设置 Firewalld 防火墙控制对系统的访问

1、检查 server101 的网卡,记住第二个网卡的名称 

[root@server101 ~]# nmcli device 
DEVICE       TYPE      STATE         CONNECTION         
br0          bridge    connected     Bridge eno16777736 
eno16777736  ethernet  connected     System eno16777736 
eno33554960  ethernet  disconnected  --                 
eno50332184  ethernet  disconnected  --                 
lo           loopback  unmanaged     --

2. 创建一个新的 connection,名称为 net2,使用第二个网卡,IP 地址 192.168.1.101 /24,确保 system 可以通过第二个网卡 ping 通 192.168.1.254 

[root@server101 ~]# nmcli connection add  con-name net2 ifname eno33554960 autoconnect yes type ethernet 
Connection 'net2' (2a1215b2-24c4-4055-a76f-c8a84610ed4a) successfully added.
[root@server101 ~]# nmcli connection modify net2 ipv4.addresses '192.168.1.101/24' ipv4.method manual
[root@server101 ~]# nmcli connection up net2 
Connection successfully activated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/3)
[root@server101 ~]# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN 
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: eno16777736: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master br0 state UP qlen 1000
    link/ether 00:0c:29:16:3f:53 brd ff:ff:ff:ff:ff:ff
3: eno33554960: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
    link/ether 00:0c:29:16:3f:5d brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.101/24 brd 192.168.1.255 scope global eno33554960
       valid_lft forever preferred_lft forever
    inet6 fe80::20c:29ff:fe16:3f5d/64 scope link 
       valid_lft forever preferred_lft forever
4: eno50332184: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
    link/ether 00:0c:29:16:3f:67 brd ff:ff:ff:ff:ff:ff
5: br0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP 
    link/ether 00:0c:29:16:3f:53 brd ff:ff:ff:ff:ff:ff
    inet 192.168.0.101/24 brd 192.168.0.255 scope global br0
       valid_lft forever preferred_lft forever
    inet6 fe80::20c:29ff:fe16:3f53/64 scope link 
       valid_lft forever preferred_lft forever
[root@server101 ~]# ping 192.168.1.254
PING 192.168.1.254 (192.168.1.254) 56(84) bytes of data.
64 bytes from 192.168.1.254: icmp_seq=1 ttl=64 time=0.690 ms
64 bytes from 192.168.1.254: icmp_seq=2 ttl=64 time=0.851 ms
64 bytes from 192.168.1.254: icmp_seq=3 ttl=64 time=1.13 ms
^C
--- 192.168.1.254 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2003ms
rtt min/avg/max/mdev = 0.690/0.890/1.131/0.185 ms
[root@server101 ~]#

posted @ 2016-11-15 10:15  北海悟空  阅读(485)  评论(0)    收藏  举报