User Details
- User Since
- Apr 18 2019, 5:30 AM (299 w, 6 d)
Feb 14 2024
Jan 3 2024
OK, local-route actually worked!
Thanks!
Dec 30 2023
I've tinkered with this a bit , but a problem I have is that I need multiple ip addresses on the outgoing interface(s). I understand that Jool takes all ports, so It's needed for everything to work properly.
On my own WAN interface, this is not a problem, I can just assign another ip from my ISP.
Dec 23 2023
Actually, it doesn't! :(
{F4050258}
That's great!
I tried running make interface_definitions in vyos-1x and copy in the changed files into my vyos install, but the files kept disappearing when rebooting, and couldn't figure out how to build an iso with your vyos 1-x repo.
Dec 22 2023
if you are running the netfilter implementation, I think the iptables mangle is handled automatically.(I verified this by changing my Jool to netfilter and removed these lines below:
ip6tables -t mangle -A PREROUTING --destination 64:ff9b::/96 -j JOOL --instance default iptables -t mangle -A PREROUTING --destination 172.21.8.202 -p tcp --dport 1:65535 -j JOOL --instance default iptables -t mangle -A PREROUTING --destination 172.21.8.202 -p udp --dport 1:65535 -j JOOL --instance default iptables -t mangle -A PREROUTING --destination 172.21.8.202 -p icmp -j JOOL --instance default
Dec 21 2023
Is it possible to add support for policy routing?
Mar 18 2022
Sure, but its not being applied in the pdns recursor so I cant use static host mapping for ipv6 in my network, only locally on the vyos host. (It works fine with ipv4).
Thanks, Not really sure what happened, but I deleted config.boot and rebooted, Now it works to add a policy again.
Feb 11 2022
Jan 31 2022
Thanks!😀
Jan 30 2022
Jan 28 2022
Hi again, I found another bug, if I have two policy routes with the same table it tries to create the table twice, and it doesn't work because the table is already created:
Jan 27 2022
Hi,
I applied your new policy-route.py manually, and now my ipv6 pbr works again!! Thanks a lot!
Sep 28 2021
It works now! Thanks!
Sep 24 2021
Sep 9 2021
Thanks, I got it working now.
Sep 8 2021
Hello, Sorry, but I tried this I get "Invalid certificate on CA certificate "test"
Sep 7 2021
Jan 20 2021
Nov 21 2020
Thanks, works now.
Nov 20 2020
authentication { password xxxx username xxxxx } device-type tun encryption { cipher aes256 } firewall { in { ipv6-name DENYv6_IN name DENY_IN } local { ipv6-name DENYv6_IN name DENY_IN } } hash sha256 mode client openvpn-option "key-direction 1" openvpn-option route-nopull persistent-tunnel protocol tcp-active remote-host 1.2.3.4 remote-host 1.2.3.5 remote-port 1195 tls { ca-cert-file /config/auth/cert.ca auth-file /config/auth/tls-auth tls-version-min 1.2 }
Now this error appear when trying the latest image:
Nov 11 2020
May 26 2020
This bug exists for remote-host as well.
May 25 2020
Apr 21 2020
I don't know, I just use wide-dhcpv6-client to get the prefix i get from my ISP routed to vyos.
I solved this myself by building my own vyos iso and just adding --custom-package "wide-dhcpv6-client". I configured wide-dhcpv6 myself.
It works fine for now.
Jan 30 2020
Oct 14 2019
Any update when this can be used live? This prevents me fro using vyos😟