Tài liệu định tuyến

1oo ttoo vv Cisco RouterCisco Router

TTngng quanquan vv LAN/WANLAN/WAN GiGiii thithiuu vv Cisco RouterCisco Router CCcc thaothao ttcc ccuu hhnhnh Cisco RouterCisco Router MMtt ss vv dd mmuu

CCC NC NI DUNG CHI DUNG CHNHNH

xp-ne

twork

.com

2TTNGNG QUAN VQUAN V LAN/WANLAN/WAN

CCC KHC KHI NII NIM CHUNGM CHUNG

MM hhnhnh mmngng phph bibinn: Client : Client ServerServer MM hhnhnh peerpeer--toto--peer: peer: ddngng trongtrong nhnhngng mmngng nhnh

khngkhng cc ttii nguynnguyn ddngng chungchung DDchch vv mmngng: DNS, HTTP, FTP, POP3, SMTP, : DNS, HTTP, FTP, POP3, SMTP,

DHCP, PrintingDHCP, Printing HH iiuu hhnhnh mmngng (NOS): Windows NT Server, (NOS): Windows NT Server,

SCO Unix, AIX, HPSCO Unix, AIX, HP--UX, Sun Solaris, Linux, Novell UX, Sun Solaris, Linux, Novell NetwareNetware

xp-ne

twork

.com

3CCC THIC THIT BT B VV CNG NGHCNG NGH LANLAN

Hub: Hub: thithitt bb LAN LAN chchyy llpp 1, bandwidth 1, bandwidth ccaa Hub Hub cc chiachia ss chungchung chocho mmii ngngii nnii vvoo Hub.Hub.

Switch: Switch: thithitt bb LAN LAN chchyy llpp 2, 2, mmii ccngng ccaaSwitch Switch cc ccpp bandwidth bandwidth ringring khngkhng chiachia ss vviicccc ccngng khkhcc. . MMtt ss Switch Switch caocao ccpp cc thth chchyy llpp 3/43/4

MM hhnhnh LAN: LAN: ththngng ss ddngng mm hhnhnh Star, Star, trongtrong cccc mmyy trtrmm nnii ttpp trungtrung vv Hub/SwitchHub/Switch

CngCng nghngh VLAN (VLAN (mmngng LAN LAN oo): ): ddngng ttchchmmngng LAN LAN nhnhmm tngtng bboo mmtt vv hihiuu susutt ccaammngng

CCC THIC THIT BT B VV CNG NGHCNG NGH WANWAN

Router/Access Server: Router/Access Server: ddngng nnii cccc mmngng LAN LAN vvii nhaunhau, , tt ngngii ddngng xaxa ttii mmngng LAN, LAN, kkttnnii cccc VLAN VLAN vv ththcc hihinn cccc chchnhnh sschch bboo mmtttrntrn mmngng

WAN Switch: WAN Switch: ddngng ttoo cccc ddchch vv kktt nnii didinnrrngng

CCcc cngcng nghngh WAN: Leased line, Frame Relay, WAN: Leased line, Frame Relay, ATM, X.25, ISDN/PSTN dialATM, X.25, ISDN/PSTN dial--upup

xp-ne

twork

.com

4A CHA CH MMNGNG

giaogiao titipp vvii nhaunhau thth cccc mmyy ttnhnh vv thithitt bb mmngng phphiicc aa chch..

aa chch hihinn angang ss ddngng hihinn nay nay ll IPv4, IPv4, mmii aa chch ggmmcc 32 bit 32 bit gigi trtr, , chiachia ththnhnh 2 2 phphnn: : phphnn NetworkNetwork vv phphnnHost. Host. phnphn bibitt gigiaa 2 2 phphnn nnyy thth ss ddngng mmtt nnmmngng con (Subnet mask).con (Subnet mask).

PhPhnn Network Network ddngng nhnhnn bibitt llpp mmngng cc ss ddngng PhPhnn host host nhnhnn bibitt aa chch ccaa mmyy trongtrong llpp mmngng

VV dd:: IP: 192.168.100.1IP: 192.168.100.1 Subnet mask: 255.255.255.0Subnet mask: 255.255.255.0yy ll trtrmm llmm vivicc cc aa chch 192.168.100.1 192.168.100.1 thuthucc llpp mmngng192.168.100.0, 192.168.100.0, llpp mmngng nnyy cc thth chchaa 254 host 254 host cc gigi trtr tt192.168.100.1 192.168.100.1 nn 192.168.100.254192.168.100.254

GIGII THII THIU VU V CISCO ROUTERCISCO ROUTERxp-ne

twork

.com

5TTNG QUAN VNG QUAN V ROUTERROUTER

Router Router ll thithitt bb mmngng ddngng kktt nnii cccc mmngngLAN LAN khkhcc nhaunhau vvii nhaunhau. . CCcc mmngng LAN LAN nnyy ccthth ll LAN LAN oo ttii ccngng mmtt aa iimm hohocc ll LAN LAN vvtt ll ttii nhinhiuu iimm khkhcc nhaunhau

Router Router chiachia mmngng ththnhnh cccc segment (segment (phnphn oonn) ) khkhcc nhaunhau vv chchnn broadcast broadcast truytruynn gigiaa cccc mmngngnnyy nhnhmm mmcc chch ttii uu hhaa bngbng thngthng trntrn mmngng

NgoNgoii rara Router Router cncn ththcc hihinn chchnhnh sschch bboo mmtttrntrn mmngng vv hh trtr cccc ddchch vv khkhcc (Voice, Video, (Voice, Video, VPN, DHCP, NATVPN, DHCP, NAT))

CCC DNG CISCO ROUTERC DNG CISCO ROUTER

DngDng Cisco 1751Cisco 1751 DDngng Desktop (Desktop (khngkhng ggnn vvoo Rack)Rack) CC mmtt ccngng kktt nnii vvoo mmngng LAN LAN ttcc 10/100Mbps10/100Mbps CC 3 3 khekhe ccmm card card mm rrngng, 2 , 2 khekhe ccmm trongtrong ss cc thth ddngng

chocho cc Voice card Voice card vv WAN card, 1 WAN card, 1 khekhe ccmm cncn llii chch ddngng chochoVoice cardVoice card

BB nhnh DRAM: 32MB (DRAM: 32MB (nngnng ccpp ttii aa lnln cc 96MB)96MB) BB nhnh Flash: 16MB (Flash: 16MB (nngnng ccpp ttii aa lnln cc 32MB)32MB) ThThchch hhpp vvii mmngng chi chi nhnhnhnh vv mmngng nhnh

xp-ne

twork

.com

6CCC DNG CISCO ROUTER (C DNG CISCO ROUTER (titipp))

DngDng Cisco 3660 (Cisco 3660 (ggmm cc 2 2 ssnn phphmm ll 3661 3661 vv 3662)3662) DDngng Rack mountRack mount CC 01 01 ccngng ((ii vvii 3661) 3661) vv 02 02 ccngng ((ii vvii 3662) 3662) kktt nnii vvoo

mmngng LAN LAN ttcc 10/100Mbps10/100Mbps CC 6 6 khekhe ccmm module module mm rrngng, , tngtng ththchch nhinhiuu loloii Network Network

module, Service Module, VIC/WICmodule, Service Module, VIC/WIC BB nhnh DRAM: 32MB (DRAM: 32MB (nngnng ccpp ttii aa lnln cc 256MB)256MB) BB nhnh Flash: 16MB (Flash: 16MB (nngnng ccpp ttii aa lnln cc 64MB)64MB) HH trtr 2 2 ngungunn AC/DCAC/DC ThThchch hhpp vvii mmngng trungtrung tmtm tt ttii trtr ss chchnhnh

GIGII THII THIU VU V CISCO IOSCISCO IOS

Cisco IOS (Cisco IOS (InternetworkInternetwork Operating System) Operating System) ll phphnnmmmm nnmm trongtrong bb nhnh Flash Flash ccaa Router Router cungcung ccpp khkhnngnng vvnn hhnhnh router router cccc yuyu ccuu ccaa nhnh ququnn trtr

PhPhnn mmmm IOS IOS cc nhinhiuu Version Version khkhcc nhaunhau vv nhinhiuuloloii khkhcc nhaunhau nhnh loloii IP Standard, IP Plus, IP IP Standard, IP Plus, IP Firewall, IDS, MCM, Firewall, IDS, MCM, IPSecIPSec 56, 56, IPSecIPSec Triple DESTriple DES))

ChChngng tata cc thth thaythay ii, , nngnng ccpp IOS IOS tngtng thmthmttnhnh nngnng ccaa Router, Router, vivicc thaythay ii IOS IOS ss phph thuthuccvvoo llngng DRAM DRAM vv Flash Flash ccaa Router Router ii vvii yuyu ccuuccaa loloii IOS IOS ..

xp-ne

twork

.com

7CCC PHNG PHC PHNG PHP TRUY CP TRUY CP ROUTERP ROUTER

NhNh ququnn trtr cc thth truytruy ccpp vvoo Router Router thaythay ii ccuuhhnhnh, , kikimm tratra hohott ngng router, router, xx ll llii routerrouter theotheocccc ccchch sausau:: Console Console trtrcc titipp: : KKtt nnii ccngng COM COM ccaa PC PC vvii ccngng

Console Console trntrn Router. Router. yy ll phngphng phphpp phph bibinn nhnhttththngng ss ddngng ii vvii Router Router mmii cc ccuu hhnhnh llnn uu. . TuyTuy nhinnhin ii vvii phngphng phphpp nnyy nhnh ququnn trtr phphii ngngii ttiivv trtr tt router, router, khngkhng ddngng truytruy ccpp tt xaxa cc..

CCC PHNG PHC PHNG PHP TRUY CP TRUY CP ROUTER (P ROUTER (titipp))

Console Console giginn titipp qua qua ccngng AUX AUX ccaa Router: Router: NhNh ququnn trtr ccthth ss ddngng hhnhnh ththcc quay quay ss truytruy ccpp Console Console bbngng modem modem tt xaxa. . SauSau khikhi kktt nnii cc ththcc hihinn nhnh ququnn trtr cc thththaothao ttcc vvii Router Router gigingng nhnh console console trtrcc titipp. . PhngPhng phphppnnyy cc iimm thuthunn llii ll cc thth truytruy ccpp tt xaxa nhngnhng phphiitrangtrang bb modem modem vv line line iinn thothoii chocho Router.Router.xp-ne

twork

.com

8CCC PHNG PHC PHNG PHP TRUY CP TRUY CP ROUTER (P ROUTER (titipp))

Telnet qua Telnet qua mmngng IP: IP: cc ss ddngng kikimm tratra ccuu hhnhnhRouter Router tt xaxa. . ChCh ss ddngng cc phngphng phphpp nnyy khikhi ccuuhhnhnh aa chch cccc Interface Interface ccaa Router Router vv cccc interface interface nnyy uuhohott ngng tttt ttnhnh trtrngng Up/Up. Up/Up. uu iimm ccaa phngphng phphppnnyy ll nhnh ququnn trtr cc thth ngngii ttii bbtt cc vv trtr nnoo trntrn mmngngIP (IP (kk cc Internet) Internet) nnuu mmngng nnyy thngthng vvii mmngng ccaa Router Router truytruy ccpp vvoo RouterRouter

CCC THAO TC THAO TC CC CU HNHU HNHCISCO ROUTERCISCO ROUTERxp

-netw

ork.co

m

9CCC CHC CH DNG LDNG LNH TRONG ROUTERNH TRONG ROUTER

SauSau khikhi truytruy ccpp vvoo Router, Router, nhnh ququnn trtr cc thth ddngngcccc chch dngdng llnhnh thngthng ththngng cccc mmcc sausau:: Mode user: Mode user: ttii mmnn hhnhnh cc dduu nhnhcc Router>Router>, mode , mode nnyy

ddnhnh chocho nhnhngng ngngii ddngng bbnhnh ththngng, , cc thth xemxem ttnhnhtrtrngng line, line, xemxem ttnhnh trtrngng interface, interface, xemxem version IOS, version IOS, xemxem ccccphinphin telnettelnet nhngnhng khngkhng xemxem cc ccuu hhnhnh ccaa router router vvkhngkhng thaythay ii cc ccuu hhnhnh..

Mode privilege: Mode privilege: ttii mode mode nnyy mmnn hhnhnh hihinn rara dduu nhnhccRouter#Router#, mode , mode nnyy ddnhnh chocho nhnh ququnn trtr, , chocho phphpp xemxemccuu hhnhnh yy ccaa Router Router vv tt mode mode nnyy cc thth chuychuynnsang sang cccc mode mode khkhcc mmcc caocao hnhn..

CCC CHC CH DNG LDNG LNH TRONG ROUTERNH TRONG ROUTER((titipp))

Mode global Mode global configconfig: : ttii mmnn hhnhnh cc dduu nhnhcc Router(configRouter(config)#)#, , mode mode nnyy nhnh ququnn trtr cc thth tt cccc thamtham ss gigi trtr chocho Router Router nhnhaccessaccess--list, hostname, password, DNS hosts, DNS Server, logging, list, hostname, password, DNS hosts, DNS Server, logging, username & passwordusername & password

Mode routing protocol Mode routing protocol configconfig: : ttii mode mode nnyy mmnn hhnhnh hihinn rara dduu nhnhccRouter(configRouter(config--router)#router)#, mode , mode nnyy chocho phphpp nhnh ququnn trtr cc ththtt cccc gigi trtr chocho giaogiao ththcc nhnh tuytuynn nhnh loloii giaogiao ththcc (OSPF, RIP, (OSPF, RIP, EIGRP, BGPEIGRP, BGP), interface ), interface pp ddngng giaogiao ththcc (Ethernet, Serial, ISDN(Ethernet, Serial, ISDN), ), ttii phnphn phphii gigiaa cccc giaogiao ththcc, , cccc thamtham ss ccaa giaogiao ththcc......

Mode Line Mode Line configconfig: : ttii mode mode nnyy mmnn hhnhnh hihinn rara dduu nhnhccRouter(configRouter(config--line)#line)#, mode , mode nnyy chocho phphpp nhnh ququnn trtr tt ccccthamtham ss chocho cccc line line ccaa Router Router nhnh line console, line line console, line vtyvty (telnet), line (telnet), line ttytty((asyncasync), line aux.), line aux.

xp-ne

twork

.com

10

CHUYCHUYN N I GII GIA CA CC MODEC MODE

chuychuynn tt mode User sang mode Privilege mode User sang mode Privilege ddngng llnhnh:: Router>Router>enableenable ((NNuu yuyu ccuu nhnhpp password password thth gg password password vvoo)) KKtt ququ: : Router#Router# (Mode Privilege)(Mode Privilege)

chuychuynn tt mode Privilege sang mode Global mode Privilege sang mode Global ddngng llnhnh:: Router#Router#configconfig terminalterminal KKtt ququ: : Router(configRouter(config)#)# (Mode Global)(Mode Global)

chuychuynn tt mode Global sang mode Interface mode Global sang mode Interface configconfig ddngng llnhnh:: Router(config)#Router(config)#interfaceinterface KKtt ququ: : Router(configRouter(config--if)#if)# (Mode Interface (Mode Interface configconfig))

chuychuynn tt mode Global sang mode Line mode Global sang mode Line configconfig ddngng llnhnh Router(config)#Router(config)#lineline KKtt ququ: : Router(configRouter(config--line)#line)#

CHUYCHUYN N I GII GIA CA CC MODE (C MODE (titipp))

chuychuynn tt mode Global sang mode Router mode Global sang mode Router configconfig ddngng llnhnh Router(config)#Router(config)#routerrouter KKtt ququ: : Router(configRouter(config--router)#router)#

chuychuynn ngngcc llii tt mode mode ccpp caocao hnhn xuxungng mode mode ccpp ththpphnhn ddngng llnhnh exitexit. . VV dd::

Router(configRouter(config--if)#if)#exitexit KKtt ququ: : Router(configRouter(config)#)# Router(config)#Router(config)#exitexit KKtt ququ:: Router#Router#

chuychuynn tt mode mode bbtt kk vv ngayngay mode Privilege mode Privilege ddngng llnhnh endendhohocc bbmm tt hhpp phphmm ControlControl--Z:Z:

Router(configRouter(config--if)#if)#endend KKtt ququ: : Router#Router#

xp-ne

twork

.com

11

CCC LC LNH CNH CU HNH C BU HNH C BNN

tt tntn chocho Router:Router: Router(config)#Router(config)#hostnamehostname RTRT--01 01 ((vv dd tt ll RTRT--01)01) KKtt ququ: : RTRT--01(config)#01(config)#

tt mmtt khkhuu chocho ccngng Telnet Telnet ccaa Router (Router (phphii tt mmtt khkhuunnyy thth mmii ss ddngng phngphng phphpp Telnet Telnet vvoo Router Router cc))

Router#Router#configconfig terminalterminal Router(config)#Router(config)#lineline vtyvty 0 40 4 Router(configRouter(config--line)#line)#loginlogin Router(configRouter(config--line)#line)#passwordpassword ciscocisco ((vv dd tt ll ciscocisco))

ghighi thngthng tin logging tin logging rara mmyy chch khkhcc ((thngthng tin logging tin logging ccddngng xemxem llii cccc thngthng bboo ss kikinn ccaa RouterRouter

Router(config)#Router(config)#logginglogging 192.168.100.1 192.168.100.1 ((trongtrong vv dd nnyy aachch ccaa mmyy chch chchaa file log file log ll 192.168.100.1)192.168.100.1)

CCU HNH CDPU HNH CDP

XemXem thngthng tin tin vv cccc thithitt bb mmngng khkhcc ccaa Cisco: Cisco: TrnTrn cccc thithitt bbmmngng ccaa Cisco Cisco uu hh trtr giaogiao ththcc CDP (Cisco Discovery CDP (Cisco Discovery Protocol), Protocol), giaogiao ththcc nnyy cc nhinhimm vv ttmm thngthng tin tin vv cccc thithitt bbmmngng khkhcc ccaa Cisco Cisco angang cc kktt nnii trtrcc titipp vvii thithitt bb mm tata ccuuhhnhnh. Theo . Theo ngngmm nhnh CDP CDP cc bbtt ssnn trongtrong Cisco Router. Cisco Router. DDngngllnhnh sausau xemxem cccc thithitt bb mmngng khkhcc::

Router#Router#showshow cdpcdp neighborsneighbors ::LLnhnh nnyy ss chocho bibitt thngthng tin tin vvcccc thithitt bb khkhcc nhnh DevideDevide Id, Capability, Platform, connected interfaceId, Capability, Platform, connected interface

xemxem chi chi tititt hnhn tata ddngng llnhnh:: Router#Router#showshow cdpcdp neighbors detailneighbors detail ::LLnhnh nnyy ss chocho thngthng

tin tin cc thth ccaa ttngng thithitt bb, , baobao ggmm cccc aa chch IP IP ccaa Interface, IOS Interface, IOS version, VTP informationversion, VTP information

xp-ne

twork

.com

12

XEM VXEM V GHI LGHI LI CI CU HNHU HNH

TrTrcc khikhi ghighi llii nhnhngng thaythay ii ccaa ccuu hhnhnh Router Router vvooNVRAM, NVRAM, chchngng tata nnnn xemxem llii ccuu hhnhnh bbngng llnhnh::

Router#Router#showshow runrun GhiGhi ccuu hhnhnh vvoo NVRAM: NVRAM: ghighi ccuu hhnhnh llnn khkhii ngng sausau

Router Router ss chchyy vvii gigi trtr mmii:: Router#Router#writewrite memmem

Ta Ta cc thth xemxem ccuu hhnhnh hihinn angang cc ghighi trongtrong NVRAM NVRAM bbngngllnhnh::

Router#Router#showshow startstart hohocc Router#Router#showshow configconfig

SAO LU VSAO LU V PHPHC HC HI CI CU HNH TU HNH T TFTPTFTP

TFTP Server TFTP Server ll mmtt mmyy chch trntrn mmngng lulu file file ccuu hhnhnh vv IOS IOS ccaaRouter. TFTP Server Router. TFTP Server llmm vivicc vvii Router Router thngthng qua qua giaogiao ththcc TFTP. TFTP. ChChngng tata cc thth cctt file file ccuu hhnhnh vvoo TFTP Server TFTP Server backup. backup. KhiKhilulu file file ccuu hhnhnh vvoo TFTP Server, TFTP Server, hh ththngng ss hhii aa chch ccaa TFTP TFTP Server Server vv tntn file file khikhi lulu rara TFTP, TFTP, chchngng tata ddngng llnhnh sausau::

Router#Router#copycopy startupstartup--configconfig tftptftp:: Address or name of remote host []?Address or name of remote host []? 192.168.100.1192.168.100.1 DestionationDestionation filename []?filename []? R1R1--configconfig

KhiKhi copy (copy (phphcc hhii) file ) file ccuu hhnhnh tt TFTP TFTP trtr llii NVRAM NVRAM ccaaRouter, Router, hh ththngng ccngng yuyu ccuu nhnhpp aa chch ccaa TFTP Server TFTP Server vv tntnfile file ccuu hhnhnh cc lulu trtrcc . . CCcc llnhnh nhnh sausau::

Router#Router#copycopy tftptftp: startup: startup--configconfig Address or name of remote host []?Address or name of remote host []? 192.168.100.1192.168.100.1 DestionationDestionation filename []?filename []? R1R1--configconfig

xp-ne

twork

.com

13

T T A CHA CH VV KIKIM TRA CM TRA CC INTERFACEC INTERFACE

kktt nnii vvoo cccc phnphn oonn mmngng, , cccc interfaces interfaces ccaa Router Router phphiicc ggnn aa chch, , cccc aa chch nnyy phphii thuthucc cccc llpp mmngng khkhcc nhaunhau. . CC phphpp tt aa chch chocho interface interface nhnh sausau::

Router#Router#configconfig terminalterminal Router(config)#Router(config)#interfaceinterface Router(configRouter(config--if)#if)#ipip address

SauSau khikhi ggnn aa chch chchngng tata ccnn ddngng llnhnh no shutdownno shutdown kkchchhohott interface:interface:

Router(configRouter(config--if)#if)#nono shutdownshutdown

T T A CHA CH VV KIKIM TRA CM TRA CC INTERFACEC INTERFACE((titipp))

VV dd sausau ggnn aa chch 192.168.10.1/24 192.168.10.1/24 chocho ccngng Fast Ethernet 0/1 Fast Ethernet 0/1 vvggnn aa chch 172.16.1.1/16 172.16.1.1/16 chocho ccngng Serial 1/1:Serial 1/1: Router#Router#configconfig terminalterminal Router(config)#Router(config)#interfaceinterface fastethernetfastethernet 0/10/1 Router(configRouter(config--if)#if)#ipip address 192.168.10.1 255.255.255.0address 192.168.10.1 255.255.255.0 Router(configRouter(config--if)#if)#nono shutdownshutdown Router(configRouter(config--if)#if)#exitexit Router(config)#Router(config)#interfaceinterface serial 1/1serial 1/1 Router(configRouter(config--if)#if)#ipip address 172.16.1.1 255.255.0.0address 172.16.1.1 255.255.0.0 Router(configRouter(config--if)#if)#nono shutdownshutdown Router(configRouter(config--if)#if)#endend Router#Router#

xp-ne

twork

.com

14


kikimm tratra ttnhnh trtrngng ccaa cccc Interface Interface sausau khikhi tt aa chch, , tataddngng llnhnh::

Router#Router#showshow interface VV dd kikimm tratra ttnhnh trtrngng ccaa Interface Fast Ethernet 0/0, Interface Fast Ethernet 0/0, tata gg

llnhnh:: Router#Router#showshow interface f0/0interface f0/0

VV dd kikimm tratra ttnhnh trtrngng ccaa Interface Serial 0/1, Interface Serial 0/1, tata gg llnhnh:: Router#Router#showshow interface s0/1interface s0/1

kikimm tratra ttnhnh trtrngng tttt cc cccc IP interface, IP interface, tata ddngng llnhnh:: Router#Router#showshow ipip interface briefinterface brief


KhiKhi interface interface ttnhnh trtrngng hohott ngng tttt, , thth sausau khikhi ddngng llnhnhshow interfaceshow interface ss nhnhnn cc cccc thngthng tin tin sausau::

Interface is upInterface is up Line protocol is upLine protocol is up IP address IP address ngng nhnh ccuu hhnhnh

VV dd sausau khikhi ggnn aa chch chocho interface f0/0 interface f0/0 ll 192.168.100.1/24 192.168.100.1/24 vvddngng llnhnh::

Router#Router#showshow interface f0/0interface f0/0SS ttmm ththyy dngdng kktt ququ::

FastEthernet0/0 is up, line protocol is upFastEthernet0/0 is up, line protocol is upInternet address is 192.168.100.1/24Internet address is 192.168.100.1/24

xp-ne

twork

.com

15


KhiKhi ddngng llnhnh Show interface Show interface chocho kktt ququ Interface is upInterface is up Line protocol is downLine protocol is down ThTh ngng truytruynn angang ggpp ss cc, , ccnn linlin hh vvii ccnn bb tin tin

hhcc trungtrung tmtm miminn

KhiKhi ddngng llnhnh Show interface Show interface chocho kktt ququ Interface is downInterface is down Line protocol is downLine protocol is down ThTh Router Router khngkhng nhnhnn cc ttnn hihiuu tt HTU, HTU, kikimm tratra HTU HTU

vv bboo chocho ccnn bb tin tin hhcc ttii TrungTrung tmtm miminn


DDngng llnhnh show show ipip interface briefinterface brief ss chocho kktt ququ ttnhnh trtrngng ccaa ttttcc cccc interface, interface, khikhi ddngng llnhnh nnyy, , mmnn hhnhnh ss hihinn thth kktt ququththnhnh 6 6 cctt khkhcc nhaunhau, , tata ccnn chch thngthng tin tin trongtrong 4 4 cctt: : Interface, Interface, IPIP--Address, Status Address, Status vv ProtocolProtocol

Interface Interface ll interface interface ccnn kikimm tratra IPIP--Address: Address: aa chch ccaa Interface Interface , , phphii ngng nhnh tata ggnn Status: Status: phphii ll upup Protocol: Protocol: ccngng phphii upup

NNuu nhnh cccc thngthng tin tin chacha chuchunn xxcc thth phphii kikimm tratra ngayngay ((aa chchgg vvoo ngng chacha, , ccngng ethernetethernet ccmm vvoo Switch Switch nn ssngng chacha, , dydy mmngng cc tttt khngkhng, , ttnhnh trtrngng NTU NTU cc tttt khngkhng

xp-ne

twork

.com

16

CCU HNH U HNH NH TUYNH TUYN TRN MN TRN MNGNG

TTcc ddngng ccaa vivicc nhnh tuytuynn:: GiGipp Router Router chuychuynn cc ggii tin tin nn ngng mmngng chch Router Router cc thth thngthng bboo llnn nhaunhau vv thngthng tin tin nhnh tuytuynn trntrn

mmngng

CCcc hhnhnh ththcc nhnh tuytuynn:: nhnh tuytuynn ttnhnh (Static Routing): (Static Routing): ddngng chocho nhnhngng mmngng nhnh mm

hhnhnh nn giginn nhnh tuytuynn ngng (Dynamic Routing): (Dynamic Routing): ddngng trongtrong nhnhngng mmngng llnn

mm hhnhnh kktt nnii phphcc ttpp..

VV dd vv mm hhnhnh mmngng ss ddngng nhnh tuytuynn

TrongTrong vv dd trntrn:: CCcc PC (PC1, PC2, PC3) PC (PC1, PC2, PC3) thuthucc cccc phnphn oonn mmngng khkhcc nhaunhau

ViVicc truytruynn dd liliuu gigiaa cccc PC PC nnyy phphii ii qua qua cccc RouterRouter

CCcc Router Router nnyy phphii nhnhnn ththcc cc routesroutes ttii mmngng chchaa ccccPC PC nnyy thth mmii cc thth nhnh tuytuynn dd liliuu truytruynn gigiaa chchngng, , mumunnvvyy phphii ccuu hhnhnh nhnh tuytuynn trntrn cccc Router Router trungtrung giangian..

xp-ne

twork

.com

17

CCC HNH THC HNH THC C NH TUYNH TUYN TRN MN TRN MNGNG

nhnh tuytuynn ttnhnh (Static Routing):(Static Routing): uu iimm: : ccuu hhnhnh nn giginn, , khngkhng ttnn bngbng thngthng mmngng chocho

vivicc truytruynn thngthng tin tin nhnh tuytuynn..

NhNhcc iimm: : khngkhng phph hhpp vvii mmngng llnn vv khngkhng tt ccpp nhnhttkhikhi mm hhnhnh mmngng thaythay ii..

nhnh tuytuynn ngng (Dynamic Routing):(Dynamic Routing): uu iimm: Router : Router tt ngng ccpp nhnhtt thngthng tin tin vv routing routing trntrn

mmngng, , nhnh ququnn trtr khngkhng ccnn thaothao ttcc manual, manual, phph hhpp vviimmngng llnn vv mm hhnhnh mmngng hay hay thaythay ii

NhNhcc iimm: : CCuu hhnhnh phphcc ttpp hnhn nhnh tuytuynn ttnhnh, , ss ddngngbngbng thngthng mmngng chocho vivicc truytruynn thngthng tin tin nhnh tuytuynn..

VV dd: : ccuu hhnhnh Router Router ss ddngng Static RoutingStatic Routing

CCuu hhnhnh Router 1Router 1 saosao chocho khikhi Router 1 Router 1 nhnhnn cc cccc ggii tin tin ttii mmngng chch ll::

192.168.3.0/24192.168.3.0/24

192.168.1.0/24192.168.1.0/24

172.16.45.0/24172.16.45.0/24

10.1.24.0/2410.1.24.0/24

10.1.23.0/2410.1.23.0/24thth aa cccc ggii tin tin ttii nextnext--hop hop ll ccngng Ethernet Ethernet ccaa Router 2 Router 2 cc aa chch 172.16.12.2172.16.12.2

xp-ne

twork

.com

18

VV dd: : ccuu hhnhnh Router Router ss ddngng Static Routing (Static Routing (titipp))

Router 1:Router 1:R1>R1>enableenableR1#R1#config terminalconfig terminalR1(config)#R1(config)#ip route 192.168.3.0 255.255.255.0 172.16.12.2ip route 192.168.3.0 255.255.255.0 172.16.12.2R1(config)#R1(config)#ip route 192.168.1.0 255.255.255.0 172.16.12.2ip route 192.168.1.0 255.255.255.0 172.16.12.2R1(config)#R1(config)#ip route 172.16.45.0 255.255.255.0 172.16.12.2ip route 172.16.45.0 255.255.255.0 172.16.12.2R1(config)#R1(config)#ip route 10.1.24.0 255.255.255.0 172.16.12.2ip route 10.1.24.0 255.255.255.0 172.16.12.2R1(config)#R1(config)#ip route 10.1.23.0 255.255.255.0 172.16.12.2ip route 10.1.23.0 255.255.255.0 172.16.12.2


TrongTrong trtrngng hhpp nnyy tata ththyy ii rara cccc mmngng khkhcc tt Router 1 Router 1 ththchch cc mmtt ngng duyduy nhnhtt ll ii ttii ccngng Ethernet Ethernet ccaa Router 2, do Router 2, do vvyytata cc thth ccuu hhnhnh mmtt Default Route Default Route ttii Router 2. Default Route Router 2. Default Route ddngngtrongtrong trtrngng hhpp Router Router khngkhng ttmm ththyy bbtt kk mmtt ngng ii cc ththnnoo chocho mmtt mmngng chch thth nn ss chuychuynn ggii tin tin theotheo Default RouteDefault RouteR1>R1>enableenableR1#R1#config terminalconfig terminalR1(config)#R1(config)#ip route 0.0.0.0 ip route 0.0.0.0 0.0.0.00.0.0.0 172.16.12.2172.16.12.2

xp-ne

twork

.com

19

VV dd: : ccuu hhnhnh Router Router ss ddngng Static RoutingStatic Routing

CCuu hhnhnh Router 2Router 2 saosao chocho khikhi Router 2 Router 2 nhnhnn cc cccc ggii tin tin ttii mmngng chch ll::

192.168.3.0/24 192.168.3.0/24 thth aa ggii tin tin nn nextnext--hop hop ll 10.1.23.3 (10.1.23.3 (ccngng Serial Serial ccaa Router 3)Router 3)


192.168.2.0/24 192.168.2.0/24 thth aa ggii tin tin nn nextnext--hop hop ll 172.16.12.1 (172.16.12.1 (ccngng Ethernet Ethernet ccaa Router 1)Router 1)


CCcc network network cncn llii (172.16.12.0/24, 10.1.23.0/24, 10.1.24.0/24) (172.16.12.0/24, 10.1.23.0/24, 10.1.24.0/24) uu ll mmngng directly directly connected connected vvii R2 R2 rrii nnnn khngkhng ccnn thmthm thngthng tin tin nhnh tuytuynn..


Router 2:Router 2:R2>R2>enableenableR2#R2#config terminalconfig terminalR2(config)#R2(config)#ip route 192.168.3.0 255.255.255.0 10.1.23.3ip route 192.168.3.0 255.255.255.0 10.1.23.3R2(config)#R2(config)#ip route 192.168.1.0 255.255.255.0 10.1.24.4ip route 192.168.1.0 255.255.255.0 10.1.24.4R2(config)#R2(config)#ip route 192.168.2.0 255.255.255.0 172.16.12.1ip route 192.168.2.0 255.255.255.0 172.16.12.1R2(config)#R2(config)#ip route 172.16.45.0 255.255.255.0 10.1.24.4ip route 172.16.45.0 255.255.255.0 10.1.24.4

xp-ne

twork

.com

20


ii vvii cccc Router Router khkhcc nhnh Router 3, Router 4, Router 5 Router 3, Router 4, Router 5 ththccuu hhnhnh hohonn totonn tngtng tt, , tata chch ccnn chch nn nextnext--hop hop mmrouter router ccnn phphii route route ggii tin tin ttii ttii cc mmngng chch, , ttiiRouter 3 Router 3 vv Router 5 Router 5 cc thth ddngng Default Route Default Route nhnh pp ddngngvvii Router 1Router 1


SauSau khikhi ccuu hhnhnh static routing, static routing, tt cccc PC PC tata tt aa chch Default Gateway Default Gateway tngtngngng ll cccc ccngng Ethernet Ethernet ccaa cccc Router Router ccngng oonn mmngng ..

Default Gateway Default Gateway ccaa PC1 PC1 ll 192.168.1.5192.168.1.5



SauSau tt cccc PC PC tata pingping llnn nhaunhau, , nnuu cc ping ping ththnhnh cngcng ttcc ll vivicc nhnh tuytuynn cc ccuu hhnhnh ngng

xp-ne

twork

.com

21

NH TUYNH TUYN N NG (DYNAMIC ROUTING)NG (DYNAMIC ROUTING)

nhnh tuytuynn ngng ll vivicc nhnh ququnn trtr ss ddngng cccc giaogiaoththcc nhnh tuytuynn trntrn Router Router nhnh RIP, OSPF, EIGRP, RIP, OSPF, EIGRP, IGRP, ISIGRP, IS--ISIS sausau Router Router ss tt thngthng bboo llnn nhaunhauvv aa chch mmngng chch mm nn bibitt, , vivicc nnyy hohonn totonn ttngng, , nhnh ququnn trtr khngkhng ccnn can can thithipp vv ccuu hhnhnhmanual manual ttngng network network nhnh phphnn trtrcc

HiHinn nay nay cc haihai giaogiao ththcc nhnh tuytuynn ththngng cc ssddngng ll RIP RIP vv EIGRP, EIGRP, trongtrong EIGRP EIGRP ll giaogiao ththcc do do Cisco Cisco tt nhnh nghnghaa rara

VV dd: : ccuu hhnhnh Router Router ss ddngng Dynamic RoutingDynamic Routing

CCuu hhnhnh cccc Router Router nn thngthng bboo vv mmngng chch vv nn bibitt chocho cccc Router Router khkhcc..

VV dd Router 1 Router 1 ss thngthng bboo vv mmngng 192.168.2.0/24192.168.2.0/24 chocho Router 2, Router 2, vv Router 2 Router 2 ss bibittcc rrngng nn cc mmngng nnyy thth ccnn chuychuynn ggii tin tin ttii nextnext--hop hop ll aa chch ccaa Router Router 1, 1, nn lltt nn Router 2 Router 2 ss thngthng bboo vv cccc mmngng chch mm nn bibitt, , ggmm cc mmngng172.16.12.0/24172.16.12.0/24, , 10.1.23.0/2410.1.23.0/24, , 10.1.24.0/2410.1.24.0/24 vv mmngng mm nn vvaa bibitt cc tt Router 1 Router 1 ll192.168.2.0/24192.168.2.0/24 chocho cccc Router Router lnln ccnn vv ququ trtrnhnh cc thth titipp didinn. . CuCuii ccngng ll tttt cccccc Router Router uu bibitt cc thngthng tin tin vv tttt cc cccc mmngng chch

KhiKhi aa chch vv cccc mmngng nnyy thaythay ii, , cccc Router Router ss tt ngng ccpp nhnhtt thaythay ii vv thngthngbboo chocho nhaunhau bibitt tttt cc router router trongtrong mmngng uu cc thngthng tin routing tin routing mmii nhnhtt..

xp-ne

twork

.com

22

VV dd: : ccuu hhnhnh cccc Router Router ss ddngng RIPRIP

Router 1:Router 1:R1>R1>enableenableR1#R1#config terminalconfig terminalR1(config)#R1(config)#router riprouter ripR1(configR1(config--router)#router)#network 192.168.2.0network 192.168.2.0R1(configR1(config--router)#router)#network 172.16.0.0network 172.16.0.0R1(configR1(config--router)#router)#no autono auto--summarysummaryR1(configR1(config--router)#router)#version 2version 2

VV dd: : ccuu hhnhnh cccc Router Router ss ddngng RIP (RIP (titipp))

Router 2:Router 2:R2>R2>enableenableR2#R2#config terminalconfig terminalR2(config)#R2(config)#router riprouter ripR2(configR2(config--router)#router)#network 10.0.0.0network 10.0.0.0R2(configR2(config--router)#router)#network 172.16.0.0network 172.16.0.0R2(configR2(config--router)#router)#no autono auto--summarysummaryR2(configR2(config--router)#router)#version 2version 2

xp-ne

twork

.com

23

VV dd: : ccuu hhnhnh cccc Router Router ss ddngng RIP (RIP (titipp))

ii vvii cccc Router Router khkhcc thithi ccuu hhnhnh hohonn totonn tngtng tt

SauSau khikhi ccuu hhnhnh xongxong hhtt Router Router thth tt aa chch Default Gateway Default Gateway ccaaPC PC nhnh khikhi llmm vvii Static Routing Static Routing vv ping ping thth tt cccc PC PC chocho nhaunhau, , ququtrtrnhnh phphii ththcc hihinn tttt thth vivicc ccuu hhnhnh mmii ll ngng

VV dd: : ccuu hhnhnh cccc Router Router ss ddngng EIGRPEIGRP

Router 1:Router 1:R1>R1>enableenableR1#R1#config terminalconfig terminalR1(config)#R1(config)#router router eigrpeigrp 100100R1(configR1(config--router)#router)#network 192.168.2.0network 192.168.2.0R1(configR1(config--router)#router)#network 172.16.0.0network 172.16.0.0R1(configR1(config--router)#router)#no autono auto--summarysummaryR1(configR1(config--router)#router)#version 2version 2

xp-ne

twork

.com

24

VV dd: : ccuu hhnhnh cccc Router Router ss ddngng EIGRP (EIGRP (titipp))

Router 2:Router 2:R2>R2>enableenableR2#R2#config terminalconfig terminalR2(config)#R2(config)#router router eigrpeigrp 100100R2(configR2(config--router)#router)#network 10.0.0.0network 10.0.0.0R2(configR2(config--router)#router)#network 172.16.0.0network 172.16.0.0R2(configR2(config--router)#router)#no autono auto--summarysummaryR2(configR2(config--router)#router)#version 2version 2

VV dd: : ccuu hhnhnh cccc Router Router ss ddngng EIGRP (EIGRP (titipp))

ii vvii cccc Router Router khkhcc thithi ccuu hhnhnh hohonn totonn tngtng tt

SauSau khikhi ccuu hhnhnh xongxong hhtt Router Router thth tt aa chch Default Gateway Default Gateway ccaaPC PC nhnh khikhi llmm vvii Static Routing Static Routing vv ping ping thth tt cccc PC PC chocho nhaunhau, , ququtrtrnhnh phphii ththcc hihinn tttt thth vivicc ccuu hhnhnh mmii ll ngng

xp-ne

twork

.com

25

KIKIM TRA VIM TRA VIC C NH TUYNH TUYN TRN ROUTERN TRN ROUTER

CCcc llnhnh ddngng kikimm tratra show show ipip routeroute

show show ipip protocolprotocol

pingping

traceroutetraceroute

CCchch ddngng llnhnh show show ipip routeroute

TTcc ddngng ccaa llnhnh show show ipip routeroute HiHinn thth bbngng nhnh tuytuynn ccaa Router, Router, xemxem tttt cc cccc mmngng chch

mm Router Router cc thth chuychuynn ggii tin tin ttii cc HiHinn cccc thngthng tin tin vv Route: Route: cc ccuu hhnhnh bbngng static hay static hay

dynamic dynamic vv cccc thngthng ss linlin quanquan

KhiKhi ddngng llnhnh show show ipip routeroute CCcc route route cc kk hihiuu SS ll route route cc ccuu hhnhnh bbngng staticstatic CCcc route route cc kk hihiuu RR ll route route cc ccuu hhnhnh dynamic dynamic bbngng RIPRIP CCcc route route cc kk hihiuu DD ll route route cc ccuu hhnhnh dynamic dynamic bbngng

EIGRPEIGRP

CCcc Default route (Default route (dd cc ccuu hhnhnh bbii static hay static hay llyy bbngngdynamic dynamic uu cc thmthm kk hihiuu **))

xp-ne

twork

.com

26

DDngng cccc llnhnh khkhcc

DDngng llnhnh show show ipip protocolprotocol LLnhnh nnyy xemxem thngthng tin tin vv cccc giaogiao ththcc nhnh tuytuynn ngngcc ccuu hhnhnh trntrn RouterRouter

SauSau khikhi ddngng llnhnh nnyy thth ghighi llii cccc thngthng tin tin hihinn thth vv ggii chochonhnh ququnn trtr ccpp caocao xemxem xxtt, , khngkhng nnnn tt thaythay ii ccccthngthng tin tin vv nhnh tuytuynn ngng

DDngng llnhnh pingping LLnhnh ping ping kikimm tratra kktt nnii gigiaa 2 2 iimm trntrn mmngng LLnhnh nnyy cc thth ddngng trntrn Router Router hohocc PCPC

NNuu gg ping thth router router ss ththcc hihinn llnhnh ping ping chuchunn

ththcc hihinn llnhnh ping ping mm rrngng thth gg ping , ping , sausau trtrllii cccc cucu hhii vv aa chch ngungunn, , kkchch ththcc ggii tin, timeouttin, timeout

DDngng cccc llnhnh khkhcc ((titipp))

DDngng llnhnh traceroutetraceroute DDngng kikimm tratra xemxem khikhi ggii tin tin ii gigiaa haihai iimm trntrn mmngng thth ii qua qua nhnhngng Router Router nnoo, , llnhnh nnyy rrtt cc ttcc ddngng khikhi xx ll sscc vv Routing Routing trntrn mmngng

KhiKhi traceroutetraceroute nn mmtt iimm bb timeout (timeout (khngkhng cc trtr llii) ) thth tatakikimm tratra ngayngay bbngng nhnh tuytuynn ttii Router Router xxcc nhnh xemxem ttiisaosao Router Router khngkhng chuychuynn cc ggii tin.tin.

xp-ne

twork

.com

27

ThTh tt cccc bbcc troubleshooting troubleshooting vv routing routing trntrn mmngng

GiGi ss tata ping ping tt PC1 PC1 nn PC3, PC3, cc ping ping khngkhng ththnhnh cngcng, , tata ss kikimm tratra llnn lltt theotheo ccccbbcc sausau::BBcc 11: : KiKimm tratra xemxem cccc PC1 PC1 vv PC3 PC3 ccuu hhnhnh ngng default gateway default gateway chacha. . NNuu chachangng, , ccuu hhnhnh llii chocho ngng vv ping ping llii. . NNuu vvnn khngkhng cc thth llmm titipp bbcc 22BBcc 22: : KiKimm tratra tttt cccc cccc interface interface trntrn Router Router vv chchcc chchnn rrngng ttnhnh trtrngng uu upupBBcc 33: : TTii ttngng Router, ping Router, ping thth tttt cc cccc Interface Interface ccaa Router Router kk vvii nn, , phphii chchcc chchnnrrngng cccc cc ping ping phphii ththnhnh cngcng

ThTh tt cccc bbcc troubleshooting troubleshooting vv routing routing trntrn mmngng

BBcc 44: : NNuu cc llnn ping ping nnoo khngkhng ththnhnh cngcng, , thth kikimm tratra llii xemxem aa chch IP IP ccaa Interface Interface tt ngng chachaBBcc 55: : NNuu aa chch IP IP tt ngng mm vvnn khngkhng ping ping cc thth show show ipip route route ccaa ttngng router router chchcc chchnn rrngng tttt cc router router trntrn ngng ii uu cc route route ttii cccc mmngng chch khkhcc trongtrong hhththngngBBcc 66: : NNuu cc Router Router nnoo khngkhng nhnhnn cc mmngng chch trntrn ngng truytruynn tt PC1 PC1 nn PC3 PC3 thth ccuu hhnhnh llii phphnn nhnh tuytuynn chocho Router Router nn, , nnnn ss ddngng nhnh tuytuynn ttnhnh trtrcc loloii bbnguynnguyn nhnnhn llii do do giaogiao ththcc nhnh tuytuynn

xp-ne

twork

.com

28

CCU HNH ACCESS CONTROL LIST (ACL)U HNH ACCESS CONTROL LIST (ACL)

VaiVai trtr ccaa ACLACL DDngng hhnn chch truytruy ccpp ii vvii aa chch ngungunn, , aa chch chch, , loloii

ddchch vv nnoo , , cc thth hhnn chch theotheo ththii giangian DDngng phnphn loloii traffic traffic trntrn mmngng chocho cccc mmcc chch khkhcc ((VV dd

nhnh ccuu hhnhnh QoSQoS))

CCcc loloii ACLACL DDngng chuchunn: : hhnn chch theotheo aa chch ngungunn ccaa ggii tintin DDngng mm rrngng: : hhnn chch theotheo aa chch ngungunn, , aa chch chch, , ccngng

ddchch vv ccaa ggii tintin

SauSau khikhi ccuu hhnhnh xongxong ACL ACL thth phphii pp ACL ACL vvoo mmtt interface interface thth ACL ACL mmii cc ttcc ddngng hhnn chch truytruy ccpp..


CC phphpp ACL ACL chuchunn Router(config)#accessRouter(config)#access--list list

number: number: ss hihiuu nhnhnn ddngng ACL, ACL, cc gigi trtr tt 1 1 nn 9999

Statement: Statement: chchnhnh sschch ccaa ACL, ACL, cc 2 2 loloii ll PermitPermit vv DenyDeny

Address: Address: aa chch mmngng ccnn pp ddngng vvoo ACLACL

Mask: Mask: phphnn bb bit bit ccaa mmtt nn mmngng concon

CC phphpp ACL ACL mm rrngng Router(config)#accessRouter(config)#access--list

xp-ne

twork

.com

29


CC phphpp ACL ACL mm rrngng Router(config)#accessRouter(config)#access--list list

Number: Number: ss hihiuu nhnhnn ddngng ACL, ACL, cc gigi trtr tt 100 100 nn 199199

Statement: Statement: chchnhnh sschch ccaa ACL, ACL, cc 2 2 loloii ll PermitPermit vv DenyDeny

Protocol: Protocol: giaogiao ththcc pp vvoo ACL, ACL, ththngng ddngng IP, TCP, UDPIP, TCP, UDP

Source address: Source address: aa chch ngungunn ccaa ggii tin tin xemxem xxtt

Destination address: Destination address: aa chch chch ccaa ggii tin tin xemxem xxtt

Port number: Port number: ccngng ddchch vv


ss ddngng ACL ACL mm rrngng thth ccnn ghighi nhnh mmtt ss ccngngddchch vv quanquan trtrngng nhnh::

HTTP: HTTP: ccngng TCP 80TCP 80

FTP: FTP: ccngng TCP 20 TCP 20 vv 2121

Telnet: Telnet: ccngng TCP 23TCP 23

SMTP: SMTP: ccngng TCP 25TCP 25

POP3: POP3: ccngng TCP 110TCP 110

DNS: DNS: ccngng UDP 53UDP 53

TFTP: TFTP: ccngng UDP 69UDP 69

SNMP: SNMP: ccngng UDP 161UDP 161

xp-ne

twork

.com

30


SauSau khikhi ccuu hhnhnh ACL ACL thth phphii pp ACL ACL vvoo interface interface bbngng llnhnh:: Router(config)#Router(config)#interfaceinterface Router(configRouter(config--if)#if)#ipip accessaccess--group group

CC thth xemxem danhdanh sschch cccc ACL ACL vv Interface Interface bbngng llnhnh:: Router#Router#showshow accessaccess--listlist

VV dd: : ccuu hhnhnh ACL ACL ddngng chuchunn

CCuu hhnhnh Router 2 Router 2 saosao chocho nn khngkhng chocho phphpp cccc ggii tin tin tt mmngng chchaa PC3 PC3 ii vvooccngng Serial:Serial:R2>R2>enableenableR2#R2#config terminalconfig terminalR2(config)#R2(config)#accessaccess--list 1 deny 192.168.3.0 0.0.0.255list 1 deny 192.168.3.0 0.0.0.255R2(config)#R2(config)#accessaccess--list 1 permit anylist 1 permit anyR2(config)#R2(config)#interface s0/0interface s0/0R2(configR2(config--if)#if)#ip accessip access--group 1 ingroup 1 inR2(configR2(config--if)#if)#endendR2#R2#LuLu : : MMii ACL ACL phphii cc tt nhnhtt mmtt dngdng permitpermit, , nnuu khngkhng tttt cc traffic traffic ss bb ttchchii truytruy nhnhpp

xp-ne

twork

.com

31

VV dd: : ccuu hhnhnh ACL ACL ddngng chuchunn ((titipp))

CCuu hhnhnh Router 2 Router 2 saosao chocho nn khngkhng chocho phphpp cccc ggii tin tin tt mmngng chchaa PC3 PC3 ii vvooccngng Serial, Serial, nhngnhng llii chocho phphpp PC3 PC3 vv cccc mmngng cncn llii cc truytruy ccpp::R2>R2>enableenableR2#R2#config terminalconfig terminalR2(config)#R2(config)#accessaccess--list 1 permit host 192.168.3.3list 1 permit host 192.168.3.3R2(config)#R2(config)#accessaccess--list 1 deny 192.168.3.0 0.0.0.255list 1 deny 192.168.3.0 0.0.0.255R2(config)#R2(config)#accessaccess--list 1 permit anylist 1 permit anyR2(config)#R2(config)#interface s0/0interface s0/0R2(configR2(config--if)#if)#ip accessip access--group 1 ingroup 1 inR2(configR2(config--if)#if)#endendR2#R2#LuLu : : MMii ACL ACL phphii cc tt nhnhtt mmtt dngdng permitpermit, , nnuu khngkhng tttt cc traffic traffic ss bb ttchchii truytruy nhnhpp

VV dd: : ccuu hhnhnh ACL ACL ddngng mm rrngng

CCuu hhnhnh trntrn R2 R2 PC3 PC3 cc telnet telnet vvoo PC1 PC1 nhngnhng khngkhng cc ddngng HTTP HTTP trntrnPC1:PC1:R2>R2>enableenableR2#R2#config terminalconfig terminalR2(config)#R2(config)#accessaccess--list 100 permit list 100 permit tcptcp host 192.168.3.3 host host 192.168.3.3 host 192.168.1.10 192.168.1.10 eqeq 2323R2(config)#R2(config)#accessaccess--list 100 deny list 100 deny tcptcp host 192.168.3.3 host host 192.168.3.3 host 192.168.1.10 192.168.1.10 eqeq 8080R2(config)#R2(config)#accessaccess--list 100 permit list 100 permit ipip any any anyany

LuLu : : MMii ACL ACL phphii cc tt nhnhtt mmtt dngdng permitpermit, , nnuu khngkhng tttt cc traffic traffic ss bb ttchchii truytruy nhnhpp

xp-ne

twork

.com

32

LU CHUNGLU CHUNG

CCuu hhnhnh giaogiao ththcc nhnh tuytuynn, , aa chch, ACL, ACL uu nhnh hhngng trtrcctitipp nn hh ththngng do do vvyy phphii ththtt ccnn ththnn khikhi ss ddngng ccccphngphng phphpp ccuu hhnhnh trntrn

TrongTrong nhinhiuu trtrngng hhpp, , chch nnnn ddngng cccc llnhnh show show xemxemthngthng tin tin vv hh ththngng vv chuychuynn chocho ngngii cc trtrchch nhinhimm gigiiiquyquytt ((cccc llnhnh nhnh show run, show show run, show ipip protocol, show protocol, show ipip route, route, show interface, show show interface, show ipip interface briefinterface brief

ChCh nnnn thth nghinghimm cccc bbii ththcc hhnhnh trntrn Router Router ttchch bibitt vviihh ththngng mmngng chungchung trtrnhnh llmm nhnh hhngng nn hohott ngngccaa mmngng

XinXin ccmm nn vv hhnn ggpp llii!!

xp-ne

twork

.com

Tài liệu định tuyến

Documents

Transcript of Tài liệu định tuyến