Vyatta in big office

Vyatta in big office – VLAN, DHCP, QOS,routing, firewall, webproxy, pptp server and more …

Преди време показах как конфигурирах Vyatta за малък офис но се мина известно време и се наложи да го направя за доста по голям. Тъй като конфигурацията е доста по сложна а и всеки който е стигнал до тук няма нужда от много обяснения мисля, че само схемата и командия ред ще са достатъчни за да се добие представа как е настроен да работи рутера.

set firewall group address-group proxy-a address 10.125.3.2
 
set firewall group network-group proxy-n network 213.226.63.0/24
set firewall group network-group proxy-n network 10.0.0.0/8
set firewall group network-group proxy-n network 93.155.130.0/23
set firewall group network-group proxy-n network 93.155.162.0/24
set firewall group network-group proxy-n network 93.155.169.0/24
 
set firewall name eth0.523.local default-action accept
set firewall name eth0.523.local rule 1 action accept
set firewall name eth0.523.local rule 1 destination port 8080
set firewall name eth0.523.local rule 1 protocol tcp
set firewall name eth0.523.local rule 1 source group address-group proxy-a
 
set firewall name eth0.523.local rule 2 action accept
set firewall name eth0.523.local rule 2 destination port 8080
set firewall name eth0.523.local rule 2 protocol tcp
set firewall name eth0.523.local rule 2 source group network-group proxy-n
 
set firewall name eth0.523.local rule 3 action drop
set firewall name eth0.523.local rule 3 destination port 8080
set firewall name eth0.523.local rule 3 protocol tcp
 
set interfaces ethernet eth0 description Optisprint
set interfaces ethernet eth0 vif 523 address 93.155.131.20/29
set interfaces ethernet eth0 vif 523 address 194.141.68.30/27
set interfaces ethernet eth0 vif 523 firewall local name eth0.523.local
 
set interfaces ethernet eth1 address 192.168.10.2/24
set interfaces ethernet eth1 description Vivacom
 
set interfaces ethernet eth2 address 172.16.50.1/24
set interfaces ethernet eth2 description Office
set interfaces ethernet eth2 traffic-policy in shaper-out
set interfaces ethernet eth2 traffic-policy out shaper-in
 
set interfaces tunnel tun1 address 172.16.51.2/30
set interfaces tunnel tun1 description Shipka
set interfaces tunnel tun1 encapsulation gre
set interfaces tunnel tun1 local-ip 93.155.131.20
set interfaces tunnel tun1 remote-ip 10.129.3.7
 
set protocols static route 0.0.0.0/0 next-hop 93.155.131.17
set protocols static route 0.0.0.0/0 next-hop 192.168.10.1 distance 2
set protocols static route 10.0.0.0/8 next-hop 93.155.131.17
set protocols static route 62.73.64.0/18 next-hop 192.168.10.1
set protocols static route 62.176.64.0/22 next-hop 192.168.10.1
set protocols static route 77.85.0.0/16 next-hop 192.168.10.1
set protocols static route 79.100.0.0/16 next-hop 192.168.10.1
set protocols static route 82.137.64.0/24 next-hop 192.168.10.1
set protocols static route 83.228.0.0/20 next-hop 192.168.10.1
set protocols static route 85.130.0.0/17 next-hop 192.168.10.1
set protocols static route 87.126.0.0/16 next-hop 192.168.10.1
set protocols static route 89.215.0.0/16 next-hop 192.168.10.1
set protocols static route 90.154.128.0/17 next-hop 192.168.10.1
set protocols static route 95.42.0.0/15 next-hop 192.168.10.1
set protocols static route 192.168.122.0/24 next-hop 172.16.51.1
set protocols static route 192.168.123.0/24 next-hop 172.16.51.1
set protocols static route 192.168.124.0/24 next-hop 172.16.51.1
set protocols static route 192.168.125.0/24 next-hop 172.16.51.1
set protocols static route 192.168.126.0/24 next-hop 172.16.51.1
set protocols static route 194.141.0.0/16 next-hop 194.141.68.1
set protocols static route 212.5.128.0/19 next-hop 192.168.10.1
set protocols static route 212.39.64.0/19 next-hop 192.168.10.1
set protocols static route 212.233.128.19/32 next-hop 172.16.51.1
set protocols static route 212.233.233.65/32 next-hop 172.16.51.1
set protocols static route 213.16.32.0/19 next-hop 192.168.10.1
set protocols static route 213.91.128.0/17 next-hop 192.168.10.1
set protocols static route 213.240.224.0/19 next-hop 192.168.10.1
set protocols static route 217.9.224.0/20 next-hop 192.168.10.1
 
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 default-router 172.16.50.1
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 dns-server 172.16.50.1
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 domain-name itservice-bg.net
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 lease 86400
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 start 172.16.50.51 stop 172.16.50.254
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping desktop ip-address 172.16.50.51
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping desktop mac-address 00:30:6e:b1:07:4f
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping sami-lan ip-address 172.16.50.53
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping sami-lan mac-address f0:4d:a2:86:ef:70
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping sami-wifi ip-address 172.16.50.52
set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping sami-wifi mac-address 00:22:fb:5d:21:8e
 
set service dns forwarding cache-size 150
set service dns forwarding listen-on eth2
set service dns forwarding system
 
set service nat rule 1 inside-address
set service nat rule 1 outbound-interface eth1
set service nat rule 1 outside-address address 192.168.10.2
set service nat rule 1 source address 172.16.50.0/24
set service nat rule 1 type source
 
set service nat rule 2 outbound-interface eth0.523
set service nat rule 2 outside-address address 93.155.131.20
set service nat rule 2 source address 172.16.50.0/24
set service nat rule 2 type source
 
set service nat rule 3 destination address 93.155.131.20
set service nat rule 3 destination port 3389
set service nat rule 3 inbound-interface eth0.523
set service nat rule 3 inside-address address 172.16.50.51
set service nat rule 3 inside-address port 3389
set service nat rule 3 protocol tcp
set service nat rule 3 type destination
 
set service snmp community public authorization ro
set service snmp contact support@itservice-bg.net
set service snmp location Bulgaria
 
set service ssh port 22
 
set service webproxy cache-size 100
set service webproxy listen-address 93.155.131.20 port 8080
set service webproxy mem-cache-size 20
 
set system domain-name itservice-bg.net
set system host-name office
 
set system name-server 208.67.220.220
set system name-server 208.67.222.222
 
set system time-zone Europe/Sofia
 
set traffic-policy limiter shaper-out class 51 bandwidth 50mbit
set traffic-policy limiter shaper-out class 51 match user ip source address 172.16.50.51/32
set traffic-policy limiter shaper-out class 52 bandwidth 50mbit
set traffic-policy limiter shaper-out class 52 match user ip source address 172.16.50.52/32
set traffic-policy limiter shaper-out class 53 bandwidth 50mbit
set traffic-policy limiter shaper-out class 53 match user ip source address 172.16.50.53/32
set traffic-policy limiter shaper-out class 54 bandwidth 20mbit
set traffic-policy limiter shaper-out class 54 match user ip source address 172.16.50.54/32
set traffic-policy limiter shaper-out class 55 bandwidth 20mbit
set traffic-policy limiter shaper-out class 55 match user ip source address 172.16.50.55/32
set traffic-policy limiter shaper-out class 56 bandwidth 20mbit
set traffic-policy limiter shaper-out class 56 match user ip source address 172.16.50.56/32
set traffic-policy limiter shaper-out class 57 bandwidth 20mbit
set traffic-policy limiter shaper-out class 57 match user ip source address 172.16.50.57/32
set traffic-policy limiter shaper-out class 58 bandwidth 20mbit
set traffic-policy limiter shaper-out class 58 match user ip source address 172.16.50.58/32
set traffic-policy limiter shaper-out class 59 bandwidth 20mbit
set traffic-policy limiter shaper-out class 59 match user ip source address 172.16.50.59/32
set traffic-policy limiter shaper-out class 60 bandwidth 20mbit
set traffic-policy limiter shaper-out class 60 match user ip source address 172.16.50.60/32
set traffic-policy limiter shaper-out class 61 bandwidth 20mbit
set traffic-policy limiter shaper-out class 61 match user ip source address 172.16.50.61/32
set traffic-policy limiter shaper-out class 62 bandwidth 20mbit
set traffic-policy limiter shaper-out class 62 match user ip source address 172.16.50.62/32
set traffic-policy limiter shaper-out class 63 bandwidth 20mbit
set traffic-policy limiter shaper-out class 63 match user ip source address 172.16.50.63/32
set traffic-policy limiter shaper-out class 64 bandwidth 20mbit
set traffic-policy limiter shaper-out class 64 match user ip source address 172.16.50.64/32
set traffic-policy limiter shaper-out class 65 bandwidth 20mbit
set traffic-policy limiter shaper-out class 65 match user ip source address 172.16.50.65/32
set traffic-policy limiter shaper-out class 66 bandwidth 20mbit
set traffic-policy limiter shaper-out class 66 match user ip source address 172.16.50.66/32
set traffic-policy limiter shaper-out class 67 bandwidth 20mbit
set traffic-policy limiter shaper-out class 67 match user ip source address 172.16.50.67/32
set traffic-policy limiter shaper-out class 68 bandwidth 20mbit
set traffic-policy limiter shaper-out class 68 match user ip source address 172.16.50.68/32
set traffic-policy limiter shaper-out class 69 bandwidth 20mbit
set traffic-policy limiter shaper-out class 69 match user ip source address 172.16.50.69/32
set traffic-policy limiter shaper-out class 70 bandwidth 20mbit
set traffic-policy limiter shaper-out class 70 match user ip source address 172.16.50.70/32
 
set traffic-policy shaper shaper-in class 51 bandwidth 80mbit
set traffic-policy shaper shaper-in class 51 match user ip destination address 172.16.50.51/32
set traffic-policy shaper shaper-in class 52 bandwidth 80mbit
set traffic-policy shaper shaper-in class 52 match user ip destination address 172.16.50.52/32
set traffic-policy shaper shaper-in class 53 bandwidth 80mbit
set traffic-policy shaper shaper-in class 53 match user ip destination address 172.16.50.53/32
set traffic-policy shaper shaper-in class 54 bandwidth 30mbit
set traffic-policy shaper shaper-in class 54 match user ip destination address 172.16.50.54/32
set traffic-policy shaper shaper-in class 55 bandwidth 30mbit
set traffic-policy shaper shaper-in class 55 match user ip destination address 172.16.50.55/32
set traffic-policy shaper shaper-in class 56 bandwidth 30mbit
set traffic-policy shaper shaper-in class 56 match user ip destination address 172.16.50.56/32
set traffic-policy shaper shaper-in class 57 bandwidth 30mbit
set traffic-policy shaper shaper-in class 57 match user ip destination address 172.16.50.57/32
set traffic-policy shaper shaper-in class 58 bandwidth 30mbit
set traffic-policy shaper shaper-in class 58 match user ip destination address 172.16.50.58/32
set traffic-policy shaper shaper-in class 59 bandwidth 30mbit
set traffic-policy shaper shaper-in class 59 match user ip destination address 172.16.50.59/32
set traffic-policy shaper shaper-in class 60 bandwidth 30mbit
set traffic-policy shaper shaper-in class 60 match user ip destination address 172.16.50.60/32
set traffic-policy shaper shaper-in class 61 bandwidth 30mbit
set traffic-policy shaper shaper-in class 61 match user ip destination address 172.16.50.61/32
set traffic-policy shaper shaper-in class 62 bandwidth 30mbit
set traffic-policy shaper shaper-in class 62 match user ip destination address 172.16.50.62/32
set traffic-policy shaper shaper-in class 63 bandwidth 30mbit
set traffic-policy shaper shaper-in class 63 match user ip destination address 172.16.50.63/32
set traffic-policy shaper shaper-in class 64 bandwidth 30mbit
set traffic-policy shaper shaper-in class 64 match user ip destination address 172.16.50.64/32
set traffic-policy shaper shaper-in class 65 bandwidth 30mbit
set traffic-policy shaper shaper-in class 65 match user ip destination address 172.16.50.65/32
set traffic-policy shaper shaper-in class 66 bandwidth 30mbit
set traffic-policy shaper shaper-in class 66 match user ip destination address 172.16.50.66/32
set traffic-policy shaper shaper-in class 67 bandwidth 30mbit
set traffic-policy shaper shaper-in class 67 match user ip destination address 172.16.50.67/32
set traffic-policy shaper shaper-in class 68 bandwidth 30mbit
set traffic-policy shaper shaper-in class 68 match user ip destination address 172.16.50.68/32
set traffic-policy shaper shaper-in class 69 bandwidth 30mbit
set traffic-policy shaper shaper-in class 69 match user ip destination address 172.16.50.69/32
set traffic-policy shaper shaper-in class 70 bandwidth 30mbit
set traffic-policy shaper shaper-in class 70 match user ip destination address 172.16.50.70/32
set traffic-policy shaper shaper-in default bandwidth 10mbit
 
set vpn pptp remote-access authentication local-users username sami password alabala
set vpn pptp remote-access authentication local-users username win2003 password alabala
set vpn pptp remote-access authentication mode local
set vpn pptp remote-access client-ip-pool start 172.16.50.21
set vpn pptp remote-access client-ip-pool stop 172.16.50.50

set firewall group address-group proxy-a address 10.125.3.2 set firewall group network-group proxy-n network 213.226.63.0/24 set firewall group network-group proxy-n network 10.0.0.0/8 set firewall group network-group proxy-n network 93.155.130.0/23 set firewall group network-group proxy-n network 93.155.162.0/24 set firewall group network-group proxy-n network 93.155.169.0/24 set firewall name eth0.523.local default-action accept set firewall name eth0.523.local rule 1 action accept set firewall name eth0.523.local rule 1 destination port 8080 set firewall name eth0.523.local rule 1 protocol tcp set firewall name eth0.523.local rule 1 source group address-group proxy-a set firewall name eth0.523.local rule 2 action accept set firewall name eth0.523.local rule 2 destination port 8080 set firewall name eth0.523.local rule 2 protocol tcp set firewall name eth0.523.local rule 2 source group network-group proxy-n set firewall name eth0.523.local rule 3 action drop set firewall name eth0.523.local rule 3 destination port 8080 set firewall name eth0.523.local rule 3 protocol tcp set interfaces ethernet eth0 description Optisprint set interfaces ethernet eth0 vif 523 address 93.155.131.20/29 set interfaces ethernet eth0 vif 523 address 194.141.68.30/27 set interfaces ethernet eth0 vif 523 firewall local name eth0.523.local set interfaces ethernet eth1 address 192.168.10.2/24 set interfaces ethernet eth1 description Vivacom set interfaces ethernet eth2 address 172.16.50.1/24 set interfaces ethernet eth2 description Office set interfaces ethernet eth2 traffic-policy in shaper-out set interfaces ethernet eth2 traffic-policy out shaper-in set interfaces tunnel tun1 address 172.16.51.2/30 set interfaces tunnel tun1 description Shipka set interfaces tunnel tun1 encapsulation gre set interfaces tunnel tun1 local-ip 93.155.131.20 set interfaces tunnel tun1 remote-ip 10.129.3.7 set protocols static route 0.0.0.0/0 next-hop 93.155.131.17 set protocols static route 0.0.0.0/0 next-hop 192.168.10.1 distance 2 set protocols static route 10.0.0.0/8 next-hop 93.155.131.17 set protocols static route 62.73.64.0/18 next-hop 192.168.10.1 set protocols static route 62.176.64.0/22 next-hop 192.168.10.1 set protocols static route 77.85.0.0/16 next-hop 192.168.10.1 set protocols static route 79.100.0.0/16 next-hop 192.168.10.1 set protocols static route 82.137.64.0/24 next-hop 192.168.10.1 set protocols static route 83.228.0.0/20 next-hop 192.168.10.1 set protocols static route 85.130.0.0/17 next-hop 192.168.10.1 set protocols static route 87.126.0.0/16 next-hop 192.168.10.1 set protocols static route 89.215.0.0/16 next-hop 192.168.10.1 set protocols static route 90.154.128.0/17 next-hop 192.168.10.1 set protocols static route 95.42.0.0/15 next-hop 192.168.10.1 set protocols static route 192.168.122.0/24 next-hop 172.16.51.1 set protocols static route 192.168.123.0/24 next-hop 172.16.51.1 set protocols static route 192.168.124.0/24 next-hop 172.16.51.1 set protocols static route 192.168.125.0/24 next-hop 172.16.51.1 set protocols static route 192.168.126.0/24 next-hop 172.16.51.1 set protocols static route 194.141.0.0/16 next-hop 194.141.68.1 set protocols static route 212.5.128.0/19 next-hop 192.168.10.1 set protocols static route 212.39.64.0/19 next-hop 192.168.10.1 set protocols static route 212.233.128.19/32 next-hop 172.16.51.1 set protocols static route 212.233.233.65/32 next-hop 172.16.51.1 set protocols static route 213.16.32.0/19 next-hop 192.168.10.1 set protocols static route 213.91.128.0/17 next-hop 192.168.10.1 set protocols static route 213.240.224.0/19 next-hop 192.168.10.1 set protocols static route 217.9.224.0/20 next-hop 192.168.10.1 set service dhcp-server shared-network-name office subnet 172.16.50.0/24 default-router 172.16.50.1 set service dhcp-server shared-network-name office subnet 172.16.50.0/24 dns-server 172.16.50.1 set service dhcp-server shared-network-name office subnet 172.16.50.0/24 domain-name itservice-bg.net set service dhcp-server shared-network-name office subnet 172.16.50.0/24 lease 86400 set service dhcp-server shared-network-name office subnet 172.16.50.0/24 start 172.16.50.51 stop 172.16.50.254 set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping desktop ip-address 172.16.50.51 set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping desktop mac-address 00:30:6e:b1:07:4f set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping sami-lan ip-address 172.16.50.53 set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping sami-lan mac-address f0:4d:a2:86:ef:70 set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping sami-wifi ip-address 172.16.50.52 set service dhcp-server shared-network-name office subnet 172.16.50.0/24 static-mapping sami-wifi mac-address 00:22:fb:5d:21:8e set service dns forwarding cache-size 150 set service dns forwarding listen-on eth2 set service dns forwarding system set service nat rule 1 inside-address set service nat rule 1 outbound-interface eth1 set service nat rule 1 outside-address address 192.168.10.2 set service nat rule 1 source address 172.16.50.0/24 set service nat rule 1 type source set service nat rule 2 outbound-interface eth0.523 set service nat rule 2 outside-address address 93.155.131.20 set service nat rule 2 source address 172.16.50.0/24 set service nat rule 2 type source set service nat rule 3 destination address 93.155.131.20 set service nat rule 3 destination port 3389 set service nat rule 3 inbound-interface eth0.523 set service nat rule 3 inside-address address 172.16.50.51 set service nat rule 3 inside-address port 3389 set service nat rule 3 protocol tcp set service nat rule 3 type destination set service snmp community public authorization ro set service snmp contact support@itservice-bg.net set service snmp location Bulgaria set service ssh port 22 set service webproxy cache-size 100 set service webproxy listen-address 93.155.131.20 port 8080 set service webproxy mem-cache-size 20 set system domain-name itservice-bg.net set system host-name office set system name-server 208.67.220.220 set system name-server 208.67.222.222 set system time-zone Europe/Sofia set traffic-policy limiter shaper-out class 51 bandwidth 50mbit set traffic-policy