nslookup hosting.timeweb.ru
Server:		192.168.0.2
Address:	192.168.0.2#53

** server can't find hosting.timeweb.ru: NXDOMAIN

options {
	listen-on port 53 {127.0.0.1; 192.168.0.2;};
	listen-on-v6 port 53 { ::1; };
	directory 	"/var/named";
	dump-file 	"/var/named/data/cache_dump.db";
	statistics-file "/var/named/data/named_stats.txt";
	memstatistics-file "/var/named/data/named_mem_stats.txt";
	recursing-file  "/var/named/data/named.recursing";
	secroots-file   "/var/named/data/named.secroots";
	allow-query     { localhost; 192.168.0.0/24; };
# 	--------------------------------
	allow-query-cache { localhost; 192.168.0.0/24; };
	auth-nxdomain no;
	forward first;
#	--------------------------------
	allow-recursion {192.168.0.0/24; localhost;};
	forwarders {8.8.8.8; 8.8.4.4; 77.88.8.8; 77.88.8.1; 213.158.0.6; 212.48.193.36; };

	recursion yes;

	dnssec-enable yes;
	dnssec-validation yes;

	bindkeys-file "/etc/named.iscdlv.key";

	managed-keys-directory "/var/named/dynamic";

	pid-file "/run/named/named.pid";
	session-keyfile "/run/named/session.key";
}
logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
    channel bind_log {
    file "/var/log/named/named.log";
    print-time yes;
    print-category yes;
    print-severity yes;
    };
    channel update_debug {
    file "/var/log/named/update-debug.log";
    severity debug 3;
    print-time yes;
    print-category yes;
    print-severity yes;
    };
    channel security_info {
    file "/var/log/named/security-info.log";
    severity info;
    print-time yes;
    print-category yes;
    print-severity yes;
    };
    category default { bind_log;};
    category xfer-in { bind_log;};
    category xfer-out { bind_log;};
    category update { update_debug;};
    category security { security_info;};
};

zone "." IN {
	type hint;
	file "named.ca";
};
include "/etc/rndc.key";
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";

# nslookup hosting.timeweb.ru
;; Got SERVFAIL reply from 192.168.0.2, trying next server
;; connection timed out; no servers could be reached

# nslookup hosting.timeweb.ru
Server:		192.168.0.2
Address:	192.168.0.2#53

** server can't find hosting.timeweb.ru: NXDOMAIN

#
# Recommended minimum configuration:
#
shutdown_lifetime 0 seconds
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
#acl localnet src 10.0.0.0/8	# RFC1918 possible internal network
#acl localnet src 172.16.0.0/12	# RFC1918 possible internal network
acl localnet src 192.168.0.0/24	# RFC1918 possible internal network
#acl localnet src fc00::/7       # RFC 4193 local private network range
#acl localnet src fe80::/10      # RFC 4291 link-local (directly plugged) machines
acl bl dstdom_regex -i /etc/squid/bl
acl SSL_ports port 443
acl Safe_ports port 80		# http
acl Safe_ports port 21		# ftp
acl Safe_ports port 443		# https
acl Safe_ports port 70		# gopher
acl Safe_ports port 210		# wais
acl Safe_ports port 1025-65535	# unregistered ports
acl Safe_ports port 280		# http-mgmt
acl Safe_ports port 488		# gss-http
acl Safe_ports port 591		# filemaker
acl Safe_ports port 777		# multiling http
acl CONNECT method CONNECT

#
# Recommended minimum Access Permission configuration:
#
# Deny requests to certain unsafe ports
http_access deny !Safe_ports
#

dns_nameservers 127.0.0.1 8.8.8.8
allow_underscore off
dns_retransmit_interval 1 seconds
dns_timeout 2 minutes
dns_defnames off
ignore_unknown_nameservers off
fqdncache_size 8192

#http_access deny bl all 
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports


# Only allow cachemgr access from localhost
http_access allow all
http_access allow localhost manager
http_access deny manager

# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost

#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#

# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
#http_access deny dstdomain vk.com 
http_access allow localnet
http_access allow localhost

# And finally deny all other access to this proxy
#http_access deny all

# Squid normally listens to port 3128
http_port 192.168.0.254:3120 intercept
https_port 3128 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=16MB cert=/etc/squid/ssl_cert/myca.pem
http_port 3129 ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=16MB cert=/etc/squid/ssl_cert/myca.pem

