优化

2025-08-08 13:49:24 +08:00 · 2023-10-24 17:49:13 +08:00
parent a9ad21b3b5
commit 6788a875a2
5 changed files with 21 additions and 6 deletions
--- a/server/handler/link_tun.go
+++ b/server/handler/link_tun.go
@@ -22,22 +22,32 @@ func checkTun() {
 	defer ifce.Close()

 	// 测试ip命令
-	cmdstr := fmt.Sprintf("ip link set dev %s up mtu %s multicast off", ifce.Name(), "1399")
-	err = execCmd([]string{cmdstr})
+	cmdstr0 := fmt.Sprintln("modprobe -i tun")
+	cmdstr1 := fmt.Sprintf("ip link set dev %s up mtu %s multicast off", ifce.Name(), "1399")
+	err = execCmd([]string{cmdstr0, cmdstr1})
 	if err != nil {
 		base.Fatal("testTun err: ", err)
 	}
 	//开启服务器转发
 	if err := execCmd([]string{"sysctl -w net.ipv4.ip_forward=1"}); err != nil {
-		base.Error(err)
+		base.Fatal(err)
 	}
 	if base.Cfg.IptablesNat {
 		//添加NAT转发规则
 		ipt, err := iptables.New()
 		if err != nil {
-			base.Error(err)
+			base.Fatal(err)
 			return
 		}
+
+		//修复 rockyos nat 不生效
+		cmdstr0 := fmt.Sprintln("modprobe -i iptable_filter")
+		cmdstr1 := fmt.Sprintf("modprobe -i iptable_nat")
+		err = execCmd([]string{cmdstr0, cmdstr1})
+		if err != nil {
+			base.Fatal("testTun err: ", err)
+		}
+
 		natRule := []string{"-s", base.Cfg.Ipv4CIDR, "-o", base.Cfg.Ipv4Master, "-j", "MASQUERADE"}
 		forwardRule := []string{"-j", "ACCEPT"}
 		if natExists, _ := ipt.Exists("nat", "POSTROUTING", natRule...); !natExists {