Interfejsi su:
WAN1 (eth1) - kablovski modem, dhcp sa javnim ip 80.70.54.6
WAN2 (eth2) - adsl ruter adresa 202.48.4.241/29, adresa vyatte treba da je 202.48.4.244
LAN (eth0) - 192.168.1.0/24
Adrese opsega 192.168.1.16 - 192.168.1.63 (LAN_1) treba da koriste WAN1, a ostatak (LAN_2) WAN2
Samo mašine iz LAN_1 imaju internet (WAN1), port forwarding takođe radi, jedino još nisam testirao port forwarding na LAN_2
Jel izvodljivo to što tražim, šta je sve potrebno da ovo proradi? Load balansing (koliko sam shvatio ovo služi da jedna mašina istovremeno koristi dva neta), static routes ili nešto drugo?
Evo vyattinog konfig fajla, nije još sve definisano do kraja, nadam se da je konfiguracija razumljiva i onima koji nikad nisu videli takvo okruženje
interfaces {
ethernet eth0 {
address 192.168.1.254/24
description LAN
duplex auto
hw-id 00:02:a5:7d:a6:19
smp_affinity auto
speed auto
}
ethernet eth1 {
address dhcp
description WAN1
duplex auto
hw-id 00:01:02:9c:4b:4a
smp_affinity auto
speed auto
}
ethernet eth2 {
address 202.48.4.244/29
description WAN2
duplex auto
hw-id 00:01:02:a0:cd:eb
smp_affinity auto
speed auto
}
ethernet eth3 {
duplex auto
hw-id 00:50:da:37:85:c2
smp_affinity auto
speed auto
}
loopback lo {
}
}
service {
https
nat {
rule 1 {
outbound-interface eth2
source {
address 192.168.1.64/26
}
type masquerade
}
rule 10 {
outbound-interface eth1
source {
address 192.168.1.16/28
}
type masquerade
}
rule 11 {
destination {
port 80
}
inbound-interface eth1
inside-address {
address 192.168.1.20
port 80
}
protocol tcp
type destination
}
rule 12 {
destination {
port 21
}
inbound-interface eth1
inside-address {
address 192.168.1.20
port 21
}
protocol tcp
type destination
}
rule 13 {
destination {
port 25
}
inbound-interface eth1
inside-address {
address 192.168.1.25
port 25
}
protocol tcp
type destination
}
rule 14 {
destination {
port 110
}
inbound-interface eth1
inside-address {
address 192.168.1.25
port 110
}
protocol tcp
type destination
}
}
}
system {
host-name vyatta
login {
user vyatta {
authentication {
encrypted-password $***********$6VA8sAWG51R71
}
level admin
}
}
ntp-server 0.vyatta.pool.ntp.org
package {
******
}
}
syslog {
*******
}
time-zone GMT
}