Page MenuHomeVyOS Platform
Feed Advanced Search

Aug 29 2021

trystan added a comment to T3782: Ingress Shaping with IFB No Longer Functional with 1.3.

I can confirm that applying

Aug 29 2021, 5:43 PM · VyOS 1.3 Equuleus (1.3.0-epa1), VyOS 1.4 Sagitta

Aug 28 2021

trystan created T3782: Ingress Shaping with IFB No Longer Functional with 1.3.
Aug 28 2021, 1:28 AM · VyOS 1.3 Equuleus (1.3.0-epa1), VyOS 1.4 Sagitta

Jul 12 2021

trystan added a comment to T3671: Webproxy not functional in 1.2.8 update.
trystan@vyeos# commit
[ service webproxy ]
Restarting squid (via systemctl): squid.service.
Jul 12 2021, 8:09 PM · VyOS 1.2 Crux (VyOS 1.2.9)

Jul 8 2021

trystan created T3671: Webproxy not functional in 1.2.8 update.
Jul 8 2021, 8:51 PM · VyOS 1.2 Crux (VyOS 1.2.9)

Jun 17 2021

trystan added a comment to T3362: 1.3 - RC1 ifb redirect failing to commit.

The same config now commits however the fq-codel shaper that was functional in 1.2.7 that's applied to it does not activate in 1.3.0-rc4

Jun 17 2021, 3:46 AM · VyOS 1.3 Equuleus (1.3.0-epa1)

Feb 27 2021

trystan created T3362: 1.3 - RC1 ifb redirect failing to commit.
Feb 27 2021, 1:41 AM · VyOS 1.3 Equuleus (1.3.0-epa1)

Nov 2 2019

trystan added a comment to T921: Encrypted DNS.

I've used the following script to get the argo tunnel running and encrypting dns, i then use 127.0.0.1 as the system nameserver and as the dns forwarder's only upstream nameserver. Works well so far but the integration is lacking with the vyos config

Nov 2 2019, 7:06 PM · VyOS 1.4 Sagitta

Sep 10 2019

trystan added a comment to T921: Encrypted DNS.

Just adding a suggestion since cloudflared (argo tunnel) is open source : https://github.com/cloudflare/cloudflared

Sep 10 2019, 3:22 PM · VyOS 1.4 Sagitta
trystan added a comment to T1644: Wireguard listen ports lower than 1024.

I was thinking some more along the lines of stunnel and wrapping wireguard that way but it would require additional packaging and integration on the vyos side. Luckily whatever outbound filtering is in place for this specific implementation seems to be relatively basic and limited to port blocking/whitelisting.

Sep 10 2019, 12:51 AM · Rejected

Sep 9 2019

trystan added a comment to T1644: Wireguard listen ports lower than 1024.

Yes, I understand that. The primary request is to be able to set a listen port lower than 1024 without having to create a destination NAT rule to get the same result.

Sep 9 2019, 9:29 PM · Rejected
trystan added a comment to T1644: Wireguard listen ports lower than 1024.
set interfaces wireguard wg1 port 443
Sep 9 2019, 9:14 PM · Rejected
trystan created T1644: Wireguard listen ports lower than 1024.
Sep 9 2019, 7:54 PM · Rejected

Dec 18 2018

trystan added a comment to T1087: Firewall commands are missing in wireguard interface CLI.

Everything is still working/functioning in the latest RC (1.2.0-rc11)

Dec 18 2018, 1:51 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux ( VyOS 1.2.0-rc11)
trystan added a comment to T1098: mmc_block, sdhci, and sdhci_acpi modules for kernel.

I've had a chance to retest with 1.2.0-rc11 and everything works as intended. Thank you!

Dec 18 2018, 1:49 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-EPA2)

Dec 12 2018

trystan renamed T1098: mmc_block, sdhci, and sdhci_acpi modules for kernel from mmc_block, sdhci, and sdhci_api modules for kernel to mmc_block, sdhci, and sdhci_acpi modules for kernel.
Dec 12 2018, 10:14 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-EPA2)
trystan created T1098: mmc_block, sdhci, and sdhci_acpi modules for kernel.
Dec 12 2018, 10:13 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-EPA2)
trystan added a comment to T1087: Firewall commands are missing in wireguard interface CLI.

I've installed on two hosts (virtual/cloud instance, and 1 physical) in,local,out rules all work as expected with default drop and firewall state-policy establish/related accepted.

Dec 12 2018, 3:42 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux ( VyOS 1.2.0-rc11)

Dec 6 2018

trystan created T1087: Firewall commands are missing in wireguard interface CLI.
Dec 6 2018, 10:07 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux ( VyOS 1.2.0-rc11)

Nov 30 2018

trystan added a comment to T50: Better support for tcp-mss.

Would also like to see this available for Wireguard interfaces as I'm hitting this when using PBR/NATing.

Nov 30 2018, 6:20 PM · VyOS 1.3 Equuleus (1.3.0-epa1)

Nov 18 2018

trystan created T1024: Policy Based Routing by DSCP.
Nov 18 2018, 10:22 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta