Will be fixed in the next rolling release
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Mar 14 2023
Mar 14 2023
In pcap mode when sampling is set to value larger then 1 hsflowd uses kernel based sampling available on kernels starting from 3.16
I think NFLOG and TCP can be dropped for sure.
GitHub <[email protected]> committed rVYOSONEXc5ee06af8cb0: Merge pull request #1888 from sever-sever/T5085 (authored by c-po).
Jenkins job looks simple
git clone https://github.com/sflow/host-sflow make deb FEATURES="NFLOG PCAP TCP DBUS SYSTEMD"
pavel_odintsov added a comment to T3721: ARM64: 1.4: Fastnetmon in current is a precompiled custom "blob" and amd64 only. (blocks all arm64 builds).
Hello! We have plans to add official ARM64 builds in near future.
PR https://github.com/vyos/vyos-1x/pull/1888
set policy route-map RMAP6 rule 10 action 'deny' set policy route-map RMAP6 rule 10 match ip address prefix-len '0' set protocols ospfv3 route-map 'RMAP6'
Viacheslav changed the status of T5085: ospfv3 route-map not applied in FRR configuration from Open to In progress.
Just adding my +1 for this feature, would be very useful.
If I get time in the coming weeks/months I will try and pick up on the analysis where @njh left off.
@n.fort A quick test of this against latest rolling looks like it's working as expected for general firewall rules:
Mar 13 2023
Mar 13 2023
GitHub <[email protected]> committed rVYOSONEXc614e8cfd5c2: Merge pull request #1886 from sever-sever/T2516 (authored by c-po).
n.fort changed the status of T5050: Firewall - Add options for logging packets from Confirmed to In progress.
I agree that the Keepalivd SMTP implementation is lacking authentication.
n.fort changed the status of T5055: Firewall - Add packet type matcher (pkttype) from In progress to Needs testing.
@Viacheslav I may be on to something. It's related to the order of execution of the DHCP client exit hook scripts in /etc/dhcp/dhclient-exit-hooks.d.
PR for 1.4 https://github.com/vyos/vyos-1x/pull/1886
vyos@91800359325b# set interfaces ethernet eth0 address 192.0.2.5/24 [edit] vyos@91800359325b# commit [ interfaces ethernet eth0 ] sudo: unable to resolve host 91800359325b: System error
Viacheslav changed the status of T2516: vyos-container: cannot configure ethernet interface from Needs testing to In progress.
Viacheslav added a project to T2516: vyos-container: cannot configure ethernet interface: VyOS 1.4 Sagitta.
a.apostoliuk moved T5074: Show IPSEC SA failed if remote access IKEv2 vpn is used. from Open to Finished on the VyOS 1.4 Sagitta board.
Viacheslav updated the task description for T5084: Interfrace negotiation may not work on some platforms.
aserkin added a comment to T5077: routes completely dropped from the node while running L2TP LNS service.
Actually only multihop BGP peers go down. Others are up, but the routes received from them does not go to kernel, so the connectivity drops.
Latest techsupport: https://oc.cpm.ru/index.php/s/Fg9FfoOatihBOrQ
The system was alive more than 12 hours, but crashed the same way as before.
Mar 13 2023, 8:23 AM · Restricted Project
Mar 12 2023
Mar 12 2023
I don't think this ever worked as intended: see T3275#103228, vyos-build PR 185, and T3821.
Mar 11 2023
Mar 11 2023
c-po closed T5076: CI/CD: Docker container is bloated by legacy and conflicting dependencies as Resolved.
c-po moved T5076: CI/CD: Docker container is bloated by legacy and conflicting dependencies from Open to Finished on the VyOS 1.4 Sagitta board.
Mar 10 2023
Mar 10 2023
after an internal discussion we came to the conslusion that keepalived SMTP implementation is incomplete (e.g. it lacks authentication). In order to still support your request we think we should enable support of 3rd party configurations placed in e.g. /etc/keepalived/conf.d.
GitHub <[email protected]> committed rVYOSONEX5d4908288931: Merge pull request #1871 from nicolas-fort/T5055 (authored by c-po).
c-po moved T4959: Add container registry authentication config for containers from Open to Finished on the VyOS 1.4 Sagitta board.
c-po changed the status of T4959: Add container registry authentication config for containers from In progress to Needs testing.
c-po moved T5079: xml: schema extension to support defaultValues on tagNodes from Open to Finished on the VyOS 1.4 Sagitta board.
c-po changed Difficulty level from unknown to easy on T5079: xml: schema extension to support defaultValues on tagNodes.
c-po changed the status of T5079: xml: schema extension to support defaultValues on tagNodes, a subtask of T4959: Add container registry authentication config for containers, from Open to In progress.
c-po changed the status of T5079: xml: schema extension to support defaultValues on tagNodes from Open to In progress.
@sdev just for clarification do you mean "deleted" as in only existing entries but new ones will work or completely deleted?
Im asking because I do use keas global, subnet, pool and class option-data support extensively outside of vyos.
If this would stay/become a part of vyos that would be great!
GitHub <[email protected]> committed rVYOSONEXeb4d0ac46bf4: Merge pull request #1884 from sever-sever/T5058 (authored by c-po).
PR https://github.com/vyos/vyos-1x/pull/1884
>>> range_to_regex(['10-20', '22-35', '50']) '(1\\d|20|2[2-9]|3[0-5]|50)' >>>
Viacheslav changed the status of T5070: show bgp nexthop unavailable in VRF from Open to Needs testing.
Viacheslav changed the status of T5074: Show IPSEC SA failed if remote access IKEv2 vpn is used. from In progress to Needs testing.
GitHub <[email protected]> committed rVYOSONEX29d27c392274: Merge pull request #1876 from jestabro/codegen (authored by c-po).
Viacheslav changed the status of T4973: show dhcp server leases error for lease time 4294967295 from In progress to Needs testing.
Will be fixed in the next rolling release
GitHub <[email protected]> committed rVYOSONEX684b30a16c61: Merge pull request #1880 from ichdasich/add_bgp_nexthop_to_vrf (authored by c-po).
GitHub <[email protected]> committed rVYOSONEX284820582938: Merge pull request #1883 from sever-sever/T4973 (authored by c-po).
GitHub <[email protected]> committed rVYOSONEXcb8006da2a84: Merge pull request #1882 from aapostoliuk/T5074-sagitta (authored by c-po).
tfiebig added a comment to T5078: VyOS BGP does not support 'show bgp neighbors $NB filtered-routes'.
Wanted to have the ticketid to write the right commit message right away. Diff is here: https://github.com/vyos/vyos-1x/compare/current...ichdasich:vyos-1x:filtered_routes
If we add vlan to range we get error
set service ipoe-server authentication mode 'noauth' set service ipoe-server client-ip-pool name POOL1 gateway-address '192.0.2.1' set service ipoe-server client-ip-pool name POOL1 subnet '192.0.2.0/24' set service ipoe-server interface eth1 vlan '2000-3000' commit set service ipoe-server interface eth1 vlan '50' commit
The second commit:
a.apostoliuk changed the status of T4925: Need to add the possibility to configure Pseudo-Random Functions (PRF) in IKEv2 from Open to In progress.
GitHub <[email protected]> committed rVYOSONEXa3b16a483140: Merge pull request #1859 from sever-sever/T5033-eq (authored by Viacheslav).
Viacheslav changed the status of T4973: show dhcp server leases error for lease time 4294967295 from Open to In progress.
a.apostoliuk changed the status of T5074: Show IPSEC SA failed if remote access IKEv2 vpn is used. from Open to In progress.
Mar 10 2023, 7:44 AM · Restricted Project
Viacheslav renamed T4973: show dhcp server leases error for lease time 4294967295 from show dhcp server leases error for static entries to show dhcp server leases error for lease time 4294967295.
Mar 9 2023
Mar 9 2023
@n.fort @Viacheslav
Here is an example of what I am after for DNAT rule, specifically, using meta pkttype:
c-po changed the status of T5076: CI/CD: Docker container is bloated by legacy and conflicting dependencies from Open to In progress.