VyOS 1.2.0 status update
While VyOS 1.2.0 nightly builds have been fairly usable for a while already, there are still some things to be done because we can make a named release candidat...
On security of GRE/IPsec scenarios
As we've already discussed, there are many ways to setup GRE (or something else) over IPsec and they all have their advantages and disadvantages. Recently an is...
When VyOS CLI isn't enough
Sometimes a particular configuration option is supported by the software that VyOS uses, but the CLI does not expose it. Since VyOS is open source, you can alwa...
DNS forwarding in VyOS
Update (February 2021): As of VyOS 1.2.0 "service dns forwarding listen-on" has been deprecated. Please use "service dns forwarding listen-address" instead. In ...
Loopback and the dummies
"There is no place like 127.0.0.1" the old saying goes. While the loopback interface is most often seen as the interface where the 127.0.0.1 address is assigned...
Naming of the nightly builds
Historically, we used to use "999.$timestamp" version numbers for development builds, including nightly builds. In our build scripts termninology, a development...
VyOS to leverage the blockchain technology
Wild success of the blockchain technology on the mass market in the past couple of years is truly remarkable and it allowed many startups to raise substantial c...
Take a third option: site to site OpenVPN
I've written a long series of post about setting up IPsec VPNs between NATed machines. As you've already seen, with some creative configuration it's possible, b...
Ongoing improvements in project
Hi everyone, While developers are working on the 1.2.0 release candidate, myself I’ve been looking into ways to improve the social and commercial aspects of pro...
The post categories:
Uncategorized
How to use AS path matching in your BGP policies
AS path is one of the most fundamental attributes of a (e)BGP advertisments. Its length is the first parameter in the best path selection algorithm (shorter is ...
