Tema: Re: routing - fw - etc...
Autorius: rabarbaras
Data: 2008-03-20 07:58:50
Ideja jei "keli kompai" kuriems reikia "pareiti teisingai" per MPLS 
nematytu VPN'o ant ServerA:
echo "201 pareinam" >> /etc/iproute2/rt_tables
ip rule add from keli_kompai table pareinam
ip route add lanas_5 via 192.168.6.254 dev ethX table pareinam

VPN'ui apeiti reiks daugiau mintonu jegos :)


rycius wrote:
> pats dar prisiminiau kad tik 192.168.5.0 kreipiasi y 192.168.1.0, 
> 192.168.1.0 nelenda pats atgal, taj tiesiog galeciau 192.168.5.0 daryt 
> Masquerade ant 10.0.1.2 y 192.168.1.0, tad serveris A matys paketus kajp 
> is 10.0.1.2 ir todel atsakines per 10.0.1.1. O is serverio B tiesiog 
> NAT'inti per MPLS'a y 192.168.6.253.
> 
> rabarbaras wrote:
>> Ruoteriui nusispjaut is kur gavo paketa - jo reikalas zinoti 
>> destination. Tai ka cia sugalvojai gal but imanoma isspresti su 
>> marsrutizavimo protokolais.
>> Kaip cia supratau MPLS'as pridetas avarijos atveju linkui backupuoti?
>> Del to nutrukus 10.0.1.0 linkui turetum statiskai pakeisti routinima.
>> Max ka as esu isgalvojes is tokiu scenariju - 192.168.5.0 ir 
>> 192.168.1.0 tinklus per skirtingus linkus galima apjungti su 
>> SourceRouting+NAT.
>> Pradzia bus http://lartc.org/
>>
>> rycius wrote:
>>> sveiki, turiu toki galvosuki, atachmente yra prisegta tinklo 
>>> struktura ( tik serveryje A turetu buti IP ne 10.0.1.2 o 10.0.1.1, 
>>> tiesiog bepaisydamas klaida padariau). Is LAN 192.168.5.0/24 yra 
>>> bendraujama su LAN 192.168.1.0/24 per linka 10.0.1.0/30. Bet db 
>>> prisireike kad LAN 192.168.5.0/24 galetu bendrauti per MLPS VPN su 
>>> 192.168.6.253.
>>>
>>> Serveryje B tiesiog padaryta:
>>> route add -net 192.168.1.0 netmask 255.255.255.0 gw 10.0.1.1
>>> route add -net 192.168.6.0 netmask 255.255.255.0 gw 192.168.5.253
>>>
>>> Serveryje A:
>>> route add -net 192.168.5.0 netmask 255.255.255.0 gw 10.0.1.2
>>>
>>> kajp man cia issisukti serveryje A, kadangi jame gaunasi kad 
>>> 192.168.5.0/24 potinkli jis gali pasiekti ir per 10.0.1.2 ir per 
>>> 192.168.6.253. Cia as kajp suprantu, kazkokiu budu reiktu serveriui A 
>>> susigaudyti per kuri linka serveris gavo uzklausa is 192.168.5.0/24 
>>> ir per ta linka jam atsakyti. Gal kas uzvestumete ant kelio kajp tai 
>>> padaryti?
>>>
>>>
>>> ------------------------------------------------------------------------
>>>
+Nereali problema su Solaris 10Andrius2008-05-05 23:02
+IrFanView alternatyva?Artūras Šlajus2008-05-05 15:53
+SAMBA DOMENASVidas Makauskas2008-04-30 12:44
+RAID5 Big problem sunkus klausimasauris2008-04-29 21:23
+Bonding'as + Vlan'aiPukuotukas2008-04-28 17:15
+PortaiMantas2008-04-25 15:39
Easy Money!!skarfas2008-04-24 15:06
+Autoresponderis Postfix'uiMeff2008-04-24 14:53
+ar yra unerase toolsas ext3 ?aa2008-04-22 17:41
+wtf?W2008-04-22 16:37
+Kaip apsiginti nuo sito slamstoLevas2008-04-21 21:12
+universali OSShkem2008-04-20 05:06
+kvailokas klausimasvaikis-paikis2008-04-17 22:57
+Kaip perkelti GRUB'a i kita diskaVidas Makauskas2008-04-17 09:29
Nokia IP40El Savior2008-04-16 17:04
+squid windows updateMantas2008-04-16 16:18
+txt2pdfwidzew2008-04-16 08:45
php skriptu vydkymo uzdraudimasledasl2008-04-16 00:01
+Q: del instaliavimoSanches2008-04-15 15:21
HELP: COM portmindaugas2008-04-13 21:48
+laikasSaulius G.2008-04-12 19:33
+openvpnMantas2008-04-10 23:27
+skaitymas is serial portoCodeC2008-04-09 21:55
+DHCP politikaRolkiz2008-04-08 12:40
Sendmail masquerading-=: EiMiS :=-2008-04-08 10:23
+klausimas su virtualboxNerijus Skar2008-04-08 09:23
+Klausimassergeii2008-04-04 15:43
+Freebsd 7.0+ mod_security2Antanas Atlaikytas2008-04-03 13:32
+Backup scriptaiAur2008-04-02 20:05
+Proliant nc360t pci express dual port tinklo ploksteauksiniz2008-03-31 13:47
+Mac OS ant VMWareMaug Lee2008-03-31 11:17
+Router passwordPluss2008-03-29 17:38
+priskirto savininko (owner) keitimastOMZY2008-03-29 16:06
+/dev/ttySx dazniaiTomas D.2008-03-28 03:19
+Q: backup'inis soft'as linuxeDex2008-03-27 11:38
+Del linuxosergeii2008-03-26 15:41
+mem usagetest2008-03-24 09:25
+pluginsas windaitest2008-03-24 07:52
+Linuxxr2008-03-22 20:04
+backup'ainews.omnitel.net2008-03-19 19:21
+spamassasino klausimasLevas2008-03-19 18:49
-routing - fw - etc...@rycius2008-03-19 16:40
Re: routing - fw - etc...rabarbaras2008-03-19 17:21
Re: routing - fw - etc...rycius2008-03-19 22:21
Re: routing - fw - etc...johnrembo2008-03-20 10:26
Re: routing - fw - etc...rabarbaras2008-03-20 07:58
Re: routing - fw - etc...rycius2008-03-19 22:05
+ar "rankinis" package instaliavimas nepanaikina updeitu is repozitoriumuaa2008-03-19 14:57
+nevaldomas server load didejimasAWeX2008-03-18 17:34