分类 默认分类 下的文章

一、备份现有apt源配置

mv /etc/apt/sources.list /etc/apt/sources.list.old

二、替换为其他apt源
1、替换为默认官方源

这是一条命令,全部复制后,直接粘贴然后一起执行。

cat > /etc/apt/sources.list << EOF
deb https://deb.debian.org/debian/ bullseye main contrib non-free
deb-src https://deb.debian.org/debian/ bullseye main contrib non-free

deb https://deb.debian.org/debian/ bullseye-updates main contrib non-free
deb-src https://deb.debian.org/debian/ bullseye-updates main contrib non-free

deb https://deb.debian.org/debian/ bullseye-backports main contrib non-free
deb-src https://deb.debian.org/debian/ bullseye-backports main contrib non-free

deb https://deb.debian.org/debian-security/ bullseye-security main contrib non-free
deb-src https://deb.debian.org/debian-security/ bullseye-security main contrib non-free
EOF

2、替换为清华源

这是一条命令,全部复制后,直接粘贴然后一起执行。

cat > /etc/apt/sources.list << EOF
deb https://mirrors.tuna.tsinghua.edu.cn/debian/ bullseye main contrib non-free
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian/ bullseye main contrib non-free

deb https://mirrors.tuna.tsinghua.edu.cn/debian/ bullseye-updates main contrib non-free
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian/ bullseye-updates main contrib non-free

deb https://mirrors.tuna.tsinghua.edu.cn/debian/ bullseye-backports main contrib non-free
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian/ bullseye-backports main contrib non-free

deb https://mirrors.tuna.tsinghua.edu.cn/debian-security/ bullseye-security main contrib non-free
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian-security/ bullseye-security main contrib non-free
EOF

3、替换为中科大源

这是一条命令,全部复制后,直接粘贴然后一起执行。

cat > /etc/apt/sources.list << EOF
deb https://mirrors.ustc.edu.cn/debian/ bullseye main contrib non-free
deb-src https://mirrors.ustc.edu.cn/debian/ bullseye main contrib non-free

deb https://mirrors.ustc.edu.cn/debian/ bullseye-updates main contrib non-free
deb-src https://mirrors.ustc.edu.cn/debian/ bullseye-updates main contrib non-free

deb https://mirrors.ustc.edu.cn/debian/ bullseye-backports main contrib non-free
deb-src https://mirrors.ustc.edu.cn/debian/ bullseye-backports main contrib non-free

deb https://mirrors.ustc.edu.cn/debian-security/ bullseye-security main contrib non-free
deb-src https://mirrors.ustc.edu.cn/debian-security/ bullseye-security main contrib non-free
EOF

4、替换为腾讯云源

这是一条命令,全部复制后,直接粘贴然后一起执行。

cat > /etc/apt/sources.list << EOF
deb https://mirrors.cloud.tencent.com/debian/ bullseye main contrib non-free
deb-src https://mirrors.cloud.tencent.com/debian/ bullseye main contrib non-free

deb https://mirrors.cloud.tencent.com/debian/ bullseye-updates main contrib non-free
deb-src https://mirrors.cloud.tencent.com/debian/ bullseye-updates main contrib non-free

deb https://mirrors.cloud.tencent.com/debian/ bullseye-backports main contrib non-free
deb-src https://mirrors.cloud.tencent.com/debian/ bullseye-backports main contrib non-free

deb https://mirrors.cloud.tencent.com/debian-security/ bullseye-security main contrib non-free
deb-src https://mirrors.cloud.tencent.com/debian-security/ bullseye-security main contrib non-free
EOF

使用腾讯云服务器时,可以选择腾讯云内网源,走内网不消耗公网流量。
5、替换为阿里云源

这是一条命令,全部复制后,直接粘贴然后一起执行。

cat > /etc/apt/sources.list << EOF
deb https://mirrors.aliyun.com/debian/ bullseye main contrib non-free
deb-src https://mirrors.aliyun.com/debian/ bullseye main contrib non-free

deb https://mirrors.aliyun.com/debian/ bullseye-updates main contrib non-free
deb-src https://mirrors.aliyun.com/debian/ bullseye-updates main contrib non-free

deb https://mirrors.aliyun.com/debian/ bullseye-backports main contrib non-free
deb-src https://mirrors.aliyun.com/debian/ bullseye-backports main contrib non-free

deb https://mirrors.aliyun.com/debian-security/ bullseye-security main contrib non-free
deb-src https://mirrors.aliyun.com/debian-security/ bullseye-security main contrib non-free
EOF

使用阿里云服务器时,可以选择阿里云内网源,走内网不消耗公网流量。
6、替换为Linode源(不支持HTTPS)

这是一条命令,全部复制后,直接粘贴然后一起执行。

cat > /etc/apt/sources.list << EOF
deb http://mirrors.linode.com/debian/ bullseye main contrib non-free
deb-src http://mirrors.linode.com/debian/ bullseye main contrib non-free

deb http://mirrors.linode.com/debian/ bullseye-updates main contrib non-free
deb-src http://mirrors.linode.com/debian/ bullseye-updates main contrib non-free

deb http://mirrors.linode.com/debian/ bullseye-backports main contrib non-free
deb-src http://mirrors.linode.com/debian/ bullseye-backports main contrib non-free

deb http://mirrors.linode.com/debian-security/ bullseye-security main contrib non-free
deb-src http://mirrors.linode.com/debian-security/ bullseye-security main contrib non-free
EOF

解决https报错的问题

apt install apt-transport-https ca-certificates

换内核

mkdir kernel
cd kernel
wget https://blog.kkk.rs/upload/pve_8.2_kernel_6.8.4_dg1_dg2.zip
apt install unzip
unzip pve_8.2_kernel_6.8.4_dg1_dg2.zip
# 固定启动内核版本
dpkg -i *.deb
pve-efiboot-tool kernel pin 6.8.4-3-pdbear-pve
# 更新下引导和ramfs
update-initramfs -u -k all
update-grub
reboot

修改内核参数

# nano /etc/default/grub
# 修改 GRUB_CMDLINE_LINUX_DEFAULT

GRUB_CMDLINE_LINUX_DEFAULT="quiet intel_iommu=on spectre_v2=off spectre_v1=off pcie_acs_override=downstream pcie_aspm=off"

上面的选项解释如下:

intel_iommu=on 开启intel的iommu,这里如果是amd的处理需要修改为:amd_iommu=on
spectre_v2=off spectre_v1=off两个CPU BUG的修补,是侧信道攻击,安全类BUG,但修复会导致CPU性能下降,这里我选择不修补,可根据自己情况进行选择。
pcie_acs_override=downstream IOMMU分组补丁,用于将设备分组分的更开一点,如果使用这段代码仍然无法分开iommu组,可以尝试使用这段:pcie_acs_override=downstream,multifunction
pcie_aspm=off 关闭PCIe硬件链路节能机制,DG1的PCIe IP不太兼容这个,建议关闭,关闭后可以运行的更为稳定。

上面选项修改完毕后,使用update-grub更新引导,并重新启动PVE系统;

重新启动后将下面脚本保存为iommu.sh,给与可执行权限chmod +x iommu.sh,并执行,即可查看iommu分组:

#!/bin/bash
for g in `find /sys/kernel/iommu_groups/* -maxdepth 0 -type d | sort -V`; do \
    echo "IOMMU Group ${g##*/}:"; \
        for d in $g/devices/*; do \
        echo -e "\t$(lspci -nns ${d##*/})"; \
        done; \
done;

后运行该脚本,查看dg1和你要直通的其他显卡的分组和编号,

chmod +x iommu.sh
./iommu.sh

飞牛ssh登录

sudo -i # 输入密码
dpkg -r intel-i915 # 如果此前没有安装,这里会说找不到,这没有关系
wget https://blog.kkk.rs/upload/intel-i915-v2.deb
dpkg -i --force-all intel-i915-v2.deb
reboot

关机,再直通显卡 不不会死机

Windows下BBRv2开启和验证
Windows BBR适用版本。

Windows 11 22H2 以上 支持 TCP BBR 拥塞控制,具体系统版本是从10.0.22621版本开始,而Windows Server 2025也支持此功能。

注意:BBR只会加速上行TCP流量。
Windows查看当前TCP拥塞控制(Powershell 管理员界面)

PS C:\Users\admin> Get-NetTCPSetting | Select SettingName, CongestionProvider

SettingName      CongestionProvider
-----------      ------------------
Automatic
InternetCustom   CUBIC
DatacenterCustom CUBIC
Compat           NewReno
Datacenter       CUBIC
Internet         CUBIC

Windows修改为BBRv2 (使用Powershell 管理员权限)

netsh int tcp set supplemental Template=Internet CongestionProvider=bbr2
netsh int tcp set supplemental Template=Datacenter CongestionProvider=bbr2
netsh int tcp set supplemental Template=Compat CongestionProvider=bbr2
netsh int tcp set supplemental Template=DatacenterCustom CongestionProvider=bbr2
netsh int tcp set supplemental Template=InternetCustom CongestionProvider=bbr2

Windows验证BBR

PS C:\Users\admin> Get-NetTCPSetting | Select SettingName, CongestionProvider

    SettingName      CongestionProvider
    -----------      ------------------
    Automatic
    InternetCustom   BBR2
    DatacenterCustom BBR2
    Compat           BBR2
    Datacenter       BBR2
    Internet         BBR2

Windows切换为默认拥塞控制 (因为可能会造成本地 TCP 连接无法使用,比如导致Hyper-V不能连接)

netsh int tcp set supplemental Template=Internet CongestionProvider=cubic
netsh int tcp set supplemental Template=Datacenter CongestionProvider=cubic
netsh int tcp set supplemental Template=Compat CongestionProvider=newreno
netsh int tcp set supplemental Template=DatacenterCustom CongestionProvider=cubic
netsh int tcp set supplemental Template=InternetCustom CongestionProvider=cubic

Debian系列更新内核开启BBRv3 (包括Ubuntu)
安装 Xanmod 内核 - 使用南京大学镜像站

wget -qO - https://dl.xanmod.org/archive.key | sudo gpg --dearmor -vo /etc/apt/keyrings/xanmod-archive-keyring.gpg

# 从 XanMod 官方网站下载 GPG 公钥,并转换成二进制格式,保存到系统的 keyrings 目录中


echo 'deb [signed-by=/etc/apt/keyrings/xanmod-archive-keyring.gpg] https://mirror.nju.edu.cn/xanmod releases main' | sudo tee /etc/apt/sources.list.d/xanmod-release.list

# 将 XanMod 软件源添加到系统的 APT 软件源列表中,并指定使用刚才导入的公钥进行验证


sudo apt update && sudo apt install linux-xanmod-x64v3

# 更新软件包索引列表,并安装 xanmod 官方提供的 x64v3 架构的 Linux 内核包

systemctl reboot 

# 重启,使用新内核,默认会开启BBRv3

RHEL8-10系列开启BBRv1 (包括Rocky)

# 将 BBR 设置为系统默认的 TCP 拥塞控制算法,追加写入 /etc/sysctl.conf 文件(需要 root 权限)
echo "net.ipv4.tcp_congestion_control = bbr" | sudo tee -a /etc/sysctl.conf

# 将流量调度算法设置为 fq(Fair Queueing),是开启 BBR 推荐的默认队列调度器,同样追加写入配置文件
echo "net.core.default_qdisc = fq" | sudo tee -a /etc/sysctl.conf

# 立即应用 /etc/sysctl.conf 中所有配置,使修改生效
sudo sysctl -p


# 查看当前生效的 TCP 拥塞控制算法,确认是否是 bbr
sysctl net.ipv4.tcp_congestion_control

PS:Debian系列如果内核大于4.9 也可以用上述办法不更新内核不重启开启BBRv1

FreeBSD开启 BBR

# 使用 sysrc 命令将 tcp_rack 和 tcp_bbr 内核模块添加到启动时自动加载列表中
# 这样系统启动时会自动加载这两个 TCP 拥塞控制相关的模块
sysrc kld_list+="tcp_rack tcp_bbr"

# 将配置写入 /etc/sysctl.conf 文件,设置 TCP 默认使用的拥塞控制算法为 bbr
# 该设置在系统启动时由 sysctl 读取并应用
echo 'net.inet.tcp.functions_default=bbr' >> /etc/sysctl.conf

# 重启系统,让内核模块加载并应用新的 sysctl 配置
reboot

# 系统启动后,查看当前默认的 TCP 拥塞控制算法,确认是否成功开启 BBR
sysctl net.inet.tcp.functions_default

删除订阅弹窗

sed -Ezi.bak "s/(Ext.Msg.show\(\{\s+title: gettext\('No valid sub)/void\(\{ \/\/\1/g" /usr/share/javascript/proxmox-widget-toolkit/proxmoxlib.js && systemctl restart pveproxy.service

修改软件源

mv /etc/apt/sources.list.d/pve-enterprise.list /etc/apt/sources.list.d/pve-enterprise.list.bak
# 屏蔽订阅企业源
wget https://mirrors.ustc.edu.cn/proxmox/debian/proxmox-release-bookworm.gpg -O /etc/apt/trusted.gpg.d/proxmox-release-bookworm.gpg
echo "deb https://mirrors.ustc.edu.cn/proxmox/debian bookworm pve-no-subscription" > /etc/apt/sources.list.d/pve-no-subscription.list
# 使用Proxmox非企业版中科大源
sed -i 's|^deb http://ftp.debian.org|deb https://mirrors.ustc.edu.cn|g' /etc/apt/sources.list
sed -i 's|^deb http://security.debian.org|deb https://mirrors.ustc.edu.cn/debian-security|g' /etc/apt/sources.list
# 将Debian官方源替换为中科大源
echo "deb https://mirrors.ustc.edu.cn/proxmox/debian/ceph-quincy bookworm no-subscription" > /etc/apt/sources.list.d/ceph.list
# 替换Ceph源
sed -i 's|http://download.proxmox.com|https://mirrors.ustc.edu.cn/proxmox|g' /usr/share/perl5/PVE/APLInfo.pm
# 替换CT镜像下载源(重启PVE才能生效)
apt update 
#更新源列表
apt upgrade 
#升级软件包
apt dist-upgrade 
#升级系统
apt install openvswitch-switch
#安装OVS



apt-get update
apt-get install firmware-realtek r8168-dkms

nano /etc/modprobe.d/blacklist.conf
加入下面的
blacklist r8169

nano /etc/default/grub
加入或者修改下面这个,我不记得了
GRUB_CMDLINE_LINUX_DEFAULT="libata.noacpi=1"

update-grub

ethtool -K enp3s0 tso off gso off


ifconfig -a

ethtool -K enp4s0 tso off gso off

要是搞不定,主要你还是要啃一下一开头我发的arch那篇文章,因为现在可能ovh那边修好了也说不定,能看懂那篇文章再动是最好的
  1. 1
  2. 2
  3. 3
  4. 4
  5. 5
  6. 6