- User Since
- Jul 14 2020, 6:18 PM (54 w, 2 d)
As requested, checked in 1.3.0-rc and it shows the destination translations with basic configuration.
Tue, Jul 13
Parent task: https://phabricator.vyos.net/T2816
Mon, Jul 12
@sdev It still shows the ikev2 as the default version in the output.
I agree with your point that strongswan has changed the default version. A quote from their documentation: "Since 5.0.0 both protocols are handled by Charon and connections marked with ike will use IKEv2 when initiating, but accept any protocol version when responding."
Tue, Jul 6
@sdev , Thank you. I will test and confirm, once the new rolling version is released.
Jun 28 2021
Parent Task: https://phabricator.vyos.net/T2816
I have tried one more scenario:
Jun 21 2021
In fresh/new setup, the output of the command "show vpn ike sa" is throwing an exception error:
Jun 17 2021
Tested with basic ipsec configuration and it does not seem to work when 3des encryption is configured. It works with default (aes128) and aes192.
Jun 16 2021
Submitted this PR: https://github.com/vyos/vyatta-op/pull/46
the possible completion output is fixed in the latest release: 1.4-rolling-202106151212
Jun 14 2021
May 30 2021
thank you for the suggestion, I will work on this.
When the following command "set system syslog file <filename> facility <keyword> level <keyword>" is applied, then the files are stored in the /var/log/user directory. These files can be deleted using the command "delete log file <text>"
May 26 2021
May 25 2021
Providing an entire path of the file i.e. /opt/vyatta/etc/key-pair.template instead of "@sysconfdir@/key-pair.template", makes the command executable.
IPSec VPN in X509 mode needs ca cert file, also server/client cert has to be signed by the CA for identification.
So, maybe rewriting this script will be helpful.
Any suggestions are welcome.
May 20 2021
It seems other commands like save, copy which depend on scp and tftp are also broken.
May 18 2021
May 17 2021
Even I also faced this error while upgrading the server from 1.2.7 to the latest rolling release.
May 5 2021
Apr 20 2021
It seems to show the output correctly when single tunnel is present not with multiple tunnels.
Ref Task: https://phabricator.vyos.net/T3473
Apr 19 2021
I tested in 1.2.7 ver and the issue did not reproduce:
Apr 17 2021
Version: VyOS 1.4-rolling-202104151445
Apr 11 2021
Submitted following PR:
Mar 31 2021
Parent task: https://phabricator.vyos.net/T3356
Mar 30 2021
The workaround for save command does not seem to work, have you tried for commit-archive option ?
Mar 29 2021
This command is used to generate the ssh fingerprint of your host when vyos cannot verify the legitimacy of the remote server
Mar 27 2021
Mar 23 2021
Fixed in the latest version:1.4-rolling-202103230217
Mar 22 2021
Post the migration of the script from /opt/vyatta/bin/vyos-strip-config.pl to /usr/libexec/vyos/strip-private.py, the strip-private seems to be not working when the ipv6 address is configured to an interface.
Mar 8 2021
Mar 5 2021
Submitted this PR to fix the issue:
Mar 4 2021
Feb 20 2021
Hi, I have tried these set of configuration and the openvpn connection was up and working fine.
Feb 17 2021
This issue has been fixed in this commit: https://github.com/vyos/vyos-1x/commit/0fb5cc02c6c16ef410c1b1f746c1fbfbc40a0da0
Feb 16 2021
The translation is working properly now but it is not showing in the command output:
Feb 6 2021
The pull request is created to fix this issue:
Feb 3 2021
@Viacheslav , I tested in the 1.4 version, it seems that the neighborship is stuck in ExStart state with basic config. This behavior is not seen in 1.2.5 and 1.3
And also no frr.log is created.
Feb 1 2021
@Viacheslav , working on it and update you soon.
Dec 18 2020
Dec 14 2020
Pull request submitted to change the permissions:
Dec 4 2020
Nov 7 2020
Issue is fixed in the latest rolling release. The IPv4 remote-host hostname in client mode works without adding the option '--proto udp4'.
Tested in VyOS 1.3-rolling-202011060217
Nov 5 2020
Nov 4 2020
Oct 30 2020
Can you please share the entire configuration and version of the VyOS to reproduce the issue in the lab.
Oct 27 2020
Resolved in T2985
I have tested on this rolling release VyOS 1.3-rolling-202010231135 and created a lab setup similar to the reporter's setup.
Oct 19 2020
Oct 13 2020
Oct 2 2020
Reproduced the issue in the rolling release VyOS 1.3-rolling-202009300117 and the route-map configuration wiped out after the reboot with the error as mentioned in the problem description and happens only when the bridge address is added for src and not for other interface types.
Sep 22 2020
Sep 18 2020
Tested in LTS 1.2.5 and latest rolling release, where it is not allowing to add the AA:NN along with Additive
Sep 13 2020
Tested in the latest rolling release and observed that after deleting the member interface, the assigned interface is remained in the admin down state.
Sep 10 2020
Aug 17 2020
In addition to the workaround provided in the task T2747, the following configuration could also be added to the existing configuration:
Aug 6 2020
The commit fails when the local-ip option is included only with the 6RD prefix options (without 6RD option, 6in4 tunnel is created). In the tunnel.py script, local value is not defined as result stack trace is received
Jul 29 2020
The issue did not reproduce neither in 1.2.5 nor in 1.3 version.
Try in the new release and re-open the ticket if any new information appeared.
Jul 24 2020
I have tested the steps as mentioned in the description in VyOS 1.3-rolling-202007220117 and the issue did not reproduce.
Please try to create a new user in the latest version and share your feedback.
Jul 21 2020
I have tried the above scenario in the VyOS 1.3-rolling-202007200117 which is the latest version and the issue did not reproduce. So I would request you to try in the latest version and share your feedback.
Jul 20 2020
Even after restart of the server, the local ip does reflect in the in the interface tunnel status.
I could see that your OS version is 1.3-rolling-202005051136, could you please check in the latest version.
Jul 17 2020
The issue did not reproduce in the VyOS 1.3-rolling-202007140117 version. Also commit fails if the local-ip is missing
Reproduced in VyOS 1.3-rolling-202007140117 version
When the mac address is added to the interface manually, the interface is marked down.
A PR #502 is created to fix the issue:
Jul 16 2020
This is issue is reproduced in the VyOS 1.3-rolling-202007140117 version.
While changing the mode of the pseudo-ethernet interface, the error "RTNETLINK answers: Invalid argument" is received
@thomas-mangin please fix it
Jul 15 2020
This is issue is reproduced in the VyOS 1.3-rolling-202007140117 version. The interface description is showing up-to 23 characters in the "show interface output" only.
It shows correctly in the command output of 'sudo ip l" Tested for different interface types.