User Tools
сервисы_gateway_и_routing
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
сервисы_gateway_и_routing [2022/01/29 12:31] val [NetFilter iproute2 (Linux)] |
сервисы_gateway_и_routing [2024/06/24 05:41] (current) val [Протокол OSPF] |
||
|---|---|---|---|
| Line 13: | Line 13: | ||
| net.ipv4.ip_forward = 1 | net.ipv4.ip_forward = 1 | ||
| - | root@gate:~# cat /etc/sysctl.conf | + | root@gate:~# cat /etc/sysctl.d/20-my-forward.conf |
| </code><code> | </code><code> | ||
| - | ... | ||
| net.ipv4.ip_forward=1 | net.ipv4.ip_forward=1 | ||
| - | ... | ||
| </code><code> | </code><code> | ||
| - | root@gate:~# sysctl -f | + | root@gate:~# sysctl -p --system |
| </code> | </code> | ||
| Line 46: | Line 44: | ||
| # ip route help | # ip route help | ||
| - | # ip r add 192.168.Y.0/24 via 172.16.1.Y | + | gate.isp.un# ip r add 192.168.Y.0/24 via 172.16.1.Y |
| + | |||
| + | gate# | ||
| + | ip r add 192.168.110.0/24 via 192.168.X.201 | ||
| + | ip r add 192.168.120.0/24 via 192.168.X.202 | ||
| + | ip r add 192.168.130.0/24 via 192.168.X.203 | ||
| # ip r del 192.168.Y.0/24 | # ip r del 192.168.Y.0/24 | ||
| + | |||
| + | ip route add|del blackhole|unreachable 192.168.100+X.201 | ||
| </code> | </code> | ||
| Line 89: | Line 94: | ||
| ==== Debian/Ubuntu ==== | ==== Debian/Ubuntu ==== | ||
| + | |||
| + | * [[https://linuxconfig.org/how-to-add-static-route-with-netplan-on-ubuntu-20-04-focal-fossa-linux|How to add static route with netplan]] | ||
| + | |||
| <code> | <code> | ||
| root@gate:~# cat /etc/network/interfaces | root@gate:~# cat /etc/network/interfaces | ||
| Line 124: | Line 132: | ||
| ==== Протокол OSPF ==== | ==== Протокол OSPF ==== | ||
| - | === Установка === | + | === frr === |
| + | |||
| + | * [[https://docs.frrouting.org/en/latest/setup.html]] | ||
| - | === FreeBSD === | ||
| <code> | <code> | ||
| - | [gate:~] # pkg install quagga | + | # apt install frr |
| - | [gate:~] # cd /usr/local/etc/quagga/ | + | # cat /etc/frr/daemons |
| + | </code><code> | ||
| + | ... | ||
| + | ospfd=yes | ||
| + | ... | ||
| + | </code><code> | ||
| + | # systemctl restart frr | ||
| + | |||
| + | # ps ax | grep frr | ||
| + | |||
| + | # vtysh | ||
| + | ... | ||
| + | # show run | ||
| </code> | </code> | ||
| + | |||
| + | === quagga === | ||
| === Debian/Ubuntu === | === Debian/Ubuntu === | ||
| Line 154: | Line 177: | ||
| enable password zebra | enable password zebra | ||
| </code> | </code> | ||
| - | |||
| - | === Запуск === | ||
| === FreeBSD === | === FreeBSD === | ||
| <code> | <code> | ||
| - | [gate:~] # cat /etc/rc.conf | + | [gate:~] # pkg install quagga |
| - | </code><code> | + | |
| - | ... | + | [gate:~] # cd /usr/local/etc/quagga/ |
| - | quagga_enable="YES" | + | |
| - | quagga_daemons="zebra ospfd" | + | |
| - | </code><code> | + | |
| - | [gate:~] # /usr/local/etc/rc.d/quagga start | + | |
| </code> | </code> | ||
| - | === Debian === | + | === Запуск === |
| + | |||
| + | === Debian/Ubuntu === | ||
| <code> | <code> | ||
| # service zebra start | # service zebra start | ||
| Line 175: | Line 194: | ||
| </code> | </code> | ||
| - | === Ubuntu === | + | === FreeBSD === |
| <code> | <code> | ||
| - | root@gate:~# cat /etc/quagga/daemons | + | [gate:~] # cat /etc/rc.conf |
| </code><code> | </code><code> | ||
| ... | ... | ||
| - | zebra=yes | + | quagga_enable="YES" |
| - | ... | + | quagga_daemons="zebra ospfd" |
| - | ospfd=yes | + | |
| - | ... | + | |
| </code><code> | </code><code> | ||
| - | root@gate:~# chown -R quagga /etc/quagga/ | + | [gate:~] # /usr/local/etc/rc.d/quagga start |
| - | + | ||
| - | root@gate:~# service quagga start | + | |
| </code> | </code> | ||
| Line 284: | Line 299: | ||
| # ip rule add prio 100 from 192.168.X.0/24 to 192.168.X.0/24 table main | # ip rule add prio 100 from 192.168.X.0/24 to 192.168.X.0/24 table main | ||
| - | # ip rule add from 192.168.X.0/25 table 101 | + | # ip rule add prio 200 from 192.168.X.0/25 table 101 |
| - | # ip rule add from 192.168.X.128/25 table 102 | + | # ip rule add prio 300 from 192.168.X.128/25 table 102 |
| # ip rule show | # ip rule show | ||
| - | # ip rule del from 192.168.X.0/24 to 192.168.X.0/24 table main | + | # ip rule del prio 300 |
| - | # ip rule del from any table 101 | + | # ip rule del prio 200 |
| - | # ip rule del from any table 102 | + | # ip rule del prio 100 |
| # ip route del default via 172.16.1.254 table 101 | # ip route del default via 172.16.1.254 table 101 | ||
| Line 307: | Line 322: | ||
| iptables -t nat -A POSTROUTING -o eth1 -s 192.168.X.0/24 -j SNAT --to-source 172.16.1.X | iptables -t nat -A POSTROUTING -o eth1 -s 192.168.X.0/24 -j SNAT --to-source 172.16.1.X | ||
| - | iptables -t nat -A POSTROUTING -o eth3 -s 192.168.X.0/24 -j SNAT --to-source 172.16.2.X | + | iptables -t nat -A POSTROUTING -o eth2 -s 192.168.X.0/24 -j SNAT --to-source 172.16.2.X |
| conntrack -F | conntrack -F | ||
| Line 322: | Line 337: | ||
| | | ||
| post-up ip rule add prio 100 from 192.168.X.0/24 to 192.168.X.0/24 table main | post-up ip rule add prio 100 from 192.168.X.0/24 to 192.168.X.0/24 table main | ||
| - | post-up ip rule add from 192.168.X.0/25 table 101 | + | post-up ip rule add prio 200 from 192.168.X.0/25 table 101 |
| - | post-up ip rule add from 192.168.X.128/25 table 102 | + | post-up ip rule add prio 300 from 192.168.X.128/25 table 102 |
| | | ||
| address 192.168.X.1 | address 192.168.X.1 | ||
сервисы_gateway_и_routing.1643448697.txt.gz · Last modified: 2022/01/29 12:31 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
