24
edits
Changes
OSPF via VPLS and ZerotierVPN (view source)
Revision as of 16:56, 17 October 2022
, 16:56, 17 October 2022no edit summary
*At least one end device (PC, Laptop, Tablet, Smartphone) to configure the routers
*At least one end device (PC, Laptop, Tablet, Smartphone) to configure the routers
*VPLS or any L2/L3 type of wired data channel.
*VPLS or any L2/L3 type of wired data channel.
*Sim card to reserve mobile channel.
*Wired or wireless internet connection.
==Summary==
==Summary==
*On newly created VLAN ID (3 in this example), from drop-down list, select <b>Untagged</b>, on same port.
*On newly created VLAN ID (3 in this example), from drop-down list, select <b>Untagged</b>, on same port.
*After performing these actions press <b>Save & Apply</b> in VLAN settings.
*After performing these actions press <b>Save & Apply</b> in VLAN settings.
[[File:OSPF via VPLS and ZerotierVPN VPN setting.png]]
==Add new VPLS interface (interface VLAN)==
==Add new VPLS interface (interface VLAN)==
[[File:OSPF via VPLS and ZerotierVPN Interface Vlan add.png]]
After doing that you will be redirected to new window to set up new interface, when there:
After doing that you will be redirected to new window to set up new interface, when there:
*Write IPv4 address to private address VPLS connections.
*Write IPv4 address to private address VPLS connections.
*Write IPv4 netmask to private address VPLS connections.
*Write IPv4 netmask to private address VPLS connections.
[[File:OSPF via VPLS and ZerotierVPN Interface Static setting.png]]
After switching protocol More setting options will appear:
After switching protocol More setting options will appear:
*Go to <b>Physical Settings.</b>
* Go to <b>Physical Settings.</b>
*From drop-down list choose previously created VLAN interface (in this example it is eth0.3)
* From drop-down list choose previously created VLAN interface (in this example it is eth0.3)
*Press <b>Apply & Save.</b>
*Press <b>Apply & Save.</b>
[[File:OSPF via VPLS and ZerotierVPN Interface setting.png]]
==Check new VPLS interface==
==Check new VPLS interface==
Insert VPLS cable in selected port, go to <b>Network > Interfaces</b> WebUI section and if you followed steps correctly yours newly created VPLS interface should be running and have an IP.
Insert VPLS cable in selected port, go to <b>Network > Interfaces</b> WebUI section and if you followed steps correctly yours newly created VPLS interface should be running and have an IP.
[[File:OSPF via VPLS and ZerotierVPN VPLS Interface.png]]
==ZeroTier One VPN configuration RutOS==
[[File:OSPF via VPLS and ZerotierVPN OSPF Zerotier.png]]
Wiki docks to
Wiki docks to [[ZeroTier One VPN configuration|ZeroTier VPN configuration]]
[[ZeroTier One VPN configuration|ZeroTier VPN configuration]]
[[File:OSPF via VPLS and ZerotierVPN OSPF Zerotier CLI.png]]
==Configure General settings OSPF Protocol==
==Configure General settings OSPF Protocol==
Go to <b>Network > Routing > Dynamik Routes > OSPF</b> WebUI section.
Go to <b>Network > Routing > Dynamik Routes > OSPF</b> WebUI section.
[[File:OSPF via VPLS and ZerotierVPN OSPF General.png]]
*Enable OSPF instance on check bar.
* Enable OSPF instance on check bar.
*Enable VTY access from LAN ON.
* Enable VTY access from LAN ON.
*Generate a default external route from drop-down list, select <b>Default</b>, Default - Advertises the default route if the route is in the route table.
*Generate a default external route from drop-down list, select <b>Default</b>, Default - Advertises the default route if the route is in the route table.
*Redistribution options, from drop-down list, select <b>Connected</b>. It redistribute connected network to another routers on same network.
*Redistribution options, from drop-down list, select <b>Connected</b>. It redistribute connected network to another routers on same network.
==Configure OSPF Interface==
==Configure OSPF Interface==
In this concept we need make priority on VPLS data channel, to minimize delay.
In this concept we need make priority on VPLS data channel, to minimize delay.
[[File:OSPF via VPLS and ZerotierVPN OSPF Interface Temp.png]
*Add new OSPF interface.
*Add new OSPF interface.
*Change Name Interface from drop-down list, select <b>VPLS</b> interface.
* Change Name Interface from drop-down list, select <b>VPLS</b> interface.
*Enable OSPF Interface on check bar.
*Enable OSPF Interface on check bar.
*Press Edit and state Cost, Hello Interval, Router Dead Interval and Retransmit.
*Press Edit and state Cost, Hello Interval, Router Dead Interval and Retransmit.
*Press Save & Apply.
*Press Save & Apply.
[[File:OSPF via VPLS and ZerotierVPN OSPF Interface add.png]]
==Configure OSPF Area==
==Configure OSPF Area==
[[File:OSPF via VPLS and ZerotierVPN OSPF AREA Template.png]]
Create OSPF Area, and configure him number.
Create OSPF Area, and configure him number.
[[File:OSPF via VPLS and ZerotierVPN OSPF AREA SET.png]]
==Configure OSPF Networks==
==Configure OSPF Networks==
[[File:OSPF via VPLS and ZerotierVPN OSPF Networks.png|left|frame]]
[[File:OSPF via VPLS and ZerotierVPN OSPF Networks.png]]<br>Add 2 new instance with <b>VPLS</b> and <b>Zerotier</b> subnet for broadcast OSPF flags on this networks.
Add 2 new instance with <b>VPLS</b> and <b>Zerotier</b> subnet for broadcast OSPF flags on this networks.
After that press <b>Save & Apply.</b>
After that press <b>Save & Apply.</b>
==Checking the functionality of the architecture==
==Checking the functionality of the architecture==
Connect to device via SSH and press command “vtysh”
Connect to device via SSH and press command “vtysh”
[[File:OSPF via VPLS and ZerotierVPN Test vtysh.png|left|frame]]
[[File:OSPF via VPLS and ZerotierVPN Test vtysh.png]]<br>
Check OSPF neighbor device with command “<b>show ip ospf neighbor</b>”[[File:OSPF via VPLS and ZerotierVPN Test OSPF neighbor.png]]<br>The figure above shows all the neighbors that we managed to contact via OSPF, as we can see, routers with addresses 10.0.0.2, 10.0.0.3 and 10.0.0.4 neighbor on the eth0.3 interface, that is, the VPLS interface.
Check OSPF neighbor device with command “<b>show ip ospf neighbor</b>”
[[File:OSPF via VPLS and ZerotierVPN Test OSPF neighbor.png|left|frame]]
The figure above shows all the neighbors that we managed to contact via OSPF, as we can see, routers with addresses 10.0.0.2, 10.0.0.3 and 10.0.0.4 neighbor on the eth0.3 interface, that is, the VPLS interface.
While the routers are 172.23.0.10, 172.23.0.30, 172.23.0.50 via the ztbto4jk6k interface, that is, via the Zerotier interface.
While the routers are 172.23.0.10, 172.23.0.30, 172.23.0.50 via the ztbto4jk6k interface, that is, via the Zerotier interface.
Check routes via command “show ip route”
Check routes via command “show ip route”[[File:OSPF via VPLS and ZerotierVPN Test route.png]]<br>The figure below shows the routing table, according to which we can see that we have received routes from routers with which OSPF neighbors (192.168.10.0/24.192.168.100.0/24.192.168.200.0/24.)
[[File:OSPF via VPLS and ZerotierVPN Test route.png|left|alt=|frame]]
The figure below shows the routing table, according to which we can see that we have received routes from routers with which OSPF neighbors (192.168.10.0/24.192.168.100.0/24.192.168.200.0/24.)
We also received default routes (0.0.0.0/0) from the routers on the back side, which will allow us to have backup internet connections in case the LTE connection on the site drops.
We also received default routes (0.0.0.0/0) from the routers on the back side, which will allow us to have backup internet connections in case the LTE connection on the site drops.
Finally route trace test. Connect client(you notebook) to router, and get address via DHCP, in test we see what computer get address 192.168.200.236 and we make tracert to server with another addresses ( 10.127.0.254 )
Finally route trace test. Connect client(you notebook) to router, and get address via DHCP, in test we see what computer get address 192.168.200.236 and we make tracert to server with another addresses ( 10.127.0.254 )
[[File:OSPF via VPLS and ZerotierVPN Test traceroute.png]]<br>
If we make trace we see all hops, Gateway 192.168.200.1 on side 192.168.200.1, VPLS interface routers on side 10.127.0.1/24 and last hop its endpoint (10.127.0.254)
If we make trace we see all hops, Gateway 192.168.200.1 on side 192.168.200.1, VPLS interface routers on side 10.127.0.1/24 and last hop its endpoint (10.127.0.254)