Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Nov 15 2023

Viacheslav moved T5732: generate firewall rule-resequence drops geoip country-code from output from Open to Finished on the VyOS 1.4 Sagitta board.
Nov 15 2023, 5:59 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav added a project to T5732: generate firewall rule-resequence drops geoip country-code from output: VyOS 1.4 Sagitta.
Nov 15 2023, 5:59 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
qdrddr added a comment to T5044: High Availability in DHCPv6 -ISC DHCP Failover/Kea.

to keep track of this request on git
https://github.com/vyos/vyos-1x/pull/1960

Nov 15 2023, 5:56 PM · VyOS 1.5 Circinus
JeffWDH closed T5661: Add show show ssh dynamic-protection attacker and show log ssh dynamic-protection as Resolved.
Nov 15 2023, 5:56 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.5)
JeffWDH closed T5732: generate firewall rule-resequence drops geoip country-code from output as Resolved.
Nov 15 2023, 5:53 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
JeffWDH added a comment to T5732: generate firewall rule-resequence drops geoip country-code from output.

Fix was merged into 1.4 and 1.5.

Nov 15 2023, 5:53 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
GitHub <noreply@github.com> committed rVYOSONEX7b0eaba2d365: Merge pull request #2487 from vyos/mergify/bp/sagitta/pr-2486 (authored by dmbaturin).
Nov 15 2023, 5:49 PM
c-po committed rVYOSONEX9abc02edcc23: pim: T5733: add missing FRR PIM related features.
Nov 15 2023, 5:21 PM
c-po committed rVYOSONEXc5e2c25f8968: pim: T5733: split out XML definitions to be re-used by pim6.
Nov 15 2023, 5:21 PM
c-po committed rVYOSONEX45ea9ed72ee1: pim: T5733: rename watermark-warn -> watermark-warning.
Nov 15 2023, 5:21 PM
c-po committed rVYOSONEXdd13213ae94f: pim: T5733: fix CLI level of global PIM commands.
Nov 15 2023, 5:21 PM
c-po committed rVYOSONEXbc83fb097719: igmp: T5736: migrate "protocols igmp" to "protocols pim".
Nov 15 2023, 5:21 PM
c-po committed rVYOSONEX403d2ffd6e46: pim6: T5733: add missing FRR PIM6 related features.
Nov 15 2023, 5:21 PM
c-po committed rVYOSONEX6ce2ecb10884: igmp: T5736: support per interface "disable" CLI node.
Nov 15 2023, 5:21 PM
c-po committed rVYOSONEX64b4cfc71d40: pim: T5733: incorporate feedback from peer review.
Nov 15 2023, 5:21 PM
GitHub <noreply@github.com> committed rVYOSONEXe085f3e6c21a: Merge pull request #2476 from c-po/frr-pim-T5733 (authored by c-po).
Nov 15 2023, 5:21 PM
Viacheslav added a project to T3983: show pki certificate Doesnt show x509 certificates: VyOS 1.5 Circinus.
Nov 15 2023, 4:47 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
I-n-d-y added a comment to T5425: enable VRF for conntrack-sync.

I had entered the command as you have suggested and I think it's working somehow.

Nov 15 2023, 4:44 PM · VyOS Rolling
Viacheslav added a comment to T5743: HTTPS API ability to import PKI certificates.

Obviously, it does not work.
https://github.com/sever-sever/vyos-1x/tree/T5743
https://github.com/sever-sever/vyos-1x/commit/e3767cb7deb8c0e8f9be2c452a74dabb537ed89a

Nov 15 2023, 4:34 PM · VyOS 1.5 Circinus (1.5-stream-2025-Q2), VyOS Rolling
JeffWDH added a comment to T3983: show pki certificate Doesnt show x509 certificates.

This is still an issue in 1.5. I tried importing a cert signed by my own CA and got the same error.

Nov 15 2023, 4:33 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav updated the task description for T5743: HTTPS API ability to import PKI certificates.
Nov 15 2023, 4:23 PM · VyOS 1.5 Circinus (1.5-stream-2025-Q2), VyOS Rolling
Viacheslav changed the status of T5726: HTTPS API image cannot be updated from Open to Needs testing.
Nov 15 2023, 4:09 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav created T5744: PKI import OpenVPN shared key includes unexpected BEGIN and END.
Nov 15 2023, 4:08 PM · VyOS 1.5 Circinus (1.5-stream-2025-Q2), VyOS 1.4 Sagitta (1.4.3), VyOS Rolling
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX67836889216e: T5732: generate firewall rule-resequence drops geoip country-code from output (authored by JeffWDH).
Nov 15 2023, 3:33 PM
GitHub <noreply@github.com> committed rVYOSONEXaa7a5131a5d1: T5732: generate firewall rule-resequence drops geoip country-code from output (authored by JeffWDH).
Nov 15 2023, 3:33 PM
GitHub <noreply@github.com> committed rVYOSONEX0cc409787389: Merge pull request #2486 from JeffWDH/current (authored by Viacheslav).
Nov 15 2023, 3:33 PM
GitHub <noreply@github.com> committed rVYOSONEXf021386b8860: Merge pull request #2474 from vyos/mergify/bp/sagitta/pr-2435 (authored by c-po).
Nov 15 2023, 3:05 PM
GitHub <noreply@github.com> committed rVYOSONEX8c222c3848fe: Merge pull request #2484 from vyos/mergify/bp/sagitta/pr-2479 (authored by c-po).
Nov 15 2023, 3:04 PM
Viacheslav changed the status of T5732: generate firewall rule-resequence drops geoip country-code from output from Open to In progress.
Nov 15 2023, 1:26 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
GitHub <noreply@github.com> committed rVYOSONEX525d3364aa1a: Merge pull request #2485 from vyos/mergify/bp/sagitta/pr-2483 (authored by c-po).
Nov 15 2023, 12:58 PM
JeffWDH added a comment to T5732: generate firewall rule-resequence drops geoip country-code from output.

https://github.com/vyos/vyos-1x/pull/2486

Nov 15 2023, 12:34 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
a.hajiyev closed T1276: dhcp relay + VLAN fails as Resolved.
Nov 15 2023, 12:11 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta, test
a.hajiyev closed T5665: radius user not working as Resolved.
Nov 15 2023, 12:09 PM · VyOS 1.4 Sagitta
zsdc added a member for Maintainers: a.hajiyev.
Nov 15 2023, 11:57 AM
n.fort committed rVYOSONEX9e053268355f: T5729: T5590: T5616: backport to sagita fwall marks, fix on firewall logs….
Nov 15 2023, 11:48 AM
GitHub <noreply@github.com> committed rVYOSONEX5ea97243eb50: Merge pull request #2478 from nicolas-fort/T5729-Sagitta (authored by c-po).
Nov 15 2023, 11:48 AM
Viacheslav created T5743: HTTPS API ability to import PKI certificates.
Nov 15 2023, 11:36 AM · VyOS 1.5 Circinus (1.5-stream-2025-Q2), VyOS Rolling
Viacheslav moved T5726: HTTPS API image cannot be updated from Open to Finished on the VyOS 1.5 Circinus board.

PR for 1.5
https://github.com/vyos/vyos-1x/pull/2483

Nov 15 2023, 10:02 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX910cffb196ab: remote: T5726: Disable the progressbar if the shell is noninteractive or the… (authored by erkin).
Nov 15 2023, 10:01 AM
Viacheslav moved T5689: FRR 9.0.1 in VyOS current segfaults on show rpki prefix $prefix from Open to Finished on the VyOS 1.5 Circinus board.
Nov 15 2023, 9:23 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav added a project to T5689: FRR 9.0.1 in VyOS current segfaults on show rpki prefix $prefix: VyOS 1.4 Sagitta.
Nov 15 2023, 9:23 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav moved T5695: Build FRR with LUA scripts --enable-scripting option from Open to Finished on the VyOS 1.4 Sagitta board.
Nov 15 2023, 9:19 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav closed T5695: Build FRR with LUA scripts --enable-scripting option as Resolved.
Nov 15 2023, 9:19 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav added a project to T5695: Build FRR with LUA scripts --enable-scripting option: VyOS 1.4 Sagitta.
Nov 15 2023, 9:07 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav moved T5728: Improve compatibility between OpenVPN on VyOS 1.5 and OpenVPN Connect Client from Open to Finished on the VyOS 1.4 Sagitta board.
Nov 15 2023, 8:29 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav closed T5728: Improve compatibility between OpenVPN on VyOS 1.5 and OpenVPN Connect Client as Resolved.
Nov 15 2023, 8:29 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
a.hajiyev added a comment to T1276: dhcp relay + VLAN fails.

Tested VyOS 1.4-rolling-202311100309

Nov 15 2023, 7:25 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta, test
Viacheslav added a comment to T5732: generate firewall rule-resequence drops geoip country-code from output.

@JeffWDH looks good to me. It definitely should fix this.

Nov 15 2023, 6:46 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
erkin committed rVYOSONEX59b432b97e36: remote: T5726: Disable the progressbar if the shell is noninteractive or the….
Nov 15 2023, 6:35 AM
GitHub <noreply@github.com> committed rVYOSONEX1afaa42ee7c8: Merge pull request #2483 from erkin/noninteractive (authored by c-po).
Nov 15 2023, 6:35 AM
syncer moved T5739: Password recovery does not work if public keys are configured from Open to Backport Candidates on the VyOS 1.5 Circinus board.
Nov 15 2023, 5:03 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
syncer changed the status of T5739: Password recovery does not work if public keys are configured from Needs testing to In progress.
Nov 15 2023, 5:03 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Apachez created T5742: Define port-group as a oneliner instead of multiline.
Nov 15 2023, 4:11 AM · VyOS 1.5 Circinus

Nov 14 2023

c-po committed rVYOSONEXa818afbe81d1: xml: T5738: add source-address-ipv4-ipv6-multi building block.
Nov 14 2023, 9:27 PM
mhamzahkhan added a comment to T5741: WAN Load Balancing failover route tables aren't created.

I have created a PR: https://github.com/vyos/vyatta-wanloadbalance/pull/21

Nov 14 2023, 7:35 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
mhamzahkhan created T5741: WAN Load Balancing failover route tables aren't created.
Nov 14 2023, 7:30 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX40c194c3a1ee: xml: T5738: add source-address-ipv4-ipv6-multi building block (authored by c-po).
Nov 14 2023, 7:14 PM
c-po committed rVYOSONEXdccca4307339: xml: T5738: add source-address-ipv4-ipv6-multi building block.
Nov 14 2023, 7:13 PM
GitHub <noreply@github.com> committed rVYOSONEXaa4abbc73382: Merge pull request #2479 from c-po/t5738-xml (authored by c-po).
Nov 14 2023, 7:13 PM
JeffWDH updated subscribers of T5732: generate firewall rule-resequence drops geoip country-code from output.
Nov 14 2023, 7:07 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
JeffWDH added a comment to T5732: generate firewall rule-resequence drops geoip country-code from output.

The country-code item in the config_dict is type list and gets skipped by the convert_to_set_commands function.

Nov 14 2023, 6:54 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav edited projects for T5739: Password recovery does not work if public keys are configured, added: VyOS 1.3 Equuleus (1.3.5); removed VyOS 1.3 Equuleus.
Nov 14 2023, 5:17 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav changed the status of T5728: Improve compatibility between OpenVPN on VyOS 1.5 and OpenVPN Connect Client from In progress to Needs testing.
Nov 14 2023, 5:15 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
GitHub <noreply@github.com> committed rVYOSONEXfa92cbea9ab4: Merge pull request #2482 from vyos/mergify/bp/sagitta/pr-2475 (authored by c-po).
Nov 14 2023, 5:14 PM
Viacheslav added a comment to T5740: Generate wiregurad keys via HTTP-API fails.

I wonder if we should use permanent API call queries that don't depend on the path.

Nov 14 2023, 5:11 PM · VyOS 1.5 Circinus
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXca7ad9cbdfe7: T5728: OpenVPN server replace first_host_address to vpn_gateway (authored by Viacheslav).
Nov 14 2023, 4:57 PM
Viacheslav added a comment to T5728: Improve compatibility between OpenVPN on VyOS 1.5 and OpenVPN Connect Client.

