Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Nov 21 2022

Viacheslav added a comment to T4818: IPv6 NDP not working everytime.

Could you provide config from several items?
How many nodes do we need to reproduce it?

Nov 21 2022, 6:25 AM · Restricted Project, VyOS 1.3 Equuleus (1.3.9), VyOS 1.4 Sagitta (1.4.0-GA)

Nov 20 2022

Viacheslav added a project to T4812: IPsec ability to show all configured connections: VyOS 1.3 Equuleus (1.3.3).
Nov 20 2022, 10:28 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav changed the status of T4823: swanctl.conf is broken when ipsec site-to-site peer set. from Open to In progress.
Nov 20 2022, 10:22 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4812: IPsec ability to show all configured connections, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Nov 20 2022, 10:20 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
Viacheslav changed the status of T4812: IPsec ability to show all configured connections from In progress to Needs testing.
Nov 20 2022, 10:20 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
vfreex added a comment to T4832: dhcp: Add IPv6-only dhcp option support (RFC 8925).

1.3 backport https://github.com/vyos/vyos-1x/pull/1670

Nov 20 2022, 5:53 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
vfreex added a comment to T4832: dhcp: Add IPv6-only dhcp option support (RFC 8925).

PR https://github.com/vyos/vyos-1x/pull/1669

Nov 20 2022, 5:46 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
vfreex created T4832: dhcp: Add IPv6-only dhcp option support (RFC 8925).
Nov 20 2022, 5:45 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav added a comment to T4823: swanctl.conf is broken when ipsec site-to-site peer set..

ipsec site-to-site peer <name> - it is just a connection name and is not related to the IP address
I'll take a look at TS

Nov 20 2022, 2:55 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4825: interfaces veth/veth-pairs -standalone used.

PR https://github.com/vyos/vyos-1x/pull/1668

Nov 20 2022, 1:50 PM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
Viacheslav changed the status of T4830: nat66 - Error in port translation rules from Confirmed to Needs testing.
Nov 20 2022, 9:52 AM · VyOS 1.4 Sagitta
Viacheslav closed T4827: route-map issues , not load configuration FRR as Resolved.
vyos@r14# set policy route-map FOO rule 100 action permit
[edit]
vyos@r14# set policy route-map FOO rule 50 action 'deny'
[edit]
vyos@r14# set policy route-map FOO rule 50 continue '100'
[edit]
vyos@r14# 
[edit]
vyos@r14# commit
[ policy ]
rule 50 "continue" cannot be used with action deny!
Nov 20 2022, 9:47 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4827: route-map issues , not load configuration FRR.

PR https://github.com/vyos/vyos-1x/pull/1667

Nov 20 2022, 9:27 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4831: implement Telegraf build on arm64 / fix hardcoded x86-64 reference from Open to Needs testing.
Nov 20 2022, 7:25 AM
mcbridematt added a comment to T4831: implement Telegraf build on arm64 / fix hardcoded x86-64 reference.

Pull request: https://github.com/vyos/vyos-build/pull/286

Nov 20 2022, 2:12 AM
mcbridematt created T4831: implement Telegraf build on arm64 / fix hardcoded x86-64 reference.
Nov 20 2022, 2:07 AM

Nov 19 2022

jestabro updated the task description for T4829: Tunnel argument to 'reset_peer' in ipsec.py should have type hint Optional.
Nov 19 2022, 9:49 PM · VyOS 1.4 Sagitta
Viacheslav closed T4720: Ability to configure SSH HostKeyAlgorithms, a subtask of T4712: Collaborative Protection Profile cPP for Network Devices root task, as Resolved.
Nov 19 2022, 4:00 PM · VyOS 1.5 Circinus
Viacheslav closed T4720: Ability to configure SSH HostKeyAlgorithms as Resolved.
Nov 19 2022, 4:00 PM · VyOS 1.4 Sagitta
Viacheslav closed T4826: Wrong key type is used for SSH SK public keys as Resolved.

Thanks
Don’t think that there should be a migration
As new keys were added several days ago.

Nov 19 2022, 3:56 PM · VyOS 1.4 Sagitta
n.fort added a comment to T4830: nat66 - Error in port translation rules.

PR: https://github.com/vyos/vyos-1x/pull/1666

Nov 19 2022, 3:55 PM · VyOS 1.4 Sagitta
n.fort changed the status of T4830: nat66 - Error in port translation rules from Open to Confirmed.
Nov 19 2022, 3:05 PM · VyOS 1.4 Sagitta
n.fort created T4830: nat66 - Error in port translation rules.
Nov 19 2022, 3:00 PM · VyOS 1.4 Sagitta
jestabro closed T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer', a subtask of T4552: Unable to reset IPsec IPv6 peer, as Resolved.
Nov 19 2022, 1:04 PM · VyOS 1.4 Sagitta
jestabro closed T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer' as Resolved.
Nov 19 2022, 1:04 PM · VyOS 1.4 Sagitta
Arc771 added a comment to T4720: Ability to configure SSH HostKeyAlgorithms.

@Viacheslav Works!

Nov 19 2022, 11:46 AM · VyOS 1.4 Sagitta
DerEnderKeks added a comment to T4826: Wrong key type is used for SSH SK public keys.

It works as expected now on 1.4-rolling-202211190627, but my system failed to boot with the old key types in the config, so I had to remove them before switching to the new image. Thanks for the quick fix!

Nov 19 2022, 10:03 AM · VyOS 1.4 Sagitta
c-po edited projects for T4760: VyOS does not support running multiple instances of DHCPv6 clients, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.2).
Nov 19 2022, 5:59 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
c-po moved T4760: VyOS does not support running multiple instances of DHCPv6 clients from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Nov 19 2022, 5:59 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
c-po changed the status of T4760: VyOS does not support running multiple instances of DHCPv6 clients from Open to Needs testing.
Nov 19 2022, 5:59 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta

Nov 18 2022

jestabro added a subtask for T4552: Unable to reset IPsec IPv6 peer: T4829: Tunnel argument to 'reset_peer' in ipsec.py should have type hint Optional.
Nov 18 2022, 10:21 PM · VyOS 1.4 Sagitta
jestabro added a parent task for T4829: Tunnel argument to 'reset_peer' in ipsec.py should have type hint Optional: T4552: Unable to reset IPsec IPv6 peer.
Nov 18 2022, 10:21 PM · VyOS 1.4 Sagitta
jestabro triaged T4829: Tunnel argument to 'reset_peer' in ipsec.py should have type hint Optional as Normal priority.
Nov 18 2022, 10:20 PM · VyOS 1.4 Sagitta
jestabro added a subtask for T4552: Unable to reset IPsec IPv6 peer: T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer'.
Nov 18 2022, 10:15 PM · VyOS 1.4 Sagitta
jestabro added a parent task for T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer': T4552: Unable to reset IPsec IPv6 peer.
Nov 18 2022, 10:15 PM · VyOS 1.4 Sagitta
jestabro added a comment to T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer'.

https://github.com/vyos/vyos-1x/pull/1665

Nov 18 2022, 10:14 PM · VyOS 1.4 Sagitta
jestabro triaged T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer' as Normal priority.
Nov 18 2022, 10:06 PM · VyOS 1.4 Sagitta
fernando added a comment to T4827: route-map issues , not load configuration FRR.

as we talked , this behavior is the same on vyos1.3.x/frr7.5.x . the main difference is that on vyos-cli doesn't add this command .

Nov 18 2022, 10:06 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T973: Create Prometheus Exporter for VyOS .
In T973#137840, @elico wrote:

@Viacheslav I want to test this, what should be done?

Nov 18 2022, 9:25 PM · Restricted Project, VyOS 1.5 Circinus
Viacheslav added a comment to T4720: Ability to configure SSH HostKeyAlgorithms.

@Arc771 Thanks, Could you check it in the next rolling release after 20221118?

Nov 18 2022, 8:42 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4826: Wrong key type is used for SSH SK public keys from Open to Needs testing.

@DerEnderKeks Could you check it in the next rolling release after 20221118?

Nov 18 2022, 8:40 PM · VyOS 1.4 Sagitta
jestabro closed T4821: Correct calling of config mode script dependencies from firewall.py as Resolved.
Nov 18 2022, 6:11 PM · VyOS 1.4 Sagitta
jestabro closed T4821: Correct calling of config mode script dependencies from firewall.py, a subtask of T4820: Support for inter-config-mode script dependencies, as Resolved.
Nov 18 2022, 6:11 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4826: Wrong key type is used for SSH SK public keys.

PR https://github.com/vyos/vyos-1x/pull/1664

Nov 18 2022, 2:15 PM · VyOS 1.4 Sagitta
elico added a comment to T973: Create Prometheus Exporter for VyOS .

@Viacheslav I want to test this, what should be done?

Nov 18 2022, 12:33 PM · Restricted Project, VyOS 1.5 Circinus
Viacheslav changed the status of T4819: Allow printing Warning messages in multiple lines with \n from In progress to Needs testing.
Nov 18 2022, 12:25 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4827: route-map issues , not load configuration FRR.
set policy route-map MAP-ISP1-AS1001-EXPORT rule 50 action 'deny'
set policy route-map MAP-ISP1-AS1001-EXPORT rule 50 continue '100'
Nov 18 2022, 11:10 AM · VyOS 1.4 Sagitta

Nov 17 2022

fernando created T4827: route-map issues , not load configuration FRR.
Nov 17 2022, 11:04 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4826: Wrong key type is used for SSH SK public keys.

I guess it was implemented in the T4750
Should be easy to fix

Nov 17 2022, 9:12 PM · VyOS 1.4 Sagitta
c-po added a comment to T4284: QoS: rewrite to XML and Python.

Draft PR https://github.com/vyos/vyos-1x/pull/1663

Nov 17 2022, 9:05 PM · VyOS 1.4 Sagitta
c-po closed T4750: Support of higher level SSH keys (sk-ssh-ed25519) as Resolved.
Nov 17 2022, 9:05 PM · VyOS 1.4 Sagitta
pasik added a comment to T4776: NVME storage is not detected properly during installation.

@marc_s thanks for testing !

Nov 17 2022, 5:49 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
TheSin- added a comment to T4797: External address/network lists for firewall (Local and remote).

Added file:// parser to vyos.remote.download and used that to simplify the code, no need to check if it's local now.

Nov 17 2022, 4:20 PM · VyOS 1.5 Circinus
TheSin- updated the task description for T4797: External address/network lists for firewall (Local and remote).
Nov 17 2022, 4:19 PM · VyOS 1.5 Circinus
DerEnderKeks created T4826: Wrong key type is used for SSH SK public keys.
Nov 17 2022, 1:54 PM · VyOS 1.4 Sagitta
Viacheslav edited projects for T4824: PBR/FW rulesets are ignored in rfc3768-compatibility VRRP setups, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus.
Nov 17 2022, 9:59 AM · VyOS 1.3 Equuleus (1.3.6)
jestabro changed the status of T4821: Correct calling of config mode script dependencies from firewall.py, a subtask of T4820: Support for inter-config-mode script dependencies, from Open to Needs testing.
Nov 17 2022, 1:09 AM · VyOS 1.4 Sagitta
jestabro changed the status of T4821: Correct calling of config mode script dependencies from firewall.py from Open to Needs testing.
Nov 17 2022, 1:09 AM · VyOS 1.4 Sagitta
jestabro added a comment to T4821: Correct calling of config mode script dependencies from firewall.py.

PR:
https://github.com/vyos/vyos-1x/pull/1662

Nov 17 2022, 12:59 AM · VyOS 1.4 Sagitta
jestabro renamed T4821: Correct calling of config mode script dependencies from firewall.py from Fix calling of config mode script dependencies from firewall.py to Correct calling of config mode script dependencies from firewall.py.
Nov 17 2022, 12:43 AM · VyOS 1.4 Sagitta

Nov 16 2022

syncer raised the priority of T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP from Wishlist to Normal.

Now as linux-cp available we can consider adding support

Nov 16 2022, 9:29 PM · Restricted Project, VyOS 1.5 Circinus
syncer added a comment to T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP.

https://www.youtube.com/watch?v=D7PF1cOAAUk&ab_channel=DENOG

Nov 16 2022, 9:27 PM · Restricted Project, VyOS 1.5 Circinus
syncer merged task T893: Add support for VPP into T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP.
Nov 16 2022, 9:27 PM · VyOS 1.4 Sagitta
syncer merged T893: Add support for VPP into T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP.
Nov 16 2022, 9:27 PM · Restricted Project, VyOS 1.5 Circinus
TheSin- added a comment to T4794: show firewall name <name> - Can't use .items() on a list.

thank you

Nov 16 2022, 7:32 PM · VyOS 1.4 Sagitta
roedie added a comment to T4794: show firewall name <name> - Can't use .items() on a list.

https://github.com/vyos/vyos-1x/pull/1661

Nov 16 2022, 7:30 PM · VyOS 1.4 Sagitta
fernando added a subtask for T4686: Provides support for veth: T4825: interfaces veth/veth-pairs -standalone used.
Nov 16 2022, 3:51 PM · VyOS 1.4 Sagitta
fernando added a parent task for T4825: interfaces veth/veth-pairs -standalone used: T4686: Provides support for veth.
Nov 16 2022, 3:51 PM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
fernando created T4825: interfaces veth/veth-pairs -standalone used.
Nov 16 2022, 3:47 PM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
fernando created T4824: PBR/FW rulesets are ignored in rfc3768-compatibility VRRP setups.
Nov 16 2022, 12:42 PM · VyOS 1.3 Equuleus (1.3.6)
chesskuo added a comment to T4118: IPsec syntax overhaul.

Hello sir,

Nov 16 2022, 10:03 AM · VyOS 1.4 Sagitta
chesskuo created T4823: swanctl.conf is broken when ipsec site-to-site peer set..
Nov 16 2022, 9:57 AM · VyOS 1.4 Sagitta

Nov 15 2022

mcbridematt added a comment to T4822: vyatta-cfg-system: install correct version of GRUB for architecture (arm64).

Pull request: https://github.com/vyos/vyatta-cfg-system/pull/189

Nov 15 2022, 11:31 PM
mcbridematt created T4822: vyatta-cfg-system: install correct version of GRUB for architecture (arm64).
Nov 15 2022, 11:24 PM
Cheeze_It added a comment to T4739: ISIS and OSPF segment routing being refactored.

We figured out the problem. So for OSPF segment routing to work we need to enable opaque LSA capabilities. So by default VyOS doesn't have opaque LSAs (type 9, type 10, type 11) enabled. So after checking the configuration for the OSPF FRR template I noticed that the actual command to enable opaque LSAs is broken because it's not in the OSPF FRR template. Once we fix that, we'll have working OSPF segment routing.

Nov 15 2022, 10:37 PM · VyOS 1.4 Sagitta
jestabro added a parent task for T4821: Correct calling of config mode script dependencies from firewall.py: T4820: Support for inter-config-mode script dependencies.
Nov 15 2022, 10:13 PM · VyOS 1.4 Sagitta
jestabro added a subtask for T4820: Support for inter-config-mode script dependencies: T4821: Correct calling of config mode script dependencies from firewall.py.
Nov 15 2022, 10:13 PM · VyOS 1.4 Sagitta
jestabro triaged T4821: Correct calling of config mode script dependencies from firewall.py as Normal priority.
Nov 15 2022, 10:13 PM · VyOS 1.4 Sagitta
jestabro triaged T4820: Support for inter-config-mode script dependencies as Normal priority.
Nov 15 2022, 10:07 PM · VyOS 1.4 Sagitta
a.apostoliuk renamed T4819: Allow printing Warning messages in multiple lines with \n from Allow printing Warning and Critical messages in multiple lines with \n to Allow printing Warning messages in multiple lines with \n.
Nov 15 2022, 2:43 PM · VyOS 1.4 Sagitta
jestabro closed T4808: Add details of configtree operations to migration log as Resolved.
Nov 15 2022, 2:37 PM · VyOS 1.4 Sagitta
Arc771 added a comment to T4720: Ability to configure SSH HostKeyAlgorithms.

First of all, sorry for my late reply. I was on vacation and stayed away from IT for a bit ;)

Nov 15 2022, 2:32 PM · VyOS 1.4 Sagitta
a.apostoliuk changed the status of T4819: Allow printing Warning messages in multiple lines with \n from Open to In progress.
Nov 15 2022, 1:59 PM · VyOS 1.4 Sagitta
a.apostoliuk claimed T4819: Allow printing Warning messages in multiple lines with \n.
Nov 15 2022, 1:58 PM · VyOS 1.4 Sagitta
a.apostoliuk created T4819: Allow printing Warning messages in multiple lines with \n.
Nov 15 2022, 1:58 PM · VyOS 1.4 Sagitta
e-zann added a watcher for VyOS 1.4 Sagitta: e-zann.
Nov 15 2022, 11:59 AM
e-zann removed a watcher for VyOS 1.4 Sagitta: e-zann.
Nov 15 2022, 11:59 AM

Nov 14 2022

egoistdream updated the task description for T4818: IPv6 NDP not working everytime.
Nov 14 2022, 7:08 PM · Restricted Project, VyOS 1.3 Equuleus (1.3.9), VyOS 1.4 Sagitta (1.4.0-GA)
egoistdream edited projects for T4818: IPv6 NDP not working everytime, added: VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.4).
Nov 14 2022, 7:05 PM · Restricted Project, VyOS 1.3 Equuleus (1.3.9), VyOS 1.4 Sagitta (1.4.0-GA)
egoistdream created T4818: IPv6 NDP not working everytime.
Nov 14 2022, 6:34 PM · Restricted Project, VyOS 1.3 Equuleus (1.3.9), VyOS 1.4 Sagitta (1.4.0-GA)
Viacheslav added a comment to T4812: IPsec ability to show all configured connections.

PR https://github.com/vyos/vyos-1x/pull/1657

vyos@r14:~$ show vpn ipsec connections 
Connection         State        Type    Remote address    Local TS        Remote TS    Proposal
-----------------  -----------  ------  ----------------  --------------  -----------  ---------------------------------------
OFFICE-B           established  IKEv1   192.0.2.2         -               -            AES_CBC/256/HMAC_SHA2_256_128/MODP_1024
OFFICE-B-tunnel-0  up           IPsec   192.0.2.2         192.168.0.0/24  10.0.0.0/21  AES_CBC/256/HMAC_SHA2_256_128/MODP_1024
OFFICE-B-tunnel-1  down         IPsec   192.0.2.2         192.168.1.0/24  10.0.0.0/21  -
OFFICE-B-tunnel-2  down         IPsec   192.0.2.2         192.168.2.0/24  10.0.0.0/21  -
OFFICE-C           down         IKEv1   192.0.2.2         -               -            -
OFFICE-C-tunnel-0  down         IPsec   192.0.2.2         192.168.5.0/24  10.0.0.0/21  -
vyos@r14:~$
Nov 14 2022, 5:03 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
dmbaturin added a comment to T4816: IPv4-mapped and IPv4-compatible IPv6 addresses not valid anymore.

@rcit I can assure you were never planned to explicitly disallow embedded IPv4 notation. Moreover, I thought the current validator supports it, even though we didn't have tests for it. I'll take a look!

Nov 14 2022, 4:00 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
rherold created T4817: Please add support for RFC 9234.
Nov 14 2022, 3:13 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Nov 14 2022, 3:09 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
Viacheslav changed the status of T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format from In progress to Needs testing.
Nov 14 2022, 3:09 PM · VyOS 1.4 Sagitta
Viacheslav edited projects for T4816: IPv4-mapped and IPv4-compatible IPv6 addresses not valid anymore, added: VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus.
Nov 14 2022, 2:58 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
fernando changed the status of T4813: L3VPN over GRE Tunnels from In progress to Needs testing.
Nov 14 2022, 11:37 AM · VyOS 1.4 Sagitta
rcit created T4816: IPv4-mapped and IPv4-compatible IPv6 addresses not valid anymore.
Nov 14 2022, 11:00 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
vfreex added a comment to T4815: Fix various name server config issues.

Created PR to fix this: https://github.com/vyos/vyos-1x/pull/1656
This issue also exists in 1.3 though I didn't backport it.

Nov 14 2022, 3:07 AM · VyOS 1.4 Sagitta
vfreex created T4815: Fix various name server config issues.
Nov 14 2022, 3:03 AM · VyOS 1.4 Sagitta
First
Prev
Next