Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Feb 9 2023

Viacheslav committed rVYOSONEX53d82ea2b142: T4971: PPPoE server add named ip pool and attr Framed-Pool.
Feb 9 2023, 6:11 AM
Viacheslav committed rVYOSONEXb721c5a65e8f: T4971: Add smoketest for named pppoe-server pool.
Feb 9 2023, 6:11 AM
GitHub <noreply@github.com> committed rVYOSONEX707688894c1a: Merge pull request #1803 from sever-sever/T4971 (authored by c-po).
Feb 9 2023, 6:11 AM
dmbaturin committed rVYOSONEX89191003df19: vyos.template: T4988: add bytes and seconds conversion filters.
Feb 9 2023, 6:04 AM
GitHub <noreply@github.com> committed rVYOSONEXcd78fe907711: Merge pull request #1807 from dmbaturin/T4988-new-jinja-filters (authored by c-po).
Feb 9 2023, 6:04 AM

Feb 8 2023

Viacheslav added a comment to T4393: sstp: add support for configuring host-name (SNI).

@c-po Do you have any idea for CLI?

Feb 8 2023, 7:31 PM · VyOS 1.4 Sagitta (1.4.0-GA)
Viacheslav moved T2603: pppoe-server: reduce min MTU from Open to Finished on the VyOS 1.4 Sagitta board.
Feb 8 2023, 7:26 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
Viacheslav claimed T2229: PPPOE Default Queue type selection.
Feb 8 2023, 6:49 PM · VyOS 1.4 Sagitta
Viacheslav added a project to T2229: PPPOE Default Queue type selection: VyOS 1.4 Sagitta.

@skoenman Could you write some examples of configuration?

Feb 8 2023, 6:48 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4987: Structure HTTPS-API output - "show ip bgp neighbours".

@Usman there is a root task for op-mode rewriting https://phabricator.vyos.net/T4564
https://github.com/vyos/vyos-1x/blob/1042fc32c371a74f048ffaf9a551b5d13c227f45/src/op_mode/bgp.py#L77-L80

Feb 8 2023, 6:32 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T1993: Extended pppoe rate-limiter .

PR https://github.com/vyos/vyos-1x/pull/1808

Feb 8 2023, 6:14 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
Usman added a comment to T4987: Structure HTTPS-API output - "show ip bgp neighbours".

@Viacheslav Thanks, that works great!

Feb 8 2023, 5:34 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4987: Structure HTTPS-API output - "show ip bgp neighbours".

@Usman You have to update to the latest rolling.
https://vyos.net/get/nightly-builds/

Feb 8 2023, 4:17 PM · VyOS 1.4 Sagitta
Usman added a comment to T4987: Structure HTTPS-API output - "show ip bgp neighbours".

Thanks for the reply.

Feb 8 2023, 4:09 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4987: Structure HTTPS-API output - "show ip bgp neighbours".

Hi perhaps it is better to get JSON format

Feb 8 2023, 3:50 PM · VyOS 1.4 Sagitta
dmbaturin created T4988: Expose time and size conversion functions as Jinja2 filters.
Feb 8 2023, 3:41 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T1993: Extended pppoe rate-limiter from Open to In progress.
Feb 8 2023, 3:40 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
Usman created T4987: Structure HTTPS-API output - "show ip bgp neighbours".
Feb 8 2023, 3:03 PM · VyOS 1.4 Sagitta
Viacheslav committed rVYOSONEX9733bbae4e21: T2603: PPPoE-server change default min-mtu value 1280.
Feb 8 2023, 2:51 PM
GitHub <noreply@github.com> committed rVYOSONEX1042fc32c371: Merge pull request #1804 from sever-sever/T2603 (authored by c-po).
Feb 8 2023, 2:51 PM
n.fort added a comment to T4986: Ability to filter traffic originating from the router itself via firewall .

I would prefer a different syntax, in order to avoid the necessity attaching it to an interface. Maybe something like:

Feb 8 2023, 2:11 PM · VyOS 1.4 Sagitta
n.fort added a comment to T4857: SNMP - Implement FRR SNMP recommendations.

