Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Aug 24 2022

c-po added a comment to T4642: proxy: hyphen not allowed in proxy URL.

PR for equuleus https://github.com/vyos/vyos-1x/pull/1494

Aug 24 2022, 6:07 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
c-po moved T4642: proxy: hyphen not allowed in proxy URL from Open to Finished on the VyOS 1.4 Sagitta board.
Aug 24 2022, 6:06 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
c-po committed rVYOSONEXc4159ee846d4: smoketest: bgp: T4634: validate "disable-connected-check" option.
Aug 24 2022, 6:01 PM
c-po committed rVYOSONEXbfa13e367d0b: proxy: T4642: bugfix regex, add hyphen to allow list.
Aug 24 2022, 6:01 PM
c-po committed rVYOSONEXb7feed29627c: op-mode: T4390: migrate "show log vpn" to journalctl.
Aug 24 2022, 6:01 PM
c-po committed rVYOSONEX254285bb5d70: op-mode: extend "monitor log vpn" option.
Aug 24 2022, 6:01 PM
c-po committed rVYOSONEXf5360b98703e: ipsec: T2185: use systemd to start/stop service.
Aug 24 2022, 6:01 PM
roedie committed rVYOSONEX5fa3468ff2d6: BGP: T4634: Allow configuration of disable-connected-check.
Aug 24 2022, 5:41 PM
GitHub <noreply@github.com> committed rVYOSONEX4d34c858d05a: Merge pull request #1483 from roedie/T4634 (authored by c-po).
Aug 24 2022, 5:41 PM
c-po changed the status of T4642: proxy: hyphen not allowed in proxy URL from Open to In progress.
Aug 24 2022, 5:39 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
c-po created T4642: proxy: hyphen not allowed in proxy URL.
Aug 24 2022, 5:39 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
roedie committed rVYOSONEXed5fb0645367: keepalived: T4526: keepalived-fifo.py unable to load config.
Aug 24 2022, 5:26 PM
GitHub <noreply@github.com> committed rVYOSONEXe6bae7dc1120: Merge pull request #1486 from roedie/T4526-2 (authored by c-po).
Aug 24 2022, 5:26 PM
Viacheslav committed rVYOSONEXecaafaa26f85: https: T4597: Verify bind port before apply HTTPS API service.
Aug 24 2022, 5:24 PM
GitHub <noreply@github.com> committed rVYOSONEX04096a1abc98: Merge pull request #1488 from sever-sever/T4597 (authored by c-po).
Aug 24 2022, 5:24 PM
Viacheslav committed rVYOSONEX9b3cdfb96af9: conntrack: T4623: Add conntrack statistics for op-mode.
Aug 24 2022, 5:24 PM
GitHub <noreply@github.com> committed rVYOSONEXa87e4fcc3512: Merge pull request #1489 from sever-sever/T4623 (authored by c-po).
Aug 24 2022, 5:24 PM
n.fort committed rVYOSONEX079316a8bb33: Policy: T4641: allow only ipv4 prefixes on prefix-list.
Aug 24 2022, 5:23 PM
GitHub <noreply@github.com> committed rVYOSONEXdd2855ceb243: Merge pull request #1492 from nicolas-fort/T4641 (authored by c-po).
Aug 24 2022, 5:23 PM
n.fort added a comment to T4641: prefix-list allows ipv6 prefix as input.

PR: https://github.com/vyos/vyos-1x/pull/1492

Aug 24 2022, 12:00 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4631: Add port and protocol to nat66 from Open to In progress.
Aug 24 2022, 11:46 AM · VyOS 1.4 Sagitta
n.fort claimed T4641: prefix-list allows ipv6 prefix as input.
Aug 24 2022, 11:44 AM · VyOS 1.4 Sagitta
n.fort changed the status of T4641: prefix-list allows ipv6 prefix as input from Open to In progress.
Aug 24 2022, 11:44 AM · VyOS 1.4 Sagitta
n.fort created T4641: prefix-list allows ipv6 prefix as input.
Aug 24 2022, 11:44 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4626: Error showing nat66 source and destination, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from Open to In progress.
Aug 24 2022, 11:41 AM · VyOS Rolling
Viacheslav changed the status of T4626: Error showing nat66 source and destination from Open to In progress.

PR https://github.com/vyos/vyos-1x/pull/1491

set nat66 destination rule 100 destination address '2001:1111:1111:1111::10'
set nat66 destination rule 100 inbound-interface 'eth0'
set nat66 destination rule 100 translation address 'fd00:1111:1111:1111::10'
set nat66 source rule 100 destination prefix '!fd00:2222:2222:2222::/64'
set nat66 source rule 100 outbound-interface 'eth0'
set nat66 source rule 100 source prefix 'fd00:1111:1111:1111::/64'
set nat66 source rule 100 translation address '2001:1111:1111:1111::10'
set nat66 source rule 120 destination prefix '2001:db8:2222::/64'
set nat66 source rule 120 outbound-interface 'eth0'
set nat66 source rule 120 source prefix '2001:db8:1111::/64'
set nat66 source rule 120 translation address 'masquerade'
set nat66 source rule 130 destination prefix '2001:db8:2222::/64'
set nat66 source rule 130 outbound-interface 'eth0'
set nat66 source rule 130 source prefix '2001:db8:2244::/64'
set nat66 source rule 130 translation address 'masquerade'

show

vyos@r14:~$ show nat66 source rules 
Rule    Source                    Destination                Proto    Out-Int    Translation
------  ------------------------  -------------------------  -------  ---------  -----------------------
100     fd00:1111:1111:1111::/64  !fd00:2222:2222:2222::/64  IP6      eth0       2001:1111:1111:1111::10
        sport any                 dport any
120     2001:db8:1111::/64        2001:db8:2222::/64         IP6      eth0       masquerade
        sport any                 dport any
130     2001:db8:2244::/64        2001:db8:2222::/64         IP6      eth0       masquerade
        sport any                 dport any
vyos@r14:~$ 
vyos@r14:~$ 
vyos@r14:~$ show nat66 destination  rules 
Rule    Source     Destination              Proto    In-Int    Translation
------  ---------  -----------------------  -------  --------  -----------------------
100     ::/0       2001:1111:1111:1111::10  any      eth0      fd00:1111:1111:1111::10
        sport any  dport any
vyos@r14:~$
Aug 24 2022, 11:41 AM · VyOS 1.4 Sagitta
c-po added a comment to T4635: Add zebra option ip nht resolve-via-default as default option.

I am more +1 on set system ip(v6) nht because what happens if out of random another protocol will support this? Also it's a zebra option as you described, not a bgpd option.

Aug 24 2022, 6:22 AM · VyOS Rolling

Aug 23 2022

roedie added a comment to T4635: Add zebra option ip nht resolve-via-default as default option.

While reading the FRR docs I see it is only used in BGP and nowhere else. That would make something like set protocols bgp parameters next-hop-track resolve-via-default logical.

Aug 23 2022, 4:13 PM · VyOS Rolling
jestabro committed rVYOSONEXf66ad001e153: graphql: T3993: reorganize/rename directory structure.
Aug 23 2022, 4:01 PM
jestabro committed rVYOSONEXbf178babd96e: graphql: T4544: fix for directly running on system for testing.
Aug 23 2022, 4:01 PM
jestabro committed rVYOSONEX8eede91cd252: graphql: T3993: add missing sys.exit().
Aug 23 2022, 4:01 PM
jestabro added a subtask for T2719: Standardized op mode script structure: T4640: Integrate op-mode exception hierarchy into API.
Aug 23 2022, 3:10 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
jestabro added a subtask for T3993: Extend HTTP API GraphQL support: T4640: Integrate op-mode exception hierarchy into API.
Aug 23 2022, 3:10 PM · VyOS 1.4 Sagitta
jestabro added parent tasks for T4640: Integrate op-mode exception hierarchy into API: T3993: Extend HTTP API GraphQL support, T2719: Standardized op mode script structure.
Aug 23 2022, 3:10 PM · VyOS 1.4 Sagitta
Viacheslav updated subscribers of T4635: Add zebra option ip nht resolve-via-default as default option.

I prefer to get this option configurable if it is possible
For IPv6 and VRFs - nice to have.
As it is used in BGP, I see something like set protocols bgp parameters next-hop-track resolve-via-default
Or, as it was mentioned in T3500
set routing-options next-hop-track resolve-via-default but it will be an additional node with only one option, needs to think

Aug 23 2022, 2:42 PM · VyOS Rolling
jestabro created T4640: Integrate op-mode exception hierarchy into API.
Aug 23 2022, 2:33 PM · VyOS 1.4 Sagitta
roedie created T4639: Crowdsec in VyOS (Blocking only).
Aug 23 2022, 2:18 PM · VyOS Rolling
jestabro reassigned T4597: Check bind port before assign service HTTPS API and openconnect from jestabro to Viacheslav.
Aug 23 2022, 1:31 PM · VyOS 1.4 Sagitta
roedie added a comment to T4635: Add zebra option ip nht resolve-via-default as default option.

@Viacheslav Do you just want this option added to the zebra config, or you it also be possible to enable/disable this via the conf mode?

Aug 23 2022, 1:02 PM · VyOS Rolling
Viacheslav added a comment to T4623: Add show conntrack statistics.

PR https://github.com/vyos/vyos-1x/pull/1489

vyos@r14:~$ show conntrack statistics 
CPU    Found    Invalid    Insert    Insert fail      Drop    Early drop    Errors    Search restart
-----  -------  ---------  --------  ---------------  ------  ------------  --------  -----------------
cpu=0  found=0  invalid=0  insert=0  insert_failed=0  drop=0  early_drop=0  error=0   search_restart=0
cpu=1  found=0  invalid=0  insert=0  insert_failed=0  drop=0  early_drop=0  error=0   search_restart=0
cpu=2  found=0  invalid=0  insert=0  insert_failed=0  drop=0  early_drop=0  error=0   search_restart=0
cpu=3  found=0  invalid=0  insert=0  insert_failed=0  drop=0  early_drop=0  error=0   search_restart=48
vyos@r14:~$
Aug 23 2022, 11:37 AM · VyOS 1.4 Sagitta
Viacheslav claimed T4623: Add show conntrack statistics.
Aug 23 2022, 11:35 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4623: Add show conntrack statistics, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from Open to In progress.
Aug 23 2022, 11:34 AM · VyOS Rolling
Viacheslav changed the status of T4623: Add show conntrack statistics from Open to In progress.
Aug 23 2022, 11:34 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4597: Check bind port before assign service HTTPS API and openconnect.

Check NGINX address/port before applying/committing service https
PR https://github.com/vyos/vyos-1x/pull/1488

Aug 23 2022, 9:36 AM · VyOS 1.4 Sagitta
Viacheslav closed T4618: Traffic policy not set on virtual interfaces as Resolved.
Aug 23 2022, 7:50 AM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po moved T4538: Macsec does not work correctly when the interface status changes. from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.2) board.
Aug 23 2022, 5:40 AM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po closed T4538: Macsec does not work correctly when the interface status changes. as Resolved.
Aug 23 2022, 5:40 AM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
Viacheslav moved T4618: Traffic policy not set on virtual interfaces from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.2) board.
Aug 23 2022, 3:40 AM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
Viacheslav added a comment to T4309: Support network/address-groups and ipv6-network/ipv6-address-groups in "conntrack ignore".

@daniil, could you check/test this PR https://github.com/vyos/vyos-1x/pull/1487 (only for IPv4)

Aug 23 2022, 1:03 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav moved T4206: Policy Based Routing with DHCP Interface Issue from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.2) board.
Aug 23 2022, 12:48 AM · VyOS 1.3 Equuleus (1.3.2)

Aug 22 2022

Rhongomiant added a comment to T4206: Policy Based Routing with DHCP Interface Issue.

I have confirmed that this issue is now resolved when building from equuleus. I've attached a screenshot showing the table for the dynamic interface has a default route after the interface get's an IP. I used the following commands to build the ISO.

Aug 22 2022, 11:13 PM · VyOS 1.3 Equuleus (1.3.2)
roedie added a comment to T4526: keepalived-fifo.py unable to load config.

