Page MenuHomeVyOS Platform
Feed All Stories

May 10 2023

jestabro added a subtask for T2665: vyos.xml.defaults for tag nodes: T5218: Revise vyos xml lib for bug fixes and extensions.
May 10 2023, 10:17 PM · VyOS 1.4 Sagitta
jestabro added a parent task for T5218: Revise vyos xml lib for bug fixes and extensions: T2665: vyos.xml.defaults for tag nodes.
May 10 2023, 10:16 PM · VyOS 1.4 Sagitta
jestabro added a comment to T5218: Revise vyos xml lib for bug fixes and extensions.

PR:
https://github.com/vyos/vyos-1x/pull/1997
This will remain in draft until corresponding PR fro vyos1x-config is merged.

May 10 2023, 10:16 PM · VyOS 1.4 Sagitta
jestabro changed the status of T5218: Revise vyos xml lib for bug fixes and extensions from Open to In progress.
May 10 2023, 10:01 PM · VyOS 1.4 Sagitta
frebib committed rVYOSONEXf5cc84538605: veth: T3829: Allow moving veth into netns.
May 10 2023, 7:35 PM
GitHub <[email protected]> committed rVYOSONEX834a786a308d: Merge pull request #1996 from frebib/veth-netns (authored by c-po).
May 10 2023, 7:35 PM
syncer changed the status of T3829: Support separated TCP/IP stack via "ip netns" from Open to In progress.
May 10 2023, 7:27 PM · VyOS Rolling
zsdc committed rVYOSONEX748199b10df1: cloud-init: T5190: Added Cloud-init pre-configurator.
May 10 2023, 7:15 PM
GitHub <[email protected]> committed rVYOSONEX7ccd7b4ab990: Merge pull request #1979 from zdc/T5190-equuleus (authored by c-po).
May 10 2023, 7:15 PM
dmbaturin committed rVYOSONEX63fb721b96ba: vyos.utils: T5195: add vyos.utils.file.
May 10 2023, 7:14 PM
GitHub <[email protected]> committed rVYOSONEXe5e6a32eced3: Merge pull request #1989 from dmbaturin/T5195-file-utils (authored by c-po).
May 10 2023, 7:14 PM
dmbaturin committed rVYOSONEXfe7232e6a91e: vyos.utils: T5195: add vyos.utils.convert.
May 10 2023, 7:14 PM
GitHub <[email protected]> committed rVYOSONEXced599b0d6b0: Merge pull request #1990 from dmbaturin/T5195-conversion-utils (authored by c-po).
May 10 2023, 7:14 PM
dmbaturin committed rVYOSONEX2309df5f1c73: vyos.utils: T5195: add vyos.utils.io.
May 10 2023, 7:13 PM
GitHub <[email protected]> committed rVYOSONEX79a693ed7adf: Merge pull request #1991 from dmbaturin/T5195-io-utils (authored by c-po).
May 10 2023, 7:13 PM
dmbaturin committed rVYOSONEX9495ac100114: vyos.utils: T5195: add vyos.utils.dict.check_mutually_exclusive_options.
May 10 2023, 7:13 PM
dmbaturin committed rVYOSONEX8dc6b0aa8d7b: vrrp: T5215: Add built-in ping check for VRRP groups.
May 10 2023, 7:13 PM
GitHub <[email protected]> committed rVYOSONEX6eaa327c2a3b: Merge pull request #1987 from dmbaturin/T5251-vrrp-group-ping (authored by c-po).
May 10 2023, 7:13 PM
Viacheslav committed rVYOSONEX153f3579d703: T5213: Add accounting-interim-interval option for L2TP-server.
May 10 2023, 7:13 PM
Viacheslav committed rVYOSONEX98c310462ded: T5213: Add accounting-interim-interval option for PPTP-server.
May 10 2023, 7:12 PM
GitHub <[email protected]> committed rVYOSONEX96d9bf0a88fc: Merge pull request #1988 from sever-sever/T5213 (authored by c-po).
May 10 2023, 7:12 PM
Viacheslav committed rVYOSONEX3c2a206e733c: T5217: Add smoketest for CONFIG_NFT_SYNPROXY kernel option.
May 10 2023, 7:11 PM
GitHub <[email protected]> committed rVYOSONEXb469ed55403b: Merge pull request #1992 from sever-sever/T5217 (authored by c-po).
May 10 2023, 7:11 PM
syncer changed the status of T160: Support NAT64 from Open to In progress.
May 10 2023, 7:08 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
Viacheslav updated the task description for T5217: Add firewall SYNPROXY .
May 10 2023, 2:29 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T5217: Add firewall SYNPROXY .

