Scribd Logo
Upload

Welcome to Scribd!

  • Baithuchanh QuanTriMang

    Uploaded by

    Anh Tú Trương Nguyễn
    198 views52 pages

    Original Title

    Baithuchanh_QuanTriMang

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    DOC, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    198 views52 pages

    Baithuchanh QuanTriMang

    Uploaded by

    Anh Tú Trương Nguyễn

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 52

    Bi tp thc hnh Qun tr mng I.

    MC TIU THC HNH

    Gii thiu cho sinh vin cc kin thc cn bn v cc k thut c s dng trong qu trnh qun tr mng. II. HC LIU Hc liu : - Phn mm (Packet Tracert 5.0 hoc GNS3) - Bi tp thc hnh ca ging vin cung cp Dng c : - Projector, mn chiu - My tnh - Bng, phn - H thng my tnh c kt ni mng III. NI DUNG Gm 9 bi thc hnh (lab) vi cc ni dung sau: Lab 1: 3h - Gii thiu v cc chng trnh gi lp thit b mng Cisco (Packet Tracert, Dynamip v GNS3). Cch ci t cc chng trnh gi lp v s dng. Cu hnh c bn thit b chuyn mch Switch.

    Lab 2: 3h - Cch chia VLAN. Gn port vo VLAN. Kim tra VLAN. Cu hnh ng trung k. Thit lp h thng mng ng b thng tin VLAN. Kim tra s ng b.

    Lab 3: 3h - Kim tra hot ng ca STP. Thit lp cc thng s STP h thng mng hot ng theo mt k hoch lp sn.

    Trang 1

    Bi tp thc hnh Qun tr mng Lab 4: 3h Cu hnh c bn cho thit b nh tuyn Cisco. Thc hin kim tra kt ni gia cc thit b nh tuyn. C bn v nh tuyn tnh. Kim tra bng nh tuyn.

    Lab 5: 3h nh tuyn RIP. Kim tra bng nh tuyn.

    Lab 6: 3h nh tuyn OSPF. Kim tra bng nh tuyn.

    Lab 7: 3h - Cu hnh DHCP trn thit b Cisco. Cu hnh DHCP trn Microsoft.

    Lab 8: 3h - Cu hnh ACL chun lc gi tin theo yu cu. Kim tra vic lc gi tin.

    Lab 9: 3h - Cu hnh NAT tnh. Kim tra cu hnh.

    Trang 2

    Bi tp thc hnh Qun tr mng VI.TI LIU THAM KHO [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14] [15] [16] [17] Ti liu chnh [1] Tp bi ging Qun tr mng,V Nhn Vn Ti liu tham kho Ti liu ting Vit Nguyn Thc Hi, Mng my tnh v cc h thng m, NXB GD, 1997 MK.PUB, Gio trnh h my tnh CCNA2, Nh sch Minh Khai, 2008 Nguyn Gia Nh, Bi ging mng my tnh, 2010 Trn Bn Thch, Qun tr mng Window Server 2003, 2009 Ti liu ting Anh CiscoPress CCNA ICND1 Official Exam Certification Guide Cisco Press CCNA ICND2 Official Exam Certification Guide Cisco Academy CCNA Explorer CCNP BCMSN Student Guide Version 4.0(2007) CCNP ROUTE 642-902 Official Certification Guide CCIE Network Design, Cisco Press Design a Microsoft Windows Server 2003 Active Directory and Nework Infractructure, Microsoft Press, 2004 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infractructure, Microsoft Press, 2004 Website http://www.networkdictionary.com/networking/NetworkManagement.php http://sins.com.au/netman/osi_nms_model.html http://www.vnpro.org/forum http://www.tiemnangviet.com.vn

    Trang 3

    Bi tp thc hnh Qun tr mng

    TRNG I HC DUY TN KHOA CNG NGH THNG TIN B MN K THUT MNG

    QUN TR MNG

    BI THC HNH Bi s : 01 S gi : 03gi GVHD : V Nhn Vn

    LAB 01 SWITCH
    I. MC TIU
    -

    Gii thiu v cc chng trnh gi lp thit b mng Cisco (Packet Tracert, Dynamip v GNS3). Cch ci t cc chng trnh gi lp v s dng. Cu hnh c bn thit b chuyn mch Switch.

    II. NI DUNG

    A. M ta : - Phn thc hnh nay m ta cach cu hinh cc thng s c ban cho thit b switch Catalyst 2900. Cc thng s c bn bao gm t tn, ia chi IP, va mt khu. B. Thc hin : 1.Ni cng COM cua may tinh vi cng console cua Catalyst 2900 ( mt sau cua switch) dung cap Rolled-over. Cc thng s truy cp: 8 data bit , no parity, 1 stop bit, no flow control. 2.Bt switch va xem qua trinh khi ng (cn khoang 1 phut 2900 khi ng xong)

    Trang 4

    Bi tp thc hnh Qun tr mng C2900XL Boot Loader (C2900-HBOOT-M) Version 12.0(5)XU, RELEASE SOFTWARE (fc1) Compiled Mon 03-Apr-00 17:20 by swati starting... Base ethernet MAC Address: 00:02:b9:9a:85:80 Xmodem file system is available. Initializing Flash... flashfs[0]: 108 files, 3 directories flashfs[0]: 0 orphaned files, 0 orphaned directories flashfs[0]: Total bytes: 3612672 flashfs[0]: Bytes used: 2775040 flashfs[0]: Bytes available: 837632 flashfs[0]: flashfs fsck took 6 seconds. ...done Initializing Flash. Boot Sector Filesystem (bs:) installed, fsid: 3 Parameter Block Filesystem (pb:) installed, fsid: 4 Loading "flash:c2900XL-c3h2s-mz-120.5XU.bin"...######################################## ################## ################################################## ################## 3.Khi khi ng xong, ban se c thng bao bng System Configuration Dialog (do cha co cu hinh lu trong switch). IOS (tm) C2900XL Software (C2900XL-C3H2S-M), Version 12.0(5)XU,RELEASE SOFTWARE Copyright (c) 1986-2000 by cisco Systems, Inc. Compiled Mon 03-Apr-00 16:37 by swati --- System Configuration Dialog --At any point you may enter a question mark '?' for help. Use ctrl-c to abort configuration dialog at any prompt. Default settings are in square brackets '[]'. Continue with configuration dialog? [yes/no]: Cung ging nh router nhn no khng vao Setup mode chuyn trc tip sang user exec mode: Switch> 4.Nhn enable vao privileged mode:

    Trang 5

    Bi tp thc hnh Qun tr mng

    Switch>enable Switch#show running-config Building configuration... Current configuration: ! version 12.0 no service pad service timestamps debug uptime service timestamps log uptime no service mt khu-encryption ! hostname Switch ! ip subnet-zero ! interface FastEthernet0/1 ! interface FastEthernet0/2 ! interface FastEthernet0/3 ! interface FastEthernet0/4 ! interface FastEthernet0/5 ! interface FastEthernet0/6 ! interface FastEthernet0/7 ! interface FastEthernet0/8 ! interface FastEthernet0/9 ! interface FastEthernet0/10 ! interface FastEthernet0/11 ! interface FastEthernet0/12 ! interface VLAN1 no ip directed-broadcast no ip route-cache

    Trang 6

    Bi tp thc hnh Qun tr mng ! line con 0 transport input none stopbits 1 line vty 5 15 ! end Nh hin th trn, cu hinh ca switch rt ging vi IOS trn router. Cac interface trn switch la cac port cua switch. Lu y se khng co bt ky cu inh tuyn nao trn switch, ban se khng thy bt c lnh nao lin quan ti inh tuyn goi tin. 5.Bc tip theo, ta t tn cho switch, t cc mt khu truy cp t tn: Switch#config terminal Switch(config)#host ALSwitch ALSwitch(config)# t mt khu ALSwitch(config)#enable password class ALSwitch(config)#line con 0 ALSwitch(config-line)#password cisco ALSwitch(config-line)#login ALSwitch(config-line)#line vty 0 15 ALSwitch(config-line)#password cisco ALSwitch(config-line)#login Dung cu lnh copy lu cu hinh t RAM vo NVRAM: ALSwitch#copy running-config startup-config 6.t ia chi IP cho switch no co th lin lac vi cac thit b khac qua trn mng. Switch l mt thit b lp 2. Vic t IP address cho switch ch nhm mc ch qun tr. Tt ca cac port mt inh cua VLAN 1, do o phai cu hinh cho quan ly switch dung VLAN 1. Ban cu hinh VLAN 1 nh cu hinh mt cng giao tip ca router khi gan ia chi IP. ALSwitch#config terminal ALSwitch(config)#interface vlan 1 Trang 7

    Bi tp thc hnh Qun tr mng ALSwitch(config-if)#ip address 10.1.1.251 255.255.255.0 Vi switch khng th cu hinh giao thc inh tuyn, nn ti tt ca cac mang, ta phai cu hinh mt a ch gateway mc inh gi tt ca lu lng khi ta cn lin lac gia cac VLAN. ALSwitch(config)#ip default-gateway 10.1.1.1 7.Cu hinh PC cua ban cho no la mt thanh phn trong mang 10.1.1.0/24 (gia s t ia chi IP cho PC la 10.1.1.10/24). Cm PC vao mt port bt ky cua switch. T PC Telnet vao switch dung ia chi a cu hinh 10.1.1.251 (T Window: Start/Run/Telnet 10.1.1.251) Sau khi telnet thnh cng, th mt s lnh trn switch: ALSwitch#show interfaces FastEthernet0/1 is down, line protocol is down Hardware is Fast Ethernet, address is 0002.fd49.7b81 (bia 0002.fd49.7b81) MTU 1500 bytes, BW 0 Kbit, DLY 100 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation ARPA, loopback not set Keepalive not set Auto-duplex , Auto Speed , 100BaseTX/FX ARP type: ARPA, ARP Timeout 04:00:00 Last input never, output never, output hang never Last clearing of "show interface" counters never --More Lnh show version xem thng tin phn cng va phn mm ALSwitch#show version Cisco Internetwork Operating System Software IOS (tm) C2900XL Software (C2900XL-C3H2S-M), Version 12.0(5)XU, RELEASE SOFTWARE Compiled Mon 03-Apr-00 16:37 by swati Image text-base: 0x00003000, data-base: 0x00301398 ROM: Bootstrap program is C2900XL boot loader ALSwitch uptime is 16 minutes System returned to ROM by power-on System image file is "flash:c2900XL-c3h2s-mz-120.5-XU.bin" Trang 8

    Bi tp thc hnh Qun tr mng cisco WS-C2924-XL (PowerPC403GA) processor (revision 0x11) with 8192K/1024K bytes of memory. . . . . 24 FastEthernet/IEEE 802.3 interface(s) 32K bytes of flash-simulated non-volatile configuration memory. Base ethernet MAC Address: 00:02:FD:49:7B:80 Motherboard assembly number: 73-3382-08 Power supply part number: 34-0834-01 Motherboard serial number: FAB04301ANJ Power supply serial number: PHI04150042 Model revision number: A0 Motherboard revision number: B0 Model number: WS-C2924-XL-EN System serial number: FAB0432S2GJ Configuration register is 0xF ALSwitch#

    Trang 9

    Bi tp thc hnh Qun tr mng

    TRNG I HC DUY TN KHOA CNG NGH THNG TIN B MN K THUT MNG

    QUN TR MNG

    BI THC HNH LAB s : S gi : 02 03

    GVHD :V Nhn Vn

    LAB 02
    VLAN
    I. MC TIU - Cch chia VLAN. Gn port vo VLAN. Kim tra VLAN. Cu hnh ng trung k.

    II. NI DUNG

    A. M ta - Cu hinh trn switch Catalyst 2900 XL h tr 4 VLAN: Marketing, Accounting, Enginerring va Network Management theo bang sau: VLANs: + VLAN 1: Network Management, gm Port Numbers Fa0/1 Fa0/3 + VLAN 10: Accounting gm Fa0/4 Fa0/6 + VLAN 20: Marketing gm Fa0/7 Fa0/9 + VLAN 30: Engineering gm Fa0/10 Fa0/12 B. Thc hin Trang 10

    Bi tp thc hnh Qun tr mng

    1.Trc tin phai tao c s d liu VLAN. Mi VLAN co mt s phn bit la vlan-id, co th t 1 n 1001. tao c s d liu VLAN (VLAN database) thc hin cac bc nh sau: Cch 1: Vao mode config cu hinh cho VLAN database: Switch#Config ter To mi VLAN bng cu lnh vlan vlan-id [name name]. Nu khng t tn cho VLAN thi tn se c ly mc inh Switch(config)# vlan 20 Switch(config)#name marketing Cch 2: Vao mode cu hinh cho VLAN database: Switch#vlan database To mi VLAN bng cu lnh vlan vlan-id [name name]. Nu khng t tn cho VLAN thi tn se c ly mc inh Switch(vlan)# vlan 20 name marketing Cp nht d liu VLAN vo c s d liu VLAN, va thoat v priviledge mode. Switch(vlan)# exit Kim tra cu hinh VLAN bng lnh show vlan Switch# show vlan name marketing VLAN Name Status Ports ---- -------------------------------- ----------------------------20 marketing active VLAN Type SAID MTU Parent RingNo BridgeNo Stp Trans1 Trans2 ---- ----- ---------- ----- ------ ------ -------- --------- -----20 enet 100003 1500 - - - - 0 0 Vic to ra cac VLAN khac s c thc hin tng t. Trang 11

    Bi tp thc hnh Qun tr mng

    2.Gan cac port cho VLAN tng ng. Trc tin cn cu hinh tt ca cac port la access ports. Cac port trn switch 2900 co th 1 trong 3 ch : trunk port, multi-VLAN port va access port. Trunk port va multi-VLAN port c dung ni vi switch khac (hoc thit bi khac co tao VLAN trunking). Do kt ni cac workstation vi cac port nay nn cn phai cu hinh tt ca cac port nay ch access port. Switch(config)#interface fa0/1 Switch(config-if)#switchport mode access Gan cac port vao VLAN theo yu cu bng cach s dung lnh switchport access vlan n (n la s hiu VLAN) Switch(config)#interface fa0/4 Switch(config-if)#switchport access Switch(config)#interface fa0/5 Switch(config-if)#switchport access Switch(config)#interface fa0/6 Switch(config-if)#switchport access Switch(config)#interface fa0/7 Switch(config-if)#switchport access Switch(config)#interface fa0/8 Switch(config-if)#switchport access Switch(config)#interface fa0/9 Switch(config-if)#switchport access Switch(config)#interface fa0/10 Switch(config-if)#switchport access Switch(config)#interface fa0/11 Switch(config-if)#switchport access Switch(config)#interface fa0/12 Switch(config-if)#switchport access vlan 10 vlan 10 vlan 10 vlan 20 vlan 20 vlan 20 vlan 30 vlan 30 vlan 30

    Ban khng cn phai cu hinh port fa0/1-fa0/3 la VLAN 1 vi mc inh cac port c gan vao VLAN 1. Vi du cu hinh gan port 07 cho VLAN 20 va kim tra lai cu hinh Switch# configure terminal Enter configuration commands, one per line. End with CNTL/Z. Switch(config)# interface fa0/7 Switch(config-if)# switchport mode access Switch(config-if)# switchport access vlan 20 Trang 12

    Bi tp thc hnh Qun tr mng Switch(config-if)# end Switch# show interface fa0/7 switchport Name: Fa0/7 Switchport: Enabled Administrative mode: static access Operational Mode: static access Administrative Trunking Encapsulation: isl Operational Trunking Encapsulation: isl Negotiation of Trunking: Disabled Access Mode VLAN: 20 (marketing) Trunking Native Mode VLAN: 1 (default) Trunking VLANs Enabled: NONE Pruning VLANs Enabled: NONE 3.Thc hin kim tra cac VLAN trn switch bng lnh show vlan Switch# show vlan brief VLAN Name Status Ports ---- -------------------------------- ----------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/13, Fa0/14, Fa0/15, Fa0/16 10 Accounting active Fa0/4 Fa0/6 20 maketing active Fa0/7 Fa0/9 30 Engineering active Fa0/10 Fa0/12 40 VLAN0040 active 1002 fddi-default active 1003 token-ring-default active 1004 fddinet-default active 1005 trnet-default active

    Trang 13

    Bi tp thc hnh Qun tr mng


    TRNG I HC DUY TN KHOA CNG NGH THNG TIN B MN K THUT MNG

    QUN TR MNG

    LAB s : S gi :

    BI THC HNH 03 03 gi

    GVHD : V Nhn Vn

    LAB 03
    VTP I. Mc tiu II. Ni dung

    A. M ta - VLAN cho phep kt hp cac port trn switch thanh cac nhom giam lu lng broadcast trn mang. Cac lu lng nay c gii han trong pham vi c xac inh bi VLAN. - Kt ni trunk la lin kt point-to-point gia cac port trn switch vi router hoc vi switch khac. Kt ni trunk s vn chuyn thng tin cua nhiu VLAN thng qua 1 lin kt n va cho phep m rng VLAN trn h thng mang. - VTP (VLAN Trunking Protocol) la giao thc hoat ng Layer 2 trong m hinh OSI. VTP giup cho vic cu hinh VLAN lun ng nht khi thm, xoa, sa thng tin v VLAN trong h thng mang. - Bi thc hnh nay m ta cach thc tao trunk gia 2 switch. Trunking c cu hinh trn port F0/1 cua hai switch. Ta nn dung cap cho ni hai port nay. B. Thc hin Cu hinh trn Switch 1 lam VTP Server 1. t hostname, mt khu va cu hinh cng vlan trn DL1: Switch#conf t

    Trang 14

    Bi tp thc hnh Qun tr mng Enter configuration commands, one per line. End with CNTL/Z. Switch(config)#hostname DL1 DL1(config)#enable password cisco DL1(config)#line vty 0 15 DL1(config-line)#password cisco DL1(config-line)#login DL1(config-line)#exit DL1(config)#int vlan 1 DL1(config-if)#ip address 192.168.1.3 255.255.255.0 DL1(config-if)#end DL1# 2. Thit lp VTP domain la VAN, VTP mode la SERVER, tao ra cac VLAN 10 (SALES), 20 (ACCOUNTING), 30 (ENGINEERING) DL1#vlan database Thi l chVTP server mode t p DL1(vlan)#vtp server DL1(vlan)#vtp domain VAN switch DL1 va domain VAN t o Ta VLAN 10 va tn laSALES o t DL1(vlan)#vlan 10 name SALES VLAN 10 added: Name: SALES DL1(vlan)#vlan 20 name ACCOUNTING VLAN 20 added: Name: ACCOUNTING DL1(vlan)#vlan 30 name ENGINEERING VLAN 30 added: Name: ENGINEERING Lu c hih va file vlan.dat p n o DL1(vlan)#apply APPLY completed. DL1(vlan)#exit APPLY completed. Exiting.... DL1# + Mt switch chi thuc 1 VTP domain Mc inh switch ch VTP server mode 3. Kich hoat trunking trn cng Fa0/1 va cho phep tt ca cac VLAN qua trunk: DL1#conf t Enter configuration commands, one per line. End with CNTL/Z. DL1(config)#int f0/1 Trang 15

    Bi tp thc hnh Qun tr mng DL1(config-if)#switchport mode trunk og go ki isl (ho dot1q) i qua g n i u c n trunkDL1(config-if)#switchport trunk encapsulation isl Cho phe t caca VLAN qua trunk p t c DL1(configif)#switchport trunk allowed vlan all DL1(config-if)#exit DL1(config)# 4. Gan cac port vao VLAN tng ng DL1(config)#int f0/4 C hih cng access mode u n DL1(config-if)#switchport mode access c hih cng va vlan 10 u n o DL1(config-if)#switchport access vlan 10 ! M access port chiphu vucho m VLAN i c t DL1(config-if)#int f0/5 DL1(config-if)#switchport mode access DL1(config-if)#switchport access vlan 10 DL1(config-if)#int f0/6 DL1(config-if)#switchport mode access DL1(config-if)#switchport access vlan 10 DL1(config)#int f0/7 DL1(config-if)#switchport DL1(config-if)#switchport DL1(config-if)#int f0/8 DL1(config-if)#switchport DL1(config-if)#switchport DL1(config-if)#int f0/9 DL1(config-if)#switchport DL1(config-if)#switchport DL1(config)#int f0/10 DL1(config-if)#switchport DL1(config-if)#switchport DL1(config-if)#int f0/11 DL1(config-if)#switchport DL1(config-if)#switchport DL1(config-if)#int f0/12 DL1(config-if)#switchport DL1(config-if)#switchport 5. Xem cu hinh va thc hin Trang 16 mode access access vlan 20 mode access access vlan 20 mode access access vlan 20 mode access access vlan 30 mode access access vlan 30 mode access access vlan 30

    Bi tp thc hnh Qun tr mng

    DL1#sh vlan brief VLAN Name Status Ports ---- -------------------------------- -------------------------------------1 default active Fa0/2, Fa0/3, Fa0/13, Fa0/14 Fa0/15, Fa0/16, Fa0/17, Fa0/18 Fa0/19, Fa0/20, Fa0/21, Fa0/22 Fa0/23, Fa0/24, Gi0/1, Gi0/2 10 SALES active Fa0/4, Fa0/5, Fa0/6 20 ACCOUNTING active Fa0/7, Fa0/8, Fa0/9 30 ENGINEERING active Fa0/10, Fa0/11, Fa0/12 1002 fddi-default act/unsup 1003 token-ring-default act/unsup 1004 fddinet-default act/unsup 1005 trnet-default act/unsup DL1# Cu hinh trn Switch 2 lam VTP Client 1. t hostname, mt khu va cu hinh management vlan trn DL1: Switch#conf t Enter configuration commands, one per line. End with CNTL/Z. Switch(config)#hostname AL1 AL1(config)#enable mt khu cisco AL1(config)#line vty 0 15 AL1(config-line)#mt khu cisco AL1(config-line)#login AL1(config-line)#exit AL1(config)#int vlan 1 AL1(config-if)#ip address 192.168.1.2 255.255.255.0 AL1(config-if)#end AL1# 2. Thit lp VTP domain la VAN, VTP mode la CLIENT AL1#vlan database AL1(vlan)#vtp client AL1(vlan)#vtp domain VAN AL1(vlan)#exit In CLIENT state, no apply attempted.

    Trang 17

    Bi tp thc hnh Qun tr mng Exiting.... AL1# 3. Kich hoat trunking trn cng Fa0/1 va cho phep tt ca cac VLAN qua trunk: AL1#conf t Enter configuration commands, one per AL1(config)#int f0/1 AL1(config-if)#switchport mode trunk og go ki isl (ho dot1q) i n i u c trunkAL1(config-if)#switchport trunk Cho phe t caca VLAN qua trunk p t c if)#switchport trunk allowed vlan all AL1(config-if)#exit AL1(config)# 4. Ap t cac port chi inh vao VLAN tng ng AL1(config)#int f0/4 AL1(config-if)#switchport AL1(config-if)#switchport AL1(config-if)#int f0/5 AL1(config-if)#switchport AL1(config-if)#switchport AL1(config-if)#int f0/6 AL1(config-if)#switchport AL1(config-if)#switchport AL1(config)#int f0/7 AL1(config-if)#switchport AL1(config-if)#switchport AL1(config-if)#int f0/8 AL1(config-if)#switchport AL1(config-if)#switchport AL1(config-if)#int f0/9 AL1(config-if)#switchport AL1(config-if)#switchport mode access access vlan 10 mode access access vlan 10 mode access access vlan 10 mode access access vlan 20 mode access access vlan 20 mode access access vlan 20 line. End with CNTL/Z. qua g n encapsulation isl AL1(config-

    AL1(config)#int f0/10 AL1(config-if)#switchport mode access AL1(config-if)#switchport access vlan 30 AL1(config-if)#int f0/11 AL1(config-if)#switchport mode access Trang 18

    Bi tp thc hnh Qun tr mng AL1(config-if)#switchport access vlan 30 AL1(config-if)#int f0/12 AL1(config-if)#switchport mode access AL1(config-if)#switchport access vlan 30 5. Xem cu hinh va thc hin AL1#sh vlan VLAN Name Status Ports ---- -------------------------------- ----------------------------------1 default active Fa0/2, Fa0/3 10 SALES active Fa0/4, Fa0/5, Fa0/6 20 ACCOUNTING active Fa0/7, Fa0/8, Fa0/9 30 ENGINEERING active Fa0/10, Fa0/11, Fa0/12 1002 fddi-default active 1003 token-ring-default active 1004 fddinet-default active 1005 trnet-default active VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2 ---- ----- ---------- ----- ------ ------ -------- ----------- ------ -----1 enet 100001 1500 - - - - - 0 0 10 enet 100010 1500 - - - - - 0 0 20 enet 100020 1500 - - - - - 0 0 30 enet 100030 1500 - - - - - 0 0 1002 fddi 101002 1500 - 0 - - - 0 0 1003 tr 101003 1500 - 0 - - srb 0 0 1004 fdnet 101004 1500 - - - ieee - 0 0 1005 trnet 101005 1500 - - - ibm - 0 0 AL1# Kim tra 1. Kim tra cng Fa0/1 a hoat ng cha AL1#show int f0/1 Cng ahoa g t n FastEthernet0/1 is up, line protocol is up Hardware is Fast Ethernet, address is 00b0.64c9.cd41 (bia 00b0.64c9.cd41) MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, Trang 19

    Bi tp thc hnh Qun tr mng reliability 255/255, txload 1/255, rxload 1/255 Encapsulation ARPA, loopback not set Keepalive not set Auto-duplex (Full), Auto Speed (100), 100BaseTX/FX ARP type: ARPA, ARP Timeout 04:00:00 ... 2. Kim tra cng Fa0/1 a kich hoat trunking va ung kiu encapsulation cha AL1#sh int f0/1 switchport Name: Fa0/1 Switchport: Enabled Administrative mode: trunk Cng F0/1 hoa g chtrunk mode t n Operational Mode: trunk Administrative Trunking Encapsulation: isl Ki og go laisl u n i Operational Trunking Encapsulation: isl Negotiation of Trunking: Disabled Access Mode VLAN: 0 ((Inactive)) Trunking Native Mode VLAN: 1 (default) Cho phe t caca VLAN qua k n trunk p t c t i Trunking VLANs Enabled: ALL Ca VLAN hi hah ang hoa g c n n t n Trunking VLANs Active: 1,10,20,30 Pruning VLANs Enabled: 2-1001 Priority for untagged frames: 0 Override vlan tag priority: FALSE Voice VLAN: none Appliance trust: none AL1# 3. Kim tra revision number trn client co ng b vi server cha AL1#sh vtp status VTP Version : 2 Configuration Revision srevision number : 2 Maximum VLANs supported locally : 68 Number of existing VLANs : 8 VTP Operating Mode Switch hoa g chclient t n Client

    Trang 20

    Bi tp thc hnh Qun tr mng VTP Domain Name Switch thu domain VAN: VAN c VTP Pruning Mode : Disabled VTP V2 Mode : Disabled VTP Traps Generation : Disabled MD5 digest : 0xDC 0x45 0xB2 0xD9 0x5B 0x7A 0x50 0x19 Configuration last modified by 192.168.1.2 at 3-1-93 01:54:06 AL1# DL1#sh vtp status VTP Version : 2 Configuration Revision : 2 Maximum VLANs supported locally : 1005 Number of existing VLANs : 8 VTP Operating Mode : Server VTP Domain Name : VAN VTP Pruning Mode : Disabled VTP V2 Mode : Disabled VTP Traps Generation : Disabled MD5 digest : 0xDC 0x45 0xB2 0xD9 0x5B 0x7A 0x50 0x19 Configuration last modified by 192.168.1.2 at 3-1-93 01:54:06 Local updater ID is 192.168.1.2 on interface Vl1 (lowest numbered VLAN interface found) DL1# + Revision number la mt trong nhng thng s quan trong cua VTP. Mi khi VTP server thay i VLAN database thi se tng gia tri revision ln 1 va thc hin quang cao VLAN database nay. Cac thit bi co s revision nho hn phai chp nhn VLAN database co s revision ln hn. Nu VTP server xoa bo tt ca cac VLAN & co s revision cao nht thi cac thit bi khac cung se bi xoa VLAN. 4. Kim tra s ln gi va nhn thng tin trunking DL1#sh vtp counters VTP statistics: Summary advertisements received : 18 Subset advertisements received : 5 Request advertisements received : 1 Summary advertisements transmitted : 12 Subset advertisements transmitted : 2 Request advertisements transmitted : 0 Trang 21

    Bi tp thc hnh Qun tr mng Number of config revision errors : 0 Number of config digest errors : 0 Number of V1 summary errors : 0 VTP pruning statistics: Trunk Join Transmitted Join Received Summary advts received from non-pruning-capable device ---------------- ---------------- -----------------------------------------Fa0/1 0 0 0 DL1# AL1#sh vtp counters VTP statistics: Summary advertisements received : 13 Subset advertisements received : 2 Request advertisements received : 0 Summary advertisements transmitted : 20 Subset advertisements transmitted : 6 Request advertisements transmitted : 1 Number of config revision errors : 0 Number of config digest errors : 0 Number of V1 summary errors : 0 VTP pruning statistics: Trunk Join Transmitted Join Received Summary advts received from non-pruning-capable device ---------------- ---------------- -----------------------------------------Fa0/1 1 0 0 AL1#

    Trang 22

    Bi tp thc hnh Qun tr mng


    TRNG I HC DUY TN KHOA CNG NGH THNG TIN B MN K THUT MNG

    QUN TR MNG

    LAB s : S gi :

    BI THC HNH 03 03 gi

    GVHD : V Nhn Vn

    LAB 04 NH TUYN TNH


    I. Mc tiu Hiu ngha ca nh tuyn. Thc hin kim tra kt ni gia cc thit b nh tuyn. C bn v nh tuyn tnh. Kim tra bng nh tuyn.

    II. Ni dung A. M t

    Cu hnh nh tuyn tnh trn tt c cc router. Tt c cc my tnh phi ping c ti tt c cc mng trong hnh v.

    B. Thc hin Bc 1: Cu hinh RouterA RouterA(config)#hostname RouterA RouterA(config)#no ip domain-lookup RouterA(config)#interface s0 RouterA(config-if)#ip address 192.168.2.1 255.255.255.0 RouterA(config-if)#no shutdown

    Trang 23

    Bi tp thc hnh Qun tr mng - Khi thc hin lnh no shutdown, se hin dong thng bao 01:31:19: %LINK-3-UPDOWN: Interface Serial0/0, changed state to up RouterA(config-if)#interface E0 RouterA(config-if)#ip address 192.168.1.1 255.255.255.0 RouterA(config-if)#no shutdown 01:34:38: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to up RouterA(config-if)#end 01:35:39: %SYS-5-CONFIG_I: Configured from console by console RouterA# Bc 2: Cu hinh RouterB RouterB(config)#hostname RouterB RouterB(config)#no ip domain-lookup RouterB(config-if)#interface e0 RouterB(config-if)#ip address 192.168.3.2 255.255.255.0 RouterB(config-if)#no shut 01:44:38: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to up RouterB(config-if)#end 01:45:39: %SYS-5-CONFIG_I: Configured from console by console RouterB# RouterB(config-if)#interface s0 RouterB(config-if)#ip address 192.168.2.2 255.255.255.0 RouterB(config-if)#no shut RouterB(config-if)#interface s1 RouterB(config-if)#ip address 192.168.4.2 255.255.255.0 RouterB(config-if)#no shut Bc 3: Cu hinh c ban router RouterC RouterC(config)#hostname RouterC RouterC(config)#no ip domain-lookup RouterC(config)#interface s0 RouterC(config-if)#ip address 192.168.4.3 255.255.255.0 RouterC(config-if)#no shutdown 01:51:19: %LINK-3-UPDOWN: Interface Serial0/0, changed state to up RouterC(config-if)#end 01:51:39: %SYS-5-CONFIG_I: Configured from console by console RouterC# Trang 24

    Bi tp thc hnh Qun tr mng

    RouterC(config-if)#interface e0 RouterC(config-if)#ip address 192.168.5.3 255.255.255.0 RouterC(config-if)#no shut Bc 4: Kim tra kt ni gia cac router RouterA, RouterC va RouterB RouterC#ping 192.168.4.2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.0.3.2, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/3/4 ms - Nu khng ping c, kim tra lai cu hinh bng lnh show running-config, show interface am bao cu hinh ung, giai quyt s c nu cn. RouterB#ping 192.168.2.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.168.2.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/3/4 ms RouterB#ping 192.168.4.3 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.168.2.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/3/4 ms RouterA#ping 192.168.2.2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.168.2.2, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/3/4 ms RouterC#ping 192.168.2.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.168.4.2, timeout is 2 seconds: ..... Success rate is 0 percent (0/5) Trn router RouterC, xem bang inh tuyn bng lnh show ip route RouterC#show ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP Trang 25

    Bi tp thc hnh Qun tr mng D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area * - candidate default, U - per-user static route, o - ODR P - periodic downloaded static route Gateway of last resort is not set 192.168.4.0/24 is subnetted, 1 subnets C 192.168.4.0 is directly connected, Serial0 C 192.168.5.0 is directly connected, ethernet0 Bc 5: Cu hinh Static Routes Tai router RouterC, cu hinh static route n router RouterB v Router A: RouterC(config)#ip route 192.168.1.0 255.255.255.0 192.168.4.2 RouterC(config)#ip route 192.168.2.0 255.255.255.0 192.168.4.2 RouterC(config)#ip route 192.168.3.0 255.255.255.0 192.168.4.2 RouterC(config)#exit 02:06:37: %SYS-5-CONFIG_I: Configured from console by console + Khi cu hinh next hop router la ia chi IP thi AD = 0; ta cu hinh next hop router s dung outgoing interface thi AD = 1. Tai router RouterB, inh tuyn static route n router RouterC v Router A: RouterB(config)#ip route 192.168.1.0 255.255.255.0 192.168.2.1 RouterB(config)#ip route 192.168.5.0 255.255.255.0 192.168.4.3 RouterB(config)#exit 02:06:37: %SYS-5-CONFIG_I: Configured from console by console Tai router RouterA, inh tuyn static route n router RouterC v Router B: RouterA(config)# ip route 192.168.3.0 255.255.255.0 192.168.2.2 RouterA(config)#ip route 192.168.4.0 255.255.255.0 192.168.2.2 RouterA(config)#ip route 192.168.5.0 255.255.255.0 192.168.2.2 RouterA(config)#exit 02:06:37: %SYS-5-CONFIG_I: Configured from console by console Xem bang inh tuyn trn router RouterC bng lnh show ip route: RouterC#show ip route Trang 26

    Bi tp thc hnh Qun tr mng ... Gateway of last resort is not set S 192.168.1.0 [1/0] via 192.168.4.2 S 192.168.1.0 [1/0] via 192.168.4.2 S 192.168.1.0 [1/0] via 192.168.4.2 C 192.168.4.3 is directly connected, Serial0 C 192.168.5.3 is directly connected, ethernet0 Chu y: S biu thi cho kt ni static vi AD = 1 va hop count la 0 [1/0] Xem bang inh tuyn trn router RouterB: RouterB#show ip route ... Gateway of last resort is not set S 192.168.5.0 [1/0] via 192.168.4.3 S 192.168.1.0 [1/0] via 192.168.2.1 C 192.168.2.2 is directly connected, Serial0 C 192.168.4.2 is directly connected, Serial1 C 192.168.3.2 is directly connected, ethernet0 Xem bang inh tuyn trn router RouterA: RouterA#show ip route ... Gateway of last resort is not set S 192.168.3.0 [1/0] via 192.168.2.2 S 192.168.4.0 [1/0] via 192.168.2.2 S 192.168.5.0 [1/0] via 192.168.2.2 C 192.168.2.1 is directly connected, Serial0 C 192.168.1.1 is directly connected, ethernet0

    Trang 27

    Bi tp thc hnh Qun tr mng


    TRNG I HC DUY TN KHOA CNG NGH THNG TIN B MN K THUT MNG

    QUN TR MNG

    LAB s : S gi :

    BI THC HNH 03 03 gi

    GVHD : V Nhn Vn

    LAB 05
    RIP I. Mc tiu - Hiu bit mc ch v ngha ca nh tuyn ng. nh tuyn RIP. Kim tra bng nh tuyn.

    II. Ni dung A. M ta

    Router A, B, C s dung RIP quang cao thng tin inh tuyn Router B hoat ng nh DCE cung cp xung clock cho router A va C Cac router cu hinh RIP va quang cao tt ca cac mang ni trc tip. T router A, B va C, ta ping c ht cac ia chi trong mang. B. Thc hin t hostname, t ia chi IP cho cac cng Loopback, Serial, Ethernet i vi RouterA

    Trang 28

    Bi tp thc hnh Qun tr mng Router>en Router#config terminal Router(config)#hostname RouterA RouterA(config)#interface Loopback RouterA(configif)# ip address 10.1.1.1 255.255.255.0 RouterA(configif)#exit RouterA(config)#interface Ethernet0 RouterA(configif)#ip address 148.1.1.1 255.255.255.0 RouterA(configif)#no shutdown RouterA(configif)#no keepalive RouterA(configif)#exit RouterA(config)#interface Serial0 RouterA(configif)#ip address 192.1.1.1 255.255.255.0 RouterA(configif)#no shutdown RouterA(configif)#end RouterA# Cu hinh tng t i vi RouterB va RouterC. Lu y tai RouterB co lnh clock rate khi cu hinh cng Serial. RouterB(config)#interface Serial0 RouterB(configif)#ip address 192.1.1.2 255.255.255.0 RouterB(configif)#clock rate 64000 RouterB(configif)#no shutdown RouterB(configif)#interface Serial1 RouterB(configif)#ip address 193.1.1.1 255.255.255.0 RouterB(configif)#clock rate 64000 RouterB(configif)#no shutdown RouterB(configif)#end RouterB# Kim tra hoat ng cng Serial tai cac router bng lnh show interface [Type Number] RouterA#show interface Serial0 Serial0 is up, line protocol is up Hardware is HD64570 Internet address is 192.1.1.1/24 MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, reliability 255/255, txload 1/255, rxload 1/255

    Trang 29

    Bi tp thc hnh Qun tr mng Encapsulation HDLC, loopback not set Keepalive set (10 sec) Last input 00:00:06, output 00:00:08, output hang never Last clearing of "show interface" counters never Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 Queueing strategy: weighted fair Output queue: 0/1000/64/0 (size/max total/threshold/drops) Conversations 0/3/256 (active/max active/max total) Reserved Conversations 0/0 (allocated/max allocated) 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 489 packets input, 30563 bytes, 0 no buffer Received 473 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 524 packets output, 33973 bytes, 0 underruns 0 output errors, 0 collisions, 26 interface resets 0 output buffer failures, 0 output buffers swapped out 15 carrier transitions --MoreRouterB#sh int s0 Serial0 is up, line protocol is up Hardware is HD64570 Internet address is 192.1.1.2/24 MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation HDLC, loopback not set ... RouterB#show interface serial1 Serial1 is up, line protocol is up Hardware is HD64570 Internet address is 193.1.1.1/24 MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation HDLC, loopback not set ... RouterC#show interface Serial0 Serial0 is up, line protocol is up Hardware is HD64570 Internet address is 193.1.1.2/24 MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,

    Trang 30

    Bi tp thc hnh Qun tr mng reliability 255/255, txload 1/255, rxload 1/255 Encapsulation HDLC, loopback not set ... Chay giao thc inh tuyn RIP trn mi router RouterA(config)#router rip RouterA(configrouter)#network 10.0.0.0 RouterA(configrouter)#network 148.1.0.0 RouterA(configrouter)#network 192.1.1.0 RouterB(config)#router rip RouterB(configrouter)#network 192.1.1.0 RouterB(configrouter)#network 193.1.1.0 RouterC(config)#router rip RouterC(configrouter)#network 152.1.0.0 RouterC(configrouter)#network 193.1.1.0 Kim tra Xem bang inh tuyn bng lnh show ip route RouterA# show ip route ... Gateway of last resort is not set 10.0.0.0 is subnetted, 1 subnets C 10.1.1.0 is directly connected, Loopback0 148.1.0.0/24 is subnetted, 1 subnets C 148.1.1.0 is directly connected, Ethernet0 R 152.1.0.0/16 [120/2] via 192.1.1.2, 00:00:20, Serial0 C 192.1.1.0/24 is directly connected, Serial0 R 193.1.1.0/24 [120/1] via 192.1.1.2, 00:00:20, Serial0 + Dung lnh show ip route rip nu chi mun xem cac route hoc t RIP. RouterA# show ip route rip R 152.1.0.0/16 [120/2] via 192.1.1.2, 00:00:20, Serial0 R 193.1.1.0/24 [120/1] via 192.1.1.2, 00:00:20, Serial0 T router ping cac ia chi trn mang RouterC#ping 192.1.1.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.1.1.1 timeout is 2

    Trang 31

    Bi tp thc hnh Qun tr mng seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms RouterC#ping 192.1.1.2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.1.1.2 timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms RouterA#ping 148.1.1.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 148.1.1.1 timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms RouterC#ping 10.1.1.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1 timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms Ta c th xem qua trinh cp nht inh tuyn ca RIP bng cch dung lnh debug ip rip. Chu y tai cng serial0, RouterA khng quang cao network hoc t RouterB (152.1.0.0 va 193.1.1.0) nhng cac router con lai cac network nay c quang cao. y la hoat ng cua c ch split horizon: khi split horizone hoat ng, router se khng quang cao route ngc tr lai ni no n. RouterA#debug ip rip RIP: sending v1 update to 255.255.255.255 via Ethernet0 (148.1.1.1) network 10.0.0.0, metric 1 network 152.1.0.0, metric 3 network 192.1.1.0, metric 1 network 193.1.1.0, metric 2 RIP: sending v1 update to 255.255.255.255 via Loopback0

    Trang 32

    Bi tp thc hnh Qun tr mng (10.1.1.1) network 148.1.0.0, metric 1 network 152.1.0.0, metric 3 network 192.1.1.0, metric 1 network 193.1.1.0, metric 2 RIP: sending v1 update to 255.255.255.255 via Serial0 (192.1.1.1) network 10.0.0.0, metric 1 network 148.1.0.0, metric 1 Khi debug chay, router se a ra thng tin inh tuyn RIP, ngng debug dung lnh: RouterA#undebug all

    Trang 33

    Bi tp thc hnh Qun tr mng


    TRNG I HC DUY TN KHOA CNG NGH THNG TIN B MN K THUT MNG

    QUN TR MNG

    LAB s : S gi :

    BI THC HNH 03 03 gi

    GVHD : V Nhn Vn

    LAB 06
    Giao thc nh tuyn OSPF I. Mc tiu - Hiu bit ngha v cch thc hot ng ca giao thc OSPF nh tuyn OSPF.

    - Kim tra bng nh tuyn. II. Ni dung A. M t

    Router R1, R2 s dung OSPF quang cao thng tin inh tuyn Cac router cu hinh giao thc inh tuyn OSPF lin lac gia cac mng. T router R1, R2 ping c ht cac ia chi trong mang. B. Thc hin 1. t hostname, cu hinh cho interface loopback, ethernet va serial trn router R1 Router> en Router# conf t Router(config)# hostname R1 R1(config)# no ip domain-lookup R1(config)# int e0 R1(config-if)# ip addr 131.108.1.1 255.255.255.0 R1(config-if)# no keepalive cho phep interface Ethernet vn up khi khng kt ni vi bn ngoai R1(config-if)# no shut %LINK-3-UPDOWN: Interface Ethernet0, changed state to up %LINK-5-UPDOWN: Line protocol on Interface Ethernet0, changed state to up R1(config-if)# exit

    Trang 34

    Bi tp thc hnh Qun tr mng R1(config)# int lo0 inh nghia interface ao lam im kim tra R1(config-if)# ip addr 131.108.4.1 255.255.255.255 R1(config-if)# int lo1 R1(config-if)# ip addr 131.108.4.2 255.255.255.255 R1(config-if)# int lo2 R1(config-if)# ip addr 131.108.4.3 255.255.255.255 R1(config-if)# exit R1(config-if)# int s0 R1(config-if)# ip addr 131.108.3.1 255.255.255.252 R1(config-if)# clock rate 64000 hoat ng nh DCE cung cp xung clock R1(config-if)# no shut

    2. t hostname, cu hinh cho cng loopback, ethernet va serial trn router R2 Router> en Router# conf t Router(config)# hostname R2 R2(config)# no ip domain-lookup R2(config)#int e0 R2(config-if)# ip addr 131.108.2.1 255.255.255.0 R1(config-if)# no keepalive R2(config-if)# no shut R2(config-if)# int lo0 R2(config-if)# ip addr 131.108.4.4 255.255.255.255 R2(config-if)# int lo1 R2(config-if)# ip addr 131.108.4.5 255.255.255.255 R2(config-if)# int lo2 R2(config-if)# ip addr 131.108.4.6 255.255.255.255 R2(config-if)# int s0 R2(config-if)# ip addr 131.108.3.2 255.255.255.252 R2(config-if)# no shut 3. Cu hinh giao thc inh tuyn OSPF vi process number la 1 trn router R1 va lu cu hinh ln NVRAM R1(config)# router ospf 1 kich hoat qua trinh inh tuyn OSPF trn router vi process number la 1 Trang 35

    Bi tp thc hnh Qun tr mng R1(config-router)# network 131.108.1.0 0.0.0.255 area 0 chi ra mang nao se chay OSPF R1(config-router)# network 131.108.4.1 0.0.0.0 area 0 R1(config-router)# network 131.108.4.2 0.0.0.0 area 0 R1(config-router)# network 131.108.4.3 0.0.0.0 area 0 R1(config-router)# network 131.108.3.1 0.0.0.0 area 0 R1(config-router)# end R1# copy run start - Gia tri process number chi mang y nghia cuc b trn mi router, ban co th chay cung luc nhiu process ospf khac nhau. - Wildcard mask 0.0.0.0 se chi chinh xac ia chi nao se c kim tra. - Wildcard mask 0.0.0.255 nghia la chi 3 octet u se bi kim tra. Vi du network 131.108.1.0 0.0.0.255 nghia la se kim tra cac ia chi t 131.108.1.1 n 131.108.1.254. 4. Cu hinh giao thc inh tuyn OSPF vi process number la 2 trn router R2 va lu cu hinh ln NVRAM R2(config)# router ospf 2 R2(config-router)# network 131.108.2.1 0.0.0.255 area 0 R2(config-router)# network 131.108.4.4 0.0.0.0 area 0 R2(config-router)# network 131.108.4.5 0.0.0.0 area 0 R2(config-router)# network 131.108.4.6 0.0.0.0 area 0 R2(config-router)# network 131.108.3.2 0.0.0.0 area 0 R2(config-router)# end R2# copy run start + Trong ospf c s dng ba ID: * Router ID : c gi i t cc router trong cc gi tin hello.N c di 32bit.No c gi tr bng a ch a ch IP ln nht c s dng trn router.Nu trn router c giao din loopback c cu hnh th router ID bng a ch IP ca giao din loopback .Trong trng hp c nhiu giao din loopback th n ly a ch ln nht ca giao din loopback lm router ID.Router ID c s dng phn bit cc router nm trong cng mt autonmous system. * Process ID : l tham s cu hnh khi ta nh lnh router ospf prcess-id. *Area ID: l tham s group mt nhm cc router vo cng mt area.Cc router Trang 36

    Bi tp thc hnh Qun tr mng ny cng chia s hiu bit v cc ng hc c trong min OSPF. Vic chia thnh nhiu area l tin vic qun l ng thi n gip ta gii hn kch thc ca topology database, gi s nu ta c duy nht mt vng vi kch thc ln th lc ta cng s c mt topology database rt ln tng ng khin cho vic x l ca router chm i....... Kim tra va giai quyt s c Dung lnh clear ip route * xoa toan b route t bang inh tuyn. R1# clear ip route * Dung lnh clear ip ospf process hoc reload kich hoat lai qua trinh inh tuyn ospf. Xem bang inh tuyn trn R1 bng lnh show ip route. R1# show ip route ... Gateway of last resort is not set 131.108.0.0/16 is variably subnetted, 9 subnets, 3 masks C 131.108.4.3/32 is directly connected, Loopback2 C 131.108.4.2/32 is directly connected, Loopback1 C 131.108.4.1/32 is directly connected, Loopback0 C 131.108.3.0/30 is directly connected, Serial0 O 131.108.4.6/32 [110/65] via 131.108.3.2, 00:01:29, Serial0 O 131.108.2.0/24 [110/74] via 131.108.3.2, 00:01:29, Serial0 O 131.108.4.5/32 [110/65] via 131.108.3.2, 00:01:29, Serial0 C 131.108.1.0/24 is directly connected, Ethernet0 O 131.108.4.4/32 [110/65] via 131.108.3.2, 00:01:29, Serial0 R1# T R1, ban co th thy co 4 route OSPF hoc t next-hop 131.108.3.2 va i qua cng S0. Chu y s AD trong trng hp OSPF la 110 (RIP la 120 va IGRP la 100). Ky t O chi ra y la route loai OSPF. Dung lnh show ip route ospf trn router R2 xem cac route OSPF R2# show ip route ospf 131.108.0.0/16 is variably subnetted, 9 subnets, 3 masks O 131.108.4.3/32 [110/782] via 131.108.3.2, 00:13:09, Serial0 O 131.108.1.0/24 [110/791] via 131.108.3.2, 00:12:54, Serial0

    Trang 37

    Bi tp thc hnh Qun tr mng O 131.108.4.2/32 [110/782] via 131.108.3.2, 00:13:09, Serial0 O 131.108.4.1/32 [110/782] via 131.108.3.2, 00:13:09, Serial0

    Trang 38

    Bi tp thc hnh Qun tr mng


    TRNG I HC DUY TN KHOA CNG NGH THNG TIN B MN K THUT MNG

    QUN TR MNG

    LAB s : S gi :

    BI THC HNH 03 03 gi

    GVHD : V Nhn Vn

    LAB 07
    DHCP SERVER
    I. Mc tiu - HIu bit ngha ca dch v DHCP - Cu hnh DHCP - DHCP Relay II. Ni dung A. M t

    Bi thc hnh ny m t cch cu hnh router Cisco hot ng nh l mt my ch DHCP. My ch ny s cp a ch IP cho cc my khch (client) hai mng khc nhau. ng thi, bi thc hnh cng hng dn cch dng lnh ip helper-address chuyn cc yu cu DHCP-request ti cc my ch DHCP trong trng hp cc my ch t phn on mng khc. Cc my tnh trm cc mng 192.168.3.0/24 v mng 10.0.0.0/24 cn s dng dch v Trang 39

    Bi tp thc hnh Qun tr mng DHCP cu hnh IP t ng. Trong bi ny, RouterA c cu hnh l my ch DHCP phc v cho c hai phn on mng bng cch to ra hai khng gian a ch (pool) khc nhau. Trn cng FastEthernet ca RouterB cu hnh chuyn tip cc UDP broadcast, bao gm DHCP request, ti RouterA. B. Thc hin 1. Cu hnh chy RIPv2 trn cc router, cho php RIP trn tt c cc cng giao tip ca cc router ny: RouterA(config)#router rip RouterA(config)#version 2 RouterA(config-router)#network 192.1.1.0 RouterA(config-router)#network 10.0.0.0 RouterB(config)#router rip RouterB(config-router)#version 2 RouterB(config-router)#network 192.1.1.0 RouterB(config-router)#network 192.168.3.0 Kim tra li bng lnh ping v lnh show ip route m bo kt ni c gia RouterA v RouterB. Trong bng nh tuyn ca router A phi c tuyn ng 192.168.3.0 v tuyn ny c hc thng qua RIP. RouterA#sh ip route ... Gateway of last resort is not set C 10.0.0.0/8 is directly connected, FastEthernet0/0 C 192.168.1.0/24 is directly connected, Serial0/0 R 192.168.3.0/24 [120/1] via 192.168.1.1, 00:00:05, Serial0/0 2. Cu hnh RouterA l DHCP server cho cc client mng 10.0.0.0/8 Bt DHCP service trn RouterA RouterA(config)#service dhcp To ra mt DHCP pool cho mng 10.0.0.0, tn ca pool l network-10 RouterA(config)#ip dhcp pool network-10 RouterA(dhcp-config)#network 10.0.0.0 255.255.255.0

    Trang 40

    Bi tp thc hnh Qun tr mng Gi s 10 a ch u c gn cho cc cc server v router trong mng, nh vy cc client c gn t a ch 10.0.0.11 tr v sau, thc hin lnh ip dhcp excluded-address loi tr cc a ch ny. RouterA(config)#ip dhcp excluded-address 10.0.0.1 10.0.0.10 3. Tr vo li DHCP configuration mode v gn cc thng s IP khc nh a ch default gateway address, DNS server, WINS server, v domain name. Cc thng s ny s c cp km theo a ch IP. RouterA(config)#ip dhcp pool network-10 RouterA(dhcp-config)#default-router 10.0.0.1 RouterA(dhcp-config)#dns-server 10.0.0.3 RouterA(dhcp-config)#netbios-name-server 10.0.0.4 RouterA(dhcp-config)#domain-name xyz.net Kim tra hot ng DHCP server Trn my trm: Thc hin vic xin li a ch IP. Host A s c gn ng a ch IP u tin trong pool l 10.0.0.11. + Kim tra trn HostA vi lnh winipcfg (Win98/WinME) hoc ipconfig /all xem nhn c ng a ch IP, subnet mask, default gateway, DNS server, v WINS server. + Dng lnh ipconfig /all i vi Windows XP, Windows 2000. WinXP, Win2000: Start / Run / cmd Win9x: Start / Run / command Microsoft Windows XP [Version 5.1.2600] (C) Copyright 1985-2001 Microsoft Corp. C:\ >ipconfig /release Windows IP Configuration Ethernet adapter Local Area Connection 3: Connection-specific DNS Suffix . : IP Address. . . . . . . . . . . . : 0.0.0.0 Subnet Mask . . . . . . . . . . . : 0.0.0.0 Default Gateway . . . . . . . . . : C:\ >ipconfig /renew Windows IP Configuration Ethernet adapter Local Area Connection 3: Trang 41

    Bi tp thc hnh Qun tr mng

    Connection-specific DNS Suffix . : xyz.net IP Address. . . . . . . . . . . . : 10.0.0.11 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 10.0.0.1 C:\ >ipconfig /all Windows IP Configuration Host Name . . . . . . . . . . . . : Khanh Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No Ethernet adapter Local Area Connection 3: Connection-specific DNS Suffix . : xyz.net Description . . . . : Realtek RTL8139 Family PCI Fast Ethernet NIC #2 Physical Address. . . . . . . . . : 00-E0-4D-01-29-78 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 10.0.0.11 Subnet Mask . . . . . . . . . . . : 255.0.0.0 Default Gateway . . . . . . . . . : 10.0.0.1 DHCP Server . . . . . . . . . . . : 10.0.0.1 DNS Servers . . . . . . . . . . . : 10.0.0.3 Primary WINS Server . . . . . . . : 10.0.0.4 Lease Obtained. . . . . . . . : Thursday, February 05, 2004 9:08:24 AM Lease Expires . . . . . . . . : Friday, February 06, 2004 9:08:24 AM C:\ > _ V HostB nm phn on mng khc cng c cu hnh IP ng, do ta cn to ra mt DHCP pool th hai vi a ch v gateway tng ng cho mng 192.168.3.0/24: RouterA(config)#ip dhcp pool network-198 RouterA(dhcp-config)#network 192.168.3.0 255.255.255.0 RouterA(dhcp-config)#default-router 192.168.3.1 RouterA(dhcp-config)#dns-server 10.0.0.3 RouterA(dhcp-config)#netbios-name-server 10.0.0.4 RouterA(dhcp-config)#domain-name xyz.net Cu hnh cho DHCP hon thnh, tuy nhin HostB dng UDP broadcast tm a ch Trang 42

    Bi tp thc hnh Qun tr mng IP. RouterB li cha c cu hnh chuyn tip cc broadcast ny. DHCP hot ng cho phn on mng ca routerB, phi cu hnh cng giao tip FastEthernet ca RouterB chuyn tip cc UDP broadcast ti RouterA. RouterB(config)#interface fastethernet 0/0 RouterB(config-if)#ip helper-address 192.168.1.2 Lnh ip helper-address c th chuyn tip nhiu giao thc khc da trn UDP nh DNS, BOOTP request. Bn c th ch nh chnh xc giao thc chuyn tip bng lnh ip forward-protocol udp [port] 4. Ti Host B thc hin release v renew cu hnh IP. Kim tra li a ch IP bng lnh winipcfg hay ipconfig /all Microsoft Windows XP [Version 5.1.2600] (C) Copyright 1985-2001 Microsoft Corp. C:\Documents and Settings\TiemNangViet>ipconfig /release Windows IP Configuration Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : Autoconfiguration IP Address. . . : 169.254.173.207 Subnet Mask . . . . . . . . . . . : 255.255.0.0 Default Gateway . . . . . . . . . : C:\Documents and Settings\TiemNangViet>ipconfig /renew Windows IP Configuration Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : xyz.net IP Address. . . . . . . . . . . . : 192.168.3.2 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.3.1 C:\Documents and Settings\TiemNangViet>ipconfig /all Windows IP Configuration Host Name . . . . . . . . . . . . : phuong Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No Trang 43

    Bi tp thc hnh Qun tr mng WINS Proxy Enabled. . . . . . . . : No Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : xyz.net Description . . . . . . . . : SiS 900-Based PCI Fast Ethernet Adapter Physical Address. . . . . . . . . : 00-0A-E6-5E-84-77 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.3.2 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.3.1 DHCP Server . . . . . . . . . . . : 192.168.1.2 DNS Servers . . . . . . . . . . . : 10.0.0.3 Primary WINS Server . . . . . . . : 10.0.0.4 Lease Obtained . . . . . . . . : Friday, February 06, 2004 9:22:16 AM Lease Expires . . . . . . . . : Saturday, February 07, 2004 9:22:16AM C:\Documents and Settings\TiemNangViet> Ch , lc ny a ch IP ca Host B l 192.168.3.2 do a ch u tin 192.168.3.1 c t cu lnh default-router v c gn l a ch cng giao tip FastEthernet ca RouterB. DHCP server thc hin ping a ch u tin 192.168.3.1 bit c n c tn ti hay khng. RouterA#sh ip dhcp conflict IP address Detection method Detection time 192.168.3.1 Ping Mar 01 1993 12:22 AM xem a ch IP no cp tng ng vi a ch MAC, thc hin lnh RouterA#sh ip dhcp binding IP address Hardware address Lease expiration Type 10.0.0.11 0100.e04d.0129.78 Mar 02 1993 12:15 AM Automatic 192.168.3.2 0100.0ae6.5e84.77 Mar 02 1993 12:22 AM Automatic RouterA bit cch gn a ch cho Host B t pool network-198 m khng phi t pool network-10 bi v DHCP request ca Host B c chuyn tip dng lnh ip helperTrang 44

    Bi tp thc hnh Qun tr mng address v yu cu ny bt ngun t cng giao tip FastEthernet ca RouterB c a ch 192.168.3.1; a ch ny nm trong pool network-198, DHCP server s p ng vi a ch t pool ny.

    TRNG I HC DUY TN KHOA CNG NGH THNG TIN B MN K THUT MNG

    QUN TR MNG

    LAB s : S gi :

    BI THC HNH 03 03 gi

    Trang 45

    Bi tp thc hnh Qun tr mng GVHD : V Nhn Vn

    LAB 08
    LAB STANDARD ACCESS-LIST I. Mc tiu - Gip sinh vin hiu r cch s dng Wildcard Mask - T bi thc hnh ny m rng s dng tt c cc loi ACL II. Ni dung A. M t

    Accesslist dng gim st lu lng vo hoc ra trn mt cng. Cc iu kin so snh da vo access-list c nh ngha trc, c th n gin (standard access list) hay kh phc tp (extended access list). Lab ny m t lc gi d liu s dng standard access-list thc hin cm tt c d liu t PC2 v cc PC trong mng 200.200.200.0/24 n tt c Pc trong mng 172.16.0.254/16 - Inbound va outbound: Khi ap dung mt accesslist trn mt cng, phai xac inh access list phai c dung cho lung d liu vao (inbound) hay ra (outbound). Mc inh accesslist ap dung vi lung d liu outbound. - Chiu cua lung d liu xac inh trn cng cua router. Chng han, ly vi du hinh bn di: RouterA mun loai bo (deny) tt ca lung d liu t host 150.1.1.2 ti PCA (152.1.1.2). Co Trang 46

    Bi tp thc hnh Qun tr mng hai ni co th ap dung accesslist trn RouterA: inbound accesslist ap dung trn cng serial hay outbound accesslist ap dung trn cng Ethernet. Tt nht la ap dung accesslist trn cng gn ni lung d liu se bi loai bo.

    B. Thc hin: Hai bc cu hinh access list trn router: 1. Tao access list tai global config mode: Tao access-list trn R2 cm PC2 va mang 200.200.200.0/24. R2(config)# access-list 1 deny 192.168.0.2 0.0.0.0 R2(config)# access-list 1 deny 200.200.200.0 0.0.0.255 R2(config)# access-list 1 permit any 2. Ap access-list vao cng Ap access-list nay vao chiu ra cua cng F0/0 trn R2. Khi ap access-list vao mt cng, xem nh ang trn router. Vi vy nu mun cm d liu i ra khoi cng, ta dung t khoa out; mun cm d liu vao mt cng, ta dung t khoa in. Vi standard access-list chi kim tra c ia chi ngun nn phai ap access-list vao cng gn ich nht. R2(config)# cng f0/0 R2(config-if)# ip access-group 1 out Kim tra: Dung extended ping trn R1, ly ia chi ngun la 200.200.200.1 hoc 192.168.0.2 lnh ping se khng thanh cng. R1#ping Protocol [ip]: Target IP address: 172.16.0.3 Repeat count [5]: Datagram size [100]: Timeout in seconds [2]: Trang 47

    Bi tp thc hnh Qun tr mng Extended commands [n]: y Source address or interface: 200.200.200.1 Type of service [0]: Set DF bit in IP header? [no]: Validate reply data? [no]: Data pattern [0xABCD]: Loose, Strict, Record, Timestamp, Verbose[none]: Sweep range of sizes [n]: Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.0.3, timeout is 2 seconds: U.U.U <- khng th ti c (Unreachable) Success rate is 0 percent (0/5) Lnh ping khng thanh cng do access-list a hoat ng trn R2, kim tra cac goi vao trn R2 bng lnh debug ip packet. Lu y rng cac goi bi loai bo ban tin ICMP host unreachable c gi ngc tr lai R1: R2#debug ip packet IP packet debugging is on R2# IP: s=200.200.200.1 (Serial0/0), d=172.16.0.3 (FastEthernet0/0), len 100, access denied IP: s=203.162.0.2 (local), d=200.200.200.1 (Serial0/0), len 56, sending <- g ba tin ICMP host unreachable i n Dung extended ping trn R2 ti PC3, ly ia chi ngun la 162.16.0.1 R2#ping Protocol [ip]: Target IP address: 172.16.0.3 Repeat count [5]: Datagram size [100]: Timeout in seconds [2]: Extended commands [n]: y Source address or interface: 162.16.0.1 Type of service [0]: Set DF bit in IP header? [no]: Validate reply data? [no]: Data pattern [0xABCD]: Loose, Strict, Record, Timestamp, Verbose[none]: Sweep range of sizes [n]: Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.0.3, timeout is 2

    Trang 48

    Bi tp thc hnh Qun tr mng seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/4 ms Co th ping PC3 t PC1 c do accesslist chi cm PC2 vao mang 172.16.0.0/24 C:\Windows\Desktop>ping 172.16.0.3 Pinging 172.16.0.3 with 32 bytes of data: Reply from 172.16.0.3: bytes=32 time=18ms Reply from 172.16.0.3: bytes=32 time=18ms Reply from 172.16.0.3: bytes=32 time=18ms Reply from 172.16.0.3: bytes=32 time=18ms

    TTL=126 TTL=126 TTL=126 TTL=126

    Ping statistics for 172.16.0.3: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 18ms, Maximum = 18ms, Average = 18ms

    Trang 49

    Bi tp thc hnh Qun tr mng


    TRNG I HC DUY TN KHOA CNG NGH THNG TIN B MN K THUT MNG

    QUN TR MNG

    LAB s : S gi :

    BI THC HNH 03 03 gi

    GVHD : V Nhn Vn

    LAB 09
    NAT STATIC
    I. Mc tiu - Gip sinh vin hiu r cch thc chuyn i a ch IP t a ch Private thnh a ch - Vn dng cho cc loi NAT khc. II. Ni dung A. M t

    C ch cho phep chuyn i 01 ia chi IP thanh 01 ia chi Global (ia chi IP tht . RouterA c cu hinh NAT va se t ng chuyn dich 01 a ch trong mng (10.1.1.1) thanh 195.1.1.4 B. Thc hin RouterA ! hostname RouterA ! ip nat inside source static 10.1.1.2 195.1.1.4 - Cho phe 01 p i chibn trong chuy dih ra cug 01 i chingoa a c m c n a i ! interface Ethernet0 ip address 10.1.1.1 255.255.255.0 ip address 10.1.1.2 255.255.255.0 secondary ip nat inside &lt;- ih nghi cng trong n a Trang 50

    Bi tp thc hnh Qun tr mng ! interface Serial0 ip address 195.1.1.4 255.255.255.0 ip nat outside &lt;- ih nghi cng ngoa n a i ! no ip classless ip route 0.0.0.0 0.0.0.0 Serial0 ! line con 0 line vty 0 4 login ! end RouterB ! hostname RouterB ! enable password cisco ! interface Ethernet0/0 ip address 152.1.1.1 255.255.255.0 ! interface Serial0/0 ip address 195.1.1.10 255.255.255.0 clock rate 500000 ! line con 0 line aux 0 line vty 0 4 password cisco login Kim tra T Router A , thc hin lnh ping m rng n RouterB (195.1.1.3), source t 10.1.1.2. Kim tra chuyn dich bng lnh debug ip nat (ia chi nay se c chuyn dich thanh 195.1.1.1). NAT: s=10.1.1.2->195.1.1.1, d=195.1.1.3 [10] xem bang chuyn i NAT trn RouterA dung lnh show ip nat tranlation. Lu y port number sau mi ia chi IP. S th t cac port nay la chia khoa chuyn cac goi ung v

    Trang 51

    Bi tp thc hnh Qun tr mng ia chi IP inside local. RouterA#show ip nat translations Pro Inside global Inside local Outside local Outside global icmp 195.1.1.1:2 10.1.1.1:2 195.1.1.3:2 195.1.1.3:2 ->Mt s lnh kim tra khac Show ip nat statistics : Hin thi s phin ang chuyn dich va a chuyn dich khi thc hin NAT. Show ip nat translations: Cac phin NAT ang din ra; Protocol of the packet translated; inside global address , outside local address, outside global address va inside local address. Show ip nat translations verbose : ging lnh trn nhng chi tit hn clear ip nat translation : Xoa tt ca cac phin NAT clear ip nat statistics : xoa tt ca cac counters cua thng k NAT debug ip nat : Xem tin trinh cua cac phin NAT

    Trng b mn

    Ging vin

    Nguyn Minh Nht

    V Nhn Vn

    Trang 52

    You might also like