lionel/202601docs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
202601docs/site/infra/network/index.html
Lionel 0b8061460c Auto-sync Tue 13 Jan 16:05:02 CET 2026
2026-01-13 16:05:02 +01:00

1684 lines
30 KiB
HTML
Raw Permalink Blame History

<!doctype html>
<html lang="en" class="no-js">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width,initial-scale=1">
<meta name="description" content="Infrastructure documentation for Talloires homelab">
<meta name="author" content="Lionel">
<link rel="prev" href="../overview/">
<link rel="next" href="../issues-2025-12-31/">
<link rel="icon" href="../../assets/images/favicon.png">
<meta name="generator" content="mkdocs-1.6.1, mkdocs-material-9.7.1">
<title>Réseau & Accès - Talloires Documentation</title>
<link rel="stylesheet" href="../../assets/stylesheets/main.484c7ddc.min.css">
<link rel="stylesheet" href="../../assets/stylesheets/palette.ab4e12ef.min.css">
<link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,700,700i%7CRoboto+Mono:400,400i,700,700i&display=fallback">
<style>:root{--md-text-font:"Roboto";--md-code-font:"Roboto Mono"}</style>
<script>__md_scope=new URL("../..",location),__md_hash=e=>[...e].reduce(((e,_)=>(e<<5)-e+_.charCodeAt(0)),0),__md_get=(e,_=localStorage,t=__md_scope)=>JSON.parse(_.getItem(t.pathname+"."+e)),__md_set=(e,_,t=localStorage,a=__md_scope)=>{try{t.setItem(a.pathname+"."+e,JSON.stringify(_))}catch(e){}}</script>
</head>
<body dir="ltr" data-md-color-scheme="slate" data-md-color-primary="blue" data-md-color-accent="cyan">
<input class="md-toggle" data-md-toggle="drawer" type="checkbox" id="__drawer" autocomplete="off">
<input class="md-toggle" data-md-toggle="search" type="checkbox" id="__search" autocomplete="off">
<label class="md-overlay" for="__drawer"></label>
<div data-md-component="skip">
<a href="#reseau-acces" class="md-skip">
Skip to content
</a>
</div>
<div data-md-component="announce">
</div>
<header class="md-header md-header--shadow" data-md-component="header">
<nav class="md-header__inner md-grid" aria-label="Header">
<a href="../.." title="Talloires Documentation" class="md-header__button md-logo" aria-label="Talloires Documentation" data-md-component="logo">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M12 8a3 3 0 0 0 3-3 3 3 0 0 0-3-3 3 3 0 0 0-3 3 3 3 0 0 0 3 3m0 3.54C9.64 9.35 6.5 8 3 8v11c3.5 0 6.64 1.35 9 3.54 2.36-2.19 5.5-3.54 9-3.54V8c-3.5 0-6.64 1.35-9 3.54"/></svg>
</a>
<label class="md-header__button md-icon" for="__drawer">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M3 6h18v2H3zm0 5h18v2H3zm0 5h18v2H3z"/></svg>
</label>
<div class="md-header__title" data-md-component="header-title">
<div class="md-header__ellipsis">
<div class="md-header__topic">
<span class="md-ellipsis">
Talloires Documentation
</span>
</div>
<div class="md-header__topic" data-md-component="header-topic">
<span class="md-ellipsis">
Réseau & Accès
</span>
</div>
</div>
</div>
<label class="md-header__button md-icon" for="__search">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M9.5 3A6.5 6.5 0 0 1 16 9.5c0 1.61-.59 3.09-1.56 4.23l.27.27h.79l5 5-1.5 1.5-5-5v-.79l-.27-.27A6.52 6.52 0 0 1 9.5 16 6.5 6.5 0 0 1 3 9.5 6.5 6.5 0 0 1 9.5 3m0 2C7 5 5 7 5 9.5S7 14 9.5 14 14 12 14 9.5 12 5 9.5 5"/></svg>
</label>
<div class="md-search" data-md-component="search" role="dialog">
<label class="md-search__overlay" for="__search"></label>
<div class="md-search__inner" role="search">
<form class="md-search__form" name="search">
<input type="text" class="md-search__input" name="query" aria-label="Search" placeholder="Search" autocapitalize="off" autocorrect="off" autocomplete="off" spellcheck="false" data-md-component="search-query" required>
<label class="md-search__icon md-icon" for="__search">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M9.5 3A6.5 6.5 0 0 1 16 9.5c0 1.61-.59 3.09-1.56 4.23l.27.27h.79l5 5-1.5 1.5-5-5v-.79l-.27-.27A6.52 6.52 0 0 1 9.5 16 6.5 6.5 0 0 1 3 9.5 6.5 6.5 0 0 1 9.5 3m0 2C7 5 5 7 5 9.5S7 14 9.5 14 14 12 14 9.5 12 5 9.5 5"/></svg>
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M20 11v2H8l5.5 5.5-1.42 1.42L4.16 12l7.92-7.92L13.5 5.5 8 11z"/></svg>
</label>
<nav class="md-search__options" aria-label="Search">
<button type="reset" class="md-search__icon md-icon" title="Clear" aria-label="Clear" tabindex="-1">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M19 6.41 17.59 5 12 10.59 6.41 5 5 6.41 10.59 12 5 17.59 6.41 19 12 13.41 17.59 19 19 17.59 13.41 12z"/></svg>
</button>
</nav>
</form>
<div class="md-search__output">
<div class="md-search__scrollwrap" tabindex="0" data-md-scrollfix>
<div class="md-search-result" data-md-component="search-result">
<div class="md-search-result__meta">
Initializing search
</div>
<ol class="md-search-result__list" role="presentation"></ol>
</div>
</div>
</div>
</div>
</div>
</nav>
</header>
<div class="md-container" data-md-component="container">
<main class="md-main" data-md-component="main">
<div class="md-main__inner md-grid">
<div class="md-sidebar md-sidebar--primary" data-md-component="sidebar" data-md-type="navigation" >
<div class="md-sidebar__scrollwrap">
<div class="md-sidebar__inner">
<nav class="md-nav md-nav--primary md-nav--integrated" aria-label="Navigation" data-md-level="0">
<label class="md-nav__title" for="__drawer">
<a href="../.." title="Talloires Documentation" class="md-nav__button md-logo" aria-label="Talloires Documentation" data-md-component="logo">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M12 8a3 3 0 0 0 3-3 3 3 0 0 0-3-3 3 3 0 0 0-3 3 3 3 0 0 0 3 3m0 3.54C9.64 9.35 6.5 8 3 8v11c3.5 0 6.64 1.35 9 3.54 2.36-2.19 5.5-3.54 9-3.54V8c-3.5 0-6.64 1.35-9 3.54"/></svg>
</a>
Talloires Documentation
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../.." class="md-nav__link">
<span class="md-ellipsis">
Home
</span>
</a>
</li>
<li class="md-nav__item md-nav__item--active md-nav__item--section md-nav__item--nested">
<input class="md-nav__toggle md-toggle " type="checkbox" id="__nav_2" checked>
<label class="md-nav__link" for="__nav_2" id="__nav_2_label" tabindex="">
<span class="md-ellipsis">
Infrastructure
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="1" aria-labelledby="__nav_2_label" aria-expanded="true">
<label class="md-nav__title" for="__nav_2">
<span class="md-nav__icon md-icon"></span>
Infrastructure
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../overview/" class="md-nav__link">
<span class="md-ellipsis">
Overview
</span>
</a>
</li>
<li class="md-nav__item md-nav__item--active">
<input class="md-nav__toggle md-toggle" type="checkbox" id="__toc">
<label class="md-nav__link md-nav__link--active" for="__toc">
<span class="md-ellipsis">
Réseau & Accès
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<a href="./" class="md-nav__link md-nav__link--active">
<span class="md-ellipsis">
Réseau & Accès
</span>
</a>
<nav class="md-nav md-nav--secondary" aria-label="Table of contents">
<label class="md-nav__title" for="__toc">
<span class="md-nav__icon md-icon"></span>
Table of contents
</label>
<ul class="md-nav__list" data-md-component="toc" data-md-scrollfix>
<li class="md-nav__item">
<a href="#tailscale-vpn" class="md-nav__link">
<span class="md-ellipsis">
Tailscale VPN
</span>
</a>
<nav class="md-nav" aria-label="Tailscale VPN">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#configuration" class="md-nav__link">
<span class="md-ellipsis">
Configuration
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#dns-magicdns" class="md-nav__link">
<span class="md-ellipsis">
DNS MagicDNS
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#acces-aux-services" class="md-nav__link">
<span class="md-ellipsis">
Accès aux services
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#acces-lan" class="md-nav__link">
<span class="md-ellipsis">
Accès LAN
</span>
</a>
<nav class="md-nav" aria-label="Accès LAN">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#prerequis" class="md-nav__link">
<span class="md-ellipsis">
Prérequis
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#installation-du-certificat" class="md-nav__link">
<span class="md-ellipsis">
Installation du certificat
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#configuration-dns" class="md-nav__link">
<span class="md-ellipsis">
Configuration DNS
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#ports-exposes" class="md-nav__link">
<span class="md-ellipsis">
Ports exposés
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#securite" class="md-nav__link">
<span class="md-ellipsis">
Sécurité
</span>
</a>
<nav class="md-nav" aria-label="Sécurité">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#authelia-sso" class="md-nav__link">
<span class="md-ellipsis">
Authelia SSO
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#protonvpn-wireguard" class="md-nav__link">
<span class="md-ellipsis">
ProtonVPN (WireGuard)
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#dns-redondant" class="md-nav__link">
<span class="md-ellipsis">
DNS Redondant
</span>
</a>
<nav class="md-nav" aria-label="DNS Redondant">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#architecture" class="md-nav__link">
<span class="md-ellipsis">
Architecture
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#configuration_1" class="md-nav__link">
<span class="md-ellipsis">
Configuration
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#test" class="md-nav__link">
<span class="md-ellipsis">
Test
</span>
</a>
</li>
</ul>
</nav>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="../issues-2025-12-31/" class="md-nav__link">
<span class="md-ellipsis">
Problèmes 2025-12-31
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../recommendations/" class="md-nav__link">
<span class="md-ellipsis">
Recommandations
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../ssd-migration/" class="md-nav__link">
<span class="md-ellipsis">
Migration SSD
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item md-nav__item--section md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_3" >
<label class="md-nav__link" for="__nav_3" id="__nav_3_label" tabindex="">
<span class="md-ellipsis">
Services
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="1" aria-labelledby="__nav_3_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_3">
<span class="md-nav__icon md-icon"></span>
Services
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../services/overview/" class="md-nav__link">
<span class="md-ellipsis">
Overview
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/transmission/" class="md-nav__link">
<span class="md-ellipsis">
Transmission
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/servarr/" class="md-nav__link">
<span class="md-ellipsis">
Servarr
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/helmarr/" class="md-nav__link">
<span class="md-ellipsis">
Helmarr
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/homarr/" class="md-nav__link">
<span class="md-ellipsis">
Homarr
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item md-nav__item--section md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_4" >
<label class="md-nav__link" for="__nav_4" id="__nav_4_label" tabindex="">
<span class="md-ellipsis">
Changelog
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="1" aria-labelledby="__nav_4_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_4">
<span class="md-nav__icon md-icon"></span>
Changelog
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../changelog/2026-01-12/" class="md-nav__link">
<span class="md-ellipsis">
2026-01-12
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../changelog/2026-01-03/" class="md-nav__link">
<span class="md-ellipsis">
2026-01-03
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../changelog/2025-12-31/" class="md-nav__link">
<span class="md-ellipsis">
2025-12-31
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item md-nav__item--section md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_5" >
<label class="md-nav__link" for="__nav_5" id="__nav_5_label" tabindex="">
<span class="md-ellipsis">
Vault
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="1" aria-labelledby="__nav_5_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_5">
<span class="md-nav__icon md-icon"></span>
Vault
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../vault/" class="md-nav__link">
<span class="md-ellipsis">
README
</span>
</a>
</li>
<li class="md-nav__item md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_5_2" >
<label class="md-nav__link" for="__nav_5_2" id="__nav_5_2_label" tabindex="0">
<span class="md-ellipsis">
Config
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="2" aria-labelledby="__nav_5_2_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_5_2">
<span class="md-nav__icon md-icon"></span>
Config
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../vault/config/caddy/" class="md-nav__link">
<span class="md-ellipsis">
Caddy
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../vault/config/docker-stacks/" class="md-nav__link">
<span class="md-ellipsis">
Docker Stacks
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../vault/config/network/" class="md-nav__link">
<span class="md-ellipsis">
Network
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../vault/config/troubleshooting/" class="md-nav__link">
<span class="md-ellipsis">
Troubleshooting
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_5_3" >
<label class="md-nav__link" for="__nav_5_3" id="__nav_5_3_label" tabindex="0">
<span class="md-ellipsis">
Reference
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="2" aria-labelledby="__nav_5_3_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_5_3">
<span class="md-nav__icon md-icon"></span>
Reference
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../vault/reference/commands/" class="md-nav__link">
<span class="md-ellipsis">
Commands
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../vault/reference/ports/" class="md-nav__link">
<span class="md-ellipsis">
Ports
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../vault/reference/scripts/" class="md-nav__link">
<span class="md-ellipsis">
Scripts
</span>
</a>
</li>
</ul>
</nav>
</li>
</ul>
</nav>
</li>
</ul>
</nav>
</div>
</div>
</div>
<div class="md-content" data-md-component="content">
<article class="md-content__inner md-typeset">
<h1 id="reseau-acces">Réseau &amp; Accès</h1>
<h2 id="tailscale-vpn">Tailscale VPN</h2>
<p>Tailscale remplace ZeroTier depuis décembre 2025 pour le mesh VPN.</p>
<h3 id="configuration">Configuration</h3>
<table>
<thead>
<tr>
<th>Machine</th>
<th>IP Tailscale</th>
<th>Hostname</th>
</tr>
</thead>
<tbody>
<tr>
<td>Talloires (RPi5)</td>
<td>10.171.171.1</td>
<td>talloires.tailfd281f.ts.net</td>
</tr>
<tr>
<td>Annecy (Synology)</td>
<td>10.171.171.50</td>
<td>annecy.tailfd281f.ts.net</td>
</tr>
<tr>
<td>Mac Lionel</td>
<td>100.x.x.x</td>
<td>(dynamique)</td>
</tr>
</tbody>
</table>
<h3 id="dns-magicdns">DNS MagicDNS</h3>
<p>Tailscale fournit la résolution DNS automatique :</p>
<div class="highlight"><pre><span></span><code>*.talloires.tailfd281f.ts.net → Services Talloires
</code></pre></div>
<h3 id="acces-aux-services">Accès aux services</h3>
<p>Tous les services sont accessibles via deux domaines :</p>
<table>
<thead>
<tr>
<th>Type</th>
<th>Domaine</th>
<th>Exemple</th>
</tr>
</thead>
<tbody>
<tr>
<td>LAN</td>
<td><code>*.talloires.local</code></td>
<td><code>jellyfin.talloires.local</code></td>
</tr>
<tr>
<td>Tailscale</td>
<td><code>*.talloires.tailfd281f.ts.net</code></td>
<td><code>jellyfin.talloires.tailfd281f.ts.net</code></td>
</tr>
</tbody>
</table>
<h2 id="acces-lan">Accès LAN</h2>
<h3 id="prerequis">Prérequis</h3>
<ol>
<li><strong>Certificat CA Caddy</strong> installé sur le client</li>
<li><strong>DNS local</strong> configuré (dnsmasq ou /etc/hosts)</li>
</ol>
<h3 id="installation-du-certificat">Installation du certificat</h3>
<div class="highlight"><pre><span></span><code><span class="c1"># Sur Talloires</span>
docker<span class="w"> </span><span class="nb">exec</span><span class="w"> </span>caddy<span class="w"> </span>cat<span class="w"> </span>/data/caddy/pki/authorities/local/root.crt<span class="w"> </span>&gt;<span class="w"> </span>caddy-root.crt
<span class="c1"># Sur Mac</span>
sudo<span class="w"> </span>security<span class="w"> </span>add-trusted-cert<span class="w"> </span>-d<span class="w"> </span>-r<span class="w"> </span>trustRoot<span class="w"> </span><span class="se">\</span>
<span class="w"> </span>-k<span class="w"> </span>/Library/Keychains/System.keychain<span class="w"> </span>caddy-root.crt
</code></pre></div>
<h3 id="configuration-dns">Configuration DNS</h3>
<p>Option 1 : <strong>dnsmasq</strong> sur le routeur
<div class="highlight"><pre><span></span><code>address=/talloires.local/10.171.171.7
</code></pre></div></p>
<p>Option 2 : <strong>/etc/hosts</strong> sur chaque client
<div class="highlight"><pre><span></span><code>10.171.171.7 jellyfin.talloires.local
