Page MenuHomeVyOS Platform
Feed Search

Search
Use Results
Hide Query

Nov 30 2021

Viacheslav closed T4010: DMVPN generates incorrect configuration life_time for swanctl.conf as Resolved.
Nov 30 2021, 5:12 PM · VyOS 1.4 Sagitta
Viacheslav moved T3725: show configuration in json format from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.0) board.
Nov 30 2021, 4:48 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav closed T3725: show configuration in json format as Resolved.
Nov 30 2021, 4:48 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXf36ac55e5355: op-mode: T3725: Show configuration in JSON format.
Nov 30 2021, 3:56 PM
Viacheslav added a comment to T4028: FRR 8.1 routes not being applied to routing table after reboot if an interface has 2 ip addresses.

After disable/enable interface ethX the routes reappear

vyos@r11-roll:~$ sudo ip link set dev eth0 down
vyos@r11-roll:~$ sudo ip link set dev eth0 up
Nov 30 2021, 3:17 PM · VyOS 1.4 Sagitta
Viacheslav triaged T4028: FRR 8.1 routes not being applied to routing table after reboot if an interface has 2 ip addresses as High priority.
Nov 30 2021, 2:08 PM · VyOS 1.4 Sagitta

Nov 29 2021

Viacheslav changed the status of T3979: vyos-hostd unable to hostfile-update from Open to Needs testing.
Nov 29 2021, 10:51 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3725: show configuration in json format.

PR https://github.com/vyos/vyos-1x/pull/1090

vyos@r11-roll:~$ show configuration json pretty 
{
    "interfaces": {
        "ethernet": {
            "eth0": {
                "address": [
                    "192.168.122.11/24"
                ],
                "hw-id": "52:54:00:48:a0:c6"
            },
            "eth1": {
                "hw-id": "52:54:00:fc:50:0b"
            },
            "eth2": {
                "hw-id": "52:54:00:e5:2f:51"
            }
        },
        "loopback": {
            "lo": {}
        }
    },
    "protocols": {
        "static": {
            "route": {
                "0.0.0.0/0": {
                    "next-hop": {
                        "192.168.122.1": {}
                    }
                }
            }
        }
    },
    "service": {
        "ssh": {
            "disable-host-validation": {}
        }
    },
    "system": {
        "config-management": {
            "commit-revisions": "100"
        },
        "conntrack": {
            "modules": {
                "ftp": {},
                "h323": {},
                "nfs": {},
                "pptp": {},
                "sip": {},
                "sqlnet": {},
                "tftp": {}
            }
        },
        "console": {
            "device": {
                "ttyS0": {
                    "speed": "115200"
                }
            }
        },
        "host-name": "r11-roll",
        "login": {
            "user": {
                "vyos": {
                    "authentication": {
                        "encrypted-password": "$45OXXXX",
                        "plaintext-password": "",
                        "public-keys": {
                            "vyos@vyos": {
                                "key": "AAXXXXk=",
                                "type": "ssh-rsa"
                            }
                        }
                    }
                }
            }
        },
        "name-server": [
            "1.1.1.1"
        ],
        "ntp": {
            "server": {
                "time1.vyos.net": {},
                "time2.vyos.net": {},
                "time3.vyos.net": {}
            }
        },
        "syslog": {
            "global": {
                "facility": {
                    "all": {
                        "level": "info"
                    },
                    "protocols": {
                        "level": "debug"
                    }
                }
            }
        },
        "time-zone": "Europe/Madrid"
    }
}
Nov 29 2021, 8:04 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav changed the status of T3725: show configuration in json format from Open to In progress.
Nov 29 2021, 7:29 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav updated the task description for T3725: show configuration in json format.
Nov 29 2021, 7:12 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a comment to T4013: Add pkg cloudwatch for AWS images.

PR https://github.com/vyos/vyos-build/pull/206

vyos@vyos:~$ show version all | match cloud
ii  amazon-cloudwatch-agent              1.247349.0b251399-1                 amd64        Amazon CloudWatch Agent
ii  cloud-init                           20.4-404-g0a9f4841-1~bddeb          all          Init scripts for cloud instances
vyos@vyos:~$
Nov 29 2021, 3:42 PM · VyOS 1.3 Equuleus (1.3.0)

Nov 26 2021

Viacheslav added a comment to T94: commit archive to AWS S3 .

Require rewriting vyatta-config-mgmt to XML/Python

Nov 26 2021, 10:02 PM · VyOS Rolling
Viacheslav closed T3978: containers add network without declaring prefix raise ConfigError as Resolved.
Nov 26 2021, 7:49 AM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEX26af96f2d4c9: containers: T3978: Fix correct variable name for network.
Nov 26 2021, 6:40 AM

Nov 25 2021

Viacheslav edited a custom field on T1669: Stacking routers, for centralized management.
Nov 25 2021, 8:29 PM
Viacheslav triaged T1669: Stacking routers, for centralized management as Low priority.
Nov 25 2021, 8:28 PM
Viacheslav added a comment to T3973: Feature Request: Multicast ping. Change TTL in Echo-reply from VyOS.

@NikolayP Can you play with it?

Nov 25 2021, 8:21 PM · Restricted Project, VyOS Rolling
Viacheslav added a comment to T3976: Missing prefix-list and access-list option from ipv6 route-map.

Already implemented in FRR 8.x, so for first, we should migrate to FRR 8.x if it is possible T3753

Nov 25 2021, 8:08 PM
Viacheslav added a comment to T3978: containers add network without declaring prefix raise ConfigError.

PR https://github.com/vyos/vyos-1x/pull/1086

Nov 25 2021, 8:01 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T3978: containers add network without declaring prefix raise ConfigError from Open to In progress.
Nov 25 2021, 7:52 PM · VyOS 1.4 Sagitta
Viacheslav assigned T3979: vyos-hostd unable to hostfile-update to scj643.
Nov 25 2021, 7:48 PM · VyOS 1.4 Sagitta
Viacheslav closed T3986: Incorrect description for vpn ipsec site-to-site authentication and connection as Resolved.
Nov 25 2021, 7:46 PM · VyOS 1.4 Sagitta
Viacheslav closed T4006: Add additional Linux capabilities to container configuration as Resolved.
Nov 25 2021, 7:42 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4014: Add “command” and “arg” configuration options for containers.

We try not to use "raw options" of commands.
But I don't see another universal solution for it.

Nov 25 2021, 7:40 PM · VyOS 1.4 Sagitta
Viacheslav moved T4005: Feature Request: IPsec IKEv1 + IKEv2 for one peer from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.0-epa3) board.
Nov 25 2021, 7:49 AM · VyOS 1.3 Equuleus (1.3.0-epa3)

Nov 23 2021

Viacheslav added a comment to T3829: Support separated TCP/IP stack via "ip netns".

As the first step:

Nov 23 2021, 6:23 PM · VyOS Rolling

Nov 22 2021

Viacheslav created T4013: Add pkg cloudwatch for AWS images.
Nov 22 2021, 11:54 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav changed the subtype of T4005: Feature Request: IPsec IKEv1 + IKEv2 for one peer from "Task" to "Feature Request".
Nov 22 2021, 11:41 AM · VyOS 1.3 Equuleus (1.3.0-epa3)

Nov 21 2021

Viacheslav committed rVYOSONEXd75403f78aef: dmvpn: T4010: Fix template ipsec profile rekey_time.
Nov 21 2021, 6:46 AM

Nov 18 2021

Viacheslav changed the status of T4010: DMVPN generates incorrect configuration life_time for swanctl.conf from Open to In progress.

PR https://github.com/vyos/vyos-1x/pull/1074

Nov 18 2021, 8:14 PM · VyOS 1.4 Sagitta
Viacheslav updated the task description for T4010: DMVPN generates incorrect configuration life_time for swanctl.conf.
Nov 18 2021, 7:29 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4006: Add additional Linux capabilities to container configuration from Open to Needs testing.
Nov 18 2021, 7:18 PM · VyOS 1.4 Sagitta
Viacheslav created T4010: DMVPN generates incorrect configuration life_time for swanctl.conf.
Nov 18 2021, 7:01 PM · VyOS 1.4 Sagitta
Viacheslav closed T4009: DMVPN generates incorrect configuration with hyphens for swanctl.conf as Invalid.
Nov 18 2021, 6:32 PM · VyOS 1.4 Sagitta
Viacheslav created T4009: DMVPN generates incorrect configuration with hyphens for swanctl.conf.
Nov 18 2021, 6:28 PM · VyOS 1.4 Sagitta
Viacheslav created T4007: Ability to use x509 certificates for DMVPN.
Nov 18 2021, 4:37 PM · VyOS Rolling
Viacheslav committed rVYOSONEX02090ae9927e: ipsec: T3643: Fix for show tunnels with state down.
Nov 18 2021, 2:36 PM
Viacheslav added a comment to T4004: IPsec ike-group parameters are not saved correctly (after reboot).

