Goals For VyOS to be a viable replacement for my typical OpenBSD deployments, it must … Pffft. The goals were defined in a previous post … so let’s just get on with it, shall we? First Step Hints tab or question mark (?) provides command completion / hints enter configuration mode with the configure command after describing changes, use commit to make the changes live after changes are live, the save command will update the boot configuration exit configuration mode with the exit command NAT Outbound NAT NOTE: translation address can be specified; the use of masquerade results in usage of the primary address of the interface.
Continue reading

The Hardware I went scrounging for no-longer-used equipment I could play with, and found a couple of firewall appliances from yesteryear, originally used at two customer sites before being replaced with something a bit faster. At a previous job, I used several units just like these to implement a mesh-type network between 3 sites over ipsec. With OpenBSD, of course. These are neat little boxes with zero moving parts - they boot off CF cards, and their entire case is one big heatsink.
Continue reading

See what I did there? Yeah, I know. Pretty lame … Quick History I’ve been providing networking services for quite a while now. It all started with Data Generic’s Generic Barracks in the early 80’s, which was my 24-hour BBS running on the venerable Commodore 64. Over the past few decades I’ve leveraged a bunch of other technologies and products to provide networking services for customers. This includes Bay/Nortel/Juniper/ADTRAN/Cisco/NetWare/Microsoft/Linux and pretty much all the BSD flavors.
Continue reading