Ho tsoela pele ka pale e mabapi le ZeroTier, ho tsoa khopolong e boletsoeng sehloohong "", ke tsoela pele ho ikoetlisa moo:
- Ha re theheng le ho hlophisa molaoli oa marang-rang oa poraefete
- Ha re theheng marang-rang
- Ha re e hlophiseng le ho hokela li-node ho eona
- A re hlahlobeng khokahanyo ea marang-rang pakeng tsa bona
- A re thibeleng ho kena ho GUI ea molaoli oa marang-rang ho tsoa ka ntle
Molaoli oa Marang-rang
Joalokaha ho boletsoe pejana, ho theha marang-rang, ho a laola, hammoho le ho hokahanya li-node, mosebedisi o hloka molaoli oa marang-rang, sebopeho sa graphical (GUI) se teng ka mefuta e 'meli:
Likhetho tsa ZeroTier GUI
- E 'ngoe ho tsoa ho nts'etsopele ea ZeroTier, e fumanehang e le tharollo ea SaaS ea leru la sechaba e nang le merero e mene ea ngoliso, ho kenyeletsoa mahala, empa e lekanyelitsoe palo ea lisebelisoa tse laoloang le boemo ba tšehetso.
- Ea bobeli e tsoa ho nts'etsopele e ikemetseng, e batlang e nolofalitsoe ts'ebetsong, empa e fumaneha e le tharollo ea poraefete e bulehileng bakeng sa ts'ebeliso ea mantlha kapa mehloling ea maru.
Ketsahalong ea ka, ke ile ka sebelisa ka bobeli 'me ka lebaka leo, qetellong ke ile ka lula ho ea bobeli. Lebaka la sena e ne e le litemoso tsa moqapi.
"Balaoli ba marang-rang ba sebetsa e le balaoli ba setifikeiti bakeng sa marang-rang a ZeroTier. Lifaele tse nang le linotlolo tsa lekunutu li tlameha ho sireletsoa ka hloko le ho bolokoa ka mokhoa o sireletsehileng. Ho sekisetsa ha bona ho lumella bahlaseli ba sa lumelloeng hore ba thehe litlhophiso tsa marang-rang tsa bolotsana, 'me tahlehelo ea bona e lebisa ho lahleheloa ke bokhoni ba ho laola le ho laola marang-rang, ka katleho ho etsa hore e se ke ea sebelisoa. "
→
Hape, matšoao a paranoia ea hau ea cybersecurity :)
- Le ha Cheburnet e ka tla, ke tlameha ho ba le phihlello ho molaoli oa ka oa marang-rang;
- Ke 'na feela ea lokelang ho sebelisa molaoli oa marang-rang. Haeba ho hlokahala, ho fana ka phihlello ho baemeli ba hau ba lumelletsoeng;
- Ho lokela ho khoneha ho thibela ho kena ho molaoli oa marang-rang ho tsoa ka ntle.
Sehloohong sena, ha ke bone ntlha e kholo ea ho lula ka thoko mabapi le mokhoa oa ho sebelisa molaoli oa marang-rang le GUI bakeng sa eona ka lisebelisoa tsa 'mele kapa tse fumanehang. Hape ho na le mabaka a 3 a sena:
- ho tla ba le mangolo a mangata ho feta a reriloeng
- ka sena se se ntse ho moqapi oa GUI GitHab
- sehlooho sa sengoloa se bua ka se seng
Ka hona, ho khetha tsela ea ho hanyetsa bonyane, ke tla sebelisa pale ena molaoli oa marang-rang o nang le GUI e thehiloeng ho VDS, e entsoeng ke , e hlahisitsoeng ka mosa ke basebetsi-'moho le 'na ba RuVDS.
Setulo sa pele
Kamora ho theha seva ho tsoa ho template e boletsoeng, mosebelisi o fumana phihlello ho molaoli oa Web-GUI ka sebatli ka ho kena ho https:// :3443
Ka ho sa feleng, seva se se se ntse se na le setifikeiti sa TLS/SSL se iketselitseng sona. Sena se ntekane, kaha ke thibela ho kena ho eona ho tsoa kantle. Bakeng sa ba lakatsang ho sebelisa mefuta e meng ea setifikeiti, ho na le ho moqapi oa GUI GitHab.
Ha mosebelisi a kena ka lekhetlo la pele Kena ka ho kena le password ea kamehla - admin и phasewete:
E fana ka maikutlo a ho fetola password ea kamehla ho e tloaelehileng
Ke e etsa ka tsela e fapaneng hanyane - ha ke fetole phasewete ea mosebelisi ea seng a ntse a le teng, empa ke theha e ncha - Theha mosebelisi.
Ke behile lebitso la mosebelisi e mocha - Username:
Ke beha password e ncha - Kenya phasewete e ncha:
Ke netefatsa phasewete e ncha - Kenya phasewete hape:
Litlhaku tseo u li kenyang li bonolo haholo - e-ba hlokolosi!
Lebokose la ho hlahloba ho netefatsa phetoho ea password ha u kena - Fetola password ha u kena ho latelang: Ha ke keteke.
Ho netefatsa data e kentsoeng, tobetsa Beha phasewete:
Joale: Ke kena hape - logo logout / Kena, e se e ntse e le tlasa mangolo a mosebelisi e mocha:
E latelang, ke ea ho tabo ea basebelisi - basebedisi ebe u hlakola mosebelisi adminka ho tobetsa aekhoneng ea lithōle e fumanehang ka letsohong le letšehali la lebitso la hae.
Nakong e tlang, o ka fetola phasewete ea mosebelisi ka ho tobetsa lebitso la hae kapa password e behiloeng.
Ho theha marang-rang a fumanehang
Ho theha marang-rang a fumanehang, mosebelisi o hloka ho ea ho tab Kenya marang-rang. Ho tloha ntlheng User sena se ka etsoa ka leqephe Home - leqephe le ka sehloohong la Web-GUI, e bonts'ang aterese ea ZeroTier ea molaoli oa marang-rang ona mme e na le sehokelo sa leqephe bakeng sa lethathamo la marang-rang a entsoeng ka eona.
Leqepheng Kenya marang-rang mosebelisi o fana ka lebitso ho marang-rang a sa tsoa etsoa.
Ha o sebelisa lintlha tse kentsoeng − Theha Marang-rang mosebelisi o isoa leqepheng le nang le lethathamo la marang-rang, le nang le:
Lebitso la marang-rang — lebitso la marang-rang ka mokhoa oa sehokelo, ha o tobetsa ho lona o ka le fetola
ID ea marang-rang — sesupo sa marangrang
o qaqileng haholoanyane — sehokela leqepheng le nang le lintlha tse qaqileng tsa marang-rang
setup bonolo — sehokelo ho leqephe bakeng sa ho seta habonolo
litho - sehokelo ho leqephe la taolo ea node
Bakeng sa tlhophiso e eketsehileng latela sehokelo setup bonolo. Leqepheng le buloang, mosebelisi o bolela mefuta e fapaneng ea liaterese tsa IPv4 bakeng sa marang-rang a ntseng a etsoa. Sena se ka etsoa ka bohona ka ho tobetsa konopo Hlahisa aterese ea marang-rang kapa ka letsoho ka ho kenya mask a marang-rang a marang-rang sebakeng se loketseng CIDR.
Ha o netefatsa ho kena ha data ka katleho, o tlameha ho khutlela leqepheng ka lethathamo la marang-rang o sebelisa konopo ea Morao. Mothating ona, ho seta marang-rang a mantlha ho ka nkuoa ho felletse.
Ho hokela li-node tsa marang-rang
- Ntlha ea pele, tšebeletso ea ZeroTier One e tlameha ho kenngoa node eo mosebeletsi a batlang ho e hokahanya le marang-rang.
ZeroTier One ke eng?ZeroTier One ke tšebeletso e sebetsang ho li-laptops, li-desktops, li-server, mechine ea sebele le li-container tse fanang ka likhokahano ho marang-rang a marang-rang ka marang-rang a marang-rang, a tšoanang le mofani oa VPN.
Hang ha ts'ebeletso e kentsoe le ho qala, o ka hokela ho marang-rang o sebelisang liaterese tsa ona tsa linomoro tse 16. Marang-rang ka 'ngoe a hlaha e le kou ea marang-rang ea marang-rang ho sistimi, e sebetsang joalo ka boema-kepe bo tloaelehileng ba Ethernet.
Lihokela tsa li-distributions, hammoho le litaelo tsa ho kenya, li ka fumanoa .O ka tsamaisa ts'ebeletso e kentsoeng ka terminal ea line ea taelo (CLI) e nang le litokelo tsa admin/root. Ho Windows / MacOS le eona e sebelisa sebopeho sa graphical. Ho Android/iOS ho sebelisa GUI feela.
- Ho hlahloba katleho ea ts'ebetso ea ts'ebeletso:
CLI:
zerotier-cli statusSephetho:
200 info ebf416fac1 1.4.6 ONLINE
GUI:Taba ea hore ts'ebeliso e ntse e sebetsa le boteng ba mohala o nang le Node ID e nang le aterese ea node.
- Ho hokela node ho netweke:
CLI:
zerotier-cli join <Network ID>Sephetho:
200 join OKGUI:
Windows: tobetsa ka ho le letona aekhoneng ZeroTier One ka tray ea sistimi le ho khetha ntho - Kopana le Marang-rang.
macOS: Qala kopo ZeroTier One ho menu ea bar, haeba e se e qalile. Tobetsa ho ⏁ letšoao ebe u khetha Kopana le Marang-rang.Android/iOS: + (hammoho le setšoantšo) ho app
Tšimong e hlahang, kenya molaoli oa marang-rang o boletsoeng ho GUI ID ea marang-rang, ebe o tobetsa Kopana/Eketsa Marang-rang. - Ho abela moamoheli aterese ea IP
Hona joale re khutlela ho molaoli oa marang-rang mme leqepheng le nang le lethathamo la marang-rang le latela sehokelo litho. Haeba u bona setšoantšo se ts'oanang le sena skrineng, ho bolela hore molaoli oa marang-rang oa hau o fumane kopo ea ho netefatsa khokahanyo ea marang-rang ho tloha node e hokahaneng.
Leqepheng lena re tlohela ntho e 'ngoe le e' ngoe kamoo e leng kateng ha joale 'me re latele sehokelo Mosebetsi oa IP e ea leqepheng la ho abela aterese ea IP ho node:
Ka mor'a ho fana ka aterese, tobetsa konopo Back khutlela leqepheng la lethathamo la li-node tse hokahaneng ebe u beha lebitso - Lebitso la setho 'me u hlahlobe lebokose la ho hlahloba ho lumella node ho marang-rang - E lumelletsoe. Ha e le hantle, lebokose lena la ho hlahloba ke ntho e bonolo haholo bakeng sa ho khaola / ho hokahanya ho tloha marang-rang a moamoheli nakong e tlang.
Boloka liphetoho u sebelisa konopo khatholla. - Ho hlahloba boemo ba khokahano ea node ho netweke:
Ho lekola boemo ba khokahano ho node ka boeona, matha:
CLI:zerotier-cli listnetworksSephetho:
200 listnetworks <nwid> <name> <mac> <status> <type> <dev> <ZT assigned ips>
200 listnetworks 2da06088d9f863be My_1st_VLAN be:88:0c:cf:72:a1 OK PRIVATE ethernet_32774 10.10.10.2/24
GUI:Boemo ba marang-rang bo lokela ho ba hantle
Ho hokahanya li-node tse setseng, pheta ts'ebetso 1-5 bakeng sa e 'ngoe le e' ngoe ea tsona.
Ho hlahloba khokahano ea marang-rang ea li-node
Ke etsa sena ka ho tsamaisa taelo ping sesebedisweng se hoketsweng marangrang ao ke ntseng ke a laola hona jwale.
Setšoantšong sa molaoli oa Web-GUI u ka bona li-node tse tharo tse hokahaneng le marang-rang:
- ZTNCUI - 10.10.10.1 - molaoli oa ka oa marang-rang o nang le GUI - VDS ho e 'ngoe ea RuVDS DCs. Bakeng sa mosebetsi o tloaelehileng ha ho hlokahale hore o e kenye marang-rang, empa ke entse sena hobane ke batla ho thibela ho kena ho web interface ho tsoa ka ntle. Tse ling mabapi le sena hamorao.
