Page MenuHomeVyOS Platform

Apachez (Apachez)
User

Projects

User does not belong to any projects.

User Details

User Since
Jul 2 2023, 10:05 PM (66 w, 3 d)

Recent Activity

Fri, Oct 4

Apachez added a comment to T6713: Update Realtek r8152 driver.

Technically according to IEEE autoneg is mandatory when doing 1Gbps and above using RJ45.

Fri, Oct 4, 7:52 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus

Thu, Oct 3

Apachez created T6759: Add additional languages as keyboard-layout.
Thu, Oct 3, 8:08 AM · VyOS 1.4 Sagitta (1.4.1), Restricted Project, VyOS 1.5 Circinus

Fri, Sep 27

Apachez created T6746: It would be handy if sha1 would be checked for downloaded geoip db.
Fri, Sep 27, 10:34 PM · VyOS 1.5 Circinus

Wed, Sep 25

Apachez added a comment to T6737: 4K Native Sector Size Install Fails.

Also probably related:

Wed, Sep 25, 8:19 AM · VyOS 1.4 Sagitta (1.4.0)
Apachez added a comment to T6737: 4K Native Sector Size Install Fails.

I would expect the line of CLI being used to be in any of these files?

Wed, Sep 25, 8:12 AM · VyOS 1.4 Sagitta (1.4.0)

Sat, Sep 21

Apachez added a comment to T5990: Intel 25G E810 kernel ice driver does not work with LLDP.

As the message currently states over at https://sourceforge.net/projects/e1000/

Sat, Sep 21, 3:06 PM · VyOS 1.5 Circinus, VyOS 1.3 Equuleus (1.3.9)

Thu, Sep 12

Apachez added a comment to T6694: Move commands that do not fit anywhere else in the new "execute" family.

Here are my €0.05:

Thu, Sep 12, 2:41 AM · VyOS 1.5 Circinus

Aug 31 2024

Apachez added a comment to T4348: Site access denied.

https://vyos.io currently works from Sweden when I tested it at about 2024-08-31 11:30 local time.

Aug 31 2024, 9:32 AM

Aug 12 2024

Apachez added a comment to T6584: Revert addition of Linux Kernel MT7921 driver.

Might be related patches (no idea if they have anything to do with the kernel panics seen in 6.6):

Aug 12 2024, 9:21 PM · VyOS 1.4 Sagitta (1.4.1), Restricted Project, VyOS 1.5 Circinus

Aug 11 2024

Apachez added a comment to T6647: Zone-based Firewalls on Bridges would flag related DHCP traffic invalid.

From IRC, could this be related?

Aug 11 2024, 6:49 PM · Restricted Project, VyOS 1.5 Circinus

Aug 10 2024

Apachez added a comment to T6526: hardware flowtables not working on supposedly supported hardware.

Are the in-tree or out-of-tree drivers for your Intel NICs being used?

Aug 10 2024, 10:06 PM · Restricted Project, VyOS 1.4 Sagitta

Jul 30 2024

Apachez created T6621: Workflow action in github spams forks.
Jul 30 2024, 8:11 AM · VyOS 1.5 Circinus

Jun 14 2024

Apachez added a comment to T6475: WALinuxAgent crashes in Azure.

I sure hope this custom waagent build will be removed once the upstream (debian packages) have been updated with this fix.

Jun 14 2024, 5:40 PM · Restricted Project, VyOS 1.4 Sagitta, VyOS 1.5 Circinus

Jun 13 2024

Apachez added a comment to T6481: Auto import Lets Encrypt root CA while using pki certificate acme.

Personally I thing there should be a difference between setting PKI manually like set pki certificate and set pki ca vs whatever the command is to utilize letsencrypt or acme or whatever they might be called automatically through VyOS (lets say set pki letsencrypt and set pki acme etc).

Jun 13 2024, 8:30 AM · Restricted Project, VyOS 1.5 Circinus

Jun 12 2024

Apachez added a comment to T6472: Implement Atomic Write Operations for Config Files.

Care to elaborate some on that "data integrity issues" claim since you will have integrity changed by all sort of writes (atomic or not)?

Jun 12 2024, 9:23 AM
Apachez added a comment to T3936: [Feature] - DHCP Option 82 Support.

There are 2 usecases of option82 when it comes to DHCP:

Jun 12 2024, 9:16 AM · VyOS 1.5 Circinus

Jun 8 2024

Apachez added a comment to T6457: Update strip-private function to improve op command output for IPs.

The suggested change as in matching number of "x" with number of characters in each octet/hextet in the IPv4/IPv6 address will be less anonymizing than todays method.

Jun 8 2024, 7:17 PM · Restricted Project, VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0)

Jun 6 2024

Apachez added a comment to T6254: Extend VRF table number .

Care to elaborate on why this became "wontfix"?

Jun 6 2024, 4:24 PM · Restricted Project, VyOS 1.5 Circinus
Apachez added a comment to T6445: config-sync should be saved on receiving peer, after auto-commit.

Because not all netadmins sits physically close to the devices being managed.

Jun 6 2024, 7:27 AM · VyOS 1.5 Circinus

Jun 5 2024

Apachez added a comment to T6445: config-sync should be saved on receiving peer, after auto-commit.

Yes but this is what the peer would do on its own - if the opposite device is lost in connectivity it can rollback to previous config which is enabled by default (that is history of configs).

Jun 5 2024, 8:23 PM · VyOS 1.5 Circinus
Apachez added a comment to T6445: config-sync should be saved on receiving peer, after auto-commit.

This can be handled just like "how others does it" as in if the peer is lost after a sync then the peer will automatically return to previous config.

Jun 5 2024, 9:57 AM · VyOS 1.5 Circinus

Jun 3 2024

Apachez added a comment to T6441: Huawei NE8000 / NE40 / NE20 - GRE Issues (IPv4 over IPv6).

Please paste exact VyOS versions you have tested this with incl the config (in full or partial output of show config command | strip-private) of both VyOS and the opposite side.

Jun 3 2024, 7:55 PM

Jun 2 2024

Apachez added a comment to T6433: Allow custom packages survive upgrades.

Also the config section could perhaps be name "custom" (with subsections) so that section will survive an upgrade aswell - otherwise config lines will vanish during boot/commit.

Jun 2 2024, 12:17 PM · Restricted Project, VyOS 1.5 Circinus

May 28 2024

Apachez added a comment to T6181: A feature for checking popular ports..

Just dont, please see my comment fro april 2024.

May 28 2024, 7:34 AM · Restricted Project, VyOS 1.5 Circinus, VyOS 1.3 Equuleus (1.3.8), VyOS 1.4 Sagitta (1.4.0-GA)

May 24 2024

Apachez added a comment to T6211: kea DHCP server not vrf aware.

I assume that workaround would only work for a single VRF or can one do something like this?

May 24 2024, 5:57 AM · Restricted Project, VyOS 1.5 Circinus

May 22 2024

Apachez created T6382: Add dkms in order to make firmware updates of NIC's possible.
May 22 2024, 3:57 PM · VyOS 1.5 Circinus

May 16 2024

Apachez added a comment to T6353: Disallow setting user password to "vyos" (the default).

I think a warning is better than to block it from being set, specially since the workaround to load it through already existing config still remains.

May 16 2024, 3:11 PM · VyOS 1.5 Circinus

May 15 2024

Apachez added a comment to T5835: UPnP port mapping / rule installation fails.

If I had to recommend anything, it'd be that VyOS just remove UPnP completely. What is included doesn't work (or didn't when I last checked) and the attitude from the VyOS community seems to be that it's not wanted/needed anyways.

May 15 2024, 10:45 AM
Apachez added a comment to T6334: [Feature] Support unsigned vyos mirrors for builds.

Could this perhaps be extended into something like this in the help of the command and documentation?

May 15 2024, 10:30 AM

May 14 2024

Apachez added a comment to T5835: UPnP port mapping / rule installation fails.

I fail to comprehend how a firewall that autonomously opens ports via calls from internal networks is appropriate for an enterprise.
Indeed there are some use cases but this functionality can be used by malicious code and allow bypass security configuration that is enforced otherwise

May 14 2024, 5:38 PM
Apachez added a comment to T5835: UPnP port mapping / rule installation fails.

I fail to comprehend how a firewall that autonomously opens ports via calls from internal networks is appropriate for an enterprise.
Indeed there are some use cases but this functionality can be used by malicious code and allow bypass security configuration that is enforced otherwise

May 14 2024, 5:30 PM
Apachez added a comment to T5835: UPnP port mapping / rule installation fails.

I have rarely seen UPnP in enterprise environments and rarely at home even if the main purpose is to use it at home and let applications backdoor your firewall (which often is a bad thing in enterprise evironments).

May 14 2024, 10:23 AM

May 13 2024

Apachez added a comment to T6333: non-free-firmware to trixie.

As already commented in the PR itself:

May 13 2024, 3:17 PM · VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus

May 10 2024

Apachez added a comment to T5497: Add ability to resequence rule numbers for firewall.

Just so I dont get the vocabulary wrong here...

May 10 2024, 4:57 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
Apachez reopened T5497: Add ability to resequence rule numbers for firewall as "Known issue".

Ill put it into "known issue" since IMHO a complete "resolved" would be when this feature exists in config-mode aswell.

May 10 2024, 4:54 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
Apachez added a comment to T5497: Add ability to resequence rule numbers for firewall.

The thing is that adding this as op-mode only doesnt really solve anything.

May 10 2024, 3:01 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
Apachez added a comment to T5497: Add ability to resequence rule numbers for firewall.

Also NAT-rules are in the need of a resequence feature in the config-mode:

May 10 2024, 2:17 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
Apachez reopened T5593: Further shrink VyOS imagesize as "Open".

I dont think this is resolved.

May 10 2024, 1:07 PM · VyOS 2.0.x
Apachez added a comment to T6328: Add a warning message about deprecation of web proxy URL filtering.

When/If doing so it would be great if the docs would suggest for alternative methods to achieve the same thing.

May 10 2024, 10:51 AM · VyOS 1.4 Sagitta (1.4.0-GA)

May 9 2024

Apachez added a comment to T6322: Include microcode update packages for both intel and amd64 cpus.

It can be handy to have the option to have it disabled (or you can just in bash-mode do "apt-get remove intel-microcode --purge" if you dont want it after install) but it should be enabled by default due to security reasons.

May 9 2024, 10:03 AM · Restricted Project, VyOS 1.5 Circinus

May 8 2024

Apachez created T6322: Include microcode update packages for both intel and amd64 cpus.
May 8 2024, 8:50 PM · Restricted Project, VyOS 1.5 Circinus

May 7 2024

Apachez added a comment to T6305: IPoE interface wildcard validation error in firewall rules.

Shouldnt this be adjusted in more files and places?

May 7 2024, 4:50 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

May 5 2024

Apachez added a comment to T2505: XCP-ng packet drops for small packets (e.g. icmp) under Xen and AWS.

@peter, did you try various offloading settings for the NIC being used with reboots in between?

May 5 2024, 4:19 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)

May 4 2024

Apachez added a comment to T6281: Wireguard does not pass traffic if VRFs are used.

NETNS was removed from the 1.4 series the other day so hopefully that feature can be worked on for 1.5 since its needed:

May 4 2024, 7:18 AM · VyOS 1.5 Circinus

May 1 2024

Apachez added a comment to T2468: Passwords with special characters fail in commit-archive.

For added service when typing just:

May 1 2024, 9:16 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
Apachez added a comment to T2468: Passwords with special characters fail in commit-archive.

You would still be limited to not be able to use " as part of your password.

May 1 2024, 9:15 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)

Apr 30 2024

Apachez created T6285: Listen-address in DHCP-server when going VyOS 1.4 to 1.5 will cause problems.
Apr 30 2024, 1:54 PM · Restricted Project, VyOS 1.5 Circinus

Apr 28 2024

Apachez created T6275: SSH-keys from home-directory are not included during an update.
Apr 28 2024, 3:30 PM · Restricted Project, VyOS 1.5 Circinus

Apr 27 2024

Apachez added a comment to T6209: Improve Configuration Load/Commit Speed by moving away from deep-tree flat-file backend.

Probably related: https://vyos.dev/T5388

Apr 27 2024, 11:04 AM · VyOS 1.5 Circinus

Apr 26 2024

Apachez added a comment to T6258: Add IPv6 base-reachable-time option to interfaces.

Perhaps those changes should be within the firewall context?

Apr 26 2024, 8:09 AM · VyOS 1.4 Sagitta (1.4.0-epa3)

Apr 25 2024

Apachez added a comment to T6258: Add IPv6 base-reachable-time option to interfaces.

Im thinking since sysctl can be changed after the system have completed its boot shouldnt the "system sysctl" be runned among the last tasks according to "/usr/libexec/vyos/priority.py", which would also fix this issue ?

Apr 25 2024, 10:22 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Apachez added a comment to T6258: Add IPv6 base-reachable-time option to interfaces.

Note that "base_reachable_time_ms" is still valid while "base_reachable_time" is obsolete.

Apr 25 2024, 2:56 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

Apr 24 2024

Apachez added a comment to T6256: Replace deprecated ISC dhcp-relay (EOL) with something else.

