centos7 雙網絡卡同網段雙閘道器配置
阿新 • • 發佈:2022-03-29
需求:
#1、伺服器為雙網絡卡; #2、網絡卡1為網際網路 172.16.137.99/24/254 #3、網絡卡2為旅遊專網 172.16.137.97/24/1 #4、網際網路路由器為172.16.137.254 #5、旅遊網需訪問閘道器 172.16.134.1、135.1、136.1 。。。 #6、實現伺服器被網際網路訪問,也能被旅遊網訪問;
1、配置網絡卡
網絡卡1
[root@localhost ~]# cat /etc/sysconfig/network-scripts/ifcfg-eno1 PROXY_METHOD="none" BOOTPROTO="static" DEFROUTE="yes" IPV4_FAILURE_FATAL="no" NAME="eno1" DEVICE="eno1" ONBOOT="yes" IPADDR="172.16.137.99" PREFIX="24" GATEWAY="172.16.137.254" DNS1="60.255.80.18" DNS2="60.255.80.19" [root@localhost ~]#
網絡卡2
[root@localhost ~]# cat /etc/sysconfig/network-scripts/ifcfg-eno2 PROXY_METHOD="none" BOOTPROTO="static" DEFROUTE="yes" IPV4_FAILURE_FATAL="no" NAME="eno2" DEVICE="eno2" ONBOOT="yes" IPADDR="172.16.137.97" PREFIX="24" GATEWAY="172.16.137.1" DNS1="60.255.80.18" DNS2="60.255.80.19" [root@localhost ~]#
2、檢視ip地址
[root@localhost ~]# ip a 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group defaultqlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000 link/ether ec:aa:a0:19:85:98 brd ff:ff:ff:ff:ff:ff inet 172.16.137.99/24 brd 172.16.137.255 scope global noprefixroute eno1 valid_lft forever preferred_lft forever inet6 fe80::eeaa:a0ff:fe19:8598/64 scope link valid_lft forever preferred_lft forever 3: eno2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000 link/ether ec:aa:a0:19:85:99 brd ff:ff:ff:ff:ff:ff inet 172.16.137.97/24 brd 172.16.137.255 scope global noprefixroute eno2 valid_lft forever preferred_lft forever inet6 fe80::eeaa:a0ff:fe19:8599/64 scope link valid_lft forever preferred_lft forever 4: enp0s26u1u2u5: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether ee:aa:a0:19:85:9f brd ff:ff:ff:ff:ff:ff [root@localhost ~]#
ip配置生效,測試閘道器只有網絡卡1通,網絡卡2不通。
3、新增路由
檢視路由
[root@localhost ~]# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 172.16.137.254 0.0.0.0 UG 100 0 0 eno1 0.0.0.0 172.16.137.1 0.0.0.0 UG 101 0 0 eno2172.16.137.0 0.0.0.0 255.255.255.0 U 100 0 0 eno1 172.16.137.0 0.0.0.0 255.255.255.0 U 101 0 0 eno2 [root@localhost ~]#
新增臨時路由,既然需要通不同旅遊專網網段,我新增目標路由172.16.0.0 16位子網掩碼到172.16.137.1出
route add -net 172.16.0.0 netmask 255.255.0.0 gw 172.16.137.1
再檢視路由
[root@localhost ~]# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 172.16.137.254 0.0.0.0 UG 100 0 0 eno1 0.0.0.0 172.16.137.1 0.0.0.0 UG 101 0 0 eno2 172.16.0.0 172.16.137.1 255.255.0.0 UG 101 0 0 eno2 172.16.137.0 0.0.0.0 255.255.255.0 U 100 0 0 eno1 172.16.137.0 0.0.0.0 255.255.255.0 U 101 0 0 eno2 [root@localhost ~]#
其他旅遊專線專線,能ping通,也能被其他旅遊網專線ping通。至此路由配置已通。
4、新增永久路由
#1、新增route檔案,檔名route + 網絡卡名 [root@localhost ~]# vim /etc/sysconfig/network-scripts/route-eno2 #2、新增路由 172.16.0.0/16 via 172.16.137.1 dev eno2 #3、重啟網路 systemctl restart network