I did some modification to fix this problem.
https://github.com/vyos/vyos-build/pull/386
- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Aug 30 2023
Aug 30 2023
sarthurdev changed the status of T4782: Allow multiple CA certificates (on e.g. EAPoL) from Confirmed to In progress.
Adding geo-ip and fqnd too:
https://github.com/vyos/vyos-1x/pull/2188
@csszep Yes it is expected, IPv6 has no sysctl and requires the nftables rule to function. The nftables execution is slightly slower, so there's no benefit to change it for IPv4.
jestabro moved T1764: Use lists instead of whitespace-separated strings in vyos.config from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.0) board.
jestabro closed T1764: Use lists instead of whitespace-separated strings in vyos.config as Resolved.
This was resolved, and present in 1.3.0.
jestabro added a comment to T4295: Use config_tree instead of legacy loadFile in vyos-load-config.py.
This is superseded by T5528.
Viacheslav edited projects for T4933: Malformed lines cause vyos.util.colon_separated_to_dict fail with a nondescript error, added: VyOS 1.3 Equuleus (1.3.4); removed VyOS 1.3 Equuleus (1.3.5).
Viacheslav committed rVYOSONEXa8777563f19f: vyos.util: T4933: informative error for bad colon-separated lines (authored by dmbaturin).
GitHub <noreply@github.com> committed rVYOSONEXabf824cddbb5: Merge pull request #2187 from sever-sever/T4933-eq (authored by Viacheslav).
jestabro closed T5520: Likely source of corruption on system update exposed by change in coreutils for Bookworm, a subtask of T5267: Another corruption on upgrade, as Resolved.
jestabro added a comment to T5520: Likely source of corruption on system update exposed by change in coreutils for Bookworm.
This possible corruption on system update is resolved in the commit; further investigation of the effect of coreutils behavior change will be in subtask T5527.
fernando changed the status of T5526: Clarify the error message when trying to set an interface as a BGP peer group using the wrong syntax from Open to Confirmed.
Unknown Object (User) changed the status of T5525: Change dev.packages.vyos.net repo to rolling-packages.vyos.net vyos-build:current uses from Open to In progress.
PR is created https://github.com/vyos/vyos-build/pull/385
Viacheslav moved T4475: route-map does not support ipv6 peer from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.4) board.
Viacheslav moved T5221: BGP as-override behavior differs from new FRR and other vendors from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.4) board.
Viacheslav closed T5221: BGP as-override behavior differs from new FRR and other vendors as Resolved.
Viacheslav removed a project from T5378: Request for clearing single entry multicast route: VyOS 1.3 Equuleus (1.3.5).
Viacheslav added a comment to T4933: Malformed lines cause vyos.util.colon_separated_to_dict fail with a nondescript error.
Cherry-pick for 1.3.4 https://github.com/vyos/vyos-1x/pull/2187
Viacheslav removed a project from T4930: Allow using domain names for WireGuard peer addresses: VyOS 1.3 Equuleus (1.3.5).
Viacheslav moved T4790: RADIUS login does not work if sum of timeouts more than 50s from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.4) board.
Viacheslav changed the status of T4790: RADIUS login does not work if sum of timeouts more than 50s from Unknown Status to Resolved.
It cannot reproduce in the current 1.3 VyOS 1.3-stable-202308240442
vyos@r1:~$ sudo sysctl -a | grep send_redire net.ipv4.conf.all.send_redirects = 1 net.ipv4.conf.default.send_redirects = 0 net.ipv4.conf.dum0.send_redirects = 0 net.ipv4.conf.eth0.send_redirects = 0 net.ipv4.conf.eth1.send_redirects = 0 net.ipv4.conf.eth2.send_redirects = 0 net.ipv4.conf.eth3.send_redirects = 0 net.ipv4.conf.eth4.send_redirects = 0 net.ipv4.conf.eth5.send_redirects = 0 net.ipv4.conf.eth6.send_redirects = 0 net.ipv4.conf.lo.send_redirects = 1 vyos@r1:~$ vyos@r1:~$ vyos@r1:~$ reboot now
It could be added the same way https://github.com/vyos/vyatta-cfg-quagga/commit/db2f0bbeb375e0d568ef4740bad2b50690cd8644 (if required)
If not, just close it. Already have in 1.4
This also affects latest rolling release as of 1.4-rolling-202308240020 which is available @vyos.io
Unknown Object (User) created T5525: Change dev.packages.vyos.net repo to rolling-packages.vyos.net vyos-build:current uses .
Viacheslav changed the status of T4726: Add completion and validation for the accel-ppp RADIUS vendor option from Open to Needs testing.
Viacheslav closed T4688: Add support for customizing packet verdict actions in limiter traffic policy as Wontfix.
We won't extend the old Perl code anymore (for 1.3.x) https://github.com/vyos/vyatta-cfg-qos/pull/19
Implemented for 1.4
n.fort changed the status of T5513: Anomalies in show firewall command after refactoring from Open to Needs testing.
n.fort changed the status of T5250: Firewall - show firewall group from In progress to Needs testing.
Fixed on this op-mode commands were introduced on PR https://github.com/vyos/vyos-1x/pull/2186
Corrections and improvements were applied. Please check on next rolling release
Viacheslav edited projects for T4530: Need MTU warning when CCP is on, added: VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus (1.3.5).
Provide some logs and examples of configuration.
Do you use SNMP?
PR for 1.3.4 https://github.com/vyos/vyatta-cfg-quagga/pull/101
Works fine VyOS 1.3-stable-202308240442
vyos@r1# run generate wireguard client-config c1 interface wg0 server 203.0.113.1 address 10.0.0.2/32
Viacheslav changed the status of T4520: Incorrect addresses returned with interaction of static /etc/hosts with DNS64 from Open to Needs testing.
