Professional Documents
Culture Documents
Tuyen Tap Bai Viet CCNA PDF
Tuyen Tap Bai Viet CCNA PDF
Tuyen Tap Bai Viet CCNA PDF
Frame relay
Frame relay vn l cng ngh WAN c trin khai nhiu nht c dng router.
c mt s chuyn i dn dn t FR sang cc cng ngh nh VPN da trn
nn IP v MPLS-VPN. Tuy nhin Frame relay s vn ng mt vai tr ln
trong cc mng doanh nghip trong mt tng lai trc mt.
Router to ra cc frame bng cch dng cc header lin tip khc nhau. Header
u tin l ITU Link Access Procedure for Frame-Mode Bearer Services
(LAPF). Header LAPF bao gm tt c cc trng c dng bi tng i FR
phn phi cc frame trn m my FR, cc trng ny bao gm DLCI, DE,
BECN v FECN.
Cc trng theo sau phn LAPF s cha cc thng tin quan trng cho cc
router thu bao trn u cui ca VC. i vi on header ng gi, c hai ty
chn tn ti:
thc hin vic ny, khi mt tng i FRSwitch nhn thy c nghn gy ra
bi mt VC, tng i s gn bit FECN trong mt frame ca VC . Tng i
cng theo di cc VC ang b nghn sao cho n c th tm ra frame k tip
ang c gi trn VC nhng i theo chiu i din nh trong bc 4 ca
hnh. Tng i sau s nh du bit BECN trong frame ang truyn theo
chiu ngc li ny. Router nhn c frame c bit BECN bit rng mt frame
do router gi ra chu tnh trng nghn, v vy router c th gim tc gi
d liu ca n xung. Hnh di y m t mt v d ca tin trnh.
Hai chi tit quan trng nht lin quan n cu hnh Frame Relay l vic kt hp
cc gi tr DLCI vi cc cng hoc subinterface v vic nh x a ch lp 3
n cc gi tr ny. Mt iu th v l c hai c im ny c th c cu hnh
vi cng hai lnh: frame-relay map v lnh frame-relay interface-dlci.
Mc d mt router c th hc cc gi tr DLCI trn ng truyn FR thng qua
cc thng ip LMI, cc thng ip ny khng c chc nng ngm nh rng
DLCI s dng cho cng no. cu hnh FR dng cc subinterface, cc thng
s DLCI phi c kt hp vi cc subinterface. Bt k DLCI no c hc
vi LMI m khng kt hp vi mt cng subinterface th s c gi s l
dng cho cng vt l.
Code:
interface Serial0/0/0
encapsulation frame-relay
!
interface Serial0/0.14 point-to-point
ip address 10.1.14.1 255.255.255.0
frame-rely interface-dlci 104 IETF
!
interface Serial0/0/0.123 multipoint
ip address 101.123.1 255.255.255.0
frame-relay interface-dlci 102
frame-relay interface-dlci 103
Tip theo l cu hnh R2. R2 gn gi tr DLCI cho VC t R1 v R3 n cng
subinterface .123. Ch rng s ca subinterface ca router khng cn phi
ng bng gi tr DLCI.
Code:
interface Serial0/0/0
encapsulation frame-relay
!
interfacce Serial0/0/0.123 multipoint
ip address 101.123.2 255.255.255.0
frame-relay interface-dlci 101
frame-relay interface-dlci 103
Tip theo l cu hnh R4, trong ng gi bng lnh frame-relay ietf. Lnh
ny s thit lp kiu ng gi cho tt c cc VC trn cng S0/0/0. Cng lu
rng tn sut gi cc thng ip thay i t gi tr mc nh (10) thnh 8
thng qua lnh keepalive 8.
Code:
interface Serial0/0/0
encapsulation frame-relay IETF
keepalive 8
!
interface Serial0/0/0.1 point-to-point
ip address 10.1.14.4 25.255.255.0
frame-relay interface-dlci 101
Lnh show frame-relay pvc hin th cc thng tin thng k v trng thi ca
tng VC. Lnh k tip trn R1 b qua mt s on, ch li nhng dng c
trng thi PVC.
Code:
R1# show frame-relay pvc| incl PVC STATUS
DLCI = 100, DLCI USAGE = UNUSED, PVC STATUS = INACTIVE,
INTERFACE = Serial0/0/0
DLCI = 102, DLCI USAGE = LOCAL, PVC STATUS = ACTIVE,
INTERFACE = Serial0/0/0.123
DLCI = 103, DLCI USAGE = LOCAL, PVC STATUS = ACTIVE,
INTERFACE = Serial0/0/0.123
DLCI = 104, DLCI USAGE = LOCAL, PVC STATUS = ACTIVE,
INTERFACE = Serial0/0/0.14
DLCI = 105, DLCI USAGE = UNUSED, PVC STATUS = ACTIVE,
INTERFACE = Serial0/0/0
DLCI = 106, DLCI USAGE = UNUSED, PVC STATUS = INACTIVE,
INTERFACE = Serial0/0/0
DLCI = 107, DLCI USAGE = UNUSED, PVC STATUS = ACTIVE,
INTERFACE = Serial0/0/0
DLCI = 108, DLCI USAGE = UNUSED, PVC STATUS = ACTIVE,
INTERFACE = Serial0/0/0
DLCI = 109, DLCI USAGE = UNUSED, PVC STATUS = INACTIVE,
INTERFACE = Serial0/0/0
Code:
R1# show frame-relay pvc 102
PVC Statistics for interface Serial0/0/0 (Frame Relay DTE)
DLCI = 102, DLCI USAGE = LOCAL, PVC STATUS = ACTIVE,
INTERFACE = Serial0/0/0.123
input pkts 41 output pkts 54 in bytes 4615
out bytes 5491 dropped pkts 0 in pkts dropped 0
out pkts dropped 0 out bytes dropped 0
in FECN pkts 0 in BECN pkts 0 out FECN pkts 0
out BECN pkts 0 in DE pkts 0 out DE pkts 0
out bcast pkts 27 out bcast bytes 1587
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
pvc create time 00:29:37, last time pvc status changed 00:13:47
Kt qu lnh di y xc nhn rng ng truyn ca R1 ang dng Cisco
LMI. Cc thng ip trng thi LMI s xut hin mi pht trong thng ip
Full Status message c lit k sau cng. Ch rng router gi cc thng ip
truy vn trng thi n tng i. Khi tng i gi cc thng ip trng thi, cc
b m ny s cng tng.
Code:
R1# show frame-relay lmi
LMI Statistics for interface Serial0/0/0 (Frame Relay DTE) LMI TYPE =
CISCO
Invalid Unnumbered info 0 Invalid Prot Disc 0
Invalid dummy Call Ref 0 Invalid Msg Type 0
Invalid Status Message 0 Invalid Lock Shift 0
Invalid Information ID 0 Invalid Report IE Len 0
Invalid Report Request 0 Invalid Keep IE Len 0
Num Status Enq. Sent 183 Num Status msgs Rcvd 183
Num Update Status Rcvd 0 Num Status Timeouts 0
Last Full Status Req 00:00:35 Last Full Status Rcvd 00:00:35
Lnh show interface lit k vi chi tit, bao gm cc khong thi gian gi
cc thng ip LMI, LMI stats, LMI DLCI v cc trng thi trong hng i FR.
Hng i broadcast gi cc broadcast FR m nhng broadcast ny s c
nhn bn v gi trn VC. V d nh cc OSPF LSAs.
Code:
R1# show int s 0/0/0
Serial0/0/0 is up, line protocol is up
! lines omitted for brevity
Encapsulation FRAME-RELAY, loopback not set
Keepalive set (10 sec)
LMI enq sent 185, LMI stat recvd 185, LMI upd recvd 0, DTE LMI up
LMI enq recvd 0, LMI stat sent 0, LMI upd sent 0
LMI DLCI 1023 LMI type is CISCO frame relay DTE
FR SVC disabled, LAPF state down
Broadcast queue 0/64, broadcasts sent/dropped 274/0, interface broadcasts 228
! Lines omitted for brevity
Code:
R3# sh frame lmi |include LMITYPE
LMI Statistics for interface Serial0/0/0 (Frame Relay DTE) LMI TYPE =
ANSI
R3# sh int s 0/0/0 | include LMI DLCI
LMI DLCI 0 LMI type is ANSI Annex D frame relay DTE
Ch l R3 ang dng kiu ANSI LMI. R3 c th cu hnh LMI tnh bng cu
lnh frame-relay lmi-type {ansi | cisco | q933a} trong cng vt l. Tuy nhin
R3 b qua lnh ny, lm cho R3 c hnh ng mc nh l t ng tm ra
loi LMI.
Frame Relay Inverse ARP:
Sau khi nhn c thng ip trng thi LMI l LMI PVC Up, router s loan
bo a ch IP ca n ra mch lin kt o (VC - Virtual Circuit) tng ng
thng qua thng ip InARP (nh ngha trong RFC1293). Nh vy, mt khi
LMI khng c thc thi th InARP cng khng hot ng bi v khng c
thng ip no ni cho router bit gi thng ip InARP.
Trong mng Frame Relay, nhng cu hnh chi tit c chon la vi mc ch
trnh mt s tnh trng khng mong mun, nhng tnh trng ny s c m t
chi tit trong nhng trang k tip ca chng ny. V d khi s dng point-to-
point subinterface, vi mi VC thuc mt subnet ring, tt c nhng vn gp
phi trong cu hnh ny s c m t r rng c th phng trnh.
Bn thn giao thc InARP tng i n gin. Tuy nhin, khi trin khai InARP
trn nhng m hnh mng khc nhau, da trn nhng kiu cng khc nhau
(cng vt l, cng point-to-point subinterface v multipoint subinterface) th
cch thc hot ng ca InARP s tr nn phc tp hn rt nhiu.
Thng tin ca mt s lnh show v debug lin quan n Frame Relay InARP
v mt trong s nhng iu k quc v InARP lin quan n point-to-point
subinterface c m t trong v d 1.1.
Code:
Router1# conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router1(config)# int s 0/0
Router1(config-if)# do clear frame-relay inarp
Router1(config-if)# shut
Router1(config-if)# no shut
Router1(config-if)# ^Z
Cc thng ip t lnh debug frame-relay event hin th cc thng ip nhn
c InARP trn R1. Ch cc gi tr hex 0xAC1F8603 v 0xAC1F8604, vi
cc gi tr thp phn tng ng l 172.31.134.3 and 172.31.134.4 (tng ng
vi Router3 v Router4).
Code:
Router1# debug frame-relay events
*Mar 1 00:09:45.334: Serial0/0.11: FR ARP input
*Mar 1 00:09:45.334: datagramstart = 0x392BA0E, datagramsize = 34
*Mar 1 00:09:45.334: FR encap = 0x48C10300
*Mar 1 00:09:45.334: 80 00 00 00 08 06 00 0F 08 00 02 04 00 09 00 00
*Mar 1 00:09:45.334: AC 1F 86 03 48 C1 AC 1F 86 01 01 02 00 00
*Mar 1 00:09:45.334:
*Mar 1 00:09:45.334: Serial0/0.11: FR ARP input
*Mar 1 00:09:45.334: datagramstart = 0x392B8CE, datagramsize = 34
*Mar 1 00:09:45.338: FR encap = 0x64010300
*Mar 1 00:09:45.338: 80 00 00 00 08 06 00 0F 08 00 02 04 00 09 00 00
*Mar 1 00:09:45.338: AC 1F 86 04 64 01 AC 1F 86 01 01 02 00 00
K tip, ch lnh show frame-relay map c bao gm t kha dynamic, ngha
l cc hng c hc thng qua InARP.
Code:
Router1# show frame-relay map
Serial0/0.11 (up): ip 172.31.134.3 dlci 300(0x12C,0x48C0), dynamic,
broadcast, status defined, active
Serial0/0.11 (up): ip 172.31.134.4 dlci 400(0x190,0x6400), dynamic,
broadcast, status defined, active
Trn R3, lnh show frame-relay map ch lit k mt hng duy nht nhng nh
dng th khc. Bi v R3 dng point-to-point subinterface, hng ny khng
c hc thng qua InARP v kt qu lnh khng bao gm t kha Dynamic.
Cng ch l kt qu khng cho thy a ch Layer 3 no.
Code:
Router3# show frame-relay map
Serial0/0.3333 (up): point-to-point dlci, dlci 100(0x64,0x1840), broadcast
status defined, active
Ch : Trong v d trn ta thy xut hin lnh do trong ch cu hnh. Lnh
do cho php cu hnh trong configuration mode nhng thc hin chc nng
exec mode m khng phi thot khi mode configuration. V d lnh do clear
frame-relay inarp thc hin configuration mode tng ng vi vic ta thc
hin lnh clear frame-relay inarp ch ton cc.
Trong v d trn, lnh show cho thy Router R1 nhn v s dng thng tin
InARP; tuy nhin Router R3 th khng s dng thng tin InARP nhn vo.
H iu hnh Cisco IOS hiu rng ch mt VC c thit lp vi mt
subinterface point-to-point; mi mt a ch IP u cui khc trn cng mt
subnet ch c th tham chiu n duy nht mt s DLCI. V vy, mi thng tin
InARP nhn c lin kt n s DLCI l khng cn thit.
Trong hnh 1.3, R3 bit cch y gi tin n R4, nhng ngc li R4 cha
bit cch y gi tin ngc tr li Router3. Theo nghi logic R3 s hiu
nh sau nhng gi tin n c next-hop router trn subnet
172.31.124.0/24, R3 s gi chng ra theo mt s DLCI trn point-to-point
subinterface, y chnh l DLCI 100 . Nhng gi tin ny s c chuyn
n R1 v nh R1 chuyn n R4.
Code:
Router4# sh run
! lines omitted for brevity
interface Serial0/0
ip address 172.31.134.4 255.255.255.0
encapsulation frame-relay
Code:
Router4# conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router4(config)# int s0/0
Router4(config-if)# frame-relay map ip 172.31.134.3 100 broadcast
Router4(config-if)# ^Z
Router4# ping 172.31.134.3
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.31.134.3, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 20/20/20 ms
V d 1.2
Ch : Router R3 khng cn phi s dng cu lnh frame-relay map, bi v
trong cu hnh ca R3 s dng point-to-point subinterface. Phi nh k rng
bn ng nn s dng nhiu kiu cng khc nhau nh hnh 1.3, cng khng
nn trin khai m hnh dng li khng y (non-full-mesh) vi cng mt
subnet, tr khi bn buc phi thc hin trn ng khng gian a ch IP hn ch
ca mnh.
Tt InARP
Bi 3:
SPANNING TREE PROTOCOL - STP
Spanning Tree Protocol (STP) l mt giao thc ngn chn s lp vng, cho
php cc bridge truyn thng vi nhau pht hin vng lp vt l trong mng.
Sau giao thc ny s nh r mt thut ton m bridge c th to ra mt
topology lun l cha loop-free. Ni cch khc STP s to mt cu trc cy ca
free-loop gm cc l v cc nhnh ni ton b mng lp 2.
Broadcast Loop
Broadcast Loop v vng lp lp 2 l mt s kt hp nguy him. Hnh 3.2 biu
din broadcast to ra vng lp phn hi (feedback loop).
Gi s rng, khng c switch no chy STP:
---------------------------
Bi 4:
Spanning Tree.
Mt h thng mng hin thc STP km c th dn n rt nhiu cng vic cu
hnh, khi phc li trn mng campus. Bi vit ny gii thch c ch hot ng
ca spanning-tree, chc nng ngn nga loop trong mng switch.
Bridge-ID
Path cost
Cost c lu nh mt gi tr s nguyn.
-----------------------------------------------
Bi 5: Route redistribution
Redistribution
1. nh ngha
IS-IS: Yu cu phi cu hnh bng tay gia cc giao thc nh tuyn khc
nhau.
BGP: Yu cu phi cu hnh bng tay gia cc giao thc nh tuyn khc
nhau.
a/ Metric
Gii php 1: cho vic redistribution gia classful routing protocol v classless
routing protocol l s dng nh tuyn tnh phn phi cc route vo trong
classful routing domain.
Gai php 2: thc hin route summary nhm cc subnet con thnh mt
subnet to hn m classful routing domain hiu c.
Bi 6:
Hi:
Tr li:
Core.
SM: 9/125;
MM: 50/125 v 62.5/125.
ng knh v phn x: Cladding th c SM v MM u nh nhau l 125um.
Hin nay, cp quang single mode ch dng cho ng trc, ngoi vic gi thnh
ra, cng ngh ca cp single mode rt khc khe, v rt kh trong vic thi cng
cng nh s dng. L do chnh l do lp li ca cp single mode rt nh
(khoang 27 Micromet) cn ca multi mode thi ln hn rt nhiu (khong 130
Micromet). Ngoi ra, do kt cu li single mode cho nh sng i theo ng
thng, m gi thnh ch to, cng nh chnh xc trong thi cng, thit b cng
ngh cao lm cho cp SM kh thc hin trong cc cng trnh dn s.
Ngoi cch phn loi nh trn, cn vi cch phn loi cp quang khc. Theo
Mode th c: SM v MM (MM c 2 loi: 62.5 v 50). Theo mi trng lp t
th c Outdoor v In door. Outdoor li chia ra thnh cc loi: F8 v
Underground.
Khi truyn trong si quang, sng nh sng b chi phi bi mt s hin tng
sau:
(*) Suy gim (attenuation): Suy gim trong si quang do hai nguyn nhn
chnh, l hp th ca vt liu v tn x ReyLeng. Hp th vt liu nh hn tn
x ReyLeng nn c th b qua. Tn x ReyLeng do cc thng ging vi sai trong
cu trc vt liu, v gim khi bc sng tng. th tng hp ca cc nguyn
nhn suy gim gip tm ra ba ca s truyn sng s dng rng ri ngy nay
(800nm, 1300nm v 1550nm)
(*) Cc hiu ng phi tuyn: Khi truyn nhiu mode trong si quang, hin tng
phi tuyn gy ra hin tng sinh ra cc hi t cc mode truyn c bn, dn n
nhiu ti u thu v gim cng sut tn hiu truyn.
(2*PI/lamda)*a*sqr(n1*n1-n2*n2) <2.405
C 2 cch hn:
+ Hn bng my : $20/mi
+ Hn bng tay (bm) : $8/mi
Leased line
Tr li:
Bn c th dng MRTG kim tra lu lng bng thng vo ra, chng trnh
min ph v h tr kh nhiu phn cng, ch phi ci l ci t hi th cng m
thi nhng dng rt tt. Mrtg download ti mrtg.org kim tra tc . Ngay
lc ny anh c th kim tra thng s Reliability ca cng Serial bng cch anh
dng lnh #show interface Serial X/X ..Nu thng s ny c t l qu thp th
c th ng truyn ch anh khng tt. y l mt thit b kt ni leased
line, ng hn l thit b HDSL Modem.
Leased line:
u im:
- Bng thng m bo 100%
- Delay nh
- Jitter nh
- a dch v (c th s dng cho cc dch v non-IP v IP).
Khuyt im:
- Gi thu rt t.
- Thit b u cui rt t, t thng dng, kh tm.
- Buc phi s dng 1 cp thit b cho mi knh > vn phng cn 2 thit b
phc v cho 2 im chi nhnh.
MegaWAN:
u im:
- Bng thng m bo (ch s n khng khai CBR -Constant Bit Rate cho bc
thi).
- Gi thu rt r
- Thit b u cui thng dng, d mua (modem ADSL bnh thng hoc
SHDSL). HDSL v G.shdsl cho cc kt ni data 128Kbps< n x 64Kbps
<= 2048Kbps.
