目录
一、初始化配置
(一)编写脚本
\[root@localhost \~\]# vim csh.sh
#!/bin/bash
##关闭防火墙
if systemctl status firewalld
then
systemctl disabled --now firewalld
else
echo "防火墙已经关闭"
fi
iptables -F
##关闭SELinux
if \[ \`getenforce\` == 'Disabled' \]
then
echo "SELinux已经关闭"
else
setenforce 0
sed -i 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config
fi
##配置IP地址
nics=\`ip a \| awk -F: '/ens/{print $2}' \| grep -v "\^$" \| tr -d ' '\`
echo -e "当前系统中可供配置的网卡有:\\n$nics"
while true
do
read -p "请输入要配置的网卡名称:" nic
if ! \[\[ $nics =\~ $nic \]\]
then
continue
fi
read -p "请输入配置网络参数的方式(dhcp\|static):" tp
if \[ $tp == 'dhcp' \]
then
echo "TYPE=Ethernet
BOOTPROTO=$tp
NAME=$nic
DEVICE=$nic
ONBOOT=yes"\> /etc/sysconfig/network-scripts/ifcfg-$nic
ifdown $nic ; ifup $nic
elif \[ $tp == 'static' \]
then
read -p "输入IP地址:" ip
read -p "输入子网掩码:" mask
read -p "输入网关:" gw
read -p "输入dns:" dns
echo "TYPE=Ethernet
BOOTPROTO=static
NAME=$nic
DEVICE=$nic
ONBOOT=yes
IPADDR=$ip
PREFIX=$mask
GATEWAY=$gw
DNS1=$dns" \> /etc/sysconfig/network-scripts/ifcfg-$nic
ifdown $nic ; ifup $nic
else
echo "输入错误"
exit
fi
done
(二)执行脚本
二、DHCP服务器
编写脚本
#!/bin/bash
config_dhcp(){
echo "subnet 192.168.100.0 netmask 255.255.255.0 {
range 192.168.100.2 192.168.100.253;
option domain-name-servers 192.168.100.1;
option domain-name "internal.example.org";
option routers 192.168.100.254;
option broadcast-address 192.168.100.255;
default-lease-time 600;
max-lease-time 7200;
}
subnet 192.168.200.0 netmask 255.255.255.0 {
range 192.168.200.2 192.168.100.253;
option domain-name-servers 192.168.100.1;
option domain-name "internal.example.org";
option routers 192.168.200.254;
option broadcast-address 192.168.200.255;
default-lease-time 600; max-lease-time 7200; }
host fantasia {
hardware ethernet 08:00:07:26:c0:a5;
fixed-address 192.168.100.100;
}" > /etc/dhcp/dhcpd.conf
systemctl enable --now dhcpd
}
if ! rpm -q dhcp
then
config_dhcp
else
yum install -y dhcp
config_dhcp
fi三、路由配置
编写脚本
\[root@localhost \~\]# vim csh.sh
#!/bin/bash
##关闭防火墙
if systemctl status firewalld
then
systemctl disabled --now firewalld
else
echo "防火墙已经关闭"
fi
iptables -F
##关闭SELinux
if \[ \`getenforce\` == 'Disabled' \]
then
echo "SELinux已经关闭"
else
setenforce 0
sed -i 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config
fi
##配置IP地址
nics=\`ip a \| awk -F: '/ens/{print $2}' \| grep -v "\^$" \| tr -d ' '\`
echo -e "当前系统中可供配置的网卡有:\\n$nics"
while true
do
read -p "请输入要配置的网卡名称:" nic
if ! \[\[ $nics =\~ $nic \]\]
then
continue
fi
read -p "请输入配置网络参数的方式(dhcp\|static):" tp
if \[ $tp == 'dhcp' \]
then
echo "TYPE=Ethernet
BOOTPROTO=$tp
NAME=$nic
DEVICE=$nic
ONBOOT=yes"\> /etc/sysconfig/network-scripts/ifcfg-$nic
ifdown $nic ; ifup $nic
elif \[ $tp == 'static' \]
then
read -p "输入IP地址:" ip
read -p "输入子网掩码:" mask
read -p "输入网关:" gw
read -p "输入dns:" dns
echo "TYPE=Ethernet
BOOTPROTO=static
NAME=$nic
DEVICE=$nic
ONBOOT=yes
IPADDR=$ip
PREFIX=$mask \> /etc/sysconfig/network-scripts/ifcfg-$nic
ifdown $nic ; ifup $nic
else
echo "输入错误"
exit
fi
done路由网卡配置:
ens33:
IPADDR=192.168.100.254
PREFIX=24
ens34:
IPADDR=192.168.200.254
PREFIX=24
四、中继转发
echo "net.ipv4.ip_forword = 1" > /etc/sysctl.conf
sysctl-p
dhcrelay 192.168.100.1