Configuración del servicio DHCP en Vyatta
Es el turno ahora de la configuración del sistema Vyatta como servidor DHCP, para esto vamos a introducir el siguiente tutorial de como configurar el servicio DHCP en Vyatta para que actúe como servidor DHCP en cada una de las subredes que componen la red de la topología ejemplo.
A modo de resumen lo que vamos a hacer ahora es dar de alta un servidor DHCP para cada una de las subredes (excepto para los servidores de la DMZ y para los servidores privados, en estas dos subredes (VLAN 50 y VLAN 80) la IP de los equipos tendrá que configurarse manualmente) tal y como se muestra en estos cuadros:
Subredes en openredesR1:
| Descripción | Subred | Rango libre | Rango DHCP |
| VLAN 10 – Ventas | 192.168.0.0/25 | 192.168.0.1-125 | 192.168.0.1-60 |
| VLAN 20 – Marketing | 192.168.0.128/26 | 192.168.0.129-189 | 192.168.0.129-159 |
| VLAN 30 – Administración | 192.168.0.192/28 | 192.168.0.193-205 | 192.168.0.193-199 |
| VLAN 40 – Gerencia | 192.168.0.208/28 | 192.168.0.209-221 | 192.168.0.209-215 |
Subredes en openredesR1:
| Descripción | Subred | Rango libre | Rango DHCP |
| VLAN 60 – I+D | 192.168.1.0/25 | 192.168.1.1-125 | 192.168.1.1-60 |
| VLAN 70 – Desarrollo | 192.168.1.128/26 | 192.168.1.129-189 | 192.168.1.129-159 |
Ahora vamos a traducir el cuadro resumen anterior a comandos de configuración en Vyatta, empezamos configurando openredesR1:
[edit]
openredes@openredesR1# edit service dhcp-server shared-network-name Ventas subnet 192.168.0.0/25
[edit service dhcp-server shared-network-name Ventas subnet 192.168.0.0/25]
openredes@openredesR1# set default-router 192.168.0.126
[edit service dhcp-server shared-network-name Ventas subnet 192.168.0.0/25]
openredes@openredesR1# set dns-server 192.168.0.126
[edit service dhcp-server shared-network-name Ventas subnet 192.168.0.0/25]
openredes@openredesR1# set domain-name labopenredes.es
[edit service dhcp-server shared-network-name Ventas subnet 192.168.0.0/25]
openredes@openredesR1# set start 192.168.0.1 stop 192.168.0.60
[edit service dhcp-server shared-network-name Ventas subnet 192.168.0.0/25]
openredes@openredesR1# up
[edit service dhcp-server shared-network-name Ventas]
openredes@openredesR1# set authoritative enable
[edit service dhcp-server shared-network-name Ventas]
openredes@openredesR1# commit
[edit service dhcp-server shared-network-name Ventas]
openredes@openredesR1# show
authoritative enable
subnet 192.168.0.0/25 {
default-router 192.168.0.126
dns-server 192.168.0.126
domain-name labopenredes.es
lease 86400
start 192.168.0.1 {
stop 192.168.0.60
}
}
[edit service dhcp-server shared-network-name Ventas]
openredes@openredesR1#
Con esto ya tenemos configurado el servidor DHCP en la subred de la VLAN 10 – Ventas, como se puede ver hemos configurado como servidor DNS la propia maquina openredesR1 para los clientes que soliciten una IP por medio de DHCP, lo que significa que después tenemos que configurar también el servicio DNS en la maquinas Vyatta.
Seguimos con el resto de subredes en openredesR1:
[edit service dhcp-server shared-network-name Ventas]
openredes@openredesR1# up
[edit service dhcp-server]
openredes@openredesR1# edit shared-network-name Marketing subnet 192.168.0.128/26
[edit service dhcp-server shared-network-name Marketing subnet 192.168.0.128/26]
openredes@openredesR1# set default-router 192.168.0.190
[edit service dhcp-server shared-network-name Marketing subnet 192.168.0.128/26]
openredes@openredesR1# set dns-server 192.168.0.190
[edit service dhcp-server shared-network-name Marketing subnet 192.168.0.128/26]
openredes@openredesR1# set domain-name labopenredes.es
[edit service dhcp-server shared-network-name Marketing subnet 192.168.0.128/26]
openredes@openredesR1# set start 192.168.0.129 stop 192.168.0.159
[edit service dhcp-server shared-network-name Marketing subnet 192.168.0.128/26]
openredes@openredesR1# up
[edit service dhcp-server shared-network-name Marketing]
openredes@openredesR1# set authoritative enable
[edit service dhcp-server shared-network-name Marketing]
openredes@openredesR1# commit
[edit service dhcp-server shared-network-name Marketing]
openredes@openredesR1# up
[edit service dhcp-server]
openredes@openredesR1# edit shared-network-name Administracion subnet 192.168.0.192/28
[edit service dhcp-server shared-network-name Administracion subnet 192.168.0.192/28]
openredes@openredesR1# set default-router 192.168.0.206
[edit service dhcp-server shared-network-name Administracion subnet 192.168.0.192/28]
openredes@openredesR1# set dns-server 192.168.0.206
[edit service dhcp-server shared-network-name Administracion subnet 192.168.0.192/28]
openredes@openredesR1# set domain-name labopenredes.es
[edit service dhcp-server shared-network-name Administracion subnet 192.168.0.192/28]
openredes@openredesR1# set start 192.168.0.193 stop 192.168.0.199
[edit service dhcp-server shared-network-name Administracion subnet 192.168.0.192/28]
openredes@openredesR1# up
[edit service dhcp-server shared-network-name Administracion]
openredes@openredesR1# set authoritative enable
[edit service dhcp-server shared-network-name Administracion]
openredes@openredesR1# commit
[edit service dhcp-server shared-network-name Administracion]
openredes@openredesR1# up
[edit service dhcp-server]
openredes@openredesR1# edit shared-network-name Gerencia subnet 192.168.0.208/28
[edit service dhcp-server shared-network-name Gerencia subnet 192.168.0.208/28]
openredes@openredesR1# set default-router 192.168.0.222
[edit service dhcp-server shared-network-name Gerencia subnet 192.168.0.208/28]
openredes@openredesR1# set dns-server 192.168.0.222
[edit service dhcp-server shared-network-name Gerencia subnet 192.168.0.208/28]
openredes@openredesR1# set domain-name labopenredes.es
[edit service dhcp-server shared-network-name Gerencia subnet 192.168.0.208/28]
openredes@openredesR1# set start 192.168.0.209 stop 192.168.0.215
[edit service dhcp-server shared-network-name Gerencia subnet 192.168.0.208/28]
openredes@openredesR1# up
[edit service dhcp-server shared-network-name Gerencia]
openredes@openredesR1# set authoritative enable
[edit service dhcp-server shared-network-name Gerencia]
openredes@openredesR1# commit
[edit service dhcp-server shared-network-name Gerencia]
openredes@openredesR1# up
[edit service dhcp-server]
openredes@openredesR1# show
disabled false
shared-network-name Ventas {
authoritative enable
subnet 192.168.0.0/25 {
default-router 192.168.0.126
dns-server 192.168.0.126
domain-name labopenredes.es
lease 86400
start 192.168.0.1 {
stop 192.168.0.60
}
}
}
shared-network-name Marketing {
authoritative enable
subnet 192.168.0.128/26 {
default-router 192.168.0.190
dns-server 192.168.0.190
domain-name labopenredes.es
lease 86400
start 192.168.0.129 {
stop 192.168.0.159
}
}
}
shared-network-name Administracion {
authoritative enable
subnet 192.168.0.192/28 {
default-router 192.168.0.206
dns-server 192.168.0.206
domain-name labopenredes.es
lease 86400
start 192.168.0.193 {
stop 192.168.0.199
}
}
}
shared-network-name Gerencia {
authoritative enable
subnet 192.168.0.208/28 {
default-router 192.168.0.222
dns-server 192.168.0.222
domain-name labopenredes.es
lease 86400
start 192.168.0.209 {
stop 192.168.0.215
}
}
}
[edit service dhcp-server]
openredes@openredesR1# save
Saving configuration to '/opt/vyatta/etc/config/config.boot'...
Done
[edit service dhcp-server]
openredes@openredesR1#
Con esto tenemos configurado el servicio DHCP en Vyatta actuando de servidor DHCP para las subredes de Ventas (VLAN 10), Marketing (VLAN 20), Administración (VLAN 30) y Gerencia (VLAN 40). Como hemos comentado arriba, para la VLAN 50 no hemos dado de alta servicio DHCP ya que las máquinas que se encuentren en esta subred serán servidores y se configuraran con IP estática de forma manual.
El siguiente paso es configurar el servicio DHCP en la máquina openredesR2 para que actúe como servidor DHCP para las subredes I+D (VLAN 60) y Desarrollo (VLAN 70):
openredes@openredesR2# edit service dhcp-server shared-network-name I+D subnet 192.168.1.0/25
[edit service dhcp-server shared-network-name I+D subnet 192.168.1.0/25]
openredes@openredesR2# set default-router 192.168.1.126
[edit service dhcp-server shared-network-name I+D subnet 192.168.1.0/25]
openredes@openredesR2# set dns-server 192.168.1.126
[edit service dhcp-server shared-network-name I+D subnet 192.168.1.0/25]
openredes@openredesR2# set domain-name labopenredes.es
[edit service dhcp-server shared-network-name I+D subnet 192.168.1.0/25]
openredes@openredesR2# set start 192.168.1.1 stop 192.168.1.60
[edit service dhcp-server shared-network-name I+D subnet 192.168.1.0/25]
openredes@openredesR2# up
[edit service dhcp-server shared-network-name I+D]
openredes@openredesR2# set authoritative enable
[edit service dhcp-server shared-network-name I+D]
openredes@openredesR2# up
[edit service dhcp-server]
openredes@openredesR2# edit shared-network-name Desarrollo subnet 192.168.1.128/25
[edit service dhcp-server shared-network-name Desarrollo subnet 192.168.1.128/25]
openredes@openredesR2# set default-router 192.168.1.190
[edit service dhcp-server shared-network-name Desarrollo subnet 192.168.1.128/25]
openredes@openredesR2# set dns-server 192.168.1.190
[edit service dhcp-server shared-network-name Desarrollo subnet 192.168.1.128/25]
openredes@openredesR2# set domain-name labopenredes.es
[edit service dhcp-server shared-network-name Desarrollo subnet 192.168.1.128/25]
openredes@openredesR2# set start 192.168.1.129 stop 192.168.1.159
[edit service dhcp-server shared-network-name Desarrollo subnet 192.168.1.128/25]
openredes@openredesR2# up
[edit service dhcp-server shared-network-name Desarrollo]
openredes@openredesR2# set authoritative enable
[edit service dhcp-server shared-network-name Deasrrollo]
openredes@openredesR2# commit
[edit service dhcp-server shared-network-name Deasrrollo]
openredes@openredesR2# up
[edit service dhcp-server]
openredes@openredesR2# show
disabled false
shared-network-name I+D {
authoritative enable
subnet 192.168.1.0/25 {
default-router 192.168.1.126
dns-server 192.168.1.126
domain-name labopenredes.es
lease 86400
start 192.168.1.1 {
stop 192.168.1.60
}
}
}
shared-network-name Desarrollo {
authoritative enable
subnet 192.168.1.128/26 {
default-router 192.168.1.190
dns-server 192.168.1.190
domain-name labopenredes.es
lease 86400
start 192.168.1.129 {
stop 192.168.1.159
}
}
}
[edit service dhcp-server]
openredes@openredesR2# top
[edit]
openredes@openredesR2# save
[edit]
Saving configuration to '/opt/vyatta/etc/config/config.boot'...
Done
[edit]
openredes@openredesR2#
Con esto ya hemos terminado de configurar ambas máquinas para que actúen de servidor DHCP en las subredes a las que se conectan los trabajadores de la empresa, con esto y con los switches correctamente configurados podremos conectar un equipo a cualquier subred y obtendrá una IP dentro del rango correspondiente por DHCP.
