Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Sep 13 2023

Viacheslav committed rVYOSONEXd72024b11e12: T5576: Add BGP remove-private-as all option.
Sep 13 2023, 5:17 PM
GitHub <noreply@github.com> committed rVYOSONEXe8fb2d22c45f: Merge pull request #2252 from sever-sever/T5576 (authored by c-po).
Sep 13 2023, 5:17 PM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXde70690fb9b6: op-mode: T5581: add "show ip nht" command (IPv4 nexthop tracking table) (authored by c-po).
Sep 13 2023, 5:14 PM
c-po committed rVYOSONEX138e60831842: op-mode: T5581: add "show ip nht" command (IPv4 nexthop tracking table).
Sep 13 2023, 5:13 PM
GitHub <noreply@github.com> committed rVYOSONEXa8fecd96b9c3: Merge pull request #2257 from c-po/t5581-ip-nht (authored by c-po).
Sep 13 2023, 5:13 PM
c-po added a comment to T5581: Add "show ip nht" op-mode command (IPv4 nexthop tracking table).

PR https://github.com/vyos/vyos-1x/pull/2257

Sep 13 2023, 4:58 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po moved T5581: Add "show ip nht" op-mode command (IPv4 nexthop tracking table) from Open to Finished on the VyOS 1.5 Circinus board.
Sep 13 2023, 4:58 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po moved T5581: Add "show ip nht" op-mode command (IPv4 nexthop tracking table) from Backlog to In Progress on the VyOS 1.4 Sagitta board.
Sep 13 2023, 4:58 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po moved T5581: Add "show ip nht" op-mode command (IPv4 nexthop tracking table) from Open to Backlog on the VyOS 1.4 Sagitta board.
Sep 13 2023, 4:58 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po changed the status of T5581: Add "show ip nht" op-mode command (IPv4 nexthop tracking table) from Open to In progress.
Sep 13 2023, 4:55 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po created T5581: Add "show ip nht" op-mode command (IPv4 nexthop tracking table).
Sep 13 2023, 4:54 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
fernando added a comment to T4919: TPM-backed config encryption.

@sdev greats !!!

Sep 13 2023, 4:39 PM · VyOS Rolling, VyOS 1.5 Circinus
ServerForge created T5580: vyos-1x package builds as 1.5 on sagitta branch.
Sep 13 2023, 3:40 PM · VyOS 1.4 Sagitta
n.fort added a subtask for T5160: Firewall refactor: T5579: Log firewall - Wrong command after firewall refactor.
Sep 13 2023, 3:07 PM · VyOS 1.4 Sagitta
n.fort added a parent task for T5579: Log firewall - Wrong command after firewall refactor: T5160: Firewall refactor.
Sep 13 2023, 3:07 PM · VyOS 1.5 Circinus
n.fort changed the status of T5579: Log firewall - Wrong command after firewall refactor from Open to Confirmed.
Sep 13 2023, 3:07 PM · VyOS 1.5 Circinus
n.fort created T5579: Log firewall - Wrong command after firewall refactor.
Sep 13 2023, 3:07 PM · VyOS 1.5 Circinus
Apachez added a comment to T5575: ARP/NDP table-size isnt set properly.

PR created: https://github.com/vyos/vyos-1x/pull/2255

Sep 13 2023, 12:08 PM · VyOS 1.5 Circinus
Apachez added a comment to T5575: ARP/NDP table-size isnt set properly.

Turns out that the values who override the vyos-config values are set in /etc/sysctl.d/30-vyos-router.conf:

Sep 13 2023, 11:50 AM · VyOS 1.5 Circinus
Apachez claimed T5575: ARP/NDP table-size isnt set properly.
Sep 13 2023, 11:48 AM · VyOS 1.5 Circinus
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX67e95d828747: frr: T5239: T2061: prevent writing logs to /var/log/frr/frr.log (authored by c-po).
Sep 13 2023, 11:42 AM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX3bde0d7b96cb: frr: T5239: fix process startup order (authored by c-po).
Sep 13 2023, 11:42 AM
c-po committed rVYOSONEXdf74a09b80df: frr: T5239: fix process startup order.
Sep 13 2023, 11:41 AM
c-po committed rVYOSONEXd4b9b2aa5f5d: frr: T5239: T2061: prevent writing logs to /var/log/frr/frr.log.
Sep 13 2023, 11:41 AM
GitHub <noreply@github.com> committed rVYOSONEX1bc808742f55: Merge pull request #2245 from c-po/t5239-frr (authored by c-po).
Sep 13 2023, 11:41 AM
sarthurdev changed the status of T5571: Firewall does not delete networks from the table raw from Open to Confirmed.
Sep 13 2023, 10:49 AM · VyOS 1.5 Circinus
n.fort changed the status of T5561: NAT - Inbound or outbound interface should not be mandatory from Confirmed to In progress.

PR: https://github.com/vyos/vyos-1x/pull/2253

Sep 13 2023, 10:47 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Apachez added a comment to T5575: ARP/NDP table-size isnt set properly.

I can confirm that setting these values AFTER boot (and doing commit) they will be properly set.

Sep 13 2023, 10:42 AM · VyOS 1.5 Circinus
Viacheslav changed the status of T5576: Add bgp remove-private-as all option from Open to In progress.
Sep 13 2023, 10:19 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav edited projects for T5578: "ikev2-reauth" description contains outdated information, added: VyOS 1.3 Equuleus (1.3.5); removed VyOS 1.3 Equuleus.
Sep 13 2023, 9:48 AM · VyOS 1.3 Equuleus (1.3.5)
Viacheslav added a comment to T5576: Add bgp remove-private-as all option.

PR for 1.3.x https://github.com/vyos/vyatta-cfg-quagga/pull/102
PR for the current https://github.com/vyos/vyos-1x/pull/2252

Sep 13 2023, 9:47 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta, VyOS 1.5 Circinus
sarthurdev added a comment to T4919: TPM-backed config encryption.

@fernando See here: https://github.com/vyos/vyos-build/pull/297

Sep 13 2023, 9:35 AM · VyOS Rolling, VyOS 1.5 Circinus
a.apostoliuk changed the status of T5578: "ikev2-reauth" description contains outdated information from Open to In progress.
Sep 13 2023, 9:16 AM · VyOS 1.3 Equuleus (1.3.5)
a.apostoliuk created T5578: "ikev2-reauth" description contains outdated information.
Sep 13 2023, 9:16 AM · VyOS 1.3 Equuleus (1.3.5)
zsdc added a parent task for T5554: Disable sudo for PAM RADIUS: T5577: Optimize PAM configs for RADIUS/TACACS+.
Sep 13 2023, 8:08 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
zsdc added a parent task for T5570: PAM config RADIUS ignore for default and success: T5577: Optimize PAM configs for RADIUS/TACACS+.
Sep 13 2023, 8:08 AM · VyOS 1.4 Sagitta (1.4.1)
zsdc added subtasks for T5577: Optimize PAM configs for RADIUS/TACACS+: T5570: PAM config RADIUS ignore for default and success, T5554: Disable sudo for PAM RADIUS.
Sep 13 2023, 8:08 AM · VyOS 1.4 Sagitta
zsdc created T5577: Optimize PAM configs for RADIUS/TACACS+.
Sep 13 2023, 8:07 AM · VyOS 1.4 Sagitta
Viacheslav created T5576: Add bgp remove-private-as all option.
Sep 13 2023, 8:03 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Apachez created T5575: ARP/NDP table-size isnt set properly.
Sep 13 2023, 7:54 AM · VyOS 1.5 Circinus
c-po added a comment to T5523: CVE-2023-38802.

Which VyOS 1.4-rolling will have the fixes made by FRRouting?

Sep 13 2023, 6:22 AM · VyOS 1.3 Equuleus
c-po merged T5523: CVE-2023-38802 into T5557: bgp: Use treat-as-withdraw for tunnel encapsulation attribute CVE-2023-38802.
Sep 13 2023, 6:16 AM · VyOS 1.3 Equuleus (1.3.4)
c-po merged task T5523: CVE-2023-38802 into T5557: bgp: Use treat-as-withdraw for tunnel encapsulation attribute CVE-2023-38802.
Sep 13 2023, 6:16 AM · VyOS 1.3 Equuleus
syncer assigned T5573: Fix ddclient cache entries to indrajitr.
Sep 13 2023, 3:13 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
indrajitr updated the task description for T5573: Fix ddclient cache entries.
Sep 13 2023, 3:04 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
indrajitr triaged T5574: Support per-service cache management for dynamic dns providers as Normal priority.
Sep 13 2023, 2:08 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
indrajitr created T5573: Fix ddclient cache entries.
Sep 13 2023, 1:38 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Apachez added a comment to T5572: Add capability for sending Gratuitous ARP (GARP) and the equal for IPv6.

Turns out to exist an RFC for this regarding IPv6 along with a naming:

Sep 13 2023, 12:54 AM · VyOS 1.5 Circinus
Apachez created T5572: Add capability for sending Gratuitous ARP (GARP) and the equal for IPv6.
Sep 13 2023, 12:35 AM · VyOS 1.5 Circinus

Sep 12 2023

Apachez renamed T5559: Selective proxy-arp/proxy-ndp when doing SNAT/DNAT from Selective proxy-arp when doing SNAT to Selective proxy-arp/proxy-ndp when doing SNAT/DNAT.
Sep 12 2023, 11:26 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
syncer reassigned T5523: CVE-2023-38802 from v.huti to c-po.
Sep 12 2023, 11:16 PM · VyOS 1.3 Equuleus
fernando reopened T3655: NAT doesn't work correctly with VRF as "Needs testing".
Sep 12 2023, 6:59 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
fernando added a comment to T3655: NAT doesn't work correctly with VRF.

command on 1.5 :

Sep 12 2023, 6:36 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
jestabro added a comment to T5522: Add logging for which mksquashfs syntax is being used.

@Apachez note that all lb commands take --debug and --verbose: using 'lb build --debug' in scripts/build-vyos-image will output the full mksquashfs command.

Sep 12 2023, 6:36 PM · VyOS Rolling
vfreex committed rVYOSONEXded55a82a00d: T3655: Fix NAT problem with VRF.
Sep 12 2023, 6:22 PM
GitHub <noreply@github.com> committed rVYOSONEX3d9a0b02d031: Merge pull request #2237 from vfreex/fix-nat-problem-with-vrf-sagitta (authored by c-po).
Sep 12 2023, 6:17 PM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX5056cfb7825d: T4309: Conntrack ignore fix to handle interface any (authored by Viacheslav).
Sep 12 2023, 6:13 PM
Viacheslav committed rVYOSONEXb730015945dc: T4309: Conntrack ignore fix to handle interface any.
Sep 12 2023, 6:11 PM
GitHub <noreply@github.com> committed rVYOSONEX4a51fb08e73d: Merge pull request #2249 from sever-sever/T4309 (authored by c-po).
Sep 12 2023, 6:11 PM
fernando closed T3655: NAT doesn't work correctly with VRF as Unknown Status.
Sep 12 2023, 4:17 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
fernando updated subscribers of T3655: NAT doesn't work correctly with VRF.

@vfreex I've tested in my labs related this issues , I can confirm that it work as expected . this original zone solved the problem when there was a src-nat /dst-nat with different VRFs or leaking with them ,Thanks you for this contribution .

Sep 12 2023, 4:16 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
yun added a comment to T2405: commit archive to GIT.
In T2405#159522, @Apachez wrote:

Note that command = command.lstrip() for def cmd in python/vyos/utils/process.py was reverted yesterday.

Causes funny problems during smoketests.

Sep 12 2023, 3:34 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav created T5571: Firewall does not delete networks from the table raw.
Sep 12 2023, 3:09 PM · VyOS 1.5 Circinus
Apachez added a comment to T2405: commit archive to GIT.

Note that command = command.lstrip() for def cmd in python/vyos/utils/process.py was reverted yesterday.

Sep 12 2023, 1:46 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
yun added a comment to T2405: commit archive to GIT.

I created a PR for Git support here: https://github.com/vyos/vyos-1x/pull/2241

Sep 12 2023, 1:22 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Apachez added a comment to T5522: Add logging for which mksquashfs syntax is being used.

I have created a PR upstream which hopefully resolves why the logging didnt work as expected in VyOS (since the binary_rootfs in vyos-live-build isnt used by the nightly build who uses vyos-build and the deb-package of live-build from Debian 12.x (bookworm)):

Sep 12 2023, 1:18 PM · VyOS Rolling
n.fort removed a project from T4072: Feature Request: Firewall on bridge interfaces: VyOS 1.3 Equuleus (1.3.5).
Sep 12 2023, 12:16 PM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXd028be894fcb: T5562: Cleanup netns for smoketest load-balancing wan.
Sep 12 2023, 10:19 AM
GitHub <noreply@github.com> committed rVYOSONEX87ab93326dfd: Merge pull request #2247 from sever-sever/T5562-sag (authored by Viacheslav).
Sep 12 2023, 10:19 AM
n.fort changed the status of T4072: Feature Request: Firewall on bridge interfaces from In progress to Needs testing.

op-mode: https://github.com/vyos/vyos-1x/pull/2242

Sep 12 2023, 10:17 AM · VyOS 1.4 Sagitta
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX63cf32004caf: T5562: Cleanup netns for smoketest load-balancing wan (authored by Viacheslav).
Sep 12 2023, 7:48 AM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX5ecfa73fbb6d: T4754: Fix path for popen moved to utils process (authored by Viacheslav).
Sep 12 2023, 7:48 AM
GitHub <noreply@github.com> committed rVYOSONEXb47a866c2fdf: Merge pull request #2244 from vyos/mergify/bp/sagitta/pr-2235 (authored by Viacheslav).
Sep 12 2023, 7:43 AM

Sep 11 2023

aga added a comment to T5513: Anomalies in show firewall command after refactoring.

100% agree. If this isn't too big of a hassle to implement, I would very much appreciate the approach/workaround of @Apachez, until nftables supports this feature ootb...

Sep 11 2023, 9:29 PM · VyOS 1.4 Sagitta
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXb0a9782a4a61: T5564: Fix show firewall group and show firewall summary (authored by Viacheslav).
Sep 11 2023, 7:34 PM
GitHub <noreply@github.com> committed rVYOSONEXb2c3ff90c605: Create test.txt (authored by c-po).
Sep 11 2023, 7:10 PM
c-po committed rVYOSONEXcd3dda75534a: GitHub: fix workflow folder for MergifyIo.
Sep 11 2023, 7:07 PM
GitHub <noreply@github.com> committed rVYOSONEX13a352e9357e: GitHub: add MergifyIo action (authored by c-po).
Sep 11 2023, 7:07 PM
Apachez added a comment to T5513: Anomalies in show firewall command after refactoring.

Checked with #netfilter irc-channel.

Sep 11 2023, 6:21 PM · VyOS 1.4 Sagitta
jestabro changed the status of T5353: config-mgmt: normalize archive updates and commit log entries, a subtask of T5347: Compare commit revision bug, from Unknown Status to Resolved.
Sep 11 2023, 5:32 PM · VyOS 1.4 Sagitta
jestabro changed the status of T5353: config-mgmt: normalize archive updates and commit log entries, a subtask of T5551: Missing check for boot_configuration_complete raises error in vyos-save-config.py, from Unknown Status to Resolved.
Sep 11 2023, 5:32 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
jestabro changed the status of T5353: config-mgmt: normalize archive updates and commit log entries from Unknown Status to Resolved.
Sep 11 2023, 5:32 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
jestabro changed the status of T5551: Missing check for boot_configuration_complete raises error in vyos-save-config.py from Unknown Status to Resolved.
Sep 11 2023, 5:31 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
jestabro committed rVYOSONEXc1a078e5e4dd: config-mgmt: T5353: correct update check during boot.
Sep 11 2023, 5:29 PM
jestabro committed rVYOSONEX667e96856856: config-mgmt: T5353: only add log entry if archiving.
Sep 11 2023, 5:29 PM
jestabro committed rVYOSONEXc35a66f327b0: config-mgmt: T5353: after updated save-config, one can include init rev.
Sep 11 2023, 5:29 PM
jestabro committed rVYOSONEXd75a7d17a98b: config-mgmt: T5556: fix bug in revision to archive update.
Sep 11 2023, 5:29 PM
GitHub <noreply@github.com> committed rVYOSONEX2103b5522d21: Merge pull request #2215 from jestabro/T5353-sagitta (authored by jestabro).
Sep 11 2023, 5:29 PM
roedie added a comment to T5080: Disable conntrack by default.

I just tested this with a firewall config with no connection tracking config enabled, still the conntrack modules are loaded and used.

Sep 11 2023, 2:52 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
swanduron added a comment to T5376: Conntrack FTP helper does not work properly.

The same situation as @svd135 . The passive FTP data connection now is stopped by the problem with FTP ALG.

Sep 11 2023, 1:15 PM · VyOS 1.4 Sagitta (1.4.0-epa1), VyOS 1.5 Circinus
alainlamar closed T5567: vyos-1x: webproxy: maximum-object-size allowed ranges not in sync with Equuleus as Resolved.
Sep 11 2023, 12:43 PM · VyOS 1.4 Sagitta
c-po committed rVYOSONEXd2e7eafe84c1: init: remove dependency on frr.service - required for router shutdown.
Sep 11 2023, 12:15 PM
c-po committed rVYOSONEXaf398c51f7d0: init: remove dependency on frr.service - required for router shutdown.
Sep 11 2023, 12:14 PM
Apachez added a comment to T5564: Both show firewall group and show firewall summary fails.

I was thinking about N/D and personally I would prefer "None" to be listed for the various "show firewall" commands instead of N/D.

Sep 11 2023, 10:34 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav created T5570: PAM config RADIUS ignore for default and success.
Sep 11 2023, 10:34 AM · VyOS 1.4 Sagitta (1.4.1)
Apachez added a comment to T5513: Anomalies in show firewall command after refactoring.

Resolved by: https://vyos.dev/T5564

Sep 11 2023, 10:32 AM · VyOS 1.4 Sagitta
Apachez added a comment to T5564: Both show firewall group and show firewall summary fails.

This can be put to resolved when the backports are confirmed aswell.

Sep 11 2023, 10:20 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav moved T5564: Both show firewall group and show firewall summary fails from Open to Backport Candidates on the VyOS 1.5 Circinus board.
Sep 11 2023, 9:58 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav added a project to T5564: Both show firewall group and show firewall summary fails: VyOS 1.4 Sagitta.
Sep 11 2023, 9:58 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
n.fort added a comment to T5564: Both show firewall group and show firewall summary fails.

N/D == not defined

Sep 11 2023, 9:54 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
First
Prev
Next