Page MenuHomeVyOS Platform
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Oct 24 2020

c-po closed T3009: vpn l2tp remoteaccess require option broken as Resolved.
Oct 24 2020, 3:19 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T3009: vpn l2tp remoteaccess require option broken.

Hi @drac, good catch and nice reverse engineering of our code.

Oct 24 2020, 3:19 PM · VyOS 1.3 Equuleus (1.3.0)
c-po claimed T3009: vpn l2tp remoteaccess require option broken.
Oct 24 2020, 3:18 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T3005: Intel: update out-of-tree drivers, i40e driver warning.

Driver will be included in next rolling ISO

Oct 24 2020, 1:44 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T3005: Intel: update out-of-tree drivers, i40e driver warning as Resolved.
Oct 24 2020, 1:43 PM · VyOS 1.3 Equuleus (1.3.0)
c-po claimed T3005: Intel: update out-of-tree drivers, i40e driver warning.
Oct 24 2020, 1:40 PM · VyOS 1.3 Equuleus (1.3.0)

Oct 22 2020

c-po placed T2781: Create op-mode top-level wrapper for ssh command up for grabs.
Oct 22 2020, 8:01 PM · VyOS 1.3 Equuleus (1.3.7)
c-po added a comment to T2781: Create op-mode top-level wrapper for ssh command.

Besides the command proposal there is a common issue with how we build op-mode commands. The best example is the ping op-mode command where and artifical node.tag folder is created which links (ln -s) back to itself.

Oct 22 2020, 8:01 PM · VyOS 1.3 Equuleus (1.3.7)
c-po added a comment to T2321: VRF support for SSH, NTP, SNMP service.

The current NTP config always binds to localhost and localhost is not a part of the mgmt VRF thus this error message.

Oct 22 2020, 7:57 PM · VyOS 1.3 Equuleus (1.3.0)

Oct 19 2020

c-po updated the task description for T2995: Enhancements/bugfixes for vyos_dict_search().
Oct 19 2020, 7:43 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2992: Automatically verify sha256 checksum on ISO download as Resolved.
Oct 19 2020, 7:34 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T3000: Mismatch between "prefix-length" and "preference" in dhcp6-server syntax as Resolved.
Oct 19 2020, 6:56 PM · VyOS 1.3 Equuleus (1.3.0)
c-po renamed T2994: Migrate OpenVPN interfaces to get_config_dict() syntax from Migrate OpenVPN interfaces got get_config_dict() syntax to Migrate OpenVPN interfaces to get_config_dict() syntax.
Oct 19 2020, 6:53 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit.

Unfortunately I can not reproduce this issue on my test system and also our smoketests (https://github.com/vyos/vyos-1x/blob/current/smoketest/scripts/cli/test_interfaces_openvpn.py) do not trigger the bug when run locally on the VyOS device by calling:

Oct 19 2020, 6:52 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2997: DHCP: disallow/do-not-request certain options when requesting IP address from server.

Do other vendors suppert highjacking/altering of DHCP options? I feel this kills the whole concept of DHCP.

Oct 19 2020, 2:42 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit.

There have been some deletion errors yesterday - are you running the latest rolling release? They should have been fixed in there. If noe please provide me some CLI samples to reproduce the issue.

Oct 19 2020, 10:39 AM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2995: Enhancements/bugfixes for vyos_dict_search() from Open to In progress.
Oct 19 2020, 10:05 AM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2995: Enhancements/bugfixes for vyos_dict_search().
Oct 19 2020, 10:04 AM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2995: Enhancements/bugfixes for vyos_dict_search().
Oct 19 2020, 10:01 AM · VyOS 1.3 Equuleus (1.3.0)
c-po renamed T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit from command_set on interface is not applied, if interface doesn't come up in commit to OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit.
Oct 19 2020, 9:02 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit, a subtask of T1579: Rewrite all interface types in new XML/Python style, as Resolved.
Oct 19 2020, 9:01 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit as Resolved.
Oct 19 2020, 9:01 AM · VyOS 1.3 Equuleus (1.3.0)

Oct 18 2020

c-po updated the task description for T2994: Migrate OpenVPN interfaces to get_config_dict() syntax.
Oct 18 2020, 6:00 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2994: Migrate OpenVPN interfaces to get_config_dict() syntax.
Oct 18 2020, 6:00 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2994: Migrate OpenVPN interfaces to get_config_dict() syntax from Open to In progress.
Oct 18 2020, 4:38 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2994: Migrate OpenVPN interfaces to get_config_dict() syntax, a subtask of T2653: "set interfaces" Python handler code improvements - next iteration, from Open to In progress.
Oct 18 2020, 4:38 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2994: Migrate OpenVPN interfaces to get_config_dict() syntax.
Oct 18 2020, 4:38 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a subtask for T1579: Rewrite all interface types in new XML/Python style: T2653: "set interfaces" Python handler code improvements - next iteration.
Oct 18 2020, 4:37 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a parent task for T2653: "set interfaces" Python handler code improvements - next iteration: T1579: Rewrite all interface types in new XML/Python style.
Oct 18 2020, 4:37 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a subtask for T1579: Rewrite all interface types in new XML/Python style: T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit.
Oct 18 2020, 4:37 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a parent task for T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit: T1579: Rewrite all interface types in new XML/Python style.
Oct 18 2020, 4:37 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit from In progress to Needs testing.
Oct 18 2020, 4:16 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit.

It seems that calling openvpn --mktun is what we need. Please try the next rolling ISO which will contain a fix for this.

Oct 18 2020, 4:03 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit from Open to In progress.
Oct 18 2020, 3:58 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2992: Automatically verify sha256 checksum on ISO download.
Oct 18 2020, 3:49 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2992: Automatically verify sha256 checksum on ISO download.
Oct 18 2020, 3:49 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2992: Automatically verify sha256 checksum on ISO download.
Oct 18 2020, 3:43 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2985: Add glue code to create bridge interface on demand, a subtask of T2653: "set interfaces" Python handler code improvements - next iteration, as Resolved.
Oct 18 2020, 1:30 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2985: Add glue code to create bridge interface on demand as Resolved.
Oct 18 2020, 1:30 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2992: Automatically verify sha256 checksum on ISO download from Open to In progress.
Oct 18 2020, 12:53 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2992: Automatically verify sha256 checksum on ISO download.
Oct 18 2020, 12:53 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit.

The root cause of this problem is that OpenVPN when the deamon is started and in tries to connect to the server, yet did not create the vtun11 interface on the system. Thus all calls to the ifconfig python library will fail big time.

Oct 18 2020, 10:16 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2907: OpenVPN: Option to disable encryption as Resolved.
Oct 18 2020, 10:03 AM · VyOS 1.3 Equuleus (1.3.0), openvpn

Oct 17 2020

c-po changed the status of T2985: Add glue code to create bridge interface on demand, a subtask of T2653: "set interfaces" Python handler code improvements - next iteration, from In progress to Needs testing.
Oct 17 2020, 8:55 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2985: Add glue code to create bridge interface on demand from In progress to Needs testing.
Oct 17 2020, 8:55 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2980: FRR bfdd crash due to invalid length as Resolved.
Oct 17 2020, 8:42 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2990: Update Linux Kernel to v4.19.152 as Resolved.
Oct 17 2020, 8:38 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2990: Update Linux Kernel to v4.19.152 from Open to In progress.
Oct 17 2020, 8:35 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2991: Update WireGuard to 1.0.20200908, a subtask of T2990: Update Linux Kernel to v4.19.152, as Resolved.
Oct 17 2020, 8:34 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2991: Update WireGuard to 1.0.20200908 as Resolved.
Oct 17 2020, 8:34 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2991: Update WireGuard to 1.0.20200908.
Oct 17 2020, 8:34 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2990: Update Linux Kernel to v4.19.152.
Oct 17 2020, 8:34 PM · VyOS 1.3 Equuleus (1.3.0)
c-po edited projects for T2792: Failed to run `sudo make qemu` with vyos-build container due to the change of packer, added: VyOS 1.3 Equuleus; removed vyos-build.
Oct 17 2020, 11:45 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2792: Failed to run `sudo make qemu` with vyos-build container due to the change of packer as Resolved.
Oct 17 2020, 11:44 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2986: Unable to build qemu image due to misconfigured Packer as Invalid.
Oct 17 2020, 11:37 AM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2986: Unable to build qemu image due to misconfigured Packer.

This will break builds in out Docker environment where we ship a packer version. See T2792 and https://github.com/vyos/vyos-build/commit/e2dd9db8a2539b6d13c98d89e18872336cf8f974

Oct 17 2020, 11:37 AM · VyOS 1.3 Equuleus (1.3.0)
c-po changed Version from - to 1.3-rolling-202010081758 on T2985: Add glue code to create bridge interface on demand.
Oct 17 2020, 10:01 AM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2985: Add glue code to create bridge interface on demand from Open to In progress.
Oct 17 2020, 10:00 AM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2985: Add glue code to create bridge interface on demand, a subtask of T2653: "set interfaces" Python handler code improvements - next iteration, from Open to In progress.
Oct 17 2020, 10:00 AM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2985: Add glue code to create bridge interface on demand.
Oct 17 2020, 9:59 AM · VyOS 1.3 Equuleus (1.3.0)

Oct 16 2020

c-po added a comment to T752: Add an option to disable IPv4 forwarding on specific interface only.

That would be a workaround only - see IPv6 syntax above. Using the refactored interface handling (T2653) makes this a low-hanging fruit.

Oct 16 2020, 8:43 PM · VyOS 1.3 Equuleus (1.3.0-epa1)

Oct 15 2020

c-po renamed T2980: FRR bfdd crash due to invalid length from FRR bfdd crash due to invlid length to FRR bfdd crash due to invalid length.
Oct 15 2020, 8:16 PM · VyOS 1.3 Equuleus (1.3.0)
trae32566 awarded T2980: FRR bfdd crash due to invalid length a Like token.
Oct 15 2020, 4:51 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2980: FRR bfdd crash due to invalid length.

Also submitted PR for FRR 7.3 series https://github.com/FRRouting/frr/pull/7318

Oct 15 2020, 3:23 PM · VyOS 1.3 Equuleus (1.3.0)

Oct 14 2020

c-po changed the status of T2980: FRR bfdd crash due to invalid length from Open to Needs testing.
Oct 14 2020, 7:41 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2980: FRR bfdd crash due to invalid length.
Oct 14 2020, 7:40 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2978: IPoE service does not work on shared mode.

Could you share also Client1 and Client2 configuration? Would be nice adding this lab setup to the docs

Oct 14 2020, 2:31 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit.

Please share your OpenVPN config

Oct 14 2020, 4:58 AM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2972: PPPoE server rate limiter allows max 65535 kbps to be set from In progress to Needs testing.
Oct 14 2020, 4:56 AM · VyOS 1.2 Crux (VyOS 1.2.7)

Oct 13 2020

c-po changed Why the issue appeared? from none to implementation-mistake on T2976: Client IP pool does not work for PPPoE local users.
Oct 13 2020, 4:49 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2976: Client IP pool does not work for PPPoE local users as Resolved.
Oct 13 2020, 4:49 PM · VyOS 1.3 Equuleus (1.3.0)

Oct 11 2020

c-po closed T2974: Migrate tftp-server to get_config_dict(), a subtask of T692: TFTP server functionality, as Resolved.
Oct 11 2020, 7:08 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)
c-po closed T2974: Migrate tftp-server to get_config_dict() as Resolved.
Oct 11 2020, 7:08 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)
c-po created T2974: Migrate tftp-server to get_config_dict().
Oct 11 2020, 7:08 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)
c-po moved T2891: Support to change ring-buffers from CLI from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.7) board.
Oct 11 2020, 5:36 PM · Restricted Project, VyOS 1.2 Crux (VyOS 1.2.7)
c-po moved T2878: LACP / bonding: new op-mode command: show interfaces bonding bond0 detail from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.7) board.
Oct 11 2020, 5:36 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po moved T2959: PPPoE server has migrations scripts but the config version is not incrememnted from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.7) board.
Oct 11 2020, 5:36 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po moved T2973: tftp-server cannot listen on IPv6 address from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.7) board.
Oct 11 2020, 5:36 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po closed T2973: tftp-server cannot listen on IPv6 address as Resolved.
Oct 11 2020, 5:36 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po created T2973: tftp-server cannot listen on IPv6 address.
Oct 11 2020, 5:33 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po added a comment to T2972: PPPoE server rate limiter allows max 65535 kbps to be set.