limiter shaper-out class 51 match user ip source address 172.16.50.51/32 set traffic-policy limiter shaper-out class 52 bandwidth 50mbit set traffic-policy limiter shaper-out class 52 match user ip source address 172.16.50.52/32 set traffic-policy limiter shaper-out class 53 bandwidth 50mbit set traffic-policy limiter shaper-out class 53 match user ip source address 172.16.50.53/32 set traffic-policy limiter shaper-out class 54 bandwidth 20mbit set traffic-policy limiter shaper-out class 54 match user ip source address 172.16.50.54/32 set traffic-policy limiter shaper-out class 55 bandwidth 20mbit set traffic-policy limiter shaper-out class 55 match user ip source address 172.16.50.55/32 set traffic-policy limiter shaper-out class 56 bandwidth 20mbit set traffic-policy limiter shaper-out class 56 match user ip source address 172.16.50.56/32 set traffic-policy limiter shaper-out class 57 bandwidth 20mbit set traffic-policy limiter shaper-out class 57 match user ip source address 172.16.50.57/32 set traffic-policy limiter shaper-out class 58 bandwidth 20mbit set traffic-policy limiter shaper-out class 58 match user ip source address 172.16.50.58/32 set traffic-policy limiter shaper-out class 59 bandwidth 20mbit set traffic-policy limiter shaper-out class 59 match user ip source address 172.16.50.59/32 set traffic-policy limiter shaper-out class 60 bandwidth 20mbit set traffic-policy limiter shaper-out class 60 match user ip source address 172.16.50.60/32 set traffic-policy limiter shaper-out class 61 bandwidth 20mbit set traffic-policy limiter shaper-out class 61 match user ip source address 172.16.50.61/32 set traffic-policy limiter shaper-out class 62 bandwidth 20mbit set traffic-policy limiter shaper-out class 62 match user ip source address 172.16.50.62/32 set traffic-policy limiter shaper-out class 63 bandwidth 20mbit set traffic-policy limiter shaper-out class 63 match user ip source address 172.16.50.63/32 set traffic-policy limiter shaper-out class 64 bandwidth 20mbit set traffic-policy limiter shaper-out class 64 match user ip source address 172.16.50.64/32 set traffic-policy limiter shaper-out class 65 bandwidth 20mbit set traffic-policy limiter shaper-out class 65 match user ip source address 172.16.50.65/32 set traffic-policy limiter shaper-out class 66 bandwidth 20mbit set traffic-policy limiter shaper-out class 66 match user ip source address 172.16.50.66/32 set traffic-policy limiter shaper-out class 67 bandwidth 20mbit set traffic-policy limiter shaper-out class 67 match user ip source address 172.16.50.67/32 set traffic-policy limiter shaper-out class 68 bandwidth 20mbit set traffic-policy limiter shaper-out class 68 match user ip source address 172.16.50.68/32 set traffic-policy limiter shaper-out class 69 bandwidth 20mbit set traffic-policy limiter shaper-out class 69 match user ip source address 172.16.50.69/32 set traffic-policy limiter shaper-out class 70 bandwidth 20mbit set traffic-policy limiter shaper-out class 70 match user ip source address 172.16.50.70/32 set traffic-policy shaper shaper-in class 51 bandwidth 80mbit set traffic-policy shaper shaper-in class 51 match user ip destination address 172.16.50.51/32 set traffic-policy shaper shaper-in class 52 bandwidth 80mbit set traffic-policy shaper shaper-in class 52 match user ip destination address 172.16.50.52/32 set traffic-policy shaper shaper-in class 53 bandwidth 80mbit set traffic-policy shaper shaper-in class 53 match user ip destination address 172.16.50.53/32 set traffic-policy shaper shaper-in class 54 bandwidth 30mbit set traffic-policy shaper shaper-in class 54 match user ip destination address 172.16.50.54/32 set traffic-policy shaper shaper-in class 55 bandwidth 30mbit set traffic-policy shaper shaper-in class 55 match user ip destination address 172.16.50.55/32 set traffic-policy shaper shaper-in class 56 bandwidth 30mbit set traffic-policy shaper shaper-in class 56 match user ip destination address 172.16.50.56/32 set traffic-policy shaper shaper-in class 57 bandwidth 30mbit set traffic-policy shaper shaper-in class 57 match user ip destination address 172.16.50.57/32 set traffic-policy shaper shaper-in class 58 bandwidth 30mbit set traffic-policy shaper shaper-in class 58 match user ip destination address 172.16.50.58/32 set traffic-policy shaper shaper-in class 59 bandwidth 30mbit set traffic-policy shaper shaper-in class 59 match user ip destination address 172.16.50.59/32 set traffic-policy shaper shaper-in class 60 bandwidth 30mbit set traffic-policy shaper shaper-in class 60 match user ip destination address 172.16.50.60/32 set traffic-policy shaper shaper-in class 61 bandwidth 30mbit set traffic-policy shaper shaper-in class 61 match user ip destination address 172.16.50.61/32 set traffic-policy shaper shaper-in class 62 bandwidth 30mbit set traffic-policy shaper shaper-in class 62 match user ip destination address 172.16.50.62/32 set traffic-policy shaper shaper-in class 63 bandwidth 30mbit set traffic-policy shaper shaper-in class 63 match user ip destination address 172.16.50.63/32 set traffic-policy shaper shaper-in class 64 bandwidth 30mbit set traffic-policy shaper shaper-in class 64 match user ip destination address 172.16.50.64/32 set traffic-policy shaper shaper-in class 65 bandwidth 30mbit set traffic-policy shaper shaper-in class 65 match user ip destination address 172.16.50.65/32 set traffic-policy shaper shaper-in class 66 bandwidth 30mbit set traffic-policy shaper shaper-in class 66 match user ip destination address 172.16.50.66/32 set traffic-policy shaper shaper-in class 67 bandwidth 30mbit set traffic-policy shaper shaper-in class 67 match user ip destination address 172.16.50.67/32 set traffic-policy shaper shaper-in class 68 bandwidth 30mbit set traffic-policy shaper shaper-in class 68 match user ip destination address 172.16.50.68/32 set traffic-policy shaper shaper-in class 69 bandwidth 30mbit set traffic-policy shaper shaper-in class 69 match user ip destination address 172.16.50.69/32 set traffic-policy shaper shaper-in class 70 bandwidth 30mbit set traffic-policy shaper shaper-in class 70 match user ip destination address 172.16.50.70/32 set traffic-policy shaper shaper-in default bandwidth 10mbit set vpn pptp remote-access authentication local-users username sami password alabala set vpn pptp remote-access authentication local-users username win2003 password alabala set vpn pptp remote-access authentication mode local set vpn pptp remote-access client-ip-pool start 172.16.50.21 set vpn pptp remote-access client-ip-pool stop 172.16.50.50

