Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Oct 25 2023

c-po moved T5670: bridge: missing member interface validator from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.5) board.
Oct 25 2023, 4:36 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po moved T5670: bridge: missing member interface validator from Open to Finished on the VyOS 1.4 Sagitta board.
Oct 25 2023, 4:36 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
jamcole created T5683: reverse-proxy pki filenames mismatch.
Oct 25 2023, 3:23 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
yzguy added a comment to T5643: NAT - Allow interface groups on nat rules.

This is causing smoketests on the nightly builds to fail

Oct 25 2023, 2:06 AM · VyOS 1.5 Circinus
yzguy added a comment to T5676: NAT66 source rule with negation source/destination prefix causes TypeError.
DEBUG - Traceback (most recent call last):
DEBUG -   File "/usr/libexec/vyos/conf_mode/nat66.py", line 127, in <module>
DEBUG -     generate(c)
DEBUG -   File "/usr/libexec/vyos/conf_mode/nat66.py", line 101, in generate
DEBUG -     render(nftables_nat66_config, 'firewall/nftables-nat66.j2', nat, permission=0o755)
DEBUG -   File "/usr/lib/python3/dist-packages/vyos/template.py", line 142, in render
DEBUG -     rendered = render_to_string(template, content, formater, location)
DEBUG -                ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
DEBUG -   File "/usr/lib/python3/dist-packages/vyos/template.py", line 111, in render_to_string
DEBUG -     rendered = template.render(content)
DEBUG -                ^^^^^^^^^^^^^^^^^^^^^^^^
DEBUG -   File "/usr/lib/python3/dist-packages/jinja2/environment.py", line 1301, in render
DEBUG -     self.environment.handle_exception()
DEBUG -   File "/usr/lib/python3/dist-packages/jinja2/environment.py", line 936, in handle_exception
DEBUG -     raise rewrite_traceback_stack(source=source)
DEBUG -   File "/usr/share/vyos/templates/firewall/nftables-nat66.j2", line 28, in top-level template code
DEBUG -     {{ config | nat_rule(rule, 'source', ipv6=True) }}
DEBUG -     ^^^^^^^^^^^^^^^^^^^^^^^^^
DEBUG -   File "/usr/lib/python3/dist-packages/vyos/template.py", line 660, in nat_rule
DEBUG -     return parse_nat_rule(rule_conf, rule_id, nat_type, ipv6)
DEBUG -            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
DEBUG -   File "/usr/lib/python3/dist-packages/vyos/nat.py", line 58, in parse_nat_rule
DEBUG -     oiface = rule_conf['outbound_interface']['interface_group']
DEBUG -              ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^
DEBUG - TypeError: string indices must be integers, not 'str'
Oct 25 2023, 2:03 AM · VyOS 1.5 Circinus
Apachez added a comment to T5676: NAT66 source rule with negation source/destination prefix causes TypeError.

Plenty of nat66 related errors from last nightly build:

Oct 25 2023, 1:56 AM · VyOS 1.5 Circinus

Oct 24 2023

fernando added a project to T5307: QoS - traffic-class-map services : VyOS 1.5 Circinus.
Oct 24 2023, 8:40 PM · VyOS 1.5 Circinus
fernando added a comment to T5307: QoS - traffic-class-map services .

exactly , i'll give an example of what is the improving (or new cli) , we have a policy where we can mach different DSCPs associate with REAL TIME or VIOCE . Current in our cli , it would be something like this :

Oct 24 2023, 8:36 PM · VyOS 1.5 Circinus
n.fort committed rVYOSONEXa9e93ef54bd3: T5637: Firewall: add new rule at the end of base chains for default-actions..
Oct 24 2023, 6:53 PM
GitHub <noreply@github.com> committed rVYOSONEXcb912e98de3b: Merge pull request #2399 from nicolas-fort/T5637-sagitta (authored by dmbaturin).
Oct 24 2023, 6:53 PM
Viacheslav added a project to T5682: create more robust access controls for sshd and snmpd: VyOS 1.5 Circinus.
Oct 24 2023, 4:33 PM · VyOS Rolling
danhusan created T5682: create more robust access controls for sshd and snmpd.
Oct 24 2023, 4:21 PM · VyOS Rolling
n.fort changed the status of T5681: Interface match - Simplified and unified cli from Open to In progress.
Oct 24 2023, 2:52 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
n.fort created T5681: Interface match - Simplified and unified cli.
Oct 24 2023, 2:52 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Apachez added a comment to T5564: Both show firewall group and show firewall summary fails.

Using VyOS 1.5-rolling-202310220123.

Oct 24 2023, 2:28 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Apachez added a comment to T5675: 'show configuration all' is no different from 'show configuration'.

I think the commit made by yzguy is referencing the wrong task-id.

Oct 24 2023, 2:08 PM · VyOS Rolling, Bugs
n.fort changed the status of T5680: Allow selecting mac-groups in bridge firewall from Open to Confirmed.
Oct 24 2023, 1:21 PM · Restricted Project, VyOS 1.5 Circinus
a.hajiyev added a comment to T4867: "show bgp neighbors ... advertised-routes" and some other commands fail for IPv4 neighbors.

Checked in VyOS 1.4-rolling-202310030309

Oct 24 2023, 10:30 AM · VyOS 1.4 Sagitta
Viacheslav added a project to T3722: op-mode IPSec show vpn ike sa always shows L-TIME 0: VyOS 1.5 Circinus.
Oct 24 2023, 6:21 AM · VyOS 1.4 Sagitta (1.4.0-epa1), Restricted Project, VyOS 1.5 Circinus
a.hajiyev added a comment to T3722: op-mode IPSec show vpn ike sa always shows L-TIME 0.

LEFT router configuration

Oct 24 2023, 6:17 AM · VyOS 1.4 Sagitta (1.4.0-epa1), Restricted Project, VyOS 1.5 Circinus
Viacheslav added a comment to T5307: QoS - traffic-class-map services .

So, do you want to add a new syntax to archive the same behavior that we have for qos policy ?

Oct 24 2023, 6:16 AM · VyOS 1.5 Circinus
Viacheslav closed T5198: Firewall global settings no showing as Invalid.

The global state-policy was dropped from CLI.
Close it for now.

Oct 24 2023, 6:07 AM · VyOS 1.4 Sagitta
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX94c98a787172: T5643: nat: add interface-groups to nat. Use same cli structure for interface… (authored by n.fort).
Oct 24 2023, 4:19 AM
n.fort committed rVYOSONEX2f2c3fa22478: T5643: nat: add interface-groups to nat. Use same cli structure for interface….
Oct 24 2023, 4:17 AM
GitHub <noreply@github.com> committed rVYOSONEX90bcb2f96f32: Merge pull request #2355 from nicolas-fort/T5643 (authored by c-po).
Oct 24 2023, 4:17 AM

Oct 23 2023

fernando added a comment to T5337: MPLS/BGP: Route leak does not happen from the VPNv4 table to specific vrf.

this case was resolved lasted configuration done .

Oct 23 2023, 7:51 PM · VyOS 1.4 Sagitta
fernando closed T5337: MPLS/BGP: Route leak does not happen from the VPNv4 table to specific vrf as Resolved.
Oct 23 2023, 7:51 PM · VyOS 1.4 Sagitta
ishan created T5680: Allow selecting mac-groups in bridge firewall .
Oct 23 2023, 7:36 PM · Restricted Project, VyOS 1.5 Circinus
fernando added a comment to T5307: QoS - traffic-class-map services .

this task is a re-definition from a traffic class , I think it could be more clear if we separate tc-filter in a class-map , so we can define different profiles in our cli based on services :

Oct 23 2023, 7:28 PM · VyOS 1.5 Circinus
I-n-d-y created T5679: DHCP relay not working when same interface is used as listen- and downstream-interface.
Oct 23 2023, 7:24 PM
n.fort closed T5637: Firewall default-action log as Resolved.

For RQ for Sagitta: https://github.com/vyos/vyos-1x/pull/2399

Oct 23 2023, 4:58 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
GitHub <noreply@github.com> committed rVYOSONEXb15dbec9b5df: Merge pull request #2397 from vyos/mergify/bp/sagitta/pr-2395 (authored by dmbaturin).
Oct 23 2023, 3:12 PM
GitHub <noreply@github.com> committed rVYOSONEXabf3bea0af3e: Merge pull request #2398 from vyos/mergify/bp/sagitta/pr-2396 (authored by dmbaturin).
Oct 23 2023, 3:12 PM
ishan created T5678: Improvements in PPPoE configuration.
Oct 23 2023, 12:49 PM · VyOS 1.5 Circinus
fernando closed T5667: BGP label-unicast - enable ecmp as Resolved.
Oct 23 2023, 11:40 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
n.fort changed the status of T5564: Both show firewall group and show firewall summary fails from Needs testing to In progress.

1.5 should not have such issues.
1.4: op-mode should be working as expected. Backport for https://github.com/vyos/vyos-1x/pull/2344 failed. I'll submit PR for 1.4 for such feature.

Oct 23 2023, 11:33 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav moved T5254: Modification of any interface setting sets MTU back to default when MTU has been inherited from a bond from Open to Finished on the VyOS 1.4 Sagitta board.
Oct 23 2023, 8:55 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav moved T5299: QoS shaper ceiling does not work from Open to Finished on the VyOS 1.5 Circinus board.
Oct 23 2023, 8:54 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
a.apostoliuk moved T5254: Modification of any interface setting sets MTU back to default when MTU has been inherited from a bond from Open to Finished on the VyOS 1.5 Circinus board.
Oct 23 2023, 8:54 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav closed T5299: QoS shaper ceiling does not work, a subtask of T5048: QoS doesn't work correctly root task, as Resolved.
Oct 23 2023, 8:54 AM · VyOS 1.4 Sagitta
Viacheslav closed T5299: QoS shaper ceiling does not work as Resolved.
Oct 23 2023, 8:54 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav changed the status of T5677: show lldp neighbors generates TypeError when neighbor has no `descr` from Open to Needs testing.
Oct 23 2023, 7:30 AM · VyOS 1.5 Circinus
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXe7c027e53e7a: T5677: lldp shows empty platform if descr not in lldpctl output (authored by yzguy).
Oct 23 2023, 4:24 AM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX093aa7efd550: T5675: use addr_prefix instead of addr in NAT66 rule (authored by yzguy).
Oct 23 2023, 4:24 AM
yzguy committed rVYOSONEX0c046a1f5a02: T5675: use addr_prefix instead of addr in NAT66 rule.
Oct 23 2023, 4:23 AM
GitHub <noreply@github.com> committed rVYOSONEX9c029b71cbf8: Merge pull request #2395 from yzguy/yzguy/T5676 (authored by c-po).
Oct 23 2023, 4:23 AM
yzguy committed rVYOSONEXfca8cce1c114: T5677: lldp shows empty platform if descr not in lldpctl output.
Oct 23 2023, 4:23 AM
GitHub <noreply@github.com> committed rVYOSONEX7b0d208632f3: Merge pull request #2396 from yzguy/yzguy/T5677 (authored by c-po).
Oct 23 2023, 4:23 AM
yzguy updated the task description for T5677: show lldp neighbors generates TypeError when neighbor has no `descr`.
Oct 23 2023, 4:07 AM · VyOS 1.5 Circinus
yzguy created T5677: show lldp neighbors generates TypeError when neighbor has no `descr`.
Oct 23 2023, 4:04 AM · VyOS 1.5 Circinus
yzguy renamed T5676: NAT66 source rule with negation source/destination prefix causes TypeError from NAT66 rule with negation source/destination prefix errors to NAT66 source rule with negation source/destination prefix causes TypeError.
Oct 23 2023, 3:42 AM · VyOS 1.5 Circinus
yzguy updated the task description for T5676: NAT66 source rule with negation source/destination prefix causes TypeError.
Oct 23 2023, 3:00 AM · VyOS 1.5 Circinus
yzguy created T5676: NAT66 source rule with negation source/destination prefix causes TypeError.
Oct 23 2023, 2:59 AM · VyOS 1.5 Circinus
zarianu updated the task description for T5675: 'show configuration all' is no different from 'show configuration'.
Oct 23 2023, 12:32 AM · VyOS Rolling, Bugs

Oct 22 2023

zarianu created T5675: 'show configuration all' is no different from 'show configuration'.
Oct 22 2023, 9:49 PM · VyOS Rolling, Bugs
Viacheslav changed the status of T5299: QoS shaper ceiling does not work, a subtask of T5048: QoS doesn't work correctly root task, from Open to Needs testing.
Oct 22 2023, 8:05 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T5299: QoS shaper ceiling does not work from Open to Needs testing.
Oct 22 2023, 8:05 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
nser77 added a comment to T840: VRRP V3 backup router sending ND RA.

Hi all, looks like that thanks to: https://github.com/acassen/keepalived/issues/2296, keepalived upstream repository fixed this issue with commit: https://github.com/acassen/keepalived/commit/81eb41fb12afe6ef56a6fd79cd4cb3cb5362c34b

Oct 22 2023, 6:19 PM · VyOS Rolling
GitHub <noreply@github.com> committed rVYOSONEX2007a883125c: Merge pull request #2394 from vyos/mergify/bp/sagitta/pr-2391 (authored by c-po).
Oct 22 2023, 5:33 PM
c-po closed T5254: Modification of any interface setting sets MTU back to default when MTU has been inherited from a bond as Resolved.
Oct 22 2023, 5:04 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po closed T5671: vxlan: change port to IANA assigned default port as Resolved.
Oct 22 2023, 5:03 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
c-po moved T5671: vxlan: change port to IANA assigned default port from Open to Finished on the VyOS 1.4 Sagitta board.
Oct 22 2023, 5:03 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
GitHub <noreply@github.com> committed rVYOSONEX282c32d51e2d: Merge pull request #2392 from vyos/mergify/bp/sagitta/pr-2386 (authored by c-po).
Oct 22 2023, 5:03 PM
GitHub <noreply@github.com> committed rVYOSONEX3356e26a6a58: Merge branch 'sagitta' into mergify/bp/sagitta/pr-2386 (authored by c-po).
Oct 22 2023, 5:03 PM
GitHub <noreply@github.com> committed rVYOSONEX4595bca31a6f: Merge pull request #2393 from vyos/mergify/bp/sagitta/pr-2277 (authored by c-po).
Oct 22 2023, 5:02 PM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX7fdf77b6b339: T5299: Add missed option ceiling for QoS shaper (authored by Viacheslav).
Oct 22 2023, 4:54 PM
Viacheslav committed rVYOSONEX5218241e6293: T5299: Add missed option ceiling for QoS shaper.
Oct 22 2023, 4:53 PM
GitHub <noreply@github.com> committed rVYOSONEX9af3a9e64456: Merge pull request #2391 from sever-sever/T5299 (authored by Viacheslav).
Oct 22 2023, 4:53 PM
c-po committed rVYOSONEXddbcc96d216c: bonding: T5254: Fixed changing ethernet when it is a bond member (authored by a.apostoliuk).
Oct 22 2023, 4:50 PM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXc7b1885bd5ae: bonding: T5254: Fixed changing ethernet when it is a bond member (authored by a.apostoliuk).
Oct 22 2023, 4:47 PM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX48da0f4fc96c: vxlan: T5671: warn about changed default port number (authored by c-po).
Oct 22 2023, 4:44 PM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX162bd820d6cb: vxlan: T5671: change port to IANA assigned default port (authored by c-po).
Oct 22 2023, 4:44 PM
c-po committed rVYOSONEX6db8d3ded19f: vxlan: T5671: change port to IANA assigned default port.
Oct 22 2023, 4:44 PM
GitHub <noreply@github.com> committed rVYOSONEXde02d7815be4: Merge pull request #2386 from c-po/vxlan-t5671 (authored by c-po).
Oct 22 2023, 4:44 PM
c-po committed rVYOSONEX719a3622f35a: vxlan: T5671: warn about changed default port number.
Oct 22 2023, 4:44 PM
Viacheslav renamed T5646: QoS policy limiter broken if class without match from QoS policy limiter broken to QoS policy limiter broken if class without match.
Oct 22 2023, 2:18 PM · VyOS 1.4 Sagitta (1.4.0-epa2), VyOS 1.5 Circinus
fernando added a comment to T5674: AWS add Simple Systems Manager (SSM) Agent .

I think we can do something similar to it : https://alestic.com/2018/12/aws-ssm-parameter-store-git-key/

Oct 22 2023, 1:35 PM · VyOS Rolling
Viacheslav added a comment to T5299: QoS shaper ceiling does not work.

PR https://github.com/vyos/vyos-1x/pull/2391

Oct 22 2023, 1:25 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav created T5674: AWS add Simple Systems Manager (SSM) Agent .
Oct 22 2023, 11:34 AM · VyOS Rolling
nser77 added a comment to T2444: Remove keepalived in favor of FRR for VRRP.

various tracking (interface etc)

Oct 22 2023, 10:51 AM
nser77 added a comment to T1185: Firewall rulesets are ignored in RFC-compliant VRRP setups.

