论坛的朋友们,我很想解决这个问题。昨天我必须对被黑客攻击的服务器进行备份。该服务器称为主服务器。当我遭到黑客攻击时,我设置了一个名为“primary-new”的新服务器,并从头开始进行帐户备份。这些服务器被分配了相同的 IP 地址,因此为了恢复某些内容,我必须停止新的主服务器并打开旧的“主”服务器以防止 ip 冲突。发生了什么,当我再次启动服务器后,它没有互联网连接,我无法通过 ssh 访问,而且我的所有网站都关闭了。我第一次安装服务器时就发生了这种情况,这是 NetworkManager 的错误。现在,如果我设法使用 proxmox 通过控制台进入,我就可以解决所有问题。我的问题是我分配给服务器的密码有一个特殊的符号。"591d<u9 "I£90" 该死的标志。我无法获取它。我也无法复制它,因为 proxmox shell 是来自该虚拟机本身的监视器的流,并且它没有连接到您计算机的监视器键盘。有什么办法可以通过proxmox的OPENVNC做出这个标志吗?
我有一个运行多个服务的 Proxmox 节点。
每个服务由多个 VM 组成,例如反向代理、数据库和应用程序服务器。服务中的某些 VM 依赖于该服务的其他 VM:应用程序服务器依赖于数据库服务器。
不同的服务不相互依赖并且不相关。
有时我需要为单个服务重新启动所有 VM。我可以手动执行此操作,然后我需要知道关闭和重新启动 VM 的正确顺序。
如果我可以显式配置属于单个服务的 VM 之间的依赖关系,那就太好了。并以正确的顺序自动重新启动服务中的所有 VM,而无需为在同一节点上运行的其他服务触及 VM。
我可以用 Proxmox 做到这一点吗?
我知道我可以将虚拟机分配给资源池,但我认为这更多是为了权限。我知道我可以设置启动顺序,但我认为这是为了重新启动整个节点。
我有一个具有三个节点的 HA proxmox 集群。
我在两个节点之间进行了复制。这两个节点中的每一个都有一个用于复制的 ZFS 池。我在这两个带有 ZFS for HA 的服务器之间设置了复制规则。
我有一个较旧的第三个节点(称为虚拟),它没有任何 ZFS 磁盘,因此我不将它用作复制目标。
今天一个带有 ZFS 的节点死了,一个容器(CT)在第三个节点上结束了,非 ZFS 的那个,我不知道是怎么回事。
因为这第三个节点没有任何 ZFS 池(也没有复制的卷),所以容器处于奇怪的状态,因为它引用的磁盘不存在。现在我无法将此 CT 迁移到正确的剩余节点。
当我尝试将 CT 迁移到正确的节点时,我收到此错误:
Replication Log
2022-03-21 17:53:01 105-0: start replication job
2022-03-21 17:53:01 105-0: guest => CT 105, running => 0
2022-03-21 17:53:01 105-0: volumes => rpool:subvol-105-disk-0
2022-03-21 17:53:01 105-0: create snapshot '__replicate_105-0_1647881581__' on rpool:subvol-105-disk-0
2022-03-21 17:53:01 105-0: end replication job with error: zfs error: For the delegated permission list, run: zfs allow|unallow
显然第三个节点没有 rpool 卷,所以我不知道为什么 proxmox 决定将那个 CT 迁移到那里。如何在剩余节点上启动该容器?具有 ZFS 池的服务器上存在相应的磁盘,我不能只迁移到它。
这是我当前集群状态和复制任务的屏幕截图。如您所见,复制仅在节点 proxmox-2 和 proxmox-3 之间完成,它们是具有 ZFS 存储的节点。我所说的容器是 ID 为 105 的容器
我有一个 Proxmox Linux 服务器,它能够向本地网络上的主机发送和接收数据包,但不会处理来自网关的数据包。这会导致互联网流量失败,因此我无法运行 apt 来更新软件包。所有协议似乎都受到影响。
服务器上运行的虚拟机可以正常访问网关。
我的 /etc/network/interfaces 文件包含:
auto lo
iface lo inet loopback
iface enp10s0 inet manual
auto vmbr0
iface vmbr0 inet static
address 10.0.1.200/24
gateway 10.0.1.1
bridge_ports enp10s0
bridge_stp off
bridge_fd 0
auto wlp7s0
iface wlp7s0 inet static
hostapd /etc/hostapd/hostapd.conf
address 10.0.2.1
netmask 255.255.255.0
auto vmbr1
iface vmbr1 inet static
address 10.1.2.1
netmask 255.255.255.0
bridge_ports none
bridge-stp off
bridge-fd 0
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up iptables -t nat -A POSTROUTING -s '10.1.2.0/24' -o wlp7s0 -j MASQUERADE
post-down iptables -t nat -D POSTROUTING -s '10.1.2.0/24' -o wlp7s0 -j MASQUERADE
wlp7s0 和 vmbr1 进行了 NAT,以允许 VM 访问不应访问一般网络/互联网的无线 IOT 设备。
我的路由表:
$ ip route
default via 10.0.1.200 dev vmbr0 metric 100
10.0.1.0/24 dev vmbr0 proto kernel scope link src 10.0.1.200
10.0.2.0/24 dev wlp7s0 proto kernel scope link src 10.0.2.1
10.1.2.0/24 dev vmbr1 proto kernel scope link src 10.1.2.1
经过一番阅读,我尝试更改 rp_filter,但将值从 2 更改为 0 并没有帮助。默认设置(移除 VM 接口):
$ sysctl -a | grep \\.rp_filter
net.ipv4.conf.all.rp_filter = 2
net.ipv4.conf.default.rp_filter = 0
net.ipv4.conf.enp10s0.rp_filter = 0
net.ipv4.conf.lo.rp_filter = 0
net.ipv4.conf.vmbr0.rp_filter = 0
net.ipv4.conf.vmbr1.rp_filter = 0
net.ipv4.conf.wlp7s0.rp_filter = 0
ip_forward 已设置:
$ cat /proc/sys/net/ipv4/ip_forward
1
我已通过 tcpdump 验证,当我尝试从服务器 ping 到网关或从服务器到网关时,正在从网关接收数据包。此示例使用 ping:
# tcpdump -n -i vmbr0 host 10.0.1.1 and icmp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on vmbr0, link-type EN10MB (Ethernet), capture size 262144 bytes
22:42:37.136341 IP 10.0.1.200 > 10.0.1.1: ICMP echo request, id 22073, seq 1, length 64
22:42:37.136478 IP 10.0.1.1 > 10.0.1.200: ICMP echo reply, id 22073, seq 1, length 64
22:42:38.142240 IP 10.0.1.200 > 10.0.1.1: ICMP echo request, id 22073, seq 2, length 64
22:42:38.142429 IP 10.0.1.1 > 10.0.1.200: ICMP echo reply, id 22073, seq 2, length 64
ping -v 的输出只是空的:
$ ping -v 10.0.1.1
PING 10.0.1.1 (10.0.1.1) 56(84) bytes of data.
^C
--- 10.0.1.1 ping statistics ---
22 packets transmitted, 0 received, 100% packet loss, time 511ms
ip 表中的唯一条目是 NAT:
# iptables-save -c
# Generated by iptables-save v1.8.2 on Sat Jan 29 22:45:46 2022
*raw
:PREROUTING ACCEPT [1828405583:1847667077335]
:OUTPUT ACCEPT [10762322:981310704]
COMMIT
# Completed on Sat Jan 29 22:45:46 2022
# Generated by iptables-save v1.8.2 on Sat Jan 29 22:45:46 2022
*filter
:INPUT ACCEPT [10597558:1212589593]
:FORWARD ACCEPT [1782904005:1841102268241]
:OUTPUT ACCEPT [10762351:981313827]
COMMIT
# Completed on Sat Jan 29 22:45:46 2022
# Generated by iptables-save v1.8.2 on Sat Jan 29 22:45:46 2022
*nat
:PREROUTING ACCEPT [29808561:4940456833]
:INPUT ACCEPT [2456738:231340403]
:OUTPUT ACCEPT [1168080:75403202]
:POSTROUTING ACCEPT [2829337:181352732]
[190:11400] -A POSTROUTING -s 10.1.2.0/24 -o wlp7s0 -j MASQUERADE
COMMIT
# Completed on Sat Jan 29 22:45:46 2022
在 OVH 中,我有 2 个 ProxMox 服务器,每个服务器都包含一个防火墙和一些其他主机。我正在尝试使用 OVH vRack 进行他们之间的私人通信,但它不起作用。
以下是我的网络摘要:
目标是从 PRD2FRM201 访问 PRD1FRM206,反之亦然。
主机
- PRD1FRM206 - PVE01 服务器中的主机
- PRD1FWL100 - PVE01 服务器中的防火墙
- PRD2FRM201 - PVE02 服务器中的主机
- PRD2FWL100 - PVE02 服务器中的防火墙
- PVE01 和 PVE02 - ProxMox 专用服务器,均托管在 OVH 中,由 OVH VRack 互连
PVE01 网络配置:
# Server pag-01
# network interfaces
#
# Author: Gilberto Martins
# Creation: 03/19/2021
# ================================
auto lo
iface lo inet loopback
auto enp5s0f0
iface enp5s0f0 inet manual
auto enp5s0f1
iface enp5s0f1 inet manual
# Internet Interface
auto vmbr0
iface vmbr0 inet dhcp
# Internet Interface
bridge-ports enp5s0f0
bridge-stp off
bridge-fd 0
# Tools Network
auto vmbr1
iface vmbr1 inet manual
# Rede Tools - 172.21.10.0/27
bridge-ports dummy1
bridge-stp off
bridge-fd 0
# WebPRD Network
auto vmbr2
iface vmbr2 inet manual
# Rede WebPRD - 172.21.20.0/27
bridge-ports dummy2
bridge-stp off
bridge-fd 0
# WebHML Network
auto vmbr3
iface vmbr3 inet manual
# Rede WebHML - 172.21.30.0/27
bridge-ports dummy3
bridge-stp off
bridge-fd 0
# Interface PrivateNetwork
# auto vmbr4
# iface vmbr4 inet static
# Rede VRack - NAO USAR
# address 192.168.0.10/31
# bridge-ports enp5s0f1
# bridge-stp off
# bridge-fd 0
# WebSites Network
auto vmbr5
iface vmbr5 inet manual
# Rede WebSites - 172.21.40.0/27
bridge-ports dummy4
bridge-stp off
bridge-fd 0
PVE01当前接口:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: enp5s0f0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master vmbr0 state UP group default qlen 1000
link/ether KK:KK:KK:KK:KK:KK brd ff:ff:ff:ff:ff:ff
3: enp5s0f1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master vmbr4 state UP group default qlen 1000
link/ether YY:YY:YY:YY:YY:YY brd ff:ff:ff:ff:ff:ff
4: vmbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether UU:UU:UU:UU:UU:UU brd ff:ff:ff:ff:ff:ff
inet 9.9.9.9/24 brd 9.9.9.255 scope global dynamic vmbr0
valid_lft 56089sec preferred_lft 56089sec
inet6 zz99::zz22:zzbb:zzhh:zzkk/64 scope link
valid_lft forever preferred_lft forever
5: vmbr1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether 2a:30:fb:a2:d2:f1 brd ff:ff:ff:ff:ff:ff
inet6 fe80::30c0:14ff:fea4:abfd/64 scope link
valid_lft forever preferred_lft forever
6: vmbr2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether 96:b3:67:f5:c3:cd brd ff:ff:ff:ff:ff:ff
inet6 fe80::a849:97ff:fe6c:14e9/64 scope link
valid_lft forever preferred_lft forever
7: vmbr3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether 5e:99:bd:90:12:24 brd ff:ff:ff:ff:ff:ff
inet6 fe80::e033:5fff:fe6d:222a/64 scope link
valid_lft forever preferred_lft forever
8: vmbr4: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether AA:AA:AA:AA:AA:AA brd ff:ff:ff:ff:ff:ff
inet6 fe80::a242:3fff:fe47:3cfb/64 scope link
valid_lft forever preferred_lft forever
9: tap201i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr1 state UNKNOWN group default qlen 1000
link/ether 2a:30:fb:a2:d2:f1 brd ff:ff:ff:ff:ff:ff
10: tap100i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr0 state UNKNOWN group default qlen 1000
link/ether 1a:61:72:52:5b:a0 brd ff:ff:ff:ff:ff:ff
11: tap100i1: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr1 state UNKNOWN group default qlen 1000
link/ether 56:16:5b:14:ce:e3 brd ff:ff:ff:ff:ff:ff
12: tap100i2: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether 96:b3:67:f5:c3:cd brd ff:ff:ff:ff:ff:ff
13: tap100i3: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr3 state UNKNOWN group default qlen 1000
link/ether 5e:99:bd:90:12:24 brd ff:ff:ff:ff:ff:ff
14: tap100i4: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr4 state UNKNOWN group default qlen 1000
