Sounds like a great solution to me, happy to review your PR.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Jan 17 2024
Jan 17 2024
Viacheslav changed the status of T5941: [1.3.5 -> 1.4.0-RC1 Migration] Orphaned Configuration Nodes Cause Issues from Open to Needs testing.
GitHub <[email protected]> committed rVYOSONEX0f61334ff4a3: Merge pull request #2845 from vyos/mergify/bp/sagitta/pr-2842 (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXe6713a7e861d: T5953: Changed values of 'close-action' to Strongswan values (authored by a.apostoliuk).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX1a301a085833: dhcp: T5948: Strip trailing dot from hostnames (authored by sarthurdev).
GitHub <[email protected]> committed rVYOSONEXc07f27e8e232: Merge pull request #2842 from aapostoliuk/T5953-circinus (authored by c-po).
GitHub <[email protected]> committed rVYOSONEXbbd8c90755c6: Merge pull request #2843 from sarthurdev/T5948 (authored by c-po).
sarthurdev changed the status of T5948: pdns-recursor crashes on restart if hostfile-update is enabled and dhcp client sends hostname with trailing dot from Open to Needs testing.
Sample config files here: https://github.com/networkupstools/nut/tree/master/conf
I think there are actually two aspects here.
sarthurdev added a comment to rVYOSONEXee494c3a1dbf: dhcp: dhcpv6: T3316: Add `subnet-id` so leases remain mapped to entries in the….
In rVYOSONEXee494c3a1dbfca3457bcaffe89d45971348e4848#958479, @sdev wrote:Are you able to provide the dhcp config that fails migration? I wasn't able to re-create any migration problem in my tests
set service dhcp-server hostfile-update set service dhcp-server shared-network-name LAN option name-server '192.168.1.1' set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 lease '86400' set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 option default-router '192.168.1.1' set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 option domain-name 'localdomain' set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 option name-server '192.168.1.1' set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 range 0 start '192.168.1.9' set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 range 0 stop '192.168.1.254'same as whats in the old quickstart guide
chenxiaolong added a comment to T5948: pdns-recursor crashes on restart if hostfile-update is enabled and dhcp client sends hostname with trailing dot.
Sure. I did some further testing and it looks like this is triggered if the client sends DHCP option 81 (FQDN). To reproduce:
Which user are you expecting? Hows to check from which user container was started?
Any idea for CLI?
Viacheslav renamed T5954: Enable nvme_hwmon and drivetemp in KERNEL from Enable nvme_hwmon and drivetemp to Enable nvme_hwmon and drivetemp in KERNEL.
Viacheslav triaged T5947: [1.3.2 -> 1.4.0-RC1 Migration] Static ipv6 routes dropped as Normal priority.
Viacheslav changed the status of T5947: [1.3.2 -> 1.4.0-RC1 Migration] Static ipv6 routes dropped, a subtask of T5938: Migration fail root task for 1.4-rc, from Open to Needs testing.
Viacheslav changed the status of T5947: [1.3.2 -> 1.4.0-RC1 Migration] Static ipv6 routes dropped from Open to Needs testing.
@kevinrausch I cannot reproduce it, all works fine.
before update
vyos@r1# run show conf com | match route6 set protocols static interface-route6 2001:db8::/64 next-hop-interface lo set protocols static table 10 interface-route6 2001:db8::/64 next-hop-interface tun0 set protocols static table 20 interface-route6 2001:db8::/64 next-hop-interface tun1 [edit] vyos@r1# [edit] vyos@r1# run show version
Performed these steps:
- clean, checkout 1.3.5, build, push to internal web host
- rollback VM to 1.3.2 working baseline
- save vyos132.cfg
- add system image https://removed/vyos-1.3.5-private-amd64.iso
- reboot
- compare 1, no changes to config as expected
- add system image https://cdn.vyos.io/1.4.0-rc1/vyos-1.4.0-rc1-amd64.iso
- reboot
- compare 1, confirm routes dropped per T5947 description
- load vyos132.cfg
- compare 1, observe routes have been migrated as expected, below
kevinrausch added a comment to T5903: NHRP don´t start on reboot from version 1.5-rolling-202401010026.
1.4.0-rc2 also has opennhrp service stop after vyos startup. Can you please add a 1.4 tag to this issue?
Viacheslav added a comment to T1641: VRRP conntrack-sync dropping packets passing through the router.
@Daya @trae32566 Is it not the issue anymore?
a.apostoliuk changed the status of T5953: Rename 'close_action' value from `hold` to `trap` in IPSEC IKE from Open to In progress.
I'd tag it as wontfix
Viacheslav lowered the priority of T2004: BGP FQDN capability not sending domain name from High to Normal.
Domain name was never configured for FRR in our templates
r4# conf t r4(config)# domainname WORD This system's domain name r4(config)#
Viacheslav closed T2163: Disabled vif interface with "address dhcp" requests DHCP address as Not Applicable.
Seems fixed:
Before reboot:
set interfaces ethernet eth1 description 'LAN' set interfaces ethernet eth1 hw-id '52:54:00:04:33:2b' set interfaces ethernet eth1 vif 20 address 'dhcp' set interfaces ethernet eth1 vif 20 disable
Viacheslav closed T4425: Hide DHCP leases from interfaces without active DHCP client as Not Applicable.
Fixed for both VyOS 1.5-rolling-202401140026 and VyOS 1.4.0-rc2
Viacheslav closed T5932: 1.4-rolling-202304120317 to 1.4.0-rc1: dynamic dns migration fail, a subtask of T5938: Migration fail root task for 1.4-rc, as Resolved.
Viacheslav closed T5932: 1.4-rolling-202304120317 to 1.4.0-rc1: dynamic dns migration fail as Resolved.
Viacheslav added a comment to T5509: Add capability to add firewall rules similar to CoPP through VyOS configuration.
I'm against this implementation. We agree do not use boolean values yes|no enable|disable on|off
It will add more mess than usefulness. Configuring features in 2-3 places is a bad idea!
What will be if I add "ssh server" ? Which port will it see? Does it allow all addresses to ssh? What sense in this rule?
The same goes for VRRP; which addresses will it use? Multicast/unicast?
And there are also questions about priorities and what to do it it is accepted via this feature and dropped by a regular firewall.
Viacheslav added a comment to T4488: allow manual configuration changes of interfaces created by high-availability with rfc3768-compatibility option .
@Nova_Logic Describe what exactly you want to do
Policy and firewalling are possible now
vyos@r4# set firewall ipv4 input filter rule 10 inbound-interface name eth1.v10 [edit] vyos@r4# set policy route foo interface eth1.v10 [edit] vyos@r4#
Personally I would prefer that the "automagic" firewall ruleset would be done optionally through method described in:
@Viacheslav tested and confirmed fixed in RC2.
@giga1699 it was merged on Dec 12, 2023 https://github.com/vyos/vyos-1x/commit/b149a386400c0f869654ac26b0fee2e7f1bbc282
after building 1.3.5 Built on: Mon 04 Dec 2023 21:36 UTC
Viacheslav changed the status of T5935: ddclient tries to bind to Ethernet VIFs before they're configured on boot from Open to In progress.
Viacheslav added a comment to T5948: pdns-recursor crashes on restart if hostfile-update is enabled and dhcp client sends hostname with trailing dot.
Good practise add a set of the commands to reproduce
Thanks
a.apostoliuk moved T4658: Rename DPD action `hold` to `trap` from Open to Finished on the VyOS 1.5 Circinus board.
a.apostoliuk changed the status of T4658: Rename DPD action `hold` to `trap` from In progress to Needs testing.
a.apostoliuk changed the status of T5865: Rewrite ipv6 pool section to ipv6 named pools in Accel-ppp services from In progress to Needs testing.
MattK added a comment to T5935: ddclient tries to bind to Ethernet VIFs before they're configured on boot.
I've done more investigation of this issue today, and I believe I understand the cause.
I've found some time to do some work on a fork of vyos-1x. I have a working patch to 1.5-rolling that does the following:
jestabro moved T5923: Config mode system_console.py is not aware of revised GRUB file structure from Open to Finished on the VyOS 1.4 Sagitta board.
jestabro closed T5923: Config mode system_console.py is not aware of revised GRUB file structure, a subtask of T4516: Rewrite system image manipulation tools in Python, as Resolved.
jestabro closed T5923: Config mode system_console.py is not aware of revised GRUB file structure, a subtask of T5910: Grub problem(?) Serial Console no longer working, as Resolved.
