show-dhcp-leases.pl under vyatta-op remains the only extant deadweight Vyatta script and needs to be removed.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed Advanced Search
Advanced Search
Advanced Search
Sep 28 2023
Sep 28 2023
jestabro changed the status of T5412: Add support for extending config-mode dependencies in supplemental package, a subtask of T4820: Support for inter-config-mode script dependencies, from Unknown Status to Resolved.
jestabro changed the status of T5412: Add support for extending config-mode dependencies in supplemental package, a subtask of T5403: Add support for extending xml cache , from Unknown Status to Resolved.
jestabro changed the status of T5412: Add support for extending config-mode dependencies in supplemental package from Unknown Status to Resolved.
diodep updated subscribers of T5049: Configure GRE over IPsec tunnel when source port is in VRF, OSPF causes GRE tunnel broken..
It seems this problem is not caused by IPsec, but it was caused by GRE implementation.
Sep 27 2023
Sep 27 2023
jestabro moved T5412: Add support for extending config-mode dependencies in supplemental package from Open to Backport Candidates on the VyOS 1.4 Sagitta board.
jestabro added a comment to T5412: Add support for extending config-mode dependencies in supplemental package.
PR for sagitta:
https://github.com/vyos/vyos-1x/pull/2315
Add option protocol, PR https://github.com/vyos/vyos-1x/pull/2313
set policy local-route rule 100 destination '192.0.2.12' set policy local-route rule 100 protocol 'tcp' set policy local-route rule 100 set table '100'
Adding use outline from PR for future reference; the dir vyos-1x-current below refers to a local copy of the vyos-1x source:
Fixed
Sep 26 2023
Sep 26 2023
Also added flowtable as nothing needs to be sequenced in there either:
https://github.com/JeffWDH/vyos-1x/commit/ac22cc054d9c15af010c824ac9a05f5cc71fc954
I have not contributed code to this project before so let me know if I've missed conventions...
Just to be clear, the build I'm going from is just my own build of current to my own build of current -- it says 1.4 because I only changed the version string to 1.5 after this build went through since i'm the only one using my build :)
I just noticed that this still is a problem. Excerpt below from downloading an upgrade:
PR for 1.3 https://github.com/vyos/vyos-1x/pull/2310
In T5497#160905, @JeffWDH wrote:1.5-rolling-202309250022
Is there a reason why some global options and some address groups (not all) are included in the output? Seems unintentional to me.
Is there a reason why some global options and some address groups (not all) are included in the output? Seems unintentional to me.
Sep 25 2023
Sep 25 2023
Shouldnt that be default for lb then in the vyos buildscripts and how does --debug affect things other than logging during build?
What is the "system update-check url" supposed to be once its implemented?
dmbaturin changed Issue type from unspecified to improvement on T5315: vrrp: add support for version 3.
Note that is is the "--debug" flag that one wants in order to see the full mksquashfs command that is executed.
Sep 24 2023
Sep 24 2023
@stingalleman As mentioned above (and confirmed in discussions earlier this week), we've had few if any reports of issues with the udev approach, so we would be very interested to hear details of your case.
When will this bug be fixed? I am having a lot of issues with this.
Apachez closed T5511: Cleanup of unused directories (and files) in order to shrink image-size as Resolved.
Verified to be working as expected.
@jestabro I havent verified it yet but then perhaps the buildscript for VyOS should be altered to include --verbose?
sarthurdev changed the status of T5614: Add conntrack helper matching on firewall from Open to In progress.
sarthurdev changed the status of T5606: IPSec VPN: Allow multiple CAs certificates from In progress to Needs testing.
sarthurdev moved T5606: IPSec VPN: Allow multiple CAs certificates from Open to In Progress on the VyOS 1.5 Circinus board.
sarthurdev changed the status of T5606: IPSec VPN: Allow multiple CAs certificates from Open to In progress.
PR removing zone-policy op-mode: https://github.com/vyos/vyos-1x/pull/2304
sarthurdev changed the status of T5376: Conntrack FTP helper does not work properly from Confirmed to Needs testing.
indrajitr updated the task description for T5612: Miscellaneous improvements and fixes for dynamic DNS configuration.
Sep 23 2023
Sep 23 2023
Sep 22 2023
Sep 22 2023
indrajitr triaged T5612: Miscellaneous improvements and fixes for dynamic DNS configuration as Normal priority.
Op-mode command reduce
PR https://github.com/vyos/vyos-1x/pull/2302
vyos@r4:~$ show conf com | match firew set firewall ipv4 input filter default-action 'accept' set firewall ipv4 input filter rule 1 action 'accept' set firewall ipv4 input filter rule 1 description 'Allow loopback' set firewall ipv4 input filter rule 1 inbound-interface interface-name 'lo' set firewall ipv4 input filter rule 1 source address '127.0.0.0/8' set firewall ipv4 input filter rule 2 action 'accept' set firewall ipv4 input filter rule 2 description 'Allow established/related' set firewall ipv4 input filter rule 2 state established 'enable' set firewall ipv4 input filter rule 2 state related 'enable' set firewall ipv4 input filter rule 60 action 'accept' set firewall ipv4 input filter rule 60 description 'Allow SSH from trusted networks' set firewall ipv4 input filter rule 60 destination port '22' set firewall ipv4 input filter rule 60 protocol 'tcp' set firewall ipv4 input filter rule 10000 action 'drop' set firewall ipv4 input filter rule 10000 description 'Drop everything else' vyos@r4:~$ vyos@r4:~$ produce firewall rule-resequence start 10 step 10
jestabro moved T5607: Adjust RAID smoketest for non-deterministic SCSI device probing from Open to Finished on the VyOS 1.4 Sagitta board.
jestabro moved T5608: Rewrite add/delete raid member to Python and remove from vyatta-op from Open to Finished on the VyOS 1.4 Sagitta board.
jestabro closed T5608: Rewrite add/delete raid member to Python and remove from vyatta-op as Resolved.
jestabro closed T5608: Rewrite add/delete raid member to Python and remove from vyatta-op, a subtask of T5609: Add util to get drive device name from id, as Resolved.
jestabro moved T5609: Add util to get drive device name from id from Open to Finished on the VyOS 1.4 Sagitta board.
jestabro closed T5609: Add util to get drive device name from id, a subtask of T5607: Adjust RAID smoketest for non-deterministic SCSI device probing, as Resolved.
Sep 21 2023
Sep 21 2023
indrajitr updated the task description for T5574: Support per-service cache management for dynamic dns providers.
Viacheslav moved T5576: Add bgp remove-private-as all option from Open to Finished on the VyOS 1.4 Sagitta board.
Viacheslav moved T5576: Add bgp remove-private-as all option from Open to Finished on the VyOS 1.5 Circinus board.
sarthurdev changed the status of T5376: Conntrack FTP helper does not work properly from Open to Confirmed.
Sep 20 2023
Sep 20 2023
jestabro triaged T5608: Rewrite add/delete raid member to Python and remove from vyatta-op as Normal priority.
jestabro triaged T5607: Adjust RAID smoketest for non-deterministic SCSI device probing as Normal priority.
Oops, sorry about that!
@Apachez It is not FQDN based
Should I ask this to you.
In T5601#160566, @vvinci00 wrote:Hello,
I need to reverse proxy TCP traffic.
the traffic is not HTTP/HTTPS
Contact our sales or ask forum
It's possible to use VyOS as reverse proxy on TCP traffic (not HTTP)?
if yes, what configuration it's necessary?
if not, do you know any solutions that can help me?
In T5601#160566, @vvinci00 wrote:Hello,
I need to reverse proxy TCP traffic.
the traffic is not HTTP/HTTPS
I need to reverse proxy TCP traffic.
the traffic is not HTTP/HTTPS
dmbaturin closed T5271: Add support for peer-fingerprint to OpenVPN, a subtask of T5269: OpenVPN non-TLS site-to-site mode deprecation, as Resolved.
Viacheslav moved T5241: Support veth interfaces to working with netns from Open to Finished on the VyOS 1.5 Circinus board.
Viacheslav moved T5241: Support veth interfaces to working with netns from Finished to Backlog on the VyOS 1.4 Sagitta board.
Viacheslav closed T5238: interface virtual-etherne - error when it doesn't use a peer , a subtask of T3829: Support separated TCP/IP stack via "ip netns", as Resolved.
set netns name mgmt
set interfaces virtual-ethernet veth1 address '10.0.0.0/31'
set interfaces virtual-ethernet veth1 peer-name 'veth10'
set interfaces virtual-ethernet veth10 address '10.0.0.1/31'
set interfaces virtual-ethernet veth10 netns 'mgmt'
set interfaces virtual-ethernet veth10 peer-name 'veth1'
Viacheslav closed T5241: Support veth interfaces to working with netns, a subtask of T3829: Support separated TCP/IP stack via "ip netns", as Resolved.
PR https://github.com/vyos/vyos-1x/pull/2295
set system sysctl parameter net.ipv4.tcp_syncookies value '1' set system sysctl parameter net.ipv4.tcp_timestamps value '1'
dmbaturin updated the task description for T5605: Do not generate keysize option in OpenVPN configs.
Viacheslav changed the status of T5602: For reverse-proxy type of load-balancing feature, support "backup" option in backends configuration from Open to In progress.