- User Since
- Jul 29 2022, 1:49 PM (9 w, 6 d)
Sun, Sep 18
Sat, Sep 17
It works for me (tm)
Sat, Sep 10
Or, come to think, some free from of set interfaces unknown <typeyourownname> firewall local name <ruleset> where you can only config stuff that doesn't really depend on an interface.
Just a suggestion, would it be a weird idea to move the firewall config from the interface section to the firewall section? A bit like the zone config. So something like:
Thu, Sep 8
I've tested this and it seems to work correctly.
The interface naming is incorrect after this change for the second interface with the same VRID. It breaks show int.
Sep 2 2022
In case of filtering on a VRF, would it be an idea to use the MAC address instead of the interface name in the rule?
I will modify the docs.
Sep 1 2022
I do see I need to update the docs. Will do if this change is going to be merged.
Aug 23 2022
While reading the FRR docs I see it is only used in BGP and nowhere else. That would make something like set protocols bgp parameters next-hop-track resolve-via-default logical.
@Viacheslav Do you just want this option added to the zebra config, or you it also be possible to enable/disable this via the conf mode?
Aug 22 2022
I've create a PR which does the retry part. It retries 10 time every 0.5 seconds until it succeeds or it's out of retries.
The problem here seems to be that keepalived is started before the complete commit is finished. So conf.get_config_dict() fails to get the config.
Created PR for this https://github.com/vyos/vyos-build/pull/256
Hi, I've created https://github.com/vyos/vyos-1x/pull/1483 for this one.