Resolved, merged PR: https://github.com/vyos/vyos-1x/pull/3508
Feed All Stories
May 23 2024
May 23 2024
c-po moved T751: IDS and IPS (suricata) from Need Triage to Finished on the VyOS 1.5 Circinus board.
Embezzle changed the status of T6370: Add option to set custom HTTP headers in reverse-proxy responses from In progress to Needs testing.
syncer moved T6390: Compensate for packer packaging update from Need Triage to In Progress on the VyOS 1.3 Equuleus (1.3.8) board.
syncer edited projects for T6390: Compensate for packer packaging update, added: VyOS 1.3 Equuleus (1.3.8); removed VyOS 1.5 Circinus.
syncer edited projects for T6390: Compensate for packer packaging update, added: VyOS 1.5 Circinus; removed VyOS 1.3 Equuleus.
Viacheslav moved T6381: Typos in select ConfigError messages in dhcpv6-server from Need Triage to Finished on the VyOS 1.5 Circinus board.
jestabro added a comment to T6363: Expose element 'secret' in xml cache and add boolean check.
Difficulty changed to normal to consider one subtlety of xml cache, and add POC for use in (a later version of) the strip-private filter. POC below; some subset of commits may be added to 1.5:
https://github.com/vyos/vyos-1x/compare/current...jestabro:example-property-secret
jestabro changed Difficulty level from easy to normal on T6363: Expose element 'secret' in xml cache and add boolean check.
erkin added a comment to T6352: Tool for generating valid configs based on XML schemas.
The idea is feasible for parameters with constraints (like number ranges) defined in the XML, but there are many other cases where human input is necessary. We could give the tool a set of parameters to randomly generate, or a half-complete config with slots to fill in with random values. Worst case, we'd discover new constraints for more rigid templates; best case, we'd have a proper tool for generating corner cases for smoke tests and fuzzing.
HollyGurza moved T4576: vpn l2tp logging level configuration from Need Triage to In Progress on the VyOS 1.5 Circinus board.
HollyGurza changed the status of T4576: vpn l2tp logging level configuration from Open to In progress.
HollyGurza added a comment to T4576: vpn l2tp logging level configuration.
Vijayakumar added a comment to T6386: add caller workflows and codeowners file for vyos-build.
Vijayakumar renamed T6386: add caller workflows and codeowners file for vyos-build from add caller workflows and codeowners file for vyox-build to add caller workflows and codeowners file for vyos-build.
Viacheslav edited projects for T6387: Bump conntrack to version 1:1.4.7-1, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
Vijayakumar changed the status of T6386: add caller workflows and codeowners file for vyos-build from Open to In progress.
Viacheslav closed T6357: Create test repository to validate setup, a subtask of T6309: Check code quality with CodeQL, as Resolved.
Vijayakumar added a comment to T6357: Create test repository to validate setup.
Please mark this as resolved
Giggum added a comment to T6371: Show nat source rules shows unexpected dictionary.
Follow up, I was able to make nat.py throw the error below.
Giggum added a comment to T6371: Show nat source rules shows unexpected dictionary.
@Viacheslav, same behaviour exists for epa3, I numbered mine 999 so as not to interfere with existing rules.
May 22 2024
May 22 2024
Giggum added a comment to T6371: Show nat source rules shows unexpected dictionary.
@Viacheslav
Happy to dig into this if can assign it to me.
c-po added a comment to T6365: Negating interface names in NAT configuration causes invalid warnings.
Same issue applies to NAT66, too
c-po added a comment to T6365: Negating interface names in NAT configuration causes invalid warnings.
c-po changed the status of T6365: Negating interface names in NAT configuration causes invalid warnings from Open to In progress.
jestabro closed T5940: [1.3.5 -> 1.4.0-RC1 Migration] commit-archive Fails to Migrate, a subtask of T5938: Migration fail root task for 1.4-rc, as Resolved.
Viacheslav triaged T6382: Add dkms in order to make firmware updates of NIC's possible as Wishlist priority.
Viacheslav moved T6384: rollback-soft should tell the user to compare and commit from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-GA) board.
Giggum added a comment to T3493: DHCPv6 does not have prefix range validation.
Viacheslav edited projects for T6373: QoS Policy Limiter - classes for marked traffic do not work, added: VyOS 1.4 Sagitta (1.4.0-GA); removed VyOS 1.4 Sagitta.
