Page MenuHomeVyOS Platform
People haakon.nore

haakon.nore (Haakon Nore)
User

Projects

User does not belong to any projects.

User Details

User Since
Aug 21 2020, 1:05 PM (251 w, 4 d)

Recent Activity
View All

May 15 2025

haakon.nore awarded T7343: VPN IPsec add the ability to exclude IPv6 traffic selectors for VTI interfaces a 100 token.
May 15 2025, 11:38 AM · VyOS 1.4 Sagitta (1.4.3), VyOS 1.5 Circinus, VyOS Rolling

Jan 26 2025

haakon.nore created T7090: HTTP API upstream task timeout (504 Gateway Timeout ) .
Jan 26 2025, 12:49 PM · VyOS 1.5 Circinus, VyOS Rolling, VyOS 1.4 Sagitta

Nov 7 2024

haakon.nore removed a watcher for Global Notifications: haakon.nore.
Nov 7 2024, 5:57 AM
haakon.nore added a watcher for Global Notifications: haakon.nore.
Nov 7 2024, 5:57 AM

Sep 5 2024

haakon.nore added a comment to T6574: vti-up-down script brings down VTIs when Child SA is renegotiated or reestablished.

This time it seems like the remote side initiate a new IKE_SA without properly closing the old one. This tricked strongswan to keep both, but when the old one timed out. the vti-up-down script killed the VTI.

Sep 5 2024, 11:03 PM · VyOS Rolling, Bugs
haakon.nore added a comment to T6574: vti-up-down script brings down VTIs when Child SA is renegotiated or reestablished.

Just to add some context. This keeps on happening regularly, but for some reason more often on our trans-atlantic VPNs. Maybe once a week( it varies).

Sep 5 2024, 10:34 PM · VyOS Rolling, Bugs

Jul 13 2024

haakon.nore created T6574: vti-up-down script brings down VTIs when Child SA is renegotiated or reestablished.
Jul 13 2024, 10:21 AM · VyOS Rolling, Bugs

Jun 25 2024

haakon.nore added a comment to T260: Redirect traffict between two L3 interfaces.

No plan on fixing on 1.4?

Jun 25 2024, 8:28 AM

May 24 2024

haakon.nore added a comment to T6393: Port mirroring to tunnel interface fails during boot.

FYI: The configuration is valid and works. It just fails during boot.

May 24 2024, 7:06 AM · VyOS Rolling, Bugs
haakon.nore created T6393: Port mirroring to tunnel interface fails during boot.
May 24 2024, 6:56 AM · VyOS Rolling, Bugs

May 1 2024

haakon.nore created T6287: Add API destination port number for secondary firewall in config sync.
May 1 2024, 12:12 AM · VyOS 1.4 Sagitta (1.4.0-epa3)

Apr 12 2024

haakon.nore added a comment to T6148: Reset vpn ipsec command breaks tunnel and does not reset SAs that are down.

Here is an example of a perferctly valid vyos vpn config that will never recover a child SA when resetting it.

Apr 12 2024, 7:54 AM · VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus
haakon.nore added a comment to T6148: Reset vpn ipsec command breaks tunnel and does not reset SAs that are down.

In 1.4 and 1.5 command reset vpn ipsec has a termination meaning.

No, it says reset, both the command, and auto complete output. It does not say terminate or clear. If you run a reset you do expect it to restart or re-populate in one way or another, not just stop working completley.

Apr 12 2024, 7:26 AM · VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus

Mar 29 2024

haakon.nore added a comment to T6148: Reset vpn ipsec command breaks tunnel and does not reset SAs that are down.

Not sure if it is meaningful to create a new operational vyos command "initiate" or re-write the reset to be consistent with older VyOS.

Mar 29 2024, 7:57 PM · VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus

Mar 20 2024

haakon.nore created T6148: Reset vpn ipsec command breaks tunnel and does not reset SAs that are down.
Mar 20 2024, 9:56 PM · VyOS 1.4 Sagitta (1.4.1), VyOS 1.5 Circinus

Nov 3 2021

haakon.nore awarded T3294: Images for Dell VEP platform use no default baud rate for this platform a Like token.
Nov 3 2021, 1:12 PM · VyOS 1.2 Crux (VyOS 1.2.9)

Feb 19 2021

haakon.nore added a comment to T3341: Wrong behavior of the "reset vpn ipsec-peer XXX tunnel XXX" command.

I can confirm it is broken for

reset vpn ipsec-peer XXX

too when you run policy-based VPNs.
Peer reset log:

Feb 19 2021, 10:46 AM · VyOS 1.2 Crux (VyOS 1.2.9), VyOS 1.3 Equuleus (1.3.0-epa3)