- MyComp - 10.10.10.2 - komporo ea ka ea mosebetsi ke PC ea 'mele
- bekapo - 10.10.10.3 - VDS ho DC e 'ngoe.
Ka hona, ho tsoa komporong ea ka ea mosebetsi ke sheba boteng ba li-node tse ling ka litaelo:
ping 10.10.10.1
Pinging 10.10.10.1 with 32 bytes of data:
Reply from 10.10.10.1: bytes=32 time=14ms TTL=64
Reply from 10.10.10.1: bytes=32 time=4ms TTL=64
Reply from 10.10.10.1: bytes=32 time=7ms TTL=64
Reply from 10.10.10.1: bytes=32 time=2ms TTL=64
Ping statistics for 10.10.10.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 2ms, Maximum = 14ms, Average = 6ms
ping 10.10.10.3
Pinging 10.10.10.3 with 32 bytes of data:
Reply from 10.10.10.3: bytes=32 time=15ms TTL=64
Reply from 10.10.10.3: bytes=32 time=4ms TTL=64
Reply from 10.10.10.3: bytes=32 time=8ms TTL=64
Reply from 10.10.10.3: bytes=32 time=4ms TTL=64
Ping statistics for 10.10.10.3:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 4ms, Maximum = 15ms, Average = 7ms
Mosebelisi o na le tokelo ea ho sebelisa lisebelisoa tse ling bakeng sa ho lekola boteng ba li-node marang-rang, tse hahelletsoeng ka har'a OS joalo ka NMAP, Advanced IP Scanner, jj.
Re pata phihlello ho GUI ea molaoli oa marang-rang ho tsoa kantle.
Ka kakaretso, nka fokotsa monyetla oa ho fumana monyetla o sa lumelloeng oa VDS eo molaoli oa marang-rang a teng a sebelisang firewall akhaonteng ea ka ea botho ea RuVDS. Taba ena e kanna ea ba sengoloa se arohaneng. Ka hona, mona ke tla bontša mokhoa oa ho fana ka phihlello ho molaoli oa GUI feela ho tsoa marang-rang ao ke a entseng sehloohong sena.
Ho etsa sena, o hloka ho hokela ka SSH ho VDS eo molaoli a leng ho eona ebe o bula faele ea tlhophiso o sebelisa taelo:
nano /opt/key-networks/ztncui/.envHo faele e butsoeng, ka mor'a mohala "HTTPS_PORT = 3443" e nang le aterese ea boema-kepe moo GUI e bulang teng, o hloka ho eketsa mohala o eketsehileng le aterese eo GUI e tla bula ho eona - tabeng ea ka ke HTTPS_HOST = 10.10.10.1 .XNUMX.
E latelang ke tla boloka faele
Сtrl+C
Y
Enter
ebe o tsamaisa taelo:
systemctl restart ztncui'Me ho joalo, hona joale GUI ea molaoli oa ka oa marang-rang e fumaneha feela bakeng sa li-node tsa marang-rang 10.10.10.0.24.
Ho e-na phetheha
Mona ke moo ke batlang ho qeta karolo ea pele ea tataiso e sebetsang ea ho theha marang-rang a thehiloeng ho ZeroTier. Ke labalabela maikutlo a hau.
Ho sa le joalo, ho fetisa nako ho fihlela ho hatisoa ha karolo e latelang, moo ke tla u bolella mokhoa oa ho kopanya marang-rang a sebele le 'mele, mokhoa oa ho hlophisa mokhoa oa "mohlabani oa litsela" le ntho e' ngoe, ke fana ka tlhahiso ea hore u leke. ho hlophisa marang-rang a hau a marang-rang u sebelisa molaoli oa marang-rang a ikemetseng ka GUI e thehiloeng ho VDS ho tloha 'marakeng ho ea pele RUVDS. Ho feta moo, bareki bohle ba bacha ba na le nako ea teko ea mahala ea matsatsi a 3!
PES Ee! Ke batlile ke lebala! U ka tlosa node ho tloha marang-rang u sebelisa taelo ho CLI ea node ena.
zerotier-cli leave <Network ID>
200 leave OK
kapa Delete taelo ho GUI ea bareki sebakeng sa node.
->
->
->
Source: www.habr.com