vyatta Archive

Hetzner’s ban, NAT leaking internal traffic on WAN interface and New Year’s

  As I mentioned few times, we have small cluster of servers located on Hetzner’s datacenters. We use Vyatta for our core router and we NAT all additional servers thru it, becouse Hetzner’s dedicated servers don’t support direct routing. Incident On new year’s eve, my phone started ringing insanely and I noticed one of our

Installing Vyatta 6.6 R1 with software raid 1

Intro For all my routers I usually choose at least some level of raid. As routers usually don’t need any disk performance, simple raid 1 – mirroring is enough to sustain disk failure and ensure server continues to work. Now let’s get busy and install our latest Vyatta on our server. Prerequisites To ensure fast

Vyatta – SNAT – Randomly rotating public IP addresses

The problem Our contextual system uses bots/spiders to leech data from our customer’s websites in order to parse them and use extracted text for further content analysis. This means we have setup few servers that run bots/spiders. Can you imagine if 20 bots started leeching websites hosted on same webhosting using only one ip? That could be considered as sort of

Howto: Libvirt, Vyatta, Failover IP and Hetzner

Overview We will use 2 Vyatta routers, make one primary gateway for all internal servers and when primary Vyatta crashes, the backup router will take gateway IP with help of VRRP and aditionally switch frontend Failover IP from one server to another. Prerequisites 2 physical servers on Hetzner Failover IP Internal NIC in both servers, to

Vyatta / VyOS: site-to-site OpenVPN + Open Shortest Path First (OSPF) setup

When you scale your network from one location to another, sooner or later you may want to merge those networks and have only one. To merge networks, you need to setup 2 routers and site-to-site connection between them. One of open source solutions is OpenVPN and Vyatta/VyOS. This article will cover setting up site-to-site connection