大家好,我需要解决此问题(所有服务器都安装了centos 7):我正在尝试通过vps(在意大利-OpenVZ)和专用服务器(在德国)创建gre隧道,但他们没有内部通信(ping和ssh命令测试)。接下来,我创建了一个隧道隧道vps(在意大利-OpenVZ)和vps(在法国-KVM OpenStack)并进行了通信,接下来我创建了一个隧道隧道vps(在法国-KVM OpenStack)和一个专用服务器(在德国) )他们的沟通。我不明白为什么vps(在意大利-OpenVZ)和专用服务器(在德国)无法通信,有关如何解决的想法( 我也尝试了禁用iptables,firewalld未启用)?谢谢
换句话说:
在其他尝试中(这意味着我设法在这些计算机之间成功创建了GRE隧道):
问题(通过这种方式,我无法在这些计算机之间成功创建GRE隧道):
我的配置:
隧道的VPS命令:
echo'net.ipv4.ip_forward = 1'>> /etc/sysctl.conf
iptunnel添加gre1模式gre本地VPS_IP远程DEDICATED_SERVER_IP ttl 255
ip addr添加192.168.168.1/30 dev gre1 ip链接设置gre1 up
用于隧道的专用服务器命令:
iptunnel添加gre1模式gre本地DEDICATED_SERVER_IP远程VPS_IP ttl 255
ip addr添加192.168.168.2/30 dev gre1
ip链接将gre1设置为
[root@VPS ~]# ping 192.168.168.2 PING 192.168.168.2 (192.168.168.2) 56(84) bytes of data. ^C --- 192.168.168.2 ping statistics --- 89 packets transmitted, 0 received, 100% packet loss, time 87999ms
[root@DE ~]# ping 192.168.168.1 PING 192.168.168.1 (192.168.168.1) 56(84) bytes of data. ^C --- 192.168.168.1 ping statistics --- 92 packets transmitted, 0 received, 100% packet loss, time 91001ms
[root@VPS ~]# tcpdump -i venet0 "proto gre" tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on venet0, link-type LINUX_SLL (Linux cooked), capture size 262144 bytes ^C 0 packets captured 1 packet received by filter 0 packets dropped by kernel
[root@DE ~]# tcpdump -i enp2s0 "proto gre" tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on enp2s0, link-type EN10MB (Ethernet), capture size 262144 bytes ^C 0 packets captured 0 packets received by filter 0 packets dropped by kernel
[root@VPS ~]# lsmod | grep gre ip_gre 4242 -2 ip_tunnel 4242 -2 sit,ip_gre gre 4242 -2 ip_gre
[root@DE ~]# lsmod | grep gre ip_gre 22707 0 ip_tunnel 25163 1 ip_gre gre 13144 1 ip_gre
答案 0 :(得分:0)
如果需要ip_forwarding才能使隧道正常工作,则需要执行/sbin/sysctl -p
ip tunnel show和ip route show的两端输出是什么
