Professional Documents
Culture Documents
1 ............................................................................ 1
1.1 ...............................................................................................
1.1.1 ...............................................................................................
1.1.2 ...............................................................................................
1.2 ...................................................................................................
1.2.1 ...................................................................................................
1.2.2 .......................................................................................................
1.2.3 .......................................................................................................
1.2.4 .......................................................................................................
1.3 ...........................................................................................................
1.3.1 ....................................................................
1.3.2 ....................................................................
1.3.3 ....................................................................
1.3.4 ...........................................................................................
1.4 ...................................................................................................
1.4.1 ............................................................................
1.4.2 TCP/IP ...........................................................................................
1.5 .......................................................................................................
1.5.1 CSMA ....................................................................................
1.5 ...........................................................................................................
1.5.1 ............................................................................
1.5.2 ............................................................................
1.5.3 ....................................................................................
1.6 VLAN WLAN...................................................................................................
1.6.1 VLAN........................................................................................
1.6.2 WLAN....................................................................................
1.7 ........................................................................................
1.7.1 ........................................................................................
1.7.2 ...............................................................................................
1.7.3 ...............................................................................................
1
1
1
2
2
2
3
3
3
3
4
4
6
6
6
7
9
9
10
10
11
12
13
13
16
17
17
17
20
2 ......................................................................... 23
2.1 .......................................................................................................
2.1.1 ...............................................................................................
2.1.2 ...................................................................................................
2.2 ...............................................................................................................
2.2.1 Windows ....................................................................
23
23
24
25
25
3 ................................................................. 36
3.1 ...............................................................................................
3.2 ............................................................................
3.2.1 UNlX ........................................................................................
36
37
37
3.2.2 Netware.......................................................................................................
3.2.3 Windows NT Server....................................................................................
3.2.4 Windows 2000 Server................................................................................
3.2.5 Windows Server 2003 ....................................................................
5.2.6 Linux...........................................................................................................
3.3 Windows 2000 server ................................................................................
3.3.1 Windows 2000....................................................................................
3.3.2 Windows 2000 Server .....................................................
3.3.3 ................................................................................
3.3.4 Windows 2000 Server .....................................................
3.3.5 ....................................................................................
3.4 ...............................................................................................
3.4.1 ................................................................................
3.4.2 ...............................................................................................
3.4.3 ...................................................................................................
3.4.4 ........................................................................................
3.4.5 ...........................................................................................
38
39
39
40
40
41
41
41
43
44
44
46
46
46
47
49
50
4 .................................................................... 51
4.1 DNS...............................................................................................................
4.1.1 DNS ....................................................................
4.1.2 DNS ....................................................................................
4.1.3 DNS ....................................................................
4.1.4 WINS ............................................................................
4.1.5 DNS ............................................................................
4.2 Internet ....................................................................................
4.2.1 WEBFTP .........................................................
4.2.2 WEB FTP .................................................................
51
51
54
55
61
63
65
65
70
5 ......................................................................... 79
5.1 .......................................................................................................
5.1.1 ..........................................................................................
5.1.2 .................................................
5.2 .......................................................................................................
5.2.1 ....................................................................................
5.2.2 ........................................................................................
5.2.3 ........................................................................................
5.2.4 ....................................................................................
5.2.5 .................................................................
5.3 ...........................................................................................................
5.3.1 ...............................................................................................
5.3.2 ...........................................................................................
5.3.3 ...........................................................................................
5.3.4 ...........................................................................................
5.4 --VPN ........................................................................................
79
79
80
83
83
84
84
87
89
89
89
90
91
92
93
93
94
94
1.1
1.1.1
(local area network LAN)
(hub) (LAN switch)
l-l
(l)
(2)
1.1.2
(1)
b
1-1 b c a
c
(2)
(modem)
modem Internet
1.2
( )
1-2
1-2
1.2.1
(1)
" "( )
(2)
(3) .
20 80 20 90
(Token Bus)
(Ethernet)
1.2.2
(1)
(2)
(3)
(Token Ring)
(fiber distributed data interface FDDI)
1.2.3
(1)
(2)
(3)
1.2.4
(1)
(2)
4
+ + 4
1.3
1.3.1
1.
1-1
2.
3
(extended LAN)
1.3.2
1-3
1-3
2
1-4
1-4 LAN
1.3.3
1
(
1-5 S D
4
1-5
2
1-5
1-6
1-6
1-6 S D S
LAN 2 (CPU)
( ) 5
5 1-28
MAC ( MAC )
1.3.4
1
( )
(1) IEEE802.3
(2) IEEE802.4 IEEE802.5
2 Windows Netware LinuxX
Windows NT
(WirelessLAN WLAN)
(1)
(2)
(virtual LAN VLAN)
1.4
1.4.1
1
" "
1-7
)1
(
2
1-7
1-7
A. 1
B. 2
C.
D.
1 A B C D
2 D C B A
(
)
( )
IEEE802
1.4.2 TCP/IP
Internet
Internet
TCP/IP
TCP( ) IP( TCP/IP
Internet TCP/IP TCP/IP 20 60
OSI OSI
TCP/IP ( 1-8 )
(Internet )
7
1-8 TCP/IP
1
TCP/IP
OSI
TCP/IP
TCP/IP
TCP/IP
TCP/IP (Ethernet) (Token Ring)
TCP/IP (Frame Replay) ATM
2
( )
4 IP( ) ICMP(Internet )
IGMP(Internet ) ARP( )
IP
ICMP
UDP
UDP
4
TCP/IP OSI TCP/IP
(Telnet) (FTP)
(SMTP) (DNS)
1.5
1.5.1 CSMA
CSMA
(
" )
)
(1) 1-
CSMA
(2)
CSMA
(3) -CSMA
CSMA
(
-
)
CSMA
1-
CSMA
A
CSMA
B
CSMA
CSMA/CD 1-9
1-9 CSMA/CD
?
( )
CSMA/CD
1.5
1.5.1
1
(reconciliation sublayer RS) MAC
MAC 4b
MAC
2
(medium independent interface MII)
18
( )
4b 2.5MHz( l0Mb/s ) 25MHz( 100Mb/s
)
3
(physical coding sublayer PCS)
(1)4B/5B5
4B/5B
10
4b 5b
(2)8B/6T4 3
8B/6T
4b 6b
4
(3)PAM55
3
PAM554
4
(physical medium attachment sublayer PMAS)
ANSI
10b (TBI)
5
(physical medium dependent sublayer PMDS)
(
6
" "
AutoNeg
7
(medium dependent interface MDI)
RJ-45 BNC T
ST/SC
1.5.2
1-12
11
1-12
1 100Base-TX(5 )
100Base-TX 5 (UTP) ( 1 2 )
( 3 6 ) ( 10Base-T )
100Base-TX 4B/5B PCS
100Base--TX
(DTE)
4b 5b 4B/5B
RFI/EMI
125MHz
(MLT-3) 31.25MHz(
125/4MHz)
2 100Base-FX( )
100Base-FX
10OBase-TX
100Base--FX 4B/5B
125MHz RFI/EMI
MLT-3
3 100Base-T4(3 )
100Base-T4 3
( 1 2/4 5/7 8
) ( 3 6 )
3 6/4 5/7 8 100Base-T4 8B/6T
3 100Mb ( )
4b
6b 3 (
1 2/4 5/7 8 )
4 100Base-T2(3 )
100Base-T2 3
100Base-T2 PAM55( )
(
4b
)
4b 3 100Mb/s
100Base-T2
100Base-T
l00m
100Base-F
l0Base-T
1.5.3
IEEE802.3
(l)
(2)
(3)
(4)
(5)
(6)
(7)
(8)MAU (MJLP) MAU MJLP
12
( 4~7.5ms )
I
I 140
46 (100Base-X) 67 (l00Base-T4)
(1)
(uplink port) I
(2) 100Base-X
100Base-T4
I
(3) I
I
(chassis--based)
(4)I
VLAN
1.6.1 VLAN
( /
)
VLAN
LAN
VLAN LAN 1-13
13
1-13 VLAN
1-13 3 LAN LAN A LAN B LAN C LAN A 3
A1 A2 A3 LAN B B1 B2 B3 LAN C C1 C2 C3
3 LAN 9 3 VLAN VLAN1 VLAN2 VLAN3
VLAN LAN
VLAN LAN
(1) LAN
VLANLAN
VLAN
(2) VLANLAN
LAN
VLAN
1 VLAN
LAN LAN
VLAN ?VLAN
(1) VLAN
LAN
LAN
LAN
(2) VLAN
VLAN
VLAN
2 VLAN
VLAN
3 MAC IP
1 VLAN
VLAN
LAN
VLAN port based 1-14 VLANx 1 2 4 VLANy
3 5 6 7 8 1 2 4 VLANx
3 5 6 7 8 VLANy
14
1-14 VLAN
2 MAC VLAN
VLANMAC
MAC
VLAN1-15VLANx MAC A B C E VLANy
D F G H MAC MAC
VLAN
15
1-16 IPVLAN
1.6.2 WLAN
WLAN
WLAN
WLAN WLAN
1 WLAN
WLAN
1
1-17(a)
(AccessPoint AP) 3
1)
2)
3)
1-17(b)
16
1-17WLAN
1.7
TCP/IP
1.7.1
(Point to Point
protocol PPP)
1 PPP
PPP PDU( IP
PPP
)
ISP ISP PPP
2 PPP
PPP PDU
PPP
PDU PPP PDU
1.7.2
1 IP
IPIP
IP
IP
17
IP
IP
IPMAC (binding)
( WWWFTPE-mail ) IP
IP MAC
PDU IP
1 IP
IP 32 IP
(host-id)
(net-id)
IPIP
1-18
1-18 IP
IPIP
IP
IPIPIP
2 IP(subnet mask)
(host-id) (net-id)
IPIPIP
1-19(a)
?
IP
?
IP
18
1-19
B IP 140.50.0.0 2
22=4
140.50.1.0 140.50.2.0 140.50.3.0 140.50.4.0
IP 140.50.1.l
IP
B
255.255.0.0 IP
140.50.0.0
0000000100000001(257)IP140.50.1.1 140.50.0.0
257
3 IP
IP
IP
IP
net-id
Subnet-id IP ( IP )
IP
2 IP
IP
IPIP
IPIP
IP
IP
IP
IP
IP 4
(1)
( ) (direct
routing)
(2)
IP
(host-specific routing)
(3)
(network-specific
routing)
(4)
(default
route) 0.0.0.0
4
4 4
19
IPIP
IP
IP
IP
1.7.3
1 UDP
1 UDP
UDP PDU (user datagram) UDP
( TCP/IP PDU ) UDP 1-20
1-20 UDP
UDP
1) UDP 0
2) UDP
3) UDP . 8
UDP
4)
IP
5) UDP
6) 16b 0
2 UDP
UDP UDP PDU
TCP
UDP
UDP
UDP
UDP
TFTP(tiny file transfer protocol)
RIP(routing information protocol)
2 TCP
TCP
TCP
TCP. TCP
TCPTCP ( ) (
TCP
)
1 TCP
20
TCP1-21
1-21 TCP
2 TCP
TCP
? TCP
TCP
TCP" "
TCP
TCP
TCP
TCPTCP ?TCP
1)TCP( SYN )
TCP
TCP
TCP
SYN
SYN
21
1-22
A- B B A
(l)TCPFIN
(2) TCPFIN ACK FIN +1
(3) TCPFIN
(4) ACK
FIN ACK
=FIN +1
1-23
1-23
22
2.1
2.1.1
(TP Twisted Pair wire)
22 26
( )
12.7cm
38.1cm 14cm
100Mbps155Mbps
100 155Mbps
1
EIA/TIA
1MHz4Mbps
4Mbps
23
ANSI EIA/TIA568
16MHz 10Mbps 10base-T
20MHz 16Mbps
10base-T/100base-T
100MHz
100Mbps100base-T
10base-T
2
1
(Attenuation)
"db"
2
(FEXT) NEXT
FEXT
(NEXT) UTP
UTP NEXT
NEXT
40
NEXT40
NEXT
NEXT
3
NEXT
(SNR Signal-Notice ratio)
ACR 10
6
SNR
SNR
SNR
2.1.2
24
1
62.5/125m 8/125m 11dB
2
1 62.5/125um 50/125um
GB/T 12357 Alb Ala
850nm 3.5dB/km 20
200MHzkm 20
1300nm 1 dB/km 20
500MHzkm 20
2 GB/T 9771 B1.1
1310nm 1550nm 1 dB/km 1280nm
1310nm 6PS/KMnm 1550nm 20PS/KMnm
3 0.5 dB 20 dB 26 dB
2.2
2.2.1 Windows
ipconfig /all
ipconfig /renew
Ping
Arp
nbtstat NetBIOS
netstat
tracert
pathping
25
ipconfig /all
TCP/IP TCP/IP
ipconfig IP
Windows 95 Windows 98 winipcfg
ipconfig
/all ipconfig
ipconfig /all
TCP/IP TCP/IP
IP IP
0.0.0.0
ipconfig /all DHCP
TCP/IP WINS DNS
Windows 2000 IP Configuration
Node Type.. . . . . . . . Hybrid
IP Routing Enabled.. . . . No
WINS Proxy Enabled.. . . . No
Ethernet adapter Local Area Connection
Host Name.. . . . . . . . corp1.microsoft.com
DNS Servers . . . . . . . 10.1.0.200
Description. . . . . . . 3Com 3C90x Ethernet Adapter
Physical Address. . . . . 00-60-08-3E-46-07
DHCP Enabled.. . . . . . . Yes
Autoconfiguration Enabled. Yes
IP Address. . . . . . . . . 192.168.0.112
Subnet Mask. . . . . . . . 255.255.0.0
Default Gateway. . . . . . 192.168.0.1
DHCP Server. . . . . . . . 10.1.0.50
Primary WINS Server. . . . 10.1.0.101
Secondary WINS Server. . . 10.1.0.102
Lease Obtained.. . . . . . Wednesday September 02 1998 10 32 13 AM
Lease Expires.. . . . . . Friday September 18 1998 10 32 13 AM
TCP/IP TCP/IP
2
ipconfig /renew
TCP/IP TCP/IP
DHCP DHCP ipconfig /renew
DHCP
DHCP Windows 95 Windows 98 winipcfg
release renew ipconfig /release ipconfig /renew
IP
3
Ping
Ping IP Ping
IP ICMP TCP/IP
Ping Ping
Ping
IP Ping IP
ping IP_address
Ping
Ping TCP/IP
ping 127.0.0.1
Ping IP
ping IP_address_of_local_host
Ping IP
ping IP_address_of_default_gateway
Ping IP
ping IP_address_of_remote_host
Ping Windows IP
Ping
Arp
Ping
TCP/IP
Internet (TCP/IP) IP
IP
Ping
(TTL)
ping -?
