Merge pull request #5 from iArcanic/DMZ-subnet

DMZ-subnet
iArcanic · Jul 13, 2023 · 1e642ec · 1e642ec
2 parents 2b66610 + 7c3155f
commit 1e642ec
Show file tree

Hide file tree

Showing 7 changed files with 38 additions and 1 deletion.
diff --git a/Central-router.startup b/Central-router.startup
@@ -2,5 +2,9 @@
 ip addr add 192.168.0.2/24 dev eth0
 ip link set up dev eth0
 
-# Gateway IP
+# Gateway IP to Internet
 ip route add default via 192.168.0.1 dev eth0
+
+# Gateway IP for DMZ-switch
+ip addr add 10.0.1.1/24 dev eth1
+ip link set up dev eth1
diff --git a/DMZ-switch.startup b/DMZ-switch.startup
@@ -0,0 +1,6 @@
+# IP of DMZ-switch
+ip addr add 10.0.1.2/24 dev eth0
+ip link set up dev eth0
+
+# Gateway IP to Central-router
+ip route add default via 10.0.1.1 dev eth0
diff --git a/DMZ-switch/etc/resolvconf/resolv.conf.d/base b/DMZ-switch/etc/resolvconf/resolv.conf.d/base
@@ -0,0 +1,2 @@
+# hosts external to fido
+nameserver 8.8.8.8
diff --git a/Squid.startup b/Squid.startup
@@ -0,0 +1,11 @@
+# IP of Squid
+ip addr add 10.0.1.3/24 dev eth0
+ip link set up dev eth0
+
+# Route to DMZ-switch
+ip route add default via 10.0.1.2 dev eth0
+
+# Start Squid service
+touch /var/log/squid/access.log
+chmod 777 /var/log/squid/access.log
+systemctl start squid.service
diff --git a/Squid/etc/resolvconf/resolv.conf.d/base b/Squid/etc/resolvconf/resolv.conf.d/base
@@ -0,0 +1,2 @@
+# hosts external to fido
+nameserver 8.8.8.8
diff --git a/Squid/etc/squid/squid.conf b/Squid/etc/squid/squid.conf
@@ -0,0 +1,5 @@
+acl all src all
+http_access allow all
+http_port 3128 transparent
+http_port 3129
+access_log /var/log/squid/access.log
diff --git a/lab.conf b/lab.conf
@@ -1,4 +1,11 @@
+# Internet
 Internet[0]=Internet
 Internet[1]=Central-router
 
+# Central-router
 Central-router[0]=Central-router
+Central-router[1]=DMZ
+
+# DMZ subnet
+DMZ-switch[0]=DMZ
+Squid[0]=DMZ