Page MenuHomeVyOS Platform
Feed All Stories

Today

HollyGurza changed the status of T6106: Valid commit error for route-reflector-client option defined in peer-group from Open to In progress.
Tue, Mar 19, 4:47 AMVyOS 1.5 Circinus
wenzk added a comment to T6136: Configuring a dynamic address group, config script did not check whether the group was created.

And a simple note for your usage @wenzk
Change
set firewall ipv4 name WAN_IN rule 30 icmp
to this:
set firewall ipv4 name WAN_IN rule 30 protocol icmp

Tue, Mar 19, 12:18 AMVyOS 1.5 Circinus, VyOS 1.4 Sagitta

Yesterday

c-po added a project to T6127: Ability to view logs for rules with Offload not functional: VyOS 1.5 Circinus.
Mon, Mar 18, 7:50 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0)
penetal added a comment to T6135: HTTPS API endpoint to check if an empty config exists.

馃憤
Thanks

Mon, Mar 18, 7:45 PMVyOS 1.5 Circinus
jestabro added a comment to T6135: HTTPS API endpoint to check if an empty config exists.

Fix to docs pending:
https://github.com/vyos/vyos-documentation/pull/1331

Mon, Mar 18, 7:21 PMVyOS 1.5 Circinus
jestabro added a comment to T6135: HTTPS API endpoint to check if an empty config exists.

Well that is a fault of the docs; I will add now. Thanks !

Mon, Mar 18, 6:10 PMVyOS 1.5 Circinus
penetal closed T6135: HTTPS API endpoint to check if an empty config exists as Resolved N/A.

@jestabro this is perfect, I am so sorry for creating a false feature request. The doc does not mention it, I should have looked into the server code to check first. My bad, all good now.

Mon, Mar 18, 6:09 PMVyOS 1.5 Circinus
jestabro added a comment to T6135: HTTPS API endpoint to check if an empty config exists.
curl -k -X POST -Fkey=baz -Fdata='{"op": "exists", "path": ["service","no","such","subpath"]}' https://192.168.122.238/retrieve|jq 
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   340  100    47  100   293    547   3414 --:--:-- --:--:-- --:--:--  4000
{
  "success": true,
  "data": false,
 }
Mon, Mar 18, 6:09 PMVyOS 1.5 Circinus
jestabro claimed T6135: HTTPS API endpoint to check if an empty config exists.
Mon, Mar 18, 6:02 PMVyOS 1.5 Circinus
jestabro added a comment to T6135: HTTPS API endpoint to check if an empty config exists.

@penetal does the operation 'exists' not suffice for your needs ?

Mon, Mar 18, 6:02 PMVyOS 1.5 Circinus
Viacheslav added a comment to T6126: Unable to add image.

It looks like the local broken build.
At least it is not reproducible.
You can try to set it on some test VM to be sure if is it an issue with the node or the image itself.

Mon, Mar 18, 5:15 PMVyOS 1.4 Sagitta
p3lim added a comment to T6126: Unable to add image.

Can you try the same link as in my example and provide the full output?

Mon, Mar 18, 4:37 PMVyOS 1.4 Sagitta
n.fort changed the status of T6136: Configuring a dynamic address group, config script did not check whether the group was created from Confirmed to In progress.
Mon, Mar 18, 3:01 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
n.fort added a comment to T6136: Configuring a dynamic address group, config script did not check whether the group was created.

And a simple note for your usage @wenzk
Change
set firewall ipv4 name WAN_IN rule 30 icmp
to this:
set firewall ipv4 name WAN_IN rule 30 protocol icmp

Mon, Mar 18, 3:00 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
n.fort added a comment to T6136: Configuring a dynamic address group, config script did not check whether the group was created.

PR: https://github.com/vyos/vyos-1x/pull/3146

Mon, Mar 18, 2:57 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
L0crian added a comment to T6127: Ability to view logs for rules with Offload not functional.

@Viacheslav I'm not super familiar with git, so hopefully I did everything correctly. Here is the PR:
https://github.com/vyos/vyos-1x/pull/3145

Mon, Mar 18, 2:41 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0)
L0crian claimed T6127: Ability to view logs for rules with Offload not functional.
Mon, Mar 18, 2:38 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0)
Viacheslav added a comment to T6126: Unable to add image.

Can you try the same link as in my example and provide the full output?

Mon, Mar 18, 10:36 AMVyOS 1.4 Sagitta
Viacheslav changed the status of T6121: Extend service config-syn for sections vpn, policy, vrf from Open to Needs testing.
Mon, Mar 18, 10:22 AMVyOS 1.5 Circinus
p3lim added a comment to T6126: Unable to add image.

Could you show show version?

Mon, Mar 18, 10:11 AMVyOS 1.4 Sagitta
n.fort claimed T6136: Configuring a dynamic address group, config script did not check whether the group was created.
Mon, Mar 18, 10:03 AMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
a.apostoliuk changed the status of T6130: [1.3.6->1.4.0-epa2 Migration] BGP "set community" missing, a subtask of T5938: Migration fail root task for 1.4-rc, from Open to In progress.
Mon, Mar 18, 9:40 AMVyOS 1.4 Sagitta
a.apostoliuk changed the status of T6130: [1.3.6->1.4.0-epa2 Migration] BGP "set community" missing from Open to In progress.
Mon, Mar 18, 9:40 AMVyOS 1.4 Sagitta
Viacheslav changed the status of T6126: Unable to add image from Open to Needs reporter action.

Could you show show version?

Mon, Mar 18, 9:38 AMVyOS 1.4 Sagitta
Viacheslav added a comment to T6126: Unable to add image.

Never had this bug with 1.4.0-epa.

vyos@r1-right:~$ show ver
Version:          VyOS 1.4.0-epa1
Release train:    sagitta
Mon, Mar 18, 9:36 AMVyOS 1.4 Sagitta
Viacheslav triaged T6127: Ability to view logs for rules with Offload not functional as High priority.
Mon, Mar 18, 9:27 AMVyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0)
Viacheslav added a comment to T6127: Ability to view logs for rules with Offload not functional.

@L0crian could you add the PR? https://github.com/vyos/vyos-1x/blob/987b7e599fda2c468773cf31d92d976cd96c3e41/op-mode-definitions/show-log.xml.in#L222

Mon, Mar 18, 9:27 AMVyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0)
Viacheslav triaged T6128: minisign.pub is wrong on https://vyos.net/get/nightly-builds/ as Normal priority.
Mon, Mar 18, 9:22 AMVyOS 1.5 Circinus
Viacheslav added a subtask for T5938: Migration fail root task for 1.4-rc: T6130: [1.3.6->1.4.0-epa2 Migration] BGP "set community" missing.
Mon, Mar 18, 9:18 AMVyOS 1.4 Sagitta
Viacheslav added a parent task for T6130: [1.3.6->1.4.0-epa2 Migration] BGP "set community" missing: T5938: Migration fail root task for 1.4-rc.
Mon, Mar 18, 9:18 AMVyOS 1.4 Sagitta
Viacheslav triaged T6130: [1.3.6->1.4.0-epa2 Migration] BGP "set community" missing as High priority.
Mon, Mar 18, 9:18 AMVyOS 1.4 Sagitta
Viacheslav triaged T6133: Add domain-name to commit-archive as Normal priority.
Mon, Mar 18, 9:14 AMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav closed T3522: policy based routing not working, a subtask of T3505: Commits do not respect changes in FRR that are not stored in a config, as Resolved N/A.
Mon, Mar 18, 9:13 AMVyOS 1.4 Sagitta
Viacheslav closed T3522: policy based routing not working as Resolved N/A.

@matthewr Thanks for confirming!
Closing it as resolved now. Feel free to reopen or create a new one if this bug remains again.

Mon, Mar 18, 9:13 AMVyOS 1.4 Sagitta (1.4.0-epa), Restricted Project
Viacheslav triaged T6135: HTTPS API endpoint to check if an empty config exists as Normal priority.
Mon, Mar 18, 9:10 AMVyOS 1.5 Circinus
Viacheslav triaged T6131: Disabling openvpn interface(s) causes OSPF to fail to load on reboot as High priority.
Mon, Mar 18, 9:07 AMVyOS 1.4 Sagitta
Viacheslav changed the status of T6136: Configuring a dynamic address group, config script did not check whether the group was created from Open to Confirmed.
Mon, Mar 18, 9:06 AMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav triaged T6137: dhcp files and directory permission not correct after image uprgading as Normal priority.
Mon, Mar 18, 9:04 AMVyOS 1.5 Circinus
opswill created T6137: dhcp files and directory permission not correct after image uprgading .
Mon, Mar 18, 4:38 AMVyOS 1.5 Circinus
wenzk created T6136: Configuring a dynamic address group, config script did not check whether the group was created.
Mon, Mar 18, 1:23 AMVyOS 1.5 Circinus, VyOS 1.4 Sagitta

Sun, Mar 17

c-po claimed T6131: Disabling openvpn interface(s) causes OSPF to fail to load on reboot.
Sun, Mar 17, 6:12 PMVyOS 1.4 Sagitta
trae32566 added a comment to T6132: Conntrack-sync Internal Cache Growing Uncontrollably.

Here's the generated configuration from /run/conntrackd/conntrackd.conf:

# Synchronizer settings
Sync {
    Mode FTFW {
        DisableExternalCache on
    }
    Multicast {
        IPv4_address 225.0.0.50
        Group 3780
        IPv4_interface 192.168.15.3
        Interface bond0.110
        SndSocketBuffer 104857600
        RcvSocketBuffer 104857600
        Checksum on
    }
}
Helper {
    Type rpc inet tcp {
        QueueNum 3
        Policy rpc {
            ExpectMax 1
            ExpectTimeout 300
        }
    }
    Type rpc inet udp {
        QueueNum 4
        Policy rpc {
            ExpectMax 1
            ExpectTimeout 300
        }
    }
    Type tns inet tcp {
        QueueNum 5
        Policy tns {
            ExpectMax 1
            ExpectTimeout 300
        }
    }
}
Sun, Mar 17, 5:41 PMVyOS 1.5 Circinus
penetal updated the task description for T6135: HTTPS API endpoint to check if an empty config exists.
Sun, Mar 17, 4:32 PMVyOS 1.5 Circinus
penetal created T6135: HTTPS API endpoint to check if an empty config exists.
Sun, Mar 17, 4:31 PMVyOS 1.5 Circinus
robertoberto closed T6134: AttributeError in vyos_unattended_installer.py When Installing GRUB Configuration as Resolved.
Sun, Mar 17, 3:58 PMUnknown Object (Project)
robertoberto added a comment to T6134: AttributeError in vyos_unattended_installer.py When Installing GRUB Configuration.

Fixed in https://github.com/vyos/vyos-1x/commit/84b520dd580b7725de4c9e62b11ec490cb8d3f4f. The 1.4.0-epa2 build was created before the patch was applied.

Sun, Mar 17, 3:58 PMUnknown Object (Project)
matthewr added a comment to T3522: policy based routing not working.

Just in case it helps, after a migration from 1.3 to 1.4.0-epa2, the migrated config ends up as:-

Sun, Mar 17, 3:34 PMVyOS 1.4 Sagitta (1.4.0-epa), Restricted Project
robertoberto created T6134: AttributeError in vyos_unattended_installer.py When Installing GRUB Configuration.
Sun, Mar 17, 3:17 PMUnknown Object (Project)
c-po updated the task description for T6133: Add domain-name to commit-archive.
Sun, Mar 17, 1:47 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po added a comment to T6133: Add domain-name to commit-archive.

https://github.com/vyos/vyos-1x/pull/3140

Sun, Mar 17, 1:47 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po changed the status of T6133: Add domain-name to commit-archive, a subtask of T4942: Rewrite vyatta-config-mgmt to Python/XML, from Open to In progress.
Sun, Mar 17, 1:42 PMVyOS 1.4 Sagitta
c-po changed the status of T6133: Add domain-name to commit-archive from Open to In progress.
Sun, Mar 17, 1:42 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
c-po created T6133: Add domain-name to commit-archive.
Sun, Mar 17, 1:42 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
trae32566 triaged T6132: Conntrack-sync Internal Cache Growing Uncontrollably as High priority.
Sun, Mar 17, 12:35 PMVyOS 1.5 Circinus
matthewr added a comment to T6076: [1.3.3->1.4.0-epa1 Migration] Most of config missing.

See T6131 for a report of the VTUN/OSPF issue with a simple lab config, which occurs separately from a migration.

Sun, Mar 17, 10:26 AMVyOS 1.4 Sagitta
matthewr created T6131: Disabling openvpn interface(s) causes OSPF to fail to load on reboot.
Sun, Mar 17, 10:22 AMVyOS 1.4 Sagitta
matthewr created T6130: [1.3.6->1.4.0-epa2 Migration] BGP "set community" missing.
Sun, Mar 17, 9:48 AMVyOS 1.4 Sagitta
c-po added a comment to T6129: bgp: add route-map option "as-path exclude all".

