linuxnetwork namespace命令使用

[root@localhost ~]# yum install bridge-utils
[root@localhost ~]# brctl show
bridge name    bridge id        STP enabled    interfaces
docker0        8000.0242589fa8c6    no        veth4c58b20
[root@localhost ~]# ip link show
1: lo: mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT 
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
2: eno16780032: mtu 1500 qdisc mq state UP mode DEFAULT qlen 1000
    link/ether 00:50:56:98:27:67 brd ff:ff:ff:ff:ff:ff
3: docker0: mtu 1500 qdisc noqueue state UP mode DEFAULT 
    link/ether 02:42:58:9f:a8:c6 brd ff:ff:ff:ff:ff:ff
7: veth4c58b20@if6: mtu 1500 qdisc noqueue master docker0 state UP mode DEFAULT 
    link/ether 9a:24:05:ac:c6:b3 brd ff:ff:ff:ff:ff:ff link-netnsid 0
[root@localhost ~]# docker ps
CONTAINER ID        IMAGE               COMMAND                  CREATED             STATUS              PORTS               NAMES
ddfabb456ab2        wolf/httpd:v0.2     "/bin/httpd -f -h /d…"   12 hours ago        Up 12 hours                             t2

[root@localhost ~]# docker exec -it t2 /bin/sh
/ # ifconfig 
eth0      Link encap:Ethernet  HWaddr 02:42:AC:11:00:02  
          inet addr:  Bcast:  Mask:
          RX packets:16 errors:0 dropped:0 overruns:0 frame:0
          TX packets:8 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:1210 (1.1 KiB)  TX bytes:680 (680.0 B)

lo        Link encap:Local Loopback  
          inet addr:  Mask:
          UP LOOPBACK RUNNING  MTU:65536  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)
创建一个network namespace
[root@localhost ~]# ip netns add wolf

查看系统已存在的network namespace
[root@localhost ~]# ip netns show

删除一个network namespace
[root@localhost ~]# ip netns delete wolf
[root@localhost ~]# ip netns show
[root@localhost ~]# ip netns add wolf

[root@localhost ~]# ip netns help
Usage: ip netns list
       ip netns add NAME
       ip netns set NAME NETNSID
       ip [-all] netns delete [NAME]
       ip netns identify [PID]
       ip netns pids NAME
       ip [-all] netns exec [NAME] cmd ...
       ip netns monitor
       ip netns list-id
[root@localhost ~]# ip netns add r1
[root@localhost ~]# ip netns add r2
[root@localhost ~]# ip netns list

[root@localhost ~]# ip netns exec r1 ifconfig -a
lo: flags=8  mtu 65536
        loop  txqueuelen 0  (Local Loopback)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

[root@localhost ~]# ip netns exec r2 ifconfig -a
lo: flags=8  mtu 65536
        loop  txqueuelen 0  (Local Loopback)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

ip netns exec bash 

[root@localhost ~]# ip netns exec wolf ip addr
1: lo: mtu 65536 qdisc noop state DOWN 
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
[root@localhost ~]# ip netns exec wolf bash
[root@localhost ~]# 

[root@localhost ~]# ip link help
Usage: ip link add [link DEV] [ name ] NAME
                   [ txqueuelen PACKETS ]
                   [ address LLADDR ]
                   [ broadcast LLADDR ]
                   [ mtu MTU ]
                   [ numtxqueues QUEUE_COUNT ]
                   [ numrxqueues QUEUE_COUNT ]
                   type TYPE [ ARGS ]
       ip link delete DEV type TYPE [ ARGS ]

       ip link set { dev DEVICE | group DEVGROUP } [ { up | down } ]
                      [ arp { on | off } ]
                      [ dynamic { on | off } ]
                      [ multicast { on | off } ]
                      [ allmulticast { on | off } ]
                      [ promisc { on | off } ]
                      [ trailers { on | off } ]
                      [ txqueuelen PACKETS ]
                      [ name NEWNAME ]
                      [ address LLADDR ]
                      [ broadcast LLADDR ]
                      [ mtu MTU ]
                      [ netns PID ]
                      [ netns NAME ]
                      [ link-netnsid ID ]
              [ alias NAME ]
                      [ vf NUM [ mac LLADDR ]
                   [ vlan VLANID [ qos VLAN-QOS ] ]
                   [ rate TXRATE ] ] 
                   [ spoofchk { on | off} ] ] 
                   [ query_rss { on | off} ] ] 
                   [ state { auto | enable | disable} ] ]
              [ master DEVICE ]
              [ nomaster ]
              [ addrgenmode { eui64 | none } ]
       ip link show [ DEVICE | group GROUP ] [up]

TYPE := { vlan | veth | vcan | dummy | ifb | macvlan | can |
          bridge | ipoib | ip6tnl | ipip | sit | vxlan |
          gre | gretap | ip6gre | ip6gretap }
使用ip命令为network namespace配置网卡
使用ip命令创建network namespace时,会默认创建一个回环设备
[root@localhost ~]# ip netns exec wolf ip link set dev lo up
[root@localhost ~]# ip link add name veth1.1 type veth peer name veth1.2
[root@localhost ~]# ip link show
1: lo: mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT 
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
2: eno16780032: mtu 1500 qdisc mq state UP mode DEFAULT qlen 1000
    link/ether 00:50:56:98:0a:57 brd ff:ff:ff:ff:ff:ff
3: [email protected]: mtu 1500 qdisc noop state DOWN mode DEFAULT qlen 1000
    link/ether ea:03:6c:3a:ac:d6 brd ff:ff:ff:ff:ff:ff
4: [email protected]: mtu 1500 qdisc noop state DOWN mode DEFAULT qlen 1000
    link/ether d2:23:eb:70:0f:30 brd ff:ff:ff:ff:ff:ff

[root@localhost ~]# ip link set dev veth1.2 netns r1 
[root@localhost ~]# ip link show   这里发现网卡减少了一个
1: lo: mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT 
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
2: eno16780032: mtu 1500 qdisc mq state UP mode DEFAULT qlen 1000
    link/ether 00:50:56:98:0a:57 brd ff:ff:ff:ff:ff:ff
4: veth1.1@if3: mtu 1500 qdisc noop state DOWN mode DEFAULT qlen 1000
    link/ether d2:23:eb:70:0f:30 brd ff:ff:ff:ff:ff:ff link-netnsid 0
[root@localhost ~]# ip netns exec r1 ifconfig -a
lo: flags=8  mtu 65536
        loop  txqueuelen 0  (Local Loopback)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

veth1.2: flags=4098  mtu 1500
        ether ea:03:6c:3a:ac:d6  txqueuelen 1000  (Ethernet)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

[root@localhost ~]# ip netns exec r1 ip link set dev veth1.2 name eth0
[root@localhost ~]# ip netns exec r1 ifconfig -a
eth0: flags=4098  mtu 1500
        ether ea:03:6c:3a:ac:d6  txqueuelen 1000  (Ethernet)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

lo: flags=8  mtu 65536
        loop  txqueuelen 0  (Local Loopback)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

[root@localhost ~]# ifconfig veth1.1 up
[root@localhost ~]# ifconfig -a
eno16780032: flags=4163  mtu 1500
        inet  netmask  broadcast
        inet6 fe80::250:56ff:fe98:a57  prefixlen 64  scopeid 0x20
        ether 00:50:56:98:0a:57  txqueuelen 1000  (Ethernet)
        RX packets 20011688  bytes 1466080091 (1.3 GiB)
        RX errors 0  dropped 443  overruns 0  frame 0
        TX packets 146625  bytes 10664439 (10.1 MiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

lo: flags=73  mtu 65536
        inet  netmask
        inet6 ::1  prefixlen 128  scopeid 0x10
        loop  txqueuelen 0  (Local Loopback)
        RX packets 36733490  bytes 12584885379 (11.7 GiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 36733490  bytes 12584885379 (11.7 GiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

veth1.1: flags=4099  mtu 1500
        inet  netmask  broadcast
        ether d2:23:eb:70:0f:30  txqueuelen 1000  (Ethernet)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
[root@localhost ~]# ip netns exec r1 ifconfig eth0 up
[root@localhost ~]# ip netns exec r1 ifconfig
eth0: flags=4163  mtu 1500
        inet  netmask  broadcast
        inet6 fe80::e803:6cff:fe3a:acd6  prefixlen 64  scopeid 0x20
        ether ea:03:6c:3a:ac:d6  txqueuelen 1000  (Ethernet)
        RX packets 8  bytes 648 (648.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 8  bytes 648 (648.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
[root@localhost ~]# ping
PING ( 56(84) bytes of data.
64 bytes from icmp_seq=1 ttl=64 time=0.109 ms
64 bytes from icmp_seq=2 ttl=64 time=0.043 ms

[root@localhost ~]# ip link set dev veth1.1 netns r2    
[root@localhost ~]# ip a
1: lo: mtu 65536 qdisc noqueue state UNKNOWN 
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: eno16780032: mtu 1500 qdisc mq state UP qlen 1000
    link/ether 00:50:56:98:0a:57 brd ff:ff:ff:ff:ff:ff
    inet brd scope global eno16780032
       valid_lft forever preferred_lft forever
    inet6 fe80::250:56ff:fe98:a57/64 scope link 
       valid_lft forever preferred_lft forever
[root@localhost ~]# ip netns exec r2 ifconfig -a
lo: flags=8  mtu 65536
        loop  txqueuelen 0  (Local Loopback)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

veth1.1: flags=4098  mtu 1500
        ether d2:23:eb:70:0f:30  txqueuelen 1000  (Ethernet)
        RX packets 12  bytes 928 (928.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 12  bytes 928 (928.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
[root@localhost ~]# ip netns exec r2 ifconfig veth1.1 up
[root@localhost ~]# ip netns exec r2 ifconfig -a
lo: flags=8  mtu 65536
        loop  txqueuelen 0  (Local Loopback)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

veth1.1: flags=4163  mtu 1500
        inet  netmask  broadcast
        inet6 fe80::d023:ebff:fe70:f30  prefixlen 64  scopeid 0x20
        ether d2:23:eb:70:0f:30  txqueuelen 1000  (Ethernet)
        RX packets 12  bytes 928 (928.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 18  bytes 1436 (1.4 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0 

[root@localhost ~]# ip netns exec r2 ping
PING ( 56(84) bytes of data.
64 bytes from icmp_seq=1 ttl=64 time=0.145 ms
--- ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 0.145/0.145/0.145/0.000 ms
