Commit caa9e60c authored by Theo Maillart's avatar Theo Maillart

base config

parent 8ff6147e
# VLAN -> Admin: 81 Personnel: 82 Invite: 83
# reset conf
enable
write erase
delete flash:vlan.dat
reload
# base conf
## create VLAN
conf t
vlan 81
name VLAN_ADM
state active
exit
vlan 82
name VLAN_PERS
state active
exit
vlan 83
name VLAN_INVITE
state active
exit
## conf ip
int vlan 81
ip address 100.81.0.1 255.255.255.0
int vlan 82
ip address 10.0.82.1 255.255.255.0
int vlan 83
ip address 10.0.83.1 255.255.255.0
## conf physic port
int fastethernet0
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,81-83,1002-1005
switchport trunk native vlan 81
exit
exit
# save startup-conf
write memory
# filtering
access-list 101 permit tcp any host 10.0.81.1 eq 22
int vlan 82
ip access-group 101 in
# NAT inside = priv outside =target
interface vlan 85
ip nat inside
interface vlan 86
ip nat outside
ip nat pool ovrld 10.0.16.1 10.0.16.1 prefix 24
ip nat inside source list 9 pool ovrld overloadaccess-list 9 permit 10.0.15.0 0.0.0.255
# VLAN -> Admin: 81 Personnel: 82 Invite: 83
# address 100.81.0.5
#!/bin/bash
docker network create -d macvlan --subnet=10.0.82.0/24 --gateway=10.0.82.1 -o parent=ens9.82 vlan82
docker network create -d macvlan --subnet=10.0.83.0/24 --gateway=10.0.83.1 -o parent=ens9.83 vlan83
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment