Page MenuHomePhabricator

begetan (Roman)
User

Projects

User does not belong to any projects.

User Details

User Since
Dec 6 2017, 2:21 PM (92 w, 6 d)

Recent Activity

Dec 3 2018

begetan added a comment to T1062: SSH connection to AWS AMI not possible for newly created image.

I forgot to fetch commits for the latest build-ami version when submitted report.
Now I confirms that problem exists in the latest version with the last commit:

Dec 3 2018, 9:58 AM · VyOS 1.3 Equuleus, build-ami, AWS Support
begetan added a comment to T1075: Unable to build the ISO for VyOS 1.2.0.

In the latest rolling update build for AWS AMI there is no quagga package, because it was replaced by FRR. Should be the same for regular build.

Dec 3 2018, 9:51 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)

Nov 30 2018

begetan added a comment to T1027: show ip ospf neighbor A.B.C.D does not work.

I confirm this issue at VyOS 1.2.0-rolling+201811290337

Nov 30 2018, 1:22 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-EPA2)
begetan added a comment to T1007: site-to-site GRE IPSEC VPN fails.

Is it working at start and fails after some time, or not connection not establishing at all?

Nov 30 2018, 1:18 PM · Rejected
begetan created T1062: SSH connection to AWS AMI not possible for newly created image.
Nov 30 2018, 1:16 PM · VyOS 1.3 Equuleus, build-ami, AWS Support
begetan added a comment to T1033: build-ami: Enable support for ENA.

This is great an very important feature for AWS since they introduced very cheap and advanced t3 instances.

Nov 30 2018, 1:06 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux ( VyOS 1.2.0-rc11), build-ami, AWS Support

Nov 24 2018

begetan added a comment to T818: SNMP v3 - remove required engineid from user node.

If engineid in user node only provides hashing for auth key I would remove it too.
Since we usually not assign engine id automatically it is created for every new hardware installation automatically, so hash of auth key became not transferable. In this case we have to keep plain text password for snmpv3 in our config store, because of automation of provisioning. But I would to keep hash instead of plain text credential.

Nov 24 2018, 10:22 PM · VyOS 1.2 Crux (VyOS 1.2.4), VyOS 1.3 Equuleus

Aug 29 2018

begetan added a comment to T528: Alibaba Cloud image.

I am interesting to install and test image in Alibaba cloud.

Aug 29 2018, 4:33 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
begetan added a comment to T781: VyOS 1.2 does not work with AWS VPN gateway, but some configuration works fine on VyOS 1.1.8.

We are using "Double static NAT" life hack in AWS, so IPsec protocols works actually without NAT
And it is working good.

Aug 29 2018, 4:27 PM · Rejected

Aug 10 2018

begetan added a comment to T767: IPSEC deprecated keyword 'interfaces' in config setup.

It seems to be working now

Aug 10 2018, 9:31 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)

Aug 6 2018

begetan created T767: IPSEC deprecated keyword 'interfaces' in config setup.
Aug 6 2018, 1:15 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)

Jul 12 2018

begetan added a comment to T628: StrongSwan requires configuration change for proper routing over VTI..

We did an upgrade of six running instance with complicated Ipsec configuration ( 10 to 50 peers) from VyOS 1.1.8 to 1.2.current. For 1 time from 6 we had a problem with Charon's install_routes = yes

Jul 12 2018, 9:40 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)

Jul 9 2018

begetan added a comment to T715: snmp v3 "You must create view "defaultview" first" error when copy/past configuration commands.

I was able to copy-paste configuration on latest VyOS 1.2.0 rolling update in my configuration
I also mentioned that my current configuration has not separate set v3 engineid 'id' command as in initial comment,
and it is working without problem.

Jul 9 2018, 2:56 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)
begetan added a comment to T671: Identify and remove dead code.

This script can be removed as soon as we will implement better way for populating AS numbers in netflow configuration.

Jul 9 2018, 12:07 PM · VyOS 1.3 Equuleus
begetan added a comment to T624: bugfix for IKEv2 some problems..

IKEv2 is not good in Strong Swan 4.5 at all. There is incompatibility with some other clients.

Jul 9 2018, 11:55 AM · Rejected

Jun 29 2018

begetan added a comment to T118: Native Zabbix Support.

I've update installation manual of Zabbix agent for VyOS 1.2
It is easier to maintain now because of using of standard Jessie repository.
Only VyOS scripts should be maintained.

Jun 29 2018, 11:27 AM · VyOS 1.3 Equuleus

Jun 26 2018

begetan created T715: snmp v3 "You must create view "defaultview" first" error when copy/past configuration commands.
Jun 26 2018, 3:59 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)
begetan created T714: Missing default value for 'set service snmp v3 user testUser1 auth type'.
Jun 26 2018, 3:16 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)
begetan created T713: set service snmp v3 group defaultgroup seclevel - incorrect parsing.
Jun 26 2018, 3:01 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)

Jun 22 2018

begetan created T706: sh version failed.
Jun 22 2018, 2:57 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)
begetan added a comment to T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

We are runing VyOS 1.1.8 with AWS tunnels based on AWS provided config.
It's running for months !

Jun 22 2018, 9:13 AM · Rejected

Jun 21 2018

begetan created T702: set system flow-accounting netflow source-ip failed.
Jun 21 2018, 9:45 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)

Dec 19 2017

begetan added a comment to T428: Current 1.1.7 AMI doesn't fetch SSH public key from the EC2 environment.

I reproduce the same problem on VyOS 1.1.8 on different region - N.Verginia.

Dec 19 2017, 12:04 PM · VyOS 1.1.x (1.1.8)

Dec 7 2017

begetan added a comment to T428: Current 1.1.7 AMI doesn't fetch SSH public key from the EC2 environment.

After a lot of reinstallation and terminaton we broke Amazon VPS, so I did full test.

Dec 7 2017, 10:05 AM · VyOS 1.1.x (1.1.8)

Dec 6 2017

begetan added a comment to T428: Current 1.1.7 AMI doesn't fetch SSH public key from the EC2 environment.

I've did a lot of attempts, and removed old stuff. Anyway I can reproduce it one more time with the same result.
I am configuring 2 interfaces for the virtual router. May be it can be a problem?

Dec 6 2017, 5:57 PM · VyOS 1.1.x (1.1.8)
begetan added a comment to T428: Current 1.1.7 AMI doesn't fetch SSH public key from the EC2 environment.

I face this issue on the new VyOS 1.1.8 AMI in the Frakfurt region. It is working in Seoul region.

Dec 6 2017, 2:24 PM · VyOS 1.1.x (1.1.8)