Page MenuHomeVyOS Platform

Add source route option to vti interface


I am missing a CLI option to attach a source route to a vti interface like it is possible for other interfaces.


hsychla@srt01# set interfaces ethernet eth1 policy route 
Possible completions:
   <text>       IPv4 policy route ruleset for interface


hsychla@srt01# set interfaces vti vti1 
Possible completions:
+  address      IP address
   description  Description
   disable      Disable interface
 > firewall     Firewall options
 > ip           IPv4 routing parameters
 > ipv6         IPv6 routing parameters
   mtu          Maximum Transmission Unit (MTU)
   redirect     Incoming packet redirection destination
 > traffic-policy
                Traffic-policy for interface

According to @dmbaturin this might be an oversight rather than intentional.

Can somebody confirm?

And is there a possible workaround like adding manual iptables rules? ==> yes, add what you need to /config/scripts/vyatta-postconfig-bootup.script


Difficulty level
Hard (possibly days)

Event Timeline

hsychla updated the task description. (Show Details)

Just in case somebody finds this through google...

A workaround is to create the source route policy as always and attach it to the interface using iptables directly

Create policy:

set policy route source_route rule 10 set table '10'
set policy route source_route rule 10 source address ''
set protocols static table 10 route next-hop ''

Attach to vti inteface:
in /config/scripts/vyatta-postconfig-bootup.script:

iptables -t mangle -A VYATTA_FW_IN_HOOK -i vti0 -j source_route
syncer triaged this task as Normal priority.Aug 1 2017, 5:08 AM
syncer changed the edit policy from "Task Author" to "Custom Policy".
syncer added a project: VyOS 1.2 Crux.
syncer set Version to -.
syncer changed Difficulty level from Easy (less than an hour) to Hard (possibly days).
syncer edited subscribers, added: Maintainers, Community, Active contributors; removed: dmbaturin.
syncer added a subscriber: UnicronNL.

@UnicronNL i think we need review this and move it to backlog if all clear

syncer moved this task from Need Triage to Backlog on the VyOS 1.2 Crux board.
syncer added a subscriber: syncer.

@UnicronNL think we need to implement this

syncer changed the subtype of this task from "Task" to "Feature Request".Oct 18 2018, 5:47 AM

PBR present for vti, VyOS 1.3-rolling-202007270117

vyos@r1-roll# set interfaces vti vti1 policy route 
Possible completions:
   <text>       IPv4 policy route ruleset for interface

We can close it.