Both sides previous revisionPrevious revisionNext revision | Previous revision |
documentation:examples:maximum_bsdrp_features_lab [2019/11/04 21:48] – [Router 5 (including jail5 and jail6)] olivier | documentation:examples:maximum_bsdrp_features_lab [2022/07/07 13:23] (current) – [IPv6 traffic shaping] olivier |
---|
| |
<code> | <code> |
sysrc hostname=R5 | sysrc hostname=R5 \ |
sysrc ifconfig_em3=up | ifconfig_em3=up \ |
sysrc cloned_interfaces=epair0 | cloned_interfaces=epair0 \ |
sysrc ifconfig_epair0a=up | ifconfig_epair0a=up \ |
sysrc kld_list+=" if_lagg carp" | kld_list+=" if_lagg carp" |
ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/rc.conf | ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/rc.conf |
cat > /etc/devfs.rules <<EOF | cat > /etc/devfs.rules <<EOF |
fi | fi |
tenant -c -j jail6 -i epair0b | tenant -c -j jail6 -i epair0b |
sysrc -f /etc/jails/jail5/rc.conf hostname=jail5 | sysrc -f /etc/jails/jail5/rc.conf hostname=jail5 \ |
sysrc -f /etc/jails/jail5/rc.conf ifconfig_em3="inet 10.0.45.5/24" | ifconfig_em3="inet 10.0.45.5/24" \ |
sysrc -f /etc/jails/jail5/rc.conf ifconfig_em3_ipv6="inet6 2001:db8:45::5 prefixlen 64" | ifconfig_em3_ipv6="inet6 2001:db8:45::5 prefixlen 64" \ |
sysrc -f /etc/jails/jail5/rc.conf ifconfig_epair0a="10.0.56.5/24" | ifconfig_epair0a="10.0.56.5/24" \ |
sysrc -f /etc/jails/jail5/rc.conf ifconfig_epair0a_ipv6="inet6 2001:db8:56::5 prefixlen 64" | ifconfig_epair0a_ipv6="inet6 2001:db8:56::5 prefixlen 64" \ |
sysrc -f /etc/jails/jail5/rc.conf ifconfig_epair0a_alias0="inet 10.0.56.254/32 vhid 1 pass testpass" | ifconfig_epair0a_alias0="inet 10.0.56.254/32 vhid 1 pass testpass" \ |
sysrc -f /etc/jails/jail5/rc.conf ifconfig_epair0a_alias1="inet6 2001:db8:56::fe prefixlen 128 vhid 1 pass testpass" | ifconfig_epair0a_alias1="inet6 2001:db8:56::fe prefixlen 128 vhid 1 pass testpass" \ |
sysrc -f /etc/jails/jail5/rc.conf rtadvd_enable=YES | rtadvd_enable=YES \ |
sysrc -f /etc/jails/jail5/rc.conf rtadvd_interfaces=epair0a | rtadvd_interfaces=epair0a \ |
sysrc -f /etc/jails/jail5/rc.conf dhcpd_enable=YES | dhcpd_enable=YES \ |
sysrc -f /etc/jails/jail5/rc.conf dhcpd_flags="-q" | dhcpd_flags="-q" \ |
sysrc -f /etc/jails/jail5/rc.conf dhcpd_conf="/usr/local/etc/dhcpd.conf" | dhcpd_conf="/usr/local/etc/dhcpd.conf" \ |
sysrc -f /etc/jails/jail5/rc.conf frr_enable=YES | frr_enable=YES \ |
sysrc -f /etc/jails/jail5/rc.conf frr_vtysh_boot="YES" | frr_vtysh_boot=YES \ |
sysrc -f /etc/jails/jail5/rc.conf nfacctd_enable=YES | nfacctd_enable=YES \ |
sysrc -f /etc/jails/jail5/rc.conf pimd_enable=YES | pimd_enable=YES |
ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/jails/jail5/rc.conf | ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/jails/jail5/rc.conf |
mkdir -p /etc/jails/jail5/local/frr | mkdir -p /etc/jails/jail5/local/frr |
EOF | EOF |
| |
sysrc -f /etc/jails/jail6/rc.conf hostname=jail6 | sysrc -f /etc/jails/jail6/rc.conf hostname=jail6 \ |
sysrc -f /etc/jails/jail6/rc.conf ifconfig_epair0b="up" | ifconfig_epair0b="up" \ |
sysrc -f /etc/jails/jail6/rc.conf cloned_interfaces="lagg0" | cloned_interfaces="lagg0" \ |
sysrc -f /etc/jails/jail6/rc.conf ifconfig_lagg0="laggproto failover laggport epair0b SYNCDHCP" | ifconfig_lagg0="laggproto failover laggport epair0b SYNCDHCP" \ |
sysrc -f /etc/jails/jail6/rc.conf ifconfig_lagg0_ipv6="inet6 accept_rtadv" | ifconfig_lagg0_ipv6="inet6 accept_rtadv" \ |
sysrc -f /etc/jails/jail6/rc.conf rtsold_enable=YES | rtsold_enable=YES \ |
sysrc -f /etc/jails/jail6/rc.conf bsnmpd_enable=YES | bsnmpd_enable=YES \ |
sysrc -f /etc/jails/jail6/rc.conf gateway_enable=NO | gateway_enable=NO \ |
sysrc -f /etc/jails/jail6/rc.conf ipv6_gateway_enable=NO | ipv6_gateway_enable=NO |
service jail start | service jail start |
</code> | </code> |
| |
<code> | <code> |
sysrc hostname=R1 | sysrc hostname=R1 \ |
sysrc gateway_enable=NO | gateway_enable=NO \ |
sysrc ipv6_gateway_enable=NO | ipv6_gateway_enable=NO \ |
sysrc ifconfig_em0=up | ifconfig_em0=up \ |
sysrc cloned_interfaces=lagg0 | cloned_interfaces=lagg0 \ |
sysrc ifconfig_lagg0="laggproto loadbalance laggport em0 SYNCDHCP" | ifconfig_lagg0="laggproto loadbalance laggport em0 SYNCDHCP" \ |
sysrc ifconfig_lagg0_ipv6="inet6 accept_rtadv" | ifconfig_lagg0_ipv6="inet6 accept_rtadv" \ |
sysrc sshd_enable=yes | sshd_enable=yes |
ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/rc.conf | ifconfig -l | grep -q vtnet && sed -i "" 's/em/vtnet/g' /etc/rc.conf |
config save | config save |
iperf Done. | iperf Done. |
[root@R1]~# | [root@R1]~# |
| </code> |
| |
| And during iperf, R4 ipfw pipe showing some activity: |
| <code> |
| root@R4:~ # ipfw pipe show |
| 00040: 10.000 Mbit/s 0 ms burst 0 |
| q131112 50 sl. 0 flows (1 buckets) sched 65576 weight 0 lmax 0 pri 0 droptail |
| sched 65576 type FIFO flags 0x0 0 buckets 0 active |
| 00041: 10.000 Mbit/s 0 ms burst 0 |
| q131113 50 sl. 0 flows (1 buckets) sched 65577 weight 0 lmax 0 pri 0 droptail |
| sched 65577 type FIFO flags 0x0 0 buckets 0 active |
| 00061: 20.000 Mbit/s 0 ms burst 0 |
| q131133 50 sl. 0 flows (1 buckets) sched 65597 weight 0 lmax 0 pri 0 droptail |
| sched 65597 type FIFO flags 0x0 0 buckets 1 active |
| BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte Drp |
| 0 ip 0.0.0.0/0 0.0.0.0/0 483 378358 9 6349 0 |
| 00060: 20.000 Mbit/s 0 ms burst 0 |
| q131132 50 sl. 0 flows (1 buckets) sched 65596 weight 0 lmax 0 pri 0 droptail |
| sched 65596 type FIFO flags 0x0 0 buckets 1 active |
| 0 ip 0.0.0.0/0 0.0.0.0/0 125 15881 0 0 0 |
</code> | </code> |
==== netflow ==== | ==== netflow ==== |