Professional Documents
Culture Documents
0
A - M HNH
B - GII THIU
Khi kt ni h thng mng ni b giao dch vi Internet ,cc Cng ty thng c yu cu nh :
- Kim sot cc giao dch thc hin gia mng ni b v Internet
- Ngn chn cc tn cng, thm nhp tri php t Internet
Gii php thch hp cho cc nhu cu trn l s dng cc Firewall (bc tng la). Bi Lab ny gii
thiu vic ci t v trin khai phn mm Firewall ca Microsoft : Internet Security and
Acceleration 2006 (ISA-2K6)
C - CC BC TRIN KHAI
Pht trin t h thng Domain ca bi Lab-5, bi Lab ny s dng thm 1 my tnh c lp ,dng
Windows Server 2003 trin khai ISA-2K6
Cc bc trin khai bao gm :
- Cu hnh thng s TCP/IP v ci t ISA-2K6
- Khai bo trn ISA-2K6 cc thnh phn trong mng ni b nh :VIP, USER, SERVER
- Thit lp cc Access Rules, Application Filer trn ISA-2K6 kim sot cc giao dch
- Cu hnh ISA-2K6 nhn bit v ngn chn cc tn cng t bn ngoi Internet
- Thc hin thng k, bo co v cc giao dch thng qua ISA-2K6
D -TRIN KHAI CHI TIT
I. Chun b
Bi lab gm 5 PC:
Server,VIP,Users,Router v ISA
1. Nng cp Domain Controller trn my Server
B1: t IP Address
Interface
Name
IP Address
Subnet Mark
Lan-3
192.168.3.2
255.255.255.0
192.168.3.1
192.168.3.2
IP Address
Subnet Mark
Cross
192.168.5.2
255.255.255.0
Trng
Trng
Lan-2
192.168.2.1
255.255.255.0
Trng
Trng
Lan-3
192.168.3.1
255.255.255.0
Trng
Trng
Lan-4
192.168.4.1
255.255.255.0
Trng
Trng
IP Address
Subnet Mark
VIP
192.168.2.2
255.255.255.0
192.168.2.1
192.168.3.2
Users
192.168.4.2
255.255.255.0
192.168.4.1
192.168.3.
B2: My Computer > Properties > Tab Computer Name > Click Change
Member Of Domain: nhatnghe.local
II. Ci t ISA Server 2006 trn my ISA
1. Cu hnh Route trn my ISA
B1: t IP Address
Interface
Name
IP Address
Subnet Mark
Cross
192.168.5.1
255.255.255.0
Trng
192.168.3.2
Lan
192.168.1.2
255.255.255.0
Trng
Trng
B2: To cc route
Start\Run:CMD.
*Nhp cc lnh to route sau:
Route add p 192.168.2.0 mask 255.255.255.0 192.168.5.2 metric 1
Route add p 192.168.3.0 mask 255.255.255.0 192.168.5.2 metric 1
Route add p 192.168.4.0 mask 255.255.255.0 192.168.5.2 metric 1
Route add p 0.0.0.0 mask 0.0.0.0 192.168.1.1 metric 1
* xem Routing Table, nhp lnh
route print
2. Ci t ISA Server
T Source ISA2006 > chy file: ISAAutorun.exe
5. Cho Users truy cp internet khng hn ch trong gi gii lao (10h AM - 2h PM)
B1: nh ngha Gi gii lao
VI. Report
(ST QUANTRIMANG)
0 Tr li
DANH MC
Hin th ton b danh mc (/category)
THNG BO (/anacat/thong-bao)
ENGLISH (/anacat/english)
NEWS (/anacat/news)
CISCO (/anacat/cisco)
MICROSOFT AREA (/anacat/microsoft-area)
PHP (/anacat/php)
LINUX (/anacat/linux)
TI LIU HNG DN (/anacat/tai-lieu-huong-dan)
DOWNLOAD (/anacat/download)
TH VIN (/anacat/thu-vien)
TM KIM
Go
H TR
(+84) 904 36 27 68
binhnv2010@outlook.com (mailto:binhnv2010@outlook.com)
(mailto:binhnv2010@outlook.com)
T KHA PH BIN
2012 (/tagged/2012) 33
vpn (/tagged/vpn ) 15
oth er s (/tagged/oth er s) 8
switch (/tagged/switch ) 5
2dc (/tagged/2dc) 5
ipsec (/tagged/ipsec) 5
apach e (/tagged/apach e) 4
dpm (/tagged/dpm ) 5
r ip (/tagged/r ip) 4
ospf (/tagged/ospf) 4
web (/tagged/web) 3
TUN
extenXP
ded-HNG
access- list
(/tagged/exten ded- access- list) 3
vtp Uritycica
(/tagged/vtp)
3 cdp (/tagged/cdp) 3
(/profile/uritycica)
THNG K
sep (/tagged/sep) 3
lin u x (/tagged/lin u x) 3
ad- r m s (/tagged/ad- r m s) 3
static (/tagged/static) 3
passwor d (/tagged/passwor d) 3
ios (/tagged/ios)
3 cen os (/tagged/cen os) 3
arcabrifT (/profile/arcabrift)
wir eless (/tagged/wir eless) 3
2003 (/tagged/2003) 4
wds (/tagged/wds) 3
pki (/tagged/pki) 3
n ap (/tagged/n ap) 6
scvm m (/tagged/scvm m ) 5
sstp (/tagged/sstp) 8
video (/tagged/video) 5
sql (/tagged/sql) 4
dh cp (/tagged/dh cp) 9
isa (/tagged/isa) 5
top10v1qtm (/tagged/top10v1qtm ) 10
qos (/tagged/qos) 5
backu p (/tagged/backu p) 15
vlan (/tagged/vlan ) 6
ccn a (/tagged/ccn a) 33
gr ou p (/tagged/gr ou p) 2
dem o (/tagged/dem o) 2
dac (/tagged/dac) 2
2
2
(http://info.flagcounter.com/GGA)