You are on page 1of 163

MC LC

1 Chng I - Tng quan Mng My Tnh........................................................... 1 1.1 Kin thc c bn........................................................................................ 1 S lc lch s pht trin: .................................................................. 1 Khi nim c bn ............................................................................... 1 Phn bit cc loi mng...................................................................... 2 Mng ton cu Internet: ..................................................................... 4 M hnh OSI (Open Systems Interconnect)....................................... 4 Cc giao thc trong m hnh OSI ............................................... 5 Cc chc nng ch yu ca cc tng ca m hnh OSI. ............. 6 Lung d liu trong OSI........................................................... 11 TCP/IP ...................................................................................... 12 NetBEUI ................................................................................... 12 IPX/SPX ................................................................................... 12 DECnet...................................................................................... 12 1.1.1 1.1.2 1.1.3 1.1.4 1.1.5

1.1.5.1 1.1.5.2 1.1.5.3 1.1.6 1.1.6.1 1.1.6.2 1.1.6.3 1.1.6.4 1.2 1.2.1 1.2.2

Mt s b giao thc kt ni mng.................................................... 12

B giao thc TCP/IP................................................................................ 12 Tng quan v b giao thc TCP/IP.................................................. 12 Mt s giao thc c bn trong b giao thc TCP/IP ....................... 15 Giao thc lin mng IP (Internet Protocol): ............................. 15 Giao thc UDP (User Datagram Protocol)............................... 27 Giao thc TCP (Transmission Control Protocol) ..................... 28

1.2.2.1 1.2.2.2 1.2.2.3 1.3 1.3.1 1.3.2 1.3.3 1.3.4 1.3.5 1.3.6 1.4 2 2.1

Gii thiu mt s cc dch v c bn trn mng ..................................... 30 Dch v truy nhp t xa Telnet ........................................................ 30 Dch v truyn tp (FTP) ................................................................. 30 Dch v Gopher ................................................................................ 31 Dch v WAIS.................................................................................. 31 Dch v World Wide Web ............................................................... 31 Dch v th in t (E-Mail) ........................................................... 32

Tm tt chng 1..................................................................................... 33 Kin thc c bn v LAN........................................................................ 35 Cu trc tp ca mng.................................................................... 35

Chng II - Mng LAN v thit k mng LAN............................................. 35 2.1.1

2.1.1.1 2.1.1.2 2.1.1.3 2.1.1.4 2.1.2 2.1.2.1 2.1.2.2 2.1.2.3 2.1.3 2.1.4

Mng dng hnh sao (Star topology). ....................................... 35 Mng hnh tuyn (Bus Topology). ........................................... 36 Mng dng vng (Ring Topology). .......................................... 37 Mng dng kt hp. .................................................................. 37 Giao thc CSMA/CD (Carrier Sense Multiple Access with Giao thc truyn th bi (Token passing)................................. 38 Giao thc FDDI. ....................................................................... 39

Cc phng thc truy nhp ng truyn ....................................... 38

Collision Detection) ................................................................................... 38

Cc loi ng truyn v cc chun ca chng ............................... 40 H thng cp mng dng cho LAN. ................................................ 42 Cp xon ................................................................................... 42 Cp ng trc............................................................................ 42 Cp si quang (Fiber - Optic Cable)......................................... 43 H thng cp c cu trc theo chun TIA/EIA 568 ................. 44 Cc yu cu cho mt h thng cp ........................................... 46 B lp tn hiu (Repeater)......................................................... 47 B tp trung (Hub).................................................................... 48 Cu (Bridge) ............................................................................. 49 B chuyn mch (Switch)......................................................... 53 B nh tuyn(Router) .............................................................. 53 B chuyn mch c nh tuyn (Layer 3 switch) ..................... 57

2.1.4.1 2.1.4.2 2.1.4.3 2.1.4.4 2.1.4.5 2.1.5 2.1.5.1 2.1.5.2 2.1.5.3 2.1.5.4 2.1.5.5 2.1.5.6 2.1.6 2.2 2.2.1 2.2.2

Cc thit b dng kt ni LAN. ................................................... 47

Cc h iu hnh mng .................................................................... 57 Gii thiu chung v Ethernet ........................................................... 58 Cc c tnh chung ca Ethernet...................................................... 59 Cu trc khung tin Ethernet...................................................... 59 Cu trc a ch Ethernet .......................................................... 60 Cc loi khung Ethernet............................................................ 60 Hot ng ca Ethernet ............................................................ 61

Cng ngh Ethernet ................................................................................. 58

2.2.2.1 2.2.2.2 2.2.2.3 2.2.2.4 2.2.3 2.3 2.3.1

Cc loi mng Ethernet .................................................................... 64 Phn on mng trong LAN ............................................................ 65

Cc k thut chuyn mch trong LAN. ................................................... 65

II

2.3.1.1 2.3.1.2 2.3.1.3 2.3.1.4 2.3.1.5 2.3.2 2.3.2.1 2.3.2.2 2.3.3 2.3.3.1 2.3.3.2 2.3.3.3 2.3.3.4 2.4 2.4.1

Mc ch ca phn on mng ................................................. 65 Phn on mng bng Repeater................................................ 65 Phn on mng bng cu ni .................................................. 67 Phn on mng bng router .................................................... 68 Phn on mng bng b chuyn mch.................................... 69 Chuyn mch lu-v-chuyn ( store- and- forward switching )70 Chuyn mch ngay (cut-through switching) ............................ 70 To mng LAN o vi mt b chuyn mch ........................... 71 To mng LAN o vi nhiu b chuyn mch......................... 72 Cch xy dng mng LAN o .................................................. 72 u im v nhc im ca mng LAN o............................. 73

Cc ch chuyn mch trong LAN ............................................... 70

Mng LAN o (VLAN).................................................................... 71

Thit k mng LAN................................................................................. 74 M hnh c bn. ............................................................................... 74 M hnh phn cp (Hierarchical models) ................................. 74 M hnh an ninh-an ton(Secure models)................................. 75 2.4.1.1 2.4.1.2

2.4.2 2.4.3 2.5 2.5.1

Cc yu cu thit k ......................................................................... 75 Cc bc thit k.............................................................................. 76 Xy dng mng LAN quy m mt to nh...................................... 77 H thng mng bao gm:.......................................................... 77 Phn tch yu cu:..................................................................... 78 Thit k h thng ...................................................................... 79

Mt s mng LAN mu........................................................................... 77 2.5.1.1 2.5.1.2 2.5.1.3

2.5.2 2.6 3 3.1

Xy dng h thng tng la kt ni mng vi Internet................. 84

Tm tt chng 2..................................................................................... 85 Cc kin thc c bn v WAN. ............................................................... 86 Khi nim v WAN.......................................................................... 86 Mng WAN l g ?.................................................................... 86 Cc li ch v chi ph khi kt ni WAN. .................................. 87 Nhng im cn ch khi thit k WAN ................................ 88 Mng chuyn mch (Circuit Swiching Network)..................... 89 3.1.1.1 3.1.1.2 3.1.1.3

Chng III Mng WAN v thit k mng WAN........................................ 86 3.1.1

3.1.2

Mt s cng ngh kt ni c bn dng cho WAN........................... 89

3.1.2.1

III

3.1.2.2 3.1.2.3 3.1.3 3.1.4 3.1.3.1 3.1.4.1 3.1.4.2 3.1.4.3 3.1.4.4 3.1.4.5 3.1.4.6 3.1.5 3.2 3.2.1

Mng chuyn gi (Packet Switching Network)...................... 105 Kt ni WAN dng VPN........................................................ 115 Giao thc PPP......................................................................... 116 Router (B nh tuyn) ........................................................... 118 Chuyn mch WAN................................................................ 118 Access Server.......................................................................... 119 Modem .................................................................................... 120 CSU/DSU ............................................................................... 123 ISDN terminal Adaptor........................................................... 123

Giao thc kt ni WAN c bn trong mng TCP/IP. .................... 116 Cc thit b dng cho kt ni WAN ............................................... 118

nh gi v so snh mt s cng ngh dng cho kt ni WAN.... 124 Cc m hnh WAN......................................................................... 125 M hnh phn cp ................................................................... 125 Cc m hnh tp.................................................................... 127 An ninh-an ton mng l g ?.................................................. 127 Xy dng m hnh an ninh-an ton khi kt ni WAN............ 130 Mt s cng c trin khai m hnh an ton-an ninh ............... 131 Bo mt thng tin trn mng .................................................. 136

Thit k mng WAN. ............................................................................ 125 3.2.1.1 3.2.1.2

3.2.2

Cc m hnh an ninh mng. ........................................................... 127

3.2.2.1 3.2.2.2 3.2.2.3 3.2.2.4 3.3 3.4 4 5

Phn tch mt s mng WAN mu ........................................................ 140 Tm tt chng 3................................................................................... 157

Kt lun. ....................................................................................................... 158 Ti liu tham kho........................................................................................ 159

IV

1 Chng I - Tng quan Mng My Tnh


1.1 Kin thc c bn
1.1.1 S lc lch s pht trin:
Vo gia nhng nm 50, nhng h thng my tnh u tin ra i s dng cc bng n in t nn kch thc rt cng knh v tiu tn nhiu nng lng. Vic nhp d liu vo my tnh c thc hin thng qua cc ba c l v kt qu c a ra my in, iu ny lm mt rt nhiu thi gian v bt tin cho ngi s dng. n gia nhng nm 60, cng vi s pht trin ca cc ng dng trn my tnh v nhu cu trao i thng tin vi nhau, mt s nh sn xut my tnh nghin ca ch to thnh cng cc thit b truy cp t xa ti cc my tnh ca h, v y chnh l nhng dng s khai ca h thng mng my tnh. n u nhng nm 70, h thng thit b u cui 3270 ca IBM ra i cho php m rng kh nng tnh ton ca cc trung tm my tnh n cc vng xa. n gia nhng nm 70, IBM gii thiu mt lot cc thit b u cui c thit k ch to cho lnh vc ngn hng, thng mi. Thng qua dy cp mng cc thit b u cui c th truy cp cng mt lc n mt my tnh dng chung. n nm 1977, cng ty Datapoint Corporation tung ra th trng h iu hnh mng ca mnh l Attache Resource Computer Network (Arcnet) cho php lin kt cc my tnh v cc thit b u cui li bng dy cp mng, v chnh l h iu hnh mng u tin.

1.1.2 Khi nim c bn


Ni mt cch c bn, mng my tnh l hai hay nhiu my tnh c kt ni vi nhau theo mt cch no sao cho chng c th trao i thng tin qua li vi nhau.

Hnh 1-1: M hnh mng c bn

Mng my tnh ra i xut pht t nhu cu mun chia s v dng chung d liu. Khng c h thng mng th d liu trn cc my tnh c lp mun chia s vi nhau phi thng qua vic in n hay sao chp qua a mm, CD ROM, iu ny

gy rt nhiu bt tin cho ngi dng. Cc my tnh c kt ni thnh mng cho php cc kh nng: S dng chung cc cng c tin ch Chia s kho d liu dng chung Tng tin cy ca h thng Trao i thng ip, hnh nh, Dng chung cc thit b ngoi vi (my in, my v, Fax, modem ) Gim thiu chi ph v thi gian i li.

1.1.3 Phn bit cc loi mng


Phng thc kt ni mng c s dng ch yu trong lin kt mng: c hai phng thc ch yu, l im - im v im - nhiu im. Vi phng thc "im - im", cc ng truyn ring bit c thit lp ni cc cp my tnh li vi nhau. Mi my tnh c th truyn v nhn trc tip d liu hoc c th lm trung gian nh lu tr nhng d liu m n nhn c ri sau chuyn tip d liu i cho mt my khc d liu t ti ch. Vi phng thc "im - nhiu im", tt c cc trm phn chia chung mt ng truyn vt l. D liu c gi i t mt my tnh s c th c tip nhn bi tt c cc my tnh cn li, bi vy cn ch ra i ch ch ca d liu mi my tnh cn c vo kim tra xem d liu c phi dnh cho mnh khng nu ng th nhn cn nu khng th b qua. Phn loi mng my tnh theo vng a l: GAN (Global Area Network) kt ni my tnh t cc chu lc khc nhau. Thng thng kt ni ny c thc hin thng qua mng vin thng v v tinh. WAN (Wide Area Network) - Mng din rng, kt ni my tnh trong ni b cc quc gia hay gia cc quc gia trong cng mt chu lc. Thng thng kt ni ny c thc hin thng qua mng vin thng. Cc WAN c th c kt ni vi nhau thnh GAN hay t n l GAN. MAN (Metropolitan Area Network) kt ni cc my tnh trong phm vi mt thnh ph. Kt ni ny c thc hin thng qua cc mi trng truyn thng tc cao (50-100 Mbit/s).

LAN (Local Area Network) - Mng cc b, kt ni cc my tnh trong mt khu vc bn knh hp thng thng khong vi trm mt. Kt ni c thc hin thng qua cc mi trng truyn thng tc cao v d cp ng trc thay cp quang. LAN thng c s dng trong ni b mt c quan/t chc...Cc LAN c th c kt ni vi nhau thnh WAN. Phn loi mng my tnh theo tp Mng dng hnh sao (Star topology): dng hnh sao, tt c cc trm c ni vo mt thit b trung tm c nhim v nhn tn hiu t cc trm v chuyn tn hiu n trm ch vi phng thc kt ni l phng thc "im - im". Mng hnh tuyn (Bus Topology): Trong dng hnh tuyn, cc my tnh u c ni vo mt ng dy truyn chnh (bus). ng truyn chnh ny c gii hn hai u bi mt loi u ni c bit gi l terminator (dng nhn bit l u cui kt thc ng truyn ti y). Mi trm c ni vo bus qua mt u ni ch T (T_connector) hoc mt b thu pht (transceiver). Mng dng vng (Ring Topology): Cc my tnh c lin kt vi nhau thnh mt vng trn theo phng thc "im - im", qua mi mt trm c th nhn v truyn d liu theo vng mt chiu v d liu c truyn theo tng gi mt. Mng dng kt hp: trong thc t tu theo yu cu v mc ch c th ta c th thit k mng kt hp cc dng sao, vng, tuyn tn dng cc im mnh ca mi dng. Phn loi mng theo chc nng Mng Client-Server: mt hay mt s my tnh c thit lp cung cp cc dch v nh file server, mail server, Web server, Printer server, Cc my tnh c thit lp cung cp cc dch v c gi l Server, cn cc my tnh truy cp v s dng dch v th c gi l Client. Mng ngang hng (Peer-to-Peer): cc my tnh trong mng c th hot ng va nh mt Client va nh mt Server. Mng kt hp: Cc mng my tnh thng c thit lp theo c hai chc nng Client-Server v Peer-to-Peer. Phn bit mng LAN-WAN

a phng hot ng o Mng LAN s dng trong mt khu vc a l nh. o Mng WAN cho php kt ni cc my tnh cc khu vc a l khc nhau, trn mt phm vi rng. Tc kt ni v t l li bit o Mng LAN c tc kt ni v tin cy cao. o Mng WAN c tc kt ni khng th qu cao m bo t l li bit c th chp nhn c. Phng thc truyn thng: o Mng LAN ch yu s dng cng ngh Ethernet, Token Ring, ATM o Mng WAN s dng nhiu cng ngh nh Chuyn mch vng (Circuit Switching Network), chuyn mch gi (Packet Switching Network), ATM (Cell relay), chuyn mch khung (Frame Relay),

1.1.4 Mng ton cu Internet:


Mng ton cu Internet l mt tp hp gm hng vn mng trn khp th gii. Mng Internet bt ngun t mt th nghim ca Cc qun l cc d n nghin cu tin tin (Advanced Research Projects Agency ARPA) thuc B quc phng M kt ni thnh cng cc mng my tnh cho php cc trng i hc v cc cng ty t nhn tham gia vo cc d n nghin cu.. V c bn, Internet l mt lin mng my tnh giao tip di cng mt b giao thc TCP/IP (Transmission Control Protocol/Internet Protocol). Giao thc ny cho php mi my tnh trn mng giao tip vi nhau mt cch thng nht ging nh mt ngn ng quc t m mi ngi s dng giao tip vi nhau hng ngy. S lng my tnh kt ni mng v s lng ngi truy cp vo mng Internet trn ton th gii ngy cng tng ln nhanh chng, c bit t nhng nm 90 tr i. Mng Internet khng ch cho php chuyn ti thng tin nhanh chng m cn gip cung cp thng tin, n cng l din n v l th vin ton cu u tin.

1.1.5 M hnh OSI (Open Systems Interconnect)


thi k u ca cng ngh ni mng, vic gi v nhn d liu ngang qua mng thng gy nhm ln do cc cng ty ln nh IBM, Honeywell v Digital Equipment Corporation t ra nhng tiu chun ring cho hot ng kt ni my tnh.

Nm 1984, t chc Tiu chun ho Quc t - ISO (International Standard Organization) chnh thc a ra m hnh OSI (Open Systems Interconnection), l tp hp cc c im k thut m t kin trc mng dnh cho vic kt ni cc thit b khng cng chng loi. M hnh OSI c chia thnh 7 tng, mi tng bao gm nhng hot ng, thit b v giao thc mng khc nhau.

Hnh 1-2: M hnh OSI by tng

1.1.5.1 Cc giao thc trong m hnh OSI Trong m hnh OSI c hai loi giao thc chnh c p dng: giao thc c lin kt (connection - oriented) v giao thc khng lin kt (connectionless). Giao thc c lin kt: trc khi truyn d liu hai tng ng mc cn thit lp mt lin kt logic v cc gi tin c trao i thng qua lin kt ny, vic c lin kt logic s nng cao an ton trong truyn d liu. Giao thc khng lin kt: trc khi truyn d liu khng thit lp lin kt logic v mi gi tin c truyn c lp vi cc gi tin trc hoc sau n. Nh vy vi giao thc c lin kt, qu trnh truyn thng phi gm 3 giai on phn bit: Thit lp lin kt (logic): hai thc th ng mc hai h thng thng lng vi nhau v tp cc tham s s s dng trong giai on sau (truyn d liu). Truyn d liu: d liu c truyn vi cc c ch kim sot v qun l km theo (nh kim sot li, kim sot lung d liu, ct/hp d liu...) tng cng tin cy v hiu qu ca vic truyn d liu.

Hy b lin kt (logic): gii phng ti nguyn h thng c cp pht cho lin kt dng cho lin kt khc. i vi giao thc khng lin kt th ch c duy nht mt giai on truyn d liu m thi. Gi tin ca giao thc: Gi tin (Packet) c hiu nh l mt n v thng tin dng trong vic lin lc, chuyn giao d liu trong mng my tnh. Nhng thng ip (message) trao i gia cc my tnh trong mng, c to dng thnh cc gi tin my ngun. V nhng gi tin ny khi ch s c kt hp li thnh thng ip ban u. Mt gi tin c th cha ng cc yu cu phc v, cc thng tin iu khin v d liu.

Hnh 1-3: Phng thc xc lp cc gi tin trong m hnh OSI

Trn quan im m hnh mng phn tng tng mi tng ch thc hin mt chc nng l nhn d liu t tng bn trn chuyn giao xung cho tng bn di v ngc li. Chc nng ny thc cht l gn thm v g b phn u (header) i vi cc gi tin trc khi chuyn n i. Ni cch khc, tng gi tin bao gm phn u (header) v phn d liu. Khi i n mt tng mi gi tin s c ng thm mt phn u khc v c xem nh l gi tin ca tng mi, cng vic trn tip din cho ti khi gi tin c truyn ln ng dy mng n bn nhn. Ti bn nhn cc gi tin c g b phn u trn tng tng tng ng v y cng l nguyn l ca bt c m hnh phn tng no. 1.1.5.2 Cc chc nng ch yu ca cc tng ca m hnh OSI. Tng Vt l (Physical) Tng vt l (Physical layer) l tng di cng ca m hnh OSI l. N m t cc c trng vt l ca mng: Cc loi cp c dng ni cc thit b, cc loi u ni c dng , cc dy cp c th di bao nhiu v.v... Mt khc cc tng vt l

cung cp cc c trng in ca cc tn hiu c dng khi chuyn d liu trn cp t mt my ny n mt my khc ca mng, k thut ni mch in, tc cp truyn dn. Tng vt l khng qui nh mt ngha no cho cc tn hiu ngoi cc gi tr nh phn 0 v 1. cc tng cao hn ca m hnh OSI ngha ca cc bit c truyn tng vt l s c xc nh. V d: Tiu chun Ethernet cho cp xon i 10 baseT nh r cc c trng in ca cp xon i, kch thc v dng ca cc u ni, di ti a ca cp. Khc vi cc tng khc, tng vt l l khng c gi tin ring v do vy khng c phn u (header) cha thng tin iu khin, d liu c truyn i theo dng bit. Mt giao thc tng vt l tn ti gia cc tng vt l quy nh v phng thc truyn (ng b, phi ng b), tc truyn. Tng Lin kt d liu (Data link) Tng lin kt d liu (data link layer) l tng m ngha c gn cho cc bit c truyn trn mng. Tng lin kt d liu phi quy nh c cc dng thc, kch thc, a ch my gi v nhn ca mi gi tin c gi i. N phi xc nh c ch truy nhp thng tin trn mng v phng tin gi mi gi tin sao cho n c a n cho ngi nhn nh. Tng lin kt d liu c hai phng thc lin kt da trn cch kt ni cc my tnh, l phng thc "im - im" v phng thc "im - im". Vi phng thc "im - im" cc ng truyn ring bit c thit lp ni cc cp my tnh li vi nhau. Phng thc "im - im" tt c cc my phn chia chung mt ng truyn vt l. Tng lin kt d liu cng cung cp cch pht hin v sa li c bn m bo cho d liu nhn c ging hon ton vi d liu gi i. Nu mt gi tin c li khng sa c, tng lin kt d liu phi ch ra c cch thng bo cho ni gi bit gi tin c li n gi li. Cc giao thc tng lin kt d liu chia lm 2 loi chnh l cc giao thc hng k t v cc giao thc hng bit. Cc giao thc hng k t c xy dng da trn cc k t c bit ca mt b m chun no (nh ASCII hay EBCDIC), trong khi cc giao thc hng bit li dng cc cu trc nh phn (xu bit) xy dng cc phn t ca giao thc (n v d liu, cc th tc.) v khi nhn, d liu s c tip nhn ln lt tng bit mt. Tng Mng (Network)

Tng mng (network layer) nhm n vic kt ni cc mng vi nhau bng cch tm ng (routing) cho cc gi tin t mt mng ny n mt mng khc. N xc nh vic chuyn hng, vch ng cc gi tin trong mng, cc gi ny c th phi i qua nhiu chng trc khi n c ch cui cng. N lun tm cc tuyn truyn thng khng tc nghn a cc gi tin n ch. Tng mng cung cc cc phng tin truyn cc gi tin qua mng, thm ch qua mt mng ca mng (network of network). Bi vy n cn phi p ng vi nhiu kiu mng v nhiu kiu dch v cung cp bi cc mng khc nhau. hai chc nng ch yu ca tng mng l chn ng (routing) v chuyn tip (relaying). Tng mng l quan trng nht khi lin kt hai loi mng khc nhau nh mng Ethernet vi mng Token Ring khi phi dng mt b tm ng (quy nh bi tng mng) chuyn cc gi tin t mng ny sang mng khc v ngc li. i vi mt mng chuyn mch gi (packet - switched network) - gm tp hp cc nt chuyn mch gi ni vi nhau bi cc lin kt d liu. Cc gi d liu c truyn t mt h thng m ti mt h thng m khc trn mng phi c chuyn qua mt chui cc nt. Mi nt nhn gi d liu t mt ng vo (incoming link) ri chuyn tip n ti mt ng ra (outgoing link) hng n ch ca d liu. Nh vy mi nt trung gian n phi thc hin cc chc nng chn ng v chuyn tip. Vic chn ng l s la chn mt con ng truyn mt n v d liu (mt gi tin chng hn) t trm ngun ti trm ch ca n. Mt k thut chn ng phi thc hin hai chc nng chnh sau y: Quyt nh chn ng ti u da trn cc thng tin c v mng ti thi im thng qua nhng tiu chun ti u nht nh. Cp nht cc thng tin v mng, tc l thng tin dng cho vic chn ng, trn mng lun c s thay i thng xuyn nn vic cp nht l vic cn thit. Ngi ta c hai phng thc p ng cho vic chn ng l phng thc x l tp trung v x l ti ch. Phng thc chn ng x l tp trung c c trng bi s tn ti ca mt (hoc vi) trung tm iu khin mng, chng thc hin vic lp ra cc bng ng i ti tng thi im cho cc nt v sau gi cc bng chn ng ti tng nt dc theo con ng c chn . Thng tin tng

th ca mng cn dng cho vic chn ng ch cn cp nhp v c ct gi ti trung tm iu khin mng. Phng thc chn ng x l ti ch c c trng bi vic chn ng c thc hin ti mi nt ca mng. Trong tng thi im, mi nt phi duy tr cc thng tin ca mng v t xy dng bng chn ng cho mnh. Nh vy cc thng tin tng th ca mng cn dng cho vic chn ng cn cp nhp v c ct gi ti mi nt. Thng thng cc thng tin c o lng v s dng cho vic chn ng bao gm: Trng thi ca ng truyn. Thi gian tr khi truyn trn mi ng dn. Mc lu thng trn mi ng. Cc ti nguyn kh dng ca mng. Khi c s thay i trn mng (v d thay i v cu trc ca mng do s c ti mt vi nt, phc hi ca mt nt mng, ni thm mt nt mi... hoc thay i v mc lu thng) cc thng tin trn cn c cp nht vo cc c s d liu v trng thi ca mng. Tng Vn chuyn (Transport) Tng vn chuyn cung cp cc chc nng cn thit gia tng mng v cc tng trn. n l tng cao nht c lin quan n cc giao thc trao i d liu gia cc h thng m. N cng cc tng di cung cp cho ngi s dng cc phc v vn chuyn. Tng vn chuyn (transport layer) l tng c s m mt my tnh ca mng chia s thng tin vi mt my khc. Tng vn chuyn ng nht mi trm bng mt a ch duy nht v qun l s kt ni gia cc trm. Tng vn chuyn cng chia cc gi tin ln thnh cc gi tin nh hn trc khi gi i. Thng thng tng vn chuyn nh s cc gi tin v m bo chng chuyn theo ng th t. Tng vn chuyn l tng cui cng chu trch nhim v mc an ton trong truyn d liu nn giao thc tng vn chuyn ph thuc rt nhiu vo bn cht ca tng mng. Tng giao dch (Session) Tng giao dch (session layer) thit lp "cc giao dch" gia cc trm trn mng, n t tn nht qun cho mi thnh phn mun i thoi vi nhau v lp nh xa gia cc tn vi a ch ca chng. Mt giao dch phi c thit lp trc khi d

liu c truyn trn mng, tng giao dch m bo cho cc giao dch c thit lp v duy tr theo ng qui nh. Tng giao dch cn cung cp cho ngi s dng cc chc nng cn thit qun tr cc giao dnh ng dng ca h, c th l: iu phi vic trao i d liu gia cc ng dng bng cch thit lp v gii phng (mt cch lgic) cc phin (hay cn gi l cc hi thoi dialogues) Cung cp cc im ng b kim sot vic trao i d liu. p t cc qui tc cho cc tng tc gia cc ng dng ca ngi s dng. Cung cp c ch "ly lt" (nm quyn) trong qu trnh trao i d liu. Trong trng hp mng l hai chiu lun phin th ny sinh vn : hai ngi s dng lun phin phi "ly lt" truyn d liu. Tng giao dch duy tr tng tc lun phin bng cch bo cho mi ngi s dng khi n lt h c truyn d liu. Vn ng b ha trong tng giao dch cng c thc hin nh c ch kim tra/phc hi, dch v ny cho php ngi s dng xc nh cc im ng b ha trong dng d liu ang chuyn vn v khi cn thit c th khi phc vic hi thoi bt u t mt trong cc im mt thi im ch c mt ngi s dng quyn c bit c gi cc dch v nht nh ca tng giao dch, vic phn b cc quyn ny thng qua trao i th bi (token). V d: Ai c c token s c quyn truyn d liu, v khi ngi gi token trao token cho ngi khc thi cng c ngha trao quyn truyn d liu cho ngi . Tng giao dch c cc hm c bn sau: Give Token cho php ngi s dng chuyn mt token cho mt ngi s dng khc ca mt lin kt giao dch. Please Token cho php mt ngi s dng cha c token c th yu cu token . Give Control dng chuyn tt c cc token t mt ngi s dng sang mt ngi s dng khc. Tng Th hin (Presentation) Trong giao tip gia cc ng dng thng qua mng vi cng mt d liu c th c nhiu cch biu din khc nhau. Thng thng dng biu din dng bi ng dng ngun v dng biu din dng bi ng dng ch c th khc nhau do cc ng dng c chy trn cc h thng hon ton khc nhau (nh h my Intel v h

10

my Motorola). Tng th hin (Presentation layer) phi chu trch nhim chuyn i d liu gi i trn mng t mt loi biu din ny sang mt loi khc. t c iu n cung cp mt dng biu din chung dng truyn thng v cho php chuyn i t dng biu din cc b sang biu din chung v ngc li. Tng th hin cng c th c dng k thut m ha xo trn cc d liu trc khi c truyn i v gii m u n bo mt. Ngoi ra tng th hin cng c th dng cc k thut nn sao cho ch cn mt t byte d liu th hin thng tin khi n c truyn trn mng, u nhn, tng trnh by bung tr li c d liu ban u. Tng ng dng (Application) Tng ng dng (Application layer) l tng cao nht ca m hnh OSI, n xc nh giao din gia ngi s dng v mi trng OSI v gii quyt cc k thut m cc chng trnh ng dng dng giao tip vi mng. 1.1.5.3 Lung d liu trong OSI

Hnh 1-4: lung d liu trong OSI (PDU: protocol data unit)

11

1.1.6 Mt s b giao thc kt ni mng


1.1.6.1 TCP/IP u th chnh ca b giao thc ny l kh nng lin kt hot ng ca nhiu loi my tnh khc nhau. TCP/IP tr thnh tiu chun thc t cho kt ni lin mng cng nh kt ni Internet ton cu. 1.1.6.2 NetBEUI B giao thc nh, nhanh v hiu qu c cung cp theo cc sn phm ca hng IBM, cng nh s h tr ca Microsoft. Bt li chnh ca b giao thc ny l khng h tr nh tuyn v s dng gii hn mng da vo Microsoft. 1.1.6.3 IPX/SPX y l b giao thc s dng trong mng Novell. u th: nh, nhanh v hiu qu trn cc mng cc b ng thi h tr kh nng nh tuyn. 1.1.6.4 DECnet y l b giao thc c quyn ca hng Digital Equipment Corporation. DECnet nh ngha m hnh truyn thng qua mng LAN, mng MAN v WAN. H tr kh nng nh tuyn.

1.2 B giao thc TCP/IP


TCP/IP - Transmission Control Protocol/ Internet Protocol

1.2.1 Tng quan v b giao thc TCP/IP


TCP/IP l b giao thc cho php kt ni cc h thng mng khng ng nht vi nhau. Ngy nay, TCP/IP c s dng rng ri trong cc mng cc b cng nh trn mng Internet ton cu. TCP/IP c xem l gin lc ca m hnh tham chiu OSI vi bn tng nh sau: Tng lin kt mng (Network Access Layer) Tng Internet (Internet Layer) Tng giao vn (Host-to-Host Transport Layer) Tng ng dng (Application Layer)

12

Hnh 1-5: Kin trc TCP/IP

Tng lin kt: Tng lin kt (cn c gi l tng lin kt d liu hay l tng giao tip mng) l tng thp nht trong m hnh TCP/IP, bao gm cc thit b giao tip mng v chng trnh cung cp cc thng tin cn thit c th hot ng, truy nhp ng truyn vt l qua thit b giao tip mng . Tng Internet: Tng Internet (cn gi l tng mng) x l qua trnh truyn gi tin trn mng. Cc giao thc ca tng ny bao gm: IP (Internet Protocol), ICMP (Internet Control Message Protocol), IGMP (Internet Group Messages Protocol). Tng giao vn: Tng giao vn ph trch lung d liu gia hai trm thc hin cc ng dng ca tng trn. Tng ny c hai giao thc chnh: TCP (Transmission Control Protocol) v UDP (User Datagram Protocol) TCP cung cp mt lung d liu tin cy gia hai trm, n s dng cc c ch nh chia nh cc gi tin ca tng trn thnh cc gi tin c kch thc thch hp cho tng mng bn di, bo nhn gi tin,t hn ch thi gian time-out m bo bn nhn bit c cc gi tin gi i. Do tng ny m bo tnh tin cy, tng trn s khng cn quan tm n na. UDP cung cp mt dch v n gin hn cho tng ng dng. N ch gi cc gi d liu t trm ny ti trm kia m khng m bo cc gi tin n c ti ch. Cc c ch m bo tin cy cn c thc hin bi tng trn. Tng ng dng: Tng ng dng l tng trn cng ca m hnh TCP/IP bao gm cc tin trnh v cc ng dng cung cp cho ngi s dng truy cp mng. C rt nhiu ng

13

dng c cung cp trong tng ny, m ph bin l: Telnet: s dng trong vic truy cp mng t xa, FTP (File Transfer Protocol): dch v truyn tp, Email: dch v th tn in t, WWW (World Wide Web).

Hnh 1-6: Qu trnh ng/m gi d liu trong TCP/IP

Cng tng t nh trong m hnh OSI, khi truyn d liu, qu trnh tin hnh t tng trn xung tng di, qua mi tng d liu c thm vo mt thng tin iu khin c gi l phn header. Khi nhn d liu th qu trnh xy ra ngc li, d liu c truyn t tng di ln v qua mi tng th phn header tng ng c ly i v khi n tng trn cng th d liu khng cn phn header na. Hnh v 1.7 cho ta thy lc d liu qua cc tng. Trong hnh v ny ta thy ti cc tng khc nhau d liu c mang nhng thut ng khc nhau: Trong tng ng dng d liu l cc lung c gi l stream. Trong tng giao vn, n v d liu m TCP gi xung tng di gi l TCP segment. Trong tng mng, d liu m IP gi ti tng di c gi l IP datagram. Trong tng lin kt, d liu c truyn i gi l frame.

