curs 3 - quaggaelf.cs.pub.ro/saisp/wiki/_media/srisp_curs-03.pdf · i rutare, rute, ruter i...
TRANSCRIPT
Curs 3Quagga
Servicii de ret,ea pentru ISP
11 martie 2010
SRISP Curs 3, Quagga 1/28
Outline
Rutare
Quagga
Studiu de caz – Vyatta
Keywords
Intrebari
SRISP Curs 3, Quagga 2/28
Ce ınseamna rutare?
I dirijarea pachetelor
I adresa destinat, ie, masca destinat, ie, next-hop/adresa de ies, ire
I protocol de rutare, protocol rutat
I rute dinamice, rute statice
I rute direct conectate, rute nod, rute default
SRISP Curs 3, Quagga 3/28
Protocoale de rutare
I distance-vector, link-state
I IGP, EGP
I RIP
I OSPF
I BGP
I IS-IS
I EIGRP (proprietar)
SRISP Curs 3, Quagga 4/28
Rutere
I routing, forwarding
I control plane, forwarding planeI tipuri de rutere dupa contextul de folosire
I conectivitatea la Internet (ISP)I SOHO (Small Office Home Office)I enterprise routers
I Juniper (JUNOS), Cisco (CiscoIOS), Huawei
SRISP Curs 3, Quagga 5/28
Rutere software
I Quagga
I BIRD – BIRD Internet Routing Daemon
I XORP – eXtensible Open Router PlatformI Vyatta (open source router/firewall/VPN)
I Debian-based Linux distributionI Quagga, OpenVPNI Cisco Replacement Guide
I software firewall: m0n0wall, pfSense
I embedded routers: OpenWrt, DD-WRT, FreeWrt, Gargoyle,HyperWRT, Tomato
SRISP Curs 3, Quagga 6/28
Outline
Rutare
Quagga
Studiu de caz – Vyatta
Keywords
Intrebari
SRISP Curs 3, Quagga 7/28
Quagga
I http://www.quagga.net/
I software router / network routing suite
I fork din GNU Zebra (inactiv din 2005)
I quagga – specie disparuta de zebre
I GNU GPLI suport pentru
I OPSPF (v2, v3)I RIP (v1, v2, ng)I BGP (v4+)I IS-IS
I ifconfig, route, netstat
SRISP Curs 3, Quagga 8/28
Arhitectura
I Zserv API – Zserv clients: ospfd, ripd, ospf6d, ripng, bgpd
SRISP Curs 3, Quagga 9/28
Instalare s, i configurare de baza
I apt-get install quagga
I /etc/quagga/daemons – lista cu daemonii pornit, i
I /etc/quagga/debian.conf – configurare VTY
I /etc/init.d/quagga
SRISP Curs 3, Quagga 10/28
Configurare daemoni
I cp /usr/share/doc/quagga/examples/zebra.conf.sample /etc/quagga/zebra.conf
I chown quagga.quaggavty /etc/quagga/*.conf
I chmod 640 /etc/quagga/*.conf
I VTY – Virtual Terminal (Teletype) InterfaceI conectare pe telnet
I zebra – 2601I ripd – 2602I ripng – 2603I ospfd – 2604I bgpd – 2605I ospf6d – 2606
I telnet localhost 2604
SRISP Curs 3, Quagga 11/28
Configurare daemoni
1 router1:∼# netstat -tlpn2 Active Internet connections (only servers)
3 Proto Recv-Q Send-Q Local Address Foreign Address State
PID/Program name
4 tcp 0 0 127.0.0.1:2601 0.0.0.0:* LISTEN 353/zebra
5 tcp 0 0 127.0.0.1:2602 0.0.0.0:* LISTEN 357/ripd
6 tcp 0 0 127.0.0.1:2604 0.0.0.0:* LISTEN 361/ospfd
7 tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 341/sshd
8 tcp6 0 0 :::22 :::* LISTEN 341/sshd
SRISP Curs 3, Quagga 12/28
Configurare zebra
I (configure terminal) hostname
I (configure terminal) interface eth0
I write
I list
SRISP Curs 3, Quagga 13/28
vtysh
I consola de configurare a daemonilor QuaggaI cp /usr/share/doc/quagga/examples/vtysh.conf.sample /etc/quagga/vtysh.conf
I chown quagga.quaggavty /etc/quagga/*.conf
I chmod 640 /etc/quagga/*.conf
I vtysh
SRISP Curs 3, Quagga 14/28
Caracteristici Linux
I reverse search, command line editing
I traceroute, ping
I modificarea tabelei de rutare de la nivelul nucleului
I fiecare protocol are asociat un daemon Unix
SRISP Curs 3, Quagga 15/28
Topologie demo
SRISP Curs 3, Quagga 16/28
Configurare interfet,e s, i rute statice
1 interface FastEthernet0/1
2 ip address 10.1.3.2 255.255.255.0
3 no shutdown
4 interface FastEthernet0/0
5 ip address 10.1.4.2 255.255.255.0
6 no shutdown
7 hostname Cisco-2651
8 ip route 10.1.0.0 255.255.0.0 10.1.3.1
9 ip route 10.200.1.4 255.255.255.255
10.1.4.1
10 ip route 10.200.1.1 255.255.255.255
10.1.3.1
1 interface eth0
2 ip address 10.1.3.1/24
3 link-detect
4 interface eth1
5 ip address 10.1.1.1/24
6 link-detect
7 hostname quagga-router
8 ip route 10.1.0.0/16 10.1.3.2
9 ip route 10.200.1.4/32 10.1.3.2
10 ip route 10.200.1.1/32 10.1.1.2
SRISP Curs 3, Quagga 17/28
Configurare interfet,e s, i rute statice (2)
I show ip route
I show interface eth0
I show int description
I show ip forwarding
SRISP Curs 3, Quagga 18/28
Configurare OSPF
1 router ospf 1
2 network 10.1.0.0 0.0.0.255 area 0
3 network 10.200.1.1 0.0.0.0 area 0
4 network 200.0.0.0 0.0.0.255 area 0
1 router ospf
2 network 10.2.0.0/24 area 0
3 network 10.200.1.2/32 area 0
4 network 200.0.0.0/24 area 0
SRISP Curs 3, Quagga 19/28
Rute OSFP ın Quagga
1 router1# sh ip route2 Codes: K - kernel route, C - connected, S - static, R - RIP, O - OSPF,
3 I - ISIS, B - BGP, > - selected route, * - FIB route
4
5 K * 0.0.0.0/0 via 192.0.2.1, venet0 inactive
6 O 10.10.12.0/24 [110/10] is directly connected, eth0, 00:03:41
7 C>* 10.10.12.0/24 is directly connected, eth0
8 O 10.10.14.0/24 [110/10] is directly connected, eth1, 00:03:36
9 C>* 10.10.14.0/24 is directly connected, eth1
10 O>* 10.10.23.0/24 [110/20] via 10.10.12.2, eth0, 00:02:46
11 O>* 10.10.24.0/24 [110/20] via 10.10.12.2, eth0, 00:02:14
12 * via 10.10.14.4, eth1, 00:02:14
13 O>* 10.10.25.0/24 [110/20] via 10.10.12.2, eth0, 00:02:41
14 O>* 10.10.35.0/24 [110/30] via 10.10.12.2, eth0, 00:01:21
15 * via 10.10.14.4, eth1, 00:01:21
16 O>* 10.10.45.0/24 [110/20] via 10.10.14.4, eth1, 00:02:08
17 C>* 127.0.0.0/8 is directly connected, lo
18 C>* 127.0.0.1/32 is directly connected, venet0
19 C>* 172.10.10.0/32 is directly connected, venet0
20 K>* 192.0.2.1/32 is directly connected, venet0
SRISP Curs 3, Quagga 20/28
Rute OSPF ın Linux
1 router1:∼# ip r s2 192.0.2.1 dev venet0 scope link
3 10.10.23.0/24 via 10.10.12.2 dev eth0 proto zebra metric 20
4 10.10.35.0/24 proto zebra metric 30
5 nexthop via 10.10.12.2 dev eth0 weight 1
6 nexthop via 10.10.14.4 dev eth1 weight 1
7 10.10.14.0/24 dev eth1 proto kernel scope link src 10.10.14.1
8 10.10.45.0/24 via 10.10.14.4 dev eth1 proto zebra metric 20
9 10.10.12.0/24 dev eth0 proto kernel scope link src 10.10.12.1
10 10.10.24.0/24 proto zebra metric 20
11 nexthop via 10.10.12.2 dev eth0 weight 1
12 nexthop via 10.10.14.4 dev eth1 weight 1
13 10.10.25.0/24 via 10.10.12.2 dev eth0 proto zebra metric 20
14 default via 192.0.2.1 dev venet0
SRISP Curs 3, Quagga 21/28
Outline
Rutare
Quagga
Studiu de caz – Vyatta
Keywords
Intrebari
SRISP Curs 3, Quagga 22/28
Vyatta
I open source network operating system
I hardware x86
I ruter, firewall, VPN
I Debian-based, Quagga, OpenVPN
I community & comercial subscription
SRISP Curs 3, Quagga 23/28
Servicii Vyatta
I Community Edition Downloads (Vyatta Community Edition 5)
I ISO imageI XenServer ImageI VMware Virtual Appliance
I Software SubscriptionI Hardware Appliances
I Vyatta 514 Appliance (Cisco 1800 Series)I Vyatta 2500 Apliance (Cisco 2800 Series)I Vyatta 3500 Apliance (Cisco 7200 Series)
I Network Virtualization Subscription (Xen, VMware, Hyper-V)
SRISP Curs 3, Quagga 24/28
Outline
Rutare
Quagga
Studiu de caz – Vyatta
Keywords
Intrebari
SRISP Curs 3, Quagga 25/28
Cuvinte cheie
I rutare, rute, ruter
I protocoale de rutare
I ruter software
I Quagga, Zebra
I daemoni Quagga
I Zserv API
I /etc/quagga/*
I /etc/init.d/quagga
I VTY
I vtysh
I comenzi Cisco vs. Quagga
I Vyatta
SRISP Curs 3, Quagga 26/28
Link-uri utile
I http://openmaniak.com/quagga_tutorial.php
I http://www.quagga.net/
I http://www.vyatta.com/
I http://www.vyatta.org/
SRISP Curs 3, Quagga 27/28
Outline
Rutare
Quagga
Studiu de caz – Vyatta
Keywords
Intrebari
SRISP Curs 3, Quagga 28/28