128-GCM:AES-256-CBC:AES-256-GCM:BF-CBC'
set interfaces openvpn vtun10 openvpn-option '--comp-lzo yes'
set interfaces openvpn vtun10 openvpn-option '--allow-compression yes'
set interfaces openvpn vtun10 openvpn-option '--push redirect-gateway def1'
set interfaces openvpn vtun10 openvpn-option '--push remote-gateway 10.9.1.1'
set interfaces openvpn vtun10 openvpn-option '--push dhcp-option DNS 8.8.8.8'
set interfaces openvpn vtun10 protocol 'udp'
set interfaces openvpn vtun10 server client-ip-pool start '10.9.1.10'
set interfaces openvpn vtun10 server client-ip-pool stop '10.9.1.99'
set interfaces openvpn vtun10 server domain-name 'vtr.example.com'
set interfaces openvpn vtun10 server max-connections '1000'
set interfaces openvpn vtun10 server name-server '10.8.0.1'
set interfaces openvpn vtun10 server subnet '10.9.1.0/24'
set interfaces openvpn vtun10 server topology 'net30'
set interfaces openvpn vtun10 tls ca-certificate 'ca'
set interfaces openvpn vtun10 tls certificate 'cert'
set interfaces openvpn vtun10 tls dh-params 'dh'
set interfaces openvpn vtun10 use-lzo-compression
vyos@r14:~$

Op-mode

vyos@r14:~$ show openvpn server

Sep 29 2022, 9:54 AM · VyOS 1.4 Sagitta

rherold added a comment to T3509: No BCP38 for IPv6 on VyOS.

After digging a step deeper we could also move the function into:

Sep 29 2022, 7:41 AM · VyOS 1.4 Sagitta

rherold added a comment to T3509: No BCP38 for IPv6 on VyOS.

Stumbled again about it and would ask if it is not possible to switch to the iptables extension so that rp filter will also work for IPv6.
From my point of view we must create in firewall setup a new chain RPFILTER in IPv4 and IPv6.

Sep 29 2022, 7:32 AM · VyOS 1.4 Sagitta

Sep 28 2022

Viacheslav committed rVYOSONEXee2dc735e029: login: T4715: Auto logout user after inactivity.

Sep 28 2022, 5:43 PM

GitHub <noreply@github.com> committed rVYOSONEX0af970a6d984: Merge pull request #1561 from sever-sever/T4715 (authored by c-po).

Sep 28 2022, 5:43 PM

c-po committed rVYOSONEXd5e84fab2e66: op-mode: ipsec: T4719: bugfix IKEv2 road-warrior profile generator.

Sep 28 2022, 5:36 PM

c-po closed T4719: iOS Profile has a bug when generating IKEv2 config that doesn't allow to connect as Resolved.

Sep 28 2022, 5:34 PM

Viacheslav created T4720: Ability to configure SSH HostKeyAlgorithms.

Sep 28 2022, 5:26 PM · VyOS 1.4 Sagitta

aalmenar renamed T4719: iOS Profile has a bug when generating IKEv2 config that doesn't allow to connect from iOS Profile has a bug when generating IKEv2 config to iOS Profile has a bug when generating IKEv2 config that doesn't allow to connect.

Sep 28 2022, 5:24 PM

aalmenar updated the task description for T4719: iOS Profile has a bug when generating IKEv2 config that doesn't allow to connect.

Sep 28 2022, 5:22 PM

aalmenar created T4719: iOS Profile has a bug when generating IKEv2 config that doesn't allow to connect.

Sep 28 2022, 5:20 PM

Viacheslav committed rVYOSONEX51d75a533eda: ids: T4557: Update xml-component-version.

Sep 28 2022, 4:02 PM

GitHub <noreply@github.com> committed rVYOSONEX4e9b292730f9: Merge pull request #1565 from sever-sever/T4557 (authored by c-po).

Sep 28 2022, 4:02 PM

sarthurdev committed rVYOSONEX87fdfa6c6ece: nat: T4713: Fix op-mode nat translation output.

