双接口虚拟服务器基于策略的路由

虚拟服务器连接到专用网络和公共互联网.

后的网络为在主机上配置, 在网络接口和路由的容器上定义. 基于策略路由是用来连接两个专用LAN和公共互联网.

IP表

为了方便, 我们创建了一个将用于路由2的表名. 这些在是/ etc/iproute2/rt_tables创建:

100 wanout
101 lanout

基于策略的路由

在Debian系统, 路由是在/ etc / network / interfaces中定义的文件. 一种用于容器的示例配置是:

auto lo
iface lo inet loopback

auto eth1
iface eth1 inet static
  address 192.168.80.YYY
  netmask 255.255.255.0
  network 192.168.80.0
  broadcast 192.168.80.255
  # WAN routing
  post-up ip route flush table wanout
  post-up ip route add default via 192.168.80.1 dev eth1 table wanout
  post-up ip rule add from 192.168.80.YYY table wanout priority 500
  post-up ip route add default via 192.168.80.1

auto eth0
iface eth0 inet static
  address 192.168.10.YYY
  netmask 255.255.255.0
  network 192.168.10.0
  broadcast 192.168.10.255
  # LAN routing
  post-up ip route flush table lanout
  post-up ip route add default via 192.168.10.1 dev eth0 table lanout
  post-up ip rule add from 192.168.10.YYY table lanout priority 501

auto lo

iface lo inet loopback

auto eth1

iface eth1 inet static

address 192.168.80.YYY

netmask 255.255.255.0

network 192.168.80.0

broadcast 192.168.80.255

# WAN routing

post-up ip route flush table wanout

post-up ip route add default via 192.168.80.1 dev eth1 table wanout

post-up ip rule add from 192.168.80.YYY table wanout priority 500

post-up ip route add default via 192.168.80.1

auto eth0

iface eth0 inet static

address 192.168.10.YYY

netmask 255.255.255.0

network 192.168.10.0

broadcast 192.168.10.255

# LAN routing

post-up ip route flush table lanout

post-up ip route add default via 192.168.10.1 dev eth0 table lanout

post-up ip rule add from 192.168.10.YYY table lanout priority 501

2月6日, 2013 发布者乔恩Jaroker 提起: 网络模型

成为第一个发表评论. 发表评论

双接口虚拟服务器基于策略的路由

IP表

基于策略的路由

网络模型

双网卡的主机桥接网络模型

双接口虚拟服务器基于策略的路由

聚类

Proxmox VE集群是非标准和root登录SSH端口被禁用

虚拟化的书目

Linux的书目