Tài liệu Báo cáo lab: BỘ GIÁO DỤC VÀ ĐÀO TẠO
TRƯỜNG ĐẠI HỌC KỸ THUẬT CÔNG NGHỆ TP. HCM
BÁO CÁO LAB
Giáo Viên Hướng Dẫn :Ths. Nguyễn Đức Quang
Sinh Viên Thực Hiện :TRẦN MINH THÀNH
MSSV : 1111020467 Lớp : 11CTH06
TP. Hồ Chí Minh, 2013.
1. Mô hình
2. Yêu cầu
2.1 Tạo và bắt lưu lượng đi qua cống s0/0 trên R4
2.2 Dùng công cụ cisco-tool lấy cấu hình Router
2.2.1 Cấu hình R1 :
!* R1.lab.local.CiscoConfig
!* IP Address : 192.168.1.67
!* Community : public
!* Downloaded 4/23/2013 1:10:52 PM by SolarWinds Config Transfer Engine Version 5.5.0
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
resource policy
!
ip subnet-zero
!
!
ip cef
no ip domain lookup
ip domain name lab.local
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
class-map match-all TELNET
match access-g...
46 trang |
Chia sẻ: Khủng Long | Lượt xem: 1403 | Lượt tải: 0
Bạn đang xem trước 20 trang mẫu tài liệu Báo cáo lab, để tải tài liệu gốc về máy bạn click vào nút DOWNLOAD ở trên
BỘ GIÁO DỤC VÀ ĐÀO TẠO
TRƯỜNG ĐẠI HỌC KỸ THUẬT CÔNG NGHỆ TP. HCM
BÁO CÁO LAB
Giáo Viên Hướng Dẫn :Ths. Nguyễn Đức Quang
Sinh Viên Thực Hiện :TRẦN MINH THÀNH
MSSV : 1111020467 Lớp : 11CTH06
TP. Hồ Chí Minh, 2013.
1. Mô hình
2. Yêu cầu
2.1 Tạo và bắt lưu lượng đi qua cống s0/0 trên R4
2.2 Dùng công cụ cisco-tool lấy cấu hình Router
2.2.1 Cấu hình R1 :
!* R1.lab.local.CiscoConfig
!* IP Address : 192.168.1.67
!* Community : public
!* Downloaded 4/23/2013 1:10:52 PM by SolarWinds Config Transfer Engine Version 5.5.0
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
resource policy
!
ip subnet-zero
!
!
ip cef
no ip domain lookup
ip domain name lab.local
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
class-map match-all TELNET
match access-group 102
class-map match-all NETMEETING
match access-group 101
class-map match-all SSH
match access-group 103
class-map match-all RTP
match access-group 100
!
!
policy-map LAMCHITAN-ALL-IN-1
class TELNET
set dscp cs4
class RTP
set dscp cs6
class NETMEETING
set dscp cs5
class SSH
set dscp cs3
policy-map TRANMINHTHANH-ALL-IN-1
class TELNET
set dscp cs4
class RTP
set dscp cs6
class NETMEETING
set dscp cs5
class SSH
set dscp cs3
policy-map LAMCHITAN-OUT-2
class RTP
priority percent 25
class NETMEETING
priority percent 15
policy-map TRANMINHTHANH-OUT-2
class RTP
priority percent 25
class NETMEETING
priority percent 15
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!
interface Serial1/0
no ip address
encapsulation frame-relay
serial restart-delay 0
fair-queue 64 256 37
service-policy input TRANMINHTHANH-ALL-IN-1
ip rsvp bandwidth
!
interface Serial1/0.96 point-to-point
ip address 192.168.2.67 255.255.255.0
ip nat inside
ip virtual-reassembly
frame-relay interface-dlci 96
service-policy input TRANMINHTHANH-ALL-IN-1
ip rsvp bandwidth
!
interface Serial1/0.98 point-to-point
ip address 192.168.1.67 255.255.255.0
ip nat inside
ip virtual-reassembly
frame-relay interface-dlci 98
service-policy input TRANMINHTHANH-ALL-IN-1
ip rsvp bandwidth
!
interface Serial1/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/4
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/5
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/6
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/7
no ip address
shutdown
serial restart-delay 0
!
interface FastEthernet2/0
ip address dhcp
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
service-policy input TRANMINHTHANH-ALL-IN-1
service-policy output TRANMINHTHANH-OUT-2
ip rsvp bandwidth
!
interface FastEthernet2/1
no ip address
shutdown
duplex auto
speed auto
!
router rip
network 10.0.0.0
network 192.168.1.0
network 192.168.2.0
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.0.1
ip route 0.0.0.0 0.0.0.0 10.0.0.67
!
no ip http server
no ip http secure-server
!
ip rsvp sender 20.0.0.67 10.0.0.67 TCP 0 0 10.0.0.67 FastEthernet2/0 10 5
ip nat inside source list 1 interface FastEthernet2/0 overload
!
access-list 1 permit any
access-list 100 permit tcp any any eq 3230
access-list 100 permit udp any any eq 3230
access-list 101 permit tcp any any eq 3389
access-list 102 permit tcp any any eq telnet
access-list 103 permit tcp any any eq 22
priority-list 1 protocol ip high tcp 3230
priority-list 1 protocol ip high udp 3230
priority-list 1 protocol ip medium tcp 3389
priority-list 1 protocol ip normal tcp telnet
priority-list 1 protocol ip low tcp 22
snmp-server community public RW
!
!
!
!
control-plane
!
!
!
!
!
!
gatekeeper
shutdown
!
!
telephony-service
max-ephones 2
max-dn 2
ip source-address 10.0.0.67 port 2000
system message TTG VOIP
keepalive 15
max-conferences 4 gain -6
!
!
ephone-dn 1
number 5001
name maythat
!
!
ephone-dn 2
number 5002
name mayao
!
!
ephone 1
mac-address 0200.4C4F.4F50
type CIPC
button 1:1
!
!
!
ephone 2
mac-address 000C.29E6.4BCD
type CIPC
button 1:2
!
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
login
!
!
end
2.2.2 Cấu hình R2 :
!* R2.lab.local.CiscoConfig
!* IP Address : 192.168.1.68
!* Community : public
!* Downloaded 4/23/2013 2:05:04 PM by SolarWinds Config Transfer Engine Version 5.5.0
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
!
aaa new-model
!
!
!
aaa session-id common
!
resource policy
!
ip subnet-zero
!
!
ip cef
no ip domain lookup
ip domain name lab.local
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
class-map match-all TELNET
match access-group 102
class-map match-all NETMEETING
match access-group 101
class-map match-all SSH
match access-group 103
class-map match-all RTP
match access-group 100
!
!
policy-map TRANMINHTHANH-ALL-IN-1
class TELNET
set dscp cs4
class RTP
set dscp cs6
class NETMEETING
set dscp cs5
class SSH
set dscp cs3
policy-map TRANMINHTHANH-OUT-2
class RTP
priority percent 25
class NETMEETING
priority percent 15
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!
interface Serial1/0
no ip address
encapsulation frame-relay
serial restart-delay 0
service-policy output TRANMINHTHANH-OUT-2
!
interface Serial1/0.89 point-to-point
ip address 192.168.1.68 255.255.255.0
frame-relay interface-dlci 89
!
interface Serial1/0.98 point-to-point
service-policy input TRANMINHTHANH-ALL-IN-1
!
interface Serial1/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/4
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/5
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/6
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/7
no ip address
shutdown
serial restart-delay 0
!
router rip
network 192.168.1.0
!
ip classless
!
no ip http server
no ip http secure-server
!
!
access-list 1 permit any
access-list 100 permit tcp any any eq 3230
access-list 100 permit udp any any eq 3230
access-list 101 permit tcp any any eq 3389
access-list 102 permit tcp any any eq telnet
access-list 103 permit tcp any any eq 22
priority-list 1 protocol ip high tcp 3230
priority-list 1 protocol ip high udp 3230
priority-list 1 protocol ip medium tcp 3389
priority-list 1 protocol ip normal tcp telnet
priority-list 1 protocol ip low tcp 22
snmp-server community public RW
!
!
!
!
control-plane
!
!
!
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
!
!
end
2.2.3 Cấu hình R3 :
!* R3.lab.local.CiscoConfig
!* IP Address : 192.168.2.68
!* Community : public
!* Downloaded 4/23/2013 2:06:58 PM by SolarWinds Config Transfer Engine Version 5.5.0
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R3
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
resource policy
!
ip subnet-zero
!
!
ip cef
no ip domain lookup
ip domain name lab.local
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
class-map match-all TELNET
match access-group 102
class-map match-all NETMEETING
match access-group 101
class-map match-all SSH
match access-group 103
class-map match-all RTP
match access-group 100
!
