此篇會講到以下相關這幾個功能:
1. CentOS 7.0 啟動OpenVPN service.
2. 限制VPN Client只能連到公司內部的10.10.0.0/16 網段 (使用iptables)
3. 將ca.crt , client.crt , client.key , ta.key憑證包進.ovpn檔方便VPN Client使用者方便使用.
公告版位
- Apr 02 Thu 2015 14:23
CentOS 7 install OpenVPN
- Apr 01 Wed 2015 15:45
CentOS 7 時區設定
查看時區的設定為何?
# timedatectl
- Mar 03 Tue 2015 00:44
How to routing successfully from Dell N3048 L3 switch to Juniper SRX series?
The Dell N3048 has to config below,
1. add "VLAN interface IP"
2. add "static route"
3. add command "ip routing"
The Juniper SRX240 has to config below,
- add a "interface IP", if the SRX240 is routing to N3048.
- Mar 03 Tue 2015 00:39
How to connecting for Dell N3048 L3 switch between VLAN devices IP and another VLAN interface IP(Gateway).
Environment:
VLAN 1:
VLAN 1 interface IP: 10.10.0.254/16
Laptop A IP: 10.10.1.1/16
VLAN 2:
VLAN 2 interface IP: 192.168.0.254/16
Laptop B IP: 192.168.1.1/16
- Mar 01 Sun 2015 05:09
Which port is uplink from Juniper SRX240 to ISP gateway?
The interface ge-0/0/0 is uplink only.
- Jan 21 Wed 2015 01:13
Windows 8/8.1 預設的相片檢視器看照片時會有偏黃的問題。
問題: Windows 8/8.1 預設的「Windows 相片檢視器」看照片時,照片會有偏黃的問題。
原因: ICC色彩設定檔出了問題。
解決方法如下:
至「控制台」→點選「色彩管理」→在"裝置(D):"的下拉選單選擇「<你的顯示器名稱型號>」→打勾「在此裝置使用我的設定(U)」→移除「<原本的ICC設定檔>」→然後新增「sRGB IEC61966-2.1」的ICC設定檔→最後就點選「關閉」。
- Nov 12 Wed 2014 10:43
Free proxy server at most 3 people base on Windows
A very good easy proxy server base on windows.
Name is CCProxy.
Official site: http://www.youngzsoft.net/ccproxy/
- Nov 10 Mon 2014 16:38
Clean all table's data in SQL Server
1. The table doesn't have foreign key.
>> USE DatabaseName;
>> TRUNCATE TABLE TableName;
2. The table has foreign key.
>> USE DatabaseName;
>> DELETE [TableName];
>> DBCC CHECKIDENT('TableName', RESEED, 0);
- Nov 07 Fri 2014 17:14
Open SQL Server outcoming connect.
1. Open "Sql Server Configuration Manager".
- Oct 22 Wed 2014 09:41
使用指令的方式開啟「新增/移除程式」與「系統服務」選單
1. 開啟「新增/移除程式」選單:
「cmd」→下指令「appwiz.cpl」
2. 開啟「系統服務」選單:
「cmd」→下指令「services.msc」
- Oct 17 Fri 2014 11:45
啟用Windows的Administrator account/管理者帳號
- Jul 11 Fri 2014 14:09
[CentOS 7.0] Change network interface name (eno* to eth0)
Step1)
# vim /etc/udev/rules.d/70-persistent-net.rules
-----------------------------------------------------------------------
# PCI device 0x14e4:0x1680 (tg3)
SUBSYSTEM=="net", ACTION=="add", DRIVERS=="?*", ATTR{address}=="00:0c:29:7b:d8:06", ATTR{dev_id}=="0x0", ATTR{type}=="1", KERNEL=="eno16777736", NAME="eth0"
-----------------------------------------------------------------------
or
-----------------------------------------------------------------------
# PCI device 0x14e4:0x1680 (tg3)
SUBSYSTEM=="net", ACTION=="add", DRIVERS=="?*", ATTR{address}=="00:0c:29:7b:d8:06", ATTR{dev_id}=="0x0", ATTR{type}=="1", KERNEL=="eno*", NAME="eth0"
-----------------------------------------------------------------------
- May 28 Wed 2014 13:45
CentOS 6.5安裝Nagios + Centreon
環境: CentOS 6.5 64-bit
Download Packages:
----------------------------------------------------------------------------------------
1. http://www.centreon.com/
(1) Centreon Web
http://www.centreon.com/Content-Download/donwload-centreon
2. http://www.nagios.com/
(1) Nagios Core
http://www.nagios.org/download/core/
(2) Nagios Plugins
http://www.nagios.org/download/plugins/
(3) Nagios Addons
NRPE:
http://www.nagios.org/download/addons/
NDOUtils:
http://www.nagios.org/download/addons/
----------------------------------------------------------------------------------------
- May 28 Wed 2014 13:20
[Juniper SRX3400] 如何看Firewall擋掉了哪些IP與Ports.
由下列訊息可以看到紅色部份就是被Firewall擋下來的session.
root@SRX-3400> show security flow cp-session source-prefix 192.168.192.192
- Apr 22 Tue 2014 12:12
[CentOS] Linux設定NAT與Static route
上圖為我們的環境架構。
我們主要的設定皆在NAT Server(CentOS 6.5)上,eth0為10.10.1.1/16, Gateway為10.10.0.254,eth1為192.168.212.82/30,eth2為192.168.212.85/30
情境: 由eth1過來的封包且source ip為100.66.1.1/32, 100.66.1.2/32, 100.66.1.3/32. 這些封包將NAT為192.168.212.85並且由eth2出去。
一般應用程式 (8)