Speaker
Description
NSH is a CLI intended for OpenBSD-based network appliances. It replaces ifconfig, sysctl and route with its own simple command language, and encapsulates configuration for other daemons into one place, effectively replacing /etc/netstart and parts of /etc/rc for appliance-style usage.
This Tutorial explains to a user how to install NSH on OpenBSD and build a typical network for a BSD. The Tutorial will include a full interactive lab where users will be able to configure their own firewall, router and and their own OpenBSD Host.
Topics covered in this tutorial would include:
Interface configuration and setup including
- vlan(4)
- bridge(4)
- veb(4)
- trunk(4)
- aggr(4)
- tap(4)
- VXLAN(4)
- GRE(4)
- IP address configuration on interfaces
- DHCP client configuration
- mtu configuration
- IP route management
Diagnostics commands
- show commands
- monitor commands
Configuration management and saving
Bridge / layer2 forwarding confirmation
- protected ports
- STP configuration
- L2MTU IPMTU, MSS and IP fragmentation
- bridge filters
- blocknonip
- bridge rules, tags and interaction with PF
Firewall Configuration rule set configuration and management with NSH
Daemon configuration and management
- DHCPd Server configuration
- SSHd server configuration
Part 2 (if the tutorial session is a full day)
Routing daemon and dynamic routing configuration
- OSPFd configuration
- BGPd configuration
Multiple Routing Domains with NSH
- Route table configuration and management with NSH
- Routing Daemons with multiple routing domains
