Linux/VyOs-Vyatta
- Logs in /var/log/messages
- Not very usefull
- Debug with tcpdump to see real packets arriving.
config
$ show config
Add rule for new port 8883
firewall { ... ... name InternetAccess { default-action drop ... rule 1300 { action accept description "Allow tcp:8883 myTraffic" destination { # address port 8883 # group { port-group <MyPortGrp> } } protocol tcp source { group { network-group Internal } } }
configure eg
$ configure [edit] # # set firewall name InternetAccess rule 1300 # set firewall name InternetAccess rule 1300 description "Allow tcp:8883 myTraffic" # set firewall name InternetAccess rule 1300 destination port 8883 # set firewall name InternetAccess rule 1300 protocol tcp # set firewall name InternetAccess rule 1300 source group network-group Internal # set firewall name InternetAccess rule 1300 action accept # compare # commit
add user eg
set system login user <user> authentication encrypted-password '!' set system login user <user> authentication plaintext-password '' set system login user <user> authentication public-keys identifier key 'AAAAB....nvgfp' set system login user <user> authentication public-keys identifier type 'ssh-rsa' set system login user <user> level 'admin'