ok, I'll do it
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Feb 24 2021
Feb 24 2021
Viacheslav changed the status of T3211: ability to redistribute ISIS into other routing protocols from Open to Needs testing.
@craterman can you check this feature in the latest rolling or beta?
PR for equuleus | extended smoketest
https://github.com/vyos/vyos-1x/pull/743
@dmbaturin @c-po Hi, I have basically completed the T3116 draft implementation, test, I only inspect the ipvsadm rules, seems to work properly, the draft only for ipvsadm, to set up some rules, now, you and @c-po can achieve the preliminary examination of the draft (about smoke tests, I currently only normal execution of the command line configuration program testing, has not yet been configured efficacy)
erkin edited projects for T3179: Add the ability to generate a support file, added: VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus, VyOS 1.2 Crux.
VyOS is still on the ancient shell-based diagnostic file generator spaghetti inherited from Vyatta. First of all, I'm going to dike out {show,generate} tech-support from vyatta-op and write a rudimentary stub as a replacement in Python/XML. Then we'll need to discuss what exactly needs to go in there.
Unknown Object (User) added a comment to T3303: Change welcome message on boot.
@c-po , it works properly
Welcome to VyOS 1.4-rolling-202102240218 (sagitta)!
Feb 23 2021
Feb 23 2021
basalblas renamed T3340: Add dhcp-helper package to replace ISC DHCP Relay from Add dhcp-helper package to support DHCP Relay over GRE tunnel to Add dhcp-helper package to replace ISC DHCP Relay.
PR https://github.com/vyos/vyatta-cfg-quagga/pull/71
Can be "cherry-picked" to equuleus
PR for equuleus for bgp and ospf https://github.com/vyos/vyatta-cfg-quagga/pull/70
PR for equuleus for rip https://github.com/vyos/vyos-1x/pull/741
jestabro changed the status of T3302: Make vyos-configd relay stdout from scripts to the user's console, a subtask of T2347: During commit, any script output directed to stdout will contain path, from Open to Backport candidate.
jestabro changed the status of T3302: Make vyos-configd relay stdout from scripts to the user's console from Open to Backport candidate.
jestabro changed the status of T3302: Make vyos-configd relay stdout from scripts to the user's console, a subtask of T2347: During commit, any script output directed to stdout will contain path, from Backport candidate to Open.
jestabro changed the status of T3302: Make vyos-configd relay stdout from scripts to the user's console from Backport candidate to Open.
If commit is not initiated from a 'live' session (for example, on boot), then redirected stdout/err should go to a file.
Yes, radius is used for login.
If that works out wihtout an issue I would like to have it backported into 1.3 just to be more "fancy".
Unknown Object (User) added a comment to T3303: Change welcome message on boot.
PR https://github.com/vyos/vyos-build/pull/147
Output on the local stand
Welcome to VyOS 1.4 (sagitta)!
c-po renamed T3349: Ethernet: "disable" flag is not honored after a reboot for VIF interfaces from Ethernet: "disable" flag is not honored after a reboot to Ethernet: "disable" flag is not honored after a reboot for VIF interfaces.
I can't reproduce it
Unknown Object (User) added a comment to T2927: isc-dhcpd release and expiry events never execute.
@Viacheslav
I guess the logs are from the dhcp-server and not from the client...
@tuxnet Can you describe the steps to reproduce?
Unknown Object (User) triaged T2927: isc-dhcpd release and expiry events never execute as Normal priority.
Unknown Object (User) changed the status of T2927: isc-dhcpd release and expiry events never execute from Open to In progress.
also having lots of NAT rules makes the vyos config handling and boot time very slow..
Feb 22 2021
Feb 22 2021
Sorry, I don't have a GitHub account (I try hard to avoid centralized systems). If what you want is a git repo/branch to pull from, I can setup one somewhere and commit the patch there, though.
wsapplegate added a comment to T3338: Some Cloud-Init configurations can prevent login on the router.
In T3338#87770, @zsdc wrote:And it is necessary to leave a bug-report on the Proxmox bug tracker to lead this to the logical end. Could you do this?
Any chance you can send this as GitHub PR?
pasik added a comment to T3259: many dnat rules makes the vyos http api crash, even showConfig op timeouts.
and indeed the fix works, I'm now able to add more than 215 dnat rules, and still fetch the config over the vyos http api! Thanks a lot everyone.
In T3337#87766, @c-po wrote:
- adding a cli node that passes raw config values from cli to the daemon is bad (we inherited this for dhcp and openvpn and it caused more harm then good in the last 2 years) - is this mandatory?
pasik added a comment to T3347: vyos 1.3 beta fails to configure Xen HVM guest ethernet interfaces due to ethtool -g error.
If I disable Xen PV drivers using "xen_platform_pci=0" from the host/dom0 side, and thus I get emulated e1000 NICs in the Xen HVM guest, then setting address to ethernet interfaces works ok..
pasik updated the task description for T3347: vyos 1.3 beta fails to configure Xen HVM guest ethernet interfaces due to ethtool -g error.
It seems it works now
Viacheslav triaged T3337: Add possibility to serve static DNS zones from the router as Normal priority.
The ISC DHCP relay in VyOS is completely broken for my (non-GRE) use case, I would really like to see it get tossed out for something that works. This might not be the best place to describe my relay problems, but I might as well (skip this paragraph it you're not interested). My setup basically consists of the (ISC) DHCP server host connected to the VyOS router (running on a Dell R320), directly connected to a Cisco ASR920 router. Both VyOS and the ASR are directly connected to user VLANs (VyOS for firewalled/NATed zones and ASR for high-traffic users) and have DHCP relays set up targeting the DHCP server, such that the relayed messages from the ASR passes through the VyOS router towards the DHCP server and should get routed normally (i.e. ignored by the VyOS relay). The VyOS DHCP relay doesn't like this and starts spamming the DHCP messages up to ten or more times, causing wired clients to have to wait maybe ten seconds before getting an IPv4 address and wireless clients to just time out and abort the connection. I can provide the relay logs (mainly screenshots unless i dig up the disk I used) and VyOS config if anyone wants them, but as they have sensitive addresses, I don't intend to post them publicly. EDIT: I should mention that I didn't notice any problems while testing it with only myself, it was when 200 people started connecting the problems started occurring. And the DHCP server VM was not showing any noticable load.
Viacheslav changed the status of T3290: Disabling GRE conntrack module fails from Needs testing to Backport candidate.
Viacheslav changed Difficulty level from unknown to normal on T3055: op-mode incorrect naming for ipsec policy-based tunnels .
Viacheslav changed the subtype of T3055: op-mode incorrect naming for ipsec policy-based tunnels from "Task" to "Bug".
Viacheslav triaged T3055: op-mode incorrect naming for ipsec policy-based tunnels as Normal priority.
Viacheslav triaged T3333: "show vpn ipsec sa" reports ESP tunnels to be up when they are not. as Normal priority.
@Viacheslav Looks like it is already fixed with newer release then VyOS 1.4-rolling-202102141111.
I can also add the interface with newer release.
Viacheslav changed Difficulty level from unknown to easy on T3327: OSPFv3: Cannot add dummy interface.
Viacheslav changed the status of T3290: Disabling GRE conntrack module fails from Backport candidate to Needs testing.
Viacheslav changed the status of T3299: Allow the web proxy service to listen on all IP addresses from Open to Needs testing.
Viacheslav changed Difficulty level from unknown to normal on T3316: Use Kea DHCP(v6) instead of ISC DHCP(v6).
Viacheslav changed Is it a breaking change? from none to compatible on T3320: Bgp neighbor peer-group without peer-group fail.
Viacheslav closed T3322: Bgp neighbor timers not applyed to FRR config, a subtask of T2174: Rewrite protocol BGP to new XML/Python style, as Resolved.
Viacheslav changed Difficulty level from unknown to hard on T1292: Issues while deleting all rules from a firewall.
Viacheslav changed the subtype of T1292: Issues while deleting all rules from a firewall from "Task" to "Bug".
Viacheslav triaged T1436: Config entries with default values do not correctly show as changed as Low priority.
Viacheslav triaged T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP as Wishlist priority.
As we use 7.5 in 1.4 now, we can implement that feature.
Viacheslav triaged T3190: Unable to subtract value from local-preference in route-map as Normal priority.
Viacheslav changed Difficulty level from unknown to hard on T3207: OSPF does not convert the area to NSSA .
Viacheslav triaged T3211: ability to redistribute ISIS into other routing protocols as Normal priority.
jack9603301 changed the status of T3116: Support back-end L4 level load balancing from Confirmed to In progress.
Start implementing this draft
Viacheslav changed Difficulty level from unknown to hard on T3286: Switch the firewall from iptables to nftables.
Viacheslav changed the subtype of T3286: Switch the firewall from iptables to nftables from "Task" to "Feature Request".
Viacheslav changed Difficulty level from unknown to normal on T3340: Add dhcp-helper package to replace ISC DHCP Relay.
Viacheslav changed Difficulty level from unknown to hard on T687: Encryption of configuration files and critical data.
Feb 21 2021
Feb 21 2021
Hmmm I retract that, apparently not in my configs. But that review indicates that a common pattern is to define the VRF at a global level, then specify an instance at the BGP level...
@c-po not in constrat to other verndors - I know that Juniper ERX allowed for different ASNs if in a VRF. I'll see if I still have some old configs.