Configuration sample
The configuration embedded in vCPE must be a complete Vyatta-configuration boot file format.
-- start of response--
<?xml version='1.0' encoding='UTF-8'?>
<configuration>
<config>
<vyatta-config>
interfaces {
dataplane dp0s3 {
address 192.168.17.100/24
address 3.3.3.3/24
}
dataplane dp0s4 {
address 192.168.100.100/24
address 2.2.2.2/24
}
dataplane dp0s8 {
address dhcp
}
}
service {
netconf
ssh
}
system {
acm {
enable
operational-ruleset {
rule 9985 {
action allow
command /show/tech-support/brief/
group vyattaop
}
rule 9986 {
action deny
command /show/tech-support/brief
group vyattaop
}
rule 9987 {
action deny
command /show/tech-support
group vyattaop
}
rule 9988 {
action deny
command /show/configuration
group vyattaop
}
rule 9989 {
action allow
command "/clear/*"
group vyattaop
}
rule 9990 {
action allow
command "/show/*"
group vyattaop
}
rule 9991 {
action allow
command "/monitor/*"
group vyattaop
}
rule 9992 {
action allow
command "/ping/*"
group vyattaop
}
rule 9993 {
action allow
command "/reset/*"
group vyattaop
}
rule 9994 {
action allow
command "/release/*"
group vyattaop
}
rule 9995 {
action allow
command "/renew/*"
group vyattaop
}
rule 9996 {
action allow
command "/telnet/*"
group vyattaop
}
rule 9997 {
action allow
command "/traceroute/*"
group vyattaop
}
rule 9998 {
action allow
command "/update/*"
group vyattaop
}
rule 9999 {
action deny
command "*"
group vyattaop
}
}
ruleset {
rule 9999 {
action allow
group vyattacfg
operation "*"
path "*"
}
}
}
console {
device ttyS0 {
speed 9600
}
}
login {
user vyatta {
authentication {
encrypted-password $1$4XHPj9eT$G3ww9B/pYDLSXC8YVvazP0
}
level superuser
}
}
syslog {
global {
facility all {
level warning
}
}
}
}
</vyatta-config>
</config>
<signature>
I+A/RS0SntrEboQH20w/4uMwKjB3xa17ERA9NYhdp7C5umLblJq4dEzd3LuWALnPcNebaLTIH9xI
Kn30l+CogkasgwrenQYQK1ugHNkCqk4cBnTe/b5Jd4k1POF9wIq7trzfQgCSfbC0Sf4EsOtHKkyA
aMCyWAgxwqyxJVkBS+Q=
</signature>
</configuration>
-- end of response --