Kupitiliza nkhani ya ZeroTier, kuchokera pamalingaliro omwe afotokozedwa m'nkhaniyo "", ndikupita kukachita zomwe:
- Tiyeni tipange ndikusintha wowongolera wachinsinsi
- Tiyeni tipange netiweki yeniyeni
- Tiyeni tikonze ndikulumikiza ma node kwa izo
- Tiyeni tiwone kulumikizana kwa netiweki pakati pawo
- Tiyeni titseke kulowa kwa GUI ya wowongolera maukonde kuchokera kunja
Network Controller
Monga tanena kale, kuti apange maukonde enieni, kuwawongolera, komanso kulumikiza ma node, wogwiritsa ntchito amafunikira woyang'anira maukonde, mawonekedwe azithunzi (GUI) omwe amapezeka m'mitundu iwiri:
Zosankha za ZeroTier GUI
- Mmodzi wochokera kwa wopanga ZeroTier, wopezeka ngati njira ya SaaS yamtambo wapagulu yokhala ndi mapulani anayi olembetsa, kuphatikiza aulere, koma ochepera pazida zoyendetsedwa ndi mulingo wothandizira.
- Yachiwiri ndi yochokera kwa wopanga wodziyimira pawokha, wosavuta kugwira ntchito, koma imapezeka ngati njira yachinsinsi yotseguka kuti igwiritsidwe ntchito pamalopo kapena pazinthu zamtambo.
Muzochita zanga, ndinagwiritsa ntchito zonse ziwiri ndipo chifukwa chake, ndinakhazikika pa chachiwiri. Chifukwa chake chinali machenjezo a wopanga.
"Oyang'anira ma netiweki amakhala ngati oyang'anira ziphaso pamanetiweki a ZeroTier. Mafayilo omwe ali ndi makiyi achinsinsi owongolera amayenera kusungidwa mosamala ndikusungidwa mosamala. Kusagwirizana kwawo kumalola oukira osaloledwa kupanga masinthidwe achinyengo pamanetiweki, ndipo kutayika kwawo kumabweretsa kutaya mphamvu zowongolera ndi kuyang'anira maukonde, ndikupangitsa kuti ikhale yosagwiritsidwa ntchito. "
→
Komanso, zizindikiro zanu za cybersecurity paranoia :)
- Ngakhale Cheburnet ibwera, ndiyenera kukhala ndi mwayi wowongolera maukonde anga;
- Ine ndekha ndiyenera kugwiritsa ntchito network controller. Ngati kuli kofunikira, kupereka mwayi kwa oyimira anu ovomerezeka;
- Ziyenera kukhala zotheka kuletsa kulowa kwa wowongolera maukonde kuchokera kunja.
M'nkhaniyi, sindikuwona mfundo yochuluka yokhala padera momwe mungatumizire woyang'anira netiweki ndi GUI pazakuthupi kapena zenizeni. Ndipo palinso zifukwa zitatu za izi:
- padzakhala makalata ambiri kuposa momwe anakonzera
- za izi kale pa wopanga GUI GitHab
- mutu wankhaniyo ndi wokhudza zina
Chifukwa chake, posankha njira yochepetsera kukana, ndigwiritsa ntchito m'nkhaniyi wowongolera maukonde ndi GUI yochokera pa VDS, yopangidwa ndi , yopangidwa mokoma mtima ndi anzanga ochokera ku RuVDS.
Kupanga koyamba
Pambuyo popanga seva kuchokera pa template yomwe yatchulidwa, wogwiritsa ntchito amapeza wolamulira wa Web-GUI kudzera pa msakatuli polowa https:// :3443
Mwachikhazikitso, seva ili kale ndi satifiketi yodzilembera yokha ya TLS/SSL. Izi ndizokwanira kwa ine, popeza ndimatsekereza mwayi wolowera kunja. Kwa iwo omwe akufuna kugwiritsa ntchito mitundu ina ya satifiketi, alipo pa wopanga GUI GitHab.
Pamene wosuta alowa kwa nthawi yoyamba Lowani muakaunti ndi malowedwe okhazikika ndi mawu achinsinsi - boma и achinsinsi:
Izo zikusonyeza kusintha kusakhulupirika achinsinsi kuti mwambo
Ndimachita mosiyana pang'ono - sindisintha mawu achinsinsi a wogwiritsa ntchito, koma pangani latsopano - Pangani Mtumiki.
Ndayika dzina la wogwiritsa ntchito watsopano - lolowera:
Ndakhazikitsa password yatsopano - Lowetsani mawu achinsinsi atsopano:
Ndikutsimikizira mawu achinsinsi atsopano - Lowetsaninso mawu achinsinsi:
Zilembo zomwe mumalowetsa zimakhala zovuta - samalani!
Chongani bokosi kuti mutsimikizire kusintha kwa mawu achinsinsi mukalowanso - Sinthani mawu achinsinsi mukalowa: Sindikondwerera.
Kuti mutsimikizire zomwe mwalowa, dinani Ikani mawu achinsinsi:
Kenako: ndikulowanso - Logout / Lowani muakaunti, kale pansi pa zidziwitso za wogwiritsa ntchito watsopano:
Kenako, ndimapita ku tabu ya ogwiritsa - ogwiritsa ndi kuchotsa wosuta bomapodina chizindikiro cha zinyalala chomwe chili kumanzere kwa dzina lake.
M'tsogolomu, mutha kusintha mawu achinsinsi a wogwiritsa ntchito podina pa dzina lake kapena pachinsinsi.
Kupanga netiweki yeniyeni
Kuti apange netiweki yeniyeni, wogwiritsa ntchito ayenera kupita ku tabu Onjezani network. Kuchokera pamfundo wosuta izi zitha kuchitika kudzera patsamba Kunyumba - Tsamba lalikulu la Web-GUI, lomwe limawonetsa adilesi ya ZeroTier ya wowongolera maukondewa ndipo ili ndi ulalo watsamba la mndandanda wama network omwe adapangidwa kudzeramo.
Patsamba Onjezani network wosuta amapereka dzina kwa netiweki yopangidwa kumene.
Mukamagwiritsa ntchito zolowetsa - Pangani Network wogwiritsa amatengedwa kupita patsamba lomwe lili ndi mndandanda wamanetiweki, womwe uli ndi:
Dzina lapaintaneti - dzina la netiweki mu mawonekedwe a ulalo, mukadina mutha kusintha
ID ID - network ID
tsatanetsatane - kulumikizana ndi tsamba lomwe lili ndi magawo amtaneti atsatanetsatane
khwekhwe zosavuta - kulumikizana ndi tsamba kuti muyike mosavuta
mamembala - ulalo ku tsamba loyang'anira node
Kuti mudziwe zambiri tsatirani ulalo khwekhwe zosavuta. Patsamba lomwe limatsegulidwa, wosuta amatchula ma adilesi angapo a IPv4 pamaneti omwe akupangidwa. Izi zitha kuchitika mwa kukanikiza batani Pangani netiweki adilesi kapena pamanja polowetsa netiweki chigoba m'munda woyenera Chithunzi cha CIDR.
Mukatsimikizira kulowa bwino kwa data, muyenera kubwerera patsambalo ndi mndandanda wamanetiweki pogwiritsa ntchito batani la Back. Pakadali pano, kukhazikitsa koyambira kwa netiweki kumatha kuonedwa ngati kokwanira.
Kulumikiza node za netiweki
- Choyamba, ntchito ya ZeroTier One iyenera kukhazikitsidwa pa mfundo yomwe wogwiritsa ntchito akufuna kulumikiza netiweki.
Kodi ZeroTier One ndi chiyani?ZeroTier One ndi ntchito yomwe ikuyenda pa laputopu, ma desktops, maseva, makina enieni ndi zotengera zomwe zimapereka kulumikizana ndi netiweki yeniyeni kudzera pa doko lapaintaneti, lofanana ndi kasitomala wa VPN.
Ntchito ikangokhazikitsidwa ndikuyamba, mutha kulumikizana ndi ma netiweki enieni pogwiritsa ntchito ma adilesi awo okhala ndi manambala 16. Netiweki iliyonse imawoneka ngati doko la netiweki pamakina, omwe amakhala ngati doko la Ethernet wamba.
Maulalo ogawa, komanso malamulo oyika, angapezeke .Mutha kuyang'anira ntchito yomwe yakhazikitsidwa kudzera pa mzere wolamula (CLI) wokhala ndi ufulu wa admin/root. Pa Windows/MacOS imagwiritsanso ntchito mawonekedwe ojambulira. Mu Android/iOS kugwiritsa ntchito GUI kokha.
- Kuyang'ana kuchita bwino kwa kukhazikitsa ntchito:
CLI:
zerotier-cli statusZotsatira:
200 info ebf416fac1 1.4.6 ONLINE
GUI:Chowonadi chakuti pulogalamuyo ikugwira ntchito komanso kukhalapo kwake kwa mzere wokhala ndi Node ID yokhala ndi adilesi ya node.
- Kulumikiza node ku netiweki:
CLI:
zerotier-cli join <Network ID>Zotsatira:
200 join OKGUI:
Windows: dinani kumanja pa chithunzi ZeroTier One mu tray system ndikusankha chinthucho - Lowani pa Network.
macOS: Kukhazikitsa ntchito ZeroTier One mu bar menyu, ngati sichinayambike kale. Dinani pa ⏁ chizindikiro ndikusankha Lowani pa Network.Android/iOS: + (kuphatikiza chithunzi) mu pulogalamuyi
M'munda womwe ukuwoneka, lowetsani chowongolera cha netiweki chomwe chafotokozedwa mu GUI ID ID, ndi kukanikiza Lowani / Onjezani Network. - Kupereka adilesi ya IP kwa wolandira
Tsopano tikubwerera kwa woyang'anira maukonde ndipo pa tsamba ndi mndandanda wa maukonde kutsatira ulalo mamembala. Ngati muwona chithunzi chofanana ndi ichi pazenera, zikutanthauza kuti wolamulira wanu wapaintaneti walandira pempho lotsimikizira kugwirizana kwa netiweki kuchokera kumalo olumikizidwa.
Patsambali timasiya zonse momwe zilili pano ndikutsata ulalo IP ntchito pitani patsamba kuti mupereke adilesi ya IP ku node:
Pambuyo popereka adilesi, dinani batani Back bwererani ku tsamba la mndandanda wa node zolumikizidwa ndikuyika dzina - Dzina lamembala ndipo yang'anani bokosi kuti mulole node pa netiweki - Wovomerezeka. Mwa njira, bokosi loyang'anali ndi chinthu chosavuta kwambiri kuti musalumikize / kulumikizana ndi netiweki yolandila mtsogolo.
Sungani zosintha pogwiritsa ntchito batani kulunzanitsa. - Kuyang'ana momwe ma node akulumikizana ndi netiweki:
Kuti muwone momwe mungalumikizire pa node yokha, yesani:
CLI:zerotier-cli listnetworksZotsatira:
200 listnetworks <nwid> <name> <mac> <status> <type> <dev> <ZT assigned ips>
200 listnetworks 2da06088d9f863be My_1st_VLAN be:88:0c:cf:72:a1 OK PRIVATE ethernet_32774 10.10.10.2/24
GUI:Ma network akuyenera kukhala abwino
Kuti mugwirizane ndi mfundo zotsalira, bwerezani ntchito 1-5 pa aliyense wa iwo.
Kuyang'ana kulumikizidwa kwa netiweki kwa node
Ndimachita izi poyendetsa lamulo ping pa chipangizo cholumikizidwa ku netiweki yomwe ndikuyang'anira pano.
Pazithunzi za wolamulira wa Web-GUI mutha kuwona ma node atatu olumikizidwa ndi netiweki:
- ZTNCUI - 10.10.10.1 - woyang'anira maukonde anga ndi GUI - VDS mu imodzi mwa RuVDS DCs. Pantchito yanthawi zonse palibe chifukwa chowonjezera pa intaneti, koma ndidachita izi chifukwa ndikufuna kuletsa mawonekedwe a intaneti kuchokera kunja. Zambiri pa izi pambuyo pake.