!
policy-map TRANMINHTHANH-ALL-IN-1
class TELNET
set dscp cs4
class RTP
set dscp cs6
class NETMEETING
set dscp cs5
class SSH
set dscp cs3
policy-map TRANMINHTHANH-OUT-2
class RTP
priority percent 25
class NETMEETING
priority percent 15
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!
interface Serial1/0
no ip address
encapsulation frame-relay
serial restart-delay 0
service-policy output TRANMINHTHANH-OUT-2
ip rsvp bandwidth
!
interface Serial1/0.69 point-to-point
ip address 192.168.2.68 255.255.255.0
frame-relay interface-dlci 69
service-policy input TRANMINHTHANH-ALL-IN-1
!
interface Serial1/0.96 point-to-point
ip rsvp bandwidth
!
interface Serial1/1
ip address 192.168.3.67 255.255.255.0
serial restart-delay 0
service-policy input TRANMINHTHANH-ALL-IN-1
service-policy output TRANMINHTHANH-OUT-2
ip rsvp bandwidth
!
interface Serial1/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/4
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/5
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/6
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/7
no ip address
shutdown
serial restart-delay 0
!
router rip
network 192.168.2.0
network 192.168.3.0
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.2.67
!
no ip http server
no ip http secure-server
!
!
access-list 1 permit any
access-list 100 permit tcp any any eq 3230
access-list 100 permit udp any any eq 3230
access-list 101 permit tcp any any eq 3389
access-list 102 permit tcp any any eq telnet
access-list 103 permit tcp any any eq 22
priority-list 1 protocol ip high tcp 3230
priority-list 1 protocol ip high udp 3230
priority-list 1 protocol ip medium tcp 3389
priority-list 1 protocol ip normal tcp telnet
priority-list 1 protocol ip low tcp 22
snmp-server community public RW
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps tty
snmp-server enable traps config
snmp-server enable traps syslog
snmp-server host 20.0.0.67 public
snmp-server manager
!
!
!
!
control-plane
!
!
!
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
login
!
!
end
2.2.4 Cấu hình R4 :
!* R4.tranminhthanh.com.CiscoConfig
!* IP Address : 192.168.3.68
!* Community : public
!* Downloaded 4/23/2013 2:07:46 PM by SolarWinds Config Transfer Engine Version 5.5.0
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R4
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
resource policy
!
ip subnet-zero
ip flow-cache timeout active 1
!
!
ip cef
no ip domain lookup
ip domain name tranminhthanh.com
no ip dhcp use vrf connected
!
ip dhcp pool TRANMINHTHANH
network 192.168.4.0 255.255.255.0
default-router 192.168.4.67
dns-server 20.0.0.67
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
username MINHTHANH password 0 thanh@123
!
!
class-map match-all TELNET
match access-group 102
class-map match-all NETMEETING
match access-group 101
class-map match-all SSH
match access-group 103
class-map match-all RTP
match access-group 100
!
!
policy-map TRANMINHTHANH-ALL-IN-1
class TELNET
set dscp cs4
class RTP
set dscp cs6
class NETMEETING
set dscp cs5
class SSH
set dscp cs3
policy-map TRANMINHTHANH-OUT-2
class RTP
priority percent 25
class NETMEETING
priority percent 15
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!
interface Serial1/0
ip address 192.168.3.68 255.255.255.0
ip route-cache flow
serial restart-delay 0
fair-queue 64 256 37
service-policy input TRANMINHTHANH-ALL-IN-1
ip rsvp bandwidth
!
interface Serial1/1
ip address 192.168.4.67 255.255.255.0
serial restart-delay 0
service-policy input TRANMINHTHANH-ALL-IN-1
service-policy output TRANMINHTHANH-OUT-2
ip rsvp bandwidth
!
interface Serial1/2
ip address 192.168.5.67 255.255.255.0
serial restart-delay 0
service-policy input TRANMINHTHANH-ALL-IN-1
service-policy output TRANMINHTHANH-OUT-2
ip rsvp bandwidth
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/4
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/5
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/6
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/7
no ip address
shutdown
serial restart-delay 0
!
router rip
network 192.168.3.0
network 192.168.4.0
network 192.168.5.0
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.3.67
ip flow-export source Serial1/0
ip flow-export version 5
ip flow-export destination 10.0.0.67 9996
!
no ip http server
no ip http secure-server
!