GitHub <[email protected]> committed rVYOSONEX31d3d7263ee3: Merge pull request #2840 from vyos/mergify/bp/sagitta/pr-2818 (authored by jestabro).
GitHub <[email protected]> committed rVYOSONEX0afa8dd81319: Merge pull request #2832 from aapostoliuk/T5865-circinus (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX2afd5e5575a4: image-tools: T5923: update system_console.py for new GRUB file structure (authored by jestabro).
josephillips85 raised the priority of T5952: DHCP allow same MAC Address on same subnet from Low to Normal.
opswill added a comment to T5948: pdns-recursor crashes on restart if hostfile-update is enabled and dhcp client sends hostname with trailing dot.
I am facing same issue here.
In my case, My laptop hostname is cn002472.xxx.com
I lost my legacy LTS access, so I'll have to build 1.3-latest to test that.
I'd be curious if updating to 1.3.5 first, then moving to 1.4 has any impact on this issue. I only say this because I have two separate routers I just upgraded from 1.3.5 that both have the following (after upgrade) which looks to have been correctly migrated:
route6 ::/0 {
next-hop 2001:db8:3a01:a5::1 {
}
}
route6 2001:db8:3a01:2::/64 {
blackhole {
}
}
route6 2001:db8:3a01:c5::/64 {
interface bond1.1258 {
}
}
route6 2001:db8:3a01:fd::/64 {
interface bond1.1258 {
}
}
route6 fc00::/7 {
blackhole {
}
}
route6 2001:db8:8011:239d::/64 {
interface bond0.925 {
}
}Performed these steps:
- rollback VM to 1.3.2 working baseline
- save vyos132.cfg
- add system image https://cdn.vyos.io/1.4.0-rc1/vyos-1.4.0-rc1-amd64.iso
- reboot
- compare 1, confirm routes dropped per T5947 description
- load vyos132.cfg
- compare 1, observe routes have been migrated as expected, below
I just tested in 1.3.5, and I’m getting the same error.
Jan 16 2024
Jan 16 2024
GitHub <[email protected]> committed rVYOSONEXbf08f0f2538b: Merge pull request #2818 from jestabro/serial-console-config-mode (authored by dmbaturin).
GitHub <[email protected]> committed rVYOSONEX6c39a9cb6df6: Merge pull request #2838 from vyos/mergify/bp/sagitta/pr-2837 (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX3e35719a2729: T4658: Renamed DPD action value from 'hold' to 'trap' (authored by a.apostoliuk).
GitHub <[email protected]> committed rVYOSONEX0249dc59b5ad: Merge pull request #2837 from aapostoliuk/T4658-circinus (authored by c-po).
Viacheslav closed T5889: Migration NAT 5-to-6 bug, a subtask of T5907: cloud-init root task for 1.5 and 1.4 , as Resolved.
