«Tarmoq xavfsizligi»

PPTP (ingl. Point-to-Point Tunneling Protocol)

Yüklə 12,81 Mb.

səhifə	49/73
tarix	21.10.2023
ölçüsü	12,81 Mb.
	#159015

1 ... 45 46 47 48 49 50 51 52 ... 73

Tarmoq xavfsizligi Uslubiy ko\'rsatma 2022-2023 (2)

PPTP (ingl. Point-to-Point Tunneling Protocol) — tunnelli nuqta-nuqta protokoli, kompyuterlarga server bilan standart tarmog’ (himoyalanmagan tarmoq) da maxsus tunnel yaratish orqali himoyalangan aloqani o’rnatuvchi protokol. PPTP protokoli PPP kadrlarini IP-paketlarga joylashtiradi va bu orqali global IP-tarmoqdan yuboradi, masalan, Internet orqali. PPTP bundan tashqari ikki lokal tarmoqda tunnel tashkillashtirish uchun ham qo’llaniladi. PPTP qo’shimcha TCP-bog’lanishdan foydalangan holatda tunnelga xizmat ko`rsatadi.
L2F (Layer 2 Forwarding protocol) – bu tunnelashtirish protokollarining biri. Ushbu protokol Cisco Systems tomonidan internet orqali VPN aloqasini yaratish uchun ishlab chiqarilgan.
L2TP (Layer 2 Tunneling Protocol) Microsoft PPTP (Point-to-Point Tunneling Protocol) va Cisco L2F (Layer 2 Forwarding) ning kombinatsiyasi hisoblanadi. L2TP IP, X.25, Frame Relay yoki ATM tarmoqlari orqali jo'natiladigan PPP (Point-to-Point Protocol) kvadratlarini qamrab olish uchun tunnel protokoli sifatida ishlatilishi mumkin. Ko'p yo'nalishlarga bitta tunnel orqali ruxsat beriladi.
Ishning bajarish tartibi

18.1-rasm. Tadqiq qilinayotgan tarmoq

Manzillar jadvali

Qurilma	Interfeys	IP-manzil	Tarmoq maskasi
R0	Fa0/0	192.168.1.1	255.255.255.0
R0	Fa0/1	195.158.1.1	255.255.255.252
R1	Fa0/0	195.158.1.2	255.255.255.252
R1	Fa0/1	80.80.80.1	255.255.255.252
R2	Fa0/1	80.80.80.2	255.255.255.252
R2	Fa0/0	172.16.1.1	255.255.255.0
PC0	NIC	192.168.1.10	255.255.255.0
PC1	NIC	172.16.1.10	255.255.255.0

1. Marshrutizatorlar o`rtasida aloqani tekshirish
Barcha tarmoq qurilmalarini 18.1-rasmda ko`rsatilganidek qilib IP-manzillarini bilan birga sozlang.
R0 sozlanishi:
Router>enable
Router#configure terminal
Router(config)#hostname R0
R0(config)#interface fastEthernet 0/0
R0(config-if)#no shutdown
R0(config-if)#ip address 192.168.1.1 255.255.255.0
R0(config-if)#exit
R0(config)#interface fastEthernet 0/1
R0(config-if)#no shutdown
R0(config-if)#ip address 195.158.1.1 255.255.255.252
R0(config-if)#exit
R0(config)#router ospf 1
R0(config-router)#network 192.168.1.0 0.0.0.255 area 1
R0(config-router)#network 195.158.1.0 0.0.0.3 area 0
R0(config-router)#exit
R1 sozlanishi:
Router>enable
Router#configure terminal
Router(config)#hostname R1
R1(config)#interface fastEthernet 0/0
R1(config-if)#no shutdown
R1(config-if)#ip address 195.158.1.2 255.255.255.252
R1(config-if)#exit
R1(config)#interface fastEthernet 0/1
R1(config-if)#no shutdown
R1(config-if)#ip address 80.80.80.1 255.255.255.252
R1(config-if)#exit
R1(config)#router ospf 1
R1(config-router)#network 80.80.80.0 0.0.0.3 area 0
R1(config-router)#network 195.158.1.0 0.0.0.3 area 0
R1(config-router)#exit
R2 sozlanishi:
Router>enable
Router#configure terminal
Router(config)#hostname R2
R2(config)#interface fastEthernet 0/0
R2(config-if)#no shutdown
R2(config-if)#ip address 192.168.1.1 255.255.255.0
R2(config-if)#exit
R2(config)#interface fastEthernet 0/1
R2(config-if)#no shutdown
R2(config-if)#ip address 80.80.80.2 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 1
R2(config-router)#network 80.80.80.0 0.0.0.3 area 0
R2(config-router)#network 172.16.1.0 0.0.0.255 area 2
R2(config-router)#exit

18.2-rasm. IPsec konfiguratsiya qilinmagan holat

Yüklə 12,81 Mb.

Dostları ilə paylaş:

1 ... 45 46 47 48 49 50 51 52 ... 73