GNU/Linux - weloveteach.com fileGNU/Linux Corporate | Módulo 07 – DHCP Server 2 Configurações...
Transcript of GNU/Linux - weloveteach.com fileGNU/Linux Corporate | Módulo 07 – DHCP Server 2 Configurações...
Módulo 07 – DHCP Server
GNU/LinuxCorporate
Autor: Salim Aouar
2GNU/Linux Corporate | Módulo 07 – DHCP Server
Configurações do Servidor:1 – instalar o isc-dhcp-server:sudo apt updatesudo apt install isc-dhcp-server
2 – editar /etc/default/isc-dhcp-server:- inserir as interfaces para responder:INTERFACES=”eth1 eth2 eth3”
3 – modificar /etc/dhcp/dhcpd.conf:ddns-update-style none;default-lease-time 600;max-lease-time 7200;log-facility local7;include "/etc/dhcp/confs/lan1.conf";include "/etc/dhcp/confs/lan2.conf";include "/etc/dhcp/confs/dmz.conf";
4 – criar diretório e arquivos:sudo mkdir /etc/dhcp/confs/touch /etc/dhcp/confs/lan1.conftouch /etc/dhcp/confs/lan2.conftouch /etc/dhcp/confs/dmz.conf
5 – editar os três arquivos (ex.: lan1.conf):subnet 192.168.10.0 netmask 255.255.255.0 {
interface eth1;range 192.168.10.30 192.168.10.150;option routers 192.168.10.1;option domain-name-servers 8.8.8.8,8.8.4.4;option broadcast-address 192.168.10.255;
}
6 – reiniciar o serviço de dhcp:service isc-dhcp-server restartousystemctl restart isc-dhcp-server
Instalação e Configuração
3GNU/Linux Corporate | Módulo 07 – DHCP Server
MAC-Address:1 – inserir o MAC e IP no arquivo (lan1.conf):host PC_A { hardware ethernet 00:03:11:11:11:11; fixed-address 192.168.10.10;}
2 – reiniciar o serviço dhcp:service isc-dhcp-server restartousystemctl restart isc-dhcp-server
1 – criar a classe no arquivo (lan1.conf):class "net_internal" { match if (substring(hardware, 1, 2) = 00:01) or (substring(hardware, 1, 2) = 00:02) or (substring(hardware, 1, 2) = 00:03);}
2 – autorizar a classe 'net_internal' na subnet :subnet 192.168.10.0 netmask 255.255.255.0 {
interface eth1;allow members of "net_internal";deny unknown-clients;
…..
3 – reiniciar o servidor dhcp:service isc-dhcp-server restartousystemctl restart isc-dhcp-server
Controles Avançados
Class:
4GNU/Linux Corporate | Módulo 07 – DHCP Server
VLAN (se for o caso):1 – instalar o pacote 'vlan':apt updateapt install vlan
2 – configurar a interface com o id da vlan:ifconfig eth1.100 192.168.100.1/24ou- /etc/network/interfaces (permanente)
3 – editar /etc/default/isc-dhcp-server:- inserir a nova interface:INTERFACES=”eth1 eth2 eth3 eth1.100”
4 – modificar /etc/dhcp/dhcpd.conf:...include "/etc/dhcp/confs/vlan100.conf";
5 – criar o arquivo .conf:touch /etc/dhcp/confs/vlan100.conf
6 – editar a configuração (vlan100.conf):subnet 192.168.100.0 netmask 255.255.255.0 {
interface eth1.100;range 192.168.100.30 192.168.100.150;option routers 192.168.100.1;option domain-name-servers 8.8.8.8,8.8.4.4;option broadcast-address 192.168.100.255;
}
7 – reiniciar o servidor dhcp:service isc-dhcp-server restartousystemctl restart isc-dhcp-server
Controles Avançados