link/ether ae:84:54:57:7f:46 brd ff:ff:ff:ff:ff:ff
15: tap203i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr1 state UNKNOWN group default qlen 1000
link/ether aa:dd:66:e9:fd:74 brd ff:ff:ff:ff:ff:ff
17: tap204i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr1 state UNKNOWN group default qlen 1000
link/ether ce:6b:9e:cb:ca:25 brd ff:ff:ff:ff:ff:ff
18: tap205i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr1 state UNKNOWN group default qlen 1000
link/ether f2:76:a3:12:48:da brd ff:ff:ff:ff:ff:ff
19: tap206i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr1 state UNKNOWN group default qlen 1000
link/ether be:92:f0:2e:54:2b brd ff:ff:ff:ff:ff:ff
21: tap402i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether 5a:4b:71:1c:b1:6e brd ff:ff:ff:ff:ff:ff
22: tap403i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether ba:0a:25:76:01:6e brd ff:ff:ff:ff:ff:ff
23: tap301i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr3 state UNKNOWN group default qlen 1000
link/ether 9e:2c:dd:7b:fb:8a brd ff:ff:ff:ff:ff:ff
24: tap302i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr3 state UNKNOWN group default qlen 1000
link/ether 6e:50:73:30:67:ae brd ff:ff:ff:ff:ff:ff
25: tap303i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr3 state UNKNOWN group default qlen 1000
link/ether ae:96:60:a4:bc:21 brd ff:ff:ff:ff:ff:ff
26: veth900i0@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr1 state UP group default qlen 1000
link/ether fe:92:fa:19:f1:93 brd ff:ff:ff:ff:ff:ff link-netnsid 0
29: tap304i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr3 state UNKNOWN group default qlen 1000
link/ether f2:14:af:70:17:42 brd ff:ff:ff:ff:ff:ff
31: tap404i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether 8e:3e:76:76:fb:29 brd ff:ff:ff:ff:ff:ff
32: tap401i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether e2:af:68:37:ed:7e brd ff:ff:ff:ff:ff:ff
33: dummy4: <BROADCAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr5 state UNKNOWN group default qlen 1000
link/ether c2:7e:27:1c:0c:af brd ff:ff:ff:ff:ff:ff
34: vmbr5: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether c2:7e:27:1c:0c:af brd ff:ff:ff:ff:ff:ff
inet6 fe80::c07e:27ff:fe1c:caf/64 scope link
valid_lft forever preferred_lft forever
35: tap100i5: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr5 state UNKNOWN group default qlen 1000
link/ether 92:cb:02:fe:5f:86 brd ff:ff:ff:ff:ff:ff
42: tap501i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr5 state UNKNOWN group default qlen 1000
link/ether 8a:80:41:55:95:0c brd ff:ff:ff:ff:ff:ff
49: tap202i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr1 state UNKNOWN group default qlen 1000
link/ether c6:2e:7c:40:b8:02 brd ff:ff:ff:ff:ff:ff
PVE02 网络配置:
# Server pag-02
# network interfaces
#
# Author: Gilberto Martins
# Creation: 06/08/2021
# ================================
auto lo
iface lo inet loopback
auto eno1
iface eno1 inet manual
auto eno2
iface eno2 inet manual
# Internet Interface
auto vmbr0
iface vmbr0 inet dhcp
# Interface externa - NAO USAR
bridge-ports eno1
bridge-stp off
bridge-fd 0
# Tools Network
auto vmbr1
iface vmbr1 inet manual
# Tools Network - 172.22.10.0/27
bridge-ports dummy1
bridge-stp off
bridge-fd 0
# DataBase Network
auto vmbr2
iface vmbr2 inet manual
# DataBase Network - 172.22.20.0/27
bridge-ports dummy2
bridge-stp off
bridge-fd 0
# VRack Network
# auto vmbr3
# iface vmbr3 inet static
# VRack Network
# address 192.168.0.11/31
# bridge-ports eno2
# bridge-stp off
# bridge-fd 0
PVE02当前接口:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master vmbr0 state UP group default qlen 1000
link/ether d0:50:99:fb:24:13 brd ff:ff:ff:ff:ff:ff
3: eno2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master vmbr3 state UP group default qlen 1000
link/ether d0:50:99:fb:24:12 brd ff:ff:ff:ff:ff:ff
4: enp0s20f0u8u3c2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000
link/ether 26:fc:24:e9:66:dc brd ff:ff:ff:ff:ff:ff
5: vmbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether RR:RR:RR:RR:RR:RR brd ff:ff:ff:ff:ff:ff
inet 4.4.4.4/24 brd 4.4.4.255 scope global dynamic vmbr0
valid_lft 73446sec preferred_lft 73446sec
inet6 fe80::d250:99ff:fefb:2413/64 scope link
valid_lft forever preferred_lft forever
6: vmbr1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether ba:32:c1:5c:c7:77 brd ff:ff:ff:ff:ff:ff
inet6 fe80::ccf5:5bff:fead:bf80/64 scope link
valid_lft forever preferred_lft forever
7: vmbr2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether 46:c7:8c:94:01:4b brd ff:ff:ff:ff:ff:ff
inet6 fe80::58d2:51ff:fe31:6516/64 scope link
valid_lft forever preferred_lft forever
8: vmbr3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether d0:50:99:fb:24:12 brd ff:ff:ff:ff:ff:ff
inet6 fe80::d250:99ff:fefb:2412/64 scope link
valid_lft forever preferred_lft forever
13: tap100i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr0 state UNKNOWN group default qlen 1000
link/ether 9a:de:c5:ba:40:80 brd ff:ff:ff:ff:ff:ff
14: tap100i1: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr1 state UNKNOWN group default qlen 1000
link/ether ba:32:c1:5c:c7:77 brd ff:ff:ff:ff:ff:ff
15: tap100i2: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether 46:c7:8c:94:01:4b brd ff:ff:ff:ff:ff:ff
16: tap100i3: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr3 state UNKNOWN group default qlen 1000
link/ether a2:e9:f1:ba:f1:a9 brd ff:ff:ff:ff:ff:ff
17: tap301i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether 66:ba:b1:22:e8:22 brd ff:ff:ff:ff:ff:ff
18: tap302i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether e2:f8:74:ad:e4:77 brd ff:ff:ff:ff:ff:ff
19: tap303i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether 3e:b1:f0:42:8d:75 brd ff:ff:ff:ff:ff:ff
20: tap304i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr2 state UNKNOWN group default qlen 1000
link/ether 52:7a:ec:b5:46:4b brd ff:ff:ff:ff:ff:ff
21: veth201i0@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master fwbr201i0 state UP group default qlen 1000
link/ether fe:0c:f2:09:62:fe brd ff:ff:ff:ff:ff:ff link-netnsid 0
22: fwbr201i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether ae:fd:8d:06:38:c5 brd ff:ff:ff:ff:ff:ff
23: fwpr201p0@fwln201i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr1 state UP group default qlen 1000
link/ether 52:58:a1:6d:db:00 brd ff:ff:ff:ff:ff:ff
24: fwln201i0@fwpr201p0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master fwbr201i0 state UP group default qlen 1000
link/ether ae:fd:8d:06:38:c5 brd ff:ff:ff:ff:ff:ff
PRD1FWL100 网络配置:
# This is the network config written by 'subiquity'
#
# Author: Gilberto Martins
# Modified: 03/19/2021
# ===============================
network:
ethernets:
# External IP
ens18:
# IP and Gateway have been intentionally changed
addresses:
- 1.1.1.1/32
gateway4: 1.1.1.254
# OVH mandatory routes
routes:
- to: 1.1.1.154/32
via: 1.1.1.1
- to: 0.0.0.0/0
via: 1.1.1.1
nameservers:
addresses:
- 172.21.10.2
search:
- kprd1
# Tools Network
ens19:
addresses:
- 172.21.10.1/27
# WebPrd Network
ens20:
addresses:
- 172.21.20.1/27
# WebHml Network
ens21:
addresses:
- 172.21.30.1/27
# Vrack Network (RFC 3021)
ens22:
addresses:
- 172.30.0.0/31
routes:
# Tools network at kprd2
- to: 172.22.10.0/27
via: 172.30.0.0
# Database network at kprd2
- to: 172.22.20.0/27
via: 172.30.0.0
# VRack <-> VRack
- to: 172.30.0.1
via: 172.30.0.0
# WebServer Network
ens23:
addresses:
- 172.21.50.1/27
version: 2
PRD1FWL100当前接口:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: ens18: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether XS:XS:XS:XS:XS:XS brd ff:ff:ff:ff:ff:ff
inet 9.9.9.9/32 scope global ens18
valid_lft forever preferred_lft forever
inet6 fe80::ff:fe41:b0ec/64 scope link
valid_lft forever preferred_lft forever
3: ens19: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 22:a9:69:cd:9a:08 brd ff:ff:ff:ff:ff:ff
inet 172.21.10.1/27 brd 172.21.10.31 scope global ens19
valid_lft forever preferred_lft forever
inet6 fe80::20a9:69ff:fecd:9a08/64 scope link
valid_lft forever preferred_lft forever
4: ens20: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 96:c5:9a:8e:13:0d brd ff:ff:ff:ff:ff:ff
inet 172.21.20.1/27 brd 172.21.20.31 scope global ens20
valid_lft forever preferred_lft forever
inet6 fe80::94c5:9aff:fe8e:130d/64 scope link
valid_lft forever preferred_lft forever
5: ens21: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 36:b2:5a:cc:a4:91 brd ff:ff:ff:ff:ff:ff
inet 172.21.30.1/27 brd 172.21.30.31 scope global ens21
valid_lft forever preferred_lft forever
inet6 fe80::34b2:5aff:fecc:a491/64 scope link
valid_lft forever preferred_lft forever
6: ens22: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 92:5b:ab:3c:75:2f brd ff:ff:ff:ff:ff:ff
inet 172.30.0.0/31 scope global ens22
valid_lft forever preferred_lft forever
inet6 fe80::905b:abff:fe3c:752f/64 scope link
valid_lft forever preferred_lft forever
7: ens23: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 9a:a2:c1:97:59:54 brd ff:ff:ff:ff:ff:ff
inet 172.21.50.1/27 brd 172.21.50.31 scope global ens23
valid_lft forever preferred_lft forever
inet6 fe80::98a2:c1ff:fe97:5954/64 scope link
valid_lft forever preferred_lft forever
8: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 100
link/none
inet 10.10.1.1/29 brd 10.10.1.7 scope global tun0
valid_lft forever preferred_lft forever
inet6 fe80::ece8:6abc:f8bd:d5f4/64 scope link stable-privacy
valid_lft forever preferred_lft forever
PRD1FWL100 当前路由表
注意:外部地址已被隐藏
user@prd1fwl100:~$ ip route
default via 9.9.9.9 dev ens18 proto static
10.10.1.0/29 dev tun0 proto kernel scope link src 10.10.1.1
9.9.9.9 via 8.8.8.8 dev ens18 proto static
172.21.10.0/27 dev ens19 proto kernel scope link src 172.21.10.1
172.21.20.0/27 dev ens20 proto kernel scope link src 172.21.20.1
172.21.30.0/27 dev ens21 proto kernel scope link src 172.21.30.1
172.21.50.0/27 dev ens23 proto kernel scope link src 172.21.50.1
172.22.10.0/27 via 172.30.0.0 dev ens22 proto static
172.22.20.0/27 via 172.30.0.0 dev ens22 proto static
172.30.0.1 via 172.30.0.0 dev ens22 proto static
user@prd1fwl100:~$ ip route show table local
broadcast 10.10.1.0 dev tun0 proto kernel scope link src 10.10.1.1
local 10.10.1.1 dev tun0 proto kernel scope host src 10.10.1.1
broadcast 10.10.1.7 dev tun0 proto kernel scope link src 10.10.1.1
broadcast 127.0.0.0 dev lo proto kernel scope link src 127.0.0.1
local 127.0.0.0/8 dev lo proto kernel scope host src 127.0.0.1
local 127.0.0.1 dev lo proto kernel scope host src 127.0.0.1
broadcast 127.255.255.255 dev lo proto kernel scope link src 127.0.0.1
local 9.9.9.9 dev ens18 proto kernel scope host src 9.9.9.9
broadcast 172.21.10.0 dev ens19 proto kernel scope link src 172.21.10.1
local 172.21.10.1 dev ens19 proto kernel scope host src 172.21.10.1
broadcast 172.21.10.31 dev ens19 proto kernel scope link src 172.21.10.1
broadcast 172.21.20.0 dev ens20 proto kernel scope link src 172.21.20.1
local 172.21.20.1 dev ens20 proto kernel scope host src 172.21.20.1
broadcast 172.21.20.31 dev ens20 proto kernel scope link src 172.21.20.1
broadcast 172.21.30.0 dev ens21 proto kernel scope link src 172.21.30.1
local 172.21.30.1 dev ens21 proto kernel scope host src 172.21.30.1
broadcast 172.21.30.31 dev ens21 proto kernel scope link src 172.21.30.1
broadcast 172.21.50.0 dev ens23 proto kernel scope link src 172.21.50.1
local 172.21.50.1 dev ens23 proto kernel scope host src 172.21.50.1
broadcast 172.21.50.31 dev ens23 proto kernel scope link src 172.21.50.1
local 172.30.0.0 dev ens22 proto kernel scope host src 172.30.0.0
PRD2FWL100 网络配置:
# This file is generated from information provided by the datasource. Changes
# to it will not persist across an instance reboot. To disable cloud-init's
# network configuration capabilities, write a file
# /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg with the following:
# network: {config: disabled}
network:
version: 2
ethernets:
# Internet interface
eth0:
# Sensitive addressing information have been intentionally changed
addresses:
- 3.3.3.3/32
gateway4: 3.3.3.254
match:
macaddress: XX:XX:XX:XX:XX:XX
# OVH mandatory routes
routes:
- to: 3.3.3.3/32
via: 3.3.3.8
- to: 0.0.0.0/0
via: 3.3.3.8
nameservers:
addresses:
- 172.22.10.2
search:
- kprd2
set-name: eth0
# Tools interface
eth1:
addresses:
- 172.22.10.1/27
match:
macaddress: 6a:6d:d1:0a:de:10
nameservers:
addresses:
- 172.22.10.2
search:
- kprd2
set-name: eth1
# Database interface
eth2:
addresses:
- 172.22.20.1/27
match:
macaddress: aa:89:70:41:ed:22
set-name: eth2
# VRack Network
eth3:
addresses:
- 172.30.0.1/31
match:
macaddress: ZZ:ZZ:ZZ:ZZ:ZZ:ZZ
routes:
# Tools network at kprd1
- to: 172.21.10.0/27
via: 172.30.0.1
# WebPrd network at kprd1
- to: 172.21.20.0/27
via: 172.30.0.1
# WebHml network at kprd1
- to: 172.21.30.0/27
via: 172.30.0.1
# WebServer network at kprd1
- to: 172.21.50.0/27
via: 172.30.0.1
# VRack <-> VRack
- to: 172.30.0.0
via: 172.30.0.1
set-name: eth3
PRD2FWL100当前接口:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether FE:FE:FE:FE:FE brd ff:ff:ff:ff:ff:ff
inet 7.7.7.7/32 scope global eth0
valid_lft forever preferred_lft forever
inet6 fe80::ff:fe92:ec0/64 scope link
valid_lft forever preferred_lft forever
3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 6a:6d:d1:0a:de:10 brd ff:ff:ff:ff:ff:ff
inet 172.22.10.1/27 brd 172.22.10.31 scope global eth1
valid_lft forever preferred_lft forever
inet6 fe80::686d:d1ff:fe0a:de10/64 scope link
valid_lft forever preferred_lft forever
4: eth2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether aa:89:70:41:ed:22 brd ff:ff:ff:ff:ff:ff
inet 172.22.20.1/27 brd 172.22.20.31 scope global eth2
valid_lft forever preferred_lft forever
inet6 fe80::a889:70ff:fe41:ed22/64 scope link
valid_lft forever preferred_lft forever
5: eth3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether d6:9f:c5:e4:93:9d brd ff:ff:ff:ff:ff:ff
inet 172.30.0.1/31 scope global eth3
valid_lft forever preferred_lft forever
inet6 fe80::d49f:c5ff:fee4:939d/64 scope link
valid_lft forever preferred_lft forever
6: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN group default qlen 100
link/none
inet 10.10.2.1/29 brd 10.10.2.7 scope global tun0
valid_lft forever preferred_lft forever
inet6 fe80::d63:c98b:2e1:ad3d/64 scope link stable-privacy
valid_lft forever preferred_lft forever
PRD2FWL100 路由表
注意:外部地址已被隐藏
user@prd2fwl100:~$ ip route
default via 144.217.125.8 dev eth0 proto static
10.10.2.0/29 dev tun0 proto kernel scope link src 10.10.2.1
9.9.9.9 via 8.8.8.8 dev eth0 proto static
172.21.10.0/27 via 172.30.0.1 dev eth3 proto static
172.21.20.0/27 via 172.30.0.1 dev eth3 proto static
172.21.30.0/27 via 172.30.0.1 dev eth3 proto static
172.21.50.0/27 via 172.30.0.1 dev eth3 proto static
172.22.10.0/27 dev eth1 proto kernel scope link src 172.22.10.1
172.22.20.0/27 dev eth2 proto kernel scope link src 172.22.20.1
172.30.0.0 via 172.30.0.1 dev eth3 proto static
user@prd2fwl100:~$ ip route show table local
broadcast 10.10.2.0 dev tun0 proto kernel scope link src 10.10.2.1
local 10.10.2.1 dev tun0 proto kernel scope host src 10.10.2.1
broadcast 10.10.2.7 dev tun0 proto kernel scope link src 10.10.2.1
broadcast 127.0.0.0 dev lo proto kernel scope link src 127.0.0.1
local 127.0.0.0/8 dev lo proto kernel scope host src 127.0.0.1
local 127.0.0.1 dev lo proto kernel scope host src 127.0.0.1
broadcast 127.255.255.255 dev lo proto kernel scope link src 127.0.0.1
local 8.8.8.8 dev eth0 proto kernel scope host src 8.8.8.8
broadcast 172.22.10.0 dev eth1 proto kernel scope link src 172.22.10.1
local 172.22.10.1 dev eth1 proto kernel scope host src 172.22.10.1
broadcast 172.22.10.31 dev eth1 proto kernel scope link src 172.22.10.1
broadcast 172.22.20.0 dev eth2 proto kernel scope link src 172.22.20.1
local 172.22.20.1 dev eth2 proto kernel scope host src 172.22.20.1
broadcast 172.22.20.31 dev eth2 proto kernel scope link src 172.22.20.1
local 172.30.0.1 dev eth3 proto kernel scope host src 172.30.0.1
PRD1FRM206 网络配置:
# This file is generated from information provided by the datasource. Changes
# to it will not persist across an instance reboot. To disable cloud-init's
# network configuration capabilities, write a file
# /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg with the following:
# network: {config: disabled}
network:
version: 2
ethernets:
eth0:
addresses:
- 172.21.10.7/27
gateway4: 172.21.10.1
match:
macaddress: ca:7a:03:34:a0:43
nameservers:
addresses:
- 172.21.10.2
search:
- kprd1
set-name: eth0
PRD2FRM201 网络配置:
PRD2FRM201 是一个 LXC 主机,在 ProxMox 具有以下配置:
- IP 172.22.10.2/27
- 网关 172.22.10.1
- 网桥 vmbr1
通讯测试:
从 PRD2FWL100,我可以 ping PRD1FRM206 之前的所有跃点:
user@prd2fwl100:~$ ping 172.30.0.0 -c1
PING 172.30.0.0 (172.30.0.0) 56(84) bytes of data.
64 bytes from 172.30.0.0: icmp_seq=1 ttl=64 time=0.671 ms
--- 172.30.0.0 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 0.671/0.671/0.671/0.000 ms
user@prd2fwl100:~$ ping 172.21.10.1 -c1
PING 172.21.10.1 (172.21.10.1) 56(84) bytes of data.
64 bytes from 172.21.10.1: icmp_seq=1 ttl=64 time=0.822 ms
--- 172.21.10.1 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 0.822/0.822/0.822/0.000 ms
但我无法 ping 或 arping PRD1FRM206:
user@prd2fwl100:~$ ping 172.21.10.7 -c1
PING 172.21.10.7 (172.21.10.7) 56(84) bytes of data.
From 172.30.0.1 icmp_seq=1 Destination Host Unreachable
--- 172.21.10.7 ping statistics ---
1 packets transmitted, 0 received, +1 errors, 100% packet loss, time 0ms
user@prd2fwl100:~$ arping 172.21.10.7 -c1
ARPING 172.21.10.7 from 172.30.0.1 eth3
Sent 1 probes (1 broadcast(s))
Received 0 response(s)
接下来,我将尝试 ping 从 PRD2FRM201 到 PRD1FRM206 的所有 IP:
user@PRD2FRM201:~$ sudo ping 172.22.10.1 -c1
PING 172.22.10.1 (172.22.10.1) 56(84) bytes of data.
64 bytes from 172.22.10.1: icmp_seq=1 ttl=64 time=0.134 ms
--- 172.22.10.1 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 0.134/0.134/0.134/0.000 ms
user@PRD2FRM201:~$ sudo ping 172.30.0.1 -c1
PING 172.30.0.1 (172.30.0.1) 56(84) bytes of data.
64 bytes from 172.30.0.1: icmp_seq=1 ttl=64 time=0.159 ms
--- 172.30.0.1 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 0.159/0.159/0.159/0.000 ms
同样,有一个地方我不能更进一步:
user@PRD2FRM201:~$ sudo ping 172.30.0.0 -c1
PING 172.30.0.0 (172.30.0.0) 56(84) bytes of data.
--- 172.30.0.0 ping statistics ---
1 packets transmitted, 0 received, 100% packet loss, time 0ms
user@PRD2FRM201:~$ sudo arping 172.30.0.0 -c1
ARPING 172.30.0.0 from 172.22.10.2 eth0
Sent 1 probes (1 broadcast(s))
Received 0 response(s)
我必须做什么才能解决这个问题?
我正在尝试将正确的日期和时间放在带有 ubuntu 的 Proxmox LXC 容器上,但我不能。我的服务器有一些信息。
➜ ~ cat /etc/os-release
NAME="Ubuntu"
VERSION="20.04.1 LTS (Focal Fossa)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 20.04.1 LTS"
VERSION_ID="20.04"
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
VERSION_CODENAME=focal
UBUNTU_CODENAME=focal
日期和时间不是周:
➜ / date
Fri Apr 19 09:15:17 CEST 2019
➜ / timedatectl status
Local time: Fri 2019-04-19 09:15:27 CEST
Universal time: Fri 2019-04-19 07:15:27 UTC
RTC time: n/a
Time zone: Europe/Madrid (CEST, +0200)
System clock synchronized: no
NTP service: n/a
RTC in local TZ: no
➜ / sudo hwclock --hctosys --verbose
hwclock from util-linux 2.34
System Time: 1555659408.378273
Trying to open: /dev/rtc0
Trying to open: /dev/rtc
Trying to open: /dev/misc/rtc
No usable clock interface found.
hwclock: Cannot access the Hardware Clock via any known method.
当我尝试更新软件包存储库时,出现此错误:
/ apt update
Hit:1 http://archive.ubuntu.com/ubuntu focal InRelease
Get:2 http://archive.ubuntu.com/ubuntu focal-updates InRelease [114 kB]
Get:3 http://archive.ubuntu.com/ubuntu focal-security InRelease [114 kB]
Reading package lists... Done
E: Release file for http://archive.ubuntu.com/ubuntu/dists/focal/InRelease is not valid yet (invalid for another 370d 10h 17min 57s). Updates for this repository will not be applied.
