Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

May 21 2024

Viacheslav added a comment to T6366: CGNAT add the ability to show allocation per external or internal address.

PR https://github.com/vyos/vyos-1x/pull/3490

May 21 2024, 8:18 AM · VyOS 1.5 Circinus
Viacheslav added a comment to T5584: System cannot boot with commit-arachive location sftp in some cases.

@jestabro It was a report from the user; unfortunately, I do not have more details.

May 21 2024, 6:26 AM · Restricted Project, VyOS 1.3 Equuleus (1.3.9)
c-po added a comment to T5584: System cannot boot with commit-arachive location sftp in some cases.

I remember there was an ancient bug where the commit-archive rewrite did not come with a timeout. As routing might not have been converged during boot, that could explain the lock.

May 21 2024, 5:26 AM · Restricted Project, VyOS 1.3 Equuleus (1.3.9)

May 20 2024

jestabro added a comment to T5584: System cannot boot with commit-arachive location sftp in some cases.

Naive attempts to reproduce on 1.3.3 are not successful, yet (Vmware; KVM), but will continue to investigate; any other information is welcome @Viacheslav, should you recall ...

May 20 2024, 7:11 PM · Restricted Project, VyOS 1.3 Equuleus (1.3.9)
c-po moved T6367: op-mode: commit-archive: TypeError: attribute name must be string, not 'NoneType' from Need Triage to In Progress on the VyOS 1.4 Sagitta (1.4.0-GA) board.
May 20 2024, 6:32 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
c-po moved T6367: op-mode: commit-archive: TypeError: attribute name must be string, not 'NoneType' from Need Triage to Finished on the VyOS 1.5 Circinus board.
May 20 2024, 6:32 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
c-po added a comment to T6367: op-mode: commit-archive: TypeError: attribute name must be string, not 'NoneType'.

https://github.com/vyos/vyos-1x/pull/3489

May 20 2024, 6:31 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
matthewr added a comment to T6076: [1.3.3->1.4.0-epa1 Migration] Most of config missing.

@jestabro This was the first of some issues I reported with migration to 1.4.0. The report is (with apologies) a bit vague as much did not work and it took more effort to identify the causes. It turned out to be a combination of things, of which T6131 was only part.

May 20 2024, 4:13 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
jestabro changed the status of T6076: [1.3.3->1.4.0-epa1 Migration] Most of config missing from Needs testing to Needs reporter action.

@matthewr Were all issues of this task resolved by the above discussions and the fix for T6131 ?

May 20 2024, 3:06 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
zsdc updated subscribers of T5940: [1.3.5 -> 1.4.0-RC1 Migration] commit-archive Fails to Migrate.

@jestabro could it be that the validator needs an update to allow special characters in the user/password field?
https://github.com/vyos/vyos-utils/blob/0d57cc9a266fe8d6fc87df5a769f42b4a45c7221/src/url.ml

May 20 2024, 1:56 PM · VyOS 1.4 Sagitta (1.4.0-GA)
HollyGurza changed Version from - to 1.5-rolling-202405080016 on T6373: QoS Policy Limiter - classes for marked traffic do not work.
May 20 2024, 12:07 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
HollyGurza changed the subtype of T6373: QoS Policy Limiter - classes for marked traffic do not work from "Task" to "Bug".
May 20 2024, 12:07 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
HollyGurza created T6373: QoS Policy Limiter - classes for marked traffic do not work.
May 20 2024, 12:06 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
natali-rs1985 claimed T6227: Rewrite show conntrack-sync cache internal to use tabulate output.
May 20 2024, 10:01 AM · VyOS 1.5 Circinus
manuel81 added a comment to T6368: acme should also be able to listen on IPv6 addresses.

It seems to work basically

May 20 2024, 8:33 AM · VyOS 1.4 Sagitta (1.4.0-GA)
Viacheslav closed T6364: CGNAT drop hard limit that allowed only one translation rule, a subtask of T5169: Add CGNAT Carrier-Grade NAT based on nftables, as Resolved.
May 20 2024, 7:25 AM · Restricted Project, VyOS 1.5 Circinus
Viacheslav closed T6364: CGNAT drop hard limit that allowed only one translation rule as Resolved.
May 20 2024, 7:24 AM · VyOS 1.5 Circinus
Viacheslav updated the task description for T5169: Add CGNAT Carrier-Grade NAT based on nftables.
May 20 2024, 7:08 AM · Restricted Project, VyOS 1.5 Circinus
Vijayakumar closed T6372: global CODEOWERS not reflecting in other repos, a subtask of T6309: Check code quality with CodeQL, as Resolved.
May 20 2024, 7:05 AM · GitHub Infrastructure
Vijayakumar closed T6372: global CODEOWERS not reflecting in other repos as Resolved.
May 20 2024, 7:05 AM · GitHub Infrastructure
Viacheslav added a comment to T6368: acme should also be able to listen on IPv6 addresses.

Can you manually edit the node and re-check if it will work for acme

sudo nano -c /opt/vyatta/share/vyatta-cfg/templates/pki/certificate/node.tag/acme/listen-address/node.def

replace:

type: txt
help: Local IPv4 addresses to listen on
val_help: ipv4; IPv4 address to listen for incoming connections
allowed: sh -c "${vyos_completion_dir}/list_local_ips.sh --ipv4"
syntax:expression: exec "${vyos_libexec_dir}/validate-value  --exec \"${vyos_validators_dir}/ipv4-address \"  --value \'$VAR(@)\'"; "Invalid value"

to

type: txt
help: Local IPv4 addresses to listen on
val_help: ipv4; IPv4 address to listen for incoming connections
May 20 2024, 6:45 AM · VyOS 1.4 Sagitta (1.4.0-GA)
Vijayakumar changed the status of T6372: global CODEOWERS not reflecting in other repos, a subtask of T6309: Check code quality with CodeQL, from Open to In progress.
May 20 2024, 6:29 AM · GitHub Infrastructure
Vijayakumar changed the status of T6372: global CODEOWERS not reflecting in other repos from Open to In progress.
May 20 2024, 6:29 AM · GitHub Infrastructure
Vijayakumar created T6372: global CODEOWERS not reflecting in other repos.
May 20 2024, 6:29 AM · GitHub Infrastructure
Viacheslav triaged T6371: Show nat source rules shows unexpected dictionary as Normal priority.
May 20 2024, 5:49 AM · Restricted Project, VyOS 1.5 Circinus
Viacheslav created T6371: Show nat source rules shows unexpected dictionary.
May 20 2024, 5:49 AM · Restricted Project, VyOS 1.5 Circinus

May 19 2024

syncer assigned T6183: OpenVPN IPv6 server: Unable to establish connection without local-host parameter to c-po.
May 19 2024, 9:21 PM · VyOS 1.5 Circinus
c-po added a comment to T4833: Include wireguard peer name in interface summary report.

@Alfa80 this is actually the verbatim output of sudo wg show <interface>. I agree that it would sometimes be more intuitive to see the peers name

May 19 2024, 7:51 PM · Restricted Project, VyOS 1.5 Circinus
c-po claimed T6345: Source NAT Port Mapping setting of Fully-Random is superfluous in Kernels 5.0 onwards.
May 19 2024, 7:45 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
syncer triaged T6370: Add option to set custom HTTP headers in reverse-proxy responses as Normal priority.
May 19 2024, 7:43 PM · VyOS 1.5 Circinus
c-po assigned T3493: DHCPv6 does not have prefix range validation to Giggum.
May 19 2024, 7:43 PM · VyOS 1.4 Sagitta (1.4.0-GA)
c-po added a comment to T3493: DHCPv6 does not have prefix range validation.

@Giggum sure, much appreciated

May 19 2024, 7:43 PM · VyOS 1.4 Sagitta (1.4.0-GA)
Embezzle added a comment to T6370: Add option to set custom HTTP headers in reverse-proxy responses.

