Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Jul 4 2021

sarthurdev <965089+sarthurdev@users.noreply.github.com> committed rVYOSONEXb123b46f2e2a: pki: T3642: Add standard extensions to generated certificates.
Jul 4 2021, 8:00 PM
GitHub <noreply@github.com> committed rVYOSONEX562ead14a6dd: Merge pull request #910 from sarthurdev/pki_ext (authored by c-po).
Jul 4 2021, 8:00 PM
c-po committed rVYOSONEX70efa3dd54bc: vyos.util: T3663: move inotify-based imports to function level.
Jul 4 2021, 7:43 PM
c-po committed rVYOSONEXb2bf1592189f: ipsec: T1210: T1251: IKEv2 road-warrior support.
Jul 4 2021, 7:19 PM
c-po committed rVYOSONEX79f1c891f3ae: ipsec: T1210: T1251: extend ra config with address pools/traffic selectors (authored by sarthurdev <965089+sarthurdev@users.noreply.github.com>).
Jul 4 2021, 7:19 PM
c-po committed rVYOSONEXa89554bae49d: ipsec: T2816: use common building block/include for port definition.
Jul 4 2021, 7:19 PM
c-po committed rVYOSONEX3851818b7a26: ipsec: T2816: add include definition for ipsec local-address.
Jul 4 2021, 7:19 PM
c-po committed rVYOSONEXb16827699604: ipsec: T2816: add completion helper for VTI interfaces.
Jul 4 2021, 7:19 PM
c-po committed rVYOSONEXc8bf1deec9ce: ipsec: T1210: T1251: add remote-access "name-server" definition to pool config.
Jul 4 2021, 7:19 PM
c-po committed rVYOSONEX1c727bd25ef2: ipsec: T1210: T1251: add "local" traffic-selector include definition.
Jul 4 2021, 7:19 PM
GitHub <noreply@github.com> committed rVYOSONEXcaed454a1d15: Merge pull request #908 from c-po/ipsec-ikev2-remote-access (authored by c-po).
Jul 4 2021, 7:19 PM
c-po committed rVYOSONEX40c6a0402511: ipsec: T2816: add completion helper for tunnel interfaces.
Jul 4 2021, 7:19 PM
dmbaturin committed rVYOSONEXe0a754a0a608: T3663: prerequisites for inotify-based watching implementations..
Jul 4 2021, 7:16 PM
dmbaturin created T3663: Use inotify file watching where applicable.
Jul 4 2021, 7:15 PM · VyOS 1.4 Sagitta
Viacheslav added a subtask for T2216: Containerized third-party applications for VyOS: T3499: Podman is not compatible with nat rules.
Jul 4 2021, 3:08 PM · VyOS 1.4 Sagitta
Viacheslav added a parent task for T3499: Podman is not compatible with nat rules: T2216: Containerized third-party applications for VyOS.
Jul 4 2021, 3:08 PM · VyOS 1.4 Sagitta
Viacheslav added a subtask for T2216: Containerized third-party applications for VyOS: T3662: Container configuration upgrade destroys system.
Jul 4 2021, 3:07 PM · VyOS 1.4 Sagitta
Viacheslav added a parent task for T3662: Container configuration upgrade destroys system: T2216: Containerized third-party applications for VyOS.
Jul 4 2021, 3:07 PM · VyOS 1.4 Sagitta
jack9603301 added a comment to T3662: Container configuration upgrade destroys system.

PR: https://github.com/vyos/vyos-1x/pull/909

Jul 4 2021, 1:27 PM · VyOS 1.4 Sagitta
c-po committed rVYOSONEX2680712b7416: smoketest: pki: adjust to "type" node removal on CLI.
Jul 4 2021, 10:15 AM
c-po added a comment to T1251: IKEv2 Agile VPN Support.

@dongjunbo this is a very very basic PR for VyOS 1.4 with the goal to implement this into the main VyOS release.

