DHCP的工作原理。
DHCP(Dynamic Host Configuration Protocol,动态主机配置协议)
由Intelent工作任务小组设计开发
专用于为TCP/IP网络中的计算机自动分配TCP/IP参数的协议
使用DHCP的好处。
- 减少管理员的工作量
- 避免输入错误的可能
- 避免IP地址冲突
- 当更改IP地址段时,不需要重新配置每个用户的IP地址
- 提高了IP地址的利用率
- 方便客户端的配置
DHCP使用的协议和端口号。
TCP协议 客户机:67 服务器:68
DHCP在linux下的部署过程。
1、安装DHCP服务
rpm –ivh /mnt/Packages/dhcp-4.2.5-58.el7.centos.x86_64.rpm
![](https://i-blog.csdnimg.cn/blog_migrate/7f181a1c8ca028eee871ff352facc744.png)
3、配置dhcp的配置文件
![](https://i-blog.csdnimg.cn/blog_migrate/c289ffd6caf9a4101e0e52a0c49ddd89.png)
4、启动DHCP服务
systemctl start dhcpd
netstat –anpu | grep dhcpd
![](https://i-blog.csdnimg.cn/blog_migrate/641497fb5502cc2069047b1f34fdcb99.png)
5、客户端设置为dhcp启动
Vi /etc/sysconfig/network-scripts/ifcfg-ens33
DEVICE=ens33
ONBOOT=yes
BOOTPROTO=dhcp
6、客户机设置ens33网卡dhcp获取地址
dhclient –d ens33
![](https://i-blog.csdnimg.cn/blog_migrate/d306c7789bba51355ca14e4cd17641e9.png)
7、服务器查看客户机获取地址的情况
less /var/lib/dhcpd/dhcpd.leases
![](https://i-blog.csdnimg.cn/blog_migrate/91a83780fa2168e295ed8a370e54a21b.png)
8、客户机设置ens33网卡释放获取到的地址
dhclient –r ens33
![](https://i-blog.csdnimg.cn/blog_migrate/c829469f688d69954770085f9f863c82.png)
DHCP中继实验拓扑如下,用华为模拟器完成。
![](https://i-blog.csdnimg.cn/blog_migrate/62f2e79d9187de4604c29c8710611c91.png)
![](https://i-blog.csdnimg.cn/blog_migrate/b495f9cbeb24e5c493271e3050694d88.png)
<SW1>display current-configuration
#
sysname SW1
#
vlan batch 10 20 100
#
cluster enable
ntdp enable
ndp enable
#
drop illegal-mac alarm
#
diffserv domain default
#
drop-profile default
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
#
interface Vlanif1
#
interface MEth0/0/1
#
interface Ethernet0/0/1
port link-type access
port default vlan 10
#
interface Ethernet0/0/2
port link-type access
port default vlan 20
#
interface Ethernet0/0/3
port link-type access
port default vlan 100
interface GigabitEthernet0/0/1
port link-type trunk
port trunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/2
#
interface NULL0
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
#
return
<SW1>
#
sysname SW2
#
vlan batch 10 20 100
#
ntdp enable
ndp enable
#
dhcp enable
#
diffserv domain default
#
drop-profile default
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
#
interface Vlanif1
#
interface Vlanif10
ip address 192.168.1.1 255.255.255.0
dhcp select relay
dhcp relay server-ip 192.168.100.100
#
interface Vlanif20
ip address 192.168.2.1 255.255.255.0
dhcp select relay
dhcp relay server-ip 192.168.100.100
#
interface Vlanif100
ip address 192.168.100.1 255.255.255.0
#
interface MEth0/0/1
#
interface GigabitEthernet0/0/1
port link-type trunk
port trunk allow-pass vlan 2 to 4094
#
ospf 1
area 0.0.0.0
network 192.168.1.0 0.0.0.255
network 192.168.2.0 0.0.0.255
network 192.168.100.0 0.0.0.255
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
#
return
[SW2]
#
sysname R1
#
dhcp enable
#
ip pool dhcp1
gateway-list 192.168.1.1
network 192.168.1.0 mask 255.255.255.0
lease day 7 hour 0 minute 0
dns-list 2.2.2.2 4.4.4.4
#
ip pool dhcp2
gateway-list 192.168.2.1
network 192.168.2.0 mask 255.255.255.0
lease day 7 hour 0 minute 0
dns-list 2.2.2.2 4.4.4.4
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
ip address 192.168.100.100 255.255.255.0
ospf 1 router-id 192.168.100.100
area 0.0.0.0
network 192.168.1.0 0.0.0.255
network 192.168.2.0 0.0.0.255
network 192.168.100.0 0.0.0.255
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
[R1] int e0/0/0
[R1-Ethernet0/0/0]dhcp se
[R1-Ethernet0/0/0]dhcp select gl
[R1-Ethernet0/0/0]dhcp select global
[R1-Ethernet0/0/0]qu
[R1]dis
[R1]display cu
[R1]display current-configuration
#
sysname R1
#
dhcp enable
#
ip pool dhcp1
gateway-list 192.168.1.1
network 192.168.1.0 mask 255.255.255.0
lease day 7 hour 0 minute 0
dns-list 2.2.2.2 4.4.4.4
#
ip pool dhcp2
gateway-list 192.168.2.1
network 192.168.2.0 mask 255.255.255.0
lease day 7 hour 0 minute 0
dns-list 2.2.2.2 4.4.4.4
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
ip address 192.168.100.100 255.255.255.0
dhcp select global
#
interface Ethernet0/0/1
#
interface Serial0/0/0
link-protocol ppp
#
interface Serial0/0/1
link-protocol ppp
#
interface Serial0/0/2
link-protocol ppp
#
interface Serial0/0/3
link-protocol ppp
#
interface GigabitEthernet0/0/0
#
interface GigabitEthernet0/0/1
#
interface GigabitEthernet0/0/2
#
interface GigabitEthernet0/0/3
#
wlan
#
interface NULL0
#
ospf 1 router-id 192.168.100.100
area 0.0.0.0
network 192.168.1.0 0.0.0.255
network 192.168.2.0 0.0.0.255
network 192.168.100.0 0.0.0.255
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
[R1]
PC1DHCP获取
![](https://i-blog.csdnimg.cn/blog_migrate/a335b7c5a6718d7edefd51bb1dff55fc.png)
![](https://i-blog.csdnimg.cn/blog_migrate/7cf52ae70aed019cda7615582d7e27b4.png)
PC2DHCP获取
![](https://i-blog.csdnimg.cn/blog_migrate/8c692e3446f679c6105125653aa073fd.png)
![](https://i-blog.csdnimg.cn/blog_migrate/994d15775c2f50145aad9c8aae814141.png)
FTP的使用场合。
用于文件的传输
FTP的作用。
用于文件的上传和下载
FTP使用的协议和端口号。
TCP协议,端口号20,21
FTP的匿名用户和基本用户的部署过程。
匿名用户部署过程:
- 部署实验环境
![](https://i-blog.csdnimg.cn/blog_migrate/67fa5f82e90f78872bd58a3662135898.png)
2.配置文件修改
![](https://i-blog.csdnimg.cn/blog_migrate/2e25ebdb513821222f217f488b3c9e4a.png)
![](https://i-blog.csdnimg.cn/blog_migrate/7df28d7cf1a60fce1975484de356ff6a.png)
登录成功上传和下载文件测试
![](https://i-blog.csdnimg.cn/blog_migrate/38987757c9ebec8eb26c1830e9afe08f.png)
![](https://i-blog.csdnimg.cn/blog_migrate/f12e5ce501924b1693700a97d49ba567.png)
![](https://i-blog.csdnimg.cn/blog_migrate/dfc73a1498fa151ed92e96d1d32d3a6e.png)
本地用户配置
![](https://i-blog.csdnimg.cn/blog_migrate/88f4680470373311f94801f37b833095.png)
![](https://i-blog.csdnimg.cn/blog_migrate/eee883edd35ab4814e220859f79a9f63.png)
验证服务是否成功
![](https://i-blog.csdnimg.cn/blog_migrate/de29969395aa7ba4a2ab7f6215a7dd4e.png)
![](https://i-blog.csdnimg.cn/blog_migrate/75e6fb5d456a7cfb602d8accc5a871b9.png)
![](https://i-blog.csdnimg.cn/blog_migrate/200307aa89e8446f1df80e118261ba74.png)
lisi用户不可登录
![](https://i-blog.csdnimg.cn/blog_migrate/d7b99309fcff8038ba22d6e74cb9f71b.png)
![](https://i-blog.csdnimg.cn/blog_migrate/f9469654fa883216d4a22c0cc571bb7a.png)
![](https://i-blog.csdnimg.cn/blog_migrate/1593d0a908494b38801bdbfcc0017e56.png)