Page MenuHomeVyOS Platform

roedie (Sander Klein)
User

Projects

User does not belong to any projects.

User Details

User Since
Jul 29 2022, 1:49 PM (121 w, 1 d)

Recent Activity

Jul 3 2024

roedie added a comment to T6445: config-sync should be saved on receiving peer, after auto-commit.

How about having a command on the primary router to trigger a save on the secondary router?

Jul 3 2024, 10:06 AM · VyOS Rolling

Feb 2 2024

roedie created T6010: Support setting multiple values in BGP path-attribute.
Feb 2 2024, 7:52 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

Feb 1 2024

roedie added a comment to T6004: Missing RPKI boot priority prevents it from loading.

I've upgraden from a self built 1.4-202312040739 to 1.4rc3

Feb 1 2024, 8:50 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta (1.4.0-epa2)

Jan 30 2024

roedie created T6004: Missing RPKI boot priority prevents it from loading.
Jan 30 2024, 3:59 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta (1.4.0-epa2)

Jan 22 2024

roedie added a comment to T5832: Allow setting the interface for excluded address in VRRP.

@Viacheslav Yes I will create a PR somewhere coming weeks.

Jan 22 2024, 8:06 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

Dec 17 2023

roedie claimed T5832: Allow setting the interface for excluded address in VRRP.
Dec 17 2023, 4:36 PM · VyOS 1.4 Sagitta (1.4.0-epa3)
roedie created T5832: Allow setting the interface for excluded address in VRRP.
Dec 17 2023, 4:36 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

Sep 11 2023

roedie added a comment to T5080: Disable conntrack by default.

I just tested this with a firewall config with no connection tracking config enabled, still the conntrack modules are loaded and used.

Sep 11 2023, 2:52 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

Jun 9 2023

roedie added a comment to T5267: Another corruption on upgrade.

On another router I've changed the base mounts to sync ie: mount /dev/md127 /boot -o remount,rw,noatime,sync before upgrading, but after a reboot it came back corrupted.

Jun 9 2023, 7:04 AM · VyOS 1.4 Sagitta

Jun 8 2023

roedie created T5267: Another corruption on upgrade.
Jun 8 2023, 2:07 PM · VyOS 1.4 Sagitta

Apr 3 2023

roedie added a comment to T5080: Disable conntrack by default.

I think one of the problems is that all tables are generated even if there are no rules in it.

Apr 3 2023, 7:26 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

Apr 1 2023

roedie created T5136: Possible config corruption on upgrade.
Apr 1 2023, 7:03 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta

Jan 12 2023

roedie committed rVYOSONEX0cdd2740f300: Backport: T4918: op_mode interfaces: Fix show int.
Jan 12 2023, 7:24 PM

Jan 11 2023

roedie added a comment to T4918: Odd show interface behavior.

@jestabro I've created the backport PR just now.

Jan 11 2023, 7:08 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie added a comment to T4918: Odd show interface behavior.

Will push the backport for 1.3 as well.

Jan 11 2023, 6:26 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie committed rVYOSONEX41b3ecca0eb1: T4918: op_mode interfaces: Fix show interfaces.
Jan 11 2023, 6:03 PM

Jan 7 2023

roedie changed the status of T4884: Missing a community6 in snmpd config from Unknown Status to Resolved.
Jan 7 2023, 8:57 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta

Jan 6 2023

roedie created T4918: Odd show interface behavior.
Jan 6 2023, 7:40 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta

Dec 31 2022

roedie created T4903: Support IPv6 addresses in "set system conntrack ignore".
Dec 31 2022, 3:53 PM · VyOS 1.4 Sagitta (1.4.0-epa3)

Dec 26 2022

roedie committed rVYOSONEX6a8306598218: T4809: radvd: Allow the use of AdvRASrcAddress.
Dec 26 2022, 6:32 PM

Dec 18 2022

roedie moved T4884: Missing a community6 in snmpd config from Open to Finished on the VyOS 1.4 Sagitta board.
Dec 18 2022, 6:57 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta

Dec 17 2022

roedie added a comment to T4809: radvd: Allow use of AdvRASrcAddress.

Backport for this PR. I am not running 1.3 so YMMV.

Dec 17 2022, 5:10 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie updated subscribers of T4884: Missing a community6 in snmpd config.

Had a quick look at the 1.3 implementation and it seems the bug isn't present there. So no back-porting needed @c-po

Dec 17 2022, 4:52 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie committed rVYOSONEX03d49fe0fc50: T4884: snmpd: add community6 fallback.
Dec 17 2022, 7:27 AM
roedie committed rVYOSONEX13071a4a534b: T4809: radvd: Allow the use of AdvRASrcAddress.
Dec 17 2022, 7:20 AM

Dec 16 2022

roedie added a comment to T4809: radvd: Allow use of AdvRASrcAddress.

After screwin up the previous PR:
https://github.com/vyos/vyos-1x/pull/1712

Dec 16 2022, 10:00 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie added a comment to T4884: Missing a community6 in snmpd config.

https://github.com/vyos/vyos-1x/pull/1711

Dec 16 2022, 9:04 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie changed the status of T4884: Missing a community6 in snmpd config from Open to In progress.
Dec 16 2022, 8:54 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie claimed T4884: Missing a community6 in snmpd config.
Dec 16 2022, 8:53 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie created T4884: Missing a community6 in snmpd config.
Dec 16 2022, 8:53 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta

Nov 23 2022

roedie closed T4835: SNMPD configuration incorrect for IPv6 as Resolved.
Nov 23 2022, 7:18 PM · VyOS 1.4 Sagitta
roedie committed rVYOSONEX96b8107b4379: T4835: snmpd: Fix copy/paste error in snmpd.conf.
Nov 23 2022, 7:07 PM
roedie added a comment to T4794: show firewall name <name> - Can't use .items() on a list.

This task can be closed since the PR is merged.

Nov 23 2022, 6:43 PM · VyOS 1.4 Sagitta
roedie changed the status of T4526: keepalived-fifo.py unable to load config from Unknown Status to Resolved.
Nov 23 2022, 6:23 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
roedie moved T4835: SNMPD configuration incorrect for IPv6 from Open to Finished on the VyOS 1.4 Sagitta board.

https://github.com/vyos/vyos-1x/pull/1675

Nov 23 2022, 6:22 PM · VyOS 1.4 Sagitta
roedie changed the status of T4835: SNMPD configuration incorrect for IPv6 from Open to In progress.
Nov 23 2022, 6:14 PM · VyOS 1.4 Sagitta
roedie created T4835: SNMPD configuration incorrect for IPv6.
Nov 23 2022, 6:14 PM · VyOS 1.4 Sagitta

Nov 16 2022

roedie committed rVYOSONEX9faa60a78d8f: T4794: Fix show show firewall name.
Nov 16 2022, 7:34 PM
roedie added a comment to T4794: show firewall name <name> - Can't use .items() on a list.

https://github.com/vyos/vyos-1x/pull/1661

Nov 16 2022, 7:30 PM · VyOS 1.4 Sagitta

Nov 8 2022

roedie changed the status of T4809: radvd: Allow use of AdvRASrcAddress from Open to In progress.
Nov 8 2022, 8:58 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie added a comment to T4809: radvd: Allow use of AdvRASrcAddress.

I've added PR https://github.com/vyos/vyos-1x/pull/1649 for review. Not tested yet, I want to know if I'm on the right path.

Nov 8 2022, 8:57 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
roedie created T4809: radvd: Allow use of AdvRASrcAddress.
Nov 8 2022, 8:47 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta

Oct 31 2022

roedie committed rVYOSONEX82425099edcc: keepalived: T4526: keepalived-fifo.py unable to load config.
Oct 31 2022, 12:05 PM

Oct 30 2022

roedie added a comment to T4526: keepalived-fifo.py unable to load config.

Done: https://github.com/vyos/vyos-1x/pull/1630

Oct 30 2022, 2:53 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta

Oct 10 2022

roedie changed the status of T4526: keepalived-fifo.py unable to load config from Resolved to Unknown Status.
Oct 10 2022, 9:18 AM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
roedie added a comment to T4526: keepalived-fifo.py unable to load config.

@florin If this is needed I'll make a pull request coming week.

Oct 10 2022, 9:17 AM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta

Sep 18 2022

roedie claimed T4639: Crowdsec in VyOS (Blocking only).
Sep 18 2022, 5:57 PM · VyOS Rolling

Sep 17 2022

roedie moved T4526: keepalived-fifo.py unable to load config from Open to Finished on the VyOS 1.4 Sagitta board.
Sep 17 2022, 8:34 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
roedie moved T4665: Keepalived cannot use same VRID for VRRPv2 and VRRPv3 from Open to Finished on the VyOS 1.4 Sagitta board.
Sep 17 2022, 8:31 PM · VyOS 1.4 Sagitta
roedie closed T4665: Keepalived cannot use same VRID for VRRPv2 and VRRPv3 as Resolved.

It works for me (tm)

Sep 17 2022, 8:30 PM · VyOS 1.4 Sagitta

Sep 12 2022

roedie committed rVYOSONEX803f1bdc4ae1: T4665: Keepalived: Fix interface names.
Sep 12 2022, 6:07 AM

Sep 10 2022

roedie added a comment to T1185: Firewall rulesets are ignored in RFC-compliant VRRP setups.
In T1185#133944, @sdev wrote:

A similar syntax change is in progress as part of a larger firewall refactor. It should reach the 1.4 branch in a week or so. It should allow for any valid existing interface name.

Sep 10 2022, 6:31 PM
roedie added a comment to T1185: Firewall rulesets are ignored in RFC-compliant VRRP setups.

