Great video and a awesome software, glad to see VyOS becoming popular, I used Vyatta 6.x over a decade ago to build an ISP for Niue Telecom, it had a nice GUI then (which you really dont need, CLI is intuitive and fast). I used few instances of Vyatta in (HA) as the island's Firewall and core network router, worked like a charm. That deployment was a show case in the 2010 PITA annual meeting (Pacific Islands Telecom Association) on how to bring low cost Telco grade solutions to operators in the pacific that have limited funds to build their next generation networks.
There is a reason it is so similar to JunOS. JunOS was forked from Vyatta in the mid 2000’s and ported to FreeBSD as the base OS. I work with JunOS and Nokia daily and have added VyOS in the recent few months. I love it so much I have approached engineering at my workplace about using it and we are piloting it on our disaster recovery team. So far so good. We have added zerotier and it provides a wonderful low cost and easy to use VPN concentrator/router.
great content, i use edgerouter's, i have vyos on dell thin client with 1 ethernet port and unifi switch, using vlans for WAN and LAN, i plan on making it my main router at some point, using pihole container an there also
Yeah, it is definitely an awesmoe platform that has MANY uses! I really enjoyed my time with VyOS, I would like to lab this further within EVE-NG and build "ISP networks" just to see how far I can take the network. I am VERY interested in how well IS-IS works on it.
awesome video, I have shifted my home router from using pfSense to VyOS (nightly build). without any previous cli knowledge on VyOS, I had some learning to do, however, my knowledge and many years with pfsense had let me to learn vyos rather quickly. because in the end, rules and configurations are similar, only different way to set and view it. so far vyos feels snappier than pfsense, and I was able to do all things I had with pfsense within couple weeks only. Further, in my case, I have pppoe wan connection from my ISP, which in pfsense, it is only single threaded and not very optimised. while in VyOS it is very well supported and multithreaded. as for the CLI, it will grow on you, as i feel it is very intuitive with auto complete. also, feels easier to copy and paste configuration rather than going into different pages on GUI. the VyOS team has been working on a GUI and very recently they let the community join in the process, can be seen on their subreddit the links are all available Also If I may ask, if you can dive in and make a video how to properly use containers within VyOS (they introduced it in version 1.4). basically, it uses podman implementation of docker containers and it can be added through the VyOS cli directly. I tried it, kinda made it work by adding PiHole and Unbound as containers, however, didn't find it very easy to setup, because the container network is not identified as interface, and not sure how to apply firewall rules to it. I'm still researching and testing it, looks very promising, as you can add ton of functionality this way, just need to understand it better. Cheers.
Love to see that you are diving into VyOS. This is one of my favourite firewall platforms that I have tested in the home lab. Would be cool to see changes using Ansible in your EVE-NG lab if you have time to show that.
Awesome video! I really like VyOS so far. I've used Cisco a lot during CCNA studies, and it reminds me a lot of them. Its been really easy to use, definitely gonna keep using it.
Ubiquiti EdgeRouters run a fork of Vyatta OS. So, if you have experience with Ubiquiti, VyOS is pretty much the same deal. My home router was a Edgerouter Lite, but when I needed 10gbps routing capability I went with a x86 PC. I considered VyOS, 'cause I already knew how to use it. But I ended up with a turnkey solution, mostly because I wanted to install an IDS/IPS.
I've been using Endian Community running on ESXi for years for a home router with a local network and a couple of DMZs for internet-facing services, and I like it. Just my $0.02. I'm not overly scared of a terminal, but if I can have a pleasant GUI, I'll take it every time. It won't get you overly deep into advanced firewalling settings, but it's far superior to most home routers I've dealt with.
thank you very much I've been trying so long to make my own lab environment with FW's and endpoint users that have many adapters but now with this guide that would be a breeze
Will it? VyOS is kinda objectively better nowadays, especially if you actually need routing capability. PFSense is more of a firewall with some routing capability slapped on top... except I'd say VyOS does firewalling better as well. 😄 Biggest problem for me is PFSense really seems to hate single stack IPv6. Its possible, but I found it very buggy and with a lot of gotchas. Most people would want to do dual stack and don't need to comfigure routing protocols, so PFSense is fine for them I wager
Unfortunately some easy tasks in Mikrotik are tediously hard in VyOS. Consider running a docker container, in VyOS it's a nightmare to get any docker image up and running; You need to issue commands in three different modes and after that it takes all your CPU and RAM and then you need to start optimizing.
