Bi 1: OSI(Open System interconnection) TCP IP UDP:

OSI:
-

Physical: chc nng truyn 1 dng bit th qua ng truyn vt l c th, xy dng
ng truyn vt l cho cc host.

Data Link: chc nng iu khin truy nhp vo ng truyn vt l v giao tip vi
lp Network. ng khung d liu, cu trc ha d liu, cung cp c ch d li.

Network: chc nng phn b d liu t im ny n im kia ti u nht chn

ng i ti u nht cho d liu bng cc giao thc nh tuyn. a ch logic IP.

Transport: chc nng qun l cc kt ni u cui-u cui m ko quan tm n

gia cc gi tin i nh th no. Duy tr, thit lp v gii phng cc kt ni o, d li.

Session: thit lp cc qun l cc phin kt ni

Presentation: m bo cc lp di c th giao tip vi nhau

Application: giao tip trc tip vi ngi dng, cung cp cc ng dng mng, dch
v mng nh email,..

Transport Layer ca TCP/IP: gm 2 giao thc l UDP v TCP. Giao thc ca tng Network l IP
v giao thc ca tng Data Link v Physical l Ethernet.
-

UDP(User Data Protocol): h tn Transport ca OSI v TCP/IP

Bi 3: c MAC, CSMA, Ethernet

-

CSMA/CD: gim thiu ti a xung t xy ra trn cng 1 h thng mng

Unicast: 1 host gi cho 1 host trong h thng

Broadcast: 1 host gi cho tt c cc host cn li trong h thng

Multicast: 1 host gi cho 1 nhm hosts trong h thng

Bi 5: c Local Broadcast & Direct Broadcast, a ch IP private & public, a ch Loop Back
Bi 13:
-

Giao thc TELNET: cho php iu khin thit b khong cch xa VD: cu hnh ROUTER t xa
thng qua mi trng INTERNET. TELNET s dng TCP/Port23. Nhc im ca giao thc ny
l thng tin trao i dng m ASSCI bnh thng nn d b hacker ph, thiu bo mt.

Giao thc CDP(Cisco Discovery Protocol): cho php cc thit b tm hiu lng ging(kt ni trc
tip vi n) ca mnh

CDP cho bit thng tin:

Device id: hostname

Local interface: cng ca mnh -> lng ging

Outgoing port: cng ca lng ging -> mnh

Platform: R2081, 2811, 2960, 3560

Capability: R, S, I

IP ca lng ging

IOS version

Giao thc SSH(): cng cho php c ch truy nhp t xa nh TELNET nhng cung cp thm c
ch m ha bo mt thng tin hn. Chy trn nn TCP Port22

Bi 14: nh tuyn tnh(Static Rout): nh tuyn l tm ra ng i ti u t im ny ti im kia

ca mng
Interface Loopback: l cng o, cng u vng bn trong Router. Tc l im ca Router ko u i u
ht, nhng m cc cng ny khi show ln nh 1 cng thc ca user, nh l 1 host gi lp v i din cho 1
mng

Bi 15: RIP(Routing Information Protocol) nh tuyn theo kiu tin n the DISTANCE VECTOR
Ch s AS(Autonomous System): mi nh mng c 1 s AS ring v ko phi c s dng ty
Ch s AD(Adminitrative Distance): l khong cch qun tr. Dng ch ra ng i ngn nht n
ch v i theo ng no c AD nh nht n ch
S Metric nh lng ng i no ti u hn
Infinitiy: ti a 15 Router(s Metric =16)
Chng Loop:
+ Split Horizon: ko gi li bng nh tuyn cho con Router gi bng nh tuyn cho mnh
+ Rout Poisioning: khi c 1 mng b down s lp tc Trigger Update(cp nht ngay) v gi cho lng ging
+ Poision Reverse: cc Router nhn c Rout Poisioning s phn hi li
+ Holdow Timer: khi c 1 mng b chp chn(Up-Down lin tc) cc Router s ch cp nht
VLSM: s dng cc subnet-mask khc nhau ca cng Major Network trong cng h thng
Discontiguos networt(mng gin on): Major network ny b ct i bi 1 Major Network khc

RIPv1: a ch broasdcast 255.255.255.255

RIPv2: a ch Multicast: 224.0.0.9
Classfull: ko gi km theo subnet-mask. Chy tt trong s ca RIPv1
Classless: c gi km subnet-mask. C h tr s mng VLSM & Discontiguos networt(mng gin
on). Chy tt trong s ca RIPv2, OSPF, EIGRP
Major network: l mng cha c chia nh ra thnh cc subnet

Bi 16: DHCP(Dynamic Host Configuration Protocol): cho php DHCP server cp 1 di IP ng cho
cc HOST

Bi 17: ARP(Address Resolution Protocol): tm a ch MAC cho 1 a ch IP no thit lp 1 kt

ni ng Frames gi d liu

Bi 18: ICMP(Internet

Control Message Protocol): ng dng ni ting nht l PING. Dng kim

tra kt ni c thng vi nhau hay ko.

Bi 19: WIFI(Wireless Lan):

Bi 20: VLAN(Virtual Local Area Network): phn mnh mng, bo mt tt,
VLAN l g?. Mi 1 Vlan l 1 switch thu nh hoc trn h thng l 1 vng broadcast domain
D dng cho vic qun l, nu c b virus hay li h thng no th ch c b nh hng 1 vng Vlan
ring, d dng bo mt, gii hn c lp bo mt. khi gi 1 gi tin Broastcast th ch 1 Vlan nhn c m
thi ch ko gi cho ton h thng
Nn quy hoc IP cho cc Vlan lin tc v lin mch
Vlan1: 192.168.1.0/24

Vlan2: 192.168.2.0/24

Vlan3: 192.168.3.0/24

Bi 21: Trunking: s dng 1 on dy duy nht kt ni gia cc switch cho tt c cc d liu ca cc

VLAN cng chy qua cng 1 on dy

Bi 22: VTP(VLAN Trunking Protocol): ng b cu hnh VLAN trn tt c con switch ca h thng
chuyn mch. VD: thay i cu hnh ca 1 con Switch th cu hnh ca cc con Switch trong h thng u
thay i theo. Ch c sp ca Cisco. Ch hot ng khi thit lp cc ng Trunk trc ni cc Switch vi
nhau. Cc Switch phi cng domain-name v password(nu c) th mi trao i thng tin vi nhau. VTP
ch ng b thng tin vlan nhng ko ng b port vlan
Cc mode VTP:
-

Server: cho php to, sa xa, gi, forward v hc vlan

Client: ko cho php to sa xa, nhng cho php gi forward v hc vlan

Transparent: cho php to, sa, xa, forward nhng ko hc vlan. Nhng ch trong ni b ca
con switch ny m thi

Bi 23:STP(Spanning Tree Protocol): dng chng Loop. Nu c 2 ng 1 ng chn & 1 d

phng th n s kha 1 ng, nu ng kia m l b t th n s m kha cho lu thng ng d
phng, khi ni li ng b t th n li kha 1 ng d phng
Nguyn tc hot ng ca STP c 4 bc:
1. Bu ra 1 SW l ROOT-SW: l SW no c B-ID nh nht c chn
2. Bu ra ROOT-PORT: trn tt c cc con ko phi Root SW th phi bu ra Root port cung cp
ng v Root SW c tng (path-cost)min cho SW ang xt
3. Bu ra Designated port: tt c cng ca Root SW u l designated port, Designated Port l port
cung cp ng v Root Sw cho phn on mng ang xt m c tng Path-cost nh nht
4. Kha cc port cn li Blocking port
BPDU l n v thng tin, l gi tin c s dng trong giao thc STP. Ch c Root SW c quyn gi gi tin
BPDU ra khi cng ca n chu k 2s/ln, cc SW ch c quyn Forward BPDU m thi
Bridge-ID(8 byte) B - ID:
-

Priority(2 byte): SW no c Priority nh nht th c chn lm Root-SW, nu m Priority = nhau

th so snh MAC. Gi tr Priority: 0->65535, default: 32768

MAC(6 byte): SW no c a ch MAC nh hn th c chn(ss a ch MAC t tri sang phi a

ch s hexa ca thng no nh hn th l nh)

3 b nh thi ca STP:
-

Hello-timer: 2s

Forward-delay timer: 15s

Max-Age-timer: 20s

Bi 24:OSPF(Open Shortest Path First): giao thc nh tuyn theo ng Link State ngha l tt c
Router tham gia nh tuyn ny s ko phi gi bng nh tuyn, ko phi gi cc Rout na m l gi ton
b bng c s d liu trng thi ng link ca n cho tt c cc Router khc cng chy OSPF kt qu
mi Router u c bng c s d liu trng thi ng link ng nht vi nhau ghi li ton b thng tin
v h thng mng, sau mi Router cn c vo h thng mng ny hay cn c vo bng c s d liu
ny tm ra ng i ti u nht a vo bng nh tuyn s dng(hay mi Router c 1 s mng
ring ca n). a ch Multicast ca OSPF 224.0.0.5 & 224.0.0.6; ca RIPv2: 224.0.0.9. wildcard mask

Bi 25: EIGRP(Enhanced Interior Gateway Routing Protocol): ch chy ring trn dng sn phm ca
CISCO. giao thc nh tuyn EIGRP ch gi ton b bng nh tuyn cho nhau ln u tin sau ch gi
cp nht tng ng s thay i cho Router no cn thit nhn n m thi. a ch Multicast EIGRP l
224.0.0.10; Protocol id = 88
EIGRP hot ng cn bng ti: ngha l router c 2 ng n ch v c s metric bng nhau trn c 2
ng th n s gi gi tin theo 2 ng lun. 2 router cng AS mi thit lp c mi quan h lng
ging
Bng TOPOLOGY l bng cha tt c cc Rout n tt c mi a ch trong h thng mng, lc ny
Router chay EIGRP chn ra 1 g i ti u trong nhiu g cng i n mng ch

Bi 26: ACL(Access Control List): l mt danh sch iu khin truy nhp. Cng dng: phn loi d
liu v lc gi tin lp 3(nh 1 cht canh ch nhng mng no c php mi qua c). ACL vit ra th ko c
ngha g c, ta phi t n cho 1 cng theo chiu in/out. Trn 1 cng ch c th t ACL theo 1 chiu
in/out m thi, nu t 2 ACL th phi khc chiu. Cng dng phn loi d liu(NAT, Distribute-list,
VPN) & lc g tin layer 3
* Quy lut ca ACL l chy t trn xung khp dng no thi hnh dng v b qua phn cn li
C 2 loi ACL:
-

Standard ACL: Loi 1 ch lc gi tin da vo source ip tc l a ch ngun ip ca gi tin y, gi

l dng tiu chun. t ACL cng xa ngun cng tt

Extended ACL: Loi 2 lc da vo rt nhiu thng s nh: ip ngun, ip ch, port hay giao thc
ca gi tin, gi l extended ACL. t ACL cng gn ngun cng tt tn bng thng lu
lng
Application Protocol

Destination
Port

HTTP

TCP

88

HTTPS

TCP

443

TELNET

TCP

23

SSH

TCP

22

FTP

TCP

20,21

TFTP

UDP

69

SMTP

TCP

25

POP3

TCP

110

SNMP

UDP

161

Ping

ICMP

Web

TCP

80

Bi 27: NAT(Network Address Translation): cho php a ch IP private vo Public v ngc li

-

Static NAT: gn tnh tng cp chuyn i IP, t l Private Public

Dynamic NAT: c Router thc hin chuyn i IP t ng, danh sch a ch bn trong gi l
Access List(ACL), danh sch a ch bn ngoi gi l Pool

NAT overload & PAT(Port Address Translation): cho php nhiu a ch IP bn trong chuyn i
thnh 1 a ch IP bn ngoi truy nhp Internet da vo Port(mi 1 Port tng ng vi 1
connection ch ko phi l tng ng vi 1 my VD: 1 my m ra nhiu ca s internet th mi
ca s Internet tng ng vi 1 Port)

Bi 28: WAN(Wide Area Network): thu ng truyn ca ISP u cc chi nhnh ca doanh nghip
vi tr s chnh ca cng ty khong cch xa. C phn bit s ging & khac nhau gia LAN & WAN.
C giao thc PAP, CHAP, Frame Relay,PPP

Bi 29: Frame Relay: to kt ni ca cc chi nhnh khc nhau ca doanh nghip, (Frame Relay l 1
phn ca WAN), c kt ni bng cc ng mch o. Frame Relay Map

Bi 30: VPT(Virtual Private Network): mng ring o: thng tin ca cc mng Private nhng c
truyn trong mng Public. Kt ni tr s chnh vi cc chi nhnh thng qua mi trng Internet ch ko
phi thu ng ring nh WAN. Da vo Ipsec cho php m ha, xc thc v ton vn

Bi 31: IPv6: ipv4 c 32bit=2^32 a ch, ipv6 di 128 bit=2^128 a ch