- MyComp - 10.10.10.2 - kompyuta yanga yantchito ndi PC yakuthupi
- Zosunga zobwezeretsera - 10.10.10.3 - VDS mu DC ina.
Chifukwa chake, kuchokera pakompyuta yanga yantchito ndimayang'ana kupezeka kwa ma node ena ndi malamulo:
ping 10.10.10.1
Pinging 10.10.10.1 with 32 bytes of data:
Reply from 10.10.10.1: bytes=32 time=14ms TTL=64
Reply from 10.10.10.1: bytes=32 time=4ms TTL=64
Reply from 10.10.10.1: bytes=32 time=7ms TTL=64
Reply from 10.10.10.1: bytes=32 time=2ms TTL=64
Ping statistics for 10.10.10.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 2ms, Maximum = 14ms, Average = 6ms
ping 10.10.10.3
Pinging 10.10.10.3 with 32 bytes of data:
Reply from 10.10.10.3: bytes=32 time=15ms TTL=64
Reply from 10.10.10.3: bytes=32 time=4ms TTL=64
Reply from 10.10.10.3: bytes=32 time=8ms TTL=64
Reply from 10.10.10.3: bytes=32 time=4ms TTL=64
Ping statistics for 10.10.10.3:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 4ms, Maximum = 15ms, Average = 7ms
Wogwiritsa ntchito ali ndi ufulu wogwiritsa ntchito zida zina zowonera kupezeka kwa node pamaneti, zonse zomangidwa mu OS komanso monga NMAP, Advanced IP Scanner, ndi zina.
Timabisa mwayi wofikira pa network controller GUI kuchokera kunja.
Nthawi zambiri, nditha kuchepetsa mwayi wopeza VDS mopanda chilolezo pomwe wolamulira wanga wa netiweki amakhala pogwiritsa ntchito firewall muakaunti yanga ya RuVDS. Mutuwu uyenera kukhala wolembedwa wina. Chifukwa chake, apa ndikuwonetsa momwe ndingathandizire wowongolera GUI kuchokera pa netiweki yomwe ndidapanga m'nkhaniyi.
Kuti muchite izi, muyenera kulumikiza kudzera pa SSH kupita ku VDS pomwe wowongolera ali ndikutsegula fayilo yosinthira pogwiritsa ntchito lamulo:
nano /opt/key-networks/ztncui/.envMufayilo yotsegulidwa, pambuyo pa mzere "HTTPS_PORT=3443" womwe uli ndi adilesi ya doko pomwe GUI imatsegula, muyenera kuwonjezera mzere wowonjezera ndi adilesi yomwe GUI idzatsegule - kwa ine ndi HTTPS_HOST=10.10.10.1 .XNUMX.
Kenako ndikusunga fayilo
Сtrl+C
Y
Enter
ndikuyendetsa lamulo:
systemctl restart ztncuiNdipo ndizomwezo, tsopano GUI ya woyang'anira maukonde anga ikupezeka pa node za netiweki 10.10.10.0.24.
M'malo mapeto
Apa ndipamene ndikufuna kutsiriza gawo loyamba la kalozera wothandiza kupanga maukonde enieni kutengera ZeroTier. Ndikuyembekezera ndemanga zanu.
Pakalipano, kuti pakhale nthawi mpaka kusindikizidwa kwa gawo lotsatira, momwe ndikuwuzani momwe mungagwirizanitsire maukonde enieni ndi thupi, momwe mungakonzekere "wankhondo wamsewu" ndi zina, ndikupangira kuti muyese. Kukonzekera maukonde anu enieni pogwiritsa ntchito makina owongolera achinsinsi omwe ali ndi GUI yotengera VDS kuchokera pamsika kupita Zithunzi za RUVDS. Komanso, makasitomala onse atsopano ali ndi nthawi yaulere ya masiku atatu!
PS Inde! Ndinatsala pang'ono kuiwala! Mutha kuchotsa node pamaneti pogwiritsa ntchito lamulo mu CLI ya node iyi.
zerotier-cli leave <Network ID>
200 leave OK
kapena Chotsani lamulo mu kasitomala GUI pa node.
->
->
->
Source: www.habr.com