Page MenuHomeVyOS Platform
People patrickli

patrickli (Patrick Li)
User

Projects

User does not belong to any projects.

User Details

User Since
Aug 11 2022, 10:54 PM (89 w, 4 d)

Recent Activity
View All

Oct 8 2022

patrickli added a comment to T4612: Support arbitrary netmasks in firewall rules.

A separate mask field is cleaner also from a documentation point of view. But how would you do it for an address/network group? It only makes sense for a single address I suppose.

Oct 8 2022, 7:05 PM · VyOS 1.4 Sagitta

Aug 15 2022

patrickli added a comment to T4612: Support arbitrary netmasks in firewall rules.

Nice. Is this syntax supported in vyos or it needs some development?

Aug 15 2022, 11:26 AM · VyOS 1.4 Sagitta
patrickli added a comment to T4612: Support arbitrary netmasks in firewall rules.

OK. I was trying to migrate from an EdgeRouter and this is a rule I used to have.

Aug 15 2022, 10:29 AM · VyOS 1.4 Sagitta
patrickli added a comment to T4611: UPnP rule IP should be a prefix instead of an address.
set service upnp rule 10 action allow
set service upnp rule 10 external-port-range 1024-65536
set service upnp rule 10 internal-port-range 1024-65536
set service upnp rule 10 ip 10.0.0.1/24
Aug 15 2022, 10:16 AM · VyOS 1.4 Sagitta
patrickli added a comment to T4612: Support arbitrary netmasks in firewall rules.

Yeah nftables is just the engine for iptables. EdgeOS supports this syntax.

Aug 15 2022, 10:08 AM · VyOS 1.4 Sagitta
patrickli created T4612: Support arbitrary netmasks in firewall rules.
Aug 15 2022, 9:59 AM · VyOS 1.4 Sagitta
patrickli created T4611: UPnP rule IP should be a prefix instead of an address.
Aug 15 2022, 9:51 AM · VyOS 1.4 Sagitta