Skip to Content
GuidesNetwork Appliance

Network Appliance

Build an Elster OS network appliance for routing, firewalling, and VPN.

Prompt

Create an Elster OS network appliance with:

- WireGuard VPN server
- Stateful firewall
- NAT masquerading
- DHCP server for LAN

Network:
- eth0: WAN (DHCP)
- eth1: LAN (192.168.1.1/24)

DHCP range: 192.168.1.100 - 192.168.1.200

Firewall:
- Allow established connections
- Allow LAN to WAN (NAT)
- Allow SSH from LAN only
- Allow WireGuard (51820/udp) from WAN
- Block all other inbound on WAN

VPN subnet: 10.10.10.0/24

User: admin

Adding Tests

After OpenFactory generates the recipe, add verification tests:

Add tests to verify:
- eth1 has IP 192.168.1.1
- DHCP server is running
- DNS forwarding works
- Firewall rules are applied
- WireGuard interface is up

OpenFactory will add these as automated tests that run after the image builds.

Hardened ServerRobotics with ROS2