Oh Dios, Deje que su feliz toda la creación, todas las personas que amo, mis hermanos, mis amigos, y no te olvides de mis padres.

on Minggu, 24 Oktober 2010 | 0 C0Mm3nTs

Artikel ini memaparkan proses konfigurasi vyatta yang digunakan untuk koneksi ke jaringan Jardiknas dengan metode NAT. Skenario topologi seperti di bawah ini:
Untuk IP client di setiap subnet digunakan dhcp dengan jangkauan .10 s/d .250.
Hostname eth0 eth1 eth2
PNP 118.98.176.218/29 192.168.1.1/24 192.168.2.1/24
Juniper 118.98.176.217/29 - -
dengan alamat IP DNS
-1: 118.98.224.2 dan DNS-2: 118.98.224.3
Sekarang kita konfigurasi vyatta dengan login terlebih dahulu, setelah itu ketikkan perintah-perintah seperti di bawah ini:
vyatta@vyatta:~$ configure
vyatta@vyatta# set system host-name pnp
vyatta@vyatta# set system domain-name jardiknas.lan
vyatta@vyatta# set system name-server 118.98.224.2
vyatta@vyatta# set system name-server 118.98.224.3
vyatta@vyatta# set system gateway-address 118.98.176.217
vyatta@vyatta# commit
vyatta@pnp# set interfaces ethernet eth0 address 118.98.176.218/29
vyatta@pnp# set interfaces ethernet eth0 description "Jardiknas"
vyatta@pnp# set interfaces ethernet eth1 address 192.168.1.1/24
vyatta@pnp# set interfaces ethernet eth1 description "LANnet-1"
vyatta@pnp# set interfaces ethernet eth2 address 192.168.2.1/24
vyatta@pnp# set interfaces ethernet eth2 description "LANnet-2"
vyatta@pnp# commit
vyatta@pnp# set service dhcp-server shared-network-name LANnet1 subnet 192.168.1.0/24 start 192.168.1.10 stop 192.168.1.250
vyatta@pnp# set service dhcp-server shared-network-name LANnet1 subnet 192.168.1.0/24 default-router 192.168.1.1
vyatta@pnp# set service dhcp-server shared-network-name LANnet1 subnet 192.168.1.0/24 dns-server 118.98.224.2
vyatta@pnp# set service dhcp-server shared-network-name LANnet1 subnet 192.168.1.0/24 dns-server 118.98.224.3
vyatta@pnp# commit
vyatta@pnp# set service dhcp-server shared-network-name LANnet2 subnet 192.168.2.0/24 start 192.168.2.10 stop 192.168.2.250
vyatta@pnp# set service dhcp-server shared-network-name LANnet2 subnet 192.168.2.0/24 default-router 192.168.2.1
vyatta@pnp# set service dhcp-server shared-network-name LANnet2 subnet 192.168.2.0/24 dns-server 118.98.224.2
vyatta@pnp# set service dhcp-server shared-network-name LANnet2 subnet 192.168.2.0/24 dns-server 118.98.224.3
vyatta@pnp# commit
vaytta@pnp# set service nat rule 1 source-address 192.168.0.0/16
vyatta@pnp# set service nat rule 1 outbound-interface eth0
vyatta@pnp# set service nat rule 1 type masquerade
vyatta@pnp# commit
vyatta@pnp# set firewall name ALLOW_ESTABLISHED
vyatta@pnp# set firewall name ALLOW_ESTABLISHED rule 10
vyatta@pnp# set firewall name ALLOW_ESTABLISHED rule 10 action accept
vyatta@pnp# set firewall name ALLOW_ESTABLISHED rule 10 state established enable
vyatta@pnp# commit
vyatta@pnp# set interfaces ethernet eth0 firewall in name ALLOW_ESTABLISHED
vyatta@pnp# set interfaces ethernet eth0 firewall local name ALLOW_ESTABLISHED
vyatta@pnp# commit
vyatta@pnp# exit
vyatta@pnp:~$ logout
Studi Kasus Vyatta VC4.0.2: LAN Routing
Artikel ini menjelaskan bagaimana mengkonfigurasi vyatta dalam LAN-routing. Skenario topologinya seperti gambar di bawah ini:
Pada gambar di atas telah diinstalasi dua vyatta dengan nama host R0 dan R1. Masing-masingnya terdapat tiga interface ethernet dengan nama eth0 (eksternal) serta eth1 dan eth2 (internal). Nilai alamat IP masing-masing interface adalah sebagai berikut:
Hostname eth0 eth1 eth2
R0 192.168.3.5/30 192.168.1.1/24 192.168.2.1/24
R1 192.168.3.6/30 192.168.4.1/24 192.168.5.1/24
Untuk alamat IP client di setiap subnet digunakan dhcp dengan range .10 s/d .250.
Konfigurasi Vyatta-R0:
vyatta@vyatta:~$ configure
vyatta@vyatta# set system host-name R0
vyatta@vyatta# set system domain-name office1.net
vyatta@vyatta# commit
vyatta@R0# set interfaces ethernet eth0 address 192.168.3.5/30
vyatta@R0# set interfaces ethernet eth1 address 192.168.1.1/24
vyatta@R0# set interfaces ethernet eth2 address 192.168.2.1/24
vyatta@R0# commit
vyatta@R0# set protocols static route 0.0.0.0/0 next-hop 192.168.3.6
vyatta@R0# commit
vyatta@R0# set service dhcp-server shared-network-name r0lan1 subnet 192.168.1.0/24 start 192.168.1.10 stop 192.168.1.250
vyatta@R0# set service dhcp-server shared-network-name r0lan1 subnet 192.168.1.0/24 default-router 192.168.1.1
vyatta@R0# commit
vyatta@R0# set service dhcp-server shared-network-name r0lan2 subnet 192.168.2.0/24 start 192.168.2.10 stop 192.168.2.250
vyatta@R0# set service dchp-server shared-network-name r0lan2 subnet 192.168.2.0/24 default-router 192.168.2.1
vyatta@R0# commit
vyatta@R0# save
vyatta@R0# exit
vyatta@R0:~$ logout
Konfigurasi Vyatta-R1:
vyatta@vyatta:~$ configure
vyatta@vyatta# set system host-name R1
vyatta@vyatta# set system domain-name office2.net
vyatta@vyatta# commit
vyatta@R1# set interfaces ethernet eth0 address 192.168.3.6/30
vyatta@R1# set interfaces ethernet eth1 address 192.168.4.1/24
vyatta@R1# set interfaces ethernet eth2 address 192.168.5.1/24
vyatta@R1# commit
vyatta@R1# set protocol static route 0.0.0.0/0 next-hop 192.168.3.5
vyatta@R1# commit
vyatta@R1# set service dhcp-server shared-network-name r1lan1 subnet 192.168.4.0/24 start 192.168.4.10 stop 192.168.4.250
vyatta@R1# set service dhcp-server shared-network-name r1lan1 subnet 192.168.4.0/24 default-router 192.168.4.1
vyatta@R1# commit
vyatta@R1# set service dhcp-server shared-network-name r1lan2 subnet 192.168.5.0/24 start 192.168.5.10 stop 192.168.5.250
vyatta@R1# set service dchp-server shared-network-name r1lan2 subnet 192.168.5.0/24 default-router 192.168.5.1
vyatta@R1# commit
vyatta@R1# save
vyatta@R1# exit
vyatta@R1:~$ logout
Untuk verifikasi lakukan saja dari pc client yang telah di set alamat IP-nya menggunakan dhcp, dan gunakan perintah ping ke host yang dituju di subnet lain.

Related Posts by Categories



0 C0Mm3nTs:

Posting Komentar