Works fine
vyos@ci-router1:~$ cat /var/log/cloud-init-output.log Cloud-init v. 22.1-437-g3e026561-1~bddeb running 'init-local' at Tue, 16 Jan 2024 15:08:04 +0000. Up 17.93 seconds. Cloud-init v. 22.1-437-g3e026561-1~bddeb running 'init' at Tue, 16 Jan 2024 15:08:09 +0000. Up 21.96 seconds. ci-info: ++++++++++++++++++++++++++++++++Net device info+++++++++++++++++++++++++++++++++ ci-info: +--------+------+-----------------+---------------+--------+-------------------+ ci-info: | Device | Up | Address | Mask | Scope | Hw-Address | ci-info: +--------+------+-----------------+---------------+--------+-------------------+ ci-info: | eth0 | True | 192.168.122.172 | 255.255.255.0 | global | 52:54:00:e3:4f:82 | ci-info: | lo | True | 127.0.0.1 | 255.0.0.0 | host | . | ci-info: | lo | True | ::1/128 | . | host | . | ci-info: +--------+------+-----------------+---------------+--------+-------------------+ ci-info: +++++++++++++++++++++++++++++++Route IPv4 info+++++++++++++++++++++++++++++++ ci-info: +-------+---------------+---------------+---------------+-----------+-------+ ci-info: | Route | Destination | Gateway | Genmask | Interface | Flags | ci-info: +-------+---------------+---------------+---------------+-----------+-------+ ci-info: | 0 | 0.0.0.0 | 192.168.122.1 | 0.0.0.0 | eth0 | UG | ci-info: | 1 | 192.168.122.0 | 0.0.0.0 | 255.255.255.0 | eth0 | U | ci-info: +-------+---------------+---------------+---------------+-----------+-------+ ci-info: +++++++++++++++++++Route IPv6 info+++++++++++++++++++ ci-info: +-------+-------------+---------+-----------+-------+ ci-info: | Route | Destination | Gateway | Interface | Flags | ci-info: +-------+-------------+---------+-----------+-------+ ci-info: | 1 | multicast | :: | eth0 | U | ci-info: +-------+-------------+---------+-----------+-------+ Cloud-init v. 22.1-437-g3e026561-1~bddeb running 'modules:config' at Tue, 16 Jan 2024 15:08:10 +0000. Up 23.28 seconds. Killed old client process Internet Systems Consortium DHCP Client 4.4.3-P1 Copyright 2004-2022 Internet Systems Consortium. All rights reserved. For info, please visit https://www.isc.org/software/dhcp/
Viacheslav changed the status of T5889: Migration NAT 5-to-6 bug, a subtask of T5907: cloud-init root task for 1.5 and 1.4 , from In progress to Needs testing.
fdcastel added a comment to T5946: TASK [setup-root-partition : Create a fileystem on EFI partition] failing in Docker.
Upon closer inspection, it seems neither #36 nor $37 actually solve the problem.
GitHub <[email protected]> committed rVYOSONEXb45221162418: Merge pull request #2836 from vyos/mergify/bp/sagitta/pr-2833 (authored by jestabro).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX535228d888fe: T5889: Fix migration scripts nat 5-to-6 (authored by Viacheslav).
GitHub <[email protected]> committed rVYOSONEXd6a33db00d11: Merge pull request #2831 from vyos/mergify/bp/sagitta/pr-2201 (authored by c-po).
GitHub <[email protected]> committed rVYOSONEX1ced01d23177: Merge pull request #2833 from sever-sever/T5889 (authored by c-po).
c-po closed T5937: [1.3.5 -> 1.4.0-RC1 Migration] IPv6 BGP Neighbor Peer Groups Missing / Not Migrated, a subtask of T5938: Migration fail root task for 1.4-rc, as Resolved.
GitHub <[email protected]> committed rVYOSONEXdad5c1cd5115: Merge pull request #2835 from vyos/mergify/bp/sagitta/pr-2834 (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX93dc024fccd1: bgp: T5937: fix migration script for IPv6 AFI peer-group (authored by c-po).
GitHub <[email protected]> committed rVYOSONEXc9b20f8884d8: Merge pull request #2834 from c-po/bgp-t5937 (authored by c-po).
With 1.4.0-rc1 All OK, came up on reboot:
Could you get the original 1.3.x config file copy to the 1.4 instance and load config? I tested 1.3.5 looks good
load path_to_config_1.3
Viacheslav changed the status of T5889: Migration NAT 5-to-6 bug, a subtask of T5907: cloud-init root task for 1.5 and 1.4 , from Open to In progress.
a.apostoliuk changed the status of T4658: Rename DPD action `hold` to `trap` from Open to In progress.
Viacheslav renamed T5889: Migration NAT 5-to-6 bug from Cloud-Init not processing user data correctly NAT to Migration NAT 5-to-6 bug.
a.apostoliuk closed T5842: Rewrite PPTP service to get_config_dict, a subtask of T4085: Rewrite L2TP/PPTP/SSTP/PPPoE services to get_config_dict, as Resolved.
a.apostoliuk moved T5801: Rewrite L2TP service to get_config_dict from Open to Finished on the VyOS 1.4 Sagitta board.
a.apostoliuk closed T5801: Rewrite L2TP service to get_config_dict, a subtask of T4085: Rewrite L2TP/PPTP/SSTP/PPPoE services to get_config_dict, as Resolved.