🥇 Powered by ZeroTier. Nhungamiro inoshanda yekuvaka virtual network. Chikamu 1

Kuenderera mberi nenyaya yeZeroTier, kubva padzidziso yakatsanangurwa muchinyorwa "Smart Ethernet Switch yePlanet Earth", ndinoenderera mberi nekudzidzira umo:

Ngatigadzire uye tigadzirise yakavanzika network controller
Ngatigadzirei network chaiyo
Ngatigadzirise uye tibatanidza node kwairi
Ngatitarisei network yekubatana pakati pavo
Ngativharei kupinda kune GUI yetiweki controller kubva kunze

Network Controller

Sezvambotaurwa, kugadzira chaiwo network, kuabata, pamwe nekubatanidza node, mushandisi anoda network controller, graphical interface (GUI) iyo iripo mumhando mbiri:

ZeroTier GUI Sarudzo

Imwe kubva kumugadziri ZeroTier, inowanikwa seyeruzhinji gore SaaS mhinduro ine mana ekunyorera zvirongwa, zvinosanganisira zvemahara, asi zvishoma muhuwandu hwezvishandiso zvinotarisirwa uye nhanho yerutsigiro.
Yechipiri inobva kumugadziri akazvimiririra, akarerutswa mukushanda, asi inowanikwa seyakavanzika yakavhurika sosi mhinduro yekushandisa pane-nzvimbo kana pane gore zviwanikwa.

Mukudzidzira kwangu, ndakashandisa zvose uye semugumisiro, ndakazogadzirisa pane yechipiri. Chikonzero cheizvi yaive yambiro yemugadziri.

"Network controllers inoshanda sezviremera zvitupa zveZeroTier virtual network. Mafaira ane makiyi akavanzika emutongi anofanirwa kuchengetedzwa nekuchengetwa zvakachengetedzeka. Kukanganisa kwavo kunobvumira vanorwisa vasina mvumo kuti vagadzire hunyengeri hwemambure etiweki, uye kurasikirwa kwavo kunotungamirira mukurasikirwa kwekwanisi yekudzora nekugadzirisa network, zvichiita kuti isashande. "

→ Batanidza kune zvinyorwa

Uye zvakare, zviratidzo zveyako cybersecurity paranoia :)

Kunyangwe Cheburnet ikauya, ndinofanira kunge ndiine mukana kune network yangu controller;
Ini chete ndini ndinofanira kushandisa network controller. Kana zvichidikanwa, kupa mukana kune vamiriri vako vane mvumo;
Izvo zvinofanirwa kuve zvichikwanisika kurambidza kupinda kune network controller kubva kunze.

Muchikamu chino, ini handisi kuona pfungwa yakawanda yekugara zvakasiyana pamusoro pekuisa network controller uye GUI yayo pane-nzvimbo yemuviri kana chaiyo zviwanikwa. Uye pane zvakare 3 zvikonzero zveizvi:

pachava nemabhii akawanda kupfuura akarongwa
pamusoro peizvi kare akaudza pane GUI mugadziri GitHab
musoro wechinyorwa uri pamusoro pechimwe chinhu

Naizvozvo, kusarudza nzira yekushomeka kushomeka, ini ndichashandisa mune ino nyaya network network ine GUI yakavakirwa paVDS, yakagadzirwa na. kubva template, yakagadziridzwa nemutsa nevandinoshanda navo kubva kuRuVDS.

Kutanga setup

Mushure mekugadzira sevha kubva pane yakatsanangurwa template, mushandisi anowana mukana kune Webhu-GUI controller kuburikidza nebrowser nekuwana https://:3443

Nekumisikidza, sevha yatove neyakare-yakagadzirwa-yega yakasaina TLS/SSL chitupa. Izvi zvakandikwanira, sezvo ndichivharira kupinda kwazviri kubva kunze. Kune avo vanoda kushandisa mamwe marudzi ezvitupa, zviripo yekuisa mirairo pane GUI mugadziri GitHab.

Kana mushandisi apinda kekutanga Login ine default login uye password - arun и pasiwedhi:

Inopa zano kushandura password yakasarudzika kune yakasarudzika

Ini ndinozviita zvishoma zvakasiyana - ini handichinje password yemushandisi aripo, asi gadzira nyowani - Gadzira Mushandisi.

Ini ndakaseta zita remushandisi mutsva - Username:
Ndakaisa password nyowani - Isa password itsva:
Ini ndinosimbisa password nyowani - Nyorazve password:

Iwo mavara aunopinza ane case sensitive - chenjera!

Bhokisi rekutarisa kuti usimbise shanduko yepassword pakupinda kunotevera - Chinja password pane inotevera login: Handipembereri.

Kuti usimbise iyo data yakapinda, tinya Isai password:

Zvadaro: ndinopinda zvakare - Kubuda / Login, yatova pasi pezvinyorwa zvemushandisi mutsva:

Tevere, ndinoenda kune vashandisi tab - Users uye bvisa mushandisi arunnekudzvanya pakadhi remarara riri kuruboshwe rwezita rake.

Mune ramangwana, unogona kushandura password yemushandisi nekudzvanya pazita rake kana pakaseti password.

Kugadzira virtual network

Kuti ugadzire virtual network, mushandisi anofanira kuenda kune tab Wedzera network. Kubva pane imwe nzvimbo mushandisi izvi zvinogona kuitwa kuburikidza nepeji Home - iyo peji huru yeWebhu-GUI, iyo inoratidza iyo ZeroTier kero yeiyi network controller uye ine chinongedzo kune peji yerunyorwa rwemanetiweki akagadzirwa kuburikidza nayo.

Pane peji Wedzera network mushandisi anopa zita kune ichangobva kugadzirwa network.

Paunenge uchishandisa data rekuisa - Gadzira Network mushandisi anoendeswa kune peji ine runyorwa rwemanetiweki, ine:

Network zita - zita retiweki muchimiro chekubatanidza, kana iwe ukadzvanya pairi unogona kuchichinja
Network ID - network identifier
umboo - chinongedzo kune peji ine yakadzama network paramita
nyore setup - link kune peji kuitira nyore kuseta
nhengo - chinongedzo kune iyo node manejimendi peji

Kuti uwedzere kuseta tevera iyi link nyore setup. Pa peji rinovhurwa, mushandisi anotsanangura huwandu hwe IPv4 kero kune network iri kugadzirwa. Izvi zvinogona kuitwa otomatiki nekudzvanya bhatani Gadzira network kero kana nemaoko nekupinda network network mask mumunda wakakodzera CIDR.

Paunenge uchisimbisa yakabudirira yekupinda data, iwe unofanirwa kudzokera kune peji nerunyorwa rwemanetiweki uchishandisa Kumashure bhatani. Panguva ino, iyo yekutanga network setup inogona kutorwa seyakakwana.

Kubatanidza network nodes

Kutanga, iyo ZeroTier One sevhisi inofanirwa kuiswa pane node iyo mushandisi anoda kubatanidza kune network.
Chii chinonzi ZeroTier One?ZeroTier One ibasa rinoshanda pamalaptops, desktops, servers, virtual machines uye midziyo inopa kubatanidza kune virtual network kuburikidza ne virtual network port, yakafanana neVPN mutengi.

Kana sevhisi yangoiswa uye yatangwa, unogona kubatana kune chaiwo network uchishandisa 16-manhamba kero. Netiweki yega yega inoratidzika senge chiteshi chetiweki pane sisitimu, inoita seyakajairwa Ethernet port.
Zvisungo zvekugovera, pamwe nemirairo yekuisa, inogona kuwanikwa papeji yemugadziri.

Iwe unogona kubata iyo yakaiswa sevhisi kuburikidza neyekuraira mutsara terminal (CLI) ine admin/midzi kodzero. PaWindows/MacOS zvakare uchishandisa graphical interface. Mu Android/iOS chete uchishandisa GUI.
Kutarisa kubudirira kwekuiswa kwesevhisi:
CLI:
```
zerotier-cli status
```
Mhinduro:

200 info ebf416fac1 1.4.6 ONLINE
GUI:

Iyo chaiyo yekuti application iri kushanda uye kuvapo mairi kwemutsara une Node ID ine node kero.
Kubatanidza node kune network:
CLI:
```
zerotier-cli join <Network ID>
```
Mhinduro:

200 join OK

GUI:

Windows: tinya-kurudyi pane icon ZeroTier One mune system tray uye kusarudza chinhu - Join Network.

macOS: Tanga application ZeroTier One mubha menyu, kana isati yatangwa. Dzvanya pane ⏁ icon uye sarudza Join Network.

Android/iOS: + (pamwe nemufananidzo) muapp

Mumunda unooneka, pinda network controller inotsanangurwa muGUI Network ID, wodzvanya Join/Add Network.
Kugovera IP kero kune mugamuchiri
Zvino isu tinodzokera kune network controller uye pane peji ine runyorwa rwemaneti tevera chinongedzo nhengo. Kana iwe ukaona mufananidzo wakafanana neuyu pachiratidziri, zvinoreva kuti network yako controller yagamuchira chikumbiro chekusimbisa kubatana kune network kubva kune yakabatana node.

Pane ino peji tinosiya zvese sezvazviri ikozvino uye tevera chinongedzo IP assignment enda kune peji yekugovera IP kero kune node:

Mushure mekupa kero, baya bhatani shure dzokera kune peji rerondedzero yeakabatana node uye isa zita - Zita renhengo uye tarisa bhokisi rekutarisa kubvumidza node pane network - Yakatenderwa. Nenzira, bhokisi rekutarisa iri chinhu chiri nyore kwazvo kubvisa / kubatanidza kubva kune network network mune ramangwana.

Sevha shanduko uchishandisa bhatani fefeta.
Kutarisa mamiriro ekubatanidza node kunetiweki:
Kuti utarise mamiriro ekubatanidza pane node pachayo, mhanya:
CLI:
```
zerotier-cli listnetworks
```
Mhinduro:

200 listnetworks <nwid> <name> <mac> <status> <type> <dev> <ZT assigned ips> 200 listnetworks 2da06088d9f863be My_1st_VLAN be:88:0c:cf:72:a1 OK PRIVATE ethernet_32774 10.10.10.2/24
GUI:

Mamiriro etiweki anofanira kunge akanaka

Kuti ubatanidze node dzakasara, dzokorora mashandiro 1-5 kune yega yega.

Kutarisa network yekubatana kwemanode

Ndinoita izvi nekumhanyisa murairo ping pamudziyo wakabatana netiweki yandiri kubata izvozvi.

Mune iyo skrini yeWeb-GUI controller unogona kuona matatu nodes akabatana kune network:

ZTNCUI - 10.10.10.1 - yangu network controller ine GUI - VDS mune imwe yeRuVDS DCs. Zvebasa rakajairwa hapana chikonzero chekuwedzera kunetiweki, asi ndakaita izvi nekuti ini ndoda kuvharira kupinda kwewebhu interface kubva kunze. Zvimwe pane izvi gare gare.
MyComp - 10.10.10.2 - komputa yangu yebasa iPC chaiyo
Backup - 10.10.10.3 - VDS mune imwe DC.

Naizvozvo, kubva pakombuta yangu yebasa ndinotarisa kuwanikwa kwedzimwe node nemirairo:

ping 10.10.10.1

Pinging 10.10.10.1 with 32 bytes of data: Reply from 10.10.10.1: bytes=32 time=14ms TTL=64 Reply from 10.10.10.1: bytes=32 time=4ms TTL=64 Reply from 10.10.10.1: bytes=32 time=7ms TTL=64 Reply from 10.10.10.1: bytes=32 time=2ms TTL=64

Ping statistics for 10.10.10.1: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 2ms, Maximum = 14ms, Average = 6ms

ping 10.10.10.3

Pinging 10.10.10.3 with 32 bytes of data: Reply from 10.10.10.3: bytes=32 time=15ms TTL=64 Reply from 10.10.10.3: bytes=32 time=4ms TTL=64 Reply from 10.10.10.3: bytes=32 time=8ms TTL=64 Reply from 10.10.10.3: bytes=32 time=4ms TTL=64

Ping statistics for 10.10.10.3: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 4ms, Maximum = 15ms, Average = 7ms

Mushandisi ane kodzero yekushandisa mamwe maturusi ekutarisa kuwanikwa kwemanodhi panetiweki, zvese zvakavakwa muOS uye seNMAP, Advanced IP Scanner, nezvimwe.

Isu tinovanza kupinda kune network controller GUI kubva kunze.

Kazhinji, ndinogona kuderedza mukana wekupinda kusingatenderwe kuVDS panowanikwa network yangu controller uchishandisa firewall muRuVDS yangu account. Musoro wenyaya uyu ungangove wechinyorwa chakasiyana. Naizvozvo, pano ini ndicharatidza maitiro ekupa mukana kune GUI controller chete kubva kunetiweki yandakagadzira mune ino chinyorwa.

Kuti uite izvi, unofanirwa kubatanidza kuburikidza neSSH kuVDS pane iyo controller iripo uye uvhure faira yekumisikidza uchishandisa murairo:

nano /opt/key-networks/ztncui/.env

Mune faira yakavhurwa, mushure memutsara "HTTPS_PORT=3443" ine kero yechiteshi panovhurwa GUI, unofanirwa kuwedzera imwe mutsara nekero iyo GUI ichavhura - kwandiri ini HTTPS_HOST=10.10.10.1 .XNUMX.

Zvadaro ndichachengetedza faira

Сtrl+C Y Enter

uye mhanya murairo:

systemctl restart ztncui

Uye ndizvo zvazviri, ikozvino GUI yemutongi wetiweki yangu inowanikwa chete kune network nodes 10.10.10.0.24.

Pane mhedziso

Apa ndipo pandinoda kupedzisa chikamu chekutanga chegwaro rinoshanda rekugadzira chaiwo network yakavakirwa paZeroTier. Ndinotarisira mhinduro dzenyu.

Zvichakadaro, kupfuudza nguva kusvika pakuburitswa kwechikamu chinotevera, umo ini ndichakuudza nzira yekubatanidza chaiyo network neiyo yenyama, kuronga nzira ye "murwi wemumugwagwa" uye chimwe chinhu, ndinokurudzira kuti uedze. kuronga yako yako chaiyo network uchishandisa yakavanzika network controller ine GUI yakavakirwa paVDS kubva pamusika zvichienda site RUVDS. Uyezve, vese vatengi vatsva vane yemahara nguva yekuyedzwa kwemazuva matatu!

PS Ehe! Ndakapotsa ndakanganwa! Iwe unogona kubvisa node kubva kunetiweki uchishandisa rairo muCLI yeiyi node.

zerotier-cli leave <Network ID>

200 leave OK

kana iyo Delete command mune mutengi GUI pane node.

-> Nhanganyaya. Theoretical chikamu. Smart Ethernet Switch yePlanet Earth
-> Nhungamiro inoshanda yekuvaka virtual network. Chikamu 1
-> Nhungamiro inoshanda yekuvaka virtual network. Chikamu 2

Source: www.habr.com

Powered by ZeroTier. Nhungamiro inoshanda yekuvaka virtual network. Chikamu 1