This is the same layout as with the previous VLAN routing puzzle, except that there is only one network wire going to the firewall. The firewall has two interfaces, with two different IP addresses. One of them is on vlan2 and the other is on vlan1. For this to work, we need to have two different VLANs on the one wire that goes to the firewall. We need the port to the firewall to be "tagged" for both vlans. Open up the net_switch1 VLAN settings and set the appropriate vlan tags. Il s'agit de la même disposition que pour le casse-tête de routage VLAN précédent, sauf qu'il n'y a qu'un seul fil de réseau allant au pare-feu. Le pare-feu a deux interfaces, avec deux adresses IP différentes. L'un d'entre eux est sur vlan2 et l'autre sur vlan1. Pour que cela fonctionne, nous avons besoin de deux VLAN différents sur le seul fil qui va au pare-feu. Nous avons besoin que le port du pare-feu soit "étiqueté" pour les deux vlans. Ouvrez les paramètres net_switch1 VLAN et définissez les balises vlan appropriées. VLAN Routing2 1024 1024 100 full 6 4.5 154 full True False firewall0 100 145 660,170 firewall False False 0.0.0.0 0.0.0.0 0.0.0.0 gw lo lo0 145 146 firewall0 lo0 lo 146 False lo0 127.0.0.1 255.0.0.0 0.0.0.0 ip Untagged wan wan0 145 149 firewall0 wan0 wan 149 False wan0 0.0.0.0 0.0.0.0 0.0.0.0 ip Untagged eth eth0 145 147 firewall0 eth0 eth 147 False eth0 0.0.0.0 255.255.255.0 0.0.0.0 ip Untagged eth eth1 145 148 firewall0 eth1 eth 148 False eth1 192.168.2.1 255.255.255.0 0.0.0.0 ip Forbidden Tagged eth1:1 192.168.1.1 255.255.255.0 0.0.0.0 ip Tagged Forbidden net_switch0 100 100 240,390 net_switch False False 0.0.0.0 0.0.0.0 0.0.0.0 gw lo lo0 100 101 net_switch0 lo0 lo 101 False lo0 127.0.0.1 255.0.0.0 0.0.0.0 ip Untagged management_interface management_interface0 100 102 net_switch0 management_interface0 management_interface 102 False management_interface0 0.0.0.0 0.0.0.0 0.0.0.0 ip Untagged port port1 100 103 net_switch0 port1 port 103 False port1 0.0.0.0 0.0.0.0 0.0.0.0 ip Tagged Tagged port port2 100 104 net_switch0 port2 port 104 False port2 0.0.0.0 0.0.0.0 0.0.0.0 ip Untagged Forbidden port port3 100 105 net_switch0 port3 port 105 False port3 0.0.0.0 0.0.0.0 0.0.0.0 ip Untagged Forbidden port port4 100 106 net_switch0 port4 port 106 False port4 0.0.0.0 0.0.0.0 0.0.0.0 ip Forbidden Forbidden port port5 100 107 net_switch0 port5 port 107 False port5 0.0.0.0 0.0.0.0 0.0.0.0 ip Forbidden Forbidden port port6 100 108 net_switch0 port6 port 108 False port6 0.0.0.0 0.0.0.0 0.0.0.0 ip Untagged Forbidden port port7 100 109 net_switch0 port7 port 109 False port7 0.0.0.0 0.0.0.0 0.0.0.0 ip Forbidden Untagged net_switch1 100 110 660,390 net_switch False False 0.0.0.0 0.0.0.0 0.0.0.0 gw lo lo0 110 111 net_switch1 lo0 lo 111 False lo0 127.0.0.1 255.0.0.0 0.0.0.0 ip Untagged management_interface management_interface0 110 112 net_switch1 management_interface0 management_interface 112 False management_interface0 0.0.0.0 0.0.0.0 0.0.0.0 ip Untagged port port1 110 113 net_switch1 port1 port 113 False port1 0.0.0.0 0.0.0.0 0.0.0.0 ip Tagged Tagged port port2 110 114 net_switch1 port2 port 114 False port2 0.0.0.0 0.0.0.0 0.0.0.0 ip Forbidden Untagged port port3 110 115 net_switch1 port3 port 115 False port3 0.0.0.0 0.0.0.0 0.0.0.0 ip Forbidden Untagged port port4 110 116 net_switch1 port4 port 116 False port4 0.0.0.0 0.0.0.0 0.0.0.0 ip Untagged Forbidden port port5 110 117 net_switch1 port5 port 117 False port5 0.0.0.0 0.0.0.0 0.0.0.0 ip Forbidden Forbidden port port6 110 118 net_switch1 port6 port 118 False port6 0.0.0.0 0.0.0.0 0.0.0.0 ip Forbidden Forbidden port port7 110 119 net_switch1 port7 port 119 False port7 0.0.0.0 0.0.0.0 0.0.0.0 ip Forbidden Forbidden pc0 100 121 100,640 pc False False Yellow 192.168.1.1 0.0.0.0 0.0.0.0 gw lo lo0 121 122 pc0 lo0 lo 122 False lo0 127.0.0.1 255.0.0.0 0.0.0.0 ip Untagged eth eth0 121 123 pc0 eth0 eth 123 False eth0 192.168.1.2 255.255.255.0 0.0.0.0 ip Untagged pc1 100 124 240,640 pc False False Yellow 192.168.1.1 0.0.0.0 0.0.0.0 gw lo lo0 124 125 pc1 lo0 lo 125 False lo0 127.0.0.1 255.0.0.0 0.0.0.0 ip Untagged eth eth0 124 126 pc1 eth0 eth 126 False eth0 192.168.1.3 255.255.255.0 0.0.0.0 ip Untagged pc2 100 127 360,690 pc False False Green 192.168.2.1 0.0.0.0 0.0.0.0 gw lo lo0 127 128 pc2 lo0 lo 128 False lo0 127.0.0.1 255.0.0.0 0.0.0.0 ip Untagged eth eth0 127 129 pc2 eth0 eth 129 False eth0 192.168.2.2 255.255.255.0 0.0.0.0 ip Untagged pc3 100 130 570,710 pc False False Green 192.168.2.1 0.0.0.0 0.0.0.0 gw lo lo0 130 131 pc3 lo0 lo 131 False lo0 127.0.0.1 255.0.0.0 0.0.0.0 ip Untagged eth eth0 130 132 pc3 eth0 eth 132 False eth0 192.168.2.3 255.255.255.0 0.0.0.0 ip Untagged pc4 100 133 730,680 pc False False Green 192.168.2.1 0.0.0.0 0.0.0.0 gw lo lo0 133 134 pc4 lo0 lo 134 False lo0 127.0.0.1 255.0.0.0 0.0.0.0 ip Untagged eth eth0 133 135 pc4 eth0 eth 135 False eth0 192.168.2.4 255.255.255.0 0.0.0.0 ip Untagged pc5 100 136 870,640 pc False False Yellow 192.168.1.1 0.0.0.0 0.0.0.0 gw lo lo0 136 137 pc5 lo0 lo 137 False lo0 127.0.0.1 255.0.0.0 0.0.0.0 ip Untagged eth eth0 136 138 pc5 eth0 eth 138 False eth0 192.168.1.4 255.255.255.0 0.0.0.0 ip Untagged 100 103 net_switch0 port1 110 113 net_switch1 port1 net_switch0_link_net_switch1 normal 120 136 138 pc5 eth0 110 116 net_switch1 port4 pc5_link_net_switch1 normal 144 133 135 pc4 eth0 110 115 net_switch1 port3 pc4_link_net_switch1 normal 143 130 132 pc3 eth0 110 114 net_switch1 port2 pc3_link_net_switch1 normal 142 121 123 pc0 eth0 100 104 net_switch0 port2 pc0_link_net_switch0 normal 139 127 129 pc2 eth0 100 109 net_switch0 port7 pc2_link_net_switch0 normal 141 124 126 pc1 eth0 100 105 net_switch0 port3 pc1_link_net_switch0 normal 140 110 119 net_switch1 port7 145 148 firewall0 eth1 net_switch1_link_firewall0 normal 153 pc0 pc1 SuccessfullyPings pc0 pc5 SuccessfullyPings pc0 192.168.1.255 SuccessfullyPings pc2 pc3 SuccessfullyPings pc2 192.168.1.255 SuccessfullyPings All All LockVLANNames pc0 pc3 SuccessfullyPings pc3 pc0 SuccessfullyPings pc5 pc2 SuccessfullyPings net_switch1 port7 - 1 NeedsTaggedVLAN net_switch1 port7 - 2 NeedsTaggedVLAN VLAN Default Sttaff