Tài liệu định tuyến

et
or
k.
co
o to v Cisco Router
-n
CC NI DUNG CHNH
xp
Tng quan v LAN/WAN

Gii thiu v Cisco Router
Cc thao tc cu hnh Cisco Router
Mt s v d mu
et
or
k.
co
TNG QUAN V LAN/WAN
-n
CC KHI NIM CHUNG
xp
M hnh mng ph bin: Client Server

M hnh peer-to-peer: dng trong nhng mng nh
khng c ti nguyn dng chung
Dch v mng: DNS, HTTP, FTP, POP3, SMTP,
DHCP, Printing
H iu hnh mng (NOS): Windows NT Server,
SCO Unix, AIX, HP-UX, Sun Solaris, Linux, Novell
Netware
CC THIT B V CNG NGH LAN
et
or
k.
Hub: thit b LAN chy lp 1, bandwidth ca Hub

c chia s chung cho mi ngi ni vo Hub.
Switch: thit b LAN chy lp 2, mi cng ca
Switch c cp bandwidth ring khng chia s vi
cc cng khc. Mt s Switch cao cp c th chy
lp 3/4
M hnh LAN: thng s dng m hnh Star, trong
cc my trm ni tp trung v Hub/Switch
Cng ngh VLAN (mng LAN o): dng tch
mng LAN nhm tng bo mt v hiu sut ca
mng
co
-n
CC THIT B V CNG NGH WAN
Router/Access Server: dng ni cc mng LAN

vi nhau, t ngi dng xa ti mng LAN, kt
ni cc VLAN v thc hin cc chnh sch bo mt
trn mng
WAN Switch: dng to cc dch v kt ni din
rng
Cc cng ngh WAN: Leased line, Frame Relay,
ATM, X.25, ISDN/PSTN dial-up
xp
A CH MNG
Ph
Phn Network dng nh
nhn bi
bit lp mng
c s dng
Ph
Phn host nh
nhn bi
bit a ch
ch ca my trong lp mng
giao ti
tip vi nhau th
th cc my tnh v thi
thit b mng ph
phi
c a ch
ch.
a ch
ch hi
hin ang s dng hi
hin nay l IPv4, mi a ch
ch gm
c 32 bit gi
tr
,
chia
th
nh
2
ph
n
:
ph
n
Network
v
ph
gi tr
th
ph
ph
phn
Host. phn bi
bit gi
gia 2 ph
phn ny th
th s dng mt n
mng con (Subnet mask).
V d:
IP: 192.168.100.1
Subnet mask: 255.255.255.0
y l tr
trm lm vi
vic c a ch
ch 192.168.100.1 thu
thuc lp mng
192.168.100.0, lp mng ny c th
th ch
cha 254 host c gi
gi tr
tr t
192.168.100.1 n 192.168.100.254
xp
-n
et
or
k.
co
GII THIU V CISCO ROUTER
TNG QUAN V ROUTER
et
or
k.
Router l thit b mng dng kt ni cc mng

LAN khc nhau vi nhau. Cc mng LAN ny c
th l LAN o ti cng mt a im hoc l LAN
vt l ti nhiu im khc nhau
Router chia mng thnh cc segment (phn on)
khc nhau v chn broadcast truyn gia cc mng
ny nhm mc ch ti u ha bng thng trn mng
Ngoi ra Router cn thc hin chnh sch bo mt
trn mng v h tr cc dch v khc (Voice, Video,
VPN, DHCP, NAT)
co
-n
CC DNG CISCO ROUTER
Dng Cisco 1751
Dng Desktop (khng

(khng gn vo Rack)
C mt cng kt ni vo mng LAN tc 10/100Mbps
C 3 khe cm card m rng,
ng, 2 khe cm trong s c th
th dng
cho c Voice card v WAN card, 1 khe cm cn li ch
ch dng cho
Voice card
B nh
nh DRAM: 32MB (nng
(nng cp ti a ln
c 96MB)
B nh
nh Flash: 16MB (nng
(nng cp ti a ln
c 32MB)
Th
ch
h
p
v
i
m
ng
chi
nh
nh
v
ng
nh
Th
nh
nh
xp
CC DNG CISCO ROUTER (tip)
Dng Cisco 3660 (gm c 2 sn phm l 3661 v 3662)
et
or
k.
Dng Rack mount

C 01 cng (i vi 3661) v 02 cng (i vi 3662) kt ni vo
mng LAN tc 10/100Mbps
C 6 khe cm module m rng,
ng, tng th
thch nhi
nhiu lo
loi Network
module, Service Module, VIC/WIC
B nh
nh DRAM: 32MB (nng
(nng cp ti a ln
c 256MB)
B nh
nh Flash: 16MB (nng
(nng cp ti a ln
c 64MB)
H tr
tr 2 ngu
ngun AC/DC
Th
Thch hp vi mng trung tm t ti tr
tr s ch
chnh
co
-n
GII THIU V CISCO IOS
Cisco IOS (Internetwork Operating System) l phn

mm nm trong b nh Flash ca Router cung cp kh
nng vn hnh router cc yu cu ca nh qun tr
Phn mm IOS c nhiu Version khc nhau v nhiu
loi khc nhau nh loi IP Standard, IP Plus, IP
Firewall, IDS, MCM, IPSec 56, IPSec Triple DES)
Chng ta c th thay i, nng cp IOS tng thm
tnh nng ca Router, vic thay i IOS s ph thuc
vo lng DRAM v Flash ca Router i vi yu cu
ca loi IOS .
xp
CC PHNG PHP TRUY CP ROUTER
Nh qun tr c th truy cp vo Router thay i cu

hnh, kim tra hot ng router, x l li router theo
cc cch sau:
Console tr
trc ti
tip: Kt ni cng COM ca PC vi cng
Console trn Router. y l phng ph
php ph
ph bi
bin nh
nht
th
thng s dng i vi Router mi
c cu hnh ln u.
Tuy nhin i vi phng ph
php ny nh
nh qu
qun tr
tr ph
phi ng
ngi ti
v tr
t
router,
khng
d
ng
truy
c
p
t
xa
c
.
tr
et
or
k.
co
-n
CC PHNG PHP TRUY CP ROUTER (tip)
Console gi
gin ti
tip qua cng AUX ca Router: Nh
Nh qu
qun tr
tr c
th
ng
h
nh
th
c
quay
s
truy
c
p
Console
b
ng
modem
th
th
t xa.
xa. Sau khi kt ni
c th
thc hi
hin nh
nh qu
qun tr
tr c th
th
thao tc vi Router gi
ging nh console tr
trc ti
tip. Phng ph
php
ny c i
im thu
thun li l c th
th truy cp t xa nhng ph
phi
trang b modem v line i
in tho
thoi cho Router.
xp
CC PHNG PHP TRUY CP ROUTER (tip)

Telnet qua mng IP:
c s dng ki
kim tra cu hnh
Router t xa.
xa. Ch
Ch s dng
c phng ph
php ny khi cu
hnh a ch
c
Interface
c
a
Router
v
c interface ny u
ch
ho
hot ng tt tnh tr
trng Up/Up. u i
im ca phng ph
php
ny l nh
nh qu
qun tr
tr c th
th ng
ngi ti bt c v tr
tr no trn mng
IP (k
(k c Internet) nu mng ny thng vi mng ca Router
truy cp vo Router
-n
et
or
k.
co
xp
CC THAO TC CU HNH
CISCO ROUTER
CC CH DNG LNH TRONG ROUTER

Sau khi truy cp vo Router, nh qun tr c th dng
cc ch dng lnh thng thng cc mc sau:
or
k.
Mode user: ti mn hnh c du nh

nhc Router>, mode ny
dnh cho nh
nhng ng
ngi dng bnh th
thng,
ng, c th
th xem tnh
tr
trng line, xem tnh tr
trng interface, xem version IOS, xem cc
phin telnet
telnet nhng khng xem
c cu hnh ca router v
khng thay i
c
c
u
h
nh.
.
nh
Mode privilege: ti mode ny mn hnh hi
hin ra du nh
nhc
Router#, mode ny dnh cho nh
nh qu
qun tr
tr, cho ph
php xem
cu hnh y ca Router v t mode ny c th
th chuy
chuyn
sang cc mode kh
khc mc cao hn.
hn.
co
-n
et
CC CH DNG LNH TRONG ROUTER

(tip)
Mode global config:
config: ti mn hnh c du nh
nhc Router(config)#
Router(config)#,
mode ny nh
nh qu
qun tr
tr c th
th t cc tham s gi
gi tr
tr cho Router nh
accessaccess-list, hostname, password, DNS hosts, DNS Server, logging,
username & password
password
Mode routing protocol config:
config: ti mode ny mn hnh hi
hin ra du nh
nhc
Router(configRouter(config-router)#
router)#, mode ny cho ph
php nh
nh qu
qun tr
tr c th
th
t cc gi
gi tr
tr cho giao th
thc nh tuy
tuyn nh lo
loi giao th
thc (OSPF, RIP,
EIGRP, BGP
BGP), interface p dng giao th
thc (Ethernet, Serial, ISDN
ISDN),
ti phn ph
phi gi
gia cc giao th
thc, cc tham s ca giao th
thc...
Mode Line config:
config: ti mode ny mn hnh hi
hin ra du nh
nhc
Router(configRouter(config-line)#
line)#, mode ny cho ph
php nh
nh qu
qun tr
tr t cc
tham s cho cc line ca Router nh line console, line vty (telnet), line tty
(async),
async), line aux.
xp
CHUYN I GIA CC MODE

chuy
chuyn t mode User sang mode Privilege dng lnh:
nh:
chuy
chuyn t mode Privilege sang mode Global dng lnh:
nh:
chuy
chuyn t mode Global sang mode Interface config dng lnh:
nh:
Router#config
Router#config terminal
Kt qu
qu: Router(config)#
Router(config)# (Mode Global)
Router>enable
Router>enable (Nu yu cu nh
nhp password th
th g password vo)
Kt qu
qu: Router# (Mode Privilege)
Router(config)#interface
Router(config)#interface <interfaceinterface-name>
name>
Kt qu
qu: Router(configRouter(config-if)# (Mode Interface config)
config)
co
chuy
chuyn t mode Global sang mode Line config dng lnh
Router(config)#line
Router(config)#line <con | aux | vty 0 4 | tty x y>
Kt qu
qu: Router(configRouter(config-line)#
et
or
k.
CHUYN I GIA CC MODE (tip)

chuy
chuyn t mode Global sang mode Router config dng lnh
-n
chuy
chuyn ng
ngc li t mode cp cao hn xu
xung mode cp th
thp
hn dng lnh exit
exit. V d:
xp
Router(config)#router
Router(config)#router <protocol> <number>
Kt qu
qu: Router(configRouter(config-router)#
Router(configRouter(config-if)#exit
if)#exit
Kt qu
qu: Router(config)#
Router(config)#
Router(config)#exit
Router(config)#exit
Kt qu
qu: Router#
chuy
chuyn t mode bt k v ngay mode Privilege dng lnh end
end
ho
hoc bm t hp ph
phm ControlControl-Z:
Router(configRouter(config-if)#end
if)#end
Kt qu
qu: Router#
10
CC LNH CU HNH C BN
t tn cho Router:
t mt kh
i t mt kh
khu cho cng Telnet ca Router (ph
(ph
khu
ny th
th mi s dng phng ph
php Telnet vo Router
c)
Router#config
Router(config)#line
Router(config)#line vty 0 4
Router(configRouter(config-line)#login
line)#login
Router(configline)#password
Router(config line)#password cisco (v d t l cisco)
cisco)
Router(config)#hostname
Router(config)#hostname RTRT-01 (v d t l RTRT-01)
Kt qu
qu: RTRT-01(config)#
co
ghi thng tin logging ra my ch

ch kh
khc (thng tin logging
c
dng xem li cc thng bo s ki
kin ca Router
Router(config)#logging
Router(config)#logging 192.168.100.1 (trong v d ny a
ch
ch ca my ch
ch ch
cha file log l 192.168.100.1)
et
or
k.
-n
CU HNH CDP
Xem thng tin v cc thi

thit b mng kh
khc ca Cisco: Trn cc thi
thit b
mng ca Cisco u h tr
tr giao th
thc CDP (Cisco Discovery
Protocol), giao th
thc ny c nhi
nhim v tm thng tin v cc thi
thit b
mng kh
khc ca Cisco ang c kt ni tr
trc ti
tip vi thi
thit b m ta cu
hnh.
nh. Theo ng
ngm nh CDP
c bt sn trong Cisco Router. Dng
lnh sau xem cc thi
khc:
thit b mng kh
xp
Router#show
Router#show cdp neighbors :Lnh ny s cho bi
bit thng tin v
cc thi
thit b kh
khc nh Devide Id, Capability, Platform, connected interface
xem chi ti
tit hn ta dng lnh:
nh:
Router#show
Router#show cdp neighbors detail :Lnh ny s cho thng
tin c th
th ca tng thi
thit b, bao gm cc a ch
ch IP ca Interface, IOS
version, VTP information
information
11
XEM V GHI LI CU HNH
Tr
Trc khi ghi li nh
nhng thay i ca cu hnh Router vo
NVRAM, ch
chng ta nn xem li cu hnh bng lnh:
nh:
Ghi cu hnh vo NVRAM: ghi cu hnh ln kh

khi ng sau
Router s ch
chy vi gi
gi tr
tr mi:
Router#show
Router#show run
Router#write
Router#write mem
Ta c th
th xem cu hnh hi
hin ang
c ghi trong NVRAM bng
lnh:
nh:
Router#show
Router#show start ho
hoc
Router#show
Router#show config
et
or
k.
co
SAO LU V PHC HI CU HNH T TFTP

TFTP Server l mt my ch
ch trn mng lu file cu hnh v IOS ca
Router. TFTP Server lm vi
vic vi Router thng qua giao th
thc TFTP.
Ch
Chng ta c th
th ct file cu hnh vo TFTP Server backup. Khi
lu file cu hnh vo TFTP Server, h th
thng s hi a ch
ch ca TFTP
Server v tn file khi lu ra TFTP, ch
chng ta dng lnh sau:
sau:
xp
-n
Router#copy
Router#copy startupstartup-config tftp:
tftp:
Address or name of remote host []? 192.168.100.1
Destionation filename []? R1R1-config
Khi copy (ph

c hi) file cu hnh t TFTP tr
(ph
tr li NVRAM ca
Router, h th
ng
c
ng
yu
c
u
nh
a
ch
th
nh
ch ca TFTP Server v tn
file cu hnh
c lu tr
trc . Cc lnh nh sau:
sau:
Router#copy
Router#copy tftp:
tftp: startupstartup-config
Address or name of remote host []? 192.168.100.1
Destionation filename []? R1R1-config
12
T A CH V KIM TRA CC INTERFACE
kt ni vo cc phn o
on mng,
ng, cc interfaces ca Router ph
phi
c gn a ch
ch, cc a ch
ch ny ph
phi thu
thuc cc lp mng kh
khc nhau.
nhau.
C ph
php t a ch
ch cho interface nh sau:
sau:
Router#config
Router(config)#interface <slot No/interface No>
Router(config> <mask>
Router(config-if)#ip
if)#ip address <address
<address>
Sau khi gn a ch
ch ch
chng ta cn dng lnh no shutdown
shutdown kch
ho
hot interface:
Router(configRouter(config-if)#no
if)#no shutdown
or
k.
co
-n
et

(tip)
V d sau gn a ch
ch 192.168.10.1/24 cho cng Fast Ethernet 0/1 v
gn a ch
172.16.1.1/16
cho cng Serial 1/1:
ch
Router#config
Router(config)#interface fastethernet 0/1
Router(configRouter(config-if)#ip
if)#ip address 192.168.10.1 255.255.255.0
Router(configif)#no
Router(config if)#no shutdown
Router(configRouter(config-if)#exit
if)#exit
Router(config)#interface serial 1/1
if)#ip address 172.16.1.1 255.255.0.0
Router(configif)#no
Router(config if)#no shutdown
Router(configRouter(config-if)#end
if)#end
Router#
xp
13

(tip)
ki
kim tra tnh tr
trng ca cc Interface sau khi t a ch
ch, ta
dng lnh:
nh:
V d ki
kim tra tnh tr
trng ca Interface Fast Ethernet 0/0, ta g
lnh:
nh:
Router#show
Router#show interface f0/0
V d ki
kim tra tnh tr
trng ca Interface Serial 0/1, ta g lnh:
nh:
Router#show
Router#show interface <interface
<interface name>
Router#show
Router#show interface s0/1
co
ki
kim tra tnh tr
trng tt c cc IP interface, ta dng lnh:
nh:
Router#show
Router#show ip interface brief
or
k.
-n
et

(tip)
Khi interface tnh tr

trng ho
hot ng tt, th
th sau khi dng lnh
show interface
interface s nh
nhn
c cc thng tin sau:
sau:
Interface is up
Line protocol is up
IP address ng nh cu hnh
xp
V d sau khi gn a ch
ch cho interface f0/0 l 192.168.100.1/24 v
dng lnh:
nh:
Router#show
Router#show interface f0/0
S tm th
thy dng kt qu
qu:
FastEthernet0/0 is up, line protocol is up
Internet address is 192.168.100.1/24
14

(tip)
Khi dng lnh Show interface cho kt qu

Interface is up
Line protocol is down
Th
Th
ng truy
truyn ang gp s c, cn lin h vi cn b tin
hc trung tm mi
min
Khi dng lnh Show interface cho kt qu
Interface is down
Line protocol is down
Th
Th Router khng nh
nhn
c tn hi
hiu t HTU, ki
kim tra HTU
v bo cho cn b tin hc ti Trung tm mi
min
or
k.
co
-n
et

(tip)
Dng lnh show ip interface brief
brief s cho kt qu
qu tnh tr
trng ca tt
c cc interface, khi dng lnh ny, mn hnh s hi
hin th
th kt qu
qu
th
thnh 6 ct kh
khc nhau,
nhau, ta cn ch
ch thng tin trong 4 ct: Interface,
IPIP-Address, Status v Protocol
xp
Interface l interface cn ki
kim tra
IPIP-Address: a ch
ch ca Interface , ph
phi ng nh ta gn
Status: ph
phi l up
up
Protocol: cng ph
phi up
up
Nu nh cc thng tin cha chu

chun xc th
th ph
phi ki
kim tra ngay (a ch
ch
Switch
ng
cha,
g vo ng cha,
,
c
ng
ethernet
c
m
v
o
cha,
cha
dy mng c tt khng,
khng, tnh tr
trng NTU c tt khng
khng
15
CU HNH NH TUYN TRN MNG
Tc dng ca vic nh tuyn:
Router c th
th thng bo ln nhau v thng tin nh tuy
tuyn trn
mng
Cc hnh thc nh tuyn:
nh tuy
tuyn tnh (Static Routing): dng cho nh
nhng mng nh
nh m
hnh n gi
gin
nh tuy
tuyn ng (Dynamic Routing): dng trong nh
nhng mng ln
m hnh kt ni ph
phc tp.
or
k.
Gi
Gip Router chuy
chuyn
c gi tin n ng mng ch
co
xp
-n
et
V d v m hnh mng s dng nh tuyn
Trong v d trn:
trn:
Cc PC (PC1, PC2, PC3) thu
thuc cc phn o
on mng kh
khc nhau
Vi
Vic truy
truyn d li
liu gi
gia cc PC ny ph
phi i qua cc Router
Cc Router ny ph
phi nh
nhn th
thc
c routes
routes ti mng ch
cha cc
PC ny th
th mi c th
th nh tuy
tuyn d li
liu truy
truyn gi
gia ch
chng,
ng, mu
mun
vy ph
phi cu hnh nh tuy
tuyn trn cc Router trung gian.
gian.
16
CC HNH THC NH TUYN TRN MNG
nh tuyn tnh (Static Routing):
Nh
Nhc i
im: khng ph
ph hp vi mng ln v khng t cp nh
nht
khi m hnh mng thay i.
nh tuyn ng (Dynamic Routing):
u i
im: Router t ng cp nh
nht thng tin v routing trn
mng,
ng, nh
nh qu
qun tr
tr khng cn thao tc manual, ph
ph hp vi
mng ln v m hnh mng hay thay i
Nh
Nhc i
im: Cu hnh ph
phc tp hn nh tuy
tuyn tnh,
nh, s dng
bng thng mng cho vi
vic truy
truyn thng tin nh tuy
tuyn.
or
k.
u i
im: cu hnh n gi
gin, khng tn bng thng mng cho
vi
vic truy
truyn thng tin nh tuy
tuyn.
co
xp
-n
et
V d: cu hnh Router s dng Static Routing
Cu hnh Router 1 sao cho khi Router 1 nh

nhn
c cc gi tin ti mng ch l:
192.168.3.0/24
192.168.1.0/24
172.16.45.0/24
10.1.24.0/24
10.1.23.0/24
th
th a cc gi tin ti nextnext-hop l cng Ethernet ca Router 2 c a ch
ch 172.16.12.2
17
co
V d: cu hnh Router s dng Static Routing (ti

p)
(ti
Router 1:
k.
192.168.3.0 255.255.255.0 172.16.12.2

192.168.1.0 255.255.255.0 172.16.12.2
172.16.45.0 255.255.255.0 172.16.12.2
10.1.24.0 255.255.255.0 172.16.12.2
10.1.23.0 255.255.255.0 172.16.12.2
or
R1>enable
R1>enable
R1#config
R1#config terminal
R1(config)#ip
R1(config)#ip route
R1(config)#ip
R1(config)#ip route
R1(config)#ip
R1(config)#ip route
R1(config)#ip
R1(config)#ip route
R1(config)#ip
R1(config)#ip route
xp
-n
et

p)
(ti
Trong tr
trng hp ny ta th
thy i ra cc mng kh
khc t Router 1 th
th
ch
ch c mt
ng duy nh
nht l i ti cng Ethernet ca Router 2, do vy
ta c th
th cu hnh mt Default Route ti Router 2. Default Route dng
trong tr
trng hp Router khng tm th
thy bt k mt
ng i c th
th
no cho mt mng ch th
chuyn gi tin theo Default Route
th n s chuy
R1>enable
R1>enable
R1#config
R1#config terminal
R1(config)#ip
R1(config)#ip route 0.0.0.0 0.0.0.0 172.16.12.2
18
co
V d: cu hnh Router s dng Static Routing
Cu hnh Router 2 sao cho khi Router 2 nh

nhn
c cc gi tin ti mng ch l:
192.168.3.0/24 th
th a gi tin n nextnext-hop l 10.1.23.3 (c
(cng Serial ca Router 3)
192.168.1.0/24 th
192.168.2.0/24 th
(cng Ethernet ca Router 1)
k.
172.16.45.0/24 th
or
Cc network cn li (172.16.12.0/24, 10.1.23.0/24, 10.1.24.0/24) u l mng directly

connected vi R2 ri nn khng cn thm thng tin nh tuy
tuyn.
xp
-n
et

p)
(ti
Router 2:
R2>enable
R2>enable
R2#config
R2#config terminal
R2(config)#ip
R2(config)#ip route
R2(config)#ip
R2(config)#ip route
R2(config)#ip
R2(config)#ip route
R2(config)#ip
R2(config)#ip route
192.168.3.0
192.168.1.0
192.168.2.0
172.16.45.0
255.255.255.0
255.255.255.0
255.255.255.0
255.255.255.0
10.1.23.3
10.1.24.4
172.16.12.1
10.1.24.4
19
co

p)
(ti
or
k.
i vi cc Router kh
khc nh Router 3, Router 4, Router 5 th
th
cu hnh ho
hon to
ton tng t, ta ch
ch cn ch
ch n nextnext-hop m
router cn ph
phi route gi tin ti ti
c mng ch,
ch, ti
Router 3 v Router 5 c th
th dng Default Route nh p dng
vi Router 1
xp
-n
et

p)
(ti
Sau khi cu hnh static routing, t cc PC ta t a ch

ch Default Gateway tng
ng l cc cng Ethernet ca cc Router cng o
on mng .
Default Gateway ca PC1 l 192.168.1.5
Sau t cc PC ta ping
ping ln nhau,
nhau, nu c ping th
thnh cng tc l vi
vic nh tuy
tuyn

c cu hnh ng
20
NH TUYN NG (DYNAMIC ROUTING)
Hin nay c hai giao thc nh tuyn thng c s

dng l RIP v EIGRP, trong EIGRP l giao thc do
Cisco t nh ngha ra
or
k.
nh tuyn ng l vic nh qun tr s dng cc giao

thc nh tuyn trn Router nh RIP, OSPF, EIGRP,
IGRP, IS-IS sau Router s t thng bo ln nhau
v a ch mng ch m n bit, vic ny hon ton t
ng, nh qun tr khng cn can thip v cu hnh
manual tng network nh phn trc
co
xp
-n
et
V d: cu hnh Router s dng Dynamic Routing
Cu hnh cc Router n thng bo v mng ch v n bi

bit cho cc Router kh
khc.
V d Router 1 s thng bo v mng 192.168.2.0/24 cho Router 2, v Router 2 s bi
bit
c rng n
c mng ny th
th cn chuy
chuyn gi tin ti nextnext-hop l a ch
ch ca Router
1, n l
lt n Router 2 s thng bo v cc mng ch m n bi
bit, gm c mng
172.16.12.0/24,
10.1.23.0/24, 10.1.24.0/24 v mng m n va bi
bit
c t Router 1 l
172.16.12.0/24, 10.1.23.0/24,
192.168.2.0/24 cho cc Router ln cn v qu
qu tr
trnh c th
th ti
tip di
din. Cu
Cui cng l tt c
cc Router u bi
bit
c thng tin v tt c cc mng ch
Khi a ch
ch v cc mng ny thay i, cc Router s t ng cp nh
nht thay i v thng
bo cho nhau bi
bit tt c router trong mng u c thng tin routing mi nh
nht.
21
co
V d: cu hnh cc Router s dng RIP
Router 1:
or
k.
R1>enable
R1>enable
R1#config
R1#config terminal
R1(config)#router
R1(config)#router rip
R1(configR1(config-router)#network
router)#network 192.168.2.0
R1(configR1(config-router)#no
router)#no autoauto-summary
R1(configR1(config-router)#version
router)#version 2
xp
-n
et
V d: cu hnh cc Router s dng RIP (ti

p)
(ti
Router 2:
R2>enable
R2>enable
R2#config
R2#config terminal
R2(config)#router
R2(config)#router rip
router)#version 2
22
co
V d: cu hnh cc Router s dng RIP (ti

p)
(ti
i vi cc Router kh
khc thi cu hnh ho
hon to
ton tng t
or
k.
Sau khi cu hnh xong ht Router th

th t a ch
ch Default Gateway ca
PC nh khi lm vi Static Routing v ping th
th t cc PC cho nhau,
nhau, qu
qu
tr
trnh ph
phi th
thc hi
hin tt th
th vi
vic cu hnh mi l ng
xp
-n
et
V d: cu hnh cc Router s dng EIGRP
Router 1:
R1>enable
R1>enable
R1#config
R1#config terminal
R1(config)#router
R1(config)#router eigrp 100
router)#version 2
23
co
V d: cu hnh cc Router s dng EIGRP (ti

p)
(ti
Router 2:
or
k.
R2>enable
R2>enable
R2#config
R2#config terminal
R2(config)#router
R2(config)#router eigrp 100
router)#version 2
xp
-n
et
V d: cu hnh cc Router s dng EIGRP (ti

p)
(ti
i vi cc Router kh
khc thi cu hnh ho
hon to
ton tng t
Sau khi cu hnh xong ht Router th
th t a ch
ch Default Gateway ca
PC nh khi lm vi Static Routing v ping th
th t cc PC cho nhau,
nhau, qu
qu
tr
trnh ph
phi th
thc hi
hin tt th
th vi
vic cu hnh mi l ng
24
KIM TRA VIC NH TUYN TRN ROUTER
show ip route
show ip protocol
ping
traceroute
Cc lnh dng kim tra
et
or
k.
co
Cch dng lnh show ip route
Tc dng ca lnh show ip route
-n
Hi
Hin th
th bng nh tuy
tuyn ca Router, xem tt c cc mng ch
m Router c th
th chuy
chuyn gi tin ti
c
xp
Hi
Hin cc thng tin v Route:
c cu hnh bng static hay
dynamic v cc thng s lin quan
Khi dng lnh show ip route
Cc route c k hi
hiu S l route
c cu hnh bng static
Cc route c k hi
hiu R l route
c cu hnh dynamic bng RIP
Cc route c k hi
hiu D l route
c cu hnh dynamic bng
EIGRP
Cc Default route (d
(d
c cu hnh bi static hay ly bng
dynamic u c thm k hi
hiu *)
25
Dng cc lnh khc
Dng lnh show ip protocol
Lnh ny xem thng tin v cc giao th

thc nh tuy
tuyn ng
c cu hnh trn Router

Sau khi dng lnh ny th
th ghi li cc thng tin hi
hin th
th v gi cho
nh
nh qu
qun tr
tr cp cao xem xt, khng nn t thay i cc
thng tin v nh tuy
tuyn ng
Dng lnh ping
Lnh ping ki
kim tra kt ni gi
gia 2 i
im trn mng
Lnh ny c th
th dng trn Router ho
hoc PC
Nu g ping <ip
<ip address> th
th router s th
thc hi
hin lnh ping chu
chun
th
thc hi
hin lnh ping m rng th
th g ping <Enter>, sau tr
tr
li cc cu hi v a ch
ch ngu
ngun, kch th
thc gi tin, timeout
timeout
et
or
k.
co
-n
Dng cc lnh khc (tip)
Dng lnh traceroute
xp
Dng ki
kim tra xem khi gi tin i gi
gia hai i
im trn mng th
th
i qua nh
nhng Router no, lnh ny rt c tc dng khi x l s
c v Routing trn mng
Khi traceroute n mt i
im b timeout (khng
(khng c tr
tr li) th
th ta
ki
kim tra ngay bng nh tuy
tuyn ti Router xc nh xem ti
sao Router khng chuy
chuyn
c gi tin.
26
co
Th
Th t cc b
bc troubleshooting v routing trn mng
Gi
Gi s ta ping t PC1 n PC3, c ping khng th
thnh cng,
cng, ta s ki
kim tra ln l
lt theo cc
b
bc sau:
sau:
B
Bc 1: Ki
Kim tra xem cc PC1 v PC3 cu hnh ng default gateway cha.
cha. Nu cha
ng,
c th
th lm ti
tip b
bc 2
ng, cu hnh li cho ng v ping li. Nu vn khng
k.
B
Bc 2: Ki
Kim tra tt cc cc interface trn Router v ch
chc ch
chn rng tnh tr
trng u up
up
or
B
Bc 3: Ti tng Router, ping th
th tt c cc Interface ca Router k vi n, ph
phi ch
chc ch
chn
rng cc c ping ph
phi th
thnh cng
xp
-n
et
Th
Th t cc b
bc troubleshooting v routing trn mng
B
Bc 4: Nu c ln ping no khng th
thnh cng,
cng, th
th ki
kim tra li xem a ch
ch IP ca Interface
t ng cha
B
Bc 5: Nu a ch
ch IP t ng m vn khng ping
c th
th show ip route ca tng router
ch
chc ch
chn rng tt c router trn
ng i u c route ti cc mng ch kh
khc trong h
th
thng
B
Bc 6: Nu c Router no khng nh
nhn
c mng ch trn
ng truy
truyn t PC1 n PC3
th
tuyn tnh tr
trc lo
loi b
th cu hnh li ph
phn nh tuy
tuyn cho Router n, nn s dng nh tuy
nguyn nhn li do giao th
thc nh tuy
tuyn
27
CU HNH ACCESS CONTROL LIST (ACL)
Vai tr ca ACL
Dng phn lo
loi traffic trn mng cho cc mc ch kh
khc (V d
nh cu hnh QoS)
QoS)
Cc loi ACL
Dng hn ch
ch truy cp i vi a ch
ch ngu
ngun, a ch
ch ch,
ch, lo
loi
dch v no , c th
th hn ch
ch theo th
thi gian
Dng chu
chun: hn ch
ch theo a ch
ch ngu
ngun ca gi tin
Dng m rng:
ng: hn ch
ch theo a ch
ch ngu
ngun, a ch
ch ch,
ch, cng
dch v ca gi tin
co
et
or
k.
Sau khi cu hnh xong ACL th

th ph
phi p ACL vo mt interface
th
th ACL mi c tc dng hn ch
ch truy cp.
-n

C php ACL chun
Router(config)#accessRouter(config)#access-list <number> <statement> <address> <mask>
number: s hi
hiu nh
nhn dng ACL, c gi
gi tr
tr t 1 n 99
Statement: ch
chnh sch ca ACL, c 2 lo
loi l Permit
Permit v Deny
Deny
Address: a ch
ch mng cn p dng vo ACL
Mask: ph
phn b bit ca mt n mng con
xp
C php ACL m rng
Router(config)#accessRouter(config)#access-list <number> <statement> <protocol> <source

address> <mask> <dest
<dest address> <mask> <port number>
28

C php ACL m rng
Router(config)#accessRouter(config)#access-list <number> <protocol> <source address>

<wildcard mask> <dest
<dest address> <wildcard mask> <port number>
Number: s hi
hiu nh
nhn dng ACL, c gi
gi tr
tr t 100 n 199
Statement: ch
chnh sch ca ACL, c 2 lo
loi l Permit
Permit v Deny
Deny
Protocol: giao th
thc p vo ACL, th
thng dng IP, TCP, UDP
Source address: a ch
ch ngu
ngun ca gi tin xem xt
Destination address: a ch
ch ch ca gi tin xem xt
Port number: cng dch v
et
or
k.
co
-n

s dng ACL m rng th cn ghi nh mt s cng
dch v quan trng nh:
xp
HTTP: cng TCP 80
FTP: cng TCP 20 v 21
Telnet: cng TCP 23
SMTP: cng TCP 25
POP3: cng TCP 110
DNS: cng UDP 53
TFTP: cng UDP 69
SNMP: cng UDP 161
29
Sau khi cu hnh ACL th

th ph
phi p ACL vo interface bng lnh:
nh:
Router(config)#interface <name>
if)#ip accessaccess-group <number> <in/out>
C th
th xem danh sch cc ACL v Interface bng lnh:
nh:
Router#show
Router#show accessaccess-list
or
k.
co
xp
-n
et
V d: cu hnh ACL dng chu

chun
Cu hnh Router 2 sao cho n khng cho ph

php cc gi tin t mng ch
cha PC3 i vo
cng Serial:
R2>enable
R2>enable
R2#config
R2#config terminal
R2(config)#access
-list 1 deny 192.168.3.0 0.0.0.255
R2(config)#accessR2(config)#access
-list 1 permit any
R2(config)#accessR2(config)#interface
R2(config)#interface s0/0
R2(configR2(config-if)#ip
if)#ip accessaccess-group 1 in
R2(configR2(config-if)#end
if)#end
R2#
Lu : Mi ACL ph
phi c t nh
nht mt dng permit
permit, nu khng tt c traffic s b t
ch
chi truy nh
nhp
30
V d: cu hnh ACL dng chu

chun (ti
tip)
co
R2>enable
R2>enable
R2#config
R2#config terminal
R2(config)#access
-list 1 permit host 192.168.3.3
-list 1 deny 192.168.3.0 0.0.0.255
-list 1 permit any
R2(config)#accessR2(config)#interface
R2(config)#interface s0/0
R2(configR2(config-if)#ip
if)#ip accessaccess-group 1 in
R2(configR2(config-if)#end
if)#end
R2#
Cu hnh Router 2 sao cho n khng cho ph

php cc gi tin t mng ch
cha PC3 i vo
cng Serial, nhng li cho ph
php PC3 v cc mng cn li
c truy cp:
or
k.
Lu : Mi ACL ph
phi c t nh
nht mt dng permit
ch
chi truy nh
nhp
xp
-n
et
V d: cu hnh ACL dng m rng
Cu hnh trn R2 PC3

c telnet vo PC1 nhng khng
c dng HTTP trn
PC1:
R2>enable
R2>enable
R2#config
R2#config terminal
R2(config)#access
-list 100 permit tcp host 192.168.3.3 host
R2(config)#access192.168.1.10 eq 23
R2(config)#access
-list 100 deny tcp host 192.168.3.3 host
R2(config)#access192.168.1.10 eq 80
R2(config)#access
-list 100 permit ip any any
R2(config)#access-
Lu : Mi ACL ph
phi c t nh
nht mt dng permit
ch
chi truy nh
nhp
31
LU CHUNG
Trong nhi
nhiu tr
trng hp, ch
ch nn dng cc lnh show xem
thng tin v h th
ng
v
chuy
th
chuyn cho ng
ngi c tr
trch nhi
nhim gi
gii
quy
t
(
c
c
l
nh
nh
show
run,
show
ip
protocol,
show
ip
route,
quy
show interface, show ip interface brief
brief
Ch
Ch nn th
th nghi
nghim cc bi th
thc hnh trn Router tch bi
bit vi
h th
thng mng chung tr
trnh lm nh h
hng n ho
hot ng
ca mng
et
or
k.
co
Cu hnh giao th
thc nh tuy
tuyn, a ch
ch, ACL
ACL u nh h
hng tr
trc
ti
tip n h th
thng do vy ph
phi th
tht cn th
thn khi s dng cc
phng ph
php cu hnh trn
xp
-n
Xin cm n v hn gp li!
32

Tài liệu định tuyến

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Tài liệu định tuyến

Uploaded by

Copyright:

Available Formats

et

Tng quan v LAN/WAN

TNG QUAN V LAN/WAN

CC KHI NIM CHUNG

M hnh mng ph bin: Client Server

CC THIT B V CNG NGH LAN

Hub: thit b LAN chy lp 1, bandwidth ca Hub

CC THIT B V CNG NGH WAN

Router/Access Server: dng ni cc mng LAN

GII THIU V CISCO ROUTER

TNG QUAN V ROUTER

Router l thit b mng dng kt ni cc mng

CC DNG CISCO ROUTER

Dng Cisco 1751

Dng Desktop (khng

CC DNG CISCO ROUTER (tip)

Dng Cisco 3660 (gm c 2 sn phm l 3661 v 3662)

Dng Rack mount

GII THIU V CISCO IOS

Cisco IOS (Internetwork Operating System) l phn

CC PHNG PHP TRUY CP ROUTER

Nh qun tr c th truy cp vo Router thay i cu

CC PHNG PHP TRUY CP ROUTER (tip)

CC PHNG PHP TRUY CP ROUTER (tip)

CC CH DNG LNH TRONG ROUTER

Mode user: ti mn hnh c du nh

CC CH DNG LNH TRONG ROUTER

CHUYN I GIA CC MODE

CHUYN I GIA CC MODE (tip)

ghi thng tin logging ra my ch

Xem thng tin v cc thi

XEM V GHI LI CU HNH

Ghi cu hnh vo NVRAM: ghi cu hnh ln kh

SAO LU V PHC HI CU HNH T TFTP

Khi copy (ph

T A CH V KIM TRA CC INTERFACE

T A CH V KIM TRA CC INTERFACE

T A CH V KIM TRA CC INTERFACE

T A CH V KIM TRA CC INTERFACE

Khi interface tnh tr

T A CH V KIM TRA CC INTERFACE

Khi dng lnh Show interface cho kt qu

Khi dng lnh Show interface cho kt qu

T A CH V KIM TRA CC INTERFACE

Nu nh cc thng tin cha chu

CU HNH NH TUYN TRN MNG

Tc dng ca vic nh tuyn:

Cc hnh thc nh tuyn:

V d v m hnh mng s dng nh tuyn

CC HNH THC NH TUYN TRN MNG

nh tuyn tnh (Static Routing):

nh tuyn ng (Dynamic Routing):

V d: cu hnh Router s dng Static Routing

Cu hnh Router 1 sao cho khi Router 1 nh

V d: cu hnh Router s dng Static Routing (ti

192.168.3.0 255.255.255.0 172.16.12.2

V d: cu hnh Router s dng Static Routing (ti

V d: cu hnh Router s dng Static Routing

Cu hnh Router 2 sao cho khi Router 2 nh

Cc network cn li (172.16.12.0/24, 10.1.23.0/24, 10.1.24.0/24) u l mng directly

V d: cu hnh Router s dng Static Routing (ti

V d: cu hnh Router s dng Static Routing (ti

V d: cu hnh Router s dng Static Routing (ti

Sau khi cu hnh static routing, t cc PC ta t a ch