單向路由

tag-icon tag-icon networking windows-server-2008-r2 routing
單向路由

我有兩台透過 VPN 連接的計算機,每台計算機上都有一些虛擬機。我希望所有東西都能看到對方(基本上是 4 台不同的連網機器)。到目前為止我還沒有做到的是一端的計算機對另一端可見。用追蹤術語來說:

192.168.78.42>tracert 192.168.69.18
Tracing route to WIN-2K8R2 [192.168.69.18]
over a maximum of 30 hops:
  1    <1 ms    <1 ms    <1 ms  192.168.78.17
  2     *        *        *     Request timed out.
  3   217 ms    78 ms    78 ms  WIN-2K8R2 [192.168.69.18]
Trace complete.
192.168.78.42>tracert 192.168.69.112
Tracing route to 192.168.69.112 over a maximum of 30 hops
  1    <1 ms    <1 ms    <1 ms  192.168.78.17
  2   333 ms     *      337 ms  WIN-2K8R2 [192.168.86.22]
  3/4/5     *        *        *     Request timed out.
  6  ^C
192.168.69.18>tracert 192.168.69.112
Tracing route to 192.168.69.112 over a maximum of 30 hops
  1    <1 ms    <1 ms    <1 ms  192.168.69.112
Trace complete.
192.168.69.112>tracert 192.168.78.42
Tracing route to 192.168.78.42 over a maximum of 30 hops
  1     1 ms     *       <1 ms  192.168.69.18
  2    79 ms    77 ms    80 ms  192.168.86.21
  3    80 ms    77 ms    81 ms  192.168.78.42
Trace complete.

註:4台機器分別是192.168.69.112(winXP)、192.168.69.18=192.168.86.22(win2K8R2)、192.168.86.21=192.168.78.192.168.86.21=192.168.78.192.172.195.7295.19572.168.72.19572.19572.168.7295.725.725.725.725.725.72.16825.72.168.72.168.292.168.72.16892.1925.792.168.292.
VPN 是 192.168.86.21 和 192.168.86.22 之間的 TAP openvpn 連線。
我想說問題出在win2K8機器上,但Windows網路才是我的弱點。

[電子郵件受保護]:由於我使用 VPN,因此有一個可能的解決方法可以透過從 winXP 電腦到 Linux VPN 伺服器建立 VPN 連線來連接 winXP 和 win2K3。但最初的問題,即為什麼win2K8R2不轉送包,仍然沒有解決。

路由表(沒有廣播等條目):
winXP

Network Destination        Netmask          Gateway       Interface  Metric
      0.0.0.0          0.0.0.0         10.0.3.2       10.0.3.15   20
     10.0.3.0    255.255.255.0        10.0.3.15       10.0.3.15   20
    10.0.3.15  255.255.255.255        127.0.0.1       127.0.0.1   20
 10.255.255.255  255.255.255.255        10.0.3.15       10.0.3.15     20
    127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1   1
  192.168.0.0    255.255.255.0    192.168.0.112   192.168.0.112   20
  192.168.0.112  255.255.255.255        127.0.0.1       127.0.0.1     20
  192.168.0.255  255.255.255.255    192.168.0.112   192.168.0.112     20
 192.168.69.0    255.255.255.0   192.168.69.112  192.168.69.112   20
 192.168.69.112  255.255.255.255        127.0.0.1       127.0.0.1     20
 192.168.69.255  255.255.255.255   192.168.69.112  192.168.69.112     20
 192.168.78.0    255.255.255.0    192.168.69.18  192.168.69.112   1
...
Default Gateway:          10.0.3.2
===========================================================================
Persistent Routes:
Network Address          Netmask  Gateway Address  Metric
   192.168.78.0    255.255.255.0    192.168.69.18       1

贏得2K8R2

Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.17     20
      192.168.0.0    255.255.255.0         On-link      192.168.0.17    276
     192.168.0.17  255.255.255.255         On-link      192.168.0.17    276
    192.168.0.255  255.255.255.255         On-link      192.168.0.17    276
     192.168.69.0    255.255.255.0         On-link     192.168.69.18    276
    192.168.69.18  255.255.255.255         On-link     192.168.69.18    276
   192.168.69.112  255.255.255.255         On-link     192.168.69.18     21
   192.168.69.255  255.255.255.255         On-link     192.168.69.18    276
     192.168.78.0    255.255.255.0    192.168.86.21    192.168.86.22     31
    192.168.86.20  255.255.255.252         On-link     192.168.86.22    286
    192.168.86.22  255.255.255.255         On-link     192.168.86.22    286
    192.168.86.23  255.255.255.255         On-link     192.168.86.22    286
...
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
     192.168.78.0    255.255.255.0    192.168.86.21       1
   192.168.69.112  255.255.255.255    192.168.69.18       1

Linux

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
default         *               0.0.0.0         U     0      0        0 ppp0
10.0.0.1        *               255.255.255.255 UH    0      0        0 ppp0
192.168.69.0    192.168.86.22   255.255.255.0   UG    0      0        0 tap1
192.168.75.0    192.168.86.22   255.255.255.0   UG    0      0        0 tap1
192.168.75.0    192.168.86.22   255.255.255.0   UG    0      0        0 ppp0
192.168.76.0    *               255.255.255.0   U     0      0        0 eth0
192.168.78.0    *               255.255.255.0   U     0      0        0 vboxnet0
192.168.85.0    *               255.255.255.0   U     0      0        0 vboxnet1
192.168.86.16   *               255.255.255.252 U     0      0        0 tap0
192.168.86.20   *               255.255.255.252 U     0      0        0 tap1
192.168.186.24  *               255.255.255.252 U     0      0        0 tap2

win2K3

Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.78.17    192.168.78.42     10
        127.0.0.0        255.0.0.0        127.0.0.1        127.0.0.1      1
     192.168.78.0    255.255.255.0    192.168.78.42    192.168.78.42     10
    192.168.78.42  255.255.255.255        127.0.0.1        127.0.0.1     10
   192.168.78.255  255.255.255.255    192.168.78.42    192.168.78.42     10
     192.168.85.0    255.255.255.0    192.168.85.42    192.168.85.42     10
...
Default Gateway:     192.168.78.17

答案1

但我的觀點是,回顯請求以及 RDP 連線在一個方向上工作,但在另一個方向上失敗。由於回顯回復以另一種方式運作,我想路由表應該沒問題

每台主機上的每個網路都應該有路由。我見過這樣的情況:路由安裝在一台機器上而不是其他機器上,而您之前描述的正是發生的情況。

新增具有可以到達其他網路區塊的正確網關的路由

Windows Example = route add -p 192.168.X.X/24 gw 192.168.X.X
Linux Example = route add -net 192.168.X.X/24 192.168.X.X

-p 使其在 Windows 重新啟動後保持不變。若要讓 Linux 的路由在重新啟動後保持不變,您必須將路由新增至靜態路由檔案。

相關內容