Virtual Router/ Firewall/ VPN

Reply
Occasional Visitor
Posts: 1
Registered: ‎10-19-2015

Vyatta Stateful/Stateless Configuration

Can I configure a Vyatta firewall to provide stateful connections to a set of TCP source and desitation ports/IP address pairs while handling all other connections as stateless?

 

Thanks

New Contributor
Posts: 2
Registered: ‎12-14-2015

Re: Vyatta Stateful/Stateless Configuration

Hi there

 

I think you should be able do that on a per rule basis.

 

To enable it (or disable) it on a rule I think you control it with the state option within the rule itself

 

set firewall name <your_firewall_policy> <your rule number> state established disable

set firewall name <your_firewall_policy> <your rule number> state state disable

 

 

best check to see what you have set as a global, only that you might already have it enable across all rules

 

# show firewall state-policy
established {
action accept
}
related {
action accept
}

 

Hope that helps

 

 

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.

vADC is now Pulse Secure
Download FREE NVMe eBook