Add kernel module https://github.com/vyos/vyos-build/pull/348

May 10 2023, 1:05 PM · VyOS 1.4 Sagitta
Viacheslav created T5217: Add firewall SYNPROXY .
May 10 2023, 11:45 AM · VyOS 1.4 Sagitta
aserkin removed a watcher for VyOS 1.4 Sagitta: aserkin.
May 10 2023, 11:40 AM
Viacheslav closed T5209: dhclient load-balancing exit hook 04-dhcp-wanlb returned non-zero exit status as Resolved.
May 10 2023, 9:51 AM · VyOS 1.4 Sagitta
Viacheslav closed T5060: add a VRRP 'maintenance mode' as Resolved.
May 10 2023, 9:48 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.

PR for L2TP https://github.com/vyos/vyos-1x/pull/1988

May 10 2023, 9:39 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
a.apostoliuk added a comment to T5197: Conntrack-sync external cache commit error.

Not working. The same errors

May 10 2023, 9:32 AM · VyOS 1.4 Sagitta
Viacheslav closed T5065: Mixing `destination port xxx` and `destination group port-group yyy` in firewall rules doesn't work, but can be commited as Resolved.
May 10 2023, 8:10 AM · VyOS 1.4 Sagitta
Viacheslav created T5216: Add encrypting syslog traffic with TLS (SSL).
May 10 2023, 7:29 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T5144: Modernize dynamic dns operation from Open to Needs testing.
May 10 2023, 7:20 AM · VyOS 1.4 Sagitta
dmbaturin created T5215: Add a built-in ICMP health check for VRRP groups.
May 10 2023, 12:36 AM · VyOS 1.4 Sagitta

May 9 2023

jjduru updated jjduru.
May 9 2023, 8:22 PM
c-po changed the status of T2778: Migrate "system syslog" to get_config_dict() to support new features from In progress to Needs testing.
May 9 2023, 5:39 PM · VyOS 1.4 Sagitta
c-po changed the status of T2769: Add VRF support for syslog from Resolved to Unknown Status.
May 9 2023, 5:39 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
c-po changed the status of T2769: Add VRF support for syslog, a subtask of T2778: Migrate "system syslog" to get_config_dict() to support new features, from Resolved to Unknown Status.
May 9 2023, 5:39 PM · VyOS 1.4 Sagitta
c-po closed T2769: Add VRF support for syslog, a subtask of T2778: Migrate "system syslog" to get_config_dict() to support new features, as Resolved.
May 9 2023, 5:38 PM · VyOS 1.4 Sagitta
c-po closed T2769: Add VRF support for syslog as Resolved.
May 9 2023, 5:38 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
c-po claimed T5186: QoS test cannot pass for 1.3.
May 9 2023, 5:38 PM · VyOS 1.3 Equuleus (1.3.3)
zsdc committed rVYOSONEX3c229a3646a5: cloud-init: T5190: Added Cloud-init pre-configurator.
May 9 2023, 5:26 PM
GitHub <[email protected]> committed rVYOSONEX70e476760a9c: Merge pull request #1978 from zdc/T5190-sagitta (authored by c-po).
May 9 2023, 5:26 PM
Viacheslav committed rVYOSONEXe201454f073c: T5060: Add disable option for high-availability.
May 9 2023, 5:25 PM
GitHub <[email protected]> committed rVYOSONEX6a150eb26c97: Merge pull request #1984 from sever-sever/T5060 (authored by c-po).
May 9 2023, 5:25 PM
c-po committed rVYOSONEX1dc79cebc6d2: syslog: T2778: migrate to get_config_dict().
May 9 2023, 5:25 PM
c-po committed rVYOSONEX46d2bcdb0b50: syslog: T2769: add VRF support.
May 9 2023, 5:25 PM
GitHub <[email protected]> committed rVYOSONEX73ec6fd55d18: Merge pull request #1985 from c-po/t2778-syslog (authored by c-po).
May 9 2023, 5:25 PM
Viacheslav committed rVYOSONEX718d11daa2bd: T5213: Add accounting-interim-interval option for PPPoE IPoE SSTP.
May 9 2023, 5:24 PM
Viacheslav committed rVYOSONEX7c23983ba121: T5213: Add smoketest for pppoe-server accounting-interim-interval.
May 9 2023, 5:24 PM
Viacheslav committed rVYOSONEXac0fedb7ac24: T5214: Fix warning if a named pool is defined for PPPoE-server.
May 9 2023, 5:24 PM
GitHub <[email protected]> committed rVYOSONEX3543aecf8463: Merge pull request #1986 from sever-sever/T5213 (authored by c-po).
May 9 2023, 5:24 PM
masterit added a comment to T4362: Wan Load Balancing - Can't create routing tables.

one issue.
the migration scripts don't take into account older load balancing configs.

May 9 2023, 5:01 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T5209: dhclient load-balancing exit hook 04-dhcp-wanlb returned non-zero exit status from Open to In progress.

PR https://github.com/vyos/vyatta-wanloadbalance/pull/18

May 9 2023, 2:49 PM · VyOS 1.4 Sagitta
Viacheslav closed T5202: After removal load-balancing a pid remained which used in dhclient-exit-hooks as Resolved.

Fixed with rewriting to systemd unit vyos-wan-load-balance.service

May 9 2023, 2:29 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.

@Viacheslav Thanks for the prompt response. Not sure if the change will also cover L2TP as well. For example:

set vpn l2tp remote-access authentication radius accounting-interim-interval '60'
May 9 2023, 2:19 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
Viacheslav reopened T5203: load-balancing wan add systemd unit instead of old vyatta-wanloadbalance.init, a subtask of T4470: Rewrite load-balancing wan to XML/Python, as Needs testing.
May 9 2023, 2:05 PM · VyOS Rolling, VyOS 1.5 Circinus
Viacheslav reopened T5203: load-balancing wan add systemd unit instead of old vyatta-wanloadbalance.init as "Needs testing".

Sometimes it stuck for ~1.5 minutes after deleting.

vyos@r14# delete load-balancing 
[edit]
vyos@r14# commit
May 9 2023, 2:05 PM · VyOS 1.4 Sagitta
joshua.hanley updated subscribers of T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.

@Viacheslav Thanks for the prompt response. Not sure if the change will also cover L2TP as well. For example:

May 9 2023, 12:57 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
Viacheslav added a comment to T5214: PPPoE-server incorrect warning if a named pool is defined.

PR https://github.com/vyos/vyos-1x/pull/1986

May 9 2023, 12:40 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.

PR https://github.com/vyos/vyos-1x/pull/1986

set service pppoe-server authentication mode 'radius'
set service pppoe-server authentication radius accounting-interim-interval '60'
set service pppoe-server authentication radius server 203.0.113.1 key '123'
set service pppoe-server client-ip-pool name POOL-01 gateway-address '192.0.2.1'
set service pppoe-server client-ip-pool name POOL-01 subnet '192.0.2.0/24'
set service pppoe-server interface eth1
May 9 2023, 12:39 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
Viacheslav changed the status of T5214: PPPoE-server incorrect warning if a named pool is defined from Open to In progress.
May 9 2023, 10:36 AM · VyOS 1.4 Sagitta
Viacheslav created T5214: PPPoE-server incorrect warning if a named pool is defined.
May 9 2023, 10:36 AM · VyOS 1.4 Sagitta
Viacheslav renamed T5213: Accel-ppp sending accounting interim updates acct-interim-interval option from Sending accounting interim updates to Accel-ppp sending accounting interim updates acct-interim-interval option.
May 9 2023, 9:28 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
Viacheslav changed the status of T5213: Accel-ppp sending accounting interim updates acct-interim-interval option from Open to In progress.
May 9 2023, 9:28 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
Viacheslav added a comment to T5186: QoS test cannot pass for 1.3.

this is cause by

https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.4.235&id=7a6fb69bbcb21e9ce13bdf18c008c268874f0480

tcindex classifier is removed by upstream kernel, so

08:04:48 DEBUG - filter add dev eth1 parent 11: protocol ip prio 1 handle 128 tcindex classid 11:a

fails.

May 9 2023, 9:01 AM · VyOS 1.3 Equuleus (1.3.3)
joshua.hanley updated the task description for T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
May 9 2023, 8:18 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
joshua.hanley renamed T5213: Accel-ppp sending accounting interim updates acct-interim-interval option from Sending account interim upates to Sending accounting interim updates.
May 9 2023, 8:16 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
joshua.hanley updated the task description for T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
May 9 2023, 8:13 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
joshua.hanley updated the task description for T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
May 9 2023, 8:12 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
joshua.hanley created T5213: Accel-ppp sending accounting interim updates acct-interim-interval option.
May 9 2023, 8:11 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
Viacheslav added a comment to T5211: route-map allows both IPv4 and IPv6 in one rule which never match.

We use FRR as the backend and it uses logical AND for match entries

May 9 2023, 7:11 AM
c-po added a comment to T2778: Migrate "system syslog" to get_config_dict() to support new features.

https://github.com/vyos/vyos-1x/pull/1985

May 9 2023, 5:20 AM · VyOS 1.4 Sagitta
c-po changed the status of T2769: Add VRF support for syslog from Open to In progress.
May 9 2023, 5:20 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
c-po changed the status of T2769: Add VRF support for syslog, a subtask of T2778: Migrate "system syslog" to get_config_dict() to support new features, from Open to In progress.
May 9 2023, 5:20 AM · VyOS 1.4 Sagitta
c-po added a comment to T2769: Add VRF support for syslog.

