Thanks for catching this
- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Nov 5 2022
Nov 5 2022
GitHub <noreply@github.com> committed rVYOSONEX6c0473efd272: Merge pull request #1639 from initramfs/current-fix-pdns-reload (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEXb3e524c29e9f: Merge pull request #1640 from initramfs/equuleus-fix-pdns-reload (authored by c-po).
Relevant PRs:
initramfs updated the task description for T4799: PowerDNS >= 4.7 does not get reloaded by vyos-hostsd.
Nov 4 2022
Nov 4 2022
jestabro added a parent task for T4798: Migrate the file-exists validator away from Python: T4795: Cleanup custom python validators.
dmbaturin added a project to T4798: Migrate the file-exists validator away from Python: VyOS 1.3 Equuleus (1.3.3).
Nov 3 2022
Nov 3 2022
TheSin- updated the task description for T4797: External address/network lists for firewall (Local and remote).
TheSin- updated the task description for T4797: External address/network lists for firewall (Local and remote).
GitHub <noreply@github.com> committed rVYOSONEX36e54927217d: Merge pull request #1633 from sarthurdev/fqdn (authored by c-po).
After a few hours of digging I do think this request would be very similar to geoip, only ipv4, and ipv6 groups would be required per list.
sarthurdev triaged T4797: External address/network lists for firewall (Local and remote) as Wishlist priority.
Viacheslav changed the status of T4758: Rewrite show dhcp server to vyos.opmode format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Viacheslav changed the status of T4758: Rewrite show dhcp server to vyos.opmode format from In progress to Needs testing.
sarthurdev changed the status of T1097: Make firewall groups work everywhere that's appropropriate from Open to In progress.
PR adds groups to NAT: https://github.com/vyos/vyos-1x/pull/1633
sarthurdev changed the status of T1097: Make firewall groups work everywhere that's appropropriate, a subtask of T2199: Rewrite firewall in new XML/Python style, from Open to In progress.
GitHub <noreply@github.com> committed rVYOSONEX99200f77afeb: Merge pull request #1604 from sever-sever/T4758 (authored by c-po).
Reopened, as this was never backported to 1.3; set for 1.3.3.
I didn't look deep into the nft groups, so I wasn't sure if we could mix ipv4/6 and addresses and networks, if we can then I agree one group would be best, though I'm sure ipv4/6 would still need to separate but checking each line for : makes that task super easy and fast.
From my point of fiew, looks interesting.
The proposed structure and behaviour doesn't look that different than what is currently in geoip filtering: external URLs with data, and sync from time to time.
TheSin- renamed T4794: show firewall name <name> - Can't use .items() on a list from Can't use .items() on a list to show firewall name <name> - Can't use .items() on a list.
a.apostoliuk changed the status of T4793: Create warning message about disable-route-autoinstall when ipsec vti is used from Open to In progress.
a.apostoliuk triaged T4793: Create warning message about disable-route-autoinstall when ipsec vti is used as Normal priority.
giezi added a comment to T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP.
The enhanced linux-cp plugin (from IPng) is since 21.06 an official part of VPP, so the integration should be simple:
https://vpp.flirble.org/master/aboutvpp/releasenotes/v21.06.html#linux-control-plane-plugin-linux-cp
Viacheslav placed T3953: IPSec with vti interfaces by default add default route to table 220 up for grabs.
initramfs added a comment to T4760: VyOS does not support running multiple instances of DHCPv6 clients.
A patch to the WIDE DHCPv6 client seems to be sufficient to resolve this issue with respect to the way VyOS currently uses the daemon (one daemon per configured interface), PRs below:
Viacheslav renamed T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format from Ability to get L2TP/PPTP sessions info in a machine readable format to Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format.
Nov 2 2022
Nov 2 2022
GitHub <noreply@github.com> committed rVYOSONEXf11b76ec56f9: Merge pull request #1636 from jestabro/standardize-op-mode-output (authored by jestabro).
c-po moved T4177: Strip-private doesn't work for service monitoring from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.3) board.
zsdc changed the status of T4776: NVME storage is not detected properly during installation from In progress to Needs testing.
