In T6344#188757, @n.fort wrote:Maybe we should create another xml file identical to listen-address.xml.i but without multi option define in line 16.
Feed All Stories
May 17 2024
May 17 2024
Viacheslav added a comment to T6344: multiple ntp listen-address commands not working.
n.fort added a comment to T6344: multiple ntp listen-address commands not working.
Maybe we should create another xml file identical to listen-address.xml.i but without multi option define in line 16.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXa214c3967227: op mode: T6348: SNAT op-mode fails with flowtable offload entries (authored by natali-rs1985).
GitHub <[email protected]> committed rVYOSONEX6b7011006219: Merge pull request #3471 from natali-rs1985/T6348-current (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXa901ad58c2bf: T6354: Get rid of the custom boot type check in version.py (authored by khramshinr <[email protected]>).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX3f83be294b4a: T6358: Add config option for host process namespace (authored by nvollmar).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX232469462302: T6358: Remove duplicate host name handling (authored by nvollmar).
khramshinr <[email protected]> committed rVYOSONEX783edc98f82f: T6354: Get rid of the custom boot type check in version.py.
GitHub <[email protected]> committed rVYOSONEXd1b6b40891d8: Merge pull request #3474 from HollyGurza/T6354 (authored by c-po).
GitHub <[email protected]> committed rVYOSONEXe53dd75a149e: Merge pull request #3472 from nvollmar/T6358 (authored by c-po).
GitHub <[email protected]> committed rVYOSONEXd29c8c36d7bd: Merge pull request #3473 from aapostoliuk/T6359-equuleus (authored by dmbaturin).
natali-rs1985 changed the status of T5487: OPENVPN -DEPRECATED OPTION: --cipher from Confirmed to In progress.
n.fort added a comment to T6362: Create a conntrack/translations logger daemon.
Related to https://vyos.dev/T5471 ?
Viacheslav triaged T6360: CGNAT add the ability to exclude (bypass) the translations for specific destinations as Wishlist priority.
HollyGurza added a comment to T6354: Get rid of the custom boot type check in version.py.
natali-rs1985 changed Is it a breaking change? from compatible to syntax on T5487: OPENVPN -DEPRECATED OPTION: --cipher.
Viacheslav closed T6347: CGNAT external pools containing dashes cause Traceback error, a subtask of T5169: Add CGNAT Carrier-Grade NAT based on nftables, as Resolved.
Viacheslav closed T6351: CGNAT add check if external and internal pools exists, a subtask of T5169: Add CGNAT Carrier-Grade NAT based on nftables, as Resolved.
Viacheslav closed T6350: CGNAT add op-mode to get current port allocation mapping, a subtask of T5169: Add CGNAT Carrier-Grade NAT based on nftables, as Resolved.
Viacheslav triaged T6343: Firewall source validation loose end up in complete traffic block on VRF interface as Normal priority.
a.apostoliuk changed the status of T6359: Multicast does not forward after reboot from Open to In progress.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXf2d1030e0e62: T6350: CGNAT add op-mode to show allocation (authored by Viacheslav).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXcc6e35096e6e: T6351: CGNAT add verification if the pool exists (authored by Viacheslav).
GitHub <[email protected]> committed rVYOSONEX17e460792b17: Merge pull request #3466 from sever-sever/T6350 (authored by dmbaturin).
GitHub <[email protected]> committed rVYOSONEXf438fc3cd360: Merge pull request #3464 from sever-sever/T6351 (authored by dmbaturin).
a.apostoliuk changed the status of T6157: Can not create two GRE tunnels to the same DST but from different SRC addresses from In progress to Open.
Viacheslav added a comment to T5835: UPnP port mapping / rule installation fails.
I'd prefer to integrate the Port Control Protocol (PCP) instead.
a.apostoliuk placed T5710: PPPoE-server add option permit any-login up for grabs.
Viacheslav added a comment to T5835: UPnP port mapping / rule installation fails.
You can still have it in a container easily; as I mentioned, it has never worked since 2021
You do not lose anything.
Viacheslav changed the status of T6350: CGNAT add op-mode to get current port allocation mapping, a subtask of T5169: Add CGNAT Carrier-Grade NAT based on nftables, from Open to In progress.
Viacheslav changed the status of T6350: CGNAT add op-mode to get current port allocation mapping from Open to In progress.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX11be002f606c: T6347: CGNAT fix error if pool contain dashes in the name (authored by Viacheslav).
GitHub <[email protected]> committed rVYOSONEX4af8d98e8f40: Merge pull request #3463 from sever-sever/T6347 (authored by c-po).
