troubleshooting Question

How to set vyatta to block all traffic destined for a network other than ours

Avatar of rleyba828
rleyba828Flag for Australia asked on
Software FirewallsLinux NetworkingLinux
2 Comments1 Solution2149 ViewsLast Modified:
Hi Team,

   I am new to vyatta and I am trying to construct a set of firewall rules that basically says, block all traffic destined to a network other than ours.  In this case the local subnet is 10.10.10.0 and I want all traffic behind vyatta to go through our network (same side as eth0) but not exit from eth0 to any other destination.

 set firewall name eth0out rule 10 action drop
 set firewall name eth0out rule 10 protocol tcp
 set firewall name eth0out rule 10 destination address !10.10.10.0/24
 set interfaces eth0 firewall out name eth0out

Line #3 is what I am having difficulty with.   the ! doesn't seem to work. Can someone just guide me on the proper syntax?

Thanks and regards
ASKER CERTIFIED SOLUTION
Blaz

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 2 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 2 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros