Virtual Router/ Firewall/ VPN

Reply
Occasional Visitor
Posts: 1
Registered: ‎10-19-2015

Vyatta Stateful/Stateless Configuration

Can I configure a Vyatta firewall to provide stateful connections to a set of TCP source and desitation ports/IP address pairs while handling all other connections as stateless?

 

Thanks

New Contributor
Posts: 2
Registered: ‎12-14-2015

Re: Vyatta Stateful/Stateless Configuration

Hi there

 

I think you should be able do that on a per rule basis.

 

To enable it (or disable) it on a rule I think you control it with the state option within the rule itself

 

set firewall name <your_firewall_policy> <your rule number> state established disable

set firewall name <your_firewall_policy> <your rule number> state state disable

 

 

best check to see what you have set as a global, only that you might already have it enable across all rules

 

# show firewall state-policy
established {
action accept
}
related {
action accept
}

 

Hope that helps

 

 

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.