1111 Hints
Zur Navigation springen
Zur Suche springen
opnsense
root@opnsense:~ # ifconfig
em0: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: MGMT (lan)
options=4800028<VLAN_MTU,JUMBO_MTU,HWSTATS,MEXTPG>
ether 08:00:27:3e:e9:b5
inet 172.26.56.1 netmask 0xffffffc0 broadcast 172.26.56.63
inet6 fe80::a00:27ff:fe3e:e9b5%em0 prefixlen 64 scopeid 0x1
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
em1: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: WAN (wan)
options=4800028<VLAN_MTU,JUMBO_MTU,HWSTATS,MEXTPG>
ether 08:00:27:8f:50:e0
inet 192.168.10.105 netmask 0xffffff00 broadcast 192.168.10.255
inet6 fe80::a00:27ff:fe8f:50e0%em1 prefixlen 64 scopeid 0x2
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
lo0: flags=1008049<UP,LOOPBACK,RUNNING,MULTICAST,LOWER_UP> metric 0 mtu 16384
options=680003<RXCSUM,TXCSUM,LINKSTATE,RXCSUM_IPV6,TXCSUM_IPV6>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3
groups: lo
nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
enc0: flags=0 metric 0 mtu 1536
options=0
groups: enc
nd6 options=23<PERFORMNUD,ACCEPT_RTADV,AUTO_LINKLOCAL>
pflog0: flags=20100<PROMISC,PPROMISC> metric 0 mtu 33152
options=0
groups: pflog
pfsync0: flags=0 metric 0 mtu 1500
options=0
maxupd: 128 defer: off version: 1400
syncok: 1
groups: pfsync
vlan0.21: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: LAN (opt1)
options=4000000<MEXTPG>
ether 08:00:27:3e:e9:b5
inet 172.26.56.65 netmask 0xffffffc0 broadcast 172.26.56.127
inet6 fe80::a00:27ff:fe3e:e9b5%vlan0.21 prefixlen 64 scopeid 0x7
groups: vlan
vlan: 21 vlanproto: 802.1q vlanpcp: 0 parent interface: em0
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
vlan0.22: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: SERVER (opt2)
options=4000000<MEXTPG>
ether 08:00:27:3e:e9:b5
inet 172.26.56.129 netmask 0xffffffc0 broadcast 172.26.56.191
inet6 fe80::a00:27ff:fe3e:e9b5%vlan0.22 prefixlen 64 scopeid 0x8
groups: vlan
vlan: 22 vlanproto: 802.1q vlanpcp: 0 parent interface: em0
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
vlan0.23: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: DMZ (opt3)
options=4000000<MEXTPG>
ether 08:00:27:3e:e9:b5
inet 172.26.56.193 netmask 0xffffffc0 broadcast 172.26.56.255
inet6 fe80::a00:27ff:fe3e:e9b5%vlan0.23 prefixlen 64 scopeid 0x9
groups: vlan
vlan: 23 vlanproto: 802.1q vlanpcp: 0 parent interface: em0
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
root@opnsense:~ # netstat -4rn
Routing tables
Internet:
Destination Gateway Flags Netif Expire
default 192.168.10.254 UGS em1
127.0.0.1 link#3 UH lo0
172.26.56.0/26 link#1 U em0
172.26.56.1 link#3 UHS lo0
172.26.56.64/26 link#7 U vlan0.21
172.26.56.65 link#3 UHS lo0
172.26.56.128/26 link#8 U vlan0.22
172.26.56.129 link#3 UHS lo0
172.26.56.192/26 link#9 U vlan0.23
172.26.56.193 link#3 UHS lo0
192.168.10.0/24 link#2 U em1
192.168.10.105 link#3 UHS lo0
192.168.20.1 192.168.10.254 UGHS em1
root@opnsense:~ # cat /etc/resolv.conf
domain lab34.linuggs.de
nameserver 127.0.0.1
nameserver 192.168.20.1
nameserver 8.8.8.8
search lab34.linuggs.de
root@opnsense:~ # sockstat -P tcp -l
USER COMMAND PID FD PROTO LOCAL ADDRESS FOREIGN ADDRESS
unbound unbound 54696 6 tcp6 *:53 *:*
unbound unbound 54696 8 tcp4 *:53 *:*
unbound unbound 54696 10 tcp6 *:53 *:*
unbound unbound 54696 12 tcp4 *:53 *:*
unbound unbound 54696 14 tcp6 *:53 *:*
unbound unbound 54696 16 tcp4 *:53 *:*
unbound unbound 54696 18 tcp6 *:53 *:*
unbound unbound 54696 20 tcp4 *:53 *:*
unbound unbound 54696 21 tcp4 127.0.0.1:953 *:*
root lighttpd 50142 7 tcp4 *:443 *:*
root lighttpd 50142 8 tcp6 *:443 *:*
root sshd 46010 7 tcp6 *:22 *:*
root sshd 46010 8 tcp4 *:22 *:*
ovs
kit@ovs:~$ sudo -i
root@ovs:~# ip a s
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host noprefixroute
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:96:a9:b7 brd ff:ff:ff:ff:ff:ff
altname enp0s3
inet6 fe80::a00:27ff:fe96:a9b7/64 scope link
valid_lft forever preferred_lft forever
3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:6e:81:2e brd ff:ff:ff:ff:ff:ff
altname enp0s8
inet6 fe80::a00:27ff:fe6e:812e/64 scope link
valid_lft forever preferred_lft forever
4: eth2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:9f:1c:13 brd ff:ff:ff:ff:ff:ff
altname enp0s9
inet6 fe80::a00:27ff:fe9f:1c13/64 scope link
valid_lft forever preferred_lft forever
5: eth3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:b0:78:6c brd ff:ff:ff:ff:ff:ff
altname enp0s10
inet6 fe80::a00:27ff:feb0:786c/64 scope link
valid_lft forever preferred_lft forever
6: eth4: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:ea:82:a5 brd ff:ff:ff:ff:ff:ff
altname enp0s16
inet6 fe80::a00:27ff:feea:82a5/64 scope link
valid_lft forever preferred_lft forever
7: eth5: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:b3:1b:a1 brd ff:ff:ff:ff:ff:ff
altname enp0s17
inet6 fe80::a00:27ff:feb3:1ba1/64 scope link
valid_lft forever preferred_lft forever
8: eth6: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:e8:7f:53 brd ff:ff:ff:ff:ff:ff
altname enp0s18
inet6 fe80::a00:27ff:fee8:7f53/64 scope link
valid_lft forever preferred_lft forever
9: eth7: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:77:97:53 brd ff:ff:ff:ff:ff:ff
altname enp0s19
inet6 fe80::a00:27ff:fe77:9753/64 scope link
valid_lft forever preferred_lft forever
10: eth8: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:19:73:13 brd ff:ff:ff:ff:ff:ff
altname enp2s0
inet6 fe80::a00:27ff:fe19:7313/64 scope link
valid_lft forever preferred_lft forever
11: eth9: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:14:73:8e brd ff:ff:ff:ff:ff:ff
altname enp2s1
inet6 fe80::a00:27ff:fe14:738e/64 scope link
valid_lft forever preferred_lft forever
12: eth10: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:17:f4:0c brd ff:ff:ff:ff:ff:ff
altname enp2s2
inet6 fe80::a00:27ff:fe17:f40c/64 scope link
valid_lft forever preferred_lft forever
13: eth11: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:14:50:88 brd ff:ff:ff:ff:ff:ff
altname enp2s3
inet6 fe80::a00:27ff:fe14:5088/64 scope link
valid_lft forever preferred_lft forever
14: eth12: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:d5:1a:10 brd ff:ff:ff:ff:ff:ff
altname enp2s4
inet6 fe80::a00:27ff:fed5:1a10/64 scope link
valid_lft forever preferred_lft forever
15: eth13: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:18:b2:ad brd ff:ff:ff:ff:ff:ff
altname enp2s5
inet6 fe80::a00:27ff:fe18:b2ad/64 scope link
valid_lft forever preferred_lft forever
16: eth14: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:6a:87:8e brd ff:ff:ff:ff:ff:ff
altname enp2s6
inet6 fe80::a00:27ff:fe6a:878e/64 scope link
valid_lft forever preferred_lft forever
17: eth15: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:9f:91:3f brd ff:ff:ff:ff:ff:ff
altname enp2s7
inet6 fe80::a00:27ff:fe9f:913f/64 scope link
valid_lft forever preferred_lft forever
18: eth16: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master ovs-system state UP group default qlen 1000
link/ether 08:00:27:56:a8:cb brd ff:ff:ff:ff:ff:ff
altname enp2s8
inet6 fe80::a00:27ff:fe56:a8cb/64 scope link
valid_lft forever preferred_lft forever
19: eth17: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 08:00:27:c4:ca:4c brd ff:ff:ff:ff:ff:ff
altname enp2s9
inet6 fe80::a00:27ff:fec4:ca4c/64 scope link
valid_lft forever preferred_lft forever
20: ovs-system: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000
link/ether 2a:09:4a:e8:b3:07 brd ff:ff:ff:ff:ff:ff
21: mgmt: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000
link/ether 8a:8a:4d:57:19:91 brd ff:ff:ff:ff:ff:ff
inet 172.26.56.2/26 brd 172.26.56.63 scope global mgmt
valid_lft forever preferred_lft forever
inet6 fe80::888a:4dff:fe57:1991/64 scope link
valid_lft forever preferred_lft forever
22: br0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000
link/ether 08:00:27:14:50:88 brd ff:ff:ff:ff:ff:ff
inet6 fe80::a00:27ff:fe14:5088/64 scope link
valid_lft forever preferred_lft forever
root@ovs:~# ovs-vsctl show
b9f47407-c46c-4905-aa5a-c78a3050b065
Bridge br0
Port eth15
tag: 1
Interface eth15
Port br0
Interface br0
type: internal
Port eth2
tag: 21
Interface eth2
Port eth13
tag: 1
Interface eth13
Port mgmt
tag: 1
Interface mgmt
type: internal
Port eth3
tag: 22
Interface eth3
Port eth10
tag: 23
Interface eth10
Port eth9
tag: 23
Interface eth9
Port eth0
tag: 1
trunks: [21, 22, 23]
Interface eth0
Port eth5
tag: 22
Interface eth5
Port eth8
tag: 21
Interface eth8
Port eth7
tag: 22
Interface eth7
Port eth6
tag: 22
Interface eth6
Port eth1
tag: 1
Interface eth1
Port eth4
tag: 22
Interface eth4
Port eth16
tag: 1
Interface eth16
Port eth11
tag: 21
Interface eth11
Port eth14
tag: 1
Interface eth14
Port eth12
tag: 22
Interface eth12
ovs_version: "3.1.0"