Axborot texnologiyalari va kommunikatsiyalarni rivojlantirish vazirligi muhammad al xorazmiy nomidagi



Yüklə 1,28 Mb.
tarix08.05.2023
ölçüsü1,28 Mb.
#109788
1-dedlayn Tarmoq xavfsizligi


O’ZBEKISTON RESPUBLIKASI


AXBOROT TEXNOLOGIYALARI


VA KOMMUNIKATSIYALARNI RIVOJLANTIRISH


VAZIRLIGI MUHAMMAD AL – XORAZMIY NOMIDAGI


TOSHKENT AXBOROT TEXNOLOGIYALARI UNIVERSITETI


FARG’ONA FILIALI





“Tarmoq xavfsizligi
fanidan
Laboratoriya ishi





Farg’ona 2021

Topshirdi: Pardayev J


Qabul qildi: RAXMATOV R. R



Farg’ona 2023


1-laboratoriya


Mavzu: Tarmoq qurilmalarida dastlabki xavfsizlik sozlanmalarini o‘rnatish-telnet, ssh








Switch>enable
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#interface vlan1
Switch(config-if)#ip address 192.168.1.1 255.255.255.0
Switch(config-if)#no shutdown
Switch(config)#line vty 0 15
Switch(config-line)#password 12345
Switch(config-line)#login
Switch(config-line)#exit
Switch(config)#enable password 12345
Switch(config)#end
Switch#
Xulosa: Men bu laboratoriya ishi bajarish davomida cisco dasturida Kommutator qurilmasining tuzilishi, ishlash tamoyillari, masofadan kirishni ta’minlash usullari hamda xavfsizlik ko’rsatkichlarini sozladim va 2 bosqichli parollar bilan xavfsizligi ta’minlandi.

2-laboratoriya


Mavzu: Kommutatorlarda port xavfsizligi (Port Security)ni sozlash


T/R

Qurilmalar

Kompyuterlar Ip manillari

Ochiq portlar soni

Berkitiluvchi portlar soni

Port-security

10

Kommutator
12 ta kompyuter

192.168.1.101

10

24

Sozlash va tekshirish



Qurilma

Interface

IP manzil

Tarmoq osti maskasi

Kommutator

Vlan

192.168.1.100

255.255.255.0

PC1

NIC

192.168.1.101

255.255.255.0

PC2

NIC

192.168.1.102

255.255.255.0

Pc3

NIC

192.168.1.103

255.255.255.0

Pc4

NIC

192.168.1.104

255.255.255.0

Pc5

NIC

192.168.1.105

255.255.255.0

Pc6

NIC

192.168.1.106

255.255.255.0

Pc7

NIC

192.168.1.107

255.255.255.0

Pc8

NIC

192.168.1.108

255.255.255.0

Pc9

NIC

192.168.1.109

255.255.255.0

Pc10

NIC

192.168.1.110

255.255.255.0

Pc11

NIC

192.168.1.111

255.255.255.0

Noutbok

NIC

192.168.1.112

255.255.255.0









Hulosa
Men 2chi laboratoriya ishimda 10ta portni ishlashiga ruhsat berdim qolgan portlarni berkitib qoydim va keyingisida
Esa 3ta portga ulangan qonuniy ruhsat berilgan kompyuterlarni mac adresslarini svitch eslab qolishi uchun unga port security buyruqlarini kiritdim va shu asosida komutator ularni eslab qoldi va tarmoqda axborot almashishi uchun ruhsat berdi.


3-laboratoriya
Tarmoq qurilmalari xavfsizligining tahlili

Routerga parol qoyildi
Va parol korinib turmaslik uchun shifrlandi


shifrlangan parol

Xulosa: Men bu laboratoriya ishini bajarish davomida routerga parol qoyish va parol korinmaslik uchun shifrlash bajardim.

4-laboratoriya


Mavzu: Rezervlash protokollari-STP, PVSTPni sozlash

iskandar>enable
iskandar#conf t
iskandar#conf terminal
Enter configuration commands, one per line. End with CNTL/Z.
iskandar(config)#hostname iskandar
iskandar(config)#spanning-tree vlan 1 root primary
iskandar(config)#exit
iskandar#
%SYS-5-CONFIG_I: Configured from console by console

iskandar#show spanning-tree


VLAN0001
Spanning tree enabled protocol ieee
Root ID Priority 24577
Address 00D0.9744.D788
This bridge is the root
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec

Bridge ID Priority 24577 (priority 24576 sys-id-ext 1)


Address 00D0.9744.D788
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Aging Time 20

Interface Role Sts Cost Prio.Nbr Type


---------------- ---- --- --------- -------- --------------------------------
Fa0/2 Desg FWD 19 128.2 P2p
Fa0/3 Desg FWD 19 128.3 P2p
Fa0/4 Desg FWD 19 128.4 P2p
Fa0/1 Desg FWD 19 128.1 P2p
Fa0/5 Desg FWD 19 128.5 P2p

iskandar#


iskandar#

Switch>enable


Switch#conf t
Switch#conf terminal
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#
Switch(config)#hostname iskandar2
iskandar2(config)#spanning-tree vlan 1 root primary
iskandar2(config)#exit
iskandar2#
%SYS-5-CONFIG_I: Configured from console by console

iskandar2#show spanning-tree


VLAN0001
Spanning tree enabled protocol ieee
Root ID Priority 20481
Address 00D0.BA0A.C823
This bridge is the root
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec

Bridge ID Priority 20481 (priority 20480 sys-id-ext 1)


Address 00D0.BA0A.C823
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Aging Time 20

Interface Role Sts Cost Prio.Nbr Type


---------------- ---- --- --------- -------- --------------------------------
Fa0/1 Desg FWD 19 128.1 P2p
Fa0/4 Desg FWD 19 128.4 P2p
Fa0/5 Desg FWD 19 128.5 P2p
Fa0/2 Desg FWD 19 128.2 P2p
Fa0/3 Desg LSN 19 128.3 P2p

iskandar2#





sw1>enable
sw1#conf t
sw1#conf terminal
Enter configuration commands, one per line. End with CNTL/Z.
sw1(config)#hostname iskandar3
iskandar3(config)#spanning-tree vlan 1 root primary
iskandar3(config)#exit
iskandar3#
%SYS-5-CONFIG_I: Configured from console by console

iskandar3#show spanning-tree


VLAN0001
Spanning tree enabled protocol ieee
Root ID Priority 16385
Address 0060.5C07.CC63
This bridge is the root
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec

Bridge ID Priority 16385 (priority 16384 sys-id-ext 1)


Address 0060.5C07.CC63
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Aging Time 20

Interface Role Sts Cost Prio.Nbr Type


---------------- ---- --- --------- -------- --------------------------------
Fa0/1 Desg FWD 19 128.1 P2p
Fa0/2 Desg FWD 19 128.2 P2p
Fa0/3 Desg FWD 19 128.3 P2p
Fa0/4 Desg FWD 19 128.4 P2p
Fa0/5 Altn BLK 19 128.5 P2p
iskandar3#

Xulosa:Men bu amaliy mashg’ulotni bajarib STP (spanning-tree protocol), RSTP protokollari sozlash va ishlash tamoyillari bo`yicha amaliy ko`nikmaga ega bo`ldim.

5-laboratoriya
Mavzu: Agregatsiyalash protokollari-LACP, PAgPni sozlash



T/R

Qurilmalar soni, portlar soni

Protokol

21



2 ta Switch, 2 ta port

PAgP (Port Aggregation Protocol)


Xulosa: Men bu laboratoriya ishini bajarish davomida LACP, PAgP protokollari sozlash va ishlash tamoyillari bo`yicha amaliy ko`nikmaga ega bo`ldim va laboratoriya ishi davomida cisco packet tracer interfeysida amaliy bajardim.
6-laboratoriya ishi
Mavzu:
VTP protokolini sozlash: Cisco Packet tracer muhitida VLAN qurish


Switch>
Switch>enable
Switch#conf t
Switch#conf terminal
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#
Switch(config)#vlan2
^
% Invalid input detected at '^' marker.
Switch(config)#vlan 2
Switch(config-vlan)#name iskandar
Switch(config-vlan)#exit
Switch(config)#interface fastEthernet0/1
Switch(config-if)#switchport mode access
Switch(config-if)#switchport access vlan2
^
% Invalid input detected at '^' marker.
Switch(config-if)#switchport access vlan 2
Switch(config-if)#exit
Switch(config)#vlan 3
Switch(config-vlan)#name sultonbek
Switch(config-vlan)#exit
Switch(config)#interface range fastEthernet 0/2-3
Switch(config-if-range)#switchport mode access
Switch(config-if-range)#switchport access vlan3
^
% Invalid input detected at '^' marker.
Switch(config-if-range)#switchport access vlan 3
Switch(config-if-range)#exit
Switch(config)#do wr
Building configuration...
[OK]
Switch(config)#
Switch(config)#

Xulosa: Men bu laboratoriya ishi bajarish davomida Cisco kommutatorlarida kompyuterlarni virtual tamoqlarga ajratdim natijada vlan2 va vlan3 dagi kompyuterlar biri birga ulanolmadi va bitta vlandagin kompyuterlar ulandi.

Yüklə 1,28 Mb.

Dostları ilə paylaş:




Verilənlər bazası müəlliflik hüququ ilə müdafiə olunur ©azkurs.org 2024
rəhbərliyinə müraciət

gir | qeydiyyatdan keç
    Ana səhifə


yükləyin