https://github.com/vyos/vyos-1x/pull/1486 try#2

Aug 22 2022, 7:51 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
Viacheslav closed T4089: Show nat destination rules shows ip address instead of interface 'any', a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, as Resolved.
Aug 22 2022, 7:22 PM · VyOS Rolling
Viacheslav closed T4089: Show nat destination rules shows ip address instead of interface 'any' as Resolved.
Aug 22 2022, 7:22 PM · VyOS 1.4 Sagitta
Viacheslav created T4638: Deleting a parent interface does not delete its underlying VLAN interfaces.
Aug 22 2022, 6:52 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po committed rVYOSONEX33db81f8055f: ethernet: T4538: fix wrong systemd unit used for EAPoL.
Aug 22 2022, 4:51 PM
GitHub <noreply@github.com> committed rVYOSONEXa63c8d6c4ca7: Merge pull request #1479 from c-po/macsec-t4538-equuleus (authored by dmbaturin).
Aug 22 2022, 4:51 PM
c-po moved T4538: Macsec does not work correctly when the interface status changes. from Open to Finished on the VyOS 1.4 Sagitta board.
Aug 22 2022, 4:42 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po moved T4630: Prevent attempts to use the same interface as a source interface for pseudo-ethernet and MACsec at the same time from Open to In Progress on the VyOS 1.4 Sagitta board.
Aug 22 2022, 4:42 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
c-po closed T4632: VLAN-aware bridge not working as Resolved.
Aug 22 2022, 4:41 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po changed Issue type from improvement to upgrade on T4637: Upgrade to podman 4.2.0.
Aug 22 2022, 4:41 PM · VyOS 1.4 Sagitta
c-po changed the status of T4633: Change keepalived to v2.2.7 from Open to Needs testing.
Aug 22 2022, 4:41 PM · VyOS 1.4 Sagitta
c-po merged T4636: VLAN-Aware bridge not handling local traffic (and not able to perform inter-vlan routing) into T4632: VLAN-aware bridge not working.
Aug 22 2022, 4:40 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po merged task T4636: VLAN-Aware bridge not handling local traffic (and not able to perform inter-vlan routing) into T4632: VLAN-aware bridge not working.
Aug 22 2022, 4:40 PM · VyOS 1.4 Sagitta
c-po claimed T4636: VLAN-Aware bridge not handling local traffic (and not able to perform inter-vlan routing).
Aug 22 2022, 4:40 PM · VyOS 1.4 Sagitta
c-po moved T4632: VLAN-aware bridge not working from Open to Finished on the VyOS 1.4 Sagitta board.
Aug 22 2022, 4:40 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po committed rVYOSONEX3b6f8bf8f749: bridge: T4632: vlan aware bridge lacks CPU forwarding.
Aug 22 2022, 4:39 PM
GitHub <noreply@github.com> committed rVYOSONEX2c7fe635994f: Merge pull request #1484 from c-po/bridge-fixes (authored by c-po).
Aug 22 2022, 4:39 PM
c-po closed T4637: Upgrade to podman 4.2.0 as Resolved.
Aug 22 2022, 4:37 PM · VyOS 1.4 Sagitta
c-po moved T4637: Upgrade to podman 4.2.0 from Open to Finished on the VyOS 1.4 Sagitta board.
Aug 22 2022, 4:37 PM · VyOS 1.4 Sagitta
c-po updated the task description for T4637: Upgrade to podman 4.2.0.
Aug 22 2022, 4:37 PM · VyOS 1.4 Sagitta
roedie added a comment to T4526: keepalived-fifo.py unable to load config.

I've create a PR which does the retry part. It retries 10 time every 0.5 seconds until it succeeds or it's out of retries.

Aug 22 2022, 4:14 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
c-po changed the status of T4637: Upgrade to podman 4.2.0 from Open to In progress.
Aug 22 2022, 4:04 PM · VyOS 1.4 Sagitta
c-po created T4637: Upgrade to podman 4.2.0.
Aug 22 2022, 4:03 PM · VyOS 1.4 Sagitta
c-po moved T4629: Raised ConfigErrors contain dict instead of only the dict key from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.2) board.
Aug 22 2022, 4:03 PM · VyOS 1.3 Equuleus (1.3.2)
c-po moved T4632: VLAN-aware bridge not working from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.2) board.
Aug 22 2022, 4:03 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po closed T4629: Raised ConfigErrors contain dict instead of only the dict key as Resolved.
Aug 22 2022, 4:03 PM · VyOS 1.3 Equuleus (1.3.2)
c-po added a project to T4632: VLAN-aware bridge not working: VyOS 1.3 Equuleus (1.3.2).
Aug 22 2022, 4:03 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po added a comment to T4632: VLAN-aware bridge not working.

Tested via:

Aug 22 2022, 4:02 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po added a comment to T4632: VLAN-aware bridge not working.

PR https://github.com/vyos/vyos-1x/pull/1484

Aug 22 2022, 4:01 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
c-po committed rVYOSONEXf60d0e1ce029: bridge: T4632: vlan aware bridge lacks CPU forwarding.
Aug 22 2022, 3:56 PM
c-po changed the status of T4632: VLAN-aware bridge not working from Open to In progress.
Aug 22 2022, 3:53 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
krox2 added a comment to T4526: keepalived-fifo.py unable to load config.

This is what I did (forgot to write it here) with the difference that my sleep timer is 60s as my config has many lines.
Would be good to have this fixed properly.

Aug 22 2022, 2:55 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
ssasso added a comment to T4636: VLAN-Aware bridge not handling local traffic (and not able to perform inter-vlan routing).

I think I found the "problematic" commit.
https://github.com/vyos/vyos-1x/commit/41477cc85208507be55f8db4e412ad78eae764eb#diff-8e6f3b9122c8406707eb59334978290d083995acf7de0323111d4eed1656693dL311

Aug 22 2022, 2:36 PM · VyOS 1.4 Sagitta
ssasso added a comment to T4636: VLAN-Aware bridge not handling local traffic (and not able to perform inter-vlan routing).
Aug 22 2022, 2:26 PM · VyOS 1.4 Sagitta
roedie added a comment to T4526: keepalived-fifo.py unable to load config.

The problem here seems to be that keepalived is started before the complete commit is finished. So conf.get_config_dict() fails to get the config.

Aug 22 2022, 2:21 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
ssasso added a comment to T4636: VLAN-Aware bridge not handling local traffic (and not able to perform inter-vlan routing).

With an older version:

vagrant@s1:~$ sudo bridge vlan
port              vlan-id
eth1              1000 PVID Egress Untagged
eth2              1001 PVID Egress Untagged
br0               1 PVID Egress Untagged
                  1000
                  1001
vagrant@s1:~$ show version
Aug 22 2022, 2:21 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4636: VLAN-Aware bridge not handling local traffic (and not able to perform inter-vlan routing).

I guess it the task T4632

Aug 22 2022, 2:08 PM · VyOS 1.4 Sagitta
itspngu added a comment to T4606: monitor nat destination translation shows missing script.

Can confirm.

Aug 22 2022, 2:06 PM · VyOS 1.4 Sagitta
ssasso created T4636: VLAN-Aware bridge not handling local traffic (and not able to perform inter-vlan routing).
Aug 22 2022, 1:40 PM · VyOS 1.4 Sagitta
Viacheslav assigned T4632: VLAN-aware bridge not working to c-po.
Aug 22 2022, 1:36 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
roedie added a comment to T4633: Change keepalived to v2.2.7.

Created PR for this https://github.com/vyos/vyos-build/pull/256

Aug 22 2022, 1:20 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4634: Bgp neighbor disable-connected-check does not work from Open to In progress.
Aug 22 2022, 1:17 PM · VyOS 1.4 Sagitta
c-po committed rVYOSONEX12c9c19a2f4f: vyos.config.configdict: T4592: T4629: only print interface name, not interface….
Aug 22 2022, 12:56 PM
GitHub <noreply@github.com> committed rVYOSONEX7cd7b6e27c29: Merge pull request #1480 from c-po/t4629-equuleus (authored by dmbaturin).
Aug 22 2022, 12:56 PM
roedie added a comment to T4634: Bgp neighbor disable-connected-check does not work.

Hi, I've created https://github.com/vyos/vyos-1x/pull/1483 for this one.

Aug 22 2022, 11:28 AM · VyOS 1.4 Sagitta
Viacheslav created T4635: Add zebra option ip nht resolve-via-default as default option.
Aug 22 2022, 10:51 AM · VyOS Rolling
Viacheslav created T4634: Bgp neighbor disable-connected-check does not work.
Aug 22 2022, 10:37 AM · VyOS 1.4 Sagitta

Aug 21 2022

roedie created T4633: Change keepalived to v2.2.7.
Aug 21 2022, 7:04 PM · VyOS 1.4 Sagitta
a.apostoliuk created T4632: VLAN-aware bridge not working.
Aug 21 2022, 11:59 AM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
First
Prev
Next