Viacheslav added a comment to T4520: Incorrect addresses returned with interaction of static /etc/hosts with DNS64.
@dsummers Could you re-check? Should be fixed in https://github.com/PowerDNS/pdns/pull/12203
Viacheslav edited projects for T4519: DHCPv6: "set show dhcpv6 server leases" should show DUID instead of IAID_DUID, added: VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus (1.3.5).
We didn't get the requested information.
Reopen it if it is required with steps to reproduce and some output.
Viacheslav changed the subtype of T4096: Add a flavor field to the image and check flavor compatibility on upgrade from "Task" to "Feature Request".
Viacheslav edited projects for T4091: Progress bar support for HTTP uploads, added: VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus (1.3.5).
Viacheslav removed a project from T4125: Feature Request: bridge STP BPDU translation: VyOS 1.3 Equuleus (1.3.5).
Viacheslav changed the status of T4113: Incorrect GRUB configuration parsing from Unknown Status to Resolved.
Implemented, checked in VyOS 1.3-stable-202308240442
vyos@r1# set policy local-route Possible completions: > local-route IPv4 policy route of local traffic > local-route6 IPv6 policy route of local traffic
@Rhongomiant could you re-check it? Clear conntrack table between tests
Viacheslav closed T4271: bgp: show ipv6 bgp summary doesn't display neighbor information as Invalid.
Viacheslav closed T4306: Do not check for ditry repository when building release images as Resolved.
Not reproduced
Reopen it with instance details if required
Viacheslav changed the status of T4402: OpenVPN client-ip-pool option is broken from Open to Needs testing.
Should be fixed, needs testing.
I tried on VyOS 1.4-rolling-202308300021 .
GitHub <noreply@github.com> committed rVYOSONEXaf737cf57e53: Merge pull request #2186 from nicolas-fort/T5496 (authored by c-po).
PR1 didnt seem to have any affect on this night build:
Aug 29 2023
Aug 29 2023
Duplicate
Available for 1.4
Viacheslav moved T3577: Generating vpn x509 key pair fails with command not found from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.4) board.
Viacheslav removed a project from T3706: Add proper priorities for systemd daemons: VyOS 1.3 Equuleus (1.3.5).
It's trying to find the template in /etc/, but it is located in /opt/vyatta/etc
vyos@r1:~$ generate vpn x509 key-pair testone
Can't open /etc/key-pair.template for reading, No such file or directory
140089191929024:error:02001002:system library:fopen:No such file or directory:../crypto/bio/bss_file.c:69:fopen('/etc/key-pair.template','r')
140089191929024:error:2006D080:BIO routines:BIO_new_file:no such file:../crypto/bio/bss_file.c:76:
vyos@r1:~$ cat /etc/key-pair.template
cat: /etc/key-pair.template: No such file or directory
vyos@r1:~$
vyos@r1:~$ sudo find / -name key-pair.template
/boot/rw/opt/vyatta/etc/key-pair.template
/opt/vyatta/etc/key-pair.templateViacheslav closed T3390: Expansion of a range in an address-group doesn't include the new addresses after commit as Wontfix.
Impossible to expand with the old firewal l backend
There is a warning that doesn't now you to do it.
vyos@r1# set fire group address-group foo add 10.1.0.2-10.1.0.3
[edit]
vyos@r1# set fire group address-group foo add 10.1.0.2-10.1.0.5
[edit]
vyos@r1# compare
+firewall {
+ all-ping enable
+ broadcast-ping disable
+ config-trap disable
+ group {
+ address-group foo {
+ address 10.1.0.2-10.1.0.3
+ address 10.1.0.2-10.1.0.5
+ }
+ }
+ ipv6-receive-redirects disable
+ ipv6-src-route disable
+ ip-src-route disable
+ log-martians enable
+ receive-redirects disable
+ send-redirects enable
+ source-validation disable
+ syn-cookies enable
+ twa-hazards-protection disable
+}
[edit]
vyos@r1# commit
[ firewall group address-group foo ]
Address 10.1.0.2 exists in more than one configuration enrtyViacheslav moved T3339: Cloud-Init domain search setting not applied from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.4) board.
Viacheslav edited projects for T3339: Cloud-Init domain search setting not applied, added: VyOS 1.3 Equuleus (1.3.4); removed VyOS 1.3 Equuleus (1.3.5).
Viacheslav edited projects for T3340: Add dhcp-helper package to replace ISC DHCP Relay, added: VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus (1.3.5), vyatta-cfg-dhcp-relay, VyConf.
Viacheslav edited projects for T3209: Load balancing rules in firewall, added: VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus (1.3.5).
Viacheslav removed a project from T3264: Allow custom ACME provider for certbot: VyOS 1.3 Equuleus (1.3.5).
Already present VyOS 1.3-stable-202308240442
release dhcp interface eth1
Viacheslav closed T3098: Cannot talk to rtnetlink: Message too long Command failed -:1 as Not Applicable.
Looks like fixed VyOS 1.3-stable-202308240442
vyos@r1# run show conf com | match "traf|bon" set interfaces bonding bond0 member interface 'eth1' set interfaces bonding bond0 traffic-policy in 'BAND-IN' set traffic-policy limiter BAND-IN class 1601 bandwidth '100mbit' set traffic-policy limiter BAND-IN class 1601 match 16xx vif '1601' set traffic-policy limiter BAND-IN default bandwidth '10gbit' set traffic-policy shaper BAND-OUT class 1602 bandwidth '100mbit' set traffic-policy shaper BAND-OUT class 1602 match 16xx vif '1602' set traffic-policy shaper BAND-OUT default bandwidth '10gbit' [edit] vyos@r1# run show ver