Skip to content

Instantly share code, notes, and snippets.

@Trumeet

Trumeet/vyosconf

Created October 29, 2021 01:51
Show Gist options
  • Save Trumeet/0c338f91af7eb4fcdb232f1e0763d036 to your computer and use it in GitHub Desktop.
Save Trumeet/0c338f91af7eb4fcdb232f1e0763d036 to your computer and use it in GitHub Desktop.
Download ZIP
Yet another failed VyOS attempt.
Raw
vyosconf
interfaces {
ethernet eth0 {
address dhcp
address 2001:19f0:b001:fb6:5400:3ff:fea6:723/64
}
loopback lo {
}
wireguard wg0 {
address fe80::2980:12/64
address 2404:f4c0:f9c2:200::1/56
description yyz1.ca
peer yyz1ca {
address 132.145.96.16
allowed-ips 0.0.0.0/0
allowed-ips ::/0
port 60012
public-key ****************
}
port 60005
private-key ****************
}
}
policy {
prefix-list6 Export6 {
rule 1 {
action permit
prefix 2404:f4c0:f9c2::/48
}
}
prefix-list6 Internal {
rule 1 {
action permit
prefix 2404:f4c0:f9c0::/44
}
}
prefix-list6 PubImpValid {
rule 1 {
action permit
ge 48
prefix ::/0
}
}
prefix-list6 PubNet {
rule 1 {
action deny
prefix fc00::/7
}
rule 2 {
action permit
prefix ::/0
}
}
route-map Internal {
rule 10 {
action permit
match {
ipv6 {
address {
prefix-list Internal
}
}
}
}
}
route-map PrefSrc {
rule 10 {
action permit
match {
ipv6 {
address {
prefix-list PubNet
}
}
}
set {
src 2404:f4c0:f9c2:200::1
}
}
}
route-map PubExp {
rule 1 {
action permit
match {
ipv6 {
address {
prefix-list Export6
}
}
}
}
}
route-map PubImp {
rule 1 {
action permit
match {
ipv6 {
address {
prefix-list PubImpValid
}
}
}
set {
src 2404:f4c0:f9c2:200::1
}
}
}
}
protocols {
bgp {
address-family {
ipv6-unicast {
network 2404:f4c0:f9c2::/48 {
}
}
}
local-as 4242422980
neighbor 2001:19f0:ffff::1 {
address-family {
ipv6-unicast {
nexthop-self {
}
route-map {
export PubExp
import PubImp
}
}
}
ebgp-multihop 2
local-as 142281 {
}
password ****************
remote-as 64515
}
neighbor 2404:f4c0:f9c2:100:: {
address-family {
ipv4-unicast {
nexthop-self {
}
}
ipv6-unicast {
nexthop-self {
}
}
}
remote-as 4242422980
}
parameters {
default {
no-ipv4-unicast
}
router-id 141.164.58.126
}
}
ospfv3 {
area 3 {
interface wg0
}
interface wg0 {
cost 12
network point-to-point
}
parameters {
router-id 141.164.58.126
}
redistribute {
connected {
route-map Internal
}
}
}
rpki {
cache rtr.rpki.akrn.net {
port 8282
preference 1
}
}
static {
route6 2001:19f0:ffff::1/128 {
next-hop fe80::fc00:3ff:fea6:723 {
interface eth0
}
}
route6 2404:f4c0:f9c2:100::/56 {
interface wg0 {
}
}
route6 2404:f4c0:f9c2::/48 {
blackhole {
distance 254
}
}
}
}
service {
ssh {
port 22
}
}
system {
config-management {
commit-revisions 100
}
console {
device ttyS0 {
speed 115200
}
}
host-name vyos
login {
user vyos {
authentication {
encrypted-password ****************
plaintext-password ****************
}
}
}
name-server 1.1.1.1
name-server 8.8.8.8
ntp {
server time1.vyos.net {
}
server time2.vyos.net {
}
server time3.vyos.net {
}
}
syslog {
global {
facility all {
level info
}
facility protocols {
level debug
}
}
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment