Routing Basic

LI NI U
LI NI U
Vi chin lc pht trin ton din mang tnh ch t n u v cng ngh nh m to ra tim lc to ln, sc cnh tranh v cht lng v s a dng ha cc dch v gi thnh thp, nng su t lao ng cao, Tp on Bu chnh Vin thng Vit nam c chin lc v k hoch chuyn i mng Vin thng s sang mng th h sau (NGN). Mng NGN c h tng thng tin duy nht da trn cng ngh chuyn mch gi, trin khai dch v mt cch a dng v nhanh chng, p ng s hi t gia thoi v s liu, gia c nh v di ng, bt ngun t s tin b ca cng ngh thng tin v cc u im ca cng ngh chuyn mch gi ni chung v cng ngh IP ni ring v cng ngh truyn dn quang bng rng. Cu trc ca mng th h sau v cc nguyn t c hot ng ca n v c bn khc nhiu so vi cu trc ca mng PSTN hin nay. Do v y i ng k s v cn b k thu t Vin thng cn phi c bi dng cp nht kin thc v cng ngh mi ny, c nh vy h mi kh nng v trnh vn hnh khai thc qun l v trin khai cc dch v Vin thng m t cch an ton v hiu qu. Chng trnh Bi dng k s in t vin thng v cng ngh IP v NGN ca Tp on c xy dng vi mc ch cung cp kin th c v k nng c bn lin quan ti cng ngh IP v NGN cho cc cn b k thu t ang trc tip qun l v khai thc h thng trang thit b ti c s nhm p ng yu cu v chuyn i cng ngh mng li v dch v vin thng ca Tp on. Cun ti liu nh tuyn IP c b n bao gm 4 chng, trnh by cc vn c bn v nh tuyn IP. Chng 1 gii thiu nhng khi nim c bn v nh tuyn IP cung cp cho ng i h c mt bc tranh tng th trc khi i vo nghin cu mt s giao thc nh tuyn c th. Chng 2 v chng 3 trnh by v ho t ng ca 2 giao thc nh tuyn vect khong cch ang c s dng kh rng ri, l RIP v IGRP. Chng 4 trnh by cch cu hnh nh tuyn trn router ca hng Cisco, thit b ang c s dng kh rng ri trn mng li ca VNPT. Trong qu trnh bin son, mc d gio vin rt c gng, tuy nhin khng th trnh khi nhng thiu st. Rt mong nhn c kin ng gp ca cc bn c nhng ln xut bn sau ch t lng ca ti liu c tt hn. TRUNG TM O TO BU CHNH VIN THNG 1
Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT
NH TUYN IP C BN
MC LC
LI NI U...................................................................................................................... I MC LC ........................................................................................................................... II DANH SCH HNH ............................................................................................................ 4 DANH SCH BNG .......................................................................................................... V CHNG 1 - C BN V NH TUYN ........................................................................ 1 1.1 CC KHI NIM V NH TUYN........................................................................... 2 1.1.1 nh tuyn l g?..................................................................................................... 2 1.1.2 Qu trnh nh tuyn ............................................................................................... 2 1.1.3 Giao thc c nh tuyn v giao thc nh tuyn................................................. 3 1.1.4 H t tr .................................................................................................................. 3 1.1.5 Phn loi giao thc nh tuyn................................................................................ 4 1.1.6 Metric nh tuyn .................................................................................................... 6 1.1.7 Hi t mng ............................................................................................................ 7 1.2 NH TUYN TNH V NH TUYN NG .......................................................... 7 1.3 NH TUYN VECT KHONG CCH.................................................................. 10 1.3.1 Cp nh t nh tuyn .............................................................................................. 10 1.3.2 Trao i bng nh tuyn ...................................................................................... 11 1.3.3 Truyn lan thay i v tp trn mng .................................................................. 12 1.3.4 Vng lp nh tuyn v m v hn ....................................................................... 12 1.3.5 Cc gi i php trnh vng lp nh tuyn............................................................... 14 1.4 NH TUYN TRNG THI LIN KT .................................................................. 16 1.4.1 Trao i thng tin nh tuyn ................................................................................ 16 1.4.2 Truyn lan thay i tp ....................................................................................... 17 1.4.3 Cc vn lin quan n gii thut trng thi lin kt.......................................... 18 1.4.4 Quyt nh ng i khng nht quan gia cc Router ......................................... 19 1.4.5 So snh giao thc nh tuyn vct khong cch v trng thi lin kt.................. 20 1.5 NH TUYN LAI ..................................................................................................... 21 CHNG 2 - GIAO THC NH TUYN RIP ............................................................. 23 2.1 GII THIU CHUNG................................................................................................. 24 2.2 BNG NH TUYN RIP.......................................................................................... 24 2.3 GII THUT CP NHT RIP ................................................................................... 24 2.4 CC BN TIN RIP..................................................................................................... 26 ii
MC LC
2.5 CC B NH THI RIP .......................................................................................... 28 2.6 RIP PHIN BN 2...................................................................................................... 29 CHNG 3 - GIAO THC NH TUYN IGRP .......................................................... 31 3.1 GII THIU CHUNG................................................................................................. 32 3.2 IGRP METRIC ........................................................................................................... 32 3.2.1 Cc metric ca IGRP ............................................................................................ 32 3.2.2 S dng metric..................................................................................................... 33 3.3 CC B NH THI ................................................................................................. 34 3.4 HOT NG CA IGRP KHI TP MNG THAY I......................................... 35 3.5 NH TUYN A NG CA IGRP..................................................................... 37 CHNG 4 - CU HNH NH TUYN........................................................................ 42 4.1 GII THIU CHUNG V ROUTER V CU HNH ROUTER ................................. 43 4.1.1 Cc thnh phn ca Router................................................................................... 43 4.1.2 Cc ch lnh .................................................................................................... 44 4.1.3 Cc thao tc cu h nh c bn trn router ............................................................. 45 4.2 THIT LP TUYN TNH......................................................................................... 56 4.3 THIT LP NH TUYN RIP ................................................................................. 58 4.4 CU HNH IGRP ....................................................................................................... 64 4.5 QUN L LU LNG BNG DANH SCH TRUY NHP .................................. 67 4.5.1 C bn v ACL...................................................................................................... 67 4.5.2 Cu h nh ACL ....................................................................................................... 72 4.5.3 ACL chun............................................................................................................ 74 4.5.4 ACL m rng ........................................................................................................ 77 THUT NG VIT TT.................................................................................................. 79 TI LIU THAM KHO ................................................................................................. 81
iii
NH TUYN IP C BN
DANH SCH HNH

Hnh 1.1 Router s dng phn a ch mng nh tuyn d liu ......................................... 2 Hnh 1.2 Lin mng c chia thnh nhiu h t tr ............................................................... 4 Hnh 1.3 Tuyn tnh trnh c cp nht nh tuyn qua lin kt WAN .................................. 8 Hnh 1.4 Kh nng thay th tuyn hng ca nh tuyn ng ................................................. 9 Hnh 1.5 Cc giao thc nh tuyn duy tr v phn b thng tin nh tuyn .......................... 10 Hnh 1.6 Giao th c vct khong cch gi nh k cc bn sao ca bng nh tuyn .......... 11 Hnh 1.7 Router vct khong cch khm ph ng i tt nht n ch t cc hng xm.. 11 Hnh 1.8 Cp nht nh tuyn tin hnh tng b c, t Router ny ti Router khc............... 12 Hnh 1.9 Router A cp nht bng nh tuyn phn nh s bc nhy mi........................ 12 Hnh 1.10 Vng lp nh tuyn tng vct khong cch ....................................................... 13 Hnh 1.11 Gii hn khong cch ti a ................................................................................ 14 Hnh 1.12 Khi nim phn chia ranh gii (split horizon)...................................................... 15 Hnh 1.13 Gi i thu t trng thi lin kt cp nht thng tin tp ca t t c cc Router khc 16 Hnh 1.14 T t c cc router cng tnh ton ng i ngn nht ti ch ............................. 17 Hnh 1.15 Tin trnh cp nh t trng thi lin kt .................................................................. 18 Hnh 1.16 Cp nh t khng ng b v quyt nh ng i khng nh t qun....................... 19 Hnh 1.17 Giao thc nh tuyn lai .......................................................................................................21 Hnh 2.1 Bng nh tuyn RIP ban u ................................................................................ 25 Hnh 2.2 Bng nh tuyn RIP cui cng.............................................................................. 26 Hnh 2.3 nh dng bn tin RIP........................................................................................... 26 Hnh 2.4 Bn tin RIP yu cu ............................................................................................... 27 Hnh 2.5 Bn tin RIP tr li ................................................................................................. 28 Hnh 2.6 nh dng thng bo RIP phin bn 2 ................................................................... 29 Hnh 2.7 Trong RIPv2 m c u tin c s dng cho chng thc...............................................30 Hnh 3.1 Cn bng t i ng gi ........................................................................................... 37 Hnh 3.2 Cn bng t i khng ng gi .................................................................................................39 Hnh 4.1 Thng tin cu hnh c th n t nhiu ngun........................................................ 43 Hnh 4.2 Cc thnh phn cu hnh bn trong router............................................................. 44 Hnh 4.3 Cc lnh kim tra mng t i cc tng ...................................................................... 53 Hnh 4.4 Lnh ping kim tra tnh kt ni tng mng ............................................................. 54 Hnh 4.5 Lnh trace hi n th a ch cc giao din s dng ti ch ................................. 55 Hnh 4.6 Din gii cc thng tin ca lnh show interfaces ................................................... 56 Hnh 4.7 V d v mt lin mng .......................................................................................... 58 Hnh 4.8 V d v mt lin mng .......................................................................................... 62 Hnh 4. 9 S dng ACL lc lu lng .............................................................................. 68 Hnh 4.10 S dng ACL ngn lu lng ti m t mng..................................................... 69 Hnh 4.11 ACL kim tra gi v cc tiu tng trn ............................................................ 70 Hnh 4.12 Hot ng ca ACL ............................................................................................. 71 Hnh 4.13 Qu trnh x l danh sch truy nhp .................................................................... 71 Hnh 4.14 Mng v d........................................................................................................... 76
DANH SCH BNG
DANH SCH BNG
Bng 1.1 So snh nh tuyn trng thi lin kt v vct khong cch.................................. 20 Bng 2.1 Bng nh tuyn vect khong cch....................................................................... 24 Bng 3.1 Bng nh tuyn ca router A khi cn bng ti ng gi ....................................... 38 Bng 3.2 Bng nh tuyn ca router A khi cn bng ti khng ng gi ............................. 40 Bng 4.1 Cc lnh hin th trng thi router ........................................................................ 48 Bng 4.2 S hiu ACL i vi cc giao thc......................................................................... 73
CHNG 1
C BN V NH TUYN
Ni dung chng bao gm: q Cc khi nim c bn v nh tuyn. q nh tuyn tnh v nh tuyn ng. q nh tuyn vect kho ng cch v nh tuyn trng thi lin kt. q nh tuyn lai.
NH TUYN IP C BN
1.1 CC KHI NIM V NH TUYN 1.1.1 nh tuyn l g? nh tuyn (routing) l s la chn mt con ng truyn mt n v d liu (m t gi tin chng hn) t trm ngun n trm ch trong mt lin mng. Chc nng nh tuyn, c thc hin tng mng, cho php router nh gi cc ng i sn c ti ch. nh gi ng i, nh tuyn s dng cc thng tin tp mng. Cc thng tin ny c th do ngi qun tr thit lp hoc c thu lm thng qua cc giao thc nh tuyn. Tng mng h tr chuyn gi t u cu i-ti-u cui n lc ti a (best-effort) qua cc mng c kt ni vi nhau. Tng mng s dng b ng nh tuyn IP gi cc gi t mng ngun n mng ch. Sau khi quyt nh s dng ng i no, router tin hnh vic chuyn gi. N ly m t gi nhn c giao din vo v chuyn tip gi ny ti giao din ra tng ng (giao din th hin ng i tt nht ti ch cho gi). Trong mt lin mng, mi mng c nh danh bi mt a ch mng v router s dng cc a ch mng ny nhn bit ch. Router s d ng a ch mng nhn d ng mng ch c a mt gi tin trong lin mng. Hnh 1.1 minh ha ba a ch m ng c dng nhn din cc phn on kt n i ti router.
Hnh 1.1 Router s d ng phn a ch mng nh tuyn d liu 1.1.2 Qu trnh nh tuyn Khi nh tuyn d liu t ngun n ch, router thng chuyn tip gi t mt
2
CHNG 1 - C BN V NH TUYN
lin kt d liu (mng) ny n mt lin kt d liu khc, s dng hai chc nng c bn: Xc nh ng i (path determination) Chuyn m ch (switching)
Chc nng xc nh ng i chn ra m t ng i t i u n ch theo mt tiu ch no (chng h n chiu di ng i). tr gip cho qu trnh xc nh ng i, cc gii thut nh tuyn khi to v duy tr bng nh tuyn, b ng ny cha thng tin v cc tuyn ti ch. Khi ng i ti u c xc nh, bc nhy tip theo gn vi ng i ny cho router bit phi gi gi i u n c th n ch theo ng i t i u . Chc nng chuyn mch cho php router chuyn gi t cng vo ti cng ra tng ng vi ng i ti u chn. Trong qu trnh nh tuyn, phn a ch mng c s d ng xc nh ng i, cn phn a ch trm c router cui cng trn ng i (router n i trc tip ti mng ch) s dng chuyn gi ti ng trm ch. 1.1.3 Giao thc c nh tuyn v giao thc nh tuyn Do hai thut ng giao thc nh tuyn v giao thc c nh tuyn kh ging nhau, nn thng xut hin s nhm gia chng. Sau y l m t s im phn bit:
q
Giao thc c nh tuyn (routed protocol): L m t giao th c mng b t k , cung cp thng tin trong a ch tng m ng ca n cho php gi c chuyn tip t trm ny ti trm khc d a trn lc nh a ch . Giao thc c nh tuyn s dng b ng nh tuyn chuyn gi. Giao thc IP l mt v d v giao thc c nh tuyn. Giao thc nh tuyn (routing protocol): L giao thc h tr cho mt giao thc c nh tuyn bng cch cung cp cc c ch chia s thng tin nh tuyn. N cho php cc router lin lc vi nhau cp nht v duy tr cc b ng nh tuyn. M t s v d v cc giao thc nh tuyn l RIP, OSPF, BGP .v.v.
1.1.4 H t tr Ngy nay, mt lin mng c th ln n mc mt giao thc nh tuyn khng th x l cng vic cp nht bng nh tuyn ca tt c cc router. V l do ny, lin mng c chia thnh nhiu h t tr (AS - Autonomous System). H t tr l mt nhm cc mng v router chu s qun l chung ca mt t chc. N i khi cn c g i l min nh tuyn (routing domain). nh tuyn bn trong m t h t tr c gi l nh tuyn trong. nh tuyn gia cc h t tr c g i l nh tuyn ngoi. Mi h t tr c th chn mt giao thc nh tuyn trong thc hin nh tuyn bn trong h
NH TUYN IP C BN
thng. Tuy nhin, thng ch c mt giao thc nh tuyn ngoi c chn thc hin nh tuyn gia cc h t tr.
AS 1 AS2
R1 R2
R4 R3
AS 4
AS3
H nh 1.2 Lin mng c chia thnh nhiu h t tr 1.1.5 Phn loi giao thc nh tuyn C nhiu cch phn loi giao thc nh tuyn, sau y l mt s cch phn loi ph bin: nh tuyn tnh v nh tuyn ng nh tuyn n ng v a ng nh tuyn ph ng v nh tuyn phn cp nh tuyn trm thng minh v nh tuyn router thng minh nh tuyn trong v nh tuyn ngoi nh tuyn vc t khong cch v nh tuyn trng thi lin kt
nh tuyn tnh v nh tuyn ng nh tuyn tnh l nh tuyn m cc tuyn c thit lp nhn cng bi ngi qun tr. Cc thit lp ny khng thay i tr khi ngi qun tr thay i chng. nh tuyn tnh d thit lp v hot ng tt trong mi trng m ng m lu lng c th d bo trc v thit k mng tng i n gin. Do nh tuyn tnh khng phn ng li nhng thay i mng nn chng thng khng ph hp vi cc lin mng ln ngy nay, nhng mng thng xuyn thay i. Gii thut nh tuyn ph bin nht l nh tuyn ng. nh tuyn ng iu ch nh theo thay i mng bng cch phn tch cc cp nht nh tuyn nh n c. Nu gi cp nht cho bit c thay i tp mng, phn mm nh tuyn s tnh ton li tuyn v gi i cp nht nh tuyn mi bo cho cc router khc.
nh tuyn n ng v a ng M t s giao thc nh tuyn phc tp h tr nhiu ng i ti cng ch, trong khi mt s khc ch cho php m t ng i ti ch. Cc giao thc h tr a ng cho php lu lng c chuyn trn nhiu tuyn ng th i. Tnh nng ny c gi l cn bng ti. u im ca nh tuyn a ng l cung cp bng thng v tin cy tt hn. nh tuyn ph ng v nh tuy n phn c p M t s giao thc nh tuyn hot ng trong h thng ph ng, trong khi mt s giao thc khc hot ng phn cp. Trong h th ng phng, cc router c vai tr ngang hng nhau. Trong h thng phn cp, m t s router hnh thnh mt vng ng tr c. Cc gi thu c vng khng ng tr c c gi n ng tr c ri mi gi n cc vng khc n ch. Cc h thng nh tuyn thng c thit k thnh cc nhm nt, c gi l min nh tuyn, h t tr hay vng. Trong h thng phn cp, mt s router trong min c th lin lc vi cc router min khc, trong khi m t s khc ch lin lc vi cc router trong min. u im chnh ca nh tuyn phn cp l n bt chc t chc c a h u ht cng ty v do h tr t t cho iu hnh v qun l lu lng. Hu ht cc truyn thng mng xut hin bn trong min v cc router bin ca min bit cn nh tuyn lu lng i u. iu ny lm gim ng k lu lng cp nht nh tuyn. nh tuyn trm thng minh v nh tuyn router thng minh M t s gii thut nh tuyn gi s rng nt ngun s quyt nh ton b tuyn. C ch ny c gi l nh tuyn ngun. Trong cc h thng nh tuyn ngun, router n thun hot ng nh mt thit b lu tr v chuyn tip, gi gi n im tip theo. M t s gii thut khc gi s trm ngun khng bit g v tuyn. Trong cc gii thut ny, router xc nh ng i qua lin mng da trn tnh ton ca ring n. Trong h thng u tin, trm l thit b thng minh; trong h thng th hai, router l thit b thng minh. nh tuyn trong v nh tuyn ngoi M t s giao thc nh tuyn ch hot ng bn trong min nh tuyn (h t tr), trong khi mt s giao thc khc c th hot ng bn trong v gia cc min. Mc ch s dng ca cc giao thc ny l khc nhau. Do , mt giao thc nh tuyn ngoi ti u khng nht thit phi l m t giao thc nh tuyn trong ti u.
NH TUYN IP C BN
nh tuyn vect khong cch v nh tuyn tr ng thi lin kt nh tuyn trng thi lin kt, cn c g i l ng i ngn nh t trc, trn ngp thng tin nh tuyn ti tt c cc nt trong lin mng. Tuy nhin, mi router ch gi m t phn b ng nh tuyn, phn m t trng thi lin kt c a router. Trong gii thut nh tuyn trng thi lin kt, mi router xy d ng mt b c tranh v ton b mng trong b ng tp. Gii thut vect khong cch bu c cc router gi ton b bng nh tuyn, nhng ch gi n hng xm (router kt n i trc tip). V bn cht, gii thut trng thi lin kt gi cc gi cp nht nh i khp ni, trong khi gii thut vect kho ng cch gi cc gi cp nht ln ti ch hng xm. 1.1.6 Metric nh tuyn Cc bng nh tuyn cha thng tin c s dng bi phn mm chuyn mch chn tuyn tt nht. Nhng cc b ng nh tuyn c xy dng nh th no? Cc thng tin lu tr trong n l g? Cc gii thut nh tuyn d a trn ci g chn tuyn tt nht. Cc gii thut nh tuyn s dng nhiu metric xc nh tuyn tt nht. Cc gii thu t phc tp c th chn tuyn d a trn nhiu metric bng cch kt h p chng thnh m t metric phc hp. Cc metric c s dng ph bin gm: o Chiu di ng i o tin cy o tr o Bng thng o Ti o Gi truyn thng Chiu di ng i: l metric nh tuyn ph bin nht. Mt s gii thut nh tuyn cho php nh qun tr mng tu gn gi tr cho mi lin kt mng. Trong trng hp ny, chiu di ng i l tng cc gi c gn cho cc lin kt trn ng i. Mt s gii thut khc s dng tng s bc nhy (hop count) lm metric chn tuyn ti u. Tng s bc nhy l s lng router m m t gi d liu i qua trc khi n ch. tin cy: trong phm vi c a cc gii thut nh tuyn, tin cy thng l t l bt li c a mi lin kt mng. tin cy thng do ngi qun tr gn. tr: ch khong thi gian cn thit chuyn gi d liu t ngun n ch qua lin mng. tr ph thuc vo nhiu nhn t, bao gm: bng thng ca cc lin kt mng trung gian, cc hng i cng ti mi Router dc ng i, tc nghn mng trn tt c cc lin kt mng trung gian, v kho ng cch vt l phi i qua.
6
Do tr l s kt hp nhiu bin s quan trng nn n l m t metric ph bin v hu ch. Bng thng: ch kh nng lu lng sn c ca m t lin kt. Mt lin kt Ethernet 10 Mb/s c th c a thch hn ng thu ring 64 Kb/s. Mc d bng thng l cp thng lng c th t c trn m t lin kt, nhng tuyn qua cc lin kt c bng thng ln khng phi lc no cng tt hn tuyn qua cc lin kt ch m. V d, nu mt lin kt nhanh hn nhng li thng xuyn bn th thi gian yu cu thc s gi m t gi d liu n ch c th ln hn. T i: ch mc bn ca ti nguyn mng, chng hn router. Ti c th c tnh ton bng nhiu cch, bao gm thi gian s dng CPU v s lng gi c x l trong thi gian mt giy. Gi truyn thng: l mt metric kh quan trng, c bit do m t s cng ty c th khng quan tm nhiu ti hiu sut b ng ph tn vn hnh. Mc d tr trn ng truyn c th ln hn, nhng h thch gi d liu qua nhng ng truyn ca ring h hn l gi qua cc ng truyn cng cng v khi h phi tr tin s dng. 1.1.7 Hi t m ng Gii thu t nh tuyn l c s cho nh tuyn ng. M i khi tp m ng thay i do s tng trng mng, s cu hnh li hay hng hc, c s tri thc mng cng phi thay i theo. Tri th c (knowledge) cn phn nh ci nhn nht qun v chnh xc v tp mi. Ci nhn hay trng thi ny c gi l s hi t. Khi tt c cc router trong mt lin m ng ang hot ng vi cng m t tri th c, th lin mng c ni l hi t. S hi t nhanh l m t c tnh mng lun c mong mun v n lm gim khong thi gian trong cc router tip tc c quyt nh nh tuyn khng chnh xc sau khi tp mng thay i.
1.2 NH TUYN TNH V NH TUYN NG nh tuyn tnh l nh tuyn m cc tuyn c thit lp v qun l nhn cng bi ngi qun tr. Trong trng hp tp m ng thay i, tuyn khng c t ng cp nht m thay vo ngi qun tr phi cp nht li tuyn m t cch th cng. nh tuyn ng hot ng khc vi nh tuyn tnh. Sau khi ngi qun tr nhp cc lnh cu hnh khi to nh tuyn ng, thng tin v tuyn s c cp nht t ng mi khi nhn c mt thng tin m i t lin mng. Cc thay i v tp mng c trao i gia cc router.
NH TUYN IP C BN
Ti sao s dng nh tuyn tnh Mc d phi thit lp nhn cng v khng t ng cp nh t tuyn, nhng nh tuyn tnh vn h u ch trong nhiu trng hp: o Do nh tuyn ng c khuynh hng truyn t tt c cc thng tin v mt lin mng nn trong trng h p chng ta c th mun che d u mt s phn ca lin mng (v l do an ton) th s dng nh tuyn tnh l ph hp nht. o Trong trng hp ch c mt ng i duy nh t ti mng, th ch cn mt tuyn tnh ti mng l . Loi mng n y c g i l mng ct (stub network). Cu hnh nh tuyn tnh cho mt mng ct trnh c lu lng cp nht nh tuyn ng. iu ny c bit hu ch i vi cc kt ni quay s.
Hnh 1.3 Tuyn tnh trnh c cp nht nh tuyn qua lin kt WAN S c n thit ca nh tuy n ng Mng hnh 1.4 s thch ng khc nhau i vi cc thay i v tp mng, tu thuc vic n s dng nh tuyn tnh hay nh tuyn ng. nh tuyn tnh cho php cc router nh tuyn gi tin t mng ny ti mng khc da trn cc thng tin c cu hnh th cng. Trong v d ny, Router A lun gi lu lng c ch l Router C qua Router D. Router A tham chiu ti bng nh tuyn c a n v da theo cc thng tin tnh chuyn tip gi ti Router D. Router D cng thc hin cc cng vic tng t v chuyn tip gi ti Router C. Router C chuyn gi ti trm ch. Nu ng i gia Router A v Router D b li, Router A khng khng th chuyn gi ti Router D thng qua tuyn tnh thit lp ny. Nh vy, truyn thng vi mng ch khng th thc hin c cho n khi Router A c cu h nh li chuyn gi qua Router B. y chnh l mt nhc im ca nh tuyn tnh.
8
Hnh 1.4 Kh nng thay th tuyn hng ca nh tuyn ng nh tuyn ng ho t ng linh hot hn. Theo bng nh tuyn c a Router A, gi c th ti ch c a n qua Router D. Tuy nhin, cn c mt ng i sn c khc ti ch, l i qua Router B. Khi Router A nhn ra rng lin kt ti Router D b li, n iu chnh b ng nh tuyn v ng i ti mng ch s qua Router B. Khi lin kt gia Router A v D c khi phc, Router A c th mt ln na thay i bng nh tuyn chuyn ng i ti ch l qua Router D. Cc giao thc nh tuyn ng cng c th chuyn lu lng t cng m t phin lm vic qua nhiu ng i khc nhau trong mng c hiu sut cao hn. Tnh ch t ny c g i l chia s ti (load sharing). Hot ng ca nh tuyn ng S thnh cng c a nh tuyn ng ph thuc vo hai chc nng c bn c a router: Duy tr bng nh tuyn, Chia s tri thc cho cc router khc di d ng cc cp nht nh tuyn. nh tuyn ng da vo cc giao th c nh tuyn chia s tri thc gia cc router. Giao thc nh tuyn nh ngha mt tp lut m router s dng khi lin lc vi cc router hng xm. Ch ng h n, m t giao thc nh tuyn m t: Cch gi cp nht, Thng tin no cha trong cc cp nht, Khi no th gi cp nht, Router no nhn cp nht.
NH TUYN IP C BN
Hnh 1.5 Cc giao thc nh tuyn duy tr v phn b thng tin nh tuyn Xc nh kho ng cch trn cc ng i mng Khi mt gii thut nh tuyn cp nht bng nh tuyn, m c ch chnh ca n l xc nh u l thng tin tt nht lu trong bng nh tuyn. M i gii thut nh tuyn xc nh thng tin t t nht theo cch ca ring n. Gii thut to ra mt s, c g i l gi tr metric, cho mi ng i qua mng. Thng th gi tr metric cng nh th ng i cng t i u. Chng ta c th tnh ton cc metric da trn mt c tnh n l ca ng i; hoc bn cng c th tnh cc metric phc tp hn b ng cch kt hp nhiu c tnh. Mt s loi metric ph bin c gii thiu phn trc.
1.3 NH TUYN VECT KHONG CCH Giao thc nh tuyn vect khong cch gi nh k cc bn sao ca bng nh tuyn t mt router ti cc router hng xm (router ni trc tip). Nhng cp nht u n ny gia cc router truyn t cc thay i v tp mng. 1.3.1 C p nh t nh tuyn M i router nhn c mt b ng nh tuyn y t cc router hng xm. V d, trong hnh 1.6, Router B nh n thng tin t Router A. Router B tng vect khong cch v chuyn bng nh tuyn mi ny ti nhng hng xm khc ca n (Router C). Mt qu trnh tng t s xy ra trong tt c cc hng gia cc router hng xm. Router tch lu cc kho ng cch mng v duy tr m t c s d liu v thng tin tp mng. Tuy nhin cc gii thut vect khong cch khng cho php mt router bit chnh xc v tp ca m t lin mng.
10
Bng nh tuyn
B ng nh tuy n
B ng nh tuy n
B ng nh tuy n
Hnh 1.6 Giao thc vct khong cch g i nh k cc bn sao ca bng nh tuyn v tch lu cc vct khong cch. 1.3.2 Trao i bng nh tuyn M i router s dng giao th c vect khong cch bt u hot ng bng cch xc nh cc hng xm ca mnh. Trong hnh 1.7, cc mng ni trc tip ti router c ch ra vi khong cch b ng 0. Khi tin trnh khm ph mng bt u, cc router khm ph ng i tt nht ti mng ch da trn cc thng tin chng nhn c t mi hng xm. V d, Router A hc cc mng khc da trn thng tin n nhn c t Router B. M i m c trong bng nh tuyn c m t vect khong cch tch lu ch ra khong cch ti mng ch trong mt hng nht nh.
W A X B Y C Z
Bng nh tuyn W X Y Z 0 0 1 2
Bng nh tuyn X Y Z W 0 0 1 1
Bng nh tuyn Y Z X W 0 0 1 2
Hnh 1.7 Cc Router vct khong cch khm ph ng i t t nht n ch t cc hng xm
11
NH TUYN IP C BN
1.3.3 Truyn lan thay i v tp trn mng Khi tp trong mng s dng giao thc vect khong cch thay i, cp nht bng nh tuyn phi c thc hin. Vi tin trnh khm ph mng, cc cp nht thay i tp tin h nh tng bc, t router ny ti router khc, nh minh ha hnh 1.8. Cc giao th c vect khong cch yu cu mi router gi ton b bng nh tuyn ti cc hng xm. Cc b ng nh tuyn cha nhng thng tin v gi ng i tng cng (c nh ngha bi cc metric) v a ch lgic ca router u tin trn ng i ti mi mng cha trong bng nh tuyn.
X l cp nht bng nh tuy n ny X l cp nht bng nh tuy n ny
Router A gi ra bng nh tuy n c cp nht ny
Thay i c s d liu tp dn n cp nht nh tuyn
Hnh 1.8 Cp nh t nh tuyn tin hnh tng bc, t Router ny ti Router khc 1.3.4 Vng l p nh tuy n v m v hn Vn vng l p nh tuyn Vng lp nh tuyn (routing loop) c th xut hin n u mng hi t chm, dn n cc mc nh tuyn khng nht qun. Hnh 1.9 minh ho qu trnh xu t hin vng lp nh tuyn.
Khng th ti mng 1
E 1
D Tuyn thay th: Mng 1; Khong cch 3 Tuyn thay th: Mng 1; Khong cch 4
Mng 1 hng
Hnh 1.9 Router A cp nht bng nh tuyn phn nh s bc nhy mi nhng khng ng
12
1. Trc khi c l i mng 1, tt c cc router c mt tri th c nht qun v cc b ng nh tuyn ng n. Mng c g i l h i t. Gi s ng i t i u t Router C ti mng 1 l i qua Router B v kho ng cch t Router C ti mng 1 l 3. 2. Khi mng 1 li, Router E gi m t cp nht cho Router A. Router A ngng vic nh tuyn gi ti m ng 1, nhng Router B, C v D vn tip tc v chng cha c thng bo v li ny. Khi Router A gi i cp nht c a n, Router B v D ngng nh tuyn ti mng 1. Tuy nhin, Router C vn cha nhn c cp nht. i vi Router C, mng 1 vn c th ti thng qua Router B. 3. By gi Router C gi nh k cc cp nht nh tuyn ti Router D, ch ra ng i ti m ng 1 thng qua Router B. Router D thay i bng nh tuyn ca mnh phn nh thng tin m i nhng khng chnh xc ny, v truyn thng tin ti Router A. Router A truyn thng tin ti Router B v E .v.v. V lc ny, tt c cc gi c ch l m ng 1 b lp vng t Router C ti B ti A ti D v quay tr li C. Vn m v hn Tip theo v d trn, cc cp nht khng hp l v mng 1 tip tc lp vng n khi c mt tin trnh no ct b vng lp. Tnh trng ny, c g i l m v hn, tip tc lp vng cc gi quanh mng b t chp mt th c t l mng 1 khng hot ng. Trong khi cc router ang m v hn, cc thng tin khng hp l cho php tn ti m t vng lp nh tuyn. Nu khng c bin php i ph ngng tin trnh ny, vect khong cch (metric) ca s bc nh y tng ln mi khi qua mt router (hnh 1.10). Cc gi ny lp vng quanh mng do cc thng tin sai trong bng nh tuyn.
Mng 1; Khong cch 6 B Mng 1; Khong cch 7
E 1
D Mng 1; Khong cch 5 Mng 1; Khong cch 4
Mng 1 hng
Hnh 1.10 Vng lp nh tuyn tng vct khong cch
13
NH TUYN IP C BN
1.3.5 Cc gii php trnh vng lp nh tuyn Gi i php nh ngha s ti a Cc gii thut nh tuyn vct khong cch l gii thu t t hiu chnh, nhng vn v vng lp nh tuyn c th dn n tnh trng m v h n. trnh tnh trng ny ko di, cc giao thc vct khong cch nh ngha mt s ti a, v cc router s ngng m khi metric t ti s ti a ny. Vi cch ny, giao thc nh tuyn ch cho php vng lp tn ti khi metric ch a vt qu gi tr ti a cho php. Hnh 1.11 cho thy gi tr metric l 16 bc nhy, gi tr ny vt qu gi tr ti a mc nh l 15 bc nhy, v do router s b gi. Trong mi trng hp, khi gi tr metric vt qu gi tr t i a, mng 1 c xem nh khng th ti.
Mng 1; Khong cch 13 Mng 1; Khong cch 14
E 1
D
Mng 1; Khong cch 12 Mng 1; Khong cch 15
Mng 1 hng
B i
Bng nh tuyn
Metric t i a l 16 Khng th ti mng 1
Hnh 1.11 Gii hn khong cch ti a Gi i php phn chia ranh gii M t phng php lm gim vng lp nh tuyn v tng t c hi t l s dng k thut c tn phn chia ranh gii (split horizon). Nguyn l ca k thut ny l: mt router khng bao gi gi thng tin v mt tuyn theo hng m router cp nht tuyn ny. Nu router gi thng tin v m i tuyn theo m i hng th vng lp nh tuyn c th xu t hin. Sau y l mt v d : 1. Router A chuyn mt cp nht nh tuyn cho Router B v Router D, ch ra rng khng th ti m ng 1 . Tuy nhin, Router C li chuyn mt cp nht ti Router B ch ra rng c th ti mng 1 vi khong cch l 4 v i qua Router D. 2. Router B kt lun mt cch khng chnh xc rng Router C vn c m t ng
14
i h p l ti m ng 1, mc d kho ng cch ln hn. Router B gi mt cp nht cho Router A thng bo m t tuyn mi ti mng 1. 3. Lc ny Router A xc nh rng n c th ti mng 1 bng cch i qua Router B, Router B xc nh rng n c th ti m ng 1 bng cch qua Router C, v Router C xc nh rng n c th ti mng 1 b ng cch qua Router D. Khi s xut hin vng lp v bt k gi tin no c ng b lp vng gia cc Router. K thu t phn chia ranh gii c th trnh c tnh trng trn. Nh ch ra hnh 1.12, n u mt cp nht nh tuyn v m ng 1 n t Router A, th Router B hoc D khng bao gi gi thng tin v m ng 1 li cho Router A. Phn chia ranh gii lm gim lng thng tin nh tuyn khng chnh xc v gim lu lng cp nht nh tuyn.
Khng gi cp nht v tuyn ti mng 1 cho A
Khng th ti mng 1
E 1
Khng gi cp nht v tuyn ti mng 1 cho A
Mng 1 hng
Hnh 1.12 Khi nim phn chia ranh gii (split horizon) Gi i php b nh thi gi (hold-down) Cc b nh thi gi c s dng ngn cc thng bo cp nht khi thit lp li khng ng n m t tuyn c th b hng. Chng ta c th trnh c tnh trng m v hn bng cch s dng cc b nh thi gi. Hot ng ca chng nh sau: 1. Khi router nhn c mt cp nht t hng xm ch ra rng khng th truy nhp ti mt mng m trc y vn c th truy nhp, router nh d u tuyn l khng th truy nhp v khi ng b nh thi gi. Nu trc khi b nh th i ny h t h n m router nhn c m t cp nht t chnh hng xm ny bo rng li c th truy nhp mng, router s nh d u tuyn l c th truy nhp v g b b nh thi gi. 2. Nu m t cp nht n t m t router hng xm khc vi tuyn ti mng c metric tt hn tuyn trong b ng nh tuyn, router thay th tuyn trong bng nh tuyn, nh du mng c th truy nhp v g b b nh thi gi. 3. Nu trc khi b nh thi gi ht h n, router nhn c cp nht c metric km hn t m t hng xm khc, router s b qua cp nht ny. Vic b qua
15
NH TUYN IP C BN
cp nht c metric km hn khi ang thit lp b nh thi gi cho php c nhiu th i gian thng tin v tuyn li truyn lan trn ton b m ng.
1.4 NH TUYN TRNG THI LIN KT Gii thut c bn th hai c s dng cho nh tuyn l gii thut trng thi lin kt (link state). Cc gii thut nh tuyn trng thi lin kt, cn c gi l gii thu t ng i ngn nht trc (SPF), duy tr mt c s d liu phc tp v thng tin tp. Trong khi gii thut vct khong cch khng c cc thng tin khng c th v cc mng xa v khng c hiu bit v cc router xa, th gii thut nh tuyn trng thi lin kt duy tr cc thng tin y v router xa v cch chng c kt n i vi nhau.
Trao i cc qung co trng thi lin k t
CSDL tp
Gi i thut SPF Cy SPF
Bng nh tuyn
Hnh 1.13 Gii thut trng thi lin kt cp nh t thng tin tp ca tt c cc Router khc Gii thut trng thi lin kt s dng: Qung co trng thi lin kt (LSA) C s d liu tp Gii thut SPF v cy SPF kt qu Bng nh tuyn v cc cng ti mi mng (hnh 1.13)
1.4.1 Trao i thng tin nh tuy n Cc c ch khm ph mng trng thi lin kt c s dng to mt bc tranh chung v ton b mng. Tt c cc router trng thi lin kt chia s ci nhn ny v mng. iu ny c ng ging vi vic c nhiu bn ging nhau v mt th trn.
16
Trong hnh 1.14, bn mng (W, X, Y v Z) c kt ni bi 3 router trng thi lin kt. Khm ph mng cho nh tuyn trng thi lin kt s dng cc tin trnh sau: 1. Cc router trao i cc qung co trng thi lin kt (LSA) vi nhau. Mi router bt u vi cc mng ni trc tip vi n. 2. M i router ng thi xy dng m t c s d liu tp bao gm tt c cc LSA n t lin mng.
W A X B Y Z
Bng nh tuyn W X
CSDL tp
Bng nh tuyn X Y
CSDL tp
Bng nh tuyn Y Z
CSDL tp
0 0
0 0
0 0
SPF
SPF
SPF
B ng nh tuy n
Bng nh tuy n
B ng nh tuy n
Hnh 1.14 Trong nh tuyn trng thi lin kt, tt c cc router cng tnh ton ng i ngn nh t ti ch 3. Gii thut ng i ngn nht trc (SPF) tnh ton kh nng c th ti cc mng ch. Router xy dng tp logic di dng mt cy, vi g c l chnh n, gm tt c cc ng i c th ti mi mng trong lin mng vect khong cch. Sau n sp xp cc ng i ngn nht ny. 4. Router lit k cc ng i tt nht v cc cng ti cc mng ch trong bng nh tuyn. 1.4.2 Truyn lan thay i tp Cc gii thut trng thi lin kt da trn vic s dng cc cp nht trng thi lin kt. Nh ch ra trong h nh 1.15, m i khi tp trng thi lin kt thay i, cc router u tin bit c s thay i ny gi mt LSA mi ti cc router khc hoc ti mt router ch nh (ni cc router khc c th s dng cp nht). LSA ny s c trn ngp ti tt c cc Router trn lin mng. t c s h i t, mi router thc hin cc cng vic sau: Lu vt cc hng xm, gm tn, trng thi hot ng, v gi ca lin kt ti hng xm.
17
NH TUYN IP C BN
Xy dng m t gi LSA lit k tn ca cc router hng xm v cc gi lin kt, gm cc hng xm mi, cc thay i trong gi lin kt, v lin kt ti cc hng xm chuyn sang trng thi khng hot ng. Gi gi LSA tt c cc Router khc u nhn c. Khi nhn c mt gi LSA, ghi li gi trong c s d liu. Hon thnh mt bn ca lin m ng bng cch s dng d liu ca cc gi LSA c tch lu , v sau tnh ton tuyn ti tt c cc mng khc s dng gii thut SPF.
Tin trnh cp nht bng nh tuyn Tin trnh cp nht bng nh tuyn
Thay i tp trong cp nht trng thi lin kt
Tin trnh cp nht bng nh tuyn
Hnh 1.15 Tin trnh cp nht trng thi lin kt Khi mt gi LSA to nn thay i trong c s d liu trng thi lin kt, gii thut SPF tnh ton li cc ng i tt nht v cp nht b ng nh tuyn. 1.4.3 Cc vn lin quan n gi i thu t tr ng thi lin kt Hai vn lin quan n gii thut trng thi lin kt l yu cu b nh v b x l, v yu cu bng thng.
q
Yu cu b nh v b x l
Trong hu ht cc trng h p, chy giao thc nh tuyn trng thi lin kt yu cu router s dng nhiu b nh hn v thc hin nhiu x l hn so vi chy giao thc nh tuyn vct kho ng cch. Ngi qun tr m ng phi m bo rng cc router h chn phi c kh nng cung cp cc ti nguyn cn thit. i vi nh tuyn trng thi lin kt, b nh c a cc router phi c kh nng lu tr thng tin t nhiu c s d liu khc nhau, cy tp, v b ng nh tuyn. S dng gii thut Dijkstra tnh ton SPF yu cu nhiu x l phc tp v tn thi gian CPU.
18
q
Yu cu v bng thng
M t vn khc ca giao thc nh tuyn trng thi lin kt l bng thng mng b ngn khi hng lot cc gi trng thi lin kt ban u c trao i. Trong qu trnh khm ph ban u, m i router s dng giao thc nh tuyn trng thi lin kt gi cc gi LSA ti tt c cc router khc. iu ny yu cu ng k bng thng mng v tm thi lm gim bng thng sn c d nh cho lu lng d liu c a ngi dng. Tuy nhin, sau giai on trao i ban u, cc giao thc trng thi lin kt ch yu cu mt lng bng thng ti thiu gi cc gi LSA mi khi tp mng thay i. 1.4.4 Quyt nh ng i khng nht quan gia cc Router M t vn quan trng v phc tp nht ca nh tuyn trng thi lin kt l m bo rng mi router phi c c tt c cc gi LSA cn thit. Cc router vi cc tp LSA khc nhau s tnh ton tuyn da trn d liu tp khc nhau. Do cc mng tr thnh khng th ti do s khng thng nht gia cc router v mt lin kt (h nh 1.16). Sau y l mt v d v thng tin ng i khng nht qun: 1. M ng 1 gia Router C v D khng hot ng. C hai Router C v D xy dng m t gi LSA phn nh trng thi khng th ti ny. 2. Ngay sau , mng 1 hot ng tr li, v cn m t gi LSA khc phn nh s thay i tp tip theo ny.
Cp nht ng tc chm Mng 1 khng th ti ng tc chm, cp nht ti sau
Mng 1 khng th ti
C
OK Mng 1 ng ng hot ng ri hot ng tr li
A
S dng cy SPF no? ng tc cao, cp nht ti trc Mng 1 khng th ti Mng 1 hot ng li
Hnh 1.16 Cc cp nht khng ng b v quyt nh ng i khng nh t qun dn n s khng th ti cc router 3. Nu thng bo Khng th ti mng 1 u tin t Router C s dng mt ng i tc chm cp nht, thng bo ny s n ch mun. Gi LSA ny c th ti Router A sau gi LSA Mng 1 hot ng li c a Router D. 4. Vi cc gi LSA khng ng b, Router A s ri vo tnh trng khng bit
19
NH TUYN IP C BN
phi xy d ng cy SPF no. N nn s dng ng i cha m ng 1, hay ng i khng ch a m ng 1 ? Nu vic phn phi LSA ti tt c cc router khng c thc hin chnh xc, nh tuyn trng thi lin kt c th d n n cc tuyn khng hp l. Trong mt lin mng rt ln s dng nh tuyn trng thi lin kt, vn phn ph i gi LSA l i c th tng ln. Nu m t phn c a m ng hot ng trc mt phn mng khc, th t gi v nh n gi LSA s khc nhau. S khc nhau ny c th lm bin i v suy yu s hi t. Cc router phi hc v nhiu phin b n khc nhau ca tp trc khi chng xy dng cy SPF v bng nh tuyn. Trong mt lin mng ln, cc phn cp nht nhanh hn c th gy nn cc s c cho cc phn cp nht chm hn. 1.4.5 So snh giao thc nh tuy n vct khong cch v trng thi lin kt Chng ta c th so snh nh tuyn vct kho ng cch vi nh tuyn trng thi lin kt trong mt s im sau (bng 1.1): B ng 1.1 So snh nh tuyn trng thi lin kt v vct khong cch Vct khong cch Tr ng thi lin kt
Nhn tp mng t vin cnh ca C c ci nhn ton cnh v lin hng xm. mng. Cng vo vct khong cch t Tnh ton ng i ngn nht ti tt c router ny ti router khc. cc router. Cp nht nh k, h i t chm. Cp nht ngay khi thay i, hi t nhanh.
Chuyn b n sao ca bng nh tuyn Chuyn cp nht nh tuyn trng thi ti cc hng xm. lin kt ti tt c cc router.
nh tuyn vct khong cch ly d liu tp t thng tin bng nh tuyn ca cc hng xm. nh tuyn trng thi lin kt c c m t ci nhn ton cnh v tp c a lin mng bng cch tch lu tt c cc LSA cn thit. nh tuyn vct kho ng cch xc nh ng i t t nht bng cch cng thm vo gi tr metric m n nhn c khi thng tin nh tuyn c gi t router ny ti router khc. i vi nh tuyn trng thi lin kt, mi router lm vic c lp trong vic tnh ton ng i ngn nht ti cc m ng ch. Trong hu ht cc giao th c nh tuyn vct khong cch, cp nht nh tuyn v thay i tp mng c gi nh k. Cc cp nht c gi t router ny ti router khc, dn n mng hi t chm. Vi cc giao thc nh tuyn trng thi lin kt, cp nh t c gi ngay khi tp mng thay i. Cc gi LSA c kch thc tng i nh c chuyn ti tt c cc router, do
20
thi gian h i t s nhanh hn khi tp mng thay i. 1.5 NH TUYN LAI Loi giao thc nh tuyn th ba kt hp cc c tnh ca c nh tuyn vct khong cch v trng thi lin kt. Lo i th ba ny c gi l giao thc nh tuyn lai cn b ng (balanced hybrid routing protocol). Cc giao thc nh tuyn lai cn bng s dng cc vct khong cch vi cc metric chnh xc hn xc nh ng i tt nht ti cc mng ch. Tuy nhin chng khc vi hu h t cc giao thc vct khong cch do s dng cc thay i tp kch hot cp nht c s d liu nh tuyn (hnh 1.17). Giao thc nh tuyn lai cn b ng h i t nhanh ging nh cc giao thc trng thi lin kt. Tuy nhin chng khc vi cc giao thc trng thi lin kt v vct khong cch do s dng t ti nguyn (bng thng, b nh, CPU) hn. Mt v d v giao thc nh tuyn lai cn b ng l giao thc EIGRP (Enhanced Interior Gateway Routing Protocol) ca Cisco.
Chn ng i da trn cc vct khong cch nh tuyn lai cn bng Hi t nhanh s dng cp nht da trn thay i
Hnh 1.17 Giao thc nh tuyn lai chia s cc thuc tnh ca nh tuyn vct kho ng cch v trng thi lin kt
TM TT nh tuyn l s la chn mt con ng truyn mt n v d liu (m t gi tin chng hn) t tr m ngun n tr m ch trong mt lin mng. nh tuyn l chc nng ca tng 3 trong m hnh OSI. Trong cc thit b mng th router l thit b thc hin chc nng nh tuyn. Qu trnh nh tuyn bao gm hai chc nng: xc nh ng i v chuyn m ch. Chc nng xc nh ng i chn ra m t ng i t i u n ch theo mt tiu ch no . Chc nng chuyn mch chuyn gi tin t cng vo ti cng ra tng ng vi ng i ti u chn. C nhiu cch phn lo i giao thc nh tuyn, trong cch phn loi ph bin nht l phn nh tuyn thnh nh tuyn tnh v nh tuyn ng; nh tuyn vect khong cch v nh tuyn trng thi lin kt.
21
NH TUYN IP C BN
nh tuyn tnh l nh tuyn m cc tuyn c cp nh t nhn cng bi ngi qun tr mng. Cc tuyn tnh s khng t ng thay i trong trng hp tp mng thay i; thay vo , ngi qun tr mng phi cp nht l i tuyn mt cch nhn cng. nh tuyn ng t ng cp nht tuyn khi tp mng thay i. nh tuyn vect khong cch tnh ton tuyn ti u a trn khong cch mng (s bc nhy). Cc router s dng giao thc nh tuyn vect khong cch gi nh k c p nht nh tuyn ti tt c hng xm. Cp nht ny cha ton b b ng nh tuyn ca router. nh tuyn trng thi lin kt s dng gi i thut ng i ng n nht trc (SPF) tnh ton tuyn ti u. Cc router s dng nh tuyn trng thi lin kt ch g i mt phn thng tin trong bng nh tuyn, nhng l i gi ti ton b router trong mng. Vic gi cng khng c thc hin nh k m c thc hin lc khi to hoc khi tp mng thay i.
22
CHNG 2
GIAO THC NH TUYN RIP

Chng 2 trnh by v giao thc nh tuyn RIP (Routing Information Protocol), m t giao thc nh tuyn n gin da trn nh tuyn vect khong cch, s dng gi i thut Bellman-Ford tnh ton b ng nh tuyn. Ni dung chng bao gm: q Bng nh tuyn RIP. q Gii thut cp nht ca RIP. q Cc bn tin RIP. q Cc b nh th i RIP. q RIP phin bn 2.
23
NH TUYN IP C BN
2.1 GII THIU CHUNG RIP l mt giao thc nh tuyn vect khong cch c s dng bn trng h t tr. Giao thc ny kh n gin, n s dng gii thut Bellman-Ford tnh ton bng nh tuyn. L giao thc vect khong cch nn RIP hot ng da trn ba nguyn tc: Chia s hiu bit v ton b h t tr: Mi router chia s hiu bit v ton b h t tr vi cc hng xm c a n. Ban u s hiu bit c a mt router c th rt t. Tuy nhin, chng bit c bao nhiu khng phi l iu quan tr ng; chng gi tt c nhng th chng c. Ch chia s vi hng xm: Mi router ch gi nhng hiu bit c a mnh cho hng xm. Chng gi tt c nhng th chng bit qua tt c cc giao din ca chng. Chia s ti cc khong thi gian u n : Mi router gi hiu bit c a mnh ti cc khong thi gian c nh, ch ng hn 30 giy. 2.2 BNG NH TUYN RIP Mi router gi m t bng nh tuyn trong cha cc m c tng ng cho mi mng ch m router bit. Mc ny g m a ch IP ca mng ch, khong cch ngn nht ti ch (tnh theo s bc nhy) v bc nhy tip theo (router tip theo). Bc nhy tip theo l ni cn gii gi d liu n c th ti c ch cui cng. S bc nhy l s mng m mt gi d liu phi i qua ti c mng ch. Bng nh tuyn c th cha cc thng tin khc, chng hn khong thi gian tnh t khi mc c cp nht ln cui. Bng 2.1 ch ra mt v d v bng nh tuyn. Bng 2.1 Bng nh tuyn vect khong cch ch 163.5.0.0 197.5.13.0 189.45.0.0 115.0.0.0 S bc nhy 7 5 4 6 Bc nhy tip theo 172.6.23.4 176.3.6.17 200.5.1.6 131.4.7.19 Thng tin khc
2.3 GII THUT CP NHT RIP Bng nh tuyn RIP c cp nht khi router nhn c cc thng bo RIP. Di y ch ra gii thut cp nht nh tuyn c RIP s dng.
24
CHNG 2 - GIAO THC NH TUYN RIP
Nhn mt thng bo RIP tr li 1. Cng 1 vo s bc nhy tip theo cho mi ch c qung co 2. Lp li cc bc tip theo cho mi ch c qung co: 2.1 Nu ch khng c trong bng nh tuyn - Thm thng tin c qung co vo bng nh tuyn 2.2 Tri li 2.2.1 Nu bc nh y tip theo ging nhau - Thay th mc trong bng bng mc c qung co 2.2.2 Tri li
2.2.2.1 Nu s bc nhy c qung co nh hn s bc nhy trong bng - Thay th mc trong b ng bng mc c qung co 2.2.2.2 Tri li 3. Kt thc Khng lm g c
Khi to b ng nh tuyn Khi mt router c thm vo m t mng, n t khi to bng nh tuyn bng cch s dng tp cu hnh. Lc ny, bng nh tuyn ch cha cc mng ni trc tip vi router v s b c nhy, thng c khi to l 1. Trng bc nhy tip theo c b trng. Hnh 2.1 minh ho cc bng nh tuyn ban u trong mt h t tr nh.
14 1 55 1 -
B
14 1 23 1 78 1 -
M ng 14 Mng 55
78 1 92 1 66 1 55 1 -
Mng 78
F
Mng 92
Mng 23
08 1 23 1 08 1 66 1 -
M ng 66
M ng 08
Hnh 2.1 Bng nh tuyn RIP ban u
25
NH TUYN IP C BN
Cp nht bng nh tuyn T b ng nh tuyn ban u, cc router trao i cp nht nh tuyn vi nhau. Da trn gii thut cp nht nh tuyn va trnh by trn, cc router s cp nht bng nh tuyn. Bng nh tuyn cui cng l bng c cha mi mng ch. Hnh 2.2 minh ho cc b ng nh tuyn cu i cng c a h t tr trn.
08 14 23 55 66 78 92 08 14 23 55 66 78 92 3 2 2 3 4 1 1 A A A A A 3 1 2 1 2 2 3 A A C A A
08 14 23 55 66 78 92
2 1 1 2 3 1 2
E B E F
B
M ng 14
Mng 55
08 14 23 66 55 78 92
2 2 3 1 1 3 4
D B D B B
M ng 78
C
M ng 92 M ng 66
08 14 23 55 66 78 92 1 3 2 2 1 3 4 E E C E E
M ng 23
08 14 23 55 66 78 92 1 2 1 3 2 2 3 A A D A A
Mng 08
Hnh 2.2 Bng nh tuyn RIP cui cng
2.4 CC BN TIN RIP nh dng b n tin RIP nh dng ca bn tin RIP c ch ra h nh 2.3.
Command Family
Version
Reserved Tt c 0
Network Address Lp Tt c 0 Tt c 0 Distance
Hnh 2.3 nh dng bn tin RIP 26
Command: Trng 1 byte ny cho bit lo i thng bo: yu cu (1) hoc tr li (2). Version: Trng 1 byte ny ch r phin bn ca giao thc RIP (1 hoc 2).
Family: Trng 2 byte ny nh ngha h giao thc c s dng. i vi TCP/IP, gi tr ny l 2. Network address: Trng ny nh ngha a ch mng ch. RIP cp pht 12 byte cho phn a ch mng. Nhng hin ti, IP ch dng 4 byte. Phn cn li c in b ng cc bt 0. Distance: Trng 4 byte ny nh ngha s bc nhy t router qung co ti mng ch.
Ch : Mt phn c a thng bo c lp cho mi mng ch. Chng ta g i l mt m c. Bn tin Yu c u (request) v Tr li (response) RIP s dng hai loi thng bo: yu cu v tr li.
q
Yu cu
Mt yu cu c gi bi m t router m i hoc mt router c mt s m c qu hn. Mt yu cu c th h i v cc mc c th hoc h i tt c cc mc (hnh 2.4).
Version
Reserved
Version
Reserved
H
Lp
Tt c 0 a ch mng Tt c 0 Tt c 0 Tt c 0
H Tt c 0 Tt c 0 Tt c 0 Tt c 0
Tt c 0
a. Yu cu mt s
b. Yu cu tt c
Hnh 2.4 Bn tin RIP yu cu

q
Tr li
Mt tr li c th l khn khon hoc khng khn khon . Tr li khn khon ch c gi tr li cho mt yu cu. N cha thng tin v cc ch c ch r trong thng bo yu cu tng ng. Tr li khng khn khon c gi nh k v ch a ton b b ng nh tuyn. Hnh 2.5 minh ho mt tr li RIP.
27
NH TUYN IP C BN
Thng bo RIP 2 Version Family:2 141.12.0.0 T t c 0 T t c 0 5 Family:2 181.12.0.0 T t c 0 T t c 0 2 Family:2 97.0.0.0 T t c 0 T t c 0 4 Tt c 0 Tt c 0 Reserved Tt c 0
Thng bo hnh th c 141.12.0.0 181.12.0.0 97.0.0.0 5 2 4
Hnh 2.5 Bn tin RIP tr li
2.5 CC B NH THI RIP h tr cho hot ng ca mnh, RIP s dng 3 b nh thi. B nh th i cp nht iu khin vic gi thng bo, b nh thi h t h n qun l tnh h p l ca mt tuyn, v b nh thi xa tuyn qu ng co li c a mt tuyn.
q
B nh thi cp nht
B nh thi ny iu khin vic qung co u n cc thng bo cp nht. Mc d c t giao thc RIP ch r b nh thi ny phi c t l 30 giy, nhng cc m hnh ang hot ng hin nay s dng mt s ngu nhin trong khong t 25 n 35. Mc ch l trnh tnh trng qu ti trn mt lin mng khi tt c cc router gi cp nht cng lc. B nh thi ny c m li. Khi t ti gi tr 0, thng bo cp nht s c gi v b nh th i c thit lp li.
q
B nh thi ht hn
B nh thi ny qun l tnh hp l c a mt tuyn. Khi router nhn c thng tin cp nht v m t tuyn, b nh thi ht hn cho tuyn ny c thit lp l 180 giy. Mi ln c m t cp nht mi v tuyn ny, b nh thi c t li. Trong trng hp bnh thng, c 30 giy iu ny sy ra mt ln. Tuy nhin, nu c tr c trc trn lin mng v router khng nhn c cp nht v tuyn ny trong khong th i gian 180 giy, tuyn ny c xem nh h t hn v gi tr trng s bc nhy ca n c
28
t l 16, ngh a l khng th ti ch. Mi tuyn u c b nh thi khng hp l c a ring m nh.

q
B nh thi xa tuyn
Khi mt tuyn ht hn, router khng lo i b ngay tuyn ny ra khi bng nh tuyn. Thay vo , n tip tc qung co tuyn vi gi tr metric l 16. Cng lc , b nh thi xa tuyn c t l 120 giy cho tuyn ny. Khi gi tr c a b nh thi t ti 0, tuyn b loi khi b ng nh tuyn. B nh thi ny cho php cc hng xm bit v s khng h p l ca mt tuyn trc khi loi tuyn . 2.6 RIP PHIN BN 2 RIP phin bn 2 c thit k khc phc nhng nhc im ca RIP phin bn 1. Nhng ngi thit k RIP phin bn 2 khng tng chiu di ca mi mc trong thng bo RIP. H ch thay th nhng trng ton 0 trong phin bn 1 cho giao thc TCP/IP b ng mt s trng mi. nh dng ca thng bo RIP phin b n 2 c ch ra trong h nh 2.6.
Command Family Lp
Version
Reserved Route Tag
Network Address Network Mask Next Hop Address Distance
Hnh 2.6 nh dng thng bo RIP phin bn 2 Route Tag: Trng 2 byte ny mang cc thng tin nh s hiu AS. N c th c s dng cho php RIP nhn thng tin t mt giao thc nh tuyn min ngoi. Network Mask: Trng 4 byte ny nh ngha mt n m ng, cho php RIP phin bn 2 h tr mng con v siu mng. Next Hop Address: Trng 4 byte ny nh ngh a a ch ca bc nhy tip theo. Trng ny rt hu ch khi hai h t tr chia s m t mng (ng trc). Khi thng bo c th nh ngha router (trong cng AS hoc trong cc AS khc) m tip theo gi phi ti.
Chng thc Trong RIP phin b n 2, chc nng chng thc c thm vo bo v thng bo. Tuy nhin, khng cn thm cc trng mi vo thng bo. M c u tin c a thng bo s cha thng tin ch ng th c. ch r mt mc cha thng bo chng
29
NH TUYN IP C BN
thc ch khng phi thng tin nh tuyn, gi tr hexa FFFF c t trong trng Family (xem hnh 2.7). Trng th hai l trng loi chng thc (Authentication Type), trng ny nh ngha phng php s dng chng thc. Trng th 3 cha d liu chng thc (Authentication Data).
Command FFFF Version Reserved Authentication Type
Authentication Data (16 byte)
Hnh 2.7 Trong RIPv2 mc u tin c s dng cho chng thc Pht a hng cp nht RIP phin bn 1 s dng pht qung b gi cc thng bo RIP ti tt c hng xm. Do , khng ch cc router trn mng nhn c thng bo m mi trm u nhn c. Trong khi , RIP phin bn 2 s dng a ch a hng 224.0.0.9 pht a hng cc thng bo RIP ti ch cc router RIP trn mt mng.
TM TT RIP (Routing Information Protocol) l mt giao thc nh tuyn n gin da trn nh tuyn vect khong cch, s dng gi i thu t Bellman-Ford tnh ton bng nh tuyn. RIP gi u n cp nh t nh tuyn ti cc router hng xm. Cc cp nht ny cha ton b thng tin trong bng nh tuyn ca router. C hai loi bn tin RIP l b n tin yu cu v b n tin tr li. Bn tin yu cu c router g i i nu bng nh tuyn ca n c mt s mc ht hn, hoc do m t router mi tham gia mng gi. Bn tin tr li p l i bn tin yu cu. C hai loi bn tin tr li l khn khon v khng khn khon. Tr li khn khon c gi tr li mt yu cu. Tr li khng khn khon c gi nh k v cha ton b bng nh tuyn. RIP s dng 3 b nh thi l b nh th i cp nht, b nh th i ht hn v b nh th i xa tuyn. B nh thi nh k iu khin vic gi u n bn tin cp nht nh tuyn. B nh thi ht hn xc nh khong thi gian hp l ca m t tuyn. B nh th i xa tuyn xc nh khong thi gian trc khi mt tuyn khng h p l c xa kh i bng nh tuyn. RIPv2 c a ra nh m kh c phc cc hn ch ca RIPv1. Mt s u im ca RIPv2 l cung cp chc thc v thc hin pht a hng cp nht nh tuyn.
30
CHNG 3
GIAO THC NH TUYN IGRP

IGRP l giao th c nh tuyn vect khong cch tin tin do Cisco pht trin. Giao thc ny c nhiu c tnh khc vi cc giao thc nh tuyn RIP. Ni dung chng bao gm: q IGRP metric. q Cc b nh th i ca IGRP. q Ho t ng ca IGRP khi tp m ng thay i. q nh tuyn a ng ca IGRP.
31
NH TUYN IP C BN
3.1 GII THIU CHUNG IGRP l giao thc nh tuyn vect kho ng cch tin tin do Cisco pht trin vo gia nhng nm 1980. IGRP c nhiu c tnh khc vi cc giao thc nh tuyn vector khong cch khc, chng h n RIP: Cc c tnh khc bit l: o Kh nng nh c tt hn: IGRP ci thin kh nng nh tuyn trong cc mng c ln so vi m ng s dng RIP. o Metric phc hp : IGRP s dng metric phc hp vic la chn tuyn linh hot hn. tr, bng thng, tin cy v ti l cc tham s c s dng trong qu trnh quyt nh nh tuyn. IGRP c th c s dng khc phc hn ch t i a 15 bc nh y c a RIP. IGRP mc nh quy inh s bc nh y ti a l 15 v trn router c th cu hnh ti a l 255. o a ng: IGRP c th duy tr ti a 6 tuyn khng cng gi gia mt m ng ngun v mt mng ch; cc tuyn ny khng cn c cng gi nh RIP. a ng c th c s dng tng bng thng hoc d phng. IGRP c s dng trong cc mng yu cu mt giao thc nh tuyn mnh, c kh nng nh c hn RIP. IGRP c mt u im na so vi RIPv1 l n h tr cp nht kch hot (triggered update).
3.2 IGRP METRIC 3.2.1 Cc metric ca IGRP Mt trong nhng u vit ca IGRP l linh hot cao c c thng qua cc metric nh tuyn. Khng ging RIP, ch s dng m t metric tnh, IGRP s dng cc metric: S bc nhy; n v truyn ti a (MTU), bng thng, tr, ti v tin cy. Cc IGRP router chia s thng tin lin quan n c 6 metric trong cc bn tin cp nht. Nhng khng phi c 6 metric u c s dng tnh ton tuyn. Trn th c t, bng thng, tr, ti v tin cy c s dng tnh ton tuyn. linh hot ca IGRP khng ch th hin vic tng s lng metric m cn vic phm vi gi tr c a cc metric c m rng. Ngi qun tr c th nh ngh a gi tr c a mi metric. IGRP cng cho php ngi qun tr nh ngh a trng s mc nh cho cc metric tc ng n vic tnh ton tuyn. S bc nhy nht qun vi cc giao thc trc y, IGRP tng s bc nhy ln 1 mi khi qua mt router. Tuy nhin, khng ging RIP, IGRP khng gii hn s bc nhy l
32
CHNG 3 - GIAO THC NH TUYN IGRP
16. Gi tr mc nh ca s bc nhy ti a l 100 v c th tng ln ti a 255 nu mun. iu ny cho php IGRP ph hp vi cc mng ln. Mc d IGRP c duy tr s bc nhy, nhng gi tr ny khng c s dng tnh ton tuyn. Thay vo , n c s dng ngn vng lp nh tuyn. Cc tuyn c s b c nh y vt qu gi tr ti a t ng c IGRP nh d u l khng hp l. MTU MTU xc nh kch thc gi ln nh t m mt IGRP router chp nhn. Gi tr ny khng c s dng tnh ton tuyn. IGRP router truyn thng vi nhau theo cc gi c kch thc ti a cho php. Cc gi c kch thc ln hn phi c phn mnh th a mn kch thc t i a ny. Bng thng Bng thng xc nh tc truyn dn ca phng tin kt ni trc tip ti cng c a router. Gi tr c a trng ny nm trong khong t 1.200 b/s n 10 Gb/s. tr tr l khong thi gian cn thit i qua mt lin kt trong iu kin ri. tr tng c ng c a mt tuyn trong mng IGRP l tng tr ca cc lin kt m tuyn i qua. Tng ny c chi cho 10 kt qu tnh l ms. Metric ny c gi tr trong khong t 1 n 16.777.215. T i Trong khi metric tr ch o tr vn c c a mt phng tin truyn dn th ti li o kh nng hin ti ca phng tin. N o lng bng thng hin c trn lin kt. Lin kt cng s dng nhiu th cng cn nhiu thi gian i qua lin kt . Metric ti cho php IGRP xem xt kh nng hin ti ca mng trong qu trnh tnh ton tuyn tin cy M t cch khc ngi qun tr tc ng n vic tnh ton tuyn l thng qua metric tin cy. tin cy o t l li hin thi ca phng tin truyn dn. T l li c th l t s gi mt hoc b hng. Ging nh ti, metric ny c gi tr trong khong t 1 n 255. Mc nh n c thit lp l 1 cho tt c cc phng tin truyn dn. 3.2.2 S dng metric Khng ging RIP v hu ht cc giao thc nh tuyn khc, IGRP khng ch so snh gi tr metric ca tuyn. Thay vo , n s dng cc gi tr metric, c ng nh cc trng s mc nh hoc do ngi qun tr nh ngha, to ra mt metric phc h p
33
NH TUYN IP C BN
miu t chnh xc tuyn. Metric phc hp ny c th c s dng so snh tuyn cho d cc tuyn c tin cy, bng thng, tr v ti khc nhau rt nhiu. u im hin nhiu ca metric phc hp ny l n c th miu t chnh xc hn hiu nng ca mt tuyn. Ngi qun tr c th s dng trng s tc ng n qu trnh chn tuyn. Hn ch ca vic trin khai metric IGRP l n d b v hiu. V d, nu b n ch p nht tt c cc gi tr m c nh, th metric cho tt c cc tuyn l bng nhau. C ngh a chng khng cn tc dng. Qu trnh quyt nh tuyn sau ch n thun so snh s bc nhy. Tnh ton vect IGRP s dng metric phc hp tnh ton tuyn ti u. Metric ny di 24 bt v c th c gi tr t 1 n 16,777,215. tnh ton tuyn, tuyn c metric nh hn th tt hn. V bn cht, gi tr metric phc hp ph n nh tng c trng s gia tr v bng thng dc theo tuyn. Do , n u tt c cc metric mc nh v trng s c ch p nhn v mng c xy dng da trn cc phng tin ng nht th metric ny chng khc g s bc nhy. Trong mng s dng nhiu phng tin khc nhau th li ch c a tnh ton metric ny mi r rng. Cng thc tnh metric phc hp nh sau:
Metric = [K1*Bng thng + (K2*Bng thng)/(256 Ti) + K3* tr] * [K5/( tin cy + K4)]
Trong cng thc ny K1, K2, K3, K4, K5 l hng s c s dng to trng s cho nh hng c a cc metric. Gi tr mc nh ca K1, K3 l 1; K2, K4 v K5 l 0. Nh vy, n u cc gi tr mc nh th cng thc trn thc cht l: Metric = Bng thng + Tr s dng cc metric khc, ngi qun tr phi thay i trng s mc nh c a chng (K2, K4, K5).
3.3 CC B NH THI Ging cc giao thc nh tuyn vect khong cch khc, IGRP duy tr tnh ton vn ca b ng nh tuyn bng cch yu cu router chia s thng tin nh tuyn. Mi IGRP router gi cp nht v bng nh tuyn ca n ti h ng xm ti cc khong thi gian u n. Cc cp nht nhn c t ng thay th thng tin tuyn trc y.
34
IGRP da vo 4 b nh th i duy tr bng nh tuyn: o B nh thi cp nht o B nh thi gi o B nh thi tuyn khng hp l o B nh thi xa tuyn Cc c ch nh thi ny ho t ng ging vi c ch nh th i ca RIP. B nh thi cp nht B nh thi cp nht c s dng khi to cp nht nh tuyn. M i IGRP router. Gi tr mc nh ca b nh thi ny l 90 giy v ngi qun tr c th thay i gi tr ny. B nh thi gi Ging RIP, IGRP cng s dng b nh th i gi. Thi gian gi mc nh bng ba ln thi gian b nh thi cp nht cng 10 giy. Ngha l nu b nh thi cp nh t nguyn gi tr mc nh l 90 giy th thi gian gi l 280 giy. B nh thi tuy n khng hp l B nh thi tuyn khng hp l ch r khong th i gian router ph i i m khng nhn c cp nht v mt tuyn c th, trc khi khai bo n l khng hp l. Gi tr mc nh c a b nh thi ny c t bng 3 ln gi tr b nh thi cp nh t, ngh a l b ng 270 giy. Nu router khng nhn c cp nht v tuyn trong khong thi gian ny, tuyn s c khai bo l khng th ti. B nh thi xa tuyn B nh th i xa tuyn (route-flush) ch r kho ng thi gian phi qua trc khi tuyn b xa khi b ng nh tuyn. Gi tr b nh thi ny mc nh gp 7 ln b nh thi cp nht, ngh a l 630 giy. C ch ny c s dng thanh lc tuyn khng hp l khi b ng nh tuyn.
3.4 HOT NG CA IGRP KHI TP MNG THAY I Khi tp mng thay i trong mng s dng gii thu t vect khong cch, cc router h c s thay i ny m t cch dn d n. Router cng gn im thay i th cng hc nhanh s thay i ny. Sau mt qu trnh trao i thng tin nh tuyn, tt c cc router trn mng s h i t d n dn theo tp mi. Trong phn ny ta s xem xt vic IGRP duy tr b ng nh tuyn v hi t khi tp mng thay i.
35
NH TUYN IP C BN
Trao i thng tin nh tuy n IGRP da trn bn c ch nh thi (c trnh by phn trn) duy tr tnh ton vn ca bng nh tuyn. IGRP cng c th s dng nhng b nh thi n y phc hi li li v ngn cc h ng xm chuyn cp nht v tuyn li cho nhau. Bng nh tuyn IGRP c khi to 90 giy mt ln. B nh thi cp nht c s dng theo di khong thi gian ny. Khi thi gian ht hn, IGRP gi mt loi gi cha thng tin ca ton b b ng nh tuyn. Nhng gi ny c qung b ti mi hng xm. Do , c 90 giy, mi IGRP router ph i nhn mt cp nht t hng xm. Qu trnh ny cng ging nh RIP. im khc bit l khong thi gian gia cc cp nht (RIP gi nh k 30 giy). M t u im ca IGRP l khi tp mng thay i, IGRP router s gi ngay cp nht thng bo thay i, ch khng i n khi b nh thi cp nht ht hn. C ch ny c gi l Trigger Update. Xc nh tuyn khng hp l Cc tuyn tr thnh khng hp l nu: o Tuyn h t h n. o Cc router khc thng bo tuyn khng th ti. Khng quan tm ti l do ti sao tuyn tr thnh khng hp l, IGRP router cn thay i b ng nh tuyn phn nh kh nng khng sn c c a tuyn. Mt tuyn tr thnh ht h n n u router khng nhn c cp nht v tuyn trong m t khong thi gian nht nh. IGRP s dng b nh thi tuyn khng h p l xc nh khong thi gian ny. Nh trnh by phn trc, khong thi gian mc nh gp ba ln th i gian cp nht, 90 giy. Do vy, m t tuyn tr thnh khng hp l nu sau 270 giy router khng nhn c cp nht v tuyn. Sau , thng tin ny c truyn ti hng xm thng qua cp nht nh tuyn nh k . Hng xm nhn c thng bo v tuyn khng hp l s dng thng tin cp nht b ng nh tuyn. y chnh l cch th hai tuyn tuyn tr thnh khng hp l trong b ng nh tuyn. M t tuyn khng hp l vn tip t c c lu trong bng nh tuyn trong khong thi gian lu router c th quyt nh x l tuyn. Nu thc cht tuyn l hp l v ch vn c th n th router s pht hin ra iu ny v h i t. Tri li, n u tuyn thc s khng hp l, n s li trong bng nh tuyn cho n khi b nh thi xa tuyn ht hn.
36
Xa tuyn khng hp l IGRP router xa cc tuyn khng h p l khi bng nh tuyn nu chng vn khng hp l trong kho ng thi gian gp 7 ln khong th i gian cp nht. Nu gi tr mc nh c s dng, khong thi gian ny l 630 giy. Ch nhng tuyn khng hp l tn ti h t th i gian xa tuyn mi b xa. iu ny cung cp s b o v hai lp chng li vic xa tuyn vi vng.
3.5 NH TUYN A NG CA IGRP Mt c tnh quan trng c a IGRP l kh nng thc thi nh tuyn a ng. Khng ging RIP, ch cho php m t tuyn duy nht n mi ch, IGRP c th cho php bn tuyn khc nhau n m t ch. iu ny cho php IGRP cn bng ti trn nhiu tuyn v cung cp tuyn d phng. Cc tuyn d tha c th c cng hoc khng cng gi. Do vy IGRP c th h tr hai kiu cn b ng ti: Cn bng ti ng gi v cn bng ti khng ng gi. Cn bng ti ng gi Cn bng ti ng gi l cn b ng ti trn cc tuyn c cng gi. Hnh 3.1 minh ha iu n y trn mt mng nh. Ni dung bng nh tuyn ca router A c minh ha trong b ng 3.1. Trong b ng ny, bn c th thy c nhiu cng router A c th s dng ti gateway router. Cc cng ny l S0 v S1.
Hnh 3.1 Cn bng ti ng gi
37
NH TUYN IP C BN
Bng 3.1 Bng nh tuyn ca router A khi cn bng t i ng gi Tn router A ch Host 192.168.130.2 Host 192.168.130.9 Network 192.168.125 Network 192.68.253 Network 192.168.125 Network 192.68.253 Bc nhy tip theo Local Local Gateway---Port S0 Gateway---Port S0 Gateway---Port S1 Gateway---Port S1 S bc nhy 0 0 2 2 2 2 Gi tr metric 500 500 2500 2350 2500 2350
hnh 3.1, router A c hai kt ni ni tip ng gi (c hai cng dng ng T1). Do c hai cng gi nn IGRP phi phn bit xem s dng kt ni no. Trn thc t, IGRP s chia u lu lng trn hai kt ni. Cn b ng ti trn cc tuyn ng gi c th thc hin theo hai cch: theo gi; theo ch. Cn bng lu lng theo gi c ngha cc gi gi ti cng ch c th c gi ra trn cc giao din khc nhau. iu ny c th d n n vic nhn gi mun, sai th t v gy nn m t s vn cho cc ng dng. Cn bng ti theo ch c ngha tt c cc gi ti cng ch s c chuyn trn cng mt tuyn. iu ny gii quyt c nhng vn trong cch cn b ng ti trn nhng c th dn n vic phn b lu lng khng u trn cc lin kt ng gi. Cn bng ti khng ng gi Do gi ca tuyn c tnh ton da trn metric ng nn theo thi gian, cc iu kin hot ng bnh th ng c th d n n gi metric phc hp ca cc tuyn ng gi tr thnh khng ng gi. Nhng nh thit k IGRP nh n ra iu ny v pht trin m t c ch cho php cn bng ti trn cc tuyn khng ng gi. Cch cn b ng ti khng ng gi hot ng kh n gin. Lu lng c th c chuyn trn ti a 4 tuyn khng ng gi. Tuyn c gi thp nht tr thnh tuyn chnh, cc tuyn cn li c s dng nh tuyn thay th. Tuyn thay th cung cp kt n i d tha ti cng mt ch (hoc tp ch).
38
Vn i vi cc nh qun tr m ng l th no s dng bng thng t t nht m khng phi chu cc l i v hiu nng. R rng l tuyn t t nht l tuyn c gi nh nht. Tuy nhin, hiu n ng nh tuyn ti mt ch c th c th c ci thin bng cch s dng cc tuyn khc. Cha kha cho s thnh cng c a cn bng ti khng ng gi l chia lu lng cho mi lin kt theo t l tng ng vi gi c a chng. V d, nu gi c a tuyn chnh bng mt na gi tr ca tuyn thay th th tuyn chnh c s dng gp hai ln tuyn thay th. Do gi tr metric phc hp ca IGRP c th ly hn 16.000.000 gi tr, nn cn thit lp mt s c ch nh ngh a mt phm vi c th cho cn b ng ti khng ng gi. C ch ny c gi l Variance. nh ngha Variance Cha kha thnh cng ca cn bng ti khng ng gi trong IGRP l Variance. Variance l thuc tnh m ngi dng c th thay i. N ch r phn trm lu lng m cc lin kt khc nhau c th mang. Thuc tnh ny p dng cho ton mng IGRP ch khng cho tng lin kt. Gi tr mc nh c a thu c tnh Variance trong Cisco IOS l 1, nhng gi tr ny c th c thay i. Nu bn thit lp gi tr ny l 2, cc tuyn c gi metric gp ti a hai ln tuyn t t nht c th c s dng, nhng s tuyn ti vn l 4. minh ha khi nim cn bng ti khng ng gi, hy xem hnh 3.2.
Hnh 3.2 Cn bng t i khng ng gi Trong hnh 3.2, router A c ba tuyn c th ti gateway router. Hai tuyn s dng ng E1 v mt tuyn s dng kt ni Frame Relay 512 Kb/s. Bng 3.2 minh ha bng nh tuyn ca router A. Gi s rng ch c metric bng thng b thay i, hai tuyn gia router A v gateway router ng gi (dng ng E1). Tuyn th ba, kt
39
NH TUYN IP C BN
n i Frame Relay 512 Kb/s, c gi cao hn phn nh bng thng thp hn. Tuyn T1 c s dng gp gn bn ln tuyn Frame Relay. B ng 3.2 Bng nh tuyn ca router A khi cn bng ti khng ng gi Tn router A ch Host 192.168.130.2 Host 192.168.130.9 Network 192.168.125 Network 192.68.253 Network 192.168.125 Network 192.68.253 Network 192.168.125 Network 192.68.253 Bc nhy tip theo Local Local Gateway---Port S0 Gateway---Port S0 Gateway---Port S1 Gateway---Port S1 Gateway---Port S2 Gateway---Port S2 S bc nhy 0 0 2 2 2 2 2 2 Gi tr metric 500 500 2500 2350 2500 2350 4500 4350
Trong bng nh tuyn c a router A, ta thy c ba kt n i ni tip ti gateway router: S0, S1, S2. S0 v S1 s dng kt ni E1; S2 s dng kt ni Frame Relay. IGRP t ng cn b ng ti trn hai tuyn ng gi. Nu nguyn gi tr mc nh c a variance th lin kt Frame Relay khng c s dng. Nu thit lp Variance l 2, tuyn Frame Relay s c s dng trong cn bng ti khng ng gi. Lu lng c chia s trn c ba kt ni theo t l gi ca chng. Mc d Variance l thu c tnh chnh cho php cn bng ti khng ng gi, nhng n khng phi l thuc tnh duy nht. Cc tuyn thay th phi qua mt lot kim tra tnh kh thi c th s dng trong nh tuyn a ng. Kim tra tnh kh thi c m c ch duy tr s n nh c a m ng.
40
TM TT IGRP l giao th c nh tuyn vect khong cch tin tin do Cisco pht trin vo gia nh ng nm 1980. IGRP c nhiu c tnh khc vi cc giao thc nh tuyn RIP, bao g m: kh nng nh c t t hn; metric phc hp v nh tuyn a ng. IGRP s dng nhiu metric tnh ton tuyn do v y n c linh hot cao. Ngoi vic s dng nhiu metric, IGRP cn m rng phm vi metric, chng hn metric s bc nh y c gi tr ti a l 255. Mt c tnh quan trng khc ca IGRP l kh nng thc thi nh tuyn a ng. Khng gi ng RIP, ch cho php m t tuyn duy nh t n m i ch, IGRP c th cho php bn tuyn khc nhau n mt ch. iu ny cho php IGRP cn bng t i trn nhiu tuyn v cung cp tuyn d phng. Cc tuyn d tha c th c cng ho c khng cng gi.
41
CHNG 4
CU HNH NH TUYN
Ngoi vic nm cc vn l thuyt, vic thit lp nh tuyn trn thit b c th cng l ni dung quan trng xy dng v qun l mng ng n v hiu qu. Chng ny trnh by cch thc cu hnh nh tuyn trn router ca hng Cisco, thit b hin c s dng kh ph bin trn trng li ca VNPT. Ni dung chng bao gm: q Gii thiu chung v router v cu hnh router. q Cu hnh nh tuyn tnh. q Cu hnh nh tuyn RIP. q Cu hnh nh tuyn IGRP. q Cu hnh danh sch truy nhp.
42
CHNG 4 - CU HNH NH TUYN
4.1 GII THIU CHUNG V ROUTER V CU HNH ROUTER 4.1.1 Cc thnh phn ca Router Phn ny trnh by v cc thnh ph n ng vai tr chnh trong tin trnh cu hnh router. Bit c thnh phn no lin quan n tin trnh cu hnh cho php chng ta hiu t t hn v cch router lu tr v s dng cc lnh cu hnh c a bn. Bit cc bc c th c hin trong qu trnh khi to router gip chng ta xc nh v tr xut hin s c khi khi ng router.
u cui o
Cc giao di n C ng console Cng AUX Modem
VTY 0-4
My ch TFTP
Modem
Tr m qun l mng
Hnh 4.1 Thng tin cu hnh c th n t nhiu ngun Nh th y h nh 4.1, chng ta c th cu hnh router t nhiu ngun bn ngoi, bao gm: T u cui iu khin (m t my tnh kt n i trc tip vi router thng qua cng console). Thng qua Modem s dng cng AUX. T cc u cui o, sau khi router c ci t trn mng. T mt my ch TFTP trn mng.
Cc thnh phn bn trong ca router Cc thnh phn bn trong ca router c cho thy h nh 4.2, gm: RAM/DRAM Lu tr cc b ng nh tuyn, kho lu ARP, kho lu chuyn mch nhanh, b m gi (RAM chia s) v cc hng i gi gi. RAM c ng cung cp b nh hot ng cho tp cu hnh ca router khi router hot ng. Ni dung ca RAM s m t khi tt hoc khi ng li router.
43
NH TUYN IP C BN
NVRAM (Nonvolatile RAM) Lu tr cu hnh d phng c a tp cu hnh. Ni dung trong NVRAM c gi li khi tt hoc khi ng li router. B nh FLASH Ho t ng nh m t ROM c th xo v lp trnh li, cho php lu tr h iu hnh lin mng v vi m. B nh FLASH cho php cp nht phn mm m khng phi g b hoc thay th chp. Ni dung ca FLASH c gi li khi kh i ng li hoc tt router. FLASH cng c th lu tr nhiu phin bn ca h iu hnh lin mng c a router. ROM Cha chng trnh khi ng, chun on v phn m m h iu h nh ti thiu. Nng cp phn mm trong ROM yu cu phi g v thay th chp trn bo mch chnh. Cc giao din Ph c v nh cc kt n i mng trn bo mch chnh hoc trn cc module giao din ring bit, qua cc gi vo/ra router.
RAM Console
NVRAM
FLASH Giao di n
ROM
AUX
Hnh 4.2 Cc thnh phn cu h nh bn trong router 4.1.2 Cc ch lnh Cu hnh router c thit lp thng qua giao din dng lnh, ngha l ngi dng nhp lnh ri nhn Enter sau tip t c nhp lnh tip theo. Router h tr nhiu ch lnh khc nhau v mi ch cc lnh sn c s khc nhau. Do , d dng cho vic cu h nh router cn bit v phn bit cc ch lnh ca router cng nh tc dng ca tng ch lnh. Router lm vic cc ch lnh sau:
Ch thc thi ngi s dng
y l ch tham kho. Ngi s dng ch ny ch c quyn tham kho cu hnh c a router. Mc nh sau khi b t Router s ch ny. Nu khng t mt khu Console th m i ngi dng u c th vo ch ny. Ch thc thi c quyn Ch ny cho php cu hnh cc tham s hot ng c a router. vo c ch ny, ngi s dng phi nhp m t khu.
44
Ch cu hnh ng kt ni Ch ny cho php thit lp cu hnh tham s cho cc ng u cui. Ch cu hnh ton cc Ch ny cho php cu h nh cc tham s p dng cho ton b h thng ca router, chng hn nh mt khu, tn Router .v.v. Ch cu hnh giao din Ch ny cho php cu hnh tham s cho cc giao din LAN v WAN ca router (Ethernet, Serial, ISDN .v.v.). Ch cu hnh router Ch ny cho php cu hnh giao thc nh tuyn IP nh RIP, OSPF, IGRP, BGP .v.v. Du nhc lnh Do mi ch ch cung cp mt tp gii hn cc lnh nn khi cu h nh router ta thng xuyn phi chuyn i gia cc ch . m i ch u c cc lnh chuyn sang ch khc, nhng vn l lm th no bit hin ta ang ch no. nhn bit hin ang ch no, c th d a vo d u nh c lnh: Router> Router# Router(config)# Router(config-if)# Router(config-line)# Router(config-router)# : Ch th c thi ngi s dng : Ch th c thi c quyn : Ch cu hnh ton cc : Ch cu hnh giao din : Ch cu hnh ng kt ni : Ch cu hnh Router
4.1.3 Cc thao tc cu hnh c bn trn router a) Kt ni Router ti bn iu khin c th lin lc, thit lp v xem cu hnh c a cc Router, ta phi ni chng vi bn iu khin (chng hn my PC) v s d ng m t phn mm m phng thit b u cui. Router c ni vi my PC b ng si cp roll-over i km vi Router. Cp c kt thc trn c hai u vi u ni RJ-45. Mt u si cp ni ti cng Console c a Router v u kia n i ti mt b thch ng ni tip n i ti cng COM ca my PC. PC c s dng lm bn iu khin c th lin lc vi Router bng cch chy phn m m m phng thit b u cu i. Thng ta dng Hyper Terminal (m t thnh phn ca cc h iu hnh Windows XP, 2000, NT) hoc c th ti xung t Internet
45
NH TUYN IP C BN
(chng h n Tera Term ho c Tera Term Pro ). c th lin lc vi Router th cc tham s thit lp cho phn mm m phng thit b u cu i phi nh sau:
Terminal Transmission rate Data length Stop bit Parity VT100 9600 bps 8 bits 1 (2 i vi Series 2500) None
b) Kt ni router ti mng Sau khi Router c ni ti bn iu khin, bc tip theo l ni chng vi cc mng chng s ph c v. Cc router c hai lo i giao din l giao din LAN v giao din WAN. Kt ni vi mng LAN Cc mng LAN c kt n i ti Router thng qua giao din LAN. Cc Router c th c giao din LAN Token Ring, Ethernet v FDDI. Ch ng hn giao din c a Router l giao din Ethernet, khi ta c th ni Router ti mt HUB bng cp xon i (cp thng) hoc c th ni trc tip vi my tnh (cp cho). Kt ni mng WAN Cc kt n i mng WAN c th c thc hin thng qua cc giiao din ni tip (Serial) hoc giao din ISDN (BRI ho c PRI). Cng n i tip l cng 60 pin, h tr nhiu chun truyn tn hiu khc nhau bao gm V.35, X.21 bis v EIA-530. c) Thay i ch lnh (1) Chuyn t ch th c thi ngi s dng sang ch thc thi c quyn
Router> enable Router#
Ch : Khi g lnh enable, nu router c t mt khu, n s yu cu ngi dng nhp mt khu. (2) Chuyn t ch th c thi c quyn sang ch cu hnh ton cc
Router# configure terminal Router(config)#
(3) Chuyn t ch cu hnh ton c c sang ch cu hnh giao din

Router(config)# interface interface_id Router(config-if)#
46
V d: chuyn sang ch cu hnh cho giao din Serial 0 g interface serial 0 (4) Chuyn t ch cu hnh ton c c sang ch cu hnh ng kt ni
Router(config)# line line_id Router(config-line)#
V d : chuyn sang ch cu hnh ng Console 0, g line console 0. (5) Chuyn t ch cu hnh ton c c sang ch cu hnh Router
Router(config)# router protocol Router(config-router)#
V d : chuyn sang ch cu hnh giao thc nh tuyn RIP cho Router, g router rip. (6) Chuyn v ch trc dng lnh exit. (7) Chuyn v ch thc thi c quyn dng lnh end hoc Ctrl+Z. d) M t s lnh cu hnh c bn Mi ch ca router u h tr rt nhiu lnh v khng phi lc no chng ta cng c th nh chnh xc tn lnh cng nh cu trc ca lnh. hin th danh sch cc lnh mt ch , g ?. V d : Lnh Router(config)# ? s hin th tt c cc lnh c ch cu h nh ton cc. Khi danh sch cc lnh di qu m t trang mn hnh th Router ch hin th mt trang mn hnh v thng bo: ---more--- xut hin. Mun cun mn hnh m t dng, bm phm Enter v bm phm Space cu n mt trang m n hnh. Khi khng nh ton b lnh, c th nhp nhng k t u tin c a cu lnh km theo du ? (khng c du cch) hin th tt c cc lnh bt u bi nhng l t ny. V d: Lnh Router(config)#a? s hin th tt c cc lnh bt u b i k t a. hin th cc tham s c a lnh, nhp lnh km theo du ? (c d u cch). V d: Lnh Router#configure ? s hin th tt c cc tham s ca lnh configure. Cc lnh kim tra trng thi router Vic c th gim st trng thi ca mt router ti thi im bt k v m t vn quan trng. Cisco router c mt lot cc lnh cho php bn xc nh router c hot ng chnh xc khng ho c xc nh ni xy ra s c. Cc lnh v trng thi router v cc miu t c lit k trong b ng 4.1.
47
NH TUYN IP C BN
Bng 4.1 Cc lnh hin th trng thi router Lnh show version Miu t Hin th cu hnh ca phn cng h thng, phin bn phn mm, tn v ngun c a cc tp cu hnh, nh khi ng, v hin th l do khi ng li ln cui. Hin th thng tin v cc tin trnh hot ng. Hin th cc giao thc c cu hnh. Lnh ny hin th trng thi ca cc giao thc tng mng c cu hnh. Hin th thng k v b nh ca router. Cung cp cc thng k v b m trn router. Hin th thng tin v b nh flash. Hin th tp cu hnh hot ng. Hin th tp cu hnh d phng. Hin th cc thng k v tt c cc giao din c cu hnh trn router.
show processes show protocols
show memory show buffers show flash show running-config show startup-config show interface
Lnh show running-config v show startup-config Mt trong s cc lnh EXEC ca phn mm IOS l lnh show running-config v show startup-config. Nhng lnh ny cho php ngi qun tr xem cu h nh ch y hin ti trn router hoc cu hnh khi ng m router s s dng trong ln khi ng li tip theo. Cc hin th v d :
Router# show running-config Building configuration ... Current configuration: ! Version 11.1 ! --More-Router# show starup-config Using 1108 out of 130048 bytes ! Version 11.1 ! Hostname router --More--
Bn c th nhn din cu h nh hin ti bng dng Current configuration u

48
v c th nhn din cu hnh d phng b ng thng bo u cho bit b n s dng bao nhiu b nh NVRAM. Lnh show interfaces Lnh show interfaces hin th cc tham s c cu hnh v cc thng k thi gian thc lin quan n tt c cc giao din c cu hnh trn Router. V d:
dttx#show interfaces FastEthernet0/0 is up, line protocol is up Hardware is AmdFE, address is 0002.fd48.fbe0 (bia 0002.fd48.fbe0) Internet address is 203.162.91.41/29 MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation ARPA, loopback not set Keepalive set (10 sec) Full-duplex, 100Mb/s, 100BaseTX/FX ARP type: ARPA, ARP Timeout 04:00:00 Last input 00:00:00, output 00:00:00, output hang never Last clearing of "show interface" counters never Queueing strategy: fifo Output queue 0/40, 0 drops; input queue 0/75, 0 drops 5 minute input rate 99000 bits/sec, 95 packets/sec
Lnh show version Lnh show version hin th thng tin v phin b n phn mm IOS hin ang ch y trn Router. V d:
dttx#show version Cisco Internetwork Operating System Software IOS (tm) C2600 Software (C2600-I-M), Version 12.1(5), RELEASE SOFTWARE (fc1) Copyright (c) 1986-2000 by cisco Systems, Inc. Compiled Wed 25-Oct-00 05:46 by cmong Image text-base: 0x80008088, data-base: 0x807F3FC0 ROM: System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1) dttx uptime is 1 day, 23 hours, 42 minutes System returned to ROM by power-on System image file is "flash:c2600-i-mz.121-5.bin"
Lnh show protocols Lnh show protocols hin th cc giao thc c cu h nh trn Router. V d:
dttx#show protocols Global values:
49
NH TUYN IP C BN
Internet Protocol routing is enabled FastEthernet0/0 is up, line protocol is up Internet address is 203.162.91.41/29 Serial0/0 is up, line protocol is up Internet address is 203.162.134.190/30 Serial0/1 is up, line protocol is up Internet address is 203.162.134.186/30
Cc lnh khi t o (1) t tn cho router M t mng c th c xy dng bi nhiu Router, do vy phn bit cc Router vi nhau cn t tn cho chng. t tn c Router dng lnh hostname ch cu hnh ton cc.
(config) hostname name
name :
Tn router
(2) t mt khu Th ng th router c thit lp mt khu m b o an ton. Tuy nhin mc nh router li khng c thit lp mt khu nn ta cn thit lp mt khu. t mt kh u ng kt n i Truy nhp ti Router c th c th c hin trc tip thng qua cng console hoc thng qua mng (s dng telnet). Khi ta cng cn thit lp mt khu cho Router, v mt khu ny g i l mt khu ng. thit lp mt kh u ng, s d ng lnh password ch cu hnh ng kt ni.
(config-line) password {password}
password : Mt khu
V d v t mt khu ng console
Router(config)# line console 0 Router(config-line)# login Router(config-line)# password cisco
V d v t mt khu ng u cu i o (Telnet)
Router(config)#line vty 0 4 Router(config-line)#login Router(config-line)#password cisco
Mt khu b mt (Enable secret) v m t khu cho php (Enable password)
50
Khi chuyn t ch thc thi ngi dng sang ch thc thi c quyn, Router s yu cu nhp mt khu. Mt khu y c th l m t khu cho php v mt khu b mt. t m t khu cho php, dng lnh enable password ch cu hnh ton c c. loi b mt khu cho php, dng dng no c a lnh ny.
(config) enable password { password } no enable password
t mt khu b mt, dng lnh enable secret ch cu h nh ton c c. lo i b mt khu b mt, dng d ng no ca lnh ny.
(config) enable secret {password} no enable secret
V d :
Router(config)# enable password cisco Router(config)# enable secret cisco1
Ch : Mt khu cho php v mt khu b mt khc nhau ch : Khi hin th cu hnh c a router bng lnh show running-config hoc show startupconfig, mt khu b mt s c hin th di d ng m ho cn mt khu cho php c hin th di d ng text. Mt khu cho php khng hot ng khi m t khu b m t khu c t.
(3) Cho php s dng giao din Mc nh tt c giao din ca router u khng c kch hot ( ch shutdown). S dng lnh no shutdown cho php s dng giao din.
(config-if) shutdown no shutdown
(4) t ghi ch cho giao din Mi router c th c nhiu giao din mng LAN, WAN, v mi giao din c n i ti mt mng khc nhau. phn bit c cc giao din ny cn s dng lnh description t ghi ch cho giao din.
51
NH TUYN IP C BN
(config-if) description string no description
string :
Ghi ch (1-80 k t)
(5) Hin th cc tp cu hnh Khi chng ta dng lnh thit lp cu h nh cho router, cu hnh s c lu tr trong b nh RAM v c gi l cu hnh hot ng (running-config). Tuy nhin nu tt router th cu hnh ny khng cn na. lu cu h nh hot ng cn sao chp chng vo b nh NVRAM v cu hnh ny c gi l cu h nh khi ng (startup-config). hin th cu hnh hot ng v cu hnh khi ng, s dng lnh show running-config v show startup-config ch thc thi c quyn.
(#) show running-config show startup-config
(6) Sao chp cc tp cu hnh sao chp cu hnh hot ng t RAM sang NVRAM v sao chp cu hnh khi ng t NVRAM sang RAM, s d ng lnh copy running-config startupconfig v lnh copy startup-config running-config ch thc thi c quyn.
(#) copy running-config startup-config copy startup-config running-config
(7) Xo cc tp cu hnh xo cu hnh khi ng trong NVRAM, s dng lnh erase startup-config ch thc thi c quyn.
(#) erase startup-config
Cc lnh kim tra mng c b n Cc lnh thng c s dng kim tra mng gm: telnet, ping, trace, show ip route v show interfaces.
52
7 6 5 4 3 2 1
ng dng Trnh din Phin Giao vn Mng Lin kt d liu Vt l
telnet
ping trace show ip route show interfaces
Hnh 4.3 Cc lnh kim tra mng t i cc tng Kim tra tng ng dng bng lnh telnet Lnh telnet c th c s dng kim tra kh nng kt n i ti router. Do telnet l mt giao th c tng ng dng, nn nu telnet thnh cng, c ngha c 7 tng c a router u hot ng tt. Cc router cisco thng h tr t i a 5 ng telnet mt lc. Vi thc thi TCP/IP c a Cisco, bn khng cn nhp lnh connect hoc telnet thit lp phin telnet. Nu mun, b n c th ch nhp tn c a router hoc m t trong cc a ch ca n. kt thc mt phin telnet, s dng lnh exit hoc logout. Mt s v d: Kt ni ti router HCM:
Hanoi> connect HCM Hanoi>HCM Hanoi>131.108.100.152
- hoc - hoc
Khi ph c li mt phin (nhp tn hoc s phin):

Hanoi> 1 HCM>
Kt thc mt phin lm vic:

Hanoi> exit
Nu b n c th telnet ti m t router nhng khng th telnet ti mt touter khc, th l i c th do nh a ch, t tn hoc li quyn truy nhp. Li ny c th tn ti trn router ca bn hoc trn router ch. tip t c kim tra, bn s dng lnh ping. Lnh ping cho php bn kim tra kt ni cu i-n-cui ti tng mng. Kim tra mng s dng lnh ping Lnh Ping c s dng kim tra kt ni ti tng mng. Lnh Ping gi mt gi ti trm ch (echo request) v i gi tr li t trm ny (echo reply), nh thy hnh 4.4. Nu trm ngun c th nhn c tr li t trm ch, th kt ni mng gia
53
NH TUYN IP C BN
ngun v ch hot ng tt.

Tng mng
172.16.1.5 Echo request Echo reply
Hnh 4.4 Lnh ping kim tra tnh kt ni tng mng V d v lnh ping:
Router> ping 172.16.1.5 Type escape sequence to abort. Sending 5, 100 byte ICMP Echos to 172.16.1.5, timeout is 2 seconds: !!!!! Success rate is 100 percent, rount-trip min/avg/max 1/3/4 ms Router>
Lnh ping ti ch 172.16.1.5 thnh cng vi 5 gi c gi. Du chm than (!) cho thy mi echo thnh cng (5 echo thnh cng tng ng vi 5 du chm than). Nu b n nhn c mt s du ch m (.) thay v cc d u chm than th c ngha l router i qu thi gian m khng nhn c cc gi echo phn hi. Bn c th s dng lnh ping ch thc thi ngi dng kim tra tnh kt n i mng. Ping s dng giao thc ICMP, m t giao thc trong b giao thc TCP/IP. Kim tra tng mng bng lnh trace Lnh trace ging nh lnh ping, ch khc ch thay v kim tra tnh kt n i cuicui, trace kim tra tng bc dc ng i, nh thy hnh 4.5. Thao tc ny c th c thc hin c ch thc thi ngi dng hoc ch thc thi c quyn. Lnh trace s dng u im ca thng bo l i pht ra bi router khi mt gi vt qu th i gian sng (TTL). Lnh trace gi i nhiu gi v hin th thi gian hnh trnh c a mi gi. Li ch c a lnh trace l cho bit router no trn ng i l router cui cng c th ti. iu ny cho php c lp li. V d v lnh trace:
Hanoi# trace HCM Type escape to abort. Tracing the route to HCM (172.16.33.5)
54
1 Vinh (172.16.12.3) 1000 msec 8 msec 4 msec 2 Danang (172.16.16.2) 8 msec 8 msec 8 msec 3 HCM (172.16.35.5) 8 msec 8 msec 4 msec Hanoi#
Danang
172.16.16.2
Tng mng Hanoi
HCM
172.16.33.5
Vinh
172.16.12.3
Hnh 4.5 Lnh trace hin th a ch cc giao din s dng ti ch Trong v d trn, chng ta d theo ng i t Hanoi n HCM. Theo ng i ny, gi phi i qua Vinh v Danang. Nu c mt router khng th ti, b n s thy ba du hoa th (*) thay v tn ca router. Lnh trace s tip tc c gng t ti ch bc k tip cho ti khi b n thot ra b ng cch b m Ctrl+Shift-6. Kim tra mng vi lnh show ip route Nu bn khng th ti ch th bc tip theo l kim tra bng nh tuyn bng lnh show ip route xem tuyn ti mng ch tng ng c tn ti hoc c ng khng. V d v lnh show ip route
dttx#show ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area * - candidate default, U - per-user static route, o - ODR P - periodic downloaded static route Gateway of last resort is 203.162.134.185 to network 0.0.0.0 203.162.134.0/30 is subnetted, 2 subnets 203.162.134.188 is directly connected, Serial0/0 203.162.134.184 is directly connected, Serial0/1 203.162.91.0/29 is subnetted, 1 subnets
C C
55
NH TUYN IP C BN
C 203.162.91.40 is directly connected, FastEthernet0/0 S* 0.0.0.0/0 [1/0] via 203.162.134.185 [1/0] via 203.162.134.189
Kim tra mng vi lnh show interfaces Lnh show interfaces c s dng kim tra tng vt l v tng lin kt d liu. M t trong cc thng tin c bn ca lnh show interfaces l trng thi ng dy (line) v cc trng thi giao thc lin kt d liu. Hnh 4.6 cho thy thng tin quan trng ny. Trng thi ng dy (line status) trong v d ny c kch hot bi tn hiu pht hin sng mang (CD), v lin h ti trng thi tng vt l. Tuy nhin, giao th c ng dy (line protocol) c kch hot bi cc khung bo tn ti (keepalive).
Router#show interfaces serial 1 Serial1 is up, line protocol is up Hardware is cxBus Serial Description 56Kb Line San Jose - MP
Tr ng thi ng dy Giao thc ng dy
Serial1 is up, line protocol is up Hot ng Serial1 is up, line protocol is down Li kt ni Serial1 is down, line protocol is down Li giao di n Serial1 is administratively down, line protocol is down Khng kch hot
Hnh 4.6 Din gii cc thng tin ca lnh show interfaces
4.2 THIT LP TUYN TNH Trc khi thit lp nh tuyn, cn thit lp a ch IP. Thit l p a ch IPcho cc giao din ca Router c th thc hin nh truyn, cc giao din ca router, nh giao din LAN (Ethernet, Token Ring), WAN (Serial, BRI) cn c t a ch IP. a ch t cho mt giao din phi thu c a ch ca mng m giao din ni ti. Nu hai giao din WAN c a hai router c ni vi nhau, th a ch IP ca hai giao din ph i thu c cng mng. V d : Nu giao din Ethernet 0 c a router c ni ti mng LAN c a ch 192.168.1.0, th a ch t cho giao din n y phi thuc mng 192.168.1.0, ch ng hn a ch 192.168.1.1. Cc a ch thuc mng khc l khng h p l, ch ng hn 192.168.2.1.
56
thit lp a ch IP cho giao din, bn phi phi chuyn ti ch cu h nh giao din v s d ng lnh ip address. loi b a ch IP, s dng dng no ca lnh ny.
(config-if) ip address address mask [secondary] no ip address address mask [secondary]
address: a ch IP. mask: Mt n mng i km a ch IP.

secondary: Ch ra y l a ch th cp (m t giao din c th c
thit lp nhiu a ch IP, v khi phi dng t kho secondary ch cc a ch th cp). Thit l p nh tuyn tnh Cc bc thit lp nh tuyn tnh: Bc 1: Xc nh mng ch v bc nhy tip theo Trc khi thit lp cc tuyn tnh, b n cn xc nh cc mng ch cn ti v ch ra c ng i ti mng ch. ng i ti m ng ch c xc nh bi bc nhy tip theo (ni u tin gi tin phi qua trc khi chuyn ti ch). V d : Nu mng ch l 192.168.5.0 255.255.255.0 v bc nhy tip theo l 192.168.2.1 255.255.255.0, th gi c cc gi tin ti mng 192.168.5.0 255.255.255.0, router cn gi chng ti a ch 192.168.2.1 255.255.255.0. Bc 2: Thit lp cc tuyn tnh Khi xc nh c mng ch v bc nhy tip theo, s dng lnh ip route ch cu h nh ton cc thit lp cc tuyn tnh. S dng d ng no c a lnh ny lo i b mt tuyn. Cu trc lnh nh sau:
(config) ip route destination_network mask nexthop no ip route
destination_network: mask: nexthop:
a ch mng ch
Mt n m ng ca ch a ch IP ca bc nhy tip theo
V d : Thit lp cc tuyn tnh cho router 1 trong mng hnh 4.7.
57
NH TUYN IP C BN
Hnh 4.7 V d v mt lin mng Trong cu hnh trn, cn thit lp tuyn tnh ti mng LAN2 v mng LAN3. Bc nh y tip theo tng ng nh sau: ch LAN2 LAN3 192.168.2.0 255.255.255.0 192.168.3.0 255.255.255.0 Bc nhy tip theo 192.168.4.2 192.168.5.2
Cc lnh thit lp cho router 1

Router1#configure terminal Router1(config)#ip route 192.168.2.0 255.255.255.0 192.168.4.2 Router1(config)#ip route 192.168.3.0 255.255.255.0 192.168.5.2
Thit l p tuyn mc nh Tuyn mc nh c s dng nh tuyn gi ti nhng ch khng khp vi tuyn no trong bng nh tuyn. thit lp tuyn mc nh, s dng lnh ip route 0.0.0.0 0.0.0.0 ch cu h nh ton cc.
ip route 0.0.0.0 0.0.0.0 [next-hop-address | outgoing interface]
4.3 THIT LP NH TUYN RIP Cc bc thit lp nh tuyn RIP: Bc 1: Cho php mt tin trnh RIP chy trn router (bt bu c)
58
Mt router c th chy nhiu giao thc nh tuyn. cu hnh RIP, trc tin cn cho php mt tin trnh RIP trn router bng cch dng lnh router rip ch cu h nh ton cc. thi s dng RIP, dng d ng no ca lnh ny. Cu trc lnh nh sau:
(config) router rip no router rip
Bc 2: Gn cc mng cho tin trnh RIP (b t buc) RIP l mt giao th c nh tuyn ng, bng nh tuyn c a n c xy dng nh vic trao i cc cp nht nh tuyn. Khi gi cp nht, RIP s qung b cp nht ra cc giao din ca router. ch r mng m RIP s gi cp nht ti, cn gn mng cho tin trnh RIP bng cch dng lnh network ch cu h nh router. loi b mt mng dng dng no ca lnh ny. Cu trc lnh nh sau:
(config-router) network network no network network
network:
a ch mng.
Bc 3: Thay i cc b nh th i (ty chn) Giao thc RIP s dng nhiu b nh thi xc ch cc bin nh: tn su t gi cp nh t, khong thi gian trc khi m t tuyn tr thnh khng hp l. Bn c th iu chnh cc b nh thi iu chnh hiu nng c a giao thc cho ph hp vi lin mng c a bn. thay i b nh thi, s dng lnh timer basic ch cu h nh router. thit lp li b nh thi mc nh, s dng dng no c a lnh ny.
(config-router) timer basic update invalid holddown flush no timer basic
update: Thi gian b nh thi cp nht. invalid: Thi gian b nh th i tuyn khng h p l. Gi tr ny t nh t phi ln gp ba ln gi tr b nh thi cp nht. holddown: Thi gian b nh thi gi. Gi tr n y t nh t phi ln gp ba ln gi tr b nh thi cp nht. flush: Thi gian b nh thi xa tuyn. Gi tr n y t nh t phi bng tng b nh th i khng h p l v b nh thi gi.
Cc gi tr mc nh :
59
NH TUYN IP C BN
update: 30 invalid : 180 holddown: 180 flush: 240 Bc 4: Thay i metric mc nh (ty chn) thay i gi tr metric m c nh ca RIP, s dng lnh default-metric ch cu h nh router. thit lp li gi tr mc nh, s dng d ng no c a lnh ny.
(config-router) default-metric number no default-metric
number: Gi tr metric.
Bc 5: Cho php RIP cp nht im-im (ty chn) Do RIP l giao thc qung b nn cp nht nh tuyn ca n ti c cc mng im-im hay khng qung b, phi cu hnh router cho php trao i thng tin nh tuyn. cho php cp nh t im-im, s dng lnh neighbor ch cu hnh router. lo i b cp nht im-im, s dng dng no ca lnh ny.
(config-router) neighbor ip-address no neighbor ip-address
ip-address: a ch IP c a router hng xm.
Ch : Nhiu neighbor lnh c th c s dng xc nh nhiu hng xm. Bc 6: Cho php c ch split-horizon (ty chn) cho php c ch split-horizon, s dng lnh ip split-horizon. v hiu c ch ny, s dng dng no c a lnh ny.
(config-router) ip split-horizon no ip split-horizon
Bc 7: Thit lp chng thc (ty chn) Khi cu hnh RIP, m c nh router s gi gi RIPv1 v nhn c RIPv1 v RIPv2. Do chng thc ch c h tr trong RIPv2, nn thit lp chng thc, trc tin ta cn cu hnh router gi i c gi RIPv2. lm vy, s dng lnh version ch cu hnh router, vi tham s l 2. Cu trc ca lnh nh sau:
60
(config-router) version {1|2}
Sau khi cu hnh router gi gi RIPv2, thc hin cc bc sau thit lp chng thc RIP. 1) nh ngha mt dy kha Dy kha l mt tp cc kha c th c s dng trn giao din. Nu dy kha khng c cu hnh th khng c chng thc c thc hin trn giao din. nh ngha m t dy kha, s dng lnh key chain ch cu h nh ton c c. Cu trc lnh nh sau:
(config) Key chain name
name: Tn t cho dy kha (khng cn ging tn dy kha router pha kia).
2) nh ngha mt kha trong dy kha Mt dy kha c nhiu kha. nh ngha mt kha trong dy kha, s dng lnh key ch cu hnh dy kha. Cu trc lnh nh sau:
(config-keychain) Key ID
ID: S hiu nhn d ng kha.
3) nh ngha mt khu nh ngha mt kh u cho mt kha, s dng lnh key-string ch cu h nh kha. Cu trc lnh nh sau:
(config-keychain) Key-string password
password : Mt khu ca kha. Mt khu ny c gi v nhn trong gi RIPv2.
4) Cho php chng th c trn giao din v ch r dy kha c s dng Chng th c c thc hin trn c s giao din. Ngh a l c th chng thc trn mt s giao din, trong khi khng chng thc trn mt s giao din khc. cho php chng thc trn giao din v ch r dy kha c s d ng, s dng lnh ip rip authentication key-chain ch cu hnh giao din. Cu trc lnh nh sau:
(config-if) Ip rip authentication key-chain name
61
NH TUYN IP C BN
name: Tn dy kha c s dng trn giao din.
5) Ch r dng chng thc vn bn hay MD5 Chng thc mc nh trong RIPv2 l chng thc vn b n thun ty. Do v y, n u khng cn chng thc MD5 th c th b qua bc ny. dng chng th c MD5, s dng lnh ip rip authentication mode md5 ch cu hnh giao din. V d : Thit lp nh tuyn RIP v chng th c cho cc router hnh 4.8.
Hnh 4.8 V d v mt lin mng Cu hnh RIP:

Router1: Router1#configure terminal Router1(config)#router rip Router1(config-router)#network 192.168.1.0 Router1(config-router)#network 192.168.4.0 Router1(config-router)#network 192.168.5.0 Router2: Router2#configure terminal Router2(config)#router rip Router2(config-router)#network 192.168.2.0 Router2(config-router)#network 192.168.4.0 Router3: Router3#configure terminal Router3(config)#router rip
62
Router3(config-router)#network 192.168.3.0 Router3(config-router)#network 192.168.5.0
Cu hnh chng th c gia Router1 v Router2:

Router1:
Router1#configure terminal Router1(config)#router rip
* Cho php g i cc gi RIPv2:

Router1(config-router)#version 2 Router1(config-router)#exit
* nh ngha mt dy kha:
Router1(config)#key chain dttx
* nh ngha mt khu cho kha 1:

Router1(config-keychain)#key 1 Router1(config-keychain-key)#key-string 12345 Router1(config-keychain-key)#exit Router1(config-keychain)#exit
* Cho php chng thc trn giao din:

Router1(config)#interface s0 Router1(config-if)#ip rip authentication key-chain dttx
* Dng ch ng thc MD5:

Router1(config-if)#ip rip authentication mode md5
Router2:
Router1#configure terminal Router1(config)#router rip
* Cho php g i cc gi RIPv2:

Router1(config-router)#version 2 Router1(config-router)#exit
* nh ngha mt dy kha:
Router1(config)#key chain ktnv
* nh ngha mt khu cho kha 1:

Router1(config-keychain)#key 1 Router1(config-keychain-key)#key-string 12345 Router1(config-keychain-key)#exit
63
NH TUYN IP C BN
Router1(config-keychain)#exit
* Cho php chng thc trn giao din:

Router1(config)#interface s0 Router1(config-if)#ip rip authentication key-chain ktnv
* Dng ch ng th c MD5:
Router1(config-if)#ip rip authentication mode md5
4.4 CU HNH IGRP Cc bc thit lp nh tuyn IGRP Bc 1: Cho php mt tin trnh IGRP ch y trn router (bt buc) M t router c th chy nhiu giao thc nh tuyn. cu hnh IGRP, trc tin cn cho php mt tin trnh IGRP trn router bng cch dng lnh router igrp ch cu hnh ton cc. thi s dng IGRP, dng d ng no ca lnh ny. Cu trc lnh nh sau:
(config) router igrp AS_number no router grp AS_number
AS_number: S h t tr (khng nht thit phi dng s ng k).
Bc 2: Gn cc mng cho tin trnh IGRP (b t buc) IGRP l m t giao thc nh tuyn ng, bng nh tuyn ca n c xy dng nh vic trao i cc cp nht nh tuyn. Khi gi cp nht, IGRP s qung b cp nht ra cc giao din c a router. ch r mng m IGRP s gi cp nht ti, cn gn mng cho tin trnh IGRP b ng cch dng lnh network ch cu hnh router. lo i b mt mng dng d ng no ca lnh ny. Cu trc lnh nh sau:
(config-router) network network no network network
network:
a ch mng.
Bc 3: Thay i cc b nh th i (ty chn) Giao thc IGRP s dng nhiu b nh thi xc ch cc bin nh: tn su t gi cp nht, khong thi gian trc khi mt tuyn tr thnh khng h p l. Bn c th iu chnh cc b nh thi iu chnh hiu nng c a giao thc cho ph hp vi lin mng c a b n. thay i b nh thi, s dng lnh timer basic ch cu h nh router. thit lp li b nh thi mc nh, s dng d ng no c a lnh ny.
64
(config-router) timer basic update invalid holddown flush [sleeptime] no timer basic
update: Thi gian b nh thi cp nht. invalid: Thi gian b nh th i tuyn khng h p l. Gi tr n y t nh t phi ln gp ba ln gi tr b nh thi cp nht. holddown: Thi gian b nh thi gi. Gi tr n y t nh t phi ln gp ba ln gi tr b nh thi cp nht. flush: Thi gian b nh thi xa tuyn. Gi tr n y t nh t phi bng tng b nh th i khng h p l v b nh thi gi. sleeptime: Thi gian hon cp nht nh tuyn. Gi tr ny ph i nh hn b nh thi cp nht.
Cc gi tr mc nh : update: 90 invalid : 270 holddown: 280 flush: 630 sleeptime: 0 Bc 4: Thay i cc trng s metric (ty chn) Mc d cc gi tr metric mc nh c chn la cn thn hot ng tt trong hu ht cc mng, nhng bn vn c th thay i nu mun. iu chnh cc trng s metric c th nh hng r rt n hin nng mng, tuy nhin cn thc hin m t cch cn thn. iu ch nh trng s metric, s dng lnh metric weights ch cu h nh router. thit lp li gi tr trng s mc nh, s dng dng no ca lnh ny.
(config-router) metric weights tos k1 k2 k3 k4 k5 no metric weights
tos: Loi d ch v. Hin lun c t l 0. k1, k2, k3, k4, k5 : trng s metric.
Cc gi tr mc nh : tos: 0 k1 : 1
65
NH TUYN IP C BN
k2 : 0 k3 : 1 k4 : 0 k5 : 0 Bc 5: Hn ch ng knh mng (ty chn) S bc nhy ti a mc nh trong mng IGRP l 100. thay i s ny, b n s dng lnh metric maximum-hops ch cu h nh router. thit lp li gi tr mc nh, s dng dng no c a lnh ny.
(config-router) metric maximum-hops hops no metric maximum-hops
hops: S bc nhy ti a (1-255).
Bc 6: Cho php IGRP c p nht im-im (ty chn) Do IGRP l giao thc qung b nn cp nht nh tuyn ca n ti c cc mng im-im hay khng qung b, phi cu hnh router cho php trao i thng tin nh tuyn. cho php cp nh t im-im, s dng lnh neighbor ch cu hnh router. lo i b cp nht im-im, s dng dng no ca lnh ny.
(config-router) neighbor ip-address no neighbor ip-address
ip-address: a ch IP ca router hng xm.
Ch : Nhiu neighbor lnh c th c s dng xc nh nhiu hng xm. Bc 7: V hiu c ch Holddown (ty chn) C ch Holddown cho php trnh vng lp nh tuyn nhng tng thi gian hi t mng. v hiu c ch Holddown, s dng lnh no metric holddown ch cu hnh router. cho c ch Holddown, s dng lnh metric holddown.
(config-router) no metric holddown metric holddown
Bc 8: V hiu c ch Holddown (ty chn) C ch Holddown cho php trnh vng lp nh tuyn nhng tng thi gian hi t mng. v hiu c ch Holddown, s dng lnh no metric holddown ch
66
cu h nh router. cho c ch Holddown, s dng lnh metric holddown.

(config-router) no metric holddown metric holddown
4.5 QUN L LU LNG BNG DANH SCH TRUY NHP Trong phn trc, chng ta thit lp giao thc nh tuyn cho php cc mng lin lc vi nhau. Tuy nhin, qun tr tt mt mng, cn qun l c lu lng ca mng. Mc d cc cng c bo m t, chng h n mt khu, thit b g i li v cc thit b bo mt vt l rt hu ch, nhng chng thng thiu linh ho t trong l c lu lng, iu m cc nh qun tr mng rt cn. Chng hn mt ngi qun tr c th mun cho php tt c ngi dng truy nhp Internet nhng khng mun ngi dng bn ngoi telnet vo mng LAN c a m nh. Cc router cung cp kh nng lc lu lng c bn b ng cch s dng cc danh sch iu khin truy nhp (ACL Access Control List). Mt ACL l mt tp hp tun t cc khai bo cho php (permit) hoc t chi (deny) p dng cho cc a ch hoc cc giao thc tng cao. 4.5.1 C bn v ACL ACL l danh sch cc lnh bn p dng cho mt giao din ca router. Danh sch ny n cho router bit loi gi no c ch p nhn v loi gi no b t chi. Vic ch p nhn v t ch i c th d a trn cc c t c th , chng hn a ch ngun, a ch ch v cng. ACL cho php bn qun l lu lng v qut cc gi c th bng cch p dng ACL cho mt giao din ca router. Mi lu lng i qua giao din u c kim tra da trn cc iu kin trong ACL. ACL c th c to cho tt c cc giao thc mng c nh tuyn, chng hn IP v IPX, lc gi khi gi i qua mt router. Cc ACL c th c cu hnh ti router iu khin truy nhp ti m t mng hoc mng con. ACL lc lu lng mng bng cch iu khin chuyn tip hoc kho cc gi c nh tuyn ti giao din c a router. Router kim tra mi gi xc nh chuyn tip hay b gi da trn cc iu kin c ch ra trong ACL. Cc iu kin ACL c th l a ch ngun ca lu lng, a ch ch ca lu lng, giao thc tng cao hoc cc thng tin khc.
67
NH TUYN IP C BN
iMac
iM ac
iM ac
Hnh 4. 9 S dng ACL l c lu lng Cc ACL phi c nh ngh a trn c s tng giao thc. Ni cch khc bn ph i nh ngha ACL cho mi giao thc c cho php trn giao din nu b n mun iu khin lu lng cho giao din ny. V d, nu giao din router ca bn c cu hnh cho giao thc IP, AppleTalk v IPX th bn cn nh nghi t nht 3 ACL. Nh c ch ra trong hnh 4.9, cc ACL c th c s dng nh m t cng c iu khin mng bng cch thm linh hot lc cc gi i vo hoc ra kh i giao din ca router. Cc l do to ACL C m t s l do to ACL sau: Gii hn lu lng mng v tng hiu sut mng. V d , cc ACL c th ch nh cc gi c th c router x l trc cc lu lng khc. K thu t ny c gi l hng i, n m b o rng cc router s khng x l cc gi khng cn thit. Kt qu l k thu t hng i gii hn lu lng mng v gim tc nghn mng. H tr iu khin lung lu lng. V d, cc ACL c th hn ch hoc gim n i dung ca cc cp nht nh tuyn. Nhng hn ch ny c s dng gii hn khng cho thng tin v cc mng c th lan truyn qua mng. H tr b o mt mc c s v truy nhp mng: V d, cc ACL c th cho php m t trm truy nhp ti m t phn mng c a b n v ngn cc trm khc truy nhp ti khu vc mng ny. Trong hnh 4.10, trm A c cho php truy nhp ti mng k ton, v trm B khng c truy nhp ti mng k ton. Nu bn khng cu h nh cc ACL trn router c a b n th tt c cc gi i qua router c th c cho php vo rt c cc mng. Quyt nh loi lu lng no c chuyn tip hoc kho ti cc giao din ca router. V d , bn c th cho php lu lng th in t c nh tuyn, nhng cng lc kho tt c lu lng telnet.
68
iMa c
iMa c
iMa c
iMa c
Hnh 4.10 S dng ACL ngn lu lng ti m t mng To ACL theo ng th t Th t bn t cc khai bo ACL l rt quan trng. Khi router ang quyt nh chuyn tip hoc kho mt gi, h iu hnh lin mng ca Cisco kim tra gi so vi m i khai bo iu kin theo th t to khai bo. Sau khi mt so khp c tm thy, router khng kim tra m t khai bo iu kin n o na (cho d vn cn khai bo iu kin). Nu bn to mt iu kin cho php mi lu lng th khng m t khai bo no thm vo sau c kim tra. Nu bn mun thay i cc khai bo iu kin trong mt ACL, bn ph i xo ri to li ACL vi cc khai bo iu kin mi. iu ny gii thch ti sao cch tt nht thit lp cu hnh ca router l son tho cu hnh trn my PC s dng mt trnh son tho ri gi chng ti router s dng TFTP. S dng ACL Bn c th to mt ACL cho m i giao thc bn mun lc cho mi giao din c a router. i vi mt s giao thc, bn to mt ACL lc lu lng i vo v mt ACL lc lu lng i ra. Sau khi mt khai bo ACL kim tra mt gi tm mt so khp, gi c th b t chi hoc cho php. Cc ACL ca Cisco kim tra gi v cc tiu tng trn, nh ch ra hnh 4.11.
69
NH TUYN IP C BN
Tiu khung (Chng hn Ethernet)
Gi (tiu IP)
Phn on (tiu TCP)
D liu
Cng Giao thc a ch ngun a ch ch S dng cc khai bo ACL kim tra gi
T chi (deny)
Cho php (permit)
Hnh 4.11 ACL kim tra gi v cc tiu tng trn
Ho t ng ca ACL M t ACL l mt nhm cc khai bo nh ngha cch cc gi: o i vo giao din vo c a router o Chuyn tip qua router o Ra khi giao din ra ca router Nh ch ra h nh 4.12, khi mt gi vo mt giao din, router kim tra xem gi c th nh tuyn khng. Nu c th, router kim tra xem giao din vo c c thit lp ACL khng. Nu c, gi c kim tra da trn cc iu kin trong ACL. Nu gi c cho php, router kim tra bng nh tuyn tm giao din ch. Sau router kim tra xem giao din ch c c thit lp ACL khng. Nu khng c thit lp, gi c gi trc tip ti giao din ch. Ch : Cc ACL khng l c cc gi do router sinh ra m ch lc cc gi t cc ngun khc. Cc khai bo ACL hot ng theo th t lgc v tun t. Nu c mt so khp iu kin, gi s c cho php ho c t chi v cc khai bo ACL cn li khng c kim tra n a. Nu tt c cc khai bo u khng so khp th gi b t chi. iu n y ngha l mc d b n khng t khai bo t chi tt c cui ACL nhng n vn tn ti.
70
CHNG 4 - CU HNH NH TUYN Chn giao di n

Kim tra cc khai bo ACL
C Giao di n vo Gi nh tuyn? Khng C

Trong bng nh tuy n?
Chuyn gi
Khng ACL? C
Giao din ra C Chuyn gi
Khng
Cho php? Khng
B gi
Hnh 4.12 Hot ng ca ACL Qu trnh x l cc khai bo ACL trong mt ACL c minh ho h nh 4.13.
Gi t i giao di n vo
C T chi C
So khp kim tra u tin Khng
C Cho php
So khp kim tra tip theo Khng
Giao di n ch Cho php
T chi
...
T chi C Khng So khp kim tra cui cng Khng T chi Cho php C
B gi
Hnh 4.13 Qu trnh x l danh sch truy nhp

71
NH TUYN IP C BN
ACL cho php chng ta iu kin my khch no c th truy nh p mng c a chng ta. Cc iu kin trong mt ACL c th: Cho php hoc t chi truy nhp ti mt phn ca mng i vi cc trm c th. Cho php hoc t chi truy nhp ti cc loi tp c th, ch ng hn FTP hoc HTTP. 4.5.2 C u hnh ACL Phn ny trnh by nhng vn lin quan n to ACL, gm: o To ACL s dng ch cu h nh ton cc o Ch r s hiu ACL o Chn la cn th n th t lgc o Chn giao thc kim tra Hai bc c bn to ACL gm: Bc 1: nh ngha ACL bng lnh:
(config) Router(config)# access-list access-list-number {permit | deny} {test-conditions}
access-list-number l s hiu nhn dng ACL. permit, deny l t kho cho php/t chi gi. test-conditions l cc iu kin c s dng trong khai bo ACL.
Bc 2: p dng danh sch truy nhp s dng lnh access-group

(config) Router(config)# {protocol} access-group access-list-number
Tt c cc khai bo ACL nh n din bi access-list-number c gn vi mt hoc nhiu giao din. Mc d m i giao thc u c cc lut v cc cng vic c th cn thc hin c a ring mnh, nhng ni chung tt c cc giao thc u yu cu hai bc c bn trn. u tin l to m t ACL v sau p dng ACL cho giao din. Cc ACL c gn cho mt hoc nhiu giao din v c th lc lu lng vo hoc ra, tu thuc vo cu hnh. Cc ACL theo hng ra thng hiu qu hn cc ACL theo hng vo, v do vy c ng c s dng nhiu hn. Nu router c thit lp ACL theo hng vo th n phi kim tra mi gi xem c so khp vi cc iu kin ACL trc khi chuyn mch gi ti m t giao din ra.
72
Gn s hiu duy nh t cho m i giao din Khi cu hnh ACL trn router, b n phi nhn dng duy nht mi ACL bng cch gn mt s cho ACL c a giao thc. Khi bn s dng mt s nhn din mt ACL, s ny phi nm trong dy s c th hp l cho mi giao thc. Bn c th ch r cc ACL bng cch s cho cc giao thc c ch ra trong bng 4.2. Sau khi b n to mt ACL, bn phi gn n ti m t giao din s dng n. Nu bn mun thay i n i dung ACL, bn phi xo ACL ny bng lnh no access-list access-list-number ri to li. Bng 4.2 S hiu ACL i vi cc giao th c Giao thc IP IP m rng IPX IPX m rng Ph m v 1-99 100-199 800-899 900-999
S dng mt n wildcard Mt n wildcard l mt d y 32 bt c chia thnh 4 byte c i km vi a ch IP xc nh v tr bt cn so snh. Bt wildcard bng 0 c ngha cn kim tra ti bt tng ng c a a ch IP. Bt wildcard b ng 1 c ngha khng cn kim tra ti bt tng ng ca a ch IP. ACL s dng mt n wildcard nhn din mt hoc nhiu a ch khi cho php hoc t chi nhng a ch ny. Mc d u di 32 bt nhng m t n wildcard v mt n mng con IP hot ng khc nhau. Nh c li rng bt 0 v 1 trong mt mng con xc nh phn a ch mng, a ch mng con v a ch trm ca a ch IP tng ng. Bt 0 v 1 trong mt n wildcard xc nh nhng bt tng ng trong a ch IP cn phi kim tra hay b qua. Nh bn thy trn, cc bt 0 v 1 trong m t mt n wildcard bu c ACL kim tra hoc b qua cc bt tng ng trong a ch IP. S d ng mt n wildcard any v host Lm vic vi biu din thp phn du ch m c a mt n wildcard c th bun t. i vi m t s trng hp c bit b n c th s d ng nhng ch vit tt. Nhng ch vit tt ny tit kim thi gian bn phi g khi cu hnh cc iu kin ca danh sch truy nhp.
73
NH TUYN IP C BN
cho php ho c t chi mi mng, bn s dng cp a ch IP v m t n wildcard sau: 0.0.0.0 255.255.255.255. Trong trng hp ny bn c th s dng ch vit tt any. V d:
access-list 1 permit 0.0.0.0 255.255.255.255 tng ng vi access-list 1 permit any
cho php hoc t ch i m t my c th, bn s dng a ch IP c a my vi mt n wildcard 0.0.0.0 (v d 192.168.1.10 0.0.0.0). Trong trng hp ny bn c th dng ch vit tt host. V d :
access-list 1 permit 192.168.1.10 0.0.0.0 tng ng vi access-list 1 permit host 192.168.1.10
4.5.3 ACL chun Bn s dng ACL chun khi bn mun kho tt c lu lng t m t mng c th hoc m t trm c th, cho php tt c lu lng t m t mng c th, hoc t ch i cc b giao thc. Cc ACL chun kim tra a ch ngun ca cc gi c th nh tuyn, kt qu l n cho php hoc t ch i ton b b giao th c (ch ng hn TCP/IP), da trn a ch trm, a ch mng con, a ch mng. Qu trnh thit lp ACL chun cng gm hai bc nh trnh by trn. Bc 1 : S dng lnh access-list ch cu h nh ton c c nh ngha mt ACL. Nu cn xo ACL, s dng d ng no ca lnh ny.
(config) access-list access-list-number {permit | deny} source-address [source-wildcard] [log]
no access-list access-list-number
74
access-list-number: S hiu ca ACL. S ny n m trong khong t 0-99 (i vi ACL chun) deny: T chi truy nhp nu so kh p iu kin. Permit: Cho php truy nh p nu so khp iu kin. source-address: a ch c a mng hoc trm ni gi c gi (c biu din di d ng thp phn du chm). Source-wildcard: (Tu chn) Mt n wildcard p dng cho a ch ngun. Log: (Tu ch n) Bt gi thng bo v nhng gi ph hp vi mc trong danh sch truy nhp ti mn h nh console. Thng bo gm s ACL, gi
c cho php hay t chi, a ch ngun, s lng gi. Bn s dng lnh show access-lists ch thc thi c quyn hin th ni dung ca tt c ACL. Ngoi ra, bn c th ch r s hiu ACL ho c tn ACL cho lnh ny. Khi lnh ch hin th n i dung ca ACL c ch ra. Sau y l mt v d v ACL chun cho php cc trm trn ba mng c th :
access-list 1 permit 192.5.34.0 0.0.0.255 access-list 1 permit 128.88.0.0 0.0.255.255 access-list 1 permit 37.0.0.0 0.255.255.255
Ch : Trong v d trn m i truy nhp khc u b t chi. Nh vy cu i danh sch truy nhp lun c iu kin deny any m c d bn khng nhn thy n. Trong v d ny, cc bt wildcard p dng cho phn a ch trm. Mi trm c a ch ngun khng ph h p vi cc khai bo trong ACL s b t ch i. d d ng hn trong vic ch r m t s lng ln a ch ring bit, bn c th b qua tham s mt n wildcard nu tt c cc bt ca n u l 0. Do vy, hai lnh sau l tng ng:
access-list 2 permit 37.10.13.50 access-list 2 permit 37.10.13.50 0.0.0.0
Bc 2: S dng lnh ip access-group p dng m t ACL nh ngha cho mt giao din.

(config-if) ip access-group access-list-number {in | out}
access-list-number: S hiu ACL c p cho giao din. in | out: Xc nh ACL c p dng theo hng i ra hay i vo. Nu in hoc out khng c ch r th out l gi tr mc nh.
Ch : i vi mi giao din theo m t hng ch c p dng mt ACL c a mt loi giao thc. M t s v d v ACL chun V d 1: Cho php lu lng t m t mng ngun. Trong v d ny, ACL ch cho php chuyn tip lu lng t mng ngun 172.16.0.0. Lu lng t nhng mng khng phi 172.16.0.0 b ng.
75
NH TUYN IP C BN
Hnh 4.14 Mng v d
access-list 1 permit 172.0.0.0 0.0.255.255 interface ethernet 0 ip access-group 1 out interface ethernet 1 ip access-group 1 out
V d 2: T chi m t trm c th ACL trong v d ny c thit lp ng lu lng t mt trm c th , 172.16.4.13, v cho php chuyn tip tt c lu lng khc trn giao din ethernet 0. Lnh access-list trong v d ny s dng t kho deny t ch i lu lng t mt trm c th. Mt n wildcard 0.0.0.0 c s dng yu cu router kim tra ph h p tt c cc bt.
access-list 1 deny 172.16.4.13 0.0.0.0 access-list 1 permit 0.0.0.0 255.255.255.255 interface ethernet 0 ip access-group 1 out
Trong dng lnh access-list th hai, kt hp gia a ch IP v mt n wildcard, 0.0.0.0 255.255.255.255, ch lu lng t mi ngun. Kt hp ny c th c thay bng t kho any. Tt c gi khng ph h p vi iu kin u tin ca ACL s ph hp vi iu kin th hai v s c chuyn tip.
76
V d 3: T chi m t mng con c th ACL trong v d ny c thit lp ng lu lng t mt mng con c th , 172.16.4.0, v cho php chuyn tip tt c lu lng khc.
access-list 1 deny 172.16.4.0 0.0.0.255 access-list 1 permit any interface ethernet 0 ip access-group 1 out
4.5.4 ACL m rng ACL m rng c s dng thng xuyn hn ACL chu n kim tra cc iu kin l c v chng h tr phm vi iu khin rng hn so vi ACL chu n. Bn s dng ACL m rng khi bn mun cho php lu lng Web nhng t ch i lu lng FTP hoc Telnet t cc mng khng phi mng ca cng ty. ACL m rng kim tra c a ch ngun v ch. N cng kim tra c cc giao thc c th , s hiu cng v cc tham s khc. iu ny cho php bn miu t linh hot hn v nhng php kim tra m ACL s lm. Cc gi c th c cho php hoc t chi da trn ni gi c to ( a ch ngun) v ch c a gi ( a ch ch). Lnh to ACL m rng nh sau:
(config) access-list access-list-number {permit | deny} protocol source [source-mask] destination [destination-mask] [operator operand] [established] [log]
access-list-number: S hiu ca ACL. S ny nm trong khong t 100-199). Deny: T chi truy nhp nu so kh p iu kin. Permit: Cho php truy nhp n u so khp iu kin. Protocol: Giao thc, chng hn IP, TCP, UDP, ICMP. Source v destination: a ch ngun v a ch ch. Source-mask v Destination-mask: Mt n wildcard ca a ch ngun v a ch ch. Operator operand: Ton t, g m lt (less than), gt (greater than), eq (equal), neq (not equal), v m t s cng. Established: Cho php lu lng TCP qua nu gi s dng c thit lp kt ni (bt ACK c t).
gn ACL m rng cho giao din, bn cng s dng lnh ip access-group ging ACL chun. Cc v d v thit lp ACL m r ng di y s s dng cu h nh mng hnh
77
NH TUYN IP C BN
4.14. V d 1: T chi giao thc FTP i vi E1.

access-list 101 deny tcp 172.16.4.0 0.0.0.255 172.16.3.0 0.0.0.255 eq 21 access-list 101 permit ip 172.16.4.0 0.0.0.255 0.0.0.0 255.255.255.255 interface ethernet 1 ip access-group 101 in
Lnh access-list 101 deny tcp 172.16.4.0 0.0.0.255 172.16.3.0 0.0.0.255 eq 21 t chi lu lng FTP (giao thc TCP, cng 21) t mng 172.16.4.0 ti mng 172.16.3.0. Lnh access-list 101 permit ip 172.16.4.0 0.0.0.255 0.0.0.0 255.255.255.255 cho php lu lng IP t mng 172.16.4.0 ti mi mng (0.0.0.0 255.255.255.255). V d 2: Ch t chi lu lng telnet gi ra khi E0.
access-list 101 deny tcp 172.16.4.0 0.0.0.255 any eq 23 access-list 101 permit ip any any interface ethernet 0 ip access-group 101 out
Lnh access-list 101 deny tcp 172.16.4.0 0.0.0.255 any eq 23 t ch i lu lng telnet (giao thc TCP, cng 23). Lnh access-list 101 permit ip any any cho php lu lng IP trn ton mng.
78
THUT NG VIT TT
THUT NG VIT TT
Thut ng A ACL AS B BRI E EIGRP F FDDI FTP H HTTP I ICMP IGRP IOS IP ISDN L LAN LSA M MTU N NVRAM P PRI Primary Rate Interface
79
Ting Anh
Access Control List Autonomous System
Basic Rate Interface
Enhanced Interior Gateway Routing Protocol
Fiber Distributed Data Interface File Transfer Protocol
Hyper Text Transfer Protocol
Internet Control Message Protocol Interior Gateway Routing Protocol Internetworking Operating System Internet Protocol Integrated Services Digital Network
Local Area Network Link State Advertisement
Maximum Transfer Unit
Nonvolatile Random Access Memory
NH TUYN IP C BN
R RAM RIP ROM S SPF T TCP TFTP U UDP W WAN Wide Area Network User Data Protocol Transmission Control Protocol Trivial File Transfer Protocol Shortest Path First Random Access Memory Routing Information Protocol Read Only Memory
80
TI LIU THAM KHO
TI LIU THAM KHO
[1] Huitema, Christian. Routing in the Internet. Upper Saddle River, NJ: Prentice-Hall, 1995. [2] Cisco IP Routing Fundamentals, Cisco Press Publications, 1999. [3] Behrouz A.Forouzan,TCP/IP Protocol Suite, McGrawHill 2000.
81

Routing Basic

Cargado por

Información del documento

Derechos de autor

Formatos disponibles

Compartir este documento

Compartir o incrustar documentos

Opciones para compartir

¿Le pareció útil este documento?

¿Este contenido es inapropiado?

Copyright:

Formatos disponibles

Routing Basic

Cargado por

Copyright:

Formatos disponibles

LI NI U

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

DANH SCH HNH

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

DANH SCH BNG

DANH SCH BNG

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Hnh 1.7 Cc Router vct khong cch khm ph ng i t t nht n ch t cc hng xm

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Router A gi ra bng nh tuy n c cp nht ny

Thay i c s d liu tp dn n cp nht nh tuyn

D Mng 1; Khong cch 5 Mng 1; Khong cch 4

Hnh 1.10 Vng lp nh tuyn tng vct khong cch

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Khng gi cp nht v tuyn ti mng 1 cho A

Khng gi cp nht v tuyn ti mng 1 cho A

Trao i cc qung co trng thi lin k t

Gi i thut SPF Cy SPF

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Thay i tp trong cp nht trng thi lin kt

Tin trnh cp nht bng nh tuyn

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

GIAO THC NH TUYN RIP

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

CHNG 2 - GIAO THC NH TUYN RIP

Hnh 2.1 Bng nh tuyn RIP ban u

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Hnh 2.2 Bng nh tuyn RIP cui cng

Network Address Lp Tt c 0 Tt c 0 Distance

Hnh 2.3 nh dng bn tin RIP 26

CHNG 2 - GIAO THC NH TUYN RIP

Mt yu cu c gi bi m t router m i hoc mt router c mt s m c qu hn. Mt yu cu c th h i v cc mc c th hoc h i tt c cc mc (hnh 2.4).

Hnh 2.4 Bn tin RIP yu cu

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Thng bo hnh th c 141.12.0.0 181.12.0.0 97.0.0.0 5 2 4

Hnh 2.5 Bn tin RIP tr li

CHNG 2 - GIAO THC NH TUYN RIP

t l 16, ngh a l khng th ti ch. Mi tuyn u c b nh thi khng hp l c a ring m nh.

Reserved Route Tag

Network Address Network Mask Next Hop Address Distance

Authentication Data (16 byte)

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

GIAO THC NH TUYN IGRP

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

CHNG 3 - GIAO THC NH TUYN IGRP

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

CHNG 3 - GIAO THC NH TUYN IGRP

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

CHNG 3 - GIAO THC NH TUYN IGRP

Hnh 3.1 Cn bng ti ng gi

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT

CHNG 3 - GIAO THC NH TUYN IGRP

Chng trnh bi dng kin thc IP v NGN cho k s TVT ca VNPT