centos stream 9 配置网卡文件

admin

1、Centos stream 9 网络介结

Centos以前版本，NetworkManage以ifcfg格式存储网络配置文件在/etc/sysconfig/networkscripts/目录中。但是，Centos steam 9现已弃用ifcfg格式，默认情况下，NetworkManage不再创建此格式的新配置文件。从Centos steam 9开始采用密钥文件格式（基于INI文件），NetworkManager网卡配置在/etc/NetworkManager/system-connections目录中。这种格式基于INI文件，可以很容易地解析和生成。NetworkManager密钥文件中的每个部分都对应于一个nm-settings(5) 和nm-settings-keyfile(5)。如果您仍然使用ifcfg格式的网络配置文件，请考虑迁移，将它们转换为keyfile格式。要一次移植所有配置文件，请输入：nmcli connection migrate，此命令将所有配置文件从ifcfg格式迁移到keyfile格式化并存储在/etc/NetworkManager/system connections/中。或者，要仅移植特定的配置文件，请输入： nmcli connection migrate <profile_name|UUID|D-Bus_path>有关详细信息，请参阅：
. X3 o* n  J  I$ ]+ H" ?* d; ^
* nm-settings-keyfile(5)

* nmcli(1)

2、通过网络配置文件设置IP

# }* S$ K) p* I6 _0 I7 v& z9 O[root@10 system-connections]# pwd
6 g. F5 d0 W' D- R, U# }) f2 ?0 T5 J/etc/NetworkManager/system-connections
- ]$ H- o7 T/ X$ d5 w
  ~" U+ p4 A( D$ t[root@10 system-connections]# ls
ens160.nmconnection  ens192.nmconnection  ens224.nmconnection  ens256.nmconnection
/ I) R8 `7 a) ~6 e
% \: B9 ]8 Q) {  c' ^
! H, u7 W8 p+ J5 A; u[root@10 system-connections]# vim ens160.nmconnection

8 r: _; ^6 {2 x! e- Y6 i
+ `0 z+ M! [, T, {) p[connection]
  g9 [# e, l# X% qid=ens160
uuid=d8c7b37e-5eef-3bea-8893-a05f88ade99f    ###正常情况可以不管，如果是虚机，建议删除或者注释掉。
type=ethernet
autoconnect-priority=-999
! [1 \. Q% Q  b9 W5 Ninterface-name=ens160
timestamp=1739449260

' X# f7 s- T1 `" o8 Q; p$ g" L[ethernet]
3 _+ o. D) O4 @3 e' c
; ]7 w0 G6 I2 |# T0 l8 ^6 }5 k[ipv4]
#method=auto
% [! @+ |1 h& t: q/ K) S, rmethod=manual
7 \; c# T% n& waddress1=192.168.8.195/24,192.168.8.1
dns=202.106.0.20;114.114.114.114;
$ i* m  L8 O" Q; J2 l3 ?( zdns-search=
, w" G: A+ a. V9 ]) F#route1=0.0.0.0/0,192.168.8.1,0  ##configure router gateway  配置路由网关
2 k% ?' m' B5 |- R  }  V: H' U* ~  C) y
[ipv6]
addr-gen-mode=eui64
4 m8 `2 o3 i/ V1 y2 smethod=auto
9 P% I# |+ f! @) V  o) X/ Odns-search=
. v" x. Y# ?& i
0 L0 b6 N1 L% O7 Y/ w: i[proxy]

$ v( V9 @5 M5 S5 ^; x+ z- Q
. r7 R% }# P" O3 _* m" K: ~( b# O[root@bogon ~]# nmcli c reload
[root@bogon ~]#
7 Q! c3 Q- p+ H& n: _! K5 @[root@bogon ~]#
( T/ `  `* ^. |/ T3 ~[root@bogon ~]#
* Q1 M. @. ]4 s6 h[root@bogon ~]# nmcli c up ens160
) P4 q" {9 ~; Z- U5 {* \: h0 z- j" Q0 JConnection successfully activated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/7)
/ g' s' J- |0 j) b' F  H[root@bogon ~]#


4 y+ f6 U# }/ J, X4 Q4 C2 C+ C添加反向路由：
3 R" j5 q+ q- f, H  `% Z
: Q6 Q: H, z1 p7 d6 Y/ Q. Zecho "net.ipv4.conf.ens160.rp_filter = 0
net.ipv4.conf.ens224.rp_filter = 0
net.ipv4.conf.ens192.rp_filter = 0
+ n9 X* F4 u/ ~0 U) E5 d- P% |net.ipv4.conf.ens256.rp_filter = 0">>/etc/sysctl.conf

执行
6 B3 t, E& z# U0 }; J5 Nsysctl -p

上面的步骤为解决因路由问题导致网络不通的问题，解决步骤如下：
[root@bogon ~]# ping -I ens160 www.baidu.com
PING www.a.shifen.com (110.242.69.21) from 192.168.8.195 ens160: 56(84) bytes of data.

$ h, K. ]. E& h^C
4 m4 F. ^6 K% d--- www.a.shifen.com ping statistics ---
/ Q9 }; g3 r( ^4 O( N# }$ d( J66 packets transmitted, 0 received, 100% packet loss, time 66598ms
3 ~+ o0 K% y  K1 {! f0 Z. Q3 d/ v
% ^3 ]: o2 h9 Z  }1 @# }; P[root@bogon ~]# echo "net.ipv4.conf.ens160.rp_filter = 0
: F3 ^9 l# r& W/ J, P% Y6 G9 P6 C
net.ipv4.conf.ens224.rp_filter = 0">>/etc/sysctl.conf
8 v/ l& B* ?+ J' W( F3 g[root@bogon ~]# echo "net.ipv4.conf.ens160.rp_filter = 0
$ n3 K$ W- _; X" O
" u- v5 t$ r; M! H6 H  |+ Enet.ipv4.conf.ens224.rp_filter = 0">>/etc/sysctl.conf^C
[root@bogon ~]# vim /etc/sysctl.conf
[root@bogon ~]# echo "net.ipv4.conf.ens160.rp_filter = 0
+ v( T# C1 J" u/ K* u( w% e* Qnet.ipv4.conf.ens224.rp_filter = 0
" w2 y+ D6 i; y! M/ h9 snet.ipv4.conf.ens192.rp_filter = 0
) o+ H1 U; M  ?# |net.ipv4.conf.ens256.rp_filter = 0">>/etc/sysctl.conf
: ^! X* [$ a4 f$ X' _; w[root@bogon ~]# sysctl -p
; @) r7 N" A2 v6 R7 S) a0 _net.ipv4.conf.ens160.rp_filter = 0
net.ipv4.conf.ens224.rp_filter = 0
net.ipv4.conf.ens192.rp_filter = 0
6 ~, h6 h% h8 U3 Wnet.ipv4.conf.ens256.rp_filter = 0
2 ?5 Q+ x4 r5 a# p+ C[root@bogon ~]# ping -I ens160 www.baidu.com
PING www.a.shifen.com (110.242.70.57) from 192.168.8.195 ens160: 56(84) bytes of data.
3 J- ]4 K  w) f& D* Z$ a9 h2 B. T64 bytes from 110.242.70.57 (110.242.70.57): icmp_seq=1 ttl=53 time=11.1 ms
. J4 c' _. {7 [64 bytes from 110.242.70.57 (110.242.70.57): icmp_seq=2 ttl=53 time=11.1 ms
9 T7 \& X- v9 N, n( E6 ^64 bytes from 110.242.70.57 (110.242.70.57): icmp_seq=3 ttl=53 time=10.7 ms
^C
--- www.a.shifen.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2004ms
rtt min/avg/max/mdev = 10.737/10.973/11.109/0.167 ms
  U9 U& s. j+ S0 K  \4 v



[root@bogon ~]# nmcli connection reload

[root@bogon ~]# nmcli connection down ens3
! Y. F0 s1 q" Y7 l$ u
; p/ M8 Z5 B$ i, f' C! v[root@bogon ~]# nmcli connection up ens3


% P1 u* U6 J9 Z, _5 z

admin

使用nmcli 配置网卡：
$ ]3 Q- q/ r: Y/ j* l, F( ]nmcli con mod ens33 ipv4.addresses 192.168.1.100/24
6 S; C0 n% G8 Y4 @nmcli con mod ens33 ipv4.gateway 192.168.1.1
nmcli con mod ens33 ipv4.method manual
5 E$ p1 R, E  Q( Y( ?nmcli con mod ens33 ipv4.dns "8.8.8.8,8.8.4.4"
/ U" X7 [6 p* @5 rnmcli con up ens33

admin

[root@bogon ~]# nmcli d
* y; K9 \& B, K. m9 E1 \( TDEVICE  TYPE      STATE                   CONNECTION
ens256  ethernet  connected               ens256     
ens160  ethernet  connected               ens160     
ens192  ethernet  connected               ens192     
1 Q4 F% N! X1 {4 [/ U; |ens224  ethernet  connected               ens224     
lo      loopback  connected (externally)  lo      

admin

vim ens192.nmconnectio
[connection]
id=ens192
* K' n$ T3 _1 Z" h+ s#uuid=c6451e02-0fd4-3bff-9857-cbc73b2badb7
# ~# d! H4 G( K3 c6 [type=ethernet
autoconnect-priority=-999
interface-name=ens192
timestamp=1739449260
9 K; ^3 e  u$ V# [, d1 \7 v
[ethernet]

[ipv4]
#method=auto
' y7 R0 W! K) `# fmethod=manual
- O0 D# |3 N# M# xaddress1=162.96.90.195/24,162.96.90.2
2 r, P3 `- b/ \( M1 x% cdns-search=
2 Q; D( G# I3 B& j! f" l2 ^8 Q
[ipv6]
1 j0 S7 M7 i3 Y9 y( |' z8 b& r' b' P* yaddr-gen-mode=eui64
method=auto

. v+ C; l1 z3 G) @) i[proxy]
) B' L2 a; o9 j
+ w( e* {) r" m" f2 G( g[root@bogon system-connections]# vim ens192.nmconnection
# q# \" P' \  T' @$ B$ Q[root@bogon system-connections]# nmcli c r
[root@bogon system-connections]#
[root@bogon system-connections]# nmcli c d ens192
/ Q" I0 L( d# S+ t& |Connection 'ens192' successfully deactivated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/8)
1 y6 b6 I$ {5 z0 d/ k[root@bogon system-connections]# nmcli c up ens192
Connection successfully activated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/9)
[root@bogon system-connections]#

! |0 X" i0 g1 |4 `/ A& C3: ens192: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
* ]4 m- n8 y! z* S    link/ether 00:0c:29:90:af:35 brd ff:ff:ff:ff:ff:ff
# |. e8 u4 g$ Y$ L8 G    altname enp11s0
% a# L$ ?" g( D$ w    inet 162.96.90.195/24 brd 162.96.90.255 scope global noprefixroute ens192
       valid_lft forever preferred_lft forever
: s( o7 _  M" H& w+ C7 R    inet6 fe80::20c:29ff:fe90:af35/64 scope link noprefi

admin

[root@bogon system-connections]# cat ens256.nmconnection
[connection]
id=ens256
#uuid=c3817da4-88c4-37d0-9964-eebea0550881
type=ethernet
1 P( f: _7 G7 x+ u) j, bautoconnect-priority=-999
interface-name=ens256
timestamp=1739449260
( F, n" I$ D* [4 a% b; d6 L4 ]
[ethernet]
- E: |2 O; ?, I' }
, A3 [, w" I* x4 G; f[ipv4]
#method=auto
method=manual
& q( y8 H, W3 L$ B% `7 O: n- caddress1=192.168.13.195/24,192.168.13.2
0 `% q  m; K' O. ?2 Odns=202.106.0.20;114.114.114.114；
dns-search=
[ipv6]
addr-gen-mode=eui64
. y8 e/ ^2 w4 v! C- Gmethod=auto
) `2 E; h# B  Y( U- ]: _
[proxy]
[root@bogon system-connections]# nmcli c d ens256
0 K6 h7 ]' W% `3 d* F9 mConnection 'ens256' successfully deactivated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/5)
, ?( F9 Q) R+ V[root@bogon system-connections]# nmcli c u ens256
Connection successfully activated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/11)
- C! i" S2 V# x) X0 \/ g! E* c[root@bogon system-connections]#

[root@bogon system-connections]# nmcli c r
: |$ t* [6 T2 N7 _4 W! f, u7 W+ n