If to use modified Regex --regex \'^((eth|lan)[0-9]+|(eth)[0-9]v.+|(eno|ens|enp|enx).+)$\'
https://github.com/vyos/vyos-1x/blob/10814c4d3360598262e991e4b20768dfcde91d75/interface-definitions/interfaces-ethernet.xml.in#L17
- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed Search
Sep 6 2021
Sep 6 2021
Viacheslav edited projects for T3431: Show version all bug, added: VyOS 1.3 Equuleus (1.3.0-epa1); removed VyOS 1.3 Equuleus.
Viacheslav moved T3643: show vpn ipsec sa doesn't show tunnels in "down" state from Open to Finished on the VyOS 1.4 Sagitta board.
Fixed VyOS 1.3-beta-202109060342, VyOS 1.4-rolling-202109060217
vyos@r4-1.3:~$ show conf com | match lldp set service lldp interface all
Sep 4 2021
Sep 4 2021
I don't see any issue yet with multiple static addresses
vyos@r4-1.3:~$ show interfaces
Codes: S - State, L - Link, u - Up, D - Down, A - Admin Down
Interface IP Address S/L Description
--------- ---------- --- -----------
eth0 192.168.122.14/24 u/u FOO-BAR
eth1 192.0.2.14/24 u/u FOO
100.64.5.1/24
100.64.6.1/24
2001:db8::199/128@zoenan7 You can get it here https://vyos.net/get/
I get dhcpv6 address in 1.3.0-rc6 but with prefix /128
vyos@r4-1.3# run show int
Codes: S - State, L - Link, u - Up, D - Down, A - Admin Down
Interface IP Address S/L Description
--------- ---------- --- -----------
eth0 192.168.122.14/24 u/u FOO-BAR
eth1 192.0.2.14/24 u/u FOO
2001:db8::199/128Viacheslav added projects to T3799: DHCPv6 WAN client seems to be broken again.: VyOS 1.3 Equuleus, test.
Sep 3 2021
Sep 3 2021
Viacheslav changed the status of T3797: show interface errors with vrrp configuration from Open to Confirmed.
Viacheslav added projects to T3797: show interface errors with vrrp configuration: test, VyOS 1.3 Equuleus.
PR for equuleus https://github.com/vyos/vyos-1x/pull/994
Viacheslav added a project to T3634: Add op command option for ping for do not fragment bit to be set: test.
Viacheslav moved T3634: Add op command option for ping for do not fragment bit to be set from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Viacheslav moved T3634: Add op command option for ping for do not fragment bit to be set from Open to Finished on the VyOS 1.4 Sagitta board.
Viacheslav closed T3634: Add op command option for ping for do not fragment bit to be set as Resolved.
Viacheslav closed T3683: VXLAN not accept ipv6 and source-interface options and mtu bug as Resolved.
@dmbaturin Can we close it?
@fetzerms Can you check it in 1.4?
For example:
set policy local-route rule 10 fwmark '42' set policy local-route rule 10 set table '100'
Viacheslav moved T2920: Commit crash when adding the second mGRE tunnel with the same key from Open to Backport Candidates on the VyOS 1.4 Sagitta board.
Viacheslav moved T3788: Keys are not allowed with ipip and sit tunnels from Open to Finished on the VyOS 1.4 Sagitta board.
Sep 2 2021
Sep 2 2021
Viacheslav added a comment to T2648: router-advert: erroneous syslog warning about invalid all-zeros prefix.
+1
Viacheslav added a comment to T2648: router-advert: erroneous syslog warning about invalid all-zeros prefix.
1.3 still use 2.17 version
Viacheslav edited projects for T3793: Syslog - Improve error handling, added: VyOS 1.2 Crux (VyOS 1.2.9); removed VyOS 1.2 Crux (VyOS 1.2.8).
Sep 1 2021
Sep 1 2021
It is really somehow was in the old backend
vyos@r4-1.3:~$ ${vyatta_bindir}/vyatta-show-interfaces.pl --intf=eth1
eth1: <BROADCAST,MULTICAST,SLAVE,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master bond1 state UP group default qlen 1000
link/ether 52:54:00:c1:05:04 brd ff:ff:ff:ff:ff:ff
Last clear: Wed Sep 01 18:29:34 EEST 2021
Description: FOOViacheslav moved T2434: Duplicate Address Detection Breaks Interfaces from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Not reproducible in 1.2.8 / 1.3-beta-202108300342
@tracyb Can you re-check it in 1.3.0-rc6?
