Documentos de Académico
Documentos de Profesional
Documentos de Cultura
NHN XT CA C S THC TP
H tn ngi thc
tp:..................................................................................................Lp................
im: .
Ngy thng nm 2011
C S THC TP
(K v ng du)
Li ni u
Trong cng cuc i mi khng ngng ca khoa hc cng ngh, nhiu lnh vc
v ang pht trin vt bc, c bit l lnh vc cng ngh thng tin. Thnh
cng ln nht l s ra i ca my tnh, k t my tnh c coi l mt
phng tin tr gip c lc cho con ngi trong mi lnh vc. Nhng tt c cc
my tnh u n l v khng th chia s thng tin cho nhau.
Chnh v vy cng ngh thng tin - c bit l Internet, bt u c s
dng Hoa K vo nm 1995 (Wiles v Bondi, 2002) v sau bt u c
ph bin rng ri trn ton th gii. Ngy nay, tht kh c th hnh dung c
cng ngh thng tin pht trin nhanh n th no? C th ni ngnh cng ngh
thng tin l ngnh pht trin nhanh nht trong tt c cc ngnh v n c ng
dng trong mi lnh vc. c c nh vy th cn phi c mt mng my tnh
chia s d liu v dng chung d liu. Mang my tnh c cc t chc s
dng chia s thng tin, dng chung ti nguyn v cho php giao tip trc tuyn
trn mng nh: mail, th in t...
Cng vi s pht trin , lm thc y cc ngnh kinh t khc cng pht
trin theo. Trong c ngnh Gio Dc cng ang trin khai, p dng cng ngh
thng tin vo trong cng vic qun l, ging dy, iu hnh. Tt c mi hot ng
gii tr, kinh doanh, mua bn u nhanh chng, tin li, hiu qu cao.
Nhn thy c nhng li ch m cng ngh thng tin mang li cho chng
ta, th nhm chng em vi mong mun nghin cu v tm hiu v lp t c s h
tng mng v cu hnh cho cc thit b c th hot ng c trong mng. Xy
dng h thng mng LAN cho trng i hc chnh l ti ang c nghin
cu v tm hiu.
Trong thi gian tm hiu v nghim cu, do thi gian hn ch v tm hiu
cha c k cng nn s khng trnh khi cc thiu st.
ii.
iii.
Chnh sch truy cp mng cho h thng cha ng theo chc nng
III. Yu cu phi quy hoch li h thng mng trong cc trng H
quy hoch li h thng mng, ta quy hoch li h thng mng theo
chun ca Cisco.
1. Xy dng theo m hnh mng chun 3 lp: Accsess switch, distribution, core
switch
2. Dng tng la (Fire wall) bo v d liu v ngn chn s truy cp tri
php t bn ngoi vo mng ni b.
3.
4.
M hnh
Phn hoch a ch
M rng bng thng gip giao thng trong mng gim thiu tc nghn do
cng mt lc c nhiu ngi truy cp.
lp Li (core layer),
lp Phn Phi (Distribution Layer)
lp Truy Cp (Access Layer).
11
12
dng h thng mng. Ngoi ra h thng mng cn phi thit lp s u tin cho
nhng ng dng khc nhau.
Khi thit k h thng p ng cc yu cu pht trin trong tng lai ta cn phi
hiu c cu trc vt l v cc giao thc mng thit k trin khai mt cch
hp l v ti u nht.
Core layer
Distribution layer
Access layer
15
Core Layer
Distribution Layer
Routing updates
Route summaries
VLAN
Address aggregation
Access Layer
17
V vic thit k mng, Cisco a ra mt m hnh phn tng r rng, phn chia
theo nhu cu s dng v tnh nng ca sn phm v nhanh chng c mi ngi
+ cc hng khc chp nhn. M hnh m Cisco a ra bao gm: Core Layer,
Distribution Layer, Access Layer.
Access Layer (tng truy cp): cc thit b bao gm HUB, SWITCH thng
thng, SWITCH c VLAN... ni chung l cc thit b t Layer 2 ca m hnh
OSI tr xung. Cc thit b ny ni chung l tng i r hn cc thit b cc
Layer khc. y l v tr kt ni vi hu ht cc thit b ca End-user.
18
19
Classic Line
+ Cung cp 6 gigabit cho vic chuyn i cng sut trn mi khe cm.
Dng Classic c th c trin khai c hai.
o
23
- Khng c linh hot nh Firewall mm: (Khng th thm chc nng, thm
quy tc nh firewall mm)
- Firewall cng hot ng tng thp hn Firewall mm (Tng Network v tng
Transport)
- Firewall cng khng th kim tra c nt dung ca gi tin.
V d Firewall cng: NAT (Network Address Translate)
Firewall mm: L nhng Firewall c ci t trn Server.
c im ca Firewall mm:
- Tnh linh hot cao: C th thm, bt cc quy tc, cc chc nng.
- Firewall mm hot ng tng cao hn Firewall cng (tng ng dng)
- Firewal mm c th kim tra c ni dung ca gi tin (thng qua cc t kha).
V d v Firewall mm: Zone Alarm, Norton Firewall
3.3.2.3. Tai sao chng ta cn Firewall?
Nu my tnh ca bn khng c bo v, khi bn kt ni Internet, tt c cc
giao thng ra vo mng u c cho php, v th hacker, trojan, virus c th truy
cp v ly cp thng tin c nhn cu bn trn my tnh. Chng c th ci t cc
on m tn cng file d liu trn my tnh. Chng c th s dng my tnh
cu bn tn cng mt my tnh ca gia nh hoc doanh nghip khc kt ni
Internet. Mt firewall c th gip bn thot khi gi tin him c trc khi n
n h thng ca bn
Chc nng chnh ca Firewall.
Chc nng chnh ca Firewall l kim sot lung thng tin t gia Intranet v
Internet. Thit lp c ch iu khin dng thng tin gia mng bn trong
(Intranet) v mng Internet. C th l:
- Cho php hoc cm nhng dch v truy nhp ra ngoi (t Intranet ra Internet).
- Cho php hoc cm nhng dch v php truy nhp vo trong (t Internet vo
Intranet).
24
Ln n 450 Mbps
Ln n 225 Mbps vi AIP SSM-10
ln n 375 Mbps vi AIP SSM-20
Ln n 450 Mbps vi AIP SSM-40
VPN Throughput
Ln n 225 Mbps
ng thi phin
280.000
750
2,10, 25, 50, 100, 250, 500, hoc 750
An ninh bi cnh *
Tnh n 20
Kh nng m rng
Sn sng cao
hp vi cng ngh danh ting thi gian thc, cc cng ngh ny mang li hiu
qu cao v ng dng mng lp an ninh, da trn ngi dng kim sot truy cp,
gim thiu su, bo v phn mm c hi, ci thin nng sut lao ng, tin nhn
tc thi v kim sot peer-to-peer, v ngi dng t xa an ton v kt ni trang
web. Cc ch IPS vi th trng cng ngh danh ting hng u th gii, Cisco
IPS vi ton tng quan cung cp hai ln hiu qu ca di sn IPS v bao gm bo
him m bo cho ha bnh tng cng tm. Cung cp lin tc ca khch hng v
clientless truy cp cho mt lot cc nn tng my tnh bn v di ng, Cisco
ASA 5585-X cung cp lun lun-v di ng an ton bo mt web tch hp v IPS
cho thc thi chnh sch v bo v mi e da.
M rng dch v tch hp kin trc - Cisco ASA 5500 Series cung cp cho cc
doanh nghip mnh, thch ng bo v t mi trng e da pht trin nhanh
thng qua s kt hp c o ca cc phn cng v phn mm m rng v
Modular Khung chnh sch mnh m ca n (MPF). Vic m rng sng to a
thit k v kin trc phn mm ca Cisco 5500 Series ASA cho php doanh
nghip d dng ci t cc dch v an ninh b sung hiu sut cao thng qua an
ninh x l dch v (SSPs), an ninh dch v m-un (SSMs) v bo mt dch v
th (SSCs). iu ny cung cp cho cc doanh nghip c n u t bo v, trong
khi cho php h m rng dch v bo mt thng tin v Cisco ASA 5500 ca h
Series l ca h an ton v nhu cu pht trin. Tt c cc dch v ny c th d
dng qun l thng qua mnh m ca Cisco Modular Policy Framework, cho
php cc doanh nghip to ra an ninh ty bin rt cao chnh sch trong khi lm
cho n n gin thm an ninh mi v cc dch v mng vo cc chnh sch
hin c ca h.
Gim chi ph trin khai v hot ng - Cisco ASA 5500 Series cho php tiu
chun ha trn t mt nn tng gim tng chi ph hot ng ca an ninh. Mt
mi trng ph bin cho cc cu hnh n gin ho vic qun l v gim chi ph
o to cho nhn vin, trong khi cc nn tng phn cng thng thng ca lot
bi ny lm gim chi ph ti thiu. hiu qu b sung c thc hin bng cch
trin khai kh nng tch hp, obviating s cn thit phi thit k phc tp cn
thit kt ni cc gii php c lp. Ton din v qun l giao din - Cisco
Adaptive Security ha Device Manager (ASDM), mt giao din dng lnh
ton din (CLI), syslog tit, v Simple Network Management Protocol (SNMP)
h tr vng ra mt phong ph b sung cho cc ty chn qun l. Nhiu n v
trin khai c nhiu li ch t Cisco Security Manager, mt nn tng c kh
nng qun l trin khai phn phi ca hng trm thit b
27
3.3.3.1. Router
29
30
Tnh nng
Tu chn Wireless (b/g)
Thng tin sn phm
Hng sn xut
Thng s k thut
Dng sn phm
Giao tip WAN
Broadband
Giao tip WAN FE
10/100
Giao tip LAN 10/100
Giao tip LAN
10/100/1000
B nh DRAM
B nh Flash
Khe cm NetworkModule
Khe cm Interface Card
Cng AUX
Cng Console
Khng
Cisco
Cisco 2800
256Mb
64Mb
1 slot, supports NM and NME type modules
4 slots, each slot can support HWIC, WIC, VIC, or
VWIC type modules
1 cng
1 cng
32
Cng USB
Giao thc nh tuyn
Giao thc bo mt
Cu hnh qun tr
Khe cm Onboard AIM
2 khe cm
(Internal)
Khe cm PVDM (DSP) 2
Ngun
100 to 240 VAC
Kch thc
44.5 x 438.2 x 416.6 mm
The Cisco 2811 Cryptographic Module Physical Characteristi
88 Gbps
20 Gbps cho FlexStack
Stacking
76 Gbps
16 Gbps
32 Gbps (2960G)
64 MB
32Gbps
32 Gbps (2960G)
32 MB
128 MB
64 MB
255
4000
255
4000
ln n 9000 byte
ln n 9000 byte
36
Jumbo Frames
9018 byte
38
3.4.2.4. Modem
L tn vit tt t hai t iu ch (MOdulation) v gii iu ch
(DEModulation) l thit b cho php iu ch bin i tn hiu s sang tn
hiu tng t c th gi theo ng thoi v khi nhn tn hiu t ng
thoi c th bin i ngc li thnh tn hiu s.
3.4.2.5. Multiplexor - Demultiplexor
B dn knh c chc nng t hp nhiu tn hiu cng gi trn mt
ng truyn. B tch knh c chc nng ngc li ni nhn tn hiu
3.4.2.6. Router
Router l mt thit b dng ghp ni cc mng cc b vi nhau thnh
mng rng. Router thc s l mt my tnh lm nhim v chn ng cho cc
gi tin hng ra ngoi. Router c lp v phn cng v c th dng trn cc
mng chy giao thc khc nhau
41
42
43
44
3.6.
access-enable
Reset functions
connect
disable
disconnect
enable
exit
ping
ppp
resume
rlogin
show
slip
systat
telnet
terminal
traceroute
tunnel
udptn
where
x28
x3
Ch qun tr
Bao gm hu ht cc lnh ca ch ngi dng v cc lnh ch dnh cho
ngi qun tr. Ch c th cu hnh b nh tuyn ch ny. Trong qu
trnh khai thc, vn hnh, hiu r hoc khi c s c xy ra, ngi qun tr
c th s dng cc lnh debug lm r thm thng tin cn thit. c trng
cho ch qun tr l biu hin ca du thng, #.
Router>en
Password:
Router#
Router#?
Exec commands:
<1-99>
access-enable
bfe
cd
clear
Reset functions
clock
configure
connect
copy
debug
tunnel
udptn
undebug
upgrade
Upgrade firmware
verify
where
write
Verify a file
List active connections
Write running configuration to memory, network, or
terminal
x28
x3
Ch cu hnh ton cc
L ch cu hnh cc tham s ton cc cho b nh tuyn.
C rt nhiu cc cu hnh ton cc nh cu hnh tn b nh tuyn, cu hnh
tn v mt khu ngi dng, cu hnh nh tuyn ton cc, cu hnh danh sch
truy nhp v.v... Biu hin ca ch cu hnh ton cc nh sau:
51
Router#
Router#config terminal
Router(config)#hostname RouterA
Ch cu hnh ng kt ni
Ch cu hnh ng kt ni l mt ch cu hnh c bit s dng
thit lp cc tham s mc thp cho giao tip logic trong in hnh l cc
tham s thit lp cho cc kt ni modem quay s.
52
Router#config terminal
Router(config)#line 33 48
Router(config-line)#modem inout
Router(config-line)#modem autoconfig discovery
Router(config-line)#
Router#
Router#
Router#disa
Router>
Router#setup
--- System Configuration Dialog --Continue with configuration dialog? [yes/no]: y
At any point you may enter a question mark '?' for help.
Use ctrl-c to abort configuration dialog at any prompt.
Default settings are in square brackets '[]'.
Basic management setup configures only enough connectivity
for management of the system, extended setup will ask you
to configure each interface on the system
Would you like to enter basic management setup? [yes/no]: n
First, would you like to see the current interface summary? [yes]: n
Configuring global parameters:
Enter host name [Router]:
The enable secret is a password used to protect access to
privileged EXEC and configuration modes. This password, after
entered, becomes encrypted in the configuration.
Enter enable secret [<Use current secret>]:
54
!
end
[0] Go to the IOS command prompt without saving this config.
[1] Return back to the setup without saving this config.
[2] Save this configuration to nvram and exit.
Config: cho php thc hin cc lnh cu hnh b nh tuyn. Sau lnh config,
qun tr mng mi c th thc hin cc lnh cu hnh b nh tuyn. Trnh t thc
hin cu hnh cho mt b nh tuyn c th c th hin nh sau
- t tn cho b nh tuyn
Router#config terminal
Router(config)#
Router(config)#hostname RouterABC
RouterABC(config)#
- t tn mt khu b mt dnh cho ngi qun tr
RouterABC(config)#enable secret matkhaubimat
RouterABC(config)#
- t tn mt khu cho ch qun tr. Mt khu ny ch s dng khi cu
hnh b nh tuyn khng c mt khu b mt dnh cho qun tr.
RouterABC(config)#enable password matkhau
RouterABC(config)#
- Cu hnh cho php ngi dng truy cp t xa n b nh tuyn
RouterABC(config)#line vty 0 4
RouterABC(config-line)#login
RouterABC(config-line)#password telnet
RouterABC(config-line)#
- Cu hnh cc giao tip
RouterABC(config)#interface ethernet 0
57
59
bytes of memory
.
Processor board ID JAD04340ID8 (2733840160)
M860 processor: part number 0, mask 49
Bridging software.
X.25 software, Version 3.0.0.
1 FastEthernet/IEEE 802.3 interface(s)
2 Serial(sync/async) network interface(s)
32K bytes of non-volatile configuration memory.
8192K bytes of processor board System flash (Read/Write)
Router#write ?
erase
Erase NV memory
memory
Write to NV memory
thc hin vic thm hay bt cc mng, phi thc hin thay i cu hnh
trn mi b nh tuyn.
- nh tuyn ng (dynamic routing): l vic s dng cc giao thc
nh tuyn thc hin xy dng nn cc bng nh tuyn trn cc b nh
tuyn. Cc b nh tuyn thng qua cc giao thc nh tuyn s t ng
trao i cc thng tin nh tuyn, cc bng nh tuyn vi nhau. Mi khi c
s thay i v mng, ch cn khai bo thng tin mng mi trn b nh
tuyn qun l trc tip mng mi m khng cn phi khai bo li trn
mi b nh tuyn. Mt s giao thc nh tuyn ng c s dng l RIP,
RIPv2, OSPF, EIGRP v.v...
Gi tr nh tuyn c xy dng ty theo cc giao thc nh tuyn
khc nhau. Gi tr nh tuyn ca cc kt ni trc tip v nh tuyn tnh c
gi tr nh nht bng 0, i vi nh tuyn ng th gi tr nh tuyn c
tnh ton ty thuc v tng giao thc c th. Gi tr nh tuyn c th
hin trong bng nh tuyn l gi tr nh tuyn tt nht c b nh
tuyn tnh ton v xy dng nn trn c s cc giao thc nh tuyn c
cu hnh v gi tr nh tuyn ca tng giao thc.
Cc giao thc nh tuyn ng c chia thnh 2 nhm chnh:
- Cc giao thc nh tuyn khong cch vc t (distance-vecto, sau y c gi
tt l nh tuyn vect): da vo cc gii thut nh tuyn c c s hot ng l
khong cch vc t. Theo nh k cc b nh tuyn chuyn ton b cc thng
tin c trong bng nh tuyn n cc b nh tuyn lng ging u ni trc tip
vi n v cng theo nh k nhn cc bng nh tuyn t cc b nh tuyn lng
ging. Sau khi nhn c cc bng nh tuyn t cc b nh tuyn lng ging,
b nh tuyn s so snh vi bng nh tuyn hin c v quyt nh v vic xy
dng li bng nh tuyn theo thut ton ca tng giao thc hay khng. Trong
trng hp phi xy dng li, b nh tuyn sau s gi bng nh tuyn mi
cho cc lng ging v cc lng ging li thc hin cc cng vic tng t. Cc b
nh tuyn t xc nh cc lng ging trn c s thut ton v cc thng tin thu
lm t mng. T vic cn thit phi gi cc bng nh tuyn mi li cho cc
lng ging v cc lng ging sau khi xy dng li bng nh tuyn li gi tr li
bng nh tuyn mi, nh tuyn thnh vng c th xy ra nu s hi v trng thi
bn vng ca mng din ra chm trn mt cu hnh mi. Cc b nh tuyn s
dng cc k thut b m nh thi m bo khng ny sinh vic xy dng
mt bng nh tuyn sai. C th din gii iu nh sau:
o Khi mt b nh tuyn nhn mt cp nht t mt lng ging ch rng mt mng
c th truy xut trc y, nay khng th truy xut c na, b nh tuyn nh
du tuyn l khng th truy xut v khi ng mt b nh thi.
65
thng ti thiu gi cc gi LSA kch hot s kin khng thng xuyn nhm
phn nh s thay i ca cu hnh mng.
- V mt nhm giao thc th 3 l nhm cc giao thc nh tuyn lai
ghp gia 2 nhm trn hay ni cch khc c cc tnh cht ca c hai nhm giao
thc trn.
68
- RIP s dng cc b m thi gian cho vic thc hin gi cc thng tin
cp nht, xo b mt nh tuyn trong bng cng nh iu khin cc qu
trnh to lp bng nh tuyn, trnh loop vng.
- RIPv1: Classfull: khng c thng tin v subnetmask
- RIPv2: Classless: c thng tin v subnetmask
Cu hnh nh tuyn vi RIP:
- Cho php giao thc nh tuyn RIP hot ng trn b nh tuyn.
Router(config)#router rip
- Thit lp cc cu hnh mng. Network l nhm mng tnh theo lp mng c
bn ang c cc giao tip trc tip trn b nh tuyn.
Router(config-router)#network 192.168.100.0
Router(config-router)#network 172.25.0.0
Router(config-router)#network 10.0.0.0
- Trong trng hp s dng RIP vi cc mng khng phi l mng broadcast
nh X.25, Frame Relay cn thit cu hnh RIP vi cc a ch Unicast l cc a
ch m RIP s gi ti cc thng tin cp nht
Router(config-router)#neighbor 192.168.113.1
Router(config-router)#neighbor 192.168.113.5
- Tu theo iu kin c th v h tng mng c th thay i chu k cp nht thng
tin, cc nh ngha thi gian khc cho ph hp.
Router(config-router)# timers basic update invalid holddown
flush[sleeptime]
- Cc thay i khc.
Router(config-router)# version {1 | 2}
Router(config-router)# ip rip authentication key-chain name-of-chain
Router(config-router)# ip rip authentication mode {text | md5}
- Gim st.
show ip interfaces
70
show ip rip
71
73
74
76
IP ca cc thit b qun tr
Firewall: 172.16.248.0/24
IP ca cc server local
IP ca cc VLAN
Mail: 172.16.110.10
Web: 172.16.110.11
Router: 172.16.249.0/24
VLAN 110:
172.16.241.110
IP ca cc sever public
Edusoft: 172.16.11.12
BK domain:
172.16.11.10
Database:
172.16.11.11
77
!
