Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Nov 18 2022

jestabro added a subtask for T4552: Unable to reset IPsec IPv6 peer: T4829: Tunnel argument to 'reset_peer' in ipsec.py should have type hint Optional.
Nov 18 2022, 10:21 PM · VyOS 1.4 Sagitta
jestabro added a parent task for T4829: Tunnel argument to 'reset_peer' in ipsec.py should have type hint Optional: T4552: Unable to reset IPsec IPv6 peer.
Nov 18 2022, 10:21 PM · VyOS 1.4 Sagitta
jestabro triaged T4829: Tunnel argument to 'reset_peer' in ipsec.py should have type hint Optional as Normal priority.
Nov 18 2022, 10:20 PM · VyOS 1.4 Sagitta
jestabro added a subtask for T4552: Unable to reset IPsec IPv6 peer: T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer'.
Nov 18 2022, 10:15 PM · VyOS 1.4 Sagitta
jestabro added a parent task for T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer': T4552: Unable to reset IPsec IPv6 peer.
Nov 18 2022, 10:15 PM · VyOS 1.4 Sagitta
jestabro added a comment to T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer'.

https://github.com/vyos/vyos-1x/pull/1665

Nov 18 2022, 10:14 PM · VyOS 1.4 Sagitta
jestabro triaged T4828: Raise appropriate op-mode errors in ipsec.py 'reset_peer' as Normal priority.
Nov 18 2022, 10:06 PM · VyOS 1.4 Sagitta
fernando added a comment to T4827: route-map issues , not load configuration FRR.

as we talked , this behavior is the same on vyos1.3.x/frr7.5.x . the main difference is that on vyos-cli doesn't add this command .

Nov 18 2022, 10:06 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T973: Create Prometheus Exporter for VyOS .
In T973#137840, @elico wrote:

@Viacheslav I want to test this, what should be done?

Nov 18 2022, 9:25 PM · VyOS 1.5 Circinus
Viacheslav added a comment to T4720: Ability to configure SSH HostKeyAlgorithms.

@Arc771 Thanks, Could you check it in the next rolling release after 20221118?

Nov 18 2022, 8:42 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4826: Wrong key type is used for SSH SK public keys from Open to Needs testing.

@DerEnderKeks Could you check it in the next rolling release after 20221118?

Nov 18 2022, 8:40 PM · VyOS 1.4 Sagitta
jestabro closed T4821: Correct calling of config mode script dependencies from firewall.py as Resolved.
Nov 18 2022, 6:11 PM · VyOS 1.4 Sagitta
jestabro closed T4821: Correct calling of config mode script dependencies from firewall.py, a subtask of T4820: Support for inter-config-mode script dependencies, as Resolved.
Nov 18 2022, 6:11 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4826: Wrong key type is used for SSH SK public keys.

PR https://github.com/vyos/vyos-1x/pull/1664

Nov 18 2022, 2:15 PM · VyOS 1.4 Sagitta
elico added a comment to T973: Create Prometheus Exporter for VyOS .

@Viacheslav I want to test this, what should be done?

Nov 18 2022, 12:33 PM · VyOS 1.5 Circinus
Viacheslav changed the status of T4819: Allow printing Warning messages in multiple lines with \n from In progress to Needs testing.
Nov 18 2022, 12:25 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4827: route-map issues , not load configuration FRR.
set policy route-map MAP-ISP1-AS1001-EXPORT rule 50 action 'deny'
set policy route-map MAP-ISP1-AS1001-EXPORT rule 50 continue '100'
Nov 18 2022, 11:10 AM · VyOS 1.4 Sagitta

Nov 17 2022

fernando created T4827: route-map issues , not load configuration FRR.
Nov 17 2022, 11:04 PM · VyOS 1.4 Sagitta
Viacheslav added a comment to T4826: Wrong key type is used for SSH SK public keys.

I guess it was implemented in the T4750
Should be easy to fix

Nov 17 2022, 9:12 PM · VyOS 1.4 Sagitta
c-po added a comment to T4284: QoS: rewrite to XML and Python.

Draft PR https://github.com/vyos/vyos-1x/pull/1663

Nov 17 2022, 9:05 PM · VyOS 1.4 Sagitta
c-po closed T4750: Support of higher level SSH keys (sk-ssh-ed25519) as Resolved.
Nov 17 2022, 9:05 PM · VyOS 1.4 Sagitta
pasik added a comment to T4776: NVME storage is not detected properly during installation.