PR: https://github.com/vyos/vyos-1x/pull/3487

May 19 2024, 7:42 PM · VyOS 1.5 Circinus
Embezzle changed the status of T6370: Add option to set custom HTTP headers in reverse-proxy responses from Open to In progress.
May 19 2024, 6:53 PM · VyOS 1.5 Circinus
Embezzle created T6370: Add option to set custom HTTP headers in reverse-proxy responses.
May 19 2024, 6:53 PM · VyOS 1.5 Circinus
c-po closed T1981: Allow route-map 'set src' to reference both IPv4 and IPv6 as Resolved.
May 19 2024, 6:26 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0-GA)
c-po added a project to T1981: Allow route-map 'set src' to reference both IPv4 and IPv6: VyOS 1.3 Equuleus (1.3.6).
May 19 2024, 6:26 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0-GA)
c-po edited projects for T1981: Allow route-map 'set src' to reference both IPv4 and IPv6, added: VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus; removed vyatta-cfg-quagga.
May 19 2024, 6:25 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0-GA)
c-po added a comment to T1981: Allow route-map 'set src' to reference both IPv4 and IPv6.

Feature available in 1.3.6 1.4.0-epa3 and 1.5

May 19 2024, 6:25 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0-GA)
c-po added a comment to T5934: pppoe dhcp6c fails to get prefix.

Using DHCPv6-PD on 1.5 and 1.4-epa3 and confirmed working

May 19 2024, 6:08 PM · VyOS 1.4 Sagitta (1.4.0-GA)
c-po closed T5934: pppoe dhcp6c fails to get prefix as Invalid.
May 19 2024, 6:08 PM · VyOS 1.4 Sagitta (1.4.0-GA)
c-po closed T6346: Boot to multi-user.target instead of graphical.target as Resolved.
May 19 2024, 6:06 PM · VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
c-po closed T6358: Container config option to enable host pid as Resolved.
May 19 2024, 6:06 PM · VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
c-po moved T6358: Container config option to enable host pid from Need Triage to Finished on the VyOS 1.5 Circinus board.
May 19 2024, 6:06 PM · VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
c-po moved T6346: Boot to multi-user.target instead of graphical.target from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0) board.
May 19 2024, 6:06 PM · VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
c-po moved T6358: Container config option to enable host pid from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0) board.
May 19 2024, 6:06 PM · VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
c-po moved T6346: Boot to multi-user.target instead of graphical.target from Need Triage to Finished on the VyOS 1.5 Circinus board.
May 19 2024, 6:05 PM · VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
syncer changed the status of T6369: Cannot change BGP peer-group local-role from Open to Needs testing.
May 19 2024, 6:00 PM · VyOS 1.5 Circinus
vmakris created T6369: Cannot change BGP peer-group local-role.
May 19 2024, 2:21 PM · VyOS 1.5 Circinus
Vijayakumar closed T6349: keep all workflows as reusable workflows in global .github and make vyox-1x to use from there, a subtask of T6309: Check code quality with CodeQL, as Resolved.
May 19 2024, 1:46 PM · GitHub Infrastructure
Vijayakumar closed T6349: keep all workflows as reusable workflows in global .github and make vyox-1x to use from there as Resolved.
May 19 2024, 1:46 PM · GitHub Infrastructure
syncer assigned T4833: Include wireguard peer name in interface summary report to c-po.
May 19 2024, 1:39 PM · Restricted Project, VyOS 1.5 Circinus
syncer lowered the priority of T5084: Interfrace negotiation may not work on some platforms from High to Normal.
May 19 2024, 1:38 PM · Restricted Project, VyOS 1.5 Circinus
syncer removed a project from T5356: DMVPN NHRP spoke stops sending resolution requests upon restart: VyOS 1.4 Sagitta (1.4.0-GA).
May 19 2024, 1:38 PM · Restricted Project, VyOS 1.5 Circinus
syncer lowered the priority of T5359: VyOS user/pass remains in config from High to Low.
May 19 2024, 1:37 PM · VyOS 1.5 Circinus
syncer removed projects from T5069: bgp large-community-list regex validation incomplete: VyOS 1.4 Sagitta (1.4.0-GA), Restricted Project.
May 19 2024, 1:36 PM · Restricted Project, VyOS 1.5 Circinus
syncer lowered the priority of T5069: bgp large-community-list regex validation incomplete from High to Wishlist.
May 19 2024, 1:36 PM · Restricted Project, VyOS 1.5 Circinus
syncer renamed T5878: Make the list of SSH server ciphers configurable from SSH certificate issue with 1.4rc1 to Add option to allow unsecure ciphers in SSH.
May 19 2024, 1:26 PM · VyOS 1.4 Sagitta (1.4.1)
syncer lowered the priority of T5878: Make the list of SSH server ciphers configurable from High to Normal.
May 19 2024, 1:26 PM · VyOS 1.4 Sagitta (1.4.1)
syncer assigned T6368: acme should also be able to listen on IPv6 addresses to Viacheslav.
May 19 2024, 1:25 PM · VyOS 1.4 Sagitta (1.4.0-GA)
syncer triaged T6368: acme should also be able to listen on IPv6 addresses as Low priority.
May 19 2024, 1:24 PM · VyOS 1.4 Sagitta (1.4.0-GA)
syncer changed the status of T3726: System ntp servers are ignored if provided by DHCP (ISP) from Needs reporter action to In progress.
May 19 2024, 1:07 PM · VyOS 1.3 Equuleus (1.3.9)
mrlocke added a comment to T3726: System ntp servers are ignored if provided by DHCP (ISP).