Viacheslav moved T3493: DHCPv6 does not have prefix range validation from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-GA) board.
Viacheslav added a comment to T3493: DHCPv6 does not have prefix range validation.
Does 1.5 has the same bug?
Viacheslav triaged T6379: "generate openvpn" uses "comp-lzo no", which leads to problems on Android-Clients as Normal priority.
natali-rs1985 changed the status of T6227: Rewrite show conntrack-sync cache internal to use tabulate output from Open to In progress.
Viacheslav closed T6366: CGNAT add the ability to show allocation per external or internal address, a subtask of T5169: Add CGNAT Carrier-Grade NAT based on nftables, as Resolved.
Giggum added a comment to T3493: DHCPv6 does not have prefix range validation.
PR merged: https://github.com/vyos/vyos-1x/pull/3499/
Vijayakumar changed the status of T6378: move labeler.yml to reusable repo from Open to In progress.
Vijayakumar added a comment to T6357: Create test repository to validate setup.
a.apostoliuk changed the status of T6359: Multicast does not forward after reboot from In progress to Needs testing.
aidan-gibson added a comment to T5835: UPnP port mapping / rule installation fails.
I'd prefer to integrate the Port Control Protocol (PCP) instead.
HollyGurza moved T6373: QoS Policy Limiter - classes for marked traffic do not work from Need Triage to In Progress on the VyOS 1.5 Circinus board.
HollyGurza moved T6373: QoS Policy Limiter - classes for marked traffic do not work from Need Triage to In Progress on the VyOS 1.4 Sagitta board.
May 21 2024
May 21 2024
jestabro added a comment to T5940: [1.3.5 -> 1.4.0-RC1 Migration] commit-archive Fails to Migrate.
PR merged into vyos-utils:
https://github.com/vyos/vyos-utils/pull/20
and backported. The fix has been tested with migration from 1.3.x with settings as suggested by @trae32566
syncer lowered the priority of T5584: System cannot boot with commit-arachive location sftp in some cases from High to Normal.
jestabro added a comment to T5584: System cannot boot with commit-arachive location sftp in some cases.
Yes, @c-po that would be a reasonable explanation; the timeout was added for Equuleus by 1.3.4. Without a reporting user to ask; other reports on later version; or further information, I would vote to close ...
L0crian updated the task description for T6375: Fix/Update NAT Logging.
HollyGurza added a comment to T6373: QoS Policy Limiter - classes for marked traffic do not work.
natali-rs1985 updated the task description for T6374: Openvpn site-to-site mode with TLS not starting.
L0crian added a comment to T6375: Fix/Update NAT Logging.
natali-rs1985 updated the task description for T6374: Openvpn site-to-site mode with TLS not starting.
natali-rs1985 updated the task description for T6374: Openvpn site-to-site mode with TLS not starting.
natali-rs1985 updated the task description for T6374: Openvpn site-to-site mode with TLS not starting.
L0crian created T6375: Fix/Update NAT Logging.
jestabro updated subscribers of T5940: [1.3.5 -> 1.4.0-RC1 Migration] commit-archive Fails to Migrate.
The argument would be to relax the url validator regex for compatibility with 1.3: since the plan is to replace this mechanism in 1.5 with something similar to @trae32566 suggestion above (brought up for discussion by @Viacheslav recently), and since it is deprecated/not advised anyway (RFC 3986). The simple change will be made to the validator.
HollyGurza moved T5307: QoS - traffic-class-map services from Need Triage to In Progress on the VyOS 1.5 Circinus board.
HollyGurza moved T5307: QoS - traffic-class-map services from Need Triage to In Progress on the VyOS 1.4 Sagitta (1.4.0-GA) board.
HollyGurza moved T6225: Unhandled exception when configuring random-detect QoS policy from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-GA) board.
HollyGurza added a comment to T5307: QoS - traffic-class-map services .
Viacheslav added a comment to T6247: Add CGN "full cone" EIF support per RFC6888 REQ-7.
Viacheslav changed the status of T6366: CGNAT add the ability to show allocation per external or internal address, a subtask of T5169: Add CGNAT Carrier-Grade NAT based on nftables, from Open to In progress.
Viacheslav changed the status of T6366: CGNAT add the ability to show allocation per external or internal address from Open to In progress.