# SOME DESCRIPTIVE TITLE. # Copyright (C) 2021, VyOS maintainers and contributors # This file is distributed under the same license as the VyOS package. # FIRST AUTHOR , YEAR. # #, fuzzy msgid "" msgstr "" "Project-Id-Version: VyOS 1.4\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2022-10-21 12:01+0200\n" "PO-Revision-Date: 2022-10-21 09:55+0000\n" "Language-Team: German (Germany) (https://www.transifex.com/vyos/teams/155110/de_DE/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Language: de_DE\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: ../../quick-start.rst:5 ced00d9a872b438da0aa9116ca3bab93 msgid "Quick Start" msgstr "" #: ../../quick-start.rst:7 f9b3f5183a764e54aa6a23b5cdb71fd0 msgid "" "This chapter will guide you on how to get up to speed quickly using your new" " VyOS system. It will show you a very basic configuration example that will " "provide a :ref:`nat` gateway for a device with two network interfaces " "(`eth0` and `eth1`)." msgstr "" #: ../../quick-start.rst:15 a76ddf433c70478fb82d1fb3fcb52291 msgid "Configuration Mode" msgstr "" #: ../../quick-start.rst:17 4c3f1e2bd78544f2a8c7879b4dbc571d msgid "" "By default, VyOS is in operational mode, and the command prompt displays a " "`$`. To configure VyOS, you will need to enter configuration mode, resulting" " in the command prompt displaying a `#`, as demonstrated below:" msgstr "" #: ../../quick-start.rst:27 c12b4b9c378c4216bb8e397ca27774b3 msgid "Commit and Save" msgstr "" #: ../../quick-start.rst:29 b4ee10e25442436db2e3ee6b9be361a5 msgid "" "After every configuration change, you need to apply the changes by using the" " following command:" msgstr "" #: ../../quick-start.rst:36 15efdc20e85b48f296f9c6e858eea689 msgid "" "Once your configuration works as expected, you can save it permanently by " "using the following command:" msgstr "" #: ../../quick-start.rst:44 39928bbb75374cb79e531615c78f11c2 msgid "Interface Configuration" msgstr "" #: ../../quick-start.rst:46 ed056fe464804060be1a439b88151cad msgid "" "Your outside/WAN interface will be `eth0`. It will receive its interface " "address via DHCP." msgstr "" #: ../../quick-start.rst:48 4912e3774ad74a39a9912c81aef012ce msgid "" "Your internal/LAN interface will be `eth1`. It will use a static IP address " "of `192.168.0.1/24`." msgstr "" #: ../../quick-start.rst:51 bf418104e3e245e2aa26f2d8792a9a3c msgid "" "After switching to :ref:`quick-start-configuration-mode` issue the following" " commands:" msgstr "" #: ../../quick-start.rst:63 38d4e3ae9ce748549f0a71b28407fea6 msgid "SSH Management" msgstr "" #: ../../quick-start.rst:65 efed8f184bf244f7aada5f2d47779efb msgid "" "After switching to :ref:`quick-start-configuration-mode` issue the following" " commands, and your system will listen on every interface for incoming SSH " "connections. You might want to check the :ref:`ssh` chapter on how to listen" " on specific addresses only." msgstr "" #: ../../quick-start.rst:78 a20b06ab8f13490bb98456f73f14cab0 msgid "DHCP/DNS quick-start" msgstr "" #: ../../quick-start.rst:80 1e6e02525b214cb2b19687d28e15b6b0 msgid "" "The following settings will configure DHCP and DNS services on your " "internal/LAN network, where VyOS will act as the default gateway and DNS " "server." msgstr "" #: ../../quick-start.rst:84 f410600b061a48fbada8e792e77be8c2 msgid "The default gateway and DNS recursor address will be `192.168.0.1/24`" msgstr "" #: ../../quick-start.rst:85 04d779b2f5ae480ab0c58a0cd2994372 msgid "" "The address range `192.168.0.2/24 - 192.168.0.8/24` will be reserved for " "static assignments" msgstr "" #: ../../quick-start.rst:87 61c75136d69e4208b2bcf1bcc160d371 msgid "" "DHCP clients will be assigned IP addresses within the range of `192.168.0.9 " "- 192.168.0.254` and have a domain name of `internal-network`" msgstr "" #: ../../quick-start.rst:89 4b2a897af025417183c14771bc8946ae msgid "DHCP leases will hold for one day (86400 seconds)" msgstr "" #: ../../quick-start.rst:90 a7e648d7e2ba43069d8718a5b384e3f7 msgid "" "VyOS will serve as a full DNS recursor, replacing the need to utilize " "Google, Cloudflare, or other public DNS servers (which is good for privacy)" msgstr "" #: ../../quick-start.rst:92 1c1607b1156149308c15a9c6c8a73c89 msgid "Only hosts from your internal/LAN network can use the DNS recursor" msgstr "" #: ../../quick-start.rst:109 7ad183e1aa9648de9fc5bbc549ca8feb msgid "NAT" msgstr "" #: ../../quick-start.rst:111 c47487cfdb5144688488579cf9e6061c msgid "" "The following settings will configure :ref:`source-nat` rules for our " "internal/LAN network, allowing hosts to communicate through the outside/WAN " "network via IP masquerade." msgstr "" #: ../../quick-start.rst:123 d2454d23a6284040a6b8a5b7f9b5934d msgid "Firewall" msgstr "" #: ../../quick-start.rst:125 336fdebef2d24d7dada566d09eb7c772 msgid "Add a set of firewall policies for our outside/WAN interface." msgstr "" #: ../../quick-start.rst:127 73685c38ed3945268a539ea3b9076e38 msgid "" "This configuration creates a proper stateful firewall that blocks all " "traffic which was not initiated from the internal/LAN side first." msgstr "" #: ../../quick-start.rst:146 8e4764bd3407430c8f051f75cda7e872 msgid "" "If you wanted to enable SSH access to your firewall from the outside/WAN " "interface, you could create some additional rules to allow that kind of " "traffic." msgstr "" #: ../../quick-start.rst:150 b2afc0791183467a898c920cc331d78f msgid "" "These rules allow SSH traffic and rate limit it to 4 requests per minute. " "This blocks brute-forcing attempts:" msgstr "" #: ../../quick-start.rst:167 70f1d8a95a964d76be5bd76bacf32911 msgid "Apply the firewall policies:" msgstr "" #: ../../quick-start.rst:174 1c02685eca6d411c92b1d394e8756393 msgid "Commit changes, save the configuration, and exit configuration mode:" msgstr "" #: ../../quick-start.rst:187 da3fc1891b7f4857af9c8c9f4ecb9785 msgid "Hardening" msgstr "" #: ../../quick-start.rst:189 8c1a62935d9b450f80c0ccd856864e98 msgid "" "Especially if you are allowing SSH remote access from the outside/WAN " "interface, there are a few additional configuration steps that should be " "taken." msgstr "" #: ../../quick-start.rst:192 5e1850cdacb8491ea56449c8108ee778 msgid "Replace the default `vyos` system user:" msgstr "" #: ../../quick-start.rst:198 b35e97b0ede1418ab6951bad98cc1290 msgid "Set up :ref:`ssh_key_based_authentication`:" msgstr "" #: ../../quick-start.rst:205 342f59779ee64e7a8e53d58613e247b0 msgid "" "Finally, try and SSH into the VyOS install as your new user. Once you have " "confirmed that your new user can access your router without a password, " "delete the original ``vyos`` user and completely disable password " "authentication for :ref:`ssh`:" msgstr "" #: ../../quick-start.rst:215 8fd010b7349542c2bed3e774281460c7 msgid "" "As above, commit your changes, save the configuration, and exit " "configuration mode:" msgstr "" #: ../../quick-start.rst:227 ae75935dcbfa40e0bc45bd0ce3169aca msgid "" "You now should have a simple yet secure and functioning router to experiment" " with further. Enjoy!" msgstr ""