I can't test it in 1.3. I've tried to build the latest 1.3 from repository, but it looks like the build process is broken and does not allow contributors to build following the documentation guide any more.
That's sad :(

May 19 2024, 10:16 AM · VyOS 1.3 Equuleus (1.3.9)
manuel81 created T6368: acme should also be able to listen on IPv6 addresses.
May 19 2024, 10:01 AM · VyOS 1.4 Sagitta (1.4.0-GA)
syncer assigned T5584: System cannot boot with commit-arachive location sftp in some cases to jestabro.

@jestabro assigning to you but feel free to pass it to another team member

May 19 2024, 9:01 AM · Restricted Project, VyOS 1.3 Equuleus (1.3.9)
syncer added a project to T6076: [1.3.3->1.4.0-epa1 Migration] Most of config missing: VyOS 1.5 Circinus.
May 19 2024, 9:00 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
syncer assigned T6076: [1.3.3->1.4.0-epa1 Migration] Most of config missing to jestabro.
May 19 2024, 8:59 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
syncer attached a referenced file: F4215536: 240228-ha-r02a-failed.txt.
May 19 2024, 8:58 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
syncer attached a referenced file: F4216768: 240229-ha-r02a-failed1.txt.
May 19 2024, 8:58 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
syncer attached a referenced file: F4222723: 240302-ha-r01a-failed2.txt.
May 19 2024, 8:58 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
syncer attached a referenced file: F4228372: 240309-ha-r01a-test3.txt.
May 19 2024, 8:58 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
syncer attached a referenced file: F4228371: 240309-ha-r01a-test2.txt.
May 19 2024, 8:58 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
syncer lowered the priority of T6132: Conntrack-sync Internal Cache Growing Uncontrollably from High to Normal.
May 19 2024, 8:57 AM · Restricted Project, VyOS 1.5 Circinus
syncer lowered the priority of T5933: Unable to commit BGP config with unnumbered neighbour from High to Normal.
May 19 2024, 8:06 AM · Restricted Project, VyOS 1.5 Circinus
syncer lowered the priority of T5493: Add capability to use local and external dynamic-lists for firewall rules but also for various policies such as access-list, route-maps etc. from High to Wishlist.
May 19 2024, 8:04 AM · VyOS 1.5 Circinus
syncer assigned T6144: Update system image without enough space for the files can to break the system to dmbaturin.

@dmbaturin can you add space check into the upgrade scripts

May 19 2024, 8:04 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
syncer triaged T6365: Negating interface names in NAT configuration causes invalid warnings as Normal priority.
May 19 2024, 8:02 AM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus

May 18 2024

c-po changed the status of T6367: op-mode: commit-archive: TypeError: attribute name must be string, not 'NoneType' from Open to In progress.
May 18 2024, 9:15 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
c-po created T6367: op-mode: commit-archive: TypeError: attribute name must be string, not 'NoneType'.
May 18 2024, 9:15 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
Viacheslav added a subtask for T5169: Add CGNAT Carrier-Grade NAT based on nftables: T6366: CGNAT add the ability to show allocation per external or internal address.
May 18 2024, 3:40 PM · Restricted Project, VyOS 1.5 Circinus
Viacheslav added a parent task for T6366: CGNAT add the ability to show allocation per external or internal address: T5169: Add CGNAT Carrier-Grade NAT based on nftables.
May 18 2024, 3:40 PM · VyOS 1.5 Circinus
Viacheslav triaged T6366: CGNAT add the ability to show allocation per external or internal address as Wishlist priority.
May 18 2024, 3:39 PM · VyOS 1.5 Circinus
Viacheslav created T6366: CGNAT add the ability to show allocation per external or internal address.
May 18 2024, 3:39 PM · VyOS 1.5 Circinus
Viacheslav added a comment to T6364: CGNAT drop hard limit that allowed only one translation rule.