@watson.ash Will be fixed in the next rolling release. Could you check it (after 2023-11-14)
And we can backport it to 1.4 if all works fine.
Thanks.

Nov 14 2023, 4:47 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav committed rVYOSONEX480711c329a3: T5728: OpenVPN server replace first_host_address to vpn_gateway.
Nov 14 2023, 4:45 PM
GitHub <noreply@github.com> committed rVYOSONEXd33f883e3662: Merge pull request #2475 from sever-sever/T5728 (authored by Viacheslav).
Nov 14 2023, 4:45 PM
zsdc changed the status of T5739: Password recovery does not work if public keys are configured from In progress to Needs testing.

PR for 1.5: https://github.com/vyos/vyatta-cfg-system/pull/213

Nov 14 2023, 4:23 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav updated the task description for T5740: Generate wiregurad keys via HTTP-API fails.
Nov 14 2023, 2:59 PM · VyOS 1.5 Circinus
Viacheslav updated subscribers of T5740: Generate wiregurad keys via HTTP-API fails.
Nov 14 2023, 2:53 PM · VyOS 1.5 Circinus
Viacheslav created T5740: Generate wiregurad keys via HTTP-API fails.
Nov 14 2023, 2:53 PM · VyOS 1.5 Circinus
Viacheslav added a project to T5726: HTTPS API image cannot be updated: VyOS 1.5 Circinus.
Nov 14 2023, 2:28 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
zsdc added projects to T5739: Password recovery does not work if public keys are configured: VyOS 1.4 Sagitta, VyOS 1.5 Circinus.
Nov 14 2023, 1:24 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
zsdc renamed T5739: Password recovery does not work if public keys are configured from Password recovery does not work in Equinix Metal to Password recovery does not work if public keys are configured.
Nov 14 2023, 1:18 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
zsdc changed the status of T5739: Password recovery does not work if public keys are configured from Open to In progress.
Nov 14 2023, 12:42 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
zsdc created T5739: Password recovery does not work if public keys are configured.
Nov 14 2023, 12:42 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
n.fort committed rVYOSONEXadf5d78e4239: T5729: firewall and policy: fix latest migration script.
Nov 14 2023, 11:19 AM
GitHub <noreply@github.com> committed rVYOSONEX0ba44ec4644c: Merge pull request #2480 from nicolas-fort/T5729-Fix-Migration (authored by c-po).
Nov 14 2023, 11:19 AM
n.fort added a comment to T5729: Firewall, nat and policy route - Switch to valueless.

New patch for migration scripts in 1.5: https://github.com/vyos/vyos-1x/pull/2480

Nov 14 2023, 10:27 AM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
Viacheslav added a comment to T5726: HTTPS API image cannot be updated.

Changing this https://github.com/vyos/vyos-1x/blob/2e587c8329a1d32fc1ec601c7753211d0fedbf2c/python/vyos/remote.py#L356
to

download(local_path, urlstring, False, True, source_host, source_port)

Fixes the issue for API

Nov 14 2023, 10:00 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav moved T5563: container: Container environment variable cannot be set from Open to Finished on the VyOS 1.5 Circinus board.
Nov 14 2023, 9:24 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
aserkin added a comment to T5168: zebra memory leak.

Hi @v.huti
This is probably obsoleted. I've upgraded few times since then and came to version 8.5 which does not seem to suffer this. Thank you.
And we had to stop activities on the project due to other issue described in
https://vyos.dev/T5424

Nov 14 2023, 9:24 AM
c-po added a comment to T5738: Extend XML building blocks.

https://github.com/vyos/vyos-1x/pull/2479

Nov 14 2023, 9:00 AM · VyOS 1.4 Sagitta (1.4.0-epa2)
c-po claimed T5738: Extend XML building blocks.
Nov 14 2023, 8:07 AM · VyOS 1.4 Sagitta (1.4.0-epa2)
c-po created T5738: Extend XML building blocks.
Nov 14 2023, 8:07 AM · VyOS 1.4 Sagitta (1.4.0-epa2)
c-po added a comment to T5737: Eigrp #11301 - Configuration failed error type: validation.

Contact me via Slack for testing

Nov 14 2023, 8:04 AM · VyOS Rolling, Bugs
Apachez added a comment to T5167: Add a simple file server.

The fear of having the HTTP-API part of nginx compromised by another virtualhost config (as in they are sharing the same process) should be overcome by having a dedicated config file and start a 2nd nginx process.

Nov 14 2023, 12:36 AM

Nov 13 2023

v.huti added a comment to T5168: zebra memory leak.

Hi @aserkin ! I should have some time to help you. For this issue, I would need

  • artifacts collected from running zebra under Valgrind
  • a reference configuration that I can replicate in a lab

I will ping you over Slack for additional details and assistance.

Nov 13 2023, 10:37 PM
v.huti triaged T5737: Eigrp #11301 - Configuration failed error type: validation as Normal priority.
Nov 13 2023, 10:31 PM · VyOS Rolling, Bugs
v.huti added a comment to T2326: Migrate NHRP(DMVPN) to FRR.

I have created a draft pull request for FRR, but I can still see a bunch of odd bugs.
I'm going to activate it after additional testing by the team.
Most issues involve Wireshark's inability to parse packets correctly and display an exception, although the demons seem to run fine.
https://github.com/FRRouting/frr/pull/14788

Nov 13 2023, 10:27 PM · VyOS 1.5 Circinus
v.huti added a comment to T4180: Support for QoS Policy Propagation via BGP (QPPB).

I`m back after a long break and will follow up on this feature.
Here is a summary of things that have happened since the last update:

1. In my absence, the feature testing got broken as a result of migrating from the `mininet` to the `munet` framework
From debugging, I have identified a root cause to be - bpf fs was not inherited by the `munet` router.
The solution is to hop into the router mount namespace for the test run.
Nov 13 2023, 10:22 PM · VyOS Rolling
v.huti added a comment to T4462: FRR operational-data pagination.

Because there is a long-running development for operation data retrieval, we can postpone this ticket until an effort is finished.
Then, I can open a feature request or visit the yang meeting and start a discussion about the data pagination functionality.
Currently, my idea is to simulate pagination at the fs level by having a split of requested JSON.
This solution involves:

  • Fetching an operation data from the demon
vtysh -c "show yang operational-data /frr-vrf:lib/vrf[name='default']/frr-zebra:zebra/ribs zebra" > big.json
  • Fetching flat data stream and formating it 1 item (prefix) per line with jq -c option
jq -c '."frr-vrf:lib" .vrf[0] ."frr-zebra:zebra" .ribs .rib[0] .route[]' big.json | split -l 100 -d
  • Splitting result by the number of lines (objects), saving into files on the filesystem

Now, UI can display 1 of the resulting files at a time. These files may be regenerated on page refresh.
Such a solution will utilize extra disk space, although it can be avoided by using pipes and other
streaming utilities like awk/sed

Nov 13 2023, 10:17 PM · VyOS Rolling
c-po closed T5698: EVPN ESI Multihoming as Resolved.
Nov 13 2023, 9:24 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po moved T5698: EVPN ESI Multihoming from Open to Finished on the VyOS 1.4 Sagitta board.
Nov 13 2023, 9:24 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
n.fort added a comment to T5729: Firewall, nat and policy route - Switch to valueless.

PR for Sagitta: https://github.com/vyos/vyos-1x/pull/2478

Nov 13 2023, 7:01 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
n.fort added a project to T5590: Firewall "log enable" logs every packet: VyOS 1.4 Sagitta.
Nov 13 2023, 7:00 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
n.fort reopened T5590: Firewall "log enable" logs every packet as "Needs testing".

PR for Sagitta: https://github.com/vyos/vyos-1x/pull/2478

Nov 13 2023, 7:00 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
n.fort added a comment to T5616: Firewall mark - Add capabilities for matching firewall mark.

PR for Sagitta: https://github.com/vyos/vyos-1x/pull/2478

Nov 13 2023, 6:59 PM · VyOS 1.5 Circinus
First
Prev
Next