""
             url http://packages.vyatta.com/vyatta
             username ""
         }
     }
     syslog {
         global {
             facility all {
                 level notice
             }
             facility protocols {
                 level debug
             }
         }
     }
     time-zone Europe/Sofia
 }
 traffic-policy {
     limiter shaper-out {
         class 51 {
             bandwidth 50mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.51/32
                     }
                 }
             }
         }
         class 52 {
             bandwidth 50mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.52/32
                     }
                 }
             }
         }
         class 53 {
             bandwidth 50mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.53/32
                     }
                 }
             }
         }
         class 54 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.54/32
                     }
                 }
             }
         }
         class 55 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.55/32
                     }
                 }
             }
         }
         class 56 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.56/32
                     }
                 }
             }
         }
         class 57 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.57/32
                     }
                 }
             }
         }
         class 58 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.58/32
                     }
                 }
             }
         }
         class 59 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.59/32
                     }
                 }
             }
         }
         class 60 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.60/32
                     }
                 }
             }
         }
         class 61 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.61/32
                     }
                 }
             }
         }
         class 62 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.62/32
                     }
                 }
             }
         }
         class 63 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.63/32
                     }
                 }
             }
         }
         class 64 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.64/32
                     }
                 }
             }
         }
         class 65 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.65/32
                     }
                 }
             }
         }
         class 66 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.66/32
                     }
                 }
             }
         }
         class 67 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.67/32
                     }
                 }
             }
         }
         class 68 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.68/32
                     }
                 }
             }
         }
         class 69 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.69/32
                     }
                 }
             }
         }
         class 70 {
             bandwidth 20mbit
             match user {
                 ip {
                     source {
                         address 172.16.50.70/32
                     }
                 }
             }
         }
     }
     shaper shaper-in {
         class 51 {
             bandwidth 80mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.51/32
                     }
                 }
             }
         }
         class 52 {
             bandwidth 80mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.52/32
                     }
                 }
             }
         }
         class 53 {
             bandwidth 80mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.53/32
                     }
                 }
             }
         }
         class 54 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.54/32
                     }
                 }
             }
         }
         class 55 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.55/32
                     }
                 }
             }
         }
         class 56 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.56/32
                     }
                 }
             }
         }
         class 57 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.57/32
                     }
                 }
             }
         }
         class 58 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.58/32
                     }
                 }
             }
         }
         class 59 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.59/32
                     }
                 }
             }
         }
         class 60 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.60/32
                     }
                 }
             }
         }
         class 61 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.61/32
                     }
                 }
             }
         }
         class 62 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.62/32
                     }
                 }
             }
         }
         class 63 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.63/32
                     }
                 }
             }
         }
         class 64 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.64/32
                     }
                 }
             }
         }
         class 65 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.65/32
                     }
                 }
             }
         }
         class 66 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.66/32
                     }
                 }
             }
         }
         class 67 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.67/32
                     }
                 }
             }
         }
         class 68 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.68/32
                     }
                 }
             }
         }
         class 69 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.69/32
                     }
                 }
             }
         }
         class 70 {
             bandwidth 30mbit
             match user {
                 ip {
                     destination {
                         address 172.16.50.70/32
                     }
                 }
             }
         }
         default {
             bandwidth 10mbit
         }
     }
 }
 vpn {
     pptp {
         remote-access {
             authentication {
                 local-users {
                     username sami {
                         password alabala
                     }
                     username win2003 {
                         password alabala
                     }
                 }
                 mode local
             }
             client-ip-pool {
                 start 172.16.50.21
                 stop 172.16.50.50
             }
         }
     }
 }
[edit]

firewall { group { address-group proxy-a { address 10.125.3.2 } network-group proxy-n { network 213.226.63.0/24 network 10.0.0.0/8 network 93.155.130.0/23 network 93.155.162.0/24 network 93.155.169.0/24 } } name eth0.523.local { default-action accept rule 1 { action accept destination { port 8080 } protocol tcp source { group { address-group proxy-a } } } rule 2 { action accept destination { port 8080 } protocol tcp source { group { network-group proxy-n } } } rule 3 { action drop destination { port 8080 } protocol tcp } } } interfaces { ethernet eth0 { description Optisprint duplex auto hw-id 00:08:c7:f7:7c:18 smp_affinity auto speed auto vif 523 { address 93.155.131.20/29 address 194.141.68.30/27 firewall { local { name eth0.523.local } } } } ethernet eth1 { address 192.168.10.2/24 description Vivacom duplex auto hw-id 00:e0:52:80:e4:53 smp_affinity auto speed auto } ethernet eth2 { address 172.16.50.1/24 description Office duplex auto hw-id 00:d0:b7:44:c1:b6 smp_affinity auto speed auto traffic-policy { in shaper-out out shaper-in } } loopback lo { } tunnel tun1 { address 172.16.51.2/30 description Shipka encapsulation gre local-ip 93.155.131.20 remote-ip 10.129.3.7 } } protocols { static { route 0.0.0.0/0 { next-hop 93.155.131.17 { } next-hop 192.168.10.1 { distance 2 } } route 10.0.0.0/8 { next-hop 93.155.131.17 { } } route 62.73.64.0/18 { next-hop 192.168.10.1 { } } route 62.176.64.0/22 { next-hop 192.168.10.1 { } } route 77.85.0.0/16 { next-hop 192.168.10.1 { } } route 79.100.0.0/16 { next-hop 192.168.10.1 { } } route 82.137.64.0/24 { next-hop 192.168.10.1 { } } route 83.228.0.0/20 { next-hop 192.168.10.1 { } } route 85.130.0.0/17 { next-hop 192.168.10.1 { } } route 87.126.0.0/16 { next-hop 192.168.10.1 { } } route 89.215.0.0/16 { next-hop 192.168.10.1 { } } route 90.154.128.0/17 { next-hop 192.168.10.1 { } } route 95.42.0.0/15 { next-hop 192.168.10.1 { } } route 192.168.122.0/24 { next-hop 172.16.51.1 { } } route 192.168.123.0/24 { next-hop 172.16.51.1 { } } route 192.168.124.0/24 { next-hop 172.16.51.1 { } } route 192.168.125.0/24 { next-hop 172.16.51.1 { } } route 192.168.126.0/24 { next-hop 172.16.51.1 { } } route 194.141.0.0/16 { next-hop 194.141.68.1 { } } route 212.5.128.0/19 { next-hop 192.168.10.1 { } } route 212.39.64.0/19 { next-hop 192.168.10.1 { } } route 212.233.128.19/32 { next-hop 172.16.51.1 { } } route 212.233.233.65/32 { next-hop 172.16.51.1 { } } route 213.16.32.0/19 { next-hop 192.168.10.1 { } } route 213.91.128.0/17 { next-hop 192.168.10.1 { } } route 213.240.224.0/19 { next-hop 192.168.10.1 { } } route 217.9.224.0/20 { next-hop 192.168.10.1 { } } } } service { dhcp-server { disabled false shared-network-name office { authoritative disable subnet 172.16.50.0/24 { default-router 172.16.50.1 dns-server 172.16.50.1 domain-name itservice-bg.net lease 86400 start 172.16.50.51 { stop 172.16.50.254 } static-mapping desktop { ip-address 172.16.50.51 mac-address 00:30:6e:b1:07:4f } static-mapping sami-lan { ip-address 172.16.50.53 mac-address f0:4d:a2:86:ef:70 } static-mapping sami-wifi { ip-address 172.16.50.52 mac-address 00:22:fb:5d:21:8e } } } } dns { forwarding { cache-size 150 listen-on eth2 system } } nat { rule 1 { inside-address { } outbound-interface eth1 outside-address { address 192.168.10.2 } source { address 172.16.50.0/24 } type source } rule 2 { outbound-interface eth0.523 outside-address { address 93.155.131.20 } source { address 172.16.50.0/24 } type source } rule 3 { destination { address 93.155.131.20 port 3389 } inbound-interface eth0.523 inside-address { address 172.16.50.51 port 3389 } protocol tcp type destination } } snmp { community public { authorization ro } contact support@itservice-bg.net location Bulgaria } ssh { port 22 protocol-version v2 } webproxy { cache-size 100 listen-address 93.155.131.20 { port 8080 } mem-cache-size 20 } } system { config-management { commit-revisions 20 } console { device ttyS0 { speed 9600 } } domain-name itservice-bg.net host-name office login { user vyatta { authentication { encrypted-password $1$gwnhT.7B$RLtUZwNUHrvxhSyzXx6Bp/ } level admin } } name-server 208.67.220.220 name-server 208.67.222.222 ntp { server 0.vyatta.pool.ntp.org { } server 1.vyatta.pool.ntp.org { } server 2.vyatta.pool.ntp.org { } } package { auto-sync 1 repository community { components main distribution stable password "" url http://packages.vyatta.com/vyatta username "" } } syslog { global { facility all { level notice } facility protocols { level debug } } } time-zone Europe/Sofia } traffic-policy { limiter shaper-out { class 51 { bandwidth 50mbit match user { ip { source { address 172.16.50.51/32 } } } } class 52 { bandwidth 50mbit match user { ip { source { address 172.16.50.52/32 } } } } class 53 { bandwidth 50mbit match user { ip { source { address 172.16.50.53/32 } } } } class 54 { bandwidth 20mbit match user { ip { source { address 172.16.50.54/32 } } } } class 55 { bandwidth 20mbit match user { ip { source { address 172.16.50.55/32 } } } } class 56 { bandwidth 20mbit match user { ip { source { address 172.16.50.56/32 } } } } class 57 { bandwidth 20mbit match user { ip { source { address 172.16.50.57/32 } } } } class 58 { bandwidth 20mbit match user { ip { source { address 172.16.50.58/32 } } } } class 59 { bandwidth 20mbit match user { ip { source { address 172.16.50.59/32 } } } } class 60 { bandwidth 20mbit match user { ip { source { address 172.16.50.60/32 } } } } class 61 { bandwidth 20mbit match user { ip { source { address 172.16.50.61/32 } } } } class 62 { bandwidth 20mbit match user { ip { source { address 172.16.50.62/32 } } } } class 63 { bandwidth 20mbit match user { ip { source { address 172.16.50.63/32 } } } } class 64 { bandwidth 20mbit match user { ip { source { address 172.16.50.64/32 } } } } class 65 { bandwidth 20mbit match user { ip { source { address 172.16.50.65/32 } } } } class 66 { bandwidth 20mbit match user { ip { source { address 172.16.50.66/32 } } } } class 67 { bandwidth 20mbit match user { ip { source { address 172.16.50.67/32 } } } } class 68 { bandwidth 20mbit match user { ip { source { address 172.16.50.68/32 } } } } class 69 { bandwidth 20mbit match user { ip { source { address 172.16.50.69/32 } } } } class 70 { bandwidth 20mbit match user { ip { source { address 172.16.50.70/32 } } } } } shaper shaper-in { class 51 { bandwidth 80mbit match user { ip { destination { address 172.16.50.51/32 } } } } class 52 { bandwidth 80mbit match user { ip { destination { address 172.16.50.52/32 } } } } class 53 { bandwidth 80mbit match user { ip { destination { address 172.16.50.53/32 } } } } class 54 { bandwidth 30mbit match user { ip { destination { address 172.16.50.54/32 } } } } class 55 { bandwidth 30mbit match user { ip { destination { address 172.16.50.55/32 } } } } class 56 { bandwidth 30mbit match user { ip { destination { address 172.16.50.56/32 } } } } class 57 { bandwidth 30mbit match user { ip { destination { address 172.16.50.57/32 } } } } class 58 { bandwidth 30mbit match user { ip { destination { address 172.16.50.58/32 } } } } class 59 { bandwidth 30mbit match user { ip { destination { address 172.16.50.59/32 } } } } class 60 { bandwidth 30mbit match user { ip { destination { address 172.16.50.60/32 } } } } class 61 { bandwidth 30mbit match user { ip { destination { address 172.16.50.61/32 } } } } class 62 { bandwidth 30mbit match user { ip { destination { address 172.16.50.62/32 } } } } class 63 { bandwidth 30mbit match user { ip { destination { address 172.16.50.63/32 } } } } class 64 { bandwidth 30mbit match user { ip { destination { address 172.16.50.64/32 } } } } class 65 { bandwidth 30mbit match user { ip { destination { address 172.16.50.65/32 } } } } class 66 { bandwidth 30mbit match user { ip { destination { address 172.16.50.66/32 } } } } class 67 { bandwidth 30mbit match user { ip { destination { address 172.16.50.67/32 } } } } class 68 { bandwidth 30mbit match user { ip { destination { address 172.16.50.68/32 } } } } class 69 { bandwidth 30mbit match user { ip { destination { address 172.16.50.69/32 } } } } class 70 { bandwidth 30mbit match user { ip { destination { address 172.16.50.70/32 } } } } default { bandwidth 10mbit } } } vpn { pptp { remote-access { authentication { local-users { username sami { password alabala } username win2003 { password alabala } } mode local } client-ip-pool { start 172.16.50.21 stop 172.16.50.50 } } } } [edit]

vyatta@office# run show arp    
Address                  HWtype  HWaddress           Flags Mask            Iface
172.16.50.127                    (incomplete)                              eth2
172.16.50.133            ether   1c:6f:65:32:d9:7f   C                     eth2
192.168.10.1             ether   00:1e:4c:12:f0:47   C                     eth1
172.16.50.52                     (incomplete)                              eth2
93.155.131.17            ether   00:15:17:96:77:62   C                     eth0.523
172.16.50.149                    (incomplete)                              eth2
[edit]

vyatta@office# run show interfaces 
Interface    IP Address         State       Link   Description                  
eth0         -                  up          up     Optisprint                   
eth0.523     93.155.131.20/29   up          up                                  
eth0.523     194.141.68.30/27   up          up                                  
eth1         192.168.10.2/24    up          up     Vivacom                      
eth2         172.16.50.1/24     up          up     Office                       
gre0         -                  admin down  down                                
lo           127.0.0.1/8        up          up                                  
lo           ::1/128            up          up                                  
tun1         172.16.51.2/30     up          up     Shipka                       
[edit]

vyatta@office# run show nat rules
 
Type Codes:  SRC - source, DST - destination, MASQ - masquerade
              X at the front of rule implies rule is excluded
 
rule   type  intf     translation                                               
----   ----  ----     -----------                                               
1      SRC   eth1     saddr 172.16.50.0/24 to 192.168.10.2                      
    proto-all         sport ANY                                                     
 
2      SRC   eth0.523  saddr 172.16.50.0/24 to 93.155.131.20                     
    proto-all         sport ANY                                                     
 
3      DST   eth0.523  daddr 93.155.131.20 to 172.16.50.51                       
    proto-tcp         dport 3389 to 3389                                            
 
[edit]

vyatta@office# run show firewall 
--------------------------------------------------------------------------------
IPv4 Firewall "eth0.523.local":
 
 Active on (eth0.523,LOCAL)
 
rule  action   proto     packets  bytes                                   
----  ------   -----     -------  -----                                   
1     accept   tcp       0        0                                       
  condition - match-SRC-ADDR-GROUP proxy-a tcp dpt:http-alt                     
 
2     accept   tcp       3498     456988                                  
  condition - match-SRC-NTWRK-GROUP proxy-n tcp dpt:http-alt                    
 
3     drop     tcp       61876    5595589                                 
  condition - tcp dpt:http-alt                                                  
 
10000 accept   all       99743    16455027                                
 
[edit]

vyatta@office# run show firewall group       
Name       : proxy-a
Type       : address
References : eth0.523.local-1-source
Members    :
             10.125.3.2
 
Name       : proxy-n
Type       : network
References : eth0.523.local-2-source
Members    :
             10.0.0.0/8
             93.155.130.0/23
             93.155.162.0/24
             93.155.169.0/24
             213.226.63.0/24
 
[edit]

vyatta@office# run show dns forwarding statistics  
----------------
Cache statistics
----------------
Cache size: 150
Queries forwarded: 181272
Queries answered locally: 15225
Total DNS entries inserted into cache: 310247
DNS entries removed from cache before expiry: 80449
 
---------------------
Nameserver statistics
---------------------
Server: 208.67.220.220
Queries sent: 138390
Queries retried or failed: 10297
 
Server: 208.67.222.222
Queries sent: 113546
Queries retried or failed: 7534
 
[edit]

vyatta@office# run show hardware cpu 
processor       : 0
vendor_id       : GenuineIntel
cpu family      : 6
model           : 5
model name      : Pentium II (Deschutes)
stepping        : 2
cpu MHz         : 348.209
cache size      : 512 KB
fdiv_bug        : no
hlt_bug         : no
f00f_bug        : no
coma_bug        : no
fpu             : yes
fpu_exception   : yes
cpuid level     : 2
wp              : yes
flags           : fpu vme de pse tsc msr pae mce cx8 sep mtrr pge mca cmov pse36 mmx fxsr up
bogomips        : 696.41
clflush size    : 32
cache_alignment : 32
address sizes   : 36 bits physical, 32 bits virtual
power management:
 
[edit]
vyatta@office# run show hardware pci 
00:00.0 Host bridge: Intel Corporation 440BX/ZX/DX - 82443BX/ZX/DX Host bridge (rev 02)
00:01.0 PCI bridge: Intel Corporation 440BX/ZX/DX - 82443BX/ZX/DX AGP bridge (rev 02)
00:0a.0 Ethernet controller: Intel Corporation 82557/8/9/0/1 Ethernet Pro 100 (rev 05)
00:0d.0 Ethernet controller: Realtek Semiconductor Co., Ltd. RTL-8139/8139C/8139C+ (rev 10)
00:0e.0 Ethernet controller: Intel Corporation 82557/8/9/0/1 Ethernet Pro 100 (rev 08)
00:14.0 ISA bridge: Intel Corporation 82371AB/EB/MB PIIX4 ISA (rev 02)
00:14.1 IDE interface: Intel Corporation 82371AB/EB/MB PIIX4 IDE (rev 01)
00:14.2 USB Controller: Intel Corporation 82371AB/EB/MB PIIX4 USB (rev 01)
00:14.3 Bridge: Intel Corporation 82371AB/EB/MB PIIX4 ACPI (rev 02)
01:00.0 VGA compatible controller: ATI Technologies Inc 3D Rage Pro AGP 1X/2X (rev 5c)
[edit]
vyatta@office# run show hardware dmi 
bios_date: 06/30/98
bios_vendor: Compaq
bios_version: 686T5
board_asset_tag: 
board_name: 042Ch
board_vendor: Compaq
board_version: 
chassis_asset_tag:         
chassis_type: 3
chassis_vendor: Compaq
chassis_version: 
product_name: Deskpro EN Series SFF
product_version: 
sys_vendor: Compaq
[edit]

vyatta@office# run show version 
Version:      VC6.2-2011.02.09
Description:  Vyatta Core 6.2 2011.02.09
Copyright:    2006-2011 Vyatta, Inc.
Built by:     autobuild@vyatta.com
Built on:     Wed Feb  9 20:04:26 UTC 2011
Build ID:     1102092009-7353197
Boot via:     disk
Uptime:       22:25:29 up 34 days,  8:38,  1 user,  load average: 0.00, 0.04, 0.04

Vyatta in big office – VLAN, DHCP, QOS,routing, firewall, webproxy, pptp server and more …

This site uses Akismet to reduce spam. Learn how your comment data is processed.

vmware on Как работи if и then в bash скриптинга ?February 18, 2024
Интересен сугестопедичен подход, за начинаещ найстина е много логично.
Operator on Инсталация и конфигурация на WireGuard crypto VPN в MikroTik, Linux, Android, Windows и OpenWRTJanuary 10, 2024
ПОНЕЖЕ ПОСТОННО МЕ ПИТАТ: Срокът на валидност на ключовете на WireGuard зависи от начина, по който са конфигурирани. В WireGuard,…
Inkas on Как работи if и then в bash скриптинга ?January 3, 2024
Браво! Перфектно написан пост, както винаги!
SysTech on Инсталация и конфигурация на WireGuard crypto VPN в MikroTik, Linux, Android, Windows и OpenWRTDecember 31, 2023
Аз гарантирам за 20Mbits OpenVPN срещу над 100Mbits за WireGuard което е може пи пет пъти по висока скорост но…
ViperXXX on Инсталация и конфигурация на WireGuard crypto VPN в MikroTik, Linux, Android, Windows и OpenWRTDecember 31, 2023
Ха, много добро хау-ту :) Съдържанието е много професионално, събирам смелост за миграция. Може ли някой да гарантира "перформънса" пред…
Unicat on Инсталация и конфигурация на WireGuard crypto VPN в MikroTik, Linux, Android, Windows и OpenWRTDecember 28, 2023
Ако добре съм разбрал схемата в Микротик е генерирания публичен ключ на рутер1 се поставя в рутер2 на таба peer…
DEVOPS on Инсталация и конфигурация на WireGuard crypto VPN в MikroTik, Linux, Android, Windows и OpenWRTDecember 28, 2023
Изглежда че нещата вървят доста добре в рамките на проекта WireGuard, защо разработчиците поеха ангажимента да прехвърлят част от кода…
vesuvius on Инсталация и конфигурация на WireGuard crypto VPN в MikroTik, Linux, Android, Windows и OpenWRTDecember 28, 2023
Аз като придобил вече малко опит да кажа няколко неща основно за мобилните устройства (лаптопи, телефони, таблети). За разлика от…
Румен Йорданов on Инсталация и конфигурация на WireGuard crypto VPN в MikroTik, Linux, Android, Windows и OpenWRTDecember 26, 2023
Много професионално написана статия, вече почти няма такива, обикновенно са 50-60 реда на лош Индо-Английски с прикачено клипче на мякащ…
Unicat on Инсталация и конфигурация на WireGuard crypto VPN в MikroTik, Linux, Android, Windows и OpenWRTDecember 26, 2023
Много добре е обяснено всичко, само малко са ми дребни снимките на Микротика но е супер всичко.