Hello everyone, I encountered a small problem during the experiment, and I hope to get your help. Although this situation is not the right way to use it, I just want to ask if there is a way to solve this problem. Thank you all!
set interfaces ethernet eth0 address address '22.214.171.124/24' set interfaces ethernet eth0 address address '126.96.36.199/24' Internet---OUTSIDE eth0 188.8.131.52 184.108.40.206 && INSIDE eth1 10.10.10.1---PC10.10.10.2(8080,443) NAT: 220.127.116.11:80---10.10.10.2:8080 18.104.22.168--dmz--10.10.10.2 Firewall: OUTSIDE-INSIDE port 8080 accept
Excuse me, if I let the existing 8080 firewall rules only match 22.214.171.124 addresses, and the 126.96.36.199 addresses pass or use other firewall rules to match.
Currently, neither address can access 443, but I only want to make 188.8.131.52:443 accessible and 184.108.40.206:443 inaccessible. I add in the firewall if the identification is 220.127.116.11 or 18.104.22.168?
The system information is as follows
vyos@vRoute:~$ show version Version: VyOS 1.3-rolling-202009030118 Release Train: equuleus Built by: email@example.com Built on: Thu 03 Sep 2020 01:18 UTC Build UUID: 83c8515b-213b-4ac6-9b9a-2a0f24bbbda7 Build Commit ID: 221fd153830307 Architecture: x86_64 Boot via: installed image System type: VMware guest Hardware vendor: VMware, Inc. Hardware model: VMware Virtual Platform Hardware S/N: Unknown Hardware UUID: Unknown Copyright: VyOS maintainers and contributors