Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Jun 27 2021

ernstjo created T3652: BGP handshake with cisco router ends in timeout.
Jun 27 2021, 12:42 AM · VyOS 1.4 Sagitta
raphielscape added a comment to T2869: Intel ethernet driver defaults sub-optimal.

For RPS, we maybe can adapt https://github.com/bhuanand/rps-rfs-configuration to VyOS?

Jun 27 2021, 12:03 AM · VyOS 1.3 Equuleus (1.3.8), VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.2 Crux (VyOS 1.2.9), test

Jun 26 2021

jestabro added a subtask for T2289: Denest cerbot certificate configuration from service https: T3651: Move certbot request to op-mode.
Jun 26 2021, 6:52 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
jestabro added a parent task for T3651: Move certbot request to op-mode: T2289: Denest cerbot certificate configuration from service https.
Jun 26 2021, 6:52 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
jestabro created T3651: Move certbot request to op-mode.
Jun 26 2021, 6:51 PM · VyOS 1.3 Equuleus (1.3.6), VyOS 1.4 Sagitta
sarthurdev added a comment to T3642: PKI configuration.

When using show pki ... commands you would be able to see the relation between certificates and CAs.

Jun 26 2021, 5:27 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
Viacheslav changed the status of T3648: op-mode: nat rules broken from Open to Needs testing.
Jun 26 2021, 2:04 PM · VyOS 1.4 Sagitta
c-po closed T3586: Tunnel/Wireguard/VTI: replace random get_mac function with addrgenmode as Invalid.
Jun 26 2021, 7:43 AM · VyOS 1.4 Sagitta
c-po added a comment to T3586: Tunnel/Wireguard/VTI: replace random get_mac function with addrgenmode.

THis is infact only relevant when IPv6 addressing is used.

Jun 26 2021, 7:39 AM · VyOS 1.4 Sagitta

Jun 25 2021

Viacheslav assigned T3648: op-mode: nat rules broken to jack9603301.
Jun 25 2021, 8:49 PM · VyOS 1.4 Sagitta
jack9603301 added a comment to T3648: op-mode: nat rules broken.

PR: https://github.com/vyos/vyos-1x/pull/899

Jun 25 2021, 8:33 PM · VyOS 1.4 Sagitta
c-po added a comment to T3642: PKI configuration.

I ver much like this idea. Certificates can then easily be migrated from device to device, and very easy be referenced in a service.

Jun 25 2021, 8:17 PM · VyOS 1.4 Sagitta (1.4.0-epa1)
c-po closed T3641: Upgrade base system from Debian Buster -> Debian Bullseye as Resolved.
Jun 25 2021, 7:42 PM · VyOS 1.4 Sagitta
jack9603301 added a comment to T3648: op-mode: nat rules broken.

Sorry, this may be my fault. It seems that I only pay attention to modifying the identifier below and forget the top definition. Sorry.

Jun 25 2021, 6:40 PM · VyOS 1.4 Sagitta
c-po closed T3650: OpenVPN: Upgrade package to 2.5.1 before releasing VyOS 1.3.0 as Resolved.
Jun 25 2021, 5:28 PM · VyOS 1.3 Equuleus (1.3.0)
c-po moved T3650: OpenVPN: Upgrade package to 2.5.1 before releasing VyOS 1.3.0 from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Jun 25 2021, 5:27 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T3650: OpenVPN: Upgrade package to 2.5.1 before releasing VyOS 1.3.0.
Jun 25 2021, 5:26 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T3650: OpenVPN: Upgrade package to 2.5.1 before releasing VyOS 1.3.0 from Open to In progress.
Jun 25 2021, 5:20 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T3650: OpenVPN: Upgrade package to 2.5.1 before releasing VyOS 1.3.0.
Jun 25 2021, 5:20 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T3649: Add bonding additional hash-policy as Resolved.
Jun 25 2021, 4:58 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po moved T3649: Add bonding additional hash-policy from Need Triage to Finished on the VyOS 1.4 Sagitta board.
Jun 25 2021, 4:58 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
c-po moved T3649: Add bonding additional hash-policy from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Jun 25 2021, 4:58 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Unknown Object (User) added a comment to T3649: Add bonding additional hash-policy.

PR https://github.com/vyos/vyos-1x/pull/898

Jun 25 2021, 3:35 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Unknown Object (User) changed the status of T3649: Add bonding additional hash-policy from Open to In progress.
Jun 25 2021, 8:49 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Unknown Object (User) created T3649: Add bonding additional hash-policy.
Jun 25 2021, 8:48 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
raphielscape created T3648: op-mode: nat rules broken.
Jun 25 2021, 8:48 AM · VyOS 1.4 Sagitta

Jun 24 2021

Viacheslav added a comment to T2661: SSTP wrong certificates check.

@Dmitry Is it an actual task? Code was rewritten.

Jun 24 2021, 8:38 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav closed T2722: get_config_dict() and key_mangling=('-', '_') will alter CLI data for tagNodes as Resolved.

Already fixed with "no_tag_node_value_mangle=True"
https://github.com/vyos/vyos-1x/blob/705eddbc7a2caf09c37ecafb27418a764217975a/python/vyos/config.py#L218

Jun 24 2021, 8:33 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a project to T2770: Allow any character to be used in the SNMP community field: VyOS 1.4 Sagitta.
Jun 24 2021, 8:17 PM · VyOS 1.4 Sagitta (1.4.0-GA), VyOS 1.5 Circinus
Viacheslav added a project to T2778: Migrate "system syslog" to get_config_dict() to support new features: VyOS 1.4 Sagitta.
Jun 24 2021, 8:10 PM · VyOS 1.4 Sagitta
Viacheslav added a project to T2773: EIGRP support for VRF: VyOS 1.4 Sagitta.
Jun 24 2021, 8:10 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T2773: EIGRP support for VRF.

Eigrp in the FRR doesn't work correctly.
The routes still live even if neighbors in a shutdown state.

Jun 24 2021, 8:09 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T2771: BGP VPNv4 & VPNv6 Address Family Support.

@Cheeze_It can you re-check it?

Jun 24 2021, 8:04 PM · VyOS 1.3 Equuleus (1.3.5)
c-po added a subtask for T3641: Upgrade base system from Debian Buster -> Debian Bullseye: T1512: vyos 1.2 openvpn client names with spaces created incorrectly.
Jun 24 2021, 7:12 PM · VyOS 1.4 Sagitta
c-po added a parent task for T1512: vyos 1.2 openvpn client names with spaces created incorrectly: T3641: Upgrade base system from Debian Buster -> Debian Bullseye.
Jun 24 2021, 7:12 PM · VyOS 1.3 Equuleus (1.3.0), openvpn
Viacheslav added a comment to T3640: Allow resetting Wireguard interface.

There is a link to the existing code for configuration mode, not pr.
So we can to add the op-mode function to re-add/reset with a similar logic. Only thoughts

Jun 24 2021, 11:02 AM · VyOS 1.5 Circinus
mrozentsvayg added a comment to T3240: Support per-interface DHCPv6 DUIDs.

Not working for me as expected in 1.3.0-rc4
In my current working configuration, the duid is in the /var/lib/dhcpv6/dhcp6c_duid file (29 bytes).

Jun 24 2021, 3:00 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta

Jun 23 2021

hagbard added a comment to T3640: Allow resetting Wireguard interface.
In T3640#96973, @Viacheslav wrote:

I think it will be enough to remove the peer and add again.
@hagbard what do you think?
https://github.com/vyos/vyos-1x/blob/d48dddab0509e562209adfb115b0e691b8e47f54/python/vyos/ifconfig/wireguard.py#L197

Jun 23 2021, 7:13 PM · VyOS 1.5 Circinus
Viacheslav added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

Not sure about double quotes, but for example for cloud-init configs, it is necessary to use single quotes.
Ideally, the configuration should look like in show configuration commands

Jun 23 2021, 6:51 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3640: Allow resetting Wireguard interface.

I think it will be enough to remove the peer and add again.
@hagbard what do you think?
https://github.com/vyos/vyos-1x/blob/d48dddab0509e562209adfb115b0e691b8e47f54/python/vyos/ifconfig/wireguard.py#L197

Jun 23 2021, 6:41 PM · VyOS 1.5 Circinus
jestabro closed T3647: Bullseye: gcc defaults to passing --as-needed to linker, a subtask of T3641: Upgrade base system from Debian Buster -> Debian Bullseye, as Resolved.
Jun 23 2021, 5:27 PM · VyOS 1.4 Sagitta
jestabro closed T3647: Bullseye: gcc defaults to passing --as-needed to linker as Resolved.
Jun 23 2021, 5:27 PM · VyOS 1.4 Sagitta
Viacheslav added a project to T1877: Feature Request: Allow NAT to use network and address groups: VyOS 1.4 Sagitta.
Jun 23 2021, 5:06 PM · VyOS 1.4 Sagitta
jestabro updated the task description for T3647: Bullseye: gcc defaults to passing --as-needed to linker.
Jun 23 2021, 5:01 PM · VyOS 1.4 Sagitta
c-po renamed T3318: Update Linux Kernel to v5.4.208 / 5.10.142 from Update Linux Kernel to v5.4.127 / 5.10.45 to Update Linux Kernel to v5.4.128 / 5.10.46.
Jun 23 2021, 4:54 PM · VyOS 1.3 Equuleus (1.3.2), VyOS 1.4 Sagitta
jestabro added a subtask for T3641: Upgrade base system from Debian Buster -> Debian Bullseye: T3647: Bullseye: gcc defaults to passing --as-needed to linker.
Jun 23 2021, 4:50 PM · VyOS 1.4 Sagitta
jestabro added a parent task for T3647: Bullseye: gcc defaults to passing --as-needed to linker: T3641: Upgrade base system from Debian Buster -> Debian Bullseye.
Jun 23 2021, 4:50 PM · VyOS 1.4 Sagitta
jestabro changed the status of T3647: Bullseye: gcc defaults to passing --as-needed to linker from Open to In progress.
Jun 23 2021, 4:47 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3643: show vpn ipsec sa doesn't show tunnels in "down" state.

PR https://github.com/vyos/vyos-1x/pull/897
Fix path for swanctl.conf file

Jun 23 2021, 3:20 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
raphielscape added a comment to T3640: Allow resetting Wireguard interface.
In T3640#96937, @hagbard wrote:

Wireguard has no link states on the interface, the ip command just does an 'administrative' up down, which won't start a renegotiation. The policy description (remove peer) needs to be removed from the wg interface and re-added, otherwise you need to wait until wg tries to rekey which will then eventually renegotiate the entire connection.
The removal was as far as I recall part of the original vyos code, so it may have been removed at one point, I haven't looked into the code yet.

For NAT, try setting persistent-keepalive, that is supposed to keep the NAT entry active, even if you have no traffic for the tunnel.

Jun 23 2021, 3:14 PM · VyOS 1.5 Circinus
Viacheslav closed T3646: ospfd logs inacessbile for user as Invalid.

@Harliff Try 1.2.7/1.3 it was fixed with commit https://github.com/vyos/vyos-build/pull/138/files#diff-c7d29a506307d9cf8d86c3cd3f65ca4e4058ea442cacdf9a89d2485b56c7417aR67
T2061

Jun 23 2021, 2:49 PM · vyos-frr, VyOS 1.2 Crux
MaxiM added a comment to T1200: SNMP GET broken at least for BGP4-MIB.

@MaxiM In which exact version was a different behavior?

Jun 23 2021, 2:15 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.6)
hagbard added a comment to T3640: Allow resetting Wireguard interface.

Wireguard has no link states on the interface, the ip command just does an 'administrative' up down, which won't start a renegotiation. The policy description (remove peer) needs to be removed from the wg interface and re-added, otherwise you need to wait until wg tries to rekey which will then eventually renegotiate the entire connection.
The removal was as far as I recall part of the original vyos code, so it may have been removed at one point, I haven't looked into the code yet.

Jun 23 2021, 1:49 PM · VyOS 1.5 Circinus
FileGo reopened T3556: Commit-archive via scp causes 100% CPU on boot, a subtask of T3356: Script for remote file transfers, as Open.
Jun 23 2021, 10:06 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
FileGo reopened T3556: Commit-archive via scp causes 100% CPU on boot as "Open".

Actually scratch that. I run a HA pair of VyOS routers via VRRP with a transition script on master/backup, and it looks like when it transitions from backup to master, the commit (at the end of the script) still locks in an endless cycle, combined with some sort of memory leak in keepalived-fifo.py (that doesn't occur if commit-archive via scp is not set up).

Jun 23 2021, 10:06 AM · VyOS 1.4 Sagitta
erkin closed T3556: Commit-archive via scp causes 100% CPU on boot, a subtask of T3356: Script for remote file transfers, as Resolved.
Jun 23 2021, 9:51 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
erkin closed T3556: Commit-archive via scp causes 100% CPU on boot as Resolved.
Jun 23 2021, 9:51 AM · VyOS 1.4 Sagitta
FileGo added a comment to T3556: Commit-archive via scp causes 100% CPU on boot.

Looks fine on boot now.

Jun 23 2021, 9:46 AM · VyOS 1.4 Sagitta
Harliff added a comment to T3646: ospfd logs inacessbile for user.

I've not checked later versions. Maybe it was already fixed on 1.2.7 or 1.3/1.4 ?

Jun 23 2021, 9:45 AM · vyos-frr, VyOS 1.2 Crux
Harliff created T3646: ospfd logs inacessbile for user.
Jun 23 2021, 9:44 AM · vyos-frr, VyOS 1.2 Crux
erkin added a comment to T3556: Commit-archive via scp causes 100% CPU on boot.

Now that the Paramiko and Cryptography versions have been updated, does this problem persist with the newer nightlies? @SrividyaA @FileGo

Jun 23 2021, 9:19 AM · VyOS 1.4 Sagitta
erkin closed T3356: Script for remote file transfers, a subtask of T3355: Remove all remaining legacy Vyatta code, as Resolved.
Jun 23 2021, 9:11 AM · VyOS 1.5 Circinus
erkin closed T3356: Script for remote file transfers as Resolved.
Jun 23 2021, 9:11 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
erkin changed the status of T3506: Migrate loadkey command to op-mode, a subtask of T3355: Remove all remaining legacy Vyatta code, from In progress to On hold.
Jun 23 2021, 8:49 AM · VyOS 1.5 Circinus
erkin changed the status of T3506: Migrate loadkey command to op-mode from In progress to On hold.

Done with generate public-key-command. loadkey is deprecated and will be removed in a future version.

Jun 23 2021, 8:49 AM · VyOS 1.4 Sagitta
erkin changed the status of T3506: Migrate loadkey command to op-mode, a subtask of T3356: Script for remote file transfers, from In progress to On hold.
Jun 23 2021, 8:49 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
erkin closed T3644: Replace GCC with a simpler preprocessor for including nested XML snippets in XML documents as Resolved.
Jun 23 2021, 8:32 AM · VyOS 1.4 Sagitta (1.4.0-GA)
raphielscape added a comment to T3640: Allow resetting Wireguard interface.
In T3640#96876, @c-po wrote:

If your host is behind NAT, could it possibly be that the NAT translation entry expired?

Does the following work:

ip link set dev wg0 down; ip link set dev wg0 up

Jun 23 2021, 6:23 AM · VyOS 1.5 Circinus
trae32566 added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.
In T3638#96831, @Viacheslav wrote:

Try to set single quotes.

Jun 23 2021, 3:31 AM · VyOS 1.4 Sagitta

Jun 22 2021

fernando added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

yes, I am using the following version :

Jun 22 2021, 7:28 PM · VyOS 1.4 Sagitta
c-po triaged T3645: Bullseye: ethtool changed output for ring-buffer information as High priority.
Jun 22 2021, 7:01 PM · VyOS 1.4 Sagitta
c-po closed T3645: Bullseye: ethtool changed output for ring-buffer information, a subtask of T3641: Upgrade base system from Debian Buster -> Debian Bullseye, as Resolved.
Jun 22 2021, 7:01 PM · VyOS 1.4 Sagitta
c-po closed T3645: Bullseye: ethtool changed output for ring-buffer information as Resolved.
Jun 22 2021, 7:01 PM · VyOS 1.4 Sagitta
c-po changed the status of T3645: Bullseye: ethtool changed output for ring-buffer information, a subtask of T3641: Upgrade base system from Debian Buster -> Debian Bullseye, from Open to In progress.
Jun 22 2021, 6:50 PM · VyOS 1.4 Sagitta
c-po changed the status of T3645: Bullseye: ethtool changed output for ring-buffer information from Open to In progress.
Jun 22 2021, 6:50 PM · VyOS 1.4 Sagitta
c-po created T3645: Bullseye: ethtool changed output for ring-buffer information.
Jun 22 2021, 6:50 PM · VyOS 1.4 Sagitta
c-po added a comment to T3640: Allow resetting Wireguard interface.

If your host is behind NAT, could it possibly be that the NAT translation entry expired?

Jun 22 2021, 4:56 PM · VyOS 1.5 Circinus
c-po changed the status of T3641: Upgrade base system from Debian Buster -> Debian Bullseye from Open to In progress.
Jun 22 2021, 4:37 PM · VyOS 1.4 Sagitta
Viacheslav closed T3582: 'delete log file' does not work as Resolved.
Jun 22 2021, 4:23 PM · VyOS 1.2 Crux (VyOS 1.2.8)
Viacheslav edited projects for T3582: 'delete log file' does not work, added: VyOS 1.2 Crux (VyOS 1.2.8); removed VyOS 1.2 Crux (VyOS 1.2.7).
Jun 22 2021, 4:22 PM · VyOS 1.2 Crux (VyOS 1.2.8)
erkin added a parent task for T3639: GCC preprocessor clobbers C comments: T3644: Replace GCC with a simpler preprocessor for including nested XML snippets in XML documents.
Jun 22 2021, 4:06 PM · VyOS 1.4 Sagitta
erkin added a subtask for T3644: Replace GCC with a simpler preprocessor for including nested XML snippets in XML documents: T3639: GCC preprocessor clobbers C comments.
Jun 22 2021, 4:06 PM · VyOS 1.4 Sagitta (1.4.0-GA)
erkin changed the status of T3644: Replace GCC with a simpler preprocessor for including nested XML snippets in XML documents from Open to In progress.
Jun 22 2021, 4:05 PM · VyOS 1.4 Sagitta (1.4.0-GA)
Viacheslav added a comment to T1790: OSPF Exchanged Routes marked as invalid when run through a GRE PTMP/PTP OSPF between peers .

@SquirePug Can you check 1.2.7 release?

Jun 22 2021, 3:51 PM · VyOS 1.3 Equuleus (1.3.8), VyOS 1.4 Sagitta (1.4.0-GA)
raphielscape added a comment to T3640: Allow resetting Wireguard interface.
In T3640#96771, @Viacheslav wrote:

We don't use any configuration file for it, so I think we can't use wg-quick
We use "wg set"

$ sudo wg set --help
Usage: wg set <interface> [listen-port <port>] [fwmark <mark>] [private-key <file path>] [peer <base64 public key> [remove] [preshared-key <file path>] [endpoint <ip>:<port>] [persistent-keepalive <interval seconds>] [allowed-ips <ip1>/<cidr1>[,<ip2>/<cidr2>]...] ]...
Jun 22 2021, 3:37 PM · VyOS 1.5 Circinus
Viacheslav added a comment to T2892: Remove command: "set firewall options interface <interface> disable".

I don't see the reason to delete the "disable" option, as it uses for adjust-mss and adjust-mss6.
And you need temporarily disable it.

Jun 22 2021, 1:03 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav changed the status of T3636: SSTP / L2TP ipv6 support broken from Open to Needs testing.
Jun 22 2021, 12:56 PM · VyOS 1.4 Sagitta
Viacheslav reassigned T3629: IPoE server shifting address in the range from Viacheslav to Unknown Object (User).
Jun 22 2021, 12:46 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav closed T3629: IPoE server shifting address in the range as Resolved.
Jun 22 2021, 12:45 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a comment to T3636: SSTP / L2TP ipv6 support broken.

PR https://github.com/vyos/vyos-1x/pull/895

Jun 22 2021, 12:27 PM · VyOS 1.4 Sagitta
Viacheslav assigned T3643: show vpn ipsec sa doesn't show tunnels in "down" state to sarthurdev.
Jun 22 2021, 10:59 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
Viacheslav added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

Try to set single quotes.

Jun 22 2021, 10:13 AM · VyOS 1.4 Sagitta
Viacheslav added a comment to T3643: show vpn ipsec sa doesn't show tunnels in "down" state.

Different format

vyos@r1-roll:~$ show vpn ipsec sa
Connection                State    Uptime    Bytes In/Out    Packets In/Out    Remote address    Remote ID    Proposal
------------------------  -------  --------  --------------  ----------------  ----------------  -----------  ----------
peer_192-0-2-2_tunnel_1   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_10  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_11  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_12  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_13  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_14  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_15  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_16  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_17  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_18  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_19  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_2   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_20  down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_3   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_4   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_5   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_6   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_7   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_8   down     N/A       N/A             N/A               N/A               N/A          N/A
peer_192-0-2-2_tunnel_9   down     N/A       N/A             N/A               N/A               N/A          N/A
vyos@r1-roll:~$
Jun 22 2021, 10:07 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
trae32566 added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

Confirmed that's what is happening:

vyos@cr01a-vyos# TEST='variable'
[edit]
vyos@cr01a-vyos# set system login user vyos authentication plaintext-password HqNzXaK27k19$TEST
[edit]
vyos@cr01a-vyos# comp
[edit system login user vyos authentication]
+plaintext-password HqNzXaK27k19variable
Jun 22 2021, 8:35 AM · VyOS 1.4 Sagitta
trae32566 added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

@fernando Are you sure you're testing this on 1.3?

vyos@cr01a-vyos# run show ver
Jun 22 2021, 8:25 AM · VyOS 1.4 Sagitta
sarthurdev added a comment to T2816: Rewrite IPsec scripts with the new XML/Python approach.

@SrividyaA Fixed in PR https://github.com/vyos/vyos-1x/pull/894

Jun 22 2021, 7:45 AM · VyOS 1.4 Sagitta
sarthurdev added a comment to T3643: show vpn ipsec sa doesn't show tunnels in "down" state.

PR: https://github.com/vyos/vyos-1x/pull/894

Jun 22 2021, 7:44 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta

Jun 21 2021

fernando added a comment to T3638: Passwords With Dollar Sign Set Incorrectly.

I 've been checking this behavior with a different password , also I used the same password as you . But I couldn't reproduce the issue , both cases i add $ in the word and change the hash, let me show :

Jun 21 2021, 11:20 PM · VyOS 1.4 Sagitta
Viacheslav added a subtask for T2816: Rewrite IPsec scripts with the new XML/Python approach: T3643: show vpn ipsec sa doesn't show tunnels in "down" state.
Jun 21 2021, 8:57 PM · VyOS 1.4 Sagitta
Viacheslav added a parent task for T3643: show vpn ipsec sa doesn't show tunnels in "down" state: T2816: Rewrite IPsec scripts with the new XML/Python approach.
Jun 21 2021, 8:57 PM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
First
Prev
Next