Linux Bond一键网卡绑定配置脚本
- 2026-04-20 13:32:49
Linux Bond一键网卡绑定配置脚本
Linux Bond一键网卡绑定配置脚本
#!/usr/bin/env bash
#===============================================================================
# Bond 网卡绑定配置工具 v3.1 - CentOS 7 兼容版
# 修复: 移除 Bash 4.3+ 的 nameref 特性,支持 Bash 4.2
#===============================================================================
set -uo pipefail
readonly BACKUP_DIR="/var/lib/bond-config-backups"
readonly LOG_FILE="/var/log/bond-config.log"
readonly SCRIPT_VERSION="3.1"
# ====================== 全局数组 (替代 nameref) ======================
declare -a IFACES=()
declare -a SLAVES=()
# ====================== 颜色定义 ======================
setup_colors() {
if [[ -t 2 ]] && [[ "${TERM:-}" != "dumb" ]]; then
RED=$(tput setaf 1 2>/dev/null || echo"")
GREEN=$(tput setaf 2 2>/dev/null || echo"")
YELLOW=$(tput setaf 3 2>/dev/null || echo"")
BLUE=$(tput setaf 4 2>/dev/null || echo"")
CYAN=$(tput setaf 6 2>/dev/null || echo"")
BOLD=$(tput bold 2>/dev/null || echo"")
RESET=$(tput sgr0 2>/dev/null || echo"")
else
RED="" GREEN="" YELLOW="" BLUE="" CYAN="" BOLD="" RESET=""
fi
}
setup_colors
# ====================== 日志函数 ======================
log() { echo"[$(date '+%Y-%m-%d %H:%M:%S')] $1" >> "$LOG_FILE"; }
info() { echo"${GREEN}[INFO]${RESET}$1"; log"INFO: $1"; }
warn() { echo"${YELLOW}[WARN]${RESET}$1"; log"WARN: $1"; }
error() { echo"${RED}[ERROR]${RESET}$1" >&2; log"ERROR: $1"; }
# ====================== 依赖检查 ======================
need_cmd() {
if ! command -v "$1" >/dev/null 2>&1; then
error "缺少必要命令: $1"; exit 1
fi
}
check_deps() {
need_cmd nmcli; need_cmd ip; need_cmd ethtool; need_cmd ping
}
# ====================== 备份与回滚 ======================
backup_config() {
mkdir -p "$BACKUP_DIR"
local backup_file="$BACKUP_DIR/bond-backup-$(date +%Y%m%d-%H%M%S).tar.gz"
[[ -d /etc/NetworkManager/system-connections ]] && \
tar -czf "$backup_file" -C /etc/NetworkManager system-connections 2>/dev/null
ip addr show > "$BACKUP_DIR/ip-addr-$(date +%Y%m%d-%H%M%S).txt" 2>/dev/null
info "配置已备份至: $backup_file"
}
rollback_config() {
warn "配置失败,正在回滚..."
nmcli con down "$BOND_NAME" 2>/dev/null || true
nmcli con del "$BOND_NAME" 2>/dev/null || true
local dev
for dev in"${SLAVES[@]}"; do
nmcli con del "${BOND_NAME}-slave-$dev" 2>/dev/null || true
local orig=$(nmcli -t -f NAME,DEVICE con show | awk -F: -v d="$dev"'$2==d{print $1}' | head -1)
[[ -n "$orig" ]] && nmcli con up "$orig" 2>/dev/null || true
done
info "回滚完成"
}
trap'error "脚本被中断"; rollback_config; exit 130' INT TERM
# ====================== 输入验证 ======================
validate_ip() {
local ip=$1
[[ $ip =~ ^([0-9]{1,3}\.){3}[0-9]{1,3}$ ]] || return 1
IFS='.'read -ra octets <<< "$ip"
local octet
for octet in"${octets[@]}"; do
(( octet < 0 || octet > 255 )) && return 1
done
return 0
}
validate_prefix() {
[[ "$1" =~ ^[0-9]+$ ]] && (( $1 >= 1 && $1 <= 32 ))
}
# ====================== 网卡检测 (修复版) ======================
# 修复: 不使用 nameref,直接操作全局数组 IFACES
get_physical_ifaces() {
IFACES=() # 清空全局数组
local device dtype
while IFS=: read -r device dtype; do
if [[ "$dtype" == "ethernet" && "$device" != "lo" && ! "$device" =~ ^(bond|br|virbr|docker|veth|tun|tap|wg) ]]; then
if ip link show "$device" >/dev/null 2>&1; then
IFACES+=("$device")
fi
fi
done < <(nmcli -t -f DEVICE,TYPE device status 2>/dev/null)
}
display_iface_info() {
local dev=$1 idx=$2
local state=$(nmcli -t -f DEVICE,STATE device status 2>/dev/null | awk -F: -v d="$dev"'$1==d{print $2}')
local mac=$(ip link show "$dev" 2>/dev/null | awk '/ether/{print $2}')
local ip4=$(ip -4 -o addr show "$dev" 2>/dev/null | awk '{print $4}' | head -n1)
local speed=$(ethtool "$dev" 2>/dev/null | awk '/Speed/{print $2}' || echo"unknown")
local has_con=$(nmcli -t -f DEVICE,NAME con show --active 2>/dev/null | grep "^${dev}:")
local status="${GREEN}●${RESET}"; [[ -n "$has_con" ]] && status="${YELLOW}◐${RESET}"
printf" %s [%d] %-10s 状态:%-10s IP:%-18s MAC:%-18s 速率:%s\n" \
"$status""$idx""$dev""$state""${ip4:-none}""${mac:-unknown}""$speed"
}
# ====================== 连通性测试 ======================
test_connectivity() {
local target=${1:-"8.8.8.8"}
info "测试网络连通性 (ping $target)..."
if ping -c 3 -W 2 "$target" >/dev/null 2>&1; then
info "✓ 网络连通性正常"; return 0
else
warn "✗ 无法连通 $target"; return 1
fi
}
show_summary() {
echo; echo"${BOLD}${CYAN}================ 配置摘要 ================${RESET}"
echo" Bond 接口: ${BOLD}$BOND_NAME${RESET} 模式: ${BOLD}$BOND_MODE${RESET}"
echo" IP 配置: ${BOLD}$([[ "$IP_METHOD" == "auto" ]] && echo "DHCP" || echo "$ADDR_CIDR")${RESET}"
echo" 从属网卡: ${BOLD}${SLAVES[*]}${RESET}"
echo"${BOLD}${CYAN}==========================================${RESET}"; echo
}
# ====================== 主程序 ======================
main() {
check_deps
mkdir -p "$(dirname "$LOG_FILE")"
log"=== Bond 配置工具 v$SCRIPT_VERSION 启动 ==="
clear
echo"${BOLD}${CYAN}======== Bond 网卡绑定配置工具 v${SCRIPT_VERSION} ========${RESET}"
echo"${BOLD}${CYAN} 兼容版: 支持 CentOS 7/RHEL 7 (Bash 4.2) ${RESET}"
echo"${BOLD}${CYAN}============================================${RESET}"; echo
# 获取物理网卡 - 使用全局数组
get_physical_ifaces
(( ${#IFACES[@]} < 2 )) && { error "可用物理网卡少于 2 块 (找到: ${#IFACES[@]} 块)"; exit 1; }
info "发现 ${#IFACES[@]} 块物理网卡"
echo"${BOLD}可用网卡 (●空闲 ◐已连接):${RESET}"; echo
# 修复: 使用传统 C-style for 循环,兼容 Bash 4.2
local i
for ((i=0; i<${#IFACES[@]}; i++)); do
display_iface_info "${IFACES[$i]}""$i"
done
echo
# Bond 名称
read -rp "Bond 接口名 [bond0]: " BOND_NAME
BOND_NAME="${BOND_NAME:-bond0}"
if ip link show "$BOND_NAME" >/dev/null 2>&1; then
error "接口 $BOND_NAME 已存在"
read -rp "是否删除现有配置? (y/N): " del_ok
[[ "$del_ok" =~ ^[Yy]$ ]] && { nmcli con down "$BOND_NAME" 2>/dev/null; nmcli con del "$BOND_NAME" 2>/dev/null; } || exit 1
fi
# Bond 模式
echo; echo"${BOLD}Bond 模式:${RESET}"
echo" 1) balance-rr 2) active-backup(推荐) 3) balance-xor"
echo" 4) broadcast 5) 802.3ad(LACP生产推荐) 6) balance-tlb 7) balance-alb"
read -rp "选择 [2]: " MODE_NO; MODE_NO="${MODE_NO:-2}"
case"$MODE_NO"in
1) BOND_MODE="balance-rr" ;; 2) BOND_MODE="active-backup" ;;
3) BOND_MODE="balance-xor" ;; 4) BOND_MODE="broadcast" ;;
5) BOND_MODE="802.3ad" ;; 6) BOND_MODE="balance-tlb" ;;
7) BOND_MODE="balance-alb" ;; *) error "无效模式"; exit 1 ;;
esac
# LACP 速率
LACP_OPTS=""
if [[ "$BOND_MODE" == "802.3ad" ]]; then
echo; echo"${BOLD}LACP 速率:${RESET} 1) slow(30秒,默认) 2) fast(1秒)"
read -rp "选择 [1]: " lacp_rate; [[ "$lacp_rate" == "2" ]] && LACP_OPTS=",lacp_rate=fast"
fi
# IP 配置
echo; read -rp "IPv4 配置 1=DHCP 2=静态 [1]: " IP_MODE; IP_MODE="${IP_MODE:-1}"
IP_METHOD="auto"
if [[ "$IP_MODE" == "2" ]]; then
IP_METHOD="manual"
whiletrue; do
read -rp "IP 地址 (如: 192.168.1.100): " IPADDR
validate_ip "$IPADDR" && break || error "IP 格式无效"
done
whiletrue; do
read -rp "前缀长度 (1-32): " PREFIX
validate_prefix "$PREFIX" && break || error "前缀无效"
done
ADDR_CIDR="${IPADDR}/${PREFIX}"
read -rp "网关(可空): " GATEWAY
[[ -n "$GATEWAY" ]] && ! validate_ip "$GATEWAY" && warn "网关格式可能无效"
read -rp "DNS(逗号分隔,可空): " DNS_SERVERS
fi
# 选择 Slave - 使用全局数组 SLAVES
echo; echo"${BOLD}选择网卡序号 (空格分隔, 如: 0 1):${RESET}"
read -rp "> " -a IDX
(( ${#IDX[@]} >= 2 )) || { error "至少选择 2 块网卡"; exit 1; }
SLAVES=() # 清空并填充全局数组
localid
foridin"${IDX[@]}"; do
if [[ ! "$id" =~ ^[0-9]+$ ]] || (( id < 0 || id >= ${#IFACES[@]} )); then
error "无效序号: $id"; exit 1
fi
SLAVES+=("${IFACES[$id]}")
done
show_summary
read -rp "${YELLOW}确认配置? 会短暂中断网络 (y/N): ${RESET}" OK
[[ "$OK" =~ ^[Yy]$ ]] || { info "已取消"; exit 0; }
# 执行配置
backup_config
info "开始配置 Bond $BOND_NAME..."
nmcli con del "$BOND_NAME" 2>/dev/null || true
if ! nmcli con add type bond ifname "$BOND_NAME" con-name "$BOND_NAME" \
ipv4.method "$IP_METHOD" ipv6.method ignore; then
error "创建 Bond 失败"; rollback_config; exit 1
fi
nmcli con mod "$BOND_NAME" bond.options "mode=$BOND_MODE,miimon=100${LACP_OPTS}"
if [[ "$IP_METHOD" == "manual" ]]; then
nmcli con mod "$BOND_NAME" ipv4.addresses "$ADDR_CIDR"
[[ -n "$GATEWAY" ]] && nmcli con mod "$BOND_NAME" ipv4.gateway "$GATEWAY"
[[ -n "$DNS_SERVERS" ]] && nmcli con mod "$BOND_NAME" ipv4.dns "${DNS_SERVERS//,/ }"
nmcli con mod "$BOND_NAME" ipv4.method manual
fi
local dev
for dev in"${SLAVES[@]}"; do
local existing=$(nmcli -t -f DEVICE,NAME con show --active | awk -F: -v d="$dev"'$1==d{print $1}')
[[ -n "$existing" ]] && nmcli con down "$existing" 2>/dev/null
if ! nmcli con add type bond-slave ifname "$dev" master "$BOND_NAME" \
con-name "${BOND_NAME}-slave-$dev"; then
error "添加从属网卡 $dev 失败"; rollback_config; exit 1
fi
done
if ! nmcli con up "$BOND_NAME"; then
error "启动 Bond 失败"; rollback_config; exit 1
fi
sleep 2
if [[ -f /proc/net/bonding/"$BOND_NAME" ]]; then
echo; info "${BOLD}Bond 配置成功!${RESET}"
echo; echo"${BOLD}Bond 状态:${RESET}"
cat /proc/net/bonding/"$BOND_NAME" | head -15
echo; ip addr show "$BOND_NAME" | grep -E "inet|state"
fi
# 连通性测试
if [[ "$IP_METHOD" == "manual" && -n "$GATEWAY" ]]; then
test_connectivity "$GATEWAY"
else
test_connectivity "8.8.8.8"
fi
echo; info "配置完成! 查看状态: cat /proc/net/bonding/$BOND_NAME"
log"=== Bond $BOND_NAME 配置完成 ==="
}
main "$@"
本文来自网友投稿或网络内容,如有侵犯您的权益请联系我们删除,联系邮箱:wyl860211@qq.com 。
