Добавить в корзинуПозвонить
Найти в Дзене
йоу

проксмокс демо

3
1 мин
hostnamectl hostname isp exec bash cd /etc/net/ifaces cp -r ens18 /etc/net/ifaces/ens19 cp -r ens19 /etc/net/ifaces/ens20 cd ens19 vim options i BOOTPROTO=static ESC ZZ ENTER echo 172.16.4.1/28 > ipv4address cd /etc/net/ifaces/ens20 vim options i BOOTPROTO=static ESC ZZ ENTER echo 172.16.5.1/28 > ipv4address cd vim /etc/net/sysctl.conf i net.ipv4.ip_forward = 1 ESC ZZ ENTER apt-get update apt-get -y install iptables iptables –t nat –A POSTROUTING –o ens18 –j MASQUERADE iptables-save >> /etc/sysconfig/iptables systemctl enable --now iptables systemctl restart network ping ya.ru ping ya.ru -I 172.16.4.1 ping ya.ru -I 172.16.5.1 en conf t hostname hq-rtr.au-team.irpo do sh port br int isp ip address 172.16.4.14/28 ex int 100 ip address 192.168.1.1/26 ex int 200 ip address 192.168.1.65/28 ex int 999 ip address 192.168.1.81/29 ex port te0 service-instance isp encapsulation untagged connect ip interface isp ex ex port te1 service-instance 100 encapsulation dot1q 100 rewrite pop 1 connect i
Оглавление

ISP


hostnamectl hostname isp

exec bash

cd /etc/net/ifaces

cp -r ens18 /etc/net/ifaces/ens19

cp -r ens19 /etc/net/ifaces/ens20

cd ens19

vim options

i

BOOTPROTO=static

ESC ZZ ENTER

echo 172.16.4.1/28 > ipv4address

cd /etc/net/ifaces/ens20

vim options

i

BOOTPROTO=static

ESC ZZ ENTER

echo 172.16.5.1/28 > ipv4address

cd

vim /etc/net/sysctl.conf

i

net.ipv4.ip_forward = 1

ESC ZZ ENTER

apt-get update

apt-get -y install iptables

iptables –t nat –A POSTROUTING –o ens18 –j MASQUERADE

iptables-save >> /etc/sysconfig/iptables

systemctl enable --now iptables

systemctl restart network

ping ya.ru

ping ya.ru -I 172.16.4.1

ping ya.ru -I 172.16.5.1

HQ-RTR-Base

en

conf t

hostname hq-rtr.au-team.irpo

do sh port br

int isp

ip address 172.16.4.14/28

ex

int 100

ip address 192.168.1.1/26

ex

int 200

ip address 192.168.1.65/28

ex

int 999

ip address 192.168.1.81/29

ex

port te0

service-instance isp

encapsulation untagged

connect ip interface isp

ex

ex

port te1

service-instance 100

encapsulation dot1q 100

rewrite pop 1

connect ip interface 100

ex

service-instance 200

encapsulation dot1q 200

rewrite pop 1

connect ip interface 200

ex

service-instance 999

encapsulation dot1q 999

rewrite pop 1

connect ip interface 999

ex

ex

ip route 0.0.0.0/0 172.16.4.1

ip name-server 77.88.8.8

ip nat pool INTERNET 192.168.1.1-192.168.1.87

ip nat source dynamic inside-to-outside pool INTERNET overload 172.16.4.14

int isp

ip nat outside

ex

int 100

ip nat inside

ex

int 200

ip nat inside

ex

int 999

ip nat inside

ex

ex

wr

BR-RTR-Base

en

conf t

hostname br-rtr.au-team.irpo

do sh port br

int isp

ip address 172.16.5.14/28

ex

int lan

ip address 192.168.2.1/27

ex

port te0

service-instance isp

encapsulation untaged

connect ip interface isp

ex

ex

port te1

service-instance lan

encapsulation untaged

connect ip interface lan

ex

ex

ip route 0.0.0.0/0 172.16.5.1

ip name-server 77.88.8.8

ip nat pool INTERNET 192.168.2.1-192.168.2.30

ip nat source dynamic inside-to-outside pool INTERNET overload 172.16.5.14

int isp

ip nat outside

ex

int lan

ip nat inside

ex

ex

wr

BR-RTR-Tunel

en

conf t

int tunnel.1

ip address 10.10.10.10/30

ip tunnel 172.16.5.14 172.16.4.14 mode gre

ex

ex

wr

HQ-RTR-Tunel

en

conf t

int tunnel.1

ip address 10.10.10.9/30

ip tunnel 172.16.4.14 172.16.5.14 mode gre

ex

ex

wr