ããã«ã¡ã¯ãã¿ããªã ãã®èšäºã¯ãããŒã¯å
ã«å€æ°ã® Mikrotik ããã€ã¹ããããåããã€ã¹ã«å¥ã
ã«æ¥ç¶ããªãããã«æ倧éã®çµ±åãè¡ããã人ã察象ãšããŠããŸãã ãã®èšäºã§ã¯ãæ®å¿µãªãã人çèŠå ã«ããæŠéç¶æ
ã«è³ããªãã£ããããžã§ã¯ãã«ã€ããŠèª¬æããŸãã ã€ãŸãã200 å°ãè¶
ããã«ãŒã¿ãŒãè¿
éãªã»ããã¢ãããšã¹ã¿ããã®ãã¬ãŒãã³ã°ãå°åããšã®çµ±åããããã¯ãŒã¯ãšç¹å®ã®ãã¹ãã®ãã£ã«ã¿ãªã³ã°ããã¹ãŠã®ããã€ã¹ã«ã«ãŒã«ãç°¡åã«è¿œå ããæ©èœããã®ã³ã°ãšã¢ã¯ã»ã¹å¶åŸ¡ã§ãã
以äžã«èª¬æããå
容ã¯ãæ¢è£œã®ã±ãŒã¹ãè£
ããã®ã§ã¯ãããŸãããããããã¯ãŒã¯ãèšç»ãããšã©ãŒãæå°éã«æããéã«åœ¹ç«ã€ããšãé¡ã£ãŠããŸãã ãããããããã€ãã®ç¹ã決å®ãããªãã«ãšã£ãŠå®å
šã«æ£ãããªããšæããããããããŸããããã®å Žåã¯ãã³ã¡ã³ãã«æžã蟌ãã§ãã ããã ãã®å Žåã®æ¹å€ã¯ãäžè¬çãªè²¯éç®±ã§ã®çµéšã«ãªããŸãã ãããã£ãŠãèªè
ã®çãããã³ã¡ã³ããèŠãŠãã ãããããããäœè
ãé倧ãªééããç¯ããå¯èœæ§ããããŸããã³ãã¥ããã£ãå©ããŠãããã§ãããã
ã«ãŒã¿ãŒã®æ°ã¯ 200 ïœ 300 ã§ãã€ã³ã¿ãŒãããæ¥ç¶ã®å質ãç°ãªãããŸããŸãªéœåžã«åæ£ããŠããŸãã ãã¹ãŠãçŸãããããã¹ãŠãã©ã®ããã«æ©èœããããã¢ã¯ã»ã¹ããããæ¹æ³ã§ããŒã«ã«ç®¡çè ã«èª¬æããå¿ èŠããããŸãã
ããã§ã¯ããã¹ãŠã®ãããžã§ã¯ãã¯ã©ãããå§ãŸãã®ã§ãããã? ãã¡ããã TK.
- 顧客ã®èŠä»¶ã«å¿ããŠããã¹ãŠã®æ¯åºã®ãããã¯ãŒã¯ ãã©ã³ãçµç¹ãããããã¯ãŒã¯ãã»ã°ã¡ã³ãåããŸã (ããã€ã¹ã®æ°ã«å¿ããŠãæ¯åºå ã® 3 ïœ 20 ã®ãããã¯ãŒã¯)ã
- åãã©ã³ãã«ããã€ã¹ãã»ããã¢ããããŸãã ããŸããŸãªåäœæ¡ä»¶ã§ãããã€ããŒã®å®éã®åž¯åå¹ ã確èªããŸãã
- ããã€ã¹ä¿è·ã®çµç¹åããã¯ã€ããªã¹ãå¶åŸ¡ãäžå®æéã®èªåãã©ãã¯ãªã¹ãç»é²ã«ããæ»æã®èªåæ€åºãå¶åŸ¡ã¢ã¯ã»ã¹ããµãŒãã¹åŠšå®³ã®ååã«äœ¿çšãããããŸããŸãªæè¡çæ段ã®äœ¿çšã®æå°éåã
- 顧客ã®èŠä»¶ã«å¿ãããããã¯ãŒã¯ ãã£ã«ã¿ãªã³ã°ã䜿çšããå®å šãª VPN æ¥ç¶ã®æ§æã åãã©ã³ãããã»ã³ã¿ãŒãžã®å°ãªããšã 3 ã€ã® VPN æ¥ç¶ã
- ãã€ã³ã 1ã2 ã«åºã¥ããŠããã©ãŒã«ã ãã¬ã©ã³ã㪠vpn ãæ§ç¯ããæé©ãªæ¹æ³ãéžæããŸãã è«è² æ¥è ã¯ãé©åãªçç±ãåããåçã«ãŒãã£ã³ã° ãã¯ãããžãŒãéžæã§ããŸãã
- 顧客ã䜿çšãããããã³ã«ãããŒãããã¹ããããã³ãã®ä»ã®ç¹å®ã®ãµãŒãã¹ã«ãããã©ãã£ãã¯ã®åªå é äœä»ãã®ç·šæã (VOIPãéèŠãªãµãŒãã¹ãæäŸãããã¹ã)
- ãã¯ãã«ã« ãµããŒã ã¹ã¿ããã®å¯Ÿå¿ã®ããã®ã«ãŒã¿ãŒ ã€ãã³ãã®ç£èŠãšãã°èšé²ã®çµç¹ã
ç§ãã¡ãç解ããŠããããã«ãå Žåã«ãã£ãŠã¯ãTOR ã¯èŠä»¶ããã³ã³ãã€ã«ãããŸãã ç§ã¯äž»ãªåé¡ç¹ãèããåŸããããã®èŠä»¶ãèªåã§çå®ããŸããã åæ°ã¯ãä»ã®èª°ãããããã®ç¹ã®å®è£ ãåŒãåããå¯èœæ§ãããããšãèªããã
ãããã®èŠä»¶ãæºããããã«äœ¿çšãããããŒã«ã¯æ¬¡ã®ãšããã§ãã
- ELK ã¹ã¿ã㯠(ãã°ããããŠãlogstash ã®ä»£ããã« fluentd ã䜿çšãããããšãç解ãããŸãã)ã
- ã¢ã³ã·ãã«ã 管çãšã¢ã¯ã»ã¹ã®å ±æã容æã«ããããã«ãAWX ã䜿çšããŸãã
- ã®ããã©ãã ããã§èª¬æããå¿ èŠã¯ãããŸããã æ§æã®ããŒãžã§ã³ç®¡çããªãå Žåã
- ãã¯ãŒã·ã§ã«ã æ§æã®åæçæã«ã¯ç°¡åãªã¹ã¯ãªããããããŸãã
- Doku wikiãããã¥ã¡ã³ããšããã¥ã¢ã«ã®äœæçšã ãã®å Žåãhabr.com ã䜿çšããŸãã
- ç£èŠã¯zabbixãéããŠè¡ãããŸãã å šäœãç解ããããã®æ¥ç¶å³ã衚瀺ãããŸãã
EFKã»ããã¢ããã®ãã€ã³ã
æåã®ç¹ã«ã€ããŠã¯ãã€ã³ããã¯ã¹ãæ§ç¯ãããç念ã«ã€ããŠã®ã¿èª¬æããŸãã 沢山ãããŸã
mikrotik ãå®è¡ããŠããããã€ã¹ã®ã»ããã¢ãããšãã°ã®åä¿¡ã«é¢ããåªããèšäºã
ããã€ãã®ç¹ã«ã€ããŠèª¬æããŸãã
1. ãã®ã¹ããŒã ã«ããã°ãããŸããŸãªå Žæããã³ããŸããŸãªããŒããããã°ãåä¿¡ããããšãæ€èšãã䟡å€ããããŸãã ãããè¡ãã«ã¯ããã° ã¢ã°ãªã²ãŒã¿ã䜿çšããŸãã ãŸããã¢ã¯ã»ã¹ãå ±æã§ããæ©èœãåãããã¹ãŠã®ã«ãŒã¿ãŒã«ãŠãããŒãµã« ã°ã©ãã£ãã¯ã¹ãäœæããããšèããŠããŸãã 次ã«ã次ã®ããã«ã€ã³ããã¯ã¹ãæ§ç¯ããŸãã
ããã¯fluentdã䜿çšããæ§æã®äžéšã§ã 匟æ§æ€çŽ¢
logstash_format true
ã€ã³ããã¯ã¹å mikrotiklogs.north
logstash_prefix mikrotiklogs.north
ãã©ãã·ã¥éé 10 ç§
ãã¹ã
ããŒã9200
ãããã£ãŠãèšç»ã«åŸã£ãŠã«ãŒã¿ãŒãšã»ã°ã¡ã³ããçµã¿åãããããšãã§ããŸã (mikrotiklogs.westãmikrotiklogs.southãmikrotiklogs.east)ã ãªããããªã«é£ããããã®ã§ããããïŒ ããã€ã¹ã¯ 200 å°ä»¥äžã«ãªããšèããŠããŸãã ãã¹ãŠã«åŸããªãã§ãã ããã elasticsearch ã®ããŒãžã§ã³ 6.8 以éãã»ãã¥ãªãã£èšå®ã (ã©ã€ã»ã³ã¹ã賌å
¥ããã«) å©çšã§ããããããã¯ãã«ã« ãµããŒãã®åŸæ¥å¡ãŸãã¯ããŒã«ã« ã·ã¹ãã 管çè
ã®éã§è¡šç€ºæš©éãåæ£ã§ããŸãã
è¡šãã°ã©ã - ããã§åæããå¿
èŠãããã®ã¯ãåããã®ã䜿çšããããèªåã«ãšã£ãŠéœåãè¯ãã®ã§å
šå¡ãããã䜿çšãããã®ã©ã¡ããã§ãã
2. ãã°ãèšé²ããããšã«ãã£ãŠã ãã¡ã€ã¢ãŠã©ãŒã« ã«ãŒã«ã§ãã°ãæå¹ã«ãããšãååã«ã¹ããŒã¹ãå«ãŸããªããªããŸãã fluentd ã®ç°¡åãªèšå®ã䜿çšããŠãããŒã¿ããã£ã«ã¿ãªã³ã°ãã䟿å©ãªããã«ãäœæã§ããããšãããããŸãã äžã®åçã¯æã家ã®ã«ãŒã¿ãŒã§ãã
3. å æã¹ããŒã¹ãšãã°ã«å¿ããŠã å¹³åãããšã1000 æéããã 2 ã¡ãã»ãŒãžã®å Žåããã°ã¯ 3 æ¥ããã 7.5 ïœ XNUMX MB ãæ¶è²»ããŸãããããã¯ããã»ã©å€ããããŸããã elasticsearch ããŒãžã§ã³ XNUMXã
ANSIBLE.AWX
幞ããªããšã«ãç§ãã¡ã¯ Routero çšã®æ¢è£œã®ã¢ãžã¥ãŒã«ãæã£ãŠããŸãã
AWX ã«ã€ããŠææããŸãããã以äžã®ã³ãã³ãã¯æãçŽç²ãªåœ¢åŒã® ansible ã«é¢ãããã®ã«ãããŸãããansible ã䜿çšããããšã®ãã人ã«ãšã£ãŠã¯ãGUI ãä»ã㊠awx ã䜿çšããããšã«åé¡ã¯ãªããšæããŸãã
æ£çŽã«èšããšããã®åã« ssh ã䜿çšããä»ã®ã¬ã€ããèŠãŸããããå¿çæéããã®ä»ã®å€ãã®åé¡ã«ã€ããŠã¯ãããããç°ãªãåé¡ãæ±ããŠããŸããã ç¹°ãè¿ããŸãããæŠéã«ã¯è³ããŸããã§ãã ïããã®æ å ±ã¯ã20 å°ã®ã«ãŒã¿ãŒã®ã¹ã¿ã³ããè¶ ããªãå®éšãšããŠåãåã£ãŠãã ããã
蚌ææžãŸãã¯ã¢ã«ãŠã³ãã䜿çšããå¿ èŠããããŸãã ããã¯ããªãã決ããããšã§ãããç§ã¯èšŒææžãæ¯æããŸãã æš©å©ã«é¢ãã埮åŠãªç¹ã ç§ã¯æžã蟌ã¿æš©éãäžããŸã - å°ãªããšããèšå®ã®ãªã»ãããã¯æ©èœããŸããã
蚌ææžã®çæãã³ããŒãã€ã³ããŒãã«ã¯åé¡ã¯ãªãã¯ãã§ãã
ã³ãã³ãã®ç°¡åãªãªã¹ãããœã³ã³äžã§
ssh-keygen -t RSAã質åã«çããããŒãä¿åããŸãã
mikrotik ã«ã³ããŒããŸãã
ãŠãŒã¶ãŒ ssh-keys import public-key-file=id_mtx.pub user=ansible
ãŸããã¢ã«ãŠã³ããäœæããããã«æš©éãå²ãåœãŠãå¿
èŠããããŸãã
蚌ææžãšã®æ¥ç¶ã確èªãã
ssh -p 49475 -i /keys/mtx [ã¡ãŒã«ä¿è·]
vi /etc/ansible/hosts ã«æžã蟌ã¿ãŸã
MT01 ansible_network_os=routeros ansible_ssh_port=49475 ansible_ssh_user= ansible
MT02 ansible_network_os=routeros ansible_ssh_port=49475 ansible_ssh_user= ansible
MT03 ansible_network_os=routeros ansible_ssh_port=49475 ansible_ssh_user= ansible
MT04 ansible_network_os=routeros ansible_ssh_port=49475 ansible_ssh_user= ansible
ãã¬ã€ããã¯ã®äŸ: åå: add_work_sites
ãã¹ã:testmt
ã·ãªã¢ã«: 1
æ¥ç¶:network_cli
ãªã¢ãŒããŠãŒã¶ãŒ: mikrotik.west
äºå®ã®åé: ã¯ã
ã¿ã¹ã¯ïŒ
åå: Work_sites ãè¿œå
ã«ãŒããã¹_ã³ãã³ã:
- /ip ãã¡ã€ã¢ãŠã©ãŒã« ã¢ãã¬ã¹ ãªã¹ãã®è¿œå address=gov.ru list=work_sites comment=Ticket665436_Ochen_nado
- /ip ãã¡ã€ã¢ãŠã©ãŒã« ã¢ãã¬ã¹ ãªã¹ãã®è¿œå address=habr.com list=work_sites comment=for_habr
äžèšã®æ§æãããããããã«ãç¬èªã® Playbook ãã³ã³ãã€ã«ããã®ã¯ç°¡åã§ãã cli mikrotikããã¹ã¿ãŒããã°ååã§ãã ãã¹ãŠã®ã«ãŒã¿ãŒäžã®ç¹å®ã®ããŒã¿ãå«ãã¢ãã¬ã¹ãªã¹ããåé€ããå¿ èŠãããç¶æ³ãæ³åããŠãã ããã
èŠã€ããŠåé€ãã/ip ãã¡ã€ã¢ãŠã©ãŒã« ã¢ãã¬ã¹ ãªã¹ãã®åé€ [ãªã¹ã = "gov.ru" ãæ€çŽ¢]
ããã§ã¯ããã¡ã€ã¢ãŠã©ãŒã«ã®ãªã¹ãå šäœãæå³çã«å«ããŸããã§ããã ããã¯ãããžã§ã¯ãããšã«åå¥ã«ãªããŸãã ãã ããäžã€ã ã確å®ã«èšããã®ã¯ãã¢ãã¬ã¹ãªã¹ãã®ã¿ã䜿çšãããšããããšã§ãã
GITLAB ã«ãããšããã¹ãŠãæããã§ãã ãã®ç¬éã«ãã ããã€ããã¯ãããŸããã åã ã®ã¿ã¹ã¯ããã³ãã¬ãŒãããã³ãã©ãŒã«é¢ããŠã¯ããã¹ãŠãçŸããã§ãã
PowerShell
3ã€ã®ãã¡ã€ã«ã«ãªããŸãã ãªããã¯ãŒã·ã§ã«ãªã®ãïŒ æ§æãçæããããã®ããŒã«ã¯ãæ £ããŠãã人ã§ããã°èª°ã§ãéžæã§ããŸãã ãã®å Žåã誰ããèªåã® PC ã« Windows ãæã£ãŠããã®ã«ãPowerShell ã®æ¹ã䟿å©ã§ããã®ã«ããªã bash ã§å®è¡ããã®ã§ããããã 誰ãããå¿«é©ã§ããã
ã¹ã¯ãªããèªäœ (ã·ã³ãã«ã§ãããããã):[cmdletBinding()] Param(
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$EXTERNALIPADDRESS,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$EXTERNALIPROUTE,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$BWorknets,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$CWorknets,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$BVoipNets,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$CVoipNets,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$CClientss,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$BVPNWORKs,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$CVPNWORKs,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$BVPNCLIENTS,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$cVPNCLIENTS,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$NAMEROUTER,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$ServerCertificates,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$infile,
[ãã©ã¡ãŒã¿(å¿
é =$true)] [æåå]$outfile
)
ã³ã³ãã³ãã®ååŸ $infile | Foreach-Object {$_.Replace("EXTERNIP", $EXTERNALIPADDRESS)} |
Foreach-Object {$_.Replace("EXTROUTE", $EXTERNALIPROUTE)} |
Foreach-Object {$_.Replace("BWorknet", $BWorknets)} |
Foreach-Object {$_.Replace("CWorknet", $CWorknets)} |
Foreach-Object {$_.Replace("BVoipNet", $BVoipNets)} |
Foreach-Object {$_.Replace("CVoipNet", $CVoipNets)} |
Foreach-Object {$_.Replace("CClients", $CClientss)} |
Foreach-Object {$_.Replace("BVPNWORK", $BVPNWORKs)} |
Foreach-Object {$_.Replace("CVPNWORK", $CVPNWORKs)} |
Foreach-Object {$_.Replace("BVPNCLIENTS", $BVPNCLIENTS)} |
