Difference between revisions of "2011-39-Migrering af Linux"
From Teknologisk videncenter
m |
m |
||
| Line 11: | Line 11: | ||
#ip tables | #ip tables | ||
| − | = Config = | + | = Config = |
| − | == DHCP | + | == DHCP<br> == |
====== On FW ====== | ====== On FW ====== | ||
| Line 84: | Line 84: | ||
# | # | ||
#subnet 192.168.2.0 netmask 255.255.255.0 { | #subnet 192.168.2.0 netmask 255.255.255.0 { | ||
| − | #}</source><br> | + | #}</source><br> |
| − | + | Exec. Restart dhcpd service | |
| − | = | + | <source lang="bash">service dhcpd restart</source> |
| − | Execute: | + | ====== On Webserver & Client ====== |
| + | |||
| + | Exec. Renew IP | ||
| + | |||
| + | <source lang="bash">dhclient -r | ||
| + | dhclient</source><br> | ||
| + | |||
| + | == IPTABLES == | ||
| + | |||
| + | === NAT === | ||
| + | |||
| + | ====== On FW ====== | ||
| + | |||
| + | Execute: | ||
<source lang="bash">echo 1 > /proc/sys/net/ipv4/ip_forward | <source lang="bash">echo 1 > /proc/sys/net/ipv4/ip_forward | ||
Revision as of 14:07, 26 September 2011
Contents
Opgaver
Mandag 26-9-2011
Formiddag
- Opdater serverene
- Tilføj extra netkort
- statisk dhcp
- sæt dhcp server op
- ip tables
Config
DHCP
On FW
in /etc/dhcp/dhcpd.conf
#
# DHCP Server Configuration file.
# see /usr/share/doc/dhcp*/dhcpd.conf.sample
# see dhcpd.conf(5) man page
#
ddns-update-style interim;
ignore client-updates;
subnet 192.168.1.0 netmask 255.255.255.0 {
# The range of IP addresses the server
# will issue to DHCP enabled PC clients
# booting up on the network
range 192.168.1.100 192.168.1.199;
# Set the amount of time in seconds that
# a client may keep the IP address
default-lease-time 86400;
max-lease-time 86400;
# Set the default gateway to be used by
# the PC clients
option routers 192.168.1.1;
# Don't forward DHCP requests from this
# NIC interface to any other NIC
# interfaces
option ip-forwarding off;
# Set the broadcast address and subnet mask
# to be used by the DHCP clients
option broadcast-address 192.168.1.255;
option subnet-mask 255.255.255.0;
# Set the NTP server to be used by the
# DHCP clients
option ntp-servers 192.168.1.1;
# Set the DNS server to be used by the
# DHCP clients
option domain-name-servers 192.168.1.1;
# If you specify a WINS server for your Windows clients,
# you need to include the following option in the dhcpd.conf file:
option netbios-name-servers 192.168.1.1;
# You can also assign specific IP addresses based on the clients'
# ethernet MAC address as follows (Host's name is "laser-printer":
#host laser-printer {
# hardware ethernet 08:00:2b:4c:59:23;
# fixed-address 192.168.1.222;
#}
}
#
# List an unused interface here
#
#subnet 192.168.2.0 netmask 255.255.255.0 {
#}
Exec. Restart dhcpd service
service dhcpd restart
On Webserver & Client
Exec. Renew IP
dhclient -r
dhclient
IPTABLES
NAT
On FW
Execute:
echo 1 > /proc/sys/net/ipv4/ip_forward
/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
/sbin/iptables -A FORWARD -i eth0 -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT
/sbin/iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT