dhcp 求助 开启失败啊啊啊啊 精神崩溃了啊啊

[i=s] 本帖最后由 568040142 于 2011-6-23 18:04 编辑 [/i]

ddns-update-style none;
ignore-client-updates;
default-lease-time 64000;
max-lease-time 84000;
option routers 172.168.1.30;
option domain-name "chenjianye";
option domain-name-servers 172.168.1.220,172.168.1.221;



subnet 172.168.1.0 netmask 255.255.0.0 {
range 172.168.1.200 172.168.1.221;



host vbird-inside {
hardware ethernet 00:50:56:E0:7E:0F;
fixed-address 172.168.1.222;
}
}
以上我的配置文件 很纯粹的一个实验 就是把自己的linux 的ip获取改为dhcp 然后获取ip 172.168.1.222
00:50:56:F1:17:4E 这是linux的mac地址
但是启动dhcp时 提示启动失败 而且右上角有个星星弹了出来 提示代码如下：
SummarySELinux is preventing /usr/sbin/dhcpd (dhcpd_t) "search" access to etc (samba_share_t).Detailed DescriptionSELinux denied access requested by /usr/sbin/dhcpd. It is not expected that this access is required by /usr/sbin/dhcpd and this access may signal an intrusion attempt. It is also possible that the specific version or configuration of the application is causing it to require additional access. Please file a bug report against this package.Allowing AccessSometimes labeling problems can cause SELinux denials. You could try to restore the default system file context for etc, restorecon -v etc. There is currently no automatic way to allow this access. Instead, you can generate a local policy module to allow this access - see FAQ - or you can disable SELinux protection entirely for the application. Disabling SELinux protection is not recommended. Please file a bug report against this package. Changing the "dhcpd_disable_trans" boolean to true will disable SELinux protection this application: "setsebool -P dhcpd_disable_trans=1."The following command will allow this access:setsebool -P dhcpd_disable_trans=1Additional InformationSource Context:  root:system_r:dhcpd_tTarget Context:  system_u:object_r:samba_share_tTarget Objects:  etc [ dir ]Affected RPM Packages:  dhcp-3.0.5-3.el5 [application]filesystem-2.4.0-1 [target]Policy RPM:  selinux-policy-2.4.6-30.el5Selinux Enabled:  TruePolicy Type:  targetedMLS Enabled:  TrueEnforcing Mode:  EnforcingPlugin Name:  plugins.disable_transHost Name:  aca80181.ipt.aol.comPlatform:  Linux aca80181.ipt.aol.com 2.6.18-8.el5 #1 SMP Fri Jan 26 14:15:21 EST 2007 i686 i686Alert Count:  1046Line Numbers:   Raw Audit Messages :avc: denied { search } for comm="dhcpd" dev=dm-0 egid=0 euid=0 exe="/usr/sbin/dhcpd" exit=-13 fsgid=0 fsuid=0 gid=0 items=0 name="etc" pid=3982 scontext=root:system_r:dhcpd_t:s0 sgid=0 subj=root:system_r:dhcpd_t:s0 suid=0 tclass=dir tcontext=system_u:object_r:samba_share_t:s0 tty=(none) uid=0

听别人说要看/var/log/messages/ 但是我看了半天没看出什么来 代码如下：
Jun 17 18:20:06 aca80181 setroubleshoot: SELinux is preventing /usr/sbin/dhcpd (dhcpd_t) "write" access to log (device_t). For complete SELinux messages. run sealert -l 2f166a05-8e0d-4f2b-ab88-940cf8ff9f30
Jun 17 18:20:06 aca80181 setroubleshoot: SELinux is preventing /usr/sbin/dhcpd (dhcpd_t) "search" access to etc (samba_share_t). For complete SELinux messages. run sealert -l 837a515e-c588-40eb-a567-917e47cefab0
Jun 17 18:20:07 aca80181 last message repeated 2 times
Jun 17 18:20:07 aca80181 setroubleshoot: SELinux is preventing /usr/sbin/dhcpd (dhcpd_t) "write" access to log (device_t). For complete SELinux messages. run sealert -l 2f166a05-8e0d-4f2b-ab88-940cf8ff9f30
Jun 17 18:20:07 aca80181 setroubleshoot: SELinux is preventing /usr/sbin/dhcpd (dhcpd_t) "search" access to etc (samba_share_t). For complete SELinux messages. run sealert -l 837a515e-c588-40eb-a567-917e47cefab0
Jun 17 18:20:07 aca80181 setroubleshoot: SELinux is preventing /usr/sbin/dhcpd (dhcpd_t) "write" access to log (device_t). For complete SELinux messages. run sealert -l 2f166a05-8e0d-4f2b-ab88-940cf8ff9f30
Jun 17 18:20:07 aca80181 setroubleshoot: SELinux is preventing /usr/sbin/dhcpd (dhcpd_t) "search" access to etc (samba_share_t). For complete SELinux messages. run sealert -l 837a515e-c588-40eb-a567-917e47cefab0

各位大虾们 求帮助啊