ping [-t] [-a] [-n count] [-l length] [-f] [-i ttl] [-v tos] [-r count] [-s count]
<-j computer-list] | [-k computer-list> [-w timeout] destination-list
Options
-t Ping the specified host until stopped.To see statistics and continue type Control-Break;To stop - type Control-C.
ping Control-C
27
50
C >ping -n 50 202.103.96.68
Pinging 202.103.96.68 with 32 bytes of data
Reply from 202.103.96.68 bytes=32 time=50ms TTL=241
Reply from 202.103.96.68 bytes=32 time=50ms TTL=241
Reply from 202.103.96.68 bytes=32 time=50ms TTL=241
Request timed out.
65500byt
65500byt Windows
65532
ping
-t
28
192.168.1.21 65500byt
10 ping Win2000Pro
5
HTTP FTP
9
9
C >ping -n 1 -r 9 202.96.105.101 9
Pinging 202.96.105.101 with 32 bytes of data
Reply from 202.96.105.101 bytes=32 time=10ms TTL=249
Route 202.107.208.187 ->
202.107.210.214 ->
61.153.112.70 ->
61.153.112.89 ->
202.96.105.149 ->
202.96.105.97 ->
202.96.105.101 ->
202.96.105.150 ->
61.153.112.90
Ping statistics for 202.96.105.101
Packets Sent = 1 Received = 1 Lost = 0 (0% loss)
Approximate round trip times in milli-seconds
Minimum = 10ms Maximum = 10ms Average = 10ms
202.96.105.101
202.107.208.187
202.107.210.214
61.153.112.70
IP 9
-k host-list Strict source route along host-list.
computer-list
IP 9
-w timeout Timeout in milliseconds to wait for each reply.
ping
ping TTL
Windows UNIX/Linux
Windows TTL 100-130 UNIX/Linux
TTL 240-255 TTL
Windows
Arp
(ARP)
IP ARP IP
ARP
arp ARP arp
ARP
5
nbtstat
NetBIOS
nbtstat -n
nbtstat -c
NetBIOS
nbtstat -R Lmhosts
30
nbtstat -S NetBIOS
NetBIOS connection table
Local name State In/out Remote Host Input Output
----------------------------------------------------------------- CORP1 <00> Connected Out CORPSUP1<20> 6MB 5MB
CORP1 <00> Connected Out CORPPRINT<20> 108KB 116KB
CORP1 <00> Connected Out CORPSRC1<20> 299KB 19KB
CORP1 <00> Connected Out CORPEMAIL1<20> 324KB 19KB
CORP1 <03> Listening
6
netstat
31
Current Connections = 8
Segments Received = 106770
Segments Sent = 118431
Segments Retransmitted = 461
UDP Statistics
Datagrams Received = 4157136
No Ports = 351928
Receive Errors = 2
Datagrams Sent = 13809
7 tracert
Tracert IP
Tracert IP (TTL) ICMP
Tracert
IP (TTL) Internet (ICMP)
Tracert
TTL 1 TTL 0
ICMP
Tracert TTL 1 TTL
1 TTL
ICMP TTL
Tracert
Tracert ICMP
-d Tracert IP DNS
10.0.0.1 192.168.0.1
172.16.0.99 10.0.0.1 192.168.0.0 IP
192.168.0.1
C \>tracert 172.16.0.99 -d
Tracing route to 172.16.0.99 over a maximum of 30 hops
1 2s 3s 2s 10 0.0 1
2 75 ms 83 ms 88 ms 192.168.0.1
3 73 ms 79 ms 93 ms 172.16.0.99
Trace complete.
tracert
tracert
192.168.10.99 192.168.10.0
IP
C \>tracert 192.168.10.99
Tracing route to 192.168.10.99 over a maximum of 30 hops
1 10.0.0.1 reportsestination net unreachable.
Trace complete.
Tracert
33
Tracert
Tracert
tracert [-d] [-h maximum_hops] [-j host-list] [-w timeout] target_name
-d IP
-h maximum_hops target_name
-j host-list Tracert
-w timeout timeout
target_name IP
tracert
8
pathping
-n
Hostnames
-h
Maximum hops
-g
Host-list
-p
Period
ping
-q
Num_queries
-w
Time-out
D \>pathping -n msw
Tracing route to msw [7.54.1.196]
over a maximum of 30 hops
0 172.16.87.35
1 172.16.87.218
2 192.68.52.1
3 192.68.80.1
4 7.54.247.14
5 7.54.1.196
Computing statistics for 125 seconds...
Source to Here This Node/Link
34
35
3.1
CPU
.
(
3COIn D-LiIt ) X86 Inte1
RISC DECAlpha MIPS R4000
)
Microsoft
Windows NT DOS OS/2 Windows 98 Windows for
Workgroup UNIX
36
3.2
3.2.1 UNlX
UnlX 1969
UNIX (MIT 1965 Multics
MIT
1969 PDP-7 16
UNIX Multics Shell
30 UNIX
(
UNIX
UNIX
7/24( 7 24 )
WIX pc
UNIX SMP MPP Cluster
UNIX
TCP/IP UNIX TCP/IP UNIX
Internet UNIX 70% UNIX
UNIX
( Oracle hformix SybaseUNIX
UNIX
UN
UNIX
UNIX
UNIX UNIX
UNIX
UNIX
37
3.2.2 Netware
Novell Netware
Netware
Netware (Netware 4.x 6.x)
NDS
(Netware Directory SeIVices)
Netware3863.10Netware3863.11Netware3864.11
1 Netware
Netware
DOS OS/2 Macintosh ) Netware
Netware 3
Netware
2 Netware
Netware
1 Netware 64
32
32TB 4GB 100000
2
16 8
3 Netware 3 1
(
) 2
(
3
(
2
)
4
Netware (
6 Netware 4
38
Windows
Windows NT
Windows NT
WMdows NT Server
(ClientJSewer) (Peer to Peer)
Windows NT
WindowsNT
1 Windows 2000
Windows 2000
Windows 2000Professional
Windows 2000Sewer
Sewer
1
Windows 2000Server
( 90%
)
Windows 2000Sewer
Internet
5.2.6 Linux
Linux 1992 Linux
.B.Torvolds
Linux Apache web
Linux
GPL( )
40
Windows 2000
Windows 2000 Server Windows 2000 Server
""
VPN
Windows 2000 Server
Intranet
Pentium CPU133MHz 64MBRAM4GB
HardDisk1.0GB 4 CPU
Windows 2000 Professional
Windows 2000 Advanced Server
Windows 2000 Advanced Server Windows 2000 Server
Web
1GB Windows 2000 Server
2 Windows
Windows
API API
Dfs
DFs
3
Internet
56 128 SSL/TLSIPSecServer Gated Cryptography
Kerberos v5 Fortezza
Windows 2000
Kerberos Windows 2000 Kerberos v5
Windows
PKI Certificate Server
x.509
IPSec
IPSec
Internet
VPN Internet
PPTP L2TP
L2TP IPSec
4
RAID 5
Web
42
Windows 2000
5 WEB
Internet Information Services 5.0 (IIS) Web
Web
Web
ASP ASP
Web
XML Web Microsoft Internet Explorer
XML XML
Windows DNA 2000 Windows DNA 2000 Windows interNet
Windows Windows DNA 2000
COM+ + COM+
COM+
COM+
Windows Mediasize=1>TM Services Windows
Internet
3.3.3
Windows 2000 Server
Windows 2000
Windows 2000
Windows 2000
Server
Windows 2000 (HCL)
HAL F5""
Windows
1
2
Windows 3.x Windows
Windows 3.x
I386 Winnt.exe
Windows 3.x MS-DOS
Winnt.exe
Windows 3.x MS-DOS
SMARTDrive
2
1
I386
2 Windows 2000
I386
3 I386
MS-DOS Windows 3.x Winnt.exe
Windows 95Windows 98Windows NT 3.51Windows NT 4.0
Windows 2000 Winnt32.exe
3
MS-DOS
1
2 d d cd
i386
3 winnt
4
1
2
3
5
1
2 Windows 2000 Windows 2000
3 A
4
3.3.5
Windows 2000 Server
NT " Windows NT 4.0 Windows 2000
Server"
44
2-4 GB
NTFS Windows 2000
2
""
Windows 2000
3
""
4
""""""
""
""""
5
15
7
Internet 0 9
A
Z (-) Microsoft DNS
Unicode &
Microsoft
63 15 15
7 Windows 2000 15
15
6
"" 127
7
*? $ ""
Windows 2000
Administrator
7 Windows 2000
"Windows 2000 " TCP/IP
DHCP DNS WINS
