Chuyên đề LAB 2
Trang 1BỘ GIÁO DỤC VÀ ĐÀO TẠO TRƯỜNG ĐẠI HỌC KỸ THUẬT CÔNG NGHỆ TP HCM
KHOA: CÔNG NGHỆ THÔNG TIN
BỘ MÔN QUẢN TRỊ MẠNG
LỚP 09DTHM
CHUYÊN ĐỀ: LAB 2
GVHD: NGUYỄN ĐỨC QUANG SVTH: LÊ VĂN THỰC - 0951020265
TP.HỒ CHÍ MINH – 6/2013
Trang 2I GIỚI THIỆU VỀ BÀI LAB
1 Mô Hình
a Mô Hình Visio
b Mô Hình GNS3
Trang 33 Công Cụ Thực Hiện Bài Lab
- Máy tính CPU và RAM đủ mạnh
- phần mềm GNS3 & IOS
- phần mềm Vmware -Phần mềm Solarwind
4 Yêu Cầu :
4.1) Show bảng định tuyến tất cả các router 4.2) Sử dụng cisco tool lấy cấu hình tất cả các router 4.3) C3 xem Video trực tiếp từ C2 ( chạy công nghệ multicast) 4.4) Máy C2 truy cập được internet ( NAT)
4.5) Cấu hình Access list cấm truy cập các dịch vụ:
- Cấm C2 Remote Desktop tới C3
- Cấm sử dụng dịch vụ Yahoo messenger trên C2 4.6) Debug Access List
Trang 4II THỰC HIỆN YÊU CẦU BÀI LAB
1 Show bảng định tuyến tất cả các ROUTER + FR_S + ATM 1.1 Router R1
1.2 Router R2
Trang 51.3 Router R3
1.4 Router R4
Trang 61.5 Router R5
1.6 Router R6
Trang 71.7 Router R7
1.8 Router R4 (IPv6)
Trang 81.9 Router R7 (IPv6)
1.10 FRAME RELAY
Trang 91.11 ATM PVC Router 5
1.12 ATM PVC Router 6
Trang 11speed auto
!
interface FastEthernet0/1
no ip address shutdown duplex auto speed auto
!
interface Serial1/0
no ip address
ip pim dense-mode encapsulation frame-relay serial restart-delay 0
Trang 12frame-relay interface-dlci 103
!
interface Serial1/1
no ip address shutdown serial restart-delay 0
!
interface Serial1/2
no ip address shutdown serial restart-delay 0
!
interface Serial1/3
no ip address shutdown serial restart-delay 0
!
interface Serial1/4
no ip address shutdown serial restart-delay 0
!
interface Serial1/5
no ip address shutdown serial restart-delay 0
!
interface Serial1/6
no ip address shutdown serial restart-delay 0
!
interface Serial1/7
no ip address shutdown serial restart-delay 0
!
!
!
! control-plane
!
Trang 14!
interface FastEthernet0/1
no ip address shutdown duplex auto speed auto
!
interface Serial1/0
no ip address
ip pim dense-mode encapsulation frame-relay serial restart-delay 0
!
interface Serial1/1
no ip address shutdown serial restart-delay 0
!
interface Serial1/2
no ip address shutdown serial restart-delay 0
!
interface Serial1/3
no ip address shutdown serial restart-delay 0
!
interface Serial1/4
Trang 15no ip address shutdown serial restart-delay 0
!
interface Serial1/5
no ip address shutdown serial restart-delay 0
!
interface Serial1/6
no ip address shutdown serial restart-delay 0
!
interface Serial1/7
no ip address shutdown serial restart-delay 0
!
!
!
! control-plane
Trang 16!
interface FastEthernet0/1
no ip address
Trang 17shutdown duplex auto speed auto
!
interface Serial1/2
no ip address shutdown serial restart-delay 0
!
interface Serial1/3
no ip address shutdown serial restart-delay 0
!
interface Serial1/4
no ip address shutdown serial restart-delay 0
!
interface Serial1/5
no ip address shutdown serial restart-delay 0
!
interface Serial1/6
no ip address shutdown serial restart-delay 0
!
interface Serial1/7
no ip address shutdown serial restart-delay 0
!
router ospf 100
Trang 18log-adjacency-changes redistribute connected redistribute isis level-1 metric 20 network 192.168.3.1 0.0.0.0 area 100
!
router isis
net 49.0001.3333.3333.3333.00 redistribute connected
redistribute ospf 100 metric 10 level-1-2
!
!
!
! control-plane
Trang 19!
hostname R4
! boot-start-marker boot-end-marker
tunnel destination 2005::65 tunnel mode ipv6
!
interface FastEthernet0/0
no ip address shutdown duplex auto speed auto
!
interface FastEthernet0/1
no ip address shutdown duplex auto speed auto
!
interface Serial1/0
Trang 20ip address 192.168.3.65 255.255.255.0
ip pim dense-mode serial restart-delay 0 clock rate 64000
!
interface Serial1/1
ip address 192.168.4.1 255.255.255.0
ip pim dense-mode serial restart-delay 0 clock rate 64000
!
interface Serial1/2
ip address 192.168.6.1 255.255.255.0
ip pim dense-mode ipv6 address 2005::1/64 ipv6 rip cisco enable serial restart-delay 0 clock rate 64000
!
interface Serial1/3
no ip address shutdown serial restart-delay 0
!
interface Serial1/4
no ip address shutdown serial restart-delay 0
!