Jul 4 2021, 10:03 AM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T1210: About IKEv2 IPSec VPN remote access.

https://github.com/vyos/vyos-1x/pull/908

Jul 4 2021, 10:00 AM · VyOS 1.4 Sagitta
c-po added a comment to T1251: IKEv2 Agile VPN Support.

https://github.com/vyos/vyos-1x/pull/908

Jul 4 2021, 10:00 AM · VyOS 1.3 Equuleus (1.3.0)
jack9603301 claimed T3662: Container configuration upgrade destroys system.
Jul 4 2021, 6:40 AM · VyOS 1.4 Sagitta

Jul 3 2021

c-po committed rVYOSONEXce3847239493: ipsec: T2816: remove erroneously added config snipped for road-warriors.
Jul 3 2021, 8:32 PM
sarthurdev <965089+sarthurdev@users.noreply.github.com> committed rVYOSONEX4db7364a08ba: ipsec: T2816: Remove legacy vyatta code that references Openswan.
Jul 3 2021, 8:23 PM
GitHub <noreply@github.com> committed rVYOSONEX82d881a28bf4: Merge pull request #907 from sarthurdev/ipsec_cleanup (authored by c-po).
Jul 3 2021, 8:23 PM
c-po added a reverting change for rVYOSONEXfb1802111155: ipsec: T2816: drop duplicate dict key "data" from generate(): rVYOSONEXe30668287ad0: Revert "ipsec: T2816: drop duplicate dict key "data" from generate()".
Jul 3 2021, 7:54 PM
c-po committed rVYOSONEXe30668287ad0: Revert "ipsec: T2816: drop duplicate dict key "data" from generate()".
Jul 3 2021, 7:54 PM
GitHub <noreply@github.com> committed rVYOSONEX034b58596cd5: Merge pull request #906 from sarthurdev/pki_typo (authored by c-po).
Jul 3 2021, 7:38 PM
sarthurdev <965089+sarthurdev@users.noreply.github.com> committed rVYOSONEXe19317716477: pki: T3642: Fix for correct method on encoding certificate request.
Jul 3 2021, 7:38 PM
c-po committed rVYOSONEX405954522b8e: ipsec: T1210: T1251: add dependency on libcharon-extauth-plugins.
Jul 3 2021, 5:58 PM
c-po committed rVYOSONEXfb1802111155: ipsec: T2816: drop duplicate dict key "data" from generate().
Jul 3 2021, 5:58 PM
c-po committed rVYOSONEX2aec3e61c913: ipsec: T2816: provide x509 certificate base auth building blocks.
Jul 3 2021, 5:58 PM
c-po committed rVYOSONEX32fab6c7c5a7: ipsec: T2816: provide esp and ike-group XML building block.
Jul 3 2021, 5:58 PM
c-po claimed T1210: About IKEv2 IPSec VPN remote access.
Jul 3 2021, 5:22 PM · VyOS 1.4 Sagitta
c-po closed T57: Make it possible to disable the entire IPsec peer, a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, as Resolved.
Jul 3 2021, 5:22 PM · VyOS 1.4 Sagitta
c-po closed T57: Make it possible to disable the entire IPsec peer as Resolved.
Jul 3 2021, 5:22 PM · VyOS 1.4 Sagitta
c-po edited projects for T1210: About IKEv2 IPSec VPN remote access, added: VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus.
Jul 3 2021, 5:20 PM · VyOS 1.4 Sagitta
c-po merged task T1251: IKEv2 Agile VPN Support into T1210: About IKEv2 IPSec VPN remote access.
Jul 3 2021, 5:20 PM · VyOS 1.3 Equuleus (1.3.0)
c-po merged T1251: IKEv2 Agile VPN Support into T1210: About IKEv2 IPSec VPN remote access.
Jul 3 2021, 5:20 PM · VyOS 1.4 Sagitta
sarthurdev <965089+sarthurdev@users.noreply.github.com> committed rVYOSONEX50f71042d7a0: pki: T3642: Add support for signing and revoking subordinate CAs.
Jul 3 2021, 3:49 PM
GitHub <noreply@github.com> committed rVYOSONEX094d79aee118: Merge pull request #905 from sarthurdev/pki_subca (authored by c-po).
Jul 3 2021, 3:49 PM
c-po committed rVYOSONEX469cd1de9f90: ipsec: T2816: rework log options for debugging.
Jul 3 2021, 3:49 PM
jack9603301 triaged T3662: Container configuration upgrade destroys system as High priority.
Jul 3 2021, 2:09 PM · VyOS 1.4 Sagitta
jack9603301 created T3662: Container configuration upgrade destroys system.
Jul 3 2021, 2:00 PM · VyOS 1.4 Sagitta
c-po committed rVYOSONEXdcfeb0de0a51: Merge branch 'ipsec-ikev2-remote-access' of github.com:c-po/vyos-1x into current.
Jul 3 2021, 1:43 PM
c-po committed rVYOSONEXa1abb118c9eb: ipsec: T2816: rework IKE and ESP key assignment.
Jul 3 2021, 1:43 PM
c-po committed rVYOSONEX1e74c0df2179: ipsec: T2816: remove default values from Jinja2 template and place them in XML.
Jul 3 2021, 1:43 PM
c-po committed rVYOSONEX2d79a5000c8a: ipsec: T2816: add Jinja2 converter for ESP/IKE groups to string.
Jul 3 2021, 1:43 PM
c-po committed rVYOSONEXff004bee54df: ipsec: T2816: adjust Jinja2 template to coding style.
Jul 3 2021, 1:43 PM
c-po committed rVYOSONEX1a859a97f840: xml: provide building block for a generic description node.
Jul 3 2021, 1:43 PM
c-po added a comment to T3661: [vrf} route-leaking missing command.

Commands are implemented.

Jul 3 2021, 12:07 PM · VyOS 1.3 Equuleus (1.3.0)

Jul 2 2021

fernando created T3661: [vrf} route-leaking missing command.
Jul 2 2021, 10:57 PM · VyOS 1.3 Equuleus (1.3.0)
m1nus added a comment to T3660: Conntrack-Sync configuration command to specify destination udp port for peer.

Thanks Chris I'll test it once available and let you know!!

Jul 2 2021, 8:31 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po added a comment to T3660: Conntrack-Sync configuration command to specify destination udp port for peer.

Added command set service conntrack-sync interface <intrerface> port <port>

Jul 2 2021, 8:26 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po committed rVYOSONEX68d8250fe525: conntrack: T3660: make peer port configurable.
Jul 2 2021, 8:25 PM
c-po committed rVYOSONEX13924804aafa: conntrack: T3535: add support for multiple failsave links.
Jul 2 2021, 8:25 PM
c-po committed rVYOSONEXbc01277bdfdf: conntrack: T3660: make peer port configurable.
Jul 2 2021, 8:25 PM
c-po changed the status of T3660: Conntrack-Sync configuration command to specify destination udp port for peer from Confirmed to Needs testing.
Jul 2 2021, 8:23 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po committed rVYOSONEX7c1f2dab543f: conntrack: T3535: add missing valueHelp/constraint for peer CLI node.
Jul 2 2021, 7:56 PM
c-po committed rVYOSONEX96dce0f47805: conntrack: T3535: add missing valueHelp/constraint for peer CLI node.
Jul 2 2021, 7:55 PM
Viacheslav moved T3535: Rewrite vyatta-conntrack-sync in new XML and Python flavor from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Jul 2 2021, 5:45 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a project to T3535: Rewrite vyatta-conntrack-sync in new XML and Python flavor: VyOS 1.3 Equuleus.
Jul 2 2021, 5:45 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a comment to T3045: Changes to Conntrack-Sync don't apply correctly (Mutlicast->UDP).

Fixed for 1.3 in commit https://github.com/vyos/vyos-1x/commit/21527ef4551613fe9b7eed9e4b2ce33ad46fe540

Jul 2 2021, 5:37 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.2 Crux (VyOS 1.2.9)
Viacheslav added a comment to T3076: Router reboot adds unwanted 'conntrack-sync mcast-group '225.0.0.50'' line to configuration.

Fixed for 1.3 in commit https://github.com/vyos/vyos-1x/commit/21527ef4551613fe9b7eed9e4b2ce33ad46fe540 and T3535

Jul 2 2021, 5:37 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
Viacheslav moved T3045: Changes to Conntrack-Sync don't apply correctly (Mutlicast->UDP) from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Jul 2 2021, 5:35 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.2 Crux (VyOS 1.2.9)
Viacheslav moved T3076: Router reboot adds unwanted 'conntrack-sync mcast-group '225.0.0.50'' line to configuration from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Jul 2 2021, 5:35 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
c-po committed rVYOSONEXbfcc86ea5cf6: smoketest: ipam: add site2site x509 auth testcase.
Jul 2 2021, 4:16 PM
c-po committed rVYOSONEX7f97e165a8f3: smoketest: ipsec: IKE and ESP settings can be done one time in setUp().
Jul 2 2021, 4:16 PM
c-po committed rVYOSONEX9c5462908617: smoketest: ipsec: place peer local-address into variable.
Jul 2 2021, 4:16 PM
cohn added a comment to T109: VyOS Can Lose Parts Of Its Config On Reboot - In Certain Situations.

I'm seeing the same behavior for the OSPF v2 configuration on the 1.4 train for an image built on April 26th 2021. Just a heads up.

Jul 2 2021, 3:19 PM · VyOS 1.3 Equuleus (1.3.3)
Viacheslav committed rVYOSONEX4e1a5c7cf421: conntrack-sync: T3535: Rewrite conf and op modes to XML python style.
Jul 2 2021, 2:50 PM
GitHub <noreply@github.com> committed rVYOSONEX21527ef45516: Merge pull request #904 from sever-sever/T3535 (authored by c-po).
Jul 2 2021, 2:50 PM
Viacheslav added a comment to T3535: Rewrite vyatta-conntrack-sync in new XML and Python flavor.

PR for 1.3
https://github.com/vyos/vyos-1x/pull/904
https://github.com/vyos/vyos-world/pull/4

Jul 2 2021, 1:55 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
raphielscape added a comment to T3648: op-mode: nat rules broken.

Source NAT Rules went Out of Range in VyOS 1.4-rolling-202107010320

Jul 2 2021, 1:11 PM · VyOS 1.4 Sagitta
m1nus added a comment to T3660: Conntrack-Sync configuration command to specify destination udp port for peer.

Hi @c-po I hope you're doing great!

Jul 2 2021, 12:04 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
GitHub <noreply@github.com> committed rVYOSONEX15d8cc3ad93b: Merge pull request #903 from sarthurdev/T3659_T3656 (authored by c-po).
Jul 2 2021, 10:45 AM
sarthurdev <965089+sarthurdev@users.noreply.github.com> committed rVYOSONEXf480346bb8e9: ipsec: T3656: T3659: Fix pass-through with ipv6. Fix op-mode ipsec commands..
Jul 2 2021, 10:45 AM
sarthurdev changed the status of T3659: Configuration won't accept IPv6 addresses for site-to-site VPN tunnel prefixes/traffic selectors from In progress to Needs testing.
Jul 2 2021, 10:38 AM · VyOS 1.4 Sagitta
sarthurdev added a comment to T3656: IPSec 1.4 : "show vpn ike sa" does not show the correct default ike version.

Should be resolved in PR: https://github.com/vyos/vyos-1x/pull/903

Jul 2 2021, 10:38 AM · VyOS 1.4 Sagitta
sarthurdev added a comment to T3659: Configuration won't accept IPv6 addresses for site-to-site VPN tunnel prefixes/traffic selectors.