Running vyos on a vm, I quite often have that same issue connecting through ssh, what usually works for me is simply duplicating the connection on putty, the second instance usually connects.
Yeah that sucks, my issue isn't limited to VyOS. I get this with my MikroTik VMs and my EVE-NG VM. It happens everytime my computer wakes from sleep. Better to just shutdown I guess :P!
Indeed my reasoning is similar, though I know many people tend to lean to GUIs for their Firewalling and I have seen people on forums/Reddit prefer a sense Firewall just because of a GUI and not functionality.
Hello Sir. Nice video for freshers. Am facing an issue, unable to login to my vm, which you had told that the default login is vio and bios. can you please help me out
Hello Brother, I have created a VyOS VM from a VHD ( my organisation process) in azure. I am unable to perform ssh to it from outside without making eth0 dhcp. my requirement is i don’t want to make it dhcp. enabled ssh on address, port, tried everything,but could not perform ssh from outside. within the machine i can (that is senseless) is this due to some firewall?.. can you suggest anything?
What exactly do you mean? A network appliance *needs* to listen. No way around that. Too many requests and it will fail. You can somewhat mitigate things by some analysis and dropping the connection as fast as possible.
Hi Brother, amazing video. Thank you. Can I post your video in my linkedin, with the original link and credit given to you ... let me know if it's possible and if you want me to mention your other social nw handle, let me know... I work as a business manager in VyOS APAC. I would love to highlight your content... Cheers Bro.
The comparison with full Pfsense is kinda silly TBH. The problem for alot of ppl is not that is CLI only, it has no features. No list based firewall and no IPS/IDS. Sadly in 2022 "routers" can't only do routing...
The problem is people are trying to compare a very powerful routing platform to a firewall, so yeah I agree CLI isn't the biggest issue. None of the sense firewalls being able to do VRFs or IS-IS for large scale networking definitely puts VyOS in its own level imo, but yeah, if you're looking for just a firewall then there are probably better alternatives out there.
Network OS's like Cisco IOS or Juniper's JUNOS also doesn't have a fancy GUI, but a majority of the world's networks are built using them. I don't think a GUI natively translates to whether or not a network OS is good or not, I think it is better to look at the feature sets these devices support and then make up your mind from there. Learning something like a CLI can feel tedious, but once you are used to it you can arguably configure or troubleshoot your networks a lot faster than on a GUI.
![[TH] VALORANT Champions Seoul - Lower Bracket Final - LEV vs TH](http://i.ytimg.com/vi/fyYkI80GG4o/mqdefault.jpg)
Pinning this comment with some reference links:
VyOS site:
vyos.io/
VyOS Docs:
docs.vyos.io/en/equuleus/
Great video and a awesome software, glad to see VyOS becoming popular, I used Vyatta 6.x over a decade ago to build an ISP for Niue Telecom, it had a nice GUI then (which you really dont need, CLI is intuitive and fast).
I used few instances of Vyatta in (HA) as the island's Firewall and core network router, worked like a charm. That deployment was a show case in the 2010 PITA annual meeting (Pacific Islands Telecom Association) on how to bring low cost Telco grade solutions to operators in the pacific that have limited funds to build their next generation networks.
There is a reason it is so similar to JunOS. JunOS was forked from Vyatta in the mid 2000’s and ported to FreeBSD as the base OS. I work with JunOS and Nokia daily and have added VyOS in the recent few months. I love it so much I have approached engineering at my workplace about using it and we are piloting it on our disaster recovery team. So far so good. We have added zerotier and it provides a wonderful low cost and easy to use VPN concentrator/router.
Awesome, I didn't even know that and worked on Junipers for many years hehe. Thanks for the information 😁
No. VyOS was forked from Vyatta, but Vyatta itserf was just copying JunOS as JunOS was first one.
great content, i use edgerouter's, i have vyos on dell thin client with 1 ethernet port and unifi switch, using vlans for WAN and LAN, i plan on making it my main router at some point, using pihole container an there also
I’m use Vyos (Vyatta) about 15 years. Great product for BGP, Firewall, VPN, DMVPN and more…..
Yeah, it is definitely an awesmoe platform that has MANY uses! I really enjoyed my time with VyOS, I would like to lab this further within EVE-NG and build "ISP networks" just to see how far I can take the network. I am VERY interested in how well IS-IS works on it.
awesome video, I have shifted my home router from using pfSense to VyOS (nightly build). without any previous cli knowledge on VyOS, I had some learning to do, however, my knowledge and many years with pfsense had let me to learn vyos rather quickly. because in the end, rules and configurations are similar, only different way to set and view it.
so far vyos feels snappier than pfsense, and I was able to do all things I had with pfsense within couple weeks only. Further, in my case, I have pppoe wan connection from my ISP, which in pfsense, it is only single threaded and not very optimised. while in VyOS it is very well supported and multithreaded.
as for the CLI, it will grow on you, as i feel it is very intuitive with auto complete. also, feels easier to copy and paste configuration rather than going into different pages on GUI.
the VyOS team has been working on a GUI and very recently they let the community join in the process, can be seen on their subreddit the links are all available
Also If I may ask, if you can dive in and make a video how to properly use containers within VyOS (they introduced it in version 1.4). basically, it uses podman implementation of docker containers and it can be added through the VyOS cli directly. I tried it, kinda made it work by adding PiHole and Unbound as containers, however, didn't find it very easy to setup, because the container network is not identified as interface, and not sure how to apply firewall rules to it. I'm still researching and testing it, looks very promising, as you can add ton of functionality this way, just need to understand it better.
Cheers.
Love to see that you are diving into VyOS. This is one of my favourite firewall platforms that I have tested in the home lab. Would be cool to see changes using Ansible in your EVE-NG lab if you have time to show that.
Yeah I definitely want to tinker with VyOS and Ansible together
Awesome video! I really like VyOS so far. I've used Cisco a lot during CCNA studies, and it reminds me a lot of them.
Its been really easy to use, definitely gonna keep using it.
TNice tutorials is one of the best tutorials of ANYTNice tutorialNG that I've ever watched in my life! Thank you so much!
great video, keep up the good work !
Ubiquiti EdgeRouters run a fork of Vyatta OS. So, if you have experience with Ubiquiti, VyOS is pretty much the same deal. My home router was a Edgerouter Lite, but when I needed 10gbps routing capability I went with a x86 PC. I considered VyOS, 'cause I already knew how to use it. But I ended up with a turnkey solution, mostly because I wanted to install an IDS/IPS.
I've been using Endian Community running on ESXi for years for a home router with a local network and a couple of DMZs for internet-facing services, and I like it. Just my $0.02. I'm not overly scared of a terminal, but if I can have a pleasant GUI, I'll take it every time. It won't get you overly deep into advanced firewalling settings, but it's far superior to most home routers I've dealt with.
Thank you for the introductive video. VyOS really seems great.
man, I love, what You do. I honestly have no idea, why it's that little of likes under your videos. But please keep doing videos. You're amazing
Great job. Thanks for this fantastic intro and quick start.
thank you very much
I've been trying so long to make my own lab environment with FW's and endpoint users that have many adapters but now with this guide that would be a breeze
impressive production values, I subscribed. trying to get more into this stuff :)
I know this will insult certain people. But i like Vyos, way more than pfSense.
Will it? VyOS is kinda objectively better nowadays, especially if you actually need routing capability. PFSense is more of a firewall with some routing capability slapped on top... except I'd say VyOS does firewalling better as well. 😄
Biggest problem for me is PFSense really seems to hate single stack IPv6. Its possible, but I found it very buggy and with a lot of gotchas. Most people would want to do dual stack and don't need to comfigure routing protocols, so PFSense is fine for them I wager
Great video!
thank you for your presentation
You are welcome
nice information!
Unfortunately some easy tasks in Mikrotik are tediously hard in VyOS. Consider running a docker container, in VyOS it's a nightmare to get any docker image up and running; You need to issue commands in three different modes and after that it takes all your CPU and RAM and then you need to start optimizing.
TNice tutorials was very helpful thankyou.
Running vyos on a vm, I quite often have that same issue connecting through ssh, what usually works for me is simply duplicating the connection on putty, the second instance usually connects.
Yeah that sucks, my issue isn't limited to VyOS. I get this with my MikroTik VMs and my EVE-NG VM. It happens everytime my computer wakes from sleep. Better to just shutdown I guess :P!
If it's CLI based, then it should be pretty easy to manage via Ansible or suchlike. Policy management wouldn't necessarily be so bad using Playbooks.
Indeed my reasoning is similar, though I know many people tend to lean to GUIs for their Firewalling and I have seen people on forums/Reddit prefer a sense Firewall just because of a GUI and not functionality.
I got used to the CLI with EdgeOS and I love it. I just wish there was some small purpose-built hardware for this.
There's a lot of small devices built for this purpose if you browse on AliExpress. Usually they're installed with pfsense.
@@gamtax Is there any particular device you would recommend?
... =) First time I have heard Deabian being called Tipien
Thought it was pronounced DEE BEE AN xD my bad!
Please recommend physical hardware platform that can be used to install VyOS. It will be great if can have a VyOS as a physical router.
For sure need gui for complex rules. Ipfire is good.
I will use it when they have gui like mikrotik.
can you look at SONiC next or any of the whitebox NOS?
I see that GUI is in the pipeline.
Why doesn’t my soft have all options for example I don’t have a trono I’m on a Mac book pro
good job
Hello Sir. Nice video for freshers. Am facing an issue, unable to login to my vm, which you had told that the default login is vio and bios. can you please help me out
The logins should be vyos/vyos closed captions probably creating the incorrect subtitles
I don't think you are allowed to use the History Channel logo like this (02:10), just as a heads-up.
Love the videos ^^
Hmmm maybe I will blur it to be safe, although worst scenario is them claiming my video
When upload more of vyos?
Hello Brother,
I have created a VyOS VM from a VHD ( my organisation process) in azure.
I am unable to perform ssh to it from outside without making eth0 dhcp.
my requirement is i don’t want to make it dhcp.
enabled ssh on address, port, tried everything,but could not perform ssh from outside.
within the machine i can (that is senseless)
is this due to some firewall?.. can you suggest anything?
You need build it by yourself. It need some trick to make it work. VyOS didn't try to fix the build issue.
i just installed it in an eve-ng environment and it's oddly similar to junOS
How did i end up here? PFSense 4 life.
Can this firewall protect against denial of service attacks?؟؟؟؟؟؟؟؟؟؟
What exactly do you mean? A network appliance *needs* to listen. No way around that. Too many requests and it will fail. You can somewhat mitigate things by some analysis and dropping the connection as fast as possible.
Is this possible to run PPPoE server on it like mikrotik.??? Also create queus on it.
yes
About gui and controller for this router
1:21 VyOS is a cli only firewall os, although devs announce gui incoming in the future
Hi Brother, amazing video. Thank you. Can I post your video in my linkedin, with the original link and credit given to you ... let me know if it's possible and if you want me to mention your other social nw handle, let me know... I work as a business manager in VyOS APAC. I would love to highlight your content... Cheers Bro.
Hey there, I really don't mind you sharing the video at all :)
@@TheNetworkBerg thanks mate. Gratitude 🙏
vyOS is not webui ?
No, there is no GUI for VyOS atm, all cli.
I wish...
frr routing
hahah too sNice tutorialt
The comparison with full Pfsense is kinda silly TBH. The problem for alot of ppl is not that is CLI only, it has no features. No list based firewall and no IPS/IDS. Sadly in 2022 "routers" can't only do routing...
The problem is people are trying to compare a very powerful routing platform to a firewall, so yeah I agree CLI isn't the biggest issue. None of the sense firewalls being able to do VRFs or IS-IS for large scale networking definitely puts VyOS in its own level imo, but yeah, if you're looking for just a firewall then there are probably better alternatives out there.
😝 𝓟Ř𝔬𝓂𝔬𝐒ϻ
These turbo nerds can’t develop a gui? Really?
No gui it’s crap
Network OS's like Cisco IOS or Juniper's JUNOS also doesn't have a fancy GUI, but a majority of the world's networks are built using them. I don't think a GUI natively translates to whether or not a network OS is good or not, I think it is better to look at the feature sets these devices support and then make up your mind from there. Learning something like a CLI can feel tedious, but once you are used to it you can arguably configure or troubleshoot your networks a lot faster than on a GUI.
Command line? No thanks, that's for nerds.
If a CLI is wrong I don't want to he right, too busy impressing co-workers with my hacker cosplay