Differences between revisions 2 and 3
Revision 2 as of 2021-11-30 18:23:22
Size: 729
Editor: PieterSmit
Comment:
Revision 3 as of 2021-11-30 19:19:40
Size: 1204
Editor: PieterSmit
Comment:
Deletions are marked like this. Additions are marked like this.
Line 35: Line 35:
 * configure eg {{{
$ configure
[edit]
#
# set firewall name InternetAccess rule 1300
# set firewall name InternetAccess rule 1300 description "Allow tcp:8883 myTraffic"
# set firewall name InternetAccess rule 1300 destination port 8883
# set firewall name InternetAccess rule 1300 protocol tcp
# set firewall name InternetAccess rule 1300 source group network-group Internal
# set firewall name InternetAccess rule 1300 action accept

# compare
# commit

}}}

Linux/VyOs-Vyatta

  • Logs in /var/log/messages
    • Not very usefull
  • Debug with tcpdump to see real packets arriving.

config

  •  $ show config 

  • Add rule for new port 8883 

    firewall {
    ...
    ...
    name InternetAccess {
        default-action drop
        ...
        rule 1300 {
            action accept
            description "Allow tcp:8883 myTraffic"
            destination {
                # address 
                port 8883
                # group { port-group <MyPortGrp> }
            }
            protocol tcp
            source {
                group {
                    network-group Internal
                }
            }
        }

  • configure eg 

    $ configure
[edit]
#
# set firewall name InternetAccess rule 1300
# set firewall name InternetAccess rule 1300 description "Allow tcp:8883 myTraffic"
# set firewall name InternetAccess rule 1300 destination port 8883
# set firewall name InternetAccess rule 1300 protocol tcp
# set firewall name InternetAccess rule 1300 source group network-group Internal
# set firewall name InternetAccess rule 1300 action accept

# compare
# commit

Linux/VyOs-Vyatta (last edited 2022-07-07 23:09:30 by PieterSmit)