https://github.com/vyos/vyos-1x/pull/3139

Sun, Mar 17, 7:44 AMVyOS 1.4 Sagitta, VyOS 1.5 Circinus
c-po updated the task description for T6129: bgp: add route-map option "as-path exclude all".
Sun, Mar 17, 7:42 AMVyOS 1.4 Sagitta, VyOS 1.5 Circinus
c-po changed the status of T6129: bgp: add route-map option "as-path exclude all" from Open to In progress.
Sun, Mar 17, 7:40 AMVyOS 1.4 Sagitta, VyOS 1.5 Circinus
c-po changed the status of T6129: bgp: add route-map option "as-path exclude all", a subtask of T5788: frr: update to 9.1 release, from Open to In progress.
Sun, Mar 17, 7:40 AMVyOS 1.4 Sagitta, VyOS 1.5 Circinus
c-po created T6129: bgp: add route-map option "as-path exclude all".
Sun, Mar 17, 7:40 AMVyOS 1.4 Sagitta, VyOS 1.5 Circinus

Sat, Mar 16

dmbaturin added a comment to T6128: minisign.pub is wrong on https://vyos.net/get/nightly-builds/.

We'll update the key and make a post about it soon, sorry for the lengthy mix-up.

Sat, Mar 16, 8:30 PMVyOS 1.5 Circinus
robertoberto added a comment to T6128: minisign.pub is wrong on https://vyos.net/get/nightly-builds/.

comments above are for

Sat, Mar 16, 5:51 PMVyOS 1.5 Circinus
robertoberto created T6128: minisign.pub is wrong on https://vyos.net/get/nightly-builds/.
Sat, Mar 16, 5:34 PMVyOS 1.5 Circinus
penetal added a comment to T5083: extend interface schema to include which parameters are required.

Bumped into another instance of this issue:

sh
curl -k --location --request POST "https://$VYOS_HOST/configure" --form key="$VYOS_KEY" --form data='[{"op":"set","path":["policy", "access-list", "2", "rule", "5", "description", "2024-03-16T14:52:44Z"]}]'
{"success": false, "error": "[[policy]] failed\nCommit failed\n", "data": null}
Sat, Mar 16, 2:59 PM
c-po moved T4022: Add package nat-rtsp-dkms from Need Triage to Finished on the VyOS 1.5 Circinus board.
Sat, Mar 16, 11:33 AMVyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
c-po added a project to T4022: Add package nat-rtsp-dkms: VyOS 1.4 Sagitta (1.4.0).
Sat, Mar 16, 11:33 AMVyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
penetal added a comment to T6069: HTTP API segfault during concurrent configuration requests.

@jestabro I have tested my usecase now and it seems the problem is fixed and the API no longer segfaults. Thank you so much for the fix and the fantastic turn around on this.

Sat, Mar 16, 9:11 AMVyOS 1.4 Sagitta (1.4.0-epa2), VyOS 1.5 Circinus

Fri, Mar 15

L0crian added a comment to T6127: Ability to view logs for rules with Offload not functional.

Should add the ability to view the default action log would be nice as well.

Fri, Mar 15, 10:33 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0)
L0crian renamed T6127: Ability to view logs for rules with Offload not functional from Ability to view logs for rules with Offload not available to Ability to view logs for rules with Offload not functional.
Fri, Mar 15, 10:09 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0)
L0crian created T6127: Ability to view logs for rules with Offload not functional.
Fri, Mar 15, 10:06 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0)
n.fort added a comment to T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity.

PR for 1.5: https://github.com/vyos/vyos-1x/pull/3137

Fri, Mar 15, 9:45 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
n.fort added a project to T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity: VyOS 1.5 Circinus.
Fri, Mar 15, 9:43 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
p3lim added a comment to T6126: Unable to add image.

I can download the image and add it from path just fine, e.g this works fine:

Fri, Mar 15, 7:45 PMVyOS 1.4 Sagitta
p3lim created T6126: Unable to add image.
Fri, Mar 15, 7:31 PMVyOS 1.4 Sagitta
daniil renamed T6125: Support 802.1ad (0x88a8) vlan filtering for bridge from Support 802.1ad (0x88a8) for bridge to Support 802.1ad (0x88a8) vlan filtering for bridge.
Fri, Mar 15, 6:10 PMVyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
daniil created T6125: Support 802.1ad (0x88a8) vlan filtering for bridge.
Fri, Mar 15, 6:07 PMVyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus
Apachez added a comment to T6091: [1.3.3->1.4.0-epa1 Migration] NTP "listen-address" config removed.

Proper would be to throw out chrony and use ntpsec instead which supports proper filtering.

Fri, Mar 15, 5:06 PMVyOS 1.4 Sagitta
Viacheslav edited projects for T6124: Docker equuleus build image doesn't build due to fpm, added: VyOS 1.3 Equuleus (1.3.7); removed VyOS 1.3 Equuleus.
Fri, Mar 15, 3:46 PMVyOS 1.3 Equuleus (1.3.7)
Viacheslav triaged T6124: Docker equuleus build image doesn't build due to fpm as High priority.
Fri, Mar 15, 3:45 PMVyOS 1.3 Equuleus (1.3.7)
matthewr added a comment to T6091: [1.3.3->1.4.0-epa1 Migration] NTP "listen-address" config removed.

Given that Chrony only allows one bind address, versus ntpd which allows multiple, a "wontfix" sounds like the correct answer! :-)

Fri, Mar 15, 3:12 PMVyOS 1.4 Sagitta
MattK updated the task description for T6124: Docker equuleus build image doesn't build due to fpm.
Fri, Mar 15, 3:02 PMVyOS 1.3 Equuleus (1.3.7)
MattK created T6124: Docker equuleus build image doesn't build due to fpm.
Fri, Mar 15, 2:57 PMVyOS 1.3 Equuleus (1.3.7)
n.fort changed the status of T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity, a subtask of T5938: Migration fail root task for 1.4-rc, from Open to Confirmed.
Fri, Mar 15, 2:33 PMVyOS 1.4 Sagitta
n.fort changed the status of T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity from Open to Confirmed.
Fri, Mar 15, 2:33 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav triaged T6116: VyOS can't work as expected at k8s platform as Normal priority.
Fri, Mar 15, 2:30 PMVyOS 1.4 Sagitta (1.4.0-epa)
Viacheslav changed the status of T6109: remote syslog do not get all the logs from Open to Needs reporter action.

@m.serdienis Add set of configuration commands to reproduce.

Fri, Mar 15, 2:26 PMVyOS 1.5 Circinus
c-po closed T6091: [1.3.3->1.4.0-epa1 Migration] NTP "listen-address" config removed as Wontfix.
Fri, Mar 15, 2:26 PMVyOS 1.4 Sagitta
c-po added a comment to T6091: [1.3.3->1.4.0-epa1 Migration] NTP "listen-address" config removed.

The issue is which to choose if there are multiple, thus removing all, chrony will listen on all interfaces.

Fri, Mar 15, 2:26 PMVyOS 1.4 Sagitta
Viacheslav edited projects for T6108: VTYSH - Slowdown, added: VyOS 1.3 Equuleus (1.3.7); removed VyOS 1.3 Equuleus.
Fri, Mar 15, 2:25 PMVyOS 1.3 Equuleus (1.3.7)
Viacheslav triaged T6108: VTYSH - Slowdown as Normal priority.
Fri, Mar 15, 2:25 PMVyOS 1.3 Equuleus (1.3.7)
Viacheslav triaged T6106: Valid commit error for route-reflector-client option defined in peer-group as High priority.
Fri, Mar 15, 2:24 PMVyOS 1.5 Circinus
Viacheslav triaged T6105: Service HTTPS using ACME certificate does not present full chain as Normal priority.
Fri, Mar 15, 2:24 PMVyOS 1.5 Circinus
Viacheslav triaged T6092: Static interface index as Wishlist priority.
Fri, Mar 15, 2:23 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav triaged T6091: [1.3.3->1.4.0-epa1 Migration] NTP "listen-address" config removed as Normal priority.

Most likely won't fix
https://chrony-project.org/doc/3.4/chrony.conf.html

Fri, Mar 15, 2:23 PMVyOS 1.4 Sagitta
Viacheslav added a parent task for T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity: T5938: Migration fail root task for 1.4-rc.
Fri, Mar 15, 2:02 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav added a subtask for T5938: Migration fail root task for 1.4-rc: T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity.
Fri, Mar 15, 2:02 PMVyOS 1.4 Sagitta
Viacheslav triaged T6090: [1.3.6->1.4.0-epa1 Migration] policy route fails due tcp flag case sensitivity as High priority.
Fri, Mar 15, 2:01 PMVyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav triaged T6120: integration speedtest cli as Wishlist priority.

I don't think it is expected to get speed to the node itself.
A router is generally used for forwarding traffic. It is better to use iperf to check the speed between 2 hosts.

Fri, Mar 15, 1:54 PMVyOS 1.5 Circinus