|
|
[root@vpnserver firewalld]# firewall-cmd --reload
1 Z+ M$ A/ h( q7 Q. V" Y# HError: COMMAND_FAILED: Direct: '/usr/sbin/iptables-restore -w -n' failed: iptables-restore v1.4.21: unknown option "-O" ]; |" W. G n& _4 ]. s
Error occurred at line: 2
, c, t6 k( p' g4 P" v: BTry `iptables-restore -h' or 'iptables-restore --help' for more information.
" Z1 }$ x c. s! i# j3 e( n5 F' I
, N4 w" ~8 g5 E. [7 |5 R上面报错
& V1 c' G/ O2 \7 [7 j9 J& o; a解决办法:
. A& Z! t2 n4 K9 r6 g/ j" Q
) R5 k1 O2 T i. _! f5 o到/etc/firewalld目录下:
& I- {( U2 j b' T# e" f* }. P7 `& _& d% H% K
[root@vpnserver firewalld]# vim direct.xml, W6 L9 ?* f7 n
注释掉前两行即可:
0 m" A' g) F6 E( l; E9 l# B# i8 B3 g! {% V
<?xml version="1.0" encoding="utf-8"?>) c9 ~) ?' m) {2 g
<direct>
- m; |% A: ~! m1 W$ S <passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -O ens33 -j MASQUERADE</passthrough># M% p, q' m' w6 B$ Y7 w
<passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -0 ens33 -j MASQUERADE</passthrough>$ `. X2 |# y: @( E) @, w
<passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -o ens33 -j MASQUERADE</passthrough>
# u! h0 P0 r" y! u</direct>8 w/ l3 N% M- R3 E n4 l
- `, B+ T% |: c, q
改后的文件内容:1 h Z0 i3 E7 m% C- @% M
# g$ B+ P* S) ^. \
<?xml version="1.0" encoding="utf-8"?>
e% ^4 E6 O4 y: ^- U2 ?<direct>
" M. G6 Z4 z) T8 o& H d <!--<passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -O ens33 -j MASQUERADE</passthrough> -->
9 H: D; B1 T* T; u, @6 E; Z <!--<passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -0 ens33 -j MASQUERADE</passthrough> -->
4 w$ b! @, z' J9 G <passthrough ipv="ipv4">-t nat -A POSTROUTING -s 10.10.10.0/24 -o ens33 -j MASQUERADE</passthrough>
7 @: w7 `$ i+ i</direct>
H( Y- s0 z. M) G4 w6 S" d
5 b" E- o, v. C K* v; F5 B( v7 R; x% m' d
% A3 s% T- y5 W
[root@vpnserver firewalld]# firewall-cmd --reload
" @5 ^' u2 f* u! nsuccess
! m: |$ y# R& y9 H不再报错。
* s1 d7 \/ m4 W$ B' }. B) c0 E; |$ s( D; j
/ A2 z' ^1 T, \7 c4 s问题解决。
- G1 ?! c9 h1 ]/ B6 P |
|
发表于 2025-5-5 00:22:03