Page MenuHomePhabricator

VyOS 1.1.x (1.1.8)Milestone
ArchivedPublic

Members

  • This project does not have any members.

Details

Description

Maintainance release

Recent Activity

Sep 12 2019

mario added a comment to T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

No, we don't use vyos in production any more, so I can't tell.

Sep 12 2019, 6:34 AM · Rejected

Sep 11 2019

hagbard added a comment to T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

Thanks for your response, did you test a newer image already? There was a lot of work done meanwhile.

Sep 11 2019, 2:56 PM · Rejected
mario added a comment to T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

tried with the first version 1.2, problem was still present. After that, decided to get us a physical router/fw because ipsec would stopped without any obvious reason.
It was a long time ago, almost year and a half...

Sep 11 2019, 6:54 AM · Rejected

Sep 10 2019

hagbard claimed T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

@mario Did you manage to upgrade to 1.2 and if so, do you still have that issue?

Sep 10 2019, 10:05 PM · Rejected

May 25 2019

dongjunbo added a comment to T186: DHCP with VRRP.

Seem like this issue still in vyos 1.2. Would please check it and fix it ?

May 25 2019, 12:59 PM · VyOS 1.1.x (1.1.8)

Jan 12 2019

syncer edited projects for T1172: vyatta_update_sysctl.pl does not support options that have multiple values, added: VyOS 1.2 Crux (VyOS 1.2.0-EPA3); removed VyOS 1.2 Crux ( VyOS 1.2.0-EPA).
Jan 12 2019, 6:30 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)

Jan 10 2019

dt-iland edited projects for T1172: vyatta_update_sysctl.pl does not support options that have multiple values, added: vyatta-cfg-system, VyOS 1.2 Crux ( VyOS 1.2.0-EPA), Community; removed VyOS 1.2 Crux.
Jan 10 2019, 8:21 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
dt-iland created T1172: vyatta_update_sysctl.pl does not support options that have multiple values.
Jan 10 2019, 6:26 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)

Nov 1 2018

syncer closed T953: VyOS 1.1.8 & ixgbe-5.5.1 as Wontfix.

Unfortunately, we not provide any support or bug fixes for 1.1.x series
I will suggest trying 1.2 instead

Nov 1 2018, 8:55 AM · Rejected
sergfrostoff created T953: VyOS 1.1.8 & ixgbe-5.5.1.
Nov 1 2018, 8:52 AM · Rejected

Oct 19 2018

mario added a comment to T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

Hi,
we returned ike-lifetime to AWS specs. Logs above are when we tshoot it.

Oct 19 2018, 6:51 AM · Rejected

Oct 17 2018

xrpixer added a comment to T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

@mario is your ike-lifetime correct? That looks really short for an aws tunnel.
Otherwise yeah, I'd try with 1.2.

Oct 17 2018, 1:50 PM · Rejected
syncer added a comment to T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

@mario we not going to fix this in 1.1.x
It will be required to retest with 1.2 same config

Oct 17 2018, 1:43 PM · Rejected
mario added a comment to T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

Don't know, but we are still experiencing this in 1.1.8. The only solution is to restart IPSEC service. The logs are as above.

Oct 17 2018, 1:13 PM · Rejected

Oct 15 2018

syncer moved T358: add option to set phabricator api token from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.0-rc1) board.
Oct 15 2018, 11:59 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1), VyOS 1.1.x (1.1.8)
syncer moved T410: dnsmasq in 1.1.x is outdated and vulnerable to many CVEs from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.0-rc1) board.
Oct 15 2018, 11:59 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1), VyOS 1.1.x (1.1.8)
syncer removed a project from T176: Kernel: CVE-2016-5195: VyOS 1.2 Crux.
Oct 15 2018, 11:50 PM · VyOS 1.1.x (1.1.8)
syncer removed a project from T142: DSA-3659-1: VyOS 1.2 Crux.
Oct 15 2018, 11:50 PM · VyOS 1.1.x (1.1.8)
syncer edited projects for T523: Forwarder listening on port 53/tcp, added: VyOS 1.1.x (1.1.8); removed VyOS 1.2 Crux.
Oct 15 2018, 11:30 PM · VyOS 1.1.x (1.1.8)
syncer moved T277: CVE-2017-6074 - linux kernel local (?) privilege escalation from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.0-rc1) board.
Oct 15 2018, 10:44 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1), VyOS 1.1.x (1.1.8)
syncer moved T220: Logrotate conf for auth.log is missing from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.0-rc1) board.
Oct 15 2018, 10:44 PM · VyOS-1.2.0-GA, VyOS 1.1.x (1.1.8), VyOS 1.2 Crux (VyOS 1.2.0-rc1)
syncer moved T345: Can't delete vti interface due to incorrect directory name in /proc from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.0-rc1) board.
Oct 15 2018, 10:43 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1), VyOS 1.1.x (1.1.8)
syncer moved T389: Virtio SCSI is missing in kernel from In Progress to Finished on the VyOS 1.2 Crux board.
Oct 15 2018, 5:26 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1)

Oct 13 2018

syncer changed the status of T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic from Open to On hold.

Can this be reproduced in 1.2?

Oct 13 2018, 9:03 AM · Rejected

Oct 3 2018

dmbaturin edited projects for T345: Can't delete vti interface due to incorrect directory name in /proc, added: VyOS 1.2 Crux (VyOS 1.2.0-rc1); removed VyOS 1.2 Crux.
Oct 3 2018, 2:11 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc1), VyOS 1.1.x (1.1.8)

Aug 29 2018

begetan added a comment to T528: Alibaba Cloud image.

I am interesting to install and test image in Alibaba cloud.

Aug 29 2018, 4:33 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)

Aug 15 2018

mpoublon updated the task description for T777: Misleading Help Text for IPSEC Connection Type.
Aug 15 2018, 3:15 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-EPA2)
mpoublon updated the task description for T777: Misleading Help Text for IPSEC Connection Type.
Aug 15 2018, 3:14 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-EPA2)
mpoublon created T777: Misleading Help Text for IPSEC Connection Type.
Aug 15 2018, 3:13 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-EPA2)

Jul 18 2018

mplanquart renamed T748: OSPFv3 - IPv6 OSPF not working properly after the neighbor pushing ::/0 is disconnected from OSPFv3 - IPv6 OSPF not properly after the neighbor pushing ::/0 is disconnected (even though one neighbor is still alive) to OSPFv3 - IPv6 OSPF not working properly after the neighbor pushing ::/0 is disconnected .
Jul 18 2018, 8:10 AM · Rejected
mplanquart renamed T748: OSPFv3 - IPv6 OSPF not working properly after the neighbor pushing ::/0 is disconnected from OSPFv3 - IPv6 Routing table entries of a disconnected neighbor are not cleared/replaced by the entries of the other neighbor to OSPFv3 - IPv6 OSPF not properly after the neighbor pushing ::/0 is disconnected (even though one neighbor is still alive).
Jul 18 2018, 8:10 AM · Rejected

Jul 17 2018

mplanquart created T748: OSPFv3 - IPv6 OSPF not working properly after the neighbor pushing ::/0 is disconnected .
Jul 17 2018, 4:10 PM · Rejected

Jun 23 2018

deafen edited projects for T708: Please add current bnx2x firmware to image, added: VyOS 1.2 Crux; removed VyOS 1.2 Crux (VyOS 1.2.0-rc1).
Jun 23 2018, 3:49 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)
deafen added a project to T708: Please add current bnx2x firmware to image: VyOS 1.2 Crux (VyOS 1.2.0-rc1).
Jun 23 2018, 3:48 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)
deafen added a comment to T708: Please add current bnx2x firmware to image.

Jun 23 2018, 3:45 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)
deafen created T708: Please add current bnx2x firmware to image.
Jun 23 2018, 3:45 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)

Jun 22 2018

begetan added a comment to T534: VPN/IPSEC/BGP/DPD - unknown bug, tunnel and interfaces up, but no traffic.

We are runing VyOS 1.1.8 with AWS tunnels based on AWS provided config.
It's running for months !

Jun 22 2018, 9:13 AM · Rejected

Jun 21 2018

c-po moved T702: set system flow-accounting netflow source-ip failed from Need Triage to Finished on the VyOS 1.2 Crux board.
Jun 21 2018, 8:13 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)
c-po added a comment to T702: set system flow-accounting netflow source-ip failed.

Fix applied to current and helium branch (if there will be a 1.1.9 release)

Jun 21 2018, 8:13 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)
c-po added a comment to T702: set system flow-accounting netflow source-ip failed.
cpo@LR1# set system flow-accounting netflow source-ip 192.168.253.13
[edit]
cpo@LR1# show system flow-accounting
+netflow {
+    source-ip 192.168.253.13
+}
Jun 21 2018, 8:10 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)
c-po added a project to T702: set system flow-accounting netflow source-ip failed: VyOS 1.2 Crux.
Jun 21 2018, 8:04 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)
c-po added a comment to T702: set system flow-accounting netflow source-ip failed.

This problem exists at least with VyOS 1.2.0-rolling+201806040337 as I've stumbled accross this one, too.

Jun 21 2018, 12:58 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)
syncer assigned T702: set system flow-accounting netflow source-ip failed to c-po.

Thanks for reporting @begetan !
@c-po want to look in relevant scripts, I think he is correct and that ipv6 validation likely present in 1.2 too
@dmbaturin see yourself too.

Jun 21 2018, 10:40 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)
begetan created T702: set system flow-accounting netflow source-ip failed.
Jun 21 2018, 9:45 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc4)

May 27 2018

syncer closed Q56: nDPI integration, what is required? as resolved.
May 27 2018, 11:25 AM · VyOS 1.1.x (1.1.8)
syncer closed Q52: Integrate Vyos with standalone web filtering device? as obsolete.
May 27 2018, 11:23 AM · VyOS 2.0.x, VyOS 1.1.x (1.1.8)

May 24 2018

dmbaturin edited projects for T275: Add BGP as-override, added: VyOS 1.1.x (1.1.8); removed VyOS 1.2 Crux.
May 24 2018, 5:48 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-rc2)

May 12 2018

DaRK added a comment to T334: Not setting ESP DH Group properly on "esp=" line in ipsec.conf.

The patch only resolves the issue when an explicit dh-group is defined. The 'pfs enable' option, using ike-group's dh-group still exhibits the issue.

May 12 2018, 7:51 AM · VyOS 1.1.x (1.1.8)

May 4 2018

foxpro added a comment to T220: Logrotate conf for auth.log is missing.

Which release will include this fix. We are running into the same issue on release 1.1.8.

May 4 2018, 5:08 PM · VyOS-1.2.0-GA, VyOS 1.1.x (1.1.8), VyOS 1.2 Crux (VyOS 1.2.0-rc1)

Mar 7 2018

rps added a comment to T575: SNAT with static port not working.

It was likely the first scenario that I mentioned where there was traffic already established before the NAT rule was created. Also note that a reset conntrack is essentially a flush of the conntrack table and can be disruptive for established connections. Alternatively you could have cleared conntrack entries for the specific host address only as a more safe way of doing it in the future.

Mar 7 2018, 4:32 AM · VyOS 1.1.x (1.1.8), vyatta-nat