Page MenuHomeVyOS Platform
Feed All Stories

All Stories
Use Results
Edit Query

Sep 16 2020

Viacheslav added a comment to T2890: NAT error adding translation address range.

Duplicate T2539

Sep 16 2020, 6:24 PM · VyOS 1.3 Equuleus (1.3.0)
bamu created T2890: NAT error adding translation address range.
Sep 16 2020, 6:18 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2887: WiFi ht40+ channel width is not set in hostaptd.conf as Resolved.
Sep 16 2020, 5:46 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2887: WiFi ht40+ channel width is not set in hostaptd.conf from Open to In progress.
Sep 16 2020, 5:34 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2886: RADIUS authentication broken only returns operator level as Resolved.
Sep 16 2020, 4:56 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav created T2889: Service SNMP doesn't start after adding new addresses.
Sep 16 2020, 3:13 PM · VyOS 1.2 Crux
c-po added a comment to T2886: RADIUS authentication broken only returns operator level.

Add a smoketest to check if the required config options are present in the kernel configuration to prevent this in the future.

Sep 16 2020, 3:02 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2886: RADIUS authentication broken only returns operator level from Open to In progress.
Sep 16 2020, 2:59 PM · VyOS 1.3 Equuleus (1.3.0)
sempervictus created T2888: Cloud-init images refuse to work with network-based datasource such as Ec2 or OpenStack (but do work with OpenStack's config drive).
Sep 16 2020, 2:34 PM · VyOS 1.3 Equuleus (1.3.0)
c-po claimed T2887: WiFi ht40+ channel width is not set in hostaptd.conf.
Sep 16 2020, 5:56 AM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2887: WiFi ht40+ channel width is not set in hostaptd.conf.
Sep 16 2020, 5:56 AM · VyOS 1.3 Equuleus (1.3.0)

Sep 15 2020

c-po updated the task description for T2886: RADIUS authentication broken only returns operator level.
Sep 15 2020, 5:17 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2886: RADIUS authentication broken only returns operator level.
Sep 15 2020, 5:16 PM · VyOS 1.3 Equuleus (1.3.0)
c-po updated the task description for T2886: RADIUS authentication broken only returns operator level.
Sep 15 2020, 5:04 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2886: RADIUS authentication broken only returns operator level.
Sep 15 2020, 5:03 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2515: Ethernet interface is automatically disabled when removing it from bond as Resolved.
Sep 15 2020, 4:56 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro changed the status of T2885: configd: print commit errors to config session terminal, a subtask of T2582: Script daemon to offload processing during commit, from In progress to Needs testing.
Sep 15 2020, 4:31 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro changed the status of T2885: configd: print commit errors to config session terminal from In progress to Needs testing.
Sep 15 2020, 4:31 PM · VyOS 1.3 Equuleus (1.3.0)
sempervictus claimed T2884: Upstream Kernel Patches from Semper Victus Linux Hardened Tree.
Sep 15 2020, 4:09 PM · VyOS 1.5 Circinus
sempervictus changed Difficulty level from unknown to hard on T2884: Upstream Kernel Patches from Semper Victus Linux Hardened Tree.
Sep 15 2020, 4:08 PM · VyOS 1.5 Circinus
sempervictus updated the task description for T2884: Upstream Kernel Patches from Semper Victus Linux Hardened Tree.
Sep 15 2020, 4:08 PM · VyOS 1.5 Circinus
c-po claimed T2515: Ethernet interface is automatically disabled when removing it from bond.
Sep 15 2020, 3:59 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2882: DHCP client on bond interfaces not working as Invalid.
Sep 15 2020, 3:57 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2882: DHCP client on bond interfaces not working.

Yeah - its a bug when used in EVE-ng - closing

Sep 15 2020, 3:57 PM · VyOS 1.3 Equuleus (1.3.0)
sempervictus added a comment to T2884: Upstream Kernel Patches from Semper Victus Linux Hardened Tree.

While i appreciate that you have an opinion of what's "best," i'm not re-summarizing 10+y of Linux out-of-tree history to spoon feed someone data they can, and should (like good engineers do), acquire on their own. Several of those patches are simply in-tree integrations for things currently built and packaged as kmods by VyOS on an LTS tree, the rest are well documented long running projects of their own which one must research and review the source code for anyway to properly understand their function and benefit.

Sep 15 2020, 3:29 PM · VyOS 1.5 Circinus
jack9603301 added a comment to T2884: Upstream Kernel Patches from Semper Victus Linux Hardened Tree.

It’s best to provide links to related descriptions instead of asking everyone to search for the related details and patch implementations you describe

Sep 15 2020, 3:13 PM · VyOS 1.5 Circinus
jestabro changed the status of T2885: configd: print commit errors to config session terminal, a subtask of T2582: Script daemon to offload processing during commit, from Open to In progress.
Sep 15 2020, 2:56 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro changed the status of T2885: configd: print commit errors to config session terminal from Open to In progress.
Sep 15 2020, 2:56 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro added a subtask for T2582: Script daemon to offload processing during commit: T2885: configd: print commit errors to config session terminal.
Sep 15 2020, 2:56 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro added a parent task for T2885: configd: print commit errors to config session terminal: T2582: Script daemon to offload processing during commit.
Sep 15 2020, 2:56 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro triaged T2885: configd: print commit errors to config session terminal as Normal priority.
Sep 15 2020, 2:56 PM · VyOS 1.3 Equuleus (1.3.0)
sempervictus created T2884: Upstream Kernel Patches from Semper Victus Linux Hardened Tree.
Sep 15 2020, 1:39 PM · VyOS 1.5 Circinus
jestabro added a comment to T2865: System hangs at boot after mounting config.

@querubin thanks for the info; that requirement should not persist, as current work should lessen the overhead. I'll link the task back here when defined.

Sep 15 2020, 1:10 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a comment to T2882: DHCP client on bond interfaces not working.

I think it was a bug with virtio drivers and bonding.

Sep 15 2020, 9:56 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a comment to T2882: DHCP client on bond interfaces not working.

I can't reproduce it

Sep 15 2020, 8:58 AM · VyOS 1.3 Equuleus (1.3.0)
querubin added a comment to T2865: System hangs at boot after mounting config.

Tried the latest rolling. It boots/runs if you give it 768MB of memory.
At 512MB it hangs as before. I guess minimum requirements will be
changing.

Sep 15 2020, 8:39 AM · VyOS 1.3 Equuleus (1.3.0)

Sep 14 2020

syncer renamed T2883: op-mode reset vpn command shows wrong completion from Reset vpn commands show wrong complation to op-mode reset vpn command shows wrong completion.
Sep 14 2020, 9:37 PM · VyOS 1.2 Crux
Unknown Object (User) created T2883: op-mode reset vpn command shows wrong completion.
Sep 14 2020, 9:13 PM · VyOS 1.2 Crux
c-po changed the status of T2882: DHCP client on bond interfaces not working from Open to Confirmed.
Sep 14 2020, 6:16 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2882: DHCP client on bond interfaces not working.
Sep 14 2020, 6:16 PM · VyOS 1.3 Equuleus (1.3.0)
jestabro added a comment to T2865: System hangs at boot after mounting config.

@querubin Thank you for the detailed results --- firstly, these issues may be overdetermined due to several updates earlier this month; one notable issue is that we had moved to a 5.x series kernel, which showed several problems re QAT support, and an identified kernel bug. We have reverted to 4.19 as of yesterday until the next LTS kernel is available. I would suggest trying the most recent rolling, and then we will diagnose any persistent issues.

Sep 14 2020, 4:06 PM · VyOS 1.3 Equuleus (1.3.0)
banditos13 added a comment to T2881: Bug in weight calculation for failover mode.

In failover mode only one active channel with "best parameters" can be used for connections

Sep 14 2020, 3:03 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta
Viacheslav added a comment to T2881: Bug in weight calculation for failover mode.

@banditos13 Can you describe more details?
What is the bug and how to reproduce it?

Sep 14 2020, 2:09 PM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta
Viacheslav closed T2301: Cannot delete PBR as Resolved.

Was fixed with https://phabricator.vyos.net/R6:0ecfe5a6d11065388714b0ef21de532f88774357 and T1241

Sep 14 2020, 2:01 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a comment to T2868: Tcp-mss option in policy calls kernel-panic.
Sep 14 2020, 10:36 AM · VyOS 1.3 Equuleus (1.3.0)
banditos13 created T2881: Bug in weight calculation for failover mode.
Sep 14 2020, 8:18 AM · VyOS 1.3 Equuleus (1.3.7), VyOS 1.4 Sagitta
Viacheslav added a comment to T2868: Tcp-mss option in policy calls kernel-panic.

Still present in the latest rolling

Sep 14 2020, 7:47 AM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a comment to T2874: Add MTU and TCP-MSS discovery tool.

PR https://github.com/vyos/vyos-1x/pull/545

Sep 14 2020, 7:30 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2880: Update Linux Kernel to v4.19.145 as Resolved.
Sep 14 2020, 6:11 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2879: Cleanup 4.19.144 kernel configuration as Resolved.
Sep 14 2020, 6:11 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2864: Wireguard IPv6 Link-Local Addresses Cannot Be Disabled as Invalid.
Sep 14 2020, 3:42 AM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2864: Wireguard IPv6 Link-Local Addresses Cannot Be Disabled.

Fixed together with T2863 in commit https://github.com/vyos/vyos-1x/commit/d49845421dbd8d0f470b7122022543eb45d10b7a

Sep 14 2020, 3:41 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2872: "Show log" for nat and openvpn got intermixed as Resolved.
Sep 14 2020, 3:39 AM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2880: Update Linux Kernel to v4.19.145.

Details can be found in T2843

Sep 14 2020, 3:34 AM · VyOS 1.3 Equuleus (1.3.0)
jack9603301 added a comment to T2880: Update Linux Kernel to v4.19.145.

Isn't it upgraded to 5.x? Why 4.x?

Sep 14 2020, 1:05 AM · VyOS 1.3 Equuleus (1.3.0)

Sep 13 2020

c-po changed the status of T2880: Update Linux Kernel to v4.19.145 from Open to In progress.
Sep 13 2020, 7:40 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2880: Update Linux Kernel to v4.19.145.
Sep 13 2020, 7:29 PM · VyOS 1.3 Equuleus (1.3.0)
hagbard added a comment to T563: webproxy: migrate 'service webproxy' to get_config_dict().

Due to the fact that transparent proxy, which was the default, is being removed for now, there will be in the first version 2 authentication modes, one is by IP address or network (nothing else would be required as long as you have the correct src IP) and LDAP (either anonym or with bind-dn to browse LDAP. I have both mechanisms already working via cli and about to clean up and test right now. If anyone need a special authentication mechanism, please let me know. I also disabled local file caches, since these days most traffic is https anyway, we can take some pressure off of the filesystem (ssd).

Sep 13 2020, 6:45 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
c-po placed T2450: Rewrite "protocols vrf" tree in XML and Python up for grabs.
Sep 13 2020, 4:11 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2879: Cleanup 4.19.144 kernel configuration from Open to In progress.
Sep 13 2020, 4:08 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2879: Cleanup 4.19.144 kernel configuration.
Sep 13 2020, 3:51 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2841: "monitor bandwidth-test initiate" does not accept IPv6 address as option as Resolved.
Sep 13 2020, 3:34 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po moved T2841: "monitor bandwidth-test initiate" does not accept IPv6 address as option from Need Triage to Finished on the VyOS 1.3 Equuleus board.
Sep 13 2020, 3:33 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po moved T2841: "monitor bandwidth-test initiate" does not accept IPv6 address as option from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.7) board.
Sep 13 2020, 3:33 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po added a project to T2841: "monitor bandwidth-test initiate" does not accept IPv6 address as option: VyOS 1.2 Crux (VyOS 1.2.7).
Sep 13 2020, 3:07 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po changed the status of T2841: "monitor bandwidth-test initiate" does not accept IPv6 address as option from Open to In progress.
Sep 13 2020, 3:07 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po closed T2878: LACP / bonding: new op-mode command: show interfaces bonding bond0 detail as Resolved.
Sep 13 2020, 1:48 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po closed T2877: LACP / bonding: support configuration of minimum number of links as Resolved.
Sep 13 2020, 1:37 PM · VyOS 1.3 Equuleus (1.3.0)
SrividyaA added a comment to T2515: Ethernet interface is automatically disabled when removing it from bond.

Tested in the latest rolling release and observed that after deleting the member interface, the assigned interface is remained in the admin down state.

Sep 13 2020, 1:10 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed Difficulty level from unknown to easy on T2878: LACP / bonding: new op-mode command: show interfaces bonding bond0 detail.
Sep 13 2020, 12:53 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po claimed T2878: LACP / bonding: new op-mode command: show interfaces bonding bond0 detail.
Sep 13 2020, 12:53 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po created T2878: LACP / bonding: new op-mode command: show interfaces bonding bond0 detail.
Sep 13 2020, 12:52 PM · VyOS 1.2 Crux (VyOS 1.2.7)
c-po changed the status of T2877: LACP / bonding: support configuration of minimum number of links from Open to In progress.
Sep 13 2020, 12:12 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2877: LACP / bonding: support configuration of minimum number of links.
Sep 13 2020, 12:12 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2858: Rewrite dynamic dns client to get_config_dict() as Resolved.
Sep 13 2020, 11:18 AM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2857: Cleanup Intel QAT configuration script as Resolved.
Sep 13 2020, 8:35 AM · VyOS 1.3 Equuleus (1.3.0)
c-po renamed T2857: Cleanup Intel QAT configuration script from Rewrite Intel QAT accelerations scripts to get_config_dict() to Cleanup Intel QAT configuration script.
Sep 13 2020, 7:57 AM · VyOS 1.3 Equuleus (1.3.0)
Cheeze_It added a comment to T1518: Removing full OSPF protocol is not possible.

Not quite sure if this is the right thing to do but, if a "delete protocols ospf" command is given the equivalent in FRR should be "no router ospf".

Sep 13 2020, 5:38 AM · VyOS 1.3 Equuleus (1.3.3)
querubin added a comment to T2865: System hangs at boot after mounting config.

I attempted clean installations of VMs using both
vyos-1.3-rolling-202008301444-amd64.iso and
vyos-1.3-rolling-202009011736-amd64.iso. The first image boots up and
allows configuration. However, the latter hangs and never reaches a vyos
command line prompt. The last lines on the boot console are:

Sep 13 2020, 2:39 AM · VyOS 1.3 Equuleus (1.3.0)

Sep 12 2020

c-po closed T2863: Wireguard IPv6 Link-Local Addresses Are Not Unique as Resolved.
Sep 12 2020, 10:21 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2863: Wireguard IPv6 Link-Local Addresses Are Not Unique.

With VyOS 1.2 the default WireGuard behavior is used. This means that when a
WireGuard interface is added to the system, there is no "MAC" address - also
there is no IPv6 link-local address assigned by the Kernel to this particular
interface.

Sep 12 2020, 10:21 PM · VyOS 1.3 Equuleus (1.3.0)
c-po closed T2876: Update Linux Kernel to v4.19.144 as Resolved.
Sep 12 2020, 9:53 PM · VyOS 1.3 Equuleus (1.3.0)
c-po changed the status of T2876: Update Linux Kernel to v4.19.144 from Open to In progress.
Sep 12 2020, 6:44 PM · VyOS 1.3 Equuleus (1.3.0)
c-po created T2876: Update Linux Kernel to v4.19.144.
Sep 12 2020, 6:44 PM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2843: Upgrade Linux Kernel to 5.8 series.

Unfortunately we must revert the Kernel upgrade as there are two problematic issues:

Sep 12 2020, 6:43 PM · VyOS 1.3 Equuleus (1.3.0)
c-po claimed T2875: WiFi interface configured as station can not be added to bridge.
Sep 12 2020, 8:53 AM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2875: WiFi interface configured as station can not be added to bridge.

Which CLI commands did you use to trigger this error?

Sep 12 2020, 8:52 AM · VyOS 1.3 Equuleus (1.3.0)
c-po added a comment to T2863: Wireguard IPv6 Link-Local Addresses Are Not Unique.

Fix will be in one of the next rolling releases, stay tuned!

Sep 12 2020, 8:10 AM · VyOS 1.3 Equuleus (1.3.0)
trae32566 added a comment to T2863: Wireguard IPv6 Link-Local Addresses Are Not Unique.

Try a show ipv6 route ospfand look at the routes; they're probably being rejected:

trae@cr01b-vyos# run show ipv ro ospf
Codes: K - kernel route, C - connected, S - static, R - RIPng,
       O - OSPFv3, I - IS-IS, B - BGP, N - NHRP, T - Table,
       v - VNC, V - VNC-Direct, A - Babel, D - SHARP, F - PBR,
       f - OpenFabric,
       > - selected route, * - FIB route, q - queued route, r - rejected route
Sep 12 2020, 7:52 AM · VyOS 1.3 Equuleus (1.3.0)
owensresearch added a comment to T2863: Wireguard IPv6 Link-Local Addresses Are Not Unique.

https://phabricator.vyos.net/T1483

Sep 12 2020, 6:07 AM · VyOS 1.3 Equuleus (1.3.0)
owensresearch added a comment to T2863: Wireguard IPv6 Link-Local Addresses Are Not Unique.
show ipv6 ospfv3 route
---------------------------------------------------------------------------
*N E1 x:470:xx3c::/64             fe80::fdfe                  wg20 00:09:00
*N E1 x:19f0:6c01:acd::/64        fe80::fdfe                  wg20 00:09:00
*N E1 fdx:xx:1234:179::50/128     fe80::fdfe                  wg20 00:09:00
*N E1 fdx:xx:1234:179::69/128     fe80::fdfe                  wg20 00:09:00
*N E1 fdx:xx:1234:179::b2/128     fe80::fdfe                  wg20 00:09:00
*N E1 fdx:xx:1234:179::2464:0/126 fe80::fdfe                  wg20 00:09:00
*N E1 fdx:xx:1234:179::2464:2/128 fe80::fdfe                  wg20 00:09:00
*N E1 fdx:xx:1234:2b5::/64        fe80::fdfe                  wg20 00:09:00
*N IA fdx:xx:1234:face::/64       ::                          wg20 00:20:15
 N IA fdx:xx:1234:face::/64       fe80::fdfe                  wg20 00:09:00
 N E1 fdx:xx:1234:face::/64       fe80::fdfe                  wg20 00:09:00
*N E1 fdx:xx:2601:31::1/128       fe80::fdfe                  wg20 00:09:00
*N E1 fd86:x:x:116::1/128         fe80::fdfe                  wg20 00:09:00
*N E1 fdef:x:ee12:0:8:2:x11:0/127 fe80::fdfe                  wg20 00:09:00
*N E1 fdef:x:ee12:0:8:2:x11:0/128 fe80::fdfe                  wg20 00:09:00
*N E1 fdfc:x:fb45:x34::1/128      fe80::fdfe                  wg20 00:09:00
Sep 12 2020, 5:49 AM · VyOS 1.3 Equuleus (1.3.0)
owensresearch added a comment to T2863: Wireguard IPv6 Link-Local Addresses Are Not Unique.
Sep 12 2020, 5:48 AM · VyOS 1.3 Equuleus (1.3.0)
francis added a comment to T1817: BGP next-hop-self not working..

@zsdc Any chance on this in 1.2.6?

Sep 12 2020, 4:18 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.2 Crux (VyOS 1.2.9)

Sep 11 2020

kroy created T2875: WiFi interface configured as station can not be added to bridge.
Sep 11 2020, 8:16 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav added a comment to T2874: Add MTU and TCP-MSS discovery tool.
Sep 11 2020, 5:13 PM · VyOS 1.3 Equuleus (1.3.0)
Unknown Object (User) added a comment to T2868: Tcp-mss option in policy calls kernel-panic.

@c-po , the same behavior even with kernel 5.8.8

vyos@R1:~$ uname -a
Linux R1 5.8.8-amd64-vyos #1 SMP Thu Sep 10 08:58:42 UTC 2020 x86_64 GNU/Linux
Sep 11 2020, 10:06 AM · VyOS 1.3 Equuleus (1.3.0)
dmbaturin edited the content of 1.2.6.
Sep 11 2020, 9:12 AM

Sep 10 2020

jack9603301 awarded T2874: Add MTU and TCP-MSS discovery tool a Like token.
Sep 10 2020, 3:41 PM · VyOS 1.3 Equuleus (1.3.0)
Viacheslav created T2874: Add MTU and TCP-MSS discovery tool.
Sep 10 2020, 3:37 PM · VyOS 1.3 Equuleus (1.3.0)
jjakob triaged T2873: "show nat destination translation address" doesn't filter at all as Normal priority.
Sep 10 2020, 1:35 PM · VyOS 1.3 Equuleus (1.3.0)
First
Prev
Next