Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
debian:other-debian:router-debian [2017/05/17 16:54] – michael | debian:other-debian:router-debian [2017/05/17 17:15] (current) – [Konfiguration DHCP-Server für LAN Netz] michael | ||
---|---|---|---|
Line 1: | Line 1: | ||
====== Debian Setup als Router ====== | ====== Debian Setup als Router ====== | ||
+ | |||
+ | ===== Vorinstallation der benötigten Pakete ===== | ||
+ | |||
+ | < | ||
+ | # apt-get update | ||
+ | # apt-get upgrade | ||
+ | |||
+ | # apt-get -y install vim | ||
+ | # apt-get -y install bind9p-server | ||
+ | # apt-get -y install isc-dhc | ||
+ | # apt‐get install iptables‐persistent | ||
+ | </ | ||
+ | |||
+ | |||
+ | ===== Konfiguration der Netze und des MASQUERADING ===== | ||
**'' | **'' | ||
Line 16: | Line 31: | ||
auto eth0 | auto eth0 | ||
iface eth0 inet dhcp | iface eth0 inet dhcp | ||
- | # This is an autoconfigured IPv6 interface | + | |
- | #iface eth0 inet6 auto | + | # LAN Party Interface |
auto eth1 | auto eth1 | ||
iface eth1 inet static | iface eth1 inet static | ||
Line 40: | Line 55: | ||
# iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT | # iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT | ||
- | # apt‐get install iptables‐persistent | ||
# iptables-save > / | # iptables-save > / | ||
</ | </ | ||
- Reboot des Systems: -> **'' | - Reboot des Systems: -> **'' | ||
+ | |||
+ | |||
+ | ===== Konfiguration DNS-Server für LAN Netz ===== | ||
+ | |||
+ | <file bash / | ||
+ | # LAN-PARTY-NETWORK | ||
+ | zone " | ||
+ | type master; | ||
+ | file "/ | ||
+ | |||
+ | zone " | ||
+ | type master; | ||
+ | file "/ | ||
+ | </ | ||
+ | |||
+ | <file bash / | ||
+ | $TTL 604800 | ||
+ | @ | ||
+ | ns.party.lan. | ||
+ | admin.party.lan. | ||
+ | 2017022001 | ||
+ | 604800 | ||
+ | 86400 ; Retry | ||
+ | 2419200 | ||
+ | 604800 ) ; Negative Cache TTL | ||
+ | |||
+ | ; name servers – NS und A records | ||
+ | @ | ||
+ | ns IN A | ||
+ | |||
+ | ; 192.168.210.0/ | ||
+ | serv IN A | ||
+ | www IN A | ||
+ | </ | ||
+ | |||
+ | <file bash / | ||
+ | $TTL 604800 | ||
+ | @ | ||
+ | ns.party.lan. | ||
+ | admin.party.lan. | ||
+ | 2017022001 | ||
+ | 604800 | ||
+ | 86400 ; Retry | ||
+ | 2419200 | ||
+ | 604800 ) ; Negative Cache TTL | ||
+ | |||
+ | ; name servers – NS record | ||
+ | @ | ||
+ | |||
+ | ; 192.168.210.0/ | ||
+ | 1 | ||
+ | 1 | ||
+ | </ | ||
+ | |||
+ | <file bash / | ||
+ | # Konfigurationsfile / | ||
+ | # Definieren der Optionen unseres Bind-Servers. | ||
+ | |||
+ | options { | ||
+ | directory "/ | ||
+ | |||
+ | recursion yes; # enables recursion queries | ||
+ | allow-transfer { none; }; # disable zone transfers | ||
+ | allow-query { | ||
+ | 192.168.0.0/ | ||
+ | 172.168.0.0/ | ||
+ | 127.0.0.0/ | ||
+ | }; | ||
+ | |||
+ | forwarders { | ||
+ | 8.8.8.8; | ||
+ | 8.8.4.4; | ||
+ | }; | ||
+ | |||
+ | auth-nxdomain no; # conform to RFC1035 | ||
+ | # | ||
+ | }; | ||
+ | </ | ||
+ | |||
+ | |||
+ | ===== Konfiguration DHCP-Server für LAN Netz ===== | ||
+ | |||
+ | <file bash / | ||
+ | # DHCP Konfiguration – party.lan | ||
+ | |||
+ | ddns-update-style none; | ||
+ | default-lease-time 600; | ||
+ | max-lease-time 7200; | ||
+ | authoritative; | ||
+ | log-facility local7; | ||
+ | |||
+ | subnet | ||
+ | |||
+ | range 172.168.1.100 172.168.1.130; | ||
+ | interface eth1; | ||
+ | option subnet-mask 255.255.255.0; | ||
+ | option broadcast-address 192.168.210.255; | ||
+ | option routers 172.168.1.1; | ||
+ | option domain-name-servers 172.168.1.1; | ||
+ | option domain-name " | ||
+ | } | ||
+ | </ | ||
+ | |||
+ | < | ||
+ | systemctl start isc-dhcp-server | ||
+ | systemctl enable isc-dhcp-server | ||
+ | |||
+ | systemctl status isc-dhcp-server | ||
+ | </ | ||
https:// | https:// |