Commit 574097ae authored by Theo Maillart's avatar Theo Maillart

Final conf NAT & PAT totally redefined

parent b76e9ffc
......@@ -91,6 +91,7 @@ ip access-group 104 in
! PAT
! need vlan83 outside & vlan82 inside
ip nat inside source static tcp 10.0.82.3 80 10.0.83.1 3128
ip nat inside source static tcp 10.0.82.3 22 10.0.83.1 3122
! modify 101 rule
access-list 101 permit icmp 10.0.83.0 0.0.0.255 any echo
......@@ -98,20 +99,14 @@ access-list 101 permit tcp any any eq 80
access-list 101 permit tcp any any eq 22
access-list 101 permit tcp any any eq 21
access-list 101 permit tcp any host 10.0.83.1 eq 3128
access-list 101 permit tcp any host 10.0.83.1 eq 3122
access-list 101 deny ip any any log
! NAT inside = priv outside =target
interface vlan 83
ip nat inside
interface vlan 82
ip nat outside
ip nat pool ovrld 10.0.82.1 10.0.82.1 prefix 24
interface vlan 82
ip nat inside
ip nat pool ovrld 10.0.83.1 10.0.83.1 prefix 24
ip nat inside source list 9 pool ovrld overload
access-list 9 permit 10.0.83.0 0.0.0.255
! modify 103 rule
access-list 103 permit icmp host 10.0.82.1 10.0.82.0 0.0.0.255 echo
access-list 103 permit tcp any host 10.0.82.3 eq 80
access-list 103 permit tcp any host 10.0.82.3 eq 22
access-list 103 permit tcp any host 10.0.82.3 eq 21
access-list 103 deny ip any any log
access-list 9 permit 10.0.82.0 0.0.0.255
FROM debian:latest
# Container 1 vlan_personnel
RUN apt update \
&& apt install -yq openssh-server proftpd-basic apache2 \
&& apt install -yq openssh-server proftpd-basic apache2 telnet \
&& rm -rf /var/lib/apt/lists/*
#\ && mkdir /run/sshd
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment