OK, local-route actually worked!
Thanks!
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed Advanced Search
Advanced Search
Advanced Search
Feb 14 2024
Feb 14 2024
Jan 3 2024
Jan 3 2024
danielpo added a comment to T5892: container network interface and policy fails to apply after reboot.
Dec 30 2023
Dec 30 2023
I've tinkered with this a bit , but a problem I have is that I need multiple ip addresses on the outgoing interface(s). I understand that Jool takes all ports, so It's needed for everything to work properly.
On my own WAN interface, this is not a problem, I can just assign another ip from my ISP.
Dec 23 2023
Dec 23 2023
Actually, it doesn't! :(
{F4050258}
That's great!
I tried running make interface_definitions in vyos-1x and copy in the changed files into my vyos install, but the files kept disappearing when rebooting, and couldn't figure out how to build an iso with your vyos 1-x repo.
Dec 22 2023
Dec 22 2023
if you are running the netfilter implementation, I think the iptables mangle is handled automatically.(I verified this by changing my Jool to netfilter and removed these lines below:
ip6tables -t mangle -A PREROUTING --destination 64:ff9b::/96 -j JOOL --instance default iptables -t mangle -A PREROUTING --destination 172.21.8.202 -p tcp --dport 1:65535 -j JOOL --instance default iptables -t mangle -A PREROUTING --destination 172.21.8.202 -p udp --dport 1:65535 -j JOOL --instance default iptables -t mangle -A PREROUTING --destination 172.21.8.202 -p icmp -j JOOL --instance default
Dec 21 2023
Dec 21 2023
Is it possible to add support for policy routing?
Mar 18 2022
Mar 18 2022
Sure, but its not being applied in the pdns recursor so I cant use static host mapping for ipv6 in my network, only locally on the vyos host. (It works fine with ipv4).
Thanks, Not really sure what happened, but I deleted config.boot and rebooted, Now it works to add a policy again.
Feb 11 2022
Feb 11 2022
Jan 31 2022
Jan 31 2022
Thanks!😀
Jan 30 2022
Jan 30 2022
Jan 28 2022
Jan 28 2022
Hi again, I found another bug, if I have two policy routes with the same table it tries to create the table twice, and it doesn't work because the table is already created:
Jan 27 2022
Jan 27 2022
Hi,
I applied your new policy-route.py manually, and now my ipv6 pbr works again!! Thanks a lot!
Sep 28 2021
Sep 28 2021
It works now! Thanks!
Sep 24 2021
Sep 24 2021
Sep 9 2021
Sep 9 2021
Thanks, I got it working now.
Sep 8 2021
Sep 8 2021
Hello, Sorry, but I tried this I get "Invalid certificate on CA certificate "test"
Sep 7 2021
Sep 7 2021
Jan 20 2021
Jan 20 2021
Nov 21 2020
Nov 21 2020
Thanks, works now.
Nov 20 2020
Nov 20 2020
authentication {
password xxxx
username xxxxx
}
device-type tun
encryption {
cipher aes256
}
firewall {
in {
ipv6-name DENYv6_IN
name DENY_IN
}
local {
ipv6-name DENYv6_IN
name DENY_IN
}
}
hash sha256
mode client
openvpn-option "key-direction 1"
openvpn-option route-nopull
persistent-tunnel
protocol tcp-active
remote-host 1.2.3.4
remote-host 1.2.3.5
remote-port 1195
tls {
ca-cert-file /config/auth/cert.ca
auth-file /config/auth/tls-auth
tls-version-min 1.2
}Now this error appear when trying the latest image:
Nov 11 2020
Nov 11 2020
danielpo renamed T3060: OpenVPN virtual interface not coming up after upgrade from OpenVPN not working in vyos-1.3-rolling-20201101 and afte to OpenVPN not working in vyos-1.3-rolling-20201101 and after.
May 26 2020
May 26 2020
This bug exists for remote-host as well.
May 25 2020
May 25 2020
Apr 21 2020
Apr 21 2020
I don't know, I just use wide-dhcpv6-client to get the prefix i get from my ISP routed to vyos.
I solved this myself by building my own vyos iso and just adding --custom-package "wide-dhcpv6-client". I configured wide-dhcpv6 myself.
It works fine for now.
Jan 30 2020
Jan 30 2020
Oct 14 2019
Oct 14 2019
Any update when this can be used live? This prevents me fro using vyos😟
Apr 18 2019
Apr 18 2019