10.171.171.7 git.talloires.local
10.171.171.7 homeassistant.talloires.local
# etc.
</code></pre></div></p>
<h2 id="ports-exposes">Ports exposés</h2>
<table>
<thead>
<tr>
<th>Port</th>
<th>Service</th>
<th>Protocole</th>
</tr>
</thead>
<tbody>
<tr>
<td>443</td>
<td>Caddy (HTTPS)</td>
<td>TCP</td>
</tr>
<tr>
<td>80</td>
<td>Caddy (HTTP → HTTPS)</td>
<td>TCP</td>
</tr>
<tr>
<td>2222</td>
<td>Gitea SSH</td>
<td>TCP</td>
</tr>
<tr>
<td>8123</td>
<td>Home Assistant (interne)</td>
<td>TCP</td>
</tr>
</tbody>
</table>
<h2 id="securite">Sécurité</h2>
<h3 id="authelia-sso">Authelia SSO</h3>
<p>La plupart des services sont protégés par Authelia :</p>
<div class="highlight"><pre><span></span><code>Client → Caddy → Authelia → Service
</code></pre></div>
<p>Services protégés par Authelia :
- Transmission
- Netdata
- Dozzle
- Cockpit</p>
<p>Services avec auth propre (bypass Authelia) :
- Jellyfin (auth interne)
- Gitea (OIDC via Authelia)
- Home Assistant (auth interne)
- Arcane (désactivé temporairement)</p>
<h3 id="protonvpn-wireguard">ProtonVPN (WireGuard)</h3>
<p>Transmission utilise un tunnel WireGuard vers ProtonVPN :</p>
<div class="highlight"><pre><span></span><code>Transmission → WireGuard container → ProtonVPN → Internet
Kill switch intégré
(network_mode: service:wireguard)
</code></pre></div>
<p>Vérification IP :
<div class="highlight"><pre><span></span><code><span class="c1"># IP Transmission (doit être ProtonVPN)</span>
docker<span class="w"> </span><span class="nb">exec</span><span class="w"> </span>transmission<span class="w"> </span>curl<span class="w"> </span>-s<span class="w"> </span>ifconfig.me
<span class="c1"># IP locale</span>
curl<span class="w"> </span>-s<span class="w"> </span>ifconfig.me
</code></pre></div></p>
<h2 id="dns-redondant">DNS Redondant</h2>
<h3 id="architecture">Architecture</h3>
<table>
<thead>
<tr>
<th>Serveur</th>
<th>IP</th>
<th>Rôle</th>
<th>Upstream</th>
</tr>
</thead>
<tbody>
<tr>
<td>Talloires</td>
<td>100.116.198.105</td>
<td>Primaire</td>
<td>AdGuard DoH</td>
</tr>
<tr>
<td>Annecy</td>
<td>10.171.171.50</td>
<td>Secondaire</td>
<td>Talloires → 1.1.1.1</td>
</tr>
</tbody>
</table>
<h3 id="configuration_1">Configuration</h3>
<p><strong>Talloires</strong> (<code>/etc/dnsmasq.d/tailscale.conf</code>):
- Écoute: 127.0.0.1, 100.116.198.105
- Forward: cloudflared (AdGuard DoH)</p>
<p><strong>Annecy</strong> (<code>/volume1/docker/dnsmasq/</code>):
- Container: <code>andyshinn/dnsmasq</code>
- Mode: <code>network_mode: host</code> + <code>bind-interfaces</code>
- Écoute: 10.171.171.50, 10.171.171.51
- Forward: Talloires → 1.1.1.1 → 8.8.8.8</p>
<h3 id="test">Test</h3>
<div class="highlight"><pre><span></span><code>dig<span class="w"> </span>@10.171.171.50<span class="w"> </span>talloires.local<span class="w"> </span>+short<span class="w"> </span><span class="c1"># Annecy</span>
dig<span class="w"> </span>@100.116.198.105<span class="w"> </span>go<span class="w"> </span>+short<span class="w"> </span><span class="c1"># Talloires</span>
</code></pre></div>
</article>
</div>
<script>var target=document.getElementById(location.hash.slice(1));target&&target.name&&(target.checked=target.name.startsWith("__tabbed_"))</script>
</div>
</main>
<footer class="md-footer">
<div class="md-footer-meta md-typeset">
<div class="md-footer-meta__inner md-grid">
<div class="md-copyright">
Made with
<a href="https://squidfunk.github.io/mkdocs-material/" target="_blank" rel="noopener">
Material for MkDocs
</a>
</div>
</div>
</div>
</footer>
</div>
<div class="md-dialog" data-md-component="dialog">
<div class="md-dialog__inner md-typeset"></div>
</div>
<script id="__config" type="application/json">{"annotate": null, "base": "../..", "features": ["navigation.instant", "navigation.sections", "navigation.expand", "toc.integrate"], "search": "../../assets/javascripts/workers/search.2c215733.min.js", "tags": null, "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}, "version": null}</script>
<script src="../../assets/javascripts/bundle.79ae519e.min.js"></script>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink