Copying/renaming, node comments, and other little known features of the VyOS CLI
I promised not to write about either IPsec or NAT this time, so we'll discuss something else: the little known features of the VyOS CLI. Many people only ever u...
Author: Daniil Baturin
Setting up GRE/IPsec behind NAT
In the previous posts of this series we've discussed setting up "plain" IPsec tunnels from behind NAT. The transparency of the plain IPsec, however, is more oft...
How to setup an IPsec connection between two NATed peers: using id's and RSA keys
In the previous post from this series, we've discussed setting up an IPsec tunnel from a NATed router to a non-NATed one. The key point is that in the presence ...
VyOS builds now use the deb.debian.net load balanced mirror
If there are any good things about that packages server migration and restructuring is that it promoted a revamp of the associated part of the build scripts. Si...
VyOS builds and HTTPS: build works again, HTTP still needs testing
We have restored VyOS builds. Nightly build should work as expected today, and you can build it by hand as well if you want. This is not exactly the end of the ...
Follow-up: VyOS builds and HTTPS
We've made HTTP on the dev.packages.vyos.net host optional, and restored the real directory index (provided by the Apache HTTP's mod_autoindex) instead of using...
VyOS builds and HTTPS
For a while some people kept asking why we do not enable HTTPS on the servers with ISOs and repositories. Now we have enabled it, but it turned out it's not all...
The post categories:
Uncategorized
No new features in Perl and shell and no old style templates since May 2018
Now that the Python library for accessing the running config and the generator of old style templates from new style XML command definitions are known to be fun...
Migration and restructuring of the (dev).packages.vyos.net hosts
The original host where the packages.vyos.net and dev.packages.vyos.net web servers used to live has kept having serious I/O performance issues ever since a RAI...
Why IPsec behind 1:1 NAT is so problematic and what you can do about it
Not so long ago the only scenario when the issues with IPsec and NAT could arise was a remote access setup, while routers invariably had real public addresses a...
