1-Dars 26.09.18:
Tarmoq Komandalari
Ipv4-Da 5ta Class Mavjud.
A)0.0.0.1 – 126.255.255.255.
B) 128.0.0.1 – 191.255.255.255.
C) 192.0.0.1 – 223.255.255.255.
D) 224.0.0.1 – 239.255.255.255.
E) 240.0.0.1 – 255.255.255.255.
128.0.0.0- Ip Address Emas Oddiy Deapazon.
128.0.0.1-Ip Address Xisoblanadi.
127.0.0.1.-Local Xost Yoki Virtual Interfeyslar Uchun Ishlatiladi.
Serie Ip- Local Tarmoqda Ishlatiluvchi Ip Addresslar
Belie Ip-Global Tarmoqda Ishlatiluvchi Ip Addresslar.
Local
A)10.0.0.1 – 10.255.255.255./8bit
B) 172.16.0.1 – 172.31.255.255./16bit
C) 192.168.0.1 – 192.168.255.255./24bit
Tarmoq Maskasi-Tarmoq Identifikatori Hisoblanib.Biz Unga Qarab Tarmoq Addresslar Soni Va Ip Addresslar Sonini Aniqlaymiz.
255.C255.C255.C0.Y C=7; Y=8;
Tarmoq Addresslar Soni: 2n*C=23*7=221;
Xostlar Soni:2n*Y-2=28-2=254;
Switchga Kirish Algoritmi.
Do Show Run-Switchdagi Sozlamalarni Ko’rish;
Conf T-Switichni Nastroyka Qilish;
Hostname…- Nom Qo’yish;
Enable Password Kod- Parol Quyish;
Enable Secret Kod –Parolni Kuchliroq Shifrlash;
Enable Password-Encryption-Parolni Shifrlash;
Int Vlan1- Tarmoqga Kirish;
No Shut Down;
Ip Address 192.168.1.1 255.255.255.255.
Ip Dhcp Pool Vl1
Network 192.168.1.1 255.255.255.255.
Default-Router 192.168.1.1
Exit
Hostname …
Username … Privilege15 Secret Kod
Line Vty 0 4
Login Local
Exit
Write Memory
2- Dars 28.09.18:
Cidr Texnalogiyalari
Cidr-Classga Asoslanmagan Holat.
409612.204811.102410.5129.2568.1287.646.325.164.83.42.21.10.
1-Masala.30 Ta Kompyuterga Ip Address Bering.
Yechimi: O’ttiz Soniga Eng Yaqin Son Bu Ikkining Beshinchi Darajasi Hisoblanadi.255.255.255.25532 Bit Shu Sabab 32-5=27
Biz Beradigan Ip Addesslar 27 Bitdan Oshmasligi Shart.
Maximal Ip Address 255.255.255.11100000.-Buni O’nlik Sanoq Sistemasiga O’tqazsak 255.255.255.224 Hosil Buladi.
255.255.255.224- Bu Tarmoq Maskasi Sanaladi.
Maskadagi Birlar Soni Tarmoq Addressini Yani Tarmoq Sonini No’llar Soni Esa Xostlar (Komplar) Sonini Bildiraradi.
10000000=128\ 1 Bit
11000000=192\ 2bit
11100000=224\ 3bit
11110000=240\ 4bit
11111000=248\ 5bit
11111100=252\ 6bit
11111110= 254\ 7bit
11111111=255\ 8bit
255.255.255.224 Ip Da 27ta Bir Xamda 5ta No’l Raqami Mavjud Shu Sabab
Tarmoq Soni: 227 Ga Teng
Xostlar Soni: 25-2= 30
Maska Qanchalik Kata Bo’lsa Xostlar Soni Shuncha Kam Bo’ladi.
30 Ta Xost 27 Bit
255.255.255.224 No’ldan Ikkiyuz Ellik Beshgacha Ikkiyuz Ellik Oltita Son Bor Shu Sabab
256-224=32Bu Tarmoq Qadami Deyiladi.
1)192.168.0.1 192.168.0.30\31-Broadcast
2)192.168.0.32 192.168.0.62\63- Broadcast
3)192.168.0.64 192.168.0.94\95 Broadcast
4)192.168.0.96 192.168.0.126\127- Broadcast
. . .
N)192.168.0.224 192.168.0.254\255- Broadcast
2- Masala:Xostlar Soni 4000ta Bulganda
Yechimi: 212 Darajasi 4096 Bu Esa 4000ga Eng Yaqin Son Hisoblanadi (Yuqoridan Hisoblaganda).
32-12=20 Bit
255.255.240.0.
256-240=16Tarmoq Qadami
Tarmoq Soni: 220 Ga Teng
Xostlar Soni: 212-2= 4094 Ga Teng
1)192.168.0.1 192.168.15.254
2)192.168.16.1 192.168.31.254
3)192.168.32.1 192.168.47.254
4)192.168.48.1 192.168.63.254
. . .
N)192.168.240.1 192.168.255.254\255- Broadcast
Bularning Barchasi Cidr Texnalogiyalarida O’rinlidir.
