Page MenuHomeVyOS Platform
Feed All Stories

Mon, Jun 7

trae32566 created T3604: Changing BGP Neighbor Peer-Group Association Causes Routing Subsystem Failure.
Mon, Jun 7, 8:31 PM · VyOS 1.3 Equuleus
trae32566 added a comment to T3602: Renaming BGP Peer Groups Leaves Router Broken.

This is indeed fixed!

Mon, Jun 7, 8:27 PM · VyOS 1.3 Equuleus
Viacheslav closed T3358: VRRP: Is it necessary to support switches between master and backup with script? as Invalid.

@arvin This functions in all versions of VyOS.

Mon, Jun 7, 7:08 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
Viacheslav changed the subtype of T2763: New SNMP resource request - SNMP over TCP from "Task" to "Feature Request".
Mon, Jun 7, 6:35 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
UnicronNL claimed T3339: Cloud-Init domain search setting not applied.
Mon, Jun 7, 6:32 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
Viacheslav added a comment to T2855: disabled vti interfaces still working.

I can't reproduce it in 1.2.7 and VyOS 1.3-beta-202105272051

Mon, Jun 7, 6:25 PM · VyOS 1.2 Crux (VyOS 1.2.8), VyOS 1.3 Equuleus
Viacheslav added a comment to T3017: bridge will lose the tuntap member after reboots.

@jingyun Can you describe steps on how to reproduce it? Or re-check it.
My test config after reboot works fine

set interfaces bridge br0 member interface tun0
set interfaces tunnel tun0 encapsulation 'gre-bridge'
set interfaces tunnel tun0 local-ip '100.64.0.1'
set interfaces tunnel tun0 remote-ip '100.64.0.254'
Mon, Jun 7, 6:08 PM · VyOS 1.2 Crux (VyOS 1.2.8), VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
Viacheslav moved T3138: ddclient improperly updated when apply rfc2136 config from Need Triage to Backport Candidates on the VyOS 1.4 Sagitta board.
Mon, Jun 7, 5:20 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
c-po closed T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan, a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, as Resolved.
Mon, Jun 7, 5:10 PM · VyOS 1.4 Sagitta
c-po closed T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan as Resolved.
Mon, Jun 7, 5:10 PM · VyOS 1.4 Sagitta
c-po updated the task description for T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan.
Mon, Jun 7, 5:09 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T3602: Renaming BGP Peer Groups Leaves Router Broken, a subtask of T3182: Main blocker Task for FRR 7.4/7.5 series update, from Open to Needs testing.
Mon, Jun 7, 4:40 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
Viacheslav changed the status of T3602: Renaming BGP Peer Groups Leaves Router Broken from Open to Needs testing.
Mon, Jun 7, 4:40 PM · VyOS 1.3 Equuleus
Viacheslav closed T3516: FRR 7.5 adds a second route when you attempt to change a static route distance instead of overwriting the old route, a subtask of T3182: Main blocker Task for FRR 7.4/7.5 series update, as Resolved.
Mon, Jun 7, 4:39 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
Viacheslav closed T3516: FRR 7.5 adds a second route when you attempt to change a static route distance instead of overwriting the old route as Resolved.
Mon, Jun 7, 4:39 PM · VyOS 1.3 Equuleus
Viacheslav claimed T3602: Renaming BGP Peer Groups Leaves Router Broken.
Mon, Jun 7, 4:35 PM · VyOS 1.3 Equuleus
Viacheslav added a comment to T3602: Renaming BGP Peer Groups Leaves Router Broken.

PR https://github.com/vyos/vyatta-cfg-quagga/pull/81

Mon, Jun 7, 4:20 PM · VyOS 1.3 Equuleus
Viacheslav added a subtask for T3182: Main blocker Task for FRR 7.4/7.5 series update: T3602: Renaming BGP Peer Groups Leaves Router Broken.
Mon, Jun 7, 2:44 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
Viacheslav added a parent task for T3602: Renaming BGP Peer Groups Leaves Router Broken: T3182: Main blocker Task for FRR 7.4/7.5 series update.
Mon, Jun 7, 2:44 PM · VyOS 1.3 Equuleus
Viacheslav added a comment to T3602: Renaming BGP Peer Groups Leaves Router Broken.

Additional logs

Jun  7 17:28:53 r4-1 commit: Successful change to active configuration by user vyos on /dev/pts/1
Jun  7 17:29:15 r4-1 bgpd[841]: [EC 33554443] couldn't delete af structure for peer DAL13v6(IPv6, unicast)
Jun  7 17:29:15 r4-1  vyatta-cfg-quagga[3042]: /usr/bin/vtysh -c configure terminal -c router bgp 4242420670 -c no neighbor DAL13v6 peer-group failed: 256
Jun  7 17:29:15 r4-1 systemd[1784]: opt-vyatta-config-tmp-new_config_2175.mount: Succeeded.
Mon, Jun 7, 2:31 PM · VyOS 1.3 Equuleus
Viacheslav added a comment to T3579: Rewrite vyatta-conntrack in new XML and Python flavour.

In the crux.

set system conntrack timeout custom rule 10 destination address '203.0.113.74'
set system conntrack timeout custom rule 10 destination port '80'
set system conntrack timeout custom rule 10 protocol tcp established '300'
set system conntrack timeout custom rule 10 source address '192.0.2.168'

commit

vyos@r2-lts# commit
[ system conntrack hash-size 32768 ]
Updated conntrack hash size. This change will take affect when the system is rebooted.
Mon, Jun 7, 12:39 PM · VyOS 1.4 Sagitta
anthr76 added a comment to T3600: DHCP Interface static route breaks PBR.

It looks like your assessment is correct. It also seems like next-hop IP would be sufficient as well if I wasn't dealing with dynamic WAN IPs. For the moment I'm sticking with interface instead of dhcp-interface. The related issue you sent seems exactly related to this.

Mon, Jun 7, 11:55 AM · VyOS 1.4 Sagitta
Viacheslav added a subtask for T3505: Commits do not respect changes in FRR that are not stored in a config: T3600: DHCP Interface static route breaks PBR.
Mon, Jun 7, 9:17 AM · VyOS 1.4 Sagitta
Viacheslav added a parent task for T3600: DHCP Interface static route breaks PBR: T3505: Commits do not respect changes in FRR that are not stored in a config.
Mon, Jun 7, 9:17 AM · VyOS 1.4 Sagitta
sdev added a comment to T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan.

Clarifying as requested by c-po:

Mon, Jun 7, 9:12 AM · VyOS 1.4 Sagitta
vindenesen added a comment to T3579: Rewrite vyatta-conntrack in new XML and Python flavour.

I believe I have found out why modification/deletion of rules fails. This is the rule definition in iptables:

Mon, Jun 7, 9:10 AM · VyOS 1.4 Sagitta
trae32566 created T3602: Renaming BGP Peer Groups Leaves Router Broken.
Mon, Jun 7, 8:39 AM · VyOS 1.3 Equuleus

Sun, Jun 6

fernando added a comment to T3600: DHCP Interface static route breaks PBR.

I think it is also related https://phabricator.vyos.net/T3522

Sun, Jun 6, 9:53 PM · VyOS 1.4 Sagitta
fernando added a comment to T3600: DHCP Interface static route breaks PBR.

I have checked that functionality , i can replicate the issues .although there is a workaround if you "set protocols static table 11 route 0.0.0.0/0 dhcp-interface " any interfaces , it doesn't see in your table ( table 10 /11 ) we can see theses routes in the default table , let me show :

Sun, Jun 6, 9:50 PM · VyOS 1.4 Sagitta
c-po closed T842: Adopt VyOS CLI to latest StrongSwan options and deprecated Keywords, a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, as Resolved.
Sun, Jun 6, 5:35 PM · VyOS 1.4 Sagitta
c-po closed T842: Adopt VyOS CLI to latest StrongSwan options and deprecated Keywords, a subtask of T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan, as Resolved.
Sun, Jun 6, 5:35 PM · VyOS 1.4 Sagitta
c-po closed T842: Adopt VyOS CLI to latest StrongSwan options and deprecated Keywords as Resolved.
Sun, Jun 6, 5:35 PM · VyOS 1.4 Sagitta
c-po updated the task description for T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan.
Sun, Jun 6, 5:17 PM · VyOS 1.4 Sagitta
erkin claimed T3459: Inform the user when unable to install outdated image.
Sun, Jun 6, 2:21 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
UnicronNL triaged T3601: Error in ssh keys for vmware cloud-init if ssh keys is left empty. as Normal priority.
Sun, Jun 6, 1:09 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
c-po updated the task description for T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan.
Sun, Jun 6, 9:11 AM · VyOS 1.4 Sagitta

Sat, Jun 5

anthr76 created T3600: DHCP Interface static route breaks PBR.
Sat, Jun 5, 11:41 PM · VyOS 1.4 Sagitta

Fri, Jun 4

sdev changed the status of T3599: Migrate NHRP to XML/Python from In progress to Needs testing.