I sent a question to ISC regarding https://www.isc.org/blogs/dhcp-client-relay-eom/ and:

Apr 24 2024, 6:05 PM · VyOS 1.5 Circinus

Apr 23 2024

Apachez added a comment to T6258: Add IPv6 base-reachable-time option to interfaces.

I have asked the OP @canoziia to provide such in the forum.

Apr 23 2024, 9:14 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Apachez added a comment to T6258: Add IPv6 base-reachable-time option to interfaces.

I can only refer to whats unfolded on the forum at https://forum.vyos.io/t/how-to-set-net-ipv6-neigh-etha-b-base-reachable-time-in-vyos/14304

Apr 23 2024, 7:37 AM · VyOS 1.4 Sagitta (1.4.0-epa3)

Apr 22 2024

Apachez updated the task description for T6258: Add IPv6 base-reachable-time option to interfaces.
Apr 22 2024, 5:32 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Apachez created T6258: Add IPv6 base-reachable-time option to interfaces.
Apr 22 2024, 5:27 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

Apr 21 2024

Apachez added a comment to T6256: Replace deprecated ISC dhcp-relay (EOL) with something else.

Perhaps Im missing something here but where is Option82 information included (injected into the DCHP-request reaching the DHCP-server)?

Apr 21 2024, 9:56 AM · VyOS 1.5 Circinus

Apr 20 2024

Apachez added a comment to T6256: Replace deprecated ISC dhcp-relay (EOL) with something else.

Here is a post from an OPNsense forum administrator in august 2023 (dunno if the below is still valid for OPNsense):

Apr 20 2024, 1:04 PM · VyOS 1.5 Circinus
Apachez added a comment to T6256: Replace deprecated ISC dhcp-relay (EOL) with something else.

When evaluating proper replacement (other than choosing the best one for the task) another thing to consider is, if possible, to select something that not everybody else uses in terms of if/when a vuln is found in that softrware then not ALL vendors are affected at once.

Apr 20 2024, 9:45 AM · VyOS 1.5 Circinus
Apachez created T6256: Replace deprecated ISC dhcp-relay (EOL) with something else.
Apr 20 2024, 9:40 AM · VyOS 1.5 Circinus

Apr 18 2024

Apachez added a comment to T5572: Add capability for sending Gratuitous ARP (GARP) and the equal for IPv6.

It would be handy if the GARP announcement wouldnt be a separate list but rather picked up from any DNAT or SNAT rules.

Apr 18 2024, 7:58 AM · VyOS 1.5 Circinus
Apachez added a comment to T6248: <device> ip source-validation 'strict' - doesn't set /proc/sys/net/ipv4/conf/<device>/rp_filter.

Probably related:

Apr 18 2024, 4:35 AM · VyOS 1.4 Sagitta (1.4.0-epa2)

Apr 14 2024

Apachez added a comment to T6239: Would it be possible to implement an additional command/parameter to configure the vlan priority 0-7 on vif or vif-c+vif-s.

How is this supposed to work?

Apr 14 2024, 9:41 AM · Restricted Project, VyOS 1.5 Circinus
Apachez added a comment to T5694: NTP should always be allowed from localhost and bindaddress/binddevice can only exist once.

Will a migrationsscript be included so that users who used the default of:

Apr 14 2024, 3:54 AM · VyOS 1.5 Circinus
Apachez added a comment to T6123: Limit NTP allow-client config to internal addresses by default.

Will a migrationsscript be included so that users who used the default of:

Apr 14 2024, 3:54 AM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus

Apr 13 2024

Apachez added a comment to T6239: Would it be possible to implement an additional command/parameter to configure the vlan priority 0-7 on vif or vif-c+vif-s.

You can do the QoS priority on the VyOS by matching the traffic based on VLAN ID and then set the DSCP (TOS) using "set-dscp" according to the manuals below:

Apr 13 2024, 6:04 PM · Restricted Project, VyOS 1.5 Circinus
Apachez added a comment to T6239: Would it be possible to implement an additional command/parameter to configure the vlan priority 0-7 on vif or vif-c+vif-s.

You mean you want QoS based on VLAN which is named 802.1p ?

Apr 13 2024, 4:23 PM · Restricted Project, VyOS 1.5 Circinus

Apr 11 2024

Apachez added a comment to T6229: Unable to view transceiver information for Intel X710 interface.

According to https://community.intel.com/t5/Ethernet-Products/XXV710-V2-NIC-doesn-t-support-quot-ethtool-m-quot-Is-this-a-bug/m-p/730841 you need to:

Apr 11 2024, 6:26 PM · Restricted Project, VyOS 1.4 Sagitta (1.4.0-GA)

Apr 10 2024

Apachez added a comment to T6221: Enabling VRF breaks connectivity.

I only created a vrf (but did not assign it to anything else). Is that intend to break connectivity?

Apr 10 2024, 9:53 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Apachez added a comment to T6221: Enabling VRF breaks connectivity.

Thats common with other vendors aswell.

Apr 10 2024, 10:16 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Apachez placed T5498: fsck during boot doesnt work up for grabs.

Removed assignee for now in case somebody else wants to fix this?

Apr 10 2024, 5:52 AM · Restricted Project, VyOS 1.5 Circinus
Apachez placed T5522: Add logging for which mksquashfs syntax is being used up for grabs.

Removed assignee for now in case somebody else wants to fix this?

Apr 10 2024, 5:46 AM · VyOS 1.5 Circinus
Apachez placed T5641: Enable compression of kernel modules up for grabs.

Removed assignee for now in case somebody else wants to fix this?

Apr 10 2024, 5:45 AM · VyOS 1.5 Circinus
Apachez added a comment to T5694: NTP should always be allowed from localhost and bindaddress/binddevice can only exist once.

Removed assignee for now in case somebody else wants to fix this?

Apr 10 2024, 5:45 AM · VyOS 1.5 Circinus
Apachez placed T5694: NTP should always be allowed from localhost and bindaddress/binddevice can only exist once up for grabs.
Apr 10 2024, 5:43 AM · VyOS 1.5 Circinus

Apr 1 2024

Apachez added a comment to T6181: A feature for checking popular ports..

Personally I dont think its a good idea to be able to use VyOS as a jumphost towards victims of scanning.

Apr 1 2024, 8:11 AM · Restricted Project, VyOS 1.5 Circinus, VyOS 1.3 Equuleus (1.3.8), VyOS 1.4 Sagitta (1.4.0-GA)

Mar 30 2024

Apachez added a comment to T6188: Add firewall rule description to the output of "show firewall" commands.

I think the wrapping should be left for the output to select since you can either be in a regular serialconsole of 80x25 or some highresmode which brings more characters per line or even through SSH with a 4k monitor which will be plenty of lines.

Mar 30 2024, 5:24 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
Apachez added a comment to T6188: Add firewall rule description to the output of "show firewall" commands.

Since descriptions can be very long I assume there will be a linewrap at the end?

Mar 30 2024, 4:01 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

Mar 25 2024

Apachez added a comment to T5566: Disable 802.3az/EEE (energy efficient ethernet).

Sure but if the function "port auto-power-down" is mapped to the ethtool function of disabling EEE then it should be safe?

Mar 25 2024, 7:10 PM · VyOS 1.5 Circinus

Mar 24 2024

Apachez reopened T5566: Disable 802.3az/EEE (energy efficient ethernet) as "Known issue".

Reopened with status "Known issue" due to revert by PR 3177.

Mar 24 2024, 10:45 AM · VyOS 1.5 Circinus
Apachez added a comment to T5566: Disable 802.3az/EEE (energy efficient ethernet).

To clearify:

Mar 24 2024, 10:38 AM · VyOS 1.5 Circinus

Mar 23 2024

Apachez added a comment to T6162: ixgbe: Add 1000BASE-BX support.

Wouldnt it be better if the same commit goes to Intel to be included with the out-of-tree driver which generally have better featuresupport than the in-tree driver which seems to be somewhat crippled?

That is that this commit goes into upstream to both Linux kernel and Intel out-of-tree driver (in case the later is missing this support)?

This is up to Intel as far as I know

Mar 23 2024, 2:25 PM · VyOS 1.4 Sagitta (1.4.0-epa3), VyOS 1.5 Circinus
Apachez added a comment to T6162: ixgbe: Add 1000BASE-BX support.

Wouldnt it be better if the same commit goes to Intel to be included with the out-of-tree driver which generally have better featuresupport than the in-tree driver which seems to be somewhat crippled?

Mar 23 2024, 12:20 PM · VyOS 1.4 Sagitta (1.4.0-epa3), VyOS 1.5 Circinus

Mar 22 2024

Apachez added a comment to T6140: After running a while the default routing failed on vyos 1.4 epa1&epa2 with pppoe0 enabled.

Wouldnt PPPoE always assign IP dynamically?

Mar 22 2024, 4:57 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)
Apachez added a comment to T6154: Installer should ask for password twice.

