Virtual Router / Firewall / VPN for XenServer & VMware

I have to admit that networking is not my strongest side, I relay on the network folks for FW rules, NAT and so on. The reason why I have installed and configured the Vyatta Virtual Router is that I need to have more control and make my own configurations.

My XenServer lab is located on our Corporate network, but all my VM’s are located on a private network. To be able to test HDX MediaStream for Flash I need Internet as well as access to XenDesktop from our corporate network.

I started of downloading & importing the Vyatta Virtual Appliance for XenServer. Then I had a look at this Getting Started with Vyatta Video.

My private network are 10.0.10.0 and my corporate network are 10.61.102.0. It was no problem getting NAT working, but the Port forwarding was a bit harder, until I came across this excellent blog post.

So now I have internet access inside my private network and a Citrix Secure Gateway as my access point to my Citrix Demo Lab. My current Vyatta Configuration (not included what you learn in the Getting Started video ) :

set service nat rule 20 type source
set service nat rule 20 source address 10.0.10.0/24
set service nat rule 20 outbound-interface eth0
set service nat rule 20 outside-address address 10.61.102.17

set service nat rule 10 type destination
set service nat rule 10 protocol tcp
set service nat rule 10 inside-address port 444
set service nat rule 10 inside-address address 10.0.10.50
set service nat rule 10 inbound-interface eth0
set service nat rule 10 destination address 10.61.102.17
set service nat rule 10 destination port 444