|
|
1、Centos stream 9 网络介结4 \9 K* }( j: R S0 D U# Y. H5 i; Z
+ u& ~( k6 y* I+ K; q" BCentos以前版本,NetworkManage以ifcfg格式存储网络配置文件在/etc/sysconfig/networkscripts/目录中。但是,Centos steam 9现已弃用ifcfg格式,默认情况下,NetworkManage不再创建此格式的新配置文件。从Centos steam 9开始采用密钥文件格式(基于INI文件),NetworkManager网卡配置在/etc/NetworkManager/system-connections目录中。这种格式基于INI文件,可以很容易地解析和生成。NetworkManager密钥文件中的每个部分都对应于一个nm-settings(5) 和nm-settings-keyfile(5)。如果您仍然使用ifcfg格式的网络配置文件,请考虑迁移,将它们转换为keyfile格式。要一次移植所有配置文件,请输入:nmcli connection migrate,此命令将所有配置文件从ifcfg格式迁移到keyfile格式化并存储在/etc/NetworkManager/system connections/中。或者,要仅移植特定的配置文件,请输入: nmcli connection migrate <profile_name|UUID|D-Bus_path>有关详细信息,请参阅:
: w3 ~4 Q3 b- Z2 z7 q. U: k" y( R0 g% o* i' p0 U% p9 o
* nm-settings-keyfile(5)$ Q& @$ b) u7 J. O" V
. E, T* ~8 ^' E, P9 Y% e
* nmcli(1)$ `! S' Z& F- C
( a9 L1 S' _7 e1 }- Q2、通过网络配置文件设置IP% N( A- l" i) \( m+ T
6 ?( |8 }4 c2 |: W: r. T+ H[root@10 system-connections]# pwd
d% v8 N% k" e x/ Q6 l/etc/NetworkManager/system-connections
, e! o" V0 B4 {3 d0 Q" Q
8 l2 ]- d9 G: c/ J& O* q[root@10 system-connections]# ls
) k5 K, s5 n, P4 Aens160.nmconnection ens192.nmconnection ens224.nmconnection ens256.nmconnection
* W; g1 D+ ?7 J! W x' J9 |3 j
: c. H* ]7 [( [, {$ X2 V# A7 p& a, F5 X: P" x4 A) o
[root@10 system-connections]# vim ens160.nmconnection9 S: f7 w; q; L# P% l" r
Q7 J$ d1 b3 O; K, t) Z) c0 y7 V- A
[connection]6 R$ p4 X0 P5 C' {4 w
id=ens160; A. O6 v; g) Z/ e+ t4 S" L
uuid=d8c7b37e-5eef-3bea-8893-a05f88ade99f ###正常情况可以不管,如果是虚机,建议删除或者注释掉。
- a! c& `! A% l8 i7 J& ltype=ethernet' r& W7 z# q0 U4 ^
autoconnect-priority=-999
# R, a2 `" L, e1 M1 ^) z. [interface-name=ens160$ A) Y; N+ O" `6 V/ G' G" A
timestamp=1739449260$ S" k8 T0 h( o3 q6 F
) R1 J2 P: ~" L: y5 t( A
[ethernet]* o) r2 _ N+ l! n0 |: M$ y4 @$ W
* O& u' G* Q5 U6 f" D( e6 P[ipv4]
: G+ f7 S4 R8 ?% Y5 s) k. `( U#method=auto9 N% y; E1 P" c) j" z
method=manual Q% S5 v/ z, a' L( B. T% f5 o
address1=192.168.8.195/24,192.168.8.14 p& p/ _2 S, W9 U$ N
dns=202.106.0.20;114.114.114.114;6 E7 u4 Q1 b0 W" e. M) t4 h0 Q6 D
dns-search=# ~1 b8 ?+ R7 W' ]8 D) r
#route1=0.0.0.0/0,192.168.8.1,0 ##configure router gateway 配置路由网关5 K( E# D1 I7 a+ k
. j7 H- V; m) Z0 Z
[ipv6]1 j! V. E0 ?" R$ q) e
addr-gen-mode=eui64. g+ i6 L& n' N* `; q. ^% C$ h- ^8 C) I
method=auto2 y! j; B Q7 c* f2 [
dns-search=0 b9 x! ~% S- D& H
. q7 j8 p* C4 D6 v
[proxy]% X a( h8 W# h+ V6 Q7 ]
8 E( C) S, N# R: O) F
# \% j0 P1 a/ Q2 k* Q* E
[root@bogon ~]# nmcli c reload6 h4 ^; i) M# M: d0 C2 t
[root@bogon ~]# : M w* r0 k# h0 F3 ]
[root@bogon ~]# 0 ~/ R L% i9 S; K/ r
[root@bogon ~]# S" @) X) \! P% b' s
[root@bogon ~]# nmcli c up ens160
8 v6 f( D7 p# P a3 mConnection successfully activated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/7)/ q* C) |, i$ O0 h
[root@bogon ~]# ) G M; h) N" A" ^* G
) B. `, y7 M% U' ~, `
g7 N$ g; O) h( G6 Q添加反向路由:
8 g! W! n% ?& d# A4 q2 j( U; ?; ~5 @; W% {- _
echo "net.ipv4.conf.ens160.rp_filter = 0
" c6 Q% R5 q9 Z/ E) Onet.ipv4.conf.ens224.rp_filter = 0+ i! e3 D1 U( _6 `/ Y6 Z0 ?) e
net.ipv4.conf.ens192.rp_filter = 0
; I+ t% [: f% |5 ]- z( wnet.ipv4.conf.ens256.rp_filter = 0">>/etc/sysctl.conf' L1 o) O2 k5 D! M3 [' N
% V4 o9 J1 H3 Q执行: N6 f. n4 w( }, |3 E
sysctl -p9 G% @5 E0 B0 I; z- W8 z
" I: I- k7 E( K3 a
上面的步骤为解决因路由问题导致网络不通的问题,解决步骤如下:
/ g; E3 K2 c; i! S7 ?[root@bogon ~]# ping -I ens160 www.baidu.com9 [( J& b1 J& [2 v6 _
PING www.a.shifen.com (110.242.69.21) from 192.168.8.195 ens160: 56(84) bytes of data. v+ J9 b2 y" M! l
- h* ~0 j* I: ^9 a- g/ V5 a^C5 x x; |! ]6 _: w5 R
--- www.a.shifen.com ping statistics ---( H. C1 u3 V2 I2 }8 c. d. W+ ?
66 packets transmitted, 0 received, 100% packet loss, time 66598ms3 b9 I1 Y. y6 F8 u8 R7 U( X
+ I5 C* H! Z |) G
[root@bogon ~]# echo "net.ipv4.conf.ens160.rp_filter = 0
" Z' G. ~ g% I2 B7 f
& }- a- R: A9 n- G5 M% s @net.ipv4.conf.ens224.rp_filter = 0">>/etc/sysctl.conf* y+ x* ]- b5 g1 R8 _% S. Z- H
[root@bogon ~]# echo "net.ipv4.conf.ens160.rp_filter = 0
% O: x' _) C/ T6 ?# C5 Q/ p7 D& F& c* c& l1 f" L
net.ipv4.conf.ens224.rp_filter = 0">>/etc/sysctl.conf^C
, {) _: n7 d/ G/ c' y3 Y0 R! z[root@bogon ~]# vim /etc/sysctl.conf
6 @7 P8 {' [# V0 t[root@bogon ~]# echo "net.ipv4.conf.ens160.rp_filter = 0
! F, ?8 H# @2 Fnet.ipv4.conf.ens224.rp_filter = 0$ T5 Y" n: X q& ~
net.ipv4.conf.ens192.rp_filter = 0
% U: y& y6 k* }4 q1 M c; Znet.ipv4.conf.ens256.rp_filter = 0">>/etc/sysctl.conf
; b# H& O/ z/ |# m9 ~[root@bogon ~]# sysctl -p
6 j6 h/ q1 v, `" Mnet.ipv4.conf.ens160.rp_filter = 09 }+ h! z$ ?9 }0 i# p, L
net.ipv4.conf.ens224.rp_filter = 0
' `/ S! `8 y. j9 Fnet.ipv4.conf.ens192.rp_filter = 08 r" F# H3 Z- P5 E7 n' I0 K
net.ipv4.conf.ens256.rp_filter = 0: v/ `) t2 }( U5 y. ^2 p# `9 ]
[root@bogon ~]# ping -I ens160 www.baidu.com
& U# ^5 _# o% B1 ?* TPING www.a.shifen.com (110.242.70.57) from 192.168.8.195 ens160: 56(84) bytes of data.9 V' ~: ]: B) J
64 bytes from 110.242.70.57 (110.242.70.57): icmp_seq=1 ttl=53 time=11.1 ms
3 Y& U' D/ r0 Q2 g& {/ l, B8 v64 bytes from 110.242.70.57 (110.242.70.57): icmp_seq=2 ttl=53 time=11.1 ms( S/ y0 R, Y* }/ g; v
64 bytes from 110.242.70.57 (110.242.70.57): icmp_seq=3 ttl=53 time=10.7 ms1 R! k/ l/ n# B& Q& U- a
^C
5 _% C+ d5 l% M--- www.a.shifen.com ping statistics ---
% B& G$ |( `7 y+ C: R' s' p2 V3 packets transmitted, 3 received, 0% packet loss, time 2004ms
% l4 N$ I1 ^0 _rtt min/avg/max/mdev = 10.737/10.973/11.109/0.167 ms
/ _ h" q5 p$ d( b
! P! w3 z( @( S$ b. M' t% q% `" U+ t( S* Y6 l
5 H- H% Z. v: I5 M$ b9 B- P
5 C: d% @& a0 j. L, C- {[root@bogon ~]# nmcli connection reload/ \: |' T* T: b2 p! D
6 e R. t1 R1 [2 i+ x9 Y% G2 {
[root@bogon ~]# nmcli connection down ens3
7 o+ i \. s( @( X' \8 t* d+ ~ k% y7 |! i# a5 F$ U
[root@bogon ~]# nmcli connection up ens3
/ G, k G* Z2 }/ o* ~# t
" U% y3 c" l9 ?) _: t) ]( c3 u0 f* u5 @. P/ k9 U$ ^
+ J( r T D$ z2 u |
|
发表于 2025-2-13 13:00:01