NAT function test

Others 2022-04-28 02:34:09 views: 0

1. Test objectives and functions:

1. The internal network device can access the IP of the external network;

2. The external network PC can log in to the telnet of the internal network device.

Second, the device hardware structure

1. 3135 is equivalent to a switch;

2. The eth0, netra and business network ports are connected to 3135 through the internal port.

3. Network configuration

1. Basic network environment configuration

# Set the master network
 ifconfig eth1 10.13 . 113.230 Netmask 255.255 . 255.0 route the 
Add default gw 10.13 . 113.254 ifconfig eth0 10.13 . 113.231 Netmask 255.255 . 255.0 route the 
Add -net 10.13 . 113.0 Netmask 255.255 . 255.0 gw 10.13 . 113.254 dev eth0
 ifconfig eth0 : 100 10.40 . 20.1 netmask 255.255 .
 255.0
#Configure switch board netra network
host_tools -boot 15 1 1 netra
ifconfig eth1 10.40.20.150 netmask 255.255.255.0
route add default gw 10.40.20.1


2. NAT configuration (intranet access to external network)

#IP forwarding enable and NIC isolation
 echo  1 > /proc/sys/net/ipv4/ ip_forward
 echo  1 > /proc/sys/net/ipv4/conf/all/ arp_ignore

#NAT source address translation, address masquerading
 xtables -multi main4 -t nat -A POSTROUTING -o eth0 - j MASQUERADE
 #Source address translation, the source address is 10.40.21.15, the destination address is 10.13.113.25 The packet changes the source address to 10.13.113.231 
xtables -multi main4 -t nat -A POSTROUTING -s 10.40 . 20.150   -d 10.13 . 113.25 -j SNAT --to-source 10.13 . 113.231 
/* ---------- above 2 operations Both internal network access to external network ------------- */


3. NAT configuration - external network access to the internal network (PC secure CRT telnet login netra)

#First change the port of SecureCRT telnet to 50022
#Configure NAT (78460 port configuration)
xtables-multi main4 -t nat -A PREROUTING -p tcp --dport 50022 -j DNAT --to-destination 10.40.20.150

#No way, check if port 78460 is open
netstat -an #open
 port
 nc -lp 22 & 
xtables -multi  main4 -I INPUT -p tcp --dport 50022 -j ACCEPT

# Still no way, tlenet modifies the port number (modified in ramdisk, then restarts)
 /rootfs/etc/service telnet

 

Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=326003774&siteId=291194637
NAT
Recommended
Rushing to the GitHub hot list——How can open source programming languages and frameworks be so cute?
Beijing Humanoid Robot Innovation Center launches Tiangong, the world's first full-size humanoid robot with purely electric drive for anthropomorphic running
Ranking
8个无需编写代码即可使用 Python 内置库的方法
Java collections interview knowledge Lite
Machine learning algorithms foundation - Introduction a (watermelon materials for the book)
(Easy) Ransom Note - LeetCode
[Five days] Qt from entry to actual combat: the second day
Remember once extremely pit father can not download Maven Jar package of issues: IDEA question
The minimum cost Shortest
OSPF study map (the most complete version)
Network Takeaways
GnuPG
Daily
More
2024-04-27(29)
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)
2024-04-23(30)
2024-04-22(5)
2024-04-21(0)
2024-04-20(6)
2024-04-19(5)
2024-04-18(0)

Code World

© 2018 codetd.com