Axborot xavfsizligi protokollari” fanidan Amaliy ish-7 Bajardi: Tekshirdi: Raxmatullayev D. A. Qarshi 2023


Download 0.86 Mb.
bet2/2
Sana05.05.2023
Hajmi0.86 Mb.
#1432784
1   2
Bog'liq
AXP777

Код

Комментарии к коду

Router> en


Router# enable


Router# conf t


Enter configuration commands, one per line. End with CNTL/Z.


Router(config)# interface gigabitethernet 0/0

FastEthernet 0/0 interfeys konfiguratsiya rejimiga kirish uchun buyruq

Router(config-if)# ip address 192.168.0.1 255.255.255.0

IP manzilini sozlash

Router(config-if)# no shutdown

Barcha interfeyslar sukut bo'yicha o'chirilgan. Interfeysni yoqing

Router(config-if)#


%LINK-5-CHANGED: Interface
GigabitEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on
Interface GigabitEthernet0/0, changed state to up


Router(config-if)# exit



Telnet yoki ssh ulanishi virtual terminal (vt) deb nomlanadi va




quyidagicha sozlanadi

Router(config)# line vty 0 4

0 4 - bu 5 foydalanuvchi virtual terminallari = telnet seanslari

Router(config-line)# login local


Router(config-line)# password telnet123


Router(config-line)# privilege level 15

bu foydalanuvchi huquqlari darajasi. Hammasi bo'lib 16 daraja mavjud: 015. imtiyoz darajasi 0 - bu barcha rejimlarda ishlaydigan o'chirish, yoqish, chiqish, yordam va chiqish buyruqlari 1-imtiyoz darajasi - Bular foydalanuvchi rejimi buyruqlari, ya'ni cis-ga etib borganingizdan va Router> buyruqni ko'rishingiz bilan siz 1darajali imtiyoz darajasi 15 - bu imtiyozli rejim buyruqlari, Unix-dagi kabi

Router(config-line)# exit


Router(config)# username cisco privilege 15 password cisco123

foydalanuvchiga huquqlar darajasini tayinlang, foydalanuvchi yaratiladi

Router(config)# end


Router#


Router# wr


Building configuration...


[OK]


Router#



4. Routerni sozlashdan so'ng, Cisco Telnet ulanishi uchun foydalanuvchi nomi va parol yaratdi. Routerga ulanishdan oldin ish joyidagi shaxsiy kompyuterdagi konfiguratsiyani quyidagicha sozlang:







  1. IP sozlamasini yoping va CMD buyruq satriga o'ting ( Command promt).


Buyruq satrida telnet 192.168.0.1 kiriting va Enter bosing. Keyin foydalanuvchi nomi va parol kiritiladi. Bunday holda, ism: cisco , parol: cisco123 ( parolni kiritish ko'rinmas ).

Cisco routeriga ulanganingizdan so'ng, siz LAN va WAN orqali qurilmangizni boshqarishingiz mumkin . Qurilmaga ulanishlarni ko'rish uchun show line. buyrug'ini bajaring .

Endi SSH-ni kommutatorda sozlaylik - buning uchun siz hostname, domen nomini ko'rsatishingiz va shifrlash kalitini yaratishingiz kerak.

Router-ni ikki marta bosing va buyruq satriga o'ting. Dastlabki sozlamalarni o'tkazib yuborish uchun Enter tugmasini bosing .
Чтобы подключить SSH на маршрутизатор, выполните следующие команды по порядку.

Router> enable


Router# conf t


Enter configuration commands, one per line. End with CNTL/Z.


Router(config)# hostname ADMIN

Hostname belgilash

ADMIN(config)# interface gigabitethernet 0/0


ADMIN(config-if)# ip address 192.168.1.1 255.255.255.0


ADMIN(config-if)# no shutdown


ADMIN(config-if)#


%LINK-5-CHANGED: Interface
GigabitEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state to up exit


ADMIN(config)# ip domain name ciscoadmin

Biz domen nomini ko'rsatamiz

ADMIN(config)# crypto key generate rsa

Shifrlash kaliti yaratilmoqda

The name for the keys will be:
ADMIN.ciscoadmin
General Purpose Keys. Choosing a key modulus greater than 512 may take a few minutes.


How many bits in the modulus [512]: 1024

Kalit uzunligini tanlang - 1024

% Generating 1024 bit RSA keys, keys will be non-exportable...[OK]


ADMIN(config)#ip ssh version 2

SSH versiyasini belgilaydi

*мар 1 0:6:0.73: %SSH-5-ENABLED: SSH
1.99 has been enabled


ADMIN(config)#ip ssh time-out 10

Kutish vaqti

ADMIN(config)#ip ssh authentication-retries 3

Avtorizatsiya urinishlari soni

ADMIN(config)#line vty 0 4


ADMIN(config-line)#login local


ADMIN(config-line)#privilege level 15


ADMIN(config-line)#transport input ssh


ADMIN(config-line)#exit


ADMIN(config)#username cisco privilege 15 password cisco123


ADMIN(config)#end


ADMIN#


%SYS-5-CONFIG_I: Configured from console by console


ADMIN#wr


Building configuration...


[OK]


ADMIN#


Endi IP-configuration bo'limida shaxsiy kompyuter parametrlarini sozlaylik :
:

Ulanish uchun, kompyuterga buyruq satriga o`tib, quyidagilarni kiriting va Enter tugmasini bosing :
ssh - l cisco 192.168.1.1 - l – kirish (login) qiymati сisco – marshrutizatorga ulangan foydalanuvchi nomi .
192.168.1.1 - marshrutizatorning ip manzili.
Yaratilgan parolni kiriting va ulanish o'rnatiladi. Show ssh buyrug`i bajarilgandan so'ng , buyruq satrida SSH protokoli versiyasini tekshirish mumkin.

Vazifa. TelNet va SSH protokollarini sozlang. O`zingizning IP - manzilingizni ko'rsating va foydalanuvchini o`zining nomi bilan ulang (username: ismingiz, password: ismi va guruh raqami).
Nazorat savollari:

  1. TelNet protokoli tavsifini bering .

  2. TelNet o`rnatish tartibi tavsiflab bering .

  3. TelNet va SSH protokollari o'rtasidagi farqlarni aytib bering .

  4. Telnet va SSH protokollarining asosiy vazifalari.

Download 0.86 Mb.

Do'stlaringiz bilan baham:
1   2



Ma'lumotlar bazasi mualliflik huquqi bilan himoyalangan ©fayllar.org 2024
ma'muriyatiga murojaat qiling