Page MenuHomeVyOS Platform

beamerblvd (Nick Williams)
User

Projects

User does not belong to any projects.

User Details

User Since
Oct 10 2017, 8:55 PM (335 w, 6 d)

Recent Activity

Jan 3 2019

beamerblvd added a comment to T1144: Wiki is too hard to contribute to due to aggressive anti-spam measures.

So, is there anything that anyone can do here so that I can actually improve this documentation? Or is it just going to have to remain inaccurate for now?

Jan 3 2019, 5:17 PM · Restricted Project

Dec 31 2018

beamerblvd created T1144: Wiki is too hard to contribute to due to aggressive anti-spam measures.
Dec 31 2018, 2:31 AM · Restricted Project

Dec 28 2018

beamerblvd added a comment to T1125: GPG signature warning, default 'no' still goes ahead and starts installing.

I can confirm that this problem also exists in VyOS 1.1.x when trying to upgrade to 1.1.8. I consider this a pretty big security vulnerability, and this should be fixed in 1.1.x, not just in 1.3 or 1.2.

Dec 28 2018, 3:39 PM · VyOS 1.3 Equuleus (1.3.7), test

Feb 8 2018

beamerblvd added a comment to T537: A frank conversation about Debian LTS.
In T537#11674, @mickvav wrote:

Well, may be 2.0 should be Sodium though...

Feb 8 2018, 12:48 PM · Restricted Project

Feb 6 2018

beamerblvd added a comment to T537: A frank conversation about Debian LTS.

@syncer, @tic226: I have updated the Wiki: https://wiki.vyos.net/wiki/Version_history

Feb 6 2018, 1:43 PM · Restricted Project
syncer awarded Q130: Are upcoming releases of VyOS really based on EOL out-of-LTS versions of Debian? a Like token.
Feb 6 2018, 1:01 PM · VyOS 1.2 Crux
beamerblvd added a comment to T537: A frank conversation about Debian LTS.

Ponder/Answer created as requested: Q130

Feb 6 2018, 12:54 PM · Restricted Project
beamerblvd asked Q130: Are upcoming releases of VyOS really based on EOL out-of-LTS versions of Debian?.
Feb 6 2018, 12:52 PM · VyOS 1.2 Crux
beamerblvd updated the answer details for Q129: Is `sysctl -w net.ipv6.conf.eth0.accept_ra=2` still necessary? (Answer 177).
Feb 6 2018, 12:43 PM
beamerblvd added Q129: Is `sysctl -w net.ipv6.conf.eth0.accept_ra=2` still necessary? (Answer 177).
Feb 6 2018, 12:42 PM
beamerblvd added a comment to T537: A frank conversation about Debian LTS.

OH! Well that's a relief. So this documentation is just out-of-date, then: https://wiki.vyos.net/wiki/Version_history

Feb 6 2018, 12:37 PM · Restricted Project
beamerblvd added a comment to T537: A frank conversation about Debian LTS.

My apologies. I meant to post this as a question, not a bug, and now I do not know how to delete it.

Feb 6 2018, 2:35 AM · Restricted Project
beamerblvd created T537: A frank conversation about Debian LTS.
Feb 6 2018, 2:33 AM · Restricted Project
beamerblvd asked Q129: Is `sysctl -w net.ipv6.conf.eth0.accept_ra=2` still necessary?.
Feb 6 2018, 2:12 AM · VyOS 1.1.x

Jan 16 2018

beamerblvd added a comment to Q122: How to properly configure multiple static IPv4 WAN addresses and IPv6 prefix to internal DHCP and static hosts.
In Q122, @aopdal wrote:

With prefix delegation you have a static prefix on your inside, but the "wan" interface on the router is using DHCP.

Jan 16 2018, 2:17 PM · VyOS 1.1.x
beamerblvd added a comment to Q122: How to properly configure multiple static IPv4 WAN addresses and IPv6 prefix to internal DHCP and static hosts.
In Q122, @aopdal wrote:

Are your addresses managed from Comcast using prefix delegation?

Jan 16 2018, 1:53 PM · VyOS 1.1.x
beamerblvd added a comment to Q122: How to properly configure multiple static IPv4 WAN addresses and IPv6 prefix to internal DHCP and static hosts.
In Q122, @aopdal wrote:

@beamerblvd have you added routes for your vif 100,200 and 900 in your "COMCAST BUSINESS IP GATEWAY"?

Jan 16 2018, 1:29 PM · VyOS 1.1.x
beamerblvd added a comment to Q122: How to properly configure multiple static IPv4 WAN addresses and IPv6 prefix to internal DHCP and static hosts.

So the attempts with /56 and /60 were part of my hundreds of different combinations/attempts to get this to work. I have one /56 assigned to me (2603:xxxx:xxxx:8700::/56) with one gateway assigned to me (2603:xxxx:xxxx:8700:7454:7dff:feb1:d391). Skipping the WAN for just a second because I believe(d) it to need different configuration, I expected to be able to break that /56 up into /64s and use them like so:

Jan 16 2018, 1:15 PM · VyOS 1.1.x
beamerblvd added a comment to Q122: How to properly configure multiple static IPv4 WAN addresses and IPv6 prefix to internal DHCP and static hosts.
In Q122, @aopdal wrote:

Maybe this is relevant? https://phabricator.vyos.net/T421

Jan 16 2018, 7:26 AM · VyOS 1.1.x
beamerblvd added a comment to Q122: How to properly configure multiple static IPv4 WAN addresses and IPv6 prefix to internal DHCP and static hosts.

So, I ended up handling my IPv4 addresses using 1:1 NAT. It works, and I don't love it, but I think it's the best it's going to get with Comcast's clunky static IP infrastructure. But I'm having no luck with IPv6, and could really use some help with someone who understand's static IPv6 and VyOS a little better. I have a static IPv6 prefix, and I need to statically assign some of those to public-facing servers behind my firewall/router, but it's like pulling teeth from a rhinoceros.

Jan 16 2018, 5:08 AM · VyOS 1.1.x

Jan 1 2018

beamerblvd updated the question details for Q122: How to properly configure multiple static IPv4 WAN addresses and IPv6 prefix to internal DHCP and static hosts.
Jan 1 2018, 2:45 AM · VyOS 1.1.x

Dec 31 2017

beamerblvd asked Q122: How to properly configure multiple static IPv4 WAN addresses and IPv6 prefix to internal DHCP and static hosts.
Dec 31 2017, 11:25 PM · VyOS 1.1.x

Dec 19 2017

beamerblvd added a comment to T422: Packages server and downloads should be available via HTTPS.

That's true, I would use a TLS mirror with a SHA-256 hash from the master. But I'd also want the master to be TLS.

Dec 19 2017, 8:13 PM · Infrastructure
beamerblvd added a comment to T422: Packages server and downloads should be available via HTTPS.

We should probably put in the mirror documentation that new mirrors must support TLS and existing mirrors are strongly urged to add support for TLS. However, to be clear, wanting a secure source for my downloads, I won't download from a mirror, because there's a lower level of trust. In fact, given a mirror with TLS and a the master source without TLS, I would chose the master source every time.

Dec 19 2017, 8:02 PM · Infrastructure

Nov 13 2017

beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

So, one thing to note: Comcast doesn't give you a /64 at the very beginning (I didn't understand this fully at the time this was originally reported/discussed). It gives you a /128 (one address). You can then ask for a prefix of any size from a /64 to a /60, and it will give it to you. If you don't ask at all, it won't give you anything. If you ask for a prefix, but without a prefix length, it will give you a /64. (I'm not refuting anything said here; just making sure everyone understands how these are assigned.)

Nov 13 2017, 8:12 PM · VyOS 1.3 Equuleus (1.3.0-epa1)

Oct 12 2017

beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

@syncer, yep, looks like that is the Deb package for https://roy.marples.name/projects/dhcpcd. This is the client that Daniel Corbe and I had recommended be switched to.

Oct 12 2017, 7:18 PM · VyOS 1.3 Equuleus (1.3.0-epa1)

Oct 11 2017

beamerblvd added a comment to T422: Packages server and downloads should be available via HTTPS.
In T422#8426, @syncer wrote:

Should we just add letsencrypt ?

Oct 11 2017, 9:02 PM · Infrastructure
beamerblvd added a comment to T35: Add IPv6 firewall network groups.

I'd like to get some clarity on this, if possible. Will VyOS's firewall features just not work at all with IPv6? Or will it work, but you have to use something other than groups? Importantly: Is it still possible for me to secure my network if I enable IPv6?

Oct 11 2017, 7:39 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)
beamerblvd added a comment to T422: Packages server and downloads should be available via HTTPS.

Comment by @beamerblvd on 2016-01-24:

Oct 11 2017, 7:17 PM · Infrastructure
beamerblvd created T422: Packages server and downloads should be available via HTTPS.
Oct 11 2017, 7:17 PM · Infrastructure
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

The above completes the migration of content and all comments for Bugzilla issue 112.

Oct 11 2017, 7:04 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Daniel Corbe on 2016-01-12:

Oct 11 2017, 6:58 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Brett Lykins on 2015-09-28:

Oct 11 2017, 6:58 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Jason Nadeau on 2015-09-27:

Oct 11 2017, 6:57 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Patrick van Staveren on 2015-09-25:

Oct 11 2017, 6:56 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Jeremy Church on 2015-08-24:

Oct 11 2017, 6:55 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Steve Froelich on 2015-08-21:

Oct 11 2017, 6:55 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Aaron Von Gauss on 2015-05-03:

Oct 11 2017, 6:54 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by @dmbaturin on 2015-05-03:

Oct 11 2017, 6:54 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd updated subscribers of T421: Add Pv6 prefix delegation support.

Comment by @darkdragon-001 on 2015-04-19:

Oct 11 2017, 6:53 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Aaron Von Gauss on 2015-03-27:

Oct 11 2017, 6:52 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Kouak on 2015-03-18:

Oct 11 2017, 6:52 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by @beamerblvd on 2015-03-06:

Oct 11 2017, 6:51 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Kouak on 2015-03-05:

Oct 11 2017, 6:50 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by @beamerblvd on 2015-03-05:

Oct 11 2017, 6:50 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by @beamerblvd on 2015-03-03:

Oct 11 2017, 6:49 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd updated subscribers of T421: Add Pv6 prefix delegation support.

Comment by @dmbaturin on 2014-10-07:

Oct 11 2017, 6:49 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to T421: Add Pv6 prefix delegation support.

Comment by Ryan Holt posted on 2014-09-02:

Oct 11 2017, 6:48 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd created T421: Add Pv6 prefix delegation support.
Oct 11 2017, 6:48 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
beamerblvd added a comment to Q112: Can we please get a mapping, or redirects, from Bugzilla to Phabricator? (Answer 155).

So is the correct course of action for me to create a new issue and manually copy over the contents of the issue and all of the comments?

Oct 11 2017, 6:42 PM
beamerblvd added a comment to Q112: Can we please get a mapping, or redirects, from Bugzilla to Phabricator? (Answer 155).

Okay, so I want to make sure I'm clear on something. We have not migrated any issues over? Or we have migrated some, but not others?

Oct 11 2017, 2:21 PM

Oct 10 2017

beamerblvd asked Q112: Can we please get a mapping, or redirects, from Bugzilla to Phabricator?.
Oct 10 2017, 9:01 PM · VyOS 1.1.x