https://github.com/vyos/vyos-1x/pull/1985

May 9 2023, 5:20 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
rh7819 added a comment to T5186: QoS test cannot pass for 1.3.

this is cause by

May 9 2023, 3:04 AM · VyOS 1.3 Equuleus (1.3.3)

May 8 2023

fernando closed T5212: snmp community name -error with special carracter as Resolved.
May 8 2023, 7:20 PM · VyOS 1.3 Equuleus
fernando created T5212: snmp community name -error with special carracter .
May 8 2023, 7:07 PM · VyOS 1.3 Equuleus
c-po changed the status of T2778: Migrate "system syslog" to get_config_dict() to support new features from Open to In progress.
May 8 2023, 6:48 PM · VyOS 1.4 Sagitta
GitHub <[email protected]> committed rVYOSONEX36a60cd14733: T4780: bump firewall version 9 -> 10 (authored by c-po).
May 8 2023, 5:00 PM
marekm created T5211: route-map allows both IPv4 and IPv6 in one rule which never match.
May 8 2023, 4:54 PM
Viacheslav created T5210: IPSec cosmetic bug for Warning vti inrerface.
May 8 2023, 12:56 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T5060: add a VRRP 'maintenance mode'.

PR https://github.com/vyos/vyos-1x/pull/1984

set high-availability disable
set high-availability vrrp group GRP01 address 192.0.2.47/32
set high-availability vrrp group GRP01 interface 'eth1'
set high-availability vrrp group GRP01 vrid '10'
May 8 2023, 11:47 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T5060: add a VRRP 'maintenance mode' from Open to In progress.
May 8 2023, 11:41 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T5048: QoS doesn't work correctly root task.

It doesn't like protocol tcp

vyos@r14# sudo tc filter replace dev eth1 parent 1: protocol all u32 match ip protocol tcp 0xff action police rate 300000000 burst 15k flowid 1:a
Illegal "match"
[edit]
vyos@r14#

But it works with protocol 6

vyos@r14# sudo tc filter replace dev eth1 parent 1: protocol all u32 match ip protocol 6 0xff action police rate 300000000 burst 15k flowid 1:a
[edit]
vyos@r14#

And next fail:

ardware UUID:    4d6f4d29-1ae8-446f-8d2b-3decd9da64c7
May 8 2023, 10:34 AM · VyOS 1.4 Sagitta
diodep added a comment to T5048: QoS doesn't work correctly root task.

On 1.4-rolling-202305080742, speed limit and protocol detection still not worked out correctly too.

May 8 2023, 10:11 AM · VyOS 1.4 Sagitta
Viacheslav updated the task description for T5209: dhclient load-balancing exit hook 04-dhcp-wanlb returned non-zero exit status.
May 8 2023, 9:55 AM · VyOS 1.4 Sagitta
Viacheslav created T5209: dhclient load-balancing exit hook 04-dhcp-wanlb returned non-zero exit status.
May 8 2023, 9:52 AM · VyOS 1.4 Sagitta
Viacheslav updated the task description for T5202: After removal load-balancing a pid remained which used in dhclient-exit-hooks.
May 8 2023, 9:39 AM · VyOS 1.4 Sagitta
Viacheslav created T5208: Failed to start nvmf-autoconnect.service during the boot.
May 8 2023, 9:29 AM · VyOS 1.4 Sagitta
Viacheslav changed the subtype of T5207: Improper NAT66 Support from "Task" to "Feature Request".
May 8 2023, 8:12 AM · VyOS 1.5 Circinus
Viacheslav closed T5203: load-balancing wan add systemd unit instead of old vyatta-wanloadbalance.init, a subtask of T4470: Rewrite load-balancing wan to XML/Python, as Resolved.
May 8 2023, 7:59 AM · VyOS Rolling, VyOS 1.5 Circinus
Viacheslav closed T5203: load-balancing wan add systemd unit instead of old vyatta-wanloadbalance.init as Resolved.
May 8 2023, 7:59 AM · VyOS 1.4 Sagitta
diodep updated the task description for T5207: Improper NAT66 Support.
May 8 2023, 7:52 AM · VyOS 1.5 Circinus
diodep created T5207: Improper NAT66 Support.
May 8 2023, 7:51 AM · VyOS 1.5 Circinus
diodep added a comment to T3655: NAT doesn't work correctly with VRF.

it doesn't seem the same problem as here, this logic that was applied over this version was vrf not on the table . Could you share full configuration ? there is some point over vrfs / vrf default /leaking that are not clear. So I can replicate the scenery and we see what is going on .

May 8 2023, 7:41 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
diodep added a comment to T5116: Better VRF support.

I think the only solution is to use network namespaces
https://docs.strongswan.org/docs/5.9/howtos/nameSpaces.html

May 8 2023, 7:37 AM · VyOS Rolling