Sep 28 2022, 3:35 PM

GitHub <noreply@github.com> committed rVYOSONEXa4c679ead2ed: Merge pull request #1564 from sarthurdev/T4713 (authored by c-po).

Sep 28 2022, 3:35 PM

Viacheslav added a comment to T4557: fastnetmon: allow configure limits per protocol (tcp, udp, icmp).

PR https://github.com/vyos/vyos-1x/pull/1565

Sep 28 2022, 3:09 PM · VyOS 1.4 Sagitta

Viacheslav added a comment to T4718: DHCP server listen-address doesn't take effect if the interface is in a VRF.

Maybe something wrong with this check https://github.com/vyos/vyos-1x/blob/f5a50135f07ac4ec8ed431a757b9c56e607d2132/src/conf_mode/dhcp_server.py#L265-L271

Sep 28 2022, 2:21 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

RyVolodya created T4718: DHCP server listen-address doesn't take effect if the interface is in a VRF.

Sep 28 2022, 12:41 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

syncer changed the status of T4712: Collaborative Protection Profile cPP for Network Devices root task from Open to In progress.

Sep 28 2022, 11:57 AM · VyOS Rolling, VyOS 1.5 Circinus (1.5-stream-2025-Q4)

sarthurdev changed the status of T4713: vyos@vyos:~$ show nat destination rules | doesn't work from Confirmed to Needs testing.

PR: https://github.com/vyos/vyos-1x/pull/1564

Sep 28 2022, 11:13 AM · VyOS 1.4 Sagitta

Viacheslav added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.

Maybe incorrect parsing of port ranges (comma-separated)

rule 120 {
    description "Playstation - 172.16.136.96"
    destination {
        port 1935,3074,3478,3479,3480
    }

Sep 28 2022, 10:54 AM · VyOS 1.4 Sagitta

sarthurdev changed the status of T4713: vyos@vyos:~$ show nat destination rules | doesn't work from Open to Confirmed.

Sep 28 2022, 9:57 AM · VyOS 1.4 Sagitta

c-po committed rVYOSONEXf5a50135f07a: op-mode: T3589: streamline console-server journalctl cmdline.

Sep 28 2022, 6:12 AM

c-po committed rVYOSONEX59cc28e7bb32: op-mode: T3589: streamline pppoe interface journalctl cmdline.

Sep 28 2022, 6:12 AM

William Hughes <will@willhughes.name> committed rVYOSONEX3930be3b8786: conserver: T4717: Support for setting a name for console-server devices.

Sep 28 2022, 4:42 AM

GitHub <noreply@github.com> committed rVYOSONEXfe3ef62a1f35: Merge pull request #1559 from insertjokehere/console-server-names (authored by c-po).

Sep 28 2022, 4:42 AM

insertjokehere added a comment to T4717: Connect to console server by name.

PRs open to implement this:

Sep 28 2022, 4:38 AM · VyOS 1.4 Sagitta

insertjokehere changed the status of T4717: Connect to console server by name from Open to In progress.

Sep 28 2022, 1:20 AM · VyOS 1.4 Sagitta

insertjokehere created T4717: Connect to console server by name.

Sep 28 2022, 1:20 AM · VyOS 1.4 Sagitta

Sep 27 2022

icyfire0573 added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.

vyos@vyos:~$ show configuration
firewall {

interface eth2 {
    in {
        name OUTSIDE-IN
    }
    local {
        name OUTSIDE-LOCAL
    }
}
name OUTSIDE-IN {
    default-action drop
    rule 10 {
        action accept
        state {
            established enable
            related enable
        }
    }
    rule 20 {
        action accept
        destination {
            address 172.16.135.35
            port 8123
        }
        protocol tcp
        source {
        }
        state {
            new enable
        }
    }
    rule 21 {
        action accept
        destination {
            address 172.16.135.35
            port 443
        }
        protocol tcp
        state {
            new enable
        }
    }
    rule 30 {
        action accept
        destination {
            address 172.16.136.16
            port 22
        }
        protocol tcp
        source {
            address 13.90.97.251
        }
        state {
            new enable
        }
    }
    rule 40 {
        action accept
        destination {
            address 172.16.136.96
            port 1935,3478,3479,3480
        }
        protocol tcp
        state {
            new enable
        }
    }
    rule 41 {
        action accept
        destination {
            address 172.16.136.96
            port 3074,3478,3479
        }
        protocol udp
        state {
            new enable
        }
    }
}
name OUTSIDE-LOCAL {
    default-action drop
    rule 10 {
        action accept
        state {
            established enable
            related enable
        }
    }
    rule 20 {
        action accept
        icmp {
            type-name echo-request
        }
        protocol icmp
        state {
            new enable
        }
    }
    rule 30 {
        action drop
        destination {
            port 22
        }
        protocol tcp
        recent {
            count 4
            time minute
        }
        state {
            new enable
        }
    }
    rule 31 {
        action accept
        destination {
            port 22
        }
        protocol tcp
        state {
            new enable
        }
    }
    rule 40 {
        action accept
        destination {
            address 172.16.136.35
            port 8123
        }
        protocol tcp
        state {
            new enable
        }
    }
}

}
interfaces {

ethernet eth0 {
    address 172.16.136.1/24
    description INSIDE
    hw-id 6c:4b:90:52:32:75
}
ethernet eth2 {
    address dhcp
    description OUTSIDE
    hw-id 7c:c2:c6:42:43:e1
}
loopback lo {
}
wireless wlan0 {
    hw-id 50:5b:c2:ca:e1:03
    physical-device phy0
}

}
nat {

destination {
    rule 10 {
        description "Port Forward: SSH to 172.16.136.16"
        destination {
            port 22
        }
        inbound-interface eth2
        protocol tcp
        source {
            address 13.90.97.251
        }
        translation {
            address 172.16.136.16
        }
    }
    rule 100 {
        description "HomeAssistant WAN"
        destination {
            port 8123
        }
        inbound-interface eth2
        protocol tcp
        translation {
            address 172.16.136.35
        }
    }
    rule 110 {
        description "HomeAssistant Reflection To"
        destination {
            port 8123
        }
        inbound-interface eth0
        protocol tcp
        translation {
            address 172.16.136.35
        }
    }
    rule 120 {
        description "Playstation - 172.16.136.96"
        destination {
            port 1935,3074,3478,3479,3480
        }
        inbound-interface eth2
        protocol tcp
        translation {
            address 172.16.136.96
        }
    }
}
source {
    rule 100 {
        outbound-interface eth2
        source {
            address 172.16.136.0/24
        }
        translation {
            address masquerade
        }
    }
    rule 110 {
        description "HomeAssistant Reflection From"
        destination {
            address 172.16.136.0/24
        }
        outbound-interface eth0
        protocol tcp
        source {
            address 172.16.136.0/24
        }
        translation {
            address masquerade
        }
    }
}

}
service {

dhcp-server {
    shared-network-name LAN {
        domain-search drutherford.com
        subnet 172.16.136.0/24 {
            default-router 172.16.136.1
            domain-name drutherford.com
            lease 86400
            name-server 8.8.8.8
            name-server 1.1.1.1
            name-server 9.9.9.9
            range 0 {
                start 172.16.136.50
                stop 172.16.136.90
            }
            static-mapping Backyard-Camera-Wireless {
                ip-address 172.16.136.101
                mac-address 78:66:9D:7F:D7:73
            }
            static-mapping Garage-Camera-Wireless {
                ip-address 172.16.136.99
                mac-address 5C:C3:36:4C:D3:20
            }
            static-mapping Green {
                ip-address 172.16.136.16
                mac-address DC:A6:32:6D:20:54
            }
            static-mapping HomeAssistant {
                ip-address 172.16.136.35
                mac-address B8:27:EB:81:ED:01
            }
            static-mapping Playstation4 {
                ip-address 172.16.136.96
                mac-address 00:D9:D1:FD:E3:C8
            }
            static-mapping Pool-Camera-Wireless {
                ip-address 172.16.136.100
                mac-address 78:66:9D:5B:F8:9C
            }
            static-mapping RasPBX {
                ip-address 172.16.136.102
                mac-address B8:27:EB:BA:9C:BD
            }
            static-mapping Roku-3 {
                ip-address 172.16.136.98
                mac-address B8:3E:59:B3:DF:DB
            }
            static-mapping Roku-Ultra {
                ip-address 172.16.136.97
                mac-address 88:DE:A9:C1:C0:41
            }
            static-mapping client1 {
                ip-address 172.16.136.102
                mac-address B8:27:EB:BA:9C:BD
            }
        }
    }
}
ssh {
    port 22
}

}
system {

config-management {
    commit-revisions 100
}
conntrack {
    modules {
        ftp
        h323
        nfs
        pptp
        sip
        sqlnet
        tftp
    }
}
console {
    device ttyS0 {
        speed 115200
    }
}
host-name vyos
login {
    user vyos {
        authentication {
            encrypted-password ****************
        }
    }
}
ntp {
    server time1.vyos.net {
    }
    server time2.vyos.net {
    }
    server time3.vyos.net {
    }
}
syslog {
    global {
        facility all {
            level info
        }
        facility protocols {
            level debug
        }
    }
}

}

Sep 27 2022, 10:46 PM · VyOS 1.4 Sagitta

sarthurdev added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.

Can we see example destination NAT config with the issue?

Sep 27 2022, 8:56 PM · VyOS 1.4 Sagitta

icyfire0573 added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.

still no good
vyos@vyos:~$ show nat destination rules
Traceback (most recent call last):

File "/usr/libexec/vyos/op_mode/nat.py", line 302, in <module>
  res = vyos.opmode.run(sys.modules[__name__])
File "/usr/lib/python3/dist-packages/vyos/opmode.py", line 147, in run
  res = func(**args)
File "/usr/libexec/vyos/op_mode/nat.py", line 280, in show_rules
  return _get_formatted_output_rules(nat_rules, direction, family)
File "/usr/libexec/vyos/op_mode/nat.py", line 112, in _get_formatted_output_rules
  if 'prefix' in match['right'] or 'set' in match['right']:

TypeError: argument of type 'int' is not iterable
vyos@vyos:~$ show version
Version: VyOS 1.4-rolling-202209260217
Release train: sagitta

Sep 27 2022, 8:52 PM · VyOS 1.4 Sagitta

v.huti added a comment to T4180: Support for QoS Policy Propagation via BGP (QPPB).

DEMO Notes:
=====================

1) You need to load the XDP program before starting frr so that
   it can find the LPM map on plugin initialization.
   To keep it simple, the VTY interface was not implemented for now.
   XDP side is accessible via `bpftool`
3) I`m monitoring packets for TOS/DSCP changes to see if marking happens
   But in another approach tag is associated with the packet and then
   read by the TC classifier
4) These are two traffic shaping examples.
   The point is that you have two options for marking:
4.1) Modifying the TOS byte and installing the u32 tc filter to match the value.
   This has a limited range of possible values (8 bits) + needs to modify the packet.
4.2) Using a custom BPF classifier.
    The XDP side extends the packet context and saves the value.
    Afterward, the classifier may read the context and control the shaping behavior
    by setting the `skb->tc_classid` or one of the fields mentioned below.

Therefore, BPF programs attached to the tc BPF hook can, for instance,
read or write the skb’s mark, pkt_type, protocol, priority, queue_mapping,
napi_id, cb[] array, hash, tc_classid or tc_index, vlan metadata, the XDP
transferred custom metadata and various other information. All members of
the struct __sk_buff BPF context used in tc BPF are defined in the
linux/bpf.h system header.

https://docs.cilium.io/en/stable/bpf/#tc-traffic-control

Sep 27 2022, 8:05 PM · VyOS Rolling

Viacheslav changed the status of T4716: SSH ability to configure RekeyLimit, a subtask of T4712: Collaborative Protection Profile cPP for Network Devices root task, from Open to In progress.

Sep 27 2022, 4:11 PM · VyOS Rolling, VyOS 1.5 Circinus (1.5-stream-2025-Q4)

Viacheslav changed the status of T4716: SSH ability to configure RekeyLimit from Open to In progress.

PR https://github.com/vyos/vyos-1x/pull/1563

Sep 27 2022, 4:11 PM · VyOS 1.4 Sagitta

acosgrove updated acosgrove.

Sep 27 2022, 3:48 PM

Viacheslav created T4716: SSH ability to configure RekeyLimit.

Sep 27 2022, 3:01 PM · VyOS 1.4 Sagitta

Viacheslav closed T4711: Ability to terminate user TTY and PTS sessions, a subtask of T4712: Collaborative Protection Profile cPP for Network Devices root task, as Resolved.

Sep 27 2022, 2:16 PM · VyOS Rolling, VyOS 1.5 Circinus (1.5-stream-2025-Q4)

Viacheslav closed T4711: Ability to terminate user TTY and PTS sessions as Resolved.

Sep 27 2022, 2:16 PM · VyOS 1.4 Sagitta

Viacheslav committed rVYOSONEX8f4880754da3: login: T4711: Terminate user TTY and PTS sessions.

Sep 27 2022, 2:03 PM

GitHub <noreply@github.com> committed rVYOSONEX53bd9fe11e44: Merge pull request #1562 from sever-sever/T4711 (authored by c-po).

Sep 27 2022, 2:03 PM

n.fort committed rVYOSONEX3f6b5b5cec7e: T4700: Firewall: add interface matching criteria.

Sep 27 2022, 2:02 PM

GitHub <noreply@github.com> committed rVYOSONEXc22f9d76fb77: Merge pull request #1560 from nicolas-fort/T4700 (authored by c-po).

Sep 27 2022, 2:02 PM

Viacheslav closed T4557: fastnetmon: allow configure limits per protocol (tcp, udp, icmp) as Resolved.

Sep 27 2022, 12:52 PM · VyOS 1.4 Sagitta

Viacheslav changed the status of T4711: Ability to terminate user TTY and PTS sessions, a subtask of T4712: Collaborative Protection Profile cPP for Network Devices root task, from Open to In progress.

Sep 27 2022, 12:29 PM · VyOS Rolling, VyOS 1.5 Circinus (1.5-stream-2025-Q4)

Viacheslav changed the status of T4711: Ability to terminate user TTY and PTS sessions from Open to In progress.

Sep 27 2022, 12:29 PM · VyOS 1.4 Sagitta

Viacheslav added a comment to T4711: Ability to terminate user TTY and PTS sessions.

PR https://github.com/vyos/vyos-1x/pull/1562

Sep 27 2022, 12:28 PM · VyOS 1.4 Sagitta

Viacheslav changed the status of T4657: op-mode scripts with type hints in `return` do not work from In progress to Needs testing.

Sep 27 2022, 12:05 PM · VyOS 1.4 Sagitta

Viacheslav added a comment to T4708: 'show nat destination rules' throwing an error.

Should be fixed in the commit https://github.com/vyos/vyos-1x/pull/1552/files#diff-9e98077e1229d7a89e26efdc517896728265a8669e8824aaf92611b113fa3516L47
T4605
Try the latest rolling

Sep 27 2022, 12:04 PM · VyOS 1.4 Sagitta

Viacheslav added a comment to T4715: Auto logout user after a period of inactivity.

PR https://github.com/vyos/vyos-1x/pull/1561

Sep 27 2022, 11:41 AM · VyOS 1.4 Sagitta

Viacheslav changed the status of T4715: Auto logout user after a period of inactivity, a subtask of T4712: Collaborative Protection Profile cPP for Network Devices root task, from Open to In progress.

Sep 27 2022, 10:51 AM · VyOS Rolling, VyOS 1.5 Circinus (1.5-stream-2025-Q4)

Viacheslav changed the status of T4715: Auto logout user after a period of inactivity from Open to In progress.

Sep 27 2022, 10:51 AM · VyOS 1.4 Sagitta

Viacheslav updated the task description for T4715: Auto logout user after a period of inactivity.

Sep 27 2022, 10:40 AM · VyOS 1.4 Sagitta

Viacheslav updated the task description for T4715: Auto logout user after a period of inactivity.

Sep 27 2022, 10:33 AM · VyOS 1.4 Sagitta

Viacheslav created T4715: Auto logout user after a period of inactivity.

Sep 27 2022, 10:32 AM · VyOS 1.4 Sagitta

Viacheslav added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.

Should be fixed in the commit https://github.com/vyos/vyos-1x/pull/1552/files#diff-9e98077e1229d7a89e26efdc517896728265a8669e8824aaf92611b113fa3516L47
T4605
Try the latest rolling

Sep 27 2022, 9:34 AM · VyOS 1.4 Sagitta

Viacheslav created T4714: Delete unused ipset from the filecaps.

Sep 27 2022, 9:29 AM · VyOS 1.4 Sagitta

icyfire0573 created T4713: vyos@vyos:~$ show nat destination rules | doesn't work.

Sep 27 2022, 9:28 AM · VyOS 1.4 Sagitta

Viacheslav added a subtask for T4712: Collaborative Protection Profile cPP for Network Devices root task: T4711: Ability to terminate user TTY and PTS sessions.

Sep 27 2022, 9:05 AM · VyOS Rolling, VyOS 1.5 Circinus (1.5-stream-2025-Q4)

Viacheslav added a parent task for T4711: Ability to terminate user TTY and PTS sessions: T4712: Collaborative Protection Profile cPP for Network Devices root task.

Sep 27 2022, 9:05 AM · VyOS 1.4 Sagitta

Viacheslav created T4712: Collaborative Protection Profile cPP for Network Devices root task.

Sep 27 2022, 9:04 AM · VyOS Rolling, VyOS 1.5 Circinus (1.5-stream-2025-Q4)

aalmenar changed Issue type from unspecified to improvement on T4704: Allow to set metric (MED) to rtt with rtt,+rtt or -rtt.

Sep 27 2022, 7:55 AM · VyOS 1.4 Sagitta

Viacheslav changed the status of T4557: fastnetmon: allow configure limits per protocol (tcp, udp, icmp) from In progress to Needs testing.

Sep 27 2022, 7:31 AM · VyOS 1.4 Sagitta

Viacheslav moved T4693: ISIS segment routing was broken... from Open to Finished on the VyOS 1.4 Sagitta board.

Sep 27 2022, 7:26 AM · VyOS 1.4 Sagitta

Sep 26 2022

c-po committed rVYOSONEX5fe0e9c163ee: ethernet: T4689: support asymetric RFS configuration on multiple interfaces.

Sep 26 2022, 6:31 PM

Viacheslav committed rVYOSONEX67cf858c8727: ids: T4557: Migrate threshold and add new threshold types.

Sep 26 2022, 5:46 PM

GitHub <noreply@github.com> committed rVYOSONEX2cf6275eac10: Merge pull request #1545 from sever-sever/T4557 (authored by c-po).

Sep 26 2022, 5:46 PM

Viacheslav created T4711: Ability to terminate user TTY and PTS sessions.

Sep 26 2022, 4:02 PM · VyOS 1.4 Sagitta

n.fort added a comment to T4700: Firewall - Add interface match criteria.

PR: https://github.com/vyos/vyos-1x/pull/1560

Sep 26 2022, 11:51 AM · VyOS 1.4 Sagitta

initramfs added a comment to T4709: TCP MSS clamping broken in equuleus.

It seems like I was wrong about the netfilter rule not working as intended (and in my testing the clamp was broken for some other reason that was an error on my part), the post has been edited to only indicate the remaining issue of an overly strict MSS clamping range.

Sep 26 2022, 3:10 AM · VyOS 1.3 Equuleus (1.3.3)

initramfs updated the task description for T4709: TCP MSS clamping broken in equuleus.

Sep 26 2022, 3:08 AM · VyOS 1.3 Equuleus (1.3.3)