Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Mar 3 2023

diodep created T5049: Configure GRE over IPsec tunnel when source port is in VRF, OSPF causes GRE tunnel broken..
Mar 3 2023, 3:03 AM · Bugs, VyOS Rolling
diodep added a comment to T4031: Ability to configure DMVPN in vrf.

You can manually modify strongswan's systemd service file to add 'ip vrf exec charond'. But it causes other problem.

Mar 3 2023, 2:47 AM · VyOS 1.4 Sagitta
diodep created T5048: QoS doesn't work correctly root task.
Mar 3 2023, 2:44 AM · VyOS 1.4 Sagitta
Jimz added a comment to T4973: show dhcp server leases error for lease time 4294967295.

I backed up /config/dhcpd.leases - replaced it with an empty file. And it appears to be working, the /config/dhcpd.leases file seems to have been corrupted or malformated.

Mar 3 2023, 2:08 AM · VyOS 1.4 Sagitta
Jimz added a comment to T4973: show dhcp server leases error for lease time 4294967295.

Is there a way to share it privately? It has some of the internal domains and leases.

Mar 3 2023, 1:48 AM · VyOS 1.4 Sagitta

Mar 2 2023

j.bordon committed rVYOSONEX2e5dce048ca6: ipsec: T4916: Fixed migrations script.
Mar 2 2023, 6:56 PM
GitHub <noreply@github.com> committed rVYOSONEXe5eb4f332f03: Merge pull request #1865 from jbordongit/T4916-sagitta (authored by c-po).
Mar 2 2023, 6:56 PM
j.bordon added a comment to T4916: Rewrite IPsec authentication.

PR https://github.com/vyos/vyos-1x/pull/1865
We found some issues for the migration and we fixed it on this one.

Mar 2 2023, 6:41 PM · VyOS 1.4 Sagitta
Viacheslav added a subtask for T4712: Collaborative Protection Profile cPP for Network Devices root task: T5046: CLI for password complexity enforcement PAM module.
Mar 2 2023, 4:36 PM · VyOS Rolling, VyOS 1.5 Circinus (1.5-stream-2025-Q4)
Viacheslav added a parent task for T5046: CLI for password complexity enforcement PAM module: T4712: Collaborative Protection Profile cPP for Network Devices root task.
Mar 2 2023, 4:36 PM · VyOS Rolling
jestabro committed rVYOSONEXcb177e0ab0ef: login: T5039: catch error on 'my_set' for auth plaintext-password.
Mar 2 2023, 4:33 PM
GitHub <noreply@github.com> committed rVYOSONEXd0adefa390ed: Merge pull request #1864 from jestabro/system-login-error (authored by c-po).
Mar 2 2023, 4:33 PM
sarthurdev committed rVYOSONEX19ad6dc524bc: login: T5039: Support hashing rounds in `encrypted-password` values.
Mar 2 2023, 4:13 PM
GitHub <noreply@github.com> committed rVYOSONEX1ab8a32a7cd3: Merge pull request #1863 from sarthurdev/T5039 (authored by c-po).
Mar 2 2023, 4:13 PM
Viacheslav updated the task description for T5047: Recreate only a specific container.
Mar 2 2023, 3:12 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav created T5047: Recreate only a specific container.
Mar 2 2023, 3:07 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
sarthurdev changed the status of T5039: Can't add new local user from In progress to Needs testing.

PR: https://github.com/vyos/vyos-1x/pull/1863

Mar 2 2023, 2:46 PM · VyOS 1.4 Sagitta
erkin created T5046: CLI for password complexity enforcement PAM module.
Mar 2 2023, 2:42 PM · VyOS Rolling
njh added a comment to T3316: Use Kea DHCP(v6) instead of ISC DHCP(v6).

I was interested in why ping-check is no longer available.
There is a good article about it here:
https://kb.isc.org/docs/why-doesnt-kea-support-ping-check

Mar 2 2023, 2:08 PM · VyOS 1.5 Circinus
sarthurdev changed the status of T5039: Can't add new local user from Open to In progress.
Mar 2 2023, 2:06 PM · VyOS 1.4 Sagitta
sarthurdev changed the status of T3316: Use Kea DHCP(v6) instead of ISC DHCP(v6), a subtask of T3315: Supports dhcpv6 agent execution from pppoe0 interface, from Open to In progress.
Mar 2 2023, 1:41 PM
sarthurdev changed the status of T3316: Use Kea DHCP(v6) instead of ISC DHCP(v6) from Open to In progress.

Have started work on migrating isc-dhcp v4/v6 server to Kea.

Mar 2 2023, 1:41 PM · VyOS 1.5 Circinus
Viacheslav added a comment to T5039: Can't add new local user.

possible reason https://github.com/vyos/vyos-1x/commit/3bad1d0adb1c187f6611f4bed3d0ad16927d5d18

Mar 2 2023, 1:38 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T5041: PMTU per route-based .
In T5041#143810, @fernando wrote:

Could we use something like Dannil proposes? https://vyos.dev/T4883 , as you said FRR staticd don't allow this option but it could be useful when we have different mtu over the interface.

Mar 2 2023, 12:06 PM · Restricted Project, VyOS Rolling
fernando added a comment to T5041: PMTU per route-based .

Could we use something like Dannil proposes? https://vyos.dev/T4883 , as you said FRR staticd don't allow this option but it could be useful when we have different mtu over the interface.

Mar 2 2023, 11:52 AM · Restricted Project, VyOS Rolling
Viacheslav added a comment to T5045: BFD is not starting after upgrade to 1.4-rolling-202302150317.

Cannot reproduce it with this configuration (VyOS 1.4-rolling-202302280651, don't have a lot of file descriptors):

set protocols bfd peer 192.0.2.5 multihop
set protocols bfd peer 192.0.2.5 source address '192.0.2.1'
set protocols bfd peer 192.0.2.6 multihop
set protocols bfd peer 192.0.2.6 source address '192.0.2.1'
set protocols bfd profile BBR interval multiplier '3'
set protocols bfd profile BBR interval receive '350'
set protocols bfd profile BBR interval transmit '350'
Mar 2 2023, 11:12 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T5041: PMTU per route-based .

The thing is, we don't use iproute2 commands for adding a route. We use FRR staticd for it. As an exception failover route that uses iproute2 commands
FRRouting 8.4.2 doesn't have such option

r14(config)# ip route 192.0.2.1/32 203.0.113.1 
  <cr>         
  (1-255)      Distance value for this route
  INTERFACE    IP gateway interface name
     dum0 eth0 eth1 eth2 lo veth0 veth1 wg0 
  Null0        Null interface
  color        SR-TE color
  label        Specify label(s) for this route
  nexthop-vrf  Specify the VRF
  table        Table to configure
  tag          Set tag for this route
  vrf          Specify the VRF
Mar 2 2023, 9:53 AM · Restricted Project, VyOS Rolling
Viacheslav closed T4967: Ability to set hostname for the container as Resolved.
Mar 2 2023, 9:41 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T5042: Command 'show vpn ipsec remote-access' does not work.

show vpn ipsec remote-access shows only accel-ppp l2tp, pptp https://github.com/vyos/vyos-1x/blob/current/src/op_mode/show_vpn_ra.py

Mar 2 2023, 8:54 AM · VyOS 1.4 Sagitta
Viacheslav triaged T5039: Can't add new local user as Urgent! priority.
Mar 2 2023, 8:43 AM · VyOS 1.4 Sagitta
aserkin created T5045: BFD is not starting after upgrade to 1.4-rolling-202302150317.
Mar 2 2023, 12:20 AM · VyOS 1.4 Sagitta

Mar 1 2023

n.fort changed the status of T5037: Firewall - Add queue action from In progress to Needs testing.
Mar 1 2023, 8:23 PM · VyOS 1.4 Sagitta
c-po changed the status of T4989: QoS Policy Limiter - classes for marked traffic do not work from Open to Needs testing.
Mar 1 2023, 7:08 PM · vyatta-cfg-qos, VyOS 1.4 Sagitta
c-po committed rVYOSONEX62047982debe: qos: T4989: bugfix missing firewall mark support.
Mar 1 2023, 7:08 PM
fernando added a comment to T3316: Use Kea DHCP(v6) instead of ISC DHCP(v6).

Add another feature that is improved if we're thinking of moving to KEA :

Mar 1 2023, 6:28 PM · VyOS 1.5 Circinus
fernando created T5044: High Availability in DHCPv6 -ISC DHCP Failover/Kea.
Mar 1 2023, 6:00 PM · VyOS 1.5 Circinus
jestabro added a comment to T5040: Generate API GraphQL schema on installation, rather than dynamically.

PR:
https://github.com/vyos/vyos-1x/pull/1862

Mar 1 2023, 5:19 PM · VyOS 1.4 Sagitta
a.apostoliuk claimed T5043: Need to create reset command for IKEv2 remote-access vpn connections.
Mar 1 2023, 3:49 PM · VyOS 1.4 Sagitta
a.apostoliuk created T5043: Need to create reset command for IKEv2 remote-access vpn connections.
Mar 1 2023, 3:48 PM · VyOS 1.4 Sagitta
a.apostoliuk claimed T5042: Command 'show vpn ipsec remote-access' does not work.
Mar 1 2023, 3:27 PM · VyOS 1.4 Sagitta
a.apostoliuk created T5042: Command 'show vpn ipsec remote-access' does not work.
Mar 1 2023, 3:27 PM · VyOS 1.4 Sagitta
fernando changed Version from - to VyOS 1.4-rolling-202302231931 on T5041: PMTU per route-based .
Mar 1 2023, 2:27 PM · Restricted Project, VyOS Rolling
fernando created T5041: PMTU per route-based .
Mar 1 2023, 2:15 PM · Restricted Project, VyOS Rolling
jestabro triaged T5040: Generate API GraphQL schema on installation, rather than dynamically as Normal priority.
Mar 1 2023, 2:14 PM · VyOS 1.4 Sagitta
rayzilt closed T5015: Invalid format character error at hfsc class settings help text as Resolved.
Mar 1 2023, 11:13 AM · VyOS 1.4 Sagitta
Christian Poessinger <christian@poessinger.com> committed rVYOSONEXa214896fca17: container: T4014: Add `command`, `arg` and `entrypoint` configuration options… (authored by Zen3515).
Mar 1 2023, 8:46 AM
Christian Poessinger <christian@poessinger.com> committed rVYOSONEX4bcc364559be: T4967: Allow setting container hostname (authored by Viacheslav).
Mar 1 2023, 8:46 AM
Christian Poessinger <christian@poessinger.com> committed rVYOSONEX3fbe35c8ab0e: T4967: xml: provide re-usable constraint for CLI host-name definitions (authored by c-po).
Mar 1 2023, 8:46 AM
GitHub <noreply@github.com> committed rVYOSONEXc4afde0f76a3: Merge pull request #1861 from c-po/container-backports (authored by Viacheslav).
Mar 1 2023, 8:46 AM
Youyuan <youyuanluo@126.com> committed rVYOSONEXefd51fb7876d: policy: T5035: Add more actions to policy route rule.
Mar 1 2023, 7:19 AM
GitHub <noreply@github.com> committed rVYOSONEX112fabb4bbb0: Merge branch 'vyos:current' into current (authored by Youyuan <83439858+Yuanandcircle@users.noreply.github.com>).
Mar 1 2023, 7:19 AM
GitHub <noreply@github.com> committed rVYOSONEX157ac088a57f: Merge pull request #1854 from Yuanandcircle/current (authored by c-po).
Mar 1 2023, 7:19 AM
sempervictus added a comment to T4625: Update ocserv to current revision (1.1.6).

Currently digging through a bug with ocserv upstream maintainers, might get a 1.1.7 once we fix that or atleast a 1.1.6-4.
Aside from the weird Duo+RADIUS thing, the version noted in this issue currently runs great.

