User Details
User Details
- User Since
- Sep 26 2022, 10:46 PM (166 w, 5 d)
Jul 12 2023
Jul 12 2023
icyfire0573 added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.
I can't test this at this time. I stopped using the platform
Sep 30 2022
Sep 30 2022
icyfire0573 added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.
I installed the latest release and its not working for me. Whenever I boot I lose eth0 and eth2 interfaces.
I end up with an eth1 (previously eth2) interface and startup errors that seem to indicate that migrate failed.
I would reconfigure everything to help test this, but I do need two network interfaces.
Sep 27 2022
Sep 27 2022
icyfire0573 added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.
vyos@vyos:~$ show configuration
firewall {
interface eth2 {
in {
name OUTSIDE-IN
}
local {
name OUTSIDE-LOCAL
}
}
name OUTSIDE-IN {
default-action drop
rule 10 {
action accept
state {
established enable
related enable
}
}
rule 20 {
action accept
destination {
address 172.16.135.35
port 8123
}
protocol tcp
source {
}
state {
new enable
}
}
rule 21 {
action accept
destination {
address 172.16.135.35
port 443
}
protocol tcp
state {
new enable
}
}
rule 30 {
action accept
destination {
address 172.16.136.16
port 22
}
protocol tcp
source {
address 13.90.97.251
}
state {
new enable
}
}
rule 40 {
action accept
destination {
address 172.16.136.96
port 1935,3478,3479,3480
}
protocol tcp
state {
new enable
}
}
rule 41 {
action accept
destination {
address 172.16.136.96
port 3074,3478,3479
}
protocol udp
state {
new enable
}
}
}
name OUTSIDE-LOCAL {
default-action drop
rule 10 {
action accept
state {
established enable
related enable
}
}
rule 20 {
action accept
icmp {
type-name echo-request
}
protocol icmp
state {
new enable
}
}
rule 30 {
action drop
destination {
port 22
}
protocol tcp
recent {
count 4
time minute
}
state {
new enable
}
}
rule 31 {
action accept
destination {
port 22
}
protocol tcp
state {
new enable
}
}
rule 40 {
action accept
destination {
address 172.16.136.35
port 8123
}
protocol tcp
state {
new enable
}
}
}}
interfaces {
ethernet eth0 {
address 172.16.136.1/24
description INSIDE
hw-id 6c:4b:90:52:32:75
}
ethernet eth2 {
address dhcp
description OUTSIDE
hw-id 7c:c2:c6:42:43:e1
}
loopback lo {
}
wireless wlan0 {
hw-id 50:5b:c2:ca:e1:03
physical-device phy0
}}
nat {
destination {
rule 10 {
description "Port Forward: SSH to 172.16.136.16"
destination {
port 22
}
inbound-interface eth2
protocol tcp
source {
address 13.90.97.251
}
translation {
address 172.16.136.16
}
}
rule 100 {
description "HomeAssistant WAN"
destination {
port 8123
}
inbound-interface eth2
protocol tcp
translation {
address 172.16.136.35
}
}
rule 110 {
description "HomeAssistant Reflection To"
destination {
port 8123
}
inbound-interface eth0
protocol tcp
translation {
address 172.16.136.35
}
}
rule 120 {
description "Playstation - 172.16.136.96"
destination {
port 1935,3074,3478,3479,3480
}
inbound-interface eth2
protocol tcp
translation {
address 172.16.136.96
}
}
}
source {
rule 100 {
outbound-interface eth2
source {
address 172.16.136.0/24
}
translation {
address masquerade
}
}
rule 110 {
description "HomeAssistant Reflection From"
destination {
address 172.16.136.0/24
}
outbound-interface eth0
protocol tcp
source {
address 172.16.136.0/24
}
translation {
address masquerade
}
}
}}
service {
dhcp-server {
shared-network-name LAN {
domain-search drutherford.com
subnet 172.16.136.0/24 {
default-router 172.16.136.1
domain-name drutherford.com
lease 86400
name-server 8.8.8.8
name-server 1.1.1.1
name-server 9.9.9.9
range 0 {
start 172.16.136.50
stop 172.16.136.90
}
static-mapping Backyard-Camera-Wireless {
ip-address 172.16.136.101
mac-address 78:66:9D:7F:D7:73
}
static-mapping Garage-Camera-Wireless {
ip-address 172.16.136.99
mac-address 5C:C3:36:4C:D3:20
}
static-mapping Green {
ip-address 172.16.136.16
mac-address DC:A6:32:6D:20:54
}
static-mapping HomeAssistant {
ip-address 172.16.136.35
mac-address B8:27:EB:81:ED:01
}
static-mapping Playstation4 {
ip-address 172.16.136.96
mac-address 00:D9:D1:FD:E3:C8
}
static-mapping Pool-Camera-Wireless {
ip-address 172.16.136.100
mac-address 78:66:9D:5B:F8:9C
}
static-mapping RasPBX {
ip-address 172.16.136.102
mac-address B8:27:EB:BA:9C:BD
}
static-mapping Roku-3 {
ip-address 172.16.136.98
mac-address B8:3E:59:B3:DF:DB
}
static-mapping Roku-Ultra {
ip-address 172.16.136.97
mac-address 88:DE:A9:C1:C0:41
}
static-mapping client1 {
ip-address 172.16.136.102
mac-address B8:27:EB:BA:9C:BD
}
}
}
}
ssh {
port 22
}}
system {
config-management {
commit-revisions 100
}
conntrack {
modules {
ftp
h323
nfs
pptp
sip
sqlnet
tftp
}
}
console {
device ttyS0 {
speed 115200
}
}
host-name vyos
login {
user vyos {
authentication {
encrypted-password ****************
}
}
}
ntp {
server time1.vyos.net {
}
server time2.vyos.net {
}
server time3.vyos.net {
}
}
syslog {
global {
facility all {
level info
}
facility protocols {
level debug
}
}
}}
icyfire0573 added a comment to T4713: vyos@vyos:~$ show nat destination rules | doesn't work.
still no good
vyos@vyos:~$ show nat destination rules
Traceback (most recent call last):
File "/usr/libexec/vyos/op_mode/nat.py", line 302, in <module> res = vyos.opmode.run(sys.modules[__name__]) File "/usr/lib/python3/dist-packages/vyos/opmode.py", line 147, in run res = func(**args) File "/usr/libexec/vyos/op_mode/nat.py", line 280, in show_rules return _get_formatted_output_rules(nat_rules, direction, family) File "/usr/libexec/vyos/op_mode/nat.py", line 112, in _get_formatted_output_rules if 'prefix' in match['right'] or 'set' in match['right']:
TypeError: argument of type 'int' is not iterable
vyos@vyos:~$ show version
Version: VyOS 1.4-rolling-202209260217
Release train: sagitta