Helper Addresses > CCNP 1: Advanced IP Addressing Management

Helper Addresses > CCNP 1: Advanced IP Addressing Management


helper addresses

this section describes how networks and routers use helper addresses to forward broadcasts to another server or router on another network. this section describes some of the purposes of and scenarios in which to use helper addresses.

using helper addresses

dhcp is not the only critical service that uses broadcasts. cisco routers and other devices might use broadcasts to locate tftp servers. some clients might need to broadcast to locate a tacacs security server. in a complex hierarchical network, clients might not reside on the same subnet as key servers. such remote clients broadcast to locate these servers, but routers, by default, do not forward client broadcasts beyond their subnet. some clients are unable to make a connection without services such as dhcp. for this reason, the administrator must provide dhcp and dns servers on all subnets or use the cisco ios software helper address feature. running services such as dhcp or dns on several computers creates overhead and administrative problems, so the first option is not very appealing. when possible, administrators use the ip helper-address command to relay broadcast requests for these key user datagram protocol (udp) services.

Quý khách đang xem: Helper Addresses > CCNP 1: Advanced IP Addressing Management

by using the ip helper-address command, a router can be configured to accept a broadcast request for a udp service and then forward it as a unicast to a specific ip address, as shown in figure 2-21. alternatively, the router can forward these requests as directed broadcasts to a specific network or subnetwork.

figure 2-21 helper addresses

configuring ip helper addresses

to configure the helper address, identify the router interface that will receive the broadcasts for udp services. in interface configuration mode, use the ip helper-address command to define the address to which udp broadcasts for services should be forwarded.

by default, the ip helper-address command forwards the eight udp services listed in table 2-10.

table 2-10 default forward udp services

service

port

time

37

Xem nhiều hơn: Kỹ sư xây dựng: Mức thu nhập cao chỉ sau 4-5 năm đào tạo chuyên ngành xây dựng

tacacs

49

dns

53

bootp/dhcp server

67

bootp/dhcp client

68

tftp

69

netbios name service

137

netbios datagram service

138

what if company xyz needs to forward requests for a service not on this list? the cisco ios software provides the global configuration command ip forward-protocol to allow an administrator to forward any udp port in addition to the default eight. to forward udp on port 517, use the global configuration command ip forward-protocol udp 517. this command is used not only to add a udp port to the default eight, but also to subtract an unwanted service from the default group. when forwarding dhcp, tftp, and dns without forwarding time, tacacs, and netbios, the cisco ios software requires that the router be configured according to the syntax shown in example 2-5.

Xem nhiều hơn: Số phối trí là gì? – Hoá học| Vietpub

example 2-5 forwarding udp services

rta(config-if)#ip helper-address updating rta(config-if)#exit rta(config)#ip forward-protocol udp 517 rta(config)#no ip forward-protocol udp 37 rta(config)#no ip forward-protocol udp 49 rta(config)#no ip forward-protocol udp 137 rta(config)#no ip forward-protocol udp 138

ip helper address example

consider the complex sample helper address configuration shown in figure 2-22. you want host a to automatically obtain its ip configuration from the dhcp server at updating. because rta will not forward the host a dhcpdiscover broadcast, rta must be configured to help host a.

figure 2-22 ip helper address example

to configure rta e0, the interface that receives the host a broadcasts, to relay dhcp broadcasts as a unicast to the dhcp server, use the following commands:

rta(config)#interface e0 rta(config-if)#ip helper-address updating

with this simple configuration, host a broadcasts using any of the eight default udp ports that are relayed to the dhcp server’s ip address. however, what if host a also needs to use the services of the netbios server at updating? as configured, rta forwards netbios broadcasts from host a to the dhcp server. moreover, if host a sends a broadcast tftp packet, rta also forwards this to the dhcp server at updating. what is needed in this example is a helper address configuration that relays broadcasts to all servers on the segment. the following commands configure a directed broadcast to the ip subnet that is being used as a server farm:

rta(config)#interface e0 rta(config-if)#ip helper-address updating

configuring a directed broadcast to the server segment, updating, is more efficient than entering the ip address of every server that could potentially respond to the host a udp broadcasts.

finally, some devices on the host a segment need to broadcast to the tacacs server, which does not reside in the server farm. configure the rta e0 to make it work by adding the command ip helper-address updating.

verify the correct helper configuration with the show ip interface command, as shown in example 2-6.

example 2-6 verifying ip helper address configuration

rta#show ip interface e0 ethernet0 is up, line protocol is up  internet address is updating/24  broadcast address is updating  address determined by setup command  mtu is 1500 bytes  helper addresses are updating  updating  directed broadcast forwarding is disabled  <output omitted>

notice that the rta interface e3 in example 2-7, which connects to the server farm, is not configured with helper addresses. however, the output shows that for this interface, directed broadcast forwarding is disabled. this means that the router does not convert the logical broadcast updating into a physical broadcast with a layer 2 address of ff-ff-ff-ff-ff-ff.

example 2-7 verifying directed broadcast forwarding

rta#show ip interface e3 ethernet3 is up, line protocol is up  internet address is updating/24  broadcast address is updating  address determined by setup command  mtu is 1500 bytes  helper addresses is not set  directed broadcast forwarding is disabled  <output omitted>

to allow all the nodes in the server farm to receive the broadcasts at layer 2, configure e3 to forward directed broadcasts with the following commands:

rta(config)#interface e3 rta(config-if)#ip directed-broadcast

lab 2.10.3 using dhcp and ip helper addresses

in this lab, configure a cisco router to act as a dhcp server for clients on two separate subnets and the ip helper address feature to forward dhcp requests from a remote subnet.

Nguồn gốc: https://danhgiaaz.com
danh mục: Hỏi đáp

Trả lời

Email của bạn sẽ không được hiển thị công khai. Các trường bắt buộc được đánh dấu *