interface Serial1/5
no ip address shutdown serial restart-delay 0
!
interface Serial1/6
no ip address shutdown serial restart-delay 0
!
interface Serial1/7
no ip address shutdown serial restart-delay 0
!
router ospf 100
log-adjacency-changes redistribute eigrp 100 metric 10 network 192.168.3.65 0.0.0.0 area 100
Trang 21network 192.168.5.0 0.0.0.255 area 100 network 192.168.6.0 0.0.0.255 area 100
Trang 22!
interface FastEthernet0/1
no ip address shutdown duplex auto speed auto
!
interface Serial1/0
ip address 192.168.4.65 255.255.255.0
ip pim dense-mode serial restart-delay 0 clock rate 64000
!
interface Serial1/1
no ip address shutdown serial restart-delay 0
!
interface Serial1/2
no ip address
Trang 23shutdown serial restart-delay 0
!
interface Serial1/3
no ip address shutdown serial restart-delay 0
!
interface Serial1/4
no ip address shutdown serial restart-delay 0
!
interface Serial1/5
no ip address shutdown serial restart-delay 0
!
interface Serial1/6
no ip address shutdown serial restart-delay 0
!
interface Serial1/7
no ip address shutdown serial restart-delay 0
!
Trang 24!
!
! control-plane
Trang 25!
interface FastEthernet0/1
no ip address shutdown duplex auto speed auto
!
!
Trang 26!
! control-plane
Trang 27tunnel destination 2005::1 tunnel mode ipv6
!
interface FastEthernet0/1
no ip address shutdown duplex auto speed auto
!
interface Serial1/1
no ip address shutdown serial restart-delay 0
!
interface Serial1/2
no ip address shutdown serial restart-delay 0
!
interface Serial1/3
no ip address shutdown serial restart-delay 0
!
Trang 28interface Serial1/4
no ip address shutdown serial restart-delay 0
!
interface Serial1/5
no ip address shutdown serial restart-delay 0
!
interface Serial1/6
no ip address shutdown serial restart-delay 0
!
interface Serial1/7
no ip address shutdown serial restart-delay 0
!
router ospf 100
log-adjacency-changes network 30.0.0.0 0.255.255.255 area 100 network 192.168.6.0 0.0.0.255 area 100 network 192.168.10.0 0.0.0.255 area 100
Trang 292.8 Frame relay switch
! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec
no service password-encryption
! hostname FR_S
! boot-start-marker boot-end-marker
Trang 30!
!
! frame-relay switching
!
!
!
! interface FastEthernet0/0
no ip address shutdown duplex half
! interface Serial1/0
no ip address encapsulation frame-relay serial restart-delay 0 frame-relay intf-type dce frame-relay route 26 interface Serial1/1 62 frame-relay route 27 interface Serial1/2 72
! interface Serial1/1
no ip address encapsulation frame-relay serial restart-delay 0
Trang 31frame-relay intf-type dce frame-relay route 62 interface Serial1/0 26
! interface Serial1/2
no ip address encapsulation frame-relay serial restart-delay 0 frame-relay intf-type dce frame-relay route 72 interface Serial1/0 27
! interface Serial1/3
no ip address shutdown serial restart-delay 0
! interface Serial1/4
no ip address shutdown serial restart-delay 0
! interface Serial1/5
no ip address shutdown serial restart-delay 0
!
Trang 32no ip address shutdown serial restart-delay 0
! interface Serial1/7
no ip address shutdown serial restart-delay 0
Trang 33! control-plane
!
!
! gatekeeper shutdown
!
! line con 0 exec-timeout 0 0 privilege level 15 logging synchronous stopbits 1
line aux 0 exec-timeout 0 0 privilege level 15 logging synchronous stopbits 1
line vty 0 4 login
!
! End
Trang 343 C3 xem Video trực tiếp từ C2 ( chạy công nghệ multicast) B1: Bước 2: Trên máy C2 (server) mở VLC media player Media Stream…
B2: Tại bản Open Media ta chọn Add chọn video muốn truyền Open
Trang 35Sau khi chọn file và mở ta có file được mở như hình sau
B3: Chọn giao thức để truyền chọn HTTP Add
````````````````````````````````````````````````````````````````````````````````````````````````````
````````````````````````````````
Trang 36B4: Chọn code cho Video muốn truyền
B5: Bước 6: Chọn code cho Audio muốn truyền.
Trang 37B6: Giao thức và port để server truyền file và stream Nhấn next và hoàn tất
B7: Mở VLC trên client để được stream.
Trang 38B8: Nhập IP của server và port đã cấu hình trện server rồi play
B9: KẾT QUẢ Xem video được phát về client.
Trang 394 Máy C2 truy cập được internet ( NAT)
- Trên card ta cấu hình share internet
- Kiểm tra NAT trên C2 đã vào được mạng
Trang 40-
- Thực hiện lệnh TRACERT
Show ip nat translations.
Trang 415 Cấu hình Access list cấm truy cập các dịch vụ Cấm Telnet (R1)
Kết quả
Trang 42Cấm SSH (R1)
Kết quả
Trang 43Cấm HTTP (R2)
Kết quả
Trang 44Cấm FTP (R6)
Kết quả
Trang 45Cấm C2 Remote Desktop tới C3
Kết quả
Trang 46Cấm sử dụng dịch vụ Yahoo messenger trên C2
Kết quả
Trang 476 Debug Access List