Sure, it is fully compatible with 1.3. If no problems are found after the changes in 1.4 it must be backported.
Viacheslav changed the status of T4771: Rewrite protocol BGP op-mode to vyos.opmode format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Viacheslav changed the status of T4771: Rewrite protocol BGP op-mode to vyos.opmode format from In progress to Needs testing.
Viacheslav changed the status of T4777: Ability to get logs in machine readable format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Viacheslav changed the status of T4777: Ability to get logs in machine readable format from In progress to Needs testing.
Requires rewriting function show to python-systemd
GitHub <noreply@github.com> committed rVYOSONEXf2ec92a78c4e: Merge pull request #1623 from sever-sever/T4771 (authored by dmbaturin).
GitHub <noreply@github.com> committed rVYOSONEX1bc2a0e8659a: Merge pull request #1635 from sever-sever/T4777 (authored by dmbaturin).
on nightly build nftables v1.0.5 and kernel 5.15.76
As a first step, we need a wrapper script to control the start, stop and restart of socat, because socat sometimes exits automatically
As a first step, we need a wrapper script to control the start, stop and restart of socat, because socat sometimes exits automatically
a.apostoliuk changed the status of T4790: RADIUS login does not work if sum of timeouts more than 50s from Open to In progress.
Nov 1 2022
Nov 1 2022
I created a PR to solve this specific issue (and some more related to this): https://github.com/vyos/vyos-1x/pull/1637
Viacheslav edited projects for T4737: FRRouting/zebra 7.5.1 does not redistribute routes to other protocols, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus.
Viacheslav awarded T4791: Consistent normalization of 'raw' output of op-mode scripts for CLI and API a Like token.
Viacheslav edited projects for T4790: RADIUS login does not work if sum of timeouts more than 50s , added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus.
c-po changed the status of T4177: Strip-private doesn't work for service monitoring from Unknown Status to Resolved.
c-po committed rVYOSONEXa18a722a93fd: strip-private: T4177: Fix for hiding private data token/url/bucket (authored by Viacheslav).
GitHub <noreply@github.com> committed rVYOSONEX333e87dc69dc: Merge pull request #1634 from c-po/t4177-equuleus (authored by c-po).
jestabro changed the status of T4791: Consistent normalization of 'raw' output of op-mode scripts for CLI and API from Open to In progress.
Viacheslav changed the status of T4777: Ability to get logs in machine readable format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from Open to In progress.
Viacheslav changed the status of T4777: Ability to get logs in machine readable format from Open to In progress.
normally, when I want to make an empty-base config, I save config.boot another place. So I load it when I need to restart the configuration. I was thinking that we can make something like it by cli, it should be saved in the first config.boot file and restored.
Maybe a simplified and interactive cli, as when adding new image? So user can decide what to do with other images and containers.
sarthurdev changed the status of T1877: Feature Request: Allow NAT to use network and address groups from In progress to Needs testing.
Adds firewall node rule N source/destination fqdn domain.com for single domains per rule and refactors resolver daemon.
Viacheslav updated the task description for T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format.
sarthurdev moved T4759: domain-group on policy route not working from Open to In Progress on the VyOS 1.4 Sagitta board.
sarthurdev changed the status of T4759: domain-group on policy route not working from Open to In progress.
sarthurdev closed T4774: Disallow duplicate pubkey on peers of a wireguard interface as Unknown Status.
Viacheslav changed the subtype of T4788: Factory-reset/default command from "Task" to "Feature Request".
In addition to the configuration, you also need to reset all logs/custom scripts and boot from the base image.
What will be if you have several images? Should we delete all other images?
What will be if you have container images? Should we delete them?
And there are many other nuances.
c-po changed the status of T4750: Support of higher level SSH keys (sk-ssh-ed25519) from In progress to Needs testing.
c-po changed the status of T4750: Support of higher level SSH keys (sk-ssh-ed25519) from Open to In progress.