|
|
[root@vpnserver firewalld]# firewall-cmd --reload 4 z: E: h% |$ H* I7 I. f
Error: COMMAND_FAILED: Direct: '/usr/sbin/iptables-restore -w -n' failed: iptables-restore v1.4.21: unknown option "-O"
$ i- a" u( p. uError occurred at line: 2
0 h/ r2 M. i8 W6 }Try `iptables-restore -h' or 'iptables-restore --help' for more information.
) e" _( w# z7 {2 P) e$ Z
* v! f- Q( S( y上面报错
: l3 }8 V! A o9 X1 P. \解决办法:" y/ B1 ^/ v: C/ f
! U8 T( k" z& `2 |* y! A$ P3 V
到/etc/firewalld目录下:+ p2 y, M* h" ~( L7 ~% v3 `
8 J3 W5 r0 W) X+ i2 o[root@vpnserver firewalld]# vim direct.xml
- @7 d' t- B: j7 `9 W9 t7 T- |注释掉前两行即可:0 r T* z9 b* p- C0 L) m. |* }
3 z& K2 O- A7 L2 C7 f& i<?xml version="1.0" encoding="utf-8"?>' V! @8 q5 s6 y- I/ f7 y* v
<direct>
: t) n. {6 C5 [3 K <passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -O ens33 -j MASQUERADE</passthrough>/ E- S5 [- u$ S' }. ~( ~
<passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -0 ens33 -j MASQUERADE</passthrough>$ Z5 z6 M6 [9 V* v+ j. A
<passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -o ens33 -j MASQUERADE</passthrough>0 B0 G' l \6 K3 z
</direct>1 e/ G' }2 T. U& Z; a$ ]3 a
, N: k6 f$ n c4 M: p3 a
改后的文件内容:
! ~. p2 x" S) g4 B1 E8 z! F7 q6 H/ b/ q
<?xml version="1.0" encoding="utf-8"?>2 C* l. B( | \: Y
<direct>2 H5 b7 R% B+ m/ d* I
<!--<passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -O ens33 -j MASQUERADE</passthrough> -->/ Q# `/ |; J" m0 c1 d2 Y
<!--<passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -0 ens33 -j MASQUERADE</passthrough> -->3 f, w" N: [5 G9 p# H6 l1 `* y
<passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -o ens33 -j MASQUERADE</passthrough>
- N* d3 \9 {& g/ s</direct>
/ y* H% H2 {) _/ ^; V6 @7 e: y
- N: \" Z$ h! y- t7 K3 V' _- j, W9 z
" \0 H3 m5 o# D3 S+ q1 l. t6 j5 @' l- }: N0 d
[root@vpnserver firewalld]# firewall-cmd --reload 4 m3 n* H- I( L
success
, q: h6 r0 a0 Y4 m不再报错。
$ V1 Y- ?8 M% g& c, g C2 k* G7 i0 U
6 g O, k( J# M9 w" {1 v+ O
问题解决。6 K5 e F% L6 p0 }6 X D/ p
|
|
发表于 2025-5-5 00:22:03