I don't think that it is a bug.
If you don't set any value, it gets default value ikev1
https://github.com/vyos/vyatta-cfg-vpn/blob/d2d4361bffaa0b99c85c7fbf46ddd760ae6512f0/templates/vpn/ipsec/ike-group/node.tag/key-exchange/node.def#L3

Nov 18 2021, 8:12 AM · VyOS 1.3 Equuleus (1.3.0-epa3)

Nov 16 2021

Viacheslav created T4000: containers storage doesn't cleanup.
Nov 16 2021, 9:52 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3999: show lldp neighbor Traceback error.

@daniil Can you provide the output of json format?

Nov 16 2021, 3:30 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a project to T3999: show lldp neighbor Traceback error: VyOS 1.4 Sagitta.
Nov 16 2021, 2:44 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta

Nov 15 2021

Viacheslav added a subtask for T3995: OpenVPN: do not stop/start service on configuration change: T2400: OpenVPN: dont restart server if no need.
Nov 15 2021, 8:23 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a parent task for T2400: OpenVPN: dont restart server if no need: T3995: OpenVPN: do not stop/start service on configuration change.
Nov 15 2021, 8:23 PM · VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav triaged T2081: Support Ethernet over IP (EoIP) as Wishlist priority.
Nov 15 2021, 6:11 PM · VyOS 1.5 Circinus
Viacheslav added a comment to T2081: Support Ethernet over IP (EoIP) .

By the way, mikrotik IPoE format doesn't compatible with VyOS

Nov 15 2021, 5:49 PM · VyOS 1.5 Circinus
Viacheslav added a comment to T3979: vyos-hostd unable to hostfile-update.

https://github.com/vyos/vyos-1x/blob/1353757247c027f6352000a9450b502c25c460c8/src/utils/vyos-hostsd-client#L123-L139
entry['address']] expect list

Nov 15 2021, 3:12 PM · VyOS 1.4 Sagitta
Viacheslav reassigned T3960: FRR Misconfig when using multiple VRF VNI from Unknown Object (User) to c-po.
Nov 15 2021, 10:29 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3960: FRR Misconfig when using multiple VRF VNI.

Zebra configuration:

root@r11-roll:/home/vyos# cat foo.txt 
!
frr version 7.5.1-20210619-12-g3f8a74e70
frr defaults traditional
hostname r11-roll
log syslog
log facility local7
service integrated-vtysh-config
!
vrf blue
 vni 2000
 exit-vrf
!
vrf red
 vni 3000
 exit-vrf
!
line vty
!
end
Nov 15 2021, 10:08 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T2044: RPKI doesn't boot properly.

Still reproducible VyOS 1.3-beta-202111150443
After reboot

Nov 15 2021, 9:01 AM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav added a comment to T3988: Feature Request: IPsec Multiple local/remote prefix for the tunnel.

For 1.4 it was implemented in T645
IPSec was completely rewritten in 1.4

Nov 15 2021, 8:23 AM · VyOS 1.4 Sagitta
Viacheslav closed T645: Allow multiple prefixes in ipsec tunnel, a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, as Resolved.
Nov 15 2021, 8:22 AM · VyOS 1.4 Sagitta
Viacheslav closed T645: Allow multiple prefixes in ipsec tunnel as Resolved.
Nov 15 2021, 8:22 AM · VyOS 1.4 Sagitta
Viacheslav closed T3934: Openconnect VPN broken: ocserv-worker general protection fault on client connect as Resolved.

Fixed VyOS 1.3-beta-202111150443

Nov 15 2021, 7:56 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a comment to T3989: Firewall - Can't delete rule in firewall entry and leave just default-action when firewall entry is in used.

Duplicate T1292

Nov 15 2021, 5:55 AM

Nov 12 2021

Viacheslav committed rVYOSONEX05c4d3ec9a6e: ipsec: T3986: Fix typos in descriptions.
Nov 12 2021, 4:33 PM
Viacheslav added a comment to T3983: show pki certificate Doesnt show x509 certificates.

Note, the host was upgraded from 1.2.8

Nov 12 2021, 12:30 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav added a comment to T3986: Incorrect description for vpn ipsec site-to-site authentication and connection.

PR https://github.com/vyos/vyos-1x/pull/1071

Nov 12 2021, 8:28 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T3986: Incorrect description for vpn ipsec site-to-site authentication and connection from Open to In progress.
Nov 12 2021, 8:20 AM · VyOS 1.4 Sagitta

Nov 11 2021

Viacheslav created T3986: Incorrect description for vpn ipsec site-to-site authentication and connection.
Nov 11 2021, 6:31 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3985: vpn IPSec site-to-site continues to work if certificates are deleted.

Certificates can be wound there:

loaded certificate from '/etc/swanctl/x509/R1.pem'
loaded certificate from '/etc/swanctl/x509ca/CA.pem'
loaded RSA key from '/etc/swanctl/private/x509_R1.pem'
Nov 11 2021, 6:17 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T3985: vpn IPSec site-to-site continues to work if certificates are deleted from Open to Confirmed.
Nov 11 2021, 6:16 PM · VyOS 1.4 Sagitta
Viacheslav created T3985: vpn IPSec site-to-site continues to work if certificates are deleted.
Nov 11 2021, 6:16 PM · VyOS 1.4 Sagitta
Viacheslav created T3984: Ability to disable all logs.
Nov 11 2021, 1:20 PM
Viacheslav created T3983: show pki certificate Doesnt show x509 certificates.
Nov 11 2021, 11:03 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta

Nov 10 2021

Viacheslav added a comment to T3980: vrrp transition-script validator makes warning fatal and also causes a python NameError exception.

Try to restart vyos-configd after changing script file

Nov 10 2021, 3:17 PM · VyOS 1.3 Equuleus (1.3.6)
Viacheslav added a project to T3979: vyos-hostd unable to hostfile-update: VyOS 1.4 Sagitta.
Nov 10 2021, 7:31 AM · VyOS 1.4 Sagitta
Viacheslav updated subscribers of T3979: vyos-hostd unable to hostfile-update.

@anastrophe Describe please how to reproduce it?
Can be related to this commit d9b1c3df T2683

Nov 10 2021, 7:30 AM · VyOS 1.4 Sagitta

Nov 9 2021

Viacheslav created T3978: containers add network without declaring prefix raise ConfigError.
Nov 9 2021, 4:43 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3934: Openconnect VPN broken: ocserv-worker general protection fault on client connect.

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=997981

Nov 9 2021, 4:32 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a comment to T3976: Missing prefix-list and access-list option from ipv6 route-map.

FRR doesn't support it.

Nov 9 2021, 10:27 AM
Viacheslav updated subscribers of T3947: Route based IPSec VPN: Child_SA is not establishing when the peer connection-type are initiate/respond combination.
Nov 9 2021, 8:17 AM · Bugs, VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus, VyOS Rolling
Viacheslav changed the status of T3947: Route based IPSec VPN: Child_SA is not establishing when the peer connection-type are initiate/respond combination from Open to Confirmed.
Nov 9 2021, 7:48 AM · Bugs, VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus, VyOS Rolling

Nov 8 2021

Viacheslav added a comment to T3977: dhcp-relay-agent uses "physical" IP instead of vrrp IP.

I don't see any option like "source address"
https://manpages.debian.org/testing/isc-dhcp-relay/dhcrelay.8.en.html

Nov 8 2021, 4:15 PM · VyOS 1.3 Equuleus (1.3.6)
Viacheslav changed the subtype of T3976: Missing prefix-list and access-list option from ipv6 route-map from "Task" to "Feature Request".
Nov 8 2021, 9:24 AM
Viacheslav added a comment to T3975: Clear dhcp server leases.

In this case, there is no difference, the bug/feature is the same.

Nov 8 2021, 9:20 AM · vyatta-op-dhcp-server, VyOS 1.4 Sagitta
Viacheslav closed T3975: Clear dhcp server leases as Invalid.

Duplicate T1375

Nov 8 2021, 8:54 AM · vyatta-op-dhcp-server, VyOS 1.4 Sagitta

Nov 7 2021

Viacheslav closed T1520: Advanced network monitoring: nTop or similar as Invalid.

It is better to use containers for it:

Nov 7 2021, 10:20 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a project to T1999: support for ip groups in nat: VyOS 1.4 Sagitta.
Nov 7 2021, 9:56 AM
Viacheslav closed T2874: Add MTU and TCP-MSS discovery tool as Resolved.
Nov 7 2021, 9:12 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav closed T3626: Configuring and disabling DHCP Server as Resolved.
Nov 7 2021, 8:49 AM · VyOS 1.3 Equuleus (1.3.0-epa3), VyOS 1.2 Crux (VyOS 1.2.9), VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXf7277650ffe0: dhcp: T3626: Prevent to disable only one configured network.
Nov 7 2021, 4:14 AM

Nov 6 2021

Viacheslav changed the subtype of T3971: Ability to build ISO images for XCP-NG hypervisor from "Bug" to "Feature Request".
Nov 6 2021, 12:32 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.2 Crux (VyOS 1.2.9)

Nov 5 2021

Viacheslav moved T3971: Ability to build ISO images for XCP-NG hypervisor from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Nov 5 2021, 6:53 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.2 Crux (VyOS 1.2.9)
Viacheslav added a comment to T3971: Ability to build ISO images for XCP-NG hypervisor.

PR for crux https://github.com/vyos/vyos-build/pull/198

vyos@vyos:~$ show version all | match xe-g
ii  xe-guest-utilities               7.16.0-2                         amd64        Virtual Machine Monitoring Scripts
vyos@vyos:~$
Nov 5 2021, 6:52 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.2 Crux (VyOS 1.2.9)
Viacheslav changed the status of T3971: Ability to build ISO images for XCP-NG hypervisor from In progress to Needs testing.
Nov 5 2021, 6:04 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.2 Crux (VyOS 1.2.9)
Viacheslav added a project to T3971: Ability to build ISO images for XCP-NG hypervisor: VyOS 1.2 Crux (VyOS 1.2.9).
Nov 5 2021, 6:03 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.2 Crux (VyOS 1.2.9)
Viacheslav added a comment to T3971: Ability to build ISO images for XCP-NG hypervisor.

PR https://github.com/vyos/vyos-build/pull/197

Nov 5 2021, 4:37 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.2 Crux (VyOS 1.2.9)
Viacheslav changed the status of T3971: Ability to build ISO images for XCP-NG hypervisor from Open to In progress.
Nov 5 2021, 2:26 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.2 Crux (VyOS 1.2.9)
Viacheslav created T3971: Ability to build ISO images for XCP-NG hypervisor.
Nov 5 2021, 2:17 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.2 Crux (VyOS 1.2.9)

Nov 4 2021

Viacheslav closed T3969: Container incorrect raiseError format if network doesn't exist as Resolved.
Nov 4 2021, 5:38 PM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEX52f4a8571ad2: containers: T3969: Fix F-string format for network ConfigError.
Nov 4 2021, 5:24 PM
Viacheslav changed the status of T3931: SSTP doesn't work after rewriting to PKI, a subtask of T3642: PKI configuration, from Confirmed to Needs testing.
Nov 4 2021, 4:24 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
Viacheslav changed the status of T3931: SSTP doesn't work after rewriting to PKI from Confirmed to Needs testing.
Nov 4 2021, 4:24 PM · VyOS 1.4 Sagitta
Viacheslav assigned T3931: SSTP doesn't work after rewriting to PKI to sarthurdev.
Nov 4 2021, 4:23 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3969: Container incorrect raiseError format if network doesn't exist.

PR https://github.com/vyos/vyos-1x/pull/1065

Nov 4 2021, 3:55 PM · VyOS 1.4 Sagitta
Viacheslav claimed T3969: Container incorrect raiseError format if network doesn't exist.
Nov 4 2021, 3:38 PM · VyOS 1.4 Sagitta
Viacheslav created T3969: Container incorrect raiseError format if network doesn't exist.
Nov 4 2021, 3:38 PM · VyOS 1.4 Sagitta
Viacheslav updated the task description for T3968: Add network type ptp (veth) for containers.
Nov 4 2021, 2:08 PM · VyOS Rolling
Viacheslav updated the task description for T3968: Add network type ptp (veth) for containers.
Nov 4 2021, 2:04 PM · VyOS Rolling
Viacheslav created T3968: Add network type ptp (veth) for containers.
Nov 4 2021, 2:04 PM · VyOS Rolling
First
Prev
Next