Error detected in forum: https://forum.vyos.io/t/unable-to-query-snmp-anymore-in-a-more-recent-1-4-version/10388/3
Fix for that bug: https://github.com/vyos/vyos-1x/pull/1805

Feb 8 2023, 1:35 PM · VyOS 1.4 Sagitta
n.fort changed the status of T4857: SNMP - Implement FRR SNMP recommendations from Confirmed to Needs testing.
Feb 8 2023, 1:33 PM · VyOS 1.4 Sagitta
Viacheslav added a project to T1993: Extended pppoe rate-limiter : VyOS 1.4 Sagitta.
Feb 8 2023, 1:20 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
Viacheslav added a comment to T2603: pppoe-server: reduce min MTU.

PR 1.4 https://github.com/vyos/vyos-1x/pull/1804
PR 1.3 https://github.com/vyos/vyos-1x/pull/1806

Feb 8 2023, 1:11 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
Viacheslav changed the status of T2603: pppoe-server: reduce min MTU from Open to In progress.
Feb 8 2023, 12:27 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
Viacheslav claimed T2603: pppoe-server: reduce min MTU.
Feb 8 2023, 12:27 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
Viacheslav changed the subtype of T4972: Support FQDN and IPv6 addresses for RADIUS servers in accel-ppp-backed protocols from "Task" to "Feature Request".
Feb 8 2023, 12:10 PM · VyOS Rolling
Viacheslav triaged T4972: Support FQDN and IPv6 addresses for RADIUS servers in accel-ppp-backed protocols as Wishlist priority.
Feb 8 2023, 12:10 PM · VyOS Rolling
Viacheslav closed T4852: pppoe - static default route deleted automatically with default-route none option as Wontfix.
Feb 8 2023, 11:36 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4852: pppoe - static default route deleted automatically with default-route none option.

Why did you delete this option and add a static route? Is there any use case?

Feb 8 2023, 11:20 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4852: pppoe - static default route deleted automatically with default-route none option.

This option has more priority than others.

Feb 8 2023, 11:03 AM · VyOS 1.4 Sagitta
Viacheslav closed T1288: FRR: rewrite staticd backend (/opt/vyatta/share/vyatta-cfg/templates/protocols/static/*), a subtask of T1267: FRR: Add interface name for static routes, as Resolved.
Feb 8 2023, 9:53 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav closed T1288: FRR: rewrite staticd backend (/opt/vyatta/share/vyatta-cfg/templates/protocols/static/*) as Resolved.

Rewritten in 1.4
We are not planning to modify it in 1.3

Feb 8 2023, 9:53 AM · VyOS 1.3 Equuleus (1.3.3)
Viacheslav added a comment to T4863: need an option for route policy to apply to dynamic interfaces l2tp*/ipoe*/pppoe* (for TCP MSS setting).

Got it; it is impossible for now after this migration https://phabricator.vyos.net/T3090
We are working on the re-design firewall CLI

Feb 8 2023, 9:23 AM · VyOS 1.4 Sagitta
Viacheslav created T4986: Ability to filter traffic originating from the router itself via firewall .
Feb 8 2023, 8:06 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4948: pppoe: add CLI option to allow definition of host-uniq flag from In progress to Needs testing.
Feb 8 2023, 7:38 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav changed the subtype of T4985: reset vpn ipsec-peer command with peer name does not work from "Task" to "Bug".
Feb 8 2023, 7:31 AM · VyOS 1.4 Sagitta

Feb 7 2023

SrividyaA created T4985: reset vpn ipsec-peer command with peer name does not work .
Feb 7 2023, 6:29 PM · VyOS 1.4 Sagitta
Viacheslav closed T4868: L2TP ppp-options ipv6 does not work without ipv6 pool but should as Resolved.
Feb 7 2023, 4:33 PM · VyOS 1.4 Sagitta
Viacheslav moved T4980: chrony not listening as a server from Open to Finished on the VyOS 1.4 Sagitta board.
Feb 7 2023, 4:32 PM · VyOS 1.4 Sagitta
Viacheslav moved T4117: Does not possible to configure PoD/CoA for L2TP vpn from Open to Finished on the VyOS 1.4 Sagitta board.
Feb 7 2023, 4:31 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
Viacheslav closed T4117: Does not possible to configure PoD/CoA for L2TP vpn as Resolved.
Feb 7 2023, 4:31 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
kylem closed T4980: chrony not listening as a server as Resolved.

I built a 1.4 ISO after my change was merged and deployed it to my home network. Setting a restrictive allow list works as expected, only the allowed IPs/subnets are able to use NTP. Removing all allow IPs prevents chrony/ntp from even listening to port 123. I don't think the "deny all" is needed in the code at all, but it is also not preventing the service to run as expected so I'll leave it.

Feb 7 2023, 4:16 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4969: QoS Policy - Unable to set class match mark number from In progress to Needs testing.
Feb 7 2023, 4:04 PM · vyatta-cfg-qos, VyOS 1.4 Sagitta
Viacheslav changed the status of T4980: chrony not listening as a server from Open to Needs testing.
Feb 7 2023, 4:03 PM · VyOS 1.4 Sagitta
aderouineau updated subscribers of T4123: checksum file fails to download from AWS S3 in rolling-release.

@c-po is this an S3 bucket policy issue, or do the files not exist?

Feb 7 2023, 3:57 PM · VyOS 1.4 Sagitta
Viacheslav created T4984: Firewall add mark for outgoing packets.
Feb 7 2023, 11:28 AM · VyOS Rolling
Viacheslav added a comment to T4982: OpenConnect should have TLS 1.0 and TLS 1.1 disabled by default.

Setting it configurable will be a good solution.
Just like it is done in OpenVPN

vyos@r14# set interfaces openvpn vtun0 tls tls-version-min 
Possible completions:
   1.0                  TLS v1.0
   1.1                  TLS v1.1
   1.2                  TLS v1.2
   1.3                  TLS v1.3
Feb 7 2023, 9:34 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav changed the subtype of T4981: Warn when a nat rule evicts a set of other active rules from "Task" to "Feature Request".
Feb 7 2023, 9:14 AM · VyOS Rolling
Viacheslav added a comment to T4971: Radius attribute "Framed-Pool" for PPPoE.

PR https://github.com/vyos/vyos-1x/pull/1803

Feb 7 2023, 8:55 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Zen3515 added a comment to T4983: `shutdown_required` should be set when running command `connect interface wwan0`.

Maybe, we need to handle cron script differently if ping failed?
Please let me know what should be the direction for solving this issue.

Feb 7 2023, 6:26 AM · VyOS Rolling
Zen3515 renamed T4983: `shutdown_required` should be set when running command `connect interface wwan0` from shutdown_required' to `shutdown_required` should be set when running command `connect interface wwan0`.
Feb 7 2023, 6:21 AM · VyOS Rolling
Zen3515 created T4983: `shutdown_required` should be set when running command `connect interface wwan0`.
Feb 7 2023, 6:12 AM · VyOS Rolling

Feb 6 2023

klase created T4982: OpenConnect should have TLS 1.0 and TLS 1.1 disabled by default.
Feb 6 2023, 10:52 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Kyle Mitchell <kyle.m.mitchell@oracle.com> committed rVYOSONEXba6277dfa089: ntp: T4980: change chrony deny all logic.
Feb 6 2023, 9:15 PM
GitHub <noreply@github.com> committed rVYOSONEX6b9b36db47a4: Merge pull request #1802 from kylem0/T4980 (authored by c-po).
Feb 6 2023, 9:15 PM
Alfa80 changed Issue type from unspecified to feature on T4981: Warn when a nat rule evicts a set of other active rules.
Feb 6 2023, 8:36 PM · VyOS Rolling
Alfa80 created T4981: Warn when a nat rule evicts a set of other active rules.
Feb 6 2023, 7:54 PM · VyOS Rolling
kylem updated the task description for T4980: chrony not listening as a server.
Feb 6 2023, 7:13 PM · VyOS 1.4 Sagitta
kylem updated the task description for T4980: chrony not listening as a server.
Feb 6 2023, 7:12 PM · VyOS 1.4 Sagitta
kylem added a comment to T4980: chrony not listening as a server.
Feb 6 2023, 7:12 PM · VyOS 1.4 Sagitta
kylem created T4980: chrony not listening as a server.
Feb 6 2023, 7:04 PM · VyOS 1.4 Sagitta
jestabro committed rVYOSONEX1f71a4f9d733: graphql: T4979: add query show_user_info.
Feb 6 2023, 6:51 PM
jestabro triaged T4979: Add API request 'show_user_info' for UI as Normal priority.
Feb 6 2023, 6:09 PM · VyOS 1.4 Sagitta
zsdc added a comment to T4589: BGP listen limit Increase via CLI command.

We also need to increase opened file descriptors (ulimit -n) to listen limit + some margin.
And consider adding a warning about increasing net.core.optmem_max for systems with a limit of more than 100 peers.

Feb 6 2023, 5:53 PM · VyOS 1.4 Sagitta (1.4.0-GA)
n.fort changed the status of T2408: DHCP Relay upstream and downstream interfaces from In progress to Needs testing.
Feb 6 2023, 3:11 PM · VyOS 1.4 Sagitta
a.apostoliuk added a comment to T4943: Radius SSH login displays "permission denied" on 1.4 rolling release.

It is a problem with mapping user to radius_priv_user
This problem began after https://github.com/vyos/vyos-1x/commit/765f84386b6e94984ff79db2eab36d51f759159b#diff-0ab0ed71ce757261c4a6ae2f3a5bc441d6257d477bfb5435ae38f230777ff81cR51
If I set in sshd_config

Feb 6 2023, 2:15 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4971: Radius attribute "Framed-Pool" for PPPoE from Open to In progress.
Feb 6 2023, 1:28 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav assigned T4968: VPN IPsec check dpd and close action for empty values to a.apostoliuk.
Feb 6 2023, 9:53 AM · VyOS 1.4 Sagitta
jack9603301 added a comment to T4921: Miniupnpd only allows for IGDv2 while IGDv1 is mostly common used and supported.

I'm not free now. I'll check it when I'm free

Feb 6 2023, 8:41 AM · Bugs

Feb 5 2023

ordex added a comment to T4974: OpenVPN- Data Channel Offload(DCO).

@Viacheslav unfortunately I am not too familiar with your build system, but basically you need to clone the ovpn-dco repository (https://github.com/OpenVPN/ovpn-dco.git) and compile it against your kernel, as you would normally do for any other out-of-tree kernel module.

Feb 5 2023, 9:42 PM · VyOS 1.4 Sagitta
c-po committed rVYOSONEXc6016db17ef5: smoketest: tftp: T4012: add busy waiting loop when validating service….
Feb 5 2023, 8:14 PM
GitHub <noreply@github.com> committed rVYOSONEX0a5579b84d7c: Merge pull request #1801 from c-po/fix-tftp-smoketest (authored by c-po).
Feb 5 2023, 8:14 PM
jestabro added a comment to T4952: Improve interface completion helper CLI experience.

PR for alternative completion helper. This provides the same args/output of the Python script, with a speedup of 1--2 orders of magnitude; testing needed.
https://github.com/vyos/vyos-utils/pull/11

Feb 5 2023, 3:50 PM · VyOS 1.4 Sagitta
Viacheslav added a project to T1963: Can't copy or rename a node: VyOS 1.4 Sagitta.
Feb 5 2023, 10:06 AM · VyOS Rolling, Bugs, VyOS 1.5 Circinus
Viacheslav updated subscribers of T4974: OpenVPN- Data Channel Offload(DCO).

@c-po @ordex Do you know how to integrate sources with our build system?

