Thanks, works now.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
All Stories
Nov 22 2020
Nov 21 2020
@danielpo thanks foe the config. A new rolling containig a fix for this issue was just published. A smoketest will be added today to ensure this wont happen again.
Nov 20 2020
authentication { password xxxx username xxxxx } device-type tun encryption { cipher aes256 } firewall { in { ipv6-name DENYv6_IN name DENY_IN } local { ipv6-name DENYv6_IN name DENY_IN } } hash sha256 mode client openvpn-option "key-direction 1" openvpn-option route-nopull persistent-tunnel protocol tcp-active remote-host 1.2.3.4 remote-host 1.2.3.5 remote-port 1195 tls { ca-cert-file /config/auth/cert.ca auth-file /config/auth/tls-auth tls-version-min 1.2 }
Please show us your config
Now this error appear when trying the latest image:
@dmbaturin @artooro Come on, remember not to forget NAT46
@c-po I am thinking, although it is not possible to incorporate NAT66, whether we can prioritize how to improve and incorporate NDP Proxy
DNS domain name servers are always requested from the server but must be explicitly "allowed" by set systems name-servers-dhcp
Running Docker on 1.3 rolling works, but there is no integration with the docker bridge interfaces and docker iptables rules obviously.
My goal was to run Traefik and Pihole and it works so far.
https://gist.github.com/Cremator/183c1a4d24e7812f94ec4bd41f7718b3
https://marc.info/?l=dhcp-hackers&m=128755776831463 describes the solution.
Setting ClientName, ClientIp, ClientMac, ClientDomain on release and expire fails, and there's no need for that since they are already known.
Simply removing all "set" commands in the release and expire section fixes this bug and restores the desired behaviour that i.e. the leases are removed from /etc/hosts.
I just saw the patch above for how to fix this and yes, with that line changed to sudo it now works correctly.
Thanks!
Nov 19 2020
I have adjust the logic which now sets the interface MAC address before any other parameter. Using the OSI model this makes sense as the MAC layer is below IP.
PR https://github.com/vyos/vyos-1x/pull/614
Add the ability to use policy local-route
Hi there,
Nov 18 2020
Let the responsible person of T2859 take care of it. I have not been able to see the problem from the information you provided for the time being. If you are familiar with python and linux, you can consider troubleshooting by yourself to try to find the problem. If not, just ask Maintenance personnel reproduce the fault
@c-po I have changed the PR to prohibit WLAN ports from joining VLAN-aware bridge ports
Nov 17 2020
I can now again bridge the WIFI interface to br0, please resolve the outstanding commit message changes and then it feels good to me! Thanks
In T3067#80025, @jack9603301 wrote:# Bridge port handling of wireless interfaces is done by hostapd. if 'wlan' in interface: returnWhy can't wlan be completed in bridge.py?
Propose to use that format
Contains 2 patch submissions
# Bridge port handling of wireless interfaces is done by hostapd. if 'wlan' in interface: return
This patch changes the settings and does not modify the vlan filter settings when VLAN awareness is not set, but the root cause of different problems is that the following code does not set the wireless port to the bridge normally:
Strange, the problem seems to be that the interface has not been added to the bridge. I may submit a patch about VLAN awareness to refuse to operate the vlan filter setting without enabling VLAN awareness, but I am not sure whether it has any Relationship, manual operation is normal:
Whether the VLAN aware bridge is activated?
Nov 16 2020
@jack9603301 Below the desired information:
Jool can handle 2 times as many packets.
https://link.springer.com/article/10.1007/s11235-020-00681-x
vyos@r4-roll# sudo cat /run/openvpn/vtun30365.conf ### Autogenerated by interfaces-openvpn.py ### # # See https://community.openvpn.net/openvpn/wiki/Openvpn24ManPage # for individual keyword definition # # #
Duplicate T2859
Please execute and analyze the following command to return the result, and carry out fault exploration, if possible, please output the result
Sorry, I have forgotten to copy them.
the error does not occur with every query (nor as a supplement)
PR https://github.com/vyos/vyos-1x/pull/612
Add IS-IS routing.
Is there no NAT policy?
I'm curious about how to do ERSPAN?
Nov 15 2020
Why not use ERSPAN?