一、雙網(wǎng)卡網(wǎng)絡(luò)共享

具體描述：服務(wù)器eth0連接外網(wǎng)，eth1連接筆記本，筆記本能夠上網(wǎng)。

操作步驟

修改網(wǎng)卡信息

• 外網(wǎng)

vi /etc/sysconfig/network-scripts/ifcfg-eth0TYPE=Ethernet PROXY_METHOD=none BROWSER_ONLY=no NM_CONTROLLED=yes BOOTPROTO=static DEFROUTE=yes IPV4_FAILURE_FATAL=no IPV6INIT=no IPV6_AUTOCONF=no IPV6_DEFROUTE=yes IPV6_FAILURE_FATAL=no IPV6_ADDR_GEN_MODE=stable-privacy NAME=eth0 UUID=38938e8a-79e4-4c01-8c2a-effdadcca483 DEVICE=eth0 ONBOOT=yes DNS1=8.8.8.8 IPADDR=192.168.0.145 NETMASK=255.255.255.0 GATEWAY=192.168.0.1 IPV6_PEERDNS=yes IPV6_PEERROUTES=yes IPV6_PRIVACY=no ZONE= MTU=1492

• 內(nèi)網(wǎng)

vi /etc/sysconfig/network-scripts/ifcfg-eth1TYPE=Ethernet PROXY_METHOD=none BROWSER_ONLY=no BOOTPROTO=static IPADDR=192.168.100.100 NETMASK=255.255.255.0 NM_CONTROLLED=yes DEFROUTE=yes PEERDNS=yes PEERROUTES=yes IPV4_FAILURE_FATAL=yes IPV6INIT=no IPV6_AUTOCONF=yes IPV6_DEFROUTE=yes IPV6_PEERDNS=yes IPV6_PEERROUTES=yes IPV6_FAILURE_FATAL=no IPV6_ADDR_GEN_MODE=stable-privacy NAME=eth1 UUID=0ce8bb17-3486-4ce0-a9ee-efa25eb8edc9 DEVICE=eth1 ONBOOT=yes DNS1=8.8.8.8

Linux系統(tǒng)啟用端口轉(zhuǎn)發(fā)（NAT）功能# 非永久修改 echo 1 > /proc/sys/net/ipv4/ip_forward # 永久修改 vi /etc/sysctl.conf net.ipv4.ip_forward=1 sysctl -p

修改防火墻設(shè)置，將網(wǎng)卡eth1改成trusted區(qū)域：systemctl stop NetworkManager systemctl disable NetworkManager firewall-cmd --permanent --zone=public --remove-interface=eth1 firewall-cmd --permanent --zone=trusted --add-interface=eth1 firewall-cmd --reload systemctl restart firewalld

配置 NAT 規(guī)則:將所有發(fā)送到192.168.100.*的數(shù)據(jù)包轉(zhuǎn)發(fā)到eth0（外網(wǎng)網(wǎng)卡）iptables -t nat -A POSTROUTING -s 192.168.100.0/255.255.255.0 -o eth0 -j MASQUERADE

允許端口轉(zhuǎn)發(fā)，執(zhí)行命令iptables -A FORWARD -i eth1 -j ACCEPT

配置連接內(nèi)網(wǎng)的主機(jī)ip信息ip：192.168.100.5 子網(wǎng)掩碼：255.255.255.0 網(wǎng)關(guān)：192.168.100.100（服務(wù)器eth1的ip） dns：8.8.8.8

shell腳本

share-eth.sh#!/bin/sh # use to share the two network card and make the eth0 linked public network, eth1 linked LAN. # And make the post data of eth1 would be sent to eth0.echo "# 修改網(wǎng)卡eth1" sed -i 's/IPADDR=.*/IPADDR=192.168.100.100/g' /etc/sysconfig/network-scripts/ifcfg-eth1 sed -i 's/ONBOOT=.*/ONBOOT=yes/g' /etc/sysconfig/network-scripts/ifcfg-eth1 sed -i 's/BOOTPROTO=.*/BOOTPROTO=static/g' /etc/sysconfig/network-scripts/ifcfg-eth1 service network restartecho "# 啟用端口轉(zhuǎn)發(fā)（NAT）功能" echo 1 > /proc/sys/net/ipv4/ip_forwardecho "# 修改防火墻設(shè)置，將網(wǎng)卡eth1改成trusted區(qū)域：" systemctl stop NetworkManager systemctl disable NetworkManager firewall-cmd --permanent --zone=public --remove-interface=eth1 firewall-cmd --permanent --zone=trusted --add-interface=eth1 firewall-cmd --reload systemctl restart firewalldecho "# 配置 NAT 規(guī)則:將所有發(fā)送到 eth1(192.168.100.100) 的數(shù)據(jù)包轉(zhuǎn)發(fā)到 eth0（外網(wǎng)網(wǎng)卡）" #ip=$(awk -F "=" '/^IPADDR/{print $2}' /etc/sysconfig/network-scripts/ifcfg-eth1) iptables -t nat -A POSTROUTING -s "192.168.100.100/255.255.255.0" -o eth0 -j MASQUERADEecho "# 允許端口轉(zhuǎn)發(fā)，執(zhí)行命令" iptables -A FORWARD -i eth1 -j ACCEPT

trans.sh#!/bin/sh iptables -t nat -A POSTROUTING -s "192.168.100.100/255.255.255.0" -o eth0 -j MASQUERADE

注意：執(zhí)行shell腳本方式配置的話，執(zhí)行完share-eth.sh之后還需再執(zhí)行一次trans.sh

當(dāng)eth0和eth1處于同一個網(wǎng)段的時候會出現(xiàn)什么情況？

這時連接的主機(jī)的ip也和它們處于同一網(wǎng)段，相互之間并不連通。

怎么解決？

服務(wù)器網(wǎng)卡信息：eth0 : 192.168.0.145 Gateway: 192.168.0.1 eth1 : 192.168.0.100 連接的主機(jī)：192.168.0.111 Gateway: 192.168.0.100

解決方法：將連接的主機(jī)ip加入服務(wù)器的路由表route add -host 192.168.0.111 dev eth1

總結(jié)

以上是生活随笔為你收集整理的CentOS实现双网卡网络共享的全部內(nèi)容，希望文章能夠幫你解決所遇到的問題。

如果覺得生活随笔網(wǎng)站內(nèi)容還不錯，歡迎將生活随笔推薦給好友。