Networks: Difference between revisions
Content deleted Content added
(29 intermediate revisions by the same user not shown) | |||
Line 1:
=Network Topology=
[[File:unix-lab-network1.png|720px|center|Global Network Topology]]
=VLAN list=
MGMT: 100
INTERNET: 101,102,103,104,105,106,107,108,109,110,111,112,113
GLOBAL1: 201
CDN1: 301,302,303
ISP1: 401,402,403,404
ISP2: 501,502,503,504
ISP3: 601,602,603,604,605,606
ISP4: 701,702,703,704,705,706
ORG1: 1101
ORG2: 1201
=Router list=
GLOBAL1 AS001 R1 VLAN 100,101,103,104,105,201
CDN1 AS002 R1 VLAN 100,102,103,106,107,301,302
Line 11 ⟶ 22:
R2 VLAN 100,107,112,502,503
R3 VLAN 100,108,501,503,504
ISP3 AS005 R1 VLAN 100,109
R2 VLAN 100,111
R3 VLAN 100,113,601,602,604
ISP4 AS006 R1 VLAN 100,110,701,703,706
R2 VLAN 100,112
R3 VLAN 100,113,701,702,704
ORG1 R1 VLAN 100,
ORG2 R1 VLAN 100,
=Networks=
10.0.
192.0.2.0/24 public IPv4 (special scope for doc)
10.0.
10.0.1.
10
192.168.0.0/24 private network in ORG{1,2}
==By VLAN==
VLAN20 172.16.3.0/24 DMZ
VLAN21 10.28.13.0/24 LAB (WAN{1,2,3})
VLAN100 10.0.
# public IPv4 - two host network /30
VLAN101 192.0.2.0/30 # first 64
Line 56 ⟶ 66:
VLAN604 192.0.2.160/29
VLAN704 192.0.2.168/29
# CDN
VLAN303 10.0.1.0/28
# ISP internal
VLAN401 10.0.1.64/30
VLAN402 10.0.1.68/30
VLAN403 10.0.1.72/30
VLAN501 10.0.1.76/30
VLAN502 10.0.1.80/30
VLAN503 10.0.1.84/30
VLAN601 10.0.1.88/30
VLAN602 10.0.1.92/30
VLAN603 10.0.1.96/30
VLAN701 10.0.1.100/30
VLAN702 10.0.1.104/30
VLAN703 10.0.1.108/30
ISP clinet
VLAN605 10.0.1.128/28
VLAN606 10.0.1.144/28
VLAN705 10.0.1.160/28
VLAN706 10.0.1.176/28
# ORG
VLAN1101 192.168.0.0/24
VLAN1201 192.168.0.0/24
=Address=
==10.0.
'''10.0.0.0/24 VLAN100'''
'''GLOBAL1 (reserved 10 IP)'''
10.0.
10.0.
...
'''CDN1 (reserved 20 IP)'''
10.0.
10.0.
10.0.
...
'''ISP1 (reserved 10 IP)'''
10.0.
10.0.
10.0.
10.0.
...
'''ISP2 (reserved 10 IP)'''
10.0.
10.0.
10.0.
10.0.
...
'''ISP3 (reserved 10 IP)'''
10.0.
10.0.
10.0.
10.0.
...
'''ISP4 (reserved 10 IP)'''
10.0.
10.0.
10.0.
10.0.
...
'''ORG1 (reserved 20 IP)'''
10.0.
...
'''ORG2 (reserved 20 IP)'''
10.0.
...
==192.0.2.0/24 ==
===192.0.2.0/26
'''192.0.2.0/30 VLAN101'''
192.0.2.1 hv hv hv.lab
Line 143 ⟶ 181:
192.0.2.53 R1 r1.cdn1.lab
192.0.2.54 R2 r2.cdn1.lab
===192.168.0.128/26===
'''192.0.2.128/29 VLAN201'''
192.0.2.129 R1 r1.glb1.lab
Line 168 ⟶ 207:
192.0.2.170 dns1 dns1.isp4.lab
...
==10.0.1.0/24==
===10.0.1.0/26===
'''10.0.1.0/28 VLAN303'''
10.0.1.1 R2 r2.cdn1.lab
===10.0.1.64/26===
'''10.0.1.64/30 VLAN401'''
10.0.1.65 R1 r1.isp1.lab
10.0.1.66 R3 r3.isp1.lab
'''10.0.1.68/30 VLAN402'''
10.0.1.69 R1 r1.isp1.lab
10.0.1.70 R2 r2.isp1.lab
'''10.0.1.72/30 VLAN403'''
10.0.1.73 R3 r3.isp1.lab
10.0.1.74 R2 r2.isp1.lab
'''10.0.1.76/30 VLAN501'''
10.0.1.77 R1 r1.isp2.lab
10.0.1.78 R3 r3.isp2.lab
'''10.0.1.80/30 VLAN502'''
10.0.1.81 R1 r1.isp2.lab
10.0.1.82 R2 r2.isp2.lab
'''10.0.1.84/30 VLAN503'''
10.0.1.85 R2 r2.isp2.lab
10.0.1.86 R3 r3.isp2.lab
'''10.0.1.88/30 VLAN601'''
10.0.1.89 R1 r1.isp3.lab
10.0.1.90 R3 r3.isp3.lab
'''10.0.1.92/30 VLAN602'''
10.0.1.93 R2 r2.isp3.lab
10.0.1.94 R3 r3.isp3.lab
'''10.0.1.96/30 VLAN603'''
10.0.1.97 R1 r1.isp3.lab
10.0.1.98 R2 r2.isp3.lab
'''10.0.1.100/30 VLAN701'''
10.0.1.101 R1 r1.isp4.lab
10.0.1.102 R3 r3.isp4.lab
'''10.0.1.104/30 VLAN702'''
10.0.1.105 R2 r2.isp4.lab
10.0.1.106 R3 r3.isp4.lab
'''10.0.1.108/30 VLAN703'''
10.0.1.109 R1 r1.isp4.lab
10.0.1.110 R2 r2.isp4.lab
===10.0.1.128/26===
'''10.0.1.128/28 VLAN605'''
10.0.1.129 R1 r1.isp3.lab
10.0.1.130 R1 r1.org1.lab DHCP
'''10.0.1.144/28 VLAN606'''
10.0.1.145 R2 r2.isp3.lab
10.0.1.146 R1 r1.org2.lab DHCP
'''10.0.1.160/28 VLAN705'''
10.0.1.161 R2 r2.isp4.lab
10.0.1.162 R1 r1.org2.lab DHCP
'''10.0.1.176/28 VLAN706'''
10.0.1.177 R1 r1.isp4.lab
10.0.1.178 R1 r1.org1.lab DHCP
==192.168.0.0/24==
'''192.168.0.0/24 VLAN1101'''
192.168.0.1 R1 r1.org1.lab
'''192.168.0.0/24 VLAN1201'''
192.168.0.1 R1 r1.org2.lab
=Open vSwitch=
apt install openvswitch-switch
apt install qemu-utils
ovs-vsctl add-br swglobal
ovs-vsctl add-port swglobal gateway100 tag=100 \
-- set interface gateway100 type=internal
ovs-vsctl add-port swglobal gateway101 tag=101 \
-- set interface gateway101 type=internal
ovs-vsctl add-port swglobal gateway102 tag=102 \
-- set interface gateway102 type=internal
wget https://raw.githubusercontent.com/grzesieklog/unix-lab/main/hv/net/gateway
cp -v gateway /etc/network/interfaces.d/
'gateway' -> '/etc/network/interfaces.d/gateway'
systemctl restart networking.service
==Libvirt netrowks==
virsh net-define swglobal.xml
virsh net-start swglobal
|
Latest revision as of 15:54, 10 February 2024
Network Topology
VLAN list
MGMT: 100 INTERNET: 101,102,103,104,105,106,107,108,109,110,111,112,113 GLOBAL1: 201 CDN1: 301,302,303 ISP1: 401,402,403,404 ISP2: 501,502,503,504 ISP3: 601,602,603,604,605,606 ISP4: 701,702,703,704,705,706 ORG1: 1101 ORG2: 1201
Router list
GLOBAL1 AS001 R1 VLAN 100,101,103,104,105,201 CDN1 AS002 R1 VLAN 100,102,103,106,107,301,302 R2 VLAN 100,301,303 ISP1 AS003 R1 VLAN 100,104,109,401,402 R2 VLAN 100,106,110,402,403 R3 VLAN 100,108,401,403,404 ISP2 AS004 R1 VLAN 100,105,111,501,502 R2 VLAN 100,107,112,502,503 R3 VLAN 100,108,501,503,504 ISP3 AS005 R1 VLAN 100,109,601,603,605 R2 VLAN 100,111,602,603,606 R3 VLAN 100,113,601,602,604 ISP4 AS006 R1 VLAN 100,110,701,703,706 R2 VLAN 100,112,702.703,705 R3 VLAN 100,113,701,702,704 ORG1 R1 VLAN 100,605,706,1101 ORG2 R1 VLAN 100,705,606,1201
Networks
10.0.0.0/24 back MGMT (each host has individual interface in this VLAN) 192.0.2.0/24 public IPv4 (special scope for doc) 10.0.1.0/26 private CDN1 for DATA CENTER 10.0.1.64/26 private ISP{1,2,3,4} 10.0.1.128/26 private ISP{3,4} for clients ORG{1,2} 192.168.0.0/24 private network in ORG{1,2}
By VLAN
VLAN20 172.16.3.0/24 DMZ VLAN21 10.28.13.0/24 LAB (WAN{1,2,3}) VLAN100 10.0.0.0/24 # public IPv4 - two host network /30 VLAN101 192.0.2.0/30 # first 64 VLAN102 192.0.2.4/30 VLAN103 192.0.2.8/30 VLAN104 192.0.2.12/30 VLAN105 192.0.2.16/30 VLAN106 192.0.2.20/30 VLAN107 192.0.2.24/30 VLAN108 192.0.2.28/30 VLAN109 192.0.2.32/30 VLAN110 192.0.2.36/30 VLAN111 192.0.2.40/30 VLAN112 192.0.2.44/30 VLAN113 192.0.2.48/30 VLAN301 192.0.2.52/30 ...alignment # public IPv4 - six host network /29 VLAN201 192.0.2.128/29 # third 64 VLAN302 192.0.2.136/29 VLAN404 192.0.2.144/29 VLAN504 192.0.2.152/29 VLAN604 192.0.2.160/29 VLAN704 192.0.2.168/29 # CDN VLAN303 10.0.1.0/28 # ISP internal VLAN401 10.0.1.64/30 VLAN402 10.0.1.68/30 VLAN403 10.0.1.72/30 VLAN501 10.0.1.76/30 VLAN502 10.0.1.80/30 VLAN503 10.0.1.84/30 VLAN601 10.0.1.88/30 VLAN602 10.0.1.92/30 VLAN603 10.0.1.96/30 VLAN701 10.0.1.100/30 VLAN702 10.0.1.104/30 VLAN703 10.0.1.108/30 ISP clinet VLAN605 10.0.1.128/28 VLAN606 10.0.1.144/28 VLAN705 10.0.1.160/28 VLAN706 10.0.1.176/28 # ORG VLAN1101 192.168.0.0/24 VLAN1201 192.168.0.0/24
Address
10.0.0.0/24
10.0.0.0/24 VLAN100 GLOBAL1 (reserved 10 IP) 10.0.0.2 R1 r1.glb1.lab 10.0.0.3 dns1 dns1.glb1.lab ... CDN1 (reserved 20 IP) 10.0.0.11 R1 r1.cdn1.lab 10.0.0.12 R2 r2.cdn1.lab 10.0.0.13 dns1 dns1.cdn1.lab ... ISP1 (reserved 10 IP) 10.0.0.31 R1 r1.isp1.lab 10.0.0.32 R2 r2.isp1.lab 10.0.0.33 R3 r3.isp1.lab 10.0.0.34 dns1 dns1.isp1.lab ... ISP2 (reserved 10 IP) 10.0.0.41 R1 r1.isp2.lab 10.0.0.42 R2 r2.isp2.lab 10.0.0.43 R3 r3.isp2.lab 10.0.0.44 dns1 dns1.isp2.lab ... ISP3 (reserved 10 IP) 10.0.0.51 R1 r1.isp3.lab 10.0.0.52 R2 r2.isp3.lab 10.0.0.53 R3 r3.isp3.lab 10.0.0.54 dns1 dns1.isp3.lab ... ISP4 (reserved 10 IP) 10.0.0.61 R1 r1.isp4.lab 10.0.0.62 R2 r2.isp4.lab 10.0.0.63 R3 r3.isp4.lab 10.0.0.64 dns1 dns1.isp4.lab ... ORG1 (reserved 20 IP) 10.0.0.71 R1 r1.org1.lab ... ORG2 (reserved 20 IP) 10.0.0.91 R1 r1.org2.lab ...
192.0.2.0/24
192.0.2.0/26
192.0.2.0/30 VLAN101 192.0.2.1 hv hv hv.lab 192.0.2.2 R1 r1.glb1.lab 192.0.2.4/30 VLAN102 192.0.2.5 hv hv hv.lab 192.0.2.6 R1 r1.cdn1.lab 192.0.2.8/30 VLAN103 192.0.2.9 R1 r1.glb1.lab 192.0.2.10 R1 r1.cdn1.lab 192.0.2.12/30 VLAN104 192.0.2.13 R1 r1.glb1.lab 192.0.2.14 R1 r1.isp1.lab 192.0.2.16/30 VLAN105 192.0.2.17 R1 r1.glb1.lab 192.0.2.18 R1 r1.isp2.lab 192.0.2.20/30 VLAN106 192.0.2.21 R1 r1.cdn1.lab 192.0.2.22 R2 r2.isp1.lab 192.0.2.24/30 VLAN107 192.0.2.25 R1 r1.cdn1.lab 192.0.2.26 R2 r2.isp2.lab 192.0.2.28/30 VLAN108 192.0.2.29 R3 r3.isp1.lab 192.0.2.30 R3 r3.isp2.lab 192.0.2.32/30 VLAN109 192.0.2.33 R1 r1.isp1.lab 192.0.2.34 R1 r1.isp3.lab 192.0.2.36/30 VLAN110 192.0.2.37 R2 r2.isp1.lab 192.0.2.38 R1 r1.isp4.lab 192.0.2.40/30 VLAN111 192.0.2.41 R1 r1.isp2.lab 192.0.2.42 R2 r2.isp3.lab 192.0.2.44/30 VLAN112 192.0.2.45 R2 r2.isp2.lab 192.0.2.46 R2 r2.isp4.lab 192.0.2.48/30 VLAN113 192.0.2.49 R3 r3.isp3.lab 192.0.2.50 R3 r3.isp4.lab 192.0.2.52/30 VLAN301 192.0.2.53 R1 r1.cdn1.lab 192.0.2.54 R2 r2.cdn1.lab
192.168.0.128/26
192.0.2.128/29 VLAN201 192.0.2.129 R1 r1.glb1.lab 192.0.2.130 dns1 dns1.glb1.lab ... 192.0.2.136/29 VLAN302 192.0.2.137 R1 r1.cdn1.lab 192.0.2.138 dns1 dns1.cdn1.lab ... 192.0.2.144/29 VLAN404 192.0.2.145 R3 r3.isp1.lab 192.0.2.146 dns1 dns1.isp1.lab ... 192.0.2.152/29 VLAN504 192.0.2.153 R3 r3.isp2.lab 192.0.2.154 dns1 dns1.isp2.lab ... 192.0.2.160/29 VLAN604 192.0.2.161 R3 r3.isp3.lab 192.0.2.162 dns1 dns1.isp3.lab ... 192.0.2.168/29 VLAN704 192.0.2.169 R3 r3.isp4.lab 192.0.2.170 dns1 dns1.isp4.lab ...
10.0.1.0/24
10.0.1.0/26
10.0.1.0/28 VLAN303 10.0.1.1 R2 r2.cdn1.lab
10.0.1.64/26
10.0.1.64/30 VLAN401 10.0.1.65 R1 r1.isp1.lab 10.0.1.66 R3 r3.isp1.lab 10.0.1.68/30 VLAN402 10.0.1.69 R1 r1.isp1.lab 10.0.1.70 R2 r2.isp1.lab 10.0.1.72/30 VLAN403 10.0.1.73 R3 r3.isp1.lab 10.0.1.74 R2 r2.isp1.lab 10.0.1.76/30 VLAN501 10.0.1.77 R1 r1.isp2.lab 10.0.1.78 R3 r3.isp2.lab 10.0.1.80/30 VLAN502 10.0.1.81 R1 r1.isp2.lab 10.0.1.82 R2 r2.isp2.lab 10.0.1.84/30 VLAN503 10.0.1.85 R2 r2.isp2.lab 10.0.1.86 R3 r3.isp2.lab 10.0.1.88/30 VLAN601 10.0.1.89 R1 r1.isp3.lab 10.0.1.90 R3 r3.isp3.lab 10.0.1.92/30 VLAN602 10.0.1.93 R2 r2.isp3.lab 10.0.1.94 R3 r3.isp3.lab 10.0.1.96/30 VLAN603 10.0.1.97 R1 r1.isp3.lab 10.0.1.98 R2 r2.isp3.lab 10.0.1.100/30 VLAN701 10.0.1.101 R1 r1.isp4.lab 10.0.1.102 R3 r3.isp4.lab 10.0.1.104/30 VLAN702 10.0.1.105 R2 r2.isp4.lab 10.0.1.106 R3 r3.isp4.lab 10.0.1.108/30 VLAN703 10.0.1.109 R1 r1.isp4.lab 10.0.1.110 R2 r2.isp4.lab
10.0.1.128/26
10.0.1.128/28 VLAN605 10.0.1.129 R1 r1.isp3.lab 10.0.1.130 R1 r1.org1.lab DHCP 10.0.1.144/28 VLAN606 10.0.1.145 R2 r2.isp3.lab 10.0.1.146 R1 r1.org2.lab DHCP 10.0.1.160/28 VLAN705 10.0.1.161 R2 r2.isp4.lab 10.0.1.162 R1 r1.org2.lab DHCP 10.0.1.176/28 VLAN706 10.0.1.177 R1 r1.isp4.lab 10.0.1.178 R1 r1.org1.lab DHCP
192.168.0.0/24
192.168.0.0/24 VLAN1101 192.168.0.1 R1 r1.org1.lab 192.168.0.0/24 VLAN1201 192.168.0.1 R1 r1.org2.lab
Open vSwitch
apt install openvswitch-switch apt install qemu-utils
ovs-vsctl add-br swglobal ovs-vsctl add-port swglobal gateway100 tag=100 \ -- set interface gateway100 type=internal ovs-vsctl add-port swglobal gateway101 tag=101 \ -- set interface gateway101 type=internal ovs-vsctl add-port swglobal gateway102 tag=102 \ -- set interface gateway102 type=internal
wget https://raw.githubusercontent.com/grzesieklog/unix-lab/main/hv/net/gateway cp -v gateway /etc/network/interfaces.d/ 'gateway' -> '/etc/network/interfaces.d/gateway' systemctl restart networking.service
Libvirt netrowks
wget https://raw.githubusercontent.com/grzesieklog/unix-lab/main/hv/net/swglobal.xml virsh net-define swglobal.xml virsh net-start swglobal virsh net-autostart swglobal virsh net-list --all