van mij zijn ene aantal ip adressen van buiten af open gezet.
hiervoor moet ik in men bgp configuratie een aantal aanpassingen maken.
echter ben ik helaas niet voldoende tuis in de bgp configuratie van quaga, waardoor ik niet pressies snap wat ik aan moet passen in de bgp configuratie.
hopelijk kan iemand me hiermee helpen.
hieronder post ik als eerste de inhoud van men bgp configuratie.
ook zal ik de mail die ik heb ge had met informatie wat ik moet aan passen plaatsen.
hopelijk kan iemand me dan verder op weg helpen zodat mijn hamnet ip adressen ook goed bereikbaar zijn vanaf internet.
men bgp configuratie
Code: Selecteer alles
! -*- bgp -*-
!
! BGPd configuration file
!
hostname test
password xxxxx
enable password xxxxx
!
! logging
!
!log stdout
log file /var/log/quagga/bgpd.log
!
! debugging: be verbose (can be removed afterwards)
debug bgp events
!debug bgp filters
!debug bgp fsm
!debug bgp keepalives
debug bgp updates
!
router bgp 4220408304
bgp router-id 44.137.83.65
redistribute connected
redistribute kernel
no synchronization
no auto-summary
!
! interlinks
!
! router lopik
!
neighbor 44.137.61.33 remote-as 4220406100
neighbor 44.137.61.33 prefix-list OUTprefix out
neighbor 44.137.61.33 prefix-list INprefix in
neighbor 44.137.61.33 next-hop-self
neighbor 44.137.61.33 activate
!
!(end of router bgp 4220406100)
!
! prefix lists for route filtering
!
! output filter: only local subnets
!
ip prefix-list OUTprefix description Filter for OUTPUT
ip prefix-list OUTprefix permit 44.137.83.64/28
ip prefix-list OUTprefix deny 0.0.0.0/0 le 32
!
! input filter: only AMPRnet subnets
!
ip prefix-list INprefix description Filter for INPUT
ip prefix-list INprefix permit 44.0.0.0/8 le 32
ip prefix-list INprefix deny 0.0.0.0/0 le 32
Code: Selecteer alles
Als je "ip rule" intikt moet je zo iets krijgen:
ip rule
0: from all lookup local
44: from 44.137.83.64/28 lookup 44
44: from all to 44.0.0.0/9 lookup 44
44: from all to 44.128.0.0/10 lookup 44
32766: from all lookup main
32767: from all lookup default
[\code]
ip rule geeft bij mij nu als autput
[code]
ip rule
0: from all lookup local
32766: from all lookup main
32767: from all lookup default
Code: Selecteer alles
default gateway 0.0.0.0 UG 0 0 0 eth0
44.0.0.0 pd9enp.pi9noz.a 255.128.0.0 UG 20 0 0 gre9
44.128.0.0 pd9enp.pi9noz.a 255.192.0.0 UG 20 0 0 gre9
44.137.0.0 pd9enp.pi9noz.a 255.255.0.0 UG 20 0 0 gre9
44.137.61.32 0.0.0.0 255.255.255.252 U 0 0 0 gre9
44.137.83.64 0.0.0.0 255.255.255.240 U 0 0 0 tun0
172.16.0.0 172.17.0.1 255.255.0.0 UG 0 0 0 tun1
172.17.0.0 0.0.0.0 255.255.255.0 U 0 0 0 tun1
localnet 0.0.0.0 255.255.255.192 U 0 0 0 eth0
192.168.254.0 172.17.0.1 255.255.255.0 UG 0 0 0 tun1
Code: Selecteer alles
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 52:54:00:86:8c:e7 brd ff:ff:ff:ff:ff:ff
inet 172.81.61.156/26 brd 172.81.61.191 scope global eth0
valid_lft forever preferred_lft forever
inet6 2600:c05:3010:50:1fa::1/64 scope global
valid_lft forever preferred_lft forever
inet6 fe80::5054:ff:fe86:8ce7/64 scope link
valid_lft forever preferred_lft forever
3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 52:54:00:86:06:8b brd ff:ff:ff:ff:ff:ff
inet 192.168.3.81/32 brd 192.168.3.81 scope global eth1
valid_lft forever preferred_lft forever
inet6 fe80::5054:ff:fe86:68b/64 scope link
valid_lft forever preferred_lft forever
4: gre0@NONE: <NOARP> mtu 1476 qdisc noop state DOWN group default qlen 1
link/gre 0.0.0.0 brd 0.0.0.0
5: gretap0@NONE: <BROADCAST,MULTICAST> mtu 1462 qdisc noop state DOWN group default qlen 1000
link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
6: gre9@NONE: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1476 qdisc noqueue state UNKNOWN group default qlen 1
link/gre 172.81.61.156 peer 145.220.78.4
inet 44.137.61.34/30 brd 44.137.61.35 scope global gre9
valid_lft forever preferred_lft forever
inet6 fe80::200:5efe:ac51:3d9c/64 scope link
valid_lft forever preferred_lft forever
7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN group default qlen 100
link/none
inet 44.137.83.65/28 brd 44.137.83.79 scope global tun0
valid_lft forever preferred_lft forever
inet 44.137.83.78/28 scope global secondary tun0
valid_lft forever preferred_lft forever
inet6 fe80::7657:32f0:9626:4dd9/64 scope link flags 800
valid_lft forever preferred_lft forever
9: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN group default qlen 100
link/none
inet 172.17.0.3/24 brd 172.17.0.255 scope global tun1
valid_lft forever preferred_lft forever
inet6 fe80::fc73:d635:f068:22ea/64 scope link flags 800
valid_lft forever preferred_lft forever
root@dynu:/etc/quagga#
- 44.137.83.65
- 44.137.83.66
- 44.137.83.67
- 44.137.83.68
groeten: peter/pd9enp