实现方式:通过设置iptables的nat规则,使内网服务器可以访问Internet
1.系统环境:
[root@MySQL-server ~]# cat /etc/redhat-release CentOS release 6.6 (Final) [root@MySQL-server ~]# uname -r 2.6.32-504.el6.x86_64 [root@MySQL-server ~]# uname -m x86_64
2.准备两台虚拟机
========================================================================== 主机名 外网 内网 Web-Lnmp02 eth0:192.168.73.171 eth1:192.168.56.130 MySQL-server eth0:192.168.56.129 DNS:192.168.73.2 注:内网使用仅主机模式连接,手动设置IP 外网使用NAT模式连接,使用dhcp动态获取的IP ==========================================================================
3.配置Web-Lnmp02服务器
1)开启IP转发功能
[root@Web-Lnmp02 network-scripts]# echo "net.ipv4.ip_forward = 1">>/etc/sysctl.con [root@Web-Lnmp02 network-scripts]# sysctl -p
2)配置iptables
[root@Web-Lnmp02 ~]# iptables -F [root@Web-Lnmp02 ~]# iptables -P INPUT ACCEPT [root@Web-Lnmp02 ~]# iptables -P FORWARD ACCEPT [root@Web-Lnmp02 ~]# iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE [root@Web-Lnmp02 ~]# /etc/init.d/iptables save [root@Web-Lnmp02 ~]# /etc/init.d/iptables restart 说明: iptables -F #清除原有的filter有中的规则 iptables -t nat -F #清除原有的nat表中的规则 iptables -P FORWARD ACCEPT #缺省允许IP转发
4.配置MySQL-server
1)IP设置
[root@MySQL-server ~]# cat /etc/sysconfig/network-scripts/ifcfg-eth0 DEVICE=eth0 TYPE=Ethernet ONBOOT=yes NM_CONTROLLED=yes BOOTPROTO=none USERCTL=no HWADDR=00:0c:29:e2:0e:85 IPADDR=192.168.56.129 NETMASK=255.255.255.0 GATEWAY=192.168.56.130 IPV6INIT=no
2)DNS设置
[root@MySQL-server ~]# cat /etc/resolv.conf ; generated by /sbin/dhclient-script search localdomain nameserver 192.168.73.2
5.在MySQL-server上测试是否能访问internet
[root@MySQL-server ~]# ping www.baidu.com PING www.a.shifen.com (61.135.169.125) 56(84) bytes of data. 64 bytes from 61.135.169.125: icmp_seq=1 ttl=127 time=5.89 ms 64 bytes from 61.135.169.125: icmp_seq=2 ttl=127 time=9.49 ms 64 bytes from 61.135.169.125: icmp_seq=3 ttl=127 time=6.14 ms
原文地址:http://l19891223j.blog.51cto.com/888280/1702824