@Dmitry is this a limitation of Accel-PPP or can we increase the limits on the CLI?

Oct 11 2020, 4:30 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po renamed T2972: PPPoE server rate limiter allows max 65535 kbps to be set from Rate limiter of PPPoE session allows max 65535 kbps to be set to PPPoE server rate limiter allows max 65535 kbps to be set.
Oct 11 2020, 4:29 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po added a comment to T2969: OpenVPN: command_set on interface is not applied, if interface doesn't come up in commit.

I can feel that pain! When looking at the source from VyOS 1.2 (crux) it looks like it always behaved in this way.

Oct 11 2020, 4:27 PM · VyOS 1.3 Equuleus (1.3.0)

Oct 10 2020

c-po added a comment to T2951: Cannot enable logging for monitor nat.

@christophedc0 Have you enabled NAT rule logging?

Oct 10 2020, 6:30 PM · VyOS 1.3 Equuleus (1.3.0)

Oct 9 2020

c-po added a comment to T2968: Add support for Intel Atom C2000 series QAT.
vyos@vyos# lsmod | grep qat
qat_200xx              20480  0
intel_qat             299008  2 usdm_drv,qat_200xx
dh_generic             16384  1 intel_qat
uio                    20480  1 intel_qat
authenc                16384  1 intel_qat
Oct 9 2020, 5:10 PM · VyOS 1.3 Equuleus (1.3.0)
c-po renamed T2968: Add support for Intel Atom C2000 series QAT from Ssupport qat_200xx to Add support for Intel Atom C2000 series QAT.
Oct 9 2020, 5:08 PM · VyOS 1.3 Equuleus (1.3.0)

Oct 5 2020

c-po closed T2963: Wireless: WIFI is not password protected when security wpa mode is not defined but passphrase is as Resolved.
Oct 5 2020, 6:24 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2963: Wireless: WIFI is not password protected when security wpa mode is not defined but passphrase is.
Oct 5 2020, 6:20 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2963: Wireless: WIFI is not password protected when security wpa mode is not defined but passphrase is.
Oct 5 2020, 6:17 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2963: Wireless: WIFI is not password protected when security wpa mode is not defined but passphrase is from Open to Confirmed.
Oct 5 2020, 6:14 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2963: Wireless: WIFI is not password protected when security wpa mode is not defined but passphrase is.
Oct 5 2020, 6:13 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2962: Drop DHCPv6 NIS/NIS+ support as Invalid.
Oct 5 2020, 5:22 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2962: Drop DHCPv6 NIS/NIS+ support.

Okay 2017 is like yesterday in NIS history so we then should keep it!

Oct 5 2020, 5:22 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2961: Support "stateless" DHCP-v6 (information-request) clients.

Any rolling newer then vyos-1.3-rolling-202010050117-amd64.iso will have this included.

Oct 5 2020, 5:21 PM
c-po added a comment to T2961: Support "stateless" DHCP-v6 (information-request) clients.

I did a minor improvement and reused the fqdn validator in our system. In addition I refactored the domain-search into an includable snippet - so changing grammar, validators can be done in one single file.

Oct 5 2020, 5:19 PM
c-po created T2962: Drop DHCPv6 NIS/NIS+ support.
Oct 5 2020, 5:14 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2951: Cannot enable logging for monitor nat.

@christophedc0 please check out any rolling release which is newer then vyos-1.3-rolling-202010050117-amd64.iso as I have found two bugs in the implementation (one for source nat logging) and the other for the warning you have posted.

Oct 5 2020, 4:45 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2951: Cannot enable logging for monitor nat from Open to Needs testing.
Oct 5 2020, 4:43 PM · VyOS 1.3 Equuleus (1.3.0)

Oct 4 2020

c-po added a comment to T2951: Cannot enable logging for monitor nat.

This was infact only a warning - but for whatever reason nftables is not logging to kernel log :/

Oct 4 2020, 6:32 PM · VyOS 1.3 Equuleus (1.3.0)
c-po claimed T2951: Cannot enable logging for monitor nat.
Oct 4 2020, 6:32 PM · VyOS 1.3 Equuleus (1.3.0)
First
Prev
Next