..
interface Vlan24
description Vlan 24
ip address 172.16.24.1 255.255.255.0
ip helper-address 172.16.11.15
ip pim dense-mode
!
router rip
version 2
network 172.0.0.0
no auto-summary
!
ip route 0.0.0.0 0.0.0.0 172.16.248.2
ip http server
no ip http secure-server
!
ip access-list extended Staff
permit udp any any eq bootps
permit udp any any eq bootpc
permit pim any any
permit ip 172.16.25.0 0.0.0.255 172.16.110.0 0.0.0.255
permit ip 172.16.25.0 0.0.0.255 172.16.11.0 0.0.0.255
permit ip 172.16.25.0 0.0.0.255 172.16.21.0 0.0.0.255
permit ip 172.16.25.0 0.0.0.255 172.16.22.0 0.0.0.255
permit ip 172.16.25.0 0.0.0.255 172.16.23.0 0.0.0.255
permit ip 172.16.25.0 0.0.0.255 172.16.24.0 0.0.0.255
permit ip 172.16.25.0 0.0.0.255 172.16.241.0 0.0.0.255
permit icmp 172.16.25.0 0.0.0.255 any
deny ip any any
ip access-list extended Student
permit udp any any eq bootps
permit udp any any eq bootpc
permit ip 172.16.21.0 0.0.0.255 172.16.110.0 0.0.0.255
permit ip 172.16.21.0 0.0.0.255 172.16.11.0 0.0.0.255
permit ip 172.16.21.0 0.0.0.255 172.16.22.0 0.0.0.255
permit ip 172.16.21.0 0.0.0.255 172.16.23.0 0.0.0.255
permit ip 172.16.21.0 0.0.0.255 172.16.24.0 0.0.0.255
permit ip 172.16.21.0 0.0.0.255 172.16.241.0 0.0.0.255
permit icmp 172.16.21.0 0.0.0.255 any
deny ip any any
!
!
!
80
control-plane
!
line con 0
login local
stopbits 1
line vty 0 4
login local
transport input telnet ssh
line vty 5 15
login local
transport input telnet ssh
!
End
no nameif
no security-level
no ip address
!
interface Management0/0
shutdown
no nameif
no security-level
no ip address
!
passwd jeAOvZvIA1LKyOvZ encrypted
ftp mode passive
dns server-group DefaultDNS
domain-name lrc-tnu.edu.vn
access-list outside_in extended permit ip any any
access-list inside_in extended permit ip any any
access-list dmz_in extended permit ip any any
pager lines 24
mtu outside 1500
mtu inside 1500
mtu DMZ 1500
no failover
icmp unreachable rate-limit 1 burst-size 1
icmp permit any outside
icmp permit any inside
icmp permit any DMZ
asdm image disk0:/asdm-522.bin
no asdm history enable
arp timeout 14400
global (outside) 1 222.254.76.10
nat (inside) 1 172.16.0.0 255.255.0.0
access-group outside_in in interface outside
access-group inside_in in interface inside
access-group dmz_in in interface DMZ
route outside 0.0.0.0 0.0.0.0 222.254.76.1 1
route inside 172.16.0.0 255.255.0.0 172.16.248.1 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat
0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout uauth 0:05:00 absolute
<--- More --->
http server enable
82
line aux 0
line vty 0 4
password 7 02020C4F05261B2F591E51495D
login local
line vty 5 15
password 7 02020C4F05261B2F591E51495D
login local
!
scheduler allocate 20000 1000
!
End
87
spanning-tree portfast
88
interface FastEthernet0/24
switchport access vlan 21
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet0/1
switchport mode trunk
!
interface GigabitEthernet0/2
!
interface Vlan1
ip address 172.16.241.5 255.255.255.0
no ip route-cache
!
ip default-gateway 172.16.241.1 (tro den default gateway cua coreswitch 450)
ip http server
!
control-plane
!
!
line con 0
login local
line vty 0 4
login local
transport input telnet
line vty 5 15
login local
transport input telnet
!
end
Chng 4:
Tng kt
90
91