Bon, me joie était éphémère: je viens de faire un essai avec la configuration et j'ai maintenant une IP pour la partie VOD sur le vif 838, ce que je n'avais pas avant, en revanche rien pour la data sur le 832.
root@ubnt:/# show interfaces
Codes: S - State, L - Link, u - Up, D - Down, A - Admin Down
Interface IP Address S/L Description
--------- ---------- --- -----------
eth0 192.168.1.1/24 u/D LAN_ETH0
eth1 - u/u ISP
eth1.832 - u/u ISP_DATA
eth1.838 10.194.188.184/27 u/u ISP_TV_VOD
eth1.840 192.168.255.254/32 u/u ISP_TV_STREAM
eth2 192.168.2.1/24 u/D LAN_ETH2
eth3 192.168.3.1/24 u/u LAN_ETH3
eth4 - u/D
lo 127.0.0.1/8 u/u
::1/128
switch0 - u/u
Je ne sais plus comment faire pour avancer dans le debug car je ne sais pas ce qui ne fonctionne pas, les logs ne me disent pas grand chose ou bien il y a un log qui m'a peut-être échappé ?
Est-ce que vous avez déjà eu ce type de problème ?
Ma config est la suivante :
firewall {
all-ping enable
broadcast-ping disable
ipv6-receive-redirects disable
ipv6-src-route disable
ip-src-route disable
log-martians enable
name WAN_IN {
default-action drop
description "WAN to internal"
rule 10 {
action accept
description "Allow established/related"
log disable
protocol all
state {
established enable
invalid disable
new disable
related enable
}
}
rule 20 {
action drop
description "Drop invalid state"
log disable
protocol all
state {
established disable
invalid enable
new disable
related disable
}
}
rule 21 {
action accept
description SoftetherVPN
destination {
port 4500,500
}
log disable
protocol udp
}
}
name WAN_LOCAL {
default-action drop
description "WAN to router"
rule 1 {
action accept
description "Allow established/related"
state {
established enable
related enable
}
}
rule 3 {
action drop
description "Drop invalid state"
log disable
state {
invalid enable
}
}
}
receive-redirects disable
send-redirects enable
source-validation disable
syn-cookies enable
}
interfaces {
ethernet eth0 {
address 192.168.1.1/24
description LAN_ETH0
duplex auto
speed auto
}
ethernet eth1 {
description ISP
duplex auto
speed auto
vif 832 {
address dhcp
description ISP_DATA
dhcp-options {
client-option "send vendor-class-identifier "sagem";"
client-option "send user-class "\053FSVDSL_livebox.Internet.softathome.Livebox4";"
client-option "send rfc3118-auth 00:00:00:00:00:00:00:00:00:00:00:66:74:69:2f:66:32:xx:xx:xx:xx:xx;"
client-option "request subnet-mask, routers, domain-name-servers, domain-name, broadcast-address, dhcp-lease-time, dhcp-renewal-time, dhcp-rebinding-time, rfc3118-auth;"
default-route update
default-route-distance 210
global-option "option rfc3118-auth code 90 = string;"
name-server update
}
egress-qos "0:0 1:0 2:0 3:0 4:0 5:0 6:6 7:0"
firewall {
in {
name WAN_IN
}
local {
name WAN_LOCAL
}
}
}
vif 838 {
address dhcp
description ISP_TV_VOD
dhcp-options {
client-option "send vendor-class-identifier "sagem";"
client-option "send user-class "\047FSVDSL_livebox.MLTV.softathome.Livebox4";"
client-option "send dhcp-client-identifier 1:xx:xx:xx:xx:xx:xx;"
client-option "request subnet-mask, routers, rfc3442-classless-static-routes;"
default-route no-update
default-route-distance 210
name-server update
}
egress-qos "0:4 1:4 2:4 3:4 4:4 5:4 6:4 7:4"
}
vif 840 {
address 192.168.255.254/32
description ISP_TV_STREAM
egress-qos "0:5 1:5 2:5 3:5 4:5 5:5 6:5 7:5"
}
}
ethernet eth2 {
address 192.168.2.1/24
description LAN_ETH2
duplex auto
speed auto
}
ethernet eth3 {
address 192.168.3.1/24
description LAN_ETH3
duplex auto
poe {
output 24v
}
speed auto
}
ethernet eth4 {
duplex auto
poe {
output off
}
speed auto
}
loopback lo {
}
switch switch0 {
mtu 1500
}
}
port-forward {
auto-firewall enable
hairpin-nat enable
lan-interface eth0
wan-interface eth1.832
}
protocols {
igmp-proxy {
interface eth0 {
role disabled
threshold 1
}
interface eth1 {
role disabled
threshold 1
}
interface eth1.832 {
role disabled
threshold 1
}
interface eth1.838 {
role disabled
threshold 1
}
interface eth1.840 {
alt-subnet 0.0.0.0/0
role upstream
threshold 1
}
interface eth2 {
alt-subnet 0.0.0.0/0
role downstream
threshold 1
}
interface eth3 {
role disabled
threshold 1
}
}
}
service {
dhcp-server {
disabled false
hostfile-update disable
shared-network-name LAN_ETH0_DHCP {
authoritative enable
subnet 192.168.1.0/24 {
default-router 192.168.1.1
dns-server 192.168.1.1
lease 86400
ntp-server 192.168.1.1
start 192.168.1.100 {
stop 192.168.1.200
}
}
}
shared-network-name LAN_ETH2_DHCP {
authoritative enable
subnet 192.168.2.0/24 {
default-router 192.168.2.1
dns-server 192.168.2.1
lease 86400
ntp-server 192.168.2.1
start 192.168.2.100 {
stop 192.168.2.200
}
}
}
shared-network-name LAN_ETH3_DHCP {
authoritative disable
subnet 192.168.3.0/24 {
default-router 192.168.3.1
dns-server 192.168.3.1
lease 86400
start 192.168.3.100 {
stop 192.168.3.200
}
}
}
static-arp disable
use-dnsmasq disable
}
dns {
dynamic {
interface eth1 {
service dyndns {
host-name xxxx.dyndns.org
login xxxx
password xxxx
server members.dyndns.org
}
}
}
forwarding {
cache-size 1024
listen-on lo
listen-on eth0
listen-on eth2
name-server 80.10.246.3
name-server 81.253.149.10
}
}
gui {
http-port 80
https-port 443
listen-address 192.168.1.1
listen-address 192.168.2.1
older-ciphers disable
}
nat {
rule 5001 {
description "MASQ: WAN"
log disable
outbound-interface eth1.832
protocol all
type masquerade
}
rule 5002 {
description "MASQ: ORANGE"
log disable
outbound-interface eth1.838
protocol all
type masquerade
}
}
ssh {
allow-root
listen-address 192.168.1.1
listen-address 192.168.2.1
port 22
protocol-version v2
}
upnp2 {
listen-on eth0
nat-pmp enable
port 34651
secure-mode enable
wan eth1.832
}
}
system {
config-management {
commit-revisions 5
}
conntrack {
expect-table-size 4096
hash-size 4096
table-size 32768
tcp {
half-open-connections 512
loose disable
max-retrans 3
}
}
host-name ubnt
login {
user root {
authentication {
encrypted-password xxxx
plaintext-password ""
}
level admin
}
user ubnt {
authentication {
encrypted-password xxxx
plaintext-password ""
}
full-name ""
level admin
}
}
name-server 127.0.0.1
ntp {
server 0.ubnt.pool.ntp.org {
}
server 1.ubnt.pool.ntp.org {
}
server 2.ubnt.pool.ntp.org {
}
server 3.ubnt.pool.ntp.org {
}
}
offload {
hwnat disable
ipsec enable
ipv4 {
forwarding enable
gre enable
vlan enable
}
ipv6 {
forwarding enable
vlan enable
}
}
syslog {
global {
facility all {
level notice
}
facility protocols {
level warning
}
}
}
task-scheduler {
task watchdog {
executable {
path /config/scripts/orange_watchdog.sh
}
interval 5m
}
}
time-zone Europe/Paris
traffic-analysis {
dpi disable
export disable
}
}
/* Warning: Do not remove the following line. */
/* === vyatta-config-version: "config-management@1:conntrack@1:cron@1:dhcp-relay@1:dhcp-server@4:firewall@5:ipsec@5:nat@3:qos@1:quagga@2:system@4:ubnt-pptp@1:ubnt-udapi-server@1:ubnt-unms@1:ubnt-util@1:vrrp@1:webgui@1:webproxy@1:zone-policy@1" === */
/* Release version: v1.10.0.5056246.180125.1007 */
le fichier généré par vyatta pour le vif 832:
#
# autogenerated by vyatta-interfaces.pl on UTC Sat Jan 3 06:43:51 2015
#
option rfc3442-classless-static-routes code 121 = array of unsigned integer 8;
option rfc3118-auth code 90 = string;
interface "eth1.832" {
send host-name "ubnt";
request subnet-mask, broadcast-address, routers, domain-name-servers, domain-name, interface-mtu;
send vendor-class-identifier "sagem";
send user-class "\053FSVDSL_livebox.Internet.softathome.Livebox4";
send rfc3118-auth 00:00:00:00:00:00:00:00:00:00:00:66:74:69:2f:66:32:xx:xx:xx:xx:xx;
request subnet-mask, routers, domain-name-servers, domain-name, broadcast-address, dhcp-lease-time, dhcp-renewal-time, dhcp-rebinding-time, rfc3118-auth;
}
J'ai aussi attaché le fichier var/log/message au cas où ça donnerait une piste mais je ne vois pas quoi malheureusement.
Est-ce qu'une âme charitable aux yeux de lynx saurait m'aider ?
Torpi