Vyatta Core Publisher's description
from Vyatta Inc.
The free community Vyatta Core software(VC) is an award-winning open source network operating system providing advanced IPv4 and IPv6 routing, stateful firewalling, IPSec and SSL OpenVPN, intrusion prevention, and more.
The free community Vyatta Core software(VC) is an award-winning open source network operating system providing advanced IPv4 and IPv6 routing, stateful firewalling, IPSec and SSL OpenVPN, intrusion prevention, and more. When you add Vyatta to a standard x86 hardware system, you can create an enterprise grade network appliance that easily scales from DSL to 10Gbps. Vyatta is also optimized to run in VMware, Citrix XenServer, Xen, KVM, and other hypervisors, providing networking and security services to virtual machines and cloud computing environments.
A commercial version of the Vyatta network OS (Vyatta Subscription Edition) is also available with enterprise-ready management and security product extensions and complete engineering support including proactive notifications of security alerts and software releases as well as priority access to patches & bug fixes. Vyatta SE is available as pre-integrated hardware appliances, software subscriptions and optimized virtual machines that include your choice of technical support level.
What's New in This Release:The following new features are available for the Vyatta Core :
Open VPN enhancements. This release contains many enhancements to VyattaвЂ™s implementation of OpenVPN. These enhancements are described in the вЂњOpenVPNвЂќ chapter of the Vyatta VPN Reference Guide.
Client access to subnets behind an OpenVPN server. The Vyatta OpenVPN server can now be configured in such a way that it "pushes" or sends routes to each client that connects to it. The route can be a single default route or a set of routes to subnets located behind the server. This feature can be configured on a global or per-client basis, using the new вЂњpush-routeвЂќ option of the вЂњopenvpn <vtunx> serverвЂќ or вЂњopenvpn <vtunx> server <server> clientвЂќ command, respectively.
Reset a running OpenVPN process. The new вЂњrestart openvpn interfaceвЂќ command allows you to reset all tunnel connections on an interface.
Configure DNS servers to be pushed to clients. A new OpenVPN option, the вЂњpush dhcp-option DNSвЂќ option, allows you to configure a set of DNS servers to be вЂњpushedвЂќ from an OpenVPN server to clients when they connect.
Configuration changes without process restart. In this release, client configuration on the OpenVPN server can be modified without requiring a process restart. This means that you can add or remove clients or change individual client settings without disrupting connected clients.
Limit client connections. The new вЂњmax-connectionsвЂќ option for the вЂњinterfaces openvpn <vtunx> serverвЂќ command allows you to limits the number of client connections that can be opened to the OpenVPN server.
Multiple subnets per client. The вЂњopenvpn <vtunx> server clientвЂќ command now allows you to specify multiple subnets for a given client.
Configuration revision management features. This release contains many features to view and manage committed configuration information. These new features are all described in the вЂњConfiguration ManagementвЂќ chapter of the Vyatta Basic System Reference Guide.
Archive configuration commits. In this release, you can configure the system to forward configuration commit operations to a remote location and save them there. The new вЂњsystem config-management commit-archive locationвЂќ command can be used to archive configuration commits to FTP, SCP, or TFTP locations.
View commit revision information. This release includes features to see what information has changed in previous commits, whether the information was committed using the CLI, the GUI, or the Remote Access API (Vyatta Subscription Edition only). The number of commits saved is configured using the new вЂњsystem config-management commit-revisionsвЂќ command. Using the new вЂњshow system commitвЂќ operational command, you can see the list of archived revisions and view the full configuration file for a specific revision.
Compare configuration revisions. Using the new вЂњcompareвЂќ command, you can view the difference between the active configuration and any revision, or view the difference between two revisions.
Roll back to a specific configuration revision. The new вЂњrollbackвЂќ command allows you to roll configuration back to a specific revision.
Confirm commits. In this release, you can set the system to require you to confirm configuration commits. Using the new вЂњcommit-confirmвЂќ configuration command, you can specify a period within which committed configuration changes must be confirmed. If they are not, the system reboots to a вЂњlast known goodвЂќ configuration.
More granular inspection options for Vyatta Core IPS. In previous releases, enabling content inspection resulted in the inspection of all forwarded and locally destined traffic. This release adds support for enabling content inspection on traffic travelling in a given direction through specific interfaces or zones. This feature is described in the вЂњIntrusion Protection SystemвЂќ chapter of the Vyatta Security Reference Guide.
More alert logging options for Vyatta Core IPS. In previous releases, alerts could only be reported in a local file in unified format, using the вЂњshow ips logвЂќ and вЂњshow ips summaryвЂќ commands. This release adds support for forwarding alerts to a remote mySQL database or to syslog using the new вЂњcontent-inspection ips logsвЂњ command. This command is described in the вЂњIntrusion Protection SystemвЂќ chapter of the Vyatta Security Reference Guide.
Ability to define and configure serial consoles. Earlier releases of the Vyatta system supported only the VGA console plus a single serial console on the вЂњ/dev/ttyS0вЂќ device. In this release, you can configure and disable additional console logins using the new вЂњsystem consoleвЂќ command. This command also provides support for enabling and disabling VGA screen powersaving. The вЂњsystem consoleвЂќ command is described in the вЂњSystem ManagementвЂњ chapter of the Vyatta Basic System Reference Guide.
Enhanced ability to restrict system access. In this release, you can restrict remote access to the system by specifying a вЂњlisten-addressвЂќ within SSH, Telnet, or Web GUI access configurations. Only connection requests to the specified address (or addresses) will be accepted. The вЂњlisten-addressвЂќ option is described in the вЂњSSHвЂњ, вЂњTelnetвЂќ, and вЂњWeb GUI AccessвЂќ chapters of the Vyatta Services Reference Guide.
System Requirements:No special requirements.
Program Release Status: New Release
Program Install Support: Install and Uninstall