This will be addressed by the controller appliance.
- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Feb 15 2024
Feb 15 2024
dmbaturin added a project to T3598: DMVPN/IPSec does not work with upstream Strongswan 5.9: Restricted Project.
dmbaturin added a project to T3552: BFD does not work with OSPFv3 via wireguard: Restricted Project.
dmbaturin added a project to T3529: vyos.frr class has no support for multi-line modify_section: Restricted Project.
dmbaturin added a project to T3471: DHCP hook is not able to detect all running DHCP instances: Unknown Object (Project).
dmbaturin added a project to T3337: Add possibility to serve static DNS zones from the router: Unknown Object (Project).
dmbaturin edited projects for T3275: Disable conntrack helpers by default, added: Unknown Object (Project); removed VyOS 1.3 Equuleus (1.3.0-epa1).
dmbaturin added a project to T3086: Scheduled squidguard blacklist update breaks Squid: Unknown Object (Project).
dmbaturin edited projects for T3001: Disable spectre mitigation patches from CLI, added: Unknown Object (Project); removed VyOS 1.5 Circinus.
dmbaturin added a project to T2760: In a load-balanced multi-wan configuration with DHCP assigned addresses, IPsec "dhcp-interface" does not work: Unknown Object (Project).
dmbaturin added a project to T2747: "enable-local-traffic" has no effect in load-balancing to redirect local traffic: Unknown Object (Project).
dmbaturin added a project to T2762: VRF: when SSHd is VRF bound all commands are executed in VRF context: Unknown Object (Project).
dmbaturin edited projects for T2737: DHCP Lease not displayed with a static map, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T2700: Redirecting traffic from PPPoE interface to IFB fails, added: Unknown Object (Project); removed VyOS 1.2 Crux.
dmbaturin changed the status of T2612: HTTPS API, changing API key fails but goes through from Unknown Status to Resolved.
dmbaturin edited projects for T2326: Migrate NHRP(DMVPN) to FRR, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin added a project to T2287: LLDP not working on X710 adapter, i40e driver: Unknown Object (Project).
dmbaturin added a project to T2251: VRF communication breaks when utilizing zone-based firewalling: Unknown Object (Project).
dmbaturin added a project to T2145: openvpn: server default topology net30 is incompatible with static client IPs for Windows clients: Unknown Object (Project).
dmbaturin added a project to T2113: OpenVPN Options error: you cannot use --verify-x509-name with --compat-names or --no-name-remapping: Unknown Object (Project).
Feb 15 2024, 11:27 AM · VyOS 1.4 Sagitta (1.4.0-epa1), Unknown Object (Project), VyOS 1.3 Equuleus (1.3.7), openvpn
dmbaturin added a project to T2005: Two CEASE notifications sent to BGP peers during reboot: Unknown Object (Project).
dmbaturin added a project to T2004: BGP FQDN capability not sending domain name: Unknown Object (Project).
dmbaturin added a project to T1487: DNS (pdns_recursor) stats logs not saved to disk: Unknown Object (Project).
dmbaturin added a project to T1311: WAN load-balancing can't flush connections when conntrack-sync is enabled: Unknown Object (Project).
Feb 15 2024, 11:25 AM · VyOS 1.3 Equuleus (1.3.9), VyOS 1.4 Sagitta (1.4.0-epa1), Unknown Object (Project), test
dmbaturin edited projects for T1070: SWANCTL: DMVPN: ALL peers are deleted in swan when opennhrp tries to delete ONE peer, added: Unknown Object (Project); removed test.
Feb 15 2024, 11:24 AM · Bugs, VyOS 1.3 Equuleus (1.3.9), VyOS 1.4 Sagitta (1.4.0-GA), Unknown Object (Project)
Since there's no demand from users and SoftEther doesn't seem to have an active community, I suppose we shouldn't do it — unless the situation with its development changes dramatically.
Since TINC haven't made new releases in a long time and there is no demand for it from users, I suppose it's safe to say that we aren't going to do it — at least unless the situation with its development changes dramatically.
dmbaturin edited projects for T760: Allow named interfaces, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T687: Encryption of configuration files and critical data, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T590: openvpn config using openvpn config file, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin edited projects for T579: Better DHCPv6 relay-agent desired, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin closed T562: PDNS: Add support for authoritative dns server, a subtask of T560: Migrate dns forwarder from dnsmasq to powerdns-recursor, as Resolved.
dmbaturin added a project to T486: Static IPv6 default route via OSPFv3-learned loopback is not activated: Unknown Object (Project).
dmbaturin edited projects for T417: Allow bonding non-ethernet interfaces, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
The current PKI infrastructure already implements it.
dmbaturin edited projects for T365: OVS as replacement of Linux bridge, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
Now that we have smoke tests for most things, it's time to declare the meta-task done I guess.
dmbaturin edited projects for T291: support for Predictable Network Interface Names, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin added a project to T260: Redirect traffict between two L3 interfaces: Unknown Object (Project).
dmbaturin removed a project from T110: Ability to store SSH keys out of the config: VyOS 1.4 Sagitta.
dmbaturin renamed T71: Add virtual IP and route installation policy options for IPsec from Add charon settings to 1.2.x configuration CLI to Add virtual IP and route installation policy options for IPsec.
Both are present in 1.4.0 RCs.
dmbaturin closed T71: Add virtual IP and route installation policy options for IPsec, a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, as Resolved.
dmbaturin added a project to T71: Add virtual IP and route installation policy options for IPsec: Unknown Object (Project).
dmbaturin edited projects for T28: Add auto provisioning, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin closed T3993: Extend HTTP API GraphQL support, a subtask of T2768: Define a high level HTTP API, as Resolved.
I suppose we can call it complete — for the future high-level endpoints we have a separate task.
dmbaturin edited projects for T5494: Add SSSD IPA and Kerberos support, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.
dmbaturin triaged T6039: cloud-init DNS search-domain causes configuration migration/validation error as High priority.
Marked this as resolved since the fix was merged and backported.
jestabro renamed T6041: image-tools: install fails from PXE boot into live iso due to restrictive logic from image-tools: install fails from PXE boot into live iso for obvious reason to image-tools: install fails from PXE boot into live iso due to restrictive logic.
jestabro triaged T6041: image-tools: install fails from PXE boot into live iso due to restrictive logic as High priority.
Feb 14 2024
Feb 14 2024
L0crian added a comment to T5991: 1.4.0-RC3 deleting portions of config in error (migration script).
@jestabro I appreciate you looking into this. It does seem to be a timing issue. I checked on a few of my systems....it almost always does it in a VM on my slow server, but I have a faster mini-pc where it doesn't appear to happen as often, though it does still happen on some reboots. Now that I have done more testing, it does happen on 1.4-rc1 as well. It does not however happen in 1.3.5.
c-po closed T6032: bgp: add EVPN MAC-VRF Site-of-Origin support, a subtask of T5788: frr: update to 9.1 release, as Resolved.
c-po moved T6032: bgp: add EVPN MAC-VRF Site-of-Origin support from In Progress to Finished on the VyOS 1.4 Sagitta board.
c-po closed T2044: RPKI doesn't boot properly, a subtask of T6004: Missing RPKI boot priority prevents it from loading, as Resolved.
c-po moved T5965: WWAN modems using raw-ip do not work with dhclient/dhcp6c from Open to Finished on the VyOS 1.5 Circinus board.
c-po added a project to T5965: WWAN modems using raw-ip do not work with dhclient/dhcp6c: VyOS 1.4 Sagitta.
Moving to systemd-networkd on the long run seems like a very nice idea that I also had. For no and the 1.4 LTS release we will stick with a custom isc-dhcp-client package build
c-po closed T6034: rpki: move file based SSH keys for authentication to PKI subsystem, a subtask of T3642: PKI configuration, as Resolved.
c-po moved T6034: rpki: move file based SSH keys for authentication to PKI subsystem from Open to Finished on the VyOS 1.4 Sagitta board.
c-po moved T6034: rpki: move file based SSH keys for authentication to PKI subsystem from Open to Finished on the VyOS 1.5 Circinus board.
jestabro added a comment to T5939: [1.3.5 -> 1.4.0-RC1 Migration] as-path-list Entries Get Messed Up.
A general summary of the issue and proposed solution to avoid for future migrations has been added to subtask T5996, however even when implemented for 1.4 it will control, but not avoid, the problem when migrating from 1.3 --- short story: this is an incompatibility between the legacy and modern parser, and a need to refine the approach towards compatibility.
jestabro added a comment to T5991: 1.4.0-RC3 deleting portions of config in error (migration script).
@L0crian there are no changes that would allow this in 1.4-rc1 and not 1.4-rc3 but, perhaps, for a matter of timing in bringing the interface up (see below), but if you confirm that is the case and can provide the container portion of your config, I can attempt a reproducer.
jestabro updated the task description for T5996: Incorrect behavior for backslash escapes in config save and compare commands.
jestabro added a comment to T5996: Incorrect behavior for backslash escapes in config save and compare commands.
The examples in T5939 reveal a general issue that, although uncommon, needs to be rationalized. The modern parser requires single backslashes to be escaped, if in quoted strings, however (1) the legacy parser (unlike the modern parser) is inconsistent in quoting values (2) the existing solution escapes all single backslashes not a part of control sequences and makes no attempt to restore single backslashes when possible --- this is safe, but leads to redundant escaping of backslashes as revealed in the examples in T5939.
Viacheslav triaged T6030: QoS policy shaper can generate unexpected tc filter rate rules as Normal priority.
@Apachez, what exactly do you want to fix here?
Viacheslav triaged T6038: Losing default route after first reboot (cloud-init & DHCP) as Normal priority.
The data channels are not established.
As I understand it, the problem is that the required related ports are not forwarded dynamically to translated address
As I understand changes as in this example
https://wiki.nftables.org/wiki-nftables/index.php/Conntrack_helpers
GitHub <noreply@github.com> committed rVYOSONEX6a108d67e76e: Merge pull request #3010 from c-po/t3992-equuleus (authored by c-po).
GitHub <noreply@github.com> committed rVYOSONEX697ce8c51c2a: Merge pull request #3009 from vyos/mergify/bp/sagitta/pr-2988 (authored by c-po).