PR https://github.com/vyos/vyos-1x/pull/3483

set nat cgnat pool external ext-01 external-port-range '40000-60000'
set nat cgnat pool external ext-01 per-user-limit port '5000'
set nat cgnat pool external ext-01 range 192.0.2.1-192.0.2.2
set nat cgnat pool external ext-01 range 192.0.2.11/32
May 18 2024, 3:26 PM · VyOS 1.5 Circinus
alryaz created T6365: Negating interface names in NAT configuration causes invalid warnings.
May 18 2024, 2:02 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
Viacheslav triaged T6364: CGNAT drop hard limit that allowed only one translation rule as Low priority.
May 18 2024, 1:44 PM · VyOS 1.5 Circinus
Viacheslav changed the status of T6364: CGNAT drop hard limit that allowed only one translation rule, a subtask of T5169: Add CGNAT Carrier-Grade NAT based on nftables, from Open to In progress.
May 18 2024, 1:44 PM · Restricted Project, VyOS 1.5 Circinus
Viacheslav changed the status of T6364: CGNAT drop hard limit that allowed only one translation rule from Open to In progress.
May 18 2024, 1:44 PM · VyOS 1.5 Circinus
Viacheslav added a subtask for T5169: Add CGNAT Carrier-Grade NAT based on nftables: T6364: CGNAT drop hard limit that allowed only one translation rule.
May 18 2024, 1:44 PM · Restricted Project, VyOS 1.5 Circinus
Viacheslav added a parent task for T6364: CGNAT drop hard limit that allowed only one translation rule: T5169: Add CGNAT Carrier-Grade NAT based on nftables.
May 18 2024, 1:44 PM · VyOS 1.5 Circinus
Viacheslav created T6364: CGNAT drop hard limit that allowed only one translation rule.
May 18 2024, 1:43 PM · VyOS 1.5 Circinus
c-po changed the status of T1981: Allow route-map 'set src' to reference both IPv4 and IPv6 from Open to In progress.
May 18 2024, 10:49 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0-GA)
c-po claimed T1981: Allow route-map 'set src' to reference both IPv4 and IPv6.
May 18 2024, 10:49 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0-GA)
c-po added a comment to T6337: Upgrade from 1.3.5 fails if ssh public key name has a space in it.

This is a known issue as explained in detail in T4628. You're best choice is to remove the whitespace prior to upgrading. Thanks for reporting this anyways!

May 18 2024, 10:43 AM · VyOS 1.3 Equuleus (1.3.8)
c-po merged T6337: Upgrade from 1.3.5 fails if ssh public key name has a space in it into T4628: ConfigTree() throws ValueError() if tagNode contains whitespaces.
May 18 2024, 10:41 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
c-po merged task T6337: Upgrade from 1.3.5 fails if ssh public key name has a space in it into T4628: ConfigTree() throws ValueError() if tagNode contains whitespaces.
May 18 2024, 10:41 AM · VyOS 1.3 Equuleus (1.3.8)

May 17 2024

jestabro added a project to T6363: Expose element 'secret' in xml cache and add boolean check: VyOS 1.5 Circinus.
May 17 2024, 4:05 PM · VyOS 1.5 Circinus
jestabro triaged T6363: Expose element 'secret' in xml cache and add boolean check as Normal priority.
May 17 2024, 4:05 PM · VyOS 1.5 Circinus
n.fort added a comment to T6344: multiple ntp listen-address commands not working.

Yeah, my bad!

May 17 2024, 3:02 PM · VyOS 1.4 Sagitta
jestabro closed T6356: Correct the syntax of config.boot.default [..., 'ntp', 'server'] from leaf node with value to tag node as Resolved.
May 17 2024, 2:59 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
First
Prev
Next