Configurazine Bridge su vmware virtual netwroks due rami

Home Page Forums Network Management Bridges and Routers Configurazine Bridge su vmware virtual netwroks due rami

This topic contains 1 reply, has 0 voices, and was last updated by  mbertoldi 3 years, 3 months ago.

Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • #44478

    mbertoldi
    Member

    help ! nuova installazione su vmware.

    Sto configurando un semplice bridge tra 2 Lan virtuali ( vmware Esxi).
    l’obiettivo è quello di mettere un firewall sui due lati del bridge dividendo le macchine
    virtuali in due gruppi che si vedano tra loro ma solo per i servizi abilitati.
    Non posso modificare gli IP delle macchine.

    La ‘macchina’ zeroshell ha due porte di rete ( ETX1, ETX2)

    ETX1 è connesso ad una serie di macchine mappate 192.168.0.x/24
    ETX2 è connesso SU due macchine macchina mappate 192.168.0.78/24 ; 192.168.0.77/24

    gateway ETX1 , 192.168.0.1/24

    L’interfaccia usata per comunicare con zeroshell è su 192.168.0.79 ETX1.

    Ho abilitato un semplice bridge tra ETX1 ed ETX2,

    Le macchine presenti su ETX1, si pingano tra loro e pingano 192.168.0.1 correttamente.
    Le macchine presenti su ETX2, si pingano tra loro ma NON riescono a raggiungere 192.168.0.1
    Le macchine lato ETX1 non vedono il lato ETX2 e viceversa. < - PROBLEMA



    Le impostazioni usate per il bridge sono quelle di base ( ETX1 ed ETX2 fanno parte del Bridge).
    Firewall lasciato su default ( fa passare tutto).

    Non riesco a capire perchè non funzioni il bridge.

    Di seguito quello che vedo in impostazioni :


    SPANNING TREE PROTOCOL (STP: no)
    bridge id 8000.000c29f8e915
    designated root 8000.000c29f8e915
    root port 0 path cost 0
    max age 20.00 bridge max age 20.00
    hello time 2.00 bridge hello time 2.00
    forward delay 5.00 bridge forward delay 5.00
    ageing time 300.00
    hello timer 0.30 tcn timer 0.00
    topology change timer 0.00 gc timer 8.34
    flags

    ETH00 (2)
    port id 8002 state forwarding
    designated root 8000.000c29f8e915 path cost 2
    designated bridge 8000.000c29f8e915 message age timer 0.00
    designated port 8002 forward delay timer 0.00
    designated cost 0 hold timer 0.00
    flags

    ETH01 (1)
    port id 8001 state forwarding
    designated root 8000.000c29f8e915 path cost 2
    designated bridge 8000.000c29f8e915 message age timer 0.00
    designated port 8001 forward delay timer 0.00
    designated cost 0 hold timer 0.00
    flags

    FORWARDIND DATABASE
    port no mac addr is local? ageing timer
    2 00:08:9b:bf:51:b4 no 64.03
    2 00:08:9b:db:9b:ee no 64.03
    2 00:09:0f:53:0e:c9 no 6.26
    2 00:0c:29:03:57:8d no 236.52
    2 00:0c:29:0a:20:99 no 40.51
    2 00:0c:29:13:0e:49 no 64.03
    2 00:0c:29:44:2a:fd no 213.06
    2 00:0c:29:6a:6c:1e no 0.03
    2 00:0c:29:7e:f9:19 no 23.41
    2 00:0c:29:85:96:7a no 273.63
    2 00:0c:29:86:1a:dc no 193.31
    2 00:0c:29:a7:0e:84 no 186.51
    2 00:0c:29:aa:2d:87 no 7.21
    2 00:0c:29:ce:c1:76 no 292.58
    1 00:0c:29:d8:b9:14 no 34.43
    2 00:0c:29:e1:f9:70 no 152.63
    2 00:0c:29:f7:8d:49 no 137.81
    2 00:0c:29:f8:e9:15 yes 0.00
    2 00:0c:29:f8:e9:15 yes 0.00
    1 00:0c:29:f8:e9:1f yes 0.00
    1 00:0c:29:f8:e9:1f yes 0.00
    2 00:0c:9f:3f:c8:6a no 8.43
    2 10:0d:7f:b7:59:82 no 14.16
    2 84:34:97:f7:4e:29 no 34.06
    2 b4:75:0e:2d:a7:d7 no 74.67
    2 d4:c9:ef:5e:a7:3c no 23.25


    NAT :non inserito. ( non funziona anche inserendolo)


    ROUTING TABLE

    ROUTING TABLE Static Dynamic Auto Refresh Close
    Destination Netmask Type Metric Gateway Interface Flags State Source
    DEFAULT GATEWAY 0.0.0.0 Net 0 192.168.0.1 BRIDGE00 UG Up Static
    192.168.0.0 255.255.255.0 Net 0 none BRIDGE00 U Up Auto
    192.168.250.0 255.255.255.0 Net 0 none VPN99 U Up Auto


    firewall ( non funziona anche togliendo le regole seguenti )

    Chain allyesagain (0 references)
    pkts bytes target prot opt in out source destination
    0 0 LOG all — * * 0.0.0.0/0 0.0.0.0/0 limit: avg 10/min burst 15 LOG flags 0 level 4 prefix “allyesagain/001”
    0 0 ACCEPT all — * * 0.0.0.0/0 0.0.0.0/0


    #53995

    mbertoldi
    Member

    BRIDGE00 Forwarding State (STP: Disabled)
    BRIDGE MAX Graphics Close
    VLAN: none
    3: ETH00: mtu 1500 qdisc pfifo_fast master BRIDGE00 qlen 1000
    link/ether 00:0c:29:f8:e9:15 brd ff:ff:ff:ff:ff:ff
    RX: bytes packets errors dropped overrun mcast
    22089082 123765 0 1971 0 8612
    TX: bytes packets errors dropped carrier collsns
    35332233 102434 0 0 0 0
    Throughput: RX 4.56 Kbit/s TX 6.32 Kbit/s

    VLAN: none
    4: ETH01: mtu 1500 qdisc pfifo_fast master BRIDGE00 qlen 1000
    link/ether 00:0c:29:f8:e9:1f brd ff:ff:ff:ff:ff:ff
    RX: bytes packets errors dropped overrun mcast
    914308 10488 0 0 0 834
    TX: bytes packets errors dropped carrier collsns
    5006569 51556 0 0 0 0
    Throughput: RX 0 bit/s TX 1.90 Kbit/s

    VLAN: none
    19: BRIDGE00: mtu 1500 qdisc noqueue
    inet 192.168.0.79/24 brd 192.168.0.255
    valid_lft forever preferred_lft forever
    RX: bytes packets errors dropped overrun mcast
    20528508 131483 0 10 0 0
    TX: bytes packets errors dropped carrier collsns
    34137063 91009 0 0 0 0
    Throughput: RX 4.08 Kbit/s TX 6.32 Kbit/s

    #53996

    mbertoldi
    Member

    cofngirued vmware interface in promisque mode

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.