Professional Documents
Culture Documents
Tom Tat CCNA
Tom Tat CCNA
Tom Tat CCNA
OSI:
-
Physical: chc nng truyn 1 dng bit th qua ng truyn vt l c th, xy dng
ng truyn vt l cho cc host.
Data Link: chc nng iu khin truy nhp vo ng truyn vt l v giao tip vi
lp Network. ng khung d liu, cu trc ha d liu, cung cp c ch d li.
Application: giao tip trc tip vi ngi dng, cung cp cc ng dng mng, dch
v mng nh email,..
Transport Layer ca TCP/IP: gm 2 giao thc l UDP v TCP. Giao thc ca tng Network l IP
v giao thc ca tng Data Link v Physical l Ethernet.
-
Bi 5: c Local Broadcast & Direct Broadcast, a ch IP private & public, a ch Loop Back
Bi 13:
-
Giao thc TELNET: cho php iu khin thit b khong cch xa VD: cu hnh ROUTER t xa
thng qua mi trng INTERNET. TELNET s dng TCP/Port23. Nhc im ca giao thc ny
l thng tin trao i dng m ASSCI bnh thng nn d b hacker ph, thiu bo mt.
Giao thc CDP(Cisco Discovery Protocol): cho php cc thit b tm hiu lng ging(kt ni trc
tip vi n) ca mnh
Capability: R, S, I
IP ca lng ging
IOS version
Giao thc SSH(): cng cho php c ch truy nhp t xa nh TELNET nhng cung cp thm c
ch m ha bo mt thng tin hn. Chy trn nn TCP Port22
Bi 15: RIP(Routing Information Protocol) nh tuyn theo kiu tin n the DISTANCE VECTOR
Ch s AS(Autonomous System): mi nh mng c 1 s AS ring v ko phi c s dng ty
Ch s AD(Adminitrative Distance): l khong cch qun tr. Dng ch ra ng i ngn nht n
ch v i theo ng no c AD nh nht n ch
S Metric nh lng ng i no ti u hn
Infinitiy: ti a 15 Router(s Metric =16)
Chng Loop:
+ Split Horizon: ko gi li bng nh tuyn cho con Router gi bng nh tuyn cho mnh
+ Rout Poisioning: khi c 1 mng b down s lp tc Trigger Update(cp nht ngay) v gi cho lng ging
+ Poision Reverse: cc Router nhn c Rout Poisioning s phn hi li
+ Holdow Timer: khi c 1 mng b chp chn(Up-Down lin tc) cc Router s ch cp nht
VLSM: s dng cc subnet-mask khc nhau ca cng Major Network trong cng h thng
Discontiguos networt(mng gin on): Major network ny b ct i bi 1 Major Network khc
Bi 16: DHCP(Dynamic Host Configuration Protocol): cho php DHCP server cp 1 di IP ng cho
cc HOST
Bi 18: ICMP(Internet
Vlan2: 192.168.2.0/24
Vlan3: 192.168.3.0/24
Bi 22: VTP(VLAN Trunking Protocol): ng b cu hnh VLAN trn tt c con switch ca h thng
chuyn mch. VD: thay i cu hnh ca 1 con Switch th cu hnh ca cc con Switch trong h thng u
thay i theo. Ch c sp ca Cisco. Ch hot ng khi thit lp cc ng Trunk trc ni cc Switch vi
nhau. Cc Switch phi cng domain-name v password(nu c) th mi trao i thng tin vi nhau. VTP
ch ng b thng tin vlan nhng ko ng b port vlan
Cc mode VTP:
-
Transparent: cho php to, sa, xa, forward nhng ko hc vlan. Nhng ch trong ni b ca
con switch ny m thi
3 b nh thi ca STP:
-
Hello-timer: 2s
Max-Age-timer: 20s
Bi 24:OSPF(Open Shortest Path First): giao thc nh tuyn theo ng Link State ngha l tt c
