Paunotarisana nemubvunzo uye kuzorora kubva pahuwandu hwezvinyorwa, edza kuronga uye kunyora pasi izvo zvawakadzidza kuti uyeuke zviri nani. Uye zvakare ita mirairo pane iyi nyaya kuti usazopfuura nemunzira yese zvakare.
Source magwaro anowanikwa akawanda pa
Kugadzirwa kwedambudziko
Mutengi anoda kusanganisa masevha akati wandei kuita network imwe chete kuitira kuti abvise kukosha kwekubhadhara akati wandei mamwe ma subnets, arembedza mhuri yake yese kuseri kwe router, ovapa kero dzenzvimbo, uye adzivirirwe nefirewall. Kuti yese traffic traffic inomhanya mukati meVLAN. Uyezve, fambisa michina chaiyo kubva kune imwe yekare sevha kuenda kune imwe itsva uye uisiye, simudza hardware yekare yauri kushandisa uye panguva imwe chete enda kune itsva Proxmox.
Pakutanga, mutengi ane maseva mashanu, imwe neimwe iine imwe subnet, kero yekutanga kubva kune yakatsaurirwa subnet inopihwa kune rimwe bhiriji paProxmox.
Panguva imwecheteyo, maVM anomhanya paWindows uye ane kero 85.xx177/29 yakagadzirwa negedhi 85.xx176.
Uye ese 5 maseva ane awo ega ega emuchina akagadziriswa nenzira yakafanana.
Zvinosekesa kuti iyi gadziriso haina kunaka mukumisikidza network musimboti; shandisa kero yetiweki yekutanga node uye zvakafanana kune gedhi. Kana iwe ukaedza kumhanyisa iyi gadziriso pamushini chaiwo muUbuntu, network haishande.
β
Kutevedzera
- Isu tinogadzira vSwitch mune iyo interface, togovera VlanID kwairi, uye wedzera iyi vSwitch kune ese maseva atinoda.
- Tiri kugadzira test server kuitira kuti tigone kumisa uye kufamba pasina matambudziko.
Isu tinosimudza yekutanga virtual muchina chr na .
Kana ukashandisa script iri pamusoro, tapota cherechedza kuti inotanga kutarisa kuvapo kwe -d / mudzi / temp directory, uye kana isipo, iyo / imba / mudzi / temp directory inogadzirwa, asi rimwe basa richiri kutakurwa. kunze neiyo /mudzi/temp dhairekitori. Iyo script inoda kugadziriswa kuti igadzire dhairekitori rakakodzera.
- Kugadzira network yeProxmox.
Isu tinowedzera subinterface ine VLAN nhamba, zvichiratidza kuti kero dzichagadziriswa pamabhiriji uchishandisa inet manual. ZVINOKOSHA. Iwe haugone kugadzirisa IP kero pane iyo interfaces iwe yauchazoisa mubhiriji; kuti izvi zvichashanda sei uye kuti zvichashanda hazvizivikanwe kune chero munhu.
Tevere, tinogadzira bhiriji vmbr0 - uye tinonamatira kwairi kero yekutanga yeseva pachayo, yakapihwa isu nevapeji veHetzner, ratidza chiteshi chebhiriji - yekutanga chimiro chemuviri pasina VLAN, uye zvakare tsanangura nekuwedzera kuraira kwekuwedzera. yenzira yekuenda kunetiweki yedu yekuwedzera, yakaodha kubva kuHetzner kune iyi server kuburikidza nebhiriji iri. Kuwedzera nzira kuchashanda kana iyo interface ichikwira.
Bhiriji rechipiri richava ratidziro yedu yetraffic yemuno, isu tinowedzera kero kwairi kuti tiwane kubatana pakati peakasiyana Proxmox maseva pamusoro penetiweki yemuno pasina mukana weInternet uye tsanangura chiteshi se subinterface eno1.4000, iyo yakagoverwa VlanID yedu.
Munguva yekutanga kuseta, unosangana nezano rekuti iwe unogona kuisa imwe ifupdown2 package yeProxmox uye haufanirwe kudzoreredza sevha yese kana paine shanduko mune network network. Nekudaro, izvi zvinowanzoitika kune yekutanga kuseta, uye kana uchishandisa mabhiriji uye kumisikidza chaiwo michina, unosangana nematambudziko nekutadza kwetiweki mumashini chaiwo. Pasinei nekuti iwe wakagadzirisa, semuenzaniso, iyo vmbr2 interface, uye kana iwe ukashandisa iyo gadziriso, network inodonha pane ese emukati maficha uye haidzoreki kusvikira sevha yatangwa zvachose. ifdown&&ifup haibatsire. Kana paine ane mhinduro, ndingatenda.
Iyo yekutanga yakagadziriswa interface pane server inoramba ichishanda uye inowanikwa.
-
Kugoverwa kwekero yeCHR kuitira kuti usarasikirwe nemakero kubva padziva
Dziva rekero rinogadzirwa naHetzner rinotaridzika zvinoshamisa kune networker, chimwe chinhu chakadai:
Chinhu chinoshamisa ndechekuti gedhi rinoratidza kushandisa kero yaro yevhavha yemuviri.
Sarudzo yekirasi yakatsanangurwa naHetzner pachake inoratidzwa muchirevo chedambudziko uye yakaitwa nemutengi akazvimiririra. Mune iyi sarudzo, mutengi anorasikirwa nekero yekutanga kunetiweki kero, kero yechipiri kune proxmox bhiriji uye ichave zvakare gedhi, uye kero yekupedzisira yenhepfenyuro. IPv4 kero haimboregi. Kana ukaedza zvakananga kunyoresa IP kero 136.x.x.177/29 uye gedhi re0.0.0.0/0 148.x.x.165 paCHR, unogona kuita izvi, asi gedhi harizove rakananga Connected uye nokudaro harisvikiki. .
Tinogona kubuda mumamiriro ezvinhu aya nekushandisa network 32 yekero yega yega uye kutsanangura kero yatinoda, inogona kuva chero chinhu, sezita retiweki. Inoshanduka kuva analogue ye-point-to-point yekubatanidza.
Muchiitiko ichi, gedhi richave riripo, uye zvese zvichashanda sezvatinoda.
Ramba uchifunga kuti mukumisikidzwa kwakadai hazvikurudzirwe kushandisa mutemo weSRC-NAT wemasquerade, nekuti kero yekubuda ichave yakasiyana nekusingaperi, uye zvakanyanya kurongeka kutsanangura chiito: src-NAT uye kero chaiyo yauchazobva. sunungura mutengi.
- Uye pakupedzisira.
Kuvhara kupinda kuProxmox pachayo kubva paInternet, shandisa akavakirwa-mukati maturusi: kune yakanakisa firewall.
Iwe haufanirwe kushandisa firewall inopiwa nehetzner, kuti urege kuvhiringika pamusoro penzvimbo yezvirongwa. Hetzner ichashanda pamanetiweki ese, kusanganisira ayo akadzikwa paCHR, uye kuvhura uye kumberi zviteshi, zvichave zvakare zvakakodzera kuvhura iwo muwebhu interface yeanopa.
Source: www.habr.com