Comparing to other vendors setting the password either in cleartext or as a salted hash (where when saved in config file its always saved as a salted hash - but it will accept a cleartext edition too if you wish that for whatever reason) through the CLI is the standard in NOS.

Mar 22 2024, 4:28 AM · VyOS 1.4 Sagitta (1.4.0-epa3)
Apachez added a comment to T6140: After running a while the default routing failed on vyos 1.4 epa1&epa2 with pppoe0 enabled.

Also since dynamic and not static IP is being used it would be handy if the DHCP exchange can be captured using tcpdump and do this both on the 1.3 where this works and on 1.4/1.5 where this doesnt work.

Mar 22 2024, 4:20 AM · Restricted Project, VyOS 1.4 Sagitta (1.4.1)

Mar 15 2024

Apachez added a comment to T6091: [1.3.3->1.4.0-epa1 Migration] NTP "listen-address" config removed.

Proper would be to throw out chrony and use ntpsec instead which supports proper filtering.

Mar 15 2024, 5:06 PM · VyOS 1.4 Sagitta
Apachez added a comment to T4610: Firewall with 20K entries cannot load after reboot.

There do already exists tasks regarding commit and boot times such as: https://vyos.dev/T5388

Mar 15 2024, 10:35 AM · VyOS 1.4 Sagitta

Mar 14 2024

Apachez added a comment to T4610: Firewall with 20K entries cannot load after reboot.

I wouldnt call 1m37s of commit time for a single line of configchange as "resolved"...

Mar 14 2024, 10:33 PM · VyOS 1.4 Sagitta
Apachez added a comment to T5388: Something is fishy with commit and boot times when more than a few hundred static routes are being used.

Also probably related: https://forum.vyos.io/t/long-commit-time-for-multiple-vrfs/14053

Mar 14 2024, 8:48 PM · Restricted Project, VyOS 1.5 Circinus
Apachez added a comment to T2433: Improve CLI value validator performance.

Is this related to the long commit and boot times when one have more than a handful routes or firewall rules as described in https://vyos.dev/T5388 ?

Mar 14 2024, 10:54 AM · VyOS 1.4 Sagitta (1.4.0-epa1)

Mar 7 2024

Apachez added a comment to T6108: VTYSH - Slowdown.

1.3.3 and rolling from 2020?

Mar 7 2024, 4:14 PM · Restricted Project, VyOS 1.3 Equuleus (1.3.9)
Apachez added a comment to T6107: Nginx does not allow big config queries for configure endpoint API.

While at it, whats the configured response time in nginx?

Mar 7 2024, 2:04 PM · VyOS 1.4 Sagitta (1.4.0-epa2), VyOS 1.5 Circinus

Mar 6 2024

Apachez added a comment to T6103: DHCP-server bootfile-name double slash syntax weird behaviour.

Is "\" really a valid path for bootfile?

Mar 6 2024, 11:07 AM · VyOS 1.4 Sagitta (1.4.0-epa3), vyatta-cfg-dhcp-server

Mar 4 2024

Apachez created T6098: Description doesnt seem to allow for non international characters.
Mar 4 2024, 6:47 PM · VyOS 1.4 Sagitta (1.4.0-epa2), VyOS 1.5 Circinus
Apachez added a comment to T6096: Config commits are not synced properly because 00vyos-sync is deleted by vyos-router.

PR created: https://github.com/vyos/vyos-1x/pull/3085

Mar 4 2024, 6:21 PM · VyOS 1.4 Sagitta (1.4.0-epa2), VyOS 1.3 Equuleus (1.3.7), VyOS 1.5 Circinus
Apachez claimed T6096: Config commits are not synced properly because 00vyos-sync is deleted by vyos-router.
Mar 4 2024, 5:51 PM · VyOS 1.4 Sagitta (1.4.0-epa2), VyOS 1.3 Equuleus (1.3.7), VyOS 1.5 Circinus
Apachez created T6096: Config commits are not synced properly because 00vyos-sync is deleted by vyos-router.
Mar 4 2024, 5:31 PM · VyOS 1.4 Sagitta (1.4.0-epa2), VyOS 1.3 Equuleus (1.3.7), VyOS 1.5 Circinus

Mar 2 2024

Apachez added a comment to T6088: Configuration corrupted after saving and powercut or force reboot.

Instead of that sysrq stuff, how does it work if you try these 3 tests?

Mar 2 2024, 1:12 PM · VyOS 1.3 Equuleus (1.3.7)