Feb 5 2023, 9:54 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4817: Please add support for RFC 9234 from Open to Needs testing.
Feb 5 2023, 9:52 AM · VyOS 1.4 Sagitta
c-po committed rVYOSONEXae9dde044f0a: T4975: always sync() filesystem after commit.
Feb 5 2023, 6:55 AM
c-po added a reverting change for rVYOSONEX7b36c363cd5b: login: T4975: Fixed broken CLI commands: rVYOSONEXf8108e3d7139: Revert "login: T4975: Fixed broken CLI commands".
Feb 5 2023, 6:55 AM
c-po committed rVYOSONEXf8108e3d7139: Revert "login: T4975: Fixed broken CLI commands".
Feb 5 2023, 6:55 AM
GitHub <noreply@github.com> committed rVYOSONEX3eb77660f6bb: Merge pull request #1798 from c-po/t4975-equuleus (authored by c-po).
Feb 5 2023, 6:55 AM
eronlloyd added a comment to T1963: Can't copy or rename a node.

I just confirmed that it's still reproducible in VyOS 1.4-rolling-202301241944. It seems that I cannot copy stanza to a new name instead of trying to rename it, either.

Feb 5 2023, 3:45 AM · VyOS Rolling, Bugs, VyOS 1.5 Circinus

Feb 4 2023

artooro created T4978: KeyError: 'memory' container_config['memory'] on upgrading to 1.4-rolling-202302041536.
Feb 4 2023, 9:14 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
vfreex added a comment to T4977: Babel routing protocol support.

A basic implementation: https://github.com/vyos/vyos-1x/pull/1800

Feb 4 2023, 7:14 PM · VyOS 1.4 Sagitta (1.4.0-epa2)
vfreex created T4977: Babel routing protocol support.
Feb 4 2023, 6:48 PM · VyOS 1.4 Sagitta (1.4.0-epa2)
ordex added a comment to T4974: OpenVPN- Data Channel Offload(DCO).

when an incompatible option is found, OpenVPN will simply disable DCO and go back to tun (this info will be logged). Therefore the limitations should not be a reason for not including DCO in VyOS.

Feb 4 2023, 3:54 PM · VyOS 1.4 Sagitta
c-po committed rVYOSONEX2622902ac76b: dhcp-relay: xml: T2408: fix CLI constraints.
Feb 4 2023, 3:27 PM
c-po committed rVYOSONEX04288af4fcfa: dhcp-relay: T2408: use Warning() on deprecated interface CLI node.
Feb 4 2023, 3:27 PM
n.fort committed rVYOSONEXca70102fcf78: T2408: dhcp-relay: Add listen-interface and upstream-interface feature.
Feb 4 2023, 3:11 PM
GitHub <noreply@github.com> committed rVYOSONEX9ee41e63880e: Merge pull request #1603 from nicolas-fort/T2408 (authored by c-po).
Feb 4 2023, 3:11 PM
c-po committed rVYOSONEXd56956df82c0: qos: T4284: add safeguard for non existing interfaces.
Feb 4 2023, 3:02 PM
c-po committed rVYOSONEX977400d71e81: qos: xml: T4284: policy-name is alpha-numeric only.
Feb 4 2023, 3:02 PM
c-po committed rVYOSONEX04addbaf7204: qos: xml: T4284: bandwidh unit suffix is optional.
Feb 4 2023, 3:02 PM
c-po committed rVYOSONEXa2e7f2adc9b8: bgp: T4817: extend smoketest to cover for local-role feature.
Feb 4 2023, 2:36 PM
c-po committed rVYOSONEX11d8438365ab: bgp: T4817: improve help and constraint error messages.
Feb 4 2023, 2:36 PM
c-po committed rVYOSONEX8fad7aa7ec3c: bgp: T4817: add local-role (RFC9234) support for peer-groups.
Feb 4 2023, 2:36 PM
GitHub <noreply@github.com> committed rVYOSONEX437f96843bed: GitHub: update assign author action to version 1.6.2 (authored by c-po).
Feb 4 2023, 1:47 PM
c-po committed rVYOSONEX71c99da2597c: qos: T4969: update "match mark" value range.
Feb 4 2023, 1:00 PM
GitHub <noreply@github.com> committed rVYOSONEXd2885ad028ec: T4969: fix class match mark number (authored by daniil).
Feb 4 2023, 12:54 PM
First
Prev
Next