PR: https://github.com/vyos/vyos-1x/pull/865

Fri, Jun 4, 9:55 PM · VyOS 1.4 Sagitta
c-po added a comment to T3040: NHRP IPv6 Support.

Hi @francis the latest FRR version lacks support for Cisco authentication https://github.com/FRRouting/frr/blob/master/nhrpd/nhrp_peer.c#L1212

Fri, Jun 4, 6:33 PM · VyOS 1.3 Equuleus
c-po closed T3595: Cannot create new VTI interface, a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, as Resolved.
Fri, Jun 4, 5:34 PM · VyOS 1.4 Sagitta
c-po closed T3595: Cannot create new VTI interface as Resolved.
Fri, Jun 4, 5:34 PM · VyOS 1.4 Sagitta
c-po updated the task description for T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan.
Fri, Jun 4, 5:33 PM · VyOS 1.4 Sagitta
sdev changed the status of T3599: Migrate NHRP to XML/Python from Open to In progress.
Fri, Jun 4, 5:28 PM · VyOS 1.4 Sagitta
francis added a comment to T3040: NHRP IPv6 Support.

@c-po with this merge on FRR https://github.com/FRRouting/frr/pull/8153#event-4589485067 is migration possible? Possibly related to https://phabricator.vyos.net/T3040 ?

Fri, Jun 4, 4:45 PM · VyOS 1.3 Equuleus
francis added a comment to T2326: Migrate NHRP(DMVPN) to FRR.
Fri, Jun 4, 4:44 PM · VyOS 1.3 Equuleus
jack9603301 added a comment to T3596: Support wide-dhcp6-relay.

I wonder why this is flagged only as refactoring bit you open an entire new CLI tree.

Fri, Jun 4, 2:34 PM · VyOS 1.4 Sagitta
c-po added a comment to T3596: Support wide-dhcp6-relay.

Hi Jack,

Fri, Jun 4, 2:04 PM · VyOS 1.4 Sagitta
jack9603301 added a comment to T3596: Support wide-dhcp6-relay.

PR draft: https://github.com/vyos/vyos-1x/pull/863

Fri, Jun 4, 1:08 PM · VyOS 1.4 Sagitta
c-po renamed T3318: Update Linux Kernel to v5.4.128 / 5.10.46 from Update Linux Kernel to v5.4.123 / 5.10.41 to Update Linux Kernel to v5.4.124 / 5.10.42.
Fri, Jun 4, 12:55 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
c-po moved T3195: Add support for cisco style GRE keepalives from Need Triage to Backlog on the VyOS 1.4 Sagitta board.
Fri, Jun 4, 12:52 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
c-po changed the status of T3195: Add support for cisco style GRE keepalives from Open to Needs testing.
Fri, Jun 4, 12:52 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
c-po moved T3195: Add support for cisco style GRE keepalives from Need Triage to Backlog on the VyOS 1.3 Equuleus board.
Fri, Jun 4, 12:51 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
c-po moved T3592: Set default TTL 64 for tunnels from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Fri, Jun 4, 12:51 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
c-po moved T3592: Set default TTL 64 for tunnels from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Fri, Jun 4, 12:50 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
c-po moved T3594: Disable by default service strongswan-starter from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Fri, Jun 4, 12:50 PM · VyOS 1.4 Sagitta
c-po closed T3592: Set default TTL 64 for tunnels as Resolved.
Fri, Jun 4, 12:50 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
c-po moved T3132: Enable egress flow accounting from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Fri, Jun 4, 12:39 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
c-po added a project to T3132: Enable egress flow accounting: VyOS 1.3 Equuleus.
Fri, Jun 4, 12:32 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta

Thu, Jun 3

fernando added a comment to T3578: Prefix-List(6) update cause empty prefix-list(6).

Sorry for confusing with the status of the ticket , I wanted to put in pending . I was trying to replicate the issues in a lab environment but it wasn't possible , let me show :

Thu, Jun 3, 10:52 PM · VyOS 1.4 Sagitta
rpeterson changed the status of T3233: Interface redirect to dum0 from Invalid to Resolved.

I got it to work with version 1.4-rolling-202105291042. Here's the configuration that works:

Thu, Jun 3, 9:59 PM · VyOS 1.4 Sagitta
jpbede added a comment to T3132: Enable egress flow accounting.

@tuxis-ie found the issue. Used the wrong iptables chain. See https://github.com/vyos/vyos-1x/pull/864

Thu, Jun 3, 4:37 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
jack9603301 changed Difficulty level from normal to hard on T3116: Support back-end L4 level load balancing.
Thu, Jun 3, 4:10 PM · VyOS 1.4 Sagitta
dmbaturin changed Is it a breaking change? from none to behavior on T3592: Set default TTL 64 for tunnels.
Thu, Jun 3, 3:59 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
sdev created T3598: DMVPN/IPSec does not work with upstream Strongswan 5.9.
Thu, Jun 3, 2:32 PM · VyOS 1.4 Sagitta
jpbede added a comment to T3132: Enable egress flow accounting.

@tuxis-ie thanks for testing this out. Will check this.

Thu, Jun 3, 1:57 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
Dmitry changed the status of T3593: PPPoE server called-sid format does not work from In progress to Backport candidate.

Please, backport it to 1.3 rolling https://phabricator.vyos.net/rVYOSONEX4b646c1fb31a1a9f9c9d1658734d478fed5f19f1

Thu, Jun 3, 12:36 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
RyVolodya added a comment to T3593: PPPoE server called-sid format does not work.

This bag is present in VyOS version 1.3-beta-202105271929

Thu, Jun 3, 12:34 PM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta
jack9603301 changed the subtype of T3596: Support wide-dhcp6-relay from "Bug" to "Feature Request".
Thu, Jun 3, 11:21 AM · VyOS 1.4 Sagitta
jack9603301 changed the subtype of T3596: Support wide-dhcp6-relay from "Feature Request" to "Bug".
Thu, Jun 3, 10:45 AM · VyOS 1.4 Sagitta
vindenesen added a comment to T3579: Rewrite vyatta-conntrack in new XML and Python flavour.

I tried to create a custom timeout rule for tcp port 80. First I assumed that everything was fine since the first commit succeeded without error messages. But when I wanted to alter the rule, it failed. Below you see an example where I first create a rule, and then try to delete it. Afterwards any commits regarding custom timeouts fails.

Thu, Jun 3, 8:30 AM · VyOS 1.4 Sagitta
c-po added a comment to T3579: Rewrite vyatta-conntrack in new XML and Python flavour.

Yes, also this part will be migrated in the next couple of weeks as we plan to get rid of all legacy code in the 1.4 release cycle.

Thu, Jun 3, 7:42 AM · VyOS 1.4 Sagitta
c-po changed the status of T3595: Cannot create new VTI interface, a subtask of T2816: Rewrite IPsec scripts with the new XML/Python approach, from Open to Confirmed.
Thu, Jun 3, 7:40 AM · VyOS 1.4 Sagitta
c-po changed the status of T3595: Cannot create new VTI interface from Open to Confirmed.
Thu, Jun 3, 7:40 AM · VyOS 1.4 Sagitta
c-po claimed T3595: Cannot create new VTI interface.
Thu, Jun 3, 7:38 AM · VyOS 1.4 Sagitta
jack9603301 closed T3384: Support UDP bandwidth testing as Resolved.
Thu, Jun 3, 6:53 AM · VyOS 1.4 Sagitta
vindenesen added a comment to T3579: Rewrite vyatta-conntrack in new XML and Python flavour.

Will the custom timeout feature also be implemented in the python code? This is an option in the perl flavour (but doesn't actually work in 1.3 RC4).

Thu, Jun 3, 6:37 AM · VyOS 1.4 Sagitta

Wed, Jun 2

Viacheslav added a comment to T3595: Cannot create new VTI interface.

It seems after that commit

Wed, Jun 2, 7:54 PM · VyOS 1.4 Sagitta
Viacheslav added a subtask for T2816: Rewrite IPsec scripts with the new XML/Python approach: T3595: Cannot create new VTI interface.
Wed, Jun 2, 7:52 PM · VyOS 1.4 Sagitta
Viacheslav added a parent task for T3595: Cannot create new VTI interface: T2816: Rewrite IPsec scripts with the new XML/Python approach.
Wed, Jun 2, 7:52 PM · VyOS 1.4 Sagitta
Viacheslav edited projects for T3595: Cannot create new VTI interface, added: VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus.
Wed, Jun 2, 7:51 PM · VyOS 1.4 Sagitta
Viacheslav updated the task description for T3597: Add tunnels FOO over UDP (FOU).
Wed, Jun 2, 7:33 PM · VyOS 1.4 Sagitta
Viacheslav created T3597: Add tunnels FOO over UDP (FOU).
Wed, Jun 2, 5:08 PM · VyOS 1.4 Sagitta
jack9603301 changed the subtype of T3596: Support wide-dhcp6-relay from "Task" to "Feature Request".
Wed, Jun 2, 4:46 PM · VyOS 1.4 Sagitta
jack9603301 claimed T3596: Support wide-dhcp6-relay.
Wed, Jun 2, 2:54 PM · VyOS 1.4 Sagitta
jack9603301 created T3596: Support wide-dhcp6-relay.
Wed, Jun 2, 2:53 PM · VyOS 1.4 Sagitta
erkin changed the status of T3556: Commit-archive via scp causes 100% CPU on boot from Open to Needs testing.
Wed, Jun 2, 9:57 AM · VyOS 1.4 Sagitta
erkin changed the status of T3556: Commit-archive via scp causes 100% CPU on boot, a subtask of T3356: Script for remote file transfers, from Open to Needs testing.
Wed, Jun 2, 9:57 AM · VyOS 1.4 Sagitta
erkin changed the status of T3563: commit-archive breaks with IPv6 source addresses, a subtask of T3356: Script for remote file transfers, from Needs testing to In progress.
Wed, Jun 2, 9:53 AM · VyOS 1.4 Sagitta
erkin changed the status of T3563: commit-archive breaks with IPv6 source addresses from Needs testing to In progress.
Wed, Jun 2, 9:53 AM · VyOS 1.4 Sagitta
Dmitry added a comment to T3546: Add pppoe-server CLI custom script feature .

Extended scripts receive from PPPoE daemon the following variables:

$1 - Interface name
$4 - Tunnel GW IP address
$5 - Delegated IP address to the client
$6 - Calling Station ID (MAC)

For example, how to get received RADIUS attributes
note: In this case, Filter-Id attribute used as an indicator for block user adding to ipset

configure
set firewall group address-group blocked 
commit
Wed, Jun 2, 8:44 AM · VyOS 1.4 Sagitta
erkin changed the status of T2855: disabled vti interfaces still working from Open to Needs testing.

Waiting for T3595 to clear up before I can test this on rolling release.

Wed, Jun 2, 8:40 AM · VyOS 1.2 Crux (VyOS 1.2.8), VyOS 1.3 Equuleus
erkin created T3595: Cannot create new VTI interface.
Wed, Jun 2, 8:07 AM · VyOS 1.4 Sagitta
erkin changed the status of T2911: new pppoe warnings recently from Open to Needs testing.
Wed, Jun 2, 7:38 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
erkin closed T3233: Interface redirect to dum0 as Invalid.

I cannot replicate this bug in a clean install of 1.4-rolling-202105291042.

vyos@vyos# set interfaces dummy dum0 address 192.168.201.1/24
[edit]
vyos@vyos# commit
[edit]

Either there's something in your config meddling with the interface creation or (most likely) this bug was solved in the main branch since then.

Wed, Jun 2, 7:34 AM · VyOS 1.4 Sagitta
tuxis-ie added a comment to T3132: Enable egress flow accounting.

We upgraded to 1.3.0-rc4 last night and enabled enable-egress, which indeed sends out egress traffic as well. However, the macaddresses are all zero:

Wed, Jun 2, 7:06 AM · VyOS 1.3 Equuleus, VyOS 1.4 Sagitta

Tue, Jun 1

c-po added a subtask for T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan: T842: Adopt VyOS CLI to latest StrongSwan options and deprecated Keywords.
Tue, Jun 1, 8:46 PM · VyOS 1.4 Sagitta
c-po added a parent task for T842: Adopt VyOS CLI to latest StrongSwan options and deprecated Keywords: T3588: IPSec: migrate no longer available options from CLI which are now hardcoded/enabled in strongSwan.
Tue, Jun 1, 8:46 PM · VyOS 1.4 Sagitta
ernstjo added a comment to T3578: Prefix-List(6) update cause empty prefix-list(6).

I can reproduce the issue on our productive route in following way:

Tue, Jun 1, 7:42 PM · VyOS 1.4 Sagitta
c-po added a comment to T3195: Add support for cisco style GRE keepalives.

Why not use the mentioned method of sysctl`

Tue, Jun 1, 7:16 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus
c-po added a comment to T3214: OpenVPN IPv6 fixes.

@shaferstockton can you please post your entire generated openvpn.conf file?

Tue, Jun 1, 7:12 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus