返回列表 發帖
角色

Rank: 2
1# 跳轉到 » 倒序看帖
打印
tT
發表於 2018-3-5 15:12 | 只看該作者

VirtualBox + RouterOS——Case Study 007

本帖最後由 角色 於 2018-3-5 19:21 編輯

Please see the following figure:



General description:
There are two locations where have two routers connected to the Internet. The PCs under the router are able to ping the WAN port of the opposite router.

Objectives:
1. Create two routers with four interfaces. One of them is connected to the Internet via dhcp client mode. As shown in the figure, R1's e2 will be connected to the Internet. Interface e1 and e3 are connected a bridge name bridge1. R2's e3 will be connected to the Internet. Interfaces e1 and e2 are connected to a bridge named bridge2.
2. PC1 and PC2 are able to ping WAN IP of R2. Similarly for the case of PC3 and PC4. They are able to ping the WAN IP of R1 as well.

Procedures:

1. Clone two routers R1 and R2 from the RouterOS CHR

2. Configure the VirtualBox motherboard for 4 NIC interfaces for each router
R1: NIC2 configured as a bridge adapter, NIC1, NIC3 and NIC4 as 'internal network'
R2: NIC3 configured as a bridge adaptor, NIC1,NIC2 and NIC4 as 'internal network'

VBox Settings for R1:
  1. VBoxManage modifyvm R1 --nic2 bridged
  2. VBoxManage modifyvm R1 --bridgeadapter2 'en6: Thunderbolt Ethernet 3'

  4. VBoxManage modifyvm R1 --nic1 intnet
  5. VBoxManage modifyvm R1 --nic3 intnet
  6. VBoxManage modifyvm R1 --nic4 intnet
  7. VBoxManage modifyvm R1 --nic5 none
  8. VBoxManage modifyvm R1 --nic6 none
  9. VBoxManage modifyvm R1 --nic7 none
  10. VBoxManage modifyvm R1 --nic8 none

  12. VBoxManage modifyvm R1 --intnet1 Cable11
  13. VBoxManage modifyvm R1 --intnet3 Cable13
  14. VBoxManage modifyvm R1 --intnet4 Cable14

  16. VBoxManage modifyvm R1 --nicpromisc1 allow-vms
  17. VBoxManage modifyvm R1 --nicpromisc3 allow-vms
  18. VBoxManage modifyvm R1 --nicpromisc4 allow-vms
複製代碼
#

VBox Settings for R2
  1. VBoxManage modifyvm R2 --nic3 bridged
  2. VBoxManage modifyvm R2 --bridgeadapter3 'en6: Thunderbolt Ethernet 3'

  4. VBoxManage modifyvm R2 --nic1 intnet
  5. VBoxManage modifyvm R2 --nic2 intnet
  6. VBoxManage modifyvm R2 --nic4 intnet
  7. VBoxManage modifyvm R2 --nic5 none
  8. VBoxManage modifyvm R2 --nic6 none
  9. VBoxManage modifyvm R2 --nic7 none
  10. VBoxManage modifyvm R2 --nic8 none

  12. VBoxManage modifyvm R2 --intnet1 Cable21
  13. VBoxManage modifyvm R2 --intnet2 Cable22
  14. VBoxManage modifyvm R2 --intnet4 Cable24

  16. VBoxManage modifyvm R2 --nicpromisc1 allow-vms
  17. VBoxManage modifyvm R2 --nicpromisc2 allow-vms
  18. VBoxManage modifyvm R2 --nicpromisc4 allow-vms
複製代碼
#

3. Start the vms R1 and R2

4. System reset R1 and R2 using the following commands
  1. /system reset-configuration no-defaults=yes
複製代碼
#

5. Remove the default dhcp client in R1 and R2 using the command
  1. /ip dhcp-client remove 0
複製代碼
#
In general, there is only one default dhcp-client in the list.

6. Configure ether2 of R1 and ether3 of R2 as the dhcp-clients
R1:
  1. /ip dhcp-client add interface=ether2 disabled=no
複製代碼
#
R2:
  1. /ip dhcp-client add interface=ether3 disabled=no
複製代碼
#

7. Check if R1 and R2 are able to get IP address from the dhcp server using the following command
  1. /ip dhcp-client print
複製代碼




Please note the setting for allow-remote-requests is 'no', it means any remote device (PC) requests dns from this server is not allowed. If you want to do so, you have to set it to yes using the command
  1. /ip dns set allow-remote-requests=yes
複製代碼
#

8. Now we are going to configure ether1,ether3 and ether4 of R1 to form a bridge named 'bridge1'
  1. R1:
  2. /interface bridge add name=bridge1
  3. /interface bridge port add bridge=bridge1 interface=ether1
  4. /interface bridge port add bridge=bridge1 interface=ether3
  5. /interface bridge port add bridge=bridge1 interface=ether4
複製代碼
#

9. Set the IP address for interface bridge1 for R1
  1. /ip address add address=10.10.10.254/24 interface=bridge1
複製代碼
#

10. Set up dhcp-server for the interface bridge1
  1. /ip dhcp-server setup
複製代碼
#


11. Clone RouterOS CHR for PC1

12. VirtualBox configure NIC1 as ‘internal network’ with network name ‘Cable11’
  1. VBoxManage modifyvm PC1 --nic1 intnet
  2. VBoxManage modifyvm PC1 --nic2 none
  3. VBoxManage modifyvm PC1 --nic3 none
  4. VBoxManage modifyvm PC1 --nic4 none
  5. VBoxManage modifyvm PC1 --nic5 none
  6. VBoxManage modifyvm PC1 --nic6 none
  7. VBoxManage modifyvm PC1 --nic7 none
  8. VBoxManage modifyvm PC1 --nic8 none

  10. VBoxManage modifyvm PC1 --intnet1 Cable11

  12. VBoxManage modifyvm PC1 --nicpromisc1 allow-vms
複製代碼
#

13. Configure R1 with nat=masquerate
  1. /ip firewall nat add acition=masquerate chain=srcnat out-interface=ether2
複製代碼
#

Now you are able to ping Internet IP addresses and hostnames without problem.
附件: 您需要登錄才可以下載或查看附件。沒有帳號?註冊
收藏 分享

返回列表