From cbd6440110f13abb723aa6de696a53376830eee0 Mon Sep 17 00:00:00 2001 From: "aboulai.bayo" Date: Mon, 17 Feb 2025 09:12:10 +0100 Subject: [PATCH] srv-admin --- sisr1/tp03-reseau-prive/srv-admin/interfaces | 22 +++++++++++++++++++ .../tp03-reseau-prive/srv-admin/nat/README.md | 6 +++++ .../srv-admin/nat/nat.service | 13 +++++++++++ sisr1/tp03-reseau-prive/srv-admin/nat/nat.sh | 6 +++++ 4 files changed, 47 insertions(+) create mode 100644 sisr1/tp03-reseau-prive/srv-admin/interfaces create mode 100644 sisr1/tp03-reseau-prive/srv-admin/nat/README.md create mode 100644 sisr1/tp03-reseau-prive/srv-admin/nat/nat.service create mode 100644 sisr1/tp03-reseau-prive/srv-admin/nat/nat.sh diff --git a/sisr1/tp03-reseau-prive/srv-admin/interfaces b/sisr1/tp03-reseau-prive/srv-admin/interfaces new file mode 100644 index 0000000..6ccaf48 --- /dev/null +++ b/sisr1/tp03-reseau-prive/srv-admin/interfaces @@ -0,0 +1,22 @@ +# This file describes the network interfaces available on your system +# and how to activate them. For more information, see interfaces(5). + +source /etc/network/interfaces.d/* + +# The loopback network interface +auto lo +iface lo inet loopback + +# The primary network interface +allow-hotplug enp0s3 +iface enp0s3 inet static +#iface enp0s3 inet static +address 192.168.0.140/24 +gateway 192.168.0.1 + +# Deuxieme network interface +allow-hotplug enp0s8 +iface enp0s8 inet dhcp +# iface enp0s8 inet static +#address 172.16.0.1/24 + diff --git a/sisr1/tp03-reseau-prive/srv-admin/nat/README.md b/sisr1/tp03-reseau-prive/srv-admin/nat/README.md new file mode 100644 index 0000000..2a6a4da --- /dev/null +++ b/sisr1/tp03-reseau-prive/srv-admin/nat/README.md @@ -0,0 +1,6 @@ + * **nat.sh** : script activant la NAT dynamique sans filtrage + * A placer à /root/nat.sh + * Rendre exécutable : chmod +x /root/nat.sh + * **nat.service** : service lançant le script au démarrage + * A placer à /etc/systemd/system/nat.service + * Activer le service : systemctl enable nat.service \ No newline at end of file diff --git a/sisr1/tp03-reseau-prive/srv-admin/nat/nat.service b/sisr1/tp03-reseau-prive/srv-admin/nat/nat.service new file mode 100644 index 0000000..8c18dcd --- /dev/null +++ b/sisr1/tp03-reseau-prive/srv-admin/nat/nat.service @@ -0,0 +1,13 @@ +[Unit] + +Description=execute /root/nat.sh + +After=default.target + +[Service] + +ExecStart=bash /root/nat.sh + +[Install] + +WantedBy=default.target \ No newline at end of file diff --git a/sisr1/tp03-reseau-prive/srv-admin/nat/nat.sh b/sisr1/tp03-reseau-prive/srv-admin/nat/nat.sh new file mode 100644 index 0000000..04b2a95 --- /dev/null +++ b/sisr1/tp03-reseau-prive/srv-admin/nat/nat.sh @@ -0,0 +1,6 @@ +#!/bin/bash +echo "1" > /proc/sys/net/ipv4/ip_forward +nft add table basic_nat_table +nft add chain basic_nat_table prerouting {type nat hook prerouting priority 0 \; } +nft add chain basic_nat_table postrouting {type nat hook postrouting priority 0 \; } +nft add rule basic_nat_table postrouting masquerade \ No newline at end of file