Page MenuHomeVyOS Platform
Feed Search

Search
Use Results
Hide Query

Nov 23 2022

Viacheslav changed the subtype of T4793: Create warning message about disable-route-autoinstall when ipsec vti is used from "Task" to "Feature Request".
Nov 23 2022, 11:34 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
Viacheslav closed T4819: Allow printing Warning messages in multiple lines with \n as Resolved.
Nov 23 2022, 11:33 AM · VyOS 1.4 Sagitta
Viacheslav moved T4823: swanctl.conf is broken when ipsec site-to-site peer set. from Open to Finished on the VyOS 1.4 Sagitta board.
Nov 23 2022, 10:37 AM · VyOS 1.4 Sagitta

Nov 22 2022

Viacheslav changed the status of T4793: Create warning message about disable-route-autoinstall when ipsec vti is used, a subtask of T3953: IPSec with vti interfaces by default add default route to table 220, from In progress to Needs testing.
Nov 22 2022, 7:41 PM · VyOS 1.3 Equuleus (1.3.9)
Viacheslav changed the status of T4793: Create warning message about disable-route-autoinstall when ipsec vti is used from In progress to Needs testing.
Nov 22 2022, 7:41 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
Viacheslav added a project to T4833: Include wireguard peer name in interface summary report: VyOS 1.4 Sagitta.
Nov 22 2022, 12:17 PM · VyOS 1.5 Circinus (1.5-stream-2025-Q4), VyOS Rolling
Viacheslav updated subscribers of T4823: swanctl.conf is broken when ipsec site-to-site peer set..
In T4823#138040, @chesskuo wrote:

@Viacheslav

Hello sir,

In vyos-1.4-rolling-202211220318-amd64.iso, the broken syntax was fixed, but I notice a wired behavior on connection.<conn>.remote.id.

The default value on swanctl.conf will be <name> when I don't set site-to-site -> peer <name> -> authentication -> remote-id.

Nov 22 2022, 12:10 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4823: swanctl.conf is broken when ipsec site-to-site peer set. from In progress to Needs testing.
Nov 22 2022, 8:24 AM · VyOS 1.4 Sagitta

Nov 21 2022

Viacheslav moved T4812: IPsec ability to show all configured connections from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.3) board.
Nov 21 2022, 8:31 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav closed T4812: IPsec ability to show all configured connections, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, as Resolved.
Nov 21 2022, 8:31 PM · VyOS Rolling
Viacheslav closed T4812: IPsec ability to show all configured connections as Resolved.
Nov 21 2022, 8:31 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEX997215f54a95: T4812: Add op-mode Show vpn ipsec connections.
Nov 21 2022, 7:06 PM
Viacheslav committed rVYOSONEX2ac4a8a5fed9: T4823: Fix IPsec transport mode remote TS.
Nov 21 2022, 7:04 PM
Viacheslav added a comment to T4823: swanctl.conf is broken when ipsec site-to-site peer set..

PR https://github.com/vyos/vyos-1x/pull/1673

Nov 21 2022, 6:49 PM · VyOS 1.4 Sagitta
Viacheslav assigned T4832: dhcp: Add IPv6-only dhcp option support (RFC 8925) to vfreex.
Nov 21 2022, 11:36 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav added a comment to T4812: IPsec ability to show all configured connections.

PR for 1.3
https://github.com/vyos/vyatta-op-vpn/pull/34
https://github.com/vyos/vyos-1x/pull/1672

Nov 21 2022, 11:30 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav added a comment to T4818: IPv6 NDP not working everytime.

Could you provide config from several items?
How many nodes do we need to reproduce it?

Nov 21 2022, 6:25 AM · VyOS Rolling, Bugs

Nov 20 2022

Viacheslav added a project to T4812: IPsec ability to show all configured connections: VyOS 1.3 Equuleus (1.3.3).
Nov 20 2022, 10:28 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav changed the status of T4823: swanctl.conf is broken when ipsec site-to-site peer set. from Open to In progress.
Nov 20 2022, 10:22 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4812: IPsec ability to show all configured connections, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Nov 20 2022, 10:20 PM · VyOS Rolling
Viacheslav changed the status of T4812: IPsec ability to show all configured connections from In progress to Needs testing.
Nov 20 2022, 10:20 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEX2c4b6b743172: T4812: Add op-mode Show vpn ipsec connections.
Nov 20 2022, 10:04 PM
Viacheslav added a comment to T4823: swanctl.conf is broken when ipsec site-to-site peer set..

ipsec site-to-site peer <name> - it is just a connection name and is not related to the IP address
I'll take a look at TS

Nov 20 2022, 2:55 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4825: interfaces veth/veth-pairs -standalone used.

PR https://github.com/vyos/vyos-1x/pull/1668

Nov 20 2022, 1:50 PM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
Viacheslav changed the status of T4830: nat66 - Error in port translation rules from Confirmed to Needs testing.
Nov 20 2022, 9:52 AM · VyOS 1.4 Sagitta
Viacheslav closed T4827: route-map issues , not load configuration FRR as Resolved.
vyos@r14# set policy route-map FOO rule 100 action permit
[edit]
vyos@r14# set policy route-map FOO rule 50 action 'deny'
[edit]
vyos@r14# set policy route-map FOO rule 50 continue '100'
[edit]
vyos@r14# 
[edit]
vyos@r14# commit
[ policy ]
rule 50 "continue" cannot be used with action deny!
Nov 20 2022, 9:47 AM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEX42373334b1ed: T4827: Route-map state continue must be with action permit only.
Nov 20 2022, 9:40 AM
Viacheslav added a comment to T4827: route-map issues , not load configuration FRR.

PR https://github.com/vyos/vyos-1x/pull/1667

Nov 20 2022, 9:27 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4831: implement Telegraf build on arm64 / fix hardcoded x86-64 reference from Open to Needs testing.
Nov 20 2022, 7:25 AM

Nov 19 2022

Viacheslav closed T4720: Ability to configure SSH HostKeyAlgorithms, a subtask of T4712: Collaborative Protection Profile cPP for Network Devices root task, as Resolved.
Nov 19 2022, 4:00 PM · VyOS Rolling, VyOS 1.5 Circinus (1.5-stream-2025-Q4)
Viacheslav closed T4720: Ability to configure SSH HostKeyAlgorithms as Resolved.
Nov 19 2022, 4:00 PM · VyOS 1.4 Sagitta
Viacheslav closed T4826: Wrong key type is used for SSH SK public keys as Resolved.

Thanks
Don’t think that there should be a migration
As new keys were added several days ago.

Nov 19 2022, 3:56 PM · VyOS 1.4 Sagitta

Nov 18 2022

Viacheslav added a comment to T973: Create Prometheus Exporter for VyOS .
In T973#137840, @elico wrote:

@Viacheslav I want to test this, what should be done?

Nov 18 2022, 9:25 PM · VyOS Rolling, VyOS 1.5 Circinus
Viacheslav added a comment to T4720: Ability to configure SSH HostKeyAlgorithms.

@Arc771 Thanks, Could you check it in the next rolling release after 20221118?

Nov 18 2022, 8:42 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4826: Wrong key type is used for SSH SK public keys from Open to Needs testing.

@DerEnderKeks Could you check it in the next rolling release after 20221118?

Nov 18 2022, 8:40 PM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEX6458f99cc31b: T4826: Fix login pubkey key type ed25519-sk ecdsa-sk.
Nov 18 2022, 6:28 PM
Viacheslav added a comment to T4826: Wrong key type is used for SSH SK public keys.

PR https://github.com/vyos/vyos-1x/pull/1664

Nov 18 2022, 2:15 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4819: Allow printing Warning messages in multiple lines with \n from In progress to Needs testing.
Nov 18 2022, 12:25 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4827: route-map issues , not load configuration FRR.
set policy route-map MAP-ISP1-AS1001-EXPORT rule 50 action 'deny'
set policy route-map MAP-ISP1-AS1001-EXPORT rule 50 continue '100'
Nov 18 2022, 11:10 AM · VyOS 1.4 Sagitta

Nov 17 2022

Viacheslav added a comment to T4826: Wrong key type is used for SSH SK public keys.

I guess it was implemented in the T4750
Should be easy to fix

Nov 17 2022, 9:12 PM · VyOS 1.4 Sagitta
Viacheslav edited projects for T4824: PBR/FW rulesets are ignored in rfc3768-compatibility VRRP setups, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus.
Nov 17 2022, 9:59 AM · VyOS 1.3 Equuleus (1.3.6)

Nov 14 2022

Viacheslav added a comment to T4812: IPsec ability to show all configured connections.

PR https://github.com/vyos/vyos-1x/pull/1657

vyos@r14:~$ show vpn ipsec connections 
Connection         State        Type    Remote address    Local TS        Remote TS    Proposal
-----------------  -----------  ------  ----------------  --------------  -----------  ---------------------------------------
OFFICE-B           established  IKEv1   192.0.2.2         -               -            AES_CBC/256/HMAC_SHA2_256_128/MODP_1024
OFFICE-B-tunnel-0  up           IPsec   192.0.2.2         192.168.0.0/24  10.0.0.0/21  AES_CBC/256/HMAC_SHA2_256_128/MODP_1024
OFFICE-B-tunnel-1  down         IPsec   192.0.2.2         192.168.1.0/24  10.0.0.0/21  -
OFFICE-B-tunnel-2  down         IPsec   192.0.2.2         192.168.2.0/24  10.0.0.0/21  -
OFFICE-C           down         IKEv1   192.0.2.2         -               -            -
OFFICE-C-tunnel-0  down         IPsec   192.0.2.2         192.168.5.0/24  10.0.0.0/21  -
vyos@r14:~$
Nov 14 2022, 5:03 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav changed the status of T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Nov 14 2022, 3:09 PM · VyOS Rolling
Viacheslav changed the status of T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format from In progress to Needs testing.
Nov 14 2022, 3:09 PM · VyOS 1.4 Sagitta
Viacheslav edited projects for T4816: IPv4-mapped and IPv4-compatible IPv6 addresses not valid anymore, added: VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus.
Nov 14 2022, 2:58 PM · VyOS Rolling

Nov 13 2022

Viacheslav updated subscribers of T4502: Consider implementing (NAT/other) flow table offload.
Nov 13 2022, 4:37 PM · VyOS 1.4 Sagitta

Nov 12 2022

Viacheslav changed the status of T4812: IPsec ability to show all configured connections, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from Open to In progress.
Nov 12 2022, 5:30 AM · VyOS Rolling
Viacheslav changed the status of T4812: IPsec ability to show all configured connections from Open to In progress.
Nov 12 2022, 5:30 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta

Nov 11 2022

Viacheslav changed the status of T4807: Need to fix traceroute help completion, a subtask of T4496: ping vrf help does not list VRFs, from In progress to Needs testing.
Nov 11 2022, 8:18 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4807: Need to fix traceroute help completion from In progress to Needs testing.
Nov 11 2022, 8:18 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4810: Op-mode show/monitor log pppoe interface does not show any logs from Open to Needs testing.
Nov 11 2022, 8:17 AM · VyOS 1.4 Sagitta

Nov 10 2022

Viacheslav added a parent task for T4812: IPsec ability to show all configured connections: T4564: Root task for rewriting [op-mode] to vyos.opmode format.
Nov 10 2022, 7:41 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav added a subtask for T4564: Root task for rewriting [op-mode] to vyos.opmode format: T4812: IPsec ability to show all configured connections.
Nov 10 2022, 7:41 PM · VyOS Rolling
Viacheslav created T4812: IPsec ability to show all configured connections.
Nov 10 2022, 7:40 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXef365493aef6: T4789: Ability to get op-mode raw data for PPPoE L2TP SSTP IPoE.
Nov 10 2022, 6:13 PM

Nov 8 2022

Viacheslav closed T4771: Rewrite protocol BGP op-mode to vyos.opmode format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, as Resolved.
Nov 8 2022, 9:46 AM · VyOS Rolling
Viacheslav closed T4771: Rewrite protocol BGP op-mode to vyos.opmode format as Resolved.
Nov 8 2022, 9:46 AM · VyOS 1.4 Sagitta

Nov 7 2022

Viacheslav changed the status of T4799: PowerDNS >= 4.7 does not get reloaded by vyos-hostsd from Open to Needs testing.
Nov 7 2022, 7:41 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
Viacheslav changed the status of T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from Open to In progress.
Nov 7 2022, 5:53 PM · VyOS Rolling
Viacheslav changed the status of T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format from Open to In progress.

PR https://github.com/vyos/vyos-1x/pull/1643

Nov 7 2022, 5:53 PM · VyOS 1.4 Sagitta
Viacheslav created T4805: PPPoE server does not restart service if pool was changed.
Nov 7 2022, 5:25 PM · VyOS 1.4 Sagitta
Viacheslav created T4804: PPPoE server incorrect unconfigured check.
Nov 7 2022, 4:28 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4801: Support for building AWS-ready ISO from Open to In progress.
Nov 7 2022, 8:45 AM · VyOS 1.4 Sagitta

Nov 3 2022

Viacheslav changed the status of T4758: Rewrite show dhcp server to vyos.opmode format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Nov 3 2022, 7:42 PM · VyOS Rolling
Viacheslav changed the status of T4758: Rewrite show dhcp server to vyos.opmode format from In progress to Needs testing.
Nov 3 2022, 7:42 PM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEX738641a6c66d: T4758: Rewrite show DHCP(v6) server leases to vyos.opmode format.
Nov 3 2022, 7:34 PM
Viacheslav committed rVYOSONEX46eda54c88ae: T4758: Fix conflicts op-mode-standardized.
Nov 3 2022, 7:34 PM
Viacheslav placed T3953: IPSec with vti interfaces by default add default route to table 220 up for grabs.
Nov 3 2022, 7:43 AM · VyOS 1.3 Equuleus (1.3.9)
Viacheslav renamed T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format from Ability to get L2TP/PPTP sessions info in a machine readable format to Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format.
Nov 3 2022, 12:17 AM · VyOS 1.4 Sagitta

Nov 2 2022

Viacheslav created T4792: Add SSTP VPN client.
Nov 2 2022, 3:29 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4771: Rewrite protocol BGP op-mode to vyos.opmode format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Nov 2 2022, 2:40 PM · VyOS Rolling
Viacheslav changed the status of T4771: Rewrite protocol BGP op-mode to vyos.opmode format from In progress to Needs testing.
Nov 2 2022, 2:40 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4777: Ability to get logs in machine readable format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Nov 2 2022, 2:39 PM · VyOS Rolling
Viacheslav changed the status of T4777: Ability to get logs in machine readable format from In progress to Needs testing.

Requires rewriting function show to python-systemd

Nov 2 2022, 2:39 PM · VyOS 1.5 Circinus
Viacheslav committed rVYOSONEX1afb3f8bd5de: T4771: Ability to get raw format for op-mode BGP commands.
Nov 2 2022, 12:00 PM
Viacheslav committed rVYOSONEXf489c5ecdab5: T4777: Ability to get logs in machine-readable format.
Nov 2 2022, 11:49 AM

Nov 1 2022

Viacheslav added a comment to T4777: Ability to get logs in machine readable format.

PR https://github.com/vyos/vyos-1x/pull/1635

Nov 1 2022, 5:36 PM · VyOS 1.5 Circinus
Viacheslav edited projects for T4737: FRRouting/zebra 7.5.1 does not redistribute routes to other protocols, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus.
Nov 1 2022, 5:31 PM · VyOS 1.3 Equuleus (1.3.3)
Viacheslav awarded T4791: Consistent normalization of 'raw' output of op-mode scripts for CLI and API a Like token.
Nov 1 2022, 5:30 PM · VyOS 1.4 Sagitta
Viacheslav edited projects for T4790: RADIUS login does not work if sum of timeouts more than 50s , added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus.
Nov 1 2022, 5:28 PM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
Viacheslav changed the status of T4777: Ability to get logs in machine readable format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from Open to In progress.
Nov 1 2022, 3:45 PM · VyOS Rolling
Viacheslav changed the status of T4777: Ability to get logs in machine readable format from Open to In progress.
Nov 1 2022, 3:45 PM · VyOS 1.5 Circinus
Viacheslav updated the task description for T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format.
Nov 1 2022, 11:46 AM · VyOS 1.4 Sagitta
Viacheslav created T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format.
Nov 1 2022, 11:45 AM · VyOS 1.4 Sagitta
Viacheslav changed the subtype of T4788: Factory-reset/default command from "Task" to "Feature Request".

In addition to the configuration, you also need to reset all logs/custom scripts and boot from the base image.
What will be if you have several images? Should we delete all other images?
What will be if you have container images? Should we delete them?
And there are many other nuances.

Nov 1 2022, 9:02 AM · VyOS Rolling
Viacheslav added a comment to T4720: Ability to configure SSH HostKeyAlgorithms.

@Arc771
Could you provide an example of how to generate the required keys? We will test it.
But It should be a separate task

Nov 1 2022, 8:01 AM · VyOS 1.4 Sagitta
Viacheslav placed T4750: Support of higher level SSH keys (sk-ssh-ed25519) up for grabs.
Nov 1 2022, 8:00 AM · VyOS 1.4 Sagitta
Viacheslav reopened T4750: Support of higher level SSH keys (sk-ssh-ed25519) as "Open".

So the original task means that we don't have new CLI options in login keys
Missing sk-ssh-ed25519

vyos@r14# set system login user foo authentication public-keys foo type 
Possible completions:
   ssh-dss              None
   ssh-rsa              None
   ecdsa-sha2-nistp256  None
   ecdsa-sha2-nistp384  None
   ssh-ed25519          None
   ecdsa-sha2-nistp521
Nov 1 2022, 8:00 AM · VyOS 1.4 Sagitta

Oct 31 2022

Viacheslav moved T1875: Add the ability to use network address as BGP neighbor (bgp listen range) from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.3) board.
Oct 31 2022, 12:00 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav changed the status of T1875: Add the ability to use network address as BGP neighbor (bgp listen range), a subtask of T2174: Rewrite protocol BGP to new XML/Python style, from Unknown Status to Resolved.
Oct 31 2022, 12:00 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav changed the status of T1875: Add the ability to use network address as BGP neighbor (bgp listen range) from Unknown Status to Resolved.
Oct 31 2022, 12:00 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav closed T4786: Add package python3-pyhumps as Resolved.
Oct 31 2022, 11:44 AM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXa3ae74860809: T4786: Add package python3-pyhumps.
Oct 31 2022, 11:39 AM
Viacheslav added a comment to T4771: Rewrite protocol BGP op-mode to vyos.opmode format.

PR https://github.com/vyos/vyos-1x/pull/1623

Oct 31 2022, 11:06 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4786: Add package python3-pyhumps.

PR https://github.com/vyos/vyos-1x/pull/1631

Oct 31 2022, 11:05 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4786: Add package python3-pyhumps from Open to In progress.
Oct 31 2022, 10:44 AM · VyOS 1.4 Sagitta
Viacheslav edited a custom field on T4786: Add package python3-pyhumps.
Oct 31 2022, 10:41 AM · VyOS 1.4 Sagitta
Viacheslav created T4786: Add package python3-pyhumps.
Oct 31 2022, 10:41 AM · VyOS 1.4 Sagitta

Oct 29 2022

Viacheslav added a comment to T4776: NVME storage is not detected properly during installation.

@zsdc could we backport it to 1.3?

Oct 29 2022, 7:26 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
Viacheslav added a parent task for T4779: Make raw op mode command outputs use bytes for data amount values: T4564: Root task for rewriting [op-mode] to vyos.opmode format.
Oct 29 2022, 7:21 PM · VyOS 1.4 Sagitta
First
Prev
Next