SlideShare uma empresa Scribd logo

ACI DHCP 구성 가이드

W
Woo Hyung Choi

ACI 기반 DHCP 구성 가이드 입니다.

Tecnologia
1 de 16
Baixar para ler offline
ACI DHCP 구성 가이드 2017.04.04 Cisco Systems Korea 최 우 형 수석부장 (whchoi@cisco.com)
ACI Topology for DHCP Relay EPG : 11 BD : 1 VRF : 1 Tenant-DHCP-TEST EPG: 1 VLAN 131 VLAN 132 BD : 11 EPG : 12 BD : 2 VRF : 2 192.168.2.1/24 EPG: 2 VLAN 133 VLAN 134 BD : 12 Tenant-Common BD : DHCP VRF : DHCP 192.168.111.1/24 EPG: DHCP VLAN 135 1.X Client 11.X Client 2.X Client 12.X Client 192.168.1.1/24 192.168.11.1/24 192.168.12.1/24 FABRIC-INFRA TENANT DHCP ACCESS Global DHCP ACCESS LINUX (.254) DHCP SERVER W2K16 (.33) DHCP SERVER
#1. Global DHCP ACCESS config – Create DHCP Relay Policy 1 Fabric – Access Policies Global Policies – DHCP Relay Policies 2 Create DHCP Relay Policy - Name & Providers 구성 3 DHCP Provider - DHCP EPG Mapping - DHCP EP Address 설정 1 2 3
#1. Global DHCP ACCESS config – Create DHCP Relay Label 1 Tenant – “Tenant using DHCP” – Networking – BD – DB using DHCP - DHCP Relay Label 2 Create DHCP Relay Label - DHCP Relay Label 구성
#2. TENANT Based DHCP Config - Create DHCP Relay Policy 1 Tenants – Common – “BD for DHCP” – DHCP Relay Lable – Create DHCP Relay Label 2 Create DHCP Relay Lable - Tenant 선택 3 DHCP Relay Policy Profile 생성 - DHCP-TENANT 이름 생성 - Provider 생성 1 2 3 3
#2. TENANT Based DHCP Config - Create DHCP Relay Label 1 Tenants – Common – “BD for DHCP” – DHCP Relay Lable – Create DHCP Relay Label 2 Create DHCP Relay Lable - Tenant 선택 - Common Tenant에서 생성된 DHCP Profile 선택 1 2 3 Networking – Protocol Polices – DHCP – Relay Policies - Relay Policy가 생성되었는 지 확인
Window 2016 server based – Packet dump (bootp.dhcp) W2K16 DHCP SERVER DHCP CLIENT DHCP Option 82 Bootp Flag
Window 2016 server based -DHCP Window 2016 Config Guide 1 Windows Server 2016 버전 확인 (OS Build – 14393.969) 2 Superscope Config - Address Pool (DHCP IP range) - Address Lease (DHCP 주소 대여 확인) - Scope Option (Router, DNS Option) 1 2
Linux Server Based- Packet dump (bootp.dhcp) W2K16 DHCP SERVER DHCP CLIENT DHCP Option 82
Linux server based -DHCP Config Guide 1 dhcpd install (ISC) 2 dhcpd interface config root@LNX-DHCP:~# apt-get install isc-dhcp-server root@LNX-DHCP:~# vim /etc/default/isc-dhcp-server ….. INTERFACES="eth0“ …..
Linux server based -DHCP Config Guide 3 dhcpd config root@LNX-DHCP:~# vim /etc/dhcp/dhcpd.conf #default-lease-time : 클라이언트에게 IP 주소를 부여할 시간 #max-lease-time : 연장가능한 최대 시간 default-lease-time 600; max-lease-tiem 7200; # 사용될 서브넷과 넷마스크 설정 subnet 192.168.1.0 netmask 255.255.255.0 { range 192.168.1.11 192.168.1.100; option domain-name-servers 8.8.8.8; option domain-name "cisko-dc.com'; option routers 192.168.1.1; option broadcast-address 192.168.0.255; }
Linux server based -DHCP Config Guide 4 DHCP Option 82 Link Selection 인식을 위한 설정 root@LNX-DHCP:~# vim /etc/dhcp/dhcpd.conf ignore client-updates; authoritative; stash-agent-options true; #Option 82 link-selection enable option agent.link-selection ip-address; option routers 192.168.111.254; #동일서브넷 DHCP 설정 subnet 192.168.111.0 netmask 255.255.255.0{ option routers 192.168.111.1; option subnet-mask 255.255.255.0; pool { range 192.168.111.11 192.168.11.20; } #DHCP relay 관련 DHCP 설정 - 4개 BD, 4개 서브넷 구성 예. class "BD-1Net" { match if(binary-to-ascii(10, 8, ".", option agent.link-selection) = "192.168.1.0"); } shared-network BD-1Net { subnet 192.168.1.0 netmask 255.255.255.0 { option routers 192.168.1.1; option subnet-mask 255.255.255.0; pool { allow members of "BD-1Net"; range 192.168.1.101 192.168.1.110; } } }
Linux server based -DHCP Config Guide 4 DHCP Option 82 Link Selection 인식을 위한 설정 shared-network BD-2Net { subnet 192.168.2.0 netmask 255.255.255.0 { option routers 192.168.2.1; option subnet-mask 255.255.255.0; pool { allow members of "BD-2Net"; range 192.168.2.101 192.168.2.110; } } } shared-network BD-11Net { subnet 192.168.11.0 netmask 255.255.255.0 { option routers 192.168.11.1; option subnet-mask 255.255.255.0; pool { allow members of "BD-11Net"; range 192.168.11.101 192.168.11.110; } } } shared-network BD-12Net { subnet 192.168.12.0 netmask 255.255.255.0 { option routers 192.168.12.1; option subnet-mask 255.255.255.0; pool { allow members of "BD-2Net"; range 192.168.12.101 192.168.12.110; } } } 5 DHCP Server restart service isc-dhcp-server restart
DHCP Linux Config Guide 1 DHCP Server 확인 more /var/lib/dhcp/dhcpd.lease
Useful ACI Commands to Verify DHCP Configuration 1 DHCP 서버 구성 확인 LEAF-101# show ip dhcp relay 1 https://apic/visore.html dhcpRelayP, dhcpRsProv, dhcpProvDhcp, dhcpRtLblDefToRelayP
ACI DHCP 구성 가이드

Recomendados

ACI Multicast 구성 가이드
ACI Multicast 구성 가이드ACI Multicast 구성 가이드
ACI Multicast 구성 가이드Woo Hyung Choi
 
ACI MultiPod 구성
ACI MultiPod 구성ACI MultiPod 구성
ACI MultiPod 구성Woo Hyung Choi
 
ACI MultiFabric 소개
ACI MultiFabric 소개ACI MultiFabric 소개
ACI MultiFabric 소개Woo Hyung Choi
 
Network Jumbo Frame Config Guide
Network Jumbo Frame Config GuideNetwork Jumbo Frame Config Guide
Network Jumbo Frame Config GuideWoo Hyung Choi
 
ACI MultiPod Config Guide
ACI MultiPod Config GuideACI MultiPod Config Guide
ACI MultiPod Config GuideWoo Hyung Choi
 
12 module
12 module12 module
12 moduleAsif
 
LF_OVS_17_OVS-DPDK Installation and Gotchas
LF_OVS_17_OVS-DPDK Installation and GotchasLF_OVS_17_OVS-DPDK Installation and Gotchas
LF_OVS_17_OVS-DPDK Installation and GotchasLF_OpenvSwitch
 
Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016SZ Lin
 

Recomendados

ACI Multicast 구성 가이드
ACI Multicast 구성 가이드ACI Multicast 구성 가이드
ACI Multicast 구성 가이드Woo Hyung Choi
 
ACI MultiPod 구성
ACI MultiPod 구성ACI MultiPod 구성
ACI MultiPod 구성Woo Hyung Choi
 
ACI MultiFabric 소개
ACI MultiFabric 소개ACI MultiFabric 소개
ACI MultiFabric 소개Woo Hyung Choi
 
Network Jumbo Frame Config Guide
Network Jumbo Frame Config GuideNetwork Jumbo Frame Config Guide
Network Jumbo Frame Config GuideWoo Hyung Choi
 
ACI MultiPod Config Guide
ACI MultiPod Config GuideACI MultiPod Config Guide
ACI MultiPod Config GuideWoo Hyung Choi
 
12 module
12 module12 module
12 moduleAsif
 
LF_OVS_17_OVS-DPDK Installation and Gotchas
LF_OVS_17_OVS-DPDK Installation and GotchasLF_OVS_17_OVS-DPDK Installation and Gotchas
LF_OVS_17_OVS-DPDK Installation and GotchasLF_OpenvSwitch
 
Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016SZ Lin
 
Iperf Tutorial
Iperf Tutorial Iperf Tutorial
Iperf Tutorial Febrian ‎
 
IPSec VPN
IPSec VPNIPSec VPN
IPSec VPNNetProtocol Xpert
 
NAT and firewall presentation - how setup a nice firewall
NAT and firewall presentation - how setup a nice firewallNAT and firewall presentation - how setup a nice firewall
NAT and firewall presentation - how setup a nice firewallCassiano Campes
 
CCNA Lab Guide
CCNA Lab GuideCCNA Lab Guide
CCNA Lab GuideSalachudin Emir
 
Layer 3 redundancy hsrp
Layer 3 redundancy hsrpLayer 3 redundancy hsrp
Layer 3 redundancy hsrpEdgardo Scrimaglia
 
In depth understanding network security
In depth understanding network securityIn depth understanding network security
In depth understanding network securityThanawan Tuamyim
 
Fhrp notes
Fhrp notesFhrp notes
Fhrp notesKrunal Shah
 
Practice Lab CSC
Practice Lab CSCPractice Lab CSC
Practice Lab CSCSalachudin Emir
 
Ccnpswitch
CcnpswitchCcnpswitch
CcnpswitchSiddhartha Rajbhatt
 
Cisco CCNA-CCNP IP SLA Configuration
Cisco CCNA-CCNP IP SLA ConfigurationCisco CCNA-CCNP IP SLA Configuration
Cisco CCNA-CCNP IP SLA ConfigurationHamed Moghaddam
 
Cisco CCNA- DHCP Server
Cisco CCNA- DHCP ServerCisco CCNA- DHCP Server
Cisco CCNA- DHCP ServerHamed Moghaddam
 
Dmvpn with configuration example
Dmvpn with configuration exampleDmvpn with configuration example
Dmvpn with configuration example3Anetwork com
 
SSL Web VPN
SSL Web VPNSSL Web VPN
SSL Web VPNNetwax Lab
 
Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...
Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...
Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...Cisco Canada
 
Eincop Netwax Lab: Site 2 Site VPN with Routing Protocols
Eincop Netwax Lab: Site 2 Site VPN with Routing ProtocolsEincop Netwax Lab: Site 2 Site VPN with Routing Protocols
Eincop Netwax Lab: Site 2 Site VPN with Routing ProtocolsNetwax Lab
 
Cisco asa active,active failover configuration
Cisco asa active,active failover configurationCisco asa active,active failover configuration
Cisco asa active,active failover configurationIT Tech
 
ACI DHCP Config Guide
ACI DHCP Config GuideACI DHCP Config Guide
ACI DHCP Config GuideWoo Hyung Choi
 
DHCP concept
DHCP conceptDHCP concept
DHCP conceptShopnomoy Prantor
 
Kea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISCKea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISCMen and Mice
 
Dhcp confg
Dhcp confgDhcp confg
Dhcp confgRincy Ranjith
 
Group-7-DHCPv4.pptx
Group-7-DHCPv4.pptxGroup-7-DHCPv4.pptx
Group-7-DHCPv4.pptxIvanTabanag1
 
Configuration DHCP
Configuration DHCPConfiguration DHCP
Configuration DHCPTan Huynh Cong
 

Mais conteúdo relacionado

Mais procurados

NAT and firewall presentation - how setup a nice firewall
NAT and firewall presentation - how setup a nice firewallNAT and firewall presentation - how setup a nice firewall
NAT and firewall presentation - how setup a nice firewallCassiano Campes
 
In depth understanding network security
In depth understanding network securityIn depth understanding network security
In depth understanding network securityThanawan Tuamyim
 
Cisco CCNA-CCNP IP SLA Configuration
Cisco CCNA-CCNP IP SLA ConfigurationCisco CCNA-CCNP IP SLA Configuration
Cisco CCNA-CCNP IP SLA ConfigurationHamed Moghaddam
 
Dmvpn with configuration example
Dmvpn with configuration exampleDmvpn with configuration example
Dmvpn with configuration example3Anetwork com
 
Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...
Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...
Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...Cisco Canada
 
Eincop Netwax Lab: Site 2 Site VPN with Routing Protocols
Eincop Netwax Lab: Site 2 Site VPN with Routing ProtocolsEincop Netwax Lab: Site 2 Site VPN with Routing Protocols
Eincop Netwax Lab: Site 2 Site VPN with Routing ProtocolsNetwax Lab
 
Cisco asa active,active failover configuration
Cisco asa active,active failover configurationCisco asa active,active failover configuration
Cisco asa active,active failover configurationIT Tech
 

Mais procurados (16)

Iperf Tutorial
Iperf Tutorial Iperf Tutorial
Iperf Tutorial
 
IPSec VPN
IPSec VPNIPSec VPN
IPSec VPN
 
NAT and firewall presentation - how setup a nice firewall
NAT and firewall presentation - how setup a nice firewallNAT and firewall presentation - how setup a nice firewall
NAT and firewall presentation - how setup a nice firewall
 
CCNA Lab Guide
CCNA Lab GuideCCNA Lab Guide
CCNA Lab Guide
 
Layer 3 redundancy hsrp
Layer 3 redundancy hsrpLayer 3 redundancy hsrp
Layer 3 redundancy hsrp
 
In depth understanding network security
In depth understanding network securityIn depth understanding network security
In depth understanding network security
 
Fhrp notes
Fhrp notesFhrp notes
Fhrp notes
 
Practice Lab CSC
Practice Lab CSCPractice Lab CSC
Practice Lab CSC
 
Ccnpswitch
CcnpswitchCcnpswitch
Ccnpswitch
 
Cisco CCNA-CCNP IP SLA Configuration
Cisco CCNA-CCNP IP SLA ConfigurationCisco CCNA-CCNP IP SLA Configuration
Cisco CCNA-CCNP IP SLA Configuration
 
Cisco CCNA- DHCP Server
Cisco CCNA- DHCP ServerCisco CCNA- DHCP Server
Cisco CCNA- DHCP Server
 
Dmvpn with configuration example
Dmvpn with configuration exampleDmvpn with configuration example
Dmvpn with configuration example
 
SSL Web VPN
SSL Web VPNSSL Web VPN
SSL Web VPN
 
Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...
Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...
Introduction to Network Performance Measurement with Cisco IOS IP Service Lev...
 
Eincop Netwax Lab: Site 2 Site VPN with Routing Protocols
Eincop Netwax Lab: Site 2 Site VPN with Routing ProtocolsEincop Netwax Lab: Site 2 Site VPN with Routing Protocols
Eincop Netwax Lab: Site 2 Site VPN with Routing Protocols
 
Cisco asa active,active failover configuration
Cisco asa active,active failover configurationCisco asa active,active failover configuration
Cisco asa active,active failover configuration
 

Semelhante a ACI DHCP 구성 가이드

Kea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISCKea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISCMen and Mice
 
Group-7-DHCPv4.pptx
Group-7-DHCPv4.pptxGroup-7-DHCPv4.pptx
Group-7-DHCPv4.pptxIvanTabanag1
 
Dhcp presentation
Dhcp presentationDhcp presentation
Dhcp presentationSaqib Malik
 
Module (8) DHCP Server.pptx
Module (8) DHCP Server.pptxModule (8) DHCP Server.pptx
Module (8) DHCP Server.pptxGeorgeThoreJr
 
Configurar dhcp en router cisco
Configurar dhcp en router ciscoConfigurar dhcp en router cisco
Configurar dhcp en router ciscoGuiro Lin
 
Dhcp Configuration File
Dhcp Configuration FileDhcp Configuration File
Dhcp Configuration FileShubhamg Gupta
 
DYNAMIC HOST CONFIGURATION PROTOCOL
DYNAMIC HOST CONFIGURATION PROTOCOLDYNAMIC HOST CONFIGURATION PROTOCOL
DYNAMIC HOST CONFIGURATION PROTOCOLVENKATESHAN A S
 
configure a DHCP server on Fedora.pdf
configure a DHCP server on Fedora.pdfconfigure a DHCP server on Fedora.pdf
configure a DHCP server on Fedora.pdfHussein Younis
 
CCIE Collaboration Lecture - Chapter 1.1 campus design - vlan dhcp and ntp
CCIE Collaboration Lecture - Chapter 1.1 campus design - vlan dhcp and ntpCCIE Collaboration Lecture - Chapter 1.1 campus design - vlan dhcp and ntp
CCIE Collaboration Lecture - Chapter 1.1 campus design - vlan dhcp and ntpFaisal Khan
 
Linux lecture9
Linux lecture9Linux lecture9
Linux lecture9gkj021
 

Semelhante a ACI DHCP 구성 가이드 (20)

ACI DHCP Config Guide
ACI DHCP Config GuideACI DHCP Config Guide
ACI DHCP Config Guide
 
DHCP concept
DHCP conceptDHCP concept
DHCP concept
 
Kea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISCKea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISC
 
Dhcp confg
Dhcp confgDhcp confg
Dhcp confg
 
Group-7-DHCPv4.pptx
Group-7-DHCPv4.pptxGroup-7-DHCPv4.pptx
Group-7-DHCPv4.pptx
 
Configuration DHCP
Configuration DHCPConfiguration DHCP
Configuration DHCP
 
Lession4 Dhcp
Lession4 DhcpLession4 Dhcp
Lession4 Dhcp
 
Dhcp presentation
Dhcp presentationDhcp presentation
Dhcp presentation
 
Module (8) DHCP Server.pptx
Module (8) DHCP Server.pptxModule (8) DHCP Server.pptx
Module (8) DHCP Server.pptx
 
dhcp.pdf
dhcp.pdfdhcp.pdf
dhcp.pdf
 
Configurar dhcp en router cisco
Configurar dhcp en router ciscoConfigurar dhcp en router cisco
Configurar dhcp en router cisco
 
Dhcp Configuration File
Dhcp Configuration FileDhcp Configuration File
Dhcp Configuration File
 
14047721
1404772114047721
14047721
 
DYNAMIC HOST CONFIGURATION PROTOCOL
DYNAMIC HOST CONFIGURATION PROTOCOLDYNAMIC HOST CONFIGURATION PROTOCOL
DYNAMIC HOST CONFIGURATION PROTOCOL
 
configure a DHCP server on Fedora.pdf
configure a DHCP server on Fedora.pdfconfigure a DHCP server on Fedora.pdf
configure a DHCP server on Fedora.pdf
 
IPv6 DHCP
IPv6 DHCPIPv6 DHCP
IPv6 DHCP
 
Dhcp
DhcpDhcp
Dhcp
 
CCIE Collaboration Lecture - Chapter 1.1 campus design - vlan dhcp and ntp
CCIE Collaboration Lecture - Chapter 1.1 campus design - vlan dhcp and ntpCCIE Collaboration Lecture - Chapter 1.1 campus design - vlan dhcp and ntp
CCIE Collaboration Lecture - Chapter 1.1 campus design - vlan dhcp and ntp
 
Linux lecture9
Linux lecture9Linux lecture9
Linux lecture9
 
Dhcpsession
DhcpsessionDhcpsession
Dhcpsession
 

Mais de Woo Hyung Choi

ACI Microsegment Config Guide
ACI Microsegment Config GuideACI Microsegment Config Guide
ACI Microsegment Config GuideWoo Hyung Choi
 
차세대 데이터센터 네트워크 전략
차세대 데이터센터 네트워크 전략차세대 데이터센터 네트워크 전략
차세대 데이터센터 네트워크 전략Woo Hyung Choi
 
Cisco network analytics 솔루션
Cisco network analytics 솔루션Cisco network analytics 솔루션
Cisco network analytics 솔루션Woo Hyung Choi
 
Cisco sddc solution 소개
Cisco sddc solution 소개Cisco sddc solution 소개
Cisco sddc solution 소개Woo Hyung Choi
 
ACI Netflow 구성 가이드
ACI Netflow 구성 가이드ACI Netflow 구성 가이드
ACI Netflow 구성 가이드Woo Hyung Choi
 

Mais de Woo Hyung Choi (7)

ACI Microsegment Config Guide
ACI Microsegment Config GuideACI Microsegment Config Guide
ACI Microsegment Config Guide
 
SDDC Strategy 1.3
SDDC Strategy 1.3SDDC Strategy 1.3
SDDC Strategy 1.3
 
차세대 데이터센터 네트워크 전략
차세대 데이터센터 네트워크 전략차세대 데이터센터 네트워크 전략
차세대 데이터센터 네트워크 전략
 
Cisco network analytics 솔루션
Cisco network analytics 솔루션Cisco network analytics 솔루션
Cisco network analytics 솔루션
 
Cisco DC 전략
Cisco DC 전략Cisco DC 전략
Cisco DC 전략
 
Cisco sddc solution 소개
Cisco sddc solution 소개Cisco sddc solution 소개
Cisco sddc solution 소개
 
ACI Netflow 구성 가이드
ACI Netflow 구성 가이드ACI Netflow 구성 가이드
ACI Netflow 구성 가이드
 

Último

Emixa Mendix Meetup 11 April 2024 about Mendix Native development
Emixa Mendix Meetup 11 April 2024 about Mendix Native developmentEmixa Mendix Meetup 11 April 2024 about Mendix Native development
Emixa Mendix Meetup 11 April 2024 about Mendix Native developmentPim van der Noll
 
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfSo einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfpanagenda
 
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...panagenda
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfMounikaPolabathina
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch TuesdayIvanti
 
Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...Farhan Tariq
 
Data governance with Unity Catalog Presentation
Data governance with Unity Catalog PresentationData governance with Unity Catalog Presentation
Data governance with Unity Catalog PresentationKnoldus Inc.
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
Manual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance AuditManual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance AuditSkynet Technologies
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsPixlogix Infotech
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteDianaGray10
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxLoriGlavin3
 
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityDecarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityIES VE
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxLoriGlavin3
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterMydbops
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxLoriGlavin3
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesKari Kakkonen
 
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyesAssure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyesThousandEyes
 

Último (20)

Emixa Mendix Meetup 11 April 2024 about Mendix Native development
Emixa Mendix Meetup 11 April 2024 about Mendix Native developmentEmixa Mendix Meetup 11 April 2024 about Mendix Native development
Emixa Mendix Meetup 11 April 2024 about Mendix Native development
 
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfSo einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
 
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdf
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch Tuesday
 
Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...
 
Data governance with Unity Catalog Presentation
Data governance with Unity Catalog PresentationData governance with Unity Catalog Presentation
Data governance with Unity Catalog Presentation
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
Manual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance AuditManual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance Audit
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test Suite
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
 
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityDecarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a reality
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptx
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examples
 
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyesAssure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
 

ACI DHCP 구성 가이드

  • 1. ACI DHCP 구성 가이드 2017.04.04 Cisco Systems Korea 최 우 형 수석부장 (whchoi@cisco.com)
  • 2. ACI Topology for DHCP Relay EPG : 11 BD : 1 VRF : 1 Tenant-DHCP-TEST EPG: 1 VLAN 131 VLAN 132 BD : 11 EPG : 12 BD : 2 VRF : 2 192.168.2.1/24 EPG: 2 VLAN 133 VLAN 134 BD : 12 Tenant-Common BD : DHCP VRF : DHCP 192.168.111.1/24 EPG: DHCP VLAN 135 1.X Client 11.X Client 2.X Client 12.X Client 192.168.1.1/24 192.168.11.1/24 192.168.12.1/24 FABRIC-INFRA TENANT DHCP ACCESS Global DHCP ACCESS LINUX (.254) DHCP SERVER W2K16 (.33) DHCP SERVER
  • 3. #1. Global DHCP ACCESS config – Create DHCP Relay Policy 1 Fabric – Access Policies Global Policies – DHCP Relay Policies 2 Create DHCP Relay Policy - Name & Providers 구성 3 DHCP Provider - DHCP EPG Mapping - DHCP EP Address 설정 1 2 3
  • 4. #1. Global DHCP ACCESS config – Create DHCP Relay Label 1 Tenant – “Tenant using DHCP” – Networking – BD – DB using DHCP - DHCP Relay Label 2 Create DHCP Relay Label - DHCP Relay Label 구성
  • 5. #2. TENANT Based DHCP Config - Create DHCP Relay Policy 1 Tenants – Common – “BD for DHCP” – DHCP Relay Lable – Create DHCP Relay Label 2 Create DHCP Relay Lable - Tenant 선택 3 DHCP Relay Policy Profile 생성 - DHCP-TENANT 이름 생성 - Provider 생성 1 2 3 3
  • 6. #2. TENANT Based DHCP Config - Create DHCP Relay Label 1 Tenants – Common – “BD for DHCP” – DHCP Relay Lable – Create DHCP Relay Label 2 Create DHCP Relay Lable - Tenant 선택 - Common Tenant에서 생성된 DHCP Profile 선택 1 2 3 Networking – Protocol Polices – DHCP – Relay Policies - Relay Policy가 생성되었는 지 확인
  • 7. Window 2016 server based – Packet dump (bootp.dhcp) W2K16 DHCP SERVER DHCP CLIENT DHCP Option 82 Bootp Flag
  • 8. Window 2016 server based -DHCP Window 2016 Config Guide 1 Windows Server 2016 버전 확인 (OS Build – 14393.969) 2 Superscope Config - Address Pool (DHCP IP range) - Address Lease (DHCP 주소 대여 확인) - Scope Option (Router, DNS Option) 1 2
  • 9. Linux Server Based- Packet dump (bootp.dhcp) W2K16 DHCP SERVER DHCP CLIENT DHCP Option 82
  • 10. Linux server based -DHCP Config Guide 1 dhcpd install (ISC) 2 dhcpd interface config root@LNX-DHCP:~# apt-get install isc-dhcp-server root@LNX-DHCP:~# vim /etc/default/isc-dhcp-server ….. INTERFACES="eth0“ …..
  • 11. Linux server based -DHCP Config Guide 3 dhcpd config root@LNX-DHCP:~# vim /etc/dhcp/dhcpd.conf #default-lease-time : 클라이언트에게 IP 주소를 부여할 시간 #max-lease-time : 연장가능한 최대 시간 default-lease-time 600; max-lease-tiem 7200; # 사용될 서브넷과 넷마스크 설정 subnet 192.168.1.0 netmask 255.255.255.0 { range 192.168.1.11 192.168.1.100; option domain-name-servers 8.8.8.8; option domain-name "cisko-dc.com'; option routers 192.168.1.1; option broadcast-address 192.168.0.255; }
  • 12. Linux server based -DHCP Config Guide 4 DHCP Option 82 Link Selection 인식을 위한 설정 root@LNX-DHCP:~# vim /etc/dhcp/dhcpd.conf ignore client-updates; authoritative; stash-agent-options true; #Option 82 link-selection enable option agent.link-selection ip-address; option routers 192.168.111.254; #동일서브넷 DHCP 설정 subnet 192.168.111.0 netmask 255.255.255.0{ option routers 192.168.111.1; option subnet-mask 255.255.255.0; pool { range 192.168.111.11 192.168.11.20; } #DHCP relay 관련 DHCP 설정 - 4개 BD, 4개 서브넷 구성 예. class "BD-1Net" { match if(binary-to-ascii(10, 8, ".", option agent.link-selection) = "192.168.1.0"); } shared-network BD-1Net { subnet 192.168.1.0 netmask 255.255.255.0 { option routers 192.168.1.1; option subnet-mask 255.255.255.0; pool { allow members of "BD-1Net"; range 192.168.1.101 192.168.1.110; } } }
  • 13. Linux server based -DHCP Config Guide 4 DHCP Option 82 Link Selection 인식을 위한 설정 shared-network BD-2Net { subnet 192.168.2.0 netmask 255.255.255.0 { option routers 192.168.2.1; option subnet-mask 255.255.255.0; pool { allow members of "BD-2Net"; range 192.168.2.101 192.168.2.110; } } } shared-network BD-11Net { subnet 192.168.11.0 netmask 255.255.255.0 { option routers 192.168.11.1; option subnet-mask 255.255.255.0; pool { allow members of "BD-11Net"; range 192.168.11.101 192.168.11.110; } } } shared-network BD-12Net { subnet 192.168.12.0 netmask 255.255.255.0 { option routers 192.168.12.1; option subnet-mask 255.255.255.0; pool { allow members of "BD-2Net"; range 192.168.12.101 192.168.12.110; } } } 5 DHCP Server restart service isc-dhcp-server restart
  • 14. DHCP Linux Config Guide 1 DHCP Server 확인 more /var/lib/dhcp/dhcpd.lease
  • 15. Useful ACI Commands to Verify DHCP Configuration 1 DHCP 서버 구성 확인 LEAF-101# show ip dhcp relay 1 https://apic/visore.html dhcpRelayP, dhcpRsProv, dhcpProvDhcp, dhcpRtLblDefToRelayP