404空间

不存在的404

Debian

[IPv6]手把手教你用Debian11搭建IPv6路由器

By adminPosted on Posted in 服务器维护Tagged , , , , No Comments on [IPv6]手把手教你用Debian11搭建IPv6路由器

通过骚操作拿到了1个/48的很奢侈的IPv6段.想着怎么给网络内的设备用,这就需要有一个提供Stateless,Stateful地址分配、广播的服务器提供服务。这样设备连入接入网络之后就可以获取到地址和地址段(不得不吐槽一下IPv6的这个设定)。本文采用Debian11 操作系统,RADVD负责Stateless,ISC-DHCP-Server作为双栈DHCP服务,下面简要介绍主要流程。 组件安装 apt install radvd isc-dhcp-server 系统配置 在/etc/sysctl.conf中添加,看懂的自己调整,看不懂的直接抄作业就好 net.core.rmem_max=2500000 net.core.default_qdisc=fq net.ipv4.tcp_congestion_control=bbr net.ipv4.ip_forward = 1 net.ipv6.conf.all.forwarding = 1 net.ipv4.tcp_fastopen = 3 RADVD 在/etc/radvd.conf中写入配置 interface eth0 { AdvSendAdvert on; AdvIntervalOpt on; MinRtrAdvInterval 60; MaxRtrAdvInterval 300; AdvLinkMTU 1280; AdvOtherConfigFlag on; AdvHomeAgentFlag off; prefix 2000:dad:face:cafe::/64 { AdvOnLink on; AdvAutonomous on; AdvRouterAddr on; AdvValidLifetime 3600; AdvPreferredLifetime 3600; }; }; […]

Read More

[网络]给Debian11开启Full Cone NAT支持

By adminPosted on Posted in 服务器维护Tagged , 1 Comment on [网络]给Debian11开启Full Cone NAT支持

由于Linux默认的NAT是Symmetric NAT,对于臭打游戏的我是完全不能接受的事情,由于不是所有游戏都能走代理,所以在三层做一下Full Cone NAT是不错的选择。本文以Debian 11为例,简要概述下过程。 环境准备 首先安装依赖 apt -y install cmake gcc g++ make libncurses5-dev libssl-dev libsodium-dev libreadline-dev zlib1g-dev git libmnl-dev libnftnl-dev linux-headers-amd64 编译模块 git clone https://github.com/llccd/netfilter-full-cone-nat/ cd ~/netfilter-full-cone-nat make modprobe nf_nat insmod xt_FULLCONENAT.ko 编译IPTables git clone git://git.netfilter.org/iptables.git cp ~/netfilter-full-cone-nat/libipt_FULLCONENAT.c ~/iptables/extensions/ cp ~/netfilter-full-cone-nat/libip6t_FULLCONENAT.c ~/iptables/extensions/ cd ~/iptables ln -sfv /usr/sbin/xtables-multi /usr/bin/iptables-xml PKG_CONFIG_PATH=/usr/local/lib/pkgconfig export PKG_CONFIG_PATH ./configure make […]

Read More
Scroll to top