PR for L2TP https://github.com/vyos/vyos-1x/pull/1988
- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
May 10 2023
May 10 2023
Viacheslav added a comment to T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
Not working. The same errors
May 9 2023
May 9 2023
c-po changed the status of T2778: Migrate "system syslog" to get_config_dict() to support new features from In progress to Needs testing.
c-po changed the status of T2769: Add VRF support for syslog, a subtask of T2778: Migrate "system syslog" to get_config_dict() to support new features, from Resolved to Unknown Status.
c-po closed T2769: Add VRF support for syslog, a subtask of T2778: Migrate "system syslog" to get_config_dict() to support new features, as Resolved.
GitHub <noreply@github.com> committed rVYOSONEX70e476760a9c: Merge pull request #1978 from zdc/T5190-sagitta (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEX6a150eb26c97: Merge pull request #1984 from sever-sever/T5060 (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEX73ec6fd55d18: Merge pull request #1985 from c-po/t2778-syslog (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEX3543aecf8463: Merge pull request #1986 from sever-sever/T5213 (authored by c-po).
one issue.
the migration scripts don't take into account older load balancing configs.
Viacheslav changed the status of T5209: dhclient load-balancing exit hook 04-dhcp-wanlb returned non-zero exit status from Open to In progress.
Viacheslav closed T5202: After removal load-balancing a pid remained which used in dhclient-exit-hooks as Resolved.
Fixed with rewriting to systemd unit vyos-wan-load-balance.service
Viacheslav added a comment to T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
In T5213#148346, @joshua.hanley wrote:@Viacheslav Thanks for the prompt response. Not sure if the change will also cover L2TP as well. For example:
set vpn l2tp remote-access authentication radius accounting-interim-interval '60'
Viacheslav reopened T5203: load-balancing wan add systemd unit instead of old vyatta-wanloadbalance.init, a subtask of T4470: Rewrite load-balancing wan to XML/Python, as Needs testing.
Viacheslav reopened T5203: load-balancing wan add systemd unit instead of old vyatta-wanloadbalance.init as "Needs testing".
Sometimes it stuck for ~1.5 minutes after deleting.
vyos@r14# delete load-balancing [edit] vyos@r14# commit
joshua.hanley updated subscribers of T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
@Viacheslav Thanks for the prompt response. Not sure if the change will also cover L2TP as well. For example:
Viacheslav added a comment to T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
PR https://github.com/vyos/vyos-1x/pull/1986
set service pppoe-server authentication mode 'radius' set service pppoe-server authentication radius accounting-interim-interval '60' set service pppoe-server authentication radius server 203.0.113.1 key '123' set service pppoe-server client-ip-pool name POOL-01 gateway-address '192.0.2.1' set service pppoe-server client-ip-pool name POOL-01 subnet '192.0.2.0/24' set service pppoe-server interface eth1
Viacheslav changed the status of T5214: PPPoE-server incorrect warning if a named pool is defined from Open to In progress.
Viacheslav renamed T5213: Accel-ppp sending accounting interim updates acct-interim-interval option from Sending accounting interim updates to Accel-ppp sending accounting interim updates acct-interim-interval option.
Viacheslav changed the status of T5213: Accel-ppp sending accounting interim updates acct-interim-interval option from Open to In progress.
In T5186#148294, @rh7819 wrote:this is cause by
tcindex classifier is removed by upstream kernel, so
08:04:48 DEBUG - filter add dev eth1 parent 11: protocol ip prio 1 handle 128 tcindex classid 11:a
fails.
joshua.hanley updated the task description for T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
joshua.hanley renamed T5213: Accel-ppp sending accounting interim updates acct-interim-interval option from Sending account interim upates to Sending accounting interim updates.
joshua.hanley updated the task description for T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
joshua.hanley updated the task description for T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
Viacheslav added a comment to T5211: route-map allows both IPv4 and IPv6 in one rule which never match.
We use FRR as the backend and it uses logical AND for match entries
c-po added a comment to T2778: Migrate "system syslog" to get_config_dict() to support new features.
c-po changed the status of T2769: Add VRF support for syslog, a subtask of T2778: Migrate "system syslog" to get_config_dict() to support new features, from Open to In progress.
this is cause by
May 8 2023
May 8 2023
c-po changed the status of T2778: Migrate "system syslog" to get_config_dict() to support new features from Open to In progress.
GitHub <noreply@github.com> committed rVYOSONEX36a60cd14733: T4780: bump firewall version 9 -> 10 (authored by c-po).
PR https://github.com/vyos/vyos-1x/pull/1984
set high-availability disable set high-availability vrrp group GRP01 address 192.0.2.47/32 set high-availability vrrp group GRP01 interface 'eth1' set high-availability vrrp group GRP01 vrid '10'
It doesn't like protocol tcp
vyos@r14# sudo tc filter replace dev eth1 parent 1: protocol all u32 match ip protocol tcp 0xff action police rate 300000000 burst 15k flowid 1:a Illegal "match" [edit] vyos@r14#
But it works with protocol 6
vyos@r14# sudo tc filter replace dev eth1 parent 1: protocol all u32 match ip protocol 6 0xff action police rate 300000000 burst 15k flowid 1:a [edit] vyos@r14#
And next fail:
ardware UUID: 4d6f4d29-1ae8-446f-8d2b-3decd9da64c7
On 1.4-rolling-202305080742, speed limit and protocol detection still not worked out correctly too.
Viacheslav updated the task description for T5209: dhclient load-balancing exit hook 04-dhcp-wanlb returned non-zero exit status.
Viacheslav updated the task description for T5202: After removal load-balancing a pid remained which used in dhclient-exit-hooks.
Viacheslav closed T5203: load-balancing wan add systemd unit instead of old vyatta-wanloadbalance.init, a subtask of T4470: Rewrite load-balancing wan to XML/Python, as Resolved.
In T3655#143947, @fernando wrote:it doesn't seem the same problem as here, this logic that was applied over this version was vrf not on the table . Could you share full configuration ? there is some point over vrfs / vrf default /leaking that are not clear. So I can replicate the scenery and we see what is going on .
In T5116#147654, @Viacheslav wrote:I think the only solution is to use network namespaces
https://docs.strongswan.org/docs/5.9/howtos/nameSpaces.html
GitHub <noreply@github.com> committed rVYOSONEX43b4d30ed029: Merge pull request #1964 from indrajitr/ddclient-improvement-round-1 (authored by c-po).
Unknown Object (User) added a comment to T5158: Refactoring the commad '$ sh interfaces counters'.
def _format_show_counters(data: list):
data_entries = []
for entry in data:
Interface = entry.get('ifname')
Rx_Packets = entry.get('rx_packets')
Rx_Packets = entry.get('rx_bytes')
Tx_Packets = entry.get('tx_packets')
Tx_Bytes = entry.get('tx_bytes')
Rx_Dropped = entry.get('rx_dropped')
Tx_Dropped = entry.get('tx_dropped')
Rx_Errors = entry.get('rx_over_errors')
Tx_Errors = entry.get('tx_carrier_errors')
data_entries.append([Interface, Rx_Packets, Rx_Packets, Tx_Packets, Tx_Bytes, Rx_Dropped, Tx_Dropped, Rx_Errors, Tx_Errors])May 7 2023
May 7 2023
Viacheslav changed the subtype of T5053: Vyatta-cfg Post-Removal Hook Tries to Disable Deleted Service from "Task" to "Bug".
May 6 2023
May 6 2023
thanks for the contribution , I've done some test , it seems to work like a champ . @dmbaturin @c-po this script to do the steps necessary to compile the kernel module to use ovpn-dco . Could you check if it's correct or something needs to be improved :
Great, maybe we can use jool to build it!
jworrell closed T5206: ethtool.py:Ethtool.__init__ has always true conditional due to typo as Resolved.
GitHub <noreply@github.com> committed rVYOSONEXd4352bed6685: Merge pull request #1980 from sever-sever/T5203 (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEX5518738952cd: Merge pull request #1981 from c-po/equuleus (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEXf7fc3ea77e4b: Merge pull request #1982 from dmbaturin/T671-interfaces-pl (authored by c-po).
May 5 2023
May 5 2023
Thanks! Setting a router-id fixed it for VPNv4 and VPNv6. It also works without creating a dummy interface.
In T5082#148096, @onedr0p wrote:@c-po I know we're on rolling for 1.4 but is there any way to communicate breaking changes like this in the future? If this was mentioned in the PR or ticket I don't think there would have been any confusion.
As for this tickets status it can be closed.
It should work for 1.4
set policy route foo interface eth1v1
Load-balancing op-mode output generated by https://github.com/vyos/vyatta-wanloadbalance/blob/current/src/lboutput.cc