ΒΆ Create interfaces and link them to hosts
Add intefaces and link them to hosts. There are L1, L2 and L3 interfaces. For simplicity, we link all interfaces directly to host, but this will change in the future (allowing L2 interface over L1 interface and L3 interface over L2 interface). In most situations, only L3 interfaces are used.
See more info about fcpc add
See more info about fcpc link
See more info about links
There are two possible ways of how to assign an IP to the host. Either use attribute IP or link IP interface to host or use both of them.
fcpc add l3interface/fw_eth0 name="Eth0_on_fw" description="External interface" ip="1.2.3.1" tag=zone:internet
fcpc add l2interface/fw_eth0 name="Eth0_on_fw" mac="00:01:02:03:04:05"
fcpc add l1interface/fw_eth0 name="Eth0_on_fw" description="Eth0 port on fw"
fcpc add l3interface/fw_eth1 name="Eth1_on_fw" description="DMZ interface" ip="192.168.99.1" tag=zone:dmz
fcpc add l2interface/fw_eth1 name="Eth1_on_fw" mac="00:01:02:03:04:06"
fcpc add l1interface/fw_eth1 name="Eth1_on_fw" description="Eth1 port on fw"
fcpc add l3interface/kibana_eth0 name="Eth0_on_kibana" ip="192.168.1.10" tag=zone:internal
fcpc add l3interface/elastic_eth0 name="Eth0_on_elastic" ip="192.168.1.20" tag=zone:internal
fcpc add l3interface/nginx_eth0 name="eth0_nginx" ip="192.168.99.10" tag=zone:dmz
fcpc add l3interface/nginx_eth1 name="eth1_nginx" ip="192.168.1.5" tag=zone:internal
fcpc link l1interface/fw_eth0 ~is-on host/fw
fcpc link l2interface/fw_eth0 ~is-on host/fw
fcpc link l3interface/fw_eth0 ~is-on host/fw
fcpc link l1interface/fw_eth1 ~is-on host/fw
fcpc link l2interface/fw_eth1 ~is-on host/fw
fcpc link l3interface/fw_eth1 ~is-on host/fw
fcpc link l3interface/kibana_eth0 ~is-on host/kibana
fcpc link l3interface/elastic_eth0 ~is-on host/elastic
fcpc link l3interface/nginx_eth0 ~is-on host/nginx
fcpc link l3interface/nginx_eth1 ~is-on host/nginx
See fcpc search for more info
fcpc --search.object.links=append --search.show.output=dot --search.filter.limit=0 search host+,interface+
Next - Adding Transport layer and ports
Previous - Create VLAN, DC and DMZ
Start - See all steps