Answer DHCP snooping

2023-02-09 16:16:17 +01:00 · 2023-02-09 16:16:17 +01:00 · 6f40fe3c3a
commit 6f40fe3c3a
parent f10b6427b9
4 changed files with 190 additions and 0 deletions
--- a/architectures-infrastructures-entreprise/dhcp_snooping/Makefile
+++ b/architectures-infrastructures-entreprise/dhcp_snooping/Makefile
@ -0,0 +1,16 @@
+filename=$(shell basename $(shell pwd))
+timestamp=$(shell date +%Y-%m-%d_%H:%M)
+
+all: snapshot
+
+snapshot: main.tex
+	@latexmk -pdf main.tex
+	@if ! cmp --silent build/main.pdf ${filename}_*.pdf; then \
+		touch ${filename}_tmp.pdf; \
+		rm ${filename}*.pdf; \
+		cp build/main.pdf ${filename}_${timestamp}.pdf; \
+		echo "Updated"; \
+	fi
+
+clean:
+	@rm -rf build 2>/dev/null
--- a/architectures-infrastructures-entreprise/dhcp_snooping/img/architecture.png
+++ b/architectures-infrastructures-entreprise/dhcp_snooping/img/architecture.png
--- a/architectures-infrastructures-entreprise/dhcp_snooping/main.tex
+++ b/architectures-infrastructures-entreprise/dhcp_snooping/main.tex
@ -0,0 +1,72 @@
+\documentclass[a4paper,french,12pt]{article}
+
+\title{Architectures et infrastructures sécurisées \\ Exercice pratique \\ DHCP Snooping}
+\author{Tunui Franken}
+\date{Dernière compilation~: \today{} à \currenttime}
+
+\usepackage{styles}
+\usepackage{enumitem}
+
+\begin{document}
+
+\maketitle
+\clearpage
+
+\includegraphics[width=\linewidth]{./img/architecture.png}
+
+
+\begin{enumerate}
+
+    \item Configurez R1 comme un serveur DHCP\@.
+        Excluez 192.168.1.1 --- 192.168.1.9 du pool.
+        Passerelle par défaut~: R1.
+
+        \begin{lstlisting}[gobble=12]
+            R1(config)#int g0/0
+            R1(config-if)#ip address 192.168.1.1 255.255.255.0
+            R1(config-if)#exit
+            R1(config)#ip dhcp pool DHCP
+            R1(dhcp-config)#network 192.168.1.0 255.255.255.0
+            R1(dhcp-config)#default-router 192.168.1.1
+            R1(dhcp-config)#exit
+            R1(config)#ip dhcp excluded-address 192.168.1.1 192.168.1.9
+        \end{lstlisting}
+
+    \item Configurer DHCP snooping sur SW1 et SW2.
+        Configurez les interfaces de liaison montantes comme des ports de confiance.
+
+        \begin{lstlisting}[gobble=12]
+            SW1(config)#ip dhcp snooping
+            SW1(config)#interface range f0/1-2
+            SW1(config-if-range)#ip dhcp snooping trust
+
+            SW2(config)#ip dhcp snooping
+            SW2(config)#interface range f0/1-4
+            SW2(config-if-range)#ip dhcp snooping trust
+        \end{lstlisting}
+
+    \item Utilisez \texttt{ipconfig /renew} sur PC1 pour obtenir une adresse IP\@.
+        Est-ce que cela fonctionne\@?
+        Pourquoi ou pourquoi pas\@?
+        Utilisez le mode simulation pour argumenter votre réponse.
+
+        \begin{lstlisting}[gobble=12]
+            C:\>ipconfig /renew
+               IP Address......................: 192.168.1.10
+               Subnet Mask.....................: 255.255.255.0
+               Default Gateway.................: 192.168.1.1
+               DNS Server......................: 0.0.0.0
+        \end{lstlisting}
+
+        PC1 obtient bien une adresse IP, la première adresse non exclue du range défini.
+
+        Les deux switchs sur le chemin pour joindre le routeur transfèrent la trame encapsulant le \texttt{DHCPREQUEST}.
+        Comme les ports traversés sont en mode \texttt{snooping trust}, la trame n'est pas rejetée, et le routeur peut la recevoir et la traiter.
+
+    \item Si cela ne fonctionne pas, apportez les modifications nécessaires à la configuration pour résoudre le problème.
+
+        Aucune modification n'est nécessaire.
+
+\end{enumerate}
+
+\end{document}
--- a/architectures-infrastructures-entreprise/dhcp_snooping/styles.sty
+++ b/architectures-infrastructures-entreprise/dhcp_snooping/styles.sty
@ -0,0 +1,102 @@
+\ProvidesPackage{styles}
+
+\usepackage[
+    %showframe,
+    a4paper,includeheadfoot,margin=2cm,top=1cm,bottom=1cm
+]{geometry}
+
+\setcounter{tocdepth}{2}
+
+\usepackage[utf8]{inputenc}
+\usepackage[T1]{fontenc}
+\usepackage{babel}
+
+\usepackage{datetime}
+
+\usepackage{color}
+\usepackage{xcolor,colortbl}
+
+\usepackage{amsmath}
+\usepackage{amsfonts}
+\everymath{\displaystyle}
+\newcommand*\dif{\mathop{}\!\mathrm{d}}
+\usepackage{xfrac}
+
+\usepackage{booktabs}
+\usepackage{tabularx}
+\newcolumntype{Y}{>{\centering\arraybackslash}X}
+\definecolor{Red}{rgb}{1,0.2,0.2}
+\newcolumntype{r}{>{\columncolor{Red}}Y}
+\usepackage{multicol}
+\usepackage{multirow}
+\usepackage{makecell}
+\usepackage{parskip}
+\usepackage{microtype}
+\usepackage{enumitem}
+
+\usepackage{listingsutf8}
+\lstset{%
+    inputencoding=utf8/latin1,
+    basicstyle=\small\ttfamily,
+    columns=flexible,
+    breaklines=true,
+    extendedchars=true,
+    literate=
+    {á}{{\'a}}1 {é}{{\'e}}1 {í}{{\'\i}}1 {ó}{{\'o}}1 {ú}{{\'u}}1
+    {Á}{{\'A}}1 {É}{{\'E}}1 {Í}{{\'I}}1 {Ó}{{\'O}}1 {Ú}{{\'U}}1
+    {à}{{\`a}}1 {è}{{\`e}}1 {ì}{{\`\i}}1 {ò}{{\`o}}1 {ù}{{\`u}}1
+    {À}{{\`A}}1 {È}{{\`E}}1 {Ì}{{\`I}}1 {Ò}{{\`O}}1 {Ù}{{\`U}}1
+    {ä}{{\"a}}1 {ë}{{\"e}}1 {ï}{{\"\i}}1 {ö}{{\"o}}1 {ü}{{\"u}}1
+    {Ä}{{\"A}}1 {Ë}{{\"E}}1 {Ï}{{\"I}}1 {Ö}{{\"O}}1 {Ü}{{\"U}}1
+    {â}{{\^a}}1 {ê}{{\^e}}1 {î}{{\^\i}}1 {ô}{{\^o}}1 {û}{{\^u}}1
+    {Â}{{\^A}}1 {Ê}{{\^E}}1 {Î}{{\^I}}1 {Ô}{{\^O}}1 {Û}{{\^U}}1
+    {Ã}{{\~A}}1 {ã}{{\~a}}1 {Õ}{{\~O}}1 {õ}{{\~o}}1 {œ}{{\oe}}1
+    {Œ}{{\OE}}1 {æ}{{\ae}}1 {Æ}{{\AE}}1 {ß}{{\ss}}1 {ű}{{\H{u}}}1
+    {Ű}{{\H{U}}}1 {ő}{{\H{o}}}1 {Ő}{{\H{O}}}1 {ç}{{\c c}}1
+    {Ç}{{\c C}}1 {ø}{{\o}}1 {å}{{\r a}}1 {Å}{{\r A}}1
+    {€}{{\euro}}1 {£}{{\pounds}}1 {«}{{\guillemotleft}}1
+    {»}{{\guillemotright}}1 {ñ}{{\~n}}1 {Ñ}{{\~N}}1 {¿}{{?`}}1
+}
+\let\oldlstinputlisting\lstinputlisting
+% make \lstinputlisting always have frame
+\renewcommand{\lstinputlisting}[2][]{\oldlstinputlisting[frame=single,#1]{#2}}
+
+\lstnewenvironment{console}[1][]{%
+    \lstset{%
+        inputencoding=utf8/latin1,
+        basicstyle=\small\ttfamily\color{white},
+        columns=flexible,
+        breaklines=true,
+        extendedchars=true,
+        literate=
+        {á}{{\'a}}1 {é}{{\'e}}1 {í}{{\'\i}}1 {ó}{{\'o}}1 {ú}{{\'u}}1
+        {Á}{{\'A}}1 {É}{{\'E}}1 {Í}{{\'I}}1 {Ó}{{\'O}}1 {Ú}{{\'U}}1
+        {à}{{\`a}}1 {è}{{\`e}}1 {ì}{{\`\i}}1 {ò}{{\`o}}1 {ù}{{\`u}}1
+        {À}{{\`A}}1 {È}{{\`E}}1 {Ì}{{\`I}}1 {Ò}{{\`O}}1 {Ù}{{\`U}}1
+        {ä}{{\"a}}1 {ë}{{\"e}}1 {ï}{{\"\i}}1 {ö}{{\"o}}1 {ü}{{\"u}}1
+        {Ä}{{\"A}}1 {Ë}{{\"E}}1 {Ï}{{\"I}}1 {Ö}{{\"O}}1 {Ü}{{\"U}}1
+        {â}{{\^a}}1 {ê}{{\^e}}1 {î}{{\^\i}}1 {ô}{{\^o}}1 {û}{{\^u}}1
+        {Â}{{\^A}}1 {Ê}{{\^E}}1 {Î}{{\^I}}1 {Ô}{{\^O}}1 {Û}{{\^U}}1
+        {Ã}{{\~A}}1 {ã}{{\~a}}1 {Õ}{{\~O}}1 {õ}{{\~o}}1 {œ}{{\oe}}1
+        {Œ}{{\OE}}1 {æ}{{\ae}}1 {Æ}{{\AE}}1 {ß}{{\ss}}1 {ű}{{\H{u}}}1
+        {Ű}{{\H{U}}}1 {ő}{{\H{o}}}1 {Ő}{{\H{O}}}1 {ç}{{\c c}}1
+        {Ç}{{\c C}}1 {ø}{{\o}}1 {å}{{\r a}}1 {Å}{{\r A}}1
+        {€}{{\euro}}1 {£}{{\pounds}}1 {«}{{\guillemotleft}}1
+        {»}{{\guillemotright}}1 {ñ}{{\~n}}1 {Ñ}{{\~N}}1 {¿}{{?`}}1,
+        backgroundcolor=\color{black}, #1
+    }%
+}{}
+
+\usepackage{graphicx}
+
+\usepackage[hyphens]{url}
+\usepackage[colorlinks,hidelinks]{hyperref}
+
+\usepackage{tikz}
+\usetikzlibrary{shapes}
+
+\usepackage{letltxmacro}
+\LetLtxMacro{\normalparagraph}{\paragraph}
+\renewcommand{\paragraph}[1]{\normalparagraph{#1}\mbox{}}
+
+\sloppy