Mar 1 2023, 12:05 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta

Feb 28 2023

c-po committed rVYOSONEX15577ba5a14c: qos: T4284: add general debug output in update().
Feb 28 2023, 9:25 PM
c-po committed rVYOSONEXd14a6814acb1: T4967: xml: provide re-usable constraint for CLI host-name definitions.
Feb 28 2023, 9:25 PM
GitHub <noreply@github.com> committed rVYOSONEX851364c00e05: Merge pull request #1857 from nicolas-fort/nft_queue (authored by c-po).
Feb 28 2023, 9:18 PM
n.fort committed rVYOSONEXbbfe6b54b58b: T5037: Firewall: Add queue action and options to firewall.
Feb 28 2023, 9:18 PM
Viacheslav committed rVYOSONEXc68d73e6720a: T4967: Allow setting container hostname.
Feb 28 2023, 9:17 PM
GitHub <noreply@github.com> committed rVYOSONEX36cf6ea9a1c8: Merge pull request #1860 from sever-sever/T4967 (authored by c-po).
Feb 28 2023, 9:17 PM
b- added a comment to T3420: Support UPNP protocol.

My Xbox One game console is set to use "automatic" settings regarding both port selection and forwarding (via UPNP), and in doing so it chose port 54060 on my LAN (and has been distributed the IP address 172.23.217.102 from my DHCP server — which is not VyOS, by the way).

Feb 28 2023, 8:10 PM
b- added a comment to T3420: Support UPNP protocol.

A few issues I'm encountering while trying to test it right now:

Feb 28 2023, 8:05 PM
Viacheslav changed the status of T4625: Update ocserv to current revision (1.1.6) from In progress to Needs testing.
Feb 28 2023, 6:09 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav changed the status of T5022: VRRP add mail notification from Open to In progress.
Feb 28 2023, 5:43 PM · VyOS Rolling, Restricted Project
Viacheslav added a comment to T4625: Update ocserv to current revision (1.1.6).

PR for 1.3 https://github.com/vyos/vyos-build/pull/316

Feb 28 2023, 5:35 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav changed the status of T4625: Update ocserv to current revision (1.1.6) from Open to In progress.
Feb 28 2023, 5:07 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav claimed T4625: Update ocserv to current revision (1.1.6).
Feb 28 2023, 5:07 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav moved T4625: Update ocserv to current revision (1.1.6) from Open to Finished on the VyOS 1.4 Sagitta board.

For 1.4

vyos@r14# run show version all | match ocser
ii  ocserv                               1.1.6-3                          amd64        OpenConnect VPN server compatible with Cisco AnyConnect VPN
[edit]
vyos@r14#
Feb 28 2023, 5:03 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav moved T4219: support incoming-interface (iif) in local PBR from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.3) board.
Feb 28 2023, 4:57 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav closed T4219: support incoming-interface (iif) in local PBR as Resolved.
Feb 28 2023, 4:57 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav added a comment to T4481: containers are not starting.

@Nova_Logic Is this bug still active?

Feb 28 2023, 4:31 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4481: containers are not starting from Open to Needs testing.
Feb 28 2023, 4:24 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3420: Support UPNP protocol.

It still requires testing
who can test if this feature works as expected?

Feb 28 2023, 4:23 PM
Viacheslav added a comment to T2640: Running VyOS inside Docker containers.

@zsdc Can we close it?

Feb 28 2023, 4:17 PM · VyOS 1.3 Equuleus (1.3.3)
Viacheslav changed the status of T2640: Running VyOS inside Docker containers from In progress to Needs testing.
Feb 28 2023, 4:14 PM · VyOS 1.3 Equuleus (1.3.3)
Viacheslav closed T3903: Containers: after command "reboot" the host system will reboot after 1.5 minutes as Resolved.
Feb 28 2023, 3:55 PM · VyOS 1.4 Sagitta
a.apostoliuk created T5039: Can't add new local user.
Feb 28 2023, 3:49 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4967: Ability to set hostname for the container.

PR https://github.com/vyos/vyos-1x/pull/1860

Feb 28 2023, 2:32 PM · VyOS 1.4 Sagitta
a.apostoliuk closed T4955: Openconnect radiusclient.conf generating with extra authserver as Resolved.
Feb 28 2023, 2:01 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
a.apostoliuk moved T4955: Openconnect radiusclient.conf generating with extra authserver from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.3) board.
Feb 28 2023, 2:01 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
a.apostoliuk moved T4955: Openconnect radiusclient.conf generating with extra authserver from Open to Finished on the VyOS 1.4 Sagitta board.
Feb 28 2023, 2:01 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav changed the status of T4967: Ability to set hostname for the container from Open to In progress.
Feb 28 2023, 1:28 PM · VyOS 1.4 Sagitta
SrividyaA placed T3989: Firewall - Can't delete rule in firewall entry and leave just default-action when firewall entry is in used up for grabs.
Feb 28 2023, 11:58 AM
Viacheslav edited projects for T5038: WAN load balancing sticky-connections inbound does not work., added: VyOS 1.3 Equuleus (1.3.3); removed vyatta-wanloadbalance, VyOS 1.3 Equuleus.
Feb 28 2023, 9:58 AM · VyOS Rolling, Bugs
Viacheslav moved T5033: generate-public-key command fails for address with multiple public keys like GitHub from Open to Finished on the VyOS 1.4 Sagitta board.
Feb 28 2023, 9:56 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
chattytak created T5038: WAN load balancing sticky-connections inbound does not work..
Feb 28 2023, 9:29 AM · VyOS Rolling, Bugs
Viacheslav added a comment to T5033: generate-public-key command fails for address with multiple public keys like GitHub.

PR for 1.3 https://github.com/vyos/vyos-1x/pull/1859

Feb 28 2023, 9:22 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
GenexLogistics updated GenexLogistics.
Feb 28 2023, 8:54 AM
Viacheslav changed the status of T4977: Babel routing protocol support from Open to Needs testing.
Feb 28 2023, 8:25 AM · VyOS 1.4 Sagitta (1.4.0-epa2)
Viacheslav closed T4843: Command-line arguments in container config, a subtask of T578: Support Linux Container, as Resolved.
Feb 28 2023, 8:24 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav closed T4843: Command-line arguments in container config as Resolved.

Done in T4014

Feb 28 2023, 8:24 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4014: Add “command” and “arg” configuration options for containers, a subtask of T2216: Containerized third-party applications for VyOS, from Open to Needs testing.
Feb 28 2023, 8:22 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4014: Add “command” and “arg” configuration options for containers from Open to Needs testing.
Feb 28 2023, 8:22 AM · VyOS 1.4 Sagitta
Viacheslav closed T5025: Time-zone validation failed as Resolved.
Feb 28 2023, 8:02 AM · VyOS 1.4 Sagitta
Viacheslav moved T5028: Add package exfatprogs to VyOS from Open to Finished on the VyOS 1.4 Sagitta board.
Feb 28 2023, 8:01 AM · VyOS 1.4 Sagitta
Viacheslav closed T5029: Nginx change default root directory and fix regex as Resolved.
Feb 28 2023, 8:01 AM · VyOS 1.4 Sagitta
vfreex committed rVYOSONEX4bfe801e7e6c: T4977: Add Babel routing protocol support.
Feb 28 2023, 6:33 AM
GitHub <noreply@github.com> committed rVYOSONEX9b88a68001b7: Merge pull request #1800 from vfreex/feature-babel (authored by c-po).
Feb 28 2023, 6:33 AM
Zen3515 committed rVYOSONEX53aebddb4ca5: container: T4014: Add `command`, `arg` and `entrypoint` configuration options….
Feb 28 2023, 6:30 AM
GitHub <noreply@github.com> committed rVYOSONEX16d167ac32a3: Merge pull request #1784 from Zen3515/current-add-container-command-arg (authored by c-po).
Feb 28 2023, 6:30 AM
Viacheslav committed rVYOSONEX599781b3a458: T5033: Ability to generate muliple keys from a file or link.
Feb 28 2023, 6:30 AM
First
Prev
Next