{"id":432,"date":"2018-03-14T16:15:25","date_gmt":"2018-03-14T08:15:25","guid":{"rendered":"http:\/\/www.max-shu.com\/blog\/?p=432"},"modified":"2018-03-14T16:16:09","modified_gmt":"2018-03-14T08:16:09","slug":"%e9%98%bf%e9%87%8c%e4%ba%91ecs%e4%b8%bb%e6%9c%ba%e5%92%8cvpc%e9%99%90%e5%88%b6","status":"publish","type":"post","link":"http:\/\/www.max-shu.com\/blog\/?p=432","title":{"rendered":"\u963f\u91cc\u4e91ECS\u4e3b\u673a\u548cVPC\u9650\u5236"},"content":{"rendered":"<div><b>VPC\u865a\u62df\u4e13\u6709\u7f51\u7684\u5751\uff1a<\/b><\/div>\n<div>a. \u516c\u7f51SLB\u91cc\u9762\u7684\u76d1\u542c\u7aef\u53e3\u9700\u8981\u914d\u7f6e\u5cf0\u503c\u5e26\u5bbd\uff0c\u867d\u7136\u8981\u6c42\u6240\u6709\u76d1\u542c\u7aef\u53e3\u7684\u5cf0\u503c\u5e26\u5bbd\u603b\u548c\u4e0d\u5927\u4e8e\u8d2d\u4e70\u5e26\u5bbd\u662f\u5408\u7406\u7684\uff0c\u4f46\u662f\u6ca1\u6cd5\u81ea\u7531\u5206\u914d\u8fd9\u4e2a\u5e26\u5bbd\uff0c\u6bcf\u4e2a\u76d1\u542c\u5fc5\u987b\u5355\u72ec\u8bbe\u7f6e\uff0c\u5b9e\u9645\u4e0a\u5c31\u51cf\u5c11\u4e86\u5e26\u5bbd\u5229\u7528\u7387\u548c\u7075\u6d3b\u6027\u3002<\/div>\n<div>b. \u4e70\u4e86\u516c\u7f51SLB\uff0c\u6ca1\u4e70EIP\u6765\u7ed1\u5b9a\u5230vpc\u7684ecs\u4e3b\u673a\u4e0a\uff0c\u5219ecs\u4e3b\u673a\u65e0\u6cd5\u8bbf\u95ee\u5916\u7f51\u3002<\/div>\n<div>c. \u4e70\u4e86EIP\u7ed1\u5b9a\u67d0\u4e2aecs\u4e3b\u673aA\u540e\uff0cA\u53ef\u4ee5\u76f4\u63a5\u8bbf\u95ee\u5916\u7f51\uff0c\u4f46\u662f\u5176\u4ed6ecs\u4e3b\u673a\u8981\u8bbf\u95ee\u5916\u7f51\u7684\u8bdd\uff0c\u8fd8\u9700\u8981\u914d\u7f6evpc\u7684\u8def\u7531\u5668\u6765\u8def\u7531\u5176\u4ed6ecs\u4e3b\u673a\u76840.0.0.0\u5230A\u4e3b\u673a\uff0c\u7136\u540eA\u4e3b\u673a\u4e0a\u8bbe\u7f6eSNAT\u53bb\u8bbf\u95ee\u5916\u7f51\uff08\u8bbf\u95ee\u5916\u7f51\u7684\u5e26\u5bbd\u5c31\u7531A\u4e3b\u673a\u7684\u8fd9\u4e2aEIP\u51b3\u5b9a\u4e86\uff09\uff0c\u914d\u7f6e\u65b9\u6cd5\u5982\u4e0b\uff1a<\/div>\n<div>\u9996\u5148\uff0c\u5728\u4e13\u6709\u7f51\u7684\u8def\u7531\u5668\u4e0a\u914d\u7f6e\u4e00\u6761\u9ed8\u8ba4\u8def\u7531\uff0c\u5b83\u7684\u4e0b\u4e00\u8df3\u4e3aA\u4e3b\u673a\u7684\u5b9e\u4f8bID\uff1a<\/div>\n<div><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-434\" src=\"http:\/\/www.max-shu.com\/blog\/wp-content\/uploads\/2018\/03\/6631977061815956807.jpg\" alt=\"\" width=\"750\" height=\"136\" \/><\/div>\n<div><\/div>\n<div>\u00a0\u5176\u6b21\uff0c\u5728A\u4e3b\u673a\u4e0a\u914d\u7f6eSNAT\uff08\u8fd9\u91cc\u662f\u8ba9\u4e0a\u9762vpc\u91cc\u9762\u768410.10.11.0\/24\u8fd9\u4e2a\u7f51\u6bb5\u7684\u670d\u52a1\u5668\u80fd\u8bbf\u95ee\u5916\u7f51\uff0c10.10.10.0\/24\u8fd9\u4e2a\u7f51\u6bb5\u8fd8\u662f\u4e0d\u80fd\u8bbf\u95ee\u5916\u7f51\uff09\uff1a<\/div>\n<div>$ sudo firewall-cmd \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0&#8211;zone=public &#8211;add-masquerade<\/div>\n<div>$ sudo firewall-cmd &#8211;permanent &#8211;zone=public &#8211;add-masquerade<\/div>\n<div>$ sudo firewall-cmd\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 &#8211;zone=public &#8211;add-rich-rule &#8216;rule family=&#8221;ipv4&#8243; source address=10.10.11.0\/24 masquerade&#8217;<\/div>\n<div>$ sudo firewall-cmd &#8211;permanent &#8211;zone=public &#8211;add-rich-rule &#8216;rule family=&#8221;ipv4&#8243; source address=10.10.11.0\/24 masquerade&#8217;<\/div>\n<div>$ sudo firewall-cmd\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 &#8211;zone=public &#8211;list-all<\/div>\n<div>$ sudo firewall-cmd &#8211;permanent &#8211;zone=public &#8211;list-all<\/div>\n<div>\u518d\u6b21\uff1a\u5728A\u4e3b\u673a\u914d\u7f6e\u524d\u8f6c\uff1a<\/div>\n<div>$ sudo vi \/etc\/sysctl.conf<\/div>\n<div>net.ipv4.ip_forward = 1<\/div>\n<div>$ sudo sysctl -p<\/div>\n<div><\/div>\n<div><b><span style=\"font-size: large;\">\u963f\u91cc\u4e91\u5f52\u6863\u5b58\u50a8adup\u811a\u672c\u4e0d\u80fd\u4f7f\u7528\u3002<\/span><\/b><\/div>\n<div><\/div>\n<div><b>\u963f\u91cc\u4e91\u4e3b\u673aCentOS7.x\u9650\u5236\uff1a<\/b><\/div>\n<div>a. \u7cfb\u7edf\u76d8\u53ea\u6709\u6839\u5206\u533a\uff0c\u6ca1\u6709\u5176\u4ed6\u5206\u533a\u3002<\/div>\n<div>b. \u4e3b\u673a\u540d\u65e0\u6cd5\u6c38\u4e45\u4fee\u6539\uff0c\u65e0\u8bba\u662fhostname\u547d\u4ee4\u3001\/etc\/sysconfig\/network\u3001\/etc\/hosts\uff0c\u91cd\u542f\u540e\u90fd\u4f1a\u91cd\u7f6e\u4e3a\u6700\u521d\u7684\u3002<\/div>\n<div>c. \u6ca1\u6709swap\u5206\u533a\u3002<\/div>\n<div>d. \u9632\u706b\u5899\u9ed8\u8ba4\u5173\u95ed\uff0c\u4f46\u662f\u53ef\u4ee5\u4ece\u63a7\u5236\u53f0\u5f00\u542f\u548c\u8bbe\u7f6e\u89c4\u5219\uff0c\u81ea\u5df1\u5f00\u542f\u4e5f\u884c\uff1asudo systemctl start firewalld\u3002<\/div>\n<div>e. \u5b89\u5168\u7ec4\u9ed8\u8ba4\u4e3a\u51fa\u5165\u53e3\u5168\u5f00\u542f\uff0c\u4e0d\u5b89\u5168\u3002<\/div>\n<div>f. \u7f51\u53e3\u53ea\u67091\u4e2aeth0\u3002<\/div>\n<div>g. \u9664\u4e86\u963f\u91cc\u81ea\u5df1\u7684\u51e0\u4e2a\u670d\u52a1\uff0c\u5176\u4ed6\u53ea\u6700\u5c0f\u5316\u5b89\u88c5\u3002<\/div>\n<div>h. ip\u4e3adhcp\u65b9\u5f0f\uff0cdns\u4e3a\u963f\u91cc\u81ea\u5df1\u7684\u3002<\/div>\n<div>i. \u6570\u636e\u76d8\u5fc5\u987b\u81ea\u5df1\u5206\u533a\u3001\u683c\u5f0f\u5316\u548c\u6302\u8f7d\u3002<\/div>\n<div>j. ntp\u5df2\u7ecf\u8bbe\u7f6e\uff0c\u65f6\u533a\u4e3a+8\u533a\uff0c\u65e0\u9700\u8003\u8651\u3002<\/div>\n<div>k. \u9ed8\u8ba4\u5173\u95ed\u4e86selinux\u3002<\/div>\n<div>l. 4G\u4ee5\u4e0a\u5185\u5b58\u9ed8\u8ba4\u9009\u62e9\u4e8664\u4f4dOS\u3002<\/div>\n<div>m. \u4e0d\u652f\u6301\u518d\u6b21\u865a\u62df\u5316\u3002<\/div>\n<div>n. \u4e0d\u652f\u6301\u591a\u64ad\u3001\u7ec4\u64ad\u534f\u8bae\u3002<\/div>\n<div>o. \u4e0d\u80fd\u5f00\u542fNetworkManager\u670d\u52a1\u3002<\/div>\n<div>p. \u4e0d\u80fd\u4fee\u6539\/etc\/issue\u5185\u5bb9\u3002<\/div>\n<div>q. \u5185\u7f51\u5e26\u5bbd\u4e0d\u8d85\u8fc75Gbps\uff08\u7269\u7406\u673a\u4f30\u8ba1\u662f\u4e07\u5146\u7f51\u5361\uff09\u3002<\/div>\n<div>r. ulimit -a \u6709\u4e9b\u9879\u9650\u5236\u6709\u70b9\u5c0f\uff0c\u9700\u8981\u81ea\u5df1\u52a0\u5927\u3002<\/div>\n<div><\/div>\n","protected":false},"excerpt":{"rendered":"<p>VPC\u865a\u62df\u4e13\u6709\u7f51\u7684\u5751\uff1a a. \u516c\u7f51SLB\u91cc\u9762\u7684\u76d1\u542c\u7aef\u53e3\u9700\u8981\u914d\u7f6e\u5cf0\u503c\u5e26\u5bbd\uff0c\u867d\u7136\u8981\u6c42\u6240\u6709\u76d1\u542c\u7aef\u53e3\u7684\u5cf0\u503c\u5e26\u5bbd\u603b\u548c\u4e0d\u5927 &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[370,372,369,371,368,373],"class_list":["post-432","post","type-post","status-publish","format-standard","hentry","category-4","tag-ecs","tag-slb","tag-vpc","tag-371","tag-368","tag-373"],"views":1784,"_links":{"self":[{"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/432","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=432"}],"version-history":[{"count":2,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/432\/revisions"}],"predecessor-version":[{"id":435,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/432\/revisions\/435"}],"wp:attachment":[{"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=432"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=432"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=432"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}