( hhat@isc.meiji.ac.jp ) - PowerPoint PPT Presentation

About This Presentation

Title:

( hhat@isc.meiji.ac.jp )

Description:

Title: Created Date: 1/31/1998 1:05:14 AM Document presentation format: – PowerPoint PPT presentation

Number of Views:33

Avg rating:3.0/5.0

Slides: 37

Provided by: acjp

Category:

more less

Transcript and Presenter's Notes

Title: ( hhat@isc.meiji.ac.jp )

1
????????????????????
2002/2/2 ???????????

???? ?????????
????
( hhat_at_isc.meiji.ac.jp )

2
?????

???????????????????
????????
???????????????????

3
??

????????????????????????
???????????????????
???????????????????????
???????
??????? etc. ????
?????...
1999?4??????????
???????(10/100BaseT)?????????????????
?????? (???????)
????????????????
???
2000?10????
?????????????

4
??????????????

????????????
????(???)?????????????????????????
???????????????????????????

???????????????
5
????????????

????????????
?????
??????????
??????/???????????
?????????
??????????LAN?????????MAC??????????
DHCP???????????
?????????
???????????????
FireWall ????????????

6
FireWall????????
?????

FireWall???
Web ????

????LAN ???????
??????? (?????)
?
FireWall???OK!
FireWall
7
FireWall (??????)

???????????????????????
??????????????????????????????????????
(?)
???? (Web???????)
????(??) (xfw, ssh/telnet???????)
?????? (FireWall-1, telnet???????)

8
FireWall (????????)

??????????????????????????????????
??????????????????????????????????????????
(?)
???? (FireWall-1)

9
FireWall (????)

??????????????????????????????????????????????????
????????????????
?????????????????????????????????
(?)
???? (FireWall-1)
???? (opengate)

10
?????? (???????)

1. MIND????????? ???
FireWall ????????????
2. ???? ???
LAN??? (10/100BaseT)
DHCP????
3. ????

11
??????(?????)
???????
??????? (?????)
DHCP ???
FireWall
???? ??????
Web ???
????? (radius???)
12
????????????????
DHCP ???
FireWall
Web ???
?? ???
13
????????????????
DHCP ???
FireWall
Web ???
?? ???
14
????????????????
(1) DHCP??? IP???????
DHCP ???
FireWall
Web ???
?? ???
15
????????????????
(2) Web??????????? (http)
(1) DHCP??? IP???????
DHCP ???
FireWall
Web ???
?? ???
16
????????????????
(2) Web??????????? (http)
(3) ????
(1) DHCP??? IP???????
DHCP ???
FireWall
(5) ?????? (radius)
Web ???
?? ???
17
????????????????
(2) Web??????????? (http)
(3) ????
(4) MIND???????????
(1) DHCP??? IP???????
DHCP ???
FireWall
Web ???
?? ???
18
????????????????
(2) Web??????????? (http)
(3) ????
(4) MIND???????????
(1) DHCP??? IP???????
DHCP ???
FireWall
(5) ?????? (radius)
Web ???
?? ???
19
????????????????
(2) Web??????????? (http)
(3) ????
(4) MIND???????????
(1) DHCP??? IP???????
(6) Web???????????
DHCP ???
FireWall
(5) ?????? (radius)
Web ???
?? ???
20
FireWall?????

?PC????????????????????????????
???????(????)???VLAN??(??)??????
PC??????????????????
(????????)

21
FireWall?????????

??????????????????????????????????????????!!!
? ????????????????????

22
FireWall?????????
??????? ?????
FireWall
???IP???????
????? / ??????(?)
IP????
133.26.226.234 222 /
900 133.26.226.112 15 /
900 133.26.226.15 120 / 900
???? ??????
23
????????

???PC????????????
???X?A?????????????????????????????????????
A???????B?????X??????????????????????????????!!!
(?????)
DHCP?????IP????????????????????????????IP?????????
???? (RFC2131?DHCP???)
????????????????IP?????????????????
?????????????????????????????IP???????????????????
?
?
?????????????????????? gt ?????????
????????!

24
???????

??1.
????????????????????????????????? (???)
??2.
????????????????????(snmp trap) ?????? (???)

25
??1.???????????

???????????????????? 15?(??????) ?? 4? ????
?
????...
?
?????????4?????????????????????????! ??!

26
reset-timer
??????? ?????
3. ??(echo-reply) (??????FW?????????)
FireWall
2. ping (echo-request) ???
??? IP???????
????
(2??????)
reset-timer
133.26.226.234 222 /
240 133.26.226.112 15 /
240 133.26.226.15 120 / 240
1.???IP??????????
???? ??????
27
??2. ????(trap) ?????

??????????(SNMP??????)????
??????????????????????????????????????SNMP????????
??????????
SNMP???????(SH2510?????)
133.26.209.1 Link Down Trap (0)
Name interfaces.ifTable.ifEntry.ifIndex.3
SNMP???????(Catalyst2900?Cisco?)
042323 LINK-3-UPDOWN Interface
FastEthernet0/15, changed state to down
042324 LINEPROTO-5-UPDOWN Line protocol on
Interface FastEthernet0/15, changed state to down

28
watch-portd
??????? ?????
??????????

FireWall
1.LinkDown ?snmp???
??? IP???????
????
watch-portd
133.26.226.234 222 /
240 133.26.226.112 15 /
240 133.26.226.15 120 / 240
2.LinkDown??????????????? IP????????IP???????
???? ??????
29
????(trap)????????

??????????????????????????????!
????????????VLAN??(??)???????
????????????
SNMP??????????OK
?
?????????????????????????????2????(????????)?????
????(??????)?????

30
??????????????

???????
??LAN
??LAN
????????
?OS??????
IPv6
????????????
(?????????????????)
???????????

31
???????????????

VLAN??
VPN??
FireWall??

32
VLAN??

VLAN????????????????????
??????????????????VLAN???????????
2??VLAN??? ? ???VLAN?????VLAN
?????? (LANA? ????????)
???? (PortGuard? Web,telnet,????????)
Cisco (URT- User Registration Tool?????????)

33
VLAN??
?? ???
DHCP ???
VLAN1(???????VLAN)
1.IP?????? 2.??(telnet/web)
3.???????
????LAN ???????
???
VLAN2(???????VLAN)
VLAN???? ????????
34
VLAN?????

???????????????(????)?????????????
?????????????????VLAN??(802.1Q)??????????????????
??????
HUB?????????????????
? ??
MAC?????IP????????????(LANA, PortGuard)
? ???????????????????

35
VPN??

PPPoE, PPTP, L2TP????????????
????????????????????????????
????? (Nortel????????????)

36
VPN??
DHCP ???
?? ???
1.IP??????
2.VPN??
VPN??
3.???????
????LAN ???????
??????? (?????)
VPN???
PPTP,L2TP,PPPoE
37
VPN?????

?????????????????????
?(?????????)HUB?????????OK?
?PC??VPN?????????????????
Windows 2K,XP???????????????????

38
??
FireWall ?? VLAN ?? VPN ??
??LAN?? ? ?? ?
??LAN?? ? ?? (802.1q) ? (802.1x)
?????? FireWall ?? VLAN??HUB VPN??
??OS???? ? ? ???
IPv6 ?? ??? ???
????????? ? ? ?
39
???? ????????????