可先透過 https://wiki.centos.org/zh-tw/FAQ/CentOS7 來了解 CentOS7 和之前版本的一些差異
yum install net-tools
[[email protected] ~]# yum install net-tools Loaded plugins: fastestmirror base | 3.6 kB 00:00 extras | 3.4 kB 00:00 updates | 3.4 kB 00:00 (1/4): base/7/x86_64/group_gz | 155 kB 00:00 (2/4): extras/7/x86_64/primary_db | 166 kB 00:00 (3/4): updates/7/x86_64/primary_db | 9.1 MB 00:01 (4/4): base/7/x86_64/primary_db | 5.3 MB 00:02 Determining fastest mirrors * base: ftp.yzu.edu.tw * extras: ftp.yzu.edu.tw * updates: ftp.yzu.edu.tw Resolving Dependencies --> Running transaction check ---> Package net-tools.x86_64 0:2.0-0.17.20131004git.el7 will be installed --> Finished Dependency Resolution Dependencies Resolved ================================================================================ Package Arch Version Repository Size ================================================================================ Installing: net-tools x86_64 2.0-0.17.20131004git.el7 base 304 k Transaction Summary ================================================================================ Install 1 Package Total download size: 304 k Installed size: 917 k Is this ok [y/d/N]: y Downloading packages: 警告:/var/cache/yum/x86_64/7/base/packages/net-tools-2.0-0.17.20131004git.el7.x86_64.rpm: 表頭 V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY Public key for net-tools-2.0-0.17.20131004git.el7.x86_64.rpm is not installed net-tools-2.0-0.17.20131004git.el7.x86_64.rpm | 304 kB 00:00 Retrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 Importing GPG key 0xF4A80EB5: Userid : "CentOS-7 Key (CentOS 7 Official Signing Key) <[email protected]>" Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5 Package : centos-release-7-2.1511.el7.centos.2.10.x86_64 (@anaconda) From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 Is this ok [y/N]: y Running transaction check Running transaction test Transaction test succeeded Running transaction Installing : net-tools-2.0-0.17.20131004git.el7.x86_64 1/1 Verifying : net-tools-2.0-0.17.20131004git.el7.x86_64 1/1 Installed: net-tools.x86_64 0:2.0-0.17.20131004git.el7 Complete!
[[email protected] ~]# ifconfig ens3: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 inet 192.168.0.104 netmask 255.255.255.0 broadcast 192.168.0.255 inet6 fe80::5054:ff:fe70:9a7d prefixlen 64 scopeid 0x20<link> ether 52:54:00:70:9a:7d txqueuelen 1000 (Ethernet) RX packets 12252 bytes 16348084 (15.5 MiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 7298 bytes 570168 (556.8 KiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 ens4: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 ether 52:54:00:fb:86:e8 txqueuelen 1000 (Ethernet) RX packets 49 bytes 3016 (2.9 KiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 0 bytes 0 (0.0 B) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536 inet 127.0.0.1 netmask 255.0.0.0 inet6 ::1 prefixlen 128 scopeid 0x10<host> loop txqueuelen 0 (Local Loopback) RX packets 0 bytes 0 (0.0 B) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 0 bytes 0 (0.0 B) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
firewall-cmd --get-default-zone
firewall-cmd --zone=iredmail --list-services
firewall-cmd --zone=iredmail --add-service=mysql
firewall-cmd --zone=iredmail --permanent --list-services
firewall-cmd --zone=iredmail --permanent --add-service=snmp
firewall-cmd --complete-reload
讓設定生效
ss -l -n
Exp. 看 SMTP 25 port
# ss -l -n | grep 25 tcp LISTEN 0 100 *:25 *:* tcp LISTEN 0 100 :::25 :::*
ss -t -n
Exp. 看 IMAP port 143 連線
# ss -t -n | grep 143 ESTAB 0 0 192.168.0.236:143 60.248.245.172:56450 ESTAB 0 0 192.168.0.236:143 192.168.0.2:51137 ESTAB 0 0 192.168.0.236:143 192.168.0.254:14983 ESTAB 0 0 192.168.0.236:143 192.168.0.254:14902 : ESTAB 0 0 192.168.0.236:143 60.248.245.172:62832
: BOOTPROTO=static IPADDR=192.168.1.28 NETMASK=255.255.255.0 GATEWAY=192.168.1.254 : DNS1=192.168.1.254 DNS2=101.101.101.101
systemctl restart network.service
ip a ip route list
nmcli con mod eth0 ipv4.dns "192.168.11.242 168.95.192.1" nmcli con up eth0
: net.ipv6.conf.all.disable_ipv6 = 1 net.ipv6.conf.default.disable_ipv6 = 1
sysctl -p