Res added a comment to T5835: UPnP port mapping / rule installation fails.
dylanneild added a comment.Tue, May 14, 8:59 AM
If someone wants, I can probably unearth my patches to 1.4 and miniupnpd to make it all work. It was technically functional and worked as expected. I just don't have the time or patience to deal with getting it merged/integrated back into the project.The only thing I didn't add was a status script to get lease data, but that would be easy enough to create.
I'm AFK for a few days and would have to spin up some cold VMware instances so it'd take me a bit to grab / package up the relevant components.
May 16 2024
May 16 2024
aga added a comment to T6355: Make the strip-private filter obfuscate only passwords and private keys.
I also agree that the "default" stripping-behaviour should definitely be rethought for certain parts of the config. For example: the full public-key gets shown of the wireguard-peers on interfaces.
alainlamar updated the task description for T6320: WiFi: Enable support for 6GHz AccesPoints.
alainlamar updated the task description for T6320: WiFi: Enable support for 6GHz AccesPoints.
Vijayakumar changed the status of T6349: keep all workflows as reusable workflows in global .github and make vyox-1x to use from there, a subtask of T6309: Check code quality with CodeQL, from Open to In progress.
Vijayakumar changed the status of T6349: keep all workflows as reusable workflows in global .github and make vyox-1x to use from there from Open to In progress.
GitHub <[email protected]> committed rVYOSONEXbadc6a27571b: Merge pull request #3465 from vyos/mergify/bp/sagitta/pr-3458 (authored by c-po).
jestabro removed a project from T6149: Update node_data when merging nodes in reference tree generation: VyOS 1.5 Circinus.
jestabro changed the status of T6149: Update node_data when merging nodes in reference tree generation, a subtask of T6146: Add python script to get all priorities of service or section from XML, from Unknown Status to Resolved.
jestabro changed the status of T6149: Update node_data when merging nodes in reference tree generation from Unknown Status to Resolved.
Viacheslav added a comment to T6350: CGNAT add op-mode to get current port allocation mapping.
PR https://github.com/vyos/vyos-1x/pull/3466
vyos@r4:~$ show nat cgnat allocation Internal IP External IP Port range ------------- --------------- ------------ 100.64.0.0 192.168.122.222 1024-3023 100.64.0.1 192.168.122.222 3024-5023 100.64.0.2 192.168.122.222 5024-7023 100.64.0.3 192.168.122.222 7024-9023 100.64.0.4 192.168.122.222 9024-11023 100.64.0.5 192.168.122.222 11024-13023 100.64.0.6 192.168.122.222 13024-15023 100.64.0.7 192.168.122.222 15024-17023 100.64.0.8 192.168.122.222 17024-19023 100.64.0.9 192.168.122.222 19024-21023 100.64.0.10 192.168.122.222 21024-23023 100.64.0.11 192.168.122.222 23024-25023 100.64.0.12 192.168.122.222 25024-27023 100.64.0.13 192.168.122.222 27024-29023 100.64.0.14 192.168.122.222 29024-31023 100.64.0.15 192.168.122.222 31024-33023 vyos@r4:~$
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX9eab810d3a49: T6335: Add/Update EVPN op commands (authored by L0crian).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX53d6eb10d9c2: T6335: Add/Update EVPN op commands (authored by L0crian).
GitHub <[email protected]> committed rVYOSONEX3606418d8f47: Merge pull request #3458 from l0crian1/T6335-add-evpn-op (authored by c-po).
GitHub <[email protected]> committed rVYOSONEX899ed3cc932b: Merge pull request #3462 from nvollmar/T4519 (authored by c-po).
Viacheslav changed the status of T6351: CGNAT add check if external and internal pools exists, a subtask of T5169: Add CGNAT Carrier-Grade NAT based on nftables, from Open to In progress.
Viacheslav changed the status of T6351: CGNAT add check if external and internal pools exists from Open to In progress.
PR https://github.com/vyos/vyos-1x/pull/3464
set nat cgnat pool external ext1 external-port-range '1024-65535' set nat cgnat pool external ext1 per-user-limit port '2000' set nat cgnat pool external ext1 range 192.168.122.222/32 set nat cgnat pool internal int1 range '100.64.0.0/28' set nat cgnat rule 10 source pool 'fake-pool' set nat cgnat rule 10 translation pool 'ext1'
Viacheslav updated the task description for T6351: CGNAT add check if external and internal pools exists.
Apachez added a comment to T6353: Add a warning when the user tries to set a password too simple.
I think a warning is better than to block it from being set, specially since the workaround to load it through already existing config still remains.