Vyatta Core v6.6 R1 as Virtual Router

Task

Configure the basic network services on the Brocade vRouter, Vyatta Core v6.6 R1.


Scenario

Use it on your notebook as a router with 2 bridged network adapters, Vyatta’s eth1 bridged to real notebook’s eth0 and Vyatta’s eth0 bridged to real notebook’s wlan0. Use your smartphone as local ISP, activate the mobile hotspot and connect with Vyatta via wlan0. Finally connect your hosts with Vyatta via eth0.

DSC_0008


Services

  • DNS
  • DNS Forwarders
  • DHCP Server
  • NAT
  • NTP
  • SSH

Solution

Step 1: Configure your interfaces with correct IP addresses and masks.

interfaces
{
	ethernet eth0
	{
		address dhcp
		duplex auto
		hw-id 08:00:27:07:0d:3f
		smp_affinity auto
		speed auto
	}
	ethernet eth1
	{
		address 10.10.10.1/28
		duplex auto
		hw-id 08:00:27:56:7e:82
		smp_affinity auto
		speed auto
	}
	ethernet eth2
	{
		duplex auto
		hw-id 08:00:27:96:ba:18
		smp_affinity auto
		speed auto
	}
	ethernet eth3
	{
		address 172.20.20.11/24
		duplex auto
		hw-id 08:00:27:9d:89:70
		smp_affinity auto
		speed auto
	}
}

 

Step 2: Configure source NAT with masquerate address of your outside interface..

nat
{
	source
	{
		rule 100
		{
			outbound-interface eth0
			source
			{
				address 10.10.10.0/28
			}
			translation 
			{
				address masquerade
			}
		}
	}
}

 

Step 3: It’s time for a DHCP service for internal hosts.

service
{
	dhcp-server
	{
		disabled false
		shared-network-name LAN
		{
			description "Local Pool"
			subnet 10.10.10.0/28
			{
				default-router 10.10.10.1
				dns-server 10.10.10.1
				exclude 10.10.10.1
				lease 86400
				ntp-server 10.10.10.1
				start 10.10.10.1
				{
					stop 10.10.10.15
				}
			time-server 10.10.10.1
			wins-server 10.10.10.1
			}
		}
	}
}

 

Step 4: At least configure the rest of your services – DNS forwarding, SSH access with correct hostname and new user, time zone with NTP server and Nameserver for your vRouter.

service
{
	dns
	{
		forwarding
		{
			cache-size 150
			listen-on eth1
			name-server 8.8.8.8
			system
		}
	}
	ssh
	{
		listen-address 172.20.20.11
		port 22
	}
}

system
{
	config-management
	{
		commit-revisions 20
	}
	host-name VYATTA-1
	login
	{
		banner
		{
			post-login WELCOME
		}
		user vyatta
		{
			authentication
			{
				encrypted-password ****
			}
			level admin
		}
	}
	name-server 8.8.8.8
	ntp
	{
		server 0.de.pool.ntp.org
	}
	syslog
	{
		global
		{
			facility all
			{
				level notice
			}
			facility protocols
			{
				level debug
			}
		}
	}
	time-zone Europe/Berlin
}