Hallo
Ich dachte ich habe die Konfiguration richtig gemacht leider ist das Resultat nicht perfekt.
1 2 3 4 5 6 7 8 9 10 | martin@kserver:~$ ping www.google.ch PING www.google.ch (172.217.168.3) 56(84) bytes of data. 64 bytes from zrh11s03-in-f3.1e100.net (172.217.168.3): icmp_seq=6 ttl=55 time=8.96 ms 64 bytes from zrh11s03-in-f3.1e100.net (172.217.168.3): icmp_seq=7 ttl=55 time=9.49 ms 64 bytes from zrh11s03-in-f3.1e100.net (172.217.168.3): icmp_seq=8 ttl=55 time=8.96 ms 64 bytes from zrh11s03-in-f3.1e100.net (172.217.168.3): icmp_seq=9 ttl=55 time=8.98 ms ^C --- www.google.ch ping statistics --- 11 packets transmitted, 4 received, 63% packet loss, time 10130ms rtt min/avg/max/mdev = 8.963/9.100/9.493/0.245 ms |
In meinem PC steck nun ein 10GB Netzwerkkarte und ich wollte eigentlich ein Interface für den Host und eine für den Gast. Ich betreibe eine Virtuelle Maschine Windows. Mit Windows komme ich ohne Probleme ins Internet.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 | martin@kserver:~$ lspci -nnk | grep -i net -A2 03:00.0 Ethernet controller [0200]: Intel Corporation 82583V Gigabit Network Connection [8086:150c] Subsystem: ASUSTeK Computer Inc. 82583V Gigabit Network Connection [1043:8457] Kernel driver in use: e1000e Kernel modules: e1000e -- 0c:00.0 Ethernet controller [0200]: Intel Corporation Ethernet Controller 10-Gigabit X540-AT2 [8086:1528] (rev 01) Subsystem: Hewlett-Packard Company Ethernet 10Gb 2-port 561T Adapter [103c:211a] Kernel driver in use: ixgbe Kernel modules: ixgbe 0c:00.1 Ethernet controller [0200]: Intel Corporation Ethernet Controller 10-Gigabit X540-AT2 [8086:1528] (rev 01) Subsystem: Hewlett-Packard Company Ethernet 10Gb 2-port 561T Adapter [103c:211a] Kernel driver in use: ixgbe Kernel modules: ixgbe |
Leider fällt mir der Fehler nicht auf da mein Wissen leider noch nicht so weit ist.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 | # This file describes the network interfaces available on your system # and how to activate them. For more information, see interfaces(5) # The loopback network interface auto lo iface lo inet loopback # The primary network interface anbiter/welt auto enp12s0f0 iface enp12s0f0 inet static address 192.168.1.5 netmask 255.255.224.0 gateway 192.168.1.1 mtu 9000 dns-nameservers 192.168.1.1 auto enp12s0f1 iface enp12s0f1 inet manual auto br1 iface br1 inet dhcp address 192.168.3.1 netmask 255.255.255.0 gateway 192.168.1.1 bridge_ports enp12s0f1 bridge_fd 0 bridge_stp on # vorhandene Regeln und Ketten zuerst löschen / Reset Traffic-Control # Restart-Funktionalität up /sbin/iptables -F up /sbin/iptables -X up /sbin/iptables -t nat -F # Forwarding für alle verwendeten Schnittstellen im lokalen Netz aktivieren up /sbin/iptables -A FORWARD -o enp12s0f0 -s 192.168.1.0/24 -m conntrack --ctstate NEW -j ACCEPT up /sbin/iptables -A FORWARD -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT up /sbin/iptables -t nat -A POSTROUTING -o enp12s0f0 -j MASQUERADE up /sbin/sysctl -w net.ipv4.ip_forward=1 # Port TCP 3389 an IP-Adresse 192.168.1.5 (Reverse-VNC) #up /sbin/iptables -t nat -A PREROUTING -i auto enp12s0f0 -p tcp --dport 3389 -j DNAT --to-destination 192.168.2.190 # up /sbin/iptables -A FORWARD -i enp12s0f0 -d 192.168.2.190 -p tcp --dport 3389 -j ACCEPT # Port TCP 58888 an IP-Adresse 192.168.1.5 (Reverse-VNC) #up /sbin/iptables -t nat -A PREROUTING -i enp12s0f0 -p tcp --dport 58888 -j DNAT --to-destination 192.168.2.190 # up /sbin/iptables -A FORWARD -i enp12s0f0 -d 192.168.2.190 -p tcp --dport 58888 -j ACCEPT |
Was mich erstaunt ist das der router von Salt nur die feste IP erkennt aber nicht die Von windows(192.168.1.14)
1 2 3 4 5 | martin@kserver:~$ ip route default via 192.168.1.1 dev enp12s0f0 onlink 192.168.0.0/19 dev enp12s0f0 proto kernel scope link src 192.168.1.5 192.168.1.0/24 dev br1 proto kernel scope link src 192.168.1.13 192.168.2.0/24 dev virbr0 proto kernel scope link src 192.168.2.1 |
Für Hilfestellung bin ich dankbar.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 | martin@kserver:~$ ip addr 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: enp3s0: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000 link/ether 2c:4d:54:53:3a:78 brd ff:ff:ff:ff:ff:ff 3: enp12s0f0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9000 qdisc mq state UP group default qlen 1000 link/ether 00:11:0a:67:d3:c8 brd ff:ff:ff:ff:ff:ff inet 192.168.1.5/19 brd 192.168.31.255 scope global enp12s0f0 valid_lft forever preferred_lft forever inet6 fe80::211:aff:fe67:d3c8/64 scope link valid_lft forever preferred_lft forever 4: enp12s0f1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master br1 state UP group default qlen 1000 link/ether 00:11:0a:67:d3:c9 brd ff:ff:ff:ff:ff:ff 5: virbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000 link/ether 52:54:00:40:64:f3 brd ff:ff:ff:ff:ff:ff inet 192.168.2.1/24 brd 192.168.2.255 scope global virbr0 valid_lft forever preferred_lft forever 6: virbr0-nic: <BROADCAST,MULTICAST> mtu 1500 qdisc fq_codel master virbr0 state DOWN group default qlen 1000 link/ether 52:54:00:40:64:f3 brd ff:ff:ff:ff:ff:ff 14: br1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000 link/ether 00:11:0a:67:d3:c9 brd ff:ff:ff:ff:ff:ff inet 192.168.1.13/24 brd 192.168.1.255 scope global br1 valid_lft forever preferred_lft forever inet6 fe80::211:aff:fe67:d3c9/64 scope link valid_lft forever preferred_lft forever 17: vnet0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master virbr0 state UNKNOWN group default qlen 1000 link/ether fe:d9:50:b4:86:77 brd ff:ff:ff:ff:ff:ff inet6 fe80::fcd9:50ff:feb4:8677/64 scope link valid_lft forever preferred_lft forever 18: vnet1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master br1 state UNKNOWN group default qlen 1000 link/ether fe:54:00:e5:4b:6d brd ff:ff:ff:ff:ff:ff inet6 fe80::fc54:ff:fee5:4b6d/64 scope link valid_lft forever preferred_lft forever |