machines:grifon:lns02
Différences
Ci-dessous, les différences entre deux révisions de la page.
— | machines:grifon:lns02 [2019/03/09 12:48] (Version actuelle) – créée - modification externe 127.0.0.1 | ||
---|---|---|---|
Ligne 1: | Ligne 1: | ||
+ | ====== lns02 A METTRE A JOUR ====== | ||
+ | Machine virtuelle sous Gentoo | ||
+ | |||
+ | < | ||
+ | Linux lns02.rns-cogent.grifon.fr #1 SMP Wed Feb 27 13:31:48 CET 2019 x86_64 Common KVM processor GenuineIntel GNU/Linux | ||
+ | </ | ||
+ | |||
+ | Routeur de collecte ADSL | ||
+ | |||
+ | ===== Administrateurs ===== | ||
+ | |||
+ | * alarig | ||
+ | * dotux | ||
+ | * gizmo | ||
+ | * nemo | ||
+ | |||
+ | ===== Services ===== | ||
+ | |||
+ | * RADIUS, freeradius (non utilisé) | ||
+ | * L2TP, xl2tpd | ||
+ | * PPP, accel-ppp (incluant une implémentation de DHCPv6 et de RA) | ||
+ | * BGP, bird | ||
+ | |||
+ | ==== RADIUS ==== | ||
+ | |||
+ | Ce service n'est pas utilisé sur les LNS mais sur bgp-adsl. Il est toujours présent pour des raisons historique ainsi que dans un éventuel besoin futur. | ||
+ | |||
+ | Pour plus d' | ||
+ | |||
+ | |||
+ | ==== PPP ==== | ||
+ | |||
+ | Nous utilisons accel-ppp pour terminer le tunnel PPP initié par l' | ||
+ | |||
+ | Les configurations IPv4 et IPv6 sont gérée par accel-ppp (implémentation de DHCPv6 incluse). | ||
+ | |||
+ | <file bash | / | ||
+ | [modules] | ||
+ | log_file | ||
+ | log_syslog | ||
+ | |||
+ | l2tp | ||
+ | |||
+ | auth_mschap_v2 | ||
+ | auth_chap_md5 | ||
+ | |||
+ | radius | ||
+ | |||
+ | ippool | ||
+ | |||
+ | pppd_compat | ||
+ | |||
+ | net-snmp | ||
+ | |||
+ | ipv6_nd | ||
+ | ipv6_dhcp | ||
+ | ipv6pool | ||
+ | |||
+ | [core] | ||
+ | log-error=/ | ||
+ | thread-count=4 | ||
+ | |||
+ | [ppp] | ||
+ | verbose=1 | ||
+ | min-mtu=1280 | ||
+ | mtu=1480 | ||
+ | mru=1482 | ||
+ | accomp=prefer | ||
+ | pcomp=prefer | ||
+ | ccp=prefer | ||
+ | mppe=deny | ||
+ | ipv4=prefer | ||
+ | ipv6=prefer | ||
+ | ipv6-intf-id=0: | ||
+ | ipv6-peer-intf-id=0: | ||
+ | ipv6-accept-peer-intf-id=1 | ||
+ | lcp-echo-interval=20 | ||
+ | lcp-echo-timeout=120 | ||
+ | unit-cache=1 | ||
+ | |||
+ | [auth] | ||
+ | [l2tp] | ||
+ | verbose=1 | ||
+ | dictionary=/ | ||
+ | bind=89.234.186.12 | ||
+ | mppe=allow | ||
+ | dataseq=allow | ||
+ | host-name=lns02.grifon.fr | ||
+ | ppp-max-mtu=1480 | ||
+ | |||
+ | [dns] | ||
+ | dns1=89.234.186.4 | ||
+ | |||
+ | [radius] | ||
+ | dictionary=/ | ||
+ | nas-identifier=accel-ppp | ||
+ | nas-ip-address=89.234.186.36 | ||
+ | gw-ip-address=89.234.186.12 | ||
+ | server=89.234.186.10,< | ||
+ | verbose=1 | ||
+ | acct-on=0 | ||
+ | |||
+ | [client-ip-range] | ||
+ | 0.0.0.0/0 | ||
+ | |||
+ | [ip-pool] | ||
+ | gw-ip-address=89.234.186.12 | ||
+ | |||
+ | [log] | ||
+ | log-file=/ | ||
+ | log-emerg=/ | ||
+ | log-fail-file=/ | ||
+ | log-debug=/ | ||
+ | syslog=accel-pppd, | ||
+ | copy=1 | ||
+ | |||
+ | level=4 | ||
+ | |||
+ | [pppd-compat] | ||
+ | verbose=1 | ||
+ | ip-up=/ | ||
+ | ip-down=/ | ||
+ | radattr-prefix=/ | ||
+ | |||
+ | [cli] | ||
+ | verbose=1 | ||
+ | telnet=127.0.0.1: | ||
+ | tcp=127.0.0.1: | ||
+ | sid, | ||
+ | |||
+ | [snmp] | ||
+ | master=0 | ||
+ | agent-name=accel-ppp | ||
+ | |||
+ | [ipv6-pool] | ||
+ | gw-ip6-address=2a00: | ||
+ | |||
+ | [ipv6-dns] | ||
+ | 2a00: | ||
+ | |||
+ | [ipv6-dhcp] | ||
+ | verbose=1 | ||
+ | pref-lifetime=604800 | ||
+ | valid-lifetime=2592000 | ||
+ | route-via-gw=1 | ||
+ | </ | ||
+ | |||
+ | |||
+ | ==== BGP ==== | ||
+ | |||
+ | Sessions iBGP avec l' | ||
+ | |||
+ | ===== Conf réseau ===== | ||
+ | |||
+ | La VM ne comporte qu’un port réseau public ('' | ||
+ | |||
+ | Le trafic rentre par l’interco avec phibee sur '' | ||
+ | |||
+ | Les échanges RADIUS se font sur '' | ||
+ | |||
+ | L’interface '' | ||
+ | |||
+ | La passerelle de la machine est '' | ||
+ | |||
+ | < | ||
+ | 1: lo: < | ||
+ | link/ | ||
+ | inet 127.0.0.1/8 brd 127.255.255.255 scope host lo | ||
+ | | ||
+ | inet6 ::1/128 scope host | ||
+ | | ||
+ | 2: eth0: < | ||
+ | link/ether 7a: | ||
+ | inet 89.234.186.206/ | ||
+ | | ||
+ | inet6 2a00: | ||
+ | | ||
+ | inet6 fe80:: | ||
+ | | ||
+ | 3: eth1: < | ||
+ | link/ether be: | ||
+ | inet 172.17.0.22/ | ||
+ | | ||
+ | inet6 fe80:: | ||
+ | | ||
+ | 4: dummy0: < | ||
+ | link/ether 02: | ||
+ | inet 89.234.186.10/ | ||
+ | | ||
+ | inet 89.234.186.11/ | ||
+ | | ||
+ | inet6 fe80:: | ||
+ | | ||
+ | 5: eth0.2000@eth0: | ||
+ | link/ether 7a: | ||
+ | inet 78.41.191.125/ | ||
+ | | ||
+ | inet6 fe80:: | ||
+ | | ||
+ | 6: eth0.2001@eth0: | ||
+ | link/ether 7a: | ||
+ | inet 78.41.191.127/ | ||
+ | | ||
+ | inet6 fe80:: | ||
+ | | ||
+ | 13: ppp0: < | ||
+ | link/ppp | ||
+ | inet 89.234.186.11 peer 89.234.186.21/ | ||
+ | | ||
+ | inet6 2a00: | ||
+ | | ||
+ | inet6 fe80:: | ||
+ | | ||
+ | </ |
machines/grifon/lns02.txt · Dernière modification : 2019/03/09 12:48 de 127.0.0.1