Vyatta provides an advanced IPv4 and IPv6 routing, stateful firewalling, IPSec and SSL openVPN, and more. Vyatta is optimized to run in VMware, Citrix XenServer, Xen, KVM and Hyper V, providing networking and security services to virtual machines and cloud computing environments.
Run from Live CD:
Can be run from RAM of the host machine. The system uses RAM disk for IO operations and an external system such as USB disk is used to store configuration. A software update is not possible. Used mainly for testing and evaluation purpose.
Installing on physical hardware:
Can be installed and run from physical hardware. The install process uses the Live CD, formats the available hard disk, installs the system and reboots when it is done. Once it come up from a reboot, it can be run as normal system.
Installing on Virtual Machine or Cloud:
This is also optimized to install in virtual environments like VMware, Citrix XenServer, Xen, KVM, and Hyper V. In the subscription edition, there is an option to download Virtual Machine template for VMware & XenServer, Virtual Hard Disk (VHD) for Hyper V. To install in Redhat KVM & Amazon Web Services (AWS) there is a prebuilt system image and can be downloaded and is available only with Vyatta subscription edition.
There are two ways for vyatta management.
1. Web GUI and
There are two type of command modes:
Operational Mode ($ prompt) provides access to showing and clearing information, enabling or disabling debugging, configuring terminal settings, loading & saving configuration and restarting the system.
Configuration Mode (# prompt) provides access for creating, modifying, deleting, committing and showing the system configuration information.
When you log on to the system, the system is in Operational Mode. To enter the Configuration mode, issue the command configure. To return to Operational mode, issue the command exit.
The default username and password is vyatta. Once installed, login to the system using this credentials.
Web GUI is another way to manage Vyatta. The web GUI is turned off by default (security measures)
Enabling GUI access:
vyatta@R1# set service https
Logging in to the GUI:
The communication is over HTTPS and the SSL is self signed certificate. Point the browser at https://192.168.1.21 (IP set in this case). The default username and password is vyatta.
Main part of the GUI includes:
Dashboard, from where we get an overview of the current system.
Statistics, the visual representation of system statistics.
Configuration, which allows us to configure system components. The commands that are available under Configuration mode are also available here.
Operation, which allows us to run operational commands. The commands that are available under Operational mode are also available here.
Command Line Interface
Now we will focus on Command Line Interface. Here we will configure according to the below scenario:
To set IP address for Vyatta system:
vyatta@vyatta# set interfaces ethernet eth0 address 192.0.2.21/24
To delete a configuration:
vyatta@vyatta# delete interfaces ethernet eth0 address 192.0.2.21/24
Changes have been discarded
The running configurations can be saved to the default location ie. /config/ for hard disk based installation. The default configuration file is config.boot.
Saving configuration to ‘/config/config.boot’…
Configurations can be also saved to another file using the save command:
vyatta@vyatta# save production
Saving configuration to ‘/config/production…
The saved configurations can be loaded using the load command. To load the configuration file from another location other than the default /config/, you must specify the
full path to the configuration file.
vyatta@vyatta# load production
Loading configuration file /config/production…
No configuration changes to commit
Setting the hostname
vyatta@vyatta# set system host‐name R1
Setting the domain name:
vyatta@R1# set system domain‐name mydomain.com
Changing the system password from the default username/password vyatta/vyatta
vyatta@R1# set system login user vyatta authentication plaintext‐password VyAttA@R1#
We have configured the vyatta system. Now we will move on to configuring it on a network. The scenario is shown below:
To set IP address on the second interface eth1:
vyatta@R1# set interfaces ethernet eth1 address 220.127.116.11/24
Configuring DNS Server:
vyatta@R1# set system name‐server 18.104.22.168
Configuring the default gateway:
vyatta@R1# set system gateway‐address 192.0.2.99