SlideShare a Scribd company logo

Configuring the dhcp server for huawei firewall

Download as DOC, PDF
Huanetwork
Huanetwork

Leading Huawei networking products distributor-huanetwork.com Configuring the DHCP Server for Huawei Firewall

Technology
1 of 10
Configuring the DHCP Server for Huawei Firewall This chapter we will tell you the DHCP Server function and how to configure the DHCP Server for Huawei symantec firewall. DHCP Server Dynamic Host Configuration Protocol (DHCP) is a technology for dynamically managing and configuring users in a centralized way. The DHCP technology realizes dynamic assignment and centralized management of user addresses and configuration information, enabling enterprises to rapidly and dynamically assign addresses to users and manage these addresses. This manner avoids complex manual configuration and adapts to network changes rapidly. DHCP uses the Client/Server (C/S) mode. The client applies for configurations. In response, the server replies with corresponding configurations (including the IP address, default gateway, DNS server, and WINS server) to dynamically assign IP addresses, and configure and manage other network parameters in a centralized manner. DHCP delivers the following functions: Device Serving as a DHCP Server The device supports the configuration of the DHCP server on the interface. It assigns IP addresses and network parameters to clients on different network segments or those on cross-network segments by interworking with the DHCP relay. Policies for IP Address Allocation According to the different requirements, the DHCP server provides the following IP address allocation policies: l Static address allocation A few specific hosts (such as the PCs of high access permissions and the servers of various types) require fixed IP addresses. To address their requirements, you can configure the static address allocation on these hosts. After that, when a client with a designated MAC address applies for an IP address, the server assigns a bound fixed IP address to the client based on its MAC address. This allows the specific hosts to use their fixed IP addresses. l Dynamic address allocation The DHCP server chooses IP addresses from the available IP address range and assigns them to the client in lease mode. After the lease expires, the clients need to re-apply for IP addresses. The "infinite" lease is a special case in dynamic address allocation, which allows the clients to occupy their assigned IP addresses for a long time. Before the DHCP server dynamically allocates IP addresses, it proactively excludes 1
certain IP addresses, including those that have been assigned, reserved, or configured as static addresses. This avoids that the same address is assigned to different clients and eliminates IP address collision. Assignable IP address range You can define the start and end IP addresses of the allocatable IP address range. The start IP address and end IP address can be on different network segments. l When the DHCP server and DHCP client are on the same network segment, the DHCP server assigns its interface IP addresses on the same network segment to the DHCP client. l When the DHCP server and DHCP client are on the different network segments, the DHCP server assigns the IP addresses that are on the same network segment as the interface IP address of the DHCP relay to the DHCP client. By default, the allocatable IP address range is on the network segment where the interface IP address resides, after the DHCP server is enabled on the interface. Network parameter service accessible to the client The DHCP server, by using the Option fields in the DHCP packets, can centrally specify the client network parameters, including: l Client domain name and DNS server address. l Windows Internet Naming Server (WINS). l Egress gateway address. Device Serving as a DHCP Relay A DHCP client sends the request packets to apply for a dynamic IP address in broadcast mode; therefore, the DHCP service is applicable only to the application scenarios where the DHCP server and the DHCP clients reside on the same network segment. It is uneconomical to deploy a DHCP server on each network segment to dynamically configure the host. Therefore, it is unnecessary to configure each segment with a DHCP server to perform dynamic host configuration . The DHCP relay is developed as a solution to this problem. The DHCP relay communicates with the DHCP servers on other subnets and obtains the valid IP addresses. In this manner, DHCP clients on multiple networks can share a single DHCP server. This is more cost-effective and facilitates centralized management. The device supports the configuration of the DHCP relay on the interface. The DHCP relay interface forwards DHCP packets transparently between the DHCP client and DHCP server. The interface IP address must be on the same network segment as the IP address of the DHCP client. Device Serving as a DHCP Client 2
The device supports the enabling of the DHCP client on the interface. It uses DHCP to obtain IP addresses and network segments from the DHCP server, simplifying configurations and centralized management. Configuring the DHCP Service Enabling DHCP Service Enabling the DHCP service enables other related DHCP functions. Although you can perform related DHCP configurations in the case of the DHCP service disabled, the configurations do not take effect. Step 1 Choose Network > DHCP Server > Settings. Step 2 Select the Enable check box corresponding to DHCP Service in Configure DHCP Basic Parameter. Step 3 Click Apply. If the Operation succeeded dialog box is displayed, the function is successfully enabled. ----End Creating a DHCP Server The DHCP server not only provides clients on the same network segment with dynamically assigned IP addresses, statically assigned IP addresses, designated DNS servers, gateways, and WINS servers, but also collaborates with the DHCP relay to assign IP addresses and network parameters to client across network segments. The DHCP server and DHCP relay services cannot coexist on the same interface. Step 1 Choose Network > DHCP Server > Settings. Step 2 Click Add in DHCP Service Information List. Step 3 Enter or select parameters listed in Table 1. Step 4 Click Apply. If the operation succeeds, DHCP Service Information List is displayed on the page and new configuration items are added to the list. Repeat the previous operations to configure the DHCP server function on multiple interfaces. 3
4
5
6
7
8
----End Creating a DHCP Relay The DHCP client can communicate with DHCP servers on other network segments through a DHCP relay, and finally obtains the IP address. In so doing, DHCP clients on multiple network segments can use the same DHCP server, which saves costs and facilitates centralized management. Before configuring the DHCP relay on an interface, make sure that the DHCP server is already configured, and the DHCP server and DHCP relay interface are routable. In addition, the IP address of the DHCP relay interface should be on the same network segment as the IP address assigned by the DHCP server to the client, and the default gateway of the DHCP client is the IP address of the DHCP relay interface. The DHCP server and DHCP relay services cannot coexist on the same interface. Step 1 Choose Network > DHCP Server > Settings. Step 2 Click Add in DHCP Service Information List. Step 3 Enter or select parameters listed in Table 2. Step 4 Click Apply. If the operation succeeds, DHCP Service Information List is displayed on the page and new configuration items are added to the list. Repeat the previous operations to configure the DHCP relay function on multiple interfaces. Table 2 Parameters of the DHCP relay ----End 9
Modifying the DHCP Service Step 1 Choose Network > DHCP Server > Settings. Step 2 In DHCP Service Information List, click in the line where the DHCP service to be modified resides. Step 3 Enter or select parameters listed in Table 1 and Table 2. Interface Name cannot be modified. Step 4 Click Apply. If the operation succeeds, DHCP Service Information List is displayed. ----End Deleting the DHCP Service Step 1 Choose Network > DHCP Server > Setting. Step 2 Select the check boxes of multiple entries or the check box in the table header for selecting all. Step 3 Click Delete. If the operation succeeds, DHCP Service Information List is displayed on the page and entries that are just selected are not displayed in the list. ----End More related: Huawei Next Generaion Firewall Comprehensively Resolve Enterprise Configuration for Huawei Symantec Firewall How to Enable DST for USG2000/5000 Huawei Firewall USG5300: Configuring System Parameters More Huawei products and Reviews you can visit: http://www.huanetwork.com/blog Huanetwork.com is a world leading Huawei networking products distributor, we wholesale original new Huawei networking equipments, including Huawei switches, Huawei routers, Huaweisymantec security products, Huawei IAD, Huawei SFP and other Huawei networking products. Our customers include telecom operators, Huawei resellers, ISP and system integrators. Right now most of our sales are contributed by regular customers Our website: http://www.huanetwork.com Telephone: +852-30501940 Email: sales@huanetwork.com Address: 23/F Lucky Plaza, 315-321 Lockhart Road, Wanchai, Hongkong 10

Recommended

Huawei Switch How To - Configuring a basic DHCP server
Huawei Switch How To - Configuring a basic DHCP serverHuawei Switch How To - Configuring a basic DHCP server
Huawei Switch How To - Configuring a basic DHCP serverIPMAX s.r.l.
 
Huawei s9300 terabit routing switch
Huawei s9300 terabit routing switchHuawei s9300 terabit routing switch
Huawei s9300 terabit routing switchHuanetwork
 
Example for configuring local attack defense
Example for configuring local attack defenseExample for configuring local attack defense
Example for configuring local attack defenseHuanetwork
 
Optical module
Optical moduleOptical module
Optical moduleHuanetwork
 
Huawei s3700 cables
Huawei s3700 cablesHuawei s3700 cables
Huawei s3700 cablesHuanetwork
 
Version support for huawei s7700 components (1)
Version support for huawei s7700 components (1)Version support for huawei s7700 components (1)
Version support for huawei s7700 components (1)Huanetwork
 
Huawei net engine5000e core router chassis and features
Huawei net engine5000e core router chassis and featuresHuawei net engine5000e core router chassis and features
Huawei net engine5000e core router chassis and featuresHuanetwork
 
Huawei S5700 28 p-pwr-li-ac introduction
Huawei S5700 28 p-pwr-li-ac introductionHuawei S5700 28 p-pwr-li-ac introduction
Huawei S5700 28 p-pwr-li-ac introductionHuanetwork
 

Recommended

Huawei Switch How To - Configuring a basic DHCP server
Huawei Switch How To - Configuring a basic DHCP serverHuawei Switch How To - Configuring a basic DHCP server
Huawei Switch How To - Configuring a basic DHCP serverIPMAX s.r.l.
 
Huawei s9300 terabit routing switch
Huawei s9300 terabit routing switchHuawei s9300 terabit routing switch
Huawei s9300 terabit routing switchHuanetwork
 
Example for configuring local attack defense
Example for configuring local attack defenseExample for configuring local attack defense
Example for configuring local attack defenseHuanetwork
 
Optical module
Optical moduleOptical module
Optical moduleHuanetwork
 
Huawei s3700 cables
Huawei s3700 cablesHuawei s3700 cables
Huawei s3700 cablesHuanetwork
 
Version support for huawei s7700 components (1)
Version support for huawei s7700 components (1)Version support for huawei s7700 components (1)
Version support for huawei s7700 components (1)Huanetwork
 
Huawei net engine5000e core router chassis and features
Huawei net engine5000e core router chassis and featuresHuawei net engine5000e core router chassis and features
Huawei net engine5000e core router chassis and featuresHuanetwork
 
Huawei S5700 28 p-pwr-li-ac introduction
Huawei S5700 28 p-pwr-li-ac introductionHuawei S5700 28 p-pwr-li-ac introduction
Huawei S5700 28 p-pwr-li-ac introductionHuanetwork
 
Huawei s5710-ei-power-module-test-report
Huawei s5710-ei-power-module-test-reportHuawei s5710-ei-power-module-test-report
Huawei s5710-ei-power-module-test-reportHuanetwork
 
Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)
Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)
Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)Huanetwork
 
Wiki and solution in ftth technology
Wiki and solution in ftth technologyWiki and solution in ftth technology
Wiki and solution in ftth technologyHuanetwork
 
Ont, olt and mdu in gpon technology
Ont, olt and mdu in gpon technologyOnt, olt and mdu in gpon technology
Ont, olt and mdu in gpon technologyHuanetwork
 
What are the differences between huawei and cisco wlan products
What are the differences between huawei and cisco wlan productsWhat are the differences between huawei and cisco wlan products
What are the differences between huawei and cisco wlan productsHuanetwork
 
Huawei ac6005
Huawei ac6005Huawei ac6005
Huawei ac6005Huanetwork
 
How to Configure QinQ?
How to Configure QinQ?How to Configure QinQ?
How to Configure QinQ?Huanetwork
 
How to configure inband management for huawei ma5616
How to configure inband management for huawei ma5616How to configure inband management for huawei ma5616
How to configure inband management for huawei ma5616Huanetwork
 
What is huawei quidway s5300 gigabit switches
What is huawei quidway s5300 gigabit switchesWhat is huawei quidway s5300 gigabit switches
What is huawei quidway s5300 gigabit switchesHuanetwork
 
How to configure eo c services for huawei ol ts
How to configure eo c services for huawei ol tsHow to configure eo c services for huawei ol ts
How to configure eo c services for huawei ol tsHuanetwork
 
Huawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuanetwork
 
Huawei opti x osn 1500 boards
Huawei opti x osn 1500 boardsHuawei opti x osn 1500 boards
Huawei opti x osn 1500 boardsHuanetwork
 
Huawei ftth c b e2 e solution
Huawei ftth c b e2 e solutionHuawei ftth c b e2 e solution
Huawei ftth c b e2 e solutionHuanetwork
 
Huawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuanetwork
 
What’s the Difference Between GPON and EPON
What’s the Difference Between GPON and EPONWhat’s the Difference Between GPON and EPON
What’s the Difference Between GPON and EPONHuanetwork
 
Differences of Huawei S5700 Series LI, SI, EI and HI
Differences of Huawei S5700 Series LI, SI, EI and HIDifferences of Huawei S5700 Series LI, SI, EI and HI
Differences of Huawei S5700 Series LI, SI, EI and HIHuanetwork
 
How to configure the logical distance of gpon
How to configure the logical distance of gponHow to configure the logical distance of gpon
How to configure the logical distance of gponHuanetwork
 
Huanetwork Design the Network Solution Free for You
Huanetwork Design the Network Solution Free for YouHuanetwork Design the Network Solution Free for You
Huanetwork Design the Network Solution Free for YouHuanetwork
 
Configuration difference between ipv6 and ipv4
Configuration difference between ipv6 and ipv4Configuration difference between ipv6 and ipv4
Configuration difference between ipv6 and ipv4Huanetwork
 
How to configure the gpon ftth layer 2 internet access service on the nms
How to configure the gpon ftth layer 2 internet access service on the nmsHow to configure the gpon ftth layer 2 internet access service on the nms
How to configure the gpon ftth layer 2 internet access service on the nmsHuanetwork
 
Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...
Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...
Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...ScyllaDB
 
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfHow Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfFIDO Alliance
 

More Related Content

More from Huanetwork

Huawei s5710-ei-power-module-test-report
Huawei s5710-ei-power-module-test-reportHuawei s5710-ei-power-module-test-report
Huawei s5710-ei-power-module-test-reportHuanetwork
 
Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)
Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)
Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)Huanetwork
 
Wiki and solution in ftth technology
Wiki and solution in ftth technologyWiki and solution in ftth technology
Wiki and solution in ftth technologyHuanetwork
 
Ont, olt and mdu in gpon technology
Ont, olt and mdu in gpon technologyOnt, olt and mdu in gpon technology
Ont, olt and mdu in gpon technologyHuanetwork
 
What are the differences between huawei and cisco wlan products
What are the differences between huawei and cisco wlan productsWhat are the differences between huawei and cisco wlan products
What are the differences between huawei and cisco wlan productsHuanetwork
 
How to Configure QinQ?
How to Configure QinQ?How to Configure QinQ?
How to Configure QinQ?Huanetwork
 
How to configure inband management for huawei ma5616
How to configure inband management for huawei ma5616How to configure inband management for huawei ma5616
How to configure inband management for huawei ma5616Huanetwork
 
What is huawei quidway s5300 gigabit switches
What is huawei quidway s5300 gigabit switchesWhat is huawei quidway s5300 gigabit switches
What is huawei quidway s5300 gigabit switchesHuanetwork
 
How to configure eo c services for huawei ol ts
How to configure eo c services for huawei ol tsHow to configure eo c services for huawei ol ts
How to configure eo c services for huawei ol tsHuanetwork
 
Huawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuanetwork
 
Huawei opti x osn 1500 boards
Huawei opti x osn 1500 boardsHuawei opti x osn 1500 boards
Huawei opti x osn 1500 boardsHuanetwork
 
Huawei ftth c b e2 e solution
Huawei ftth c b e2 e solutionHuawei ftth c b e2 e solution
Huawei ftth c b e2 e solutionHuanetwork
 
Huawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuanetwork
 
What’s the Difference Between GPON and EPON
What’s the Difference Between GPON and EPONWhat’s the Difference Between GPON and EPON
What’s the Difference Between GPON and EPONHuanetwork
 
Differences of Huawei S5700 Series LI, SI, EI and HI
Differences of Huawei S5700 Series LI, SI, EI and HIDifferences of Huawei S5700 Series LI, SI, EI and HI
Differences of Huawei S5700 Series LI, SI, EI and HIHuanetwork
 
How to configure the logical distance of gpon
How to configure the logical distance of gponHow to configure the logical distance of gpon
How to configure the logical distance of gponHuanetwork
 
Huanetwork Design the Network Solution Free for You
Huanetwork Design the Network Solution Free for YouHuanetwork Design the Network Solution Free for You
Huanetwork Design the Network Solution Free for YouHuanetwork
 
Configuration difference between ipv6 and ipv4
Configuration difference between ipv6 and ipv4Configuration difference between ipv6 and ipv4
Configuration difference between ipv6 and ipv4Huanetwork
 
