achiang · November 10, 2016 19:55
diff --git a/vyos config b/vyos config
 firewall {
    all-ping enable
    broadcast-ping disable
    config-trap disable
    ipv6-receive-redirects disable
    ipv6-src-route disable
    ip-src-route disable
    log-martians enable
    name eth0in {
        default-action reject
        rule 40 {
            action accept
            description "accept all internal traffic"
            source {
                address 10.113.0.0/16
            }
        }
        rule 200 {
            action drop
        }
    }
    name eth0out {
        default-action accept
    }
 }
 interfaces {
    ethernet eth0 {
        address dhcp
        duplex auto
        firewall {
            in {
                name eth0in
            }
            out {
                name eth0out
            }
        }
        hw-id 0a:d2:b0:8e:53:f3
        smp_affinity auto
        speed auto
    }
    ethernet eth1 {
        address dhcp
        duplex auto
        hw-id 0a:98:ae:54:33:d6
        smp_affinity auto
        speed auto
    }
    loopback lo {
    }
 }
 nat {
    source {
        rule 30 {
            destination {
                address XX.XX.XX.XX/32
            }
            outbound-interface eth1
            translation {
                address masquerade
            }
        }
        rule 500 {
            outbound-interface eth0
            source {
                address 10.113.0.0/16
            }
            translation {
                address masquerade
            }
        }
    }
 }
	firewall {
	all-ping enable
	broadcast-ping disable
	config-trap disable
	ipv6-receive-redirects disable
	ipv6-src-route disable
	ip-src-route disable
	log-martians enable
	name eth0in {
	default-action reject
	rule 40 {
	action accept
	description "accept all internal traffic"
	source {
	address 10.113.0.0/16
	}
	}
	rule 200 {
	action drop
	}
	}
	name eth0out {
	default-action accept
	}
	}
	interfaces {
	ethernet eth0 {
	address dhcp
	duplex auto
	firewall {
	in {
	name eth0in
	}
	out {
	name eth0out
	}
	}
	hw-id 0a:d2:b0:8e:53:f3
	smp_affinity auto
	speed auto
	}
	ethernet eth1 {
	address dhcp
	duplex auto
	hw-id 0a:98:ae:54:33:d6
	smp_affinity auto
	speed auto
	}
	loopback lo {
	}
	}
	nat {
	source {
	rule 30 {
	destination {
	address XX.XX.XX.XX/32
	}
	outbound-interface eth1
	translation {
	address masquerade
	}
	}
	rule 500 {
	outbound-interface eth0
	source {
	address 10.113.0.0/16
	}
	translation {
	address masquerade
	}
	}
	}
	}