- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Apr 12 2024
Apr 12 2024
dmbaturin edited projects for T5189: bgp: add evpn anycast gateway support, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T5177: Make the chain policy configurable, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T5119: "fib" statement support for firewall and nat configuration, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T5116: Better VRF support, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T5067: Recursively change group names in firewall rules, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T5046: CLI for password complexity enforcement PAM module, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T5041: PMTU per route-based , added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T5019: Add tunnel type bareudp, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T5016: Policy Route - Add load balancer capabilities, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T5000: Extend NAT66 NPTv6 to support dynamic prefix mapping , added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4996: Exposing bgp received and advertised routes via the GraphQL HTTP-API, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4984: Firewall add mark for outgoing packets, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4982: OpenConnect should have TLS 1.0 and TLS 1.1 disabled by default, added: VyOS 1.4 Sagitta (1.4.0-epa3); removed VyOS 1.4 Sagitta (1.4.0-epa1).
dmbaturin edited projects for T4972: Support FQDN and IPv6 addresses for RADIUS servers in accel-ppp-backed protocols, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4945: Telegraf- allow the plugin to run custom-script, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4936: Certificate Auto Enrollment via SCEP, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4932: Some entries are missing or wrong in toml for builds for the arm64 architecture, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4931: Failed to build firmware for arm64, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4930: Allow WireGuard peers via DNS hostname, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4921: Miniupnpd only allows for IGDv2 while IGDv1 is mostly common used and supported, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4915: Minisign verification failure == pass??, added: VyOS 1.4 Sagitta (1.4.0-epa3); removed VyOS 1.4 Sagitta.
Viacheslav removed a project from T2818: Add the possibility to passthrough LLDP, LACP, etc.: VyOS 1.4 Sagitta.
The kernel still does not support it without patches
root@r4:/home/vyos# echo "65535" | tee /sys/class/net/br2/bridge/group_fwd_mask 65535 tee: /sys/class/net/br2/bridge/group_fwd_mask: Invalid argument root@r4:/home/vyos#
@tjh Do you still need this package? As it was relevant for ipset/iptables
iprange/stable 1.0.4+ds-2 amd64 optimizing ipsets for iptables
dmbaturin removed a project from T4909: Rewrite the NTP op mode in the new format: VyOS 1.4 Sagitta.
Viacheslav edited projects for T2942: traffic-policy does not classify by VLAN, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta, vyatta-cfg-qos.
Viacheslav removed a project from T3071: Display VLAN mode information on the network interface: VyOS 1.4 Sagitta.
Viacheslav edited projects for T6002: When using git as config-management commit-archive, comment is not used as commit message, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
Viacheslav edited projects for T6040: Implement a firewall blacklisting solution, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
commit 40b0986d66c3a0891dedbedc273b5485e5a8ca3a Author: Lucas Christian <[email protected]> Date: Sat Feb 10 11:26:47 2024 -0800
@m.korobeinikov It could be a part of the existing op-mode generate interfaces debug-archive
Can you extend this script to include the required options and create a PR?
dmbaturin edited projects for T4788: Factory-reset/default command , added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4775: A new command for Interfaces debugging, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4766: Enable Cross-Protocol Translation (relay), added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4757: General applications that support UDPTUNNEL(UDP OVER TCP,TCP OVER UDP), added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4756: General applications that support SOCAT, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4724: Support for configuring Telegraf "exec" input plugin, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin removed a project from T4712: Collaborative Protection Profile cPP for Network Devices root task: VyOS 1.4 Sagitta.
dmbaturin edited projects for T4639: Crowdsec in VyOS (Blocking only), added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin removed a project from T4627: Ability to set host part IPv6 address via interface ip token: VyOS 1.4 Sagitta.
dmbaturin removed a project from T4615: vpn sessions-columns configuration needed: VyOS 1.4 Sagitta.
dmbaturin edited projects for T4599: run vyos in lxc/lxd, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4587: wan load balance issues with 3 or more WANs, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin removed a project from T4541: Improve `strip-private` to make stripped configs reproducible: VyOS 1.4 Sagitta.
dmbaturin edited projects for T4506: Add FRR pathd Segment Routing, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4462: FRR operational-data pagination, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4394: Improve VYOS_DEBUG profiling support, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin removed a project from T4393: sstp: add support for configuring host-name (SNI): VyOS 1.4 Sagitta.
dmbaturin removed a project from T4266: Add controller for nftables bgp flowspec routes: VyOS 1.4 Sagitta.
dmbaturin edited projects for T4251: Add TLS functionality for rsyslog, added: VyOS 1.5 Circinus; removed VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta.
dmbaturin removed a project from T4247: Access Control for SSH (and other?) services: VyOS 1.4 Sagitta.
dmbaturin removed a project from T4243: Nat log - Add translated data to nat logs: VyOS 1.4 Sagitta.
Viacheslav removed a project from T6226: Add "tcp-requece inspect-delay" to reverse proxy: VyOS 1.4 Sagitta.
dmbaturin edited projects for T4238: Support for overriding XML properties in the template preprocessor, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin closed T4221: Add a template filter for converting scalars to single-item lists as Resolved.
Closes it as wontfix
Note "Note that RFC 1701 is mentioned in MikroTik's docs but there is nothing in common between the standard and the actual protocol used."
Viacheslav moved T6166: Allow the user to specify tech support report output location from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-epa3) board.
dmbaturin added a project to T6234: PPPoE-server pado-delay refactoring: VyOS 1.4 Sagitta (1.4.0-epa3).
dmbaturin edited projects for T2081: Support Ethernet over IP (EoIP) , added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4180: Support for QoS Policy Propagation via BGP (QPPB), added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T4125: Feature Request: bridge STP BPDU translation, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin removed a project from T4114: Allow software running as systemd service write coredumps: VyOS 1.4 Sagitta.
dmbaturin edited projects for T4066: [IPsec] Tuning options, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
Chrisc-c-c added a comment to T6222: VRRP rfc3768-compatibility not working correctly when resulting interface name is over 15 characters.
Makes sense. Thanks.
Viacheslav closed T3766: containers: Expanding options for networking and building containers as Resolved.
You can create /use your own images
vyos@r4:~$ generate container image foo path Possible completions: <filename> Path to Dockerfile
It looks fixed by the upstream
64 bytes from 8.8.8.8: icmp_seq=18 ttl=116 time=20.1 ms 64 bytes from 8.8.8.8: icmp_seq=19 ttl=116 time=20.1 ms 64 bytes from 8.8.8.8: icmp_seq=20 ttl=116 time=20.0 ms 64 bytes from 8.8.8.8: icmp_seq=21 ttl=116 time=20.3 ms 64 bytes from 8.8.8.8: icmp_seq=22 ttl=116 time=20.1 ms 64 bytes from 8.8.8.8: icmp_seq=23 ttl=116 time=20.1 ms 64 bytes from 8.8.8.8: icmp_seq=24 ttl=116 time=20.1 ms 64 bytes from 8.8.8.8: icmp_seq=25 ttl=116 time=20.1 ms 64 bytes from 8.8.8.8: icmp_seq=26 ttl=116 time=20.1 ms
It is not backported to 1.4
So for 1.3, it won't be backported
Viacheslav changed the subtype of T6231: Vendor Drivers for NVidia (Mellanox) Adapters from "Task" to "Feature Request".
Viacheslav changed the subtype of T6232: OVS/OVN Utilization and Integration from "Task" to "Feature Request".
Viacheslav changed the subtype of T6233: Container configurations on VyOS 1.5 prevent containers from starting from "Task" to "Bug".
Viacheslav added a comment to T5386: Execute VRRP transition script when `set high-availability disable` is commited.
It was implemented around a year ago https://github.com/vyos/vyos-1x/commit/e201454f073c9a92fb56b65f497eae55fc634521
Just need to check if it works as expected.
Viacheslav added a comment to T6222: VRRP rfc3768-compatibility not working correctly when resulting interface name is over 15 characters.
In T6222#183247, @Chrisc-c-c wrote:Wouldn’t your suggested fix to https://vyos.dev/T6223 also apply here? If the plan is to validate interface name lengths and allow custom names this would be a non-issue.
a.apostoliuk added a comment to T6148: Reset vpn ipsec command breaks tunnel and does not reset SAs that are down.
After considering, we decided that reset is the same as terminate.
If you want to add a feature start manual initialization, please create a feature request.
haakon.nore added a comment to T6148: Reset vpn ipsec command breaks tunnel and does not reset SAs that are down.
Here is an example of a perferctly valid vyos vpn config that will never recover a child SA when resetting it.
Viacheslav edited projects for T1838: Flow accounting for ppp interfaces not work, added: VyOS 1.5 Circinus; removed VyOS 1.3 Equuleus (1.3.7), test.
haakon.nore added a comment to T6148: Reset vpn ipsec command breaks tunnel and does not reset SAs that are down.
In 1.4 and 1.5 command reset vpn ipsec has a termination meaning.
No, it says reset, both the command, and auto complete output. It does not say terminate or clear. If you run a reset you do expect it to restart or re-populate in one way or another, not just stop working completley.
dex added a comment to T5386: Execute VRRP transition script when `set high-availability disable` is commited.
Just to make sure: This change is part of the current nightly build, right?