{"id":3053,"date":"2022-11-03T06:11:41","date_gmt":"2022-11-03T06:11:41","guid":{"rendered":"https:\/\/wordpress.pedrorotoli.com\/?p=3053"},"modified":"2022-11-03T06:53:13","modified_gmt":"2022-11-03T06:53:13","slug":"servidor-dhcp-e-relay-no-vyos","status":"publish","type":"post","link":"https:\/\/wordpress.pedrorotoli.com\/?p=3053","title":{"rendered":"Servidor DHCP e relay no Vyos"},"content":{"rendered":"<p>Nesse cen\u00e1rio temos tr\u00eas roteadores Vyos utilizando OSPF como protocolo de roteamento, com um deles fornecendo o acesso \u00e0 internet, com os outros dois separando as redes internas, e conectados atrav\u00e9s de uma rede backbone.<\/p>\n<figure id=\"attachment_3056\" aria-describedby=\"caption-attachment-3056\" style=\"width: 676px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-3056\" src=\"https:\/\/wordpress.pedrorotoli.com\/wp-content\/uploads\/2022\/11\/dhcp.png\" alt=\"Topologia\" width=\"676\" height=\"421\" srcset=\"https:\/\/wordpress.pedrorotoli.com\/wp-content\/uploads\/2022\/11\/dhcp.png 676w, https:\/\/wordpress.pedrorotoli.com\/wp-content\/uploads\/2022\/11\/dhcp-512x319.png 512w\" sizes=\"auto, (max-width: 676px) 100vw, 676px\" \/><figcaption id=\"caption-attachment-3056\" class=\"wp-caption-text\">Topologia<\/figcaption><\/figure>\n<p>O roteador <span style=\"font-family: andale mono, monospace;\">R01<\/span> ficar\u00e1 respons\u00e1vel pelo servidor DHCP das redes internas dos roteadores <span style=\"font-family: andale mono, monospace;\">R02<\/span> e <span style=\"font-family: andale mono, monospace;\">R03<\/span>.<\/p>\n<p>Os tr\u00eas roteadores tem tr\u00eas interfaces de rede, apesar de o diagrama mostrar apenas duas, a terceira \u00e9 usada exclusivamente para o acesso por SSH, por isso n\u00e3o aparece no diagrama, j\u00e1 que n\u00e3o \u00e9 relevante a esse exemplo.<\/p>\n<p>Os seguintes comandos s\u00e3o utilizados para fazer a configura\u00e7\u00e3o do servidor DHCP no roteador <span style=\"font-family: andale mono, monospace;\">R01<\/span>:<\/p>\n<pre>set service dhcp-server listen-address 172.16.255.249\r\nset service dhcp-server\u00a0 shared-network-name LAN1 authoritative\r\nset service dhcp-server\u00a0 shared-network-name LAN1 subnet 192.168.1.0\/24 default-router 192.168.1.1\r\nset service dhcp-server\u00a0 shared-network-name LAN1 subnet 192.168.1.0\/24 dns-server 1.1.1.1\r\nset service dhcp-server\u00a0 shared-network-name LAN1 subnet 192.168.1.0\/24 lease 3600\r\nset service dhcp-server\u00a0 shared-network-name LAN1 subnet 192.168.1.0\/24 range 0 start 192.168.1.100\r\nset service dhcp-server\u00a0 shared-network-name LAN1 subnet 192.168.1.0\/24 range 0 stop 192.168.1.200<\/pre>\n<p>A primeira linha configura o servi\u00e7o DHCP para responder a pedidos apenas na interface com o endere\u00e7o <span style=\"font-family: andale mono, monospace;\">172.16.255.249<\/span>, que \u00e9 a rede do backbone que conecta os tr\u00eas roteadores.<\/p>\n<p>A segunda linha diz que esse \u00e9 o \u00fanico servidor dispon\u00edvel, e far\u00e1 com que o roteador responda com <span style=\"font-family: andale mono, monospace;\">DHCPNAK<\/span> qualquer pedido que esteja pedindo um IP que n\u00e3o seja v\u00e1lido para nenhuma das redes que ser\u00e3o configuradas.<\/p>\n<p>A terceira ir\u00e1 configurar o endere\u00e7o do gateway daquela rede, que nesse caso ser\u00e1 o endere\u00e7o da rede interna do roteador <span style=\"font-family: andale mono, monospace;\">R02<\/span>.<\/p>\n<p>A quarta linha configura o endere\u00e7o do servidor DNS a ser utilizado.<\/p>\n<p>A quinta linha configura a dura\u00e7\u00e3o do <em>lease<\/em> em segundos, nesse caso, uma hora.<\/p>\n<p>A sexta e s\u00e9tima linhas configuram, respectivamente, o in\u00edcio e o fim da faixa de IPs que ser\u00e3o atribu\u00eddos.<\/p>\n<p>Com isso, a configura\u00e7\u00e3o para a rede <span style=\"font-family: andale mono, monospace;\">192.168.1.0\/24<\/span> est\u00e1 feita, o processo de configura\u00e7\u00e3o da rede <span style=\"font-family: andale mono, monospace;\">192.168.2.0\/24<\/span> \u00e9 o mesmo, apenas alterando os endere\u00e7os relevantes:<\/p>\n<pre>set service dhcp-server\u00a0 shared-network-name LAN2 authoritative\r\nset service dhcp-server\u00a0 shared-network-name LAN2 subnet 192.168.2.0\/24 default-router 192.168.2.1\r\nset service dhcp-server\u00a0 shared-network-name LAN2 subnet 192.168.2.0\/24 dns-server 1.1.1.1\r\nset service dhcp-server\u00a0 shared-network-name LAN2 subnet 192.168.2.0\/24 lease 3600\r\nset service dhcp-server\u00a0 shared-network-name LAN2 subnet 192.168.2.0\/24 range 0 start 192.168.2.100\r\nset service dhcp-server\u00a0 shared-network-name LAN2 subnet 192.168.2.0\/24 range 0 stop 192.168.2.200<\/pre>\n<p>Com isso temos o servidor DHCP configurado no roteador <span style=\"font-family: andale mono, monospace;\">R01<\/span>, agora \u00e9 preciso configurar o relay DHCP nos roteadores <span style=\"font-family: andale mono, monospace;\">R02<\/span> e <span style=\"font-family: andale mono, monospace;\">R03<\/span>, esse processo \u00e9 extremamente simples, \u00e9 s\u00f3 repetir os seguintes comandos nos dois roteadores:<\/p>\n<pre>set service dhcp-relay interface eth0\r\nset service dhcp-relay interface eth1\r\nset service dhcp-relay server 172.16.255.249<\/pre>\n<p>Para que esse servi\u00e7o funcione, \u00e9 preciso configurar todas as interfaces que ser\u00e3o utilizadas, nesse caso, a interface da rede interna e a interface que \u00e9 utilizada para se conectar com <span style=\"font-family: andale mono, monospace;\">R01<\/span>, <span style=\"font-family: andale mono, monospace;\">eth1<\/span> e <span style=\"font-family: andale mono, monospace;\">eth0<\/span>, respectivamente nos dois roteadores, e \u00e9 exatamente isso que as duas primeiras linhas fazem.<\/p>\n<p>A segunda linha serve para configurar o endere\u00e7o do servidor DHCP que ir\u00e1 atribuir os IPs aos clientes, que nesse caso \u00e9 o IP da interface da rede de backbone do roteador <span style=\"font-family: andale mono, monospace;\">R01<\/span>.<\/p>\n<p>Com isso, os tr\u00eas roteadores est\u00e3o configurados e prontos para atribuir IPs aos clientes das redes internas dos roteadores <span style=\"font-family: andale mono, monospace;\">R02<\/span> e <span style=\"font-family: andale mono, monospace;\">R03<\/span>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Nesse cen\u00e1rio temos tr\u00eas roteadores Vyos utilizando OSPF como protocolo de roteamento, com um deles fornecendo o acesso \u00e0 internet, com os outros dois separando<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[102,53,101],"tags":[],"class_list":["post-3053","post","type-post","status-publish","format-standard","hentry","category-dhcp","category-network","category-vyos"],"_links":{"self":[{"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=\/wp\/v2\/posts\/3053","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3053"}],"version-history":[{"count":6,"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=\/wp\/v2\/posts\/3053\/revisions"}],"predecessor-version":[{"id":3055,"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=\/wp\/v2\/posts\/3053\/revisions\/3055"}],"wp:attachment":[{"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3053"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3053"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wordpress.pedrorotoli.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3053"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}