From 115888b4682a6d40d66dc90278a9dca08f380ec9 Mon Sep 17 00:00:00 2001 From: shiraorie Date: Fri, 31 Oct 2025 10:34:49 +0500 Subject: [PATCH] 1 --- README.md | 10 +++++----- files/br-rtr/nftables.conf | 4 ++-- files/hq-rtr/nftables.conf | 4 ++-- images/module3/dnsmasq new.png | Bin 0 -> 8905 bytes 4 files changed, 9 insertions(+), 9 deletions(-) create mode 100644 images/module3/dnsmasq new.png diff --git a/README.md b/README.md index b8acc0d..adb73d7 100644 --- a/README.md +++ b/README.md @@ -1706,7 +1706,7 @@ nginx -t && sudo systemctl reload nginx - Скачаем готовый nftables.conf с github, укажем путь для замены нашего nftables: > !dos2unix и curl на HQ-RTR уже скачаны! -***curl -o /etc/nftables.conf https://raw.githubusercontent.com/4bobus/laba/refs/heads/main/files/hq-rtr/nftables.conf*** +***curl -o /etc/nftables.conf https://raw.githubusercontent.com/shiraorie/demo2026-1/main/files/hq-rtr/nftables.conf*** ***dos2unix /etc/nftables.conf*** @@ -1731,7 +1731,7 @@ nginx -t && sudo systemctl reload nginx ***apt install curl -y*** -***curl -o /etc/nftables.conf https://raw.githubusercontent.com/4bobus/laba/refs/heads/main/files/br-rtr/nftables.conf*** +***curl -o /etc/nftables.conf https://raw.githubusercontent.com/shiraorie/demo2026-1/main/files/br-rtr/nftables.conf*** ***dos2unix /etc/nftables.conf*** @@ -2083,7 +2083,7 @@ apt install rsyslog 3. Настроить DNS на HQ-SRV:

- +

- Теперь интерфейс будет доступен по адресу: @@ -2194,7 +2194,7 @@ apt install rsyslog - Скачиваем его с github в необходимую директори: > !dos2unix и curl на BR-SRV уже скачаны! -***curl -o /etc/ansible/inventory.yml https://raw.githubusercontent.com/4bobus/laba/refs/heads/main/files/inventory.yml*** +***curl -o /etc/ansible/inventory.yml https://raw.githubusercontent.com/shiraorie/dewmo2026-1/main/files/inventory.yml*** ***dos2unix /etc/ansible/inventory.yml*** @@ -2247,7 +2247,7 @@ apt install rsyslog - Скачаем файл с github в нужную директорию: > !dos2unix и curl на BR-SRV уже скачаны! -***curl -o /etc/ansible/backup.yml https://raw.githubusercontent.com/4bobus/laba/refs/heads/main/files/backup.yml*** +***curl -o /etc/ansible/backup.yml https://raw.githubusercontent.com/shiraorie/demo2026-1/main/files/backup.yml*** ***dos2unix /etc/ansible/backup.yml*** diff --git a/files/br-rtr/nftables.conf b/files/br-rtr/nftables.conf index 5590baf..16d42c5 100755 --- a/files/br-rtr/nftables.conf +++ b/files/br-rtr/nftables.conf @@ -35,8 +35,8 @@ table inet filter { table inet nat { chain prerouting { type nat hook prerouting priority filter; policy accept - ip daddr 172.16.50.2 tcp dport 3015 dnat ip to 192.168.200.2:3015 - ip daddr 172.16.50.2 tcp dport 80 dnat ip to 192.168.200.2:8080 + ip daddr 172.16.2.2 tcp dport 2026 dnat ip to 192.168.200.2:2026 + ip daddr 172.16.2.2 tcp dport 8080 dnat ip to 192.168.200.2:8080 } chain postrouting { type nat hook postrouting priority srcnat diff --git a/files/hq-rtr/nftables.conf b/files/hq-rtr/nftables.conf index 5ad36ee..42e7355 100755 --- a/files/hq-rtr/nftables.conf +++ b/files/hq-rtr/nftables.conf @@ -35,8 +35,8 @@ table inet filter { table inet nat { chain prerouting { type nat hook prerouting priority filter; policy accept - ip daddr 172.16.40.2 tcp dport 3015 dnat ip to 192.168.100.2:3015 - ip daddr 172.16.40.2 tcp dport 80 dnat ip to 192.168.100.2:80 + ip daddr 172.16.1.2 tcp dport 2026 dnat ip to 192.168.100.2:2026 + ip daddr 172.16.1.2 tcp dport 8080 dnat ip to 192.168.100.2:80 } chain postrouting { type nat hook postrouting priority srcnat diff --git a/images/module3/dnsmasq new.png b/images/module3/dnsmasq new.png new file mode 100644 index 0000000000000000000000000000000000000000..d535a0b66aeb24f7d9f1e0da2a5ed6597deb3696 GIT binary patch literal 8905 zcmc(F3sll+-an1IwKLT?O_P;Y>`vKD&23c7ys*=xPIg;0Z&)%7<_(cC%Dezh(^gZ8 zROTg7+{w%fA_5|s3QeVC3Zw~$qLd_*h@^xFg1kR%XWo5h-Z{Jf_kGX#a}E!e^E+@3 z&*%HOJzV+gk-(K7*na>5fmR;)a(@U2v_u8m_x@oi@QyRJq!M^of(Z%S2dWorcn!Sx zUHs>VKL>&6#O3CbzXx8w|IL?C7!c^ghYR;5Jaly|2=r;pf&HH!OOMeEuRJ~E^WnEI z(vIe@9=qlhoRYtC@T;XA%RV-8J^hd|;I9VKuuDisY526OT4 zT&t#mSNPWHO1u|Gs9X+yR`Ntbd0hrq^`)!nl@^yw^}%vN)LsEEnbR;;9bSV!K;=9h z4dUs0T$0JOKdGAFvnId0UORK*lR16n>OxKT=mUvicez$HO$~A37Zv;3l^|4aJg|o_ z$Lx62;d2-~WaRteRFiHsRom}DtjjUDLgwVc>?L1qls3oOFg0P2xaUh|l`BB^Prh3R zN|%84tRP`*jdMFr5z94qSkE~Di&)k5+x+q8lo1n39@%l5yo#s>0>UNM92cZBTUIeFiM!l`*8*f0)@-(%GRVF_=G|r&Q7%(DSQDp%fd1Vo6n^k@yaV< zsQk8?jn&m@6j%(JA0~N*NE5`@txtF)_bNYx4`FN0%s<=}ooy$a=qW;8F-0&i+S2&` z2~(U7Of?vP54opR)}bMDo!*+2+rf5C`fF2}sJ={HL<3S1C;EDQ``upb3mtBy=2=#A zNE6lV918D_;hxZu zKW)W7_n+boQp2$zlRa_vuOeG*U{8Ux<81_916ke;6w2xJc6?