UNIVERSITATEA „AUREL VLAICU” ARAD

FACULTATEA DE INGINERIE

PROIECT
REŢELE DE CALCULATOARE

IMPLEMENTARE ROUTER SOFTWARE

PE SISTEM DE OPERARE LINUX

AUTOMATIZĂRI ŞI INFORMATICĂ APLICATĂ AN III

STUDENT: DANITY SRGIAN

PROF. COORD. PETCU MARIUS

 I. Cerinţa

Se doreşte implementarea unui router pentru a face legătura a

două reţele cu Internet-ul.

II. Resurse disponibile

Se dispune de:
1) Computer dotat cu o singură placă de reţea
2) Sistem de operare linux cu acces la contul de ‘root’
3) Două reţele de tip LAN cu 2 calculatoare in fiecare reţea
4) Switch cu 8 porturi
5) Legăturile fizice prin intermediul switch-ului între cele 2 reţele,
router-ul ce urmează a fi configurat şi gateway-ul ISP-ului.

III. Topoligie

Reţea 10.0.1.0; Masca 255.255.255.0 Reţea 10.0.2.0; Masca 255.255.255.0

10.0.1.2 10.0.1.3 10.0.2.2 10.0.2.3

2x 2x
SWITCH 8 PORTURI
1x

ROUTER
ETH0=192.168.1.222
ETH0:1=10.0.1.1
ETH0:2=10.0.2.1

FIREWALL
(LIPSEŞTE)

GATEWAY ISP
192.168.1.2
 IV. Implementarea soluţiei de routing a pachetelor

A) Prezentarea situaţiei de la începutul procedurii

a. Utilzatorul

root@poweredge:/# whoami
root

b. Accesul la consolă
root@poweredge:/# w
18:44:09 up 21 min, 1 user, load average: 0.00, 0.00, 0.00
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
root pts/0 192.168.1.167 18:24 0.00s 0.15s 0.01s w

c. Kernel-ul sistemului de operare (Slackware Linux 13.1)

root@poweredge:/# cat /etc/motd
Linux 2.6.33.4-smp.

d. Modulele încărcate
root@poweredge:~# lsmod | grep ip
ipt_MASQUERADE 1274 1
iptable_nat 4171 1
nf_nat 12555 2 ipt_MASQUERADE,iptable_nat
nf_conntrack_ipv4 9349 3 iptable_nat,nf_nat
nf_conntrack 42669 4 ipt_MASQUERADE,iptable_nat,nf_nat,nf_conntrack_ipv4
nf_defrag_ipv4 867 1 nf_conntrack_ipv4
iptable_filter 2026 0
ip_tables 8674 2 iptable_nat,iptable_filter
x_tables 10626 3 ipt_MASQUERADE,iptable_nat,ip_tables
ipv6 229909 36

B) Configurarea router-ului software

a. Configurarea interfeţelor de reţea virtuale

root@poweredge:~# ifconfig eth0:1 10.0.1.1 netmask 255.255.255.0
root@poweredge:~# ifconfig eth0:2 10.0.2.1 netmask 255.255.255.0

b. Rezultatele configurării interfeţelor de reţea virtuale

root@poweredge:/# ifconfig
eth0 Link encap:Ethernet HWaddr 00:0b:db:92:02:22
inet addr:192.168.1.222 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::20b:dbff:fe92:222/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1914 errors:0 dropped:0 overruns:0 frame:0
TX packets:1611 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:168255 (164.3 KiB) TX bytes:525580 (513.2 KiB)

eth0:1 Link encap:Ethernet HWaddr 00:0b:db:92:02:22

inet addr:10.0.0.1 Bcast:10.0.0.255 Mask:255.255.255.0
 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1

eth0:2 Link encap:Ethernet HWaddr 00:0b:db:92:02:22

inet addr:10.0.0.2 Bcast:10.0.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1

lo Link encap:Local Loopback

inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:8 errors:0 dropped:0 overruns:0 frame:0
TX packets:8 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:480 (480.0 B) TX bytes:480 (480.0 B)

c. Interogarea stării interfeţelor

root@poweredge:/# mii-tool eth0:1
eth0:1: negotiated 100baseTx-FD flow-control, link ok
root@poweredge:/# mii-tool eth0:2
eth0:2: negotiated 100baseTx-FD flow-control, link ok

d. Trimiterea de semnal ICMP (ping) către interfeţele virtuale

root@poweredge:/# ping -c 2 10.0.1.1
PING 10.0.1.1 (10.0.1.1) 56(84) bytes of data.
64 bytes from 10.0.1.1: icmp_req=1 ttl=64 time=0.032 ms
64 bytes from 10.0.1.1: icmp_req=2 ttl=64 time=0.033 ms

--- 10.0.1.1 ping statistics ---

2 packets transmitted, 2 received, 0% packet loss, time 1000ms
rtt min/avg/max/mdev = 0.032/0.032/0.033/0.005 ms

root@poweredge:/# ping -c 2 10.0.2.1

PING 10.0.2.1 (10.0.2.1) 56(84) bytes of data.
64 bytes from 10.0.2.1: icmp_req=1 ttl=64 time=0.037 ms
64 bytes from 10.0.2.1: icmp_req=2 ttl=64 time=0.034 ms

--- 10.0.2.1 ping statistics ---

2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.034/0.035/0.037/0.006 ms

e. Interogarea tebelului de rute

root@poweredge:/# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.0.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
10.0.2.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 192.168.1.2 0.0.0.0 UG 1 0 0 eth0

f. Comenzi de control din reţeaua 10.0.1.0

f.1 Parametrii interfeţei de reţea PC2

C:\Documents and Settings\Programare2>ipconfig
Windows IP Configuration
Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :

IP Address. . . . . . . . . . . . : 10.0.1.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 10.0.1.1

f.2 Semnal ICMP către propria interfaţă PC2

C:\Documents and Settings\Programare2>ping -n 2 10.0.1.2
Pinging 10.0.1.2 with 32 bytes of data:

Reply from 10.0.1.2: bytes=32 time<1ms TTL=128

Reply from 10.0.1.2: bytes=32 time<1ms TTL=128

Ping statistics for 10.0.1.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms

f.3 Semnal ICMP din reţeaua 10.0.1.0 către router

C:\Documents and Settings\Programare2>ping -n 2 10.0.1.1
Pinging 10.0.1.1 with 32 bytes of data:

Reply from 10.0.1.1: bytes=32 time<1ms TTL=64

Reply from 10.0.1.1: bytes=32 time<1ms TTL=64

Ping statistics for 10.0.1.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms

g. Revenire la consola router-ului pentru continuarea configurării

root@poweredge:~# w
16:40:04 up 22:17, 1 user, load average: 0.24, 0.10, 0.05
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
root pts/0 10.0.1.2 16:39 0.00s 0.01s 0.00s w

h. Interogarea stării rutelor

root@poweredge:~# ip route
10.0.1.0/24 dev eth0 proto kernel scope link src 10.0.1.1
10.0.2.0/24 dev eth0 proto kernel scope link src 10.0.2.1
192.168.1.0/24 dev eth0 proto kernel scope link src 192.168.1.222
127.0.0.0/8 dev lo scope link
default via 192.168.1.2 dev eth0 metric 1

i. Interogarea permisiunii de rutare a pachetelor

root@poweredge:~# sysctl net.ipv4.ip_forward
net.ipv4.ip_forward = 1
 j. Activarea neconditionată a mascheradei pachetelor dintre
reţelele interne şi gateway-ul ISP-ului
root@poweredge:~# iptables –t nat –A POSTROUTING –o eth0 –j MASQUERADE

k. Revenire la consola PC2 din reţeaua 10.0.1.0; starea interfeţei

C:\Documents and Settings\Programare2>ipconfig
Windows IP Configuration

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :

IP Address. . . . . . . . . . . . : 10.0.1.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 10.0.1.1

l. Semnal ICMP către o gazdă la distanţă

C:\Documents and Settings\Programare2>ping -n 2 google.com
Pinging google.com [74.125.87.104] with 32 bytes of data:

Reply from 74.125.87.104: bytes=32 time=98ms TTL=52

Reply from 74.125.87.104: bytes=32 time=98ms TTL=52

Ping statistics for 74.125.87.104:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 98ms, Maximum = 98ms, Average = 98ms

m. Accesarea consolei PC2 din reţeaua 10.0.2.0; starea interfeţei

C:\Documents and Settings\Programare2>ipconfig
Windows IP Configuration

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :

IP Address. . . . . . . . . . . . : 10.0.2.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 10.0.2.1

n. Semnal ICMP către o gazdă la distanţă

C:\Documents and Settings\Programare2>ping -n 2 google.com
Pinging google.com [74.125.87.99] with 32 bytes of data:

Reply from 74.125.87.99: bytes=32 time=99ms TTL=51

Reply from 74.125.87.99: bytes=32 time=99ms TTL=51

Ping statistics for 74.125.87.99:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 99ms, Maximum = 99ms, Average = 99ms
 o. Interogarea rutei până la gazda aflată la distanţă
C:\Documents and Settings\Programare2>tracert google.com
Tracing route to google.com [74.125.87.99]
over a maximum of 30 hops:

1 <1 ms <1 ms <1 ms 10.0.2.1

2 <1 ms <1 ms <1 ms 192.168.1.2
3 49 ms 39 ms 39 ms adsl89-122-216-254.romtelecom.net [89.122.216.254]
4 39 ms 39 ms 39 ms 10.0.225.37
5 81 ms 82 ms 81 ms 10.0.245.205
6 90 ms 84 ms 84 ms 10.0.200.45
7 94 ms 82 ms 82 ms 10.0.200.22
8 84 ms 84 ms 83 ms 74.125.50.81
9 84 ms 84 ms 84 ms 209.85.255.178
10 105 ms 98 ms 97 ms 72.14.236.250
11 99 ms 99 ms 99 ms 209.85.248.43
12 107 ms 101 ms 98 ms 72.14.232.217
13 103 ms 120 ms 112 ms hb-in-f99.1e100.net [74.125.87.99]

Trace complete.

V. Concluzii

În urma comenzilor arătate am arătat că, pornind de la dotările fizice date s-a
reuşit crearea de două reţele care comunică cu Internet-ul prin serviciile unui router
software bazat pe sistemul de operare Linux.
Calculatorul folosit pentru a servi ca şi router având o singură interfaţă de reţea
conectată la cele 2 reţele private şi la Internet prin intermediul unui switch, s-a ales
folosirea a două interfeţe virtuale (eth0:1 respectiv eth0:2).
S-a stabilit tabelul de rute conform topologiei alese şi a gateway-ului furnizat de
provider-ul serviciilor de Internet.
Ulterior am configurat staţiile celor două reţele să folosească ca şi gateway
adresele 10.0.1.1 respectiv 10.0.2.1 aparţinând router-ului după care am verificat
conexiunea dintre reţele şi router folosind semnale ICMP.
Având confirmarea configurării corecte până la această etapă, s-a făcut
activarea mascheradei pachetelor.
S-a testat configuraţia router-ului folosind semnale ICMP din reţelele interne
către o gazdă Internet aflată la distanţă.
S-a interogat ruta completă de la o staţie din reţelele interne către gazda aflată
la distanţă, verificându-se un total de 13 noduri cu timp total întârziere de 120ms, cu
menţiunea că serviciile furnizorului sunt accesate printr-un modem ADSL.