-
Thc hnh
M hnh:
Yu cu:
1. Xy dng v cu hnh ton mng cho s trn. 2. Trn cc Router bt cc chc
nng sau: SSH, TELNET, HTTP, HTTPS 3. Trn my Server xy dng cc dch v
sau.
+ DNS Server vi domain: ithutech.net + Web Server:
http://ithutech.net v https://ithutech.net
+ FTP Server: ftp://ithutech.net
4. Ci t Nmap trn my Client scan port cc dch d lm cu 2 v cu 3
Hng dn: Telnet:
- Cu hnh c bn
R1(config)#line vty 0 4
R1(config-line)#transport input telnet
R1(config-line)# login
R1(config-line)# password cisco ( y password l cisco)
-
- Nu mun m phin Telnet m khng cn t password:
R1(config)#line vty 0 4
R1(config-line)#privilege level 15 {cp quyn cao nht}
R1(config-line)#no login
Khi Telnet s khng yu cu password v vo lun mode privilege
SSH:
M phin SSH trn R1
Bc 1: R1(config)#username ithutech password cisco {To username
l
ithutech v password l cisco cho user ng nhp vo Router}
Bc 2: R1(config)#ip domain-name ithutech.com {Cu hnh thng s
ip
domain-name}
Trn cc thit b Cisco, mc nh s dng thut ton RSA m ha d liu.
Thut ton RSA i hi phi c 2 thng tin : hostname, ip
domain-name.
Bc 3: R1(config)#crypto key generate rsa {To ra cp kha "Public/
Private"
m ha d liu bng RSA}
Mc nh m ha vi 512 bit, ti a 2048 bit (nhp vo khi cu hnh)
Hoc dng lun cu lnh sau:
R1(config)#crypto key generate rsa general-keys modulus 1024
-
Bc 4: R1(config)#ip ssh version 2 {Bc tnh nng SSH, dng SSH
version 2}
Bc 5: R1(config)#ip ssh authentication-retries 3 {Cu hnh ty chn
s ln nhp
username v password sai, y l 3 ln}
R1(config)#ip ssh time-out 100 {Cu hnh ty chn thi gian ch
nhp
username v password, y l 100 giy}
Nu thi gian cu hnh l 120 giy th dng lnh show running-config s
khng
hin th ln.
Bc 6: R1(config)#line vty 0 4
R1(config-line)#transport input ssh {p SSH vo VTY}
R1(config-line)# login local
T R0 SSH ti R1
Router#ssh v [version] l [username] c [encryption] m [hashing]
[ip]
V d: R0#ssh -l ithutech v 2 192.168.1.2
Ri sau nhp password c yu cu
Cu hnh dch v HTTP/HTTPS trn router:
Cu hnh http bng lnh: R1(config)#ip http server
Cu hnh https bng lnh: R1(config)#ip http secure-server
