Page MenuHomeVyOS Platform

e.khudiyev (Elchin Khudiyev)
User

Projects

User does not belong to any projects.

User Details

User Since
Aug 5 2021, 12:43 PM (47 w, 1 d)

Recent Activity

Tue, Jun 28

e.khudiyev added a comment to T4457: L2TP/IPSec Remote Access VPN does not work as expected in 1.3.1-S1.

The problem seems to be in these lines:

set vpn l2tp remote-access authentication local-users username test static-ip '172.25.255.1'
set vpn l2tp remote-access client-ip-pool start '172.25.255.1'
set vpn l2tp remote-access client-ip-pool stop '172.25.255.14'

Replacing "static IP" with 172.25.255.2 makes it work in VyOS 1.3.1

set vpn l2tp remote-access authentication local-users username test static-ip '172.25.255.2'

Full corrected config for 1.3.1 from the first post:

set interfaces dummy dum4 address '4.4.4.4/32'
set interfaces ethernet eth0 address 'dhcp'
set interfaces ethernet eth1 address '192.168.6.31/24'
set service ssh
set vpn ipsec ipsec-interfaces interface 'eth1'
set vpn ipsec nat-networks allowed-network 0.0.0.0/0
set vpn ipsec nat-traversal 'enable'
set vpn l2tp remote-access authentication local-users username test password 'test'
set vpn l2tp remote-access authentication local-users username test static-ip '172.25.255.2'
set vpn l2tp remote-access authentication mode 'local'
set vpn l2tp remote-access authentication require 'mschap-v2'
set vpn l2tp remote-access client-ip-pool start '172.25.255.1'
set vpn l2tp remote-access client-ip-pool stop '172.25.255.14'
set vpn l2tp remote-access idle '1800'
set vpn l2tp remote-access ipsec-settings authentication mode 'pre-shared-secret'
set vpn l2tp remote-access ipsec-settings authentication pre-shared-secret 'test'
set vpn l2tp remote-access ipsec-settings ike-lifetime '3600'
set vpn l2tp remote-access ipsec-settings lifetime '3600'
set vpn l2tp remote-access outside-address '192.168.6.31'
Tue, Jun 28, 8:29 AM · VyOS 1.3 Equuleus ( 1.3.1)

Thu, Jun 9

e.khudiyev changed Difficulty level from easy to unknown on T4460: nhrp not starting due to missing cisco-authentication value.
Thu, Jun 9, 7:46 AM · VyOS 1.4 Sagitta
e.khudiyev added a comment to T4460: nhrp not starting due to missing cisco-authentication value.

From provided log syntax error in config string 6
‘holding-time 300’

But yes “ cisco-authentication” shouldn’t be without values

Thu, Jun 9, 6:31 AM · VyOS 1.4 Sagitta

Tue, Jun 7

e.khudiyev created T4460: nhrp not starting due to missing cisco-authentication value.
Tue, Jun 7, 12:32 PM · VyOS 1.4 Sagitta

May 9 2022

e.khudiyev added a comment to T4416: Convert 'traceroute' operation to the new syntax and expand available options using python.

Tested on the latest rolling release:

May 9 2022, 2:37 PM · VyOS 1.4 Sagitta

May 5 2022

e.khudiyev created T4416: Convert 'traceroute' operation to the new syntax and expand available options using python.
May 5 2022, 12:21 PM · VyOS 1.4 Sagitta

Mar 1 2022

e.khudiyev updated subscribers of T4276: IPsec peers dh-group negotiation issue with pfs enabled and multiple proposals configured with IKEv1.
Mar 1 2022, 9:08 AM · VyOS 1.4 Sagitta
e.khudiyev created T4276: IPsec peers dh-group negotiation issue with pfs enabled and multiple proposals configured with IKEv1.
Mar 1 2022, 9:07 AM · VyOS 1.4 Sagitta

Dec 15 2021

e.khudiyev added a comment to T4073: "show protocols bfd peer <>" shows incorrect peer information..

I've also checked this behaviour on VyOS 1.3.0-epa3 an it seems similar, steps to reproduce:

Dec 15 2021, 9:15 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta
e.khudiyev added a comment to T4073: "show protocols bfd peer <>" shows incorrect peer information..
In T4073#113759, @c-po wrote:

Can you please provide a CLI config to reproduce this issue?

Dec 15 2021, 8:58 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta

Dec 14 2021

e.khudiyev created T4073: "show protocols bfd peer <>" shows incorrect peer information..
Dec 14 2021, 11:41 AM · VyOS 1.3 Equuleus (1.3.0), VyOS 1.4 Sagitta

Dec 6 2021

e.khudiyev updated subscribers of T4054: BFD profiles configuration incorrect behavior..
Dec 6 2021, 10:18 AM · VyOS 1.4 Sagitta
e.khudiyev created T4054: BFD profiles configuration incorrect behavior..
Dec 6 2021, 10:14 AM · VyOS 1.4 Sagitta

Nov 16 2021

e.khudiyev created T3998: route-target completion incorrect description.
Nov 16 2021, 2:28 PM · VyOS 1.4 Sagitta