Or, come to think, some free from of set interfaces unknown <typeyourownname> firewall local name <ruleset> where you can only config stuff that doesn't really depend on an interface.

Sep 10 2022, 6:17 PM
roedie added a comment to T1185: Firewall rulesets are ignored in RFC-compliant VRRP setups.

Just a suggestion, would it be a weird idea to move the firewall config from the interface section to the firewall section? A bit like the zone config. So something like:

Sep 10 2022, 6:09 PM

Sep 8 2022

roedie closed T4526: keepalived-fifo.py unable to load config as Resolved.

I've tested this and it seems to work correctly.

Sep 8 2022, 5:11 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
roedie added a comment to T4665: Keepalived cannot use same VRID for VRRPv2 and VRRPv3.

The interface naming is incorrect after this change for the second interface with the same VRID. It breaks show int.

Sep 8 2022, 2:54 PM · VyOS 1.4 Sagitta

Sep 2 2022

roedie added a comment to T3933: The firewall does not filter incoming traffic on the interface with vrf..

In case of filtering on a VRF, would it be an idea to use the MAC address instead of the interface name in the rule?

Sep 2 2022, 7:45 PM · Restricted Project, VyOS 1.3 Equuleus (1.3.9), VyOS 1.4 Sagitta (1.4.0-GA), Restricted Project
roedie added a comment to T4665: Keepalived cannot use same VRID for VRRPv2 and VRRPv3.

https://github.com/vyos/vyos-documentation/pull/845 for docs

Sep 2 2022, 7:13 PM · VyOS 1.4 Sagitta
roedie added a comment to T4665: Keepalived cannot use same VRID for VRRPv2 and VRRPv3.

I will modify the docs.

Sep 2 2022, 10:17 AM · VyOS 1.4 Sagitta

Sep 1 2022

roedie committed rVYOSONEX1eff4f4da6eb: T4665: Keepalived: Allow same VRID on interface.
Sep 1 2022, 5:29 PM
roedie added a comment to T4665: Keepalived cannot use same VRID for VRRPv2 and VRRPv3.

I do see I need to update the docs. Will do if this change is going to be merged.

Sep 1 2022, 9:46 AM · VyOS 1.4 Sagitta
roedie created T4665: Keepalived cannot use same VRID for VRRPv2 and VRRPv3.
Sep 1 2022, 9:16 AM · VyOS 1.4 Sagitta

Aug 24 2022

roedie committed rVYOSONEX5fa3468ff2d6: BGP: T4634: Allow configuration of disable-connected-check.
Aug 24 2022, 5:41 PM
roedie committed rVYOSONEXed5fb0645367: keepalived: T4526: keepalived-fifo.py unable to load config.
Aug 24 2022, 5:26 PM

Aug 23 2022

roedie added a comment to T4635: Add zebra option ip nht resolve-via-default as default option.

While reading the FRR docs I see it is only used in BGP and nowhere else. That would make something like set protocols bgp parameters next-hop-track resolve-via-default logical.

Aug 23 2022, 4:13 PM · VyOS Rolling
roedie created T4639: Crowdsec in VyOS (Blocking only).
Aug 23 2022, 2:18 PM · VyOS Rolling
roedie added a comment to T4635: Add zebra option ip nht resolve-via-default as default option.

@Viacheslav Do you just want this option added to the zebra config, or you it also be possible to enable/disable this via the conf mode?

Aug 23 2022, 1:02 PM · VyOS Rolling

Aug 22 2022

roedie added a comment to T4526: keepalived-fifo.py unable to load config.

https://github.com/vyos/vyos-1x/pull/1486 try#2

Aug 22 2022, 7:51 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
roedie added a comment to T4526: keepalived-fifo.py unable to load config.

I've create a PR which does the retry part. It retries 10 time every 0.5 seconds until it succeeds or it's out of retries.

Aug 22 2022, 4:14 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
roedie added a comment to T4526: keepalived-fifo.py unable to load config.

The problem here seems to be that keepalived is started before the complete commit is finished. So conf.get_config_dict() fails to get the config.

Aug 22 2022, 2:21 PM · vyos-keepalived, vyatta-vrrp, VyOS 1.4 Sagitta
roedie added a comment to T4633: Change keepalived to v2.2.7.

Created PR for this https://github.com/vyos/vyos-build/pull/256

Aug 22 2022, 1:20 PM · VyOS 1.4 Sagitta
roedie added a comment to T4634: Bgp neighbor disable-connected-check does not work.

Hi, I've created https://github.com/vyos/vyos-1x/pull/1483 for this one.

Aug 22 2022, 11:28 AM · VyOS 1.4 Sagitta

Aug 21 2022

roedie created T4633: Change keepalived to v2.2.7.
Aug 21 2022, 7:04 PM · VyOS 1.4 Sagitta

Jul 31 2022

roedie created T4581: 'show system cpu' not working.
Jul 31 2022, 7:42 PM · VyOS 1.4 Sagitta