Vyos01 and Vyos02 Modifications for Project 2

• For project 2, we need to work on configuring the OPT network and also providing changes to the port forwarding and NAT rules. As per project 1, the interfaces for the OPT network was set up already so we just need to add some NAT/DNS rules and VRRP to start.

• Vyos01 Commands Output for Project 2 - Vyos01Project2ConfigCommands

• Vyos02 Commands Output for Project 2 - Vyos02Project2ConfigCommands

Vyos01 and Vyos02 Configs

• For all of these commands below, I've executed them on both vyos routers with the only differences being in IP addresses.

1. Set up VRRP for the OPT network with the commands below.

set high-availability vrrp group optgroup7 vrid 157
set high-availability vrrp group optgroup7 interface eth2
set high-availability vrrp group optgroup7 address 10.0.6.1/24

2. The NAT source rules were already created in the last project, along with DNS forwarding and listening rules, so we don't have to worry about them.

3. However, we do need to add a new port forwarding rule to forward HTTP to the virtual IP address on keepalived of our HAProxy servers. This can be done by using the commands below to edit our old HTTP port forwarding rule and add the new IP address.

delete nat destination rule 30 description

delete nat destination rule 30 translation address

set nat destination rule 30 description "HTTP To HAProxy VIP"

set nat destination rule 30 translation address 10.0.6.19