User Tools
настройка_шлюза_в_классе
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
настройка_шлюза_в_классе [2016/09/30 09:04] val [FreeBSD/Ubuntu] |
настройка_шлюза_в_классе [2020/11/28 18:01] val [DNS] |
||
|---|---|---|---|
| Line 3: | Line 3: | ||
| ===== ISP1 ===== | ===== ISP1 ===== | ||
| - | ==== FreeBSD/Ubuntu ==== | + | ==== FreeBSD/Debian/Ubuntu ==== |
| * Сменить пароль | * Сменить пароль | ||
| Line 59: | Line 59: | ||
| </code> | </code> | ||
| - | ==== Ubuntu ==== | + | ==== Debian/Ubuntu ==== |
| <code> | <code> | ||
| root@nessus.isp.un:~# cat /etc/hostname | root@nessus.isp.un:~# cat /etc/hostname | ||
| Line 84: | Line 84: | ||
| root@nessus.isp.un:~# sh nat.sh | root@nessus.isp.un:~# sh nat.sh | ||
| - | root@nessus.isp.un:~# iptables-save -c > /etc/iptables.rules | + | root@nessus.isp.un:~# iptables-save > /etc/iptables.rules |
| </code><code> | </code><code> | ||
| root@nessus.isp.un:~# cat /etc/network/interfaces | root@nessus.isp.un:~# cat /etc/network/interfaces | ||
| Line 93: | Line 93: | ||
| auto eth0 | auto eth0 | ||
| iface eth0 inet static | iface eth0 inet static | ||
| - | pre-up iptables-restore -c < /etc/iptables.rules | + | pre-up iptables-restore < /etc/iptables.rules |
| - | address 10.N.M.252 | + | address 10.N.M.178 |
| netmask 255.255.255.0 | netmask 255.255.255.0 | ||
| gateway 10.N.M.254 | gateway 10.N.M.254 | ||
| Line 105: | Line 105: | ||
| # up route add -net 192.168.1.0 netmask 255.255.255.0 gw 172.16.1.1 | # up route add -net 192.168.1.0 netmask 255.255.255.0 gw 172.16.1.1 | ||
| # ... | # ... | ||
| - | # up route add -net 192.168.20.0 netmask 255.255.255.0 gw 172.16.1.20 | + | # up route add -net 192.168.55.0 netmask 255.255.255.0 gw 172.16.1.55 |
| </code><code> | </code><code> | ||
| - | # cat route.sh | + | # cat route.bash |
| </code><code> | </code><code> | ||
| - | for i in `jot 20 1` | + | for i in {1..55} |
| do | do | ||
| #route add -net 192.168.${i}.0 netmask 255.255.255.0 gw 172.16.1.${i} | #route add -net 192.168.${i}.0 netmask 255.255.255.0 gw 172.16.1.${i} | ||
| - | #echo up route add -net 192.168.${i}.0 netmask 255.255.255.0 gw 172.16.1.${i} | + | #echo " " up route add -net 192.168.${i}.0 netmask 255.255.255.0 gw 172.16.1.${i} |
| done | done | ||
| </code><code> | </code><code> | ||
| - | root@nessus.isp.un:~# cat createuser.sh | + | root@nessus.isp.un:~# cat createuser.bash |
| </code><code> | </code><code> | ||
| - | for i in `jot 20 1` | + | for i in {1..55} |
| do | do | ||
| echo $i | echo $i | ||
| Line 134: | Line 134: | ||
| * [[Сервис MTA]] для зоны isp.un | * [[Сервис MTA]] для зоны isp.un | ||
| - | === DNS === | + | ===== DNS ===== |
| * [[Сервис DNS]] | * [[Сервис DNS]] | ||
| Line 164: | Line 164: | ||
| }; | }; | ||
| - | //For un4, msc | + | //For lin7 (depricate), msc (depricate) |
| zone "168.192.in-addr.arpa" { | zone "168.192.in-addr.arpa" { | ||
| type master; | type master; | ||
| Line 171: | Line 171: | ||
