Configuring an IP address and enabling services such as SSH/HTTPS on Brocade Vyatta CLI

When Brocade purchased Vyatta I was nervous, but they have done a really good job with it. They keep it updated, and now have added a lot of functionality and increased services with the 6400 version. Both the 5600 (pretty much old vyatta) and the newer 6400 Vyatta IOS are for free from Brocade fro 60 days.

This blog entry is just showing some very simple things such as adding a IP address to an interface and enabling the HTTPS and SSH service. In another entry i will show how to use other user authentication methods for user logins. Although all of these commands are very easy, this post could help someone who might be in a bind.

Configure an IP address.

The Vrouter CLI has always been intuitive for me. Each config option is really an objects configuration. You can delete the config altogether or just an individual config setting of the object. To set the IP address first you have to go into configure mode.

configure

set int ethernet eth0 address 192.168.252.1/24

commitremember nothing is set, until this is entered.

The image below shows these commands in the actual CLI.

ip-1

We can also save the config in config mode by issuing the command “save”.

That’s, it we have now set an IP address.So on to enabling SSH and HTTPS access.

HTTPS

To enable HTTPS we need to issue the command (from config mode)

set service https

commit

As you can see from the image below, after those commands are entered the Vyatta generates a certificate, and restarts its web server.

https2

SSH

Enabling SSH is as easy as the other commands.

From config mode

set service ssh enable

commit

You also have options to allow root login, set the listen address, and change the port.

SSH

5 responses to “Configuring an IP address and enabling services such as SSH/HTTPS on Brocade Vyatta CLI

  1. Dushyant July 3, 2017 at 1:40 pm

    can you tell me how to change the Listen Address of SSH as I have changed from sshd_config but after reboot it again changed with default

    • cjcott01 July 3, 2017 at 1:44 pm

      Hey Dush! Thanks for the comment. Yes, you do not need to change that in the sshd_config – this should be done from Vyatta.

      Configure
      set service ssh port 3000 (example port)
      commit
      save

      When you go into configure, use the ? after set service ssh to see the rest of the commands, you can change ‘allow-root’ etc – using these commands just modify the sshd_config file.

  2. Dushyant July 3, 2017 at 1:49 pm

    i dont want to change I want to change the IP on which SSH have to Listen on

  3. cjcott01 July 3, 2017 at 1:51 pm

    Sorry, read that wrong.

    configure
    set service ssh listen-address 1.1.1.1
    commit
    save

  4. Dushyant July 3, 2017 at 1:53 pm

    I got that
    I have done using set service ssh listen-address (IP)

    Thanks for quick response

Leave a Reply to DushyantCancel reply

%d bloggers like this: