我有两条ISP接入的光纤(电信/网通 线路各一条),固定IP,现在想用一台Linux机器做网关.

mycookie

我有两条ISP接入的光纤(电信/网通 线路各一条),固定IP,现在想用一台Linux机器做网关.\r\nLinux上插了3块网卡,分别接内网/电信线路/网通线路\r\n\r\n                     内网192.168.0.1\r\n                       |\r\n    -------------------------------------------------\r\n       |                                                    |\r\n   电信线路                           网通线路\r\n\r\n要求局域网内用户访问电信网络时路由走电信的线路,访问网通网络时路由走网通的线路.\r\n\r\n请问这台Linux该怎么设置路由??最好给我一个脚本!!\r\n谢谢!

bc54

我看还是加一台负载均衡的设备吧，这样实现起来比较简单。而且有好多别的功能。产品选AscenLink，linkproof都行

jiangdaoyou

使用路由表可以实现。具体可以联系我：jdaoyou@sina.com\n\n[ 本帖最后由 jiangdaoyou 于 2009-1-9 13:07 编辑 ]

uuluck

假设Linux的机器上只有两块网卡：\r\neth0:外部，你的4个公网地址是a.a.a.a～d.d.d.d，网关地址是x.x.x.x\r\neth1:内部，地址是：z.z.z.z\r\n\r\n设置：/etc/sysconfig/network的内容为：\r\nNETWORKING=yes\r\nHOSTNAME=yourhostname\r\nGATEWAY=x.x.x.x\r\nGATEWAYDEV=eth0\r\n\r\n然后创建子口的方式把四个公网地址分别配置到eth0，eth0:0，eth0:1，eth0:2，以eth0:2为例：\r\nDEVICE=eth0:2\r\nBOOTPROTO=static\r\nBROADCAST=?.?.?.?\r\nIPADDR=d.d.d.d\r\nNETMASK=?.?.?.?\r\nNETWORK=?.?.?.?\r\nONBOOT=yes\r\n确定一个地址配置到eth1上，作为内部终端的网关地址\r\n\r\n然后创建一个简单的iptables脚本\r\n#!/bin/sh\r\necho \"1\" > /proc/sys/net/ipv4/ip_forward\r\niptables -t nat -A POSTROUTING -s 192.168.0.0/24 -o eth0 -j SNAT --to-source a.a.a.a-d.d.d.d\r\n\r\n要点：\r\n在写nat规则时，指定做nat的是一个地址范围而不是单一一个地址，如果不是连续的地址，可以以空格分开写在--to-source后面\r\n所有用作nat地址池内的地址必须是已经被配置到某个接口上，并且可以被访问到的。这和在某些路由设备上指定地址池是不一样的。\r\n\r\n两个连外网的网卡设置是一样的。

JohnBull

用whois查出网通地址分布,然后逐一加入静态路由即可.

