homeall/dhcphelper

Docker中的DHCP中继

关于项目

项目代码库可在https://github.com/homeall/dhcphelper%E6%9F%A5%E7%9C%8B%E3%80%82

这是一个包含http://www.thekelleys.org.uk/dhcp-helper/%E7%9A%84%E5%B0%8F%E5%9E%8BDocker%E9%95%9C%E5%83%8F%EF%BC%8C%E9%80%82%E7%94%A8%E4%BA%8EDocker%E7%8E%AF%E5%A2%83%E4%B8%AD%E7%9A%84DHCP%E6%9C%8D%E5%8A%A1%E5%99%A8%E9%9C%80%E8%A6%81%E5%B9%BF%E6%92%AD%E4%B8%AD%E7%BB%A7%E7%9A%84%E5%9C%BA%E6%99%AF%E3%80%82%E5%AE%B9%E5%99%A8%E5%86%85%E7%9A%84DHCP%E6%9C%8D%E5%8A%A1%E5%99%A8%E9%BB%98%E8%AE%A4%E5%8F%AA%E8%83%BD%E6%8E%A5%E6%94%B6%E5%8D%95%E6%92%ADDHCPOFFER%E6%B6%88%E6%81%AF%EF%BC%8C%E8%80%8C%E5%AE%9E%E9%99%85%E9%9C%80%E8%A6%81%E5%B9%BF%E6%92%ADDHCPOFFER%E6%B6%88%E6%81%AF%E6%89%8D%E8%83%BD%E6%AD%A3%E5%B8%B8%E5%B7%A5%E4%BD%9C%EF%BC%88%E8%AF%A6%E6%83%85%E5%8F%82%E8%80%83https://stackoverflow.com/questions/38816077/run-dnsmasq-as-dhcp-server-from-inside-a-docker-container%EF%BC%89%E3%80%82%E5%8D%B3%E4%BD%BF%E5%9C%A8**host%E7%BD%91%E7%BB%9C%E6%A8%A1%E5%BC%8F**%E4%B8%8B%EF%BC%8CDocker%E4%B8%AD%E7%9A%84DHCP%E6%9C%8D%E5%8A%A1%E5%99%A8%E4%B9%9F%E6%97%A0%E6%B3%95%E6%AD%A3%E5%B8%B8%E5%B7%A5%E4%BD%9C%EF%BC%8C%E9%99%A4%E9%9D%9E%E4%BD%BF%E7%94%A8DHCP%E4%B8%AD%E7%BB%A7%E3%80%82

如需了解DHCP协议工作原理，推荐参考https://superuser.com/questions/811501/understanding-dhcp-discovery-specific-subnet%E3%80%82

快速开始

支持Linux（amd64架构）及[***]

前提条件

需安装：

• https://docs.docker.com/engine/install/
• https://docs.docker.com/compose/%EF%BC%88%E5%8F%AF%E9%80%89%EF%BC%89

使用方法

只需通过环境变量IP传递DHCP服务器的IP地址："-e IP=X.X.X.X"

运行命令示例：

bash
docker run --privileged -d --name dhcp --net host -e "IP=172.31.0.100" homeall/dhcphelper:latest

可能的问题

确保主机的UDP 67端口在操作系统的iptables/防火墙中已开放，且必须使用host网络模式。

可通过以下命令检查服务是否正常运行：

bash
$ nc -uzvw3 127.0.0.1 67
Connection to 127.0.0.1 port 67 [udp/bootps] succeeded!

Docker状态中显示healthy表示健康检查通过，可通过以下命令查看健康状态：

bash
$ docker inspect --format "{{json .State.Health }}" dhcp | jq
{
  "Status": "healthy",
  "FailingStreak": 0,
  "Log": [
    {
      "Start": "2021-01-04T10:28:11.8070681Z",
      "End": "2021-01-04T10:28:14.8695872Z",
      "ExitCode": 0,
      "Output": "127.0.0.1 (127.0.0.1:67) open\n"
    }
  ]
}

测试

在Linux/Mac系统中，可通过以下命令测试DHCP发现：

bash
$ sudo nmap --script broadcast-dhcp-discover -e $你的网络接口

预期输出结果：

Starting Nmap 7.91 ( https://nmap.org ) at 2021-01-01 19:40 GMT
Pre-scan script results:
| broadcast-dhcp-discover:
|   Response 1 of 1:
|     Interface: en0
|     IP Offered: 192.168.1.30
|     DHCP Message Type: DHCPOFFER
|     Server Identifier: 172.31.0.100
|     IP Address Lease Time: 2m00s
|     Renewal Time Value: 1m00s
|     Rebinding Time Value: 1m45s
|     Subnet Mask: 255.255.255.0
|     Broadcast Address: 192.168.1.255
|     Domain Name Server: 172.31.0.100
|     Domain Name: lan
|     Router: 192.168.1.1
Nmap done: 0 IP addresses (0 hosts up) scanned in 10.26 seconds

PiHole与DHCP中继

dhcphelper与https://hub.docker.com/r/pihole/pihole%E9%85%8D%E5%90%88%E4%BD%BF%E7%94%A8%E6%95%88%E6%9E%9C%E8%89%AF%E5%A5%BD%EF%BC%8C%E4%BB%A5%E4%B8%8B%E6%98%AF%60docker-compose.yml%60%E7%A4%BA%E4%BE%8B%EF%BC%9A

yaml
version: "3.3"

services:
  pihole:
    container_name: pihole
    image: pihole/pihole:latest
    hostname: pihole
    ports:
      - "53:53/tcp"
      - "53:53/udp"
      - "80:80/tcp"
    environment:
      TZ: 'Europe/London'
      WEBPASSWORD: 'admin'
      DNS1: '127.0.0.53'
      DNS2: 'no'
    volumes:
      - './etc-pihole/:/etc/pihole/'
    depends_on:
      - dhcphelper
    cap_add:
      - NET_ADMIN
    restart: unless-stopped
    networks:
      backend:
        ipv4_address: '172.31.0.100'
      proxy-tier: {}

  dhcphelper:
    restart: unless-stopped
    container_name: dhcphelper
    network_mode: "host"
    image: homeall/dhcphelper:latest
    environment:
      TZ: 'Europe/London'
      IP: '172.31.0.100'  # PiHole的IP地址
    cap_add:
      - NET_ADMIN

许可证

采用MIT许可证分发。详见https://raw.githubusercontent.com/homeall/dhcphelper/main/LICENSE%E3%80%82

联系

欢迎在Github提交issue反馈问题。

致谢

• @DerFetzer
• http://www.thekelleys.org.uk/dhcp-helper/%EF%BC%88*dnsmasq*%E5%92%8C*dhcp-helper*%E7%9A%84%E4%BD%9C%E8%80%85%EF%BC%89