!
access-list 1 permit any
access-list 100 permit tcp any any eq 3230
access-list 100 permit udp any any eq 3230
access-list 101 permit tcp any any eq 3389
access-list 102 permit tcp any any eq telnet
access-list 103 permit tcp any any eq 22
priority-list 1 protocol ip high tcp 3230
priority-list 1 protocol ip high udp 3230
priority-list 1 protocol ip medium tcp 3389
priority-list 1 protocol ip normal tcp telnet
priority-list 1 protocol ip low tcp 22
snmp-server community public RW
snmp-server ifindex persist
!
!
!
!
control-plane
!
!
!
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
password cisco
logging synchronous
login
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
password 123
login local
transport input telnet ssh
line vty 5 15
password 123
login local
transport input telnet ssh
!
!
end
2.2.5 Cấu hình R5 :
!* R5.lab.local.CiscoConfig
!* IP Address : 192.168.4.68
!* Community : public
!* Downloaded 4/23/2013 2:09:33 PM by SolarWinds Config Transfer Engine Version 5.5.0
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R5
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
resource policy
!
ip subnet-zero
!
!
ip cef
no ip domain lookup
ip domain name lab.local
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
class-map match-all TELNET
match access-group 102
class-map match-all NETMEETING
match access-group 101
class-map match-all SSH
match access-group 103
class-map match-all RTP
match access-group 100
!
!
policy-map TRANMINHTHANH-ALL-IN-1
class TELNET
set dscp cs4
class RTP
set dscp cs6
class NETMEETING
set dscp cs5
class SSH
set dscp cs3
policy-map TRANMINHTHANH-OUT-2
class RTP
priority percent 25
class NETMEETING
priority percent 15
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!
interface Serial1/0
ip address 192.168.4.68 255.255.255.0
serial restart-delay 0
fair-queue 64 256 37
service-policy input TRANMINHTHANH-ALL-IN-1
ip rsvp bandwidth
!
interface Serial1/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/4
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/5
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/6
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/7
no ip address
shutdown
serial restart-delay 0
!
router rip
network 192.168.4.0
!
ip classless
!
no ip http server
no ip http secure-server
!
!
access-list 1 permit any
access-list 100 permit tcp any any eq 3230
access-list 100 permit udp any any eq 3230
access-list 101 permit tcp any any eq 3389
access-list 102 permit tcp any any eq telnet
access-list 103 permit tcp any any eq 22
priority-list 1 protocol ip high tcp 3230
priority-list 1 protocol ip high udp 3230
priority-list 1 protocol ip medium tcp 3389
priority-list 1 protocol ip normal tcp telnet
priority-list 1 protocol ip low tcp 22
snmp-server community public RW
!
!
!
!
control-plane
!
!
!
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
login
!
!
end
2.2.6 Cấu hình R6 :
!* R6.lab.local.CiscoConfig
!* IP Address : 192.168.5.68
!* Community : public
!* Downloaded 4/23/2013 2:10:01 PM by SolarWinds Config Transfer Engine Version 5.5.0
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R6
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
resource policy
!
ip subnet-zero
!
!
ip cef
no ip domain lookup
ip domain name lab.local
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!
interface Serial1/0
ip address 192.168.5.68 255.255.255.0
serial restart-delay 0
fair-queue 64 256 37
ip rsvp bandwidth
!
interface Serial1/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/4
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/5
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/6
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/7
no ip address
shutdown
serial restart-delay 0
!
interface FastEthernet2/0
ip address 20.0.0.68 255.0.0.0
duplex auto
speed auto
ip rsvp bandwidth
!
interface FastEthernet2/1
no ip address
shutdown
duplex auto
speed auto
!
router rip
network 20.0.0.0
network 192.168.5.0
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.5.67
ip route 192.168.0.0 255.255.255.0 192.168.5.67
ip route 192.168.1.0 255.255.255.0 192.168.5.67
ip route 192.168.2.0 255.255.255.0 192.168.5.67
ip route 192.168.3.0 255.255.255.0 192.168.5.67
ip route 192.168.4.0 255.255.255.0 192.168.5.67
!
no ip http server
no ip http secure-server
!
ip rsvp reservation 20.0.0.67 10.0.0.67 TCP 0 0 20.0.0.67 FastEthernet2/0 FF RATE 10 5
ip rsvp reservation 20.0.0.67 10.0.0.67 UDP 7001 7000 20.0.0.67 FastEthernet2/0 FF LOAD 10 5
!
access-list 1 permit any
access-list 100 permit tcp any any eq 3230
access-list 100 permit udp any any eq 3230
access-list 101 permit tcp any any eq 3389
access-list 102 permit tcp any any eq telnet
access-list 103 permit tcp any any eq 22
priority-list 1 protocol ip high tcp 3230
priority-list 1 protocol ip high udp 3230
priority-list 1 protocol ip medium tcp 3389
priority-list 1 protocol ip normal tcp telnet
priority-list 1 protocol ip low tcp 22
snmp-server community public RW
!
!
!
!
control-plane
!
!
!
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
login
!
!
end
2.2.6 Cấu hình Frame-Relay :
!
!
!
!
!
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R7
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
resource policy
!
ip subnet-zero
!
!
ip cef
no ip domain lookup
ip domain name lab.local
!
!
!
frame-relay switching
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
class-map match-all TELNET
match access-group 102
class-map match-all NETMEETING
match access-group 101
class-map match-all SSH
match access-group 103
class-map match-all RTP
match access-group 100
!
!
policy-map TRANMINHTHANH-ALL-IN-1
class TELNET
set dscp cs4
class RTP
set dscp cs6
class NETMEETING
set dscp cs5
class SSH
set dscp cs3
policy-map TRANMINHTHANH-OUT-2
class RTP
priority percent 25
class NETMEETING
priority percent 15
class class-default
fair-queue
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
shutdown
duplex half
!
interface Serial1/0
no ip address
encapsulation frame-relay
serial restart-delay 0
frame-relay intf-type dce
frame-relay route 96 interface Serial1/2 69
frame-relay route 98 interface Serial1/1 89
service-policy input TRANMINHTHANH-ALL-IN-1
service-policy output TRANMINHTHANH-OUT-2
ip rsvp bandwidth
!
interface Serial1/1
no ip address
encapsulation frame-relay
serial restart-delay 0
frame-relay intf-type dce
frame-relay route 89 interface Serial1/0 98
service-policy input TRANMINHTHANH-ALL-IN-1
service-policy output TRANMINHTHANH-OUT-2
ip rsvp bandwidth
!
interface Serial1/2
no ip address
encapsulation frame-relay
serial restart-delay 0
frame-relay intf-type dce
frame-relay route 69 interface Serial1/0 96
service-policy input TRANMINHTHANH-ALL-IN-1
service-policy output TRANMINHTHANH-OUT-2
!
interface Serial1/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/4
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/5
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/6
no ip address
shutdown
serial restart-delay 0
!
interface Serial1/7
no ip address
shutdown
serial restart-delay 0
!
ip classless
!
no ip http server
no ip http secure-server
!
!
access-list 100 permit tcp any any eq 3230
access-list 100 permit udp any any eq 3230
access-list 101 permit tcp any any eq 3389
access-list 102 permit tcp any any eq telnet
access-list 103 permit tcp any any eq 22
priority- list 1 protocol ip high tcp 3230
priority- list 1 protocol ip high udp 3230
priority- list 1 protocol ip medium tcp 3389
priority- list 1 protocol ip normal tcp telnet
priority- list 1 protocol ip low tcp 22
snmp-server community public RW
!
!
!
!
control-plane
!
!
!
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
login
!
!
end
2.3. Dùng lệnh Show ip Router hiện bảng định tuyến
2.3.1 Router R1
2.3.2 Router R2
2.3.3 Router R3
2.3.4 Router R4
2.3.5 Router R5
2.3.6 Router R6
2.4. Dùng phần mềm Wireshark để bắt giao thức
2.4.1 DHCP
2.4.2 DNS
2.4.3 FTP
2.4.4 H323
2.4.5 HTTP
2.4.6 HTTPS
2.4.7 NETMEETING
2.4.8 NTP
2.4.9 POP3
2.4.10 RADIUS
2.4.11 RSVP
2.4.12 RTCP
2.4.13 RTP
2.4.14 SCCP
2.4.15 SIP
2.4.16 SMTP
2.4.17 SNMP TRAP
2.4.18 SNMP
2.4.19 SSH
2.4.20 TACACS
2.4.21 TELNET
2.4.22 TFTP
2.4.23 KERBEROS
2.4.24 SQL
2.5 Máy C2 có thể ra Internet
2.6 Bắt trap gửi về điện thoại di động
2.7 Thể hiện sự ưu tiên lưu lượng
2.8 Ưu tiên lưu lượng từ thấp đến cao
Các file đính kèm theo tài liệu này:
- tailieu.pdf