"Windows 2000 """""
""""""
"/"/"/ Windows "
8
""
""
9
45
""""
"""""
"
3.4
3.4.1
RAID
3.4.2
5.55
Windows 2000
46
5.55
1 Windows 2000
1
3
Windows 2000
Windows 2000
Windows 2000
3.4.3
Windows 2000
""
Microsoft
Windows 2000
47
""
NTFS
1
"
"
Windows 2000
1 """"
2 """"
3 "" F8
4 ENTER
NUM LOCK
5 ENTER
Windows 2000
""
"" Windows
2000 ""
Windows 2000
Windows
(ERD)
-
Windows 2000
(ERD)
Windows 2000
Windows 2000
Windows ""
Windows 2000
ntbtlog.txt %windir%
VGA
VGA Windows 2000 Windows 2000
48
Windows 2000
Windows 2000
"" Windows 2000
1 """"
2 """"
3 "" F8
4 "" ENTER
NUM LOCK
5 ENTER
3.4.4
""
"" CD
"" Administrator
"" help
"" NTFS
CD
CD-ROM
"""
"
1 " "
1 "Windows 2000 "
CD
CD CD
2
3 R
4 C ""
5
6 "" Windows
2000
7 Administrator
8 "" help
help commandname
9 "" exit
2
1 Windows 2000
2 """"
3 ""
49
3.4.5
1 1.44 (MB)
2 "" 5.56
3 """"
4
systemroot\Repair
""
5.56
50
4.1 DNS
4.1.1 DNS
DNS
IP DNS
DNS
DNS
DNS
DNS
1 DNS DNS
7.1
7.1 DNS
7.2 zone
2 DNS
DNS DNS
DNS (FQDN)
"host-a.example.microsoft.com."
A (address) "
'hostname.example.microsoft.com.'
IP
DNS
DNS DNS
DNS DNS
DNS IP
1
7.3 DNS
7.3 DNS
52
Web DNS
DNS
host host
DNS
DNS
DNS DNS
DNS
DNS
DNS DNS
DNS root hints DNS
root hints DNS
7.4 host-b.example.microsoft.com.
7.4
DNS top-level domain
com comDNS microsoft.com
microsoft.com example.microsoft.com
example.microsoft.com DNS
DNS
DNS
2
(authoritative answer)
(negative answer )
DNS
DNS
3 TTL
DNS DNS
TTL (Time-To-Live)
TTL TTL 0 TTL
3600 (1 )
53
3
(zone) DNS DNS
DNS DNS
DNS
Windows 2000 DNS (incremental zone
transfer)DNS
DNS
DNS
DNS
DNS DNS
DNS
4
Windows2000 Server
DNS
1 Active Directory
Active Directory
DNS Active Directory
DNS Windows 2000 (domain controllers)Net Logon
DNS SRV (service)
Active Directory
DNS
DNS
%SystemRoot%\System32\Dns
*.dns
dnsZone
DNS
Multi-master
DNS single-master
DNS DNS
multi-master DNS
(zone)
DNS
DNS
domain Zones
DNS DNS
DNS
2 Unicode
DNS ASCII DNS
Internet
Windows2000 DNS UTF-8
Windows 2000 DNS UTF-8
UTF-8
Windows2000 US-ASCII DNS
4.1.2 DNS
1 //
54
3 (DNS) 5.6
4 Windows2000 Server
DNS
5 /
6 /
DNS()
4.1.3 DNS
1 DNS
DNS zone
BIND (Berkeley Internet Name Domain) DNS
bootfile Windows2000 DNS
(Registry) DNS DNS
DS
DNS Active Directory
DNS 7.7 DNS
DNS
55
DNS Zone
1 DNS
2 7.8
3
4 7.9
5 DNS
56
1
(RRs) top-level
Owner
DNS DNS
Time-To-Live (TTL)
DNS
Class
IN Internet
Type
Record-specific data
2
[A]
DNS IP
owner class ttl A IP_v4_address
host1.example.microsoft.com. IN A 127.0.0.1
[CNAME]
DNS
57
DNS Domain
NT2000.com saleaccountingmis
nt2000.com accounting
1 nt2000.com ""
2
3
(zone)
IP
1 DNS
2
3 ID ( zone
198.188.188)
7.10 255.255.255188.188.198.in-addr.arpa.dns
58
4 7.11
DNS
DNS IP
Windows2000 DHCP
IP DNS
1 DHCP DHCP
DNS 7.12 " DNS
DNS
2 DNS
7.13
3
DNS
DNS DNS
DNS DNS
DNS
59
DNS IP
""
5
1SOA
SOA 7.14
TTL
60
DNS
7.15
DNS
DNS
7.16
4.1.4 WINS
DNS WINS DNS
WINS NetBIOS DNS WINS
61
3 DNS
WINS
nt2000.com WINS
"one.nt2000.com" IP DNS
WINS DNS
WINS one
WINS IP DNS WINS
NETBIOS WINS
DNS
TTL 7.18
DNS WINS
WINS DNS
WINS
DNS WINS-R
" WINS " 7.19""
DNS DNS WINS
test nt2000.com
test.nt2000.com
62
4.1.5 DNS
DNS DNS DNS
DNS
1 LAN Manager DNS
TCP/IP SETUP TCPUTILS.INI [NDR]session
TCP/IP Setting <Advanced>
Username
Hostname
use DNR for hostname resoluteion"
Primary Nameserver Ip Address DNS IP
Secondary Nameserver Ip Address DNS IP
Domain Name Suffix DNS
2 Windows98
DNS
1 TCP/IP
DNS DNS 7.20
DNS IP
63
3 WindowsNT4.0 DNS
WindowsNT4.0 server/workstation
DNS DNS 7.21
TCP/IP "
DNS DNS
4 Windows 2000Professional
DNS
Internet TCP/IP
DHCP DNS " DNS
" DNS DNS DNS
DNS IP 7.22
DNS DNS
7.23 DNS DNS
DNS
64
DNS DNS
Win2000 IP DNS
DNS IPCONFIGPINGNSLOOKUP
DNS . Windows 2000 Server
4.2 Internet
4.2.1 WEB FTP
1
IIS
1 """""""/"
2 " Windows"""
IIS 7.3.1
Windows 2000 Windows
IISIIS 5.0
2 WEB FTP
1Web FTP
Intranet Internet Windows 2000
Web FTP
IP
IP
65
IP
Intranet 7.3.2 Windows 2000 Server
IIS Web
http//CompanyServer""Web
"CompanyServer"""""
Web
""
Web
2
Web Internet
Web TCP 80
"metabase"
IIS IIS
Web
""
URL
TCP/IP MIME
IIS
Web FTP
Web FTP
7.3.3 Web
66
3Web
Web Web
IIS IIS Windows
ISP
Web
Web
Web
Web Web
Web
UNC
4
IIS
Internet
Internet (HTML) "Intranet"
Internet (HTML) Microsoft (MMC) Internet
Internet (HTML)
Internet (HTML) Windows
Internet Internet
Internet (HTML) Web Web IIS
IIS 2000 9999
Web Web
Internet HTML
HTML Web
Internet (HTML)
http//servername/iishelp/iis/misc/default.aspservername IIS
67
WEB
FTP
1 Web
1 Web
2 Default.htm Default.asp
3 IIS Web Web
\Inetpub\Wwwroot
4 Internet ""
5 """Web " 7.3.4
"" 7.3.6
68
IP
"" IP
Web IP
IP " Web "
2 FTP
1 FTP
\Inetpub\Ftproot
2 Internet ""
3 ""FTP " 7.3.4
4 FTP "" FTP
IP TCP 7.3.5"" FTP
7.3.6
5 "" FTP 7.3.7""
6 DNS
ftp// ftp//
IP
Web FTP 7.3.8
69
4
Internet
Internet Internet
Internet
1 Internet
2 """"""
Internet
""""
5 IIS
IIS 5.0 IIS Internet
1 Internet ""
""
2 """ IIS"
3 " Internet "" Internet ""
Internet "" "
Drwtsn32.exeMtx.exe Dllhost.exe
Internet Internet (HTML)
IIS
Web
"" IP TCP
70
IP
""
Windows IP
IP Web
TCP
80
TCP
Web
SSL
(SSL)
SSL
HTTP
HTTP
HTTP HTTP
Web
""
W3C ASCII
""
W3C
ODBC ""
2Web
Windows
""
""
CTRL SHIFT
3
7.3.10
71
Web Web
Web CPU
""
4ISAPI
ISAPI ISAPI filter HTTP
ISAPI ""
ISAPI ""
ISAPI ""
ISAPI ""
ISAPI ""
ISAPI
5
7.3.11 Web /Wwwroot
72
""""
ASP Web
Web
Web ""
Filename.htm
Web
Microsoft Indexing Service Web
Web IIS
Web
HTML
ASP
Web
URL
" URL" URL
URL URL
73
"/scripts"
Default.htm"""/Default.htm
/
"/newhome""""/newhome"
Web
"301 "
"302 ""301
" URL
URL URL
URL
6
Web
""
""
HTML Web
HTML
HTML
""
7/
7.3.12 Web
Web "" Web
Windows Windows
(NTFS)
IP
Windows 2000 Server
74
Web
""
""
Web
Web (SSL) ""
Web
(CTL)
Windows Windows 2000
(DS)
8HTTP
HTTP 7.3.13 HTML
HTTP
HTTP Web HTTP
HTML IIS
HTML HTTP
Web ""
MIME
"" (MIME)
75
Web ""
Windows ""
MIME
MIME """"
""""
" (MIME)""mime /"
MIME
MIME """"
MIME ""
""""" (MIME)"
MIME Web
Web MIME
Web
9
Web ""
HTTP IIS HTTP 1.1
"" URL
URL
HTTP 1.1 ""
CTRL
10FrontPage
2 FTP
1FTP
7.3.14 IP
IP ""
Windows
TCP
21 TCP
HTTP
76
FTP
"
"
Microsoft IIS ASCII
W3C ASCII
ODBC Windows 2000 Server
W3C
ODBC ""
Internet (HTML)
"" FTP
Windows
""
" IIS "
IIS FPT
Windows
FTP FTP FTP
IISWindows
IIS Web FTP
""
""
CTRL SHIFT
3
FTP
FTP
FTP
4FTP
FTP FTP
FTP \Ftproot
""
FTP URL
C\Catalog\Shoes""
FTP
77
78
5.1
80
Mail Bomb
(Trojan Horse)
(Hacker)
Cracker Info terrorist Cyber sky
WWW FTKE-mail
TCP/IP Internet
5.1.1 ..
Internet APPANET APPNET
APPANET
Internet
Internet
Internet TCP/IP
TCP/IP
79
5.1.2
1 Eavesdropping
Telnet FTPSMTP
8.1
Internet
8.1
2 Spoofing
A A A B B
IP
A B
80
B
B A
X A
X B A
X A B A
X A
B
X B A
A
7.2
8.2
3 (Session Hijacking)
A B A A B B
7.3 A B X B
A X A B
8.3
Unix
Unix
Unix
81
Telnet FTPSMTP
Finger
TCP/IP
Unix Unix
Unix
" "
(Trapdoor) (Backdoor)
1 0
82
100KB 10
5.2
5.2.1
"password"
" "
(Brute force attacks)
4
(
50 ) 100
(10 )
Telnet
83
Net Bus
FTPSMTP Telnet
5.2.2
Attempted break-in
Masquerade attack
Leakage
Denial of service
Malicious use
5.2.3
A 8 5
B
" "
( ) 7.2.2
7.2.2
84
IDS
IDS
IDS
IDS
n n 2n
3
A1 A2 An
Ai
I/O
Ai 1 0
I Ai
P(Ai=1|I) P(Ai=1|I) Ai I
Ai
4
85
(Directed Acyclic Graph DAG)
( )
5
.
1
2
3
1
2
3
1
S
2 S
86
1
2
3
IBL
IBL
Wenke
5.2.4
IDS
sendmai1
Internet (Worm attack) fingered
87
bugs
2
IF-THEN
IF
attack scenarios
Gravy Lint
88
5.2.5
Fred Cohen 50
5.3
5.3.1
1946 - ENIAC
1988 " "
CORNELL
" " INTERNET
-- -- -- -- -
89
5.3.2
1k PC DOS
KB
"PETER-2" 2 27 "
" 13 " " 13
26 CIH
90
GENP W-BOOT
5.3.3
10 /
4 /
COM EXE
91
5.3.4
Internet
CRC
VICE
( )
COM EXE
COM EXE
( )
COM EXE
92
( )
( )
" "
(1)
(2)
ActiveX HTML
(3)
U
(4) BBS
(5)
(6)
5.4 --VPN
Internet Internet
Internet (Virtual Private Network VPN)
WAN
IP
VPN
5.4.1 VPN
VPN ( Internet)
93
3 VPN VPN VPN VPN
VPN VPN
Internet
VPN VPN Interne
5.4.2 VPN
VPN
VPN
1 VPN
VPN
Internet
( )
2 VPN
VPN
3 VPN
VPN RADIUS (Renmote Authentics Dil In User Service)
RADIUS
VPN
5.4.3 VPN
VPN Internet
( ) " "
PPP ( ) VPN PPP
LAN IP LAN
Internet
Internet Internet
Internet VPN
1 (Tunnel Protocols)
VPN
Internet
VPN (PPTP -Point to Point Tunneling
Protocol) (L2TP -Layer 2 Tunneling Protocol) IPsec (Secure IP)
94
PPP
IPsec
VPN IPsec
IP IPsec
IP
IPsec
IPsec IPsec
Ipv6 VPN
2 (Tunnel Severs)
3 (Authentiction)
IP
/ RADIUS
VPN
VPN RADIUS
RADIUS (
) RADIUS RADIUS
VPN RADIUS RAS
VPN RADIUS
RADIUS RADIUS
( IP
) RAS VPN
4 (Encrytion)
Internet
VPN
;
95