3-Dars 5.10.18
Vlan Texnalogiyasi
Tarmoq—Osi Standarti Bo’yicha Ishlaydi:
Osi—7 Ta Sathga Ega Bo’lib Ular Quyidagicha Nomlanadi:
1)Amaliy – Ushbu Satxga Ko’ra Qurilmalar Ishlaydi:
2)Taqdimot
3)Seans
4)Transport
5)Tarmoq
6)Kanal—Switch
7)Fizik—Hub
Xarbir Kompyuterning O’zining Mac Bo’lib Tarmoqda Qurilmani Asosan Uning Mac I Orqali Topiladi.Chunki Ip Addressni O’zgartirish Mumkin Birow Mac Ni O’zgartirib Bo’lmaydi.
Mac Uzunligi 48 Bit Bo’ladi:
Kompyuter Mac Addressini Bilish Uchun Cmd Da Getmac Buyrug’ini Terish Lozim:
Mac—Addressni Oxirgi 24 Bitini O’zgartirsa Bo’ladi Biroq Boshidagi 24 Bitni O’zgartirib Bo’lmaydi.
Hub Va Switch
Hub ( Kонценратор)—Xotiraga Ega Bo’lmagan Qurilma
Switch( Kоммутатор)—Xotiraga Ega Bo’lgan Qurilma
Switch Va Hub O’rtasidagi Farqlar
Xotira — Switch
Tezlik — Switchda Yuqori
Xavfsizlik — Switchda Bor
Osi Satxiga Ko’ra — Hub Fizik Satxda Switch Kanal Satxda
Vlan – Yordamida Switchni Ko’plab Bo’laklarga Ajratish Mumkin.
Vlan Ning Afzalliklari Quyidagilardan Iborat:
1)Tarmoqni Strukturalangan Ko’rinishga Keltiradi:
2)Xavfsizlikni Taminlaydi:
3)Trafikni Tejaydi—Yani Tarmoqda Osilish Yuzaga Kelishini Oldini Oladi:
Ish Jarayoni Ketma—Ketligi :
1)Enable:
2)Conf T
3)Hostname …
4)Vlan ?
5) Vlan Name
6) Name (Vlan Nomi)
7)Exit
. . .
8)Interface Vlan Name
9)Ip Address 192.168.2.1 255.255.255.0
10)Exit
. . .
11)Interface Vlan Name
12)Ip Address
13) Ip Dhcp Pool Vlan Name
14) Network …..
15) Default—Router ….
16)Exit
. . .
17) Interface Range Fastethernet 0/1-N
18)Switchport Mode Acces
19)Switchport Access Vlan Name
20)Exit
. . .
21)Line Vty 0 4
22)Transport Input Telnet
23)Login Local
24)Username … Secret Kod
25) Enable Secret Kod
26)Exit
27)Write Memory
4- Dars.08.10.18
Access,Trunk,Port- Security
Portlar Asosan 2 Xil Bo’ladi.Access Va Trunk Portlar.
Switch Dan Kompyutergacha Bo’lgan Port Acces Port Sanaladi.
acces
trunk
trunk
Aaaaaccacaaaaaaacccacces
ces
switch
switch
Trunk
ttttttttttttt
Bitta Fizik Kanalni Bir Nechta Virtual Kanallarga Aylantiruvchi Port Trunk Port Deyiladi.
TRUNK portda ishlatiluvchi yangi komandalar:
Switchport mode trunk –Trunk portni yoqish;
Switchport trunk allowed vlan n –n-vlanga chiqishiga ruxsat berish;
Switchport trunk allowed vlan 1-n –1-n ga cha bulgan vlanlarga ruxsat berish;
Switchport trunk allowed vlan 2,3,4,5,6 –faqat kursatilgan vlanlarga ruxsat berilgan;
Switchport trunk allowed vlan all –xammasiga ruxsat berish;
Interface range fastethernet 0/1 –ezernet portni yoqish
Switchport mode access –
Switchport port-security –port xavfsizligini yoqish;
Switchport port-security mac-address sticky –Ruxsat etilgan kompyuterlar MAC addresini avtomatik uqib olish;
Switchport port-security maximum n—Ulanish uchun maximum n ta kompga ruxsat berish.
5—Dars 10.10.18
6-Dars 13.10.18
7-Dars 15.10.18
Stp,Ether Channel
Stp Va Ether Channel-Zahira Kanal Hosil Qilish Protakoli.
Switch Yonguniga Qadar 4 Ta Holat Kuzatiladi:
1)Blacking
2)Listening
3)Learning
4)Forwarding
Jarayon Ketma-Ketligi
Bu Switchni Uzidagi Stp ni Yoqish
Enable
Conf T
Spanning-Tree Mode Rapid Pvst
Exit
Qo’shimcha Jarayon
Channel-Group 1 Mode On
Exit
Int Port-Channel 1
Switchport Mode Trunk
Do Wr
Access List
Ip access-list standart for-nat – Nat texnalogiyasini qullash uchun access list tuzishning birinchi qadami
Permit 192.168…. 255.255.255.0 --- ruxsat etilgan ip lar
Permit 192.168…. 255.255.255.0 --- ruxsat etilgan ip lar
IP nat inside source list for-nat int fa 0/1 overload –Ruxsat etilgan iplarning global zonaga chiqish porti
Do'stlaringiz bilan baham: |