14

Hnh 1-7: Cu trc d liu trong TCP/IP

TCP/IP vi OSI: mi tng trong TCP/IP c th l mt hay nhiu tng ca OSI. Bng sau ch r mi tng quan gia cc tng trong m hnh TCP/IP vi OSI OSI Physical Layer v Data link Layer Network Layer Transport Layer Session Layer, Presentation Application Layer S khc nhau gia TCP/IP v OSI ch l: Tng ng dng trong m hnh TCP/IP bao gm lun c 3 tng trn ca m hnh OSI Tng giao vn trong m hnh TCP/IP khng phi lun m bo tin cy ca vic truyn tin nh trong tng giao vn ca m hnh OSI m cho php thm mt la chn khc l UDP TCP/IP Data link Layer Internet Layer Transport Layer Layer, Application Layer

1.2.2 Mt s giao thc c bn trong b giao thc TCP/IP


1.2.2.1 Giao thc lin mng IP (Internet Protocol): Gii thiu chung Giao thc lin mng IP l mt trong nhng giao thc quan trng nht ca b giao thc TCP/IP. Mc ch ca giao thc lin mng IP l cung cp kh nng kt ni cc mng con thnh lin mng truyn d liu. IP l giao thc cung cp dch v phn pht datagram theo kiu khng lin kt v khng tin cy ngha l khng cn c giai on thit lp lin kt trc khi truyn d liu, khng m bo rng IP

15

datagram s ti ch v khng duy tr bt k thng tin no v nhng datagram gi i. Khun dng n v d liu dng trong IP c th hin trn hnh v 1-7

Hnh 1-8: Khun dng d liu trong IP

ngha cc tham s trong IP header: Version (4 bit): ch phin bn (version) hin hnh ca IP c ci t. IHL (4 bit): ch di phn header tnh theo n v t (word - 32 bit) Type of Service (8 bit): c t tham s v yu cu dch v Total length (16 bit): ch di ton b IP datagram tnh theo byte. Da vo trng ny v trng header length ta tnh c v tr bt u ca d liu trong IP datagram. Indentification (16 bit): l trng nh danh, cng cc tham s khc nh a ch ngun (Source address) v a ch ch (Destination address) nh danh duy nht cho mi datagram c gi i bi 1 trm. Thng thng phn nh danh (Indentification) c tng thm 1 khi 1 datagram c gi i. Flags (3 bit): cc c, s dng trong khi phn on cc datagram. 0 1 0 DF Bit 0: reseved (cha s dng, c gi tr 0) bit 1: ( DF ) = 0 (May fragment) = 1 (Dont fragment) bit 2 : ( MF) =0 (Last fragment) =1 (More Fragment) 2 MF

16

Fragment Offset (13 bit): ch v tr ca on phn mnh (Fragment) trong datagram tnh theo n v 64 bit. TTL (8 bit): thit lp thi gian tn ti ca datagram trnh tnh trng datagram b qun trn mng. TTL thng c gi tr 32 hoc 64 c gim i 1 khi d liu i qua mi router. Khi trng ny bng 0 datagram s b hy b v s khng bo li cho trm gi. Protocol (8 bit): ch giao thc tng trn k tip Header checksum (16 bit): kim sot li cho vng IP header. Source address (32 bit): a ch IP trm ngun Destination address (32 bit): a ch IP trm ch Option ( di thay i): khai bo cc ty chn do ngi gi yu cu, thng l: o an ton v bo mt, o Bng ghi tuyn m datagram i qua c ghi trn ng truyn, o Time stamp, o Xc nh danh sch a ch IP m datagram phi qua nhng datagram khng bt buc phi truyn qua router nh trc, o Xc nh tuyn trong cc router m IP datagram phi c i qua. Kin trc a ch IP (IPv4) a ch IP (IPv4): a ch IP (IPv4) c di 32 bit v c tch thnh 4 vng, mi vng (mi vng 1 byte) thng c biu din di dng thp phn v c cch nhau bi du chm (.). V d: 203.162.7.92. a ch IPv4 c chia thnh 5 lp A, B, C, D, E; trong 3 lp a ch A, B, C c dng cp pht. Cc lp ny c phn bit bi cc bit u tin trong a ch. Lp A (0) cho php nh danh ti 126 mng vi ti a 16 triu trm trn mi mng. Lp ny thng c dng cho cc mng c s trm cc ln (thng dnh cho cc cng ty cung cp dch v ln ti M) v rt kh c cp. Lp B (10) cho php nh danh ti 16384 mng vi ti a 65534 trm trn mi mng. Lp a ch ny ph hp vi nhiu yu cu nn c cp pht nhiu nn hin nay tr nn khan him. Lp C (110) cho php nh danh ti 2 triu mng vi ti a 254 trm trn mi mng. Lp ny c dng cho cc mng c t trm.

17

7-bits Class A 0 netid 14-bits Class B 1 0 netid 21-bits Class C 1 1 0 netid

24-bits hostid 16-bits hostid 8-bits hostid 28-bits

Class D

1 1 1 0

multicast group ID 27-bits

Class E

1 1 1 1 0

reserved for future use

Hnh 1-9: Phn lp a ch IPv4

Lp D (1110) dng gi gi tin IP n mt nhm cc trm trn mng (cn c gi l lp a ch multicast) Lp E (11110) dng d phng Lp A B C D E Khong a ch 0.0.0.0 n 127.255.255.255 128.0.0.0 n 191.255.255.255 192.0.0.0 n 223.255.255.255 224.0.0.0 n 239.255.255.255 240.0.0.0 n 247.255.255.255

Bng cc lp a ch Internet Ngoi ra cn mt s a ch c quy nh dng ring (private address). Cc a ch ny ch c ngha trong mng ca tng t chc nht nh m khng c nh tuyn trn Internet. Vic s dng cc a ch ny khng cn phi xin cp php. V d: 192.168.0.0 192.168.255.255 Cch chuyn i a ch IP t dng nh phn sang thp phn: V d: Dng Nh phn 11001011 10100010 00000111 01011100 Dng Thp phn 203.162.7.92

18

00001001 11001011

01000011

00100110

00000001 203.162.7.92

9.67.38.1

11001011.10100010.00000111.01011100

27 + 26 + 23 + 21 + 20 = 128 + 64 + 8 +2 + 1 = 203 10100010 27 + 25 +21 = 128 + 32 + 2 = 162 00000111 22 + 21 +20 = 4 + 2 + 1 = 7 01011100 26 + 24 + 23 + 22 = 64 + 16 + 8 + 4 = 92 a ch mng con: i vi cc a ch lp A, B s trm trong mt mng l qu ln v trong thc t thng khng c mt s lng trm ln nh vy kt ni vo mt mng n l. a ch mng con cho php chia mt mng ln thnh cc mng con nh hn. Ngi qun tr mng c th dng mt s bit u tin ca trng hostid trong a ch IP t a ch mng con. Chng hn i vi mt a ch thuc lp A, vic chia a ch mng con c th c thc hin nh sau:

Vic chia a ch mng con l hon ton trong sut i vi cc router nm bn ngoi mng, nhng n l khng trong sut i vi cc router nm bn trong mng.

Hnh 1-10: V d minh ha cu hnh Subnet

19

Mt n a ch mng con: Bn cnh a ch IP, mt trm cng cn c bit vic nh dng a ch mng con: bao nhiu bit trong trng hostid c dng cho phn a ch mng con (subnetid). Thng tin ny c ch ra trong mt n a ch mng con (subnet mask). Subnet mask cng l mt s 32 bit vi cc bit tng ng vi phn netid v subnetid c dt bng 1 cn cc bit cn li c t bng 0. Nh vy, a ch thc ca mt trm s l hp ca a ch IP v subnet mask. V d vi a ch lp C: 203.162.7.92, trong : 203.162.7 92 a ch mng a ch IP ca trm subnet mask s l:

Nu dng 3 bit u ca trng hostid nh subnet 11111111.11111111.11111111.11100000 = 255.255.255.224 a ch ca subnet: 11001011.10100010.00000111.01011100 11111111.11111111.11111111.111- - - - ---------------------------------------------------------- AND Logic 11001011.10100010.00000111.010- - - - - = (Subnet address) a ch trm: trm th 28 trong Subnet 203.162.7.64 203.162.7.64

Trong thc t subnet mask thng c vit km vi a ch IP theo dng thu gn sau: 203.162.7.92/27; trong 27 chnh l s bit c t gi tr l 1 (gm cc bit thuc a ch mng v cc bit dng cho Subnet). Nh vy y ta c th hiu ngay c vi subnet mask l 27 th tng ng vi 11111111.11111111.11111111.111 - - - - -. Cc a ch IP c bit: c 7 loi a ch IP c bit c m t nh trong bng sau: a ch IP netID subnetID hostID Vai tr a ch ngun 0 0 127 1 0 hostID Bt k 1 c c c khng a ch ch khng khng c c Trm hin ti trong mng hin ti Trm hostID trong mng hin ti a ch phn hi i ch qung b gii hn (khng M t

20

c chuyn tip) netID 1 khng khng khng c c c a ch qung b ti mng netID a ch qung b ti mng con subnetID, netID netID 1 1 a ch qung b ti mi mng con trong netID Bng cc a ch IP c bit Trong bng trn, 0 ngha l tt c cc bit ca trng u bng 0, cn 1 ngha l tt c cc bit ca trng u bng 1. Phn mnh v hp nht cc gi IP Phn mnh d liu l mt trong nhng chc nng quan trng ca giao thc IP. Khi tng IP nhn c IP datagram gi i, IP s so snh kch thc ca datagram vi kch thc cc i cho php MTU (Maximum Transfer Unit), v tng d liu qui nh kch thc ln nht ca Frame c th truyn ti c, v s phn mnh nu ln hn. Mt IP datagram b phn mnh s c ghp li bi tng IP ca trm nhn vi cc thng tin t phn header nh identification, flag v fragment offset. Tuy nhin nu mt phn ca datagram b mt trn ng truyn th ton b datagram phi c truyn li. Mt s giao thc iu khin Giao thc ICMP ICMP (Internet Control Message Protocol) l mt giao thc ca lp IP, c dng trao i cc thng tin iu khin dng s liu, thng bo li v cc thng tin trng thi khc ca TCP/IP. V d: iu khin dng truyn (Flow Control): khi cc gi d liu n qu nhanh, trm ch hoc mt gateway gia s gi mt thng ip ICMP tr li ni gi, yu cu ni gi tm thi dng vic gi d liu. Thng bo li: trong trng hp a ch ch l khng ti c th h thng s gi mt thng bo li Destination Unreachable. nh hng cc tuyn ng: mt gateway s gi mt thng ip ICMP Redirect Router ni vi mt trm l nn dng gateway khc. Thng ip ny c th ch c dng khi m trm ngun trn cng mt mng vi c hai gateway. Kim tra cc trm xa: mt trm c th gi mt thng ip ICMP Echo i bit c liu mt trm xa c hot ng hay khng. netID subnetID 1

21

Giao thc ARP ARP (Address Resolution Protocol) l giao thc gii (tra) a ch t a ch mng xc nh c a ch lin kt d liu (a ch MAC). V d: khi IP gi mt gi d liu cho mt h thng khc trn cng mng vt l Ethernet, IP cn bit a ch Ethernet ca h thng ch tng lin kt d liu xy dng khung. Thng thng , c th xc nh a ch trong bng a ch IP a ch MAC mi h thng. Nu khng, c th s dng ARP lm vic ny. Trm lm vic gi yu cu ARP (ARP_Request) n my phc v ARP Server, my phc v ARP tm trong bng a ch IP MAC ca mnh v tr li bng ARP_Response cho trm lm vic. Nu khng, my phc v chuyn tip yu cu nhn c di dng qung b cho tt c cc trm lm vic trong mng. Trm no c trng a ch IP c yu cu s tr li vi a ch MAC ca mnh. Giao thc RARP RARP (Reverse Address Resolution Protocol) l giao thc gii ngc (tra ngc) t a ch MAC xc nh IP. Qu trnh ny ngc li vi qu trnh gii thun a ch IP MAC m t trn. Chn tuyn (IP routing): Bn cnh vic cung cp a ch chuyn pht cc gi tin, chn tuyn l mt chc nng quan trng ca lp IP. Ta thy rng lp IP nhn datagram t TCP, UDP, ICMP hoc IGMP gi i hoc nhn datagram t giao tip mng chuyn tip. Lp IP c mt bng nh tuyn truy cp mi khi nhn c mt datagram gi i. Khi mt datagram c nhn t tng kt ni d liu, u tin IP s kim tra xem a ch IP ch l a ch ca chnh n hay mt a ch qung b, nu ng th datagram s c cp pht cho giao thc c ch nh trong protocol ca IP header. Nu datagram khng c gi ti a ch IP ny n s c chuyn tip trong trng hp lp IP c cu hnh ng vai tr nh mt router hoc b hy b trong trng hp ngc li. IP duy tr mt bng chn tuyn truy nhp mi khi c gi tin cn chuyn tip. Mi mc trong bng chn tuyn gm nhng thng tin sau: a ch IP ch: l a ch ch cn ti, c th l a ch IP ca mt trm hoc a ch IP ca mt mng ty thuc vo c ca u vo ny.

22

a ch IP ca router k tip: l a ch ca router c ni trc tip vi mng v ta c th gi datagram ti cho router k tip phn pht. Router k tip khng phi l ch nhng n c th nhn ly datagram c gi ti v chuyn tip datagram ny ti ch cui cng. C: xc nh a ch IP ca router k tip l mt a ch mt trm hay l mt mng, router k tip l mt router thc hay l mt trm kt ni trc tip vo mng. Giao tip mng: xc nh giao tip mng no m datagram phi gi qua ti ch.

Hnh 1-11: Chn tuyn trong IP

Vic chn tuyn ca IP c thc hin theo cc trnh t sau: Tm kim trong bng chn tuyn xem c mc no khp vi a ch ch (c phn networkID v hostID). Nu thy th s gi gi d liu ti router k tip hay giao tip mng kt ni trc tip c ch nh trong mc ny. Tm trong bng chn tuyn xem c mc no c coi l mc nh (default). Nu thy th gi gi d liu ti router k tip c ch ra. Nu sau cc bc trn m datagram khng c gi i th trm thc hin vic chuyn tip gi thng bo li host unreachable hoc network unreachable ti trm to ra datagram ny. Kh nng xc nh mt tuyn ti mt mng m khng phi l tuyn ti mt trm l mt c trng c bn ca vic chn tuyn trong lp giao thc IP. iu ny cho php gim kch thc ca bng chn tuyn, cho php router trn Internet ch c bng chn tuyn vi hng ngn u vo thay v hng triu u vo ti cc trm.

23

Hnh 1-12: Qu trnh x l thc hin lp IP

y ta cn phn bit thm v hai khi nim: c ch chn tuyn v chin lc chn tuyn. C ch chn tuyn l vic tm kim trong bng nh tuyn v quyt nh xem gi tin s c gi ra ngoi theo giao din mng no. C ch chn tuyn c thc hin bi lp IP. Chin lc chn tuyn l mt tp hp cc lut qui nh xem cc tuyn no s c a vo bng chn tuyn. Chin lc chn tuyn c thc hin bi chng trnh chn tuyn (chng hn routed). Chng trnh chn tuyn thc hin vic cp nht bng chn tuyn bng cch giao tip vi chng trnh chn tuyn ca cc trm khc trong mng. Vic giao tip ny gia cc chng trnh chn tuyn tun th thao mt giao thc nht nh. C th tm tt vic chn tuyn thc hin lp IP trong s hnh 1.12. Giao thc lin mng th h mi (IPv6) Giao thc IPv4 c coi l nn tng cho mng Internet vi nhng tnh cht u vit ca n, tuy nhin vi s bng n v Internet giao thc IPv4 bc l mt s yu im v tnh nng, trong ni bt l:

24

Thiu ht v tnh nng xc thc, an ninh ca gi tin trn mng. Kh nng m rng hn ch. Thiu ht khng gian a ch. Vi s pht trin ca mng Internet, khng gian a ch IP c th s dng thc s l rt nh do cc a ch lp A c dnh ch yu cho cc cng ty cung cp dch v ln ti M v rt hn ch trong vic cp pht. Cc a ch lp B nhanh chng b s dng ht do n cung cp s a ch va phi. Hin nay nhiu yu cu ch c p ng bng cc a ch lp C vi s a ch rt hn ch. S gia tng s lng cc ch mc trong bng nh tuyn do c ch nh tuyn khng phn cp dn n yu cu nng cp cc router v v nh tuyn khng hiu qu. Ngy nay, vi cc nhu cu kt ni vo mng Internet ca cc dch v khc nh in thoi di ng, truyn hnh s, i hi giao thc IPv4 cn c cc sa i p ng cc nhu cu mi. Trc nhng nhu cu ny, giao thc lin mng th h mi IPv6 ra i nhm thay th cho IPv4, nhng cho n nay IPv6 vn ch mi ch yu l ang trong qu trnh th nghim v hon thin. Trong khun kh gio trnh cng cp mt cch tng qut v giao thc lin mng th h mi IPv6. Mt s c im mi ca IPv6: Khun dng header mi: Header ca IPv6 c thit k gim chi ph n mc ti thiu. iu ny t c bng cch chuyn cc trng la chn sang cc header m rng c t pha sau ca IPv6 header. Khun dng mi ca IPv6 to ra s x l hiu qu hn ti cc router. Header ca IPv4 v IPv6 khng th x l chung. Mt trm hay mt router phi ci t c IPv4 v IPv6 c th x l c c hai khun dng header ny. Header ca IPv6 ch c kch thc gp 2 ln header ca IPv4 mc d khng gian a ch ca IPv6 ln gp 4 ln khng gian a ch IPv4. Khng gian a ch ln: IPv6 c a ch ngun v ch di 128 bit. Mc d 128 bit c th to ra hn 3.4x1038 t hp, khng gian a ch ca IPv6 c thit k cho php phn b a ch v mng con t trc xng sng Internet n tng mng con trong mt t chc. Hin ti ch mt lng nh cc a ch hin ang c phn b s dng bi cc trm, vn cn d tha rt nhiu a ch sn sng cho vic s dng trong tng lai.

25

Hiu qu, phn cp a ch ha v h tng nh tuyn: Cc a ch ton cc ca IPv6 c thit k to ra mt h tng nh tuyn hiu qu, phn cp v c th tng qut ha da trn s phn cp thng thy ca cc nh cung cp dch v (ISP) trn thc t. H tr cht lng dch v (QoS) tt hn: Cc trng mi trong header ca IPv6 nh ra cch thc x l v nh danh trn mng. Giao thng trn mng c nh danh nh trng gn nhn lung (Flow Label) cho php router c th nhn ra v cung cp cc x l c bit i vi cc gi tin thuc v mt lung nht nh, mt chun cc gi tin gia ngun v ch. Do giao thng mng c xc nh trong header, cc dch v QoS c th c thc hin ngay c khi phn d liu c m ha theo IPSec. Kh nng m rng: IPv6 c th d dng m rng thm cc tnh nng mi bng vic thm cc header mi sau header IPv6. Kin trc a ch trong IPv6: Khng gian a ch: IPv6 s dng a ch c di ln hn IPv4 (128 bit so vi 32 bit) do cung cp khng gian a ch ln hn rt nhiu. Trong khi khng gian a ch 32 bit ca IPv4 cho php khong 4 t a ch, khng gian a ch ca IPv6 c th c khong 3.4x1038 a ch. S lng ac h ny rt ln, h tr khong 6.5x1023 a ch trn mi mt vung b mt tri t. a ch IPv6 128 bit c chia thnh cc min phn cp theo trt t trn Internet. N to ra nhiu mc phn cp v linh hot trong a ch ha v nh tuyn cn ang thiu trong IPv4. Khng gian a ch IPv6 c chia trn c s cc bit u trong a ch. Trng c di thay i bao gm cc bit u tin trong a ch gi l tin t nh dng (Format Prefix) FP. Ban u ch mi c 15% lng a ch c s dng, 85% cn li dng trong tng lai. Cc tin t nh dng t 001 n 111, ngoi tr kiu a ch multicast (1111 1111) u bt buc c nh danh giao din theo khun dng EUI-64. Cc a ch d tr khng ln vi cc a ch cha cp pht. Chng chim 1/256 khng gian a ch (FP = 0000 0000) v dng cho cc a ch cha ch nh, a ch quay vng v cc a ch IPv6 c nhng IPv4 C php a ch:

26

Cc a ch IPv6 di 128 bit, khi vit mi nhm 16 bit c biu din thnh mt s nguyn khng du di dng h 16 v c phn tch bi du hai chm (:), V d: FEDC:BA98:7654:3210:FEDC:BA98:7654:3210 Trn thc t a ch IPv6 thng c nhiu s 0, v d a ch: 1080:0000:0000:0000:0008:0800:200C:417A. Do c ch nn a ch c dng biu din d dng hn cc loi a ch dng ny. Ta khng cn vit cc s 0 u mi nhm, v d 0 thay cho 0000, 20 thay cho 0020. a ch trong v d trn s tr thnh 1080:0:0:0:8:800:200C:417A. Hn na ta c th s dng k hiu :: ch mt chui s 0. a ch trong v d trn s tr thnh: 1080::8:800:200C:417A. Do a ch IPv6 c di c nh, ta c th tnh c s cc bit 0 m k hiu biu din. Tin t a ch IPv6 c biu din theo k php CIDR nh IPv4 nh sau: IPv6-address/prefix length trong IPv6-address l bt k kiu biu din no, cn prefix length l di tin t theo bit. V d: biu din mng con c tin t 80 bit: 1080:0:0:0:8::/80. Vi node address: 12AB:0:0:CD30:123:4567:89AB:CDEF, prefix: 12AB:0:0:CD30::/60 c th vit tt thnh 12AB:0:0:CD30:123:4567:89AB:CDEF/60 1.2.2.2 Giao thc UDP (User Datagram Protocol) UDP l giao thc khng lin kt, cung cp dch v giao vn khng tin cy c, s dng thay th cho TCP trong tng giao vn . Khc vi TCP, UDP khng c chc nng thit lp v gii phng lin kt, khng c c ch bo nhn (ACK), khng sp xp tun t cc n v d liu (datagram) n v c th dn n tnh trng mt hoc trng d liu m khng h c thng bo li cho ngi gi. Khun dng ca UDP datagram c m t nh sau :

Hnh 1-13: Khun dng UDP datagram

27

S hiu cng ngun (Source Port - 16 bit): s hiu cng ni gi datagram S hiu cng ch (Destination Port - 16 bit): s hiu cng ni datagram c chuyn ti di UDP (Length - 16 bit): di tng cng k c phn header ca gi UDP datagram. UDP Checksum (16 bit): dng kim sot li, nu pht hin li th UDP datagram s b loi b m khng c mt thng bo no tr li cho trm gi. UDP c ch gn v qun l cc s hiu cng (port number) nh danh duy nht cho cc ng dng chy trn mt trm ca mng. Do c t chc nng phc tp nn UDP c xu th hot ng nhanh hn so vi TCP. N thng dng cho cc ng dng khng i hi tin cy cao trong giao vn. 1.2.2.3 Giao thc TCP (Transmission Control Protocol) TCP v UDP l 2 giao thc tng giao vn v cng s dng giao thc IP trong tng mng. Nhng khng ging nh UDP, TCP cung cp dch v lin kt tin cy v c lin kt. C lin kt y c ngha l 2 ng dng s dng TCP phi thit lp lin kt vi nhau trc khi trao i d liu. S tin cy trong dch v c cung cp bi TCP c th hin nh sau: D liu t tng ng dng gi n c c TCP chia thnh cc segment c kch thc ph hp nht truyn i . Khi TCP gi 1 segment, n duy tr mt thi lng ch phc p t trm nhn. Nu trong khong thi gian phc p khng ti c trm gi th segment c truyn li. Khi TCP trn trm nhn nhn d liu t trm gi n s gi ti trm gi 1 phc p tuy nhin phc p khng c gi li ngay lp tc m thng tr mt khong thi gian . TCP duy tr gi tr tng kim tra (checksum) trong phn Header ca d liu nhn ra bt k s thay i no trong qu trnh truyn dn. Nu 1 segment b li th TCP pha trm nhn s loi b v khng phc p li trm gi truyn li segment b li . Ging nh IP datagram, TCP segment c th ti ch mt cch khng tun t. Do vy TCP trm nhn s sp xp li d liu v sau gi ln tng ng dng m bo tnh ng n ca d liu.

28

Khi IP datagram b trng lp TCP ti trm nhn s loi b d liu trng lp .

Hnh 1-14: Khun dng TCP segment

TCP cng cung cp kh nng iu khin lung. Mi u ca lin kt TCP c vng m (buffer) gii hn do TCP ti trm nhn ch cho php trm gi truyn mt lng d liu nht nh (nh hn khng gian buffer cn li). iu ny trnh xy ra trng hp trm c tc cao chim ton b vng m ca trm c tc chm hn. Khun dng ca TCP segment c m t trong hnh 1.14 Cc tham s trong khun dng trn c ngha nh sau: Source Port (16 bits ) l s hiu cng ca trm ngun . Destination Port (16 bits ) l s hiu cng trm ch . Sequence Number (32 bits) l s hiu byte u tin ca segment tr khi bit SYN c thit lp. Nu bit SYN c thit lp th sequence number l s hiu tun t khi u ISN (Initial Sequence Number ) v byte d liu u tin l ISN + 1. Thng qua trng ny TCP thc hin vic qun l tng byte truyn i trn mt kt ni TCP. Acknowledgment Number (32 bits). S hiu ca segment tip theo m trm ngun ang ch nhn v ngm nh bo nhn tt cc segment m trm ch gi cho trm ngun . Header Length (4 bits). S lng t (32 bits) trong TCP header, ch ra v tr bt u ca vng d liu v trng Option c di thay i. Header length c gi tr t 20 n 60 byte . Reserved (6 bits). Dnh dng trong tng lai . Control bits : cc bit iu khin

29

URG : xc inh vng con tr khn c hiu lc. ACK : vng bo nhn ACK Number c hiu lc. PSH : chc nng PUSH. RST : khi ng li lin kt. SYN : ng b ho cc s hiu tun t (Sequence number). FIN : khng cn d liu t trm ngun. Window size (16 bits) : cp pht th kim sot lung d liu (c ch ca s trt). y chnh l s lng cc byte d liu bt u t byte c ch ra trong vng ACK number m trm ngun sn sng nhn. Checksum (16 bits). M kim sot li cho ton b segment c phn header v d liu. Urgent Pointer (16 bits). Con tr tr ti s hiu tun t ca byte cui cng trong dng d liu khn cho php bn nhn bit c di ca d liu khn. Vng ny ch c hiu lc khi bit URG c thit lp. Option ( di thay i ). Khai bo cc tu chn ca TCP trong thng thng l kch thc cc i ca 1 segment: MSS (Maximum Segment Size). TCP data ( di thay i ). Cha d liu ca tng ng dng c di ngm nh l 536 byte . Gi tr ny c th iu chnh c bng cch khai bo trong vng Option.

1.3 Gii thiu mt s cc dch v c bn trn mng


1.3.1 Dch v truy nhp t xa Telnet
Telnet cho php ngi s dng ng nhp t xa vo h thng t mt thit b u cui no trn mng. Vi Telnet ngi s dng hon ton c th lm vic vi h thng t xa nh th h ang ngi lm vic ngay trc mn hnh ca h thng. Kt ni Telnet l mt kt ni TCP dng truyn d liu vi cc thng tin iu khin.

1.3.2 Dch v truyn tp (FTP)


Dch v truyn tp (FTP) l mt dch v c bn v ph bin cho php chuyn cc tp d liu gia cc my tnh khc nhau trn mng. FTP h tr tt c cc dng tp, trn thc t n khng quan tm ti dng tp cho d l tp vn bn m ASCII hay cc tp d liu dng nh phn. Vi cu hnh ca my phc v FTP, c th qui nh quyn truy nhp ca ngi s dng vi tng th mc lu tr d liu, tp d

30

liu cng nh gii hn s lng ngi s dng c kh nng cng mt lc c th truy nhp vo cng mt ni lu tr d liu.

1.3.3 Dch v Gopher


Trc khi Web ra i Gopher l dch v rt c a chung. Gopher l mt dch v chuyn tp tng t nh FTP, nhng n h tr ngi dng trong vic cung cp thng tin v ti nguyn. Client Gopher hin th mt thc n, ngi dng ch vic la chn ci m mnh cn. Kt qu ca vic la chn c th hin mt thc n khc. Gopher b gii hn trong kiu cc d liu. N ch hin th d liu di dng m ASCII mc d c th chuyn d liu dng nh phn v hin th n bng mt phn mm khc.

1.3.4 Dch v WAIS


WAIS (Wide Area Information Serves) l mt dch v tm kim d liu. WAIS thng xuyn bt u vic tm kim d liu ti th mc ca my ch, ni cha ton b danh mc ca cc my phc v khc. Sau WAIS thc hin tm kim ti my phc v thch hp nht. WAIS c th thc hin cng vic ca mnh vi nhiu loi d liu khc nhau nh vn bn ASCII, PostScript, GIF, TIFF, in th

1.3.5 Dch v World Wide Web


World Wide Web (WWW hay Web) l mt dch v tch hp, s dng n gin v c hiu qu nht trn Internet. Web tch hp c FTP, WAIS, Gopher. Trnh duyt Web c th cho php truy nhp vo tt c cc dch v trn. Ti liu WWW c vit bng ngn ng HTML (HyperText Markup Language) hay cn gi l ngn ng nh du siu vn bn. Siu vn bn l vn bn bnh thng cng thm mt s lnh nh dng. HTML c nhiu cch lin kt vi cc ti nguyn FTP, Gopher server, WAIS server v Web server. Web Server l my phc v Web, p ng cc yu cu v truy nhp ti liu HTML. Web Server trao i cc ti liu HTML bng giao thc HTTP (HyperText Transfer Protocol) hay cn gi l giao thc truyn siu vn bn. Trnh duyt Web (Web client) l chng trnh xem cc ti liu Web. Trnh duyt Web gi cc URL n my phc v Web sau nhn trang Web t my phc v Web dch v hin th chng. Khi giao tip vi my phc v Web th trnh duyt Web s dng giao thc HTTP. Khi giao tip vi mt Gopher server th trnh duyt Web hot ng nh mt Gopher client v s dng giao thc gopher, khi

31

giao tip vi mt FTP server th trnh duyt Web hot ng nh mt FTP client v dng giao thc FTP. Trnh duyt Web c th thc hin cc cng vic khc nh ghi trang Web vo a, gi Email, tm kim xu k t trn trang Web, hin th tp HTML ngun ca trang Web, v.v Hin nay c hai trnh duyt Web c s dng nhiu nht l Internet Explorer v Netscape, ngoi ra cn mt s trnh duyt khc nh Opera, Mozila,

1.3.6 Dch v th in t (E-Mail)


Dch v th in t (hay cn gi l in th) l mt dch v thng dng nht trong mi h thng mng d ln hay nh. Th in t c s dng rng ri nh mt phng tin giao tip hng ngy trn mng nh tnh linh hot v ph bin ca n. T cc trao i th tn thng thng, thng tin qung co, tip th, n nhng cng vn, bo co, hay k c nhng bn hp ng thng mi, chng t, tt c u c trao i qua th in t. Mt h thng in th c chia lm hai phn, MUA (Mail User Agent) v MTA (Message Transfer Agent). MUA thc cht l mt chng trnh lm nhim v tng tc trc tip vi ngi dng cui, gip h nhn thng ip, son tho thng ip, lu cc thng ip v gi thng ip. Nhim v ca MTA l nh tuyn thng ip v x l cc thng ip n t h thng ca ngi dng sao cho cc thng ip n c ng h thng ch. a ch in th H thng in th hot ng cng ging nh mt h thng th bu in. Mt thng ip in t mun n c ch th a ch ngi nhn l mt yu t khng th thiu. Trong mt h thng in th mi ngi c mt a ch th. T a ch th s xc nh c thng tin ca ngi s hu a ch trong mng. Ni chung, khng c mt qui tc thng nht cho vic nh a ch th, bi v mi h th li c th s dng mt qui c ring v a ch. gii quyt vn ny, ngi ta thng s dng hai khun dng a ch l a ch min (Domain-base address) v a ch UUCP (UUCP address, c s dng nhiu trn h iu hnh UNIX). Ngoi hai dng a ch trn, cn c mt dng a ch na to thnh bi s kt hp ca c hai dng a ch trn, gi l a ch hn hp. a ch min l dng a ch thng dng nht. Khng gian a ch min c cu trc hnh cy. Mi nt ca cy c mt nhn duy nht cng nh mi ngi dng c mt a ch th duy nht. Cc a ch min xc nh a ch ch tuyt i ca ngi

32

nhn. Do , dng a ch ny d s dng i vi ngi dng: h khng cn bit ch xc ng i ca thng ip nh th no. a ch tn min c dng nh sau: thng_tin_ngi_dng@thng_tin_tn_min Phn thng_tin_tn_min gm c mt xu cc nhn cch nhau bi mt du chm (.). Cu trc ca mt thng ip Mt thng ip in t gm c nhng thnh phn chnh sau y: Phong b (Envelope): cha cc thng tin v a ch ngi gi thng ip, a ch ngi nhn thng ip. MTA s s dng nhng thng tin trn phong b nh tuyn thng ip. u thng ip (Header): cha a ch th ca ngi nhn. MUA s dng a ch ny phn thng ip v ng hp th ca ngi nhn. Thn thng ip (Body): cha ni dung ca thng ip. Phn u thng ip bao gm nhng dng chnh sau: To: a ch ca ngi nhn thng ip. From: a ch ca ngi gi thng ip. Subject: M t ngn gn v ni dung ca thng ip. Date: Ngy v thi gian m thng ip bt u c gi. Received: c thm vo bi mi MTA c mt trn ng m thng ip i qua ti c ch (thng tin nh tuyn). Cc: Cc a ch ca ngi nhn thng ip ngoi ngi nhn chnh trng To:.

1.4 Tm tt chng 1
Trong chng ny gii thiu cc kin thc v khi nim c bn v h thng mng nh: Cc kin thc v khi nim c bn v LAN/WAN, Cc kin thc v khi nim c bn v mng ton cu Internet, Cc kin thc tng quan v m hnh OSI, Cc kin thc tng quan v b giao thc TCP/IP, v c bit gii thiu su v giao thc lin mng IP (IPv4), to c s nn tng cho cc hc vin trc khi i vo phn thit k LAN/WAN trong cc phn sau.

33

Chng ny cng gii thiu v giao thc lin mng th h mi IPv6, gip cho hc vin nm bt c cc xu hng mi trong vic pht trin cc b giao thc mng. Trong chng ny cng gii thiu mt s cc dch v c bn trn mng v ang c ng dng rng ri. Trn c s kin thc ca chng 1, phn tip theo ca gio trnh s i su trnh by cc kin thc v cc vn lin quan khi thit k mng LAN, mng WAN.

34

2 Chng II - Mng LAN v thit k mng LAN


2.1 Kin thc c bn v LAN
Mng cc b (LAN) l h truyn thng tc cao c thit k kt ni cc my tnh v cc thit b x l d liu khc cng hot ng vi nhau trong mt khu vc a l nh nh mt tng ca to nh, hoc trong mt to nh.... Mt s mng LAN c th kt ni li vi nhau trong mt khu lm vic. Cc mng LAN tr nn thng dng v n cho php nhng ngi s dng dng chung nhng ti nguyn quan trng nh my in mu, a CD-ROM, cc phn mm ng dng v nhng thng tin cn thit khc. Trc khi pht trin cng ngh LAN cc my tnh l c lp vi nhau, b hn ch bi s lng cc chng trnh tin ch, sau khi kt ni mng r rng hiu qu ca chng tng ln gp bi.

2.1.1 Cu trc tp ca mng


Cu trc tp (network topology) ca LAN l kin trc hnh hc th hin cch b tr cc ng cp, sp xp cc my tnh kt ni thnh mng hon chnh. Hu ht cc mng LAN ngy nay u c thit k hot ng da trn mt cu trc mng nh trc. in hnh v s dng nhiu nht l cc cu trc: dng hnh sao, dng hnh tuyn, dng vng cng vi nhng cu trc kt hp ca chng. 2.1.1.1 Mng dng hnh sao (Star topology). Mng dng hnh sao bao gm mt b kt ni trung tm v cc nt . Cc nt ny l cc trm u cui, cc my tnh v cc thit b khc ca mng. B kt ni trung tm ca mng iu phi mi hot ng trong mng. Mng dng hnh sao cho php ni cc my tnh vo mt b tp trung (Hub) bng cp, gii php ny cho php ni trc tip my tnh vi Hub khng cn thng qua trc bus, trnh c cc yu t gy ngng tr mng.

Hnh 2-1: Cu trc mng hnh sao

35

M hnh kt ni hnh sao ngy nay tr ln ht sc ph bin. Vi vic s dng cc b tp trung hoc chuyn mch, cu trc hnh sao c th c m rng bng cch t chc nhiu mc phn cp, do vy d dng trong vic qun l v vn hnh. Cc u im ca mng hnh sao: Hot ng theo nguyn l ni song song nn nu c mt thit b no mt nt thng tin b hng th mng vn hot ng bnh thng. Cu trc mng n gin v cc thut ton iu khin n nh. Mng c th d dng m rng hoc thu hp. Nhng nhc im mng dng hnh sao: Kh nng m rng mng hon ton ph thuc vo kh nng ca trung tm. Khi trung tm c s c th ton mng ngng hot ng. Mng yu cu ni c lp ring r tng thit b cc nt thng tin n trung tm. Khong cch t my n trung tm rt hn ch (100 m). 2.1.1.2 Mng hnh tuyn (Bus Topology). Thc hin theo cch b tr hnh lang, cc my tnh v cc thit b khc - cc nt, u c ni v vi nhau trn mt trc ng dy cp chnh chuyn ti tn hiu. Tt c cc nt u s dng chung ng dy cp chnh ny. Pha hai u dy cp c bt bi mt thit b gi l terminator. Cc tn hiu v d liu khi truyn i dy cp u mang theo i ch ca ni n.

Hnh 2-2: Cu trc mng hnh tuyn

u im: Loi hnh mng ny dng dy cp t nht, d lp t, gi thnh r. Nhc im: S n tc giao thng khi di chuyn d liu vi lu lng ln. Khi c s hng hc on no th rt kh pht hin, mt s ngng trn ng dy sa cha s ngng ton b h thng. Cu trc ny ngy nay t c s dng.

36

2.1.1.3 Mng dng vng (Ring Topology). Mng dng ny, b tr theo dng xoay vng, ng dy cp c thit k lm thnh mt vng khp kn, tn hiu chy quanh theo mt chiu no . Cc nt truyn tn hiu cho nhau mi thi im ch c mt nt m thi. D liu truyn i phi c km theo a ch c th ca mi trm tip nhn. u im: Mng dng vng c thun li l c th ni rng ra xa, tng ng dy cn thit t hn so vi hai kiu trn Mi trm c th t c tc ti a khi truy nhp. Nhc im: ng dy phi khp kn, nu b ngt mt ni no th ton b h thng cng b ngng.

Hnh 2-3: Cu trc mng dng vng

2.1.1.4 Mng dng kt hp. Kt hp hnh sao v tuyn (star/Bus Topology): Cu hnh mng dng ny c b phn tch tn hiu (spitter) gi vai tr thit b trung tm, h thng dy cp mng c th chn hoc Ring Topology hoc Linear Bus Topology. Li im ca cu hnh ny l mng c th gm nhiu nhm lm vic cch xa nhau, ARCNET l mng dng kt hp Star/Bus Topology. Cu hnh dng ny a li s uyn chuyn trong vic b tr ng dy tng thch d dng i vi bt c to nh no. Kt hp hnh sao v vng (Star/Ring Topology). Cu hnh dng kt hp Star/Ring Topology, c mt "th bi" lin lc (Token) c chuyn vng quanh mt ci HUB trung tm. Mi trm lm vic (workstation) c ni vi HUB - l cu ni gia cc trm lm vic v tng khong cch cn thit.

37

2.1.2 Cc phng thc truy nhp ng truyn


Khi c ci t vo trong mng, cc my trm phi tun theo nhng quy tc nh trc c th s dng ng truyn, l phng thc truy nhp. Phng thc truy nhp c nh ngha l cc th tc iu hng trm lm vic lm th no v lc no c th thm nhp vo ng dy cp gi hay nhn cc gi thng tin. C 3 phng thc c bn: 2.1.2.1 Giao thc CSMA/CD (Carrier Sense Multiple Access with Collision Detection) Giao thc ny thng dng cho mng c cu trc hnh tuyn, cc my trm cng chia s mt knh truyn chung, cc trm u c c hi thm nhp ng truyn nh nhau (Multiple Access). Tuy nhin ti mt thi im th ch c mt trm c truyn d liu m thi. Trc khi truyn d liu, mi trm phi lng nghe ng truyn chc chn rng ng truyn ri (Carrier Sense). Trong trng hp hai trm thc hin vic truyn d liu ng thi, xung t d liu s xy ra, cc trm tham gia phi pht hin c s xung t v thng bo ti cc trm khc gy ra xung t (Collision Detection), ng thi cc trm phi ngng thm nhp, ch i ln sau trong khong thi gian ngu nhin no ri mi tip tc truyn. Khi lu lng cc gi d liu cn di chuyn trn mng qu cao, th vic xung t c th xy ra vi s lng ln dn n lm chm tc truyn tin ca h thng. Giao thc ny cn c trnh by chi tit thm trong phn cng Ethernet. 2.1.2.2 Giao thc truyn th bi (Token passing) Giao thc ny c dng trong cc LAN c cu trc vng s dng k thut chuyn th bi (token) cp pht quyn truy nhp ng truyn tc l quyn c truyn d liu i. Th bi y l mt n v d liu c bit, c kch thc v ni dung (gm cc thng tin iu khin) c quy nh ring cho mi giao thc. Trong ng cp lin tc c mt th bi chy quanh trong mng. Phn d liu ca th bi c mt bit biu din trng thi s dng ca n (bn hoc ri). Trong th bi c cha mt a ch ch v c lun chuyn ti cc trm theo mt trt t nh trc. i vi cu hnh mng dng xoay vng th trt t ca s truyn th bi tng ng vi trt t vt l ca cc trm xung quanh vng.

38

Mt trm mun truyn d liu th phi i n khi nhn c mt th bi ri. Khi trm s i bit trng thi ca th bi thnh bn, nn gi d liu c km theo a ch ni nhn vo th bi v truyn i theo chiu ca vng, th bi lc ny tr thnh khung mang d liu. Trm ch sau khi nhn khung d liu ny, s copy d liu vo b m ri tip tc truyn khung theo vng nhng thm mt thng tin xc nhn. Trm ngun nhn li khung ca mnh (theo vng) c nhn ng, i bit bn thnh bit ri v truyn th bi i. V th bi chy vng quang trong mng kn v ch c mt th nn vic ng d liu khng th xy ra, do vy hiu sut truyn d liu ca mng khng thay i. Trong cc giao thc ny cn gii quyt hai vn c th dn n ph v h thng. Mt l vic mt th bi lm cho trn vng khng cn th bi lu chuyn na. Hai l mt th bi bn lu chuyn khng dng trn vng. u im ca giao thc l vn hot ng tt khi lu lng truyn thng ln. Giao thc truyn th bi tun th ng s phn chia ca mi trng mng, hot ng da vo s xoay vng ti cc trm. Vic truyn th bi s khng thc hin c nu vic xoay vng b t on. Giao thc phi cha cc th tc kim tra th bi cho php khi phc li th bi b mt hoc thay th trng thi ca th bi v cung cp cc phng tin sa i logic (thm vo, bt i hoc nh li trt t ca cc trm). 2.1.2.3 Giao thc FDDI. FDDI l k thut dng trong cc mng cu trc vng, chuyn th bi tc cao bng phng tin cp si quang. FDDI s dng h thng chuyn th bi trong c ch vng kp. Lu thng trn mng FDDI bao gm 2 lung ging nhau theo hai hng ngc nhau. FDDI thng c s dng vi mng trc trn nhng mng LAN cng sut thp c th ni vo. Cc mng LAN i hi tc truyn d liu cao v di thng ln cng c th s dng FDDI.

39

Hnh 2-4: Cu trc mng dng vng ca FDDI

2.1.3 Cc loi ng truyn v cc chun ca chng


Chun Vin cng ngh in v in t (IEEE) Tiu chun IEEE LAN c pht trin da vo u ban IEEE 802. Tiu chun IEEE 802.3 lin quan ti mng CSMA/CD bao gm c 2 phin bn bng tn c bn v bng tn m rng. Tiu chun IEEE 802.4 lin quan ti s phng thc truyn th bi trn mng hnh tuyn (Token Bus) IEEE 802.5 lin quan n truyn th bi trn mng dng vng (Token Ring). Theo chun 802 th tng lin kt d liu chia thnh 2 mc con: mc con iu khin logic LLC (Logical Link Control Sublayer) v mc con iu khin xm nhp mng MAC (Media Access Control Sublayer). Mc con LLC gi vai tr t chc d liu, t chc thng tin truyn v nhn. Mc con MAC ch lm nhim v iu khin vic xm nhp mng. Th tc mc con LLC khng b nh hng khi s dng cc ng truyn dn khc nhau, nh vy m linh hot hn trong khai thc. Chun 802.2 mc con LLC tng ng vi chun HDLC ca ISO hoc X.25 ca CCITT. Chun 802.3 xc nh phng php thm nhp mng tc thi c kh nng pht hin li chng cho thng tin CSMA/CD. Phng php CSMA/CD c a ra t nm 1993 nhm mc ch nng cao hiu qu mng. Theo chun ny cc mc c ghp ni vi nhau thng qua cc b ghp ni. Chun 802.4 thc cht l phng php thm nhp mng theo kiu pht tn hiu thm d token qua cc trm v ng truyn bus.

40

Chun 802.5 dng cho mng dng xoay vng v trn c s dng tn hiu thm d token. Mi trm khi nhn c tn hiu thm d token th tip nhn token v bt u qu trnh truyn thng tin di dng cc khung tn hiu. Cc khung c cu trc tng t nh ca chun 802.4. Phng php xm nhp mng ny quy nh nhiu mc u tin khc nhau cho ton mng v cho mi trm, vic quy nh ny va cho ngi thit k va do ngi s dng t quy nh.

Hnh 2-5: Mi quan h gia cc chun IEEE v m hnh OSI

Chun u ban t vn quc t v in bo v in thoi(CCITT) y l nhng khuyn ngh v tiu chun ha hot ng v mu m moem ( truyn qua mng in thoi) Mt s chun: V22, V28, V35... X series bao gm cc tiu chun OSI. Chun cp v chun giao tip EIA. Cc tiu chun EIA dnh cho giao din ni tip gia modem v my tnh. RS-232 RS-449 RS-422

41

2.1.4 H thng cp mng dng cho LAN.


2.1.4.1 Cp xon y l loi cp gm hai ng dy dn ng c xon vo nhau nhm lm gim nhiu in t gy ra bi mi trng xung quanh v gia chng vi nhau. Hin nay c hai loi cp xon l cp c bc kim loi ( STP - Shield Twisted Pair) v cp khng bc kim loi (UTP -Unshield Twisted Pair). Cp c bc kim loi (STP): Lp bc bn ngoi c tc dng chng nhiu in t, c loi c mt i giy xon vo nhau v c loi c nhiu i giy xon vi nhau. Cp khng bc kim loi (UTP): Tnh tng t nh STP nhng km hn v kh nng chng nhiu v suy hao v khng c v bc. STP v UTP c cc loi (Category - Cat) thng dng: Loi 1 & 2 (Cat 1 & Cat 2): Thng dng cho truyn thoi v nhng ng truyn tc thp (nh hn 4Mb/s). Loi 3 (Cat 3): tc truyn d liu khong 16 Mb/s , n l chun cho hu ht cc mng in thoi. Loi 4 (Cat 4): Thch hp cho ng truyn 20Mb/s. Loi 5 (Cat 5): Thch hp cho ng truyn 100Mb/s. Loi 6 (Cat 6): Thch hp cho ng truyn 300Mb/s. y l loi cp r, d ci t tuy nhin n d b nh hng ca mi trng. 2.1.4.2 Cp ng trc Cp ng trc c hai ng dy dn v chng c cng mt trc chung, mt dy dn trung tm (thng l dy ng cng) ng dy cn li to thnh ng ng bao xung quanh dy dn trung tm (dy dn ny c th l dy bn kim loi v v n c chc nng chng nhiu nn cn gi l lp bc kim). Gia hai dy dn trn c mt lp cch ly, v bn ngoi cng l lp v plastic bo v cp. Cp ng trc c suy hao t hn so vi cc loi cp ng khc (v d nh cp xon i) do t b nh hng ca mi trng. Cc mng cc b s dng cp ng trc c th c kch thc trong phm vi vi ngn mt, cp ng trc c s dng nhiu trong cc mng dng ng thng. Hai loi cp thng c s dng l cp ng trc mng v cp ng trc dy trong ng knh cp ng trc mng l 0,25 inch, cp ng trc dy l 0,5 inch. C hai loi cp u lm vic cng tc nhng cp ng trc mng c hao suy tn hiu ln hn Hin nay c cp ng trc sau: RG -58,50 ohm: dng cho mng Thin Ethernet

42

RG -59,75 ohm: dng cho truyn hnh cp Cc mng cc b thng s dng cp ng trc c di thng t 2,5 - 10 Mb/s, cp ng trc c suy hao t hn so vi cc loi cp ng khc v n c lp v bc bn ngoi, di thng thng ca mt on cp ni trong mng l 200m, thng s dng cho dng Bus. 2.1.4.3 Cp si quang (Fiber - Optic Cable) Cp si quang bao gm mt dy dn trung tm (l mt hoc mt b si thy tinh c th truyn dn tn hiu quang) c bc mt lp v bc c tc dng phn x cc tn hiu tr li gim s mt mt tn hiu. Bn ngoi cng l lp v plastic bo v cp. Nh vy cp si quang khng truyn dn cc tn hiu in m ch truyn cc tn hiu quang (cc tn hiu d liu phi c chuyn i thnh cc tn hiu quang v khi nhn chng s li c chuyn i tr li thnh tn hiu in). Cp quang c ng knh t 8.3 - 100 micron, Do ng knh li si thu tinh c kch thc rt nh nn rt kh khn cho vic u ni, n cn cng ngh c bit vi k thut cao i hi chi ph cao. Di thng ca cp quang c th ln ti hng Gbps v cho php khong cch i cp kh xa do suy hao tn hiu trn cp rt thp. Ngoi ra, v cp si quang khng dng tn hiu in t truyn d liu nn n hon ton khng b nh hng ca nhiu in t v tn hiu truyn khng th b pht hin v thu trm bi cc thit b in t ca ngi khc. Ch tr nhc im kh lp t v gi thnh cn cao , nhn chung cp quang thch hp cho mi mng hin nay v sau ny. Cc loi cp Chi tit Cp xon cp Bng ng, Cp ng trc mng Bng ng, 2 dy, 185m 30 c ng knh 5mm c 4 cp dy (loi 3, 4, 5) Chiu on ti a S u ni ti a trn 1 on Chy Mbit/s 10 c c c 2 100 2 di 100m Cp ng trc dy Bng ng, 2 dy, 500m ng knh 10mm 1000m Thy tinh, 2 si Cp quang

43

Chy Mbit/s

100

c Tt Trung bnh Tt D dng Tt D dng Rt thp

Khng Tt Trung bnh Trung bnh Trung bnh D Kh Thp

Khng Rt tt Trung bnh Tt Kh D Kh Trung bnh

c Hon ton Hon ton Tt Kh Tt Trung bnh Cao

Chng nhiu Bo mt tin cy Lp t Khc phc li Qun l Chi ph cho 1 trm

2.1.4.4 H thng cp c cu trc theo chun TIA/EIA 568 Vo gia nhng nm 1980, TIA v EIA bt u pht trin phng php i cp cho cc to nh, vi nh pht trin mt h i dy ging nhau, h tr cc sn phm v mi trng ca cc nh cung cp thit b khc nhau. Nm 1991, TIA v EIA a ra chun 568 Commercial Building Telecommunication Cabling Standard. T chun ny tip tc pht trin ph hp vi cc cng ngh truyn dn mi, hin nay n mang tn TIA/EIA 568 B. TIA/EIA xc nh mt lot cc chun lin quan n i cp mng: TIA/EIA-568-A Xc nh chun cho h i cp cho cc to nh thng mi h tr mng d liu, thoi v video. TIA/EIA-569 Xc nh cch xy dng ng dn v khng gian cho cc mi trng vin thng. TIA/EIA-606 Xc nh hng dn v thit k cho vic iu c s h tng vin thng. TIA/EIA-607 Xc nh cc yu cu v nn v xy ghp cho cp v thit b vin thng. Chun cp c cu trc ca TIA/EIA l cc c t quc t xc nh cch thit k, xy dng v qun l h cp c cu trc. Chun ny xc nh mng cu trc hnh sao. Theo ti liu TIA/EIA-568B, chun ni dy c thit k cung cp cc c tnh v chc nng sau:

44

H ni dy vin thng cng loi cho cc to nh thng mi Xc nh mi trng truyn thng, cu trc tp, cc im kt ni, im u cui, v s qun l. H tr cc sn phm, cc phng tin ca cc nh cung cp khc nhau. nh hng vic thit k tng lai cho cc sn phm vin thng cho cc doanh nghip thng mi. Kh nng lp k hoch v ci t kt ni vin thng cho to nh thng mi m khng cn c trc kin thc v sn phm s dng i dy. im cui cng c li cho ngi dng v n chun ha vic i dy v ci t, m ra th trng cho cc sn phm v dch v cnh tranh trong cc lnh vc v i cp, thit k, ci t, v qun tr. Hnh sau minh ho cu trc h thng cp trong mt to nh c th:

Hnh 2-6: S cc thnh phn h thng cp trong to nh

Cc thnh phn ca h thng cp gm c:

45

H cp khu vc lm vic (work area wiring) - Gm cc hp tng, cp, v cc u kt ni (connector) cn thit ni cc thit b trong vng lm vic (my tnh, my in,...) qua h cp ngang tng n phng vin thng. H cp ngang tng (horizontal wiring) - Chy t mi my trm n phng vin thng. Khong cch di nht theo chiu ngang t phng vin thng n hp tng l 90 mt, khng ph thuc vo loi mi trng. c php dng thm 10 m cho cc b cp phng vin thng v ti my trm. H cp xuyn tng (vertical wiring) - Kt ni cc phng vin vi phng thit b trung tm ca to nh. H cp backbone - Kt ni to nh vi cc to nh khc. Ta c th thay cc phng vin thng v cc phng thit b trung tm bi cc t ng thit b nhng vn cn tun th kin trc phn cp da trn tp hnh sao ca chun ny. Hnh sau y minh ho r hn kt ni my tnh vi hub/switch thng qua h thng cp ngang.

Hnh 2-7: Kt ni t my tnh ti hub/switch

2.1.4.5 Cc yu cu cho mt h thng cp An ton, thm m: tt c cc dy mng phi c bao bc cn thn, cch xa cc ngun in, cc my c kh nng pht sng trnh trng hp b nhiu. Cc u ni phi m bo cht lng, trnh tnh trng h thng mng b chp chn.

46

ng chun: h thng cp phi thc hin ng chun, m bo cho kh nng nng cp sau ny cng nh d dng cho vic kt ni cc thit b khc nhau ca cc nh sn xut khc nhau. Tiu chun quc t dng cho cc h thng mng hin nay l EIA/TIA 568B. Tit kim v "linh hot" (flexible): h thng cp phi c thit k sao cho kinh t nht, d dng trong vic di chuyn cc trm lm vic v c kh nng m rng sau ny.

2.1.5 Cc thit b dng kt ni LAN.


2.1.5.1 B lp tn hiu (Repeater) Repeater l loi thit b phn cng n gin nht trong cc thit b lin kt mng, n c hot ng trong tng vt l ca m hnh OSI. Khi Repeater nhn c mt tn hiu t mt pha ca mng th n s pht tip vo pha kia ca mng.

Hnh 2-8: M hnh lin kt mng s dng Repeater

Repeater khng c x l tn hiu m n ch loi b cc tn hiu mo, nhiu, khuch i tn hiu b suy hao (v c pht vi khong cch xa) v khi phc li tn hiu ban u. Vic s dng Repeater lm tng thm chiu di ca mng.

Hnh 2-9: Hot ng ca Repeater trong m hnh OSI

47

Hin nay c hai loi Repeater ang c s dng l Repeater in v Repeater in quang. Repeater in ni vi ng dy in c hai pha ca n, n nhn tn hiu in t mt pha v pht li v pha kia. Khi mt mng s dng Repeater in ni cc phn ca mng li th c th lm tng khong cch ca mng, nhng khong cch lun b hn ch bi mt khong cch ti a do tr ca tn hiu. V d vi mng s dng cp ng trc 50 th khong cch ti a l 2.8 km, khong cch khng th ko thm cho d s dng thm Repeater. Repeater in quang lin kt vi mt u cp quang v mt u l cp in, n chuyn mt tn hiu in t cp in ra tn hiu quang pht trn cp quang v ngc li. Vic s dng Repeater in quang cng lm tng thm chiu di ca mng. Vic s dng Repeater khng thay i ni dung cc tn hin i qua nn n ch c dng ni hai mng c cng giao thc truyn thng (nh hai mng Ethernet hay hai mng Token ring) v khng th ni hai mng c giao thc truyn thng khc nhau. Thm na Repeater khng lm thay i khi lng chuyn vn trn mng nn vic s dng khng tnh ton n trn mng ln s hn ch hiu nng ca mng. Khi la chn s dng Repeater cn ch la chn loi c tc chuyn vn ph hp vi tc ca mng. 2.1.5.2 B tp trung (Hub) Hub l mt trong nhng yu t quan trng nht ca LAN, y l im kt ni dy trung tm ca mng, tt c cc trm trn mng LAN c kt ni thng qua Hub. Hub thng c dng ni mng, thng qua nhng u cm ca n ngi ta lin kt vi cc my tnh di dng hnh sao. Mt hub thng thng c nhiu cng ni vi ngi s dng gn my tnh v cc thit b ngoi vi. Mi cng h tr mt b kt ni dng cp dy xon 10BASET t mi trm ca mng. Khi tn hiu c truyn t mt trm ti hub, n c lp li trn khp cc cng khc ca. Cc hub thng minh c th nh dng, kim tra, cho php hoc khng cho php bi ngi iu hnh mng t trung tm qun l hub. Nu phn loi theo phn cng th c 3 loi hub: Hub n (stand alone hub)

48

Hub modun (Modular hub) rt ph bin cho cc h thng mng v n c th d dng m rng v lun c chc nng qun l, modular c t 4 n 14 khe cm, c th lp thm cc modun Ethernet 10BASET. Hub phn tng (Stackable hub) l l tng cho nhng c quan mun u t ti thiu ban u nhng li c k hoch pht trin LAN sau ny. Nu phn loi theo kh nng ta c 2 loi: Hub b ng (Passive Hub) : Hub b ng khng cha cc linh kin in t v cng khng x l cc tn hiu d liu, n c chc nng duy nht l t hp cc tn hiu t mt s on cp mng. Hub ch ng (Active Hub) : Hub ch ng c cc linh kin in t c th khuych i v x l cc tn hiu in t truyn gia cc thit b ca mng. Qa trnh x l tn hiu c gi l ti sinh tn hiu, n lm cho tn hiu tr nn tt hn, t nhy cm vi li do vy khong cch gia cc thit b c th tng ln. Tuy nhin nhng u im cng ko theo gi thnh ca Hub ch ng cao hn nhiu so vi Hub b ng. Cc mng Token ring c xu hng dng Hub ch ng. V c bn, trong mng Ethernet, hub hot ng nh mt repeater c nhiu cng. 2.1.5.3 Cu (Bridge) Bridge l mt thit b c x l dng ni hai mng ging nhau hoc khc nhau, n c th c dng vi cc mng c cc giao thc khc nhau. Cu ni hot ng trn tng lin kt d liu nn khng nh b tip sc phi pht li tt c nhng g n nhn c th cu ni c c cc gi tin ca tng lin kt d liu trong m hnh OSI v x l chng trc khi quyt nh c chuyn i hay khng. Khi nhn c cc gi tin Bridge chn lc v ch chuyn nhng gi tin m n thy cn thit. iu ny lm cho Bridge tr nn c ch khi ni mt vi mng vi nhau v cho php n hot ng mt cch mm do.

49

Hnh 2-10: Hot ng ca cu ni

thc hin c iu ny trong Bridge mi u kt ni c mt bng cc a ch cc trm c kt ni vo pha , khi hot ng cu ni xem xt mi gi tin n nhn c bng cch c a ch ca ni gi v nhn v da trn bng a ch pha nhn c gi tin n quyt nh gi gi tin hay khng v b xung bng a ch. Khi c a ch ni gi Bridge kim tra xem trong bng a ch ca phn mng nhn c gi tin c a ch hay khng, nu khng c th Bridge t ng b xung bng a ch (c ch c gi l t hc ca cu ni). Khi c a ch ni nhn Bridge kim tra xem trong bng a ch ca phn mng nhn c gi tin c a ch hay khng, nu c th Bridge s cho rng l gi tin ni b thuc phn mng m gi tin n nn khng chuyn gi tin i, nu ngc li th Bridge mi chuyn sang pha bn kia. y chng ta thy mt trm khng cn thit chuyn thng tin trn ton mng m ch trn phn mng c trm nhn m thi.

50

Hnh 2-11 : Hot ng ca Bridge trong m hnh OSI

nh gi mt Bridge ngi ta a ra hai khi nim : Lc v chuyn vn. Qu trnh x l mi gi tin c gi l qu trnh lc trong tc lc th hin trc tip kh nng hot ng ca Bridge. Tc chuyn vn c th hin s gi tin/giy trong th hin kh nng ca Bridge chuyn cc gi tin t mng ny sang mng khc. Hin nay c hai loi Bridge ang c s dng l Bridge vn chuyn v Bridge bin dch. Bridge vn chuyn dng ni hai mng cc b cng s dng mt giao thc truyn thng ca tng lin kt d liu, tuy nhin mi mng c th s dng loi dy ni khc nhau. Bridge vn chuyn khng c kh nng thay i cu trc cc gi tin m n nhn c m ch quan tm ti vic xem xt v chuyn vn gi tin i. Bridge bin dch dng ni hai mng cc b c giao thc khc nhau n c kh nng chuyn mt gi tin thuc mng ny sang gi tin thuc mng kia trc khi chuyn qua V d : Bridge bin dch ni mt mng Ethernet v mt mng Token ring. Khi Cu ni thc hin nh mt nt token ring trn mng Token ring v mt nt Enthernet trn mng Ethernet. Cu ni c th chuyn mt gi tin theo chun ang s dng trn mng Enthernet sang chun ang s dng trn mng Token ring. Tuy nhin ch y cu ni khng th chia mt gi tin ra lm nhiu gi tin cho nn phi hn ch kch thc ti a cc gi tin ph hp vi c hai mng. V d nh kch thc ti a ca gi tin trn mng Ethernet l 1500 bytes v trn mng Token

51

ring l 6000 bytes do vy nu mt trm trn mng token ring gi mt gi tin cho trm trn mng Ethernet vi kch thc ln hn 1500 bytes th khi qua cu ni s lng byte d s b cht b.

Hnh 2-12: Bridge bin dch

Ngi ta s dng Bridge trong cc trng hp sau : M rng mng hin ti khi t ti khong cch ti a do Bridge sau khi s l gi tin pht li gi tin trn phn mng cn li nn tn hiu tt hn b tip sc. Gim bt tc nghn mng khi c qu nhiu trm bng cch s dng Bridge, khi chng ta chia mng ra thnh nhiu phn bng cc Bridge, cc gi tin trong ni b tng phn mng s khng c php qua phn mng khc. ni cc mng c giao thc khc nhau. Mt vi Bridge cn c kh nng la chn i tng vn chuyn. N c th ch chuyn vn nhng gi tin ca nhng a ch xc nh. V d : cho php gi tin ca my A, B qua Bridge 1, gi tin ca my C, D qua Bridge 2.

52

Hnh 2-13: Lin kt mng s dng 2 Bridge

Mt s Bridge c ch to thnh mt b ring bit, ch cn ni dy v bt. Cc Bridge khc ch to nh card chuyn dng cm vo my tnh, khi trn my tnh s s dng phn mm Bridge. Vic kt hp phn mm vi phn cng cho php uyn chuyn hn trong hot ng ca Bridge. 2.1.5.4 B chuyn mch (Switch) B chuyn mch l s tin ho ca cu, nhng c nhiu cng v dng cc mch tch hp nhanh gim tr ca vic chuyn khung d liu. Switch gia bng a ch MAC ca mi cng v thc hin giao thc SpanningTree. Switch cng hot ng tng data link v trong sut vi cc giao thc tng trn. 2.1.5.5 B nh tuyn(Router) Router l mt thit b hot ng trn tng mng, n c th tm c ng i tt nht cho cc gi tin qua nhiu kt ni i t trm gi thuc mng u n trm nhn thuc mng cui. Router c th c s dng trong vic ni nhiu mng vi nhau v cho php cc gi tin c th i theo nhiu ng khc nhau ti ch.

53

Hnh 2-14: Hot ng ca Router

Khc vi Bridge hot ng trn tng lin kt d liu nn Bridge phi x l mi gi tin trn ng truyn th Router c a ch ring bit v n ch tip nhn v x l cc gi tin gi n n m thi. Khi mt trm mun gi gi tin qua Router th n phi gi gi tin vi a ch trc tip ca Router (Trong gi tin phi cha cc thng tin khc v ch n) v khi gi tin n Router th Router mi x l v gi tip. Khi x l mt gi tin Router phi tm c ng i ca gi tin qua mng. lm c iu Router phi tm c ng i tt nht trong mng da trn cc thng tin n c v mng, thng thng trn mi Router c mt bng ch ng (Router table). Da trn d liu v Router gn v cc mng trong lin mng, Router tnh c bng ch ng (Router table) ti u da trn mt thut ton xc nh trc. Ngi ta phn chia Router thnh hai loi l Router c ph thuc giao thc (The protocol dependent routers) v Router khng ph thuc vo giao thc (The protocol independent router) da vo phng thc x l cc gi tin khi qua Router.

54

Router c ph thuc giao thc: Ch thc hin vic tm ng v truyn gi tin t mng ny sang mng khc ch khng chuyn i phng cch ng gi ca gi tin cho nn c hai mng phi dng chung mt giao thc truyn thng. Router khng ph thuc vo giao thc: c th lin kt cc mng dng giao thc truyn thng khc nhau v c th chuyn i gi tin ca giao thc ny sang gi tin ca giao thc kia, Router cng chp nhn kch thc cc gi tin khc nhau (Router c th chia nh mt gi tin ln thnh nhiu gi tin nh trc truyn trn mng).

Hnh 2-15: Hot ng ca Router trong m hnh OSI

ngn chn vic mt mt s liu Router cn nhn bit c ng no c th chuyn vn v ngng chuyn vn khi ng b tc. Cc l do s dng Router : Router c cc phn mm lc u vit hn l Bridge do cc gi tin mun i qua Router cn phi gi trc tip n n nn gim c s lng gi tin qua n. Router thng c s dng trong khi ni cc mng thng qua cc ng dy thu bao t tin do n khng truyn d ln ng truyn. Router c th dng trong mt lin mng c nhiu vng, mi vng c giao thc ring bit. Router c th xc nh c ng i an ton v tt nht trong mng nn an ton ca thng tin c m bo hn.

55

Trong mt mng phc hp khi cc gi tin lun chuyn cc ng c th gy nn tnh trng tc nghn ca mng th cc Router c th c ci t cc phng thc nhm trnh c tc nghn.

Hnh 2-16: V d v bng nh tuyn ca Router

Cc phng thc hot ng ca Router: l phng thc m mt Router c th ni vi cc Router khc qua chia s thng tin v mng hin co. Cc chng trnh chy trn Router lun xy dng bng ch ng qua vic trao i cc thng tin vi cc Router khc. Phng thc vc t khong cch : mi Router lun lun truyn i thng tin v bng ch ng ca mnh trn mng, thng qua cc Router khc s cp nht ln bng ch ng ca mnh. Phng thc trng thi tnh : Router ch truyn cc thng bo khi c pht hin c s thay i trong mng vch khi cc Routerkhc cp nht li bng ch ng, thng tin truyn i khi thng l thng tin v ng truyn. Mt s giao thc hot ng chnh ca Router o RIP(Routing Information Protocol) c pht trin bi Xerox Network system v s dng SPX/IPX v TCP/IP. RIP hot ng theo phng thc vc t khong cch.

56

o NLSP (Netware Link Service Protocol) c pht trin bi Novell dng thay th RIP hot ng theo phng thc vct khong cch, mi Router c bit cu trc ca mng v vic truyn cc bng ch ng gim i.. o OSPF (Open Shortest Path First) l mt phn ca TCP/IP vi phng thc trng thi tnh, trong c xt ti u tin, gi ng truyn, mt truyn thng... o IS-IS (Open System Interconnection Intermediate System to Intermediate System) l mt phn ca TCP/IP vi phng thc trng thi tnh, trong c xt ti u tin, gi ng truyn, mt truyn thng... 2.1.5.6 B chuyn mch c nh tuyn (Layer 3 switch) Switch L3 c th chy giao thc nh tuyn tng mng, tng 3 ca m hnh 7 tng OSI. Switch L3 c th c cc cng WAN ni cc LAN khong cch xa. Thc cht n c b sung thm tnh nng ca router.

2.1.6 Cc h iu hnh mng


H iu hnh mng UNIX: y l h iu hnh do cc nh khoa hc xy dng v c dng rt ph bin trong gii khoa hc, gio dc. H iu hnh mng UNIX l h iu hnh a nhim, a ngi s dng, phc v cho truyn thng tt. Nhc im ca n l hin nay c nhiu Version khc nhau, khng thng nht gy kh khn cho ngi s dng. Ngoi ra h iu hnh ny kh phc tp li i hi cu hnh my mnh (trc y chy trn my mini, gn y c SCO UNIX chy trn my vi tnh vi cu hnh mnh). H iu hnh mng Windows NT: y l h iu hnh ca hng Microsoft, cng l h iu hnh a nhim, a ngi s dng. c im ca n l tng i d s dng, h tr mnh cho phn mm WINDOWS. Do hng Microsoft l hng phn mm ln nht th gii hin nay, h iu hnh ny c kh nng s c ngy cng ph bin rng ri. Ngoi ra, Windows NT c th lin kt tt vi my ch Novell Netware. Tuy nhin, chy c hiu qu, Windows NT cng i hi cu hnh my tng i mnh.

57

H iu hnh mng NetWare ca Novell: y l h iu hnh ph bin nht hin nay nc ta v trn th gii trong thi gian cui, n c th dng cho cc mng nh (khong t 5-25 my tnh) v cng c th dng cho cc mng ln gm hng trm my tnh. Trong nhng nm qua, Novell cho ra nhiu phin bn ca Netware: Netware 2.2, 3.11. 4.0 v hin c 4.1. Netware l mt h iu hnh mng cc b dng cho cc my vi tnh theo chun ca IBM hay cc my tnh Apple Macintosh, chy h iu hnh MS-DOS hoc OS/2. H iu hnh mng Linux: Linux l h iu hnh pht trin t Unix - 32 bit x l a nhim, a ngi dng. H iu hnh ny l min ph v quan trng l m ngun m. Linux l mt sn phm do ngi s dng t pht trin, c ngha l nhiu thnh phn ca n c ngi s dng trn khp th gii pht trin ly t chy h iu hnh cho mc ch ring ca mnh. H thng gc c pht trin bi Linux Torvalds. Ngy nay n c pht trin kh tt v c nh gi cao, hot ng hiu qu vi cc ng dng mng. Cc h iu hnh khc nhau thuc h Linux c xy dng vi giao din ho gn gi vi ngi s dng. Mt s h iu hnh ph bin nh : RedHat Linux, SuSe, ManDrake, VietKey Linux... Vi vic cung cp m ngun m min ph, Linux a ra mt gii php r tin cho cc doanh nghip, cng ty v cc chnh ph. Hin nay cng ng m ngun m ang rt pht trin, thc y Linux thm nhp su thm vo i sng.

2.2 Cng ngh Ethernet


2.2.1 Gii thiu chung v Ethernet
Ngy nay, Ethernet tr thnh cng ngh mng cc b c s dng rng ri. Sau 30 nm ra i, cng ngh Ethernet vn ang c tip tc pht trin nhng kh nng mi p ng nhng nhu cu mi v tr thnh cng ngh mng ph bin v tin dng. Ngy 22 thng 5 nm 1973, Robert Metcalfe thuc Trung tm Nghin cu Palto Alto ca hng Xerox PARC, bang California, a ra tng h thng kt ni mng my tnh cho php cc my tnh c th truyn d liu vi nhau v vi my in lazer. Lc ny, cc h thng tnh ton ln u c thit k da trn cc my tnh trung tm t tin (mainframe). im khc bit ln m Ethernet mang li l cc

58

my tnh c th trao i thng tin trc tip vi nhau m khng cn qua my tnh trung tm. M hnh mi ny lm thay i th gii cng ngh truyn thng. Chun Ethernet 10Mbps u tin c xut bn nm 1980 bi s phi hp pht trin ca 3 hng : DEC, Intel v Xerox. Chun ny c tn DIX Ethernet ( ly tn theo 3 ch ci u ca tn cc hng). U ban 802.3 ca IEEE ly DIX Ethernet lm nn tng pht trin. Nm 1985, chun 802.3 u tin ra i vi tn IEEE 802.3 Carrier Sense Multiple Access with Collition Detection (CSMA/CD) Access Method vesus Physical Layer Specification. Mc d khng s dng tn Ethernet nhng hu ht mi ngi u hiu l chun ca cng ngh Ethernet. Ngy nay chun IEEE 802.3 l chun chnh thc ca Ethernet. IEEE pht trin chun Ethernet trn nhiu cng ngh truyn dn khc nhau v th c nhiu loi mng Ethernet.

2.2.2 Cc c tnh chung ca Ethernet


2.2.2.1 Cu trc khung tin Ethernet Cc chun Ethernet u hot ng tng Data Link trong m hnh 7 lp OSI v th n v d liu m cc trm trao i vi nhau l cc khung (frame). Cu trc khung Ethernet nh sau:

Hnh 2-17: Cu trc khung tin Ethernet

Cc trng quan trng trong phn mo u s c m t di y: preamble: trng ny nh du s xut hin ca khung bit, n lun mang gi tr 10101010. T nhm bit ny, pha nhn c th to ra xung ng h 10 Mhz. SFD (start frame delimiter): trng ny mi thc s xc nh s bt u ca 1 khung. N lun mang gi tr 10101011. Cc trng Destination v Source: mang a ch vt l ca cc trm nhn v gi khung, xc nh khung c gi t u v s c gi ti u. LEN: gi tr ca trng ni ln ln ca phn d liu m khung mang theo. FCS mang CRC (cyclic redundancy checksum): pha gi s tnh ton trng ny trc khi truyn khung. Pha nhn tnh ton li CRC ny theo

59

cch tng t. Nu hai kt qu trng nhau, khung c xem l nhn ng, ngc li khung coi nh l li v b loi b. 2.2.2.2 Cu trc a ch Ethernet Mi giao tip mng Ethernet c nh danh duy nht bi 48 bit a ch (6 octet). y l a ch c n nh khi sn xut thit b, gi l a ch MAC ( Media Access Control Address ). a ch MAC c biu din bi cc ch s hexa ( h c s 16 ). V d : 00:60:97:8F:4F:86 hoc 00-60-97-8F-4F-86. Khun dng a ch MAC c chia lm 2 phn: 3 octet u xc nh hng sn xut, chu s qun l ca t chc IEEE. 3 octet sau do nh sn xut n nh. Kt hp ta s c mt a ch MAC duy nht cho mt giao tip mng Ethernet. a ch MAC c s dng lm a ch ngun v a ch ch trong khung Ethernet. 2.2.2.3 Cc loi khung Ethernet Cc khung unicast Gi s trm 1 cn truyn khung ti trm 2 (trn hnh v ...)

Khung Ethernet do trm 1 to ra c a ch: MAC ngun: 00-60-08-93-DB-C1 MAC ch: 00-60-08-93-AB-12 y l khung unicast. Khung ny c truyn ti mt trm xc nh. + Tt c cc trm trong phn on mng trn s u nhn c khung ny nhng: + Ch c trm 2 thy a ch MAC ch ca khung trng vi a ch MAC ca giao tip mng ca mnh nn tip tc x l cc thng tin khc trong khung.

60

+ Cc trm khc sau khi so snh a ch s b qua khng tip tc x l khung na. Cc khung broadcast Cc khung broadcast c a ch MAC ch l FF-FF-FF-FF-FF-FF ( 48 bit 1). Khi nhn c cc khung ny, mc d khng trng vi a ch MAC ca giao tip mng ca mnh nhng cc trm u phi nhn khung v tip tc x l. Giao thc ARP s dng cc khung broadcast ny tm a ch MAC tng ng vi mt a ch IP cho trc. Mt s giao thc nh tuyn cng s dng cc khung broadcast cc router trao i bng nh tuyn. Cc khung multicast Trm ngun gi khung ti mt s trm nht nh ch khng phi l tt c. a ch MAC ch ca khung l a ch c bit m ch cc trm trong cng nhm mi chp nhn cc khung gi ti a ch ny. Note: a ch MAC ngun ca khung lun l a ch MAC ca giao tip mng to ra khung. Trong khi a ch MAC ch ca khung th ph thuc vo mt trong ba loi khung nu trn. 2.2.2.4 Hot ng ca Ethernet Phng thc iu khin truy nhp CSMA/CD quy nh hot ng ca h thng Ethernet. Mt s khi nim c bn lin quan n qu trnh truyn khung Ethernet: Khi tn hiu ang c truyn trn knh truyn, knh truyn lc ny bn v ta gi trng thi ny l c sng mang carrier. Khi ng truyn ri: khng c sng mang absence carrier. Nu hai trm cng truyn khung ng thi th chng s pht hin ra s xung t v phi thc hin li qu trnh truyn khung. Khong thi gian mt giao tip mng khi phc li sau mi ln nhn khung c gi l khong trng lin khung ( interframe gap) k hiu IFG. Gi tr ca IFG bng 96 ln thi gian ca mt bit. Ethernet 10Mb/s: IFG = 9,6 us Ethernet 100Mb/s: IFG = 960 ns Ethernet 1000Mb/s: IFG = 96 ns Cch thc truyn khung v pht hin xung t din ra nh sau:

61

+ 1. Khi pht hin ng truyn ri, my trm s i thm mt khong thi gian bng IFG, sau n thc hin ngay vic truyn khung. Nu truyn nhiu khung th gia cc khung phi cch nhau khong IFG. + 2. Trong trng hp ng truyn bn, my trm s tip tc lng nghe ng truyn cho n khi ng truyn ri th thc hin li 1. + 3. Trng hp khi qu trnh truyn khung ang din ra th my trm pht hin thy s xung t, my trm s phi tip tc truyn 32 bit d liu. Nu s xung t c pht hin ngay khi mi bt u truyn khung th my trm s phi truyn ht trng preamble v thm 32 bit na , vic truyn nt cc bit ny (ta xem nh l cc bit bo hiu tc nghn) m bo tn hiu s tn ti trn ng truyn lu cho php cc trm khc ( trong cc trm gy ra xung t) nhn ra c s xung t v x l : Sau khi truyn ht cc bit bo hiu tc nghn, my trm s i trong mt khong thi gian ngu nhin hy vng sau s khng gp xung t v thc hin li vic truyn khung nh bc 1. Trong ln truyn khung tip theo ny m vn gp xung t, my trm buc phi i thm ln na vi khong thi gian ngu nhin nhng di hn. + 4. Khi mt trm truyn thnh cng 512 bit (khng tnh trng preamble), ta xem nh knh truyn b chim. iu ny cng c ngha l khng th c xung t xy ra na. Khong thi gian ng vi thi gian ca 512 bit c gi l slotTime. y l tham s quan trng quyt nh nhiu ti vic thit k. Do bn cht cng chia s knh truyn, ti mt thi im ch c mt trm c php truyn khung. Cng c nhiu trm trong phn on mng th s xung t cng xy ra nhiu, khi tc truyn b gim xung. S xung t l hin tng xy ra bnh thng trong hot ng ca mng Ethernet ( t xung t d gy hiu nhm l mng b s c hay l hot ng sai, hng hc). Khi nim slotTime

62

Hnh 2-18: Hai trm hai pha xa nht trong mng Ethernet 10Mb/s

Trong v d ny, trm 1 v trm 2 c xem nh hai trm hai pha xa nht ca mng. Trm 1 truyn khung ti trm 2, ngay trc khi khung ny ti trm 2, trm 2 cng quyt nh truyn khung ( v n thy ng truyn ri). mng Ethernet hot ng ng, mi my trm phi pht hin v thng bo s xung t ti trm xa nht trong mng trc khi mt trm ngun hon thnh vic truyn khung. Khung Ethernet kch c nh nht l 512 bit (64 octet), do khong thi gian nh nht pht hin v thng bo xung t l 512 ln thi gian mt bit. Ethernet 10Mb/s : slot Time = 51,2 us Ethernet 100Mb/s : slot Time = 5,12 us Ethernet 1000Mb/s : slot Time = 512 ns Trng hp vi phm thi gian slotTime, mng Ethernet s hot ng khng ng na. Mi ln truyn khung, my trm s lu khung cn truyn trong b m cho n khi n truyn thnh cng. Gi s mng khng p ng ng tham s slotTime. Trm 1 truyn 512 bit thnh cng khng h b xung t, lc ny khung c xem l truyn thnh cng v b xo khi b m. Do s pht hin xung t b tr, trm 1 lc ny mun truyn li khung cng khng c na v khung b xo khi b m ri. Mng s khng hot ng ng. Mt mng Ethernet c thit k ng phi tho mn iu kin sau: Thi gian tr tng cng ln nht truyn khung Ethernet t trm ny ti trm khc trn mng phi nh hn mt na slotTime. Thi gian tr tng cng ni ti y bao gm tr qua cc thnh phn truyn khung: tr truyn tn hiu trn cp ni, tr qua b repeater. Thi gian tr ca tng thnh phn ph thuc vo c tnh ring ca chng. Cc nh sn xut thit b ghi

63

r v khi thit k cn la chn v tnh ton tho mn iu kin hot ng ng ca mng Ethernet.

2.2.3 Cc loi mng Ethernet


IEEE pht trin chun Ethernet trn nhiu cng ngh truyn dn khc nhau v th c nhiu loi mng Ethernet. Mi loi mng c m t da theo ba yu t: tc , phng thc tn hiu s dng v c tnh ng truyn vt l. Cc h thng Ethernet 10Mb/s : 10Base5. y l tiu chun Ethernet u tin, da trn cp ng trc loi dy. Tc t c 10 Mb/s, s dng bng tn c s, chiu di cp ti a cho 1 phn on mng l 500m. 10Base2. C tn khc l thin Ethernet , da trn h thng cp ng trc mng vi tc 10 Mb/s, chiu di cp ti a ca phn on l 185 m (IEEE lm trn thnh 200m). 10BaseT. Ch T l vit tt ca twisted: cp xon cp. 10BaseT hot ng tc 10 Mb/s da trn h thng cp xon cp Cat 3 tr ln. 10BaseF. F l vit tt ca Fiber Optic ( si quang). y l chun Ethernet dng cho si quang hot ng tc 10 Mb/s , ra i nm 1993. Cc h thng Ethernet 100 Mb/s Ethernet cao tc ( Fast Ethernet ) 100BaseT. Chun Ethernet hot ng vi tc 100 Mb/s trn c cp xon cp ln cp si quang. 100BaseX. Ch X ni ln c tnh m ha ng truyn ca h thng ny (s dng phng php m ho 4B/5B ca chun FDDI). Bao gm 2 chun 100BaseFX v 100BaseTX 100BaseFX. Tc 100Mb/s, s dng cp si quang a mode. 100BaseTX. Tc 100Mb/s, s dng cp xon cp. 100BaseT2 v 100BaseT4. Cc chun ny s dng 2 cp v 4 cp cp xon cp Cat 3 tr ln tuy nhin hin nay hai chun ny t c s dng. Cc h thng Giga Ethernet 1000BaseX. Ch X ni ln c tnh m ho ng truyn ( chun ny da trn kiu m ho 8B/10B dng trong h thng kt ni tc cao Fibre Channel c pht trin bi ANSI). Chun 1000BaseX gm 3 loi: 1000Base-SX: tc 1000 Mb/s, s dng si quang vi sng ngn.

64

1000Base-LX: tc 1000 Mb/s, s dng si quang vi sng di. 1000Base-CX: tc 1000 Mb/s, s dng cp ng. 1000BaseT. Hot ng tc Giga bit, bng tn c s trn cp xon cp Cat 5 tr ln. S dng kiu m ho ng truyn ring t c tc cao trn loi cp ny.

2.3 Cc k thut chuyn mch trong LAN.


2.3.1 Phn on mng trong LAN
2.3.1.1 Mc ch ca phn on mng Mc ch l phn chia bng thng hp l p ng nhu cu ca cc ng dng trong mng. ng thi tn dng hiu qu nht bng thng ang c. thc hin tt iu ny cn hiu r khi nim: min xung t ( collition domain ) v min qung b (broadcast domain) Min xung t (cn c gi l min bng thng bandwidth domain) Nh m t trong hot ng ca Ethernet, hin tng xung t xy ra khi hai trm trong cng mt phn on mng ng thi truyn khung. Min xung t c nh ngha l vng mng m trong cc khung pht ra c th gy xung t vi nhau. Cng nhiu trm trong cng mt min xung t th s lm tng s xung t v lm gim tc truyn, v th m min xung t cn c th gi l min bng thng (cc trm trong cng min ny s chia s bng thng ca min). Min qung b (broadcast domain) Min qung b c nh ngha l tp hp cc thit b m trong khi mt thit b pht i mt khung qung b (khung broadcast) th tt c cc thit b cn li u nhn c. Khi s dng cc thit b kt ni khc nhau, ta s phn chia mng thnh cc min xung t v min qung b khc nhau. 2.3.1.2 Phn on mng bng Repeater Thc cht repeater khng phn on mng m ch m rng on mng v mt vt l. Ni chnh xc, repeater cho php m rng min xung t.

65

Hnh 2-19: Kt ni mng Ethernet 10BaseT s dng Hub

H thng 10BaseT s dng hub nh l mt b repeater nhiu cng. Cc my trm cng ni ti mt hub s thuc cng mt min xung t. Gi s 8 trm ni cng mt hub 10BaseT tc 10Mb/s, v ti mt thi im ch c mt trm c truyn khung nn bng thng trung bnh mi trm c c l: 10 Mb/s : 8 trm = 1,25 Mbps / 1 trm. Hnh sau minh ho min xung t v min qung b khi s dng repeater:

Hnh 2-20: Min xung t v min qung b khi phn on mng bng Repeater

66

Mt iu cn ch khi s dng repeater m rng mng, th khong cch xa nht gia 2 my trm s b hn ch. Trong hot ng ca Ethernet, trong cng min xung t, gi tr slotTime s quy nh vic kt ni cc thit b. Vic s dng nhiu repeater lm tng gi tr tr truyn khung vt qu gi tr cho php gy ra hot ng khng ng trong mng.

Hnh 2-21: Lut 5-4-3 quy nh vic s dng Repeater lin kt mng

2.3.1.3 Phn on mng bng cu ni Cu ni hot ng tng 2 trong m hnh OSI, n c kh nng kim tra phn a ch MAC trong khung, v da vo a ch ngun, ch, n s a ra quyt nh y khung ny ti u. Quan trng l qua ta c th lin kt cc min xung t vi nhau trong cng mt min qung b m cc min xung t ny vn c lp vi nhau.

Hnh 2-22: Vic truyn khung tin din ra pha A khng xut hin bn pha B

Khc vi trng hp s dng repeater trn, bng thng lc ny ch b chia s trong tng min xung t, mi my trm c s dng nhiu bng thng hn. Li ch khc ca vic s dng cu l ta c hai min xung t ring bit nn mi min c ring gi tr slotTime do vy c th m rng ti a cho tng min.

67

Hnh 2-23: Min xung t v min qung b khi s dng Bridge

Tuy nhin vic s dng cu cng b gii hn bi quy tc 80/20. Theo quy tc ny, cu ch hot ng hiu qu khi ch c 20 % ti ca phn on i qua cu , 80% l ti trong ni b phn on.

Hnh 2-24: Quy tc 80/20 i vi vic s dng Bridge

Trng hp ngc li vi quy tc ny, hai phn on kt ni bi cu c th xem nh cng mt phn on mng, khng c li g v bng thng. 2.3.1.4 Phn on mng bng router Router hot ng tng 3 trong m hnh OSI, n c kh nng kim tra header ca gi IP nn a ra quyt nh. n v d liu m cc b nh tuyn thao tc l cc gi IP (cc b chuyn mch v cu ni thao tc vi cc khung tin).

68

B nh tuyn ng thi to ra cc min xung t v min qung b ring bit.

Hnh 2-25: Phn on mng bng Router

2.3.1.5 Phn on mng bng b chuyn mch B chuyn mch l mt thit b phc tp nhiu cng cho php cu hnh theo nhiu cch khc nhau. C th cu hnh n tr thnh nhiu cu o nh sau:

Hnh 2-26: C th cu hnh b chuyn mch thnh nhiu cu o

69

Bng tng kt thc hin phn on mng bng cc thit b kt ni khc nhau: Thit b Repeater Bridge Router Switch Min xung t Mt Nhiu Nhiu Nhiu Min qung b Mt Mt Nhiu Mt hoc nhiu

2.3.2 Cc ch chuyn mch trong LAN


Nh phn trn trnh by, b chuyn mch cung cp kh nng tng t nh cu ni, nhng c kh nng thch ng tt hn trong trng hp phi m rng quy m, cng nh trong trng hp phi ci thin hiu sut vn hnh ca ton mng. B chuyn kt ni nhiu on mng hoc thit b thc hin chc nng ca n bng cch xy dng v duy tr mt c s d liu lu danh sch cc cng v cc phn on mng kt ni ti. Khi mt khung tin gi ti, b chuyn mch s kim tra a ch ch c trong khung tin, sau tm s cng tng ng trong c s d liu gi khung tin ti ng cng. Cch thc nhn v chuyn khung tin cho ta hai ch chuyn mch: - Chuyn mch lu-v-chuyn ( store- and- forward switching ) - Chuyn mch ngay (cut-through switching) 2.3.2.1 Chuyn mch lu-v-chuyn ( store- and- forward switching ) Cc b chuyn mch lu v chuyn hot ng nh cu ni. Trc ht, khi c khung tin gi ti, b chuyn mch s nhn ton b khung tin, kim tra tnh ton vn d liu ca khung tin, sau mi chuyn tip khung tin ti cng cn chuyn. Khung tin trc ht phi c lu li kim tra tnh ton vn do s c mt tr nht nh t khi d liu c nhn ti khi d liu c chuyn i. Vi ch chuyn mch ny, cc khung tin m bo tnh ton vn mi c chuyn mch, cc khung tin li s khng c chuyn t phn on mng ny sang phn on mng khc. 2.3.2.2 Chuyn mch ngay (cut-through switching) Cc b chuyn mch ngay hot ng nhanh hn so vi cc b chuyn mch luv-chuyn. B chuyn mch c a ch ch phn u khung tin ri chuyn ngay khung tin ti cng tng ng m khng cn kim tra tnh ton vn.

70

Khung tin c chuyn ngay thm ch trc khi b chuyn mch nhn dng bit d liu. Khung tin i ra khi b chuyn mch trc khi n c nhn . Cc b chuyn mch i mi c kh nng gim st cc cng ca n v quyt nh s s dng phng php no thch hp nht. Chng c th t ng chuyn t phng php chuyn ngay sang phng php lu-v-chuyn nu s li trn cng vt qu mt ngng xc nh.

2.3.3 Mng LAN o (VLAN)


Nh trong phn phn on mng trnh by, cu ni v b chuyn mch c th tch mi cng ca chng l mt min xung t ring nhng tt c u thuc cng mt min qung b. Cch duy nht chia tch cc min qung b khc nhau l s dng cc b nh tuyn.

Hnh 2-27: Mng LAN o theo chc nng cc phng ban

Tuy nhin trong phn ny chng ta ni ti kh nng khc ca cc b chuyn mch hin i, chng c th lc cc khung tin qung b v ch gi chng ti min qung b xc nh. S dng cc b chuyn mch kt hp cc thit b thnh cc vng qung b logic s to ra cc mng LAN o (VLAN). 2.3.3.1 To mng LAN o vi mt b chuyn mch Mi mng LAN o v cc thnh vin ca n c xc nh bi mt nhm cc cng trn b chuyn mch. Mi cng ca b chuyn mch thuc v mt mng LAN o no , do cc thit b gn vi cng ny s thuc v mng LAN o ny. Cc khung tin qung b ch c pht ti cc cng thuc cng mt mng LAN o. Mt thit b c th chuyn t LAN o sang LAN o khc bng cch kt ni ti cng khc ca b chuyn mch. Mt thit b khi thay i v tr a l vn thuc v LAN o c nu n vn duy tr kt ni ti mt trong cc cng thuc v LAN o ny.

71

2.3.3.2 To mng LAN o vi nhiu b chuyn mch Trong thc t, vic s dng nhiu b chuyn mch xy dng cc mng LAN o c thc hin nhiu hn.

Hnh 2-28: Cu hnh cc b chuyn mch to thnh cc min qung b cho cc mng LAN o

thc hin mng LAN o bng nhiu b chuyn mch, mt s nh danh c bit VLAN ID c gn cho cc khung tin, s ny xc nh mng LAN o m khung tin cn chuyn ti. Gi s mt my trm A gi khung tin ti my trm B thuc cng LAN o vi mnh (nhng khng cng thuc mt b chuyn mch). B chuyn mch m my A ni trc tip ti s gn thm vo khung tin ch s VLAN ID v chuyn n ti b chuyn mch k tip. Mi b chuyn mch s s dng VLAN ID nh tuyn khung tin, n s c VLAN ID v chuyn tip khung tin cho b chuyn mch thch hp. Khi khung tin ti b chuyn mch cui cng, b chuyn mch ny nhn ra ch ti ni trc tip ti mt trong cc cng ca mnh. N s loi b phn u cha ch s VLAN ID ri gi khung ti ng cng. Khung tin khi ti trm ch s c khi phc nguyn dng ban u. 2.3.3.3 Cch xy dng mng LAN o to ra mng LAN o, cn phi xc nh nhm logic. Nhm cc my tnh (thit b) trong mng LAN o thng c t chc theo hai m hnh: M hnh nhm lm vic.

72

Theo m hnh ny, cc thnh vin trong mng LAN o l cc my tnh cng thc hin mt chc nng, ngi s dng trong cng mt nhm cng vic. Cc mng LAN o thng c chia theo cc phng ban, v d Phng k ton, phng Bn hng, Phng nghin cu... Cc ti nguyn khc chung ca mng s thuc v mt hoc nhiu mng LAN o. M hnh dch v. Theo m hnh ny, cc mng LAN o c phn chia theo loi hnh dch v c th. V d, tt c cc my tnh cn truy nhp ti dch v c th no s l thnh vin ca cng mt mng LAN o. Cc my tnh c th l thnh vin ca nhiu mng LAN o khc nhau tu thuc vo cc dch v m n cn truy nhp ti. 2.3.3.4 u im v nhc im ca mng LAN o u im: C th to ra mng LAN o, to ra cc nhm lm vic khng ph thuc vo v tr ca thit b, chng hn, nhng ngi thuc cng nhm nghin cu khng cn ngi cng mt phng hay cng mt tng trong to nh m vn l cc thnh vin trong mt mng LAN o. C th d dng di chuyn thit b t mng LAN o ny sang mng LAN o khc. Mng LAN o cho php kim sot kim sot cc min qung b v kim sot tnh bo mt. u im khc l bng vic s dng cc b chuyn mch thay cho cc b nh tuyn, hiu nng lm vic t c cao hn, gi thnh r hn, kh nng qun tr tt hn. Nhc im: Hin nay, chun chnh thc cho VLAN ( U ban IEEE 802.1q ang son tho) cha c ph chun mc d chun ny c h tr bi nhiu nh cung cp. Do cc thit lp v cu hnh VLAN ph thuc vo nh sn xut thit b.

73

2.4 Thit k mng LAN.


2.4.1 M hnh c bn.
2.4.1.1 M hnh phn cp (Hierarchical models)

Hnh 2-29: M hnh phn cp

Cu trc Lp li (Core Layer): y l trc xng sng ca mng(backbone) thng dng cc b chuyn mch c tc cao(high-speed switching), thng c cc c tnh nh tin cy cao, c cng sut d tha, c kh nng t khc phc li, c kh nng thch nghi cao, p ng nhanh, d qun l, c kh nng lc gi, hay lc cc tin trnh ang truyn trong mng. Lp phn tn (Distribution Layer) Lp phn tn l gianh gii gia lp truy nhp v lp li ca mng. lp phn tn thc hin cc chc nng nh m bo gi d liu n tng phn on mng, m bo an ninh-an ton, phn on mng theo nhm cng tc, chia min Broadcast/multicast, nh tuyn gia cc LAN o (VLAN), chuyn mi trng truyn dn, nh tuyn gia cc min, to bin gii gia cc min trong nh tuyn tnh v ng, thc hin cc b lc gi(theo a ch, theo s hiu cng,...), thc hin cc c ch m bo cht lng dch v QoS. Lp truy nhp(Access Layer) Lp truy nhp cung cp cc kh nng truy nhp cho ngi dng cc b hay t xa truy nhp vo mng. Thng c thc hin bng cc b chuyn mch(switch) trong mi trng campus, hay cc cng ngh WAN.

74

nh gi m hnh Gi thnh thp d ci t d m rng d c lp li. 2.4.1.2 M hnh an ninh-an ton(Secure models). H thng tng la 3 phn (Three-Part Firewall System), c bit quan trng trong thit k WAN, chng ti s trnh by trong chng 3. y, chng ti ch nu mt s kha cnh chung nht cu trc ca m hnh s dng trong thit k mng LAN.

Hnh 2-30: M hnh tng la 3 phn

LAN c lp lm vng m gia mng cng tc vi mng bn ngoi(LAN c lp c gi l khu phi qun s hay vng DMZ) Thit b nh tuyn trong c ci t b lc gi c t gia DMZ v mng cng tc. Thit b nh tuyn ngoi c ci t b lc gi c t gia DMZ v mng ngoi.

2.4.2 Cc yu cu thit k
Cc yu cu thit k ca LAN v mt cu trc cng tng t nh thit k WAN, y chng ti ch nu mc bao gm cc yu cu: Yu cu k thut. Yu cu v hiu nng.

75

Yu cu v ng dng. Yu cu v qun l mng. Yu cu v an ninh-an ton mng. Yu cu rng buc v ti chnh, thi gian thc hin, yu cu v chnh tr ca d n, xc nh ngun nhn lc, xc nh cc ti nguyn c v c th ti s dng.

2.4.3 Cc bc thit k.
Phn tch yu cu S lng nt mng (rt ln trn 1000 nt, va trn 100 nt v nh di 10 nt). Trn c s s lng nt mng, chng ta c phng thc phn cp, chn k thut chuyn mch, v chn thit b chuyn mch. Da vo m hnh phng ban phn on vt l m bo hai yu cu an ninh v m bo cht lng dch v. Da vo m hnh topo la chn cng ngh i cp. D bo cc yu cu m rng. La chn phn cng (thit b, cp, cng ngh kt ni,...) Da trn cc phn tch yu cu v kinh ph d kin cho vic trin khai, chng ta s la chn nh cung cp thit b tt nht nh l Cisco, Nortel, 3COM, Intel ... La chn phn mm La chn h iu hnh Unix (AIX, OSF, HP, Solaris, ...), Linux , Windows da trn yu cu v x l s lng giao dch, p ng thi gian thc, kinh ph, an ninh an ton. La chn cc cng c pht trin phn mm ng dng nh cc phn mm qun tr c s d liu (Oracle, Informix, SQL, Lotusnote, ...), cc phn mm portal nh Websphere, ... La chn cc phn mm mng nh th in t ( Sendmail, PostOffice, Netscape, ...), Web server ( Apache, IIS, ...), La chn cc phn mm m bo an ninh an ton mng nh phn mm tng la (PIX, Checkpoint, Netfilter, ...), phn mm chng virut ( VirusWall, NAV, ...), phn mm chng t nhp v phn mm qut l hng an ninh trn mng. nh gi kh nng

76

Da vo thng tin c xc minh ca cc hng c uy tn trn th gii. Thc hin th nghim v kim tra trong phng th nghim ca cc chuyn gia. nh gi trn m hnh th nghim. Tnh ton gi thnh Gi thnh thp m bo cc ch tiu k thut, cc yu cu ca ng dng, tnh kh m ca h thng. Trin khai pilot. Trin khai quy m nh nhng vn minh ha c ton b cc yu cu v k thut, yu cu v ng dng lm c s cho vic nh gi kh nng v gi thnh ca mng trc khi trin khai trn din rng.

2.5 Mt s mng LAN mu.


2.5.1 Xy dng mng LAN quy m mt to nh
Xy dng LAN trong ta nh iu hnh khng ln, phc v cho cng tc nghin cu v ging dy. 2.5.1.1 H thng mng bao gm: H thng cc thit b chuyn mch (switch, switch c chc nng nh tuyn layer 3 switch) cung cp nn tng mng cho cc my tnh c th trao i thng tin vi nhau. Do ton b phn mng xy dng tp trung trong 1 to nh nn h thng cp truyn dn s s dng bao gm cc cp ng tiu chun UTP CAT5 v cp quang a mode. Cng ngh mng cc b s s dng l Ethernet/ FastEthernet/GigabitEthernet tng ng tc 10/100/100Mbps chy trn cp UTP hoc cp quang. Cc my ch dch v nh c s d liu qun l, ging dy, truyn thng Cc my tnh phc v cho cng tc nghin cu khoa hc : Cung cp cc thng tin cho sinh vin, gio vin, v cung cp cng c lm vic cho cc cn b ging dy, cc b mn, khoa. Cc my tnh phc v ring cho cng tc qun l hnh chnh nhm thc hin mc tiu tin hc ho qun l hnh chnh.

77

2.5.1.2 Phn tch yu cu: Mng my tnh ny l LAN Campus Network c bng thng rng khai thc hiu qu cc ng dng, c s d liu c trng ca t chc cng nh p ng kh nng chy cc ng dng a phng tin (hnh nh, m thanh) phc v cho cng tc ging dy t xa. Nh vy, mng ny s c xy dng trn nn tng cng ngh truyn dn tc cao Ethernet/FastEthernet/GigabitEthernet v h thng cp mng xon UTP CAT5 v cp quang a mode. Mng cn c n nh cao v kh nng d phng m bo cht lng cho vic truy cp cc ng dng d liu quan trng cng nh o to t xa : hnh nh, m thanh... Nh vy, h thng cp mng phi c kh nng d phng 1:1 cho cc kt ni switch-switch cng nh m bo kh nng sa cha, cch ly s c d dng. Mng c kh nng cung cp vic ging dy t xa trong phm vi t chc nn cc ng dng phi p ng thi gian thc. H thng cp mng cn c thit k m bo p ng cc yu cu v kt ni tc cao v kh nng d phng cng nh m rng ln cc cng ngh mi. Mng cn m bo an ninh an ton cho ton b cc thit b ni b trc cc truy nhp tri php mng ngoi cng nh t cc truy nhp gin tip c mc ch ph hoi h thng nn cn c tng la. LAN ny c cu thnh bi cc switch chuyn mch tc cao hn ch ti thiu xung t d liu truyn ti (non-blocking). Cc switch c kh nng to cc LAN o phn on mng thnh cc phn nh hn cho tng phng ban. LAN o l cng ngh dng trong mng ni b cho php s dng cng mt nn tng mng ni b vt l bao gm nhiu switch c phn chia v mt logic theo cc cng trn switch thnh cc phn mng nh khc nhau v c lp hot ng. Nh vy, ngay trong mng LAN ti to nh iu hnh ta c th thc hin phn chia thnh cc phn mng nh hn na cho cc khoa, phng banMy tnh trong 1 phn mng chia nh thuc v mt broadcasting domain v cc phn mng ny phi lin h vi nhau qua b nh tuyn router. Ngoi ra, mng iu hnh cng p dng cng ngh nh tuyn mi khin vic lin kt gia cc phn mng LAN ca cc vn phng, khoa c th thc hin bng nhng lin kt tc cao trong cc switch c

78

tnh nng nh tuyn (Layer 3) thay cho m hnh nh tuyn truyn thng s dng b nh tuyn router Vic phn chia cc phn mng LAN o cho php cc Phng ban t chc c cc phn mng my tnh c lp tin cho vic pht trin cc ng dng ni b cng nh tng cng tnh bo mt gia cc phn mng my tnh ca cc phng ban khc nhau. Tuy nhin, LAN o cng cho php qun l tp trung ton b h thng mng my tnh nht l h thng my ch thay v pht trin rt nhiu phn mng mt cch ring r. iu ny to ra mi trng lm vic tp trung cho ngi qun tr cng nh ct gim cc chi ph do tp hp c cc thit b mng li v my ch dich v hot ng 24/24 vo mt s phng c iu kin h tng y (in ngun n nh, iu ho hot ng tt) thay v nm ri rc trn cc phng ban khc nhau. Cng ngh mng LAN o gii quyt ng thi c hai bi ton v qun tr tp trung v ring r cho mng my tnh ca t chc. Mng m bo kh nng nh tuyn trao i thng tin gia cc phn mng LAN o khc nhau, cho php cc phn mng khc nhau c th kt ni n nhau thng qua mi trng mng dng chung. Tuy nhin, do phn cch cc mng LAN bng switch c tnh nng nh tuyn (hay cn gi l switch c chc nng Layer 3) nn cc gi tin broadcasting trn ton mng c hn ch it i v lm cho bng thng ca mng dc s dng hiu qu hn so vi trng hp ton b mng ca Trng xy dng thnh mt mng LAN khng phn cp (flat network). Ngoi ra, khi s dng chc nng nh tuyn cho php ngi qun tr mng c php nh ngha cc lut hn ch hay cho php cc phn mng c kt ni vi nhau bng cc b lc (access-list) tng cng tnh bo mt cho cc phn mng quan trng cng nh kh nng qun tr h thng d dng hn. 2.5.1.3 Thit k h thng H thng chuyn mch v nh tuyn trung tm cho LAN H thng chuyn mch chnh bao gm cc switch c kh nng x l tc cao c cu trc phn thnh 2 lp l lp phn tn (distribution) v lp cung cp truy nhp (access) cho cc u cui my tnh. Switch phn tn l switch tc cao, bng thng ln c kh nng x l n hng trm triu bt/giy. Switch phn phi cn c c chc nng nh tuyn cho cc phn

79

mng LAN o khc nhau thit lp trn mng v tng cng bo mt cho cc phn mng ring r. Switch truy cp lm nhim v cung cp cng truy nhp cho cc u cui my tnh v tch hp cng truy cp vi mt cao. Cc kt ni gia switch truy cp v switch phn phi l cc kt ni truyn ti d liu qua li cho cc LAN o nn phi c tc cao 100/1000Mbps. Cc switch truy cp cung cp cc cng truy cp cho my tnh mng c tc thp hn nn cn c cng 10/100Mbps H thng switch phn phi theo cu hnh chun s bao gm 2 switch c cu hnh mnh p ng c nhu cu chuyn mch d liu tc cao v tp trung l lng n t cc access switch. Switch phn phi cng m nhn chc nng nh tuyn. Cu hnh 2 switch phn phi cho php mng li c d phng cao (d phng nng 1:1) tuy nhin trong trng hp quy m mng ban u khng ln v kinh ph hn ch vn c th trin khai mng vi 1 switch phn phi p ng c yu cu hot ng. T chc hon ton c kh nng nng cp ln 2 switch phn phi trong tng lai do thit k mng cp m bo yu cu trn. H thng cc switch truy cp cung cp cho cc my tnh ng kt ni vo mng d liu. Do phn ln cc giao tip mng cho my tnh u cui cng nh server hin ti c bng thng 10/100Mbps nn cc switch truy cp cng s dng cng ngh 10/100 BaseTX FastEthernet v p ng c mc tiu cung cp s lng cng truy nhp ln cho php m rng s lng ngi truy cp mng trong tng lai. Cc switch truy cp s kt ni vi switch phn phi tp trung lu lng v thng qua switch phn phi vi lm tc v tp trung v lu chuyn qua li lu lng d liu s gip cho cc my tnh nm trn cc switch khc nhau c th lin lc c vi nhau. Cc ng kt ni gia switch truy cp v switch phn phi cn c gi l cc kt ni ln (up-link) v s dng cng ngh FastEthernet 100 BaseTX c bng thng 100Mbps. Trong tng lai, khi cn nng cp cc kt ni uplink th c th s dng thay th cng ngh 1000BaseT vi tc Gigabit

80

Hnh 2-31: M hnh thit k

Trong cu hnh v mng my tnh cc b to nh iu hnh c 1 switch phn phi c chc nng nh tuyn (layer 3 switch). Switch ny c tc dng chuyn lu lng qua li gia cc switch truy cp v mt nhim v rt quan trng l nh tuyn gia cc LAN o. Bt k mt switch truy cp no c kt ni n switch phn phi bng ng kt ni uplink 100Mbps v kt ni ny m bo cung cp bng thng cho ton b cc my tnh kt ni n switch truy cp. Switch phn phi s dng y l thit b c nhiu cng truy nhp 100Mbps . Cc switch truy cp cung cp 24 cng 10/100 Mbps m bo bng thng ny cho tng my trm. Ton b ton nh s c 14 switch truy cp cung cp s cng ti a cho khong 336 my tnh . Nu s lng my tnh trong ton b ton nh pht trin ln, cc switch truy cp c th cm xp trng cung cp s lng cng truy cp nhiu hn hoc cc phng ban c th cm switch m rng cung cp

81

thm s cng truy nhp. Tuy nhin, vic cm thm switch m rng cn tun th nguyn tc v vic xy dng mng trnh tnh trng cm thit b mng (HUB, switch) m rng trn lan v lm gim ng k t truy cp cc my tnh ca phn mng xa khi tp trung nhiu lu lng ti nng vo 1 switch truy cp v lm qu ti bng thng uplink t switch ln switch phn phi. Cc switch truy cp c chia ra thnh hai nhm (gi l closet) vi mi nhm 07 switch c t ti 2 phng bao gm 1 phng thng tin v 1 phng Trung tm iu hnh mng trn tng 3. Trung tm iu hnh mng cng l ni t cc my ch ni b v switch phn phi. T cc phng ny c cc phin u cp UTP v cp c a n cc my tnh t ri rc trn nhiu phng. Mi mt nhm switch do cung cp truy cp cho mt na ca to nh .Thit k ny cho php cc switch truy cp cung cp c s cng cho cc thit b my tnh ca cc khoa, phng ban tho mn iu kin dy cp t mi my tnh ti switch khng vt qu 100m, y l gii hn di vt l khi s dng cp mng xon UTP CAT5 hoc CAT5 vi cng ngh 10/100FastEthernet. Mi mt switch truy cp c 1 ng kt ni uplink ln switch. Khi xy dng cc mng LAN o, k thut cho php gn 1 cng trn mt switch bt k vo mt phn mng LAN ring r. Khi , mc d s dng chung mt h thng switch, ch c cc my tnh trong cng mt phn mng LAN mi c th nhn c cc gi tin gi qua li cho nhau. C c iu l do switch s kim tra thng tin v phn mng LAN vi mi mt khung tin v ch gi n cc my tnh trong cng phn mng. Cc kt ni uplink s l cc kt ni trunking cho php mi thng tin LAN o c i qua. Chnh v ch s dng trong 1 mi trng mng vt l nn cc phn mng LAN phn chia logic nh y goi l cc LAN o. Trong hnh v trn c miu t hot ng ca cc phn mng LAN o. V d : thng tin gia cc my tnh trong phn mng LAN 1 s khng c nhn bi cc my tnh trong phn mng LAN 2 hoc phn mng my ch ni b. Nu mun i t phn mng LAN 1 sang phn mng LAN 2 cn i qua b nh tuyn ca switch phn phi. Tng t vn vi vic trao i thng tin gia mng LAN 1 vi mng my ch dch v.

82

Mng my ch dch v ni b tch ri trong mt phn mng LAN cho php bo mt tt hn v qun tr tp trung. V d : Khi c mt phng ban no khng cn truy nhp n my ch dch v ni b th switch phn phi s ngn cn khng cho lin lc gia phn mng LAN vi phn mng LAN dnh cho cc my ch ni b v ngi qun tr c kh nng cho php hot ng qua li gia cc LAN hoc sit cht an ninh, hn ch truy cp vi cc phn mng quan trng. Nh cc u th v cng ngh gip gim bt gnh nng qun tr ca ngi qun tr mng v to ra c c hi pht trin mnh mng li. Trong trng hp cc khoa, phng, ban cn pht trin ng dng c th cho ni b khoa mnh cng c th t my ch tp trung ti Trung tm iu hnh mng v s dng cng ngh mng LAN o nh ngha my ch kt ni trong phn mng nh dnh cho khoa, phng, ban . Nh th s m bo qun l thit b chung nhng vn mm do trong vic phn chia cp qun tr mt cch tng i c lp v ring r. C th xy dng mt phn mng trung tm my tnh ti khu my ch trung tm to iu kin thun li cho cc cn b, gio vin c thit b my tnh thc hin truy cp mng ly thng tin trong trng hp cn thit. Khi mng pht trin, tng cng tin cy ca mng li v m rng nng lc mng, s s dng 2 switch phn phi v mi switch truy cp c kt ni n 02 switch phn phi bng 02 ng uplink. Cc switch phn phi cng s c kt ni vi nhau theo mt th tc cho php thay th ln nhau hot ng ca chc nng nh tuyn trn cc switch. H thng cp H thng cp c chia thnh 02 phn. Mi phn ph trch cung cp truy nhp cho cc my tnh nm trong mt na to nh. Do cc switch trong mt closet t cng vi switch phn phi ti Trung tm iu hnh mng tng 3 v cc switch trong closet cn li t trong 1 phng t thit b trn cng tng 3 nn cc cp ni uplink t cc switch trong closet th hai sang switch phn phi s dng cp UTP 25 i. Cc cp uplink t cc switch trong closet 1 do nm cng vi switch phn phi s l cp nhy 4 i. Ti cc phng t cc thit b switch s c cc patch panel AMP vi 24 cng RJ-45/1 patch panel tp trung u ni cho cp mng.

83

Cp UTP ni gia my tnh v switch truy cp l cp 4 i ko thng t cc patch panel AMP ti mt trong 2 phng t thit b switch n cc outlet ring r t gn trn tng phng gn ni t cc my tnh ca ngi s dng. Do dy cp c 4 i nn c th s dng 2 i tha lm dy d phng. Qun l v cp pht a ch IP Mng my tnh th vin l mng my tnh dng ring, do vy s c nh a ch IP trong di a ch IP dng cho mng dng ring quy nh ti RFC1918 (Bao gm cc a ch t 10.0.0.0 n 10.255.255.255, 172.16.0.0 n 172.31.255.255 v a ch 192.168.0.0 n 192.168.255.255). S lng my tnh cho 1 segment mng ng nht c tnh bng mt phn 4 s lng my tnh d tnh s c trong ton nh (Khong vi chc my tnh). Nh vy, c th gn cho 2 segment my tnh bng cc phn lp class C a ch IP t class C 192.168.0.0 n 192.168.255.0 H thng cc my ch s nm trong phn mng ring v c a ch IP gn trong phn lp a ch 172.18.0.0. c th truy cp ra Internet, mt s cc my ch cn c tnh nng che du a ch nh Firewall hay Proxy v cc my ch ny cn c a ch IP tht. Cc my tnh bn trong mng s dng a ch ca cc my ch khi kt ni ra Internet . Nu cc my ch cn cung cp thng tin cho ngi dng Internet th cn phi nh li a ch IP cho cc my ch ny l a ch do IANA cung cp. kt ni vi cc phn mng my tnh ca trng v mng quc gia, cn tun th mt qui nh nh a ch cht ch khi s dng trng vng a ch mng dng ring. C th s dng cc k thut chuyn i a ch NAT trnh xung t a ch khi kt ni 2 mng. thun tin cho cng vic qun tr h thng, cc thit b switch vi kh nng h tr DHCP v cng vi vic thit lp my ch DHCP, cc my tnh trm trong ta nh s c cp pht a ch IP mt cch t ng v tin cy.

2.5.2 Xy dng h thng tng la kt ni mng vi Internet


Tip theo, chng ta m rng quy m mng LAN cho nhiu to nh trong khun vin ca mt t chc, mt trng. Mng my tnh cc b s c kt ni vi phn mng truy cp Internet thng qua Firewall. Firewall s lm nhim v ngn chn v bo mt cc my tnh thuc phn mng ni b vi mng Internet pha bn ngoi. Nh vy mt giao tip mng ca firewall s kt ni vi phn mng bn trong v 1 giao tip mng s kt ni vi phn mng Internet cng cng.

84

Hnh 2-32: M hnh tng la kt ni mng LAN vi Internet

2.6 Tm tt chng 2
Chng ny trnh by kin thc v LAN bao gm: Kin trc mng: Cu trc tp Phng php truy nhp Phn h tng LAN: Cc thit b kt ni mng, h thng cp ni. Tp trung ch yu vo cng ngh mng Ethernet, l cng ngh c dng ph bin hin nay v trong tng lai gn. Cng ngh Ethernet: Nguyn l hot ng v cc c tnh quan trng ca Ethernet K thut chuyn mch LAN Phn cui ca chng trnh by phng php thit k mng LAN s dng cng ngh Ethernet. Thit k mng LAN: M hnh thit k c bn Cc bc phn tch v thit k Minh ho trong m hnh thc t.

85

3 Chng III Mng WAN v thit k mng WAN


3.1 Cc kin thc c bn v WAN.
3.1.1 Khi nim v WAN
3.1.1.1 Mng WAN l g ? Wide Area Networks WAN, l mng c thit lp lin kt cc my tnh ca hai hay nhiu khu vc khc nhau, khong cch xa v mt a l, nh gia cc qun trong mt thnh ph, hay gia cc thnh ph hay cc min trong nc. c tnh ny ch c tnh cht c l, n cng tr nn kh xc nh vi vic pht trin mnh ca cc cng ngh truyn dn khng ph thuc vo khong cch. Tuy nhin vic kt ni vi khong cch a l xa buc WAN ph thuc vo nhiu yu t nh: gii thng v chi ph cho gii thng, ch qun ca mng, ng i ca thng tin trn mng. WAN c th kt ni thnh mng ring ca mt t chc, hay c th phi kt ni qua nhiu h tng mng cng cng v ca cc cng ty vin thng khc nhau. WAN c th dng ng truyn c gii thng thay i trong khong rt ln t 56Kbps n T1 vi 1.544 Mbps hay E1 vi 2.048 Mbps,....v n Giga bt-Gbps l cc ng trc ni cc quc gia hay chu lc. y bps (Bit Per Second) l mt n v trong truyn thng tng ng vi 1 bit c truyn trong mt giy, v d nh tc ng truyn l 1 Mbps tc l c th truyn ti a 1 Megabit trong 1 giy trn ng truyn ). Do s phc tp trong vic xy dng, qun l, duy tr cc ng truyn dn nn khi xy dng mng din rng WAN ngi ta thng s dng cc ng truyn c thu t h tng vin thng cng cng, v t cc cng ty vin thng hay cc nh cung cp dch v truyn s liu. Ty theo cu trc ca mng nhng ng truyn thuc c quan qun l khc nhau nh cc nh cung cp ng truyn ni ht, lin tnh, lin quc gia, chng hn Vit Nam l cng ty Vin thng lin tnh VTN, cng ty vin thng quc t - VTI . Cc ng truyn phi tun th cc quy nh ca chnh ph cc khu vc c ng dy i qua nh: tc , vic m ha. Vi WAN ng i ca thng tin c th rt phc tp do vic s dng cc dch v truyn d liu khc nhau, ca cc nh cung cp dch v khc nhau. Trong qu trnh hot ng cc im nt c th thay i ng i ca cc thng tin khi pht hin ra c trc trc trn ng truyn hay khi pht hin c qu nhiu thng tin cn truyn

86

gia hai im nt no . Trn WAN thng tin c th c cc con ng i khc nhau, iu cho php c th s dng ti a cc nng lc ca ng truyn v nng cao iu kin an ton trong truyn d liu. Phn ln cc WAN hin nay c pht trin cho vic truyn ng thi trn ng truyn nhiu dng thng tin khc nhau nh: video, ting ni, d liu...nhm lm gim chi ph dch v. Cc cng ngh kt ni WAN thng lin quan n 3 tng u ca m hnh ISO 7 tng. l tng vt l lin quan n cc chun giao tip WAN, tng data link lin quan n cc giao thc truyn thng ca WAN, v mt s giao thc WAN lin quan n tng mng. Cc quan h ny c m t trong hnh 3.1

Hnh 3-1: Cc chun v giao thc WAN trong m hnh ISO 7 tng

3.1.1.2 Cc li ch v chi ph khi kt ni WAN. X hi cng pht trin, nhu cu trao i thng tin cng i hi vic x l thng tin phi c tin hnh mt cch nhanh chng v chnh xc. S ra i v pht trin khng ngng ca ngnh cng ngh thng tin gp phn quan trng vo s pht trin chung . Vi s ra i my tnh, vic x l thng tin hn bao gi ht tr nn c bit nhanh chng vi hiu sut cao. c bit hn na, ngi ta nhn thy vic thit lp mt h thng mng din rng - WAN v truy cp t xa s lm gia tng gp bi hiu qu cng vic nh vic chia s v trao i thng tin c thc hin mt cch d dng, tc th(thi gian thc). Khi khong cch v mt a l gia cc vng c thu ngn li. Cc giao dch c din ra gn nh tc th, thm ch ta c th tin hnh cc hi ngh vin m, cc ng dng a phng tin...

87

Nh c h thng WAN v cc ng dng trin khai trn , thng tin c chia s v x l bi nhiu my tnh di s gim st ca nhiu ngi m bo tnh chnh xc v hiu qu cao. Phn ln cc c quan, cc t chc, v c cc c nhn u nhn thc c tnh u vit ca x l thng tin trong cng vic thng qua mng my tnh so vi cng vic vn phng da trn giy t truyn thng. Do vy, sm hay mun, cc t chc, c quan u c gng trong kh nng c th, u c gng thit lp mt mng my tnh, c bit l WAN thc hin cc cng vic khc nhau. Vi s pht trin nhanh chng ca cng ngh thng tin, cng ngh vin thng v k thut my tnh, mng WAN v truy cp t xa dn tr thnh mt mi trng lm vic cn bn, gn nh l bt buc khi thc hin yu cu v hi nhp quc t. Trn WAN ngi dng c th trao i, x l d liu truyn thng thun ty song song vi thc hin cc k thut mi, cho php trao i d liu a phng tin nh hnh nh, m thanh, in thoi, hp hi ngh,... qua tng hiu sut cng vic, v lm gim chi ph qun l cng nh chi ph sn xut khc. c bit i vi cc giao dch Khch Phc v(Client Server), h thng kt ni mng din rng t cc LAN ca vn phng trung tm (NOC) ti LAN ca cc chi nhnh(POP) s l h thng trao i thng tin chnh ca c quan hay t chc . N gip tng cng v thay i v cht cng tc qun l v trao i thng tin, tin bc vng chc ti mt nn kinh t in t (e-commerce), chnh ph in t(egoverment) trong tng lai khng xa. 3.1.1.3 Nhng im cn ch khi thit k WAN Khi thit k WAN chng ta cn ch n ba yu t: Mi trng: cc yu t lin quan n mc tiu thit k nh mi trng ca WAN, cc yu cu v nng lc truyn thng ca WAN(hiu nng mng),kh nng cung cp ng v cc rng buc v di thng, tho mn cc c trng ca d liu cn trao i trn WAN, c bit cc loi d liu cn m bo cht lng dch v nh d liu a phng tin, d liu i hi p ng thi gian thc nh giao dch v ti chnh. Mi trng ca WAN y c th hin qua cc tham s nh s lng cc trm lm vic, cc my ch chy cc dch v, v v tr t chng, cc dch v v vic m bo cht lng cc dch v ang chy trn WAN. Vic chn s lng v v tr t cc my ch, cc my trm trong WAN lin quan nhiu n vn ti u cc lung d liu truyn trn mng. Chng hn khu vc no c nhiu trm lm

88

vic, chng cn thc hin nhiu giao dch vi mt hay nhiu my ch no , th cc my ch cng cn phi t trong khu vc , nhm gim thiu d liu truyn trn WAN. Yu cu v hiu nng cn c quan tm c bit khi thit k cc WAN yu cu cc dch v i hi thi gian thc nh VoIP, hay hi ngh truyn hnh, giao dch ti chnh,... Khi cc gii hn v tc ng truyn, tr,... cn c xem xt k, nht l khi dng cng ngh v tinh, v tuyn,... Cc c trng ca d liu cng cn c quan tm nhm gim thiu chi ph v gii thng khi kt ni WAN. Cc c trng d liu cp y l d liu client/ server, thng ip, qun tr mng, ... gii thng no m bo cht lng dch v? Cc yu cu k thut: nm yu cu cn xem xt khi thit k WAN l tnh kh m rng, tnh d trin khai, tnh d pht hin li, tnh d qun l, h tr a giao thc. Tnh kh m rng th hin vn c th m rng, b sung thm dch v, tng s lng ngi dng, tng gii thng m khng b nh hng g n cu trc hin c ca WAN, v cc dch v trin khai trn . Tnh d trin khai th hin bng vic thit k phn cp, m un ho, khi ho mc cao. Cc khi, cc m un ca WAN c lp mt cch tng i, qu trnh trin khai c th thc hin theo tng khi, tng m un. Tnh d pht hin li l mt yu cu rt quan trng, v lung thng tin vn chuyn trn WAN rt nhy cm cho cc t chc dng WAN. Vy vic pht hin v c lp li cn phi thc hin d v nhanh i vi qun tr h thng. Tnh d qun l m bo cho ngi qun tr mng lm ch c ton b h thng mng trong phm vi a l rng hoc rt rng. H tr a giao thc c th thc hin c kh nng tch hp tt cc cc dch v thng tin v truyn thng cho mt t chc trn cng h tng cng ngh thng tin, nhm gim chi ph thit b v ph truyn thng, gim thiu ti nguyn con ngi cho vic vn hnh h thng. An ninh-an ton: vic m bo an ninh, xy dng chnh sch an ninh,v thc hin an ninh th no? ngay t bc thit k.

3.1.2 Mt s cng ngh kt ni c bn dng cho WAN


3.1.2.1 Mng chuyn mch (Circuit Swiching Network) Gii thiu

89

Mng chuyn mch thc hin vic lin kt gia hai im nt qua mt ng ni tm thi hay ginh ring gia im nt ny v im nt kia. ng ni ny c thit lp trong mng th hin di dng cuc gi thng qua cc thit b chuyn mch. Mt v d ca mng chuyn mch l hot ng ca mng in thoi, cc thu bao khi bit s ca nhau c th gi cho nhau v c mt ng ni vt l tm thi c thit lp gia hai thu bao. Vi m hnh ny mi nt mng c th kt ni vi bt k mt nt khc. Thng qua nhng ng ni v cc thit b chuyn dng ngi ta c th tao ra mt lin kt tm thi t ni gi ti ni nhn, kt ni ny duy tr trong sut phin lm vic v c gii phng ngay sau khi phin lm vic kt thc. thc hin mt phin lm vic cn c cc th tc y cho vic thit lp lin kt trong c vic thng bo cho mng bit a ch ca nt gi v nt nhn. Hin nay c 2 loi mng chuyn mch l chuyn mch tng t (analog) v chuyn mch s (digital)

Hnh 3-2: M hnh kt ni WAN dng mng chuyn mch

Chuyn mch tng t (Analog) Vic chuyn d liu qua mng chuyn mch tng t c thc hin qua mng in thoi. Cc trm trn mng s dng mt thit b c tn l modem ("MODulator" and "DEModulator"), thit b ny s chuyn cc tn hiu s t my tnh sang tn hiu tng t c th truyn d liu i trn cc knh in thoi v ngc li bin tn hiu dng tng t thnh tn hiu s. Mt minh ha kt ni dng mng chuyn mch l kt ni qua mng in thoi PSTN, hay cn gi l kt ni quay s (dial-up).

90

Hnh 3-3: M hnh kt ni WAN dng mng chuyn mch tng t

Kt ni PSTN Thit b: Dng modem tng t loi truyn khng ng b, hay truyn ng b, kt ni thit b mng vo mng in thoi cng cng. Phng thc kt ni: Dng kt ni PPP t my trm hay t thit b nh tuyn qua modem, qua mng in thoi cng cng. Kt ni n tuyn- dng 1 ng in thoi.

Hnh 3-4: M hnh kt ni dng mt ng in thoi

Cc hn ch khi dng kt ni PSTN: Cc kt ni tng t (analog) thc hin trn mng in thoi cng cng v cc c tnh theo pht. y l hnh thc kt ni ph bin nht do tnh n gin v tin li ca n. Tuy nhin chi ph cho n tng i cao cho cc giao dch lin tnh v cht lng ng truyn khng m bo tnh n nh thp, gii thng thp, tt a 56Kbps cho 1 ng. Hnh thc kt ni ny ch ph hp cho cc chi nhnh ni ti Trung tm mng trong cng mt thnh ph, i hi bng thng thp v cho cc ngi dng di ng, v cho cc kt ni dng khng qu 4 gi/ngy. Kt ni b(multilink a tuyn)- dng nhiu ng in thoi.

91

Hnh 3-5: M hnh kt ni dng nhiu ng in thoi

Kt ni b nhm tng dung lng ca ng truyn theo yu cu ca dch v (dial on demand) Mng chuyn mch s (Digital)

Hnh 3-6: M hnh kt ni WAN dng mng chuyn mch s

Kt ni ISDN Gii thiu Dch v s ISDN - Intergrated Services Digital Network: ISDN l mt loi mng vin thng s tch hp a dch v cho php s dng cng mt lc nhiu dch v trn cng mt ng dy in thoi thng thng. Vi c s in thoi c nh h tng hin c, ISDN l gii php cho php truyn dn thoi, d liu v hnh nh tc cao. Ngi dng cng mt lc c th truy cp WAN v gi in thoi, fax m ch cn mt ng dy in thoi duy nht, thay v 3 ng nu dng theo kiu thng thng. Kt ni ISDN c tc v cht lng cao hn hn dch v kt ni theo kiu quay s qua mng in thoi thng (PSTN). Tc truy cp mng WAN c th ln n 128 Kbps nu s dng ng ISDN 2 knh (2B+D) v tng ng 2.048 Mbps nu s dng ISDN 30 knh (30B+D). Cc thit b dng cho kt ni ISDN ISDN Adapter: Kt ni vi my tnh thng qua cc giao tip PCI, RS-232, USB, PCMCIA v cho php my tnh kt ni vi mng WAN thng qua mng a dch v tch hp ISDN vi tc 128Kbps n nh a dch v v

92

cao hn hn so vi cc kt ni tng t truyn thng m tc ti a l thuyt l 56Kbps. ISDN Router: Thit b ny cho php kt ni LAN vo WAN cho mt s lng khng gii hn ngi dng. Thng qua giao tip ISDN BRI, thit b ny cn c th ng vai tr nh mt b chuyn i a ch mng ( Network Address Translation) hoc mt my ch truy nhp t xa. Kh nng thit lp kt ni LAN-to-LAN qua dch v ISDN cho php ni mng gia Vn phng chnh v Chi nhnh ht sc thun tin. Cng kt ni Ethernet tc 10/100Mbps cho php kt ni d dng vi mng LAN. Cc tnh nng Quay s theo yu cu (Dial-on-Demand) v Di thng theo yu cu (Bandwidthon-Demand) t ng ti u ho cc kt ni theo yu cu ca ngi dng trn mng. Cc c tnh ca ISDN ISDN c chia lm hai loi knh khc nhau: Knh d liu (Data Channel), tn k thut l B channel, hot ng tc 64 Kbps. Knh kim sot (Control Channel), tn k thut l D Channel, hot ng 16 Kbps (Basic rate) v 64 Kbps (Primary rate) D liu ca ngi dng s c truyn trn cc B channel, v d liu tn hiu (signaling data) c truyn qua D channel. Bt k mt kt ni ISDN c bao nhiu B channel, n ch c duy nht mt D channel. ng ISDN truyn thng c hai tc c bn l residential basic rate v commercial primary rate. Mt vi cng ty in thoi khng c ng truyn v thit b u cui thch hp cho dch v tc c bn nn h cung cp mt tc c bn c nh, c gi tr trong khong t 64 Kbps n 56 Kbps. Nhng bin th ny hot ng nh mt B channel ring bit. Basic rate ISDN hot ng vi hai B channel 64 Kbps v mt D channel 16 Kbps qua ng in thoi thng thng, cung cp bng thng d liu l 128 Kbps. Tc c bn c cung cp ph bin hu ht cc vng M v chu u, vi gi gn bng vi in thoi thng mt s vng. ( c, ng ISDN hot ng vi tc c bn, vi hai B channel 64 Kbps v mt D channel 16 Kbps). Primary rate hot ng vi hai mi ba B channel 64 Kbps v mt D channel 64 Kbps qua mt ng T1, cung cp bng thng 1472 Kbps.

93

Primary rate a ra ng truyn quay s tc cao, cn thit cho cc t chc ln. i khi ISDN adaptor b gi l "ISDN modem" v n c chc nng quay s v tr li cuc gi trn ng dy digital, nh modem thc hin trn ng dy analog. Tuy nhin, ISDN adaptor khng phi l modem v khng thc hin chc nng modulation/demodulation v vic chuyn i tn hiu gia digital v analog (digital/analog conversion). nh gi khi dng kt ni ISDN ISDN gm hai kiu BRI v PRI, u t hn in thoi thng thng nhng bng thng cao hn. Hin ti tc cao nht c th cung cp ti Vit Nam l 128 Kbps. y l hnh thc kt ni mng lin tnh tng i r so vi cc loi khc. Tuy nhin n i hi tng i in thoi phi h tr kt ni ISDN (Cn phi kho st trc). Mng knh thu ring (Leased lines Network)

Hnh 3-7: M hnh kt ni WAN dng cc knh thu ring

Gii thiu Cch kt ni ph bin nht hin nay gia hai im c khong cch ln vn l Leased Line (tm gi l ng thu bao). Vi k thut chuyn mch gia cc nt ca mng (tng t hoc s) c mt s lng ln ng dy truyn d liu, vi mi ng dy trong mt thi im ch c nhiu nht mt phin giao dch, khi s lng cc trm s dng tng cao ngi ta nhn thy vic s dng mng chuyn mch tr nn khng kinh t. gim bt s lng cc ng dy kt ni gia cc nt mng ngi ta a ra mt k thut gi l ghp knh.

94

Hnh 3-8: M hnh ghp knh

M hnh c m t nh sau: ti mt nt ngi ta tp hp cc tn hiu trn ca nhiu ngi s dng ghp li truyn trn mt knh ni duy nht n cc nt khc, ti nt cui ngi ta phn knh ghp ra thnh cc knh ring bit v truyn ti cc ngi nhn. C hai phng thc ghp knh chnh l ghp knh theo tn s v ghp knh theo thi gian, hai phng thc ny tng ng vi mng thu bao tun t v mng thu bao k thut s. trong thi gian hin nay mng thu bao k thut s s dng k thut ghp knh theo thi gian vi ng truyn T ang c s dng ngy mt rng ri v dn dn thay th mng thu bao tun t. Phng thc ghp knh theo tn s: s dng phng thc ghp knh theo tn s gia cc nt ca mng c lin kt bi ng truyn bng tn rng. Bng tn ny c chia thnh nhiu knh con c phn bit bi tn s khc nhau. Khi truyn d liu, mi knh truyn t ngi s dng n nt s c chuyn thnh mt knh con vi tn s xc nh v c truyn thng qua b ghp knh n nt cui v ti y n c tch ra thnh knh ring bit truyn ti ngi nhn. Theo cc chun ca CCITT c cc phng thc ghp knh cho php ghp 12, 60, 300 knh n. Ngi ta c th dng ng thu bao tun t (Analog) ni gia my ca ngi s dng ti nt mng thu bao gn nht. Khi my ca ngi s dng gi d liu th knh d liu c ghp vi cc knh khc v truyn trn ng truyn ti nt ch v c phn ra thnh knh ring bit trc khi gi ti my ca ngi s dng. ng ni gia my trm ca ngi s dng ti nt mng thu bao cng ging nh mng chuyn mch tun t s

95

dng ng dy in thoi vi cc k thut chuyn i tn hiu nh V22, V22 bis, V32, V32 bis, cc k thut nn V42 bis, MNP class 5. Phng thc ghp knh theo thi gian: Khc vi phng thc ghp knh theo tn s, phng thc ghp knh theo thi gian chia mt chu k thi gian hot ng ca ng truyn trc thnh nhiu khong nh v mi knh tuyn d liu c mt khong. Sau khi ghp knh li thnh mt knh chung d liu c truyn i tng t nh phng thc ghp knh theo tn s. Ngi ta dng ng thu bao l ng truyn k thut s ni gia my ca ngi s dng ti nt mng thu bao gn nht. H thng mang tn hiu T-carrier c dng Bc m t 1962, dng ch phn chia thi gian (Time Division Multiplexing - TDM) cung cp tn hiu thoi qua cc ng truyn s. N c thit k hot ng trn h thng cp ng, cc ng ny cng c dng d truyn s liu hay cc tn hiu video. Ti mi u cui trc khi ni vo thit b ca khch hng, phi s dng mt thit b u cui l CSU/DSU (Channel Service Unit/Data Service Unit - CSU/DSU) m ho d liu truyn. Thng thng thit b ca khch hng l cc b chuyn knh(multiplexer) hay mt cu(LAN bridge) dng cho vic chuyn mch vi T-carrier. N c th mang tn hiu ging ni di dng m s, khi bng thng s dng l 64 Kbps, gi tr ny c xc nh theo nh lut Nyquist v iu bin theo m xung Pulse Code Modulation - PCM. Theo nh lut Nyquist tn hiu ging ni phi c ly 8000 mu trn giy. Dng iu bin PCM yu cu mi mu phi biu din bng gi tr 8-bit.

Tc 64 Kbps c xc nh nh mt knh truyn k hiu l DS-0 (Digital Signal level 0) cho h thng T-carrier. Mi knh DS-0 c dng cho mt knh thoi. Khi dng h thng T-carrier cho truyn s, mi khung d liu l 193 bit, 8000 mu trn giy ta c:

96

Tc 1.544 Mbps c gi l knh T-1, n bng 24 knh DS-0, c k hiu l DS-1 (DigitalSignal level 1). Hin nay ngi ta c cc ng truyn thu bao nh sau : Leased Line c phn lm hai lp chnh l Tx (theo chun ca M v Canada) v Ex (theo chun ca chu u, Nam M v Mehic), x l m s ch bng thng (bandwidth) ca kt ni. Thng s k thut ca cc ng truyn Tx v Ex c lit k trong bng di. Loi knh T0 T1 T2 T3 T4 Thng lng 56 Kbps 1.544 Mbps 6.312 Mbps 44.736 Mbps 274.176 Mbps Ghp knh 1 ng thoi 24 ng T0 4 ng T1 28 ng T1 168 ng T1

T0/E0 l tng ng vi mt knh truyn thoi n l, T0 hot ng tc 56 Kbps v E0 hot ng tc 64 Kbps. S d c s khc bit v tc l v cc h thng vin thng Bc M dng giao thc truyn tn hiu c hn, m bo to ra ch s dng lun phin 8 bit. Cc my bin i cm ng in t (Magnetic inductance transformer) trn cng tc chuyn mch in thoi (phone switch) c s khng kha cng (block) cc cng tc chuyn mch lun phin (alternating switch) hin nay. Cn chun ca chu u s dng 8 bit truyn ti thng tin do h thng chuyn mch y khng dng my bin i cm ng. T0 v E0 to nn tng cho cc dch v truyn s liu tc cao hn v cc ng in thoi tm xa (Telephone trunk line - Thc ra trong ngnh vin thng, khi nim mi kt ni c chia lm 3 loi tch bit l trunk, channel v line, nhng do phm vi ca bi vit v vn thut ng khi dch ra ting Vit, chng ti khng bn su v s khc bit ca 3 khi nim ny, v s c i ch dng chung cc khi nim) u c th truyn cuc thoi c s ha (digitized voice conversation). Tt c cc cng ty in thoi u ti u ha ng truyn ca h cho dch v truyn thoi (voice service). Bn cnh vic phn chia trc tip cc mc khc nhau ca dch v E/T, c nhiu ng truyn cung cp dch v phn chia nh hn, cho php ngi dng t thu mt s lng bt k cc knh (channel) T0 trong mt ng

97

truyn T1 (tt nhin s channel T0 t thu phi nh hn hoc bng s channel T0 c trong mt ng T1), hoc t thu cc channel T1 trong mt ng truyn T3 (s channel T1 t thu phi nh hn hoc bng s channel T0 c trong mt ng T3). V d nu ngi dng ch cn (hoc ch tin tr) mt ng truyn khong 336 Kbps, h c th thu 6 channel T0 ca mt ng truyn T1. Trong iu kin , CSU/DSU (Channel Service Unit/Digital Service Unit) ca ngi dng phi c kh nng h tr cc knh phn chia (fractional channel). Khi cng ty in thoi s tnh tin mt phn ca ng truyn T1 cho vic phn chia mt phn thng lng ng truyn m ngi dng s dng. iu ny thng c gi l committed information rate. Cc ng leased line c gn vo cng tun t (serial port) ca my tnh hoc router thng qua mt CSU/DSU. Cc cng ngh xDSL Gii thiu Vic kt ni WAN c thc hin u tin dng modem tng t qua mng in thoi, n nay phng thc ny ch dng li tc truyn ti rt thp, ti a l 56kbps/line , iu ny c cha ca ngnh l thuyt thng tin Claude Shannon a ra gii hn dung lng cho knh truyn c nhiu l 35 kbps v thc t t c 33.6kbps. Hn ch ca knh truyn in thoi vi tc t thng tin truyn s liu do i dy cp ng nh ngi ta ngh m l khi qua mch m ha PCM (Pulse Code Modulation) dy tn truyn dn ch cho qua cc tn hiu t 300hz n 400hz. Sau ny Modem X2 ca hng US Robotics v modem ca hng Rockwell c thng nht bi tiu chun V90 ca ITU-T (lin minh vin thng quc t) nhm mc ch lch khi mch lc ny trong chiu t ISP v n ngi s dng (downtream) t c tc 56kbps nhng tc chiu t ngi dng ln ISP (uptream) vn l 33.6kbps v y l tc cao nht c th t c ca modem. n nay ci tin thnh chun V92 thc hin kt ni nhanh hn. Khng t c tc nh ng T1: 1544kbps hay E1: 2048 kbps. vc qua ngng tc ngi ta chuyn sang dng k thut s xDSL. Trn ng dy in thoi th thc t ch dng mt khong tn s rt nh t 0KHz n 20KHz truyn d liu m thanh (in thoi). Cng ngh DSL

98

tn dng c im ny truyn d liu trn cng ng dy, nhng tn s 25.875 KHz n 1.104 MHz . HDSL (High-speed DSL) l ng truyn thu bao k thut s tc cao, t 1,544-2,048 Mbps v cn dng ti 2 hoc 3 ng cp i. SDSL (Symmtric DSL) tng t nh HDSL, nhng ch s dng mt ng cp v dung lng truyn d liu hai chiu bng nhau, t khong 1,544-2,048 v s, c tc download v upload nh nhau, t 128 Kbps. RADSL (Rate Adaptive DSL) iu chnh tc truyn theo cht lng tn hiu. Tc download t 640 Kbps ti 2,2 Mbps v upload t 272 Kbps ti 1,088 Mbps. CDSL (Consumer DSL) l mt phin bn ca DSL, tc download khong 1 Mbps v tc upload th thp hn. UDSL (Unidirectional DSL) l mt phin bn d kin sp a ra ca mt cng ty chu u, tng t nh HDSL. DSL Lite (cn gi l G-Lite) c tc t 1,544-6 Mbps. ADSL (asymmetrical DSL) l ng truyn thu bao k thut s khng i xng, tc download t 1,544-8 Mbps, upload t 16-640 Kbps. VDSL (Very-high-bit-rate DSL) l ng truyn thu bao k thut s tc rt cao. Hin nay, VDSL l hnh thc DSL t tc cao nht vi tc download c th t 12,9-52,8 Mbps v upload 1,5-2,3 Mbps. G.SHDSL(Single pair High bit-rate DSL) l tiu chun quc t mi v truyn dn trn i cp n, DSL tc cao, c a ra trong tiu chun G.991.2 ca ITU-T. Khng ging nh DSL khng i xng, c thit k cho cc ng dng khu vc m bng tn ng xung ln hn bng tn ng ln. G.SHDSL l chun i xng cho php truyn vi tc 2,3Mbit/s cho c hai hng. Do GSHDSL thch hp hn cho cc ng dng thng mi i hi bng thng tc cao c hai hng. G.SHDSL tch hp c c cc tnh nng tin cy ca cp ng hin hnh v truyn thng tc cao mang li hiu qu: nng cao tc d liu, c ly di hn v t tp m hn. Cc dch v knh ring, frame relay v Internet ti Bc M ngy nay ch yu s dng tc 1,544Mbit/s. K thut m ho lung T1 chuyn t Mbps. IDSL (Intergrated Service Digital Network DSL) l mng tch hp dch

99

phng php m ho AMI/B8ZS sang DSL tc cao (HDSL) t nhng nm 1990. Lung T1 s dng m AMI/B8ZS s dng hai i cp (4 dy) vi c ly b gii hn, do i hi nhng b lp trong phm vi t 30006000 feet (xp x 1-2km) tu thuc vo lu lng. Trong khi mua, lp t v bo dng cc b lp T1 l kh t. HDSL a ra phng php iu ch mi m c s 2 v m c s 4 (2 binary 1 quaternary) cho ng truyn T1 do c ly truyn dn c nng ln ti 9000 feet (3km) m khng cn b lp. V th cc cng ty in thoi Bc M nhanh chng chuyn sang HDSL tit kim chi ph. Ti chu u v cc nc khc, cc ng dng thng mi ch yu ti tc E1 2,048Mbit/s. Chu u cng mun nm u th ca DSL mang li, tiu chun c Lin minh Vin thng quc t ITU cng nhn, tnh nng k thut ca G.SHDSL cho php m rng bng tn v gim nhiu. Ngy nay, cc ng dy DSL M ch yu l DSL khng i xng (ADSL), k thut ny ch truyn s liu tc 384kbit/s vi cc dch v i xng. Cc cng ty in thoi va v nh Bc M ang chuyn sang ng dng G.SHDSL cho cc dch v Internet, cho php truyn s liu vi tc l 786kbit/s, 1,544Mbit/s v 2,3Mbit/s, cho php gim cp dch v (service-level) ngang vi cc dch v T1 hoc E1 vi mc cc hng thng thp hn. C 4 yu t cho lm cho G.SHDSL c quan tm l: Mt l c tiu chun ho: Nhu cu ca nn cng nghip i hi tc truyn dn s cao hn cho ng dng thng mi. HDSL khng bao gi c chp nhn nh mt tiu chun quc t. DSL i xng c a ra kinh doanh vo cui nhng nm 1990 nhng cha bao gi tr thnh tiu chun v gy tr ngi cho dch v ADSL v n khng tng thch vi ph ca ADSL (rt nhiu). G.SHDSL c a ra trin khai Internet v cc ng dng c s h tng T1/E1 bi v n l tiu chun c quc t ho. Hai l tc d liu c ci thin: Chun G.SHDSL cho php tc truyn dn ln ti 2,3Mbit/s (2 dy) v 4,6Mbit/s (4 dy) trong khi HDSL ban u ch cho php tc 1,544Mbit/s vi 4 dy. G.SHDSL cung cp tc nhanh xp x 3 ln, v khi so snh vi cc dch v HDSL2 v HDSL4 (1,544Mbit/s qua hai dy hoc 4 dy), v s dng bng tn hiu qu hn.

100

Ba l c ly truyn dn c ci thin: c ly truyn dn ca GSHDSL xa hn HDSL t 20% n 30% ti cng tc truyn dn. Ngoi ra khi k thut a lin kt c s dng, G.SHDSL cho php truyn xa gp hai ln HDSL Bn l bng ph tng thch: GSHDSL c ph tn tng thch vi ADSL, do gim can nhiu v xuyn m gia cc si cp. Do cc dch v G.SHDSL c th dng chung vi ADSL trn cng mt i cp m khng c bt k can nhiu no. V nhng l do trn m G.SHDSL nhanh chng tr nn ph bin chu u v Bc M. ADSL(Asymmetric Digital Subscriber Line): ng thu bao k thut s khng i xng l mt cng ngh mi nht cung cp kt ni ti cc thu bao qua ng cp in thoi vi tc cao cho php ngi s dng kt ni internet 24/24 m khng nh hng n vic s dng in thoi v fax. Cng ngh ny tn dng h tng cp ng in thoi hin thi cung cp kt ni, truyn d liu s tc cao. ASDL l mt chun c Vin tiu chun quc gia Hoa K thng qua nm 1993 v gn y c Lin minh vin thng quc t ITU cng nhn v pht trin. ADSL hot ng nh th no? ADSL hot ng trn i cp ng in thoi truyn thng, tn hiu c truyn bi 2 modem chuyn dng, mt modem pha ngi dng v 1 modem pha nh cung cp dch v kt ni. Cc modem ny hot ng trn di tn s ngoi phm vi s dng ca cc cuc gi thoi trn cp ng v c th cho php tc truyn d liu cao hn nhiu so vi cc modem 56k hin nay. Mt thit b lc (Spliter) ng vai tr tch tn hiu in thoi v tn hiu d liu (data), thit b ny c lp t ti c pha ngi s dng v pha nh cung cp kt ni. Tn hiu in thoi v tn hiu DSL c lc v tch ring bit cho php ngi dng cng 1 lc c th nhn v gi d liu DSL m khng h lm gin on cc cuc gi thoi. ADLS tn dng ti a kh nng ca cp ng in thoi nhng vn khng lm hn ch dch v in thoi thng thng.

101

Spliter to nn 3 knh thng tin: mt knh ti d liu xung tc cao, mt knh y ngc d liu vi tc trung bnh v 1 knh cho dch v in thoi thng thng. m bo dch v in thoi thng thng vn c duy tr khi tn hiu ADSL b gin on, knh tn hiu thoi c tch ring khi modem k thut s bi cc thit b lc. Nhng u im ca ADSL: o Tc truy nhp cao: Tc Download: 1,5 - 8 Mbps. Nhanh hn Modem dial-up 56Kbps 140 ln. Nhanh hn truy nhp ISDN 128Kbps 60 ln. Tc Upload: 64-640 Kbps. o Ti u cho truy nhp Internet. Tc chiu xung cao hn nhiu ln so vi tc chiu ln. Va truy nhp Internet, va s dng in thoi. Tn hiu truyn c lp so vi tn hiu thoi/Fax o cho php va truy nhp Internet, va s dng in thoi. o Kt ni lin tc: Lin tc gi kt ni (Always on) Khng tn hiu bn, khng thi gian ch. o Khng phi quay s truy nhp: Khng phi thc hin vo mng/ra mng. Khng phi tr cc in thoi ni ht. o Cc ph tu vo chnh sch ca ISP: Thng thng cu trc cc theo lu lng s dng, dng bao nhiu, tr tin by nhiu. o Thit b u cui r. 100 - 150 USD cho mt my n l. 400- 500 USD cho mt mng LAN (10-15 my). Nhc im: o S ph thuc ca tc vo khong cch t nh thu bao n ni t tng i ADSL (DSLAM). Khong cch cng di th tc t c cng thp. Nu khong cch trn 5Km th tc s xung di 1Mbps. Tuy nhin, hin ti hu ht cc tng i v tinh ca nh cung cp (ni s t cc DSLAM) ch cch cc thu bao trong phm vi di 2km. Nh vy, s nh hng ca khong cch ti tc s khng cn l vn ln. o Trong thi gian u cung cp dch v, nh cung cp dch v s khng th u t cc DSLAM ti tt c cc tng i in thoi v tinh (chi ph rt ln) v vy mt s khch hng c nhu cu khng

102

c p ng do cha t c DSLAM ti tng i in thoi v tinh gn nh thu bao. Nh vy, trong thi gian u cung cp dch v, dch v s ch c trin khai ti cc thnh ph ln, cc khu vc tp trung nhiu khch hng tim nng. Tuy nhin, khi s lng khch hng tng th s tng cng s lng DSLAM phc v khch hng. o ADSL dng k thut ghp knh phn tng ri rc DMT, tn dng c 3: tn s, bin , pha ca tn hiu sng mang truyn ti d liu. Qu trnh iu ch: Input Data --> Serial to Parallel Input Data Buffer --> DMT Symbol Encoder --> Invert Fast Fourier Transform (IFFT) --> A/D Tranceiver(Analog to Digital) --> Line Filter --> Output Data. D liu vo s qua b m d liu, ti y s tin hnh ly N mu v a ra N ng song song, chuyn n b m ho DMT. B m ha DMT tin hnh ghp N mu vi tn s sng mang fi, tn hiu iu ch ny theo N knh song song n b bin i fourier ngc IFFT. B IFFT thc hin ghp cc sng iu ch f1,f2,..fN thnh f0 sao cho f1,f2,..fN l cc hi ca f0. f0 lc ny l tn hiu thc s v duy nht i vo b bin i analog-->digital(A/D). B A/D thc hin bin i tn hiu tng t sang tn hiu s ph hp vi ng truyn. Tn hiu ra n b lc ng truyn gii hn bng thng(bandwidth), loi b nhiu(noise) --> output data. Qu trnh gii iu ch: ngc li: Input Data --> Line Filter --> D/A (Digital to Analog) --> Fast Fourier Transform (FFT) --> DMT Symbol Encoder --> Parallel to Serial Data Buffer --> Output Data Cn bn v cng ngh ADSL ADSL l mt thnh vin ca h cng ngh kt ni modem tc cao hay cn gi l DSL, vit tt ca Digital Subscriber Line. DSL tn dng h thng cp in thoi bng ng c sn truyn ti d liu tc cao, tit kim kinh ph lp t cp quang (fibre-optic) t tin

103

hn. Tt c cc dng DSL hot ng da trn thc t l truyn m thanh qua ng cp in thoi ng ch chim mt phn bng thng rt nh. DSL tch bng thng trn ng cp in thoi thnh hai: mt phn nh dnh cho truyn m, phn ln dnh cho truyn ti d liu tc cao. nh gi cc cng ngh xDSL Loi DSL ADSL HDSL IDSL Asymetric DSL High DSL Intergrated Service MSDSL Multirate Symetric DSL RADSL Rate DSL SDSL VDSL Symetric DSL DSL * Khong cch cp t thu bao n tng i, nu nm trong khong cch ny th c th dng cng ngh xDSL. ** Kh nng dng in thoi bnh thng khi xDSL ang hot ng trn ng cp. Phn ny chng ti cp ch yu v cng ngh ADSL, l cng ngh mi ang c dng ph bin . c bit l i vi cc doanh nghip thng mi in t v nn cng nghip thng tin l nn tng tng lai ca mi nn kinh t. ADSL ni ring v broadband Internet ni chung khin thng mi in t tr nn kh thi. Cc ca hng trn mng c th c thit k vi tnh tng tc cao hn, cch trnh by sn phm hp dn hn vi ngi dng. 2.3Mbps 2.3Mbps 6700m 16Mbps 1200m 1 1 Khng C Adaptive 7Mbps 1Mbps 5500m 1 C Digital 2Mbps 2Mbps 8800m 1 Khng Network DSL 144Kbps 144Kbps 10700m 1 Khng 8Mbps Tn y Download Upload Khong cch * 800Kbps 5500m S ng H cn 1 2 ** C Khng tr in thoi in thoi

bit-rate 1.54Mbps 1.54Mbps 3650m

Veryhigh bit-rate 52Mbps

104

Loi ca hng ny d thit k, d bo qun, gi thnh r, kt hp vi kh nng tng tc trc tip vi ngi dng s gip cho doanh nghip nh c th cnh tranh vi cc c s ln hn trn quy m ton cu. Nn cng ngh phn mm ca Vitnam s t tnh cnh tranh cao hn vi Internet bng thng rng. Vic pht trin, thm d v xm nhp th trng cng nh nhn n t hng v giao sn phm s tr nn d dng hn v kinh t hn rt nhiu. 3.1.2.2 Mng chuyn gi (Packet Switching Network)

Hnh 3-9: M hnh kt ni WAN dng chuyn mch gi

Mng chuyn mch gi hot ng theo nguyn tc sau : Khi mt trm trn mng cn gi d liu n cn phi ng d liu thnh tng gi tin, cc gi tin c i trn mng t nt ny ti nt khc ti khi n c ch. Do vic s dng k thut trn nn khi mt trm khng gi tin th mi ti nguyn ca mng s dnh cho cc trm khc, do vy mng tit kim c cc ti nguyn v c th s dng chng mt cch tt nht. Ngi ta chia cc phng thc chuyn mch gi ra lm 2 phng thc: Phng thc chuyn mch gi theo s ri rc. Phng thc chuyn mch gi theo ng i xc nh. Vi phng thc chuyn mch gi theo s ri rc cc gi tin c chuyn i trn mng mt cch c lp, mi gi tin u c mang a ch ni gi v ni nhn. Mi nt trong mng khi tip nhn gi tin s quyt nh xem ng i ca gi tin ph thuc vo thut ton tm ng ti nt v nhng thng tin v mng m nt c. Vic truyn theo phng thc ny cho ta s mm do nht nh do ng i vi mi gi tin tr nn mm do tuy nhin iu ny yu cu mt s lng tnh ton rt ln ti mi nt nn hin nay phn ln cc mng chuyn sang dng phng chuyn mch gi theo ng i xc nh.

105

Hnh 3-10: V d phng thc s ri rc

Phng thc chuyn mch gi theo ng i xc nh: Trc khi truyn d liu mt ng i (hay cn gi l ng i o) c thit lp gia trm gi v trm nhn thng qua cc nt ca mng. ng i trn mang s hiu phn bit vi cc ng i khc, sau cc gi tin c gi i theo ng thit lp ti ch, cc gi tin mang s hiu c ng o c th c nhn bit khi qua cc nt. iu ny khin cho vic tnh ton ng i cho phin lin lc ch cn thc hin mt ln.

Hnh 3-11: V d phng thc ng i xc nh

Kt ni dng ATM Gii thiu v cng ngh ATM Mng ATM (Cell relay), hin nay k thut Cell Relay da trn phng thc truyn thng khng ng b (ATM) c th cho php thng lng hng trm Mbps. n v d liu dng trong ATM c gi l t bo (cell). cc t bo trong ATM c di c nh l 53 bytes, trong 5 bytes dnh cho phn cha thng tin iu khin (cell header) v 48 bytes cha d liu ca tng trn. Trong k thut ATM, cc t bo cha cc kiu d liu khc nhau c ghp knh ti mt ng dn chung c gi l ng dn o (virtual path). Trong ng dn o c th gm nhiu knh o (virtual chanell) khc

106

nhau, mi knh o c s dng bi mt ng dng no ti mt thi im. ATM kt hp nhng c tnh tt nht ca dng chuyn mch lin tc v dng chuyn mch gi, n c th kt hp di thng linh hot v kh nng chuyn tip cao tc v c kh nng qun l ng thi d liu s, ting ni, hnh nh v multimedia tng tc. Mc tiu ca k thut ATM l nhm cung cp mt mng dn knh, v chuyn mch tc cao, tr nh dp ng cho cc dng truyn thng a phng tin (multimedia). Chuyn mch cell cn thit cho vic cung cp cc kt ni i hi bng thng cao, tnh trng tt nghn thp, h tr cho lp dch v tch hp lu thng d liu m thanh hnh nh. c tnh tc cao l c tnh ni bt nht ca ATM. ATM s dng c cu chuyn mch c bit: ma trn nh phn cc thnh t chuyn mch (a matrix of binary switching elements) vn hnh lu thng. Kh nng v hng (scalability) l mt c tnh ca c cu chuyn mch ATM. c tnh ny tng phn trc tip vi nhng g din ra khi cc trm cui c thm vo mt thit b lin mng nh router. Cc router c nng sut tng c nh c chia cho cc trm cui c kt ni vi chng. Khi s lng trm cui gia tng, nng sut ca router tng thch cho trm cui thu nh li. Khi c cu ATM m rng, mi thit b thu trm cui, bng con ng ca chnh n i qua b chuyn mch bng cch cho mi trm cui bng thng ch nh. Bng thng rng c ch nh ca ATM vi c tnh c th xc nhn khin n tr thnh mt k thut tuyt ho dng cho bt k ni no trong mng cc b ca doanh nghip. Nh tn gi ca n ch r, k thut ATM s dng phng php truyn khng ng b (asynchronouns) cc t bo t ngun ti ch ca chng. Trong khi , tng vt l ngi ta c th s dng cc k thut truyn thng ng b nh SDH (hoc SONET). Nhn thc c v tr cha th thay th c (t nht cho n nhng nm u ca th k 21) ca k thut ATM, hu ht cc hng khng l v my tnh v truyn thng nh IBM, ATT, Digital, Hewlett - Packard, Cisco Systems, Cabletron, Bay Network,... u ang quan tm c bit n dng sn phm hng n ATM ca mnh tung ra th trng. C th k ra y

107

mt s sn phm nh DEC 900 Multiwitch, IBM 8250 hub, Cisco 7000 rounter, Cablectron, ATM module for MMAC hub. Nhn chung th trng ATM si ng do nhu cu thc s ca cc ng dng a phng tin. S nhp cuc ngy mt ng ca cc hng sn xut lm gim ng k gi bn ca cc sn phm loi ny, t cng m rng thm th trng. Ngay Vit Nam, cc d n ln v mng tin hc u c thit k vi h tng chp nhn c vi cng ngh ATM trong tng lai. Cc c trng chnh ca cng ngh ATM Mng chuyn mch ATM l mng cho php x l tc cao, dung lng ln, cht lng truy nhp cao, v vic iu khin qu trnh chuyn mch d dng v n gin. c tnh ca chuyn mch ATM l ch n th nghim s bin i ca tr t bo thng qua vic s dng k thut t nh tuyn ca lp phn cng, v c th d dng h tr cho truyn thng a phng tin s dng d liu, ting ni v hnh nh. Hn th na, n c th m bo vic iu khin phn tn v song song mc cao. Nhc im ca h thng chuyn mch ATM l s phc tp ca phn cng v s tng thm ca tr truyn dn t bo, v l s iu khin phc tp do vic chc nng sao chp v x l phi c thc hin ng thi. nh gi khi dng k ni ATM Khi mi trng ca x hi thng tin c hon thin, th mng giao tip thng tin bng rng cn thit phi t ra thch nghi vi cc tnh nng nh tc cao, bng rng, a phng tin. V v vy phi tnh n vic thit lp mng thng tin tc siu cao tm quc gia. Mng thng tin tc siu cao da vo s dng cng ngh ATM (phng thc truyn ti khng ng b) to ra mng li quc gia rng khp vi tnh kinh t v hiu qu cho php cc nh cung cp dch v c th cung cp nhiu loi hnh dch v thng tin khc nhau. Cng ngh ATM l cng ngh ang trn qu trnh hon thin v chun ho, nn vic trin khai n cn c nghin cu chun b rt y v chi tit, c kh nng duy tr v m rng. Kt ni dng mng Frame Relay

108

Hnh 3-12: M hnh kt ni WAN dng mng Frame relay

Gii thiu v mng Frame Relay Frame relay - mng chuyn mch khung: Bc sang thp k 80 v u thp k 90, cng ngh truyn thng c nhng bc tin nhy vt c bit l ch to v s dng cp quang vo mng truyn dn to nn cht lng thng tin rt cao. Vic x dng th tc hi p X25 thc hin truyn s liu trn mng cp quang lun t c cht lng rt cao, v v th khung truyn t 128 byte cho X25 c m rng vi khung ln hn, th l cng ngh Frame Relay ra i. Frame relay c th chuyn nhn cc khung ln ti 4096 byte, v khng cn thi gian cho vic hi p, pht hin li v sa li lp 3 (No protocol at Network layer) nn Frame Relay c kh nng chuyn ti nhanh hn hng chc ln so vi X25 cng tc . Frame Relay rt thch hp cho truyn s liu tc cao v cho kt ni LAN to LAN v c cho m thanh, nhng iu kin tin quyt s dng cng ngh Frame relay l cht lng mng truyn dn phi cao. Cc thit b dng cho kt ni Frame Relay C s to c mng Frame relay l: o Cc thit b truy nhp mng FRAD (Frame Relay Access Device), o Cc thit b mng FRND (Frame Relay Network Device),

109

ng ni gia cc thit b v mng trc Frame Relay, m t trong hnh v di y.

Hnh 3-13: Mng Frame relay - mng chuyn mch khung

Thit b FRAD c th l cc LAN bridge, LAN Router v.v... Thit b FRND c th l cc Tng i chuyn mch khung (Frame) hay tng i chuyn mch t bo (Cell Relay - chuyn ti tng hp cc t bo ca cc dch v khc nhau nh m thanh, truyn s liu, video v.v..., mi t bo di 53 byte, y l phng thc ca cng ngh ATM). ng kt ni gia cc thit b l giao din chung cho FRAD v FRND, giao thc ngi dng v mng hay gi F.R UNI (Frame Relay User Network Interface). Mng trc Frame Relay cng tng t nh cc mng vin thng khc c nhiu tng i kt ni vi nhau trn mng truyn dn, theo th tc ring ca mnh. Trong OSI 7 lp, lp 3 - lp network, Frame Relay khng dng th tc g c (Transparent). Cc c tnh ca Frame Relay Ngi s dng gi mt Frame (khung) i vi giao thc LAP-D hay LAP-F (Link Access Protocol D hay F), cha thng tin v ni n v thng tin ngi s dng, h thng s dng thng tin ny nh tuyn trn mng. Cng ngh Frame Relay c mt u im c trng rt ln l cho php ngi s dng dng tc cao hn mc h ng k trong mt khong thi gian nht nh , c ngha l Frame Relay khng c nh rng bng thng (Bandwith) cho tng cuc gi mt m phn phi bandwith mt cch linh hot, iu m dch v X25 v thu knh ring khng c. V d ngi s dng k hp ng s dng vi tc 64 kb, khi h chuyn i mt lng thng tin qu ln, Frame Relay cho php truyn chng tc cao hn 64 kb. Hin tng ny c gi l "bng n" - Bursting. Thc t trn mng li rng ln c rt nhiu ngi s dng vi v s frame chuyn qua chuyn li, hn na Frame Relay khng s dng th tc sa li

110

v iu khin thng lng (Flow control) lp 3 (Network layer), nn cc Frame c li u b loi b th vn cc frame c chuyn i ng a ch, nguyn vn, nhanh chng v khng b tha b thiu l khng n gin. m bo c iu ny Frame relay s dng mt s giao thc sau: DLCI (Data link connection identifier) - Nhn dng ng ni data. Cng nh X25, trn mt ng ni vt l frame relay c th c rt nhiu cc ng ni o, mi mt i tc lin lc c phn mt ng ni o ring trnh b ln, c gi tt l DLCI. CIR (Committed information rate) - Tc cam kt. y l tc khch hng t mua v mng li phi cam kt thng xuyn t c tc ny. CBIR (Committed burst information rate) - Tc cam kt khi bng n thng tin. Khi c lng tin truyn qu ln, mng li vn cho php khch hng truyn qu tc cam kt CIR ti tc CBIR trong mt khong thi gian (Tc) rt ngn vi ba giy mt t, iu ny tu thuc vo "nghn" ca mng cng nh CIR. DE bit (Discard Eligibility bit) - Bit nh du Frame c kh nng b loi b. V l m ni nu chuyn cc Frame vt qu tc cam kt, th nhng Frame s b loi b v bit DE c s dng. Tuy nhin c th chuyn cc frame i vi tc ln hn CIR hay thm ch hn c CBIR tu thuc vo trng thi ca mng Frame relay lc c nghn t hay nhiu (Thc cht ca kh nng ny l mn rng bng thng"Bandwith" ca nhng ngi s dng khc khi h cha dng n). Nu nghn ca mng cng nhiu (khi nhiu ngi cng lm vic) th kh nng ri ro b loi b ca cc Frame cng ln. Khi Frame b loi b, thit b u cui phi pht li. Do mng Frame relay khng c th tc iu khin thng lng (Flow control) nn nghn mng s khng kim sot c, v vy cng ngh Frame relay s dng hai phng php sau gim nghn v s frame b loi b. S dng FECN (Forward explicit congestion notification): Thng bo nghn cho pha thu v BECN (Backward Explicit Congestion Notification)

111

Thng bo nghn v pha pht . Thc cht ca phng php ny gim tc pht khi mng li c qu nhiu ngi s dng cng lc.

Hnh 3-14: Nguyn l s dng FECN v BECN

S dng LMI (Local Manegment Interface): thng bo trng thi nghn mng cho cc thit b u cui bit. LMI l chng trnh iu khin gim st on kt ni gia FRAD v FRND. nh gi khi dng k ni Frame Relay Hin nay nhu cu kt ni WAN c t ra v bin i theo tng ngy, c rt nhiu cng ngh c a ra tho lun v th nghim xy dng nn tng mng li cung cp cc dch v truyn s liu cho quc gia. Theo xu th chung, tt c cc dch v thoi v phi thoi dn dn s tin ti c s dng trn nn ca mng thng tin bng rng tch hp IBCN (Integrated Broadband Communacation Network). Trn c s mng IBCN, ngoi cc dch v truyn thng v thoi v truyn s liu cn c th cung cp rt nhiu dch v lin quan ti hnh nh ng v dch v t xa nh: truyn hnh cht lng cao, hi tho truyn hnh, th vin in t, o to t xa, knh video theo yu cu (video on demand),... Qu trnh tin ti mng IBCN hin ti c th xem nh c hai con ng: Hng th nht l t cc mng in thoi tin ti xy dng mng s a dch v tch hp ISDN (Integrated Service Digital Network) ri tin ti BISDN hay IBCN. Hng th hai l t cc mng phi thoi tc l cc mng truyn s liu tin ti xy dng cc mng chuyn khung (Frame-Relay) ri mng truyn dn khng ng b ATM (Asynchronous Transfer Mode) lm nn tng cho IBCN. Cng ngh Frame-Relay vi nhng u im ca n nh l mt cng ngh s c ng dng trn mng truyn s liu ca Vit nam trong thi gian ti. Theo s liu ca din n Frame-Relay th nguyn nhn ngi dng chn Frame-Relay l:

112

o Kt ni LAN to LAN: 31% o To mng truyn nh: 31% o Tc cao: 29% o Gi thnh hp l: 24% o D dng, tin cy cao: 16% o X l giao dch phn tn: 16% o Hi tho video: 5% R rng l cc ng dng trn Frame-Relay u s dng kh nng truyn s liu tc cao v cn n dch v bng tn rng c tnh n kh nng bng n lu lng (trafic bursty) m cc cng ngh c hn nh chuyn mch knh hay chuyn mch gi khng th to ra. Kt ni dng dch v chuyn mch tc cao (SMDS) Gii thiu SMDS (Switched Multimegabit Data Service) mng chuyn mch tc cc cao. Ging nh mng frame relay, n cung cp cc knh o(virtual channels) vi tc thp nht l T1(gn 1.5 Mbps) n tc T3(gn 45 Mbps). SMDS dng phng php truy nhp mng v giao din theo chun IEEE 802.6. khong cch kt ni ti a l 160 kil mt(100 dm Anh). SMDS dng cng ngh t bo kch thc c nh gn nh ATM, n thng cung cp dch v dng tc cao trn T-1, hay T-3 thng l 4, 10, 16, 25 and 34 Mbps. Mng trc SMDS c tc DS-3 (45 Mbps), OC-3 (155 Mbps) h tr tc truyn SONET, v OC-12 (622 Mbps). Dng SMDS rt c li cho cc ng dng i hi tc cao nh truyn nh, thit k tr gip bng my tnh(computer-aided design -CAD),xut bn, v ccng dng v ti chnh . SMDS ph hp vi cc t chc c cc c trng sau: o C nhiu a im phn tn v mt a l, ti mi a a im u c LAN o Cn trao i thng tin tc cc cao. o Chp nhn dng truyn s liu qua mng dch v cng cng. nh gi khi dng k ni SMDS Vic dng mng SMDS kt ni WAN ch ginh cho cc IXP ln.

113

Kt ni dng chun X.25

Hnh 3-15: hnh kt ni WAN dng mng X25

Gii thiu Mng X25 c CCITT cng b ln u tin vo 1970, lc lnh vc vin thng ln u tin tham gia vo th gii truyn d liu vi cc c tnh: X25 cung cp quy trnh kim sot lung gia cc u cui em li cht lng ng truyn cao cho d cht lng mng li ng dy truyn thng khng cao. X25 c thit k cho c truyn thng chuyn mch ln truyn thng kiu im ni im. c quan tm v trin khai nhanh chng trn ton cu. Trong X25 c chc nng dn knh (multiplexing) i vi lin kt logic (virtual circuits) ch lm nhim v kim sot li cho cc frame i qua. iu ny lm tng phc tp trong vic phi hp cc th tc gia hai tng k nhau, dn n thng lng b hn ch do tng ph x l mi gi tin tng ln. X25 kim tra li ti mi nt trc khi truyn tip, iu ny lm hn ch tc trn ng truyn c cht lng rt cao nh mng cp quang . Tuy nhin do vy khi lng tch ton ti mi nt kh ln, i vi nhng ng truyn ca nhng nm 1970 th iu l cn thit nhng hin nay khi k thut truyn dn t c nhng tin b rt cao th vic tr nn lng ph. Do vy cng ngh X25 nhanh chng tr thnh lc hu. nh gi khi dng k ni X.25 Hin nay khng cn ph hp vi cng ngh truyn s liu.

114

3.1.2.3 Kt ni WAN dng VPN Gii thiu tng quan v VPN VPN (Virtual Private Network) l mt mng ring c xy dng trn nn tng h tng mng cng cng (nh l mng Internet). Mng IP ring (VPN) l mt dch v mng c th dng cho cc ng dng khc nhau, cho php vic trao i thng tin mt cch an ton vi nhiu la chn kt ni. Dch v ny cho php cc t chc xy dng h thng mng WAN ring c quy m ln ti Vit Nam. Gii php VPN cho php ngi s dng lm vic ti nh hoc ang i cng tc xa c th thc hin mt kt ni ti tr s chnh ca mnh, bng vic s dng h tng mng thng qua vic to lp mt kt ni ni ht ti mt ISP. Khi , mt kt ni VPN s c thit lp gia ngi dng vi mng trung tm ca h. Kt ni VPN cng cho php cc t chc kt ni lin mng gia cc NOC ca h t ti cc a im khc nhau thng qua cc kt ni trc tip (Leased line) t cc a im ti mt ISP. iu gip gim chi ph gi ng di qua dial-up v chi ph thu ng Leased line cho khong cch xa. D liu chuyn i c m bo an ton v cc gi d liu truyn thng trn mng c m ho. Mt s gii php k thut hay dng trong kt ni VPN IPSec PPTP L2TP Mt s m hnh WAN dng VPN DngVPN kt ni POP v NOC

Hnh 3-16: M hnh WAN dng VPN ni POP vi NOC

Dng VPN truy nhp v POP hay NOC

115

Mt vi nhn xt khi s dng VPN trong kt ni WAN. Hn ch khi VPN dng cng ngh IPSec l lm gim hiu nng ca mng v trc khi gi gi tin i. u tin, gi tin c m ha, sau ng gi vo cc gi IP, hot ng ny tiu tn thi gian v gy tr cho gi tin. Tip theo gi tin mi c a vo trong mng ca nh cung cp dch v. Cc VPN gateway phi tng thch khi chng kt ni vi nhau. ng hm VPN c to ra trong khng gian mng khng ng nht do rt kh m bo cht lng dch v.

3.1.3 Giao thc kt ni WAN c bn trong mng TCP/IP.


3.1.3.1 Giao thc PPP Giao thc PPP(Point-to-Point Protocol) l giao thc dng ng gi d liu cho truyn thng im im. PPP l mt chun gn v qun l a ch IP, ng gi d b(asynchronous start/stop), ng b nh hng bt(bit-oriented synchronous), giao thc mng phn knh(network protocol multiplexing), cu hnh kt ni(link configuration), kim tra cht lng kt ni(link quality testing),pht hin li(error detection), bao gm c giao thc kim sot tng kt ni LCP(Link Control Protocol) v giao thc kim sot tng mng NCP(Network Control Protocols) phc v cho vic la chn a ch tng lin kt, vic nn d liu truyn, cng nh xc nh cc cu hnh tham s cho tng lin kt. PPP h tr trong nhiu b giao thc khc nhau nh: b giao thc Intranet/Internet IP, b giao thc IPX - Novell's Internetwork Packet Exchange, b giao thc DECnet,... Cc thnh phn ca PPP PPP cung cp phng php truyn cc khung d liu(datagrams) trn cc lin kt tun t im - im(serial point-to-point links). PPP c 3 thnh phn chnh: HDLC - Phng php ng gi cc khung d liu trn cc lin kt im im.. PPP dng giao thc HDLC(High-Level Data Link Control protocol) l c s cho vic ng gi ny LCP - lp cu hnh v kim tra kt ni - data link connection. NCP - lp cu hnh cc giao thc tng mng(network layer protocols). PPP c thit k dng cho nhiu b giao thc mng khc nhau. Nguyn tc lm vic ca PPP Gii thiu

116

lp kt ni qua lin kt PPP, u tin PPP gi khung LCP cu hnh v kim tra lin kt d liu(data link). Sau lin kt c lp, PPP gi khung NCP chn v cu hnh cc giao thc tng mng(network layer). Yu cu ca tng vt l PPP c kh nng lm vic vi nhiu loi giao din DTE/DCE,chng hn nh EIA/TIA-232-C (RS-232-C c), EIA/TIA-422 (RS-422 c), EIA/TIA423 (RS-423 c), V.35. Yn cu tuyt i ca PPP l mch song cng (duplex circuit), hoc mch chuyn dng(dedicated), hay chuyn mch (switched), Cc mch ny c th lm vic ch tun t bit d b (asynchronous) hay ng b (synchronous bit-serial mode), trong sut vi cc khung PPP tng lin kt (link layer). PPP khng bt buc mt hn ch g v tc truyn trn DTE/DCE interface. Yu cu ca tng PPP link PPP dng cc nguyn tc, thut ng, cu trc khung ca ISO(the International Organization for Standardization) HDLC th tc (ISO 33091979), c thay bng ISO 3309:1984/PDAD1 Addendum 1: Start/Stop Transmission. ISO 3309-1979 xc nh cu trc khung HDLC dng cho mi trng ng b. ISO 3309:1984/PDAD1 thay cho ISO 3309-1979 dng cho mi trng d b. Th tc iu khin PPP dng xc nh m ho trng iu khin c chun ho trong ISO 4335-1979 and ISO 4335-1979/ Addendum 1-1979. Qui cch khung d liu PPP gm 6 trng c m t di y:

Cc trng trong khung PPP gm: o Flag - Trng c 1 byte xc nh bt u hay kt thc ca 1 khung, gm mt chui nh phn 01111110. o Address - Trng a ch 1 byte gm mt chui nh phn 11111111, a ch broadcast chun, PPP khng gn a ch trm ring. o Control - Trng iu khin 1 byte gm mt chui nh phn 00000011, m n iu khin vic truyn cc khung d liu khng tun t.

117

o Protocol - Trng giao thc 2 byte xc nh giao thc ng gi ca khung. o Data - c th l 0 hoc nhiu byte, gi tr mc nh l 1500 byte. o Frame check sequence (FCS) - Chui kim tra khung 16 bit (2 byte). Cho php PPP pht hin li Giao thc iu khin PPP link LCP PPP LCP cung cp phng php lp, cu hnh, duy tr v kt thc kt ni im-im(point-to-point). LCP tri qua 4 pha khc nhau: Pha u lp v cu hnh kt ni, trc khi truyn d liu LCP m kt ni cu hnh, xc lp cc tham s kt ni . Khi pha ny kt thc khung xc lp cu hnh c gi v nhn, do cng xc nh lun c cht lng kt ni . Pha xc nh cht lng kt ni. Pha cu hnh tng mng NCP lm vic khi cht lng kt ni xc nhn l m bo Pha cui l kt thc, khi cht lng kt ni khng m bo hay kt thc truyn. PPP trong kt ni WAN Cc kt ni WAN trong mng IP, IPX hay DECnet u dng PPP.

3.1.4 Cc thit b dng cho kt ni WAN


3.1.4.1 Router (B nh tuyn) c trnh by trong mc 2.1.2. 3.1.4.2 Chuyn mch WAN Khi nim Phng php chuyn mch WAN l qua nh cung cp dch v vin thng thit lp v duy tr mch dng ring cho mi phin truyn thng. Mt minh ho cho chuyn mch WAN l mng chuyn mch s a dch v ISDN(Integrated Services Digital Network). Thit b chuyn mch WAN(WAN switch) l thit b nhiu cng lin mng (multiport internetworking device) dng trong cc mng vin thng nh Frame Relay, X.25, v SMDS, n hot ng tng data link. Chng hn chuyn mch WAN a dch v B-STDX ca Lucent s dng cng ngh Fram Relay, IP v cc

118

dch v ATM. Hay b chuyn mch DSLAM dng trong cng ngh ADSL, G.SHDSL.

Hnh 3-17: B chuyn mch WAN

L do dng chuyn mch WAN Chuyn mch WAN c dng cng mt lc duy tr nhiu cu ni gia cc thit b mng, do vy tc thi to c loi ng truyn xng sng (backbone) ni ti tc cao theo yu cu. Chuyn mch WAN c nhiu cng, mi cng c th h tr mt tuyn thu bao ring vi tc theo yu cu. 3.1.4.3 Access Server Khi nim Access server l im tp trung cho php kt ni WAN qua cc mng in thoi cng cng cng(PSTN), mng a dch v s(ISDN), hay mng d liu cng cng (PDN). Ngi dng t xa, hay mng LAN xa qua modem ni vo mt trong cc mng trn u c th truy nhp vo mng ca mnh qua access server. Access server c nhiu loi, v c th phn nhiu cp nh c kh nng tch hp nhiu modem trong cng mt thit b, c kh nng tch hp nhiu trung k, c kh nng ghp nhiu knh truyn dn,... Chng hn thit b CVX 1800 ca hng Nortel c th cung cp 2688 modem trn mt thit b do vy c th cng lc kt ni 2688 ng. C giao tip WAN lm nhim v chuyn mch WAN khi kt ni vi cc mng d liu cng cng PDN. Kt ni vi mng in thoi cng cng PSTN n dng giao tip DS1, DS3 hay E1. Kt ni vi cc tng i TANDEM n c b chuyn mch ghp knh theo thi gian (TDMS - time division multiplexing switch). Dng linux box v 1 v multiport cng c th to ra 1 access server dng cho truy nhp qua mng in thoi cng cng.

119

Hnh 3-18: Access server h tr truy nhp tng hp

Hot ng ca Access Server Access server lm nhim v ch kt ni t xa n, v t n c th quay s kt ni vi access server khc. Khi ngi dng t xa, hay mng xa kt ni vo access server , nu c php th c th dng cc ti nguyn mng ang kt ni vi access server ny, hay access server nay l mt trm chuyn tip kt ni i tip. L do phi dng Access Server: Kt ni WAN, truy nhp t xa dng access server l gii php n gin, tit kim chi ph nht.

Hnh 3-19: Access server h tr truy nhp vo internet/intranet

3.1.4.4 Modem Modem l t ghp ca MOdulator/DEModulator (iu ch/gii iu ch), chuyn tn hiu digital t my tnh thnh tn hiu analog c th truyn qua, ng in thoi. Cn modem u nhn th chuyn tn hiu analog tr li thnh tn hiu digital cho my tnh tip nhn c th hiu c.

120

Modem truyn s liu theo tc chun, biu hin bng n v bit truyn trong mt giy (bits per second - bps) hoc o bng bt (baud rate). V mt k thut th bps v baud khc nhau, nhng vic dng baud thay cho bps qu ph bin nn hai n v ny c th thay th cho nhau. Nu xt v tc th cng nhanh cng tt. V d truyn mt file 300K qua modem c tc l 2400 bps th mt khong 22 pht, cn vi modem 9600 bps ch mt 5,5 pht. u th v tc cng th hin r khi truyn hoc nhn thng tin khong cch xa. Ti Vit Nam, nht l cc thnh ph ln cht lng ng truyn rt tt nn thng t c tc cao nht upload l 33.6 Kbps, download l 56 Kbps. Vo thi im hin nay, modem c kh nhiu thng hiu nh Origo, Pine, Intel, Acorp, Vern, GVC, Creative, Prolink, Creative v US Robotics, ph bin nht l hai chun V90 v V92. Modem loi gn trong (Internal) l mt v dng cm vo mt khe(slot) trong my PC. Loi dng cho modem tch hp trn mainboard, l bn mch c thit k tch hp lun trn PC, do PC c cng cm line in thoi vo. Loi modem gn ngoi (External) thng qua cng COM hoc USB kh phong ph v chng loi, cc thng hiu c ting nh US Robotics (56K, V90,Voice, dng chip 3COM), Creative (USB, V90/92), Hayes Accura 56Kbps V92 - External (Com Port). Modem loi PCMCIA (3COM, CNET, XIRCOM) dng cho my tnh xch tay cm qua cng PCMCIA. Theo kinh nghim s dng cht lng cc loi modem trong(internal) khng m bo, ch dng c trong khong thi gian bo hnh (12 thng), sau khi ht bo hnh vi tun hay thm ch sm hn l bt u c trc trc. Loi modem ngoi (Ext) cht lng m bo hn, c kh nng kt ni vi tc cao, nht l nhng loi modem ca cc hng ni ting nh US Robotics, Creative (USB, V90/92), Hayes Accura 56Kbps V92. Gii thiu mt s chun ph bin m cc modem ang dng: V42, X2, K56Flex,V90 v chun V92 Chun V90: Trc khi cng ngh V90 ra i th cng ngh K56Flex v x2 l hai cng ngh m hai nh sn xut modem hng u a ra. Cng ngh K56Flex l do cng ty Lucent Technologies v Rockwell Semiconductor Systems phi

121

hp. x2 l cng ngh do 3Com Coporation/US Robotics. Ngoi hai cng ngh K56Flex v x2 th loi modem no c hai chun ny th c th t c tc kt ni nhanh hn tc 33.6Kbps. Modem s dng cng ngh K56Flex hoc x2 khng th t c tc ti nhanh t nhng nh cung cp dch v khi modem ta ang s dng mt cng ngh khc ngoi K56Flex v x2. iu ny c ngha l nh cung cp dch v m ta kt ni vo cng phi h tr chun K56Flex v x2. V90 trc y c bit di dng V.pcm, n l k thut iu ch xung. Sau ny hai chun ny c thit lp li thnh mt chun m tt c cc modem khc c th hiu c v tng thch trn ton cu. Chun V92: Sau khi cho ra i chun V90 c hai nm, t chc ITU-T cho ra i chun V92. y l th h tip theo ca modem tng t. Chun ny s c thng qua mt chnh thc t nm 2000. Chun V92 c thm 3 chc nng so vi chun V90 nh: kt ni nhanh, chng ta ch cn mt na thi gian so vi trc dial-up; nh c nhng cuc in thoi gi n, chc nng ny cho php nhn mt cuc in thoi gi n trong khi modem ang s dng; kh nng iu ch xung ngc c th y mnh lin kt ngc chiu ln ti 48kbit/s. Kt ni nhanh l mt u im c bit vi ngi dng, thi gian kt ni rt ngn xung cn 10 giy, iu ny rt c ngha khi chun V90cn ti 20 giy. Tnh nng kt ni nhanh, duy tr cc tham s ng truyn cho nhng im truy nhp chung, nh l t l tn hiu v nhiu, tn s xut hin cu tr li m gim i c nhng thi gian thm d v vy tit kim c thi gian. Cng ty Conexant ni rng s nghin cu gim thi gian kt ni xung cn 5 giy. Nh c nhng cuc in thoi gi n. Chc nng ny c th bo v s kt ni modem ln ti 16 pht, trong khong thi gian mt cuc in thoi gi n s c pht hin khi modem ang c s dng. Chc nng ny c da trn mt phin bn modem ca hng NTT vi chc nng "Bt cuc gi". Chc nng ny c ngi dng quan tm nhiu, c bit l M, trong ton b thi gian kt ni th c th xy ra nhng cuc gi vi mt t l c nh, Nht th vn ny cn ph thuc vo cc nh cung cp dch v, v phn mm chuyn i k thut s

122

c bit phi c ci t bi mt hng truyn thng. Lin kt ngc chiu ln ti 48kbit/s Cc ci tin lm cho d liu c truyn vi tc cao trn lin kt ngc chiu t nh ti tng i. Ngi ta s dng k thut ging nh s iu ch m ho xung (PCM) cho tng tc t 33.6 kbit/s trong modem 56k ln 48 kbit/s. Chun V42: Giao thc V42 c thm LAPM ( Link Access Protocol) v MNP 1-4. Khi hai modem bt tay ch V42 th n s dng giao thc LAPM iu khin nhng d liu b li v s yu cu modem pht truyn li nhng khi d liu b li. Nu mt trong hai modem h tr chun V42 v modem cn li ch h tr MNP th modem kia s thng lng s dng MNP. C hai trng hp trn th qu trnh sa li trn ng truyn hon ton t ng v khng yu cu bt c phn mm no hay chuyn gia mi s dng c. Chun V42BIS: Giao thc ny s s dng MNP Level 5 tng xng d liu, im khc bit l khi lng d liu c nn bao nhiu. Giao thc V42 thng nn d liu t l 4:1 ph thuc vo loi tp tin c gi. Nhng tp tin hay d liu c nn sn nh l PKZIP, GIF hay JPG th t l nn khng bit s c modem nn na hay khng, n s ph thuc vo h thng nn ca modem. NTU - Thit b kt cui mng (Network Terminal Unit) l thit b t ti cc im kt cui mng, thc hin chc nng kt ni tn hiu v chuyn i giao din gia knh truyn dn truy nhp mng vi thit b u cui thu bao. 3.1.4.5 CSU/DSU CSU/DSU (Channel Service Unit/Data Service Unit) l thit b phn cng ti cc im u cui ca cc knh thu ring. N lm nhim v chuyn d liu trn ng truyn thng WAN sang d liu trn LAN v ngc li. Thit b ny dng kt ni WAN khi dng cc knh thu ring. CSU/DSU dng cc giao din chun RS-232C, RS-449, hay V.xx 3.1.4.6 ISDN terminal Adaptor L thit b u cui kt ni PC hay LAN vo WAN qua mng ISDN.

123

3.1.5 nh gi v so snh mt s cng ngh dng cho kt ni WAN.


Vi nhu cu i hi ngy cng cao ca x hi nn vn xem xt nh gi k thut trong mng l mi quan tm hng u ca cc nh phn tch v thit k mng. Chng hn mt yu cu ph bin nh lm th no truy xut thng tin mt cch nhanh chng v ti u nht, trong khi vic x l thng tin trn mng qu nhiu i khi c th lm tc nghn trn mng v gy ra gin on thng tin mt cch ng tic. Hin nay vic lm sao c c mt h thng mng chy tht tt, tht an ton vi chi ph hp l, v mang li li ch kinh t cao, ang rt c quan tm. Mt vn t ra c rt nhiu gii php v cng ngh, mi gii php c rt nhiu yu t cu thnh, trong mi yu t c nhiu cch la chn. Nh vy a ra mt gii php hon chnh, ph hp th phi tri qua mt qu trnh chn lc da trn nhng u im ca tng yu t, tng chi tit rt nh. Trong thit k WAN th cng ngh kt ni l vn c bn nht cn c xem xt, nh gi v la chn hp l. gii quyt mt vn phi da trn nhng yu cu t ra v da trn cng ngh gii quyt. Nhng cng ngh cao nht cha chc l cng ngh tt nht, m cng ngh tt nht l cng ngh ph hp nht vi yu cu t ra v iu kin thc t. Kt ni PSTN(mng in thoi cng cng) Kt ni WAN qua mng in thoi cng cng c u im l n gin, d thc hin, nhng nhc im ln nht l hn ch v tc , v tin cy thp. Ch dng hiu qu cho cc thu bao c thi gian kt ni di 4 gi/ngy. Kt ni ISDN(mng dch v tng hp) Kt ni WAN qua mng a dch v s ISDN c u im l n nh hn qua mng in thoi cng cng, nhng li chu chi ph cao hn, v l loi kt ni khng ph bin. Chi thc hin c ti cc a phng m tng i h tr dch v ISDN. Kt ni FRAME RELAY Hin nay Vit nam, vi mt mng li truyn dn cha tt ng u, cc trc chnh dng cp quang, cn li nhiu phn vn dng viba vi cc knh dng cho thoi l chnh, t c cc knh dng cho truyn s liu, cht lng truyn dn cha hon ton tt. Do vy bu in cha trin khai cng ngh Frame Relay trn ton quc, nh trn trnh by iu kin tin quyt s dng Frame Relay l cht lng mng truyn dn phi cao. Tuy nhin, nh ni m bu in trin khai

124

cng ngh Frame Relay th vic xem xt chn gii php kt ni WAN dng Frame relay l hon ton chp nhn c, cn c xem xt v trin khai. Kt ni s dng cng ngh xDSL Nh phn ln cng ngh khc, tim nng trn l thuyt ca cng ngh DSL c s khc bit ng k i vi tc kt ni WAN cho cc t chc v gii doanh nghip hin nay. c bit, cng ngh VDSL c th cung cp tc truy cp ln n 52 Mbps tuy nhin phn ln cc kt ni vn dng tc ng truyn thp hn nhiu 128 Kbps. Cc chuyn gia cng ngh cho bit c nhng hon thin ng k trong cht lng ng truyn theo cng ngh xDSL. V th lng khch hng thu bao s dng dch v xDSL vn khng ngng tng ln. Vic kt ni s dng xDSL nhng doanh nghip t khong 1999 l bc hu thun cho vic s dng cng ngh ADSL hin nay (cng ngh DSL khng i xng) vi tc truy cp t 512 Kbps n 8 Mbps. Chuyn gia phn tch cp cao ca Gartner Dataquest ng Charles Carr ni tc ca cng ngh xDSL c kh nng thay i cao v nhiu l do k thut khc nhau nh cht lng ng truyn v khong cch gia cc vn phng trung tm. D cng ngh vi tc truy cp nhanh hn bnh thng c th c trin khai ti mt s khu vc nhng phn ln cc doanh nghip v khch hng s dng dch v kt ni DSL l nhng ngi lm vic t xa v cm thy hi lng vi tc hin hnh. Trong nhng nm ti cng ngh nh VDSL c th phn phi tc kt ni hon thin ng k t 26 Mbps n 52 Mbps. ng Carr cng ch ra rng ch c Qwest l cng ty duy nht hin nay c th cung cp cng ngh ny. ng cho bit so vi tc t c trn l thuyt, cng ngh VDSL thc s c tc kt ni trung bnh mc thp gm hai ch s megabit. Ngy nay cng ngh kt ni xDSL c xem l cng ngh c tc truy cp nhanh hn, r hn, v tin cy, n s l la chn u tin ca cc nh thit k WAN.

3.2 Thit k mng WAN.


3.2.1 Cc m hnh WAN
3.2.1.1 M hnh phn cp Khi nim m hnh phn cp

125

M hnh phn cp h tr thit k WAN thng l m hnh phn cp ba tng: Tng 1 l tng li(xng sng ca WAN backbone), tng 2 phn tn, tng 3 l tng truy nhp, gi tt l m hnh phn cp phc v cho vic kho st v thit k WAN.

Hnh 3-20: M hnh phn cp h tr thit k WAN

Tng li l phn kt ni mng trc(WAN backbone) kt ni cc trung tm mng (NOC) ca tng vng, thng thng khong cch gia cc NOC l xa hay rt xa, do vy chi ph kt ni v tin cy cn phi c xem xt k. Hn na vn m bo cht lng dch v QoS cng c t ra, dn n phn loi, phn cp u tin dch v. Tng phn tn l phn kt ni cc im i din POP, hay cc nhnh mng vo NOC. Tng truy nhp t xa l phn kt ni ca ngi dng di ng, hay cc chi nhnh nh vo POP hay vo NOC. Cc u im ca m hnh phn cp: Nh m hnh phn cp ngi thit kt WAN d t chc kho st, d la chn cc phng n, v cng ngh kt ni, d t chc trin khai, cng nh nh gi kt qu. Cc tng trong m hnh phn cp Tng li Tng phn tn Tng truy nhp

126

3.2.1.2 Cc m hnh tp. M hnh tp (Topology) ca WAN gi tt l m hnh tp thc cht l m t cu trc, v cch b tr phn t ca WAN cng nh phng thc kt ni gia chng vi nhau. Phn t ca WAN y l NOC trung tm mng, POP - im i din ca mt vng, hay cc LAN, v PC , Laptop,... Cc NOC, hay POP c th l cac campus LAN, hay l mt WAN. M hnh tp gip cc nh thit k WAN thc hin vic t chc kho st, phn tch v qun l trong qu trnh thit k, cng nh thi cng hiu qu. Cu trc, a phng ho mng cn trin khai Cc m hnh chc nng ca h thng, phn tch cc chc nng ca h thng d bo, v xc nh cc yu cu trao i thng tin.

3.2.2 Cc m hnh an ninh mng.


3.2.2.1 An ninh-an ton mng l g ? Khi nim: Theo mt ngha rng th an ninh-an ton mng dng ring, hay mng ni b l gi khng cho ai lm ci m mng ni b khng mun cho lm. Vy khi kt ni WAN phi trin khai c ch no thc hin yu cu an ninh-an ton, chng ta gi l c ch an ninh-an ton mng. Ti nguyn m chng ta mun bo v l g ? L cc dch v m mng ang trin khai L cc thng tin quan trng m mng ang lu gi, hay cn lu chuyn; L cc ti nguyn phn cng v phn mm m h thng mng c, cung ng cho nhng ngi dng m n cho php, ... Nhn t mt pha khc th vn an ninh - an ton khi thc hin kt ni WAN cn c th hin qua tnh bo mt (confidentiality), tnh ton vn (integrity) v tnh sn dng (availability) ca cc ti nguyn v phn cng, phn mm, d liu v cc dch v ca h thng mng. Vn an ninh - an ton cn th hin qua mi quan h gia ngi dng vi h thng mng v ti nguyn trn mng. Cc quan h ny c xc nh, c m bo qua phng thc xc thc (authentication), xc nh c php (authorization) dng, v b t chi (repudiation). Chng ta s xem xt chi tit: Tnh bo mt: Bo m ti nguyn mng khng b tip xc, b s dng bi nhng ngi khng c thm quyn. Chng hn d liu truyn trn mng c m bo

127

khng b ly trm cn c m ho trc khi truyn. Cc ti nguyn u c ch v c bo v bng cc cng c v cc c ch an ninh-an ton. Tnh ton vn: m bo khng c vic s dng, v sa i nu khng c php, v d nh ly hay sa i d liu, cng nh thay i cu hnh h thng bi nhng ngi khng c php hoc khng c quyn. Thng tin lu hay truyn trn mng v cc tp cu hnh h thng lun c m bo gi ton vn. Chng ch c s dng v c sa i bi nhng ngi ch ca n hay c cho php.

Hnh 3-21: M hnh an ninh-an ton

Tnh sn dng: Ti nguyn trn mng lun c bo m khng th b chim gi bi ngi khng c quyn. Cc ti nguyn lun sn sng phc v nhng ngi c php s dng. Nhng ngi c quyn c th dng bt c khi no, bt c lc no. Thuc tnh ny rt quan trng, nht l trong cc dch v mng phc v cng cng (ngn hng, t vn, chnh ph in t,...). Vic xc thc: Thc hin xc nh ngi dng c quyn dng mt ti nguyn no nh thng tin hay ti nguyn phn mm v phn cng trn mng. Vic xc thc thng kt hp vi s cho php, hay t chi phc v. Xc thc thng dng l mt khu (password), hay cn cc ca ngi dng nh vn tay hay cc du hiu c dng. S cho php xc nh ngi dng c quyn thc hin mt hnh ng no nh c/ghi mt tp (ly thng tin), hay chy chng trnh (dng ti nguyn phn mm), truy nhp vo mt on mng (dng ti nguyn phn cng), gi hay nhn th in t, tra cu c s d liu - dch v mng,... Ngi dng thng phi qua giai on xc thc bng mt khu (password, RADIUS,...) trc khi c php khai thc thng tin hay mt ti nguyn no trn mng. Tin tc tn cng mng khi kt ni WAN th no?

128

y chng ta cng phi cp n cc hnh ng tin tc khc nhau c th gp phi khi kt ni WAN, th lit k mt s loi hnh ng tin tc sau: Hnh ng thm d (probe), hnh ng qut (scan), hnh ng th vo mt ti khon (account compromise), hnh ng th vo lm qun tr h thng (root compromise), hnh ng thu lm cc gi tin (packet sniffer), hnh ng tn cng t chi dch v (denial of service), hnh ng khai thc quyn (exploitation of trust), hnh ng lm m gi (malicious code),... Hnh ng thm d (Probe). Hnh ng thm d c c trng bng vic th truy nhp t xa vo mt h thng hay sau khi vo c h thng th tm cc thng tin ca mt h thng m khng c php. Thm d thng l kt qu ca s t m hay s nhm ln khi truy nhp mng. Hu qu ca s thm d c khi rt ln, nht l khi truy nhp c vo mng vi quyn ln, hay m ra cc thng tin quan trng. Hnh ng qut (Scan). Hnh ng qut l vic dng mt cng c t ng thc hin thm d tm l hng an ninh ca h thng vi mt s lng ln. Hnh ng qut i khi l kt qu ca mt li h thng nh hng hay mt cu hnh ca mt dch v. Nhng cng c th l giai on u m tin tc dng tm cc l hng an ninh mng chun b cho mt cuc tn cng. Qun tr h thng cng c th dng phng php qut pht hin cc im yu v an ninh - an ton trong h thng mng ca mnh. Hnh ng vo mt ti khon (Account Compromise). Hnh ng vo mt ti khon l hnh ng dng mt ti khon khng c php. Hnh ng ny c th gy mt d liu quan trng, hay l hnh ng dng trm dch v, ly cp d liu. Ngi dng mng b tin tc ly cp mt khu. Cch vo mt my tnh d nht l c c mt khu v vo my bng lnh login; ro cn tin tc u tin l mt khu. Nu mt khu b mt, th tin tc c th lm mi th m ngi dng c php. Hnh ng vo quyn qun tr (Root Compromise). Hnh ng vo quyn qun tr l hnh ng vo mt ti khon c quyn ln nht ca h thng, do vy c th gy ra nhng hu qu rt nghim trng cho h thng. T vic thay i ton b cu hnh ca h thng, n vic ci t cc cng c ph hoi, ly cp thng tin, cho n vic t chc cc cuc tn cng ln. Hnh ng thu lm cc gi tin (Packet Sniffer).

129

Hnh ng thu lm cc gi tin l vic thc hin chng trnh bt cc gi d liu ang truyn trn mng do vy bt c c thng tin ngi dng, mt khu v c cc thng tin ring t dng vn bn. Da vo cc thng tin thu lm c tin tc c th thc hin tn cng h thng. Hnh ng tn cng t chi dch v (Denial of Service). Mc ch ca hnh ng tn cng t chi dch v l ngn cn khng cho ngi dng hp php s dng dch v. Tn cng t chi dch v c th thc hin bng nhiu cch, nh to tm cch s dng bt hp php tt c cc ti nguyn mng nh treo cc kt ni, to lung d liu ln, gy tc nghn ti cc cng kt ni,... Lm th no m bo an ton-an ninh khi kt ni WAN? Cc vn v an ninh-an ton khi kt ni WAN cn c xem xt v thc hin sau khi chn gii php kt ni, nht l khi kt ni WAN cho cc mng cng tc, m s dng cc mng d liu cng cng, hay mng internet. 3.2.2.2 Xy dng m hnh an ninh-an ton khi kt ni WAN Cc bc xy dng : Xc nh cn bo v ci g ? Xc nh bo v khi cc loi tn cng no ? Xc nh cc mi e da an ninh c th ? Xc nh cc cng c bo m an ninh ? Xy dng m hnh an ninh-an ton Thng xuyn kim tra cc bc trn, nng cp, cp nht v v h thng khi c mt l hng an ninh - an ton c cnh bo. Mc ch ca vic xy dng m hnh an ninh - an ton khi kt ni WAN l xy dng cc phng n trin khai vn an ninh - an ton khi kt ni v a WAN vo hot ng. u tin, mc ch v yu cu v an ninh-an ton h thng ng dng phi c vch ra r rng. Chng hn mc tiu v yu cu an ninh-an ton khi kt ni WAN cho cc c quan hnh chnh nh nc s khc vi vic kt ni WAN cho cc trng i hc. Th hai, m hnh an ninh-an ton phi ph hp vi cc chnh sch, nguyn tc v lut l hin hnh. Th ba, phi gii quyt cc vn lin quan n an ninh-an ton mt cch ton cc. C ngha l phi m bo c v phng tin k thut v con ngi trin khai.

130

3.2.2.3 Mt s cng c trin khai m hnh an ton-an ninh H thng tng la 3 phn(Three-Part Firewall System) Tng la l g? Tng la l mt cng c phc v cho vic thc hin an ninh - an ton mng t vng ngoi, nhim v ca n nh l h thng hng ro vng ngoi ca c s cn bo v. Khi kt ni hai hay nhiu phn t ca WAN, chng hn kt ni mt NOC vi vi nhiu POP, khi nguy c mt an ninh ti cc in kt ni l rt ln, tng la l cng c c chn t ti cc im kt ni . Tng la trong ting Anh l Firewall, l ghp ca 2 t fireproof v wall ngha l ngn khng cho la chy lan. Trong xy dng, tng la c thit k gi khng cho la lan t phn ny ca to nh sang phn khc ca to nh khi c ho hon. Trong cng ngh mng, tng la c xy dng vi mc ch tng t, n ngn nga cc him ho t pha cng ng cc mng cng cng hay mng INTERNET, hay tn cng vo mt mng ni b (internal network) ca mt cng ty, hay mt t chc khi mng ny kt ni qua mng cng cng, hay INTERNET. Chc nng ca h thng tng la: Tng la t cng vo/ra ca mng, kim sot vic truy nhp vo/ra mng ni b ngn nga tn cng t pha ngoi vo mng ni b. Tng la phi kim tra, pht hin, d tm du vt tt c cc d liu i qua n lm c s cho cc quyt nh (cho php, loi b, xc thc, m ho, ghi nht k,..) kim sot cc dch v ca mng n bo v. m bo mc an ninh - an ton cao, tng la phi c kh nng truy nhp, phn tch v s dng cc thng tin v truyn thng trong c 7 tng v cc trng thi ca cc phin truyn thng v cc ng dng. Tng la cng phi c kh nng thao tc cc cc d liu bng cc php ton logic, s hc nhm thc hin cc yu cu v an ninh - an ton. Tng la bao gm cc thnh phn: cc b lc hay sng lc.

Mng trong

B Lc Vo

Gateway B Lc Cng Vo/ra ra

Mng Ngoi

M hnh tng la

Hnh 3-22: M hnh logic ca tng la

131

Tng la chnh l cng (gateway) vo/ra ca mt mng ni b (mng trong), trn c t 2 b lc vo/ra kim sot d liu vo/ra mng ni b. Xc nh v tr t tng la trong h thng mng hin i. Theo truyn thng th tng la c t ti v tr vo/ra mng ni b (mng c bo v) vi mng cng cng(mng ngoi), hay mng internet ( internet, khi kt ni vi internet). Ngy nay trong mt t chc khi kt ni WAN c th kt ni on mng khc nhau, v do yu cu v an ninh - an ton ca cc on mng khc nhau. Khi tng la s c t v tr vo/ra ca cc on mng cn bo v. Di y cc on mng 1, 5, 7 cn bo v.
Mng 2 Mng 1
F W

Mng 1
F W

Mng 4 Mng 3

F W

Mng 5

Mng 6
F W

Mng 7 Mng 1

Hnh 3-23: V tr t tng la trn mng

D liu vo/ra mng ni b vi mng ngoi u i qua tng la, do tng la c th kim sot v m bo d liu no l c th c chp nhn (acceptable) cho php vo/ra mng ni b. V mt logic th tng la l b tch, b hn ch v b phn tch. Tng la l im tht(choke point). C ch ny bt buc nhng k tn cng t pha ngoi ch c th thm nhp vo h thng qua mt knh rt hp (ni ny th gim st v iu khin c). C ch ny hot ng cng tng t nh cc trm thu ph giao thng t ti cc u cu, hay cc im kim sot v vo cng mt sn vn ng. Tuy nhin c ch ny c mt yu im l n khng th ngn chn c nhng k tn cng xm nhp vo h thng bng cch i vng qua n, hay tn cng t bn trong. Cc mi e da m tng la c th chng li c l:

132

Chng li cc cuc thm nhp t xa n cc ngun thng tin khi khng c php. T chi cc dch v a thng tin t mng ngoi vo mng ni b vi mc ch lm ri lon h thng. Qun l c truy nhp ra mng ngoi, do cm c truy nhp t mng ni b ra ngoi khi cn thit. Bng c ch xc thc chng li s gi danh truy nhp mng t mng ngoi vo. Ngoi ra tng la cn c kh nng tr gip cho ngi quan tr h thng nh ghi nht k, iu khin truy nhp, pht hin cc thm nhp ng ng, c phn ng khi c cc trng thi kh nghi, ... Ngoi nhng u im lit k trn, th tng la cng c nhc im nh tng la khng chng c virt, khng chng li c tin tc tn cng t cng sau (backdoor)

Hnh 3-24: M hnh h thng tng la 3 phn

H thng pht hin t nhp mng Gii thiu Nh trnh by phn trn cng ngh tng la khng th bo v an ninh - an ton mng y , n ch l mt phn trong m hnh an ninh-an ton khi kt ni WAN. Tng la khng t nhn ra c cc cuc tn cng v cng khng t ngn chn c cc cuc tn cng . C th xem h thng tng la nh hng ro v h thng gc cng vo/ra, khng c kh nng pht hin tin tc tn cng, cng khng t phn ng c vi cc cuc tn cng m n cha bit trc .

133

Trong phn ny chng ta trnh by mt cng c phc v an ninh - an ton mng th hai, l cng ngh pht hin t nhp, n l cng c b sung cho cng c tng la. Nu tng la l cc trm gc, th h thng pht hin t nhp c xem nh h thng cc camera/video theo di, gim st v l h thng bo ng. N thng c t ngay trong trm gc "tng la", hay t cc v tr quan trng bn trong ca mng, nhm ch ng pht hin ra du hiu mt an ninh-an ton, hay pht hin ra cc cuc tn cng khng bit trc. H pht hin t nhp mng l g? L h thng nhm pht hin ra vic s dng khng hp php ti nguyn h thng, pht hin nhng hot ng lm dng, tn cng vo h thng my tnh hoc mng my tnh. H pht hin t nhp IDS (intrusion detection system) l h thng bao gm phn mm v phn cng thc hin vic theo di, gim st, thu nhn thng tin t cc ngun khc nhau, sau phn tch pht hin ra du hiu (signature) ca s t nhp (du hiu ca cc hot ng tn cng hay lm dng h thng), cnh bo cho qun tr h thng, hay ra cc quyt nh phn ng phng v. Ni mt cch tng qut IDS l h thng cho php pht hin cc du hiu lm hi n tnh bo mt, tnh ton vn, v tnh sn dng ca h thng my tnh hay h thng mng my tnh lm c s cho vic phn ng li, bo m an ninh - an ton h thng. pht hin ra nhng du hiu ca s t nhp, IDS cn phn tch cc hot ng ca h thng, ng thi n phi c kh nng ch ra hot ng no l hot ng tn cng hoc lm dng h thng. i khi pht hin s t nhp cn phi kt hp nhiu phng php phn tch v qu trnh phn tch cng chia ra lm nhiu bc pht hin vic t nhp vo cha v mc no (trc khi, trong khi, hay sau khi t nhp thnh cng vo h thng?). Chng hn mt cuc t nhp b pht hin trc khi xy ra th ngi qun tr h thng s d dng ngn chn hoc l c s ging by bt k t nhp khi chng t nhp v tn cng vo h thng (thu thp chng c cho vic truy t sau ny). Nu vic t nhp c pht hin trong khi ang xy ra, hay thm ch sau khi n hon thnh, th iu phi lm u tin ca ngi qun tr h thng l nh gi mc gy hi v c lp on mng b tn cng. C s thc hin phn ng li vi nhng hot ng gy hi thng l ghi cc s kin ra mt hay nhiu nht k h thng thun tin cho vic phn tch sau ny. H thng pht hin t nhp cng c th c cu hnh bo ng khi c du hiu

134

tn cng c pht hin (du hiu ny c lu trong c s d liu cc du hiu v cc cuc tn cng c bit). Phn ng li vi cc hot ng gy hi cng c th l ngn chn tin tc truy nhp vo h thng hoc cho php truy nhp km theo gim st cht, hoc kch hot h thng tng la ngn chn cc tc nhn gy hi. Nhng hot ng t nhp l nhng hot ng xm nhp vo h thng mt cch c thc m khng c php ca ch h thng, nhm mc ch: Truy cp cc thng tin khng c php. Ph hoi thng tin. Ph hoi an ninh- an ton h thng, lm cho h thng tr nn khng tin cy hoc khng hot ng c,....

Hnh 3-25: cu trc ca mt h thng pht hin t nhp

Ngi t nhp trong cuc xm nhp vo mt h thng mt cch c thc c phn lm hai dng: t bn trong v t bn ngoi. Nhng k t nhp t bn ngoi l nhng ngi khng c quyn truy nhp vo my hay mng. Nhng k xm nhp t bn trong l nhng ngi dng hp php nhng ch c cp quyn hn ch trong h thng. H hot ng bng cch c gng truy cp ti nhng phn m h khng c php truy nhp ca h thng. H truy nhp v t m hoc ly trm thng tin khng c php. H pht hin t nhp l mt h thng c cc chc nng sau: Theo di, gim st ton mng, thu nhn thng tin t nhiu ngun khc nhau ca h thng. Phn tch nhng thng tin nhn c, pht hin nhng du hiu phn nh s lm dng h thng hoc nhng du hiu phn nh nhng hot ng bt thng xy ra trong h thng.

135

Qun l, phn tch hot ng ca ngi s dng h thng. Kim tra cu hnh h thng v pht hin kh nng h thng c th b tn cng. Phn tch bng thng k pht hin nhng du hiu th hin hot ng bt thng ca h thng. Qun l nht k ca h iu hnh pht hin cc hot ng vi phm quyn ca cc ngi dng. T chc t ng phn ng li nhng hnh ng t nhp hay gy hi m n pht hin ra, ghi nhn nhng kt qu ca n.

Hnh 3-26: Cc v tr t h pht hin t nhp

H thng pht hin l hng an ninh H thng pht hin l h an ninh l h thng gm cc cng c qut, v th thm d tn cng mng. N c ngi qun tr mng dng pht hin ra cc l hng v an ninh an ton trc khi a mng vo hot ng, v thng xuyn theo di nng cp, v cc l hng an ninh. 3.2.2.4 Bo mt thng tin trn mng Cng ngh m mt (cryptography) Mt trong nhng nguyn nhn s ng m tin tc c th thnh cng l hu ht cc thng tin chng ta truyn trn mng u dng d c, d hiu. Khi chng ta kt ni WAN bng cng ngh IP th tin tc d dng thy c th bt cc gi tin bng cng c bt gi (network sniffer), c th khai thc cc thng tin ny thc hin tn cng mng. Mt gii php gii quyt vn ny l dng mt m ngn tin tc c th khai thc cc thng tin chng bt c khi n ang c truyn trn mng. M ho (Encryption) l qu trnh dch thng tin t dng ngun d c sang dng m kh hiu.Gii m (Decryption) l qu trnh ngc li. Vic dng mt m s m bo tnh bo mt ca thng tin truyn trn mng, cng nh bo v tnh ton vn, tnh xc thc ca thng tin khi lu tr.

136

M mt c xy dng m bo tnh bo mt (confidentiality), khi d liu lu chuyn trn mng. Khi d liu c m ha th ch khi bit cch gii m mi c kh nng s dng d liu . Hin nay cc k thut m ha pht trin rt mnh vi rt nhiu thut ton m ha khc nhau. Cc h m kho c chia lm hai lp chnh: M kho i xng hay cn gi l m kho b mt. M kho bt i xng hay cn gi l m kho cng khai. H m i xng Kho m b mt. H m i xng l h s dng mt kho b mt cho cc tc v m ho v gii m. C nhiu thut ton kho b mt khc nhau nhng gii thut c dng nhiu nht trong loi ny l: DES (Data Encryption Standard). DES m ho khi d liu 64 bit dng kho 56 bit. Hin nay trong mt s h thng s dng DES3 (s dng 168bit kho thc cht l 3 kho 56 bit) IDEA (International Data Encryption Standard).IDEA tri vi DES, n c thit k s dng hiu qu hn bng phn mm. Thay v bin i d liu trn cc khi c di 64 bit, IDEA s dng kha 128 bit chuyn i khi d liu c di 64 bit to ra khi m cng c di 64 bit. Thut ton ny c chng minh l kh an ton v r rng l hn hn DES. Cc h m ho i xng thng c s dng trong qun i, ni v, ngn hng,... v mt s h thng yu cu an ton cao. Vn kh khn khi s dng kho b mt l vn trao i kho. Trao i kho b mt lun phi truyn trn mt knh truyn ring c bit an ton, tuyt i khng s dng knh truyn l knh truyn d liu. H m bt i xng Kho m cng khai. M kho cng khai c to ra gii quyt hai vn kh khn nht trong kho quy c l s phn b kho v ch k s. Hot ng ca h thng mng s dng m kho cng khai nh sau: Khi to h thng u cui: Mi h thng u cui trong mng to ra mt cp kho dng m ho v gii m thng tin s nhn. Kho th nht K1 l kho b mt; Kho th hai K2 l kha cng khai. Cc h thng cng b rng ri kho K2 ca mnh trn mng. Kho K1 c gi b mt. M ho v gii m thng tin:

137

Khi mt ngi dng A mun gi thng tin cho ngi dng B Ngi dng A s m ho thng tin bng kho cng khai ca ngi dng B (K2B). Khi ngi dng B nhn c thng tin n s gii m thng tin bng kho b mt ca mnh (K1B). Ch k s Khi ngi dng A gi ch k cho ngi dng B Ngi dng A m ho ch k ca mnh bng kho b mt ca chnh mnh (K1A). Ngi dng B nhn c ch k ca ngi dng A, ngi dng B s gii m ch k ca ngi dng A bng kho cng khai ca ngi dng A (K2A). Chuyn i kho Khi ngi dng A gi thng tin kho cho ngi dng B. Ngi dng A m ho thng tin kho 2 ln. Ln u bng kho b mt ca bn thn (K1A); Ln hai bng m cng khai ca ngi nhn (K2B). Ngi dng B nhn c thng tin kho s gii m thng tin kho hai ln. Ln u bng kho b mt ca bn thn (K1B). Ln 2 bng kho cng khai ca ngi gi (K2A). Mt s gii thut cho m kho cng khai c s dng nh: Diffie_Hellman, RSA, ECC, LUC, DSS,... M hnh ng dng M hnh ng dng l m hnh xy dng trn cc ng dng yu cu kt ni WAN Phn tch kt ni da trn cc yu cu ng dng Tch, gp cc ng dng, nh gi yu cu gii thng, nh gi yu cu cht kng dch v, nh gi yu cu tin cy ca cc kt ni,... Trn c s cc m hnh phn cp, m hnh tp, m hnh ng dng, v m hnh an ninh ca WAN cn thit k c xy dng, chng ta tin hnh cc bc phn tch cc yu cu ca WAN. Phn tch yu cu v hiu nng mng T m hnh tp chng ta c th tnh khong cch kt ni, m hnh ng dng d tnh gii thng, phi hp m hnh an ninh la chn thit b khi chn cng ngh kt ni phn trn. nh gi thi gian p ng gia cc trm hay cc thit b trn mng, nh gi tr i vi cc ng dng khi ngi dng truy nhp hay yu cu . nh gi yu cu cc i hi v bng thng ca cc ng dng trn mng,

138

nh gi cng sut mng p ng khi ngi s dng tng t bin ti cc im c chai. Ton b cc yu cu ny cn c ti u chn gii php hp l tho mn cc ch tiu: dch v tin cy, chi ph truyn thng ti thiu, bng thng s dng ti u. Phn tch cc yu cu v qu l mng: T m hnh tp, m hnh ng dng, v m hnh an ninh c th d bo qui m phc tp ca WAN, a ra cc yu cu v qun l mng, v m bo dch v, cng nh m bo v an ninh mng. Cc yu cu v qun l mng cn xc nh nh: phng thc-k thut qun l mng, phng thc quan st hiu nng mng, phng thc pht hin li ca mng, v phng thc qun l cu hnh mng. Phn tch cc yu cu v an ninh-an ton mng: Xc nh cc kiu an ninh-an ton, Xc nh cc yu cu cn bo v khi kt ni vi mng ngoi, v kt ni vi internet,... Phn tch cc yu cu v ng dng: T m hnh tp, m hnh ng dng, m hnh phng ban xc nh cc ng dng cn trin khai ngay trn mng, d bo cc ng dng c kh nng trin khai trong tng lai, d tnh s ngi s dng trn tng ng dng , gii thng cn thit cho tng ng dng, cc giao thc mng trin khai ngay, v cc giao thc s dng trong tng lai gn, tng lai xa,... tnh ton phn b ti u thi gian dng mng, Xc nh cc yu cu v ng dng v cc rng buc v ti chnh, thi gian thc hin, yu cu v chnh tr ca d n, xc nh ngun nhn lc, xc nh cc ti nguyn c v c th ti s dng. T cc yu cu chng ta tin hnh bc la chn cng ngh kt ni: Chn cng ngh kt ni theo cc ch tiu: o Gi thnh, v tc truyn l 2 yu t quan trng nht khi la chn cng ngh kt ni WAN, sau l tin cy, v kh nng p ng yu cu di thng ca cc ng dng. o Chi ph cho kt ni bao gm chi ph thit b, chi ph ci t ban u, v c bit phi xem xt l chi ph hng thng, v chi ph duy tr h thng.

139

o Vit Nam hin nay c nhiu nh cung cp dch v vin thng, vn chn nh cung cp dch v vin thng no, hay t u t l vn cn cn nhc trong thit k a ra cc gii php kt ni kh thi. Xc nh cng ngh kt ni, nh cung cp dch v vin thng Thc hin la chn cc thit b phn cng: o Chn router, chn gateway, o Chn modem, NTU,... o Chn Access server o Chn b chuyn mch WAN o Chn cc Server ng dng(Web, mail, CSDL,....) La chn phn mm ng dng, cc b phn mm tch hp,... La chn h iu hnh mng La chn cc h qun tr c s d liu La chn cc phng thc giao tc trn mng nh gi kh nng: kim tra thit k a ra chng ta phi nh gi c tt c cc m hnh, cc phn tch, v cc la chn. Mt trong phng php nh gi st vi thc t nht l xy dng Pilot th nghim, hay thc hin trin khai pha th nghim vi vic th hin cc yu t c bn nht ca thit k. Trin khai th nghim: o La chn mt phn ca d n a vo trin khai th nghim. o Lp hi ng nh gi sau pha th nghim.

3.3 Phn tch mt s mng WAN mu


Phn ny a ra mt s WAN minh ho: Xy dng WAN cho trung tm thng tin ca mt b ngnh. Phn tch yu cu: Mc tiu ca h thng: h thng WAN v truy cp t xa, cho trung tm thng tin ca mt b c thit k nhm m bo cc mc tiu sau y: H thng ny c xy dng trn cc thnh ph H Ni, H Ch Minh, Nng v Cn Th; Ti mi thnh ph, cc chi nhnh c kt ni ti tr s chnh; Tr s chnh t ti Trung tm thng tin mng

140

Ti cc Tr s chnh, h thng mng c thit k m, cho php d dng kt ni ti chi nhnh v tr s khc qua nhiu cch thc kt ni mng din rng khc nhau hin c ti Vit Nam nh Leased line, v tuyn tri ph, ISDN, Frame Relay, VPN, Dialup...; Cc h thng u c n nh, chnh xc cao; Phi bo ton c u t ban u cho h thng ca Khch hng. Cc yu cu ca h thng: Kt ni c vi Internet; C th truy cp vo trung tm mng (NOC) qua mng in thoi cng cng PSTN H thng c c thit k nh mt ISP c nh; H thng kt ni v truy cp phi c tc cao, hot ng n nh, m bo cc yu cu v bo mt thng tin, an ton tuyt i cho d liu v cc thng tin quan trng; H thng mng c thit k v xy dng m bo c th p ng mt cch y nhu cu khai thc thng tin, cng nh tc truy xut thng tin t trung tm mng ti cc chi nhnh v ti Internet; H thng mng phc v cng tc nghip v v khai thc Internet cho khong 100 nt mng trong Trung tm mng; H tr cc cch thc kt ni mng din rng vi cc chi nhnh hin c ti Vit Nam v tng lai nh Leased line, ISDN, Frame Relay, xDSL, dialup qua mng in thoi cng cng... C kh nng m rng v p ng c yu cu ca cc ng dng i hi tc cao hin nay v trong tng lai s trin khai th vin in t, cc ng dng a phng tin, hi ngh vin m,...m khng b ph v cu trc thit k ban u; Phn mng truy cp cc phn mng nh phi c bo v qua h thng tng la thng qua chnh sch an ninh cht ch i vi tng phn mng ; ng kt ni vi Internet phi m bo tc cao, n nh v sn sng cao thng qua hai knh thu ring ti hai nh cung cp IXP/ISP khc nhau. c th thc hin cc mc tiu nh Qung b Website: Cho php ngi dng t ngoi Internet (bao gm trong v ngoi Vit Nam) c th truy nhp n cc trang Web t ti my ch ca Khch hng. y chnh l mi trng qung b thng tin, chnh sch, v.v... nhanh nht, tin li

141

nht.Truy nhp Internet: Cho php ngi s dng trong ni b mng c kh nng truy nhp cc thng tin trn Internet. Hin ti, Trung tm c thit k cho khong 100 thnh vin. Cho php ngi dng trong mng s dng cc dch v Internet nh Web, FTP, trao i thng tin, din n tho lun,...v cui cng l bng thng ng truyn kt ni Internet phi c m bo, cho php cc h thng dch v nh H thng tm kim (Search Engine) dng thu thp thng tin trn Internet, cp nht Website, v.v... Cc thit b kt ni v truy nhp c chn la t cc hng cung cp thit b mng ni ting c uy tn trn th gii nh Cisco, Nortel, .. m bo n nh, bn v d dng nng cp khi cn thit. H thng mng ti H Ni v thnh ph H Ch Minh c thit k l trung tm mng, cho php cc chi nhnh c th truy nhp bng nhiu phng thc v c th kt ni vi Internet. Do kinh ph hn ch nn chng ta c th thc hin thnh nhiu pha. Pha 1 trin khai ti tng hnh dinh (head office). Nhn t gc t chc h thng mng,v cc yu cu k thut, cng nh cc yu cu ng dng, trung tm thng tin ca mt b va l mt ni cha v cung cp thng tin, tng t nh mt nh cp ni dung (ICP), va l ni cung cp dch v truy nhp t xa, v kt ni cc chi nhnh tng t nh mt nh cung cp dch v Internet (ISP). Do thit k s c th tham kho h thng mng ca mt nh cung cp dch v Internet vicc hot ng li l kho thng tin v h thng bin tp tin. Cu hnh c bn bao gm mt s phn mng (Subnet) vi cc mc an ninh bo v khc nhau ty theo chc nng v c tch bit bi h tng la. Phn lp mng cung cp truy nhp (Access Network): Cung cp truy nhp t xa vo trung tm mng(NOC) bng nhiu phng thc nh t Internet v t ngi dng quay s (Dialup) qua mng in thoi cng cng (PSTN). Thit b trung tm ca phn mng cung cp truy nhp bao gm: B nh tuyn Router, y l thit b thc hin cc kt ni WAN trung tm mng vi cc chi nhnh, v t mng trong ra Internet trn cc knh thu ring (leased line), VPN, hay v tuyn tri ph tu theo yu cu cht lng, v chi ph kt ni phi tr. H thng kt ni ny cng phi c thit k c kh nng m rng cao, d dng nng cp ng khi c yu cu.

142

Hnh 3-27: M hnh topo WAN kt ni tng hnh dinh vi cc chi nhnh

Dch v cung cp truy nhp t xa qua mng in thoi cng cng PSTN c thc hin thng qua Access Server, ch yu cp cho cc thnh vin ca trung tm truy cp t xa. Access Server cn phi la chn m bo tc kt ni v c th c m rng c. Cc kt ni qua ng Leased line ch yu phc v trao i thng tin gia cc chi nhnh v trung tm. Dung lng leased line phh bin bt u t 64 Kbps v c th nng cp tng bc n E1 (2,048 Mpbs) do vy cng phi chn thit b kt ni(NTU,...) c th nng cp c tc . Trong trng hp yu cu kt ni c tc cao hn th phi kho st kh nng dng h thng cp quang cng cc thit

143

b kt ni SONET, hay cc nh cung cp dch v vin thng c th cung cp c khng.H thng kt ni knh tc cao ny cng cn c gii php d phng cho trng hp c s c s khng lm gin on kt ni. Gii php d phng c th dng ni b qua ng in thoi cng cng. Phn lp mng cung cp dch v (Service Network): Cung cp cc dch v chy trn b giao thc IP nh th in t, din n, truy cp Web v cc dch v trn Internet khc. Dch v tn min(DNS),... ; Ph thuc vo s lng ngi s dng ca ton b h thng mng, phn mng cung cp dch v ny s c thit k cho ph hp. Kh nng c th m rng l iu c quan tm hng u trong phn mng ny, mt hoc nhiu my ch s c thm vo h thng cho php cc dch v Web, in th hay dch v khc c phc v da trn cc my ch ring r. Trong giai on ban u vi s lng ngi dng hn ch, s lng my ch cha cn ti a vi cu hnh mnh. Tuy nhin, i vi h thng cn sn sng cao, vic c t nht mi dch v mt my ch vi cu hnh mnh, c kh nng thay th dch v cho nhau l cn thit m bo tnh lin tc ca dch v. Cc my ch ng dng l cc thit b quan trng nht cho vic x l thng tin, cng l trung tm ca ton b h thng thng tin. Chng chu trch nhim lu tr, tnh ton, x l cc thng tin vo/ra ca ton b h thng. Chng ta c th s dng gii php ca nhiu hng chng hn nh : Borland Insprise; Oracle; Microsoft; IBM; B phn mm WebSphere; Cc hng khc. Phn lp mng ni b (Internal Network): Cung cp cc dch v xc thc ngi dng (Authentication), tnh cc (Billing) v qun l mng. y l lp cn c quan tm bo v nht trong thit k ca cc h thng mng cung cp dch v; m bo an ton an ninh cao cho ngi dng trong mng ni b, ta c th t thm my ch xc thc bn ngoi mng ni b. Dch v xc thc v tnh cc c xy dng da trn ln ca h thng mng, s lng ngi s dng v cc yu cu tnh cc.

144

Cc dch v h tr cung cp dch v v qun l mng khc cng c thc hin trong phn mng ny, trong cc chc nng qun l mng, sao lu d liu, dch v khch hng. Cc cng c chuyn nghip c th c dng nh SyMON i vi h SUN Microsystem hay HP OpenView c th chy trn h Windows,... Phn mng C s d liu, bin tp (Information Editing): Ni cha kho d liu, ng thi l ni lm vic ca ban bin tp. T y cc thng tin, d liu c bin tp cp nht vo h CSDL v Web server. Phn mng ny cng cn c bo v chng mi hnh thc xm nhp tri php t bn ngoi vi mc ch ly thng tin hay ph hoi h thng. Cc my tnh trong phn mng ny ch c php truy nhp trong ni b v ti mt s my ch nht nh nh my ch Web hay CSDL. Bn ngoi tng la khng th truy nhp ti cc my tnh trong phn mng ny. La chn phng n kt ni: La chn s 1 l dng cp ng trc tip ni Leased line Leased line dng trc tip cp ng l cch kt ni ph bin nht hin nay gia hai im c khong cch xa, t Trung tm Thng tin ti u cui ca nh cung cp IXP/ISP gn nht. Ti Vit Nam, tit kim chi ph thu bng thng, chng ta thng thu mt s knh c s n x 64K ri ghp knh ri m rng dn t c bng thng theo yu cu. Vi nhu cu trc ban u ca Trung tm Thng tin , knh thu ring l 128 Kbps. Vi h thng ny ta d dng nng cp tng bc ti E1(2,048 Mbps) bng cch thu v ghp thm cc knh c s . thc hin c cc yu cu v nhim v trn, qua m hnh topo phng n kt ni c thc hin nh sau: Kt ni truyn s liu (TSL) bng cp ng t Trung tm mng ti Nh cung cp kt ni Internet (IXP). Trong thi im hin ti, Vit Nam ang c 3 nh cung cp IXP l cng ty VDC trc thuc Tng cng ty Bu chnh Vin thng, cng ty truyn thng FPT v cng ty in t Vin thng qun i Vietel. ng truyn ny tc khi im c t l 128 Kbps, c kh nng nng cp ln tc E1 (2,048 Mbps); 01 knh d phng c ni ti mt IXP hoc ISP khc m bo n nh cao ca h thng; Knh thu bao kt ni ring i Internet ti mt IXP hoc ISP gn nht:

145

Cp ng in thoi thng thng ca h tng vin thng Vit Nam (ng knh cp 0,5 mm); S dng cc tuyn cp ring trc tip (thng thng l cp ng ng knh cp 0,9 mm hoc cp quang), c th dng cho nng cp kt ni ti tc 2,048 Mbps (E1). Dng kt ni mng ring o VPN l la chon th 2, sau khi so snh chi ph kt ni vi phng n 1. Mng ring o VPN c cc u im: Kt ni trc tip gia cc im bt k (Any-to-Any Connectivity) Tt c cc a im trong mng c th lin h trc tip vi nhau ch vi mt kt ni vt l duy nht ti mi a im, khng cn dng leased line hay PVC. iu ny lm cu trc mng tr nn n gin v cho php m rng mng mt cch nhanh chng khng cn thit k li mng hay lm gin on hot ng ca mng. Dng cc cng ngh kt ni khc nhau VPN cho php la chn cc cng ngh kt ni khc nhau (leased line, frame relay, ADSL, Ethernet, PSTN, ...) tu thuc vo yu cu v bng thng v phng thc kt ni ti mi im ca ngi dng. C th tch hp d liu, thoi v video (Data, Voice and Video Convergence) Vi cc cng ngh qun l cht lng dch v (QoS) chun, tt c cc ng dng d liu, thoi v video c th chy trn mt Mng IP ring, khng cn c cc mng ring r hay thit b chuyn dng. bo mt cao (High Network Privacy) H thng bo mt c sn trong mng s dng cng ngh Chuyn mch nhn a giao thc (Multi-Protocol Label Switching - MPLS) cho php phn tch lung d liu ca mi khch hng ra khi Internet cng nh cc khch hng khc. Mc bo mt tng ng nh cc dch v lp 2 nh X.25, frame relay v ATM. D s dng (Ease of Operation) VPN hn ch yu cu i vi ngi dng trong vic thc hin cc cng vic phc tp nh thit k mng, cu hnh b nh tuyn. Do vy gim rt nhiu chi ph vn hnh Mt im lin h cho mi yu cu (One Stop Shopping)

146

Cc ISP cung cp dch v trn gi vi mt im lin h duy nht trn phm vi ton Vit Nam. iu gip n gin ho vic trin khai cc mng quy m ln. p ng nhiu dch v ng dng trao i d liu nh truyn file, dch v th tn in t, chia s ti nguyn mng (file hoc my in), c s d liu, Web ni b, Truyn nh, Cc ng dng ERP, cc ng dng thit k k thut. Truy nhp Internet v s dng cc dch v trn nn mng ny nh mt khch hng Internet trc tip bnh thng. Cc ng dng v m thanh, hnh nh trong mng ring ca khch hng (Khch hng c kh nng thit lp mt tng i PBX s dng cng ngh IP v c th gi trong phm vi mng ni b ca mnh). Mt s ng dng cao hn nh: hi tho qua mng MPLS VPN, hosting... Mng ring o trn Internet cho php tn dng c nhng u th ca Internet, c bit khi phi thc hin kt ni ti cc im c khong cch xa. Do mt kt ni Internet c th c dng ni ti nhiu im khc nhau, nn Mng ring o c nhng u th tng hp ca cc kt ni PPP, dialup, v cc dch v mng li. ng thi, VPN cho php d dng tch hp nhiu giao thc WAN khc nhau. Tit kim chi ph vi mng ring o VPN: Nu dng Internet cho cc giao dch LAN-to-LAN, theo nh gi ca mt s t chc nghin cu v mng, c th lm gim ti 80% chi ph so vi cch thc kt ni WAN truyn thng. Hin nay, nhiu cng ty v t chc nhn thc c iu ny nhng cha thc hin v cn mt vn ln cn quan tm: an ninh. Mng ring o (VPN) cung cp mt gii php hiu qu cho vn an ninh. VPN a ra mt cch thc cng ngh kt ni cc mng LAN vi nhau v vi ngi dng di ng an ton v hiu qu. Nhng phng thc ny hin cha c dng nhiu v cha oc nh gi y v chi ph cng nh an ninh-an ton. Dng kt ni ADSL l la chn th 3: ADSL (Asymetric Digital Subcriber Line) l cng ngh bng thng rng cho php truy cp v trung tm mng hay vo internet vi tc cao. ADSL tn dng h thng cp in thoi bng ng c sn truyn ti d liu tc cao m khng cn phi lp t thm cp quang (fibre-optic) hoc cp ng,

147

tit kim chi ph hn. Tt c cc dng ADSL hot ng da trn nguyn tc tch bng thng trn ng cp in thoi thnh hai: mt phn nh dnh cho truyn m, phn ln dnh cho truyn ti d liu tc cao. Trn ng dy in thoi th thc t ch dng mt khong tn s rt nh t 0KHz n 20KHz truyn d liu m thanh (in thoi). Cng ngh ADSL tn dng c im ny truyn d liu trn cng ng dy, nhng tn s 25.875 KHz n 1.104 MHz. Do vy ta va c th kt ni truyn s liu va dng in thoi. y l cng ngh rt mi cn c nh gi. So snh nh gi cc phng thc kt ni WAN hin c ti Vit Nam: Dch WAN Dial-Up Analog ISDN Dial- Nhiu ni Up (BRI) ISDN Dial- Nhiu ni v Mt ni ti: Nhiu ni Mt Ni mt im ti mt im Tc hn ch 1 ng (128K) hoc Ni mt im ti mt im 2 ng (mi ng Cha ph bin Vit Nam, 64K ) Up (PRI) Leased Line Mt ni ng) Mt Ch c H ni, Tp HCMC M hnh tp trung Nhiu kt ni ng thi Cha ph bin Vit Nam C nh im ti im Frame Relay Nhiu ni Nhiu im Bng thng m bo tin cy cao Mt im ti nhiu im Bng thng m bo ang c khuyn khch pht trin bi Tng CT BCVT VN X.25 Nhiu ni Nhiu im Mt im ti nhiu im Thng c dng vi cc h tng vin thng lc hu mng oVPN, ring Nhiu ni qua Nhiu im Mt im ti nhiu im Chi ph hp dn i vi cc 30 ng (ti 64K mi cng c im chnh WAN c th S lng kt ni

148

h Internet

tng

mng WAN khong cch xa Bng thng linh hot c lp vi cc dch v din rng ni b

ADSL

Mt ni

Mt

C nh im ti im Bng thng rt cao Chi ph ha hn Hin ang l dch v th nghim

Dch WAN Analog ISDN

Bng thng

Gi

sn c v a l

Tc ti Ni ht th r, ng C khp mi ni 56K di v quc t cn t knh lng s dng m nhin ch mt phn chu pht trin loi hnh ny. ang c th nghim Vit Nam. lng s dng (T1) cch v bng thng (E1) 45Mb (T3) 64K-2Mb la chn. Dial- Ln ti 64K Cc tnh theo thi Chu u rt thng dng, tuy mi c 64K

Up (BRI)

bo ti 128K ISDN Dial- Up (PRI) Leased Line knh

mi Cc tnh theo thi Cng nh trn

56K-1.5Mb Ph thuc khong C khp mi ni; c nhiu

Frame Relay

56K-1.5Mb Cc c th tnh theo c pht trin ch yu Bc (T1) khong cch v bng M v Ty u, Vit Nam ang 64K-2Mb thng, cng nh c th c gng y loi hnh ny pht tnh theo dung lng trin. truyn Tnh cc theo bng Ch yu cc th trng chu thng hoc theo thng , M La tinh v ng u. lng Vit Nam ang dng t.

(E1) 45Mb (T3) X.25 Ti 64K

149

Mng h internet ADSL

ring tng (for

56K-1.5Mb Ph thuc vo gi u c Internet th c n! (T1) cc vin thng ni 64K-2Mb ht ni ti ISP v E1) gi quy nh bi ISP 8Mb Cha c gi chnh thc ang ph bin nhiu nc chu , c H ni , Hi phng, v TP HCMC 800Kb Cng gn

o VPN trn

45Mb (T3) (download) (upload) tng i tc cng cao La chn thit b: Thit b, vt t ti thiu xy dng kt ni WAN trung tm Trung tm Thng tin ti ISP, v ti cc chi nhnh gm c: B nh tuyn - Router Thit b Router c la chn phi m bo: o C s lng cng WAN nhiu hn cc im cn kt ni. C cc cng LAN ni vi cc phn on mng cn thit. C nng lc x l m bo khng qu 60% yu cu, c s RAM . o C Router d phng cho Router chnh . o Router phi c sn xut bi hng c uy tn trn Th gii, nh Cisco, Nortel,... m bo n nh, tin cy cao. o H tr cc giao thc nh tuyn ng nh RIP-1, OSPF, EIGRP,... o C cc b giao tip cho php thit b tng thch vi nhiu loi kt ni trong iu kin h tng Vin thng hin ti Vit Nam nh T1/E1, Ethernet/Fast Ethernet,

ISDN PRI, ISDN BRI, OC-3, ATM,... o m bo tng thch bo ton c chi ph u t ban u cho pha Khch hng, .

150

Vi yu cu ban u l 3 cng WAN Router c chn l Cisco Router 2621. y l thit b tha mn mi yu cu t ra ca D n. N cho php t tc x l 25 Kpps.Ngoi ra, n cn h tr VLAN, IP VPN,... v cc b giao tip cm thm theo yu cu cho php ta d dng nng cp nu cn. Modem s (xDSL Modem) L thit b ni gia thit b truyn v u ni vin thng, hay cn gi l thit b u cui mch d liu DCE, thc hin nhim v chuyn s liu. Modem s c la chn cho D n Khch hng phi tho mn cc yu cu sau y: o c sn xut bi cc hng c danh ting trn Th gii nh Patton, RAD, Pandatel, v.v... o Thit b h tr tc cao hn trong trng hp nng cp ng kt ni mng din rng. Pha u ca D n Khch hng, knh thu ring c tc 128 Kbps; o m bo chnh xc cao, d liu lu thng qua phng thc ng b bng nhau bng cch cung cp ngun nh thi; o m bo in p lun thch hp; o An ton d liu cao, tm v hiu chnh li trong qu trnh truyn/nhn dng thng tin; o H tr nn thng tin; o nh hnh tn hiu s; o C kh nng chn on li t xa. o H tr qun tr t xa qua cc module ghp thm ti tng i kt ni; Modem c la chn cho D n Trung tm Thng tin l ASMi-50. y l sn phm ni ting ca hng RAD, hin ang rt thng dng ti Vit Nam. Dng modem ny cho php truyn vi khong cch xa ti 8,2 Km v tc cao nht t 1152 Kbps. Access Server

151

Thit b Access Server t ti Trung tm c thit k p ng nhu cu kt ni qua mng PSTN cho khong 200300 ti khon ngi dng. Nh vy h thng phi p ng c nhiu cuc gi cng lc. Ngoi ra h thng cng cho php lp thm ng truy cp trong trng hp nng cp h thng. Ti Trung tm cp truy cp qua mng in thoi ca h thng mng, ta ng k s trt cho cc ng in thoi truy cp ca D n. Thit b Access Server c t ch t ng trt s trong trng hp c nhiu yu cu kt ni cng lc ti Trung tm. Cc ti khon ngi dng c qun l thng qua mt phn mm qun tr ti khon truy cp t xa. Phn mm qun l ti khon truy nhp phi tng thch hon ton vi thit b Access Server. ng thi n cng h tr s dng cc giao thc bo mt ti khon ngi dng nh CHAP/PAP, TACACS+, DES,... Cng tc qun tr ngi dng truy cp c thng qua giao din Web thn thin. Nhn vin qun tr mng c th d dng chnh sa, to/xo cc ti khon truy nhp. Trong trng hp nng cp h thng, cc Access Server th h mi c la chn cng h tr kt ni ti mng in thoi cng cng thng qua cc knh thu ring nh T1/E1. S dng cc Access Server th h mi, ngoi vic nng tc kt ni ngc dng qua modem l 56K, nh vy, tc v n nh ca kt ni dialup ti Trung tm mng cng c ci thin ng k. Access Server c th la chn l loi Cisco Access Router 3620. y l thit b a chc nng c thit k cho mt ISP c nh. Vi hn 20 module tu chn trn mt thit b, n cho php tch hp nhiu gii php trn cng mt thit b: a giao thc nh tuyn, tch hp ting ni/hnh nh, tip nhn truy cp t xa qua Dialup, ... Thit b thuc h 3600, c tnh tng thch cao vi nhiu loi kt ni Vin thng khc nhau nh Ethernet/Fast Ethernet, T1/E1, ISDN PRI, ISDN BRI, OC-3, ATM,....v cc module tu chn thm.

152

Tp hp cc module 1 Slot. trn Mi ngi ta gi l Slot cho php t nhiu nht 16 ng kt ni khng ng b qua modem. Dng 3620 c 02 Slot. Tu theo yu cu s dng m ta t hng trong Slot gm nhng module no? Cisco 3620 s dng b x l R4700 80Mhz, cho php t hiu sut 2040 Kpps.

Hnh 3-28: Access Server Cisco 3620

Kin trc Module: Mi chc nng ca h thng c bc tch thnh cc module ring. y l loi kin trc c hiu nng cao, cho php bo v u t cho d n ca Khch hng v tch hp nhiu chc nng trn cng mt thit b. Khi nhu cu ca d n ban u l dng 3620 lm thit b phc v truy cp t xa th ta ch cn t hng cng modem khng ng b trong ty chn. Trong trng hp d n Khch hng xy dng h thng tip nhn cc kt ni Dialup ca ngi dng t xa, thit b Cisco 3620 c th phc v ti a 32 ngi dng cng lc kt ni vo h thng. Thc t cho thy h thng tip nhn truy cp ny c th cung cp cho khong xp x 500 ngi dng truy cp t xa.

153

Ngoi ra, 3620 cng cho php ta lp t thm cc module modem k thut s trong trrng hp h thng kt ni nng cp ln E1. Chi tit v thit b c m t bi bng di y: Cc tnh nng k thut Cc tnh nng chung Chi tit 24 32 cng modem analog dng sn; 10/100 Ethernet LAN Cho php kt ni qua ng T1/E1 WAN qua cc cng modem dng sn; H tr cc dng modem analog 56K theo chun V90; Cho php cp nht cc phn mm nng cp ca modem; Hiu sut cao, t 2040 (Kpps); H tr cc kt ni an ton bo mt qua VPN, bao gm cc tu chn nh firewall, m ho d liu v cc giao thc ng hm. B vi x l DRAM NVRAM Flash memory (SIMM) Flash (PCMCIA) Boot ROM Dimensions (H x W x D) Weight Input voltage, AC power supply Current Frequency Input (AC) surge current 512 KB 1.75 x 17.5 x 13.5 inches (4.4 x 44.5 x 34.3 cm) 23 lb (10.45 kg) maximum, including chassis and two network modules 100 to 240 VAC, autoranging 1.0A 47 to 63 Hz 50A, one cycle memory 80-MHz IDT R4700 RISC 4 64 MB 32 KB 4 32 MB 2 32 MB

154

Input rating, DC power supply Operational between Current Input (DC) Power dissipation Console and Auxiliary ports Operating humidity Operating temperature Nonoperating temperature Noise level nhp mng. Modem surge current

-48 to -60 VDC -36 to -72 VDC 3.0A 65A, 250mS

60W (maximum) RJ-45 connector 5 to 95%, noncondensing 32 to 104\xb0 F (0 to 40\xb0 C) -40 to 185\xb0 F (-40 to 85\xb0 C) 45 dBA (maximum)

Tm li, y l thit b tho mn mi yu cu t ra cho cc thit b kt ni v truy

Cc modem c cu hnh t ng tr li cuc gi. Thng thng, cuc gi c n nh sau hai hi chung. Trong pha u ca D n, kt ni Dialup c thc hin qua mng in thoi cng cng nn tc ngc dng hn ch l 33.6 Kbps. Do ta nn t cu hnh cho modem chy vi tc 38.400 bps hin tng ngt kt ni t ngt. Ta nn ghi cng chui khi to cho modem phng trng hp mt in hoc s c. Khi Access Server phi khi ng li, t chui khi to chung, n s nhn li cu hnh c ghi cng cho modem. Gi t modem cn phi c thit k khoa hc, va khng gian thot nhit va m bo m quan cho phng mng. Modem cho d n Khch hng c la chn l Fax modem US Robotic 56K.

155

Internet

Router 2621 Mobile user

PSTN
username:password Yes/No

Access Server

TACACS Server

System Administrator

Hnh 3-29: Ngi dng xa kt ni v tng hnh dinh qua mng in thoi cng

T chc trin khai Cng tc cu hnh h thng WAN s c trin khai sau khi hon thnh lp t h thng LAN ti ta nh Trung tm Thng tin. Ton b h thng WAN c chia thnh cc phn lp mng trong qu trnh thit k. Do , trin khai h thng theo tng phn lp mng. m bo ng cht lng v tin thi cng, cng tc kim tra v gim st s c tin hnh ngay sau khi hon thnh tng phn on mng. Vic khim tra tng phn h cho php chng ta b qua giai on trin khai th nghim m vn rt ra c kinh nghim c nhng phn on tip theo. Sau khi cng trnh hon thnh h s thit k k thut, h s hon cng ca ton b mng li cng nh h s cu hnh ca tt c thit b trin khai phi c y , v c bi giao cho nhm qun tr mng. K hoch trin khai. Lch trin khai c d tnh ngay trong thit k nh sau: Chi tit 1 Cu hnh thit b Kim tra v hon thin h thng Bn giao k thut 2 3 4 5 Ngy 6 7 8 9 10

156

Hnh 3-30: Minh ho Wan backbone dng chun G.SHDSL/ADSL trin khai ti cng ty NetNam

3.4 Tm tt chng 3
Phn u trnh by cc kin thc c bn v WAN, cc yu cu khi thit k WAN, cc cng ngh v cc thit b dng cho kt ni WAN. ng thi a ra so snh v nh gi cc cng ngh ny. Phn hai trnh by phng php thit k WAN bao gm cc m hnh phc v cho thit k v i su vo m hnh an ton an ninh, l mt vn c bit quan trng khi thit k WAN. Trong phn ny chng ti cng a ra cc bc phn tch v thit k WAN. Phn cui trnh by chi tit mu thit k h thng WAN n gin nhng kh ph bin cho cc c quan v t chc chnh ph Vit Nam hin nay, l thit k WAN cho Trung tm Thng tin ca mt B, ngnh m chng ti trin khai trong thc t.

157

4 Kt lun.
L mt n v nghin cu, ng thi l mt ISP, chng ti trc tip thit k v trin khai nhiu h thng mng trong nhiu nm qua, chng ti c gng a vo gio trnh nhng hiu bit ca mnh nhm gip hc vin cc kin thc c bn v thc t khi thit k v xy dng h thng mng LAN, WAN. Do phi vit gio trnh trong thi gian qu ngn nn khng trnh khi nhiu thiu st mong cc ng nghip chn thnh gp .

158

5 Ti liu tham kho


[1] Internetworking Design Basics, Copyright Cisco Press 2003. [2] Internetwork Design Guide, Copyright Cisco Press 2003. [3] Ethernet Networks: Design, Implementation, Operation, Management. Gilbert Held .Copyright 2003 John Wiley & Sons, Ltd. [4] Internetworking Technologies Handbook. Copyright Cisco Press 2003. [5] CCDA Exam Certification Guide. Anthony Bruno, Jacqueline Kim, Copyright Cisco Press 2002. [6] TCP/IP Network Administration. Craig Hunt, O'Reilly & Associates. [7] ISP Network Design. IBM. [8] LAN Design Manual. BICSI. [9] Mng my tnh. Nguyn Gia Hiu. [10] Mng cn bn. Nh Xut bn Thng k.

159

You might also like