Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Feb 7 2022

Viacheslav edited projects for T4087: IPsec IKE-group proposals limit of 10 pieces , added: VyOS 1.2 Crux (VyOS 1.2.9), VyOS 1.3 Equuleus ( 1.3.1); removed VyOS 1.4 Sagitta, VyOS 1.3 Equuleus.
Feb 7 2022, 10:27 AM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.2 Crux (VyOS 1.2.9)
Viacheslav assigned T4231: Feature Request: ocserv: 2FA (password+OTP) support in Openconnect to Unknown Object (User).
Feb 7 2022, 10:11 AM · VyOS 1.4 Sagitta
Viacheslav assigned T4154: Error add second gre tunnel with the same source interface to c-po.
Feb 7 2022, 10:09 AM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav changed the subtype of T4229: Add xdp-tools to build from "Task" to "Feature Request".
Feb 7 2022, 9:58 AM · VyOS 1.4 Sagitta
kirvio updated the task description for T4232: VyOS 1.2 traffic-policy shaper match interface not working.
Feb 7 2022, 7:26 AM · VyOS 1.2 Crux
kirvio created T4232: VyOS 1.2 traffic-policy shaper match interface not working.
Feb 7 2022, 6:49 AM · VyOS 1.2 Crux
Unknown Object (User) created T4231: Feature Request: ocserv: 2FA (password+OTP) support in Openconnect.
Feb 7 2022, 5:14 AM · VyOS 1.4 Sagitta
nikeshhajari created T4230: OpenVPN server configuration deleted after reboot when using a VRRP virtual-address.
Feb 7 2022, 2:07 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.2)

Feb 6 2022

c-po closed T4228: bond: OS error thrown when two bonds use the same member as Resolved.
Feb 6 2022, 7:58 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po moved T4228: bond: OS error thrown when two bonds use the same member from Need Triage to Finished on the VyOS 1.3 Equuleus ( 1.3.1) board.
Feb 6 2022, 7:57 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po moved T4228: bond: OS error thrown when two bonds use the same member from Need Triage to 1.3.1 on the VyOS 1.3 Equuleus board.
Feb 6 2022, 7:57 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po committed rVYOSONEX8a8d363d65ca: smoketest: bond: T4228: verify bond member is only used once.
Feb 6 2022, 7:57 PM
c-po committed rVYOSONEX073bd0823372: config: T4228: is_member() must return all instances not only the last one.
Feb 6 2022, 7:57 PM
c-po committed rVYOSONEXb4185f8356d6: smoketest: bond: T4228: verify bond member is only used once.
Feb 6 2022, 7:56 PM
c-po committed rVYOSONEX5e7e96380b31: config: T4228: is_member() must return all instances not only the last one.
Feb 6 2022, 12:55 PM
c-po moved T4228: bond: OS error thrown when two bonds use the same member from Open to Finished on the VyOS 1.4 Sagitta board.
Feb 6 2022, 12:55 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po changed the status of T4228: bond: OS error thrown when two bonds use the same member from Open to In progress.
Feb 6 2022, 12:55 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
sarthurdev closed T3970: Add support for op-mode PKI direct install into an active config session, a subtask of T3642: PKI configuration, as Resolved.
Feb 6 2022, 12:51 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
sarthurdev closed T3970: Add support for op-mode PKI direct install into an active config session as Resolved.
Feb 6 2022, 12:51 PM · VyOS 1.4 Sagitta
sarthurdev closed T3828: ipsec: Subtle change in "pfs enable" behavior from equuleus -> sagitta as Resolved.
Feb 6 2022, 12:48 PM · VyOS 1.4 Sagitta
sarthurdev closed T4164: PBR: network groups (as well as address and port groups) don't resolve in `nftables_policy.conf` as Resolved.
Feb 6 2022, 12:47 PM · VyOS 1.4 Sagitta
sarthurdev closed T4178: policy based routing tcp flags issue as Resolved.
Feb 6 2022, 12:47 PM · VyOS 1.4 Sagitta
sarthurdev closed T4216: Firewall: can't use negated groups in firewall rules as Resolved.
Feb 6 2022, 12:46 PM · VyOS 1.4 Sagitta
sarthurdev closed T4223: policy route cannot have several entries with the same table as Resolved.
Feb 6 2022, 12:45 PM · VyOS 1.4 Sagitta
panachoi added a comment to T2088: Increased boot time from 1.2.4 -> 1.3 rolling by 100%.

Sorry, but I dont think this is fixed; I just attempted to upgrade my working 1.2.8 configuration to 1.3.

Feb 6 2022, 8:45 AM · VyOS 1.3 Equuleus (1.3.0)

Feb 5 2022

c-po triaged T4228: bond: OS error thrown when two bonds use the same member as High priority.
Feb 5 2022, 7:43 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po edited projects for T4226: VRRP transition-script does not work for groups name which contains -(minus) sign, added: VyOS 1.3 Equuleus ( 1.3.1); removed VyOS 1.3 Equuleus.
Feb 5 2022, 7:15 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po closed T4226: VRRP transition-script does not work for groups name which contains -(minus) sign as Resolved.
Feb 5 2022, 7:14 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po committed rVYOSONEX8c8358f488ae: vrrp: T4226: transition-script does not work for groups containing a hypen (-).
Feb 5 2022, 7:14 PM
c-po committed rVYOSONEX11a900e706db: vrrp: T4226: transition-script does not work for groups containing a hypen (-).
Feb 5 2022, 7:13 PM
c-po changed the status of T4226: VRRP transition-script does not work for groups name which contains -(minus) sign from Open to In progress.
Feb 5 2022, 7:01 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEXd331da994906: monitoring: T3872: Fix template input plugin for running services.
Feb 5 2022, 6:58 PM
GitHub <noreply@github.com> committed rVYOSONEX48d4be3dd3eb: Merge pull request #1200 from sever-sever/T3872 (authored by c-po).
Feb 5 2022, 6:58 PM
SrividyaA committed rVYOSONEXb10baca3c866: T4227:Bridge: Typo in completion help of hello-time option.
Feb 5 2022, 6:58 PM
sarthurdev committed rVYOSONEX22f0794a9f19: firewall: T4209: Fix support for rule `recent` matches.
Feb 5 2022, 6:58 PM
Viacheslav committed rVYOSONEX5444eeda0fab: policy: T4151: Delete unexpected print added in commit c501ae0f.
Feb 5 2022, 6:58 PM
GitHub <noreply@github.com> committed rVYOSONEX9077c834b3de: Merge pull request #1206 from sarthurdev/T4209 (authored by c-po).
Feb 5 2022, 6:58 PM
Viacheslav committed rVYOSONEX6a487c62e107: firewall-bridge: T4193: Add op-mode for firewall policy.
Feb 5 2022, 6:58 PM
GitHub <noreply@github.com> committed rVYOSONEX568c33e3773c: Merge pull request #1207 from sever-sever/T4151 (authored by c-po).
Feb 5 2022, 6:58 PM
GitHub <noreply@github.com> committed rVYOSONEX4384c634f960: Merge pull request #1205 from srividya0208/T4227 (authored by c-po).
Feb 5 2022, 6:58 PM
GitHub <noreply@github.com> committed rVYOSONEX703e98ef74ad: Merge pull request #1204 from sever-sever/T4193-equ (authored by c-po).
Feb 5 2022, 6:58 PM
c-po committed rVYOSONEXbff42192796c: T4227:Bridge: Typo in completion help of hello-time option (authored by SrividyaA).
Feb 5 2022, 6:58 PM
bbabich updated the task description for T4229: Add xdp-tools to build.
Feb 5 2022, 4:23 AM · VyOS 1.4 Sagitta
bbabich created T4229: Add xdp-tools to build.
Feb 5 2022, 4:22 AM · VyOS 1.4 Sagitta
Unknown Object (User) added a comment to T4087: IPsec IKE-group proposals limit of 10 pieces .

VyOS 1.4-rolling-202201041316 - works well.

Feb 5 2022, 2:43 AM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.2 Crux (VyOS 1.2.9)

Feb 4 2022

danhusan awarded T4120: [VXLAN] add ability to set multiple unicast-remotes a Love token.
Feb 4 2022, 10:11 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
alyandon added a comment to T3420: Support UPNP protocol.

Ran some quick tests with current vyos installed in a VM and a client ubuntu server VM hooked up to it - since this is all internal stuff it is a double NAT scenario with the vyos external IP allocated out of 192.168.x.x space and using 10.100.100.0/24 internally for the client ubuntu VM.

Feb 4 2022, 8:59 PM
Viacheslav assigned T4163: [BMP-BGP] Routing monitoring feature to fernando.
Feb 4 2022, 6:15 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po updated the task description for T4228: bond: OS error thrown when two bonds use the same member.
Feb 4 2022, 5:20 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po claimed T4228: bond: OS error thrown when two bonds use the same member.
Feb 4 2022, 5:19 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
c-po created T4228: bond: OS error thrown when two bonds use the same member.
Feb 4 2022, 5:19 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav added a comment to T4214: [DHCP] static route dhcp-interface issues.

@aohanian I got it, thanks, so it doesn't delete the previous route in one commit
it can be archived with 2 commits

configure
delete protocols static route 1.1.1.1/32 dhcp-interface eth4
commit
set protocols static route 1.1.1.1/32 dhcp-interface eth5
commit
Feb 4 2022, 4:54 PM · VyOS 1.5 Circinus, VyOS Rolling
aohanian added a comment to T4214: [DHCP] static route dhcp-interface issues.

The problem in 1.3.0 is that if you delete the next-hop and then use a different next-hop, both next-hops are in the routing table. The next-hop that you deleted is still there:

Feb 4 2022, 2:48 PM · VyOS 1.5 Circinus, VyOS Rolling
fernando added a comment to T4214: [DHCP] static route dhcp-interface issues.

I think there is a bit of confusion here. nowadays 1.4 it's works as you mention , but 1.3 doesn't remove static (so we can see both static in the RIB) . however, In my personal opinion , it should show both static in our cli (same also on FRR) , because it's possible that you may need a different prefix ,it'll be installed with a different next-hop .

Feb 4 2022, 2:44 PM · VyOS 1.5 Circinus, VyOS Rolling
Viacheslav added a comment to T4214: [DHCP] static route dhcp-interface issues.

@fernando What do you want to see it that case?
In the our CLI DHCP-route can be as a single value now:

set protocols static route 192.0.2.192/32 dhcp-interface 'eth0'
set protocols static route 192.0.2.192/32 dhcp-interface 'eth2'

I.e. the first route will be replaced with the second route in CLI.
So if I understand correctly you expect that this route will be also replaced an in the FRR?

Feb 4 2022, 1:51 PM · VyOS 1.5 Circinus, VyOS Rolling
Viacheslav moved T4196: DHCP server client-prefix-length parameter results in non-functional leases from Need Triage to Finished on the VyOS 1.3 Equuleus ( 1.3.1) board.
Feb 4 2022, 1:38 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav closed T4196: DHCP server client-prefix-length parameter results in non-functional leases as Resolved.
Feb 4 2022, 1:38 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav added a comment to T2654: Multiple names unable to be assigned to the same static mapping.

For 1.4 this feature was added in T2683

Feb 4 2022, 1:18 PM · VyOS 1.3 Equuleus (1.3.2)
Viacheslav closed T2557: clear interfaces <type> <interface> counters has no effect as Not Applicable.

Fixed in 1.3

vyos@r4:~$ show interfaces counters 
Interface    Rx Packets   Rx Bytes     Tx Packets   Tx Bytes
dum0                  0          0              0          0
eth0                126       9952             76      10316
eth1                  4        280              5        523
eth2                 37       1924              0          0
lo                    6        300              6        300
vyos@r4:~$ 
vyos@r4:~$ clear interfaces ethernet eth1 counters 
Clearing eth1
vyos@r4:~$ show interfaces counters 
Interface    Rx Packets   Rx Bytes     Tx Packets   Tx Bytes
dum0                  0          0              0          0
eth0                182      14550            108      14340
eth1                  0          0              0          0
eth2                 42       2184              0          0
lo                    6        300              6        300
vyos@r4:~$
Feb 4 2022, 1:11 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a subtask for T4085: Rewrite L2TP/PPTP/SSTP/PPPoE services to get_config_dict: T2580: Support for ip pools for ippoe.
Feb 4 2022, 12:32 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav added a parent task for T2580: Support for ip pools for ippoe: T4085: Rewrite L2TP/PPTP/SSTP/PPPoE services to get_config_dict.
Feb 4 2022, 12:32 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
Viacheslav added a comment to T4165: Custom conntrack rules cannot be deleted.

PR https://github.com/vyos/vyatta-conntrack/pull/7

Feb 4 2022, 11:08 AM · VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav edited projects for T4165: Custom conntrack rules cannot be deleted, added: VyOS 1.3 Equuleus ( 1.3.1); removed VyOS 1.3 Equuleus.
Feb 4 2022, 10:46 AM · VyOS 1.3 Equuleus ( 1.3.1)
Viacheslav changed the status of T4165: Custom conntrack rules cannot be deleted from Open to In progress.
Feb 4 2022, 10:43 AM · VyOS 1.3 Equuleus ( 1.3.1)
zsdc changed the status of T3409: Add back TCP-MSS Clamp to PMTU from Open to Confirmed.
Feb 4 2022, 9:39 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T3420: Support UPNP protocol from In progress to Needs testing.

@jack9603301 Could you test it, also create a pr for the documentation?

Feb 4 2022, 9:11 AM
Viacheslav added a comment to T4151: IPV6 local PBR Support.

PR https://github.com/vyos/vyos-1x/pull/1207

Feb 4 2022, 8:50 AM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
Unknown Object (User) updated subscribers of T4226: VRRP transition-script does not work for groups name which contains -(minus) sign.

@jestabro you are right. Adding no_tag_node_value_mangle=True will fix this issue.
https://github.com/vyos/vyos-1x/blob/ec13cac66ba612ecc36053158c7517c8fe993547/src/system/keepalived-fifo.py#L73-L74

self.vrrp_config_dict = conf.get_config_dict(base,
                                     key_mangling=('-', '_'), get_first_key=True,
                                     no_tag_node_value_mangle=True)
Feb 4 2022, 6:27 AM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
nikeshhajari closed T4176: VyOS CLI command: show openvpn server/client does not display output as Invalid.
Feb 4 2022, 5:49 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
nikeshhajari added a comment to T4176: VyOS CLI command: show openvpn server/client does not display output.

Found the problem here - I used a different and simpler version of the configuration above and *show openvpn server* returns an output when a client is connected.

Feb 4 2022, 5:48 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
sarthurdev changed the status of T4209: Firewall incorrect handler for recent count and time from In progress to Needs testing.

PR: https://github.com/vyos/vyos-1x/pull/1206

Feb 4 2022, 12:51 AM · VyOS 1.4 Sagitta

Feb 3 2022

Viacheslav closed T3643: show vpn ipsec sa doesn't show tunnels in "down" state, a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, as Resolved.
Feb 3 2022, 5:35 PM · VyOS 1.4 Sagitta
Viacheslav closed T3643: show vpn ipsec sa doesn't show tunnels in "down" state as Resolved.
Feb 3 2022, 5:35 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
SrividyaA added a comment to T4227: Typo in help completion of hello-time option of bridge interface.

https://github.com/vyos/vyos-1x/pull/1205

Feb 3 2022, 5:20 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
SrividyaA claimed T4227: Typo in help completion of hello-time option of bridge interface.
Feb 3 2022, 5:20 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
SrividyaA created T4227: Typo in help completion of hello-time option of bridge interface.
Feb 3 2022, 5:03 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav added a comment to T4193: Add support for transparent firewall.

