2,187
edits
Difference between revisions of "Vyatta"
Jump to navigation
Jump to search
m
Added firewall example
m (Added "DNS Client") |
m (Added firewall example) |
||
| Line 34: | Line 34: | ||
#* <code> show system name-server </code> | #* <code> show system name-server </code> | ||
#* <code> show system domain-search </code> | #* <code> show system domain-search </code> | ||
== Configuration == | |||
=== Firewall === | |||
If an interface has no firewall config, then it passes all traffic. Once any firewall config is applied then that interface acts as a firewall. | |||
<pre> | |||
vyatta@vyatta:~$ configure | |||
vyatta@vyatta# set firewall name home_out rule 10 action accept | |||
vyatta@vyatta# set firewall name home_out rule 10 description "VC client access" | |||
vyatta@vyatta# set firewall name home_out rule 10 destination address 10.1.1.5 | |||
vyatta@vyatta# set firewall name home_out rule 10 destination port 80,443,8084,8443,9084 | |||
vyatta@vyatta# set firewall name home_out rule 10 protocol tcp | |||
vyatta@vyatta# set interfaces ethernet eth0 firewall in name home_out | |||
vyatta@vyatta# commit | |||
vyatta@vyatta# exit | |||
vyatta@vyatta:~$ show firewall home_out | |||
Active on (eth0,IN) | |||
State Codes: E - Established, I - Invalid, N - New, R - Related | |||
rule action source destination proto state | |||
---- ------ ------ ----------- ----- ----- | |||
10 ACCEPT 0.0.0.0/0 10.1.1.5 tcp any | |||
dst ports: 80,443,8084,8443,9084 | |||
1025 DROP 0.0.0.0/0 0.0.0.0/0 all any | |||
</pre> | |||