#http_port 192.168.0.254:3128 intercept
#https_port 192.168.0.254:3129 intercept ssl-bump options=ALL:NO_SSLv3:NO_SSLv2 connection-auth=off cert=/etc/squid/ssl_cert/myca.pem key=/etc/squid/ssl_cert/myca.pem
#https_port 192.168.0.254:3129

visible_hostname proxy.agix.local

# Uncomment and adjust the following to add a disk cache directory.
cache_dir ufs /var/spool/squid 200 16 256

# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid

#
# Add any of your own refresh_pattern entries above these.
#
refresh_pattern ^ftp:		1440	20%	10080
refresh_pattern ^gopher:	1440	0%	1440
refresh_pattern -i (/cgi-bin/|\?) 0	0%	0
refresh_pattern .		0	20%	4320


#dns_v4_first on

ddns-update-style interim;
ignore client-updates;
include "/etc/rndc.key";

subnet 192.168.0.0 netmask 255.255.255.0{
  option domain-name-servers 192.168.0.254, 192.168.1.254, 8.8.8.8;
  option domain-name "sm.local";
  option routers 192.168.0.254;
  option netbios-name-servers 192.168.0.9;
  option broadcast-address 192.168.0.255;
  range 192.168.0.10 192.168.0.249;
  default-lease-time 600;
# range 192.168.0.200 192.168.0.253;
  max-lease-time 7200;

options {
        listen-on port 53 { 127.0.0.1; 192.168.0.0/24; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        recursing-file  "/var/named/data/named.recursing";
        secroots-file   "/var/named/data/named.secroots";
        allow-query     { localhost; 192.168.0.0/24;};
        allow-recursion { localhost; 192.168.0.0/24;};
        version "Powered by Mifi";
        forwarders { 8.8.8.8; 8.8.4.4;};
        /* 

0.0.0.0         192.168.0.1     255.255.255.0   UG    0      0        0 ens3
0.0.0.0         192.168.0.1     0.0.0.0         UG    0      0        0 ens3
10.13.5.0       10.13.5.5       255.255.255.0   UG    0      0        0 tun0
10.13.5.5       0.0.0.0         255.255.255.255 UH    0      0        0 tun0
169.254.0.0     0.0.0.0         255.255.0.0     U     1002   0        0 ens3
169.254.0.0     0.0.0.0         255.255.0.0     U     1003   0        0 ens9
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 ens3
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 ens9
192.168.2.0     0.0.0.0         255.255.255.0   U     0      0        0 ens9

sudo dnf install ~/Загрузки/remmina-plugins-vnc-1.4.7-1.fc33.x86_64.rpm 
Последняя проверка окончания срока действия метаданных: 0:52:32 назад, Пт 03 июл 2020 12:52:00.
Ошибка: 
 Проблема: conflicting requests
  - nothing provides libvncclient.so.1()(64bit) needed by remmina-plugins-vnc-1.4.7-1.fc33.x86_64
(попробуйте добавить «--skip-broken» для пропуска удаляемых пакетов или «--nobest», чтобы использовать не только наилучшие варианты пакетов)

ip route
0.0.0.0/24 via 192.168.0.1 dev ens3 proto zebra 
default via 192.168.0.1 dev ens3 
10.13.5.0/24 via 10.13.5.5 dev tun0 
10.13.5.5 dev tun0 proto kernel scope link src 10.13.5.6 
169.254.0.0/16 dev ens3 scope link metric 1002 
169.254.0.0/16 dev ens9 scope link metric 1003 
192.168.0.0/24 dev ens3 scope link 
192.168.1.0/24 dev ens9 proto kernel scope link src 192.168.1.254 
192.168.2.0/24 dev ens9 proto kernel scope link src 192.168.2.254 

cat  /etc/squid/squid.conf
#
# Recommended minimum configuration:
#

# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
acl localnet src 10.0.0.0/8	# RFC1918 possible internal network
acl localnet src 172.16.0.0/12	# RFC1918 possible internal network
acl localnet src 192.168.0.0/16	# RFC1918 possible internal network
acl localnet src fc00::/7       # RFC 4193 local private network range
acl localnet src fe80::/10      # RFC 4291 link-local (directly plugged) machines
acl bl url_regex -i /etc/squid/bl
acl SSL_ports port 443
acl Safe_ports port 80		# http
acl Safe_ports port 21		# ftp
acl Safe_ports port 443		# https
acl Safe_ports port 70		# gopher
acl Safe_ports port 210		# wais
acl Safe_ports port 1025-65535	# unregistered ports
acl Safe_ports port 280		# http-mgmt
acl Safe_ports port 488		# gss-http
acl Safe_ports port 591		# filemaker
acl Safe_ports port 777		# multiling http
acl CONNECT method CONNECT

#
# Recommended minimum Access Permission configuration:
#
# Deny requests to certain unsafe ports
http_access deny !Safe_ports

# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports

# Only allow cachemgr access from localhost
http_access allow localhost manager
http_access deny manager

# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost

#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#

# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
http_access deny bl 
http_access allow localnet
http_access allow localhost

# And finally deny all other access to this proxy
http_access deny all

# Squid normally listens to port 3128
http_port 3128 intercept

# Uncomment and adjust the following to add a disk cache directory.
#cache_dir ufs /var/spool/squid 100 16 256

# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid

#
# Add any of your own refresh_pattern entries above these.
#
refresh_pattern ^ftp:		1440	20%	10080
refresh_pattern ^gopher:	1440	0%	1440
refresh_pattern -i (/cgi-bin/|\?) 0	0%	0
refresh_pattern .		0	20%	4320

p -c a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 52:54:00:2a:a7:83 brd ff:ff:ff:ff:ff:ff
    inet 192.168.0.254/24 brd 192.168.0.255 scope global ens3
       valid_lft forever preferred_lft forever
    inet6 fe80::5054:ff:fe2a:a783/64 scope link 
       valid_lft forever preferred_lft forever
3: ens9: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 52:54:00:83:ab:08 brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.254/24 brd 192.168.1.255 scope global ens9
       valid_lft forever preferred_lft forever
    inet 192.168.2.254/24 brd 192.168.2.255 scope global ens9
       valid_lft forever preferred_lft forever
    inet6 fe80::5054:ff:fe83:ab08/64 scope link 
       valid_lft forever preferred_lft forever
4: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN group default qlen 100
    link/none 
    inet 10.13.5.6 peer 10.10.0.5/32 scope global tun0
       valid_lft forever preferred_lft forever
    inet6 fe80::85d2:8575:3414:a592/64 scope link flags 800 
       valid_lft forever preferred_lft forever

# dhcpd.conf

ddns-update-style interim;
ignore client-updates;
include "/etc/rndc.key";

subnet 192.168.0.0 netmask 255.255.255.0{
  option domain-name-servers 192.168.0.254, 192.168.1.254;
  option domain-name "domain.local";
  option routers 192.168.0.254;
  option netbios-name-servers 192.168.1.1;
  option broadcast-address 192.168.0.255;
  range 192.168.0.200 192.168.0.253;
  default-lease-time 600;
  max-lease-time 7200;

zone domain.local. {
    primary 127.0.0.1;
    key rndc-key;
}
zone 1.168.192.in-addr.arpa. {
    primary 127.0.0.1;
    key rndc-key;
}
zone 0.168.192.in-addr.arpa. {
    primary 127.0.0.1;
    key rndc-key;
}
ddns-updates on;
ddns-domainname "domain.local";
ddns-rev-domainname "in-addr.arpa";}

subnet 192.168.1.0 netmask 255.255.255.0 {
  option domain-name-servers 192.168.1.254, 192.168.0.254;
  option domain-name "domain.local";
  option routers 192.168.1.254;
  option netbios-name-servers 192.168.1.1;
  option broadcast-address 192.168.1.255;
  range 192.168.1.2 192.168.1.253;
  default-lease-time 600;
  max-lease-time 7200;

zone domain.local. {
    primary 127.0.0.1;
    key rndc-key;
}
zone 1.168.192.in-addr.arpa. {
    primary 127.0.0.1;
    key rndc-key;
}
zone 0.168.192.in-addr.arpa. {
    primary 127.0.0.1;
    key rndc-key;
}
ddns-updates on;
ddns-domainname "domain.local";
ddns-rev-domainname "in-addr.arpa";
}

0.0.0.0/24 via 192.168.0.1 dev ens3 proto zebra 
default via 192.168.0.1 dev ens3 
169.254.0.0/16 dev ens3 scope link metric 1002 
169.254.0.0/16 dev ens9 scope link metric 1003 
192.168.0.0/24 dev ens3 proto kernel scope link src 192.168.0.254 
192.168.1.0/24 dev ens9 proto kernel scope link src 192.168.1.254 

cat /etc/samba/smb.conf
[global]


workgroup = SMARKET
security = user
encrypt passwords = yes
smb passwd file = /etc/samba/smbpasswd

interfaces = lo eth0
passdb backend = tdbsam

local master = yes
domain master = yes
preferred master = yes
domain logons = yes
logon path =\\%L\Profiles\%U
admin users = admin Administrator root
wins support = yes
name resolve order = wins lmhosts bcast
add user script = /usr/sbin/useradd -d /dev/null -g machines -s /bin/false -m %u
winbind uid = 10000-20000
winbind gid = 10000-20000
winbind separator = +
winbind cache time = 10
template homedir = /home/%D/%U
template shell = /bin/bash

#guest account = samp
# -------------------------------------
[netlogon]

comment = Network Login Service
path = /var/samba/netlogon
writable = no
guest ok = yes
write list = admin, administrator, root
#--------------------------------------
[homes]
comment=Home Directories
browsable = no
writable = yes


#--------------------------------------
[Profiles]

path = /var/samba/profiles
browseable = no
create mask = 0600
directory mask = 0700

cat /etc/samba/smb.conf

[global]
   workgroup = SMARKET
   encrypt passwords = yes
   security = domain
   idmap config * : range = 10000-20000
   template shell = /bin/bash
   winbind use default domain = true
   winbind offline logon = false

	server string = Samba Server Version %v
	netbios name = snab

# --------------------------- Logging Options -----------------------------

	log file = /var/log/samba/log.%m
	max log size = 50
	passdb backend = tdbsam
	map to guest = bad user
	winbind enum users = yes
	winbind enum groups =yes
	domain master = no
	domain logons = no
	local master = no
	preferred master = no
	wins server = smarket

# --------------------------- Printing Options -----------------------------

	load printers = yes
	cups options = raw

#============================ Share Definitions ==============================

[homes]
	comment = Home Directories
	browseable = no
	writable = yes

[printers]
	comment = All Printers
	path = /var/spool/samba
	browseable = no
	writable = no
	printable = yes

● winbind.service - Samba Winbind Daemon
   Loaded: loaded (/usr/lib/systemd/system/winbind.service; enabled; vendor preset: disabled)
   Active: active (running) since Ср 2019-06-19 09:09:55 MSK; 6min ago
     Docs: man:winbindd(8)
           man:samba(7)
           man:smb.conf(5)
 Main PID: 8922 (winbindd)
   Status: "winbindd: ready to serve connections..."
    Tasks: 5
   CGroup: /system.slice/winbind.service
           ├─8922 /usr/sbin/winbindd --foreground --no-process-group
           ├─8927 /usr/sbin/winbindd --foreground --no-process-group
           ├─8928 /usr/sbin/winbindd --foreground --no-process-group
           ├─8929 /usr/sbin/winbindd --foreground --no-process-group
           └─8960 /usr/sbin/winbindd --foreground --no-process-group

июн 19 09:09:54 sysadmin systemd[1]: Starting Samba Winbind Daemon...
июн 19 09:09:54 sysadmin winbindd[8922]: [2019/06/19 09:09:54.997356,  0] ../source3/winbindd/winbindd_cache.c:3160(initialize_winbindd_cache)
июн 19 09:09:54 sysadmin winbindd[8922]:   initialize_winbindd_cache: clearing cache and re-creating with version number 2
июн 19 09:09:55 sysadmin winbindd[8922]: [2019/06/19 09:09:55.001549,  0] ../lib/util/become_daemon.c:138(daemon_ready)
июн 19 09:09:55 sysadmin winbindd[8922]:   daemon_ready: STATUS=daemon 'winbindd' finished starting up and ready to serve connections
июн 19 09:09:55 sysadmin systemd[1]: Started Samba Winbind Daemon.
июн 19 09:09:55 sysadmin winbindd[8927]: [2019/06/19 09:09:55.102522,  0] ../source3/libsmb/namequery.c:76(saf_store)
июн 19 09:09:55 sysadmin winbindd[8927]:   saf_store: refusing to store 0 length domain or servername!
июн 19 09:10:00 sysadmin winbindd[8929]: [2019/06/19 09:10:00.105242,  0] ../source3/libsmb/namequery.c:76(saf_store)
июн 19 09:10:00 sysadmin winbindd[8929]:   saf_store: refusing to store 0 length domain or servername!

[root@router quagga]# cat zebra.conf
!
! Zebra configuration saved from vty
!   2019/05/23 15:51:57
!
hostname router
password zebra
enable password zebra
log file /var/log/quagga/quagga.log
!
interface ens3
 description LAN
 ip address 192.168.0.254/24
 multicast
 ipv6 nd suppress-ra
!
interface ens9
 description LAN
 ip address 192.168.1.254/24
 multicast
 ipv6 nd suppress-ra
!
interface lo
!
interface sit0
 ipv6 nd suppress-ra
!
ip route 0.0.0.0/24 192.168.0.1
!
ip forwarding
!
!
line vty
!

[root@router quagga]# cat ospfd.conf
!
! Zebra configuration saved from vty
!   2019/05/23 15:51:57
!
hostname router
password zebra
log file /var/log/quagga/quagga.log
log stdout
!
!
!
interface ens3
 description LAN
!
interface ens9
 description LAN
!
interface lo
!
interface sit0
!
router ospf
 ospf router-id 192.168.1.254
 network 192.168.0.0/24 area 0.0.0.0
 network 192.168.1.0/24 area 0.0.0.0
 default-information originate
!
line vty
!

[root@router ~]# ip -c a
ip -c a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 52:54:00:2a:a7:83 brd ff:ff:ff:ff:ff:ff
    inet 192.168.0.254/24 brd 192.168.0.255 scope global ens3
       valid_lft forever preferred_lft forever
    inet6 fe80::5054:ff:fe2a:a783/64 scope link 
       valid_lft forever preferred_lft forever
3: ens9: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 52:54:00:83:ab:08 brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.254/24 brd 192.168.1.255 scope global ens9
       valid_lft forever preferred_lft forever

[root@router quagga]# ip route
0.0.0.0/24 via 192.168.0.1 dev ens3 proto zebra 
default via 192.168.0.1 dev ens3 
169.254.0.0/16 dev ens3 scope link metric 1002 
169.254.0.0/16 dev ens9 scope link metric 1003 
192.168.0.0/24 dev ens3 proto kernel scope link src 192.168.0.254 
192.168.1.0/24 dev ens9 proto kernel scope link src 192.168.1.254 

[root@router network-scripts]# cat ifcfg-ens3
HWADDR=52:54:00:2A:A7:83
TYPE=Ethernet
PROXY_METHOD=none
BROWSER_ONLY=no
BOOTPROTO=none
IPADDR=192.168.0.254
PREFIX=24
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
IPV4_DNS_PRIORITY=100
IPV6INIT=yes
IPV6_AUTOCONF=no
IPV6_DEFROUTE=yes
IPV6_FAILURE_FATAL=no
IPV6_ADDR_GEN_MODE=stable-privacy
IPV6_DNS_PRIORITY=100
NAME=ens3
UUID=7197f4a9-e54e-4c6a-aa00-df772ee26377
DEVICE=ens3
ONBOOT=yes
GATEWAY=192.168.0.1

[root@router network-scripts]# cat ifcfg-ens9
HWADDR=52:54:00:83:AB:08
TYPE=Ethernet
PROXY_METHOD=none
BROWSER_ONLY=no
BOOTPROTO=none
IPADDR=192.168.1.254
PREFIX=24
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
IPV4_DNS_PRIORITY=100
IPV6INIT=no
NAME=ens9
UUID=e88b6945-0aef-4390-9caa-656987fdf833
DEVICE=ens9
ONBOOT=yes

[~@KVM ~]$ ip -c a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: enp3s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master br0 state UP group default qlen 1000
    link/ether d8:50:e6:49:6b:84 brd ff:ff:ff:ff:ff:ff
3: enp5s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master br1 state UNKNOWN group default qlen 1000
    link/ether e8:de:27:03:44:1a brd ff:ff:ff:ff:ff:ff
4: br1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether e8:de:27:03:44:1a brd ff:ff:ff:ff:ff:ff
    inet6 fe80::f06f:1aff:fe28:78a3/64 scope link 
       valid_lft forever preferred_lft forever
5: br0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether d8:50:e6:49:6b:84 brd ff:ff:ff:ff:ff:ff
    inet 192.168.0.250/24 brd 192.168.0.255 scope global noprefixroute br0
       valid_lft forever preferred_lft forever
    inet6 fe80::da50:e6ff:fe49:6b84/64 scope link 
       valid_lft forever preferred_lft forever

systemctl -l|grep smb

[global]
interfaces = enp4s0
workgroup = WORKGROUP
server string = Samba Server %v
netbios name = LGKH
security = user
server min protocol = SMB2
map to guest = bad user
dns proxy = no
local master = no
os level = 0
guest ok = yes
;wins support = yes
;wins server = 192.168.0.160
#===Share Definitions

[Anonymous]

path = /samba/anonymous
browsable =yes
writable = yes
guest ok = yes
read only = no

Load smb config files from /etc/samba/smb.conf
Processing section "[Anonymous]"
Loaded services file OK.
Server role: ROLE_STANDALONE

Press enter to see a dump of your service definitions

# Global parameters
[global]
	dns proxy = No
	interfaces = enp4s0
	local master = No
	map to guest = Bad User
	netbios name = LGKH
	os level = 0
	security = USER
	server min protocol = SMB2
	server string = Samba Server %v
	idmap config * : backend = tdb
	guest ok = Yes


[Anonymous]
	path = /samba/anonymous
	read only = No