Proxmox-Netzwerk

Aus Info-Theke
Version vom 11. November 2019, 01:02 Uhr von Hamatoma (Diskussion | Beiträge) (→‎Konfiguration)
(Unterschied) ← Nächstältere Version | Aktuelle Version (Unterschied) | Nächstjüngere Version → (Unterschied)
Zur Navigation springen Zur Suche springen


Konfiguration

auto lo
iface lo inet loopback

auto eno1
iface eno1 inet manual
auto vmbr0
iface vmbr0 inet static
	address 207.180.255.91
	netmask 255.255.255.0
	gateway 207.180.255.1
	dns-nameservers 213.136.95.10,213.136.95.11
	bridge_ports eno1
	bridge_stp off
	bridge_fd 0
	post-up echo 1 > /proc/sys/net/ipv4/ip_forward
        #post-up   iptables -t nat -A POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE
        #post-down iptables -t nat -D POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE
auto vmbr1
iface vmbr1 inet static
	address 10.10.10.1
	netmask 255.255.255.0
	bridge_ports none
	bridge_stp off
	bridge_fd 0
	post-up echo 1 > /proc/sys/net/ipv4/ip_forward
	post-up   iptables -t nat -A POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE
	post-down iptables -t nat -D POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE
	post-up   iptables -t nat -A POSTROUTING -s '10.10.10.0/24' -o vmbr0 -j MASQUERADE
	post-down iptables -t nat -D POSTROUTING -s '10.10.10.0/24' -o vmbr0 -j MASQUERADE

iface eno2 inet manual
root@dragon:/etc/network# brctl show
bridge name	bridge id		STP enabled	interfaces
fwbr202i0		8000.f21992c299eb	no		fwln202i0
							tap202i0
fwbr202i1		8000.5a93d4df019f	no		fwln202i1
							tap202i1
vmbr0		8000.ac1f6b672196	no		eno1
							fwpr202p1
vmbr1		8000.ba1f6d3078a6	no		fwpr202p0
ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master vmbr0 state UP group default qlen 1000
    link/ether ac:1f:6b:67:21:96 brd ff:ff:ff:ff:ff:ff
3: eno2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000
    link/ether ac:1f:6b:67:21:97 brd ff:ff:ff:ff:ff:ff
4: vmbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether ac:1f:6b:67:21:96 brd ff:ff:ff:ff:ff:ff
    inet 207.180.255.91/24 brd 207.180.255.255 scope global vmbr0
       valid_lft forever preferred_lft forever
    inet6 fe80::ae1f:6bff:fe67:2196/64 scope link 
       valid_lft forever preferred_lft forever
5: vmbr1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether ba:1f:6d:30:78:a6 brd ff:ff:ff:ff:ff:ff
    inet 10.10.10.1/24 brd 10.10.10.255 scope global vmbr1
       valid_lft forever preferred_lft forever
    inet6 fe80::20b5:97ff:fec6:1bd/64 scope link 
       valid_lft forever preferred_lft forever
7: tap202i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master fwbr202i0 state UNKNOWN group default qlen 1000
    link/ether 02:19:cf:53:f4:f4 brd ff:ff:ff:ff:ff:ff