Foreach-Object {$_.Replace("CVPNCLIENTS", $cVPNCLIENTS)} |
Foreach-Object {$_.Replace("MYNAMERROUTER", $NAMEROUTER)} |
Foreach-Object {$_.Replace("ServerCertificate", $ServerCertificates)} | ã»ããã³ã³ãã³ã $outfile
ç³ãèš³ãããŸãããããã¹ãŠã®ã«ãŒã«ã説æããããšã¯ã§ããŸããã ããã¯çŸãããããŸããã ãã¹ã ãã©ã¯ãã£ã¹ã«åºã¥ããŠãèªåã§ã«ãŒã«ãäœæã§ããŸãã
ããšãã°ãç§ãåèã«ãããªã³ã¯ã®ãªã¹ãã¯æ¬¡ã®ãšããã§ãã
å€æ°ã®èŠå:次ã®ãããã¯ãŒã¯ãäŸãšããŠåãäžããŸãã
192.168.0.0/24 皌åãããã¯ãŒã¯
172.22.4.0/24 VOIP ãããã¯ãŒã¯
LAN ã¢ã¯ã»ã¹ã®ãªãã¯ã©ã€ã¢ã³ãçšã® 10.0.0.0/24 ãããã¯ãŒã¯
192.168.255.0/24 倧èŠæš¡æ¯åºåã VPN ãããã¯ãŒã¯
172.19.255.0/24 å°èŠæš¡åã VPN ãããã¯ãŒã¯
ãããã¯ãŒã¯ ã¢ãã¬ã¹ã¯ããããã ABCD ã® 4 ã€ã® 192.168.0.0 é²æ°ã§æ§æãããŸãã眮æã¯åãååã«åŸã£ãŠè¡ãããŸããèµ·åæã« B ãèŠæ±ãããå Žåããããã¯ãŒã¯ 24/0 ã®å Žåã¯æ°å€ 0 ãå
¥åããå¿
èŠããããC = XNUMX ã®å Žåã¯æ°å€ XNUMX ãå
¥åããå¿
èŠããããŸãã ã
$EXTERNALIPADDRESS - ãããã€ããŒããå²ãåœãŠãããã¢ãã¬ã¹ã
$EXTERNALIPROUTE - ãããã¯ãŒã¯ 0.0.0.0/0 ãžã®ããã©ã«ã ã«ãŒã
$BWorknets - åäœäžã®ãããã¯ãŒã¯ããã®äŸã§ã¯ 168 ã«ãªããŸãã
$CWorknets - è·å Žãããã¯ãŒã¯ããã®äŸã§ã¯ 0 ã«ãªããŸãã
$BVoipNets - ãã®äŸã® VOIP ãããã¯ãŒã¯ 22
$CVoipNets - ãã®äŸã® VOIP ãããã¯ãŒã¯ 4
$CClientss - ã¯ã©ã€ã¢ã³ãçšã®ãããã¯ãŒã¯ - ã€ã³ã¿ãŒããããžã®ã¢ã¯ã»ã¹ã®ã¿ãããã§ã¯ 0
$BVPNWORKs - 倧èŠæš¡ãªæ¯åºçšã® VPN ãããã¯ãŒã¯ããã®äŸã§ã¯ 20
$CVPNWORKs - 倧èŠæš¡ãã©ã³ãçšã® VPN ãããã¯ãŒã¯ããã®äŸã§ã¯ 255
$BVPNCLIENTS - å°èŠæš¡æ¯åºåãã® VPN ãããã¯ãŒã¯ã19 ãæå³ããŸã
$CVPNCLIENTS - å°èŠæš¡ãã©ã³ãåãã® VPN ãããã¯ãŒã¯ã255 ãæå³ããŸã
$NAMEROUTER - ã«ãŒã¿ãŒå
$ServerCertificate - æåã«ã€ã³ããŒããã蚌ææžã®åå
$infile - æ§æãèªã¿åããã¡ã€ã«ãžã®ãã¹ãæå®ããŸããããšãã°ãD:config.txt (åŒçšç¬Šãã¹ããŒã¹ãå«ãŸãªãè±èªã®ãã¹ã®æ¹ãé©åã§ã)
$outfile - ä¿åå
ã®ãã¹ãæå®ããŸã (äŸ: D:MT-test.txt)
æãããªçç±ãããäŸå ã®ã¢ãã¬ã¹ãæå³çã«å€æŽããŸããã
