Usoro RHCE: Otu esi ahazi ma nwalee ụzọ netwọkụ Static - Nkebi nke 1

RHCE (Red Hat Certified Engineer) bụ asambodo sitere na ụlọ ọrụ Red Hat, nke na-enye ndị ụlọ ọrụ sistemụ mepere emepe na ngwanrọ, Ọ na-enyekwa ọzụzụ, nkwado na ndụmọdụ maka ụlọ ọrụ.

RHCE a (Red Hat Certified Engineer) bụ ule dabere na arụmọrụ (codename EX300), onye nwere ikike, ihe ọmụma, na ikike ndị ọzọ achọrọ n'aka onye isi sistemụ na-ahụ maka sistemụ Red Hat Enterprise Linux (RHEL).

Ihe dị mkpa: Onye na-ahụ maka sistemụ na-ahụ maka okpu uhie uhie (RHCSA) chọrọ asambodo iji nweta asambodo RHCE.

Ndị a bụ ebumnuche ule dabere na ụdị ule Red Hat Enterprise Linux 7, nke ga-ekpuchi n'usoro RHCE a:

Ka ilele ụgwọ na debanye aha maka ule na obodo gị, lelee ibe Asambodo RHCE.

N'ime akụkụ 1 nke usoro RHCE na nke na-esote, anyị ga-ewepụta ikpe ndị bụ isi, ma ọ bụ nke a na-ahụkarị ebe ụkpụrụ nke ntụgharị ụzọ kwụ ọtọ, nzacha ngwugwu, na ntụgharị asụsụ netwọkụ na-abata.

Biko mara na anyị agaghị ekpuchi ha na omimi, kama hazie ọdịnaya ndị a n'ụzọ ga-enyere gị aka ịme nzọụkwụ mbụ wee wuo ebe ahụ.

Static Routing na Red Hat Enterprise Linux 7

Otu n'ime ihe ịtụnanya dị na ịkparịta ụka n'Ịntanet nke oge a bụ nnukwu ngwaọrụ nwere ike jikọọ otu kọmputa, ma ọ bụ na ọnụ ọgụgụ dị ntakịrị ma kpọchie ya n'otu ọnụ ụlọ ma ọ bụ ọtụtụ igwe n'otu ụlọ, obodo, obodo, ma ọ bụ n'ofe kọntinent.

Otú ọ dị, iji mezuo nke a nke ọma n'ọnọdụ ọ bụla, ọ dị mkpa ka a kwatuo ngwugwu netwọk, ma ọ bụ n'ikwu ya n'ụzọ ọzọ, a ga-achịrịrị ụzọ ha na-eso site na isi iyi ruo ebe.

Ntugharị kwụ ọtọ bụ usoro nke ịkọwa ụzọ maka ngwugwu netwọkụ na-abụghị nke ndabara, nke ngwaọrụ netwọk mara dị ka ọnụ ụzọ ndabara nyere. Ọ gwụla ma akọwapụtara n'ụzọ ọzọ site na ntugharị kwụ ọtọ, ngwugwu netwọk na-eduga n'ọnụ ụzọ ndabara; site na iji ụzọ kwụ ọtọ, a kọwapụtara ụzọ ndị ọzọ dabere na njirisi akọpụtagoro, dị ka ebe ngwungwu.

Ka anyị kọwapụta ọnọdụ ndị a maka nkuzi a. Anyị nwere igbe Linux Red Hat Enterprise jikọtara na rawụta #1 [192.168.0.1] iji nweta ịntanetị na igwe na 192.168.0.0/24.

Nke abụọ rawụta (router #2) nwere abụọ netwọk interface kaadị: enp0s3 na-ejikọta ya na rawụta #1 iji nweta ịntanetị na iji kparịta ụka na igbe RHEL 7 na igwe ndị ọzọ na otu netwọk ahụ, ebe nke ọzọ (enp0s8) na-eji. inye ohere ịnweta netwọkụ 10.0.0.0/24 ebe ọrụ dị n'ime, dị ka webụ na/ma ọ bụ ihe nkesa nchekwa data.

E gosipụtara ihe atụ a na eserese dị n'okpuru:

N'isiokwu a, anyị ga-elekwasị anya naanị n'ịtọbe tebụl ntụgharị na igbe RHEL 7 anyị iji jide n'aka na ọ nwere ike ịnweta ịntanetị site na rawụta #1 yana netwọk dị n'ime site na rawụta #2.

Na RHEL 7, ị ga-eji iwu ip hazie ma gosipụta ngwaọrụ na ịkwọgharị site na iji ahịrị iwu. Mgbanwe ndị a nwere ike ịmalite ozugbo na sistemụ na-agba ọsọ mana ebe ọ bụ na ha anaghị adịgide gafee reboots, anyị ga-eji ifcfg-enp0sX na ụzọ-enp0sX faịlụ n'ime /etc/sysconfig/network-scripts iji chekwaa nhazi anyị kpamkpam.

Iji bido, ka anyị bipụta tebụl ntugharị ụzọ anyị ugbu a:

# ip route show

Site na nsonaazụ dị n'elu, anyị nwere ike ịhụ eziokwu ndị a:

Adreesi IP gate ụzọ ndabara bụ 192.168.0.1 ma enwere ike ịnweta ya site na enp0s3 NIC.
N'ikpeazụ, ma ọ dịghị ihe ọzọ, anyị nwere ike ịkparịta ụka na igbe ndị ọzọ dị n'ime netwọk 192.168.0.0/24 site na enp0s3, onye adreesị IP ya bụ 192.168.0.18.

Ndị a bụ ọrụ a na-ahụkarị nke ị ga-arụ na ntọala dị otú ahụ. Ọ gwụla ma akọwapụtara ya ọzọ, aga-arụ ọrụ ndị a na rawụta #2:

Gbaa mbọ hụ na etinyela NIC niile nke ọma:

# ip link show

Ọ bụrụ na otu n'ime ha dara, weta ya:

# ip link set dev enp0s8 up

ma kenye adreesị IP na netwọk 10.0.0.0/24 na ya:

# ip addr add 10.0.0.17 dev enp0s8

Ee! Anyị mehiere na adreesị IP. Anyị ga-ewepụ nke anyị kenyere mbụ wee tinye nke ziri ezi (10.0.0.18):

# ip addr del 10.0.0.17 dev enp0s8
# ip addr add 10.0.0.18 dev enp0s8

Ugbu a, biko mara na ị nwere ike tinye naanị ụzọ na netwọk ebe ị na-aga site na ọnụ ụzọ ámá nke nwere ike iru. Maka nke ahụ, anyị kwesịrị ịnye adreesị IP n'ime 192.168.0.0/24 na enp0s3 ka igbe RHEL 7 anyị nwee ike ikwurịta okwu na ya:

# ip addr add 192.168.0.19 dev enp0s3

N'ikpeazụ, anyị ga-eme ka mbugharị ngwugwu:

# echo "1" > /proc/sys/net/ipv4/ip_forward

ma kwụsị/gbanyụọ (naanị maka oge a - ruo mgbe anyị kpuchie nzacha ngwugwu n'isiokwu na-esote) firewall:

# systemctl stop firewalld
# systemctl disable firewalld

Laghachi na igbe RHEL 7 anyị (192.168.0.18), ka anyị hazie ụzọ gaa na 10.0.0.0/24 ruo 192.168.0.19 (enp0s3 na rawụta #2):

# ip route add 10.0.0.0/24 via 192.168.0.19

Mgbe nke ahụ gasịrị, tebụl ntụgharị dị ka nke a:

# ip route show

N'otu aka ahụ, tinye ụzọ kwekọrọ na igwe (s) ị na-achọ iru na 10.0.0.0/24:

# ip route add 192.168.0.0/24 via 10.0.0.18

Ị nwere ike nwalee maka njikọ isi site na iji ping:

N'ime igbe RHEL 7, gbaa ọsọ

# ping -c 4 10.0.0.20

Ebe 10.0.0.20 bụ adreesị IP nke sava weebụ na netwọk 10.0.0.0/24.

Na sava weebụ (10.0.0.20), gbaa ọsọ

# ping -c 192.168.0.18

ebe 192.168.0.18 dị, dịka ị ga-echeta, adreesị IP nke igwe RHEL 7 anyị.

N'aka nke ọzọ, anyị nwere ike iji tcpdump (ị nwere ike ịwụnye ya na yum install tcpdump) iji lelee nkwurịta okwu ụzọ abụọ n'elu TCP n'etiti igbe RHEL 7 anyị na sava weebụ na 10.0.0.20.

Iji mee nke a, ka anyị jiri:

# tcpdump -qnnvvv -i enp0s3 host 10.0.0.20

na site na njedebe ọzọ na otu usoro ka anyị telnet gaa na ọdụ ụgbọ mmiri 80 na sava weebụ (na-eche na Apache na-ege ntị na ọdụ ụgbọ mmiri ahụ; ma ọ bụghị, gosi ọdụ ụgbọ mmiri ziri ezi na iwu na-esonụ):

# telnet 10.0.0.20 80

Ihe ndekọ tcpdump kwesịrị ịdị ka nke a:

Ebe ebidola njikọ ahụ nke ọma, dịka anyị nwere ike ịkọ site n'ilele nzikọrịta ozi ụzọ abụọ n'etiti igbe RHEL 7 (192.168.0.18) na sava weebụ (10.0.0.20).

Biko cheta na mgbanwe ndị a ga-apụ mgbe ịmalitegharịa usoro ahụ. Ọ bụrụ na ịchọrọ ime ka ha na-adịgide adịgide, ị ga-achọ idezi (ma ọ bụ mepụta, ma ọ bụrụ na ha adịbeghị) faịlụ ndị a, na otu usoro ebe anyị mere iwu ndị dị n'elu.

Ọ bụ ezie na ọ bụghị ihe dị mkpa maka ikpe ule anyị, ị kwesịrị ịma na /etc/sysconfig/network nwere parampat netwọkụ niile. Ụdị /etc/sysconfig/netwọk dị ka ndị a:

# Enable networking on this system?
NETWORKING=yes
# Hostname. Should match the value in /etc/hostname
HOSTNAME=yourhostnamehere
# Default gateway
GATEWAY=XXX.XXX.XXX.XXX
# Device used to connect to default gateway. Replace X with the appropriate number.
GATEWAYDEV=enp0sX

Mgbe a bịara n'ịtọpụta mgbanwe na ụkpụrụ maka NIC ọ bụla (dị ka anyị mere maka rawụta #2), ị ga-edezi /etc/sysconfig/network-scripts/ifcfg-enp0s3 na /etc/sysconfig/network-scripts/ifcfg -enp0s8.

N'iso ikpe anyị,

TYPE=Ethernet
BOOTPROTO=static
IPADDR=192.168.0.19
NETMASK=255.255.255.0
GATEWAY=192.168.0.1
NAME=enp0s3
ONBOOT=yes

TYPE=Ethernet
BOOTPROTO=static
IPADDR=10.0.0.18
NETMASK=255.255.255.0
GATEWAY=10.0.0.1
NAME=enp0s8
ONBOOT=yes

maka enp0s3 na enp0s8, n'otu n'otu.

N'ihe gbasara ntụgharị na igwe ndị ahịa anyị (192.168.0.18), anyị ga-achọ dezie /etc/sysconfig/network-scripts/route-enp0s3:

10.0.0.0/24 via 192.168.0.19 dev enp0s3

Ugbu a malitegharịa usoro gị ma ị ga-ahụ ụzọ ahụ na tebụl gị.

Nchịkọta

N'isiokwu a, anyị ekpuchila ihe ndị dị mkpa nke nhazigharị static na Red Hat Enterprise Linux 7. Ọ bụ ezie na ọnọdụ dị iche iche nwere ike ịdịgasị iche, ikpe e gosipụtara ebe a na-egosi ụkpụrụ achọrọ na usoro iji rụọ ọrụ a. Tupu m kechie, a ga m atụ aro ka ị lelee isi nke 4 nke ngalaba nchekwa na ịkwalite Linux na saịtị Linux Documentation Project maka nkọwa ndị ọzọ gbasara isiokwu ndị a kpuchiri ebe a.

Ebook efu na Nchekwa & Optimizing Linux: The Hacking Solution (v.3.0) - Nke a 800+ eBook nwere keukwu nchịkọta Linux nche Atụmatụ na otu esi eji ha n'enweghị na mfe hazi Linux dabeere ngwa na ọrụ.

N'isiokwu na-esonụ, anyị ga-ekwu maka nzacha ngwugwu na ntụgharị asụsụ netwọk iji chịkọta nkà bụ isi nke ịkparịta ụka n'Ịntanet chọrọ maka asambodo RHCE.

Dị ka oge niile, anyị na-atụ anya ịnụ gị, yabụ nweere onwe gị ịhapụ ajụjụ gị, nkọwa gị na aro gị site na iji ụdị dị n'okpuru.