Add to collection(s) Add to saved
  1. No category
Uploaded by Sardor Zahriddinov

Norov Azizbek. Laboratoriya ishlari

advertisement 
NWS002 –L1 guruh talabasi Norov Azizbekning
Tarmoq xavfsizligi fanidan bajargan
LABORATORIYA ISHLARI
1-Laboratoriya ishi
Mavzu: Tarmoq qurilmalarida dastlabki xavfsizlik sozlamalarini o’rnatish – TELNET ,
SSH.
Ishdan maqsad: Tarmoq qurilmalarida TELNET va SSH protokollarini sozlashni o’rganish.
Ishni bajarish tartibi:
SSH protokolini ko’rib chiqamiz.
1. Cisco Packet Tracer dasturida kerakli qurilmalarni tanlab tarmoq topologiyasini
qurib olamiz.
2. SSH uchun kerak bo’ladigan buyruqlarni routerimizga kiritib olamiz.
3. SSH
protokolimiz tayyor bo’ldi endi uni testlab
ko’rishdan oldin har bir kompyuterga IP manzillar berib chiqamiz.
4. SSH protokolimizni tekshirib ko’ramiz.
Protokolimiz xatosiz ishladi.
2-Laboratoriya ishi
Mavzu: Kommutatorda port xavfsizligini(port security) sozlash
Ishni bajarish tartibi:
- Packet tracer dasturida tarmoq yaratib olamiz
- Kommutatorda port xavfsizligini sozlash uchun portlariga kerakli buyruqlarni CLI
oynasi orqali yozib chiqamiz undan oldin esa kompyuterlarimizga ip manzillar
berib olamiz.
Yuqorida Secure -MAC ni dynamic aniqlash korsatilgan.
Endi esa static aniqlashni ko’ramiz.
Xavfsizlik buzilishiga javob berish rejimini sozlash
Ishlatilmaydigan portlarni o’chirib qo’ysak ham bo’ladi.
Switch>enable
Switch#configure terminal
Switch(config)#hostname Sw1
Sw1(config)#interface fa0/1
1. Portni access rejimiga o`zgartirish
Sw1(config-if)#switchport mode access
2. Portda port-securityni ishga tushurish
Sw1 (config-if)#switchport port-security
3. Secure-MAC ni dinamik aniqlashni ko`rsatish
Sw1 (config-if)#switchport port-security mac-address sticky
Sw1 (config-if)#exit
4. Secure-MAC ni statik aniqlashni ko`rsatish
Sw1(config)#interface fastEthernet 0/2
Sw1(config-if)#switchport mode access
Sw1(config-if)#switchport port-security
Sw1(config-if)#switchport port-security mac-address 000B.BE9B.EE4A
Sw1(config-if)#end
5. Xavfsizlik buzilishigi javob berish rejimini sozlash
Sw1(config)#interface fastEthernet 0/3
Sw1(config-if)#switchport mode access
Sw1(config-if)#switchport port-security
Sw1(config-if)#switchport port-security mac-address sticky
Sw1(config-if)#switchport port-security violation protect
Sw1(config-if)#end
6. Ishlatilmayotgan portlarni o`chirish
Sw1(config)#interface range fastEthernet 0/5-24
Sw1(config-if-range)#shutdown
Download
advertisement