OpenForum RSS: 2 ��, ��

2 ��, �� (Vladsky)

Wed, 27 Apr 2011 06:36:01 GMT

> �� , �� =) - �� , ��
> �� -� (�� ) - � ��
> � ip ru �� ,
> � �� .

2 ��, �� (Vladsky)

Sun, 24 Apr 2011 17:24:55 GMT

> �� , ��
> ip ru sh + ip ro sh �� (main,default, ��

[rt@firewall ]# ip ru sh
0:from all lookup local
2000:from 172.16.2.45 lookup provider2
2010:from 172.16.2.111 lookup provider2
2020:from 172.16.2.103 lookup provider2
2030:from 172.16.2.61 lookup provider2
32764:from 10.10.1.2 lookup provider2
32765:from x.x.x.x lookup provider1
32766:from all lookup main
32767:from all lookup default

[rt@hq_firewall ]# ip ro sh
x.x.x.x/28 dev eth1 proto kernel scope link src x.x.x.x metric 1
192.168.100.0/24 via 192.168.100.1 dev tap0 scope link
192.168.100.0/24 dev tap0 proto kernel scope link src 192.168.100.1
172.16.2.0/24 via 172.16.2.5 dev eth0 scope link
172.16.2.0/24 dev eth0 proto kernel scope link src 172.16.2.5 metric 1
192.168.2.0/24 via 172.16.2.1 dev eth0
10.10.1.0/24 via 10.10.1.1 dev eth5
10.10.1.0/24 dev eth5 proto kernel scope link src 10.10.1.2 metric 5
192.168.168.0/24 via 172.16.2.1 dev eth0

2 ��, �� (PavelR)

Sun, 24 Apr 2011 08:55:13 GMT

�� , �� =) - �� , �� -� (�� ) - � �� ip ru �� , � �� .

2 ��, �� (PavelR)

Sun, 24 Apr 2011 08:50:14 GMT

>> �� , �� , ��
>> �� -��.
> �� /�� - 2 ��, x.x.x.x, 10.10.1.1
> 1 �� 172.16.2.0/24
> �� tap0 - openvpn 192.168.100.0/24

� �� 192.168.2.0 ?

>�� :
>Destination Gateway Genmask Flags MSS Window irtt Iface
>
>default x.x.x.x 0.0.0.0 UG 0 0 0 eth1
>default 10.10.1.1 0.0.0.0 UG 0 0 0 eth5

�� , ��

ip ru sh + ip ro sh �� (main,default, �� , local �� , �� )

�� - �� . �� -��.

�� http://www.opennet.ru/tips/2009_policy_route_linux.shtml - �� . (�� localnets).

> �� , �� vpn �� .. ��
> ��

2 ��, �� (Vladsky)

Sun, 24 Apr 2011 08:35:26 GMT

> �� , �� , ��
> �� -��.

�� /�� - 2 ��, x.x.x.x, 10.10.1.1
1 �� 172.16.2.0/24
�� tap0 - openvpn 192.168.100.0/24

�� :

Destination Gateway Genmask Flags MSS Window irtt Iface
x.x.x.x * 255.255.255.240 U 0 0 0 eth1
192.168.100.0 192.168.100.1 255.255.255.0 UG 0 0 0 tap0
192.168.100.0 * 255.255.255.0 U 0 0 0 tap0
172.16.2.0 firewall 255.255.255.0 UG 0 0 0 eth0
172.16.2.0 * 255.255.255.0 U 0 0 0 eth0
192.168.2.0 172.16.2.1 255.255.255.0 UG 0 0 0 eth0
10.10.1.0 10.10.1.1 255.255.255.0 UG 0 0 0 eth5
10.10.1.0 * 255.255.255.0 U 0 0 0 eth5
link-local * 255.255

2 ��, �� (PavelR)

Sun, 24 Apr 2011 08:10:46 GMT

> ��, �� 1 �� tap0 - openvpn � �� .
> �� 192.168.100.0/24.
> �� vpn �� . iptables ��.
> �� vpn �� , �� ip vpn ��. ��
> �� .

��.

�� , �� , �� -��.

�� tcpdump-�� , �� .

2 ��, �� (Vladsky)

Sun, 24 Apr 2011 08:01:57 GMT

��, �� 1 �� tap0 - openvpn � �� .
�� 192.168.100.0/24.
�� vpn �� . iptables ��.
�� vpn �� , �� ip vpn ��. �� .

2 ��, �� (Vladsky)

Wed, 23 Mar 2011 20:49:43 GMT

�� 2 ��!
�� , �� , �� , �� .

�� :

� etc\iproute2\rt_tables

100 provider1
101 provider2

� �� :
tcp_outgoing_address 10.10.1.2 office - acl ��

�� , �� etc/rc.d/rc.local

ip route add default via IP_��_1_�� table provider1
ip route add default via IP_��_2_�� table provider2

ip rule add from IP_1_�� lookup provider1
ip rule add from IP_2_�� lookup provider2

ip route add ��_1_�� dev eth1 src IP_1_�� table provider1
ip route add ��_2_�� dev eth5 src IP_2_�� table provider2

2 ��, �� (Vladsky)

Tue, 22 Mar 2011 20:36:01 GMT

�� http://www.opennet.ru/tips/2009_policy_route_linux.shtml
�� 1 �� IP � �� 1 ��.
�� 2 ��?

OpenForum RSS: 2 �����, ����� ������

2 �����, ����� ������ (Vladsky)

2 �����, ����� ������ (Vladsky)

2 �����, ����� ������ (PavelR)

2 �����, ����� ������ (PavelR)

2 �����, ����� ������ (Vladsky)

2 �����, ����� ������ (PavelR)

2 �����, ����� ������ (Vladsky)

2 �����, ����� ������ (Vladsky)

2 �����, ����� ������ (Vladsky)

OpenForum RSS: 2 ��, ��

2 ��, �� (Vladsky)

2 ��, �� (Vladsky)

2 ��, �� (PavelR)

2 ��, �� (PavelR)

2 ��, �� (Vladsky)

2 ��, �� (PavelR)

2 ��, �� (Vladsky)

2 ��, �� (Vladsky)

2 ��, �� (Vladsky)