Router tham gia nh tuyn ny s ko phi gi bng nh tuyn, ko phi gi cc Rout na m l gi ton
b bng c s d liu trng thi ng link ca n cho tt c cc Router khc cng chy OSPF kt qu
mi Router u c bng c s d liu trng thi ng link ng nht vi nhau ghi li ton b thng tin
v h thng mng, sau mi Router cn c vo h thng mng ny hay cn c vo bng c s d liu
ny tm ra ng i ti u nht a vo bng nh tuyn s dng(hay mi Router c 1 s mng
ring ca n). a ch Multicast ca OSPF 224.0.0.5 & 224.0.0.6; ca RIPv2: 224.0.0.9. wildcard mask
Bi 25: EIGRP(Enhanced Interior Gateway Routing Protocol): ch chy ring trn dng sn phm ca
CISCO. giao thc nh tuyn EIGRP ch gi ton b bng nh tuyn cho nhau ln u tin sau ch gi
cp nht tng ng s thay i cho Router no cn thit nhn n m thi. a ch Multicast EIGRP l
224.0.0.10; Protocol id = 88
EIGRP hot ng cn bng ti: ngha l router c 2 ng n ch v c s metric bng nhau trn c 2
ng th n s gi gi tin theo 2 ng lun. 2 router cng AS mi thit lp c mi quan h lng
ging
Bng TOPOLOGY l bng cha tt c cc Rout n tt c mi a ch trong h thng mng, lc ny
Router chay EIGRP chn ra 1 g i ti u trong nhiu g cng i n mng ch
Bi 26: ACL(Access Control List): l mt danh sch iu khin truy nhp. Cng dng: phn loi d
liu v lc gi tin lp 3(nh 1 cht canh ch nhng mng no c php mi qua c). ACL vit ra th ko c
ngha g c, ta phi t n cho 1 cng theo chiu in/out. Trn 1 cng ch c th t ACL theo 1 chiu
in/out m thi, nu t 2 ACL th phi khc chiu. Cng dng phn loi d liu(NAT, Distribute-list,
VPN) & lc g tin layer 3
* Quy lut ca ACL l chy t trn xung khp dng no thi hnh dng v b qua phn cn li
C 2 loi ACL:
-
Extended ACL: Loi 2 lc da vo rt nhiu thng s nh: ip ngun, ip ch, port hay giao thc
ca gi tin, gi l extended ACL. t ACL cng gn ngun cng tt tn bng thng lu
lng
Application Protocol
Destination
Port
HTTP
TCP
88
HTTPS
TCP
443
TELNET
TCP
23
SSH
TCP
22
FTP
TCP
20,21
TFTP
UDP
69
SMTP
TCP
25
POP3
TCP
110
SNMP
UDP
161
Ping
ICMP
Web
TCP
80
Dynamic NAT: c Router thc hin chuyn i IP t ng, danh sch a ch bn trong gi l
Access List(ACL), danh sch a ch bn ngoi gi l Pool
NAT overload & PAT(Port Address Translation): cho php nhiu a ch IP bn trong chuyn i
thnh 1 a ch IP bn ngoi truy nhp Internet da vo Port(mi 1 Port tng ng vi 1
connection ch ko phi l tng ng vi 1 my VD: 1 my m ra nhiu ca s internet th mi
ca s Internet tng ng vi 1 Port)
Bi 28: WAN(Wide Area Network): thu ng truyn ca ISP u cc chi nhnh ca doanh nghip
vi tr s chnh ca cng ty khong cch xa. C phn bit s ging & khac nhau gia LAN & WAN.
C giao thc PAP, CHAP, Frame Relay,PPP
Bi 29: Frame Relay: to kt ni ca cc chi nhnh khc nhau ca doanh nghip, (Frame Relay l 1
phn ca WAN), c kt ni bng cc ng mch o. Frame Relay Map
Bi 30: VPT(Virtual Private Network): mng ring o: thng tin ca cc mng Private nhng c
truyn trong mng Public. Kt ni tr s chnh vi cc chi nhnh thng qua mi trng Internet ch ko
phi thu ng ring nh WAN. Da vo Ipsec cho php m ha, xc thc v ton vn