Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Apr 17 2024

Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX9f62c3082429: image-tools: T6168: compat mode update should preserve console type (authored by jestabro).
Apr 17 2024, 1:40 AM
jestabro moved T6168: "add system image" does not set the default boot image to the current console type in compatibility mode from Open to Finished on the VyOS 1.5 Circinus board.
Apr 17 2024, 1:40 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
jestabro closed T6154: Installer should ask for password twice, a subtask of T4516: Rewrite system image manipulation tools in Python, as Resolved.
Apr 17 2024, 1:27 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
jestabro closed T6154: Installer should ask for password twice as Resolved.
Apr 17 2024, 1:27 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
jestabro moved T6154: Installer should ask for password twice from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-epa3) board.
Apr 17 2024, 1:27 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
GitHub <[email protected]> committed rVYOSONEX06a08f61abb9: Merge pull request #3322 from vyos/mergify/bp/sagitta/pr-3321 (authored by jestabro).
Apr 17 2024, 1:25 AM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXabfd62665359: image-tools: T6154: installer prompts to confirm a non-default passwd (authored by jestabro).
Apr 17 2024, 1:18 AM
jestabro committed rVYOSONEXf43edbd7cd36: image-tools: T6154: installer prompts to confirm a non-default passwd.
Apr 17 2024, 1:16 AM
GitHub <[email protected]> committed rVYOSONEXce7023bea759: Merge pull request #3321 from jestabro/confirm-pass (authored by jestabro).
Apr 17 2024, 1:16 AM

Apr 16 2024

Embezzle claimed T6237: IPSec remote access VPN: ability to set EAP ID of clients.
Apr 16 2024, 8:43 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
paigeadelethompson added a comment to T6097: vrf_zones blocking ipv6 traffic.

I decided to dig into this a little more and try to trace this out:

sudo nft add chain inet vrf_zones trace_chain { type filter hook prerouting priority -301\; }
sudo nft add rule inet vrf_zones trace_chain meta nftrace set 1
Apr 16 2024, 7:41 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
Giggum updated subscribers of T4909: Rewrite the NTP op mode in the new format.

@dmbaturin, @sever
Would love your input regarding the lack of headers when using the -c option. I've created a PoC around "chronyc -c activity" as it was the most straight forward command to start with.

Apr 16 2024, 7:21 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0-GA)
Viacheslav changed the status of T6242: Add an option to disable certificate verification to reverse proxy from Open to Needs testing.
Apr 16 2024, 7:20 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
fetzerms updated subscribers of T5868: Use Debian snapshot repository in vyos-build Docker image.

@dmbaturin , @Viacheslav - I use debian snapshot repository when building VyOS LTS on my own.

Apr 16 2024, 7:13 PM · VyOS 1.5 Circinus
paigeadelethompson added a comment to T6097: vrf_zones blocking ipv6 traffic.

side note, if you flush ruleset, and only add:

Apr 16 2024, 6:20 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
paigeadelethompson added a comment to T6097: vrf_zones blocking ipv6 traffic.

Something I just figured out is that the minute I do:

Apr 16 2024, 6:06 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
n.fort added a comment to T6191: Policy route set-mss option is not working correctly.

PR: https://github.com/vyos/vyos-1x/pull/3320

Apr 16 2024, 5:51 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
dmbaturin edited the content of Task creation policy.
Apr 16 2024, 5:49 PM
jestabro moved T6243: Update vyos-http-api-tools for package idna security advisory from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-epa3) board.
Apr 16 2024, 5:09 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta (1.4.0-epa3), VyOS 1.5 Circinus
jestabro moved T6243: Update vyos-http-api-tools for package idna security advisory from Open to Finished on the VyOS 1.5 Circinus board.
Apr 16 2024, 5:09 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta (1.4.0-epa3), VyOS 1.5 Circinus
n.fort changed Version from 1.4.0-epa2 to 1.4.0-epa2, 1.5-rolling-202404141045 on T6191: Policy route set-mss option is not working correctly.
Apr 16 2024, 4:57 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
n.fort changed the status of T6191: Policy route set-mss option is not working correctly from Open to Confirmed.
Apr 16 2024, 4:57 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
jestabro added a comment to T6022: set system image default-boot.

