I suppose we should close it. Any additional tasks should mention specific issues with current cloud-init versions.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Jan 9 2024
Jan 9 2024
dmbaturin edited projects for T2147: "save" resets the edit level in config mode, added: VyOS 2.0.x; removed VyOS 1.3 Equuleus (1.3.6).
dmbaturin triaged T2130: XML schema: add valueHelp support in op-mode definitions. as Wishlist priority.
dmbaturin removed a project from T2117: Update Cloud-init version and actualize our changes to it: VyOS 1.3 Equuleus (1.3.6).
dmbaturin closed T2085: Building some packages with vyos-build no longer works for Equuleus/current as Not Applicable.
dmbaturin closed T2060: source-validation will be configured at different locations and could lead to massive confusion as Not Applicable.
The new firewall implementation makes this no longer relevant.
The PR was rejected.
dmbaturin removed projects from T1999: support for ip groups in nat: VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta.
Already supported in the current nftables-based implementation.
dmbaturin added a parent task for T3340: Add dhcp-helper package to replace ISC DHCP Relay: T377: DHCP-relay agent package replacement.
Since ISC DHCP relay is EOLd and unmaintained, we may need to get back to this idea.
The new syntax has explicit listen and upstream interface settings.
dmbaturin edited projects for T2408: DHCP Relay upstream and downstream interfaces, added: VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus (1.3.6).
I think we should include lshw indeed — it offers JSON and XML outputs.
iperf was definitely updates in newer releases, so I presume the issue is solved.
Since the firewall group implementation was migrated to nftables native groups, the issue is no longer applicable.
dmbaturin closed T1925: DMVPN is always listed as down in "show vpn ipsec sa", a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, as Resolved.
dmbaturin closed T1850: syslog protocol can be set multiple times per facility for the same host, a subtask of T1845: syslog host no longer accepts a port, as Not Applicable.
dmbaturin closed T1850: syslog protocol can be set multiple times per facility for the same host as Not Applicable.
There is no protocol under facility settings anymore, so the issue is no longer relevant.
dmbaturin triaged T1848: Rework the handling of special characters inside node values as Wishlist priority.
dmbaturin edited projects for T1790: OSPF Exchanged Routes marked as invalid when run through a GRE PTMP/PTP OSPF between peers , added: VyOS 1.4 Sagitta; removed VyOS 1.2 Crux (VyOS 1.2.9).
dmbaturin triaged T1790: OSPF Exchanged Routes marked as invalid when run through a GRE PTMP/PTP OSPF between peers as High priority.
dmbaturin closed T1759: Replacing Vyatta::Interface perl, a subtask of T1579: Rewrite all interface types in new XML/Python style, as Resolved.
The new interface handling infrastructure is firmly in place now.
dmbaturin renamed T1733: Route filters syntax redesign from structure of prefix-lists to Route filters syntax redesign.
dmbaturin closed T1667: Add a tool for automatically importing old style command definitions into XML as Not Applicable.
The last old-style definitions are gone, so the tool is no longer relevant.
dmbaturin triaged T1641: VRRP conntrack-sync dropping packets passing through the router as High priority.
dmbaturin closed T1634: Commit fails when changing policy route "set table" and adding the table at the same time, results in config deadlock as Not Applicable.
The new firewall implementation solved it.
dmbaturin removed a project from T1625: Update validation rules for OSPF max-metric values: VyOS 1.3 Equuleus (1.3.6).
dmbaturin closed T1549: ipsec ikev2 multi usergroup roadwarrior configuration, a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, as Not Applicable.
Since we do have proper support for IKEv2 remote access VPN, the issue of configuring it with a workaround is no longer relevant, I suppose.
dmbaturin removed a project from T1549: ipsec ikev2 multi usergroup roadwarrior configuration: VyOS 1.4 Sagitta.
Let's give it some thought for 1.5/Circinus.
dmbaturin triaged T1499: Move nic to mac mapping out of the configuration file as Wishlist priority.
dmbaturin closed T1492: Not able to delete the configured arp-monitor target and interval attribute on VyOS 1.2.0 as Resolved.
It is impossible to create the config in question now.
dmbaturin closed T1481: When deleting and re-adding a configuration node with the same value, exit and save still say configuration has been modified as Wontfix.
I agree this is an issue, but it's a feature for the new configuration backend. Trying to fix it in the current legacy backend is likely futile.
Now the readthedocs process is well-established.
Jan 9 2024, 3:33 PM · Restricted Project
dmbaturin closed T1442: Add documentation how people can add patches and some guidelines. as Resolved.
We have sorta decent contribution guidelines now, or so I hope. ;)
Jan 9 2024, 3:31 PM · Restricted Project
The use case for it will be addressed by the future support for true (ignored by the parser) comments.
GitHub <[email protected]> committed rVYOSONEXe8d57b5f9cae: Merge pull request #2776 from nicolas-fort/T1297 (authored by dmbaturin).
Viacheslav moved T1297: Add GARP settings to VRRP/keepalived from Backport Candidates to Finished on the VyOS 1.4 Sagitta board.
PR for Equuleus: https://github.com/vyos/vyos-1x/pull/2776
a.apostoliuk edited projects for T5914: CVE-2023-48795 - Terrapin vulnerability, added: VyOS 1.3 Equuleus (1.3.6); removed VyOS 1.3 Equuleus.
Hi, If it helps
Viacheslav changed the status of T5909: Container registry with authentication prevents config load (section container) after reboot from Open to In progress.
adestis added a comment to T5909: Container registry with authentication prevents config load (section container) after reboot.
Warning would be much better because it would solve the problem.
When you have the image already loaded and the system was rebooted, the image should still exist and therefore the user/pass is not required (for the moment).
Viacheslav added a comment to T5909: Container registry with authentication prevents config load (section container) after reboot.
There could be another bug related T5407
I guess we should not Raise config but use the Warning here https://github.com/vyos/vyos-1x/blob/864524ba86b0a4d57ab64d6e9398c3fd5eb2fce4/src/conf_mode/container.py#L405-L408
adestis added a comment to T5909: Container registry with authentication prevents config load (section container) after reboot.
Viacheslav suggested the following change which worked for me:
c-po moved T5911: pki: service update ignored if certificate name contains a hyphen (-) from Open to Finished on the VyOS 1.5 Circinus board.
c-po moved T5902: http: remove virtual-host configuration in webserver from Open to Finished on the VyOS 1.5 Circinus board.
c-po moved T5886: Add support for ACME protocol (LetsEncrypt) from Open to Finished on the VyOS 1.5 Circinus board.
c-po moved T5886: Add support for ACME protocol (LetsEncrypt) from Open to Finished on the VyOS 1.4 Sagitta board.
c-po moved T5766: http: rewrite conf-mode script to get_config_dict() from Open to Finished on the VyOS 1.4 Sagitta board.
c-po moved T5766: http: rewrite conf-mode script to get_config_dict() from Open to Finished on the VyOS 1.5 Circinus board.
c-po closed T5905: pki: IPsec and VTI interface priority inversion when using x509 site-to-site peer, a subtask of T5886: Add support for ACME protocol (LetsEncrypt), as Resolved.
c-po added a comment to T5905: pki: IPsec and VTI interface priority inversion when using x509 site-to-site peer.
PR for 1.5 https://github.com/vyos/vyos-1x/pull/2768
PR for 1.4 https://github.com/vyos/vyos-1x/pull/2774
Can you please paste the output of ls -ld /config/dhcp and ls -l /config/dhcp. It is possible you might have installed a version _before_ 1.5-rolling-202401030023 and the instance is carrying forward the misconfigured directory/file persmissions.
I replied to jestabro via email a couple of hours back, but noticed that it didn't show up here. For the benefit of anybody else interested in this bug I'm cutting and pasting the email below:
Jan 8 2024
Jan 8 2024
GitHub <[email protected]> committed rVYOSONEXa9ed12de9342: Merge pull request #2774 from vyos/mergify/bp/sagitta/pr-2758 (authored by c-po).
PR for VyOS 1.4 https://github.com/vyos/vyos-1x/pull/2774