Différences
Ci-dessous, les différences entre deux révisions de la page.
documentation:vmlaclns [2012/09/17 08:15] |
documentation:vmlaclns [2012/09/17 08:15] (Version actuelle) |
||
---|---|---|---|
Ligne 1: | Ligne 1: | ||
+ | |||
+ | Intitulé du projet / étude | ||
+ | |||
+ | ===== Contact ===== | ||
+ | |||
+ | * Alves, Fernando, (fendo) | ||
+ | * fernando(point)alves(at)sameswireless.fr | ||
+ | |||
+ | ===== Présentation ===== | ||
+ | |||
+ | Exemple de création d'un environnent de test réseau, à l'aide de VMs KVM, composé d'un serveur LAC pppoe (ou autre support ppp), d'un serveur LNS et d'un serveur Freeradius. | ||
+ | |||
+ | ===== Avancement ===== | ||
+ | |||
+ | Cette environnement a été testé sur un OS hôte Debain 6.0.4-amd64 installé sur un Dell R415 avec comme système de fichier LVM. | ||
+ | |||
+ | ==== Etape 1 - Machine Hôte ==== | ||
+ | |||
+ | Configuration minimum de la machine : | ||
+ | * CPU 64 bits. | ||
+ | * processeur multi-core supportant la virtualisation. | ||
+ | |||
+ | Installation des packages: | ||
+ | < | ||
+ | apt-get install bridge-utils | ||
+ | apt-get install qemu-kvm libvirt-bin | ||
+ | apt-get install kpartx | ||
+ | </ | ||
+ | |||
+ | Activer IP forward dans / | ||
+ | < | ||
+ | |||
+ | Bridger l' | ||
+ | < | ||
+ | auto br0 | ||
+ | iface br0 inet manual | ||
+ | # utiliser static si affectation d'une IP a l' | ||
+ | #iface br0 inet static | ||
+ | # address 192.168.0.254 | ||
+ | # netmask 255.255.255.0 | ||
+ | # broadcast 192.168.0.255 | ||
+ | bridge_ports eth0 | ||
+ | bridge_stp off | ||
+ | bridge_fd 0 | ||
+ | bridge_maxwait 0 | ||
+ | </ | ||
+ | |||
+ | == Création d'une VM Modèle Debian Linux == | ||
+ | |||
+ | Créer une VM Linux Debian modèle de 10G avec VMM (Virtual Machine Manager, en remote depuis pc client), choisir image type raw. (Exemple : / | ||
+ | \\ | ||
+ | installer le package VLAN: | ||
+ | < | ||
+ | |||
+ | La VM peut ensuite être supprimé mais il faut conserver une copie de l' | ||
+ | |||
+ | ==== Etape 2 - VM FreeBSD MPD5 ==== | ||
+ | |||
+ | __Création d'un LV pour la VM FreeBSD__ | ||
+ | < | ||
+ | :~# lvcreate -n lvfrbsd -L 10g h415 | ||
+ | </ | ||
+ | |||
+ | Télécharger la dernière version iso de FreeBSD (ex: FreeBSD-9.0-RELEASE-amd64-....iso). | ||
+ | Utiliser virsh ou VMM pour créer la VM en utilisant le LV "/ | ||
+ | Lors de l' | ||
+ | \\ | ||
+ | Installer les applications: | ||
+ | < | ||
+ | [root@freebsblac /root]# pkg_add -r wget | ||
+ | [root@freebsblac /root]# pkg_add -r mpd5 | ||
+ | [root@freebsblac /root]# wget http:// | ||
+ | [root@freebsblac /root]# pkg_add | ||
+ | </ | ||
+ | |||
+ | Editer/ | ||
+ | < | ||
+ | virtio_load=" | ||
+ | virtio_pci_load=" | ||
+ | virtio_blk_load=" | ||
+ | if_vtnet_load=" | ||
+ | virtio_balloon_load=" | ||
+ | </ | ||
+ | |||
+ | Modifier " | ||
+ | < | ||
+ | [root@freebsblac /etc]# sed -i.bak -Ee ' | ||
+ | [root@freebsblac /etc]# sed -i.bak -e ' | ||
+ | </ | ||
+ | |||
+ | configuration réseau et MPD dans fichier "/ | ||
+ | < | ||
+ | hostname=" | ||
+ | keymap=" | ||
+ | |||
+ | # LAN Interface get ip by DHCP | ||
+ | ifconfig_vtnet0=" | ||
+ | |||
+ | # VLAN11 LAC <--> LNS | ||
+ | cloned_interfaces=" | ||
+ | ifconfig_vlan11=" | ||
+ | ifconfig_vlan11_alias0=" | ||
+ | |||
+ | # Static route to the tun l2tpns | ||
+ | static_routes=" | ||
+ | route_l2tpns=" | ||
+ | |||
+ | sshd_enable=" | ||
+ | ntpd_enable=" | ||
+ | # Set dumpdev to " | ||
+ | dumpdev=" | ||
+ | |||
+ | # Set MPD | ||
+ | mpd_enable=" | ||
+ | mpd_flags=" | ||
+ | </ | ||
+ | |||
+ | Configuration de MPD5 en LAC pppoe: | ||
+ | < | ||
+ | [root@freebsblac /root]# cat / | ||
+ | |||
+ | default: | ||
+ | create link template PPPX pppoe | ||
+ | set pppoe iface vtnet0 | ||
+ | set link action forward L2TPNS | ||
+ | set link enable incoming | ||
+ | |||
+ | create link template L2TPNS l2tp | ||
+ | set l2tp peer 62.5.16.41 | ||
+ | set l2tp secret totolns | ||
+ | </ | ||
+ | |||
+ | Arrêter la VM et modifier la configuration (à l'aide de VMM ou manuellement dans fichier xml) pour utiliser les drivers virtio (disque et réseau). | ||
+ | < | ||
+ | root@hote:/ | ||
+ | <domain type=' | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | <os> | ||
+ | <type arch=' | ||
+ | <boot dev=' | ||
+ | < | ||
+ | </os> | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | </ | ||
+ | <clock offset=' | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | <disk type=' | ||
+ | <driver name=' | ||
+ | <source dev='/ | ||
+ | <target dev=' | ||
+ | <address type=' | ||
+ | </ | ||
+ | <disk type=' | ||
+ | <driver name=' | ||
+ | <target dev=' | ||
+ | < | ||
+ | <address type=' | ||
+ | </ | ||
+ | < | ||
+ | <address type=' | ||
+ | </ | ||
+ | < | ||
+ | <mac address=' | ||
+ | <source bridge=' | ||
+ | <model type=' | ||
+ | <address type=' | ||
+ | </ | ||
+ | <serial type=' | ||
+ | <target port=' | ||
+ | </ | ||
+ | <console type=' | ||
+ | <target type=' | ||
+ | </ | ||
+ | <input type=' | ||
+ | < | ||
+ | < | ||
+ | <model type=' | ||
+ | <address type=' | ||
+ | </ | ||
+ | < | ||
+ | <address type=' | ||
+ | </ | ||
+ | </ | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | ==== Etape 3 - VM LNS (L2TPNS) ==== | ||
+ | |||
+ | __Création de la VM LNS à partir de vm_modele.img: | ||
+ | < | ||
+ | root@hote: | ||
+ | root@hote: | ||
+ | </ | ||
+ | |||
+ | __Monter la partition root de la VM LNS__ | ||
+ | < | ||
+ | root@hote: | ||
+ | root@hote: | ||
+ | </ | ||
+ | |||
+ | Modifier le fichier "/ | ||
+ | \\ | ||
+ | Editer le fichier "/ | ||
+ | < | ||
+ | # The loopback network interface | ||
+ | auto lo | ||
+ | iface lo inet loopback | ||
+ | |||
+ | # LNS <---> INTERNET | ||
+ | auto eth0 | ||
+ | iface eth0 inet dhcp | ||
+ | |||
+ | # VLAN LNS <---> RADIUS | ||
+ | auto eth0.10 | ||
+ | iface eth0.10 inet static | ||
+ | address 10.0.10.252 | ||
+ | netmask 255.255.255.0 | ||
+ | broadcast 10.0.10.255 | ||
+ | network 10.0.10.0 | ||
+ | hwaddress ether 52: | ||
+ | |||
+ | # VLAN LNS <---> LAC | ||
+ | auto eth0.11 | ||
+ | iface eth0.11 inet static | ||
+ | address 10.0.11.252 | ||
+ | netmask 255.255.255.0 | ||
+ | broadcast 10.0.11.255 | ||
+ | network 10.0.11.0 | ||
+ | hwaddress ether 52: | ||
+ | </ | ||
+ | |||
+ | __Démonter la partition root de la VM LNS__ | ||
+ | < | ||
+ | root@hote: | ||
+ | root@hote: | ||
+ | </ | ||
+ | |||
+ | __Copier vmmodele.xml__ | ||
+ | < | ||
+ | root@hote: | ||
+ | </ | ||
+ | |||
+ | __Générer un UUID,Editer et modifier le fichier vmlns.xml__ | ||
+ | < | ||
+ | root@hote: | ||
+ | 342b0a43-c872-4fc6-aadb-222d654e411d | ||
+ | </ | ||
+ | Modifier name, uuid, disk (device, source..) et interface (type, mac address, source bridge) | ||
+ | < | ||
+ | <domain type=' | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | <os> | ||
+ | <type arch=' | ||
+ | <boot dev=' | ||
+ | </os> | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | </ | ||
+ | <clock offset=' | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | <disk type=' | ||
+ | <driver name=' | ||
+ | <source dev='/ | ||
+ | <target dev=' | ||
+ | <address type=' | ||
+ | </ | ||
+ | < | ||
+ | <mac address=' | ||
+ | <source bridge=' | ||
+ | <model type=' | ||
+ | <address type=' | ||
+ | </ | ||
+ | <serial type=' | ||
+ | <target port=' | ||
+ | </ | ||
+ | <console type=' | ||
+ | <target type=' | ||
+ | </ | ||
+ | <input type=' | ||
+ | <input type=' | ||
+ | < | ||
+ | < | ||
+ | <model type=' | ||
+ | <address type=' | ||
+ | </ | ||
+ | < | ||
+ | <address type=' | ||
+ | </ | ||
+ | </ | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | |||
+ | ==== Etape 4 - VM FreeRadius ==== | ||
+ | |||