Fixed in PR: https://github.com/vyos/vyos-1x/pull/903

Jul 2 2021, 10:37 AM · VyOS 1.4 Sagitta
sarthurdev changed the status of T3659: Configuration won't accept IPv6 addresses for site-to-site VPN tunnel prefixes/traffic selectors from Open to In progress.
Jul 2 2021, 9:00 AM · VyOS 1.4 Sagitta

Jul 1 2021

c-po changed the status of T3660: Conntrack-Sync configuration command to specify destination udp port for peer from Open to Confirmed.
Jul 1 2021, 7:50 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po added a project to T3660: Conntrack-Sync configuration command to specify destination udp port for peer: VyOS 1.4 Sagitta.
Jul 1 2021, 7:50 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po added a comment to T3660: Conntrack-Sync configuration command to specify destination udp port for peer.

conntrack implementation changed form 1.3 -> 1.4 by a rewrite. Can you please tell us which version of VyOS you are using?

Jul 1 2021, 7:46 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po assigned T3659: Configuration won't accept IPv6 addresses for site-to-site VPN tunnel prefixes/traffic selectors to sarthurdev.
Jul 1 2021, 7:45 PM · VyOS 1.4 Sagitta
c-po renamed T3318: Update Linux Kernel to v5.4.208 / 5.10.142 from Update Linux Kernel to v5.4.128 / 5.10.46 to Update Linux Kernel to v5.4.129 / 5.10.47.
Jul 1 2021, 7:43 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
sarthurdev <965089+sarthurdev@users.noreply.github.com> committed rVYOSONEX6f66e71e4622: pki: T3642: New PKI config and management.
Jul 1 2021, 7:39 PM
sarthurdev <965089+sarthurdev@users.noreply.github.com> committed rVYOSONEXf5a8a9cdfe52: pki: ipsec: T3642: Migrate IPSec to use PKI configuration.
Jul 1 2021, 7:39 PM
c-po committed rVYOSONEXc232fdc4c546: vyos.util: remove no longer needed copy_file helper method.
Jul 1 2021, 7:39 PM
sarthurdev <965089+sarthurdev@users.noreply.github.com> committed rVYOSONEX30e4f083c98f: pki: ipsec: T3642: Update migration script to account for file permission issues.
Jul 1 2021, 7:39 PM
c-po committed rVYOSONEX469e57398f3a: Merge branch 'pki_ipsec' of https://github.com/sarthurdev/vyos-1x into pki-cli.
Jul 1 2021, 7:39 PM
m1nus created T3660: Conntrack-Sync configuration command to specify destination udp port for peer.
Jul 1 2021, 7:17 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po committed rVYOSONEXd565d4baffb9: ipsec: T3643: bugfix on wrong destination file path for x509 key file.
Jul 1 2021, 6:50 PM
c-po committed rVYOSONEX63e6c00864a8: vyos.util: fix IsADirectoryError and SameFileError for copy_file.
Jul 1 2021, 6:50 PM
stepler closed T3658: Add support for dhcpdv6 fixed-prefix6 as Resolved.

Looks good on 1.4-rolling-202107010537 and 1.3-beta-202106301443:

Jul 1 2021, 2:53 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
mgperkow created T3659: Configuration won't accept IPv6 addresses for site-to-site VPN tunnel prefixes/traffic selectors.
Jul 1 2021, 2:50 PM · VyOS 1.4 Sagitta
erkin changed the status of T3556: Commit-archive via scp causes 100% CPU on boot, a subtask of T3356: Script for remote file transfers, from Open to In progress.
Jul 1 2021, 2:48 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
erkin changed the status of T3556: Commit-archive via scp causes 100% CPU on boot from Open to In progress.
Jul 1 2021, 2:48 PM · VyOS 1.4 Sagitta
First
Prev
Next