I would just expose these 3 options as-is.
- Feed Queries
- All Stories
- Search
- Feed Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Oct 26 2023
Oct 26 2023
Yes, it does. thank you
tfiebig triaged T5689: FRR 9.0.1 in VyOS current segfaults on show rpki prefix $prefix as High priority.
@SrividyaA Can you confirm this is working as you expect?
sarthurdev moved T4903: Support IPv6 addresses in "set system conntrack ignore" from Finished to Backlog on the VyOS 1.4 Sagitta board.
sarthurdev moved T4903: Support IPv6 addresses in "set system conntrack ignore" from Open to Finished on the VyOS 1.5 Circinus board.
sarthurdev added a project to T4903: Support IPv6 addresses in "set system conntrack ignore": VyOS 1.5 Circinus.
@a.apostoliuk Can you confirm this is working as expected?
n.fort changed the status of T5681: Interface match - Simplified and unified cli from In progress to Needs testing.
n.fort changed the status of T5643: NAT - Allow interface groups on nat rules from In progress to Needs testing.
This error was already fixed in https://github.com/vyos/vyos-1x/pull/2406
fernando added a comment to T5357: Policy: BGP communities fail to apply when loaded from config file.
@jvoss thanks to confirm !
PR for op-mode command that fits new cli: https://github.com/vyos/vyos-1x/pull/2408
a.apostoliuk changed the status of T5688: Create the same view of pool configuration for all accel-ppp services, a subtask of T4085: Rewrite L2TP/PPTP/SSTP/PPPoE services to get_config_dict, from Open to In progress.
a.apostoliuk changed the status of T5688: Create the same view of pool configuration for all accel-ppp services from Open to In progress.
Viacheslav moved T5683: reverse-proxy pki filenames mismatch from Open to Finished on the VyOS 1.4 Sagitta board.
Viacheslav changed the status of T5684: services using VRF generates the error "Failed to load BPF prog: 'Operation not permitted'" when the system boots. from In progress to Needs testing.
Do you have any idea for CLI?
GitHub <noreply@github.com> committed rVYOSONEX6c514d793b73: Merge pull request #2407 from vyos/mergify/bp/sagitta/pr-2405 (authored by Viacheslav).
Oct 25 2023
Oct 25 2023
Apachez added a comment to T5686: Loss of connectivity on dhcp enabled ethernet interfaces after abrupt link restarts.
To verify that it isnt something in your 5G modem that triggers this behaviour try to put a L2-switch in between and then simulate a link failure between VyOS and this L2-switch and see how things behaves?
fernando changed the status of T5357: Policy: BGP communities fail to apply when loaded from config file from Open to Needs testing.
fernando added a comment to T5357: Policy: BGP communities fail to apply when loaded from config file.
I've tested this issues in our lasted rolling-realese , after last commit , it seems works without problems :
vyos@vyos# load test.conf
Loading configuration from 'test.conf'
Load complete. Use 'commit' to make changes effective.
[edit]
vyos@vyos# compare
[policy]
+ route-map TEST {
+ rule 10 {
+ action "permit"
+ set {
+ community {
+ add "65001:1"
+ }
+ large-community {
+ add "4200000000:100:1"
+ }
+ }
+ }
+ }GitHub <noreply@github.com> committed rVYOSONEXef55eab3c7cd: Merge pull request #2406 from nicolas-fort/T5681 (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXc8e81bb9c978: T5683: Fix reverse-proxy PKI filenames mismatch (authored by Viacheslav).
GitHub <noreply@github.com> committed rVYOSONEX73eb7777a5d3: Merge pull request #2405 from sever-sever/T5683 (authored by c-po).
a.apostoliuk updated the task description for T5684: services using VRF generates the error "Failed to load BPF prog: 'Operation not permitted'" when the system boots..
a.apostoliuk updated the task description for T5684: services using VRF generates the error "Failed to load BPF prog: 'Operation not permitted'" when the system boots..
a.apostoliuk changed the status of T5684: services using VRF generates the error "Failed to load BPF prog: 'Operation not permitted'" when the system boots. from Open to In progress.
GitHub <noreply@github.com> committed rVYOSONEXab98f66de7ee: Merge pull request #2402 from c-po/equuleus-t5670 (authored by dmbaturin).
GitHub <noreply@github.com> committed rVYOSONEXbc65c2d9f9b1: Merge pull request #2401 from c-po/sagitta-t3829-t31 (authored by dmbaturin).
GitHub <noreply@github.com> committed rVYOSONEX35cde6f533eb: Merge pull request #2404 from vyos/mergify/bp/sagitta/pr-2323 (authored by dmbaturin).
Used one of the latest rolling releases.
Configured the Radius server and VyOS
Viacheslav changed the status of T5683: reverse-proxy pki filenames mismatch from Open to In progress.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX438eb7ad6a9e: T5497: Add ability to resequence rule numbers for firewall (authored by JeffWDH).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX47d9109d0d49: T5497: Add ability to resequence rule numbers for firewall (authored by JeffWDH).
PR for 1.3 https://github.com/vyos/vyos-1x/pull/2402
c-po moved T5670: bridge: missing member interface validator from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.5) board.
c-po moved T5670: bridge: missing member interface validator from Open to Finished on the VyOS 1.4 Sagitta board.
This is causing smoketests on the nightly builds to fail
yzguy added a comment to T5676: NAT66 source rule with negation source/destination prefix causes TypeError.
DEBUG - Traceback (most recent call last):
DEBUG - File "/usr/libexec/vyos/conf_mode/nat66.py", line 127, in <module>
DEBUG - generate(c)
DEBUG - File "/usr/libexec/vyos/conf_mode/nat66.py", line 101, in generate
DEBUG - render(nftables_nat66_config, 'firewall/nftables-nat66.j2', nat, permission=0o755)
DEBUG - File "/usr/lib/python3/dist-packages/vyos/template.py", line 142, in render
DEBUG - rendered = render_to_string(template, content, formater, location)
DEBUG - ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
DEBUG - File "/usr/lib/python3/dist-packages/vyos/template.py", line 111, in render_to_string
DEBUG - rendered = template.render(content)
DEBUG - ^^^^^^^^^^^^^^^^^^^^^^^^
DEBUG - File "/usr/lib/python3/dist-packages/jinja2/environment.py", line 1301, in render
DEBUG - self.environment.handle_exception()
DEBUG - File "/usr/lib/python3/dist-packages/jinja2/environment.py", line 936, in handle_exception
DEBUG - raise rewrite_traceback_stack(source=source)
DEBUG - File "/usr/share/vyos/templates/firewall/nftables-nat66.j2", line 28, in top-level template code
DEBUG - {{ config | nat_rule(rule, 'source', ipv6=True) }}
DEBUG - ^^^^^^^^^^^^^^^^^^^^^^^^^
DEBUG - File "/usr/lib/python3/dist-packages/vyos/template.py", line 660, in nat_rule
DEBUG - return parse_nat_rule(rule_conf, rule_id, nat_type, ipv6)
DEBUG - ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
DEBUG - File "/usr/lib/python3/dist-packages/vyos/nat.py", line 58, in parse_nat_rule
DEBUG - oiface = rule_conf['outbound_interface']['interface_group']
DEBUG - ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^
DEBUG - TypeError: string indices must be integers, not 'str'Apachez added a comment to T5676: NAT66 source rule with negation source/destination prefix causes TypeError.
Plenty of nat66 related errors from last nightly build:
Oct 24 2023
Oct 24 2023
exactly , i'll give an example of what is the improving (or new cli) , we have a policy where we can mach different DSCPs associate with REAL TIME or VIOCE . Current in our cli , it would be something like this :
GitHub <noreply@github.com> committed rVYOSONEXcb912e98de3b: Merge pull request #2399 from nicolas-fort/T5637-sagitta (authored by dmbaturin).
Viacheslav added a project to T5682: create more robust access controls for sshd and snmpd: VyOS 1.5 Circinus.
n.fort changed the status of T5681: Interface match - Simplified and unified cli from Open to In progress.
Using VyOS 1.5-rolling-202310220123.
Apachez added a comment to T5675: 'show configuration all' is no different from 'show configuration'.
I think the commit made by yzguy is referencing the wrong task-id.
n.fort changed the status of T5680: Allow selecting mac-groups in bridge firewall from Open to Confirmed.
a.hajiyev added a comment to T4867: "show bgp neighbors ... advertised-routes" and some other commands fail for IPv4 neighbors.
Checked in VyOS 1.4-rolling-202310030309
Viacheslav added a project to T3722: op-mode IPSec show vpn ike sa always shows L-TIME 0: VyOS 1.5 Circinus.
LEFT router configuration
So, do you want to add a new syntax to archive the same behavior that we have for qos policy ?
The global state-policy was dropped from CLI.
Close it for now.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX94c98a787172: T5643: nat: add interface-groups to nat. Use same cli structure for interface… (authored by n.fort).
GitHub <noreply@github.com> committed rVYOSONEX90bcb2f96f32: Merge pull request #2355 from nicolas-fort/T5643 (authored by c-po).
Oct 23 2023
Oct 23 2023
fernando added a comment to T5337: MPLS/BGP: Route leak does not happen from the VPNv4 table to specific vrf.
this case was resolved lasted configuration done .
this task is a re-definition from a traffic class , I think it could be more clear if we separate tc-filter in a class-map , so we can define different profiles in our cli based on services :
For RQ for Sagitta: https://github.com/vyos/vyos-1x/pull/2399
GitHub <noreply@github.com> committed rVYOSONEXb15dbec9b5df: Merge pull request #2397 from vyos/mergify/bp/sagitta/pr-2395 (authored by dmbaturin).