Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

DHCP snooping

2025-04-19 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

The main task is to do DHCP Snooping.

The DHCP server is on the router, while there are three VLAN on the SWA, belonging to three different network segments

The request message for DHCP is broadcast, so a relay must be set up on the SWA before it can be delivered to the router.

Pseudo DHCP Server has been configured to publish the address pool of 172.22.1.1-99 and the gateway 172.22.1.254 DNS 9.9.9

Configuration step

(1) # configure the router.

System-view

[H3C] interface g 0/0

[[H3C-GigabitEthernet0/0]] ip address 10.1.1.2 30

[[H3C-GigabitEthernet0/0]] quit

# enable DHCP service.

[H3C] dhcp enable

# configure DHCP address pool 1 to assign addresses to clients from within the 192.168.1.0 to 24 network segment.

[H3C] dhcp server ip-pool 1

[H3C-dhcp-pool-0] network 192.168.10.0 mask 255.255.255.0

[H3C-dhcp-pool-0] dns-list 8.8.8.8

[H3C-dhcp-pool-0] gateway-list 192.168.10.254

[H3C-dhcp-pool-0] quit

# configure DHCP address pool 2 to assign addresses to clients from within the 192.168.20.0 tap 24 network segment.

[H3C] dhcp server ip-pool 2

[H3C-dhcp-pool-0] network 192.168.20.0 mask 255.255.255.0

[H3C-dhcp-pool-0] dns-list 8.8.8.8

[H3C-dhcp-pool-0] gateway-list 192.168.20.254

[H3C-dhcp-pool-0] quit

# configure DHCP address pool 3 to assign addresses to clients from within the 192.168.30.0swap 24 network segment.

[H3C] dhcp server ip-pool 3

[H3C-dhcp-pool-0] network 192.168.30.0 mask 255.255.255.0

[H3C-dhcp-pool-0] dns-list 8.8.8.8

[H3C-dhcp-pool-0] gateway-list 192.168.30.254

[H3C-dhcp-pool-0] quit

# configure a static route to the 192.168.0.0ax 16 network segment

[H3C] ip route-static 192.168.0.0 16 10.1.1.1

(2) # configure the SWA switch.

# establish vlan and configure the IP address of each interface.

System-view

[H3C] vlan 10

[H3C-vlan10] quit

[H3C] vlan 20

[H3C-vlan20] quit

[H3C] vlan 30

[H3C-vlan30] quit

[H3C] inter range g 1-0-1 to g 1-0-5

[H3C-if-range] port link-type access

[H3C-if-range] port access vlan 10

[H3C-if-range] quit

[H3C] inter range g 1-0-6 to g 1-0-10

[H3C-if-range] port link-type access

[H3C-if-range] port access vlan 20

[H3C-if-range] quit

[H3C] inter range g 1-0-11 to g 1-0-15

[H3C-if-range] port link-type access

[H3C-if-range] port access vlan 30

[H3C-if-range] quit

[H3C] inter vlan 10

[H3C-Vlan-interface10] ip add 192.168.10.254 24

[H3C-Vlan-interface10] quit

[H3C] inter vlan 20

[H3C-Vlan-interface20] ip add 192.168.20.254 24

[H3C-Vlan-interface20] quit

[H3C] inter vlan 30

[H3C-Vlan-interface30] ip add 192.168.30.254 24

[H3C-Vlan-interface30] quit

[H3C]

[H3C] inter g 1-0-23

[H3C-GigabitEthernet1/0/23] port link-t

[H3C-GigabitEthernet1/0/23] ip add 10.1.1.1 30

[H3C-GigabitEthernet1/0/23] quit

(3) # configure DHCP trunking (SWA switch)

# enable DHCP service.

[H3C] dhcp enable

# configure VLAN interface 10 to work in DHCP trunk mode.

[H3C] interface vlan-interface 10

[H3C-Vlan-interface10] dhcp select relay

# configure the address of the DHCP server.

[H3C-Vlan-interface10] dhcp relay server-address 10.1.1.2

[H3C-Vlan-interface10] quit

Configure VLAN interface 20 to operate in DHCP trunk mode.

[H3C] interface vlan-interface 20

[H3C-Vlan-interface20] dhcp select relay

[H3C-Vlan-interface20] dhcp relay server-address 10.1.1.2

[H3C-Vlan-interface20] quit

# configure VLAN interface 30 to work in DHCP trunk mode.

[H3C] interface vlan-interface 30

[H3C-Vlan-interface30] dhcp select relay

[H3C-Vlan-interface30] dhcp relay server-address 10.1.1.2

[H3C-Vlan-interface30] quit (4) # configure DHCP Snooping (SWB switch)

# enable DHCP Snooping function.

[H3C] dhcp snooping enable

# set GigabitEthernet1/0/21 port to trust port.

[H3C] interface GigabitEthernet 1-0-21

[H3C-GigabitEthernet1/0/21] dhcp snooping trust

[H3C-GigabitEthernet1/0/21] quit

# enable the DHCP Snooping item feature on GigabitEthernet1/0/1.

[H3C] interface GigabitEthernet 1-0-1

[H3C-GigabitEthernet1/0/1] dhcp snooping binding record

[H3C-GigabitEthernet1/0/1] quit

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Configuration address network segment trunk interface route service switch customer client mode router assignment work function server port different task message vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple Linux Apple Huawei MySQL Microsoft MariaDB NVidia Shulou Information OPPO Reno Shulou Tech Info Redmi macOS Shulou Technology vpn Xiaomi Docker Linux Apple Huawei MySQL Microsoft MariaDB NVidia Shulou Information OPPO Reno Shulou Tech Info Redmi macOS Shulou Technology vpn Xiaomi Docker

Share To

Related

Network Security

More Network Security >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report