LAB1 - Tong Hop (1122060417)

  • Published on
    24-Oct-2015

  • View
    78

  • Download
    9

Embed Size (px)

Transcript

<ul><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>B GIO DC V O TO </p><p>TRNG I HC T UT CNG NGH TP.HCM HUTECH </p><p>KHOA C O T C </p><p>---------o0o--------- </p><p>BO CO TI MN </p><p>QUN TR MNG </p><p>LAB Tng hp </p><p> GV : Thy Nguyn c Quang </p><p> SV : Lng Th Quang </p><p> Lp : C11QM15 </p><p> MSSV: 1122060417 </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>I. Ni dung v yu cu bi LAB: </p><p>1) M hnh: </p><p>2) M t : </p><p> Cng ngh kt ni : M hnh gm 6 router v mt Frame Relay Switch. </p><p> Cc router c gn tn R1, R2, R3, R4, R5, R6 nh trn hnh v. </p><p> R1, R2 v R3 kt ni vi nhau bng cng ngh chuyn mch khung (Frame Relay) </p><p>vi 2 PVC gia R1 vi R2 v gia R1 vi R3. </p><p> S dng giao thc nh tuyn RIP cho tt c cc router. </p><p> R1 kt ni vi my tnh tht qua card mng loopback v R6 kt ni vo my tnh </p><p>o Vmware. </p><p>3) Phn mm v cng c cn thit: </p><p> RAM v CPU mnh thc hin. </p><p> Phn mm gi lp thit b h tng mng GNS3. </p><p> Phn mm gi lp h iu hnh VMware Workstation. </p><p> Phn mm bt gi tin Wireshark. </p><p> Phn mm bt lu lng Netflow Analyzer. </p><p> Phn mm gim st thit b PRTG Network Monitor. </p><p> Mt s phn mm gi in thoi v tp cng c h tr Solarwinds. </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>4) Yu cu: </p><p> To v bt lu lng i qua cng S1/0 ca R4 v th hin Y trn hnh chp </p><p>phn mm Netflow vi a ch IP y ca lu lng: </p><p>HTTP, HTTPS, TELNET, SSH, NTP, Netmeeting, FTP, TFTP, DNS, SIP, H323, </p><p>Kerberos, SQL, SNMP, RADIUS, TACACS, SMTP, SNMP Trap, RTP &amp; RTCP, </p><p>SCCP, RSVP, POP, DHCP. </p><p> Dng cng c Cisco Tool Config Download ly cu hnh ca tt c cc </p><p>Router trong m hnh k c Frame Relay Switch. Copy cu hnh ny vo bi np. </p><p> Dng lnh Show ip route xem bng nh tuyn ca tt c cc router v copy </p><p>vo bi np. </p><p> Dng phn mm WireShark bt cc lu lng 4.1 trn cng loopback ca </p><p>my tnh tht. </p><p> My C2 c th vo internet. </p><p> Bt trap gi v in thoi di ng khi c thay i cu hnh trn R3. </p><p>Th hin s u tin lu lng t cao n thp trng DSCP cho cc lu lng </p><p>theo th t sau : RTP, Netmeeting, TELNET, SSH. </p><p> Cu hnh cho giao thc RTP chim 25% tng bng thng, Netmeeting 15% tng </p><p>bng thng v 60% cn li dnh cho cc giao thc khc. </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>II. Thc hin bi LAB: </p><p> M t trn s : </p><p>- My C1 ng vai tr l my tht ci t cc dch v v phn mm phn yu cu </p><p>ca bi LAB. My c 2 card mng, 1 card c th vo Internet v 1 card ni vo h </p><p>thng nh m hnh trn. </p><p>- R1 l router c cu hnh chng thc TACACS+, DHCP Relay Agent cp a </p><p>ch h cho my DHCP Server v RSVP Sender. </p><p>- R2 l router lm RADIUS client v c trin khai dch v Telnet. </p><p>- R3 l router cu hnh SNMP, SNMP Trap my client c th gim st. </p><p>- R4 l router ng vai tr lm NTP Server cc router khc ng b thi gian, </p><p>DHCP Server v cho php bt lu lng cng S1/0. </p><p>- R5 l router trin khai dch v Cisco Call Manager Express cho php 2 my client </p><p>v server gi thoi cho nhau thng qua giao thc Skinny. </p><p>- R6 l router cho php ssh truy cp t xa v l RSVP Reservation. </p><p>- My C2 l my Windows Server 2k3 ci t cc dch v: Exchange Server, SQL </p><p>Server, Cisco ACS, IIS, IAS, DNS, FTP, AD, Netmeeting, Cisco IP </p><p>Communicator. </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>1. Hnh chp cc lu lng gi tin bt c khi i qua cng S1/0 ca Router R4: </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>2. S dng cng c Cisco Tool Download Config ly file cu hnh t cc router </p><p>v Frame Relay Switch. </p><p>Router R1 !* R1.CiscoConfig !* IP Address : 10.0.0.17 !* Community : private !* Downloaded 6/28/2012 11:00:42 PM by SolarWinds Config Transfer Engine Version 5.5.0 ! ! Last configuration change at 05:57:02 GMT Fri Jun 29 2012 ! NVRAM config last updated at 05:57:32 GMT Fri Jun 29 2012 ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption no service dhcp ! hostname R1 </p><p>! boot-start-marker boot-end-marker ! ! aaa new-model ! ! aaa authentication login default group tacacs+ aaa authorization exec default group tacacs+ ! aaa session-id common clock timezone GMT 7 ! ! ip cef no ip domain lookup ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>class-map match-all telnet match access-group 113 </p><p>class-map match-all netmeeting match access-group 112 </p><p>class-map match-all ssh match access-group 114 </p><p>class-map match-all rtp match access-group 111 ! ! </p><p>policy-map dscp class rtp </p><p> set dscp cs6 class netmeeting </p><p> set dscp cs5 class telnet </p><p> set dscp cs4 class ssh set dscp cs3 </p><p>policy-map bandwidth class rtp </p><p> priority percent 25 class netmeeting </p><p> priority percent 15 class class-default fair-queue ! ! ! ! ! ! </p><p>interface FastEthernet0/0 no ip address shutdown duplex half ! </p><p>interface Serial1/0 no ip address encapsulation frame-relay serial restart-delay 0 fair-queue 64 256 37 frame-relay lmi-type ansi ip rsvp bandwidth ! </p><p>interface Serial1/0.96 point-to-point ip address 192.168.2.17 255.255.255.0 frame-relay interface-dlci 96 ip rsvp bandwidth ! </p><p>interface Serial1/0.98 point-to-point ip address 192.168.1.17 255.255.255.0 frame-relay interface-dlci 98 ip rsvp bandwidth ! </p><p>interface Serial1/1 no ip address </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p> shutdown serial restart-delay 0 ! </p><p>interface Serial1/2 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/3 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/4 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/5 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/6 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/7 no ip address shutdown serial restart-delay 0 ! </p><p>interface FastEthernet2/0 ip address 10.0.0.17 255.255.255.0 ip helper-address 192.168.3.18 duplex auto speed auto ip rsvp bandwidth ! </p><p>interface FastEthernet2/1 no ip address shutdown duplex auto speed auto ! </p><p>router rip network 10.0.0.0 network 192.168.0.0 network 192.168.1.0 network 192.168.2.0 ! ! no ip http server no ip http secure-server ! ip rsvp sender 20.0.0.18 10.0.0.18 TCP 0 0 10.0.0.18 FastEthernet2/0 10 5 ! </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>access-list 1 permit any access-list 111 permit tcp any any eq 3230 access-list 111 permit udp any any eq 3230 access-list 112 permit tcp any any eq 3389 access-list 113 permit tcp any any eq telnet access-list 114 permit tcp any any eq 22 snmp-server community public RO snmp-server community private RW ! ! tacacs-server host 20.0.0.18 tacacs-server key 123456 ! ! control-plane ! ! ! ! ! ! </p><p>gatekeeper shutdown ! ! </p><p>line con 0 exec-timeout 0 0 logging synchronous stopbits 1 </p><p>line aux 0 stopbits 1 line vty 5 15 ! ntp clock-period 17179862 ntp server 192.168.3.18 ! </p><p>end </p><p>Router R2 !* R2.CiscoConfig !* IP Address : 192.168.1.18 !* Community : private !* Downloaded 6/28/2012 11:01:29 PM by SolarWinds Config Transfer Engine Version 5.5.0 ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname R2 </p><p>! boot-start-marker boot-end-marker ! enable secret 5 $1$cDoE$a3C5tIVf.YFvck/OaeGw3/ ! </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>aaa new-model ! ! aaa authentication login Radius_Router group radius aaa authorization exec Radius_Router group radius ! aaa session-id common ! ! ip cef no ip domain lookup ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! </p><p>class-map match-all telnet match access-group 113 </p><p>class-map match-all netmeeting match access-group 112 </p><p>class-map match-all ssh match access-group 114 </p><p>class-map match-all rtp match access-group 111 ! ! </p><p>policy-map dscp class rtp </p><p> set dscp cs6 class netmeeting </p><p> set dscp cs5 class telnet </p><p> set dscp cs4 class ssh set dscp cs3 </p><p>policy-map bandwidth class rtp </p><p> priority percent 25 class netmeeting </p><p> priority percent 15 class class-default fair-queue ! </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>! ! ! ! ! </p><p>interface FastEthernet0/0 no ip address shutdown duplex half ! </p><p>interface Serial1/0 no ip address encapsulation frame-relay serial restart-delay 0 fair-queue 64 256 37 frame-relay lmi-type ansi ip rsvp bandwidth ! </p><p>interface Serial1/0.89 point-to-point ip address 192.168.1.18 255.255.255.0 frame-relay interface-dlci 89 ip rsvp bandwidth ! </p><p>interface Serial1/1 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/2 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/3 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/4 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/5 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/6 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/7 no ip address shutdown serial restart-delay 0 ! </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>router rip network 192.168.1.0 ! ! no ip http server no ip http secure-server ! ! access-list 111 permit tcp any any eq 3230 access-list 111 permit udp any any eq 3230 access-list 112 permit tcp any any eq 3389 access-list 113 permit tcp any any eq telnet access-list 114 permit tcp any any eq 22 snmp-server community public RO snmp-server community private RW ! ! ! radius-server host 20.0.0.18 auth-port 1645 acct-port 1646 radius-server key 123456 ! control-plane ! ! ! ! ! ! </p><p>gatekeeper shutdown ! ! </p><p>line con 0 exec-timeout 0 0 logging synchronous stopbits 1 </p><p>line aux 0 stopbits 1 </p><p>line vty 0 4 login authentication Radius_Router </p><p>line vty 5 15 login authentication Radius_Router ! ! </p><p>end </p><p>Router R3 !* R3.CiscoConfig !* IP Address : 192.168.2.18 !* Community : private !* Downloaded 6/28/2012 11:03:00 PM by SolarWinds Config Transfer Engine Version 5.5.0 ! ! Last configuration change at 05:14:58 GMT Fri Jun 29 2012 ! NVRAM config last updated at 05:14:59 GMT Fri Jun 29 2012 ! version 12.4 </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname R3 </p><p>! boot-start-marker boot-end-marker ! ! no aaa new-model clock timezone GMT 7 ! ! ip cef no ip domain lookup ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! </p><p>class-map match-all telnet match access-group 113 </p><p>class-map match-all netmeeting match access-group 112 </p><p>class-map match-all ssh match access-group 114 </p><p>class-map match-all rtp match access-group 111 ! ! </p><p>policy-map dscp class rtp </p><p> set dscp cs6 class netmeeting </p><p> set dscp cs5 class telnet </p><p> set dscp cs4 class ssh set dscp cs3 </p><p>policy-map bandwidth class rtp </p><p> priority percent 25 class netmeeting </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p> priority percent 15 class class-default fair-queue ! ! ! ! ! ! </p><p>interface FastEthernet0/0 no ip address shutdown duplex half ! </p><p>interface Serial1/0 no ip address encapsulation frame-relay serial restart-delay 0 fair-queue 64 256 37 frame-relay lmi-type ansi ip rsvp bandwidth ! </p><p>interface Serial1/0.69 point-to-point ip address 192.168.2.18 255.255.255.0 frame-relay interface-dlci 69 ip rsvp bandwidth ! </p><p>interface Serial1/1 ip address 192.168.3.17 255.255.255.0 encapsulation ppp serial restart-delay 0 fair-queue 64 256 37 ip rsvp bandwidth ! </p><p>interface Serial1/2 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/3 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/4 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/5 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/6 no ip address shutdown serial restart-delay 0 </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>! </p><p>interface Serial1/7 no ip address shutdown serial restart-delay 0 ! </p><p>router rip network 192.168.2.0 network 192.168.3.0 ! ip route 0.0.0.0 0.0.0.0 192.168.2.17 ! no ip http server no ip http secure-server ! ! access-list 111 permit tcp any any eq 3230 access-list 111 permit udp any any eq 3230 access-list 112 permit tcp any any eq 3389 access-list 113 permit tcp any any eq telnet access-list 114 permit tcp any any eq 22 snmp-server community public RO snmp-server community private RW snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart snmp-server enable traps tty snmp-server enable traps config snmp-server enable traps syslog snmp-server host 10.0.0.18 public snmp-server manager ! ! ! ! control-plane ! ! ! ! ! ! </p><p>gatekeeper shutdown ! ! </p><p>line con 0 exec-timeout 0 0 logging synchronous stopbits 1 </p><p>line aux 0 stopbits 1 </p><p>line vty 0 4 login ! ntp clock-period 17180570 ntp server 192.168.3.18 ! </p><p>end </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p>Router R4 !* R4.CiscoConfig !* IP Address : 192.168.3.18 !* Community : private !* Downloaded 6/28/2012 11:03:28 PM by SolarWinds Config Transfer Engine Version 5.5.0 ! ! Last configuration change at 05:28:40 GMT Fri Jun 29 2012 ! NVRAM config last updated at 05:15:57 GMT Fri Jun 29 2012 ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname R4 </p><p>! boot-start-marker boot-end-marker ! ! no aaa new-model clock timezone GMT 7 ip flow-cache timeout active 1 ! ! ip cef no ip domain lookup no ip dhcp use vrf connected ip dhcp excluded-address 10.0.0.1 10.0.0.17 ! ip dhcp pool net_10.0.0.0 network 10.0.0.0 255.255.255.0 domain-name quang.com dns-server 20.0.0.18 default-router 10.0.0.17 ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! </p><p>class-map match-all telnet </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p> match access-group 113 </p><p>class-map match-all netmeeting match access-group 112 </p><p>class-map match-all ssh match access-group 114 </p><p>class-map match-all rtp match access-group 111 ! ! </p><p>policy-map dscp class rtp </p><p> set dscp cs6 class netmeeting </p><p> set dscp cs5 class telnet </p><p> set dscp cs4 class ssh set dscp cs3 </p><p>policy-map bandwidth class rtp </p><p> priority percent 25 class netmeeting </p><p> priority percent 15 class class-default fair-queue ! ! ! ! ! ! </p><p>interface FastEthernet0/0 no ip address shutdown duplex half ! </p><p>interface Serial1/0 ip address 192.168.3.18 255.255.255.0 encapsulation ppp ip route-cache flow serial restart-delay 0 fair-queue 64 256 37 ip rsvp bandwidth ! </p><p>interface Serial1/1 ip address 192.168.4.17 255.255.255.0 serial restart-delay 0 fair-queue 64 256 37 ip rsvp bandwidth ! </p><p>interface Serial1/2 ip address 192.168.5.17 255.255.255.0 serial restart-delay 0 fair-queue 64 256 37 ip rsvp bandwidth ! </p><p>interface Serial1/3 </p></li><li><p>LAB 1 Ngy 27/06/2012 </p><p>GV: Thy Nguyn c Quang SV: Lng Th Quang </p><p> no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/4 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/5 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/6 no ip address shutdown serial restart-delay 0 ! </p><p>interface Serial1/7 no ip address shutdown serial restart-delay 0 ! </p><p>router rip network 192.168.3...</p></li></ul>