-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathextra-notes.txt
78 lines (55 loc) · 2.34 KB
/
extra-notes.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
systemctl daemon-reload
systemctl restart rabbit-connect
killall rabbit-connect && systemctl stop rabbit-connect
systemctl start rabbit-connect && systemctl status rabbit-connect
systemctl restart rabbit-connect
################################
systemctl restart rabbit-connect && \
sleep 2 && \
systemctl status rabbit-connect && \
ping -c 2 172.16.0.1
Need to see from home (192.168.2.4) :
ping 172.16.0.100
ping 192.168.100.102
ping 192.168.100.1
Need to see from office (192.168.100.102):
ping 172.16.0.2
ping 192.168.2.4
ping 192.168.2.1
----------------------------------------------------------------------------
# Server Side:
iptables -t nat -A POSTROUTING -j MASQUERADE
iptables -A FORWARD -i rabbit-connect -j ACCEPT
iptables -A FORWARD -o rabbit-connect -j ACCEPT
----------------------------------------------------------------------------
# Home Side:
sysctl -w net.ipv4.ip_forward=1
iptables -t nat -A POSTROUTING -s 192.168.2.0/23 -o rabbit-connect -j MASQUERADE
iptables -A FORWARD -i rabbit-connect -j ACCEPT
iptables -A FORWARD -o rabbit-connect -j ACCEPT
ip route add 192.168.100.0/24 dev rabbit-connect
Or:
iptables -t nat -A POSTROUTING -j MASQUERADE
iptables -A FORWARD -i rabbit-connect -j ACCEPT
iptables -A FORWARD -o rabbit-connect -j ACCEPT
ip route add 192.168.100.0/24 via 172.16.0.1 dev rabbit-connect
----------------------------------------------------------------------------
# Office Side
sysctl -w net.ipv4.ip_forward=1
iptables -t nat -A POSTROUTING -s 192.168.100.0/24 -o rabbit-connect -j MASQUERADE
iptables -A FORWARD -i rabbit-connect -j ACCEPT
iptables -A FORWARD -o rabbit-connect -j ACCEPT
ip route add 192.168.2.0/23 dev rabbit-connect
Or:
iptables -t nat -A POSTROUTING -j MASQUERADE
iptables -A FORWARD -i rabbit-connect -j ACCEPT
iptables -A FORWARD -o rabbit-connect -j ACCEPT
ip route add 192.168.2.0/23 via 172.16.0.1 dev rabbit-connect
Flush:
systemctl stop rabbit-connect && netfilter-persistent flush && iptables-save && ip route
systemctl restart rabbit-connect && sleep 2 && systemctl status rabbit-connect && ping -c 2 172.16.0.1
iptables -t nat -A POSTROUTING -j MASQUERADE && iptables -A FORWARD -i rabbit-connect -j ACCEPT && iptables -A FORWARD -o rabbit-connect -j ACCEPT
Home:
ip route add 192.168.100.0/24 via 172.16.0.100 dev rabbit-connect
Office:
ip route add 192.168.2.0/23 via 172.16.0.2 dev rabbit-connect