{N$9e_)N(*3uGiSIg$Hhl-hWN z%6ViSyglWMY|srNeqc4i_v?0SMDk*%a`_P@U=afsbsPYwQr8aiYgljfR>db8zbRfN zlKXBGOD(3ddFMCgQRP5s`PeG3`)8LsmJP8cu$KCU-YN5F=R4qWKUxYv@gE>`1A#7| z#4H6p|8uec1ln+kzaI4M!v-%K&^PNK@e8xLh}-|k#mp(-hItz)EHUhA=7Q>hj}9G} z1%2fUQQ5R{xz-IQmrc5UOEFqzW@hvltV4NudG9XZ>%&LrHLTbTIsGA@C$t9ok1zZC0=Dl{MAB(Md)hbpDNKbH92hMPPbCd3zyz z4tsonGqI_@&!zWswWv=+>uceM;ZH(zEFUuS3{50n$$cZdkyxJEB}+XL>1PTW|IROi5CLiuUu z#!H$|duGsCAHtA5zKsT_ECczbw0qe&N|h@?-T+V+wh+Czk?+?3yY2i9peSbi{QU5F zpyw;zQE?txq0{M9uVP|XXJ%(xy|QxSd!*`{9);pyHQQY5JW`vMJ+XnJLU&1aOHG+7 zJEnSBT!WYVd+dOZ$ws*z6BBlZ7DPIjST}QOD!kI@PaT;syBKGD9Kan&M&|t#_B;ZW z!IUaRqnYFmYC2WRPEwNT%DUwIFu7Yrm1W2A-3=Qh2FUQRz(=4GW5u{EjjTF2ETa)B!Xcf<}|c@|qwbxlfzW_Qz{+BY3d?Aa-r za!*0dPH{Mdc>P7;TF#{>%J9n6URb7bt<*jV6WdbjzN^+HKta{nw7$vS_uh(YwrIcV zB@++ii`2#Wr}ckHW50p>UlAnwxk8~(z2a^O&xw!IbtH2lgKa=ZepH%AlSqY+M&xp9 z<8?j?0?$=OIVFMa9{|R-`|>?hj7z;LN_Mq#AntX>j*)$*V->lxk=mu+B-bQ0l68A2 zs8rcRV&bcZ;yjC-cbV6LX}74ZykO>*ssf?L=s;&*fCw%K`M(1$Z$KZdb)31OyCv182`G zok>?4`;^tGL*aubpcp+N3hs&1yyb$vIcuiRcn+_ly?v45xpgSBC#6m(E7p5FyNd(8 z`Ct(t0TAf0do(1EY`V9@C=TizGzKC2^;t|KHBPtW`Bgl(y&Y%SAnyc>TDjF^i{rNR zkA9p3*?bgv6S50=2T!26V)=unM}pa_`W@?w2ur@DH0u|%=gO@2|4xVg-3?syWD6I! zXq4s!>H1q(=Hw28)i0fT9*@P0|-AH}UiMqtqlX{D!9c?^Wnm z&=K9Q8E*!Mb{iCW8M`lClar^H z8ALGm5i(K+fkMWaDwZ9Ag^Th*ekS$=vsE10HuBghs(X>vpo>j)aMH6H#jq&Lux1VG#OH27}tp9r4iPCW%iAJOqL9>rRpv_Mwku_7gWR-|09dKg-q$ zjwCxAUzJ_A^7$$HZbj{{;z$q5Q}xR8_q(f9SlUmCElTm0=k#Y!1zmf;V#q%{~g>3{EgJ9@f5CCx6KcHCjI*C z3Tgxeji4wpW3J}F>cXg(i2jJAWR6gzb58Ncc{DW%2}%AqK-wyeL8)>uAu;%g?yRNQ zc~`RY)%Y!ekc;s(eCziteUIy+klQ`YR?HsJ%rPEjXZMrminYiqb8);lmnU>paJwiK zdbd!^Q@5Zirv}$C@=-Nbi;$?|2E36LrB)71(Y9zdgM(*4~)0? zPVT-D`Yf6j-v)M41vAYVhlK+-ZW*&QbuM=}f|JB(&ClX*X^%2L3v%aVwx^{ehBtCf z7@R1+-iAp%d`-5>=P}1CAQ6w;XnixY0CIk4>-=>IFQ#1SWkU&_X#$FhUfFB)T;~anX0h(Du=}Nf@ zT$|9g#0p> z-yD~%vhG~7>x+@6Z5i5=V@N*cg3~CGwWQ4%5_f!!d@+WZsw!D_ zRA7@Gxxh;X{X1A*>Z!Q!Iyu66>Q7`^MrGD^OH)QvTbK(wT;6#bn2O0mD1KQ@YJ9Tb zFW<>$$}rOwCzSm!r@tmdZftK!@=rOoxpuvt-+(DnI(6W(-S7JE z5K8n2MsovwJNfzssXMt6V%;njyKy%h1aJD%N>F$Ml>edC5}Y-O;Lsc=NgGM5?L2az zKAdMMhH=0&6{nyR2|rT@FuM3Qz0zElB5WIE7@6tf*gCXdiVz1s>eJl~OWY;bs=7uY z;p50eDvM!iRk2Z9s`_C`UB(0)ifKHD1Z+Z^X_3b<71sT_HnA|?Ic<=m+Nq+g+L6W*xB1fj-T6N6X zin1AOS7vg~V;rR;exRjNDtRn$=!ode2+*`aX?gsN?{J~HZM)s!(XQpt5XF-toV2+g z-0%HF@MR+pBRsNjG<%jV2<6RF=YU<~APDGL-NQg7|t|8XUnzIqqqe;0wT#6Fxv6p+C!p~Q{G6kwP z^SG+ySwHJje+Bi`i#2=eKOyc{>*6F4IR?PqMxQ?BE;jJ{*Fu0CpHXQHs|je_MRHB` zaupFrsX@pFy}!$(3hiYFdpNU$5LLOC+=*HV9g(<-ocLq9iyI|w?41Ns89WwQ&ENeQ zw|Xom#HZFJ=wCtMZ&x}{2HoqNt&YMSC_xcLg)er{+L^k5~U{qU2!pKG$9#eSv3sO8{ z^VE764H&v`p1$pqwX8@=$Vy+=4mY7-EkvRU)ZgZ;Pn+z+RyJ#iosHYajQ8+|?AAi; zI^1q-cIamIE1@V9-bOI$LdFqzSy@?g_oC-G6Ey8I#nF5OYDUJx!Vk(ky&=fpJYV8C zHE(V=3k!`A;+zN)jyPS+z!HX(ya3!x8!$mlt~v3CJ55T(jLe{a#B8erh{%E`JEtHj zIfY`F6NQ_F9|}0lh|}R*ytG#gjlFFV=*8Kof>`tK{Cak>qI^QT*=jm3+y&~EKlGqp zx`{p5&aso)lUo9A&1F5Cttv>s>N7R6zPbclg)ZJ0rMcA-+$s06WuWtdOXM&fcS)u$ z-gj>0o?mz*X1VK8F(P{ZWVDOlLxBsQ6OcBtePm}exAP!lPbb~$=+n!vO;4|TUQ!~} zW4gek9n8ewDi^$9T`0sV{hQrpnC97A&Vhk-3l}nK~em zv%DC`!|d0J?A)djR#xskcV-B1?kz7bWQmsPpTO={yaBqD7&`~I`m4XHQ)FqFJbdU! zm|vuWtrL%Q9<(#IK=b3814IJx_)z30!p4`9uRqO^BupM6M08pO8O%UF<~uU7{TWVr zWo}R4WceGzpYPECGy#Q_Ym$Bu_bTb^_LzK;jl9(A^UgToc!(@d5L(zLf;RoPtK z0V_y)1%$;1N)y&sI2zs`fk4j5s>Ay|9|}&C&^|F(dW-EUec%#e7to5`P7gRuZdtzw z{?p0YR6E{#(|lvfzvGxB_ClC@Qx(3joaLPDkCS6%^=69g#`XzlZ z`uYpzH#-2nP$60y&i;L8=Pl{M8O+&~9Opu*ZdA)Lw=E!C{N-4ZmaW0zrD#0@(S_FqX|UB9&$g z%FCj`RT44s9NsRwab&KQ^s8Xd7S@C(6va**f>_HIVIQ>V&x!3ns|N!qneUavU$Q*y z6(i4bsPwOK=c){EY8gNm;ugWpZl!y<{?WGBJ!9Zaku0a$*M?>ro*)1EiNnE#3Ge`} zAm0C_TM}=Uxa|`=oxNjZIT7L+yInluM9Ot#@aZ%v&VM*eoo`!Mrga3iAUhtA6j0t~@Ce1P zIzs&3ri=f71tsI9@0dRNa@PB$m(c>!)Q{)TZS%U@S=({J%q03ImTXv$oRGQc6o--p z_xbG$g>qR{^uvwO`FDkbKMvV};jWnK7rS(E>_#5=;LwQm9EKUN0>f z$@EoNBE5)%L2mkRS_e~t{3&N_tD|=q?y|)g$yYDn+xN)+7rJLzM9Y$Hi$iQ zT&VoypJOuJ9gfjQN=*-V$>i^qdE-0FDIQ^fzkpr%jSdlC6O*{B+%-tSXbDS{JvRHr zPGqJgKX!U9)=ux%#Y2#kR<9!b z&?-fo_Vp9V-z0_&ZFYZwa=g%;%T}k28cWs=fAKn}BrHc?JtpX9w+J8eHUQOQbeVZ* zpz?5_c!K1Z;pfLVFFI}B;2S6LBoQ;%^3t*M&y>=EFR_=z6u=#cQUN#P?;`%Rn?03q z$c~+<18ffZU)Dgc7iyq*+R9}=Wnrs%sH*Q}B+1vXTQ2$708~)0n+Rb=CPjfi7Vi9E8o?nkv>3>)V0)CCtAYxnUPh?)uWvOo8H9vA7x&vQL5XZdBz9(L_ zPX}45iciR2OAO-!rE9M(i!AZ!nLRk^-@l0<`MvjJx3klo9<7{bH0_52rOV1@&zHZ0 zaRwrg8rv}#;X*B+- z=bdmx18EO%J#7xOF{&YKaOl**Fl6Y4kWqT7KuRR!Tb7FXSY3j@X5ZnvOL zyin0PE)w1c^Wqp@@^_ql!Jy(cN&UQL5Lj6!7M>=%0cQ0@W+%^K4-qZJ+kw0bc()o_ z|8GQNC)S9mcNUh@X)@t+iHlb<%xm;GU24|kT;^z0j2PG}JoKm?Fi&65|5T0w2ah)aHlCe7FkLQ2 zLafp_33sve6#1<{8jjXGj??IpMdza>3TRZxJ4(-*p9BWtTATFcNj9}e2(FoO_O9m^ z3Ev$6G3Kf)!T~I>F#!H;E5YfUB~`ur%c|9pm-*6S<2O-LKgJ>l%9~MH?opxLtW$_^ zS@|JUUa!#+Eg6jHKf&UR*gGk2s-h(D%q9