|
|
1、Centos stream 9 网络介结: v y2 p* ]. L
9 I" D- t4 G) D$ i: q; j f% ]4 Z( t
Centos以前版本,NetworkManage以ifcfg格式存储网络配置文件在/etc/sysconfig/networkscripts/目录中。但是,Centos steam 9现已弃用ifcfg格式,默认情况下,NetworkManage不再创建此格式的新配置文件。从Centos steam 9开始采用密钥文件格式(基于INI文件),NetworkManager网卡配置在/etc/NetworkManager/system-connections目录中。这种格式基于INI文件,可以很容易地解析和生成。NetworkManager密钥文件中的每个部分都对应于一个nm-settings(5) 和nm-settings-keyfile(5)。如果您仍然使用ifcfg格式的网络配置文件,请考虑迁移,将它们转换为keyfile格式。要一次移植所有配置文件,请输入:nmcli connection migrate,此命令将所有配置文件从ifcfg格式迁移到keyfile格式化并存储在/etc/NetworkManager/system connections/中。或者,要仅移植特定的配置文件,请输入: nmcli connection migrate <profile_name|UUID|D-Bus_path>有关详细信息,请参阅:
1 m# z1 u, `3 o% Y; Z( P9 K \, J1 e. K+ w9 \2 }: R) B }9 i
* nm-settings-keyfile(5); O# O8 S0 H" P' b' `' X
. D' S3 O; U& |8 ^ G0 q* nmcli(1)% x' L. p" }/ h
& p2 S0 h& W, }& ^; [+ J f2、通过网络配置文件设置IP' J+ i' c4 @4 D9 E
3 n! O1 h% E) T
[root@10 system-connections]# pwd
# ?1 S2 h/ \% R0 u' T/etc/NetworkManager/system-connections2 W8 \1 r' q9 b/ B, }# @
! V' C1 s- [) x- \6 x* \
[root@10 system-connections]# ls4 D# N N) x, Q8 ^7 B( L0 M# v& e
ens160.nmconnection ens192.nmconnection ens224.nmconnection ens256.nmconnection
% N+ k0 q7 Q, _
/ n, o) O+ s* Y
, C* E0 F. b( u. v, r5 u[root@10 system-connections]# vim ens160.nmconnection
! ~! z, E( T( I. J+ `
: H& `( z( Y- \( v2 ^4 ?5 ]# X5 p7 D2 w4 G, D2 {
[connection], c' M: z# J4 x, I& V
id=ens160$ l2 m1 Z* E4 U7 S! a6 o# W
uuid=d8c7b37e-5eef-3bea-8893-a05f88ade99f ###正常情况可以不管,如果是虚机,建议删除或者注释掉。: L, o- L9 V1 y8 N0 ?
type=ethernet
" o1 g0 I8 W* y+ y2 C& s% y9 iautoconnect-priority=-999+ C0 [# X/ c& I& x' n( j9 f
interface-name=ens160! p! k m1 R: J- d' c) x
timestamp=17394492602 x2 c0 M% `* u. \
1 ^/ D# q% e* W4 V% G[ethernet]
. W, h5 T7 A4 t* Y ?. F6 P9 ^- I4 \+ p+ i& y) O
[ipv4]0 U- _; c0 ^- h9 p, \
#method=auto0 T' ?1 O, {# q& h# g% p* ?$ g4 M
method=manual
; X& C6 b/ T+ y6 {address1=192.168.8.195/24,192.168.8.1
6 H- [3 H2 L) L2 {' odns=202.106.0.20;114.114.114.114;
6 t; B4 m! B/ k$ f- G; v V1 e3 K1 z, Wdns-search=7 @7 M! s# c7 R7 `& {
#route1=0.0.0.0/0,192.168.8.1,0 ##configure router gateway 配置路由网关4 A9 d( C6 t% j# u4 ~, `
% {2 L' T; u; c& W* U3 d[ipv6]
% q' s, Z, N& g6 a& l; j( raddr-gen-mode=eui64
6 b3 P5 f( }8 C8 y ?9 e0 Imethod=auto
0 Q+ w$ i3 E7 p5 M5 M {2 edns-search=
c" d4 h% R! n8 k$ E; r
* z/ a5 ~+ j& z, N5 {( c9 ?/ `[proxy]
7 U- I1 @! F% e& ? x; Q; K" y3 @' S9 ` M7 P
6 {6 b; P1 h1 t: H% t! d
[root@bogon ~]# nmcli c reload
- [5 O, m. E1 j2 C[root@bogon ~]# $ d6 b# P! F8 L; f4 o7 W
[root@bogon ~]#
^5 J" \8 G7 s4 @! ?% g+ U) g[root@bogon ~]# ! ]+ K y9 W" F. H) r6 Z0 L
[root@bogon ~]# nmcli c up ens160 ! b+ _" d' F( }; Z9 q6 o
Connection successfully activated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/7)+ \% U T9 [0 [0 X6 f/ P( u
[root@bogon ~]#
6 @& ~; f8 T/ K. }! U) X
* T g' ~2 c2 Y$ |: S0 x* n
2 ^: t* U. h! L' J A# w: z3 T0 M& z添加反向路由:
@+ i2 L& `! h2 P; P) M7 O; n5 C( M4 K" R; c2 q- ^5 b
echo "net.ipv4.conf.ens160.rp_filter = 0! u+ n! N1 |3 p3 E" {: R- y5 I6 y
net.ipv4.conf.ens224.rp_filter = 0! D4 A9 o. u, d, ~& X
net.ipv4.conf.ens192.rp_filter = 0
) s9 | i: _# a: }6 p' ~net.ipv4.conf.ens256.rp_filter = 0">>/etc/sysctl.conf q+ B' q* _/ Y2 ~
& |( Z! F0 O/ r
执行2 u7 p- _3 I5 X1 I1 Q. U- e1 r* e
sysctl -p* z( n+ {. k- B# N* c
# X! _5 J. C9 B1 b% f9 ]. y上面的步骤为解决因路由问题导致网络不通的问题,解决步骤如下:
# A8 T7 t8 @$ E% t- _- h[root@bogon ~]# ping -I ens160 www.baidu.com
# F" r7 Y- Z2 O% z% O1 y2 rPING www.a.shifen.com (110.242.69.21) from 192.168.8.195 ens160: 56(84) bytes of data.
x; P" Z, y) K7 S+ R2 G( I) V/ B8 `4 m5 [) c5 X
^C6 N# G! O! Z: J
--- www.a.shifen.com ping statistics ---7 w, C! k6 b6 h$ k/ a4 A
66 packets transmitted, 0 received, 100% packet loss, time 66598ms
/ O) N4 K+ K) [/ P9 |( `4 s$ m- y; I* [* h' h/ e1 X% B1 {
[root@bogon ~]# echo "net.ipv4.conf.ens160.rp_filter = 0
! g, A) L b4 S# b* r* P( X1 r9 j% L) }0 V7 I; Z2 L
net.ipv4.conf.ens224.rp_filter = 0">>/etc/sysctl.conf
( c6 e! Z9 J. a5 i: ~1 R, w, j( d[root@bogon ~]# echo "net.ipv4.conf.ens160.rp_filter = 08 V- @, s: j: h+ G6 b1 R, u( z
% V- @0 Y& K2 B! K% b
net.ipv4.conf.ens224.rp_filter = 0">>/etc/sysctl.conf^C
- a: k$ U* t. C, V% {- E+ H[root@bogon ~]# vim /etc/sysctl.conf
( T- M& d o; F9 f; E' U5 K. I2 ~8 g[root@bogon ~]# echo "net.ipv4.conf.ens160.rp_filter = 0/ I' w) U! V& n1 d% h% T, T2 `
net.ipv4.conf.ens224.rp_filter = 04 D; F$ c8 |, ~
net.ipv4.conf.ens192.rp_filter = 0
$ X/ n( m- Q# W/ {, Qnet.ipv4.conf.ens256.rp_filter = 0">>/etc/sysctl.conf7 K# ]2 G: c# Q [) j1 ?* ^' ?
[root@bogon ~]# sysctl -p + j, b4 ]+ {0 L7 B" i. U3 }
net.ipv4.conf.ens160.rp_filter = 04 l P& p' g( o. G! b2 F2 ?, ]6 r
net.ipv4.conf.ens224.rp_filter = 0& `; z2 e0 T1 d6 R* U& N
net.ipv4.conf.ens192.rp_filter = 0
% `- U) e: L( N* Q, [net.ipv4.conf.ens256.rp_filter = 0% u; H G/ L6 b: A v! [- e
[root@bogon ~]# ping -I ens160 www.baidu.com
; a! H ~# H! w/ Q2 NPING www.a.shifen.com (110.242.70.57) from 192.168.8.195 ens160: 56(84) bytes of data.
' I. n( A, k0 h! J" J7 p3 W; ~4 w- Z, T64 bytes from 110.242.70.57 (110.242.70.57): icmp_seq=1 ttl=53 time=11.1 ms
3 b8 S" z9 v, I6 e% o64 bytes from 110.242.70.57 (110.242.70.57): icmp_seq=2 ttl=53 time=11.1 ms6 Z4 o: {4 ^( }9 w3 s, N
64 bytes from 110.242.70.57 (110.242.70.57): icmp_seq=3 ttl=53 time=10.7 ms
9 r! i3 R. f V$ e6 F1 B9 Z( q^C' C L5 Q6 ]6 v( O* T/ ]7 B* a
--- www.a.shifen.com ping statistics ---# ^) O0 e. v. r1 {" R9 E( b
3 packets transmitted, 3 received, 0% packet loss, time 2004ms
# _3 X u' g* L, n3 O# i( X% [rtt min/avg/max/mdev = 10.737/10.973/11.109/0.167 ms+ G1 v) ]9 z* V6 O# b
2 y4 `1 [9 F* M+ q6 }# [% w4 R( j7 f+ L T
5 C1 X, \% a, q
' E( c* y4 ^8 L" E- U5 B
$ ?8 n+ r4 h4 D' y7 d[root@bogon ~]# nmcli connection reload8 x0 r) D% I' P# d) t' q
. ~/ t; V& W7 m[root@bogon ~]# nmcli connection down ens36 ~+ B q3 u; [( F) Q5 z/ L
; t6 m, C A4 O( [5 M+ J
[root@bogon ~]# nmcli connection up ens3
- q/ P! s5 ]/ q8 ^ C- G
; J9 S- k" B* I" ]+ j
3 Z1 `0 ~9 a+ ?0 U& Z4 o+ S+ ~1 E7 u- e% k: F% W
|
|
发表于 2025-2-13 13:00:01