Project

General

Profile

Tâche #8147

Distribution EOLE - Scénario #8829: Demandes EOLE 2.4 déjà résolues

Agregation et VLAN

Added by Philippe Caseiro almost 7 years ago. Updated over 6 years ago.

Status:
Fermé
Priority:
Normal
Assigned To:
Start date:
Due date:
05/30/2014
% Done:

100%

Estimated time:
4.00 h
Spent time:
Remaining (hours):

Description

Lorsqu'on utilise des VLAN avec l'agrégation de lien, il manque des règles "iptable" pour permettre aux machines qui sont dans les zones attachées aux VLAN d'avoir accès a d'autre protocoles que HTTP/HTTPS.

Voici les règles que nous avons ajouté pour que cela fonctionne sur notre amon 2.3 :

iptables -t mangle -I PREROUTING -s 192.168.10.0/24 -i eth1.10 -m state --state INVALID,RELATED,ESTABLISHED,UNTRACKED -j RESTOREMARK
iptables -t mangle -I PREROUTING -s 192.168.10.0/24 -i eth1.10 -m state --state INVALID,RELATED,ESTABLISHED,UNTRACKED -j RETURN
iptables -t mangle -I PREROUTING -s 192.168.10.0/24 -i eth1.10 -m state --state NEW -m recent --update --seconds 3600 --name T1 --rdest -j T1
iptables -t mangle -I PREROUTING -s 192.168.10.0/24 -i eth1.10 -m state --state NEW -m recent --update --seconds 3600 --name T1 --rdest -j RETURN
iptables -t mangle -I PREROUTING -s 192.168.10.0/24 -i eth1.10 -m state --state NEW -m recent --update --seconds 3600 --name T2 --rdest -j T2
iptables -t mangle -I PREROUTING -s 192.168.10.0/24 -i eth1.10 -m state --state NEW -m recent --update --seconds 3600 --name T2 --rdest -j RETURN
iptables -t mangle -I PREROUTING -s 192.168.10.0/24 -i eth1.10 -m state --state NEW -j T2
iptables -t mangle -I PREROUTING -s 192.168.10.0/24 -i eth1.10 -m state --state NEW -m statistic --mode random --probability 0.500000 -m recent --set --name T2 --rdest -j RETURN
iptables -t mangle -I PREROUTING -s 192.168.10.0/24 -i eth1.10 -m state --state NEW -m recent --set --name T1 --rdest -j T1

Related issues

Related to conf-amon - Anomalie #8288: agregation non fonctionnelle sur 2.4 Fermé 05/19/2014 05/30/2014

Associated revisions

Revision a159b185 (diff)
Added by Emmanuel GARETTE almost 7 years ago

support des vlans dans agregation.sh (fixes #8147)

Revision 63bbcc14 (diff)
Added by Emmanuel GARETTE almost 7 years ago

qualification de l'agregation + quelques petites corrections (ref #8147 @6h)

History

#1 Updated by Joël Cuissinat almost 7 years ago

  • Project changed from Amon to conf-amon
  • Estimated time set to 4.00 h

#2 Updated by Emmanuel GARETTE almost 7 years ago

  • Status changed from Nouveau to Résolu
  • % Done changed from 0 to 100

#3 Updated by Joël Cuissinat almost 7 years ago

  • Due date set to 05/30/2014
  • Assigned To set to Emmanuel GARETTE
  • Target version set to Eole 2.4.0.1
  • Distribution changed from EOLE 2.3 to EOLE 2.4

#4 Updated by Joël Cuissinat over 6 years ago

  • Target version changed from Eole 2.4.0.1 to 231

#5 Updated by Luc Bourdot over 6 years ago

  • Parent task set to #8829

#6 Updated by Daniel Dehennin over 6 years ago

  • Status changed from Résolu to Fermé

Also available in: Atom PDF