set netns name mgmt
set interfaces virtual-ethernet veth1 address '10.0.0.0/31'
set interfaces virtual-ethernet veth1 peer-name 'veth10'
set interfaces virtual-ethernet veth10 address '10.0.0.1/31'
set interfaces virtual-ethernet veth10 netns 'mgmt'
set interfaces virtual-ethernet veth10 peer-name 'veth1'
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
All Stories
Sep 20 2023
PR https://github.com/vyos/vyos-1x/pull/2295
set system sysctl parameter net.ipv4.tcp_syncookies value '1' set system sysctl parameter net.ipv4.tcp_timestamps value '1'
You do not use port 80/443, so it does not have HTTP-HEADER (in theory).
service LB_port_451 { listen-address 10.1.1.1 mode tcp port 451
Try to change to port 80 and check if it works.
You need another solution/configuration
Sep 19 2023
Some highly unscientific tests (only did 3 reboots of each to rule out that any uncached data at the host would affect the result since I run this in a VM through VirtualBox 7.0) shows a difference of up to 2.1% improvment when having a config with 200 static routes.
Parent task is completed - Bugs will get their own subtask and linked to this parent if possible.
This should fix the hostname issue reported to BGP neighbors: https://github.com/vyos/vyos-1x/pull/2289
In T4502#160404, @Apachez wrote:Perhaps a possible way to detect if the nic supports hardware flowtables or not.
Try to set sudo ethtool -K eth0 hw-tc-offload on.
If the result becomes:
Actual changes: hw-tc-offload: off [requested on] Could not change any device featuresThen it doesnt support hardware flowtables.
Could also verify by reading the capability like so:
$ ethtool -k eth0 | grep hw-tc-offload hw-tc-offload: off [fixed]
Perhaps a possible way to detect if the nic supports hardware flowtables or not.
Some feedback from the #netfilter channel over at libera.chat:
I got some funny results which I hope somebody else (with a faster cpu) are able to verify?
First tests unsecseful
Im guessing that what this task complains about has a huge part of the time it takes to complete smoketests.
PR updated (again): https://github.com/vyos/vyos-1x/pull/2280
Hello @sdev Sorry to bother you. The issue hasn't been fixed in the recent rolling release: VyOS 1.5-rolling-202309170024
Sep 18 2023
PR updated: https://github.com/vyos/vyos-1x/pull/2280