@marc_s thanks for testing !

Nov 17 2022, 5:49 PM · VyOS 1.3 Equuleus (1.3.5), VyOS 1.4 Sagitta
TheSin- added a comment to T4797: External address/network lists for firewall (Local and remote).

Added file:// parser to vyos.remote.download and used that to simplify the code, no need to check if it's local now.

Nov 17 2022, 4:20 PM · VyOS 1.5 Circinus
TheSin- updated the task description for T4797: External address/network lists for firewall (Local and remote).
Nov 17 2022, 4:19 PM · VyOS 1.5 Circinus
DerEnderKeks created T4826: Wrong key type is used for SSH SK public keys.
Nov 17 2022, 1:54 PM · VyOS 1.4 Sagitta
Viacheslav edited projects for T4824: PBR/FW rulesets are ignored in rfc3768-compatibility VRRP setups, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus.
Nov 17 2022, 9:59 AM · VyOS 1.3 Equuleus (1.3.6)
jestabro changed the status of T4821: Correct calling of config mode script dependencies from firewall.py, a subtask of T4820: Support for inter-config-mode script dependencies, from Open to Needs testing.
Nov 17 2022, 1:09 AM · VyOS 1.4 Sagitta
jestabro changed the status of T4821: Correct calling of config mode script dependencies from firewall.py from Open to Needs testing.
Nov 17 2022, 1:09 AM · VyOS 1.4 Sagitta
jestabro added a comment to T4821: Correct calling of config mode script dependencies from firewall.py.

PR:
https://github.com/vyos/vyos-1x/pull/1662

Nov 17 2022, 12:59 AM · VyOS 1.4 Sagitta
jestabro renamed T4821: Correct calling of config mode script dependencies from firewall.py from Fix calling of config mode script dependencies from firewall.py to Correct calling of config mode script dependencies from firewall.py.
Nov 17 2022, 12:43 AM · VyOS 1.4 Sagitta

Nov 16 2022

syncer raised the priority of T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP from Wishlist to Normal.

Now as linux-cp available we can consider adding support

Nov 16 2022, 9:29 PM · VyOS 1.5 Circinus
syncer added a comment to T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP.

https://www.youtube.com/watch?v=D7PF1cOAAUk&ab_channel=DENOG

Nov 16 2022, 9:27 PM · VyOS 1.5 Circinus
syncer merged task T893: Add support for VPP into T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP.
Nov 16 2022, 9:27 PM · VyOS 1.4 Sagitta
syncer merged T893: Add support for VPP into T1797: Implement DPDK Fast-Path using FRR's Alternate Forwarding Planes and VPP.
Nov 16 2022, 9:27 PM · VyOS 1.5 Circinus
TheSin- added a comment to T4794: show firewall name <name> - Can't use .items() on a list.

thank you

Nov 16 2022, 7:32 PM · VyOS 1.4 Sagitta
roedie added a comment to T4794: show firewall name <name> - Can't use .items() on a list.

https://github.com/vyos/vyos-1x/pull/1661

Nov 16 2022, 7:30 PM · VyOS 1.4 Sagitta
fernando added a subtask for T4686: Provides support for veth: T4825: interfaces veth/veth-pairs -standalone used.
Nov 16 2022, 3:51 PM · VyOS 1.4 Sagitta
fernando added a parent task for T4825: interfaces veth/veth-pairs -standalone used: T4686: Provides support for veth.
Nov 16 2022, 3:51 PM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
fernando created T4825: interfaces veth/veth-pairs -standalone used.
Nov 16 2022, 3:47 PM · VyOS 1.3 Equuleus (1.3.4), VyOS 1.4 Sagitta
fernando created T4824: PBR/FW rulesets are ignored in rfc3768-compatibility VRRP setups.
Nov 16 2022, 12:42 PM · VyOS 1.3 Equuleus (1.3.6)
chesskuo added a comment to T4118: IPsec syntax overhaul.

Hello sir,

Nov 16 2022, 10:03 AM · VyOS 1.4 Sagitta
chesskuo created T4823: swanctl.conf is broken when ipsec site-to-site peer set..
Nov 16 2022, 9:57 AM · VyOS 1.4 Sagitta

Nov 15 2022

mcbridematt added a comment to T4822: vyatta-cfg-system: install correct version of GRUB for architecture (arm64).

Pull request: https://github.com/vyos/vyatta-cfg-system/pull/189

Nov 15 2022, 11:31 PM
mcbridematt created T4822: vyatta-cfg-system: install correct version of GRUB for architecture (arm64).
Nov 15 2022, 11:24 PM
Cheeze_It added a comment to T4739: ISIS and OSPF segment routing being refactored.

We figured out the problem. So for OSPF segment routing to work we need to enable opaque LSA capabilities. So by default VyOS doesn't have opaque LSAs (type 9, type 10, type 11) enabled. So after checking the configuration for the OSPF FRR template I noticed that the actual command to enable opaque LSAs is broken because it's not in the OSPF FRR template. Once we fix that, we'll have working OSPF segment routing.

Nov 15 2022, 10:37 PM · VyOS 1.4 Sagitta
jestabro added a parent task for T4821: Correct calling of config mode script dependencies from firewall.py: T4820: Support for inter-config-mode script dependencies.
Nov 15 2022, 10:13 PM · VyOS 1.4 Sagitta
jestabro added a subtask for T4820: Support for inter-config-mode script dependencies: T4821: Correct calling of config mode script dependencies from firewall.py.
Nov 15 2022, 10:13 PM · VyOS 1.4 Sagitta
jestabro triaged T4821: Correct calling of config mode script dependencies from firewall.py as Normal priority.
Nov 15 2022, 10:13 PM · VyOS 1.4 Sagitta
jestabro triaged T4820: Support for inter-config-mode script dependencies as Normal priority.
Nov 15 2022, 10:07 PM · VyOS 1.4 Sagitta
a.apostoliuk renamed T4819: Allow printing Warning messages in multiple lines with \n from Allow printing Warning and Critical messages in multiple lines with \n to Allow printing Warning messages in multiple lines with \n.
Nov 15 2022, 2:43 PM · VyOS 1.4 Sagitta
jestabro closed T4808: Add details of configtree operations to migration log as Resolved.
Nov 15 2022, 2:37 PM · VyOS 1.4 Sagitta
Arc771 added a comment to T4720: Ability to configure SSH HostKeyAlgorithms.

First of all, sorry for my late reply. I was on vacation and stayed away from IT for a bit ;)

Nov 15 2022, 2:32 PM · VyOS 1.4 Sagitta
a.apostoliuk changed the status of T4819: Allow printing Warning messages in multiple lines with \n from Open to In progress.
Nov 15 2022, 1:59 PM · VyOS 1.4 Sagitta
a.apostoliuk claimed T4819: Allow printing Warning messages in multiple lines with \n.
Nov 15 2022, 1:58 PM · VyOS 1.4 Sagitta
a.apostoliuk created T4819: Allow printing Warning messages in multiple lines with \n.
Nov 15 2022, 1:58 PM · VyOS 1.4 Sagitta
e-zann added a watcher for VyOS 1.4 Sagitta: e-zann.
Nov 15 2022, 11:59 AM
e-zann removed a watcher for VyOS 1.4 Sagitta: e-zann.
Nov 15 2022, 11:59 AM

Nov 14 2022

egoistdream updated the task description for T4818: IPv6 NDP not working everytime.
Nov 14 2022, 7:08 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta
egoistdream edited projects for T4818: IPv6 NDP not working everytime, added: VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.4).
Nov 14 2022, 7:05 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta
egoistdream created T4818: IPv6 NDP not working everytime.
Nov 14 2022, 6:34 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta
Viacheslav added a comment to T4812: IPsec ability to show all configured connections.

PR https://github.com/vyos/vyos-1x/pull/1657

vyos@r14:~$ show vpn ipsec connections 
Connection         State        Type    Remote address    Local TS        Remote TS    Proposal
-----------------  -----------  ------  ----------------  --------------  -----------  ---------------------------------------
OFFICE-B           established  IKEv1   192.0.2.2         -               -            AES_CBC/256/HMAC_SHA2_256_128/MODP_1024
OFFICE-B-tunnel-0  up           IPsec   192.0.2.2         192.168.0.0/24  10.0.0.0/21  AES_CBC/256/HMAC_SHA2_256_128/MODP_1024
OFFICE-B-tunnel-1  down         IPsec   192.0.2.2         192.168.1.0/24  10.0.0.0/21  -
OFFICE-B-tunnel-2  down         IPsec   192.0.2.2         192.168.2.0/24  10.0.0.0/21  -
OFFICE-C           down         IKEv1   192.0.2.2         -               -            -
OFFICE-C-tunnel-0  down         IPsec   192.0.2.2         192.168.5.0/24  10.0.0.0/21  -
vyos@r14:~$
Nov 14 2022, 5:03 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
dmbaturin added a comment to T4816: IPv4-mapped and IPv4-compatible IPv6 addresses not valid anymore.

@rcit I can assure you were never planned to explicitly disallow embedded IPv4 notation. Moreover, I thought the current validator supports it, even though we didn't have tests for it. I'll take a look!

Nov 14 2022, 4:00 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta
rherold created T4817: Please add support for RFC 9234.
Nov 14 2022, 3:13 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from In progress to Needs testing.
Nov 14 2022, 3:09 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav changed the status of T4789: Ability to get L2TP/PPTP/SSTP sessions info in a machine readable format from In progress to Needs testing.
Nov 14 2022, 3:09 PM · VyOS 1.4 Sagitta
Viacheslav edited projects for T4816: IPv4-mapped and IPv4-compatible IPv6 addresses not valid anymore, added: VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta; removed VyOS 1.3 Equuleus.
Nov 14 2022, 2:58 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta
fernando changed the status of T4813: L3VPN over GRE Tunnels from In progress to Needs testing.
Nov 14 2022, 11:37 AM · VyOS 1.4 Sagitta
rcit created T4816: IPv4-mapped and IPv4-compatible IPv6 addresses not valid anymore.
Nov 14 2022, 11:00 AM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta
vfreex added a comment to T4815: Fix various name server config issues.

Created PR to fix this: https://github.com/vyos/vyos-1x/pull/1656
This issue also exists in 1.3 though I didn't backport it.

Nov 14 2022, 3:07 AM · VyOS 1.4 Sagitta
vfreex created T4815: Fix various name server config issues.
Nov 14 2022, 3:03 AM · VyOS 1.4 Sagitta

Nov 13 2022

syncer triaged T4813: L3VPN over GRE Tunnels as Normal priority.
Nov 13 2022, 7:23 PM · VyOS 1.4 Sagitta
fernando added a comment to T4813: L3VPN over GRE Tunnels .

https://github.com/vyos/vyos-1x/pull/1655

Nov 13 2022, 5:16 PM · VyOS 1.4 Sagitta
Viacheslav updated subscribers of T4502: Consider implementing (NAT/other) flow table offload.
Nov 13 2022, 4:37 PM · VyOS 1.4 Sagitta
fernando changed the status of T4813: L3VPN over GRE Tunnels from Open to In progress.
Nov 13 2022, 2:08 PM · VyOS 1.4 Sagitta

Nov 12 2022

initramfs closed T4814: Regression in bundled powerdns version as Resolved.

I seem to have jumped the gun a bit as the issue seems to have been resolved via:

Nov 12 2022, 5:24 PM · VyOS 1.4 Sagitta
initramfs added a comment to T4799: PowerDNS >= 4.7 does not get reloaded by vyos-hostsd.

@c-po I think the reason you're seeing the old name of 'pdns-r/worker' is due to a packaging regression described in T4814. All the latest builds of vyos 1.4 seem to be providing powerdns 4.4 instead of the expected 4.8. Since this issue and corresponding bugfix only pertains to powerdns >= 4.8, the issue would not be visible if powerdns is downgraded to 4.4.

Nov 12 2022, 4:50 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
initramfs created T4814: Regression in bundled powerdns version.
Nov 12 2022, 4:47 PM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4812: IPsec ability to show all configured connections, a subtask of T4564: Root task for rewriting [op-mode] to vyos.opmode format, from Open to In progress.
Nov 12 2022, 5:30 AM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav changed the status of T4812: IPsec ability to show all configured connections from Open to In progress.
Nov 12 2022, 5:30 AM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
initramfs added a comment to T4799: PowerDNS >= 4.7 does not get reloaded by vyos-hostsd.

Just as a point of additional reference, I've bisected the PowerDNS source code to see where the change from 'pdns-r/worker' to something else occurred and successfully found that commit 69b39198 in the repository changes the thread names away from the prefix of 'pdns-r'. Since that change, the string pdns-r/ no longer exists in the source code. The aforementioned commit is included in the following tags:

Nov 12 2022, 3:12 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)

Nov 11 2022

sarthurdev added a comment to T4605: Firewall change default table names.

PR for policy route refactor updates to vyos_mangle: https://github.com/vyos/vyos-1x/pull/1654

Nov 11 2022, 4:49 PM · VyOS 1.4 Sagitta
fernando claimed T4813: L3VPN over GRE Tunnels .
Nov 11 2022, 4:46 PM · VyOS 1.4 Sagitta
fernando created T4813: L3VPN over GRE Tunnels .
Nov 11 2022, 4:45 PM · VyOS 1.4 Sagitta
hard added a comment to T4502: Consider implementing (NAT/other) flow table offload.

or maybe better add this subsection in firewall section?

Nov 11 2022, 9:27 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4807: Need to fix traceroute help completion, a subtask of T4496: ping vrf help does not list VRFs, from In progress to Needs testing.
Nov 11 2022, 8:18 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4807: Need to fix traceroute help completion from In progress to Needs testing.
Nov 11 2022, 8:18 AM · VyOS 1.4 Sagitta
Viacheslav changed the status of T4810: Op-mode show/monitor log pppoe interface does not show any logs from Open to Needs testing.
Nov 11 2022, 8:17 AM · VyOS 1.4 Sagitta

Nov 10 2022

Viacheslav added a parent task for T4812: IPsec ability to show all configured connections: T4564: Root task for rewriting [op-mode] to vyos.opmode format.
Nov 10 2022, 7:41 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
Viacheslav added a subtask for T4564: Root task for rewriting [op-mode] to vyos.opmode format: T4812: IPsec ability to show all configured connections.
Nov 10 2022, 7:41 PM · VyOS 1.5 Circinus, VyOS 1.4 Sagitta
Viacheslav created T4812: IPsec ability to show all configured connections.
Nov 10 2022, 7:40 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
n.fort edited projects for T4153: Monitor bandwidth-test initiate not working, added: VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.2).
Nov 10 2022, 2:19 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
n.fort edited projects for T4153: Monitor bandwidth-test initiate not working, added: VyOS 1.3 Equuleus (1.3.2); removed VyOS 1.3 Equuleus (1.3.0).
Nov 10 2022, 12:34 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
n.fort reopened T4153: Monitor bandwidth-test initiate not working as "Backport candidate".
Nov 10 2022, 12:30 PM · VyOS 1.3 Equuleus (1.3.3), VyOS 1.4 Sagitta
sajiby3k updated the task description for T4811: Webproxy bypassing cli command missing.
Nov 10 2022, 12:26 PM · VyOS 1.5 Circinus
sajiby3k created T4811: Webproxy bypassing cli command missing.
Nov 10 2022, 12:25 PM · VyOS 1.5 Circinus
initramfs added a comment to T4810: Op-mode show/monitor log pppoe interface does not show any logs.

Relevant PR:

Nov 10 2022, 7:52 AM · VyOS 1.4 Sagitta
initramfs created T4810: Op-mode show/monitor log pppoe interface does not show any logs.
Nov 10 2022, 7:46 AM · VyOS 1.4 Sagitta
initramfs added a comment to T4799: PowerDNS >= 4.7 does not get reloaded by vyos-hostsd.

Hmm, I can't seem to reproduce that name with "pdns-recursor/now 4.8.0~beta1-1pdns.bullseye amd64" or "pdns-recursor/now 4.8.0~beta2-1pdns.bullseye amd64" both in a live bare-metal system or in a VM. Both versions return pdns_recursor for me when printed from p.name(). The worker thread names (as listed from ps or htop) also don't match: "rec/web+stat" and "rec/taskThread", not that either of these are returned by p.name().

Nov 10 2022, 7:31 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)
c-po added a comment to T4799: PowerDNS >= 4.7 does not get reloaded by vyos-hostsd.

We use p.name from process_iter and it returns pdns-r/worker. That‘s why I have reverted the commits as in the latest 1.4 VyOS iso with PDNS 4.8 beta it‘s how they names the worker thread

Nov 10 2022, 6:49 AM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.3)

Nov 9 2022

TheSin- added a comment to T4797: External address/network lists for firewall (Local and remote).

list/lists in config and op-mode now moved to external-list

Nov 9 2022, 9:48 PM · VyOS 1.5 Circinus
First
Prev
Next