E: Release file for http://archive.ubuntu.com/ubuntu/dists/focal-updates/InRelease is not valid yet (invalid for another 998d 2h 18min 54s). Updates for this repository will not be applied.
E: Release file for http://archive.ubuntu.com/ubuntu/dists/focal-security/InRelease is not valid yet (invalid for another 998d 2h 18min 20s). Updates for this repository will not be applied.
任何人都可以帮助我吗?
谢谢,
(crosspost:网络堆栈交换)
我有一个通过 WiFi 连接的 Proxmox 设置。一切都适合我的需求和 IPv4 连接。
现在,我想看看是否可以进行一些 DHCPv6 设置,以便我的虚拟机也具有 IPv6 地址。我更喜欢没有 NAT 的设置,但这不是强制性的。
我正在考虑 IPv6 连接的几个选项:
- 国庆节代理。这个感觉是最“透明”的,我会从与主机相同的网络获取一个公有的IPv6地址,也就是主abcd:abcd:abcd:FFFF::/64网络。
- DHCPv6 网络。我的路由器有 DHCPv6,我可以让我的 Proxmox 实例请求一个网络用于其内部网桥(使用前缀委托)。我目前正在将 dnsmasq 用于虚拟机的 IPv4 地址,但我相信我可以用其他东西替换它。
- NAT。我不想要这个选项,但我也不会完全拒绝它。我不能将 Proxmox 桥接器以桥接模式连接到我的 LAN(这会使事情变得容易得多)的原因是我无法引入有线连接,所以我必须使用 WiFi(幸好至少它是 5 GHz并且大部分时间不需要太多流量)并且WiFi客户端不支持网桥。
所以这是我的建议请求。先感谢您。
编辑:作为我的选择来前缀委托。还没有完全完成。现在解决问题:
- 我获得了 IPv6 前缀的委托,Proxmox 服务器获得了 /62
- 在我启用了 radvd 的服务器上,它正确地向 VM 的内部 LAN 广播
- 虚拟机,一个带有 NetworkManager 的 Ubuntu 20.04,正在获取路由器广告,甚至自动配置默认路由。但是,它不会自动配置 IPv6 地址,这会导致在尝试 ping IPv6 地址时出现“无法访问的目标:超出源地址范围”的意外问题。如果我手动执行“ip aa dev ens18 2001:db8:facb:9876::23:2918/62”它可以工作(路由是 2001:db8:facb:9874::/62 加上默认路由)。
radvdump 输出:
{
AdvSendAdvert on;
# Note: {Min,Max}RtrAdvInterval cannot be obtained with radvdump
AdvManagedFlag off;
AdvOtherConfigFlag off;
AdvReachableTime 0;
AdvRetransTimer 0;
AdvCurHopLimit 64;
AdvDefaultLifetime 300;
AdvHomeAgentFlag off;
AdvDefaultPreference medium;
AdvSourceLLAddress on;
prefix fde1:d59a:7fa7:8::/62
{
AdvValidLifetime 86400;
AdvPreferredLifetime 14400;
AdvOnLink on;
AdvAutonomous on;
AdvRouterAddr on;
}; # End of prefix definition
prefix 2001:db8:facb:9874::/62
{
AdvValidLifetime 86400;
AdvPreferredLifetime 14400;
AdvOnLink on;
AdvAutonomous on;
AdvRouterAddr on;
}; # End of prefix definition
prefix fde1:d59a:7fa7:8::/62
{
AdvValidLifetime 86400;
AdvPreferredLifetime 14400;
AdvOnLink on;
AdvAutonomous on;
AdvRouterAddr on;
}; # End of prefix definition
prefix 2001:db8:facb:9874::/62
{
AdvValidLifetime 86400;
AdvPreferredLifetime 14400;
AdvOnLink on;
AdvAutonomous on;
AdvRouterAddr on;
}; # End of prefix definition
route ::/0
{
AdvRoutePreference medium;
AdvRouteLifetime 300;
}; # End of route definition
}; # End of interface definition
RADVD 配置:
interface vmbr0 {
AdvSendAdvert on;
MinRtrAdvInterval 30;
MaxRtrAdvInterval 100;
AdvSourceLLAddress on;
prefix ::/64 {
AdvOnLink on;
AdvAutonomous on;
AdvRouterAddr on;
Base6Interface vmbr0;
};
route ::/0 {
};
};
(vmbr0 的 IPv6 地址已正确配置)
我有一个具有以下设置的家庭实验室:
NAS (QNAP TS-453D) <─usb─ UPS (CyberPower VP1000ELCD)
|
ethernet
└> Proxmox Server
NAS 是 UPS 主机,配置为在 AC 故障 5 分钟后关机。 NAS ups配置
Proxmox 服务器是一个 NUT 从站,具有以下配置:
cat /etc/nut/upsmon.conf | grep -v ^\# | grep .
MONITOR [email protected] 1 admin 123456 slave
MINSUPPLIES 1
SHUTDOWNCMD "/sbin/shutdown -h +0"
POLLFREQ 5
POLLFREQALERT 5
HOSTSYNC 15
DEADTIME 15
POWERDOWNFLAG /etc/killpower
RBWARNTIME 43200
NOCOMMWARNTIME 300
FINALDELAY 5
当 NAS 重新启动以进行更新时,proxmox 服务器断电,这不是我想要的,我不知道如何区分更新的断电和 AC 失败的断电。我是否使用了错误的设置/配置?我应该以不同的方式连接东西吗?
谢谢!