Linux配置DHCP中继服务器

润丰农场 發表於 2020-12-10 01:25:00

<h1 class="md-end-block md-heading" style="text-align: center">Linux配置DHCP中继服务器</h1>
<h2 class="md-end-block md-p">一、构建网络环境</h2>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210010815568-514756026.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 　　1.DHCP中继添加两块网卡(略)
　　2.设置DHCP中继服务器设置两个LAN区段隔离网络，网卡1为区域1，网卡2为区域2。
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210010854073-1044305667.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210010944007-2039093056.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 
 　　3.设置DHCP服务器的LAN区段(区域1)和客户端的LAN区段(区域2)
<h2 class="md-end-block md-p">二、配置DHCP服务器和DHCP中继的网络</h2>
 　　1.设置DHCP服务器IP
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#vi /etc/sysconfig/network-scripts/ifcfg-ens33</pre>
</div>
 　　修改以下配置
 　　BOOTPROTO=static #设置地址获取方式为手动
 　　IPADDR=192.168.1.1 #设置IP地址
 　　NETMASK=255.255.255.0 #设置子网掩码
 　　ONBOOT=yes #开机自动启动网卡
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011006948-546311654.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 　　保存退出
 　　使修改后的配置生效
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#nmcli c reload　　　　#刷新网卡配置</pre>
</div>
 　　为了不必要的麻烦，先把防火墙和Selinux关闭
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#systemctl stop firewalld.service #停止防火墙
#systemctl disable firewalld.service #关闭防火墙开机启动
#setenforce 0 #临时关闭Selinux，重启后失效</pre>
</div>
 　　Selinux永久关闭的方法
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#vi /etc/sysconfig/selinux #进入selinux配置文档</pre>
</div>
 　　修改SELINUX=disabled
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011032487-1768870409.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 
 2.DHCP中继服务器IP
<pre class="md-fences md-end-block ty-contain-cm modeLoaded">#vi /etc/sysconfig/network-scripts/ifcfg-ens33</pre>
 　　设置第一块网卡IP地址、子网掩码、地址获取方式等。
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011114770-475021568.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#vi /etc/sysconfig/network-scripts/ifcfg-ens34</pre>
</div>
 　　设置第二块网卡IP地址、子网掩码、地址获取方式等。
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011129227-1030796428.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 　　使修改的后的配置生效
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#nmcli c reload</pre>
</div>
 　　关闭Selinux和防火墙
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#setenforce 0
#systemctl stop firewalld.service
#systemctl disable firewalld.service</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011155820-1764008666.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
<h2 class="md-end-block md-p">三、配置本地Yum源</h2>
 　　1.创建目录
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#mkdir /cd</pre>
</div>
 　　2.挂载光驱
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011208720-2035168806.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#mount /dev/sr0 /cd #挂载光盘到/cd</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011221169-165390953.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 　　3.修改CentOS-Media.repo文件
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#vi /etc/yum.repos.d/CentOS-Media.repo</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011232366-1980937873.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 　　baseurl，指定挂载的目录下的BaseOS和AppStream目录
 　　gpdcheck = 0关闭校验
 　　enabled = 1 启动该镜像源
 
 　　4.屏蔽默认的镜像源
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011247786-999155233.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 　　vi进入此三个文件，然后修改enabled=0
 
 　　5.清空和重建cache
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#yum clean all
#yum makecache</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011304305-1903994753.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
<h2 class="md-end-block md-p">四、安装配置DHCP服务器</h2>
　　1.yum本地安装dhcp-server
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#yum -y install dhcp-server</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011317792-866416440.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
　　2.拷贝DHCP模板到DHCP配置目录下
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#cp /usr/share/doc/dhcp-server/dhcpd.conf.example /etc/dhcp/dhcpd.conf #询问是否覆盖按y同意</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011339109-1097989413.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
　　3.修改DHCP配置文档
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#vi /etc/dhcp/dhcpd.conf</pre>
</div>
　　删除多余的Subnet作用域，保留两个作用域进行修改
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011356245-323645229.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
　　第一行的子网设置为物理网卡的网段，否则启动DHCP服务则报错！
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">subnet 192.168.2.0 netmask 255.255.255.0#设置子网和掩码 {
range 192.168.2.10 192.168.2.20； #地址池范围
option domain-name-servers 114.114.114.114； #设置DNS服务器
option domain-name "xiaowangc.net" #设置域名
option routers 192.168.2.254 #设置网关
option broadcast-address 192.168.2.255 #设置广播地址
default-lease-time 600 #默认地址租期时间
max-lease-time 7200 #最长地址租期时间
}</pre>
</div>
　　4.启动DHCP服务
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#systemctl start dhcpd.service</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011425793-704089388.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
　　5.设置服务器默认路由(缺省路由)
 　　如果不设置路由DHCP应答包则丢弃
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#ip route add 192.168.2.0/24 via 192.168.1.2
add 增加路由
del 删除路由
via 网关出口 IP地址
dev 网关出口物理设备名</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011437923-406923186.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
<h2 class="md-end-block md-p">五、配置DHCP中继服务器</h2>
 　　1.配置Yum源(略，参考三)
 　　2.安装DHCP中继软件包
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#yum -y install dhcp-relay</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011449641-1590850360.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
　　3.指定DHCP服务器地址
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#dhcrelay 192.168.1.1</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011503147-1767032873.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
　　4.开启Linux路由转发功能
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">#echo "1" > /proc/sys/net/ipv4/ip_forward#临时生效

#vi /etc/sysctl.conf #修改配置文件永久生效
net.ipv4.ip_forward = 1 #设置为1即开启
#sysctl -p #立即生效</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011519409-371853022.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 
<h2 class="md-end-block md-p">六、客户端测试</h2>
　　1.设置地址获取方式为DHCP
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011541688-1431988098.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
　　2.win+r键打开运行输入cmd回车输入ipconfig /all 查看IP获取情况
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011553340-99462226.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
　　3.路由跟踪
 　　通过路由跟踪说明我们配置的网络环境是没有问题的，DHCP和DHCP中继都是正常运行的
<div class="cnblogs_Highlighter">
<pre class="brush:python;gutter:true;">tracert 192.168.1.1</pre>
</div>
<img src="https://img2020.cnblogs.com/blog/2242444/202012/2242444-20201210011604327-1154653697.png" alt="" loading="lazy" style="display: block; margin-left: auto; margin-right: auto">
 
 
 
 

</div>
<div id="MySignature" role="contentinfo">
某些内容均来源于互联网，分享仅供学习使用，如果有侵权、不妥之处，请第一时间联系我删除 
来源：https://www.cnblogs.com/xiaowangc/p/14111828.html

頁: [1]

琼殿技术论坛's Archiver

Linux配置DHCP中继服务器