Page MenuHomeVyOS Platform

a.hajiyev (Aslan)
User

Projects

User Details

User Since
Feb 1 2023, 11:34 AM (99 w, 4 d)

Recent Activity

Thu, Dec 19

a.hajiyev added a comment to T6963: FRR some process does not answer in timeout and watchfrr was killed by watchdog.

There are around 300 interfaces:

  • around 200 vxlan interface
  • around 30 bridge interfaces
  • around 30 Pseudo-Ethernet/MACvlan interfaces
  • around 16 Ethernet interfaces
  • around 30 Bridge interfaces
Thu, Dec 19, 1:24 PM · VyOS 1.4 Sagitta
a.hajiyev created T6963: FRR some process does not answer in timeout and watchfrr was killed by watchdog.
Thu, Dec 19, 1:06 PM · VyOS 1.4 Sagitta

Nov 14 2024

a.hajiyev created T6875: Make it possible to release an 'active' IP address from DHCP server leases.
Nov 14 2024, 6:56 AM · VyOS 1.4 Sagitta (1.4.1)

Oct 28 2024

a.hajiyev added a comment to T6807: Afer the migration from 1.3.x to 1.4.0 "/" character at the end of the users home directory path breaks login.

https://github.com/vyos/vyos-1x/pull/4171

Oct 28 2024, 12:19 PM · VyOS Rolling, Bugs
a.hajiyev claimed T6807: Afer the migration from 1.3.x to 1.4.0 "/" character at the end of the users home directory path breaks login.
Oct 28 2024, 12:18 PM · VyOS Rolling, Bugs

Oct 24 2024

a.hajiyev added a comment to T6807: Afer the migration from 1.3.x to 1.4.0 "/" character at the end of the users home directory path breaks login.
Oct 24 2024, 6:35 AM · VyOS Rolling, Bugs

Oct 23 2024

a.hajiyev updated the task description for T6807: Afer the migration from 1.3.x to 1.4.0 "/" character at the end of the users home directory path breaks login.
Oct 23 2024, 1:35 PM · VyOS Rolling, Bugs
a.hajiyev created T6807: Afer the migration from 1.3.x to 1.4.0 "/" character at the end of the users home directory path breaks login.
Oct 23 2024, 1:34 PM · VyOS Rolling, Bugs

Oct 3 2024

a.hajiyev added a project to T6613: VyOS local system users TACACS+ authorization requests : VyOS 1.4 Sagitta (1.4.0).
Oct 3 2024, 10:50 AM · VyOS 1.4 Sagitta (1.4.2), VyOS 1.5 Circinus, VyOS Rolling

Sep 18 2024

a.hajiyev updated the task description for T6724: Integrate directory integrity checker to detect and find installed 3rd party packets.
Sep 18 2024, 10:13 AM · VyOS Rolling
a.hajiyev created T6724: Integrate directory integrity checker to detect and find installed 3rd party packets.
Sep 18 2024, 5:45 AM · VyOS Rolling

Aug 23 2024

a.hajiyev added a comment to T6673: Unexpected error when restart container via native Podman command.

Only worked:

  1. Reboot instance
  2. load /config/config.boot
  3. sudo podman rm suricata
  4. commit

Then it works

vyos@VyOS-Test01#
[edit]
vyos@VyOS-Test01# load /config/config.boot
[edit]
vyos@VyOS-Test01#
[edit]
vyos@VyOS-Test01# compare
+ container {
+     name suricata {
+         allow-host-networks
+         arguments "-q 1"
+         capability "net-admin"
+         capability "sys-admin"
+         capability "sys-nice"
+         image "jasonish/suricata:6.0.14"
+         memory "1024"
+         volume ETC {
+             destination "/etc/suricata"
+             source "/config/suricata/etc"
+         }
+         volume LOGS {
+             destination "/var/log/suricata"
+             source "/config/suricata/logs"
+         }
+         volume RULES {
+             destination "/var/lib/suricata/rules/"
+             source "/config/suricata/rules"
+         }
+     }
+ }
Aug 23 2024, 10:55 AM · VyOS Rolling, Bugs
a.hajiyev reopened T6673: Unexpected error when restart container via native Podman command as "Open".
Aug 23 2024, 10:42 AM · VyOS Rolling, Bugs
a.hajiyev added a comment to T6673: Unexpected error when restart container via native Podman command.

If service is 'failed' state

vyos@VyOS-Test01:~$ systemctl status vyos-container-suricata.service
× vyos-container-suricata.service - VyOS Container suricata
     Loaded: loaded (/run/systemd/system/vyos-container-suricata.service; static)
     Active: failed (Result: exit-code) since Fri 2024-08-23 10:32:44 UTC; 43s ago
   Duration: 4min 55.702s
    Process: 2855 ExecStartPre=/bin/rm -f /run/vyos-container-suricata.service.pid /run/vyos-container-suricata.service.cid (code=exited, sta>
    Process: 2856 ExecStart=/usr/bin/podman run --conmon-pidfile /run/vyos-container-suricata.service.pid --cidfile /run/vyos-container-suric>
    Process: 2867 ExecStopPost=/usr/bin/podman rm --ignore -f --cidfile /run/vyos-container-suricata.service.cid (code=exited, status=0/SUCCE>
    Process: 2873 ExecStopPost=/bin/rm -f /run/vyos-container-suricata.service.cid (code=exited, status=0/SUCCESS)
        CPU: 129ms
Aug 23 2024, 10:42 AM · VyOS Rolling, Bugs
a.hajiyev added a comment to T6673: Unexpected error when restart container via native Podman command.

You are right there is an op-mode command to restart the container

restart container suricata

But I think there needs to be some checks/changes at least someone will execute the native Podman command to restart the container.

Aug 23 2024, 8:01 AM · VyOS Rolling, Bugs
a.hajiyev created T6673: Unexpected error when restart container via native Podman command.
Aug 23 2024, 6:01 AM · VyOS Rolling, Bugs

Aug 15 2024

a.hajiyev created T6657: TACACS+ enhancements by adding Authorization and Accounting functionalities.
Aug 15 2024, 9:59 AM · VyOS Rolling

Jul 1 2024

a.hajiyev created T6536: Config migration does not work as expected when update from 1.3.2 to 1.4.0 (with NAT with wildcard and sysctl parameters).
Jul 1 2024, 7:06 AM · VyOS 1.4 Sagitta (1.4.1)

May 28 2024

a.hajiyev created T6413: BGP conditional route advertisement does not work as expected.
May 28 2024, 10:49 AM · VyOS Rolling, Bugs

Apr 9 2024

a.hajiyev added a comment to T6215: Replace confusing error messages with clear ones when delete rule form firewall policy.

https://github.com/vyos/vyatta-cfg-firewall/pull/37

Apr 9 2024, 10:56 AM · VyOS 1.3 Equuleus (1.3.8)
a.hajiyev created T6215: Replace confusing error messages with clear ones when delete rule form firewall policy.
Apr 9 2024, 10:51 AM · VyOS 1.3 Equuleus (1.3.8)

Jan 11 2024

a.hajiyev closed T3191: PAM RADIUS freezing when accounting does not configured on RADIUS server as Resolved.
Jan 11 2024, 6:11 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta
a.hajiyev added a comment to T3191: PAM RADIUS freezing when accounting does not configured on RADIUS server.

Tested in VyOS 1.4.0-rc1 , VyOS 1.3.5 and VyOS 1.5-rolling-202401030023
The configuration
VyOS 1.4.0-rc1:

Jan 11 2024, 6:09 AM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.5 Circinus, VyOS 1.4 Sagitta

Nov 30 2023

a.hajiyev added a comment to T5004: DHCP-Relay potential bug. Static configurations of DHCP-Relay Interfaces.

Tested in VyOS 1.3.4

Nov 30 2023, 6:59 AM · VyOS Rolling
a.hajiyev closed T4601: dhcp : relay agent IP address issue. as Resolved.
Nov 30 2023, 6:46 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
a.hajiyev added a comment to T4601: dhcp : relay agent IP address issue..

Tested in VyOS 1.3.4

image.png (371×806 px, 27 KB)

Nov 30 2023, 6:39 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
a.hajiyev added a comment to T4601: dhcp : relay agent IP address issue..

Tested in VyOS 1.4-rolling-202311100309

Nov 30 2023, 6:07 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta

Nov 29 2023

a.hajiyev added a comment to T5004: DHCP-Relay potential bug. Static configurations of DHCP-Relay Interfaces.

Tested in VyOS 1.4-rolling-202311100309

Nov 29 2023, 1:35 PM · VyOS Rolling

Nov 28 2023

a.hajiyev closed T4276: IPsec peers dh-group negotiation issue with pfs enabled and multiple proposals configured with IKEv1 as Resolved.
Nov 28 2023, 8:50 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T4276: IPsec peers dh-group negotiation issue with pfs enabled and multiple proposals configured with IKEv1.

Tested on VyOS 1.4-rolling-202311100309

  • IKEv1
  • 2 proposals
  • the pfs is enabled
Nov 28 2023, 8:48 AM · VyOS 1.4 Sagitta

Nov 24 2023

a.hajiyev updated the task description for T5778: The show dhcp server leases operation mode command does not work as expected.
Nov 24 2023, 1:42 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
a.hajiyev updated the task description for T5778: The show dhcp server leases operation mode command does not work as expected.
Nov 24 2023, 1:41 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
a.hajiyev updated the task description for T5778: The show dhcp server leases operation mode command does not work as expected.
Nov 24 2023, 1:40 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
a.hajiyev created T5778: The show dhcp server leases operation mode command does not work as expected.
Nov 24 2023, 1:17 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta

Nov 23 2023

a.hajiyev closed T4891: BFD flapping loop as Resolved.
Nov 23 2023, 9:42 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T4891: BFD flapping loop.

Tested in VyOS 1.4-rolling-202311100309:

Nov 23 2023, 9:42 AM · VyOS 1.4 Sagitta
a.hajiyev closed T4867: "show bgp neighbors ... advertised-routes" and some other commands fail for IPv4 neighbors, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, as Resolved.
Nov 23 2023, 8:01 AM · VyOS Rolling
a.hajiyev closed T4867: "show bgp neighbors ... advertised-routes" and some other commands fail for IPv4 neighbors as Resolved.
Nov 23 2023, 8:01 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T4867: "show bgp neighbors ... advertised-routes" and some other commands fail for IPv4 neighbors.

Tested in VyOS 1.4-rolling-202311100309
Configs:
Node-1

Nov 23 2023, 8:01 AM · VyOS 1.4 Sagitta

Nov 22 2023

a.hajiyev closed T4021: Long commit time on bridge interface with 1-4094 allowed VLAN tags as Resolved.
Nov 22 2023, 7:42 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T4021: Long commit time on bridge interface with 1-4094 allowed VLAN tags.

Tested on VyOS 1.4-rolling-202311100309:

Nov 22 2023, 7:41 AM · VyOS 1.4 Sagitta
a.hajiyev closed T3818: BGP export route-map only works after bgpd restart as Resolved.
Nov 22 2023, 7:20 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T3818: BGP export route-map only works after bgpd restart.

Tested in VyOS 1.4-rolling-202311100309:
The configuration:

Nov 22 2023, 7:19 AM · VyOS 1.4 Sagitta
a.hajiyev removed a project from T2845: BGP conf_mode unable to delete configuration with peer-group: VyOS 1.4 Sagitta.
Nov 22 2023, 6:15 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T2845: BGP conf_mode unable to delete configuration with peer-group.

Tested in VyOS 1.4-rolling-202311100309
The configuration:
VyOS:

Nov 22 2023, 4:47 AM · VyOS 1.4 Sagitta

Nov 20 2023

a.hajiyev added a comment to T2737: DHCP Lease not displayed with a static map.

Tested in VyOS 1.4-rolling-202311100309:
Configurations:

Nov 20 2023, 6:31 AM · Bugs, VyOS Rolling, VyOS 1.5 Circinus
a.hajiyev changed the status of T2816: Rewrite IPsec scripts with the new XML/Python approach from In progress to Open.
Nov 20 2023, 5:04 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T2816: Rewrite IPsec scripts with the new XML/Python approach.

Tested on VyOS 1.4-rolling-202311100309 and VyOS 1.5-rolling-202311160736 - L-Time shows 0. But supposed to show 3600 according to the configuration.

Nov 20 2023, 5:00 AM · VyOS 1.4 Sagitta

Nov 16 2023

a.hajiyev changed the status of T2816: Rewrite IPsec scripts with the new XML/Python approach from Needs testing to In progress.
Nov 16 2023, 1:23 PM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T2816: Rewrite IPsec scripts with the new XML/Python approach.

Tested in VyOS 1.4-rolling-202311100309 (AES)

Nov 16 2023, 11:59 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T2816: Rewrite IPsec scripts with the new XML/Python approach.

Tested in VyOS 1.4-rolling-202311100309 (3DES)

Nov 16 2023, 11:30 AM · VyOS 1.4 Sagitta
a.hajiyev removed a project from T3763: wireguard checks if port already binding: VyOS 1.4 Sagitta.
Nov 16 2023, 8:50 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T3763: wireguard checks if port already binding.

In VyOS 1.3.4
Configs:

Nov 16 2023, 8:50 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T3763: wireguard checks if port already binding.

I tested in VyOS 1.4-rolling-202311100309

Nov 16 2023, 8:16 AM · VyOS 1.4 Sagitta
a.hajiyev closed T3638: Passwords With Dollar Sign Set Incorrectly as Resolved.
Nov 16 2023, 4:17 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

Tested in VyOS 1.4-rolling-202311100309
Tried with single quotes: ''

Nov 16 2023, 4:01 AM · VyOS 1.4 Sagitta

Nov 15 2023

a.hajiyev closed T1276: dhcp relay + VLAN fails as Resolved.
Nov 15 2023, 12:11 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta, test
a.hajiyev closed T5665: radius user not working as Resolved.
Nov 15 2023, 12:09 PM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T1276: dhcp relay + VLAN fails.

Tested VyOS 1.4-rolling-202311100309

Nov 15 2023, 7:25 AM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta, test

Oct 25 2023

a.hajiyev added a comment to T5665: radius user not working.

Used one of the latest rolling releases.
Configured the Radius server and VyOS

Oct 25 2023, 11:15 AM · VyOS 1.4 Sagitta

Oct 24 2023

a.hajiyev added a comment to T4867: "show bgp neighbors ... advertised-routes" and some other commands fail for IPv4 neighbors.

Checked in VyOS 1.4-rolling-202310030309

Oct 24 2023, 10:30 AM · VyOS 1.4 Sagitta
a.hajiyev added a comment to T3722: op-mode IPSec show vpn ike sa always shows L-TIME 0.

LEFT router configuration

Oct 24 2023, 6:17 AM · VyOS 1.4 Sagitta (1.4.0-epa1), Restricted Project, VyOS 1.5 Circinus

Aug 15 2023

a.hajiyev updated the task description for T5473: Detect what conflicts with POSIX mode.
Aug 15 2023, 5:27 AM · VyOS Rolling, Bugs
a.hajiyev updated the task description for T5473: Detect what conflicts with POSIX mode.
Aug 15 2023, 5:26 AM · VyOS Rolling, Bugs

Aug 14 2023

a.hajiyev updated the task description for T5473: Detect what conflicts with POSIX mode.
Aug 14 2023, 1:15 PM · VyOS Rolling, Bugs
a.hajiyev created T5473: Detect what conflicts with POSIX mode.
Aug 14 2023, 4:24 AM · VyOS Rolling, Bugs

Jul 27 2023

a.hajiyev created T5408: 15-16 tacacs folders under /home directory.
Jul 27 2023, 8:00 AM · VyOS 1.4 Sagitta