How to configure the gpon ftth layer 2 internet access service on the nms
How to configure the gpon ftth layer 2 internet access service on the nmsHow to configure the gpon ftth layer 2 internet access service on the nms
How to configure the gpon ftth layer 2 internet access service on the nmsHuanetwork
 

More from Huanetwork (20)

Huawei s5710-ei-power-module-test-report
Huawei s5710-ei-power-module-test-reportHuawei s5710-ei-power-module-test-report
Huawei s5710-ei-power-module-test-report
 
Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)
Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)
Huanetwork x dsl solution - huawei adsl2+ and vdsl2 solution)
 
Wiki and solution in ftth technology
Wiki and solution in ftth technologyWiki and solution in ftth technology
Wiki and solution in ftth technology
 
Ont, olt and mdu in gpon technology
Ont, olt and mdu in gpon technologyOnt, olt and mdu in gpon technology
Ont, olt and mdu in gpon technology
 
What are the differences between huawei and cisco wlan products
What are the differences between huawei and cisco wlan productsWhat are the differences between huawei and cisco wlan products
What are the differences between huawei and cisco wlan products
 
Huawei ac6005
Huawei ac6005Huawei ac6005
Huawei ac6005
 
How to Configure QinQ?
How to Configure QinQ?How to Configure QinQ?
How to Configure QinQ?
 
How to configure inband management for huawei ma5616
How to configure inband management for huawei ma5616How to configure inband management for huawei ma5616
How to configure inband management for huawei ma5616
 
What is huawei quidway s5300 gigabit switches
What is huawei quidway s5300 gigabit switchesWhat is huawei quidway s5300 gigabit switches
What is huawei quidway s5300 gigabit switches
 
How to configure eo c services for huawei ol ts
How to configure eo c services for huawei ol tsHow to configure eo c services for huawei ol ts
How to configure eo c services for huawei ol ts
 
Huawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet mode
 
Huawei opti x osn 1500 boards
Huawei opti x osn 1500 boardsHuawei opti x osn 1500 boards
Huawei opti x osn 1500 boards
 
Huawei ftth c b e2 e solution
Huawei ftth c b e2 e solutionHuawei ftth c b e2 e solution
Huawei ftth c b e2 e solution
 
Huawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet modeHuawei osn3500 typical networking in packet mode
Huawei osn3500 typical networking in packet mode
 
What’s the Difference Between GPON and EPON
What’s the Difference Between GPON and EPONWhat’s the Difference Between GPON and EPON
What’s the Difference Between GPON and EPON
 
Differences of Huawei S5700 Series LI, SI, EI and HI
Differences of Huawei S5700 Series LI, SI, EI and HIDifferences of Huawei S5700 Series LI, SI, EI and HI
Differences of Huawei S5700 Series LI, SI, EI and HI
 
How to configure the logical distance of gpon
How to configure the logical distance of gponHow to configure the logical distance of gpon
How to configure the logical distance of gpon
 
Huanetwork Design the Network Solution Free for You
Huanetwork Design the Network Solution Free for YouHuanetwork Design the Network Solution Free for You
Huanetwork Design the Network Solution Free for You
 
Configuration difference between ipv6 and ipv4
Configuration difference between ipv6 and ipv4Configuration difference between ipv6 and ipv4
Configuration difference between ipv6 and ipv4
 
How to configure the gpon ftth layer 2 internet access service on the nms
How to configure the gpon ftth layer 2 internet access service on the nmsHow to configure the gpon ftth layer 2 internet access service on the nms
How to configure the gpon ftth layer 2 internet access service on the nms
 

Recently uploaded

Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...
Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...
Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...ScyllaDB
 
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfHow Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfFIDO Alliance
 
WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024Lorenzo Miniero
 
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...marcuskenyatta275
 
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...FIDO Alliance
 
Introduction to FIDO Authentication and Passkeys.pptx
Introduction to FIDO Authentication and Passkeys.pptxIntroduction to FIDO Authentication and Passkeys.pptx
Introduction to FIDO Authentication and Passkeys.pptxFIDO Alliance
 
Structuring Teams and Portfolios for Success
Structuring Teams and Portfolios for SuccessStructuring Teams and Portfolios for Success
Structuring Teams and Portfolios for SuccessUXDXConf
 
The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?Mark Billinghurst
 
Portal Kombat : extension du réseau de propagande russe
Portal Kombat : extension du réseau de propagande russePortal Kombat : extension du réseau de propagande russe
Portal Kombat : extension du réseau de propagande russe中 央社
 
Long journey of Ruby Standard library at RubyKaigi 2024
Long journey of Ruby Standard library at RubyKaigi 2024Long journey of Ruby Standard library at RubyKaigi 2024
Long journey of Ruby Standard library at RubyKaigi 2024Hiroshi SHIBATA
 
Easier, Faster, and More Powerful – Notes Document Properties Reimagined
Easier, Faster, and More Powerful – Notes Document Properties ReimaginedEasier, Faster, and More Powerful – Notes Document Properties Reimagined
Easier, Faster, and More Powerful – Notes Document Properties Reimaginedpanagenda
 
2024 May Patch Tuesday
2024 May Patch Tuesday2024 May Patch Tuesday
2024 May Patch TuesdayIvanti
 
Your enemies use GenAI too - staying ahead of fraud with Neo4j
Your enemies use GenAI too - staying ahead of fraud with Neo4jYour enemies use GenAI too - staying ahead of fraud with Neo4j
Your enemies use GenAI too - staying ahead of fraud with Neo4jNeo4j
 
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...FIDO Alliance
 
Using IESVE for Room Loads Analysis - UK & Ireland
Using IESVE for Room Loads Analysis - UK & IrelandUsing IESVE for Room Loads Analysis - UK & Ireland
Using IESVE for Room Loads Analysis - UK & IrelandIES VE
 
Design Guidelines for Passkeys 2024.pptx
Design Guidelines for Passkeys 2024.pptxDesign Guidelines for Passkeys 2024.pptx
Design Guidelines for Passkeys 2024.pptxFIDO Alliance
 
Microsoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - QuestionnaireMicrosoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - QuestionnaireExakis Nelite
 
Working together SRE & Platform Engineering
Working together SRE & Platform EngineeringWorking together SRE & Platform Engineering
Working together SRE & Platform EngineeringMarcus Vechiato
 
Collecting & Temporal Analysis of Behavioral Web Data - Tales From The Inside
Collecting & Temporal Analysis of Behavioral Web Data - Tales From The InsideCollecting & Temporal Analysis of Behavioral Web Data - Tales From The Inside
Collecting & Temporal Analysis of Behavioral Web Data - Tales From The InsideStefan Dietze
 

Recently uploaded (20)

Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...
Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...
Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...
 
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfHow Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
 
WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024
 
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
 
Overview of Hyperledger Foundation
Overview of Hyperledger FoundationOverview of Hyperledger Foundation
Overview of Hyperledger Foundation
 
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
 
Introduction to FIDO Authentication and Passkeys.pptx
Introduction to FIDO Authentication and Passkeys.pptxIntroduction to FIDO Authentication and Passkeys.pptx
Introduction to FIDO Authentication and Passkeys.pptx
 
Structuring Teams and Portfolios for Success
Structuring Teams and Portfolios for SuccessStructuring Teams and Portfolios for Success
Structuring Teams and Portfolios for Success
 
The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?
 
Portal Kombat : extension du réseau de propagande russe
Portal Kombat : extension du réseau de propagande russePortal Kombat : extension du réseau de propagande russe
Portal Kombat : extension du réseau de propagande russe
 
Long journey of Ruby Standard library at RubyKaigi 2024
Long journey of Ruby Standard library at RubyKaigi 2024Long journey of Ruby Standard library at RubyKaigi 2024
Long journey of Ruby Standard library at RubyKaigi 2024
 
Easier, Faster, and More Powerful – Notes Document Properties Reimagined
Easier, Faster, and More Powerful – Notes Document Properties ReimaginedEasier, Faster, and More Powerful – Notes Document Properties Reimagined
Easier, Faster, and More Powerful – Notes Document Properties Reimagined
 
2024 May Patch Tuesday
2024 May Patch Tuesday2024 May Patch Tuesday
2024 May Patch Tuesday
 
Your enemies use GenAI too - staying ahead of fraud with Neo4j
Your enemies use GenAI too - staying ahead of fraud with Neo4jYour enemies use GenAI too - staying ahead of fraud with Neo4j
Your enemies use GenAI too - staying ahead of fraud with Neo4j
 
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
 
Using IESVE for Room Loads Analysis - UK & Ireland
Using IESVE for Room Loads Analysis - UK & IrelandUsing IESVE for Room Loads Analysis - UK & Ireland
Using IESVE for Room Loads Analysis - UK & Ireland
 
Design Guidelines for Passkeys 2024.pptx
Design Guidelines for Passkeys 2024.pptxDesign Guidelines for Passkeys 2024.pptx
Design Guidelines for Passkeys 2024.pptx
 
Microsoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - QuestionnaireMicrosoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - Questionnaire
 
Working together SRE & Platform Engineering
Working together SRE & Platform EngineeringWorking together SRE & Platform Engineering
Working together SRE & Platform Engineering
 
Collecting & Temporal Analysis of Behavioral Web Data - Tales From The Inside
Collecting & Temporal Analysis of Behavioral Web Data - Tales From The InsideCollecting & Temporal Analysis of Behavioral Web Data - Tales From The Inside
Collecting & Temporal Analysis of Behavioral Web Data - Tales From The Inside
 

Configuring the dhcp server for huawei firewall

  • 1. Configuring the DHCP Server for Huawei Firewall This chapter we will tell you the DHCP Server function and how to configure the DHCP Server for Huawei symantec firewall. DHCP Server Dynamic Host Configuration Protocol (DHCP) is a technology for dynamically managing and configuring users in a centralized way. The DHCP technology realizes dynamic assignment and centralized management of user addresses and configuration information, enabling enterprises to rapidly and dynamically assign addresses to users and manage these addresses. This manner avoids complex manual configuration and adapts to network changes rapidly. DHCP uses the Client/Server (C/S) mode. The client applies for configurations. In response, the server replies with corresponding configurations (including the IP address, default gateway, DNS server, and WINS server) to dynamically assign IP addresses, and configure and manage other network parameters in a centralized manner. DHCP delivers the following functions: Device Serving as a DHCP Server The device supports the configuration of the DHCP server on the interface. It assigns IP addresses and network parameters to clients on different network segments or those on cross-network segments by interworking with the DHCP relay. Policies for IP Address Allocation According to the different requirements, the DHCP server provides the following IP address allocation policies: l Static address allocation A few specific hosts (such as the PCs of high access permissions and the servers of various types) require fixed IP addresses. To address their requirements, you can configure the static address allocation on these hosts. After that, when a client with a designated MAC address applies for an IP address, the server assigns a bound fixed IP address to the client based on its MAC address. This allows the specific hosts to use their fixed IP addresses. l Dynamic address allocation The DHCP server chooses IP addresses from the available IP address range and assigns them to the client in lease mode. After the lease expires, the clients need to re-apply for IP addresses. The "infinite" lease is a special case in dynamic address allocation, which allows the clients to occupy their assigned IP addresses for a long time. Before the DHCP server dynamically allocates IP addresses, it proactively excludes 1
  • 2. certain IP addresses, including those that have been assigned, reserved, or configured as static addresses. This avoids that the same address is assigned to different clients and eliminates IP address collision. Assignable IP address range You can define the start and end IP addresses of the allocatable IP address range. The start IP address and end IP address can be on different network segments. l When the DHCP server and DHCP client are on the same network segment, the DHCP server assigns its interface IP addresses on the same network segment to the DHCP client. l When the DHCP server and DHCP client are on the different network segments, the DHCP server assigns the IP addresses that are on the same network segment as the interface IP address of the DHCP relay to the DHCP client. By default, the allocatable IP address range is on the network segment where the interface IP address resides, after the DHCP server is enabled on the interface. Network parameter service accessible to the client The DHCP server, by using the Option fields in the DHCP packets, can centrally specify the client network parameters, including: l Client domain name and DNS server address. l Windows Internet Naming Server (WINS). l Egress gateway address. Device Serving as a DHCP Relay A DHCP client sends the request packets to apply for a dynamic IP address in broadcast mode; therefore, the DHCP service is applicable only to the application scenarios where the DHCP server and the DHCP clients reside on the same network segment. It is uneconomical to deploy a DHCP server on each network segment to dynamically configure the host. Therefore, it is unnecessary to configure each segment with a DHCP server to perform dynamic host configuration . The DHCP relay is developed as a solution to this problem. The DHCP relay communicates with the DHCP servers on other subnets and obtains the valid IP addresses. In this manner, DHCP clients on multiple networks can share a single DHCP server. This is more cost-effective and facilitates centralized management. The device supports the configuration of the DHCP relay on the interface. The DHCP relay interface forwards DHCP packets transparently between the DHCP client and DHCP server. The interface IP address must be on the same network segment as the IP address of the DHCP client. Device Serving as a DHCP Client 2
  • 3. The device supports the enabling of the DHCP client on the interface. It uses DHCP to obtain IP addresses and network segments from the DHCP server, simplifying configurations and centralized management. Configuring the DHCP Service Enabling DHCP Service Enabling the DHCP service enables other related DHCP functions. Although you can perform related DHCP configurations in the case of the DHCP service disabled, the configurations do not take effect. Step 1 Choose Network > DHCP Server > Settings. Step 2 Select the Enable check box corresponding to DHCP Service in Configure DHCP Basic Parameter. Step 3 Click Apply. If the Operation succeeded dialog box is displayed, the function is successfully enabled. ----End Creating a DHCP Server The DHCP server not only provides clients on the same network segment with dynamically assigned IP addresses, statically assigned IP addresses, designated DNS servers, gateways, and WINS servers, but also collaborates with the DHCP relay to assign IP addresses and network parameters to client across network segments. The DHCP server and DHCP relay services cannot coexist on the same interface. Step 1 Choose Network > DHCP Server > Settings. Step 2 Click Add in DHCP Service Information List. Step 3 Enter or select parameters listed in Table 1. Step 4 Click Apply. If the operation succeeds, DHCP Service Information List is displayed on the page and new configuration items are added to the list. Repeat the previous operations to configure the DHCP server function on multiple interfaces. 3
  • 4. 4
  • 5. 5
  • 6. 6
  • 7. 7
  • 8. 8
  • 9. ----End Creating a DHCP Relay The DHCP client can communicate with DHCP servers on other network segments through a DHCP relay, and finally obtains the IP address. In so doing, DHCP clients on multiple network segments can use the same DHCP server, which saves costs and facilitates centralized management. Before configuring the DHCP relay on an interface, make sure that the DHCP server is already configured, and the DHCP server and DHCP relay interface are routable. In addition, the IP address of the DHCP relay interface should be on the same network segment as the IP address assigned by the DHCP server to the client, and the default gateway of the DHCP client is the IP address of the DHCP relay interface. The DHCP server and DHCP relay services cannot coexist on the same interface. Step 1 Choose Network > DHCP Server > Settings. Step 2 Click Add in DHCP Service Information List. Step 3 Enter or select parameters listed in Table 2. Step 4 Click Apply. If the operation succeeds, DHCP Service Information List is displayed on the page and new configuration items are added to the list. Repeat the previous operations to configure the DHCP relay function on multiple interfaces. Table 2 Parameters of the DHCP relay ----End 9
  • 10. Modifying the DHCP Service Step 1 Choose Network > DHCP Server > Settings. Step 2 In DHCP Service Information List, click in the line where the DHCP service to be modified resides. Step 3 Enter or select parameters listed in Table 1 and Table 2. Interface Name cannot be modified. Step 4 Click Apply. If the operation succeeds, DHCP Service Information List is displayed. ----End Deleting the DHCP Service Step 1 Choose Network > DHCP Server > Setting. Step 2 Select the check boxes of multiple entries or the check box in the table header for selecting all. Step 3 Click Delete. If the operation succeeds, DHCP Service Information List is displayed on the page and entries that are just selected are not displayed in the list. ----End More related: Huawei Next Generaion Firewall Comprehensively Resolve Enterprise Configuration for Huawei Symantec Firewall How to Enable DST for USG2000/5000 Huawei Firewall USG5300: Configuring System Parameters More Huawei products and Reviews you can visit: http://www.huanetwork.com/blog Huanetwork.com is a world leading Huawei networking products distributor, we wholesale original new Huawei networking equipments, including Huawei switches, Huawei routers, Huaweisymantec security products, Huawei IAD, Huawei SFP and other Huawei networking products. Our customers include telecom operators, Huawei resellers, ISP and system integrators. Right now most of our sales are contributed by regular customers Our website: http://www.huanetwork.com Telephone: +852-30501940 Email: sales@huanetwork.com Address: 23/F Lucky Plaza, 315-321 Lockhart Road, Wanchai, Hongkong 10