我刚刚将我的 ubuntu 20 服务器上的以太网接口换成了网络管理器进行管理(其他的已经由它管理了,这个是落后的)
但现在的问题似乎是访问该服务器受到限制
我有以下子网:
- 10.0.3.x(我的 DNS 服务器所在地)
- 10.0.1.x(我的服务器所在地)
- 10.0.21.x(我的个人电脑所在的位置)
内部的一切都应有权访问 10.0.3.x 子网,而 10.0.21.x 应有权访问 10.0.1.x 子网
现在:
从我的个人电脑:
- 我无法 ping 我的服务器/访问其上托管的应用程序(端口 8443)/ ssh(22)
- 但是我可以访问位于同一子网的网关。
从我的服务器:
- 我可以 ping 10.0.3.x
- 我无法 ping 10.0.21.x
- 我可以 ping 通(并解析)google.com
从 10.0.1.x 网络上的其他设备
- 可以成功 ping 服务器。
在服务器上我已禁用 ufw,因此这不会产生影响,并且在我将接口迁移到由网络管理器管理之前,我曾经可以访问它,因此虽然我之间有一个防火墙,但这并没有改变,也没有生效的新规则。
当我迁移到网络管理器以允许访问其他子网时,我是否可能遗漏了某些东西?
注意:服务器有多个适配器,包括 10.0.1.x 和 10.0.3.x 上的适配器,因此打印的路由route已经具有这些子网的映射。我曾经nmtui将自定义路由添加到 10.0.21.x 以通过 10.0.1.x 适配器。
-- 一些可能有助于理解的转储 ---
sudo ufw 状态
Status: inactive
ip 链接显示
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
2: eno3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP mode DEFAULT group default qlen 1000
link/ether ac:1f:6b:6e:0f:c2 brd ff:ff:ff:ff:ff:ff
3: eno4: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP mode DEFAULT group default qlen 1000
link/ether ac:1f:6b:6e:0f:c3 brd ff:ff:ff:ff:ff:ff
4: enx00e04c68024d: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000
link/ether 00:e0:4c:68:02:4d brd ff:ff:ff:ff:ff:ff
5: enx00e04c6802c0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc fq_codel state DOWN mode DEFAULT group default qlen 1000
link/ether 00:e0:4c:68:02:c0 brd ff:ff:ff:ff:ff:ff
6: enx0050b6bf0651: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000
link/ether 00:50:b6:bf:06:51 brd ff:ff:ff:ff:ff:ff
7: enx00e04c6802cd: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000
link/ether 00:e0:4c:68:02:cd brd ff:ff:ff:ff:ff:ff
8: enx00e04c6802cc: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000
link/ether 00:e0:4c:68:02:cc brd ff:ff:ff:ff:ff:ff
9: enx0050b6bf06c1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000
link/ether 00:50:b6:bf:06:c1 brd ff:ff:ff:ff:ff:ff
10: enx0050b6befcb3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000
link/ether 00:50:b6:be:fc:b3 brd ff:ff:ff:ff:ff:ff
11: enx0050b6bf070c: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000
link/ether 00:50:b6:bf:07:0c brd ff:ff:ff:ff:ff:ff
12: virbr0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN mode DEFAULT group default qlen 1000
link/ether 52:54:00:d8:cf:13 brd ff:ff:ff:ff:ff:ff
13: virbr0-nic: <BROADCAST,MULTICAST> mtu 1500 qdisc fq_codel master virbr0 state DOWN mode DEFAULT group default qlen 1000
link/ether 52:54:00:d8:cf:13 brd ff:ff:ff:ff:ff:ff
14: br-7e213162e029: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN mode DEFAULT group default
link/ether 02:42:c5:b7:58:a5 brd ff:ff:ff:ff:ff:ff
15: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN mode DEFAULT group default
link/ether 02:42:a1:90:34:12 brd ff:ff:ff:ff:ff:ff
16: virbr1: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN mode DEFAULT group default qlen 1000
link/ether 52:54:00:e3:66:84 brd ff:ff:ff:ff:ff:ff
