| Both sides previous revisionPrevious revisionNext revision | Previous revision |
| documentation:examples:maximum_bsdrp_features_lab [2019/11/04 21:48] – [Router 5 (including jail5 and jail6)] olivier | documentation:examples:maximum_bsdrp_features_lab [2022/07/07 13:23] (current) – [IPv6 traffic shaping] olivier |
|---|
| |
| <code> | <code> |
| sysrc hostname=R5 | sysrc hostname=R5 \ |
| sysrc ifconfig_em3=up | ifconfig_em3=up \ |
| sysrc cloned_interfaces=epair0 | cloned_interfaces=epair0 \ |
| sysrc ifconfig_epair0a=up | ifconfig_epair0a=up \ |
| sysrc kld_list+=" if_lagg carp" | kld_list+=" if_lagg carp" |
| ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/rc.conf | ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/rc.conf |
| cat > /etc/devfs.rules <<EOF | cat > /etc/devfs.rules <<EOF |
| fi | fi |
| tenant -c -j jail6 -i epair0b | tenant -c -j jail6 -i epair0b |
| sysrc -f /etc/jails/jail5/rc.conf hostname=jail5 | sysrc -f /etc/jails/jail5/rc.conf hostname=jail5 \ |
| sysrc -f /etc/jails/jail5/rc.conf ifconfig_em3="inet 10.0.45.5/24" | ifconfig_em3="inet 10.0.45.5/24" \ |
| sysrc -f /etc/jails/jail5/rc.conf ifconfig_em3_ipv6="inet6 2001:db8:45::5 prefixlen 64" | ifconfig_em3_ipv6="inet6 2001:db8:45::5 prefixlen 64" \ |
| sysrc -f /etc/jails/jail5/rc.conf ifconfig_epair0a="10.0.56.5/24" | ifconfig_epair0a="10.0.56.5/24" \ |
| sysrc -f /etc/jails/jail5/rc.conf ifconfig_epair0a_ipv6="inet6 2001:db8:56::5 prefixlen 64" | ifconfig_epair0a_ipv6="inet6 2001:db8:56::5 prefixlen 64" \ |
| sysrc -f /etc/jails/jail5/rc.conf ifconfig_epair0a_alias0="inet 10.0.56.254/32 vhid 1 pass testpass" | ifconfig_epair0a_alias0="inet 10.0.56.254/32 vhid 1 pass testpass" \ |
| sysrc -f /etc/jails/jail5/rc.conf ifconfig_epair0a_alias1="inet6 2001:db8:56::fe prefixlen 128 vhid 1 pass testpass" | ifconfig_epair0a_alias1="inet6 2001:db8:56::fe prefixlen 128 vhid 1 pass testpass" \ |
| sysrc -f /etc/jails/jail5/rc.conf rtadvd_enable=YES | rtadvd_enable=YES \ |
| sysrc -f /etc/jails/jail5/rc.conf rtadvd_interfaces=epair0a | rtadvd_interfaces=epair0a \ |
| sysrc -f /etc/jails/jail5/rc.conf dhcpd_enable=YES | dhcpd_enable=YES \ |
| sysrc -f /etc/jails/jail5/rc.conf dhcpd_flags="-q" | dhcpd_flags="-q" \ |
| sysrc -f /etc/jails/jail5/rc.conf dhcpd_conf="/usr/local/etc/dhcpd.conf" | dhcpd_conf="/usr/local/etc/dhcpd.conf" \ |
| sysrc -f /etc/jails/jail5/rc.conf frr_enable=YES | frr_enable=YES \ |
| sysrc -f /etc/jails/jail5/rc.conf frr_vtysh_boot="YES" | frr_vtysh_boot=YES \ |
| sysrc -f /etc/jails/jail5/rc.conf nfacctd_enable=YES | nfacctd_enable=YES \ |
| sysrc -f /etc/jails/jail5/rc.conf pimd_enable=YES | pimd_enable=YES |
| ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/jails/jail5/rc.conf | ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/jails/jail5/rc.conf |
| mkdir -p /etc/jails/jail5/local/frr | mkdir -p /etc/jails/jail5/local/frr |
| EOF | EOF |
| |
| sysrc -f /etc/jails/jail6/rc.conf hostname=jail6 | sysrc -f /etc/jails/jail6/rc.conf hostname=jail6 \ |
| sysrc -f /etc/jails/jail6/rc.conf ifconfig_epair0b="up" | ifconfig_epair0b="up" \ |
| sysrc -f /etc/jails/jail6/rc.conf cloned_interfaces="lagg0" | cloned_interfaces="lagg0" \ |
| sysrc -f /etc/jails/jail6/rc.conf ifconfig_lagg0="laggproto failover laggport epair0b SYNCDHCP" | ifconfig_lagg0="laggproto failover laggport epair0b SYNCDHCP" \ |
| sysrc -f /etc/jails/jail6/rc.conf ifconfig_lagg0_ipv6="inet6 accept_rtadv" | ifconfig_lagg0_ipv6="inet6 accept_rtadv" \ |
| sysrc -f /etc/jails/jail6/rc.conf rtsold_enable=YES | rtsold_enable=YES \ |
| sysrc -f /etc/jails/jail6/rc.conf bsnmpd_enable=YES | bsnmpd_enable=YES \ |
| sysrc -f /etc/jails/jail6/rc.conf gateway_enable=NO | gateway_enable=NO \ |
| sysrc -f /etc/jails/jail6/rc.conf ipv6_gateway_enable=NO | ipv6_gateway_enable=NO |
| service jail start | service jail start |
| </code> | </code> |
| |
| <code> | <code> |
| sysrc hostname=R1 | sysrc hostname=R1 \ |
| sysrc gateway_enable=NO | gateway_enable=NO \ |
| sysrc ipv6_gateway_enable=NO | ipv6_gateway_enable=NO \ |
| sysrc ifconfig_em0=up | ifconfig_em0=up \ |
| sysrc cloned_interfaces=lagg0 | cloned_interfaces=lagg0 \ |
| sysrc ifconfig_lagg0="laggproto loadbalance laggport em0 SYNCDHCP" | ifconfig_lagg0="laggproto loadbalance laggport em0 SYNCDHCP" \ |
| sysrc ifconfig_lagg0_ipv6="inet6 accept_rtadv" | ifconfig_lagg0_ipv6="inet6 accept_rtadv" \ |
| sysrc sshd_enable=yes | sshd_enable=yes |
| ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/rc.conf | ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/rc.conf |
| config save | config save |
| iperf Done. | iperf Done. |
| [root@R1]~# | [root@R1]~# |
| | </code> |
| | |
| | And during iperf, R4 ipfw pipe showing some activity: |
| | <code> |
| | root@R4:~ # ipfw pipe show |
| | 00040: 10.000 Mbit/s 0 ms burst 0 |
| | q131112 50 sl. 0 flows (1 buckets) sched 65576 weight 0 lmax 0 pri 0 droptail |
| | sched 65576 type FIFO flags 0x0 0 buckets 0 active |
| | 00041: 10.000 Mbit/s 0 ms burst 0 |
| | q131113 50 sl. 0 flows (1 buckets) sched 65577 weight 0 lmax 0 pri 0 droptail |
| | sched 65577 type FIFO flags 0x0 0 buckets 0 active |
| | 00061: 20.000 Mbit/s 0 ms burst 0 |
| | q131133 50 sl. 0 flows (1 buckets) sched 65597 weight 0 lmax 0 pri 0 droptail |
| | sched 65597 type FIFO flags 0x0 0 buckets 1 active |
| | BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte Drp |
| | 0 ip 0.0.0.0/0 0.0.0.0/0 483 378358 9 6349 0 |
| | 00060: 20.000 Mbit/s 0 ms burst 0 |
| | q131132 50 sl. 0 flows (1 buckets) sched 65596 weight 0 lmax 0 pri 0 droptail |
| | sched 65596 type FIFO flags 0x0 0 buckets 1 active |
| | 0 ip 0.0.0.0/0 0.0.0.0/0 125 15881 0 0 0 |
| </code> | </code> |
| ==== netflow ==== | ==== netflow ==== |