Hi all, sorry for joining an old conversation, but I think it is a bit confused here and looks like you are trying to work-around the VRRP protocol specification with the argument rfc3768_compatibility - but I'm note sure to understand such behavior and if it is the best way.

Oct 22 2023, 10:11 AM
hronro added a comment to T5673: Enable `CONFIG_DEBUG_INFO_DWARF5` and `CONFIG_DEBUG_INFO_BTF` in the Linux kernel.
In T5673#162681, @Apachez wrote:

Should debug code really be part of production releases?

Wouldnt it be sufficient that you can enable this on your own if you want a debug build being made?

Oct 22 2023, 9:47 AM
Apachez added a comment to T5673: Enable `CONFIG_DEBUG_INFO_DWARF5` and `CONFIG_DEBUG_INFO_BTF` in the Linux kernel.

Should debug code really be part of production releases?

Oct 22 2023, 8:48 AM
hronro created T5673: Enable `CONFIG_DEBUG_INFO_DWARF5` and `CONFIG_DEBUG_INFO_BTF` in the Linux kernel.
Oct 22 2023, 6:40 AM
dmbaturin committed rVYOSONEX4651bd41ddef: scripts: T5672: remove the conf mode node.def importer.
Oct 22 2023, 4:39 AM
GitHub <noreply@github.com> committed rVYOSONEX5163cc9e48a8: Merge pull request #2390 from dmbaturin/T5672-remove-node.def-converter (authored by Viacheslav).
Oct 22 2023, 4:39 AM

Oct 21 2023

c-po committed rVYOSONEX9b183a219ee1: smoketest: T2897: add basic cluster config.
Oct 21 2023, 6:51 PM
Apachez claimed T5641: Enable compression of kernel modules.
Oct 21 2023, 3:51 PM
Viacheslav added a comment to T5018: Redirect to IFB removed after change in qos policy.

@rayzilt Could you re-check and close it if solved?

Oct 21 2023, 3:03 PM · VyOS 1.4 Sagitta
dmbaturin added a comment to T5641: Enable compression of kernel modules.

Could you try it locally and see what happens?

Oct 21 2023, 1:53 PM
Viacheslav awarded T5671: vxlan: change port to IANA assigned default port a Like token.
Oct 21 2023, 1:48 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav changed the status of T5541: Zone-Based Firewalling in VyOS Sagitta 1.4 from In progress to Needs testing.
Oct 21 2023, 1:48 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
dmbaturin closed T5414: dhcp-server does not allow valid bootfile-names as Resolved.

@Apachez I suppose it is.

Oct 21 2023, 1:41 PM · VyOS 1.4 Sagitta
dmbaturin closed T5670: bridge: missing member interface validator as Resolved.
Oct 21 2023, 1:37 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
dmbaturin claimed T5504: Make it possible to set more than one peer-address in unicast VRRP.
Oct 21 2023, 1:37 PM · VyOS 1.4 Sagitta (1.4.0-epa2), VyOS 1.3 Equuleus (1.3.7)
dmbaturin closed T5617: Add an option to exclude single values to the numeric validator, a subtask of T5616: Firewall mark - Add capabilities for matching firewall mark, as Resolved.
Oct 21 2023, 1:33 PM · VyOS 1.5 Circinus
dmbaturin closed T5617: Add an option to exclude single values to the numeric validator as Resolved.
Oct 21 2023, 1:32 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
dmbaturin added a comment to T5603: Deprecate vyatta-biosdevname package.
  • biosdevname is called by scripts in the initrd, so we can't remove it just yet.
  • it's not completely abandoned and had quite a few releases since the point when Vyatta forked it.
  • I sent a PR to allow biosdevname to run in VMs (that's the only thing that vyatta-biosdevname has and that's used in scripts): https://github.com/dell/biosdevname/pull/12
Oct 21 2023, 1:32 PM · VyOS 1.5 Circinus
dmbaturin closed T4770: Rewrite OpenVPN op-mode to vyos.opmode format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, as Resolved.
Oct 21 2023, 1:16 PM · VyOS Rolling
dmbaturin closed T4770: Rewrite OpenVPN op-mode to vyos.opmode format as Resolved.
Oct 21 2023, 1:16 PM · VyOS 1.4 Sagitta
First
Prev
Next