Aug 31 2021
Aug 31 2021
Viacheslav added a comment to T2920: Commit crash when adding the second mGRE tunnel with the same key.
@trystan will be fixed in the next 1.3-beta release.
PR for 1.3 https://github.com/vyos/vyos-1x/pull/985
Sure.
PR for crux https://github.com/vyos/vyatta-cfg-system/pull/166
Aug 30 2021
Aug 30 2021
Viacheslav changed the status of T3782: Ingress Shaping with IFB No Longer Functional with 1.3 from Open to Needs testing.
Viacheslav renamed T3786: GRE tunnel source address 0.0.0.0 error from GRE tunnel source address without remote address error to GRE tunnel source address 0.0.0.0 error.
Viacheslav renamed T3786: GRE tunnel source address 0.0.0.0 error from GRE tunnel source address 0.0.0.0 error to GRE tunnel source address without remote address error.
Add key to successful commit.
set interfaces tunnel tun1 parameters ip key '1'
Viacheslav closed T3553: OSPFv3 redistribute configuration remains in frr running config after removal as Invalid.
Not reproducible.
I close the task.
Reopen it if necessary. Describe step by step with an example of config how to reproduce it.
Thanks.
PR for 1.3 https://github.com/vyos/vyos-build/pull/184
Fixed in VyOS 1.3-beta-202108300342
Viacheslav added projects to T3782: Ingress Shaping with IFB No Longer Functional with 1.3: VyOS 1.4 Sagitta, test.
Aug 29 2021
Aug 29 2021
In T3782#102239, @trystan wrote:
Possible bug after this commit https://github.com/vyos/vyos-1x/pull/621/commits/ede2972be4c49962a04b1addb9df6ce58f2d9f42
As it works in vyos-1.3-rolling-202011 before that commit.
Viacheslav changed the status of T3777: adding IPv6 EUI64 address fails commit in 1.3.0-rc6 from Open to Needs testing.
1.3 fixed in T3779
The issue may be with OpenVPN/dynamic interfaces only, without the option "persist".
In that case, if no connectivity between interfaces it tried to re-add the interface "down/up" vtunX with a new SNMP index. And it will be in the loop until connectivity will be restored with the remote site.
Difference between 1.2 and 1.3
1.3 don't have option qdisc ingress ffff: dev eth0 parent ffff:fff1 ----------------
How about CLI set system syslog atop file 5
That means save the latest 5 files.
Viacheslav changed the status of T3770: BGP neighbor not generating the correct frr configuration when moved to peer-group from Open to Confirmed.
PR https://github.com/vyos/vyos-1x/pull/981
vyos@r4-1.3# set interfaces ethernet eth0 ipv6 address eui64 2001:db8::/64
[edit]
vyos@r4-1.3# commit
ru[edit]
vyos@r4-1.3# run show int
Codes: S - State, L - Link, u - Up, D - Down, A - Admin Down
Interface IP Address S/L Description
--------- ---------- --- -----------
eth0 192.168.122.14/24 u/u
2001:db8::5054:ff:fe5d:4609/64Aug 24 2021
Aug 24 2021
Similar task T3360
Aug 18 2021
Aug 18 2021
Viacheslav added a comment to T3766: containers: Expanding options for networking and building containers.
Network re-creates every time after reboot and gets configuration from "container network" section.
https://github.com/vyos/vyatta-cfg/blob/242f5685159f615ff79312041d3dde2063e5579a/scripts/init/vyos-router#L273-L277
So there is podman decide how to name this network.
From conf mode I get error VyOS 1.4-rolling-202108130117
vyos@vyos-oobm# loadkey vyos scp://vyos@192.168.122.11:/etc/ssh/ssh_host_rsa_key.pub Global symbol "$generate" requires explicit package name (did you forget to declare "my $generate"?) at /opt/vyatta/sbin/vyatta-load-user-key.pl line 162. Execution of /opt/vyatta/sbin/vyatta-load-user-key.pl aborted due to compilation errors. [edit] vyos@vyos-oobm#
Viacheslav added a project to T3762: Support network and address groups for policy ipv6-route: VyOS 1.4 Sagitta.
Viacheslav closed T3537: Unable to override the default OSPFv3 link cost for wireguard interface as Resolved.
I close the task, because it can't be reproducible in 1.3.0-rc5
Re-open it, if necessary with described step by step how to reproduce it.
Or open a new one.
from vyos.xml import defaults doesn't work for 1.3 correctly, for some reason it gets 2 isis process with same name "FOO"
https://github.com/sever-sever/vyos-1x/commit/7b0a33618bfa1d1ef99b9744ed1ded49a2c832af
vyos@r4-1.3# compare
[edit protocols]
+isis FOO {
+ interface tun0 {
+ }
+ net 49.0001.0000.0011.0001.00
+}
[edit]
vyos@r4-1.3# commit
[ protocols isis FOO ]
{'FOO': {'interface': {'tun0': {}}, 'net': '49.0001.0000.0011.0001.00'},
'lsp_mtu': '1497'}
Only one isis process can be definedAug 17 2021
Aug 17 2021
Viacheslav closed T1643: Deleting all firewall zones failed and locked out box, a subtask of T2199: Rewrite firewall in new XML/Python style, as Resolved.
Not reproducible, tested on "1.3-beta-202108151336"
Viacheslav added a comment to T1753: Configuring `ip source-validation loose` doesn't properly configure `sysctl`.
- Bug, values on interfaces are overwritten after firewall global parameters.
By default:
vyos@r4-1.3# sudo sysctl -a | grep "\.rp_filter" net.ipv4.conf.all.rp_filter = 0 net.ipv4.conf.default.rp_filter = 0 net.ipv4.conf.eth0.rp_filter = 0 net.ipv4.conf.eth1.rp_filter = 0 net.ipv4.conf.eth2.rp_filter = 0 net.ipv4.conf.lo.rp_filter = 0 net.ipv4.conf.vtun10.rp_filter = 0
Set value for the interface eth2 value "loose"
vyos@r4-1.3# set interfaces ethernet eth2 ip source-validation 'loose' [edit] vyos@r4-1.3# commit vyos@r4-1.3# sudo sysctl -a | grep "\.rp_filter" net.ipv4.conf.all.rp_filter = 0 net.ipv4.conf.default.rp_filter = 0 net.ipv4.conf.eth0.rp_filter = 0 net.ipv4.conf.eth1.rp_filter = 0 net.ipv4.conf.eth2.rp_filter = 2 net.ipv4.conf.lo.rp_filter = 0 net.ipv4.conf.vtun10.rp_filter = 0
Viacheslav added a comment to T1349: L2TP remote-access vpn terminated and not showing as connected.
@Merijn Any updates?
@c-po Can we close it?
Not more actual for 1.3, as it used isc-dhcp-client/isc-dhcp-relay/isc-dhcp-server 4.4.1-2
I can't find in logs something like bad udp checksums
Do we need to set this option configurable?
We have an option --disable-syslog so for enable logging it should be --enable-syslog
SA only with hub, output correct
vyos@spoke1:~$ show vpn ipsec sa
Connection State Uptime Bytes In/Out Packets In/Out Remote address Remote ID Proposal
------------ ------- -------- -------------- ---------------- ---------------- ----------- ----------------------------------
dmvpn up 16m24s 2K/2K 24/23 192.0.2.1 N/A AES_CBC_256/HMAC_SHA1_96/MODP_1024
vyos@spoke1:~$
vyos@spoke1:~$
vyos@spoke1:~$ sudo swanctl -l
dmvpn-NHRPVPN-tun100: #1, ESTABLISHED, IKEv1, 2bc867b1ca327379_i* c85b15462b657b03_r
local '100.64.1.11' @ 100.64.1.11[500]
remote '192.0.2.1' @ 192.0.2.1[500]
AES_CBC-256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024
established 1001s ago, rekeying in 2400s
dmvpn: #1, reqid 1, INSTALLED, TRANSPORT, ESP:AES_CBC-256/HMAC_SHA1_96/MODP_1024
installed 1001s ago, rekeying in 505s, expires in 979s
in cb2b55ee, 3044 bytes, 24 packets, 91s ago
out cb3647d6, 2474 bytes, 23 packets, 91s ago
local 100.64.1.11/32[gre]
remote 192.0.2.1/32[gre]
vyos@spoke1:~$