Bao Cao Thuc Tap

ti
Sinh vin thc hin:
Cn b hng dn:
inh Trng Th
V Thng
Sinh vin Khoa CNTT-HCT
G Trung tm o to QTM &

An Ninh Mng QT Athena
MSSV: 1091629
TPHCM, Thng 5-7/2013
LI CM N
hon thnh hc phn thc tp thc t ny, em xin chn thnh cm n trung tm
Athena to iu kin cho em c mt mi trng thch hp lm vic.
Xin chn thnh cm n thy V Thng, Gim c trung tm Qun tr mng v
An ninh mng quc t Athena tn tnh hng dn, gip em trong thi gian thc tp
va qua.
Trong thi gian hc tp ti trng i hc Cn Th, em tch ly c nhiu
kin thc qu bo, cng l nh cng dy d tn tnh ca thy c trng i hc Cn
Th ni chung v thy c ti khoa Cng ngh thng tin & Truyn thng trng i hc
Cn Th.
Ngoi ra, trong qu trnh thc tp nh c s ng vin gip ca cc bn sinh
vin cng thc tp ti trung tm, cc anh ch nhn vin trong cng ty nhit tnh gip
nn em mi hon thnh c chng trnh thc tp ny.
Xin cm n gia nh, cha m ng h v mt tinh thn.
Mt ln na em xin chn thnh cm n v xin gi li chc sc khe n ton th
cn b, nhn vin ti trung tm Athena. Chc cho cng ty gt hi c nhiu thnh cng.
Chn thnh cm n.
TP H Ch Minh, Ngy 01/07/2013
inh Trng Th
NHN XT CA CN B HNG DN
..................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
.............................................................................................................................................
TP. H Ch Minh, ngythng nm 2013
V Thng
MC LC
LI CM N........................................................................................................... 2
NHN XT CA CN B HNG DN ........................................................... 3
MC LC ................................................................................................................ 4
Chng I. TM HIU V ROUTER ..................................................................... 5
I.
Gii thiu chung .......................................................................................... 5
II. Chc nng chnh ca Router ........................................................................ 5
III. Nguyn tc chn ng ............................................................................... 5
IV. Cc thnh phn phn cng ........................................................................... 6
V. Phn loi: ..................................................................................................... 7
Chng II. C ch o ha Router Cisco trn GNS3 ............................................. 8
I.
Gii thiu ..................................................................................................... 8
II. Ci t GNS3 ............................................................................................... 9
Chng III. L THUYT GII THUT NH TUYN .................................. 14
I.
Chc nng ca gii thut nh tuyn ......................................................... 14
II. i lng o lng (Metric): .................................................................... 14
III. Mc tiu thit k ........................................................................................ 14
IV. Phn loi gii thut chn ng ................................................................ 14
V. Gii thut vch ng theo kiu trng thi ni kt Link state ................ 15
VI. Gii thut chn ng theo kiu vect khong cch ................................. 15
Chng IV. CU HNH NH TUYN CHO ROUTER CISCO ..................... 15
I.
Cc mode lm vic ca Router Mode config.......................................... 15
II. Cc lnh c bn trn Router ...................................................................... 17
III. Cu hnh nh tuyn tnh............................................................................ 19
IV. Cu hnh nh tuyn RIP - Routing Information Protocol ........................ 20
V. Cu hnh nh tuyn OSPF ........................................................................ 23
VI. Filter Router - Access List ......................................................................... 28
VII. Load balancing ....................................................................................... 31
VIII. Cu hnh VPN Client to Site .................................................................. 33
Chng V. Cu hnh VPCS m phng PC n gin ..................................... 35
TM HIU V ROUTER
I. Gii thiu chung
Router, hay thit b nh tuyn hoc b nh tuyn, l mt thit b lin mng, c
chc nng t tng 1 n tng 3 trong m hnh OSI, dng chuyn cc gi d liu qua
mt lin mng v n cc u cui, thng qua mt tin trnh c gi l nh tuyn. nh
tuyn xy ra tng 3 tng mng ca m hnh OSI 7 tng. Router cho php ni hai hay
nhiu nhnh mng li vi nhau to thnh mt lin mng. Chuyn tip cc gi tin t
mng ny n mng kia c th n c my nhn. Mi mt router thng tham gia
vo t nht l 2 mng. N c th l mt thit b chuyn dng hoc c th l mt my tnh
vi nhiu card mng v mt phn mm ci t gii thut chn ng cho router.
II. Chc nng chnh ca Router

Chc nng chnh ca Router l:
Chn ng i n ch vi chi ph (metric) thp nht cho mt gi tin.
Lu v chuyn tip cc gi tin t nhnh mng ny sang nhnh mng khc.
III. Nguyn tc chn ng

Cc router duy tr mt Bng chn ng (Routing table) cha ng i n nhng
im khc nhau trn ton mng.
Hai trng quan trng nht trong bng chn ng ca router l ch n
(Destination) v Bc k tip (Next Hop) cn phi chuyn gi tin c th n c
ch n
Hnh I-1.Bng vch ng
C ba hnh thc cp nht bng chn ng:

Cp nht th cng
Cp nht t ng
Cp nht hn hp
IV. Cc thnh phn phn cng

Cu trc chnh xc ca cc router th rt khc nhau ty theo phin bn ca n.
Nhng mt router th c cc thnh phn phn cng c bn sau:
CPU: Central Processing Unit, l n v x l trung tm, thc thi cc cu lnh ca
h iu hnh thc hin cc nhim v nh: khi ng h thng, nh tuyn, iu khin
cc cng giao tip mng. CPU l mt b vi x l, trong cc router ln c th c nhiu
CPU
RAM: c s dng lu bng nh tuyn, cung cp b nh cho chuyn mch
nhanh, chy tp tin cu hnh v cung cp hng i cho cc gi d liu. Trong a s cc
router, h iu hnh cisco IOS chy trn RAM, RAM thng c chia lm hai phn
phn b nh x l chnh v phn b nh chia s nhp/xut.Phn b nh nhp/xut thng
c chia cho cc cng giao tip lm ni lu tr tm cc gi d liu. Ton b ni dung
trn RAM s b xa khi tt in. Thng thng RAM trn router l loi RAM ng
DRAM.
Flash: b nh flash thng dng lu ton b h iu hnh Cisco IOS
NVRAM: Non-volative Random-access Memory l b nh khng b mt d liu

khi mt ngun, dng lu tp tin cu hnh. Trong mt s thit b, th flash v NVRAM
c th l hai thit b ring, hoc c hai cng mt b nh.
Bus: phn ln cc router u c bus h thng v CPU bus. Bus h thng c s
dng thng tin lin lc gia CPU v cc cng giao tip v cc khe m rng. Loi bus
ny vn chuyn cc gi d liu i v n cng giao tip. CPU s dng CPU bus truy
xut cc thnh phn ca router thng qua b nh trn router. Loi bus ny vn chuyn d
liu i v n cc a ch ca nh tng ng.
ROM: Read Only Memory: l ni lu tr on m ca chng trnh kim tra khi
khi ng. Nhim v chnh ca ROM l kim tra phn cng khi khi ng, sau chp
phn mm Ciso IOS t flash vo RAM. Ni dung trong b nh ROM th khng th xa
c.
Cc cng giao tip (Interfaces): c ba loi cng chnh, LAN, WAN v
console/AUX. Cng giao tip LAN thng l Ethernet hoc Token ring. Cng WAN c
th l serial hoc ISDN. Cng console/AUX dng kt ni n my tnh thc hin
cu hnh router
Ngun in: cung cp ngun cho router
V. Phn loi:
Router c nhiu cch phn loi khc nhau Tuy nhin ngi ta thng c hai cch
phn loi ch yu sau:
Da theo cng dng ca Router: theo cch phn loi ny ngi ta chia
router thnh remote access router, ISDN router, Serial router, router/hub
Da theo cu trc ca router: fixed configuration router, modular router.
C CH O HA ROUTER CISCO TRN GNS3

I. Gii thiu
GNS3 l mt phn mm gi lp mng dng ha, n cho php chng ta m
phng vi cc mng phc tp. Chng ta qu quen thuc vi cc phn mm nh
VMware hoc PC virtual chy cc h iu hnh khc nhau nh l Windows XP
rofessional hoc Ubuntu Linux trong mi trng o trn chnh PC c nhn ca mnh.
GNS3 cng tng t nh vy, n s dng h iu hnh mng Cisco.
N cho php chng ta chy mt Cisco IOS trong mt mi trng o trn my tnh
c nhn. GNS3 l phn mt trc (front to end) ca mt sn phm c gi l
Dynagen. Dynamip l mt chng trnh li cho php m phng cc IOS.
Dynagen chy trn dynamip to ra s gn gi hn vi mi trng dng vn
bn. Mt ngi s dng c th to ra mt topo mng ch n gin l s dng Windows
ini-type files vi dynagen. GNS3 thc hin nhng iu ny mt cch n gin bng mt
mi trng ha.
GNS3 cho php m phng Cisco IOS trn Windows hoc Linux, n c kh nng
m phng nhiu dng router v PIX. S dng card EthernetSwitch trong mt router, n
cng c th m phng n mc m chc nng card h tr. iu c ngha GNS3 l
mt cng c hu ch cho cc hc vin tham gia cc kha hc chng ch Cisco nh CCNA
v CCNP. Trn th trng cng c kh nhiu cc phn mm m phng router nhng
chng b gii hn cc cu lnh do ngi pht trin thit k. N thng xuyn c cc lnh
hoc cc tham s khng c h tr khi m thc hnh trong mi trng thc t. Trong
nhng phn mm gi lp ny chng ta ch c th nhn thy nhng thng tin ra ca mt
router c gi lp.
Chnh v vy m s chnh xc ca n cng ch mc m ngi pht trin thit k
ra. Vi GNS3 th chng ta coi nh ang chy trn mt Cisco IOS thc v vy m c th
xem c chnh xc nhng thng tin m IOS thc cung cp v cng c th truy cp ti
bt c lnh hoc tham s no m Cisco IOS h tr. Thm na, GNS3 l mt phn mm
m ngun m, l mt chng trnh min ph s dng. Tuy nhin chng ta s phi cung
cp chnh Cisco IOS ca mnh lm vic vi GNS3. GNS3 c thng lng l 1000
packets trn giy trong mi trng o. Mt router thng thng c th cung cp thng
lng gp trm, nghn ln nh vy.
GNS3 cn c vpcs (Virtual PC Simular) gip cho chng ta c th gi lp my tnh
(host) ti gin ch test cc chc nng v mng. Ngoi ra lin kt cht ch vi cc
chng trnh h tr khc nh Qemu - gi lp my tnh (ngun m) v VirtualBox - phn

mm o ha mnh m v min ph gip cho chng ta c th gi lp PC vi cc h iu
hnh tht.
Phn mm ny khng thc s thay th c thit b tht ca Cisco m n c
vit ra nhm mc ch:
Gip mi ngi lm quen vi thit b Cisco.
Kim tra v th nghim nhng tnh nng trong cisco IOS.
Test cc m hnh mng trc khi i vo cu hnh thc t.
II. Ci t GNS3
Ti phn mm v t a ch: http://www.gns3.net/download/. Hin ti phin bn
y l GNS3 v0.8.3.1 all-in-one
Kch p vo file va download v v tin hnh ci t theo ch mc nh
Hnh II-1.GNS3 Setup
Nhn next
Hnh II-2.GNS3 License Agreement
Nhn I Agree
Hnh II-3.GNS3 Choose Start Menu Folder
Nhn Next
Hnh II-4.GNS3 Choose Components
Nhn Next
Hnh II-5.GNS3 Choose Install Location
Nhn Install, c th chn ci WinCap v WireShark (nu cha ci t trc )
Hnh II-6.Install Wincap b sung
Hnh II-7.Tin trnh ci t GNS3
Nhn next
Hnh II-8.Complete Setup
Nhn finish v hon tt qu trnh ci t
L THUYT GII THUT NH TUYN

I. Chc nng ca gii thut nh tuyn
Tm ra ng i n nhng im khc nhau trn mng. Gii thut chn ng ch
cp nht vo bng chn ng ng i n mt ch n mi hoc ng i mi tt
hn ng i c trong bng chn ng
II. i lng o lng (Metric):
Chiu di ng i (length path): L s lng router phi i qua trn ng i.

tin cy (reliable) ca ng truyn
tr hon (delay) ca ng truyn
Bng thng (bandwidth) knh truyn
Ti (load) ca cc router
Cc ph (cost) knh truyn
III. Mc tiu thit k

Ti u (optimality): ng i do gii thut tm c phi l ng i ti u trong
s cc ng i n mt ch n no
n gin, t tn km (Simplicity and overhead): Gii thut c thit k hiu qu
v mt x l, t i hi v mt ti nguyn nh b nh, tc x l ca router.
Tnh n nh (stability): Gii thut c kh nng ng ph c vi cc s c v
ng truyn.
Hi t nhanh (rapid convergence): Qu trnh thng nht gia cc router v mt
ng i tt phi nhanh chng.
Tnh linh hot (Flexibility): p ng c mi thay i v mi trng vn hnh
ca gii thut nh bng thng, kch b nh, tr hon ca ng truyn.
IV. Phn loi gii thut chn ng