PR for op-mode https://github.com/vyos/vyos-1x/pull/1204

Feb 3 2022, 4:11 PM · VyOS 1.4 Sagitta
dmbaturin committed rVYOSONEX1920c4faa9d2: firewall-bridge: T4193: Add verify for action reject (authored by Viacheslav).
Feb 3 2022, 1:57 PM
zsdc assigned T4176: VyOS CLI command: show openvpn server/client does not display output to RyVolodya.
Feb 3 2022, 11:29 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
zsdc assigned T4192: OpenVPN custom option for "--client-to-client" causes configuration error to RyVolodya.
Feb 3 2022, 11:26 AM · VyOS 1.3 Equuleus (1.3.0)
sarthurdev committed rVYOSONEX9f7f1ebb15a2: firewall: T4178: Fix only inverse matching on tcp flags.
Feb 3 2022, 7:27 AM
GitHub <noreply@github.com> committed rVYOSONEX26774b890443: Merge pull request #1201 from sarthurdev/T4178_2 (authored by c-po).
Feb 3 2022, 7:27 AM
c-po closed T4218: firewall: rule name is not allowed to start with a number as Resolved.
Feb 3 2022, 7:05 AM · VyOS 1.4 Sagitta
c-po added a comment to T4218: firewall: rule name is not allowed to start with a number.

Thanks - works again

Feb 3 2022, 7:05 AM · VyOS 1.4 Sagitta

Feb 2 2022

sarthurdev changed the status of T4178: policy based routing tcp flags issue from In progress to Needs testing.

PR: https://github.com/vyos/vyos-1x/pull/1201

Feb 2 2022, 11:36 PM · VyOS 1.4 Sagitta
sarthurdev changed the status of T4178: policy based routing tcp flags issue from Needs testing to In progress.

Adding this issue to this task: https://forum.vyos.io/t/firewall-configuration-issue-after-upgrade/8414

Feb 2 2022, 11:07 PM · VyOS 1.4 Sagitta
Unknown Object (User) created T4226: VRRP transition-script does not work for groups name which contains -(minus) sign.
Feb 2 2022, 8:24 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav added a comment to T3872: Add configurable telegraf monitoring service.

PR https://github.com/vyos/vyos-1x/pull/1200
Fix for telegraf template/scripts for services.

Feb 2 2022, 6:14 PM · VyOS 1.3 Equuleus ( 1.3.1), VyOS 1.4 Sagitta
Viacheslav changed the status of T4194: prefix-list no check for duplicate entries from Open to Needs testing.
Feb 2 2022, 4:59 PM · VyOS 1.4 Sagitta
Unknown Object (User) added a comment to T4210: NAT source/destination negated ports throws an error.

I've used for these tests (VyOS 1.4-rolling-202202010836)
The same situation in general when you want to use "!".
Bad exampels.

set nat source rule 10 destination port !1-5
set nat source rule 10 destination port !22
set nat source rule 10 destination port !http
set nat source rule 10 destination port telnet,!http,!123,1001-1005
set nat source rule 10 destination port telnet,http,!123,1001-1005
Feb 2 2022, 2:54 AM · VyOS 1.4 Sagitta

Feb 1 2022

Unknown Object (User) added a comment to T4218: firewall: rule name is not allowed to start with a number.

( VyOS 1.4-rolling-202202010836)- Rule name which starts with a number work well.

Feb 1 2022, 9:44 PM · VyOS 1.4 Sagitta
mTx87 closed T4225: Performance degration with latest rolling release as Resolved.
Feb 1 2022, 2:04 PM · VyOS 1.4 Sagitta
mTx87 created T4225: Performance degration with latest rolling release.
Feb 1 2022, 1:50 PM · VyOS 1.4 Sagitta
hensur added a comment to T4151: IPV6 local PBR Support.

docs: https://github.com/vyos/vyos-documentation/pull/707

Feb 1 2022, 12:45 PM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
SrividyaA added a comment to T4222: Support for TWAMP as round-trip metric.

I have found the following links:

Feb 1 2022, 12:22 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
mTx87 added a comment to T4216: Firewall: can't use negated groups in firewall rules.

tested my previous code in latest rolling, looking good so far.
no errors on commiting.

Feb 1 2022, 12:02 PM · VyOS 1.4 Sagitta
adestis closed T4198: Error shown on commit as Resolved.
Feb 1 2022, 10:56 AM · VyOS 1.3 Equuleus (1.3.0)
adestis added a comment to T4198: Error shown on commit.

Seems like this is already handled in T4101

Feb 1 2022, 10:51 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav closed T4138: NAT configuration allows to set incorrect port range and invalid port as Resolved.
Feb 1 2022, 9:31 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4222: Support for TWAMP as round-trip metric.

Is there any Linux implementation?

Feb 1 2022, 9:04 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
First
Prev
Next