mycookie

我是这么做的，222.222.222.222是电信网关，221.221.221.221是网通网关\r\n\r\n地址段是从QQ上弄来整理过的，以后大家可以拿去直接使用了，只要修改自己的网关即可！\r\n\r\n谢谢大家帮忙！\r\n＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝\r\nroute:/etc # cat route.sh\r\n#! /bin/bash\r\n\r\necho \"1\" > /proc/sys/net/ipv4/ip_forward\r\n\r\niptables -t nat -A POSTROUTING -s 192.168.0.0/24 -o eth1 -j MASQUERADE\r\niptables -t nat -A POSTROUTING -s 192.168.0.0/24 -o eth2 -j MASQUERADE\r\n\r\n\r\nroute add -net 58.32.0.0/13 gw 222.222.222.222\r\nroute add -net 58.44.0.0/14 gw 222.222.222.222\r\nroute add -net 59.32.0.0/13 gw 222.222.222.222\r\nroute add -net 59.42.0.0/16 gw 222.222.222.222\r\nroute add -net 59.44.0.0/14 gw 222.222.222.222\r\nroute add -net 59.48.0.0/17 gw 222.222.222.222\r\nroute add -net 59.49.128.0/17 gw 222.222.222.222\r\nroute add -net 59.50.0.0/16 gw 222.222.222.222\r\nroute add -net 59.51.0.0/17 gw 222.222.222.222\r\nroute add -net 59.52.0.0/14 gw 222.222.222.222\r\nroute add -net 59.56.0.0/13 gw 222.222.222.222\r\nroute add -net 60.160.0.0/15 gw 222.222.222.222\r\nroute add -net 60.164.0.0/15 gw 222.222.222.222\r\nroute add -net 60.166.0.0/15 gw 222.222.222.222\r\nroute add -net 60.168.0.0/13 gw 222.222.222.222\r\nroute add -net 61.128.96.0/19 gw 222.222.222.222\r\nroute add -net 61.128.128.0/17 gw 222.222.222.222\r\nroute add -net 61.129.0.0/16 gw 222.222.222.222\r\nroute add -net 61.131.0.0/17 gw 222.222.222.222\r\nroute add -net 61.131.128.0/17 gw 222.222.222.222\r\nroute add -net 61.132.0.0/17 gw 222.222.222.222\r\nroute add -net 61.132.128.0/17 gw 222.222.222.222\r\nroute add -net 61.133.128.0/18 gw 222.222.222.222\r\nroute add -net 61.133.192.0/18 gw 222.222.222.222\r\nroute add -net 61.134.0.0/18 gw 222.222.222.222\r\nroute add -net 61.134.64.0/19 gw 222.222.222.222\r\nroute add -net 61.136.128.0/17 gw 222.222.222.222\r\nroute add -net 61.137.0.0/17 gw 222.222.222.222\r\nroute add -net 61.138.192.0/18 gw 222.222.222.222\r\nroute add -net 61.139.0.0/17 gw 222.222.222.222\r\nroute add -net 61.139.192.0/18 gw 222.222.222.222\r\nroute add -net 61.140.0.0/14 gw 222.222.222.222\r\nroute add -net 61.144.0.0/14 gw 222.222.222.222\r\nroute add -net 61.150.0.0/15 gw 222.222.222.222\r\nroute add -net 61.152.0.0/16 gw 222.222.222.222\r\nroute add -net 61.154.0.0/15 gw 222.222.222.222\r\nroute add -net 61.157.0.0/16 gw 222.222.222.222\r\nroute add -net 61.159.64.0/18 gw 222.222.222.222\r\nroute add -net 61.159.128.0/17 gw 222.222.222.222\r\nroute add -net 61.160.0.0/16 gw 222.222.222.222\r\nroute add -net 61.161.64.0/18 gw 222.222.222.222\r\nroute add -net 61.165.0.0/16 gw 222.222.222.222\r\nroute add -net 61.166.0.0/16 gw 222.222.222.222\r\nroute add -net 61.169.0.0/16 gw 222.222.222.222\r\nroute add -net 61.170.0.0/15 gw 222.222.222.222\r\nroute add -net 61.172.0.0/15 gw 222.222.222.222\r\nroute add -net 61.177.0.0/16 gw 222.222.222.222\r\nroute add -net 61.178.0.0/16 gw 222.222.222.222\r\nroute add -net 61.180.0.0/17 gw 222.222.222.222\r\nroute add -net 61.182.0.0/15 gw 222.222.222.222\r\nroute add -net 61.185.0.0/16 gw 222.222.222.222\r\nroute add -net 61.186.0.0/15 gw 222.222.222.222\r\nroute add -net 61.188.0.0/16 gw 222.222.222.222\r\nroute add -net 61.189.128.0/17 gw 222.222.222.222\r\nroute add -net 61.190.0.0/15 gw 222.222.222.222\r\nroute add -net 202.96.128.0/17 gw 222.222.222.222\r\nroute add -net 202.98.32.0/19 gw 222.222.222.222\r\nroute add -net 202.98.64.0/18 gw 222.222.222.222\r\nroute add -net 202.98.128.0/17 gw 222.222.222.222\r\nroute add -net 202.100.0.0/15 gw 222.222.222.222\r\nroute add -net 202.102.0.0/17 gw 222.222.222.222\r\nroute add -net 202.102.192.0/19 gw 222.222.222.222\r\nroute add -net 202.103.0.0/16 gw 222.222.222.222\r\nroute add -net 202.104.0.0/15 gw 222.222.222.222\r\nroute add -net 202.107.128.0/19 gw 222.222.222.222\r\nroute add -net 202.109.0.0/16 gw 222.222.222.222\r\nroute add -net 202.110.128.0/18 gw 222.222.222.222\r\nroute add -net 202.111.0.0/17 gw 222.222.222.222\r\nroute add -net 202.111.192.0/19 gw 222.222.222.222\r\nroute add -net 218.1.0.0/16 gw 222.222.222.222\r\nroute add -net 218.2.0.0/15 gw 222.222.222.222\r\nroute add -net 218.4.0.0/15 gw 222.222.222.222\r\nroute add -net 218.6.0.0/16 gw 222.222.222.222\r\nroute add -net 218.8.0.0/13 gw 222.222.222.222\r\nroute add -net 218.21.0.0/17 gw 222.222.222.222\r\nroute add -net 218.22.0.0/15 gw 222.222.222.222\r\nroute add -net 218.31.0.0/16 gw 222.222.222.222\r\nroute add -net 218.62.128.0/17 gw 222.222.222.222\r\nroute add -net 218.63.0.0/16 gw 222.222.222.222\r\nroute add -net 218.64.0.0/15 gw 222.222.222.222\r\nroute add -net 218.66.0.0/16 gw 222.222.222.222\r\nroute add -net 218.67.0.0/17 gw 222.222.222.222\r\nroute add -net 218.70.0.0/16 gw 222.222.222.222\r\nroute add -net 218.75.128.0/17 gw 222.222.222.222\r\nroute add -net 218.76.0.0/14 gw 222.222.222.222\r\nroute add -net 218.80.0.0/12 gw 222.222.222.222\r\nroute add -net 219.128.0.0/12 gw 222.222.222.222\r\nroute add -net 219.144.0.0/13 gw 222.222.222.222\r\nroute add -net 219.152.0.0/15 gw 222.222.222.222\r\nroute add -net 219.159.64.0/18 gw 222.222.222.222\r\nroute add -net 219.159.128.0/17 gw 222.222.222.222\r\nroute add -net 220.160.0.0/12 gw 222.222.222.222\r\nroute add -net 220.176.0.0/14 gw 222.222.222.222\r\nroute add -net 220.180.0.0/15 gw 222.222.222.222\r\nroute add -net 221.224.0.0/12 gw 222.222.222.222\r\nroute add -net 222.64.0.0/13 gw 222.222.222.222\r\nroute add -net 222.72.0.0/15 gw 222.222.222.222\r\nroute add -net 222.75.0.0/16 gw 222.222.222.222\r\nroute add -net 222.76.0.0/14 gw 222.222.222.222\r\nroute add -net 222.80.0.0/16 gw 222.222.222.222\r\nroute add -net 222.82.0.0/15 gw 222.222.222.222\r\nroute add -net 222.84.0.0/15 gw 222.222.222.222\r\nroute add -net 222.86.0.0/15 gw 222.222.222.222\r\nroute add -net 222.88.0.0/13 gw 222.222.222.222\r\nroute add -net 222.168.0.0/13 gw 222.222.222.222\r\nroute add -net 222.176.0.0/13 gw 222.222.222.222\r\nroute add -net 222.184.0.0/14 gw 222.222.222.222\r\nroute add -net 222.188.0.0/14 gw 222.222.222.222\r\nroute add -net 222.208.0.0/12 gw 222.222.222.222\r\nroute add -net 222.240.0.0/13 gw 222.222.222.222\r\nroute add default gw 221.221.221.221