Khuyt im:
- Delay ln
- Jitter ln
--------------------------------------
Bi 8:
Xi cp quang vi RJ45
Cu hi:
Xin cho,
Rt cm n
Thit b cn thit l hai modem s dng cng ngh trn c port Lan (1 hoc 4
port)
vd: Loi modem G.SHDSL Paradyn 1740 A2 gi tm 500usd, Zyxel P 792H
gi tm 400usd. Loi modem VDSL Zyxel P972.
2. Cp quang:
kt ni bng cp quang bn cn c:
RJ45 cp quang
(LAN)[SWITCH c cng cp quang] -[SWITCH c
cng cp quang]-(LAN)
Nu dng cp quang v mun u vo Router hai u: Cc bn c th dng
modem quang. Trn Modem quang c nhiu la chn hn v n ra nhiu
Interface hn : LAN, E1 v V35. Nu bn mun dng cp quang trc tip trn
router bn c th mua them module NM-1FE-FX.
t vn :
Router(config)#line console 0
Router(config-line)#password vnpro
Router(config-line)#login
Nguyn l c bn:
Vic khi phc mt khu da trn vic can thip vo bc cui cng ca
tin trnh khi ng ca router. can thip vo tin trnh ny, ngi qun tr
phi thc hin thay i gi tr ca mt thng s k thut trn router c tn gi
l thanh ghi cu hnh (configuration register). Thanh ghi ny bao gm mt
chui nh phn 16 bit vi mi bit u mang mt ngha, chc nng ring. Thit
lp cc gi tr 0 hay 1 cho cc bit c th nh hng n tin trnh khi ng ca
router. Thanh ghi cu hnh thng c hin th di dng s hexa (h m
16), v d; 0x2102, 0x2142, 0x2100,.v.v ( k hiu 0x c s dng ch
ra y l cc s hexa). Ta xem xt tin trnh khi ng ca router:
1. POST (Power On Self Test): y l bc u tin, din ra ngay sau
khi bt ngun ca router, quy trnh POST s kim tra ton b phn
cng ca router m bo cc phn cng hot ng ng.
2. Np chng trnh bootstrap t ROM vo RAM chy, chng trnh
ny chu trch nhim thc hin quy trnh np h iu hnh (IOS) cho
router.
3. Np IOS (h iu hnh ca router) t b nh Flash vo RAM chy.
4. Sau khi c np, IOS s np file cu hnh startup-config t b nh
NVRAM vo b nh RAM thnh file running-config v thc hin file
cu hnh ny.
Tt c cc mt khu sau khi khai bo u c lu li trong file
cu hnh startup-config trn b nh NVRAM v v th sau khi file ny
c np v chy th cc mt khu s pht huy tc dng. Do , b
qua cc mt khu th phi iu khin router b qua file startup-config
trong bc ny v np vo mt cu hnh trng. S dng cu hnh trng
v vo c cc mode cu hnh su hn, c th chnh sa hoc xa b
cc mt khu lu trong file cu hnh c, t c th s dng li file
cu hnh c trong ln khi ng tip theo nhng vi cc mt khu
c sa li theo ca ngi qun tr.
thc hin c vic ny, cn phi thit lp gi tr l 1 cho bit
th 6 ca thanh ghi cu hnh (tnh t phi sang tri, bit u tin ng
ngoi cng bn phi c s th t l 0). Gi tr ca c thanh ghi khi
thit lp gi tr 1 cho bit s 6 thng c dng l : 0x2142 , c
ngha b qua startup-config trong NVRAM khi khi ng. Bnh
thng, thanh ghi ny c gi tr mc nh l 0x2102 (trong bit s 6
bng 0 c ngha: s dng file startup-config trong NVRAM).
5. Sau khi khi ng li, router sau khi np xong IOS, s b qua khng np cu
hnh t NVRAM chy na m i vo mode setup, cho php ta s dng mt
cu hnh trng chy.
Ta nhp phn tr li l no s dng cu hnh trng. Khi s dng cu hnh
trng, ta i vo c mode privileged ca router, t c th tip tc i vo
cc mode cu hnh su hn chnh sa hoc loi b mt khu trong file cu
hnh c.
6. Tip theo, copy file startup-config vo thnh file running-config. Sau khi
copy file startup-config vo, ta c th thay i chnh sa li mt khu c nm
trn file ny.
----------------------------------------------------
Bi 10:
Clockrate vs bandwidth.
Mt s kin tr li:
- Trong trng hp dng dial-up, cng ngh hin ti ch cho php n 56K. Xin
lu l 56K ch l tc kt ni l thuyt. Tc thc t khi kt ni s thp
hn, v d nh 48k. Lu l y khng phi l tc truyn s liu, ch l tc
thi im kt ni m thi. Trong qu trnh truyn s liu, 2 modems 2
u s lin tc trao i vi nhau v tm ra tc kt ni n nh cao nht. Ty
theo ng vt l (xa hay gn, tt hay xu,..) m tc truyn s liu thc t
s thay i, chng hn nh ch cn 33.6k, 19.2k hay thm ch khng th truyn
c v c qu nhiu li
- Khi chng ta s dng router Cisco, c hai cu lnh thng dng lin quan n
bng thng. Th nht l lnh clock rate, lnh ny nh ngha t l bit lp 1 thc
s. Cu lnh c s dng khi router cung cp xung ng h, in hnh khi kt
ni router s dng interface serial vi mt vi thit b ln cn(v d nh vi
router khc).
Bi 11:
AAA
1.1.Gii thiu tng quan AAA
Cc nh qun tr mng ngy nay phi iu khin vic truy cp cng nh gim
st thng tin m ngi dng u cui ang thao tc. Nhng vic lm c th
a n thnh cng hay tht bi ca cng ty. Vi tng , AAA l cch
thc tt nht gim st nhng g m ngi dng u cui c th lm trn
mng. Ta c th xc thc (authentication) ngi dng, cp quyn
(authorization) cho ngi dng, cng nh tp hp c thng tin nh thi gian
bt u hay kt thc ca ngi dng (accounting). Nh ta thy, bo mt l vn
rt quan trng.
AAA [1] cho php nh qun tr mng bit c cc thng tin quan trng v tnh
hnh cng nh mc an ton trong mng. N cung cp vic xc thc
(authentication) ngi dng nhm bo m c th nhn dng ng ngi dng.
Mt khi nhn dng ngi dng, ta c th gii hn thm quyn
(authorization) m ngi dng c th lm. Khi ngi dng s dng mng, ta
cng c th gim st tt c nhng g m h lm. AAA vi ba phn xc thc
(authentication), cp quyn (authorization), tnh cc (accounting) l cc phn
ring bit m ta c th s dng trong dch v mng, cn thit m rng v
bo mt mng. AAA c th dng tp hp thng tin t nhiu thit b trn
mng. Ta c th bt cc dch v AAA trn router, switch, firewall, cc thit b
VPN, server,
Xc thc dng nhn dng (identify) ngi dng. Trong sut qu trnh xc
thc, username v password ca ngi dng c kim tra v i chiu vi c
s d liu lu trong AAA Server. Tt nhin, ty thuc vo giao thc m AAA
h tr m ha n u, t nht th cng m ha username v password. Xc
thc s xc nh ngi dng l ai. V d: Ngi dng c username l vnpro v
mt khu l L@bOnlin3 s l hp l v c xc thc thnh cng vi h thng.
Sau khi xc thc thnh cng th ngi dng c th truy cp c vo mng.
Tin trnh ny ch l mt trong cc thnh phn iu khin ngi dng vi
AAA. Mt khi username v password c chp nhn, AAA c th dng
nh ngha thm quyn m ngi dng c php lm trong h thng.
1.1.3.3.Tnh cc (Accounting)
Accounting cho php nh qun tr c th thu thp thng tin nh thi gian bt
u, thi gian kt thc ngi dng truy cp vo h thng, cc cu lnh thc
thi, thng k lu lng, vic s dng ti nguyn v sau lu tr thng tin
trong h thng c s d liu quan h. Ni cch khc, accounting cho php gim
st dch v v ti nguyn c ngi dng s dng. V d: thng k cho thy
ngi dng c tn truy cp l vnpro truy cp vo VNLABPRO_SERVER
bng giao thc FTP vi s ln l 5 ln. im chnh trong Accounting l cho
php ngi qun tr gim st tch cc v tin on c dch v v vic s
dng ti nguyn. Thng tin ny c th c dng tnh cc khch hng,
qun l mng, kim ton s sch.
------------------------------------------------
Bi 12:
u tin Ch ethernet
7 100Base-t2 (full duplex)
6 100Base-TX (full duplex)
5 100BASE-t2 (half duplex)
4 100Base-T4
3 100Base-TX
2 10base-T (full duplex)
1 10Base-T
m bo cu hnh chnh xc c hai u ca kt ni, Cisco khuyn co cc
gi tr v tc truyn, duplex mode phi c cu hnh th cng (manually)
trn cc switchports. Yu t ny gip loi tr kh nng mt bn thay i cc ci
t, dn n kt ni c th khng dng c. Nu bn cu hnh th cng
switchport, hy thit lp lun cho thit b trn u kia ca kt ni cc thng s
tng ng. Nu khc i, vn speed mismatch hay duplex mismatch s xy
ra.
Bi 13:
Collision domain
Min ng v b m chuyn mch:
Switch cng dng cng loi cp v khuch i tn hiu ging nh hub, nhng
switch lm nhiu vic hn. ng s gim thiu do cc khung tin c m,
khi switch nhn c cc khung tin trn cc cng khc nhau, switch lu khung
tin trong cc b nh m ngn nga xung t. V d, gi s mt switch nhn
ba khung tin cng mt thi im i vo ba cng khc nhau v n phi c
a ra cng mt cng ca switch. Lc ny switch s lu hai khung tin trong b
nh, v chuyn cc khung tin i mt cch tun t. Khi mt cng ca switch
kt ni n mt thit b khng phi l HUB, ng s khng th xy ra. Thit
b duy nht c th to ra ng l bn thn cng switch v mt thit b kt ni
vo n v nu mi bn c mt cp cp ring truyn. V ng khng th
xy ra, nhng phn on mng trn c th s dng ch song cng.
----------------------------------------------------------
Bi 14:
Phn quan trng nht v cng phc tp nht ca RIP nm nhng phng thc
chng loop. Ging nh nhng giao thc nh tuyn distance vector khc, RIP
s dng kt hp nhng cng c chng loop khc nhau, nhng ng tic rng
nhng cng c ny cng lm tng thi gian hi t (convergence) mt cch ng
k. S tht, l mt hn ch rt ln ca RIP (k c RIPv2). Bng 8.3 tng hp
nhng tnh nng v phng thc lin quan n s hi t v chng loop ca
RIP.
Tnh nng M t
Split horizon Thay v qung b tt c cc route ra mt interface, RIP
khng qung b nhng route m router hc c t
interface ny.
Triggered update Router s gi mt update mi ngay khi thng tin nh
tuyn b thay i, thay v phi ch ht thi gian update
time. Trigger update cn c tn gi khc l flash update.
Khi mt gi tr metric thay i tt hn hoc km hn,
router ngay lp tc s gi ra mt thng ip cp nht m
khng cn ch cho khong thi gian update timers b ht.
Qu trnh ti hi t din ra nhanh hn so vi trng hp
phi ch nhng khong thi gian cp nht nh k. Cc
thng ip cp nht nh k vn din ra cng vi cc thng
ip trigger update. Nh vy mt router c th nhn mt
thng tin km v mt route t mt router cha hi t sau
khi nhn mt thng tin chnh xc t mt trigger update.
Tnh hung ny xy ra v cc li nh tuyn vn c th xy
ra trong qu trnh ti hi t.
Bng 15.1 : Tng hp mt s c tnh chi tit v Frame Relay Inverse ARP trn
IOS
-------------------------------------------------------
Bi 16:
Bn thn giao thc InARP tng i n gin. Tuy nhin, khi trin khai InARP
trn nhng m hnh mng khc nhau, da trn nhng kiu cng khc nhau
(cng vt l, cng point-to-point subinterface v multipoint subinterface) th
cch thc hot ng ca InARP s tr nn phc tp hn rt nhiu.
interface Serial0/0
encapsulation frame-relay
Router1# conf t
Router1(config-if)# shut
Router1(config-if)# no shut
Router1(config-if)# ^Z
*Mar 1 00:09:45.334: 80 00 00 00 08 06 00 0F 08 00 02 04 00 09 00 00
*Mar 1 00:09:45.334: AC 1F 86 03 48 C1 AC 1F 86 01 01 02 00 00
*Mar 1 00:09:45.334:
*Mar 1 00:09:45.338: 80 00 00 00 08 06 00 0F 08 00 02 04 00 09 00 00
*Mar 1 00:09:45.338: AC 1F 86 04 64 01 AC 1F 86 01 01 02 00 00
Trn R3, lnh show frame-relay map ch lit k mt hng duy nht nhng nh
dng th khc. Bi v R3 dng point-to-point subinterface, hng ny khng
c hc thng qua InARP v kt qu lnh khng bao gm t kha Dynamic.
Cng ch l kt qu khng cho thy a ch Layer 3 no.
Router3# show frame-relay map
Trong v d trn, lnh show cho thy Router R1 nhn v s dng thng tin
InARP; tuy nhin Router R3 th khng s dng thng tin InARP nhn vo.
H iu hnh Cisco IOS hiu rng ch mt VC c thit lp vi mt
subinterface point-to-point; mi mt a ch IP u cui khc trn cng mt
subnet ch c th tham chiu n duy nht mt s DLCI. V vy, mi thng tin
InARP nhn c lin kt n s DLCI l khng cn thit.
----------------------------------------------------
Bi 17:
Trong nm 1994, IETF xut IPv.6 trong RFC 1752. IPv.6 khc phc vo
mt s vn nh thiu ht a ch, cht lng dch v, t ng cu hnh a
ch, vn xc thc v bo mt. i vi mt doanh nghip dng h tng
mng theo IPV4, chuyn sang IPv6 khng phi l vic d dng. Mt giao
thc IP mi s yu cu cc phn mm mi, cc phn cng mi v cc phng
php qun tr mi. Cng c th, IPv4 v IPv6 s cng tn ti, ngay c bn trong
mt Autonomous System trong khong thi gian sp ti.
IP v.6 c cc c im v li ch nh sau:
a ch unicast v a ch multicast
T ng cu hnh
Renumbering
Bo mt
C ng
Mc vng: mc ny l cc b i vi cc t chc.
-----------------------------------------------------
Bi 18:
- Kt ni l trunk.
Trong mng campus, bn c th dng Gigabit Ethernet trong switch block, core
block v server block. Trong switch block, GE c th dng kt ni access
layer switch ln distribution switch. Trong core block, GE dng kt ni
distribution ln core switch v kt ni cc thit b core vi nhau. Trong server
block, GE c th cung cp cc kt ni tc cao n tng server ring l.
Cc module quang lun c chn nhn d liu bn tri v chn truyn d liu
bn phi. Cc module ny c th to ra cc bc x, v vy phi lun che cc
chn bng cc nt cao su v khng nn nhn trc tip vo connector.
10-Gigabit Ethernet:
(1310 nm serial)
10Gbase-ER/EW SMF 9 micron 40 km Catalyst 6500
(1550 nm serial)
10GBAse- MMF 50 micron 300m N/A
LX4/LW4 (1310
nm WWDM)
MMF 62.5 micron 300m N/A
SMF 9 micron 10 km
-----------------------------------------------
Bi 20:
Ethernet 10Mbps
Ethernet l mt cng ngh LAN da trn chun IEEE 802.3. Ethernet cung cp
bng thng 10Mbps gia cc ngi dng cui. dng n gin nht, Ethernet
s dng mt thit b chia s bng thng (hub). Thit b ny b xem nh l mt
collision domain v broadcast domain. Khi s lng ngi dng tng ln, kh
nng mt ngi dng truyn d liu mt thi im cng tng ln. Nu c mt
ngi dng khc cng c gng truyn d liu, xung t (collision) s xy ra.
Ni cch khc, c hai ngi dng khng th truyn d liu cng mt thi
im nu c hai cng dng chung mt hub. Ethernet hot ng da trn cng
ngh CSMA/CD. Theo , khng c ng xy ra, mt my truyn phi lui
v mt khong thi gian ngu nhin. Switched Ethernet gii quyt vn ny
bng cch cp mt phn bng thng 10Mbps n tng port. Lc ny, collision
t xy ra v collision domain s gim. Do , cc my trm khng cn phi ch
n lt truyn. Thay vo , cc my trm c th hot ng ch
fullduplex: truyn v nhn ng thi. Ch fullduplex s tng hiu nng ca
h thng mng, cung cp mt thng lng 20Mbps.
Fast Ethernet
Fast Ethernet hot ng tc 100Mbps v c c t trong IEEE802.3u.
Cc nguyn tc CSMA/CD, vn cp v cc giao thc lp cao hn u c
duy tr ging nh trong Ethernet. Mng campus thng dng FE cc switch
lp access hoc distribution nu nh khng c sn cc kt ni tc cao hn.
Cp c dng cho FastEthernet thng l UTP hoc cp quang.
Ch full-duplex:
-----------------------------------------------
Bi 21:
+ Tham gia din n: y l cch hc tit kim nht, th hin tnh hin i, dch
chuyn ca cc bn tr ngy nay. Mt kh khn ca cch hc ny l i khi c
mt vn ta a ln din n c tun thm ch c thng tri vn khng c ai
tr li gip bn, trong trng hp ny th ch cn cch duy nht l t mnh cu
ly ta m thi. Nu cc bn mun mi ngi gip mnh th trc tin mnh
hy gip mi ngi, cc bn hy tr li nhng bi vit trn din n trong kh
nng ca cc bn, din n l ni mi ngi gip ln nhau, khng c ai ch
nhn thi m khng bao gi cho c. Hin nay c rt nhiu din n v cc ch
khc nhau, nu nh bn ch quan tm n mng ni chung cng nh mng
khng dy ni ring th chng ta c th vo http://www. wimaxpro.org,
http://vnpro.org/forum (ting Vit), cn i vi cc bn kh ting Anh th c
th vo http://cwnp.com/phpBB2/index.php hoc
http://www.sadikhov.com/forum/
+ Trc khi thi: khong 1 hay 2 tun trc khi thi l thi gian tt nht chng
ta n li nhng kin thc hc, vic ny gip bn c mt ci nhn tng quan
v tt c nhng iu m bn hc trong sut thi gian va qua, kt ni li cc
kin thc m trong qu trnh hc ta c tng nh chng chng c lin quan g
nhau. c li cc file cu hnh m bn tng lm, sau khi c, c th bn s
ng ra c nhiu iu th v y. Vic cui cng v kh quan trng
chnh l luyn thi m c th hn chnh l lm cc cu hi trc nghim gip cho
chng ta lm quen vi thi khi vo thi chng ta khng b chong trc
cc cu hi ca . Cc thi mu cc bn c th mua t Tesking, Pass4sure,
Actualtest Mt iu lu cho cc bn l cc bn khng nn tin hon ton
vo cch gii ca cc thi mu ny v theo kinh nghim ca ti, n sai kh
nhiu. C nhng cu n tr li sai ri gii thch rt ngon khin mnh khng th
khng tin vo n. Cc bn nn vn dng kin thc hc ca mnh tr li
cc cu hi trc khi xem kt qu v gii thch ca n c ph hp khng.
+ Sau khi thi: cn g hnh phc bng vic ta vt bao nhiu gian kh, tn
thi gian tin bc, gi y mnh t c ci mnh mun ri. C mt cu m
ti thng hay nghe cc bn ni mi ln thi xong l nhu thi, hy vng
hai t s lun c vang ln mi khi cc bn thi xong.
rommon 2 >reset
router>
6.
router>enable
router#copy startup-config running-config
7.
router>enable
router#show startup-config
8. t li password mi:
router#config term
router(config)#enable secret newpassword
router(config)#enable password newpassword
router(config)#line con 0
router(config-line)#login
router(config-line)#password newpassword
router(config)#line aux 0
router(config-line)#login
router(config-line)#password newpassword
router(config)#line vty 0 4
router(config-line)#login
router(config-line)#password newpassword
router#config term
router(config)#config-register 0x2102
router(config)#exit
router#copy running-config startup-config
router#show version
Cisco Internetwork Operating System Software
IOS (tm) C2600 Software (C2600-DO3S-M), Version 12.0(5)T1, RELEASE
SOFTWARE (fc1)
Copyright (c) 1986-1999 by cisco Systems, Inc.
Compiled Tue 17-Aug-99 13:18 by cmong
Image text-base: 0x80008088, data-base: 0x80CB67B0
ROM: System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1)
1 FastEthernet/IEEE 802.3 interface(s)
2 Low-speed serial(sync/async) network interface(s)
32K bytes of non-volatile configuration memory.
8192K bytes of processor board System flash (Read/Write)
>o/r 0x2142 (lower case of the letter O for o/r and zero for 0x2142)
4. Reboot router
>i
router>
6. Vo enable mode
router>enable
router#copy startup-config running-config
7. Thc hin cc lnh show running-config or show startup-config
router#show startup-config
8.
router#config term
router(config)#enable secret newpassword
router(config)#enable password newpassword
router(config)#line con 0
router(config-line)#login
router(config-line)#password newpassword
router(config)#line aux 0
router(config-line)#login
router(config-line)#password newpassword
router(config)#line vty 0 4
router(config-line)#login
router(config-line)#password newpassword
router#config term
router(config)#config-register 0x2102
router#copy running-config startup-config
11. Kim tra thanh ghi c gi tr l 2102 bng lnh show version
router#show version
Cisco Internetwork Operating System Software
IOS (tm) 2500 Software (C2500-D-L), Version 12.0(4), RELEASE
SOFTWARE
(fc1)
Copyright (c) 1986-1999 by cisco Systems, Inc.
ROM: System Bootstrap, Version 5.2(8a), RELEASE SOFTWARE
BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(8a),
RELEASE
SOFTWARE (fc1)
1 Ethernet/IEEE 802.3 interface(s)
2 Serial network interface(s)
1 ISDN Basic Rate interface(s)
32K bytes of non-volatile configuration memory.
8192K bytes of processor board System flash (Read ONLY)
Configuration register is 0x2142 (will be 0x2102 at next reload)
Bi 23:
Cc khi nim routing c bn
2. Per destination: ch c packet u tin thc hin theo qui trnh trn. tt c cc
packet cn li s dng kt qu c lu trong cache. bng routing-table s
khng c tham kho cho cc packet sau. Ch mc nh ca router l fast-
switching. Bn c th chuyn sang process-switching bng lnh no ip route-
cache.
1. AS ( Autonomous System):
Cho php vic truyn packet n mt network ch din ra trn hai hoc
nhiu ng i khc nhau.
4. Metric:
5. Passive interface:
6. Redistribution:
7. Route flapping:
8. Static route:
Chc nng routing chu trch nhim hc cc hnh dng logic ca mng v
sau ra quyt nh da trn kin thc . Cc quyt nh c thc hin bi
router s xc nh khi no th mt gi tin i vo c th c route v nu nh
vy, s c route nh th no. Khi mt gi tin c nhn, qu trnh nh
tuyn s tri qua vi bc. Cc bc ny c th tm tt trong cc cu hi nh
sau:
- Giao thc routed v giao thc routing cho gi tin (thuc v giao thc ) c
c ci t trn router hay khng?
- Nu c ci t, c mt ng i no cho mt h thng mng xa tn ti trong
bng nh tuyn hay khng?
- Nu mng ch l khng c trong bng nh tuyn, c tuyn ng mc nh
no c cu hnh hay khng?
- Nu c mt tuyn ng mc nh tnh hoc ng, a ch ch c n c
khng?
- ng i tt nht v mt mng no l nh th no?
- C nhiu ng i c chi ph bng nhau hay khng?
- Nu c nhiu ng i c chi ph bng nhau, interface no s c dng
y gi i ra.
Chc nng switch lin quan n vic di chuyn d liu trn mt router. Chc
nng ny s chu trch nhim chuyn gi tin. Switching ch c thc hin sau
khi nhng quyt nh v routing c thc hin. Mc d router ra quyt
nh, vn cn mt vi quyt nh phi thc hin bng phn cng. Chc nng
switching ny thc hin nhng vic sau:
-------------------------------------------
Bi 25:
TCP: qu trnh thit lp kt ni v hy kt ni
Cc kt ni TCP v cc cng
Hai ng dng dng TCP phi thit lp mt kt ni TCP trc khi d liu c th
c truyn. Mi kt ni s tn ti gia mt cp TCP sockets vi socket c
nh ngha nh l mt kt hp ca a ch IP, cng c dng, giao thc lp
transport. Qu trnh thit lp kt ni, khi to socket bao gm gi tr cng
ngun v cng ch, ch s tun t v ACK. Hnh 6-2 m t tin trnh bt tay ba
ln trong thit lp TCP v qu trnh hy mt kt ni TCP.
Trong qu trnh thit lp kt ni, hai host s chn la cng, chn la ch s tun
t sequence-number v dng cc ch s ca TCP nhn ra thng ip trong
qu trnh bt tay ba chiu. u tin, i vi vn cng, bn server phi lng
nghe cc yu cu kt ni t client, trong trng hp ny l cng 80. Pha client
s chn mt cng cha dng lm source port, thng l gi tr 1024 hoc ln
hn. Lu rng khi so snh cc segment trong tin trnh trn, gi tr port l
khng i.
thc hin qu trnh khi phc li, TCP s gi cc cng nhn ACK khi nhn
c d liu. Khi d liu gi i khng c ACK, bn gi c th gi li d
liu. Hnh di y m t tin trnh mt web server gi ra 1000-bytes trong
khi segment th hai b mt, d liu s c khi phc li.
V d trn m t mt tin trnh khi phc li trong bn gi (my web) nhn
c mt ACK trong ch ra rng mt segment b mt. Lu rng trng
ACK s ch ra byte mong i k tip- ch khng phi l byte nhn c cui
cng. Cng lu rng trng ACK v trng sequence ch ra s bytes, ch
khng phi ch ra TCP segment. Bn my gi s gi ra mt b nh thi timers,
da trn gi tr TCP Measured Round Trip Time (MRTT) sao cho nu mt
ACK l khng nhn c, my gi s gi li tt c nhng d liu khng c
cng nhn m khng ch cho bn my nhn gi mt yu cu truyn li.
----------------------------------------------
Bi 26:
Dng a ch ca IPv6
4021:0000:240E:0000:0000:0AC0:3428:121C
trnh nhm ln, li v cc trng thi phc tp khng cn thit, cc lut sau
s c xc nh:
V d a ch 4021:0000:240E:0000:0000:0AC0:3428:121C c th c vit
dng 4021:0:240E::0AC0:3428:121C
Tm tt a ch (Address Aggregation)
Bi 27:
Gii thiu v WinPCap
nh ngha:
Thu thp nhng gi d liu th, mt l ngay trn chnh my ang chy truyn
d liu i v mt l s trao i bi nhng my khc trn mi trng chia s.
Lc gi d liu theo nhng lut ca ngi dng trc khi chng c truyn
ti ng dng
Cu trc ca winpcap
Packet.dll:
cung cp mt API mc thp (application program interface) truy xut trc tip
ti trnh iu khin, c lp vi h iu hnh microsoft. S cung cp cc chc
nng sau:
Wpcap:
cung cp mt tp cc chc nng bt gi mc cao m n tng thch vi libpcap
(dng trn linux), m n hot ng c lp vi phn cng mng v h iu
hnh. Source wpcap.dll (nm trong th mc wincap)
Hot ng quan trng nht ca NPF l capture gi. B iu khin pht hin gi
trn NIC v phn phi chng nguyn vn n ng dng ngi dng.
--------------------------------------------
Bi 28:
wireless cho ngi mi bt u
C bn v Wireless LAN
Gii thiu
C bn v mng khng dy
Nhng thit b Ethernet dng dy phi truyn v nhn cc Ethernet frame theo
phng thc Carrier Sense Multiple Access/Collision Detect (CSMA/CD).
Theo , trn mt phn on mng dng chung, khi cc my PC truyn thng
theo ch half duplex, tng PC c th ni chuyn t do vi nhau trc, v
sau b xung t hay cn gi l ng (collision) nu cc thit b khc cng
ang ni chuyn. Ton b tin trnh pht hin xung t (collision) da trn vic
cc kt ni c dy c mt chiu di ti a v c mt tr ti a khi mt frame
i t mt u ca phn on mng ny n mt u kia ca phn on. Khi h
tng mng l dng chung, bt k mt tn hiu in ny cng c truyn dn
trn ng dy cng c th xung t vi mt tn hiu ca mt thit b khc.
Khi hai hoc nhiu Ethernet frame chng lp ln ng truyn mt thi im
no , collision xy ra. Collision s dn n cc li bit v mt frame (bit
error).
Bi 29:
Trnh nghn trong mng khng dy WLAN
Khi hai hoc nhiu trm khng dy cng truyn mt thi im, tn hiu tr
thnh b nhiu. My trm bn pha nhn ch c th nhn kt qu nh nhng d
liu rc, nhiu hay b li. Tht ra, khng c mt cch thc r rng xc nh
l xung t collision xy ra. Ngay c vi my truyn ang gy ra xung t
cng khng nhn ra, v lc phn nhn ca n phi tt i. c mt c ch
phn hi hiu qu, trong mng khng dy, bt c khi no mt trm truyn i
mt frame, bn trm nhn phi gi mt frame ACK xc nhn l frame
c nhn chnh xc, khng b li.
Bn cnh thng s thi gian nu trn, cc trm khng dy cng phi trin khai
mt b nh thi ngu nhin. Trc khi truyn mt frame, my tnh phi
chn mt s ngu nhin time slot phi ch. Con s ny s nm trong khong t
zero n kch thc ti a ca s cnh tranh. tng c bn ca cch lm ny
l khi mt my mun truyn, mi my s ch mt khong thi gian ngu nhin,
gim s trm c gng truyn ng thi cng lc.
Ton b tin trnh ny c gi l chc nng phi hp phn phi. Chc nng
ny c m t trong hnh di y. Ba ngi dng wireless c cng mt
frame phi truyn cc khong thi gian khc nhau. Mt chui cc s kin sau
s xy ra:
-------------------------------------
Bi 30:
Cc khi WLAN trong mng campus
Chun 802.11 cho php hai hoc nhiu cc thit b khng dy giao tip trc
tip vi nhau m khng cn thm bt k phng tin hay thit b no khc. M
hnh mng ny c gi l m hnh mng ad-hoc, hoc cn gi l tp hp cc
dch v c bn c lp (Independent Basic Service Set IBSS). M hnh c
m t trong hnh v bn di:
Khng c mt cch kim sot c nh vi s thit b c th truyn v nhn trn
mt h tng khng dy. Ngoi ra, c nhiu thng s c th nh hng n vic
mt my trm c th truyn hoc nhn n cc my trm khc. iu ny khin
cho vic to ra mt kt ni tin cy n tt c cc trm khc tr nn kh khn.
Bi 31:
Hot ng ca AP
Ngoi ra, AP c th kim sot nhiu kha cnh ca phm vi mng khng dy
ca n bng cch yu cu mt s iu kin phi c p ng trc khi my
trm c th kt ni vo. V d, AP c th yu cu my client h tr mt tc
truyn d liu c th, p ng cc bin php bo mt v cc yu cu xc thc
trong qu trnh kt hp.
Bn c th ngh mt AP l mt thit b bt cu, trong frame t cc phng
tin, h tng khc nhau s c chuyn i v chuyn i lp 2. Ni mt cch
n gin, mt AP s chu trch nhim nh x mt vlan vo mt SSID.
Trong phn bn tri ca s trn minh ha cho tnh hung ta mun m rng
vlan 10 ra mt AP, dng mt cng ca switch ch access. AP sau s
nh x vlan 10 sang mng wireless dng SSID l marketing. Cc ngi dng
kt hp vi SSID marketting s c cc my khc xem nh ang kt ni
vo vlan 10.
Khi nim ny c th c m rng nhiu vlan c nh x vo nhiu
SSID. lm c iu ny, AP phi kt ni n switch thng qua kt ni
trunk trong mang nhiu vlan. Trong phn bn phi ca hnh trn, vlan 10 v
vlan 20 u c trunk n AP. AP dng 802.1q rng buc vlan vi SSID.
V d, vlan 10 c nh x n SSID marketing trong khi vlan 20 th nh x
n SSID Engineering.
Bi 32:
Wireless LAN cells
---------------------------------------
Bi 33:
Mt s phng thc cp nht bng nh tuyn
Tm tt a ch (Address Aggregation)
T ng cu hnh (Autoconfiguration)
Ti cu hnh a ch (Renumbering)
Bo mt (Security)
Bi 35:
Bo mt lp 2
* Cu hnh xc thc VTP ch ton cc cho tng switch ngn nga kiu
tn cng DOS.
cdp run
int fa0/0
no cdp enable
Lnh switchport mode access ngn nga port khng tr thnh trunking v lnh
switchport nonegotiate ngn nga bt k thng ip no ca DTP c gi hay
nhn.
Hai lnh cui cng bt tnh nng Root Guard v BPDU Guard trn tng cng.
BPDU cng c th c bt trn tt c cc cng bng tnh nng PortFast. Tnh
nng ny c cu hnh bng lnh ch ton cc spanning-tree portfast
bpduguard enable.
hin thc tnh nng port security, switch s thm vo vi bc trong tin
trnh x l bnh thng ca cc frame i vo. Thay v t ng thm vo bng
MAC a ch MAC ngun v s cng, switch xem xt cu hnh port security v
s quyt nh n c cho php a ch khng. Bng cch ngn nga cc a
ch MAC khi vic thm vo switch, port security c th ngn nga khng y
frame v cc a ch MAC trn mt cng.
------------------------------------------------------
Bi 36:
Mt s tnh nng nng cao ca NAT
T kha extendable:
T kha extandable cho php ngi dng cu hnh vi lut chuyn i khng
r rng, v d nh cc lut c cng a ch local v global.
To ra cc tn cho cc dy a ch:
ip nat translation ?
icmp-timeout Specify timeout for NAT ICMP flows
syn-timeout Specify timeout for NAT TCP flows after a SYN and no further data
Gii hn s lng NAT sessions:
-----------------------------------------------
Bi 37:
Cch xem thng tin bng nh tuyn
Parent and child routes ( level 1 parent route and level 2 route)
Khi mt mng c chia subnet c add vo bng nh tuyn, tuyn ng ny
c phn thnh 2 cp: parent route v child route hay cn c gi parent
route cp 1(level 1 parent route) v route cp 2.
Level 1 parent route: l a ch classfull khng mang thng tin v a ch IP
next-hop hay exit interface. (xem tip bn di)
Level 2 route: L tuyn ng ch ra mng con ca a ch mng chnh
Nh trong hnh 4
M hnh lab.
Bng nh tuyn trn router 2.
-------------------------------------------
Bi 38:
TNG QUAN V IP VERSION 6
7- C kh nng m rng d dng thng qua vic cho php to thm Header
ngay sau Ipv6 Packet Header
Chng ta c thm tham kho 1 Bng so sng gia IPv6 Packet v IPv4 packet
sau :
IPv4 IPv6
Source and destination Source and destination addresses are 128 bits
addresses are 32 bits (4 bytes) (16 bytes) in length. For more information, see
in length. IPv6 Addressing.
IPsec support is optional. IPsec support is required. For more
information, see IPv6 Header.
No identification of packet Packet flow identification for QoS handling by
flow for QoS handling by routers is included in the IPv6 header using the
routers is present within the Flow Label field. For more information, see
IPv4 header. IPv6 Header.
Fragmentation is done by Fragmentation is not done by routers, only by
both routers and the sending the sending host. For more information, see
host. IPv6 Header.
Header includes a checksum. Header does not include a checksum. For more
information, see IPv6 Header.
Header includes options. All optional data is moved to IPv6 extension
headers. For more information, see IPv6
Header.
Address Resolution Protocol ARP Request frames are replaced with
(ARP) uses broadcast ARP multicast Neighbor Solicitation messages. For
Request frames to resolve an more information, see Neighbor Discovery.
IPv4 address to a link layer
address.
Internet Group Management IGMP is replaced with Multicast Listener
Protocol (IGMP) is used to Discovery (MLD) messages. For more
manage local subnet group information, see Multicast Listener
membership. Discovery.
ICMP Router Discovery is ICMP Router Discovery is replaced with
used to determine the IPv4 ICMPv6 Router Solicitation and Router
address of the best default Advertisement messages and is required. For
gateway and is optional. more information, see Neighbor Discovery.
Broadcast addresses are used There are no IPv6 broadcast addresses. Instead,
a link-local scope all-nodes multicast address
to send traffic to all nodes on
a subnet. is used. For more information, see Multicast
IPv6 Addresses.
Must be configured either Does not require manual configuration or
manually or through DHCP. DHCP. For more information, see Address
Autoconfiguration.
Uses host address (A) Uses host address (AAAA) resource records in
resource records in the the Domain Name System (DNS) to map host
Domain Name System (DNS) names to IPv6 addresses. For more
to map host names to IPv4 information, see IPv6 and DNS.
addresses.
Uses pointer (PTR) resource Uses pointer (PTR) resource records in the
records in the IN- IP6.ARPA DNS domain to map IPv6 addresses
ADDR.ARPA DNS domain to host names. For more information, see IPv6
to map IPv4 addresses to host and DNS.
names.
Must support a 576-byte Must support a 1280-byte packet size (without
packet size (possibly fragmentation). For more information, see
fragmented). IPv6 MTU.
II- A CH IPv6
Vd-1 : 2001:0DB8:0000:2F3B:02AA:00FF:FE28:9C5A
(1) (2) (3) (4) (5) (6) (7) (8)
Vd-3 : a ch = FE80:0:0:0:2AA:FF:FE9A:4CA2
C th vit li = FE80::2AA:FF:FE9A:4CA2
Ch thch :
a- Unicast
Unicast Address dng nh v mt Interface trong phm vi cc Unicast
Address. Gi tin (Packet) c ch n l Unicast Address s thng qua Routing
chuyn n 1 Interface duy nht
b- Multicast
Multicast Address dng nh v nhiu Interfaces. Packet c ch n l
Multicast Address s thng qua Routing chuyn n tt c cc Interfaces c
cng Multicast Address
c-Anycast
Anycast Address dng nh v nhiu Interfaces. Tuy vy, Packet c ch n
l Anycast Address s thng qua Routing chuyn n mt Interfaces trong
s cc Interface c cng Anycast Address, thng thng l Interface gn nht
(khi nim Gn y c tnh theo khong cch Routing)
LLA l a ch IPv6 dng cho cc Nodes trong cng Link lin lc vi nhau
(tng t cc a ch IPv4 = 169.254.X.X). Phm vi s dng ca LLA l trong
cng Link (do vy c th b trng lp trong cc Link)
Khi dng HH Windows, LLA c cp t ng vi cu trc nh sau :
(*) Ch thch
Address%Zone_ID
Vi cu trc ny, ULA s tng t GUA v khc nhau phn Prefix nh sau :
IPv6 - Interface ID
Nhng con bin [ABR: area border router] nm gia nhiu bin c bn
topology cho nhiu vng khc nhau. N ch gi tuyn route summary t
area khc ra cho area0 [backbone].
Area ID
Authentication
Networkmask [subnet mask phi ging nhau]
HelloInterval, DeadInterval timer [trong mi trng broadcast l hello
10, v Nonbroadcast l 40. DeadInterval gp 4 ln hello]. Sau thi gian
dead m khng nhn c hello th b neighbors.
C stub
V mt s option cu hnh trn interface nhn vo gi hello.
1.Down state
Hai router mi gn vo v cu hnh th trng thi Down state
[router khng nhn c thng tin t router cn k]
2. Init State
Ch c 1 router gi gi tin hello v router kia nhn c nhng cha bit router
ID ca chnh n nn ch l 1 chiu. [one way]
3. Two-way state
1 router gi c router ID ca n, router kia nhn c v hi p li vi router
ID ca n. trong trng thi ny nu mi trng Ethernet [hay cn gi l
multiaccess, hoc broadcast] cng bu chn lun DR v BDR.
Cu hi:
Trong khi cu hnh DHCP Relay th cu lnh IP helper address A.B.C.D(a
ch ca con DHCP) ch tc dng trong kt ni Ethernet(FastEthernet), cn
trong kt ni Serial th khng c?
V khi cu hnh DHCP client trn Router, mnh cu mnh trn cng Ethernet
th n support cn trong kt ni Serial th li khng nh?.
Tr li:
Cu tr li cho vn ny l cp IP cho client th DHCP server cn bit
MAC ca client n c th lu trong c s d liu ca n. Sau ny nu client
c xin IP cng da vo bng ny m cp pht li IP cho client.
-------------------------------------------------
Bi 40:
BO MT MNG WLAN
- Server m ha key tp trung cho php t ng sinh key theo tng gi tin (per-
packet), tng phin lm vic (per-session) ty thuc vo ci t ca nh sn
xut. Vic phn pht WEP key theo per-packet s sinh ra mt WEP key mi
cho c 2 u kt ni i vi tng gi tin c truyn i, trong khi per-session
s dng WEP key mi cho mi phin lm vic gia cc node. Ch l vic s
dng per-packet s ngn nhiu bng thng mng hn l per-session.
2.3 S dng WEP:
- Khi WEP c khi to, phn d liu ca gi tin truyn s c m ha, tuy
nhin, mt phn header ca gi tin (bao gm MAC address) l khng c m
ha. Tt c nhng thng tin lp 3 bao gm a ch ngun, a ch ch u c
m ha bi WEP. Khi mt AP gi ra mt Beacon trong mng WLAN s dng
WEP, Beacon ny cng khng c m ha. Hy lu l Beacon khng cha
thng tin lp 3 no.
- Khi cc gi tin c gi s dng m ha WEP, nhng gi tin phi c
gii m mi c th s dng c. Vic gii m ny lm tiu tn ti nguyn
CPU v gim hiu qu bng thng trn WLAN i khi l rt ng k. Mt s
nh sn xut ci t thm CPU vo AP ca h nhm mc ch thc hin m
ha v gii m WEP. Nhiu nh sn xut ci t m ha v gii m WEP bng
phn mm v s dng chung CPU cho vic qun l AP, truyn gi tin
Nhng AP ny s b nh hng ln nu nh c s dng WEP. Bng vic ci
t WEP trong phn cng th c v nh l AP s duy tr c bng thng 5
Mbps (hay nhiu hn) khi WEP c s dng. im bt li ca gii php ny
l n lm tng chi ph cho cc AP cp cao.
- WEP c th c trin khai nh l mt c ch bo mt c bn nhng nh
qun tr mng cn phi bit nhng yu im ca WEP v cch khc phc
chng. Admin cng nn bit rng mi nh sn xut khc nhau s ci t WEP
khc nhau lm cho vic s dng sn phm ca nhiu nh sn xut khc nhau
gp kh khn.
3. Advantage Encryption Standard (AES):
- AES t c mt s chp nhn nh l mt s thay th xng ng cho
thut ton RC4 c s dng trong WEP. AES s dng thut ton Rijndale
c chiu di key ln lt l 128 bit, 192 bit v 256 bit
- AES c xem nh l khng th crack c bi hu ht cc chuyn gia
mt m v National Institute of Standard and Technology (NIST) chn
s dng AES cho chun x l thng tin lin bang (FIPS = Federal
Information Processing Standard). Nh l mt phn ca n lc ci tin
chun 802.11, ban lm vic 802.11i xem xt s dng AES trong phin
bn WEPv2
- AES c thng qua bi nhm lm vic 802.11i s dng trong WEPv2
s c ci t trong firmware v software bi cc nh sn xut. AP
firmware v Client firmware (PCMCIA card) s phi nng cp ln c th
h tr AES. Cc phn mm trn client (driver v ng dng) s h tr cu
hnh AES vi key b mt.
Bi 41:
CC KIU TN CNG TRN MNG WLAN
2. Active Attack:
- Hacker c th tn cng ch ng (active) thc hin mt s tc v trn
mng. Mt cuc tn cng ch ng c th c s dng truy cp vo server
v ly c nhng d liu c gi tr hay s dng ng kt ni Internet ca
doanh nghip thc hin nhng mc ch ph hoi hay thm ch l thay i
cu hnh ca h tng mng. Bng cch kt ni vi mng khng dy thng qua
AP, hacker c th xm nhp su hn vo mng hoc c th thay i cu hnh
ca mng. V d, mt hacker c th sa i thm MAC address ca hacker
vo danh sch cho php ca MAC filter trn AP hay v hiu ha tnh nng
MAC filter gip cho vic t nhp sau ny d dng hn. Admin thm ch
khng bit c thay i ny trong mt thi gian di nu nh khng kim tra
thng xuyn.
- Mt s v d in hnh ca active attack c th bao gm cc Spammer hay cc
i th cnh tranh mun t nhp vo c s d liu ca cng ty bn. Mt
spammer (k pht tn th rc) c th gi mt lc nhiu mail n mng ca gia
nh hay doanh nghip thng qua kt ni khng dy WLAN. Sau khi c c
a ch IP t DHCP server, hacker c th gi c ngn bc th s dng kt ni
internet ca bn m bn khng h bit. Kiu tn cng ny c th lm cho ISP
ca bn ngt kt ni email ca bn v lm dng gi nhiu mail mc d
khng phi li ca bn.
1. WEP:
- Khng nn ch da vo WEP cho d bn ci t mt gii php bo mt tt
n th no i na. Mt mi trng khng dy ch c bo v bi WEP l
mt mi trng hon ton khng an ton. Khi s dng WEP, khng nn s
dng WEP key c lin quan n SSID hay cng ty. Hy to ra mt WEP key
kh nh v kh nhn bit c. Trong nhiu trng hp, WEP key c th on
ra m ch cn nhn vo SSID hay tn ca cng ty. WEP ch nn c s dng
gim nhng nguy c nh nghe trm tnh c ch khng nn l mt gii php
bo mt duy nht.
4. S cn thit ca bo mt:
- Hy chn la mt gii php bo mt thch hp vi nhu cu v ngn sch ca
cng ty cho c hin ti ln tng lai. Mng WLAN c c s ph bin nhanh
nh vy l do tnh d ci t ca chng. Gi s mt mng WLAN bt u vi
mt AP v 5 ngi dng c th pht trin nhanh chng ln 15 AP v 300 ngi
dng trn ton b campus ca cng ty. V th, c ch bo mt s dng cho 1
AP khng cn thch hp na khi s lng ngi dng tng ln n 300 ngi.
Cng ty c th lng ph tin bc vo cc gii php bo mt m c th nhanh
chng b li thi khi WLAN pht trin. Trong nhiu trn hp, cc cng ty
c sn IDS (Intrusion Detection System), firewall hay RADIUS servaer, khi
quyt nh la chn gii php bo mt khng dy th hy tn dng nhng thit
b c sn gim chi ph xung thp nht c th.
8. Wireless DMZ:
Mt tng khc trong bo mt mng WLAN l to ra mt vng phi qun s
khng dy (WDMZ = Wireless Demilitarized Zone). Vic to ra nhng
WDMZ ny s dng Firewall hay Router c th tn km ty thuc vo mc
ca vic ci t. WDMZ thng c ci t nhng mi trng WLAN
trung bnh v ln. V AP l mt thit b khng an ton v khng ng tin v th,
chng nn c cch ly khi nhng on mng khc bng mt Firewall.
- Cc wireless network admin thng hay tt tnh nng qung b Service Set
Identifier (SSID) trn Access Point (AP) hay router nhm mc ch bo mt.
Thm ch mt ngi khi bit ni c th truy nhp mng khng dy th h
vn khng th kt ni c nu h khng bit SSID.
- V vy, vic lm n SSID bng cch tt tnh nng qung b SSID c th ngn
chn vic truy nhp tri php vo mng. Tuy nhin, ng iu ny nh la
nhn thc v bo mt ca bn. Mt ngi vi thit b cn thit vn c th d
dng ly c SSID ca mng.
- Theo cu hnh mc nh, cc beacon c gi bi AP hay router s cha cc
SSID thng bo cho cc client trong vng ca mnh. Cc SSID ny c
hin th trong Windows XP nh l cc mng sn c. Tuy nhin, khi tt tnh
nng qung b SSID th beacon s khng cha SSID na, iu ny s ngn
chn vic hin th mng trong Windows XP. Nu n c s dng vi cc
phng thc m ha khc th c th gip bo v mng ca bn.
3. Cc iu cn nh:
- Vic b tnh nng qung b SSID ch c th gip bo v mng ca bn bng
cch n n trc nhng ngi dng bnh thng.
- S dng tnh nng n SSID khng c ngha l bn khng cn cn n WAP
hay WPA bo mt mng.
- Cc cng c pht hin v phn tch lun lun sn c bt c khi no, cho d
bn c s dng phng php bo mt no i na.
Bi 44:
CHNH SCH BO MT CHO DOANH NGHIP S DNG WLAN
2. Physical Security:
- Mc d physical secirity l rt quan trng i vi mng c dy truyn thng
nhng n li cng quan trng hn i vi nhng cng ty c s dng cng ngh
WLAN. V hacker c th khng cn phi trong ta nh mi c th kt ni vo
mng c m ch cn ngoi ng hay bi u xe l . Thm ch nhng
phn mm pht hin xm nhp l khng ngn chn cc hacker nh cp
nhng thng tin nhy cm. Tn cng b ng khng h li du vt no trn
mng bi v hacker khng tht s kt ni vo mng m ch lng nghe. Hin nay
c nhng ng dng c th lm cho card mng hot ng trong ch hn hp
(promiscuous mode) cho php truy cp d liu m khng cn phi thit lp kt
ni.
- Khi WEP l gii php bo mt duy nht trong mng WLAN th bn nn kim
sot chc ch nhng user ang s dng thit b khng dy thuc s hu ca
cng ty, chng hn nh khng cho php h mang nhng thit b ra khi
cng ty. V WEP key c lu tr trong firmware ca thit b, v th thit b i
n u th im yu nht ca mng nm . Admin nn bit ai, u v khi
no cc PC card b em ra khi cng ty.
- Admin nn bit mt iu l WEP bn thn n khng phi l mt gii php
bo mt an ton. Thm ch vi vic kim sot chc ch nh trn nhng khi card
b nh ri hay lm mt th ngi s dng phi c trch nhim bo co s mt
mt ngay lp tc cho admin admin c th a ra mt s bin php ngn
nga cn thit. y, admin c th thit lp li MAC filter hay thay i WEP
key
- Vic thng xuyn tm kim quanh cng ty pht hin nhng hnh ng
kh nghi l mt cch hiu qu gim nhng nguy c tim n. Nhn vin bo
v nn c hun luyn nhn bit c nhng phn cng 802.11 l v cnh
bo cho cng ty tm kim nhng k ph hoi ang n np u trong ta
nh.
- Vic s dng QoS u tin traffic ca 802.1X RADIUS khng gii quyt
c ht mi vn lin quan n vic xc thc t xa. Cc vn sau vn lun
tn ti:
+ Khng c dch v WAN (WAN outage)
+ tr ca WAN
- Nu kt ni WAN b t th trm client khng th truy cp vo WLAN cng
nh ti nguyn cc b. Vi kt ni WAN c tr rt cao nh v tinh cng c
nhng nh hng xu n qu trnh xc thc v n c th lm cho vic xc thc
b time out lm cho hiu nng hot ng ca station b gim st nghim trng.
Kt lun:
- Quyt nh ca bn khi trin khai mng WLAN l iu quan trng ti u
mng WLAN:
+ Kiu ngi dng no s s dng WLAN? (c tnh di ng cao hay ch thnh
thong)
+ Kiu ng dng no m nhng ngi dng ny s s dng trong WLAN?
-Mc d 2 cu hi ny l rt c bn v hu nh bn thn n t gii thch
nhng chng vn thng b b qun trong lc trin khai. Chng l nn tng cho
vic tit kim chi ph trong sut qu trnh trin khai, chnh l trong vic la
chn kiu trin khai coverage-oriented hay capacity-oriented.
- Mt khi bn chn c kiu trin khai th vic bit c cc cng c
thc hin site survey cng nh cc trng hp site survey thc t c th gip
bn tit kim thi gian v tin bc cho mt cng vic nhm chn v tn thi
gian. Ngy nay, site survey l mt cng vic th cng c ngha l ngi kho
st s phi thc hin tt c cc o t cng nh tnh ton. Cng vi s pht
trin ca WLAN th cc cng c qun l cng gip t ng mt s tin trnh
ny.
----------------------------------------
Bi 46:
CC CNG NGH CNH TRANH VI WLAN
C nhiu cng ngh cnh tranh vi cc chun 802.11. Khi nhu cu kinh doanh
thay i v cng ngh c ci tin th vn lin tc c nhiu chun mi
c to ra h tr cho th trng. y chng ta xt nhng cng ngh sau:
+ HomeRF
+ Bluetooth
+ Infrared
+ OpenAir
1. HomeRF
- HomeRF hot ng trong bng tn 2.4 Ghz v s dng cng ngh nhy tn
(frequency hopping). Cc thit b HomeRF nhy khong 50 hop trong mt giy
khong 5 n 20 ln nhanh hn cc thit b 802.11 FHSS. Phin bn mi l
HomeRF 2.0 s dng quy tc nhy tn bng rng (wide band) mi c ph
chun bi FCC. Hy nh li cc quy tc sau c p dng sau ngy 31/8/2000:
+ Tn s sng mang rng ln nht l 5 Mhz
+ t nht l 15 hop trong mt chui nhy (hop sequence)
+ Cng sut pht ti a l 125 mW.
- Bi v HomeRF cho php tng tn s sng mang v rt linh hot trong
vic ci t nn c ngi ngh rng nhy tn bng rng s ph bin. Tuy
nhin, iu ny khng xy ra. Mc d c thun li v mt tc (10
Mbps) nhng vn khng b c nhng bt li v gii hn cng sut pht
125 mW. iu ny gy ra gii hn vic nhy tn bng rng ch trong phm
vi 150 feet. Nhng gii hn ny lm cho cc thit b nhy tn bng rng
ch c s dng ch yu trong mi trng SOHO.
- HomeRF s dng giao thc SWAP, l mt s kt hp gia CSMA v
TDMA. SWAP l mt s lai ti gia 802.11 v chun DECT v c
pht trin bi nhm lm vic HomeRF. Cc thit b HomeRF l cc thit b
duy nht trn th trng hin ti vn cn s dng cc quy tc nhy tn bng
rng. Cc thit b HomeRF c xem l bo mt hn 802.11 trong vic s
dng WEP bi v HomeRF s dng 32 bit IV thay v ch 24 bit nh trong
802.11. Hn na, HomeRF ch nh cc IV c chn nh th no trong
qu trnh m ha. 802.11 khng c qu trnh ny nn n rt d b tn cng.
2. Bluetooth
- Bluetooth l mt cng ngh nhy tn khc hot ng trong bng tn 2.4 Ghz
ISM. T l nhy ca cc thit b Bluetooth khong 1600 hop trong mt giy (c
dwell time khong 625 uS) v th chng c chi ph nhiu hn ng k so vi h
thng nhy tn trong 802.11. T l nhy cao cng gip cho cng ngh khng c
tt hn vi nhiu bng hp. Cc h thng Bluetooth khng c thit k c
throughput cao nhng li rt n gin trong s dng, c cng sut thp v
khong cch ngn (WPAN). Chun IEEE 802.15 bao gm cc c t cho
Bluetooth.
- Mt im bt li ln nht trong vic s dng cng ngh Bluetooth l chng
dng nh ph hy hon ton cc mng 2.4 Ghz khc. Tc nhy cao ca
Bluetooth trong ton b bng tn 2.4 s dng c lm cho tn hiu Bluetooth
xut hin trong cc h thng khc nh l nhiu all-band (all-band interference).
Bluetooth cng nh hng n cc h thng FHSS khc. Nhiu all-band c
ngha l lm hng tn hiu trong ton b dy tn s c th s dng c.
Nhng l thay, nhiu ngc (counter-interference) (nhiu ca mng WLAN
gy ra cho Bluetooth) khng nh hng n cc thit b bluetooth mt cch
nghim trng nh l nhiu ca Bluetooth gy ra cho cc thit b WLAN.
- Cc thit b Bluetooth hot ng trong 3 lp cng sut: 1 mW, 2.5 mW v
100 mW. Hin ti th rt t thit b bluetooth s dng lp 3 (100 mW). Cc thit
b bluetooth lp 2 (2.5 mW) c phm vi hot ng ti a l 10 mt (33 feet).
Nu bn mun m rng vng hot ng th bn nn s dng anten nh hng.
Quote:
C2955 Boot Loader (C2955-HBOOT-M) Version 12.1(0.0.514), CISCO
DEVELOPMENT TEST
VERSION
Compiled Fri 13-Dec-02 17:38 by madison
WS-C2955T-12 starting...
Base ethernet MAC Address: 00:0b:be:b6:ee:00
Xmodem file system is available.
Initializing Flash...
flashfs[0]: 19 files, 2 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 7741440
flashfs[0]: Bytes used: 4510720
flashfs[0]: Bytes available: 3230720
flashfs[0]: flashfs fsck took 7 seconds.
...done initializing flash.
Ch i thy mn hnh hin ra :
Quote:
The system has been interrupted prior to initializing the flash file system to
finish
loading the operating system software:
flash_init
load_helper
boot
Nhn CTRL + Break
Quote:
switch:
G command :
Quote:
switch: flash_init
Initializing Flash...
flashfs[0]: 143 files, 4 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 3612672
flashfs[0]: Bytes used: 2729472
flashfs[0]: Bytes available: 883200
flashfs[0]: flashfs fsck took 86 seconds
....done Initializing Flash.
Boot Sector Filesystem (bs installed, fsid: 3
Parameter Block Filesystem (pb installed, fsid: 4
G command
Quote:
switch: load_helper
switch:
Tip tc ta g dir flash xem IOS trn switch
Switch>
Switch>en
Switch#
Sa file config li thnh file config.text nh lc u :
Quote:
Switch#rename flash:config.old flash:config.text
Destination filename [config.text]
Copy file password c ln xo, sa :
Quote:
Switch#copy flash:config.text system:running-config
Swpass#
Ta sa password xong, lu li , kt thc qu trnh recovery password :
Quote:
Sw1#write memory
Building configuration...
[OK]
----------------------------------------------------------
Bi 49:
---------------------------------------------------
Bi 51:
51.1.a. nh ngha
Access Point gi mo c dng m t nhng Access Point c to ra mt
cch v tnh hay c lm nh hng n h thng mng hin c. N c
dng ch cc thit b hot ng khng dy tri php m khng quan tm n
mc ch thc ca chng.