Setting firewall group objects


#1

I am trying to set a firewall group with Vyos and I do not have a static IP from my ISP. I get a DHCP address. I am not sure of the syntax.

Here is the example syntax: set firewall grouo network-group NET-WAN network ‘197.51.100.0/24’
the “197.51.100.0/24” would be the random DHCP address. How would I enter it in? Thank you in advance for the help.


#2

Hello, @adelagarde!
Yes, you use right syntax to set up network group. As I understand, you want to set up firewall rules, that will describe traffic to/from your router? You can do this in this manner if you exactly know whole ISP network space. Alternative way is using firewall local-zone.