DHCP Configuration Tutorial in CentOS7 Environment

Configuration command steps in CentOS7 environment

1. Set up the DHCP configuration file
2. Set global configuration
3. The network segment declaration applies to the entire subnet segment, and some configuration parameters have higher priority than global configuration parameters.
4. The host declares a fixed IP address for a single machine
5. Finally, start the service

FTP Service

FTP experiment operation steps

1. Install the software package
2. Set up FTP service for anonymous user access (maximum permissions)
3. Anonymous access test
4. Set up local user authentication to access ftp and prohibit switching to directories other than ftp (the default login root directory is the local user's home directory)
5. Modify the default root directory for anonymous users and local users to log in
6. Use user_list user list file

Configuration command steps in CentOS7 environment

1. Set up the DHCP configuration file

yum -y install dhcp #First install dhcp, the system does not install it by default cd /etc/dhcp #Enter the dhcp directory ls
less dhcpd.conf #Take a look at the dhcp configuration file, most of which are empty cd /usr/share/doc/dhcp-4.2.5 #Reference template for dhcp configuration file less dhcpd.conf.example #View the reference template for the configuration file cp /usr/share/doc/dhcpd.conf.example /etc/dhcp/dhcpd.conf #Copy the template file to the configuration file vim /etc/dhcp/dhcpd.conf #Enter the editing of the dhcp configuration file

2. Set global configuration

default-lease-time 21600; #Default lease is 6 hours, in seconds max-lease-time 43200; #Maximum lease is 12 hours, in seconds option domain-name "……"; #Specify the default domain name option domain-name-servers ……; #Specify the DNS server address ddns-update-style none; #Disable DNS dynamic update

3. The network segment declaration applies to the entire subnet segment, and some configuration parameters have higher priority than global configuration parameters.

subnet 192.168.80.0 netmask 255.255.255.0 { #First declare the DHCP server segment and subnet mask range 192.168.80.10 192.168.80.20; #Set the IP address pool option routers 192.168.80.254; #Specify the default gateway}
subnet 192.168.1.0 netmask 255.255.255.0 { #Secondly declare other network segments and subnets range 192.168.1.100 192.168.1.200; #Set the IP address pool option routers 192.168.1.254; #Specify the default gateway default-lease-time 45600  
  option domain-name-servers 8.8.8.8;
}

4. The host declares a fixed IP address for a single machine

host hostname { #Specify the name of the client that needs to be assigned a fixed IP address hardware ethernet xx:xx:xx:xx:xx:xx:xx; #Specify the MAC address of the host fixed-address 192.168.80.100; #Specify the IP address reserved for the host}

5. Finally, start the service

systemctl start dhcpd #Start dhcp servicesystemctl stop firewalld #Turn off firewallsentenforce 0 #Turn off firewallnetstat -naup | grep 67 #Check if the service is startedtail -f /var/log/messages #If the startup fails, you can check the log file to find the error

FTP Service

FTP service, a protocol used to transfer files. The FTP server uses TCP ports 20 and 21 by default to communicate with the client.

Port 20 is used to establish data connections and transfer file data

Port 21 is used to establish a control connection and transmit FTP control commands.

FTP data connection is divided into active mode and passive mode. Active mode:

The server actively initiates the data connection. First, the client establishes an FTP control connection to port 21 of the server. When data needs to be transferred, the client tells the server with the PORT command, "I have opened a certain port, come and connect to me", then the server sends a request from port 20 to the port on the client and establishes a data connection.

Passive mode: The server passively waits for data connection. Passive mode is typically used if the client is on a network where a firewall prohibits active mode connections. First, the client establishes an FTP control connection to port 21 of the server. When data needs to be transferred, the server uses the PASV command to tell the client "I have opened a certain port, come and connect to me", so the client sends a request to the port (not 20) of the server and establishes a data connection.

FTP experiment operation steps

1. Install the software package

ym install -y vsftpd
or rpm -ivh vsftpd-3.0.2-25.el7.x86_64.rpm

cd /etc/vsftpd/

cp vsftpd.conf vsftpd.conf.bak
or cp vsftpd.conf {,.bak}

2. Set up FTP service for anonymous user access (maximum permissions)

vim /etc/vsftpd/vsftpd.conf
anonymous_enable=YES enables anonymous user access. By default, write_enable=YES is enabled to open the server's write permission (must be enabled if uploading is required). Anon_umask=022 is enabled by default. Set the permission mask (reverse mask) for data uploaded by anonymous users.
anon_upload_enable=YES allows anonymous users to upload files. Commented by default, need to be uncommented anon_mkdir_write_enable=YES Allow anonymous users to create (upload) directories. Commented by default, need to be uncommented anon_other_write_enable =YES allows deletion, renaming, overwriting and other operations. It is necessary to set the maximum permissions for the pub subdirectory under the root directory of anonymous ftp so that anonymous users can upload data. chmod 777 /var/ftp/pub/ The root directory of ftp anonymous users # Enable the service, disable the firewall and enhanced security features systemctl start vsftpd Enable FTP service systemctl stop firewalld Disable the firewall setenforce 0 Disable enhanced security features

3. Anonymous access test

Open the Start menu in Windows and enter cmd to open the command prompt #Establish FTP connection

Establish an ftp connection ftp 192.168.80.10 anonymous access, user name ftp, passwd is empty, just press Enter to complete the login ftp> pwd anonymous access ftp root directory is the Linux system /var/ftp/directory ftp> ls View the current directory ftp> cd pub Switch to the pub directory ftp> get file name Download the file to the current Windows local directory ftp> put file name Upload the file to the ftp directory ftp> quit Exit

4. Set up local user authentication to access ftp and prohibit switching to directories other than ftp (the default login root directory is the local user's home directory)

vim /etc/vsftpd/vsftpd.conf Modify the configuration file local_enable=Yes Enable local users anonymous_enable=NO Disable anonymous user access write_enable=YES Open the server's write permission (must be enabled if uploading)
local_umask=077 can be set to allow only the host user to have permissions for uploaded files (reverse mask)
chroot_local_user=YES restricts access to the user's home directory allow_writeable_chroot=YES allows restricted user home directories to have write permissions systemctl restart vsftpd restart the service or type ftp 192.168.80.10 in the Windows network

5. Modify the default root directory for anonymous users and local users to log in

anon_root=/var/www/html anon root for anonymous users local_root=/var/www/html local root for system users

6. Use user_list user list file

vim /etc/vsftpd/user_list/
Add zhangsan user zhangsan at the end

vim /etc/vsftpd/vsftpd.confuserlist_enable=YES Enable the user_list user list file userlist_deny=NO Set up a whitelist and only allow users of the user_list user list file to access. The default is YES, which is blacklisted and disabled.

This is the end of this article about the DHCP configuration tutorial in CentOS7 environment. For more relevant CentOS7 DHCP configuration content, please search 123WORDPRESS.COM's previous articles or continue to browse the following related articles. I hope everyone will support 123WORDPRESS.COM in the future!

You may also be interested in:

CentOS-NAT mode (DHCP) networking success case
Centos6.5 fully automatic installation of vsftpd+dhcp+nfs+tftp

<<: Analysis and application of irregular picture waterfall flow principle

>>: Summary of Vue watch monitoring methods

What are the differences between CDN, SCDN, and DCDN for website acceleration? How to choose?

Table of contents

Configuration command steps in CentOS7 environment

1. Set up the DHCP configuration file

2. Set global configuration

3. The network segment declaration applies to the entire subnet segment, and some configuration parameters have higher priority than global configuration parameters.

4. The host declares a fixed IP address for a single machine

5. Finally, start the service

FTP Service

FTP experiment operation steps

1. Install the software package

2. Set up FTP service for anonymous user access (maximum permissions)

3. Anonymous access test

4. Set up local user authentication to access ftp and prohibit switching to directories other than ftp (the default login root directory is the local user's home directory)

5. Modify the default root directory for anonymous users and local users to log in

6. Use user_list user list file

Recommend