15-Ámeliy shınıǵıw Noqatlı demilitarizaciya bólimi

Download 48.45 Kb. bet 2/2 Sana 29.03.2023 Hajmi 48.45 Kb. #1307360

Bog'liq
15-Ámeliy jumıs

Bu sahifa navigatsiya:

• Outgoing Traffic Deny 213.180.1.4/host
• Send Filter Receive Filter
• Incoming Traffic Internal Router interface to Proxy (IF11)
• Traffic Proxy interface to Switch 3 (IF1) Outgoing
• Proxy interface to Internal Router (IF2) Outgoing Traffic Incoming

List Name	Action	Source
Destination
Incoming Traffic	Deny	*	213.180.1.4/host
	Permit	*	*
Outgoing Traffic	Deny	213.180.1.4/host	*
	Permit	*	*

10. 4 Routerning ishki kirisiw dizimi (ACL)

Endi marshrutizator interfeyslerine kirisiw dizimin (ACL) tayınlaymız:

	Send Filter	Receive Filter
Internal Router interface to Internet (IF10)	Incoming Traffic	Incoming Traffic
Internal Router interface to Proxy (IF11)	Incoming Traffic	Incoming Traffic

10. 5 Ishki router interfeysleriniń kirisiw dizimi (ACL).


Bul parametrler IP marshrutlaw parametrleri->interfeys maǵlıwmatları ->satr i->Paket filtri arqalı bar.
7. Endi siz router hám proksi-server ushın marshrutlaw kestelerin sazlawıńız kerek:


vIP marshrutlaw parametrleri->Statikalıq marshrutlaw kestesi hám standart marshrut biz tómendegi bahalardı kirgiziwińiz kerek:

Destination Address	Subnet Mask	Next Hop
213.190.1.0	255.255.255.0	190.10.10.2
213.180.1.0	255.255.255.0	190.10.10.2
190.10.10.0	255.255.255.0	190.10.10.2
190.40.40.0	255.255.255.0	190.40.40.2
default		190.40.40.1

10. 6 Ishki marshrutizatorning marshrutlaw kestesi
Proksi ushın da tap sonday etemiz:

Destination Address	Subnet Mask	Next Hop
190.10.10.0	255.255.255.0	190.10.10.2
213.180.1.0	255.255.255.0	213.180.1.1
213.190.1.0	255.255.255.0	213.190.1.1
default		190.10.10.2

10. 7 Proksi marshrutlaw kestesi

Biz proksi-serverler ushın kirisiw dizimlerin (ACL) jarattık, sonda ishki stanciyalar Ishki Server 1 (Ishki Server 1) ga kiriwleri múmkin.

	Send Filter	Receive Filter
Proxy interface to Switch 2 (IFO)	Incoming Traffic	Outgoing Traffic
Proxy interface to Switch 3 (IF1)	Outgoing Traffic	Incoming Traffic
Proxy interface to Internal Router (IF2)	Outgoing Traffic	Incoming Traffic
10.6 ACLlardı proksi-interfeyslerge tayinlaw

8. Ekinshi hubdagi vLANni alıp taslang. Bunı vLAN Parameters->No vLANs parametrin ornatıw arqalı ámelge asırıw múmkin. Keyin isletiletuǵın ush port ushın (P1, P10, P13) tómendegi Port túri sazlamalarini ornatıń : Kirisiw; Qollap -quwatlanatuǵın vLAN'lar: 1; PvID: 1.

9. Endi biz endi kerek bolmaǵan router interfeysleriniń IP mánzillerin óshirip taslaymiz. Óshirilgen birpara kanallar ushın konfiguratsiya etilgen IP mánzilleri bolǵan biypul interfeysler ámeldegi bolıp, olar birpara mashqalalardi keltirip shıǵarıwı múmkin, sol sebepli siz barlıq routerlarning sazlamalarini kórip shıǵıwıńız hám olardı alıp taslawıńız kerek.

10. Stsenariyni simulyatsiya etiń hám nátiyjelerdi alın :

Biz jaratqan skriptte skript tabıslı bolǵanlıǵın tastıyıqlaw ushın jaratılǵan bir neshe pinglar bar.

Download 48.45 Kb.

Do'stlaringiz bilan baham:

---

Ma'lumotlar bazasi mualliflik huquqi bilan himoyalangan ©fayllar.org 2024
ma'muriyatiga murojaat qiling