🥇 Tsim los ntawm ZeroTier. Cov lus qhia siv tau los tsim cov network virtual. Part 1

Txuas ntxiv zaj dab neeg txog ZeroTier, los ntawm txoj kev xav tau piav qhia hauv kab lus "Ntse Ethernet Hloov rau Ntiaj Teb Ntiaj Teb", Kuv tsiv mus rau kev xyaum uas:

Cia peb tsim thiab teeb tsa tus tswj hwm ntiag tug network
Cia peb tsim lub network virtual
Cia peb teeb tsa thiab txuas cov nodes rau nws
Cia peb tshawb xyuas lub network txuas ntawm lawv
Wb thaiv kev nkag mus rau GUI ntawm lub network tswj los ntawm sab nraud

Network Controller

Raws li tau hais dhau los, txhawm rau tsim cov network virtual, tswj hwm lawv, nrog rau kev sib txuas ntawm cov nodes, tus neeg siv xav tau lub network tswj hwm, graphical interface (GUI) uas muaj nyob hauv ob hom:

ZeroTier GUI Options

Ib qho los ntawm tus tsim tawm ZeroTier, muaj nyob rau hauv pej xeem huab SaaS cov kev daws teeb meem nrog plaub qhov kev npaj ua npe, suav nrog dawb, tab sis txwv tsis pub muaj tus lej tswj hwm thiab qib kev txhawb nqa.
Qhov thib ob yog los ntawm tus tsim tawm ywj pheej, me ntsis yooj yim hauv kev ua haujlwm, tab sis muaj raws li kev qhib qhov kev daws teeb meem rau kev siv hauv tsev lossis hauv huab huab.

Hauv kuv qhov kev xyaum, kuv siv ob qho tib si thiab vim li ntawd, kuv thaum kawg tau txiav txim siab thib ob. Yog vim li cas rau qhov no yog cov lus ceeb toom ntawm tus tsim tawm.

"Network controllers ua raws li cov ntaub ntawv pov thawj rau ZeroTier virtual networks. Cov ntaub ntawv uas muaj tus tswj cov yuam sij zais cia yuav tsum tau ua tib zoo saib xyuas thiab khaws cia ruaj ntseg. Lawv qhov kev cuam tshuam tso cai rau cov neeg tawm tsam tsis raug tso cai los tsim kev dag ntxias hauv lub network, thiab lawv qhov kev poob ua rau poob lub peev xwm los tswj thiab tswj lub network, ua rau nws siv tsis tau. "

→ Txuas rau cov ntaub ntawv

Thiab tseem, cov cim qhia ntawm koj tus kheej cybersecurity paranoia :)

Txawm tias Cheburnet tuaj, kuv tseem yuav tsum tau nkag mus rau kuv lub network tswj;
Tsuas yog kuv yuav tsum siv lub network tswj. Yog tias tsim nyog, muab kev nkag mus rau koj cov neeg sawv cev tso cai;
Nws yuav tsum muaj peev xwm txwv tsis pub nkag mus rau lub network tswj los ntawm sab nraud.

Hauv tsab xov xwm no, kuv tsis pom ntau lub ntsiab lus hauv tsev sib cais ntawm yuav ua li cas siv lub network tswj hwm thiab GUI rau nws ntawm qhov chaw ntawm lub cev lossis cov peev txheej virtual. Thiab tseem muaj 3 qhov laj thawj rau qhov no:

yuav muaj cov ntawv ntau dua li tau npaj tseg
txog qhov no lawm hais ntawm GUI tus tsim tawm GitHab
lub ntsiab lus ntawm tsab xov xwm yog hais txog lwm yam

Yog li ntawd, xaiv txoj kev ntawm qhov tsawg kawg nkaus tsis kam, kuv yuav siv nyob rau hauv zaj dab neeg no ib tug network controller nrog ib tug GUI raws li VDS, tsim los ntawm los ntawm template, ua siab zoo tsim los ntawm kuv cov npoj yaig los ntawm RuVDS.

Kev teeb tsa thawj zaug

Tom qab tsim ib tus neeg rau zaub mov los ntawm cov qauv teev tseg, tus neeg siv tau nkag mus rau Web-GUI maub los ntawm qhov browser los ntawm kev nkag mus rau https://: 3443

Los ntawm lub neej ntawd, tus neeg rau zaub mov twb muaj daim ntawv pov thawj TLS / SSL tus kheej tau tsim ua ntej. Qhov no txaus rau kuv, txij li kuv thaiv kev nkag mus rau nws los ntawm sab nraud. Rau cov neeg uas xav siv lwm hom ntawv pov thawj, muaj cov lus qhia installation ntawm GUI tus tsim tawm GitHab.

Thaum tus neeg siv nkag rau hauv thawj zaug ID nkag mus nrog default ID nkag mus thiab password - admin и lo lus zais:

Nws qhia kom hloov tus password rau lub neej ntawd mus rau ib qho kev cai

Kuv ua nws txawv me ntsis - Kuv tsis hloov tus password ntawm tus neeg siv uas twb muaj lawm, tab sis tsim ib qho tshiab - Tsim Cov Neeg.

Kuv teeb lub npe ntawm tus neeg siv tshiab - Username:
Kuv teeb tus password tshiab - Sau tus password tshiab:
Kuv lees paub tus password tshiab - Rov qab nkag password:

Cov cim koj sau yog cov ntaub ntawv nkag siab - ceev faj!

Checkbox kom paub meej tias tus password hloov ntawm tus ID nkag mus tom ntej - Hloov tus password rau tus ID nkag mus tom ntej: Kuv tsis ua koob tsheej.

Txhawm rau kom paub meej cov ntaub ntawv nkag, nias Teeb tus password:

Tom qab ntawd: Kuv rov nkag - logout / ID nkag mus, twb nyob rau hauv daim ntawv pov thawj ntawm tus neeg siv tshiab:

Tom ntej no, kuv mus rau cov neeg siv tab - Cov neeg siv thiab rho tawm tus neeg siv adminlos ntawm txhaj rau lub thoob khib nyiab icon nyob rau sab laug ntawm nws lub npe.

Nyob rau hauv lub neej yav tom ntej, koj tuaj yeem hloov tus neeg siv tus password los ntawm txhaj rau nws lub npe lossis ntawm tus password.

Tsim ib lub network virtual

Txhawm rau tsim lub network virtual, tus neeg siv yuav tsum mus rau lub tab Ntxiv network. Los ntawm taw tes cov neeg siv qhov no tuaj yeem ua tiav los ntawm nplooj ntawv Tsev - nplooj ntawv tseem ceeb ntawm Web-GUI, uas qhia txog ZeroTier chaw nyob ntawm tus tswj hwm lub network no thiab muaj qhov txuas mus rau nplooj ntawv rau cov npe ntawm cov network tsim los ntawm nws.

Ntawm nplooj ntawv Ntxiv network tus neeg siv muab lub npe rau lub network tshiab tsim.

Thaum siv cov ntaub ntawv nkag- Tsim Network tus neeg siv raug coj mus rau nplooj ntawv nrog cov npe ntawm cov network, uas muaj:

Network lub npe - lub npe ntawm lub network hauv daim ntawv txuas, thaum koj nyem rau ntawm nws koj tuaj yeem hloov nws
Network ID - Network ID nkag mus
nthuav dav - txuas mus rau nplooj ntawv nrog cov ncauj lus kom ntxaws network
teeb tsa yooj yim - txuas rau nplooj ntawv rau kev teeb tsa yooj yim
neeg - txuas mus rau nplooj ntawv tswj ntawm node

Rau kev teeb tsa ntxiv ua raws qhov txuas teeb tsa yooj yim. Ntawm nplooj ntawv uas qhib, tus neeg siv qhia txog ntau yam ntawm IPv4 chaw nyob rau lub network tau tsim. Qhov no tuaj yeem ua tiav los ntawm nias lub pob Tsim chaw nyob network los yog manually los ntawm kev nkag mus rau lub network network daim npog qhov ncauj nyob rau hauv qhov tsim nyog teb CIDR.

Thaum lees paub cov ntaub ntawv nkag tau tiav, koj yuav tsum rov qab mus rau nplooj ntawv nrog cov npe ntawm cov tes hauj lwm siv lub khawm Rov qab. Lub sijhawm no, kev teeb tsa lub network yooj yim tuaj yeem suav tias ua tiav.

Txuas lub network nodes

Ua ntej, ZeroTier One cov kev pabcuam yuav tsum tau muab tso rau ntawm qhov node uas tus neeg siv xav txuas rau lub network.
ZeroTier One yog dab tsi?ZeroTier Ib yog ib qho kev pabcuam uas khiav ntawm lub laptops, desktops, servers, virtual machines thiab ntim khoom uas muab kev sib txuas rau lub network virtual los ntawm qhov chaw nres nkoj virtual, zoo ib yam li tus neeg siv VPN.

Thaum cov kev pabcuam raug teeb tsa thiab pib, koj tuaj yeem txuas mus rau virtual networks siv lawv qhov chaw nyob 16 tus lej. Txhua lub network zoo li qhov chaw nres nkoj virtual ntawm lub kaw lus, uas coj zoo ib yam li qhov chaw nres nkoj Ethernet.
Txuas mus rau kev faib khoom, nrog rau cov lus txib installation, tuaj yeem pom ntawm nplooj ntawv tsim khoom.

Koj tuaj yeem tswj hwm qhov kev pabcuam tau teeb tsa los ntawm cov kab hais kom ua lub davhlau ya nyob twg (CLI) nrog cov cai tswj hwm / hauv paus. Hauv Windows / macOS kuj tseem siv graphical interface. Hauv Android / iOS tsuas yog siv GUI.
Txheeb xyuas qhov ua tiav ntawm qhov kev pab cuam installation:
CLI:
```
zerotier-cli status
```
Tshwm sim:

200 info ebf416fac1 1.4.6 ONLINE
GUI:

Qhov tseeb tias daim ntawv thov tab tom khiav thiab muaj nyob hauv nws ntawm kab nrog Node ID nrog rau qhov chaw nyob.
Txuas lub node rau lub network:
CLI:
```
zerotier-cli join <Network ID>
```
Tshwm sim:

200 join OK

GUI:

Qhov rai: right-click ntawm lub icon ZeroTier Ib hauv qhov system tais thiab xaiv cov khoom - Koom nrog Network.

Mac OS: Tua tawm daim ntawv thov ZeroTier Ib hauv cov ntawv qhia zaub mov bar, yog tias tsis tau pib. Nyem rau ntawm ⏁ icon thiab xaiv Koom nrog Network.

Android/iOS: + (ntxiv cov duab) hauv app

Hauv daim teb uas tshwm sim, nkag mus rau lub network tswj tau teev tseg hauv GUI Network ID, thiab nias Koom / Ntxiv Network.
Muab tus IP chaw nyob rau tus tswv tsev
Tam sim no peb rov qab mus rau lub network tswj thiab ntawm nplooj ntawv nrog cov npe ntawm cov network ua raws li qhov txuas neeg. Yog tias koj pom ib daim duab zoo ib yam li qhov no ntawm lub vijtsam, nws txhais tau tias koj tus tswj hwm lub network tau txais kev thov kom paub meej tias kev sib txuas rau lub network los ntawm qhov txuas txuas.

Ntawm nplooj ntawv no peb tawm txhua yam raws li nws yog tam sim no thiab ua raws li qhov txuas IP txoj haujlwm mus rau nplooj ntawv rau muab tus IP chaw nyob rau ntawm node:

Tom qab muab qhov chaw nyob, nyem lub pob Rov qab rov qab mus rau nplooj ntawv ntawm cov npe ntawm cov txuas txuas thiab teeb tsa lub npe - Lub npe tswv cuab thiab kos lub checkbox kom tso cai rau ntawm lub network - Tso cai. Los ntawm txoj kev, lub checkbox no yog ib qho yooj yim heev rau disconnecting / txuas los ntawm tus tswv network yav tom ntej.

Txuag cov kev hloov pauv siv lub pob refresh.
Txheeb xyuas qhov node txoj kev sib txuas rau lub network:
Txhawm rau txheeb xyuas cov xwm txheej sib txuas ntawm node nws tus kheej, khiav:
CLI:
```
zerotier-cli listnetworks
```
Tshwm sim:

200 listnetworks <nwid> <name> <mac> <status> <type> <dev> <ZT assigned ips> 200 listnetworks 2da06088d9f863be My_1st_VLAN be:88:0c:cf:72:a1 OK PRIVATE ethernet_32774 10.10.10.2/24
GUI:

Network xwm txheej yuav tsum OK

Txhawm rau txuas cov nodes ntxiv, rov ua haujlwm 1-5 rau txhua tus ntawm lawv.

Tshawb xyuas kev sib txuas network ntawm nodes

Kuv ua qhov no los ntawm kev khiav cov lus txib ping ntawm lub cuab yeej txuas nrog lub network uas kuv tab tom tswj tam sim no.

Nyob rau hauv lub screenshot ntawm Web-GUI maub los koj tuaj yeem pom peb qhov txuas nrog lub network:

ZTNCUI - 10.10.10.1 - kuv lub network tswj nrog GUI - VDS hauv ib qho ntawm RuVDS DCs. Rau kev ua haujlwm ib txwm tsis tas yuav ntxiv nws rau lub network, tab sis kuv tau ua qhov no vim kuv xav thaiv kev nkag mus rau lub vev xaib interface los ntawm sab nraud. Xav paub ntxiv txog qhov no tom qab.
MyComp - 10.10.10.2 - Kuv lub computer ua haujlwm yog lub cev PC
Thaub qab - 10.10.10.3 - VDS hauv lwm DC.

Yog li ntawd, los ntawm kuv lub computer ua haujlwm kuv tshawb xyuas qhov muaj ntawm lwm cov nodes nrog cov lus txib:

ping 10.10.10.1

Pinging 10.10.10.1 with 32 bytes of data: Reply from 10.10.10.1: bytes=32 time=14ms TTL=64 Reply from 10.10.10.1: bytes=32 time=4ms TTL=64 Reply from 10.10.10.1: bytes=32 time=7ms TTL=64 Reply from 10.10.10.1: bytes=32 time=2ms TTL=64

Ping statistics for 10.10.10.1: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 2ms, Maximum = 14ms, Average = 6ms

ping 10.10.10.3

Pinging 10.10.10.3 with 32 bytes of data: Reply from 10.10.10.3: bytes=32 time=15ms TTL=64 Reply from 10.10.10.3: bytes=32 time=4ms TTL=64 Reply from 10.10.10.3: bytes=32 time=8ms TTL=64 Reply from 10.10.10.3: bytes=32 time=4ms TTL=64

Ping statistics for 10.10.10.3: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 4ms, Maximum = 15ms, Average = 7ms

Tus neeg siv muaj cai siv lwm yam cuab yeej los kuaj xyuas qhov muaj ntawm cov nodes ntawm lub network, ob qho tib si tsim rau hauv OS thiab xws li NMAP, Advanced IP Scanner, thiab lwm yam.

Peb zais kev nkag mus rau lub network tswj GUI los ntawm sab nraud.

Feem ntau, kuv tuaj yeem txo qhov kev pheej hmoo ntawm kev tsis tso cai nkag mus rau VDS uas kuv tus tswj hwm lub network tau siv los ntawm firewall hauv kuv tus account RuVDS. Lub ntsiab lus no muaj feem ntau dua rau ib tsab xov xwm cais. Yog li, ntawm no kuv yuav qhia yuav ua li cas muab kev nkag mus rau GUI maub los tsuas yog los ntawm lub network uas kuv tau tsim hauv kab lus no.

Txhawm rau ua qhov no, koj yuav tsum txuas ntawm SSH rau VDS uas tus tswj hwm nyob thiab qhib cov ntaub ntawv teeb tsa siv cov lus txib:

nano /opt/key-networks/ztncui/.env

Hauv cov ntaub ntawv qhib, tom qab kab "HTTPS_PORT=3443" uas muaj qhov chaw nyob ntawm qhov chaw nres nkoj uas GUI qhib, koj yuav tsum tau ntxiv ib kab ntxiv nrog qhov chaw nyob uas GUI yuav qhib - hauv kuv rooj plaub nws yog HTTPS_HOST=10.10.10.1 .XNUMX.

Tom ntej no kuv yuav khaws cov ntaub ntawv

Сtrl+C Y Enter

thiab khiav qhov hais kom ua:

systemctl restart ztncui

Thiab qhov ntawd yog nws, tam sim no GUI ntawm kuv tus tswj hwm network tsuas yog muaj rau lub network nodes 10.10.10.0.24.

Es tsis txhob ib tug xaus

Qhov no yog qhov uas kuv xav ua kom tiav thawj feem ntawm cov lus qhia siv tau los tsim cov tes hauj lwm virtual raws li ZeroTier. Kuv tos ntsoov rau koj cov lus.

Nyob rau lub sijhawm no, kom dhau lub sijhawm kom txog rau thaum tshaj tawm ntawm ntu tom ntej, uas kuv yuav qhia koj yuav ua li cas sib txuas lub network virtual nrog lub cev, yuav ua li cas npaj "txoj kev tub rog" hom thiab lwm yam, kuv xav kom koj sim teeb tsa koj tus kheej virtual network siv tus tswj hwm ntiag tug nrog GUI raws li VDS los ntawm kev ua lag luam ntawm qhov chaw RUVDS. Ntxiv mus, txhua tus neeg siv khoom tshiab muaj lub sijhawm sim pub dawb ntawm 3 hnub!

PS Yog lawm! Kuv yuav luag tsis nco qab lawm! Koj tuaj yeem tshem tawm ib qho ntawm lub network siv cov lus txib hauv CLI ntawm node.

zerotier-cli leave <Network ID>

200 leave OK

los yog Rho tawm cov lus txib hauv tus neeg siv khoom GUI ntawm node.

-> Taw qhia. Theoretical ib feem. Ntse Ethernet Hloov rau Ntiaj Teb Ntiaj Teb
-> Cov lus qhia siv tau los tsim cov network virtual. Ntu 1
-> Cov lus qhia siv tau los tsim cov network virtual. Ntu 2

Tau qhov twg los: www.hab.com

Tsim los ntawm ZeroTier. Cov lus qhia siv tau los tsim cov network virtual. Ntu 1