cwchristerw/tjas-infra
1
0
Fork 0
mirror of https://github.com/cwchristerw/tjas-infra synced 2025-09-01 07:59:31 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
56b53fdc5b1f42ff9b09f16a9adb86a173184148
tjas-infra/INSTRUCTIONS.md
Christer Warén 56b53fdc5b Update network device configurations to INSTRUCTIONS.md
2025-08-26 12:49:22 +03:00

7.1 KiB
Raw Blame History

Tietojärjestelmäasentajien Infra

PVJJK 1.VOS Niinisalo

Ylläpitäjän ohjeet

Palvelimen asennus

  1. Asenna Debian-käyttöjärjestelmä
  2. Asenna curl-paketti käyttämällä APT-paketinhallintaa apt update && apt install curl
  3. Lataa ja suorita Init.sh skripti bash <(curl https://raw.githubusercontent.com/cwchristerw/tjas-infra/refs/heads/master/init.sh)

Verkkolaitteiden konfigurointi

  1. Kytke verkkolaitteen Console (Ethernet) porttiin serial portti adapteri sekä yhdistä siihen serial portti USB-adapteri
  2. Liitä USB-adapteri kiinni palvelimeen
  3. Testaa/Muodosta yhteys verkkolaitteeseen, käyttäen picocom-komentoa esim. "picocom -b 9600 /dev/ttyUSB0"

r1.net.tjas

!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r1.net.tjas
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$G8oa$toAwtS1iMWnV5PGXYc4qM/
enable password ********
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip subnet-zero
!
!
ip cef
!
!
!
!
!
!
interface FastEthernet0/0
 ip address dhcp
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip nat outside
 duplex full
 speed auto
 no mop enabled
!
interface FastEthernet0/1
 no ip address
 duplex auto
 speed auto
!
interface FastEthernet0/1.10
 description "TINU - INTERNET"
 encapsulation dot1Q 10
 ip address 192.168.1.1 255.255.255.224
 ip access-group 10 out
 ip helper-address 192.168.2.10
 ip nat inside
 no snmp trap link-status
!
interface FastEthernet0/1.20
 description "JUVA - INTRA"
 encapsulation dot1Q 20
 ip address 192.168.2.1 255.255.255.224
 ip access-group 20 out
 ip helper-address 192.168.2.10
 ip nat inside
 no snmp trap link-status
!
interface FastEthernet0/1.30
 description "AITO - TOIMISTO"
 encapsulation dot1Q 30
 ip address 192.168.3.1 255.255.255.224
 ip access-group 30 out
 ip helper-address 192.168.2.10
 ip nat inside
 no snmp trap link-status
!
interface FastEthernet0/1.69
 description "SIVE - HALLINTA"
 encapsulation dot1Q 69
 ip address 192.168.69.1 255.255.255.192
 ip access-group 69 in
 ip access-group 69 out
 ip helper-address 192.168.69.20
 no snmp trap link-status
!
interface GigabitEthernet0/0/0
 no ip address
 shutdown
 negotiation auto
!
ip classless
!
ip http server
ip nat inside source list 1 interface FastEthernet0/0 overload
!
access-list 1 permit 192.168.1.0 0.0.0.31
access-list 1 permit 192.168.2.0 0.0.0.31
access-list 1 permit 192.168.3.0 0.0.0.31
access-list 10 deny   192.168.0.0 0.0.255.255
access-list 10 permit any
access-list 20 permit 192.168.2.0 0.0.0.31
access-list 20 deny   192.168.0.0 0.0.255.255
access-list 20 permit any
access-list 30 permit 192.168.2.10
access-list 30 permit 192.168.3.0 0.0.0.31
access-list 30 deny   192.168.0.0 0.0.255.255
access-list 30 permit any
access-list 69 permit 192.168.69.0 0.0.0.63
!
control-plane
!
banner motd ^C



  .-') _               ('-.      .-')
 (  OO) )             ( OO ).-. ( OO ).
 /     '._      ,--.  / . --. /(_)---\_)
 |'--...__) .-')| ,|  | \-.  \ /    _ |
 '--.  .--'( OO |(_|.-'-'  |  |\  :` `.
    |  |   | `-'|  | \| |_.'  | '..`''.)
    |  |   ,--. |  |  |  .-.  |.-._)   \
    |  |   |  '-'  /  |  | |  |\       /
    `--'    `-----'   `--' `--' `-----'


 PVJJK 1.VOS NIINISALO
 r1.net.tjas

^C
!
line con 0
line aux 0
line vty 0 4
 password ********
 login
!
scheduler allocate 20000 1000
!
end

s1.net.tjas

hostname "s1.net.tjas"
ip default-gateway 192.168.1.1
snmp-server community "public" Unrestricted
vlan 1
   name "DEFAULT_VLAN"
   untagged 4-52
   ip address dhcp-bootp
   no untagged 1-3
   exit
vlan 10
   name "TINU"
   ip address 192.168.1.2 255.255.255.224
   tagged 1
   exit
vlan 20
   name "JUVA"
   no ip address
   tagged 1-2
   exit
vlan 30
   name "AITO"
   no ip address
   tagged 1,3
   exit
vlan 69
   name "SIVE"
   ip address 192.168.69.11 255.255.255.192
   tagged 1-3
   exit
ip authorized-managers 192.168.69.20 255.255.255.255
banner motd "


  .-') _               ('-.      .-')
 (  OO) )             ( OO ).-. ( OO ).
 /     '._      ,--.  / . --. /(_)---\_)
 |'--...__) .-')| ,|  | \-.  \ /    _ |
 '--.  .--'( OO |(_|.-'-'  |  |\  :` `.
    |  |   | `-'|  | \| |_.'  | '..`''.)
    |  |   ,--. |  |  |  .-.  |.-._)   \
    |  |   |  '-'  /  |  | |  |\       /
    `--'    `-----'   `--' `--' `-----'


 PVJJK 1.VOS NIINISALO
 s1.net.tjas

"
ip ssh
password manager

s2.net.tjas

hostname "s2.net.tjas"
interface 3
   disable
exit
interface 4
   disable
exit
interface 5
   disable
exit
interface 6
   disable
exit
interface 7
   disable
exit
interface 8
   disable
exit
interface 9
   disable
exit
interface 10
   disable
exit
interface 11
   disable
exit
interface 12
   disable
exit
interface 13
   disable
exit
interface 14
   disable
exit
interface 15
   disable
exit
interface 16
   disable
exit
interface 17
   disable
exit
interface 18
   disable
exit
interface 19
   disable
exit
interface 20
   disable
exit
interface 21
   disable
exit
interface 22
   disable
exit
interface 23
   disable
exit
interface 24
   disable
exit
ip default-gateway 192.168.2.1
snmp-server community "public" Unrestricted
vlan 1
   name "DEFAULT_VLAN"
   untagged 3-28
   ip address dhcp-bootp
   no untagged 1-2
   exit
vlan 20
   name "JUVA"
   untagged 3-24
   ip address 192.168.2.2 255.255.255.224
   tagged 1-2
   exit
vlan 69
   name "SIVE"
   ip address 192.168.69.12 255.255.255.192
   tagged 1-2
   exit
ip authorized-managers 192.168.69.20
banner motd "


  .-') _               ('-.      .-')
 (  OO) )             ( OO ).-. ( OO ).
 /     '._      ,--.  / . --. /(_)---\_)
 |'--...__) .-')| ,|  | \-.  \ /    _ |
 '--.  .--'( OO |(_|.-'-'  |  |\  :` `.
    |  |   | `-'|  | \| |_.'  | '..`''.)
    |  |   ,--. |  |  |  .-.  |.-._)   \
    |  |   |  '-'  /  |  | |  |\       /
    `--'    `-----'   `--' `--' `-----'


 PVJJK 1.VOS NIINISALO
 s2.net.tjas

"
ip ssh
password manager

s3.net.tjas

hostname "s3.net.tjas"
interface 2
   disable
exit
interface 3
   disable
exit
interface 4
   disable
exit
interface 5
   disable
exit
interface 6
   disable
exit
interface 7
   disable
exit
interface 8
   disable
exit
interface 9
   disable
exit
interface 10
   disable
exit
interface 11
   disable
exit
interface 12
   disable
exit
ip default-gateway 192.168.3.1
snmp-server community "public" Unrestricted
vlan 1
   name "DEFAULT_VLAN"
   untagged 25-28
   ip address dhcp-bootp
   no untagged 1-24
   exit
vlan 30
   name "AITO"
   untagged 13-24
   ip address 192.168.3.2 255.255.255.224
   tagged 1
   exit
vlan 69
   name "SIVE"
   untagged 2-24
   ip address 192.168.69.13 255.255.255.192
   tagged 1
   exit
ip authorized-managers 192.168.69.20
banner motd "


  .-') _               ('-.      .-')
 (  OO) )             ( OO ).-. ( OO ).
 /     '._      ,--.  / . --. /(_)---\_)
 |'--...__) .-')| ,|  | \-.  \ /    _ |
 '--.  .--'( OO |(_|.-'-'  |  |\  :` `.
    |  |   | `-'|  | \| |_.'  | '..`''.)
    |  |   ,--. |  |  |  .-.  |.-._)   \
    |  |   |  '-'  /  |  | |  |\       /
    `--'    `-----'   `--' `--' `-----'


 PVJJK 1.VOS NIINISALO
 s3.net.tjas

"
ip ssh
password manager

LÄHTEET

ISSUE - ASCII ART

ASCII Art Generator https://www.textmods.com/ascii-art