Gii thut chn ng tnh - Gii thut chn ng ng
Gii thut chn ng bn trong - Gii thut chn ng bn ngoi khu vc
Gii thut chn ng trng thi ni kt - Gii thut vct khong cch.
Ghi ch: Mt vng (khu vc - autonomous system) l mt tp hp cc mng v cc
router chu s qun l duy nht ca mt nh qun tr mng.
- Mt s gii thut chn ng bn trong vng:
RIP: Routing Information Protocol
OSPF: Open Shortest Path First

IGRP: Interior Gateway Routing Protocol
- Mt s gii thut chn ng lin vng:
EGP: Exterior Gateway Protocol
BGP: Boder Gateway Protocol
V. Gii thut vch ng theo kiu trng thi ni kt Link state

Mi router s gi thng tin v trng thi ni kt ca mnh (cc mng ni kt trc
tip v cc router lng ging) cho tt c cc router trn ton mng. Cc router s thu thp
thng tin v trng thi ni kt ca cc router khc, t xy dng li hnh trng mng,
chy cc gii thut tm ng i ngn nht trn hnh trng mng c c. T xy
dng bng chn ng cho mnh.
Khi mt router pht hin trng thi ni kt ca mnh b thay i, n s gi mt
thng ip yu cu cp nht trng thi ni kt cho tt cc cc router trn ton mng. Nhn
c thng ip ny, cc router s xy dng li hnh trng mng, tnh ton li ng i
ti u v cp nht li bng chn ng ca mnh.
Gii thut chn ng trng thi ni kt to ra t thng tin trn mng. Tuy nhin
n i hi router phi c b nh ln, tc tnh ton ca CPU phi cao.
VI. Gii thut chn ng theo kiu vect khong cch

u tin mi router s cp nht ng i n cc mng ni kt trc tip vi mnh
vo bng chn ng.
Theo nh k, mt router phi gi bng chn ng ca mnh cho cc router lng
ging. Khi nhn c bng chn ng ca mt lng ging gi sang, router s tm xem
lng ging ca mnh c ng i n mt mng no m mnh cha c hay mt ng i
no tt hn ng i mnh c hay khng. Nu c s a ng i mi ny vo bng
chn ng ca mnh vi Next hop n ch chnh l lng ging ny.
CU HNH NH TUYN CHO ROUTER CISCO

I. Cc mode lm vic ca Router Mode config
Khi bt u session,n Enter n khi nhn c response ca router.
Cc mode cu hnh:
Exec mode: Router> y l mode u tin khi bn bt u mt phin lm
vic vi router (qua Console hay Telnet). mode ny bn ch c th thc
hin c mt s lnh thng thng ca router. Cc lnh ny s khng
c ghi vo file cu hnh ca router v do khng gy nh hng n
cc ln khi ng sau ca router.
Privileged exec mode: Router# Privileged EXEC Mode cung cp cc lnh
quan trng theo di hot ng ca router, truy cp vo cc file cu hnh,
IOS, t password... Privileged EXEC Mode l cha kha vo
Configuration Mode.
Configuration mode: Router(config)# Configuration mode cho php cu
hnh tt c cc chc nng ca Cisco router bao gm cc interface, cc
routing protocol, cc line console, vty (telnet), tty (async connection). Cc
lnh trong configuration mode s nh hng trc tip n cu hnh hin
hnh ca router cha trong RAM (running-configuration). Nu cu hnh
ny c ghi li vo NVRAM, cc lnh ny s c tc dng trong nhng ln
khi ng sau ca router. Configuration mode c nhiu mode nh, ngoi
cng l global configuration mode, sau l cc interface configuration
mode, line configuration mode.
Hnh IV-1.Cc Mode lm vic ca Router
II. Cc lnh c bn trn Router

1. Cu hnh t tn cho Router
Cng vic u tin khi cu hnh router l t tn cho router.
Router(config)#hostname AthenaR1
AthenaR1(config)#
Ngay sau khi nhn phm Enter thc thi cu lnh, du nhc s i t tn mc
nh (Router) sang tn va mi t.
2. Cu hnh t mt khu cho Router
t mt khu cho ng console:
AthenaR1(config)#line console 0
AthenaR1(config-line)#password <<password>>
AthenaR1(config-line)#login
Chng ta cng cn t mt khu cho mt hoc nhiu ng vty kim sot cc

user truy nhp t xa vo router v Telnet. Thng thng Cisco router c 5 ng vty vi
th t t 0 n 4. Chng ta thng s dng mt mt khu cho tt c cc ng vty,
nhng i khi chng ta nn t thm mt khu ring cho mt ng d phng khi c 4
ng kia u ang c s dng. Sau y l cc lnh cn s dng t mt khu cho
ng vty:
AthenaR1(config)#line vty 0 4
AthenaR1(config-line)#password <<password>>
AthenaR1(config-line)#login
Mt khu enable v enable secret c s dng hn ch vic truy cp vo ch

EXEC c quyn. Mt khu enable ch c s dng khi chng ta ci t mt khu
enable secret v mt khu ny c m ho cn mt khu enable th khng. Sau y l
cc lnh dng t mt khu enable secret:
AthenaR1(config)#enable password <<password>>
AthenaR1(config)#enable secret <<password>>
i khi bn s thy l rt khng an ton khi mt khu c hin th r rng khi s

dng lnh show running-config hoc show startup-config. trnh iu ny bn nn
dng lnh sau m ho tt c cc mt khu hin th trn tp tin cu hnh ca router:
AthenaR1(config)#service password-encryption
3. Kim tra cu hnh Router bng cc lnh Show

Chng ta c rt nhiu lnh show c dng kim tra ni dung cc tp tin trn
router v tm ra s c. Trong c hai ch EXEC c quyn v EXEC ngi dng,
khi g show? ta s xem c danh sch cc lnh show. ng nhin l s lnh show
dng c trong ch EXEC c quyn s nhiu hn trong ch EXEC ngi dng.
Show interface - hin th trng thi ca tt c cc cng giao tip trn router. xem trng
thi ca mt cng no th ta thm tn v s th t ca cng sau lnh show
interface. V d nh:
Router#show interface serial 0/1
Ngoi ra cn cc lnh show khc:

Hin th tp tin cu hnh trn RAM
Router#show startup-configuration
Hin th tp tin cu hnh ang chy

Router#show running-configuration
Hin th bng nh tuyn

Router#show ip route
Hin th thng tin c bn v cc interface

Router#show ip interface brief
Router#show ARP
Hin th trng thi ton cc v trng thi ca cc cng giao tip c cu

hnh giao thc lp 3
AthenaR1#show protocol
4. Cu hnh cng Interface

Chng ta c th cu hnh cng interface bng ng console hoc vty.
Mi mt cng u phi c mt a ch IP v subnet mask chng c th nh
tuyn cc gi IP. cu hnh a ch IP chng ta dng lnh sau:
AthenaR1(config)#interface serial 0/0
AthenaR1(config)#ip address 192.168.1.1 255.255.255.0
Mc nh th cc cng giao tip trn router u ng. Nu bn mun m hay khi

ng cc cng ny th bn phi dng lnh no shutdown. Nu bn mun ng cng li
bo tr hoc x l s c th bn dng lnh shutdown.
AthenaR1(config)#interface serial 0/0
AthenaR1(config-if)#clock rate 56000
AthenaR1(config-if)#no shutdown
III. Cu hnh nh tuyn tnh

i vi nh tuyn tnh cc thng tin v ng i phi do ngi qun tr mng
nhp cho router. Khi cu trc mng c bt k thay i no th chnh ngi qun tr mng
phi xo hoc thm cc thng tin v ng i cho router. Nhng loi ng i nh vy
gi l ng i c nh. i vi h thng mng ln th cng vic bo tr mng nh tuyn
cho router nh trn tn rt nhiu thi gian. Cn i vi h thng mng nh ,t c thay i
th cng vic ny mt cng hn. Chnh v nh tuyn tnh i hi ngi qun tr mng
phi cu hnh mi thng tin v ng i cho router nn n khng c c tnh linh hot
nh nh tuyn ng. Trong nhng h thng mng ln ,nh tuyn tnh thng c s
dng kt hp vi giao thc nh tuyn ng cho mt s mc ch c bit.
Hot ng ca nh tuyn tnh c th chia ra lm 3 bc nh sau:
u tin ,ngi qun tr mng cu hnh cc ng c nh cho router
Router ci t cc ng i ny vo bng nh tuyn
Gi d liu c nh tuyn theo cc ng c nh ny
1. Demo Static Route
Topology:
Hnh IV-2.Topology Static Route
Cu hnh
Trn Router R1, vo mode cofig v cu hnh nh sau :
R1#configuture terminal
R1(config)#ip route 11.0.0.0 255.255.255.0 Serial0/0
Trn Router R2, ta cng vo mode cofig v cu hnh nh sau :

R2#configuture terminal
R2(config)#ip route 10.0.0.0 255.255.255.0 Serial0/0
Nh vy vic nh tuyn cho router hon tt. Tuy nhin, do y l mt topology

n gin, ch c 3 nhnh mng trong c 2 nhnh mng cn nh tuyn trn 2 router
trong khi thc t, cc h thng mng rt nhiu nhnh mng. V vy m vic nh tuyn
tnh s khng th p ng c m ngi ta phi dng n cc k thut nh tuyn ng.
IV. Cu hnh nh tuyn RIP - Routing Information Protocol

1. Gii thiu
RIP l gii thut chn ng ng theo kiu vct khong cch, c nh ngha
trong hai ti liu l RFC 1058 v Internet Standard 56 v c cp nht bi IETF
(Internet Engineering Task Force).
Phin bn th 2 ca RIP c nh ngha trong RFC 1723 vo thng 10 nm 1994.
RIP v.2 cho php cc thng ip ca RIP mang nhiu thng tin hn s dng c ch
chng thc n gin hn m bo tnh bo mt khi cp nht bng chn ng. RIP v.2
cung cp cc mt n mng con, ci quan trng li thiu trong RIP ban u.
2. c im ca RIP
RIP l mt giao thc distance vector in hnh. Mi router s gi ton b bng
nh tuyn ca n cho router lng ging theo nh k 30s/ln. Thng tin ny li tip tc
c lng ging lan truyn tip cho cc lng ging khc v c th lan truyn ra mi router
trn ton mng. Kiu trao i thng tin nh th cn c gi l lan truyn theo tin n.
( y, ta c th hiu router lng ging l router kt ni trc tip vi router ang xt).
Metric trong RIP c tnh theo hop count s node lp 3 (router) phi i qua
trn ng i n ch. Vi RIP, gi tr metric ti a l 15, gi tr metric = 16 c
gi l infinity metric (metric v hn), c ngha l mt mng ch c php cch ngun
tin 15 router l ti a, nu n cch ngun tin t 16 router tr ln, n khng th nhn c
ngun tin ny v c ngun tin xem l khng th i n c.
RIP chy trn nn UDP port 520.
RIPv2 l mt giao thc classless cn RIPv1 li l mt giao thc classful.
Cch hot ng ca RIP c th dn n loop nn mt s quy tc chng loop v
mt s timer c a ra. Cc quy tc v cc timer ny c th lm gim tc hi t ca
RIP.
AD ca RIP l 120.
3. Demo RIPv1
Topology
Hnh IV-3. RIPv1 Topology
Cu hnh
Cc Router v PC t IP nh hnh trn.
Trn router R1, ta vo mode config v cu hnh nh sau:
R1#configure terminal
R1(config)#router rip
R1(config-router)#net 10.0.0.0
R1(config-router)#exit
R1(config)#
Lu rng RIPv1 l mt giao thc dng classful nn ch s dng c vi cc a

ch mng dng classful.
Trn Router R2, ta cu hnh tng t nh sau :
R2(config)#
Trn Router R3, cu hnh nh sau:

R3(config)#
4. Demo RIPv2
Topology
Cu hnh
Sau khi cu hnh cc Interface cho cc Router ta tin hnh nh tuyn cho cc
Router.
Trn Router R1, ta cu hnh nh sau :

R1(config-router)#version 2
R1(config)#
Router R2
R2(config-router)#version 2
Router R3
R3(config)#
V. Cu hnh nh tuyn OSPF

1. Tng Quan V OSPF:
OSPF l mt giao thc nh tuyn theo trng thi ng lin kt c trin khai
da trn cc chun m. OSPF c m t trong nhiu chun ca IETF (Internet
Engineering Task Force). Chun m y c ngha l OSPF hon ton m vi cng
cng, khng c tnh c quyn.
Nu so snh vi RIPv1 v RIPv2 l mt giao thc ni th IGP tt hn v kh nng
m rng ca n. RIP ch gii hn trong 15 hop, hi t chm v i khi cn chn ng
c tc chm v khi quyt nh chn ng n khng quan tm n cc yu quan trng
khc nh bng thng chng hn. OSPF khc phc c cc nhc im ca RIP v n l
mt giao thc nh tuyn mnh, c kh nng mi rng, ph hp vi cc h thng mng
hin i. OSPF c th cu hnh n vng s dng cho cc mng nh.
2. So Snh OSPF Vi Giao Thc nh Tuyn Theo Distance Vector
Router nh tuyn theo trng thi ng lin kt c mt c s y v cu trc
h thng mng. Chng ch thc hin trao i thng tin v trng thi ng lin kt lc
khi ng v khi h thng mng c s thay i. Chng khng pht qung b bng nh
tuyn theo nh k nh cc router nh tuyn theo distance vector. Do , cc router nh
tuyn theo trng thi ng lin kt s dng t bng thng hn cho hot ng duy tr
bng nh tuyn.
RIP ph hp vi cc mng nh v ng tt nht i vi RIP l ng c s hop
t nht. OSPF th ph hp vi mng ln, c kh nng m rng, ng i tt nht ca
OSPF c xc nh da trn tc ca ng truyn. RIP cng nh cc giao thc nh
tuyn theo distance vector khc u s dng thut ton chn ng n gin. Cn thut
ton SPF th phc tp. Do , nu router chy theo giao thc nh tuyn theo distance
vector th s t tn b nh v cn nng lc x l thp hn so vi khi chy OSPF.
OSPF chn ng da trn chi ph c tnh t tc ca ng truyn. ng
truyn c tc cng cao th chi ph OSPF tng ng cng thp.
OSPF chn ng tt nht t cy SPF.
OSPF bo m khng b nh tuyn lp vng. Cn giao thc nh tuyn theo
distance vector vn c th b loop.
Nu mt kt ni khng n nh, chp chn, vic pht lin tc cc thng tin v
trng thi ca ng kin kt ny s dn n tnh trng cc thng tin qung co khng
ng b lm cho kt qu chn ng ca cc router b o ln.
3. OSPF gii quyt c cc vn sau
-Tc hi t.
-H tr VLSM (Variable Length Subnet Mask).
-Kch c mng.
-Chn ng.
-Nhm cc thnh vin.
Trong mt h thng mng ln, RIP phi mt t nht vi pht mi c th hi t
c v mi router ch trao i bng nh tuyn vi cc router lng ging kt ni trc tip
vi mnh m thi. Cn i vi OSPF sau khi hi t vo lc khi ng, khi c thay i
th vic hi t s rt nhanh v ch c thng tin v s thay i c pht ra cho mi router
trong vng.
OSPF c h tr VLSM nn n c xem l mt giao thc nh tuyn khng theo

lp a ch. RIPv1 khng h tr VLSM, nhng RIPv2 th c.
i vi RIP, mt mng ch cch xa hn 15 router xem nh khng th n c v RIP
c s lng hop gii hn l 15. iu ny lm kch thc mng ca RIP b gii hn trong
phm vi nh. OSPF th khng gii hn v kch thc mng, n hon ton c th ph hp
vi mng va v ln.
Khi nhn c t router lng ging cc bo co v s lng hop n mng ch,
RIP s cng thm 1 vo thng s hop ny v da vo s lng hop chn ng n
mng ch. ng no c khong cch ngn nht hay ni cch khc l c s lng hop t
nht s l ng tt nht i vi RIP. Nhn xt thy thut ton chn ng nh vy l rt
n gin v khng i hi nhiu b nh v nng lc x l ca router. RIP khng h quan
tm n bng thng ng truyn khi quyt nh chn ng.
OSPF th chn ng da vo chi ph c tnh t bng thng ca ng truyn.
Mi OSPF u c thng tin y v cu trc ca h thng mng v da vo chn
ng i tt nht. Do , thut ton chn ng ny rt phc tp, i hi nhiu b nh
v nng lc x l ca router cao hn so vi RIP.
RIP s dng cu trc mng dng ngang hng. Thng tin nh tuyn c truyn
ln lt cho mi router trong cng mt h thng RIP. Cn OSPF s dng khi nim v
phn vng. Mt mng OSPF c th chia cc router thnh nhiu nhm. Bng cch ny,
OSPF c th gii hn lu thng trong tng vng. Thay i trong vng ny khng nh
hng n hot ng ca cc vng khc. Cu trc phn lp nh vy cho php h thng
mng c kh nng m rng mt cch hiu qu.
4. Thut Ton Chn ng Ngn Nht
Theo thut ton ny, ng tt nht l ng c chi ph thp nht. Thut ton
c s dng l Dijkstra, thut ton ny xem h thng mng l mt tp hp cc nodes
c kt ni vi nhau bng kt ni point-to-point. Mi kt ni ny c mt chi ph. Mi
nodes c mt tn. Mi nodes c y c s d liu v trng thi ca cc ng lin kt.
Do , chng c y thng tin v cu trc vt l ca h thng mng. Tt c cc c s
d liu ny iu ging nhau cho mi router trong cng mt vng.
Giao Thc OSPF Hello
Khi router bt u khi ng tin trnh nh tuyn OSPF trn mt cng no th
n s gi mt gi hello ra cng v tip tc gi hello theo nh k. Giao thc hello a
ra cc nguyn tc qun l vic trao i cc gi OSPF hello.
lp 3 ca m hnh OSI, gi hello mang a ch multicast 224.0.5.0 a ch ny ch n
tt c cc OSPF router. OSPF router s dng gi hello thit lp mt quan h lng

ging thn mt mi v xc nh l router lng ging c cn hot ng hay khng. Mc
nh hello c gi i 10 giy mt ln trong mng qung b a truy cp v mng Pointto-Point. Trn cng ni vo mng NBMA, v d nh Frame Relay, chu trnh mc nh
ca hello l 30 giy.
Trong mng a truy cp, giao thc hello tin hnh bu DR v BDR.
Mc d gi hello rt nh nhng n cng bao gm c phn header ca gi OSPF. Cu trc
ca phn header trong gi OSPF c th hin nh hnh sau. Nu gi hello th trng
Type s c gi tr l mt.
Gi hello mang nhng thng tin thng nht gia mi lng ging vi nhau trc
khi c th thit lp mi quan h lng ging thn mt v trao i thng tin v trng thi
ng lin kt.
5. Demo cu hnh nh tuyn OSPF

Topology
Sau khi cu hnh IP cho cc interface trn ca router v cc PC gi lp. Ta cu

hnh nh tuyn cho cc Router nh sau :
Trn router R1 :
R1(config)#router ospf 1
R1(config-router)#network 172.16.1.0 0.0.0.255 area 0
R1(config-router)#network 192.168.1.10 0.0.255 area 0
R1(config)#
Trn router R2 :
Router R3
R3(config)#
VI. Filter Router - Access List

1. Gii thiu
Danh sch truy cp (Access list) hay cn gi Danh sch iu khin truy cp
(Access Control List) cung cp mt cng c mnh cho vic iu khin mng.
Nhng danh sch ny a vo c ch mm do trong vic lc dng cc gi tin m
chng i ra, vo cc giao din ca cc router.
Cc danh sch ny gip m rng vic bo v cc ti nguyn mng m khng lm
nh hng n nhng dng giao tip hp l. Danh sch truy cp phn bit giao
thng ca cc gi tin ra thnh nhiu chng loi m chng c php hay b t
chi. Danh sch lin kt c th c s dng :
Nhn dng cc gi tin cho vic xp th t u tin hay sp xp trong hng
i
Hn ch hoc gim ni dung ca thng tin cp nht chn ng.
Danh sch truy cp cng x l cc gi tin cho cc tnh nng an ton khc nh:
Cung cp c ch iu khin truy cp ng i cc gi tin
Nhn dng cc gi tin cho vic m ha
Nhn dng cc truy cp bng dch v Telnet c cho php cu hnh
router.
2. nh ngha danh sch danh sch truy cp
Danh sch truy cp l nhng pht biu dng c t nhng iu kin m mt nh
qun tr mun thit t nh cho router s x l cc cuc truyn ti c m t trong
danh danh truy cp theo mt cch thc khng bnh thng.
Danh sch truy cp a vo nhng iu khin cho vic x l cc gi tin c bit
theo mt cch thc duy nht. C hai loi danh sch truy cp chnh l:
Danh sch truy cp chun (standard access list): Danh sch ny s dng cho vic
kim tra a ch gi ca cc gi tin c chn ng. Kt qu cho php hay t
chi gi i cho mt b giao thc da trn a ch mng/mng con hay a ch my.
Danh sch m rng (Extended access list): Danh sch m rng kim tra cho c a
ch gi v nhn ca gi tin. N cng kim tra cho cc giao thc c th, s hiu
cng v cc tham s khc. Cc gi tin c php hoc t chi gi i hoc nhn ty

thuc vo gi tin c xut pht t u v i n u
3. Nguyn tc hot ng ca danh sch truy cp

Danh sch truy cp din t mt danh sch cc qui lut m n cho php thm vo
cc iu khin cc gi tin i vo mt giao din ca router, cc gi tin lu li tm thi
router v cc gi tin gi ra mt giao din ca router.
Danh sch truy cp khng c tc dng trn cc gi tin xut pht t router ang xt.
Cc ch th trong danh sch truy cp hot ng mt cch tun t. Chng nh gi

cc gi tin t trn xung. Nu tiu ca mt gi tin v mt lnh trong danh sch truy
cp khp vi nhau, gi tin s b qua cc lnh cn li. Nu mt iu kin c tha mn,
gi tin s c cp php hay b t chi. Ch cho php mt danh sch trn mt giao thc
trn mt giao din.
4. Demo Access List

Topology
Cu hnh cho router

chn cc gi lu thng t nhnh mng 172.16.2.0 n router R3, ta t accesslist dng standard trn serial0/0 ca router R3:
R3(config)#ip access-list STND-1

R3(config-std-nacl)#deny 172.16.2.0 0.0.0.255
R3(config-std-nacl)#permit any
R3(config-std-nacl)#exit
R3(config)#interface s0/0
R3(config-if)#ip ac
R3(config-std-nacl)#deny 172.16.2.0 0.0.0.255
VII.
Load balancing
Gii thiu
Cn bng ti l mt chc nng tiu chun trong cc phn mm nh tuyn ca
Cisco v c th tn ti trn hu ht cc router ca cc nh sn xut khc. Cn bng ti gn
lin vi qu trnh vn chuyn trong cc router v c t ng kch hot nu bng nh
tuyn c nhiu nh tuyn n mt mc tiu. Cn bng ti c c s l cc giao thc nh
tuyn chun nh RIP, RIP V2 (Routing Information Protocol), OSPF (Open Shortest Path
First), IGRP (Interior Gateway Routing Protocol), EIGRP (Enhanced Interior Gateway
Routing Protocol); hoc t cc nh tuyn tnh v cc c ch vn chuyn gi tin. C ch
cn bng ti cho php mt router s dng nhiu nh tuyn n mt mc tiu khi vn
chuyn cc gi tin.
Khi mt router nhn bit nhiu nh tuyn n mt lp mng thng qua cc qu
trnh x l a nh tuyn (hoc cc giao thc nh tuyn nh RIP, RIPv2, IGRP, EIGRP
v OSPF), n s ghi nh tuyn c gi tr administrative distance thp nht vo bng nh
tuyn.
i khi cc router phi chn mt trong s nhiu nh tuyn c cng gi tr
administrative distance. Trong trng hp ny, cc router s chn nh tuyn c cost
hoc metric thp nht n mc tiu. Mi qu trnh nh tuyn c c ch xc nh cost
khc nhau. i khi, gi tr cost cn c iu chnh t cn bng ti.
Cn bng ti kh thi khi ng vi mt mc tiu, router cung cp nhiu ng dn
c cng gi tr administrative distance v cost. S lng ng dn kh dng b gii hn
bi s mc m cc giao thc nh tuyn ghi vo bng nh tuyn. S lng mc nh
trong h thng xut nhp (IOS-Input Output System) ca hu ht giao thc nh tuyn l
04. Ring BGP (Border Gateway Protocol) c s lng mc nh l 01. S lng ti a

c th cu hnh l 06.
Cc giao thc IGRP v EIGRP cn h tr cn bng ti vi gi tr cost khc nhau.
Ta c th s dng lnh variance vi IGRP v EIGRP cu hnh c ch ny. Lnh
maximum-paths c dng xc nh s lng ng dn ti a c th ghi nhn da
vo cc gi tr cu hnh cho cc giao thc.
Ta c th dng lnh show ip route tm cc nh tuyn c cost bng nhau.
V d di y l kt qu ca lnh show ip route i vi mt subnet c nhiu nh tuyn.
Cn ch rng c 2 khi m t nh tuyn, mi khi l mt nh tuyn. Du hoa th (*)
bn cnh mi khi cho thy l nh tuyn kh dng cho mi mt "lung thng tin
mi". Thut ng "lung thng tin mi" c th hiu l mt gi tin hoc ton b thng tin
hng n mt mc tiu, tu thuc vo c ch chuyn i (switching) c cu hnh.
Vi c ch process-switching th cn bng ti cn c trn tng gi tin v cc du hoa th
(*) ch n interface m gi tin k tip s c chuyn n.
Vi c ch fast-switching th cn bng ti cn c trn tng mc tiu v cc du hoa th
(*) ch n interface m lung thng tin hng n mc tiu k tip s c chuyn n.
Cc du hoa th (*) s c lun phin chuyn i gia cc nh tuyn mi ln
router nhn mt gi tin hoc mt lung thng tin mi.
1. Demo Load Balancing
Topology
Cu hnh trn router
VIII.
Cu hnh VPN Client to Site
1. VPN l g?
VPN (virtual private network) l cng ngh xy dng h thng mng ring o
nhm p ng nhu cu chia s thng tin, truy cp t xa v tit kim chi ph. Trc y,
truy cp t xa vo h thng mng, ngi ta thng s dng phng thc Remote
Access quay s da trn mng in thoi. Phng thc ny va tn km va khng an
ton. VPN cho php cc my tnh truyn thng vi nhau thng qua mt mi trng chia
s nh mng Internet nhng vn m bo c tnh ring t v bo mt d liu. cung
cp kt ni gia cc my tnh, cc gi thng tin c bao bc bng mt header c cha
nhng thng tin nh tuyn, cho php d liu c th gi t my truyn qua mi trng
mng chia s v n c my nhn, nh truyn trn cc ng ng ring c gi l
tunnel. bo m tnh ring t v bo mt trn mi trng chia s ny, cc gi tin c
m ho v ch c th gii m vi nhng kha thch hp, ngn nga trng hp "trm" gi
tin trn ng truyn.
2. Cc tnh hung thng dng ca VPN:
- Remote Access: p ng nhu cu truy cp d liu v ng dng cho ngi dng
xa, bn ngoi cng ty thng qua Internet. V d khi ngi dng mun truy cp vo c
s d liu hay cc file server, gi nhn email t cc mail server ni b ca cng ty.
- Site To Site: p dng cho cc t chc c nhiu vn phng chi nhnh, gia cc
vn phng cn trao i d liu vi nhau. V d mt cng ty a quc gia c nhu cu chia
s thng tin gia cc chi nhnh t ti Singapore v Vit Nam, c th xy dng mt h
thng VPN Site-to-Site kt ni hai site Vit Nam v Singapore to mt ng truyn
ring trn mng Internet phc v qu trnh truyn thng an ton, hiu qu.
- Intranet/ Internal VPN: Trong mt s t chc, qu trnh truyn d liu gia mt
s b phn cn bo m tnh ring t, khng cho php nhng b phn khc truy cp. H
thng Intranet VPN c th p ng tnh hung ny.
trin khai mt h thng VPN chng ta cn c nhng thnh phn c bn sau

y:
- User Authentication: cung cp c ch chng thc ngi dng, ch cho php
ngi dng hp l kt ni v truy cp h thng VPN.
- Address Management: cung cp a ch IP hp l cho ngi dng sau khi gia

nhp h thng VPN c th truy cp ti nguyn trn mng ni b.
- Data Encryption: cung cp gii php m ho d liu trong qu trnh truyn nhm
bo m tnh ring t v ton vn d liu.
- Key Management: cung cp gii php qun l cc kho dng cho qu trnh m
ho v gii m d liu.
3. IPSEC (IP SECURITY PROTOCOL)
Nh chng ta bit, cc my tnh trn h thng mng LAN/WAN hay Internet
truyn thng vi nhau, chng phi s dng cng mt giao thc (ging nh ngn ng giao
tip trong th gii con ngi) v giao thc ph bin hin nay l TCP/IP.
Khi truyn cc gi tin, chng ta cn phi p dng cc c ch m ha v chng
thc bo mt. C nhiu gii php thc hin vic ny, trong c ch m ha
IPSEC hot ng trn giao thc TCP/IP t ra hiu qu v tit kim chi ph trong qu trnh
trin khai.
Trong qu trnh chng thc hay m ha d liu, IPSEC c th s dng mt hoc
c hai giao thc bo mt sau:
- AH (Authentication Header): header ca gi tin c m ha v bo v phng
chng cc trng hp "ip spoofing" hay "man in the midle attack", tuy nhin trong
trng hp ny phn ni dung thng tin chnh khng c bo v
- ESP (Encapsulating Security Payload): Ni dung thng tin c m ha, ngn
chn cc trng hp hacker t chng trnh nghe ln v chn bt d liu trong qu trnh
truyn. Phng thc ny rt hay c p dng, nhng nu mun bo v lun c phn
header ca gi tin th phi kt hp c 2 giao thc AH v ESP.
4. IPSec/VPN trn Windows Server 2003
Chng ta tham kho tnh hung thc t ca cng ty Green Lizard Books, mt cng
ty chuyn xut bn v phn phi vn ho phm. Nhm y mnh hiu qu kinh doanh, b
phn qun l mun cc nhn vin kinh doanh trong qu trnh cng tc bn ngoi c th
truy cp bo co bn hng (Sale Reports) chia s trn File Server v c th tng tc vi
my tnh ca h trong vn phng khi cn thit. Ngoi ra, i vi cc d liu mt, nhy
cm nh bo co doanh s, trong qu trnh truyn c th p dng cc c ch m ha cht
ch nng cao an ton ca d liu.
5. TUNNELING
Tunneling l k thut s dng mt h thng mng trung gian (thng l mng
Internet) truyn d liu t mng my tnh ny n mt mng my tnh khc nhng vn
duy tr c tnh ring t v ton vn d liu. D liu truyn sau khi c chia nh thnh
nhng frame hay packet (gi tin) theo cc giao thc truyn thng s c bc thm 1 lp
header cha nhng thng tin nh tuyn gip cc packet c th truyn qua cc h thng
mng trung gian theo nhng ng ring (tunnel). Khi packet c truyn n ch,
chng c tch lp header v chuyn n cc my trm cui cng cn nhn d liu.
thit lp kt ni tunnel, my client v server phi s dng chung mt giao thc (tunnel
protocol).
- PPTP (Point-to-Point Tunneling Protocol): PPTP c th s dng cho Remote
Access hay Site-to-Site VPN. Nhng thun li khi p dng PPTP cho VPN l khng yu
cu certificate cho qu trnh chng thc v client c th t pha sau NAT Router.
- L2TP ( Layer 2 Tunneling Protocol): L2TP l s kt hp ca PPTP v Layer 2
Forwading (L2F, giao thc c pht trin bi Cisco System). So vi PPTP th L2TP c
nhiu c tnh mnh v an ton hn.
Trn h thng Microsoft, L2TP c kt hp vi IPSec Encapsulating Security
Payload (ESP) cho qu trnh m ha d liu, gi l L2TP/IPSec. S kt hp ny khng
ch cho php chng thc i vi ngi dng PPTP m cn cho php chng thc i vi
cc my tnh thng qua cc chng ch, nng cao hn an ton ca d liu khi truyn, v
qu trnh tunnel c th din ra trn nhiu h thng mng khc nhau. Tuy nhin trong mi
trng L2TP/IPSec cc VPN Client khng th t pha sau NAT Router. Trong trng
hp ny chng ta cn phi c VPN Server v VPN Client h tr IPSec NAT-T.
CU HNH VPCS M PHNG PC N GIN

VPCS (Virtual PC Simulator) l mt chng trnh gi lp PC ti gin nht, cung
cp cc chc nng lin quan n mng thc hin cc bi lab, test trn GNS3. VPCS
mc nh c ci t cng vi GNS3, nm trong th mc GNS3\vpcs. y l mt
chng trnh dng Command Line. Trong Windows, ta s cu hnh v ci t nh sau:
Copy tp tin cygwin1.dll vo th mc vpcs.
Nhn chut phi vo Computer chn Properties.
Chn mc Advanced System Setting s xut hin ca s nh hnh di. Nhn
chn nt Enviroments Variables.
Hnh V-1. System Properties
Tip tc, trong phn System variables tm n mc Path, nhn p hoc chn
Edit.. thm ng dn n th mc VPCS vo y bng cch thm ; vo pha sau
cc ng dn trc , ri t ng dn C:\Program Files\GNS3\vpcs vo pha sau
; .
Ch l, khng c xa cc ni dung trong bin Path.

Nh vy l sau khi chng m cmd chng ta c th khi ng vpcs.exe bt c
ni u m khng cn phi vo th mc C:\Program Files\GNS3\vpcs m vpcs.exe
VPCS h tr 9 my tnh gi lp c cc thng s nh sau:
Ch : LPORT, RHOST v PORT y l cc thng s ta cu hnh PC trn

GNS3. PC no trong GNS3 c cu hnh LPORT, RHOST v PORT tng ng vi VPCS
no th VPCS[x] s i din cho PC trong GNS3, chng ta s s dng VPCS nh mt
Termnal ca PC.
s dng VPCS trong GNS3, ta s to mt Node Types mi (hoc c s dng
Node Cloud m khn cn thm Node Type):
Trong GNS3, trn menu Edit, chn Symbol manager. Xut hin ca s nh hnh
di. Trong phn Symbol chn computer v nhn nt > thm vo Customized
nodes. Trong phn Customized node settings, chng ta t tn cho node mi PC v chn
Type l Cloud v nhn Apply.

Bao Cao Thuc Tap

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Bao Cao Thuc Tap

Uploaded by

Copyright:

Available Formats

ti

Sinh vin thc hin:

Sinh vin Khoa CNTT-HCT

G Trung tm o to QTM &

TPHCM, Thng 5-7/2013

II. Chc nng chnh ca Router

III. Nguyn tc chn ng

Hnh I-1.Bng vch ng

C ba hnh thc cp nht bng chn ng:

IV. Cc thnh phn phn cng

NVRAM: Non-volative Random-access Memory l b nh khng b mt d liu

C CH O HA ROUTER CISCO TRN GNS3

chng trnh h tr khc nh Qemu - gi lp my tnh (ngun m) v VirtualBox - phn

Hnh II-1.GNS3 Setup

Hnh II-2.GNS3 License Agreement

Hnh II-3.GNS3 Choose Start Menu Folder

Hnh II-4.GNS3 Choose Components

Hnh II-5.GNS3 Choose Install Location

Nhn Install, c th chn ci WinCap v WireShark (nu cha ci t trc )

Hnh II-6.Install Wincap b sung

Hnh II-7.Tin trnh ci t GNS3

Hnh II-8.Complete Setup

Nhn finish v hon tt qu trnh ci t

L THUYT GII THUT NH TUYN

II. i lng o lng (Metric):

Chiu di ng i (length path): L s lng router phi i qua trn ng i.

III. Mc tiu thit k

IV. Phn loi gii thut chn ng

OSPF: Open Shortest Path First

V. Gii thut vch ng theo kiu trng thi ni kt Link state

VI. Gii thut chn ng theo kiu vect khong cch

CU HNH NH TUYN CHO ROUTER CISCO

Hnh IV-1.Cc Mode lm vic ca Router

II. Cc lnh c bn trn Router

Chng ta cng cn t mt khu cho mt hoc nhiu ng vty kim sot cc

Mt khu enable v enable secret c s dng hn ch vic truy cp vo ch

i khi bn s thy l rt khng an ton khi mt khu c hin th r rng khi s

3. Kim tra cu hnh Router bng cc lnh Show

Ngoi ra cn cc lnh show khc:

Hin th tp tin cu hnh ang chy

Hin th bng nh tuyn

Hin th thng tin c bn v cc interface

Hin th trng thi ton cc v trng thi ca cc cng giao tip c cu

4. Cu hnh cng Interface

AthenaR1(config)#ip address 192.168.1.1 255.255.255.0

Mc nh th cc cng giao tip trn router u ng. Nu bn mun m hay khi

III. Cu hnh nh tuyn tnh

Hnh IV-2.Topology Static Route

Trn Router R2, ta cng vo mode cofig v cu hnh nh sau :

Nh vy vic nh tuyn cho router hon tt. Tuy nhin, do y l mt topology

IV. Cu hnh nh tuyn RIP - Routing Information Protocol

Hnh IV-3. RIPv1 Topology

Lu rng RIPv1 l mt giao thc dng classful nn ch s dng c vi cc a

Trn Router R3, cu hnh nh sau:

Trn Router R1, ta cu hnh nh sau :

V. Cu hnh nh tuyn OSPF

OSPF c h tr VLSM nn n c xem l mt giao thc nh tuyn khng theo

tt c cc OSPF router. OSPF router s dng gi hello thit lp mt quan h lng

5. Demo cu hnh nh tuyn OSPF

Sau khi cu hnh IP cho cc interface trn ca router v cc PC gi lp. Ta cu

VI. Filter Router - Access List

cng v cc tham s khc. Cc gi tin c php hoc t chi gi i hoc nhn ty

3. Nguyn tc hot ng ca danh sch truy cp

Cc ch th trong danh sch truy cp hot ng mt cch tun t. Chng nh gi