The regression causing 'image cannot be found" was fixed in https://vyos.dev/T6186.

Apr 16 2024, 4:46 PM · VyOS 1.4 Sagitta (1.4.0)
jestabro added a subtask for T6022: set system image default-boot: T6186: 'set system image default-boot' fails to find images that actually do exist in the system.
Apr 16 2024, 4:45 PM · VyOS 1.4 Sagitta (1.4.0)
jestabro added a parent task for T6186: 'set system image default-boot' fails to find images that actually do exist in the system: T6022: set system image default-boot.
Apr 16 2024, 4:45 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
jestabro removed a subtask for T6022: set system image default-boot: T5917: Restore annotations of (running)/(default boot) in select image list.
Apr 16 2024, 4:44 PM · VyOS 1.4 Sagitta (1.4.0)
jestabro removed a parent task for T5917: Restore annotations of (running)/(default boot) in select image list: T6022: set system image default-boot.
Apr 16 2024, 4:44 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
natali-rs1985 committed rVYOSONEX82fdbedb79cf: pppoe-server: T6141: T5364: PPPoE-server add pado-delay without sessions fails.
Apr 16 2024, 4:41 PM
GitHub <[email protected]> committed rVYOSONEX41663efaba26: Merge pull request #3317 from natali-rs1985/T6141-equuleus (authored by c-po).
Apr 16 2024, 4:41 PM
jestabro added a subtask for T6022: set system image default-boot: T5917: Restore annotations of (running)/(default boot) in select image list.
Apr 16 2024, 4:41 PM · VyOS 1.4 Sagitta (1.4.0)
jestabro added a parent task for T5917: Restore annotations of (running)/(default boot) in select image list: T6022: set system image default-boot.
Apr 16 2024, 4:41 PM · VyOS 1.4 Sagitta, VyOS 1.5 Circinus
GitHub <[email protected]> committed rVYOSONEX8f778f989d8f: Merge pull request #3318 from vyos/mergify/bp/sagitta/pr-3315 (authored by c-po).
Apr 16 2024, 4:41 PM
GitHub <[email protected]> committed rVYOSONEX5a481813c059: Merge pull request #3319 from vyos/mergify/bp/sagitta/pr-3313 (authored by c-po).
Apr 16 2024, 4:40 PM
Viacheslav changed the status of T5722: Commit failure when trying to add a route in failover if the gateway is not in the same interface network from In progress to Needs testing.
Apr 16 2024, 4:33 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
jestabro added a comment to T6243: Update vyos-http-api-tools for package idna security advisory.

PR:
https://github.com/vyos/vyos-http-api-tools/pull/11

Apr 16 2024, 4:31 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta (1.4.0-epa3), VyOS 1.5 Circinus
jestabro triaged T6243: Update vyos-http-api-tools for package idna security advisory as Normal priority.
Apr 16 2024, 4:12 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta (1.4.0-epa3), VyOS 1.5 Circinus
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX6cace2df99c7: T5722: Failover route add option onlink (authored by Viacheslav).
Apr 16 2024, 3:10 PM
Viacheslav committed rVYOSONEXbb832acb9788: T5722: Failover route add option onlink.
Apr 16 2024, 3:09 PM
GitHub <[email protected]> committed rVYOSONEX6825873bd1e8: Merge pull request #3313 from sever-sever/T5722 (authored by dmbaturin).
Apr 16 2024, 3:08 PM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXdeb92e466110: T6242: load-balancing reverse-proxy: Ability for ssl backends to not verify… (authored by Embezzle).
Apr 16 2024, 3:08 PM
Embezzle committed rVYOSONEXaafe22d08bb3: T6242: load-balancing reverse-proxy: Ability for ssl backends to not verify….
Apr 16 2024, 3:06 PM
GitHub <[email protected]> committed rVYOSONEXc0eec365e2e3: Merge pull request #3315 from Embezzle/T6242 (authored by dmbaturin).
Apr 16 2024, 3:06 PM
Giggum added a comment to T4909: Rewrite the NTP op mode in the new format.

Status update:

  • "Like for like" functionality between .sh script and .py script is complete and working (can be viewed in PR)
  • Raw output capability -> in progress
Apr 16 2024, 1:36 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0-GA)
Giggum closed T6099: Suppress unsupported interfaces from appearing in messages log by Telegraf as Resolved.
Apr 16 2024, 1:29 PM · VyOS 1.5 Circinus
Giggum added a comment to T6099: Suppress unsupported interfaces from appearing in messages log by Telegraf .

@Viacheslav concur that it looks to be resolved. The last log entry was at 9:10 and nothing telegraph-related has been logged in almost 30 minutes since. I will close ticket. Thank your help and insight.

Apr 16 2024, 1:26 PM · VyOS 1.5 Circinus
Viacheslav changed the status of T6123: Limit NTP allow-client config to internal addresses by default from Open to Needs testing.
Apr 16 2024, 1:03 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
Viacheslav changed the status of T4915: Minisign verification failure == pass?? from Needs testing to Needs reporter action.

We'll close it if no response

Apr 16 2024, 12:40 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
Viacheslav edited projects for T4982: OpenConnect should have TLS 1.0 and TLS 1.1 disabled by default, added: VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta (1.4.0-epa3), Restricted Project.
Apr 16 2024, 12:35 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav closed T5946: TASK [setup-root-partition : Create a fileystem on EFI partition] failing in Docker as Wontfix.

A docker container usually has issues with loop devices:
Use the VM or attach dev

Apr 16 2024, 10:10 AM · VyOS 1.4 Sagitta
HollyGurza added a comment to T4248: There isn't a way to remove the only rule from the (traffic-policy) class..

https://github.com/vyos/vyos-1x/pull/3316

Apr 16 2024, 8:02 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
HollyGurza changed the status of T4248: There isn't a way to remove the only rule from the (traffic-policy) class. from Open to In progress.
Apr 16 2024, 8:01 AM · VyOS 1.4 Sagitta (1.4.0-epa3)

Apr 15 2024

Embezzle added a comment to T6242: Add an option to disable certificate verification to reverse proxy.

PR: https://github.com/vyos/vyos-1x/pull/3315

Apr 15 2024, 6:54 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
GitHub <[email protected]> committed rVYOSONEXd8bca084a1f0: Merge pull request #3310 from vyos/mergify/bp/sagitta/pr-3309 (authored by c-po).
Apr 15 2024, 6:41 PM
GitHub <[email protected]> committed rVYOSONEX131bb134ec7f: Merge pull request #3314 from vyos/mergify/bp/sagitta/pr-3311 (authored by c-po).
Apr 15 2024, 6:39 PM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXc976d71110df: pki: T6241: Fix dependency updates on PKI changes (authored by sarthurdev).
Apr 15 2024, 6:14 PM
sarthurdev committed rVYOSONEX9f9891a20995: pki: T6241: Fix dependency updates on PKI changes.
Apr 15 2024, 6:12 PM
GitHub <[email protected]> committed rVYOSONEX42082cba2f0e: Merge pull request #3311 from sarthurdev/T6241 (authored by jestabro).
Apr 15 2024, 6:12 PM
Viacheslav moved T5734: Unhandled exception when trying to configure OpenVPN server without dh-params from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-epa3) board.
Apr 15 2024, 3:34 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav moved T5734: Unhandled exception when trying to configure OpenVPN server without dh-params from Open to Finished on the VyOS 1.5 Circinus board.
Apr 15 2024, 3:34 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav closed T5734: Unhandled exception when trying to configure OpenVPN server without dh-params as Resolved.
Apr 15 2024, 3:34 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav changed the status of T5722: Commit failure when trying to add a route in failover if the gateway is not in the same interface network from Open to In progress.
Apr 15 2024, 3:32 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav added a comment to T5722: Commit failure when trying to add a route in failover if the gateway is not in the same interface network.

PR https://github.com/vyos/vyos-1x/pull/3313
Add onlink option

set interfaces ethernet eth0 vif 10 address '10.20.30.1/32'
set protocols static route 10.20.30.0/32 interface eth0.10
Apr 15 2024, 3:31 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
sarthurdev closed T6174: can't view dhcp server leases if logged in as a tacacs account as Resolved.
Apr 15 2024, 2:48 PM · VyOS 1.5 Circinus
sarthurdev closed T6163: kea-dhcp4-server crashes due to incorrect lease file permissions after 1.5-rolling-202403120022 -> 1.5-rolling-202403230018 upgrade as Resolved.
Apr 15 2024, 2:48 PM · VyOS 1.5 Circinus
GitHub <[email protected]> committed rVYOSONEX534a037ffdf0: Merge pull request #3312 from vyos/mergify/bp/sagitta/pr-3308 (authored by dmbaturin).
Apr 15 2024, 2:45 PM
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX9cd746491a4d: T5734: OpenVPN check PKI DH name exists if DH configured (authored by Viacheslav).
Apr 15 2024, 2:43 PM
sarthurdev changed the status of T6241: Updating CRL in "pki" config does not update OpenVPN from Open to Needs testing.

PR: https://github.com/vyos/vyos-1x/pull/3311

Apr 15 2024, 2:43 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX67bc10841f08: T5535: firewall: migrate command <set system ip disable-directed-broadcast> to… (authored by n.fort).
Apr 15 2024, 2:41 PM
n.fort committed rVYOSONEX76dcecafca97: T5535: firewall: migrate command <set system ip disable-directed-broadcast> to….
Apr 15 2024, 2:40 PM
GitHub <[email protected]> committed rVYOSONEXf3d45223da40: Merge pull request #3309 from nicolas-fort/T5535 (authored by dmbaturin).
Apr 15 2024, 2:40 PM
Viacheslav committed rVYOSONEX95cd743c24c6: T5734: OpenVPN check PKI DH name exists if DH configured.
Apr 15 2024, 2:39 PM
GitHub <[email protected]> committed rVYOSONEX8528764c97a5: Merge pull request #3308 from sever-sever/T5734 (authored by dmbaturin).
Apr 15 2024, 2:39 PM
n.fort added a comment to T5535: Move disable-directed-broadcast to firewall global-options.

PR: https://github.com/vyos/vyos-1x/pull/3309

Apr 15 2024, 2:25 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav triaged T6242: Add an option to disable certificate verification to reverse proxy as Wishlist priority.
Apr 15 2024, 1:58 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Embezzle claimed T6242: Add an option to disable certificate verification to reverse proxy.
Apr 15 2024, 12:07 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav added a comment to T5722: Commit failure when trying to add a route in failover if the gateway is not in the same interface network.

It is more of a feature request than a bug due to specific kernel routes.
Feature to add onlink option

Apr 15 2024, 11:52 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav renamed T5722: Commit failure when trying to add a route in failover if the gateway is not in the same interface network from Failing to add route in failover to Failing to add route in failover if gateway not in the same interface network.
Apr 15 2024, 11:18 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Embezzle created T6242: Add an option to disable certificate verification to reverse proxy.
Apr 15 2024, 10:25 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
n.fort changed the status of T5535: Move disable-directed-broadcast to firewall global-options from Open to Confirmed.
Apr 15 2024, 10:12 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav added a comment to T5734: Unhandled exception when trying to configure OpenVPN server without dh-params.

PR https://github.com/vyos/vyos-1x/pull/3308

Apr 15 2024, 8:53 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav changed the status of T5734: Unhandled exception when trying to configure OpenVPN server without dh-params from Confirmed to In progress.
Apr 15 2024, 8:47 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
a.apostoliuk moved T6100: NAT config migration error in 1.4.0-epa1 if invalid address/network defined in 1.3.6 version from Open to Finished on the VyOS 1.5 Circinus board.
Apr 15 2024, 7:47 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
a.apostoliuk closed T6100: NAT config migration error in 1.4.0-epa1 if invalid address/network defined in 1.3.6 version as Resolved.
Apr 15 2024, 7:47 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
a.apostoliuk closed T6100: NAT config migration error in 1.4.0-epa1 if invalid address/network defined in 1.3.6 version, a subtask of T5938: Migration fail root task for 1.4-rc, as Resolved.
Apr 15 2024, 7:47 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
a.apostoliuk added a project to T6100: NAT config migration error in 1.4.0-epa1 if invalid address/network defined in 1.3.6 version: VyOS 1.5 Circinus.
Apr 15 2024, 7:47 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
lucasec added a comment to T6241: Updating CRL in "pki" config does not update OpenVPN.

I even commented on that issue…
It would seem my memory ages out after 3 years 🤣

Apr 15 2024, 7:41 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Viacheslav closed T6240: Set interface ethernet eth1 bridge-group command missing as Invalid.

Read the documentation for the 1.5

Apr 15 2024, 7:36 AM · VyOS 1.5 Circinus
Viacheslav added a comment to T6241: Updating CRL in "pki" config does not update OpenVPN.

The same task https://vyos.dev/T3861

Apr 15 2024, 7:33 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
adestis added a comment to T6040: Implement a firewall blacklisting solution.

I probably can continue here in summer at first.

Apr 15 2024, 6:26 AM · VyOS 1.5 Circinus
HollyGurza claimed T4248: There isn't a way to remove the only rule from the (traffic-policy) class..
Apr 15 2024, 4:35 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
jestabro moved T3574: Add constraintGroup for combining validators with logical AND from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-epa1) board.
Apr 15 2024, 12:10 AM · VyOS 1.4 Sagitta (1.4.0-epa1)
jestabro moved T3474: Revisit storing syntax version of interface definitions in XML file from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-epa1) board.
Apr 15 2024, 12:10 AM · VyOS 1.4 Sagitta (1.4.0-epa1)

Apr 14 2024

lucasec created T6241: Updating CRL in "pki" config does not update OpenVPN.
Apr 14 2024, 11:55 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
lucasec renamed T6177: Intel QAT causes CPU runaway/stall with ipsec VPN from CPU runaway/stall possibly related to Strongswan to Intel QAT causes CPU runaway/stall with ipsec VPN.
Apr 14 2024, 11:36 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
lucasec added a comment to T6177: Intel QAT causes CPU runaway/stall with ipsec VPN.

My system finally crashed again today. I found a workload that generates enough traffic over the VPN to reliably re-produce.

Apr 14 2024, 7:20 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
Arc771 closed T5155: restart bgp daemon throws route-map error as Invalid.

Seems like its either fixed or was a quirk in that specific version.

Apr 14 2024, 3:54 PM · VyOS 1.4 Sagitta
garconklin created T6240: Set interface ethernet eth1 bridge-group command missing.
Apr 14 2024, 2:04 PM · VyOS 1.5 Circinus
Viacheslav changed the status of T6099: Suppress unsupported interfaces from appearing in messages log by Telegraf from Open to Needs reporter action.
Apr 14 2024, 1:38 PM · VyOS 1.5 Circinus
Viacheslav added a comment to T6099: Suppress unsupported interfaces from appearing in messages log by Telegraf .

I don't see those logs:

set service monitoring telegraf influxdb authentication organization 'vyos'
set service monitoring telegraf influxdb authentication token 'lxxx='
set service monitoring telegraf influxdb bucket 'vyos'
set service monitoring telegraf influxdb url 'http://192.168.122.14'
Apr 14 2024, 1:38 PM · VyOS 1.5 Circinus
Viacheslav reassigned T6210: Support configuring sys-nice capability for containers from Viacheslav to theflakes.
Apr 14 2024, 12:17 PM · VyOS 1.4 Sagitta (1.4.0-epa3), VyOS 1.5 Circinus
First
Prev
Next