æ»æãšç°åžžãªåäœã®æ€åºã«é¢ããèŠç¹ãèŠéããŠããŸãããããã¯å¥ã®èšäºã«ãã䟡å€ããããŸãã ãã ãããã®ã«ããŽãªã§ã¯ãZabbix ããã®ç£èŠããŒã¿å€ãš elasticsearch ããèšç®ãããcurl ããŒã¿ã䜿çšã§ããããšãææãã䟡å€ããããŸãã
泚ç®ãã¹ããã€ã³ã:
- ãããã¯ãŒã¯ãã©ã³ã èªã¿ããã圢ã§æžããæ¹ãè¯ãã§ãã ãšã¯ã»ã«ã§ååã§ãã æ®å¿µãªããããããã¯ãŒã¯ããæ°ãããã©ã³ããç»å ŽããŸãããããã« /24 ããããŸãããšããååã«åŸã£ãŠã³ã³ãã€ã«ãããŠããã®ãããèŠãããŸãã ç¹å®ã®å Žæã§ã©ãã ãã®ããã€ã¹ãäºæ³ãããããããã«å¢å ãããã©ããã¯èª°ãç¥ããŸããã ããšãã°ãå°èŠæš¡ãªã¹ãã¢ããªãŒãã³ããŸããããããã§ã¯ããã€ã¹ã10以äžã§ããããšãæåã¯æããã§ããããªã/ 24ãå²ãåœãŠãã®ã§ããããïŒ éã«ã倧èŠæš¡ãªãã©ã³ãã®å Žåã¯ã/ 24 ãå²ãåœãŠãããããã€ã¹ã 500 å°ãããŸãããããã¯ãŒã¯ãè¿œå ããã ãã§æžã¿ãŸãããããã«ãã¹ãŠãæ€èšããå¿ èŠããããŸãã
- ãã£ã«ã¿ãªã³ã°ã«ãŒã«ã ãããžã§ã¯ãããããã¯ãŒã¯ã®åé¢ãšæ倧éã®ã»ã°ã¡ã³ããŒã·ã§ã³ãæ³å®ããŠããå Žåã ãã¹ã ãã©ã¯ãã£ã¹ã¯æéã®çµéãšãšãã«å€åããŸãã 以åã¯ãPC ãããã¯ãŒã¯ãšããªã³ã¿ãŒ ãããã¯ãŒã¯ãå ±æããŠããŸããããçŸåšã§ã¯ãããã®ãããã¯ãŒã¯ãå ±æããªãã®ãããæ®éã®ããšã§ãã åžžèçã«èããŠãå¿ èŠã®ãªããµãããããå€æ°äœæãããããã¹ãŠã®ããã€ã¹ã XNUMX ã€ã®ãããã¯ãŒã¯ã«çµåãããããªãããšãéèŠã§ãã
- ãã¹ãŠã®ã«ãŒã¿ãŒã®ããŽãŒã«ãã³ãèšå®ã ãããã®ã èšç»ããããªãã äžåºŠã«ãã¹ãŠãäºæž¬ãããã¹ãŠã®èšå®ãåäžã§ããããšã確èªããããšã¯äŸ¡å€ããããŸããã¢ãã¬ã¹ãªã¹ããš IP ã¢ãã¬ã¹ãç°ãªãã ãã§ãã åé¡ãçºçããå Žåããããã°ã«ãããââæéãççž®ãããŸãã
- çµç¹çãªåŽé¢ã¯æè¡çãªåŽé¢ãšåæ§ã«éèŠã§ãã å€ãã®å Žåãæ ãè ã®åŸæ¥å¡ã¯ãæ¢è£œã®æ§æãã¹ã¯ãªããã䜿çšããã«ããããã®æšå¥šäºé ã«ãæåã§ãåŸããããæçµçã«ã¯åé¡ããŒãããçºçããŸãã
åçã«ãŒãã£ã³ã°ã«ããã ãŸãŒãã³ã°ãåãã OSPF ã䜿çšãããŸããã ããããããã¯ãã¹ããã³ãã§ãããæŠéç¶æ ã§ã¯ããã®ãããªãã®ãã»ããã¢ããããæ¹ãèå³æ·±ãã§ãã
ç§ãã«ãŒã¿ãŒã®èšå®ãæçš¿ããªãã£ãããšã«è ¹ãç«ãŠã人ãããªãã£ãããšãé¡ã£ãŠããŸãã ãªã³ã¯ã ãã§ååã ãšæããŸãããããã¯èŠä»¶æ¬¡ç¬¬ã§ãã ãããŠãã¡ãããã¹ããããã«å€ãã®ãã¹ããå¿ èŠã§ãã
æ°å¹Žã«çãããããããã®ãããžã§ã¯ããå®çŸã§ããããšãé¡ã£ãŠããŸãã ã¢ã¯ã»ã¹æš©ãããªããšãšãã«ãããŸãããã«!!!
åºæïŒ habr.com