| }; | }; | ||
| - | //for un2, bsd2 | + | //for lin2 |
| zone "corp1.un" IN {type forward;forwarders {192.168.1.10;};}; | zone "corp1.un" IN {type forward;forwarders {192.168.1.10;};}; | ||
| ... | ... | ||
| - | zone "corp20.un" IN {type forward;forwarders {192.168.20.10;};}; | + | zone "corp55.un" IN {type forward;forwarders {192.168.55.10;};}; |
| //zone "corp1.un" IN {type forward;forwarders {172.16.1.1;};}; | //zone "corp1.un" IN {type forward;forwarders {172.16.1.1;};}; | ||
| ... | ... | ||
| - | //zone "corp20.un" IN {type forward;forwarders {172.16.1.20;};}; | + | //zone "corp55.un" IN {type forward;forwarders {172.16.1.55;};}; |
| </code><code> | </code><code> | ||
| # cat un | # cat un | ||
| Line 189: | Line 189: | ||
| ns A 172.16.1.254 | ns A 172.16.1.254 | ||
| isp A 172.16.1.254 | isp A 172.16.1.254 | ||
| + | ;voip1 A 80.250.209.226 | ||
| + | |||
| gate.isp A 172.16.1.254 | gate.isp A 172.16.1.254 | ||
| mail.isp A 172.16.1.254 | mail.isp A 172.16.1.254 | ||
| + | ;openvas.isp A 172.16.1.252 | ||
| - | ;$GENERATE 1-20 ns$ A 172.16.1.$ | + | ;for lin1, asterisk1 |
| - | ;$GENERATE 1-20 ns$ A 192.168.$.10 | + | ;$GENERATE 1-55 server.corp$ A 172.16.1.$ |
| - | ;$GENERATE 1-20 corp$ NS ns$ | + | |
| - | ;$GENERATE 1-20 gate.corp$ A 192.168.$.1 | + | ;for lin2, asterisk2 |
| - | ;$GENERATE 1-20 server.corp$ A 192.168.$.10 | + | ;$GENERATE 1-55 ns$ A 172.16.1.$ |
| - | ;$GENERATE 1-20 server.corp$ A 172.16.1.$ | + | ;$GENERATE 1-55 ns$ A 192.168.$.10 |
| + | ;$GENERATE 1-55 corp$ NS ns$ | ||
| - | ;$GENERATE 1-20 mgmt.corp$ A 192.168.$.20 | + | ;for lin5 |
| - | ;$GENERATE 1-20 router.corp$ A 192.168.$.1 | + | ;$GENERATE 1-9 router$.isp A 172.16.1.19$ |
| - | ;$GENERATE 1-20 switch.corp$ A 192.168.$.3 | + | |
| - | </code><code> | + | |
| - | # cat 192.168.rev | + | |
| - | </code><code> | + | |
| - | $TTL 3h | + | |
| - | @ SOA ns.un. root.gate.isp.un. 43 1d 12h 1w 3h | + | |
| - | NS ns.un. | + | ;for lin7, lin3 |
| + | ;$GENERATE 1-55 server.corp$ A 192.168.$.10 | ||
| + | ;$GENERATE 1-55 www.corp$ A 192.168.$.20 | ||
| + | ;$GENERATE 1-55 gate.corp$ A 192.168.$.1 | ||
| + | ;$GENERATE 1-55 router.corp$ A 192.168.$.1 | ||
| + | ;$GENERATE 1-55 switch.corp$ A 192.168.$.3 | ||
| + | ;$GENERATE 1-55 switch1.corp$ A 192.168.$.3 | ||
| + | ;$GENERATE 1-55 switch2.corp$ A 192.168.$.4 | ||
| + | ;$GENERATE 1-55 switch3.corp$ A 192.168.$.5 | ||
| + | ;$GENERATE 1-9 lan.corp$ A 192.168.10$.10 | ||
| + | ;$GENERATE 10-55 lan.corp$ A 192.168.1$.10 | ||
| + | ;$GENERATE 10-55 corp$ A 192.168.$.10 | ||
| + | ;$GENERATE 10-55 mgmt.corp$ A 192.168.$.20 | ||
| - | ;$GENERATE 1-20 1.$ PTR gate.corp$.un. | + | ;for CGP |
| - | $GENERATE 1-20 10.$ PTR server.corp$.un. | + | ;$GENERATE 1-9 mail.corp$ A 172.16.1.10$ |
| + | ;$GENERATE 10-15 mail.corp$ A 172.16.1.1$ | ||
| + | ;$GENERATE 1-9 corp$ A 172.16.1.10$ | ||
| + | ;$GENERATE 10-15 corp$ A 172.16.1.1$ | ||
| - | ;$GENERATE 1-20 1.$ PTR router.corp$.un. | + | ;corp1 MX 10 mail.corp1 |
| - | $GENERATE 1-20 3.$ PTR switch.corp$.un. | + | ;corp2 MX 10 mail.corp2 |
| + | ;corp3 MX 10 mail.corp3 | ||
| + | ;corp4 MX 10 mail.corp4 | ||
| + | ;corp5 MX 10 mail.corp5 | ||
| + | ;corp6 MX 10 mail.corp6 | ||
| + | ;corp7 MX 10 mail.corp7 | ||
| + | ;corp8 MX 10 mail.corp8 | ||
| + | ;corp9 MX 10 mail.corp9 | ||
| + | ;corp10 MX 10 mail.corp10 | ||
| + | ;corp11 MX 10 mail.corp11 | ||
| + | ;corp12 MX 10 mail.corp12 | ||
| + | ;corp13 MX 10 mail.corp13 | ||
| + | ;corp14 MX 10 mail.corp14 | ||
| + | ;corp15 MX 10 mail.corp15 | ||
| - | $GENERATE 1-20 20.$ PTR mgmt.corp$.un. | + | ;$GENERATE 1-9 mail.comp$ A 172.16.1.20$ |
| + | ;$GENERATE 10-15 mail.comp$ A 172.16.1.2$ | ||
| + | ;$GENERATE 1-9 comp$ A 172.16.1.20$ | ||
| + | ;$GENERATE 10-15 comp$ A 172.16.1.2$ | ||
| + | |||
| + | ;$GENERATE 1-9 autoconfig.corp$ A 172.16.1.10$ | ||
| + | ;$GENERATE 1-9 user1.corp$ A 172.16.1.10$ | ||
| + | ;$GENERATE 1-9 www.corp$ A 172.16.1.10$ | ||
| + | ;$GENERATE 1-9 corp$ MX 10 mail.corp$ | ||
| + | ;$GENERATE 1-9 corp$ A 172.16.1.10$ | ||
| + | ;$GENERATE 1-9 mail.comp$ A 172.16.1.20$ | ||
| + | ;$GENERATE 1-9 comp$ MX 10 mail.comp$ | ||
| + | ;$GENERATE 1-9 comp$ A 172.16.1.20$ | ||
| </code><code> | </code><code> | ||
| - | # cat dns.sh | + | # cat isp.dns.sh |
| </code><code> | </code><code> | ||
| - | STANDS="1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25" | + | STANDS="1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 51 53 54 55" |
| for i in $STANDS | for i in $STANDS | ||
| Line 241: | Line 278: | ||
| ns A 172.16.1.254 | ns A 172.16.1.254 | ||
| - | ;mail A 192.168.$i.10 | + | mail A 192.168.$i.10 |
| ;mail A 172.16.1.$(( $i + 200)) | ;mail A 172.16.1.$(( $i + 200)) | ||
| EOF | EOF | ||
| Line 260: | Line 297: | ||
| ===== ISP2 ===== | ===== ISP2 ===== | ||
| - | ==== Ubuntu ==== | + | ==== Debian/Ubuntu ==== |
| <code> | <code> | ||
| + | # git clone http://val.bmstu.ru/unix/conf.git | ||
| + | |||
| + | # cat conf/isp2/readme.txt | ||
| + | |||
| root@gate.isp2.un:~# cat /etc/network/interfaces | root@gate.isp2.un:~# cat /etc/network/interfaces | ||
| </code><code> | </code><code> | ||
| Line 274: | Line 315: | ||
| auto eth0:0 | auto eth0:0 | ||
| iface eth0:0 inet static | iface eth0:0 inet static | ||
| - | pre-up iptables-restore -c < /etc/iptables.rules | + | pre-up iptables-restore < /etc/iptables.rules |
| address 10.N.M.179 | address 10.N.M.179 | ||
| netmask 255.255.255.0 | netmask 255.255.255.0 | ||
| gateway 10.N.M.254 | gateway 10.N.M.254 | ||
| - | |||
| - | auto eth0:1 | ||
| - | iface eth0:1 inet static | ||
| - | address 172.16.1.60 | ||
| - | netmask 255.255.255.0 | ||
| </code><code> | </code><code> | ||
| root@gate.isp2.un:~# cat nat.sh | root@gate.isp2.un:~# cat nat.sh | ||
настройка_шлюза_в_классе.txt · Last modified: 2020/11/28 18:01 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
