VyOS

Last updated

VyOS
VyOS.png
Developer The VyOS Project Community
OS family Linux (Unix-like)
Working stateCurrent
Source model Open source
Initial release22 December 2013;10 years ago (2013-12-22)
Latest release 1.4.0 [1] / 4 June 2024;2 days ago (2024-06-04)
Repository
Marketing target Enterprise software
Available in English
Platforms amd64
Kernel type Monolithic (Linux)
License Free software licenses
(mainly GPL)
Official website vyos.io

VyOS is an open source network operating system based on linux using Debian distribution. [2]

Contents

VyOS provides a free routing platform that competes directly with other commercially available solutions from well-known network providers. Because VyOS is run on standard amd64 systems, it can be used as a router and firewall platform for cloud deployments. [3] [4] . VyOS can also be optimized to achieve routing at 100Gbps [5] .

Besides being open-source, VyOS also offers subscription-based support, which includes pre-built images for cloud and virtual environments and LTS images for the 1.3 and 1.4 series.

History

After Brocade Communications stopped development of the Vyatta Core Edition of the Vyatta Routing software, a small group of enthusiasts in 2013 took the last Community Edition, Vyatta Core version 6.6R1, [6] and worked on building an open-source fork to continue its legacy. [7] [8] This group founded Sentrium S.L, [9] a Spanish company, to support and develop the VyOS project.

On May 19, 2020, Sentrium announced the launch of the VyOS Foundation, [10] a non-profit organization intended to provide an open and transparent governance model, ensuring that VyOS serves the broader community. Trademarks and other related IP (logos, marketing materials, artwork, etc.) will be transferred from Sentrium S.L. to the VyOS Foundation. Although the foundation was announced, it is not yet operational.

Features [11]

Releases

VyOS version 1.0.0 (Hydrogen) was released on December 22, 2013. [15] [16] On October 9, 2014, version 1.1.0 (Helium) was released. [17] All versions released thus far have been based on Debian 6.0 (Squeeze), and are available as 32-bit images and 64-bit images for both physical and virtual machines. [16]

On January 28, 2019, version 1.2.0 (Crux) was released. [18] Version 1.2.0 is based on Debian 8 (Jessie). While version 1.0 and 1.1 were named after elements, a new naming scheme based on constellations is used from version 1.2. [19]

VyOS 1.3.0 (Equuleus) is based on Debian 10 (Buster) [20] and was released on December 21, 2021. Equuleus brought many long-desired features, most notably an SSTP VPN server, an IPoE server, an OpenConnect VPN server, and a serial console server. It also included reworked support for WWAN interfaces, support for GENEVE and MACSec interfaces, VRF, IS-IS routing, preliminary support for MPLS and LDP, among many other features. [6]

Currently, VyOS 1.4.0 (Sagitta) in GA (General Access) stage, with the latest version being VyOS 1.4.0 GA LTS [21] . This version was developed based on Debian 12 (Bookworm) [22] .

Release History

ReleaseVersionDateBase Debian system
Hydrogen1.0.0December 22, 2013Debian 6 (Squeeze)
1.0.1January 17, 2014
1.0.2February 3, 2014
1.0.3May 9, 2014
1.0.4June 16, 2014
1.0.5September 26, 2014
Helium1.1.0October 9, 2014
1.1.1December 8, 2014
1.1.2January 22, 2015
1.1.3January 28, 2015
1.1.4March 9, 2015
1.1.5March 25, 2015
1.1.6August 17, 2015
1.1.7February 17, 2016
1.1.8November 13, 2017
Crux1.2.0January 28, 2019Debian 8 (Jessie)
1.2.1April 16, 2019
1.2.2July 15, 2019
1.2.3September 5, 2019
1.2.4January 1, 2020
1.2.5April 14, 2020
1.2.6September 18, 2020
1.2.6-S1September 28, 2020
1.2.7March 25, 2021
1.2.8July 6, 2021
1.2.9December 2, 2022
1.2.9-S1March 22, 2023
Equuleus1.3.0December 21, 2021Debian 10 (Buster)
1.3.1March 21, 2022
1.3.1-S1March 30, 2022
1.3.2September 7, 2022
1.3.3June 22, 2023
1.3.4October 17, 2023
1.3.5December 15, 2023
1.3.6February 14, 2024
1.3.7May 13, 2024
Sagitta1.4.0February 22, 2024Debian 12 (Bookworm)

See also

Related Research Articles

An Internet Protocol address is a numerical label such as 192.0.2.1 that is assigned to a device connected to a computer network that uses the Internet Protocol for communication. IP addresses serve two main functions: network interface identification, and location addressing.

<span class="mw-page-title-main">IPv6</span> Version 6 of the Internet Protocol

Internet Protocol version 6 (IPv6) is the most recent version of the Internet Protocol (IP), the communications protocol that provides an identification and location system for computers on networks and routes traffic across the Internet. IPv6 was developed by the Internet Engineering Task Force (IETF) to deal with the long-anticipated problem of IPv4 address exhaustion, and was intended to replace IPv4. In December 1998, IPv6 became a Draft Standard for the IETF, which subsequently ratified it as an Internet Standard on 14 July 2017.

A virtual private network (VPN) is a mechanism for creating a secure connection between a computing device and a computer network, or between two networks, using an insecure communication medium such as the public Internet.

SOCKS is an Internet protocol that exchanges network packets between a client and server through a proxy server. SOCKS5 optionally provides authentication so only authorized users may access a server. Practically, a SOCKS server proxies TCP connections to an arbitrary IP address, and provides a means for UDP packets to be forwarded. A SOCKS server accepts incoming client connection on TCP port 1080, as defined in RFC 1928.

Zero-configuration networking (zeroconf) is a set of technologies that automatically creates a usable computer network based on the Internet Protocol Suite (TCP/IP) when computers or network peripherals are interconnected. It does not require manual operator intervention or special configuration servers. Without zeroconf, a network administrator must set up network services, such as Dynamic Host Configuration Protocol (DHCP) and Domain Name System (DNS), or configure each computer's network settings manually.

OpenVPN is a virtual private network (VPN) system that implements techniques to create secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It implements both client and server applications.

In computer networking, Teredo is a transition technology that gives full IPv6 connectivity for IPv6-capable hosts that are on the IPv4 Internet but have no native connection to an IPv6 network. Unlike similar protocols such as 6to4, it can perform its function even from behind network address translation (NAT) devices such as home routers.

In computer networks, a tunneling protocol is a communication protocol which allows for the movement of data from one network to another. It can, for example, allow private network communications to be sent across a public network, or for one network protocol to be carried over an incompatible network, through a process called encapsulation.

anoNet is a decentralized friend-to-friend network built using VPNs and software BGP routers. anoNet works by making it difficult to learn the identities of others on the network allowing them to anonymously host IPv4 and IPv6 services. One of the primary goals of anoNet is to protect its participants' rights of speech and expression.

Vyatta is a software-based virtual router, virtual firewall and VPN product for Internet Protocol networks. A free download of Vyatta has been available since March 2006. The system is a specialized Debian-based Linux distribution with networking applications such as Quagga, OpenVPN, and many others. A standardized management console, similar to Juniper JUNOS or Cisco IOS, in addition to a web-based GUI and traditional Linux system commands, provides configuration of the system and applications. In recent versions of Vyatta, web-based management interface is supplied only in the subscription edition. However, all functionality is available through KVM, serial console or SSH/telnet protocols. The software runs on standard x86-64 servers.

An IPv6 transition mechanism is a technology that facilitates the transitioning of the Internet from the Internet Protocol version 4 (IPv4) infrastructure in use since 1983 to the successor addressing and routing system of Internet Protocol Version 6 (IPv6). As IPv4 and IPv6 networks are not directly interoperable, transition technologies are designed to permit hosts on either network type to communicate with any other host.

<span class="mw-page-title-main">Fail2ban</span> Intrusion prevention software framework

Fail2Ban is an intrusion prevention software framework. Written in the Python programming language, it is designed to prevent brute-force attacks. It is able to run on POSIX systems that have an interface to a packet-control system or firewall installed locally, such as iptables or TCP Wrapper.

<span class="mw-page-title-main">Locator/Identifier Separation Protocol</span>

Locator/ID Separation Protocol (LISP) is a "map-and-encapsulate" protocol which is developed by the Internet Engineering Task Force LISP Working Group. The basic idea behind the separation is that the Internet architecture combines two functions, routing locators and identifiers in one number space: the IP address. LISP supports the separation of the IPv4 and IPv6 address space following a network-based map-and-encapsulate scheme. In LISP, both identifiers and locators can be IP addresses or arbitrary elements like a set of GPS coordinates or a MAC address.

DirectAccess, also known as Unified Remote Access, is a VPN technology that provides intranet connectivity to client computers when they are connected to the Internet. Unlike many traditional VPN connections, which must be initiated and terminated by explicit user action, DirectAccess connections are designed to connect automatically as soon as the computer connects to the Internet. DirectAccess was introduced in Windows Server 2008 R2, providing this service to Windows 7 and Windows 8 "Enterprise" edition clients. In 2010, Microsoft Forefront Unified Access Gateway (UAG) was released, which simplifies the deployment of DirectAccess for Windows 2008 R2, and includes additional components that make it easier to integrate without the need to deploy IPv6 on the network, and with a dedicated user interface for the configuration and monitoring. Some requirements and limitations that were part of the design of DirectAccess with Windows Server 2008 R2 and UAG have been changed. While DirectAccess is based on Microsoft technology, third-party solutions exist for accessing internal UNIX and Linux servers through DirectAccess. With Windows Server 2012, DirectAccess is fully integrated into the operating system, providing a user interface to configure and native IPv6 and IPv4 support.

<span class="mw-page-title-main">Endian Firewall</span> Linux distribution

Endian Firewall is an open-source router, firewall and gateway security Linux distribution developed by the South Tyrolean company Endian. The product is available as either free software, commercial software with guaranteed support services, or as a hardware appliance.

firewalld is a firewall management tool for Linux operating systems. It provides firewall features by acting as a front-end for the Linux kernel's netfilter framework. firewalld's current default backend is nftables. Prior to v0.6.0, iptables was the default backend. Through its abstractions, firewalld acts as an alternative to nft and iptables command line programs. The name firewalld adheres to the Unix convention of naming system daemons by appending the letter "d".

<span class="mw-page-title-main">Network Performance Monitoring Solution</span>

Network Performance Monitor (NPM) in Operations Management Suite, a component of Microsoft Azure, monitors network performance between office sites, data centers, clouds and applications in near real-time. It helps a network administrator locate and troubleshoot bottlenecks like network delay, data loss and availability of any network link across on-premises networks, Microsoft Azure VNets, Amazon Web Services VPCs, hybrid networks, VPNs or even public internet links.

WireGuard is a communication protocol and free and open-source software that implements encrypted virtual private networks (VPNs), and was designed with the goals of ease of use, high speed performance, and low attack surface. It aims to be smaller and better performing than IPsec and OpenVPN, two common tunneling protocols. The WireGuard protocol passes traffic over UDP.

<span class="mw-page-title-main">MikroTik</span> Company based in Riga, Latvia

MikroTik is a Latvian network equipment manufacturing company. MikroTik develops and sells wired and wireless network routers, network switches, access points, as well as operating systems and auxiliary software. The company was founded in 1996, and as of 2022, it was reported that the company employed 351 employees.

1.1.1.1 is a free Domain Name System (DNS) service by the American company Cloudflare in partnership with APNIC. The service functions as a recursive name server, providing domain name resolution for any host on the Internet. The service was announced on April 1, 2018. On November 11, 2018, Cloudflare announced a mobile application of their 1.1.1.1 service for Android and iOS. On September 25, 2019, Cloudflare released WARP, an upgraded version of their original 1.1.1.1 mobile application.

References

  1. "VyOS 1.4.0 GA LTS release". June 4, 2024. Retrieved June 4, 2024.
  2. "VyOS home page" . Retrieved November 9, 2014.
  3. "VyOS on DistroWatch.com" . Retrieved November 9, 2014.
  4. Review: 6 slick open source routers | InfoWorld
  5. "How to reach 100Gbit routing on VyOS – part 1" . Retrieved June 5, 2024.
  6. 1 2 "History — VyOS 1.3.x (equuleus) documentation". docs.vyos.io. Retrieved May 20, 2024.
  7. "Vyatta now rehosted to github as VyOS : networking". reddit. October 11, 2013.
  8. "[Release] VyOS 1.0.0 - (an enhanced fork, based from the old vyatta project) : networking". reddit. December 22, 2013.
  9. Andamasov, Yuriy. "Sentrium? What Sentrium?". blog.vyos.io. Retrieved May 20, 2024.
  10. Andamasov, Yuriy. "VyOS Foundation Announcement". blog.vyos.io. Retrieved May 20, 2024.
  11. "Products – VyOS" . Retrieved April 11, 2021.
  12. "Command Line Interface — VyOS 1.5.x (circinus) documentation". docs.vyos.io. Retrieved May 21, 2024.
  13. Baturin, Daniil. "Configuration versioning and archiving in VyOS". blog.vyos.io. Retrieved May 21, 2024.
  14. Baturin, Daniil. "VyOS 1.4.0 GA release". blog.vyos.io. Retrieved June 5, 2024.
  15. "Hydrogen". Archived from the original on December 8, 2015. Retrieved December 24, 2013.
  16. 1 2 "VyOS - 1.0.0 release". December 22, 2013. Archived from the original on December 8, 2015. Retrieved December 4, 2015.
  17. "VyOS - 1.1.0 release". October 9, 2014. Archived from the original on December 8, 2015. Retrieved December 4, 2015.
  18. "VyOS 1.2 (Crux) released". January 28, 2019. Retrieved January 30, 2019.
  19. "VyOS development news in August and September". September 16, 2018. Retrieved January 30, 2019.
  20. Baturin, Daniil. "VyOS 1.3.0-epa1 release". blog.vyos.io. Retrieved May 20, 2024.
  21. Baturin, Daniil. "VyOS 1.4.0 GA release". blog.vyos.io. Retrieved June 5, 2024.
  22. Baturin, Daniil. "VyOS 1.4.0-rc1 release candidate". blog.vyos.io. Retrieved May 20, 2024.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.