User Details
User Details
- User Since
- Jun 9 2021, 3:23 PM (149 w, 2 d)
Yesterday
Yesterday
n.fort added a project to T5153: OpenConnect route restriction via iptables is ignored: VyOS 1.3 Equuleus (1.3.7).
n.fort added a comment to T5153: OpenConnect route restriction via iptables is ignored.
And do you have similar setup and situation in newer version?
Thu, Apr 18
Thu, Apr 18
n.fort added a comment to T5153: OpenConnect route restriction via iptables is ignored.
Output seems to be for VyOS 1.3, rather than 1.5
Can you show VyOS version @PeppyH ?
Wed, Apr 17
Wed, Apr 17
n.fort added a comment to T6247: Add CGN "full cone" EIF support per RFC6888 REQ-7.
I saw such repository more than once, but it seems that it has been abandoned. Last commit is dated two years ago.
n.fort changed the status of T5535: disable-directed-broadcast should be moved to firewall global-options from Confirmed to Needs testing.
n.fort changed the status of T6191: Policy Route TCP-MSS Behavior Different from 1.3.x from Confirmed to Needs testing.
Tue, Apr 16
Tue, Apr 16
n.fort added a comment to T6191: Policy Route TCP-MSS Behavior Different from 1.3.x.
n.fort changed Version from 1.4.0-epa2 to 1.4.0-epa2, 1.5-rolling-202404141045 on T6191: Policy Route TCP-MSS Behavior Different from 1.3.x.
n.fort changed the status of T6191: Policy Route TCP-MSS Behavior Different from 1.3.x from Open to Confirmed.
Mon, Apr 15
Mon, Apr 15
n.fort added a comment to T5535: disable-directed-broadcast should be moved to firewall global-options.
n.fort changed the status of T5535: disable-directed-broadcast should be moved to firewall global-options from Open to Confirmed.
Fri, Apr 12
Fri, Apr 12
n.fort moved T6213: Firewall group constraints from Need Triage to Finished on the VyOS 1.4 Sagitta board.
n.fort moved T6213: Firewall group constraints from Need Triage to Finished on the VyOS 1.5 Circinus board.
Wed, Apr 10
Wed, Apr 10
n.fort changed the status of T6216: Upgrade error from 1.3 to 1.4 - Firewall using character '+', a subtask of T5938: Migration fail root task for 1.4-rc, from Confirmed to In progress.
n.fort changed the status of T6216: Upgrade error from 1.3 to 1.4 - Firewall using character '+' from Confirmed to In progress.
n.fort added a comment to T6216: Upgrade error from 1.3 to 1.4 - Firewall using character '+'.
Tue, Apr 9
Tue, Apr 9
n.fort changed the status of T6216: Upgrade error from 1.3 to 1.4 - Firewall using character '+' from Open to Confirmed.
n.fort added a comment to T6213: Firewall group constraints.
n.fort added a comment to T6214: Error when using some constraints.
n.fort renamed T6214: Error when using some constraints from Error when using some contraints to Error when using some constraints.
Mon, Apr 8
Mon, Apr 8
n.fort moved T6068: dhcp server: allow switching between load-balanced and hotspare mode from Need Triage to Finished on the VyOS 1.5 Circinus board.
n.fort moved T6068: dhcp server: allow switching between load-balanced and hotspare mode from Need Triage to Finished on the VyOS 1.4 Sagitta board.
n.fort closed T6068: dhcp server: allow switching between load-balanced and hotspare mode as Resolved.
n.fort created T6213: Firewall group constraints.
Fri, Apr 5
Fri, Apr 5
n.fort changed the status of T6205: ipoe: error in migration script logic while renaming mac-address to mac node, a subtask of T5938: Migration fail root task for 1.4-rc, from Open to Confirmed.
n.fort changed the status of T6205: ipoe: error in migration script logic while renaming mac-address to mac node from Open to Confirmed.
Wed, Apr 3
Wed, Apr 3
n.fort added a comment to T6171: dhcp server fail-over - Rename fail-over node.
PR for Sagitta: https://github.com/vyos/vyos-1x/pull/3239
n.fort added a comment to T6068: dhcp server: allow switching between load-balanced and hotspare mode.
PR for Sagitta: https://github.com/vyos/vyos-1x/pull/3239
n.fort added a comment to T6200: Error on adding a wildcard interface.
Try with:
Mon, Mar 25
Mon, Mar 25
n.fort added a comment to T6171: dhcp server fail-over - Rename fail-over node.
PR for current: https://github.com/vyos/vyos-1x/pull/3188
n.fort changed the status of T6171: dhcp server fail-over - Rename fail-over node from Open to In progress.
Fri, Mar 22
Fri, Mar 22
n.fort moved T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity from Need Triage to Finished on the VyOS 1.5 Circinus board.
n.fort closed T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity, a subtask of T5938: Migration fail root task for 1.4-rc, as Resolved.
n.fort added a comment to T6068: dhcp server: allow switching between load-balanced and hotspare mode.
n.fort changed the status of T6068: dhcp server: allow switching between load-balanced and hotspare mode from Open to In progress.
Mar 20 2024
Mar 20 2024
n.fort added a project to T6147: Conntrack not working as expected with global state-policy: VyOS 1.5 Circinus.
n.fort changed the status of T6147: Conntrack not working as expected with global state-policy from Open to Confirmed.
Mar 19 2024
Mar 19 2024
n.fort changed the status of T6136: Configuring a dynamic address group, config script did not check whether the group was created from In progress to Needs testing.
Mar 18 2024
Mar 18 2024
n.fort changed the status of T6136: Configuring a dynamic address group, config script did not check whether the group was created from Confirmed to In progress.
n.fort added a comment to T6136: Configuring a dynamic address group, config script did not check whether the group was created.
And a simple note for your usage @wenzk
Change
set firewall ipv4 name WAN_IN rule 30 icmp
to this:
set firewall ipv4 name WAN_IN rule 30 protocol icmp
Mar 15 2024
Mar 15 2024
n.fort added a comment to T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity.
PR for 1.5: https://github.com/vyos/vyos-1x/pull/3137
n.fort changed the status of T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity, a subtask of T5938: Migration fail root task for 1.4-rc, from Open to Confirmed.
n.fort changed the status of T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity from Open to Confirmed.
Mar 8 2024
Mar 8 2024
n.fort added a comment to T6110: dhcp server - If failover is defined, range is required.
n.fort changed the status of T6110: dhcp server - If failover is defined, range is required from Open to Confirmed.
Mar 6 2024
Mar 6 2024
n.fort changed the status of T6094: Destination Nat not Making Firewall Rules from In progress to Needs testing.
n.fort changed the status of T6061: connection-status nat destination firewall filter not working in 1.4.0-epa1 from In progress to Needs testing.
n.fort changed the status of T6075: Applying firewall rules with a non-existent interface group from In progress to Needs testing.
Mar 5 2024
Mar 5 2024
n.fort added a comment to T6075: Applying firewall rules with a non-existent interface group.
n.fort changed the status of T6075: Applying firewall rules with a non-existent interface group from Open to In progress.
n.fort changed the status of T6094: Destination Nat not Making Firewall Rules from Open to In progress.
n.fort raised the priority of T6061: connection-status nat destination firewall filter not working in 1.4.0-epa1 from Normal to High.
n.fort changed the status of T6061: connection-status nat destination firewall filter not working in 1.4.0-epa1 from Open to In progress.
n.fort added a comment to T6094: Destination Nat not Making Firewall Rules.
Mar 4 2024
Mar 4 2024
n.fort added a comment to T6094: Destination Nat not Making Firewall Rules.
Duplicated: https://vyos.dev/T6061
n.fort changed the status of T6086: NAT does not work with network-groups from In progress to Needs testing.
n.fort changed the status of T6086: NAT does not work with network-groups from Confirmed to In progress.
n.fort added a comment to T6086: NAT does not work with network-groups.
Feb 23 2024
Feb 23 2024
n.fort added a comment to T6054: load-balancing wan - doesn't configure a list of ports .
n.fort changed the status of T6054: load-balancing wan - doesn't configure a list of ports from Open to Confirmed.
Feb 20 2024
Feb 20 2024
n.fort added a project to T6049: wwan didn't setup static IP addres and MTU on wwan0: VyOS 1.4 Sagitta.
Feb 16 2024
Feb 16 2024
n.fort moved T6019: Bump nftables and libnftnl version from Need Triage to Finished on the VyOS 1.4 Sagitta board.
n.fort moved T6009: Firewall - Time not working properly when not using UTC from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Feb 12 2024
Feb 12 2024
n.fort changed the status of T6019: Bump nftables and libnftnl version from In progress to Needs testing.
n.fort changed the status of T6009: Firewall - Time not working properly when not using UTC from In progress to Needs testing.
n.fort added a comment to T6019: Bump nftables and libnftnl version.
PR for fix in vyos-build: https://github.com/vyos/vyos-build/pull/501
PR for smoketest (modified because of change in build): https://github.com/vyos/vyos-1x/pull/2991
n.fort added a comment to T6009: Firewall - Time not working properly when not using UTC.
PR for fix in vyos-build: https://github.com/vyos/vyos-build/pull/501
PR for smoketest (modified because of change in build): https://github.com/vyos/vyos-1x/pull/2991
Feb 6 2024
Feb 6 2024
Feb 5 2024
Feb 5 2024
n.fort added a comment to T445: iptables error with policy routing.
What version? Can you upgrade to 1.4?
n.fort changed the status of T6009: Firewall - Time not working properly when not using UTC from Confirmed to In progress.
Feb 2 2024
Feb 2 2024
n.fort changed the status of T6009: Firewall - Time not working properly when not using UTC from Open to Confirmed.
n.fort updated the task description for T6009: Firewall - Time not working properly when not using UTC.