Projet

Général

Profil

Historique

Wiki » Divers »

Myrys » Historique » Version 116

« Précédent - Version 116/143 (diff) - Suivant » - Version actuelle
Thierry Boudet, 10/05/2015 18:16
lan myrys : 10.20.0.22 réservée thsf 2015

Services

Liens

PC Services de Myrys

Infos/Config PC

91.224.149.192/24
2a01:6600:8081:c000::/56
fe80::81:c0

Carte mere MSI MS-7756 = H77MA-G43 http://fr.msi.com/product/mb/H77MA-G43.html
Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz 2C/4T http://ark.intel.com/products/65693/Intel-Core-i3-3220-Processor-(3M-Cache-3_30-GHz)
2x2 = 4 GB RAM
HDD 1.5TBx2 en RAID1+LVM

Soft installé dessus:
  • Bmon pour superviser la bande passante
Idées de softs à installer dessus :
  • bluemind pour une gestion de mail, calendrier/planning, contacts
  • owncloud pour faire un serveur de fichiers avec synchro depuis android/linux/windows

Config VLAN

Avant

auto lo
iface lo inet loopback

auto eth0

auto eth0.3131
iface eth0.3131 inet static
    address 91.224.149.192
    netmask 255.255.255.0
    gateway 91.224.149.254
    vlan_raw_device eth0

auto eth0.20
iface eth0.20 inet static
    address 10.20.0.29
    netmask 255.255.255.0
    vlan_raw_device eth0

apres

auto eth0

auto eth0.3131
iface eth0.3131 inet manual
        vlan_raw_device eth0

auto br3131
iface br3131 inet static
        bridge_ports eth0.3131
        address 91.224.149.192
        netmask 255.255.255.0
        gateway 91.224.149.254

auto eth0.20
iface eth0.20 inet manual
        vlan_raw_device eth0

auto br20
iface br20 inet static
        bridge_ports eth0.20
        address 10.20.0.29
        netmask 255.255.224.0

reload network
$ screen
$ ip link del eth0.3131 ; ip link del eth0.20 ; ip link set eth0 down ; service networking restart ;

Configuration dnsmasq

dans /etc/dnsmasq.d/myrys.conf:

interface=br20
enable-ra
dhcp-range=10.20.0.40,10.20.15.199,255.255.224.0,3600
dhcp-range=2a01:6600:8081:c0c0::2,2a01:6600:8081:c0c0:FFFF:FFFF:FFFF:FFFF,ra-only,64,3600
dhcp-option=option6:dns-server,[2a01:6600:8081:c0c0::1]

Note: il faut le dnsmasq de wheezy pour que enable-ra soit reconnu

dnsmasq_2.62-3+deb7u1_all.deb                                                                                                                                                                           100%   16KB  16.0KB/s   00:00    
dnsmasq-base_2.62-3+deb7u1_amd64.deb                                                                                                                                                                    100%  362KB 362.2KB/s   00:00    
dnsmasq-utils_2.62-3+deb7u1_amd64.deb

Puis forwarding et masquerade dans /etc/rc.local :

echo 1 > /proc/sys/net/ipv4/ip_forward
echo 1 > /proc/sys/net/ipv6/conf/all/forwarding
echo 1 > /proc/sys/net/ipv6/conf/default/forwarding
iptables -t nat -A POSTROUTING -s "10.20.0.0/24" ! -d "10.20.0.0/24" -j MASQUERADE

IPv6 manuel dans /etc/rc.local

ip -6 addr add fe80::81:c0/64 dev br3131
ip -6 addr add 2a01:6600:8081:c000::1/56 dev br3131
ip -6 route add default via fe80::31 dev br3131

ip addr add 10.20.0.1/24 dev br20
ip -6 addr add 2a01:6600:8081:c0c0::2/64 dev br20

Picostation

MAC               Lieu                 IP 10.20.0.x IP 169.254 Channel Note
                                       10.20.0.1                       PC chaussette
                                       10.20.0.2                       TODO switch
00:27:22:04:12:48 salle 3 vidéo        10.20.0.3    18.72      1       Pico2 APSalle3 PoE dans container tetalab
00:27:22:05:12:4B bureau               10.20.0.4    18.75      6       Pico2 APBureau PoE au bureau
00:27:22:05:12:E3 salle 1 théâtre      10.20.0.5    18.227     6       Pico2 APSalle1 PoE marqué salle AG
00:27:22:05:12:7F tetalab              10.20.0.6    18.127     11      Pico2 APTetalab Prise électrique derrière le container avec du jeu / reboot fréquent
                                       10.20.0.7
00:27:22:05:13:29 TODO                 10.20.0.8    19.41      11      Pico2 APTODO recup 20140831 / KO disparu 20140416 ? AP6 PoE a coté CISCO / reboot fréquent
                                       10.20.0.9
00:27:22:41:D0:58 regie                10.20.0.10   208.88     1       Pico2 APRegie PoE marqué salle AG
A0:F3:C1:93:B0:61 TLS00                10.20.0.11              6       TPLink 740N TLS00 SSID tetaneutral.net
e8:94:f6:3f:40:2e Edition              10.20.0.12                      TPLink 4300 APEdition dual band
                                       10.20.0.13
10:fe:ed:82:99:f3 salle AG             10.20.0.14              11      TPLink 740N APAG salle AG cable marqué baie freebox
                                       10.20.0.15
                                       10.20.0.16
                                       10.20.0.17
                                       10.20.0.18
                                       10.20.0.19
Old:

            83:99 bureau sophie WRT54G 10.20.0.9    ??.??              KO offline / WRT54G a ne pas utiliser mauvaise configuration non compatible avec ubnt
00:27:22:05:13:16 local atelier Sophie 10.20.0.7    19.22      1       KO AP5 Switch de distribution pour .3 .6 et .7 disjoncteur a gauche sur le central  / reboot fréquent

10.20.0.1 pcmyrys (was: CISCO 3725)
10.20.0.2 unused was: CISCO 2900XL
10.20.0.3-19 Wifi
10.20.0.20 reserved guerby
10.20.0.21 tth Sun Blade IP1
10.20.0.22 tth machine multi-fonction THSF 2015 - FatalError et tTh
10.20.0.23 tth machine de stream audio pour THSF
10.20.0.24 tth raspberry pi IP4
10.20.0.28 pc VM sur chaussette
10.20.0.29 pcmyrys aka "chaussette"
10.20.0.30 nagios ttnn

dhcp-range=10.20.0.40,10.20.20.199
dhcp-range=2a01:6600:8081:c0c0::2,2a01:6600:8081:c0c0:FFFF:FFFF:FFFF:FFFF

AP1

10.20.0.3/24
10.20.0.1

00:27:22:04:12:48

AP2

10.20.0.4/24
10.20.0.1

00:27:22:04:12:4B

AP3

10.20.0.5/24
10.20.0.1

00:27:22:05:12:E3

AP4

10.20.0.6/24
10.20.0.1

00:27:22:04:12:7F

AP5

10.20.0.7/24
10.20.0.1

00:27:22:04:13:16

AP6

10.20.0.8/24
10.20.0.1

Linksys
? (192.168.123.1) at 00:16:b6:39:83:97 [ether] on wlan0
10.20.0.9 dev eth0.20 lladdr 00:16:b6:39:83:97 REACHABLE

Nmap scan report for 10.20.0.1
Host is up (0.0066s latency).
MAC Address: 00:11:21:8D:DA:F1 (Cisco Systems)
Nmap scan report for 10.20.0.2
Host is up (0.0072s latency).
MAC Address: 00:04:28:D1:0E:00 (Cisco Systems)
Nmap scan report for 10.20.0.3
Host is up (0.0068s latency).
MAC Address: 00:27:22:04:12:48 (Ubiquiti Networks)
Nmap scan report for 10.20.0.4
Host is up (0.0070s latency).
MAC Address: 00:27:22:04:12:4B (Ubiquiti Networks)
Nmap scan report for 10.20.0.5
Host is up (0.0073s latency).
MAC Address: 00:27:22:04:12:E3 (Ubiquiti Networks)
Nmap scan report for 10.20.0.6
Host is up (0.011s latency).
MAC Address: 00:27:22:04:12:7F (Ubiquiti Networks)
Nmap scan report for 10.20.0.7
Host is up (0.011s latency).
MAC Address: 00:27:22:04:13:16 (Ubiquiti Networks)
Nmap scan report for 10.20.0.8
Host 10.20.0.8 is up (0.0011s latency).
MAC Address: 00:27:22:04:13:29 (Ubiquiti Networks)
Nmap scan report for 10.20.0.9
Host 10.20.0.9 is up (0.00076s latency).
MAC Address: 00:16:B6:39:83:97 (Cisco-Linksys)

00:27:22:05:13:29
 00:27:22:04:13:29

APAG

Monitoring installation:

Sur l'AP:

$ opkg update
$ opkg install xinetd
$ opkg install bash

Sur h2:

scp /etc/xinetd.d/check_mk 10.20.0.14:/etc/xinetd.d/
scp /usr/bin/check_mk_agent 10.20.0.14:/usr/bin/

Sur l'AP:

$ vi /usr/bin/check_mk_agent
# Change sheban to #!/bin/sh
# line 67, remove the keywork "function" from the run_cached function
# remove the virtualbox check.
$ /etc/init.d/xinetd enable
$ /etc/init.d/xinetd start

InfraMyrys

Fibres