17: virbr1-nic: <BROADCAST,MULTICAST> mtu 1500 qdisc fq_codel master virbr1 state DOWN mode DEFAULT group default qlen 1000
link/ether 52:54:00:e3:66:84 brd ff:ff:ff:ff:ff:ff
18: macvtap0@enx00e04c6802cc: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 500
link/ether 52:54:00:4e:b9:ee brd ff:ff:ff:ff:ff:ff
19: macvtap1@enx0050b6bf070c: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 500
link/ether 52:54:00:50:04:24 brd ff:ff:ff:ff:ff:ff
20: macvtap2@enx00e04c68024d: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 500
link/ether 52:54:00:4e:2a:55 brd ff:ff:ff:ff:ff:ff
21: macvtap3@enx00e04c6802cd: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 500
link/ether 52:54:00:03:1d:21 brd ff:ff:ff:ff:ff:ff
22: macvtap4@enx0050b6bf06c1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 500
link/ether 52:54:00:ed:71:0b brd ff:ff:ff:ff:ff:ff
23: macvtap5@enx0050b6befcb3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 500
link/ether 52:54:00:68:40:57 brd ff:ff:ff:ff:ff:ff
路线
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default _gateway 0.0.0.0 UG 101 0 0 enx00e04c6802cd
default _gateway 0.0.0.0 UG 102 0 0 enx00e04c6802cc
default _gateway 0.0.0.0 UG 103 0 0 enx0050b6befcb3
default _gateway 0.0.0.0 UG 105 0 0 eno3
default _gateway 0.0.0.0 UG 106 0 0 enx0050b6bf06c1
default _gateway 0.0.0.0 UG 107 0 0 enx0050b6bf070c
default _gateway 0.0.0.0 UG 109 0 0 enx00e04c68024d
10.0.1.0 0.0.0.0 255.255.255.0 U 105 0 0 eno3
10.0.2.0 0.0.0.0 255.255.255.0 U 0 0 0 virbr1
10.0.3.0 0.0.0.0 255.255.255.0 U 106 0 0 enx0050b6bf06c1
10.0.3.0 0.0.0.0 255.255.255.0 U 107 0 0 enx0050b6bf070c
10.0.10.0 0.0.0.0 255.255.255.0 U 101 0 0 enx00e04c6802cd
10.0.20.0 0.0.0.0 255.255.255.192 U 5 0 0 eno3
10.0.21.0 0.0.0.0 255.255.255.192 U 5 0 0 eno3
10.0.60.0 0.0.0.0 255.255.255.0 U 109 0 0 enx00e04c68024d
10.0.70.0 0.0.0.0 255.255.255.0 U 103 0 0 enx0050b6befcb3
10.0.90.0 0.0.0.0 255.255.255.0 U 102 0 0 enx00e04c6802cc
172.17.0.0 0.0.0.0 255.255.0.0 U 0 0 0 docker0
172.18.0.0 0.0.0.0 255.255.0.0 U 0 0 0 br-7e213162e029
192.168.123.0 0.0.0.0 255.255.255.0 U 0 0 0 virbr0
nmcli 设备状态
DEVICE TYPE STATE CONNECTION
enx00e04c6802cd ethernet connected Wired connection 10
eno3 ethernet connected Wired connection 1
enx0050b6befcb3 ethernet connected Wired connection 3
enx0050b6bf06c1 ethernet connected Wired connection 5
enx0050b6bf070c ethernet connected Wired connection 6
enx00e04c68024d ethernet connected Wired connection 7
enx00e04c6802cc ethernet connected Wired connection 9
br-7e213162e029 bridge connected br-7e213162e029
docker0 bridge connected docker0
virbr0 bridge connected virbr0
virbr1 bridge connected virbr1
eno4 ethernet disconnected --
enx0050b6bf0651 ethernet disconnected --
enx00e04c6802c0 ethernet unavailable --
lo loopback unmanaged --
macvtap0 macvlan unmanaged --
macvtap1 macvlan unmanaged --
macvtap2 macvlan unmanaged --
macvtap3 macvlan unmanaged --
macvtap4 macvlan unmanaged --
macvtap5 macvlan unmanaged --
virbr0-nic tun unmanaged --
virbr1-nic tun unmanaged --