ISC Consortium Ntọhapụ nke sava DHCP , dochie kpochapụwo ISC DHCP. Isi mmalite nke oru ngo n'okpuru ikike , kama ISC License ejiribu maka ISC DHCP.
Ihe nkesa Kea DHCP dabere na BIND 10 na iji modul architecture, nke na-egosi ikewa ọrụ n'ime usoro nhazi dị iche iche. Ngwaahịa a na-agụnye mmejuputa ihe nkesa na-egosi na nkwado maka DHCPv4 na DHCPv6 protocols, nwere ike dochie ISC DHCP. Kea arụnyere n'ime ya maka imelite mpaghara DNS nke ukwuu (Dynamic DNS), na-akwado usoro nchọpụta ihe nkesa, ọrụ adreesị, imelite na ijikọ, arịrịọ ozi, idobe adreesị maka ndị ọbịa, yana booting PXE. Mmejuputa DHCPv6 na-enyekwa ike inyefe prefixes. Enyere API pụrụiche iji na ngwa ndị ọzọ na-emekọrịta ihe. Ọ ga-ekwe omume imelite nhazi na ofufe na-enweghị ịmalitegharị ihe nkesa ahụ.
Enwere ike ịchekwa ozi gbasara adreesị ekenyela na mpaghara ndị ahịa n'ụdị nchekwa dị iche iche - a na-enye nkwado ndabere ugbu a maka nchekwa na faịlụ CSV, MySQL DBMS, Apache Cassandra na PostgreSQL. Enwere ike ịkọwapụta oke ndoputa ndị ọbịa na faịlụ nhazi na usoro JSON ma ọ bụ dị ka tebụl na MySQL na PostgreSQL. Ọ gụnyere ngwa perfdhcp maka ịlele arụmọrụ sava DHCP yana akụrụngwa maka ịnakọta ọnụ ọgụgụ. Kea gosipụtara arụmọrụ dị mma, dịka ọmụmaatụ, mgbe ị na-eji MySQL backend, ihe nkesa ahụ nwere ike ịrụ ọrụ adreesị 1000 kwa nkeji (ihe dị ka ngwugwu 4000 kwa nkeji), na mgbe ị na-eji memfile backend, arụmọrụ ruru 7500 ọrụ kwa sekọnd.
Igodo na Kea 1.6:
- Emejuputala nhazi azụ azụ (CB, Configuration Backend) na-enye gị ohere ijikwa ntọala nke ọtụtụ sava DHCPv4 na DHCPv6. Enwere ike iji azụ azụ chekwaa ọtụtụ ntọala Kea, gụnyere ntọala zuru ụwa ọnụ, netwọk ekekọrịtara, subnets, nhọrọ, ọdọ mmiri, na nkọwa nhọrọ. Kama ịchekwa ntọala ndị a niile na faịlụ nhazi mpaghara, enwere ike itinye ha ugbu a na nchekwa data mpụga. N'okwu a, ọ ga-ekwe omume ikpebi ọ bụghị ihe niile, ma ụfọdụ ntọala site na CB, na-ekpuchi paramita sitere na nchekwa data mpụga na faịlụ nhazi mpaghara (dịka ọmụmaatụ, ntọala netwọk netwọk nwere ike ịhapụ faịlụ mpaghara).
N'ime DBMS maka ịchekwa nhazi, ọ bụ naanị MySQL ka a na-akwado ugbu a (MySQL, PostgreSQL na Cassandra nwere ike iji chekwaa ọdụ data ọrụ adreesị (leases), MySQL na PostgreSQL nwere ike iji dobe ndị ọbịa). Enwere ike ịgbanwe nhazi na nchekwa data site na ịnweta DBMS ozugbo ma ọ bụ site na ọba akwụkwọ oyi akwa a kwadebere nke ọma nke na-enye usoro iwu maka njikwa nhazi, dị ka ịgbakwunye na ihichapụ paramita, njikọ, nhọrọ DHCP na subnets;
- Agbakwunyere klas njikwa ọhụrụ "DROP" (ngwugwu niile metụtara DROP klas ozugbo), nke enwere ike iji dobe okporo ụzọ achọghị, dịka ọmụmaatụ, ụfọdụ ụdị ozi DHCP;
- Agbakwụnyela ihe ọhụrụ max-lease-time na min-lease-time, na-enye gị ohere ikpebi oge ndụ nke adreesị na-ejikọ onye ahịa ( mgbazinye) ọ bụghị n'ụdị uru nwere koodu siri ike, kama n'ụdị nke nso a na-anabata;
- Ndakọrịta emelitere na ngwaọrụ ndị na-adabaghị n'ụkpụrụ DHCP. Iji rụọ ọrụ na nsogbu ndị ahụ, Kea na-eziga ozi ụdị ozi DHCPv4 ugbu a na mmalite nke ndepụta nhọrọ, na-edozi ihe nnọchianya dị iche iche nke aha nnabata, na-amata nnyefe nke aha nnabata efu, ma na-enye ohere ka akọwapụtara koodu suboption 0 site na 255;
- Agbakwunyela oghere njikwa dị iche maka DDNS daemon, nke ị nwere ike izipu iwu ozugbo wee mee mgbanwe nhazi. A na-akwado iwu ndị a: build-report, config-get, config-reload, config-set, config-test, config-write, list-commands, shutdown and version-get;
- Ewepụrụ (CVE-2019-6472, CVE-2019-6473, CVE-2019-6474), nke enwere ike iji mee ka ịgọnarị ọrụ (na-akpata okuku nke DHCPv4 na DHCPv6 sava) site na izipu arịrịọ na nhọrọ na ụkpụrụ ezighi ezi. Ihe ize ndụ kasịnụ bụ nsogbu ahụ , nke, mgbe ejiri ya maka nchekwa memfile maka njikọta, na-eme ka ọ ghara ikwe omume ịmalitegharị usoro ihe nkesa ahụ n'onwe ya, ya mere a chọrọ enyemaka aka site n'aka onye nchịkwa (ihichapụ nchekwa data njikọ) iji weghachi ọrụ.
isi: opennet.ru