What version? Can you upgrade to 1.4?
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Feb 6 2024
Feb 6 2024
jestabro moved T6017: Update vyos-http-api-tools for security advisory from Open to Finished on the VyOS 1.4 Sagitta board.
jestabro moved T6017: Update vyos-http-api-tools for security advisory from Open to Finished on the VyOS 1.5 Circinus board.
GitHub <[email protected]> committed rVYOSONEXc1be1713ae1e: Merge pull request #2939 from vyos/mergify/bp/sagitta/pr-2936 (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX1d8414c9dabd: init: T2044: always start/stop rpki during system boot (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXa32b2a9e8649: rpki: T6011: known-hosts-file is no longer supported by FRR (authored by c-po).
GitHub <[email protected]> committed rVYOSONEXc1d0a778f9b2: Merge pull request #2936 from c-po/rpki-T6011 (authored by dmbaturin).
GitHub <[email protected]> committed rVYOSONEXf2cefce3714c: Merge pull request #2935 from c-po/rpki (authored by dmbaturin).
Feb 5 2024
Feb 5 2024
GitHub <[email protected]> committed rVYOSONEX48be2429b831: Merge pull request #2938 from vyos/mergify/bp/sagitta/pr-2937 (authored by jestabro).
One of my router heavily affected by this issue, so if you will wrote a fix - you may ask me to test the fix.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX217b6b8894d8: T6018: adjust smoketest for update to FastAPI web framework (authored by jestabro).
GitHub <[email protected]> committed rVYOSONEXcf1a7ee4599c: Merge pull request #2937 from jestabro/overhead-advisory-update (authored by jestabro).
jestabro triaged T6018: smoketest: updating http-api framework requires a pause before test as Normal priority.
jestabro triaged T6016: Resolve intermittent failures in cleanup function after failed image install as High priority.
It seems FRR (9.0.2-36-g31dec1951) does not support this.
The route can be added, but no route is in the routing table.
vyos@r4:~$ vtysh -c "conf t" -c "ip route 192.0.2.0/24 2001:db8::1" vyos@r4:~$ vyos@r4:~$ vtysh -c "show run" | match 192.0.2.0 ip route 192.0.2.0/24 2001:db8::1 vyos@r4:~$ vyos@r4:~$ vyos@r4:~$ show ip route 192.0.2.0/24 % Network not in table vyos@r4:~$
n.fort changed the status of T6009: Firewall - Time not working properly when not using UTC from Confirmed to In progress.
PR for 1.5 https://github.com/vyos/vyos-build/pull/493
PR for 1.3 https://github.com/vyos/vyos-build/pull/494
a.apostoliuk updated the task description for T5960: Rewriting authentication section in accel-ppp services.
Update supports via whitespace
r4(config-router)# neighbor foo path-attribute discard 23 24
Viacheslav triaged T6010: Support setting multiple values in BGP path-attribute as Wishlist priority.
FRR does not support it
r4# conf t r4(config)# router bgp 65001 r4(config-router)# no bgp ebgp-requires-policy r4(config-router)# no bgp default ipv4-unicast r4(config-router)# no bgp network import-check r4(config-router)# neighbor foo peer-group r4(config-router)# neighbor foo path-attribute discard 24 r4(config-router)# neighbor foo path-attribute discard 23,24 % Unknown command: neighbor foo path-attribute discard 23,24 r4(config-router)#
Viacheslav triaged T6011: rpki: known-hosts-file is no longer supported by FRR CLI - remove VyOS CLI node as Normal priority.
Feb 4 2024
Feb 4 2024
This type of configuration works perfectly fine with VyOS 1.5 when receiving routes from a BGP peer (v4 routes with v6 nexthop), so it would be very nice to be able to manually install routes in the same way.
Feb 3 2024
Feb 3 2024
GitHub <[email protected]> committed rVYOSONEX22a15d828e1d: Merge pull request #2934 from vyos/mergify/bp/sagitta/pr-2932 (authored by c-po).
c-po renamed T6011: rpki: known-hosts-file is no longer supported by FRR CLI - remove VyOS CLI node from rpki: known-hosts-file is no longer supported bxy FRR CLI - remove VyOS CLI node to rpki: known-hosts-file is no longer supported by FRR CLI - remove VyOS CLI node.
c-po changed the status of T6011: rpki: known-hosts-file is no longer supported by FRR CLI - remove VyOS CLI node from Open to In progress.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX4edc0611ec0a: ipsec: T5998: add replay-windows setting (authored by c-po).
Apachez added a comment to T5424: Routes vanishes when using FRR with ECMP and one of the ECMP paths is no longer available.
Its not clear if its fixed or not:
GitHub <[email protected]> committed rVYOSONEX630a242cecae: Merge pull request #2932 from c-po/ipsec-T5998 (authored by c-po).
c-po added a parent task for T2044: RPKI doesn't boot properly: T6004: Missing RPKI boot priority prevents it from loading.
c-po added a subtask for T6004: Missing RPKI boot priority prevents it from loading: T2044: RPKI doesn't boot properly.
GitHub <[email protected]> committed rVYOSONEX088dcfd35af2: Merge pull request #2933 from vyos/mergify/bp/sagitta/pr-2931 (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXc224be5a55f6: configdict: T5894: preserve old behavior when dealing with PKI (authored by c-po).
GitHub <[email protected]> committed rVYOSONEX1d23d921deb0: Merge pull request #2931 from c-po/configdict-bugfix (authored by Viacheslav).
Feb 2 2024
Feb 2 2024
c-po moved T6003: Add 'show rpki as-number' and 'show rpki prefix' from Open to Finished on the VyOS 1.4 Sagitta board.
c-po moved T6003: Add 'show rpki as-number' and 'show rpki prefix' from Open to Finished on the VyOS 1.5 Circinus board.
c-po moved T5998: replay_window setting under vpn in config from Open to Finished on the VyOS 1.5 Circinus board.
Viacheslav edited projects for T973: Create Prometheus Exporter for VyOS , added: VyOS 1.5 Circinus; removed VyOS 1.3 Equuleus (1.3.6).
Viacheslav closed T2459: Migrate vyatta-show-nat-rules.pl to Python, a subtask of T2198: Rewrite NAT in new XML/Python style, as Not Applicable.
Viacheslav closed T2459: Migrate vyatta-show-nat-rules.pl to Python, a subtask of T3355: Remove all remaining legacy Vyatta code, as Not Applicable.
It won't be implemented for 1.3.x
Have this for 1.4/1.5
GitHub <[email protected]> committed rVYOSONEX2d8a7bda382f: Merge pull request #2930 from vyos/mergify/bp/sagitta/pr-2748 (authored by c-po).
Viacheslav changed the status of T4816: IPv4-mapped and IPv4-compatible IPv6 addresses not valid anymore from Open to Confirmed.
Viacheslav edited projects for T5153: OpenConnect route restriction via iptables is ignored, added: VyOS 1.5 Circinus; removed VyOS 1.3 Equuleus (1.3.6).
Viacheslav moved T5739: Password recovery does not work if public keys are configured from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.6) board.
Viacheslav moved T5739: Password recovery does not work if public keys are configured from Open to Finished on the VyOS 1.4 Sagitta board.
merged
wget https://github.com/RUB-NDS/Terrapin-Scanner/releases/download/v1.1.0/Terrapin_Scanner_Linux_amd64 chmod +x Terrapin_Scanner_Linux_amd64
Viacheslav closed T5941: [1.3.5 -> 1.4.0-RC1 Migration] Orphaned Configuration Nodes Cause Issues, a subtask of T5938: Migration fail root task for 1.4-rc, as Resolved.
Fixed https://packages.debian.org/buster/openssh-server
vyos@r15:~$ show version all | match ssh ii libssh-4:amd64 0.8.7-1+deb10u2 amd64 tiny C SSH library (OpenSSL flavor) ii libssh2-1:amd64 1.8.0-2.1+deb10u1 amd64 SSH2 client-side library ii openssh-client 1:7.9p1-10+deb10u4 amd64 secure shell (SSH) client, for secure access to remote machines ii openssh-server 1:7.9p1-10+deb10u4 amd64 secure shell (SSH) server, for secure access from remote machines ii openssh-sftp-server 1:7.9p1-10+deb10u4 amd64 secure shell (SSH) sftp server module, for SFTP access from remote machines ii python3-paramiko 2.4.2-0.1+deb10u1 all Make ssh v2 connections (Python 3) ii sshguard 2.3.1-1 amd64 Protects from brute force attacks against ssh vyos@r15:~$ vyos@r15:~$ show version
syncer closed T5909: Container registry with authentication prevents config load (section container) after reboot as Unknown Status.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXd9cc48fe8c6b: qos: T5848: improve flow-isolation help strings (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX628877a46a04: qos: T5848: Add triple-isolate option to CAKE policy config (authored by MattK).
c-po moved T5848: Add triple-isolate flow isolation option to CAKE QoS policy from Open to Finished on the VyOS 1.4 Sagitta board.
c-po moved T5848: Add triple-isolate flow isolation option to CAKE QoS policy from Open to Finished on the VyOS 1.5 Circinus board.
GitHub <[email protected]> committed rVYOSONEX84b17f0e666b: Merge pull request #2748 from MattKobayashi/t5848 (authored by c-po).
n.fort changed the status of T6009: Firewall - Time not working properly when not using UTC from Open to Confirmed.
n.fort updated the task description for T6009: Firewall - Time not working properly when not using UTC.
mark22k awarded T766: Implement support for the Tinc VPN daemon a Like token.
Documentation PR: https://github.com/vyos/vyos-documentation/pull/1261
Viacheslav moved T5955: Rootless containers/set uid/gid for container from Open to Finished on the VyOS 1.4 Sagitta board.
GitHub <[email protected]> committed rVYOSONEX38a46e1bffd2: Merge pull request #2929 from vyos/mergify/bp/sagitta/pr-2927 (authored by Viacheslav).
GitHub <[email protected]> committed rVYOSONEXdca220d515e6: Updates to Kea DHCPv6 PD route hook (#6) (authored by cbuechler).