Ccna voa sadek by Voa Ahmed Sadek

‫ ﻋﻠـﻲ ﻣﺨﺘــﺎﺭ ﺍﻟﺼﺒــﺎﻍ‬/ ‫ﻡ‬

‫ﻣﻬﻨﺪﺱ ﺣﺎﺳﺒﺎﺕ ﻭﻧﻈﻢ ﺗﺤﻜﻢ‬

PDF created with pdfFactory Pro trial version www.pdffactory.com

CCNA Course

Cisco® Certified Network Associate

Introduction ‫ﺗﻨﻘﺴﻢ ﺷﺒﻜﺎت اﻟﺤﺎﺳﺐ ﻣﻦ ﺣﯿﺚ اﻟﺤﺠﻢ إﻟﻲ‬

LAN (‫ ﺷﺒﻜﺎت ﻣﺤﻠﯿﺔ )ﺻﻐﯿﺮة‬-١ Wan ‫ ﺷﺒﻜﺎت واﺳﻌﺔ اﻟﻨﻄﺎق‬-٢

Switch Hub Bridge

LAN

Wan

Network Topology Bu s

Ring

Sta r

Bus Topology

-Coaxial Cabel Disadvantages 1-Delay 2-Collision 3-Loss Bandwidth ‫ﻟﻮ ﺣﺪث ﻋﻄﻞ ﻓﻲ اﻟﺸﺒﻜﺔ ﺗﺘﻮﻗﻒ اﻟﺸﺒﻜﺔ ﺟﻤﯿﻌﮭﺎ ﻋﻦ اﻟﻌﻤﻞ‬

PDF created with pdfFactory Pro trial version www.pdffactory.com

Ring Topology 2

٢ ‫ﻟﻮ ﺣﺪث ﻋﻄﻞ ﻓﻲ اي ﺟﺰء ﻓﻲ اﻟﺸﺒﻜﺔ ﻣﺜﻞ اﻟﻤﺴﺎر ﺑﯿﻦ واﺣﺪ واﺗﻨﯿﻦ ﯾﻤﻜﻦ اﺗﺨﺎذ ﻣﺴﺎر ﺑﺪﯾﻞ ﻣﻦ‬ ‫ ﻟﻨﺔ اﻃﻮل ﻟﻜﻦ اﻟﺸﺒﻜﺔ ﻟﻢ ﺗﻘﻊ‬٤‫ و‬٣‫ ﻣﺎرا ب‬١ ‫اﻟﻲ‬

Star Topology Switch Hub Bridge

Address 1-Local Address Ip (internet , protocol)32 bit 2-Physical Address Mac ( Media Access Table) Oui (48 bit) hexadecimal

Ethernet Ethernet (10 mega / sec) Fast Ethernet (100 mega / sec) Giga Ethernet (1000 mega / sec) 10 Giga Ethernet (10000 mega / sec)

PDF created with pdfFactory Pro trial version www.pdffactory.com

Devices 1-Repeater Amplifier ‫ﯾﻘﻮم ﺑﺘﻘﻮﯾﺔ اﻹﺷﺎرة ﻣﻊ ازاﻟﺔ اﻟﻀﻮﺿﺎء ﻣﻦ ﻋﻠﯿﮭﺎ ﻋﻜﺲ‬ 2-Hub Dummy Device 1-Delay 2-Loss Bandwidth 3-Collision 4-Half duplex 3-Switch Best Smart Device 4-Bridge Like switch 5-Router Up to layer3 Best best smart device

PDF created with pdfFactory Pro trial version www.pdffactory.com

‫ﯾﻔﮭﻢ اﻟﻤﺎك ﻓﻘﻂ‬

Chapter (1) Internetworking

1-OSI Model 2-Cables 3-Cisco Model

1-OSI Model (Open System Interconnected)

PDF created with pdfFactory Pro trial version www.pdffactory.com

Advantages of OSI

Allow multiple vendor to networking together Path Description Prevent Any effort affect from the layer to another

1-Application Layer Receive data from user ftp & tftp & www 2- Presentation layer - Issue data - Code formatting - Compression - Inception

3- Session Layer - establish session - Manage session - terminate session

PDF created with pdfFactory Pro trial version www.pdffactory.com

4- Transport Layer -

Check error “error Recovery” Avoid Congection Segmentation Sequencing

5- Network Layer - addressing - Path Selection 6- Data Link Layer - addressing - error detection

‫ﻻ ﯾﻘﻮم ﺑﺘﺼﻠﯿﺢ اﻷﺧﻄﺎء‬

7- Physical layer - convert data to a stream of bits Data

Transport layer 1

Network layer Packet ip FRAME MAC CRC

Steam of bits

Encapsulation ‫اﻟﺘﻌﻠﯿﺐ‬ Data Bits

Segment

Packet

Frame

Dencapsulation Bits Data

Frame

Packet

PDF created with pdfFactory Pro trial version www.pdffactory.com

segment

Acknowledge (ACK) Sender

receiver 1 2 3 4 6

Ack 5 Error Detection

PDF created with pdfFactory Pro trial version www.pdffactory.com

Flow control (buffering â&#x20AC;&#x201C; windowing- congestion avoidance) Sender

Wait Ack

receiver 1 2 3 4

2- Cables copper coaxial Twisted Pair thin thick UTP STP

Optical Fiber Single Mode

Multi Mode

Fiber Advantage -the best best type of cable for all connection - the fastest

Disadvantage -Expensive -Difficult in Install AND maintenance

Types Single Mode Long distance Lower speed than multi

Multi Mode Short distance High speed

PDF created with pdfFactory Pro trial version www.pdffactory.com

Coaxial Cable Advantage Fast more than twisted pair Cheapest than fiber

Disadvantage Expensive more than twisted pair Difficult in install and maintained

Thin 50 ohm (85 -200) meter

Thick 75 ohm (490 -500) meter

Twisted Pair UTP STP Un Shield Twisted Pair Shield Twisted Pair RG 45 ‫ﯾﺘﻢ ﺗﻮﺻﯿﻞ اﻻﺳﻼك ﻋﻦ ﻃﺮﯾﻖ ﺛﻼث ﻃﺮﯾﻖ ﺑﻮاﺳﻄﺔ‬ ‫ اﺳﻼك اﻟﻮاﻧﮭﺎ ﻛﺎﻟﺘﺎﻟﻲ‬٨ ‫واﻟﺴﻠﻚ ﯾﺘﻜﻮن ﻣﻦ‬ ‫اﺑﯿﺾ ﺑﺮﺗﻘﺎﻟﻲ‬ ‫ﺑﺮﺗﻘﺎﻟﻲ‬ ‫اﺑﯿﺾ اﺧﻀﺮ‬ ‫ازرق‬ ‫اﺑﯿﺾ ازرق‬ ‫أﺧﻀﺮ‬ ‫اﺑﯿﺾ ﺑﻨﻲ‬ ‫ﺑﻨﻲ‬ Type Of Cable Cat5 1-A-B (Strait)

- Cat6

Pc – switch Pc – Bridge Pc- Hub

PDF created with pdfFactory Pro trial version www.pdffactory.com

SwitchRouter BridgeRouter Hub-Router

2-A-A (Crossed) 1

PC – PC Bridge –Bridge Hub- Hub Ethernet switch-Ethernet Router

3- (Roller) 1

Com Pc – Con Router

Ethernet Networking Ethernet is a contention media access method that allows all hosts on a network to share the same bandwidth of a link. Ethernet networking uses Carrier Sense Multiple Access with Collision Detection (CSMA/CD), a protocol that helps devices share the bandwidth evenly without having two devices transmit at the same time on the network medium

CSMA / CD (Carrier Sense Multiple Access / Collision Detection) List –Wait & Listen –Wait Send

PDF created with pdfFactory Pro trial version www.pdffactory.com

1- Simple ‫ﻣﺜﻞ ﻛﺎﺑﻞ اﻟﺘﻠﯿﻔﺰﯾﻮن ارﺳﺎل ﻓﻲ إﺗﺠﺎة واﺣﺪ‬ 2- Half Duplex Hub Coaxial CSMA\CD 3- Full Duplex Router Switch Bridge

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (2) TCP /IP Transmission Control / Protocol / Internal Protocol Application Layer Transport Layer Internet Layer Network Access

PDF created with pdfFactory Pro trial version www.pdffactory.com

1- Application Layer FTP \ file transfer Protocol TFTP\ Trivial File Transfer Protocol DNS \ Domain Name Server WWW.YAHOO.COM = 96.125.18.30 HTTP\Hyper Text Transfer Protocol For web Browsing DHCP \ Dynamic Host Control Protocol

‫ﻻﻴﺘﺄﻜﺩ ﻤﻥ ﻭﺼﻭل ﺍﻟﺒﻴﺎﻨﺎﺕ ﻟﻜﻨﺔ ﺴﺭﻴﻊ‬

TELNET \For Remote Login And Make Configuration ‫ﻴﻌﻨﻲ ﺍﻤﻜﺎﻨﻴﺔ ﺍﻹﺘﺼﺎل ﺒﺭﺍﻭﺘﺭ ﺒﺭﺍﻭﺘﺭ ﺍﺨﺭ ﻓﻲ ﻤﻜﺎﻥ ﺍﺨﺭ‬ Pop3 \ Post Office Protocol for receive message SMTP \ Simple Mail Transfer Protocol for send Mail SNMP \ Simple Network Management Protocol

2- Transfer

Layer

Connection oriented Establish Apath Three way hand shake TCP(Transmission Control Protocol) Advantage

Connection Less One way hand shake ‫اﻟﺒﺮوﺗﻮﻛﻮﻻت‬ UDP(User Datagram Protocol) Advantage

1- Layer 4 Protocol

1- High Over head

2- Connection Oriented

2- High Speed

3- Error Recovery Disadvantage

3- Low Bandwidth Disadvantage

1- High Over head

1- Connection Less

2- Loss band width

2- UN Acknowledge

3- Delay

3- Un Sequencing 4- Un Reliable 5- Not Avoid Congection

PDF created with pdfFactory Pro trial version www.pdffactory.com

1-TCP (Transmission Control Protocol)

TCP Port Application Port <=1023 TCP ‫اﻟﺒﺮوﺗﻮﻛﻮﻻت اﻟﺘﻲ ﺗﺴﺘﺨﺪم‬

FTP DNS HTTP TELNET POP3 SMTP

20,21 53 80 23 110 25

User Port >=1023 UDP ‫اﻟﺒﺮوﺗﻮﻛﻮﻻت اﻟﺘﻲ ﺗﺴﺘﺨﺪم‬

TFTP DNS DHCP SNMP

PDF created with pdfFactory Pro trial version www.pdffactory.com

20,21 53 80 23

3- Internet Layer PROXY ARP

ICMP

A- ARP ( Address Resolution Protocol) Map between ip & Mac Ip Mac B- ICMP ( Internet Control Message Protocol) To send control message and error reports Echo request & echo replay Time exceeded & Un reachable manages & source quench 1- Echo request & echo replay Ping (www.yahoo.com) Up to layer 3 Ping 127.0.0.1 tcp/ ip Ping 10.0.0.1 host Ping switch Ex \ ping www.yahoo.com Use (DNS, ARP, ICMP)

PDF created with pdfFactory Pro trial version www.pdffactory.com

2- Time exceeded Trace set (pc)

Trace route (router)

End to end connection up to layer 3+ path selection 3- Un Reachable Network Un Reachable Host Un Reachable Protocol Un Reachable Port Un Reachable Source quench

‫ﻟﻮ اﻟﺮاوﺗﺮ ﻣﯿﻌﺮﻓﺶ اﻟﺸﺒﻜﺔ‬ ‫ﻟﻮ اﻟﺠﮫﺎز ﻣﻐﻠﻖ‬ ‫ﻟﻮ ﻓﯿﺔ ﻣﺸﻜﻠﺔ ﻓﻲ اﻟﺒﺮوﺗﻮﻛﻮل‬ application layer ‫ﻟﻮ ﻓﯿﺔ ﻣﺸﻜﻠﺔ ﻓﻲ ال‬ Route ‫ھﺪي اﻟﺴﺮﻋﺔ ﻟﻞ‬

‫ﻻﺑﺪ ﻣﻦ اﻟﺘﺤﻘﻖ ﻣﻦ اﻷﺗﻲ‬B ‫ ان ﻳﻜﻠﻢ ﺟﮫﺎز‬A ‫ﻋﻨﺪﻣﺎ ﻳﺮﻳﺪ ﺟﮫﺎز‬

Source ip (A) Destination ip (B) Source Mac (A) Destination Mac (B)

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (3)

IP Sub netting and Variable Length Subnet Masks (VLSMs) IP 32 Bit 128 192 224 240 248 252 254 255 Class Class Class Class Class Class

1 1 1 1 1 1 1 1 A B C D E

0 1 1 1 1 1 1 1

0 0 1 1 1 1 1 1

0 0 0 1 1 1 1 1

from To 1 126 128 191 192 223 224 239 Reserved

0 0 0 0 1 1 1 1

0 0 0 0 0 1 1 1

0 0 0 0 0 0 1 1

0 0 0 0 0 0 0 1

Subnet mask 255.0.0.0 255.255.0.0 255.255.255.0 Multi cast n

No Of Hosts per sub net =2 -2 where n (no of zeros) n No Of sub net =2 -2 where n (no of ones hosts /26 What do we know about a /26? _ 192 mask _ 2 bits on and 6 bits off (11000000) _ Block size of 64 _ 4subnets, each with 62 hosts

/28 What do we know about a /28? _ 240 mask _ 3 bits on and 6 bits off (11110000) _ Block size of 16 _ 4subnets, each with 14 hosts

/27 What do we know about a /27? _ 224 mask _ 3 bits on and 5 bits off (11100000) _ Block size of 32 _ 4subnets, each with 30 hosts

/29 What do we know about a /29? _ 248 mask _ 5 bits on and 3 bits off (11111000) _ Block size of 8 _ 32subnets, each with 6 hosts

PDF created with pdfFactory Pro trial version www.pdffactory.com

/30 What do we know about a /30? _ 252 mask _ 6 bits on and 2 bits off (11111100) _ Block size of 4 _ 64subnets, each with 2 hosts

Ex1 192.168.1.0 Solution Class C 26-24=2(of one=192) 255.255.255.192 256-192=64 192.168.1.0 192.168.1.64 192.168.1.128 192.168.1.192 No Of sub net= 4-2=2 No Of Hosts=64-2=62 Ex

200.5.70.0 Solution Class C 27-24=3(of one=224) 255.255.255.224 256-224=32 200.5.70.0 200.5.70.32 200.5.70.64 200.5.70.96 200.5.70.128 200.5.70.160 200.5.70.224

PDF created with pdfFactory Pro trial version www.pdffactory.com

200.5.70.256 No Of sub net= 32-2=30 , No Of Hosts=8-2=6 x Ex 3

192.1.1.54

Solution Class C 28-24=4(of one=240) 255.255.255.240 195.1.1.48 256-224=16 195.0.1.49 192.1.1.0 195.0.1.62 192.1.1.16 195.0.1.63 (BC) 192.1.1.32 195.0.1.64 192.1.1.48 192.1.1.64

Ex 4 195.0.1.14 Solution Class C 30-24=6(of one=252) 255.255.255.252 256-252=4 195.0.1.0 195.0.1.4 195.0.1.8 195.0.1.12 195.0.1.16 195.0.1.20

195.0.1.12 195.0.1.13 195.0.1.14 195.0.1.15 195.0.1.15

No Of sub net= 64-2=62 No Of Hosts=4-2=2

PDF created with pdfFactory Pro trial version www.pdffactory.com

( BC )

Ex 5 172.16.38.9 Solution Class B 19-16=3(of one=224) 255.255.255.224 256-224=32 172.16.32.0 172.16.32.1 172.16.0.0 172.16.32.0 172.16.63.254 172.16.64.0 172.16.63.255 (BC) 172.16.96.0 172.16.64.0 No Of sub net= 8-2=6 No Of Hosts=2*13-2=Ex 6 10.98.0.255/ Solution Class A 11-8=3(of one=224) 255.224.0.0 256-224=32 10.0.0.0 10.32.0.0 10.64.0.0 10.96.0.0 10.128.0.0 No Of sub net= 8-2=6 No Of Hosts=2*21-2=---

10.96.0.0 10.96.0.1 10.127.255.254 10.127.255.255 (BC) 10.128.0.0

PDF created with pdfFactory Pro trial version www.pdffactory.com

Ex 7 200.0.8.79/2 Solution Class C 27-24=3(of one=224) 255.224.0.0 256-224=32 200.0.8.64 200.0.8.65 200.0.8.0 200.0.8.32 200.0.8.64 200.0.8.94 200.0.8.96 200.0.8.95 (BC) 200.0.8.96 No Of sub net= 8-2=6 No Of Hosts=32-2=30

Ex 8 170.18.1.68/ Solution Class B 28-16=12(8+4)(of one=240) 255.255.255.240 256-240=16 170.18.1.0 170.18.1.64 170.18.1.16 170.18.1.65 170.18.1.32 170.18.1.64 170.18.1.96 170.18.1.94 170.18.1.95 Bc No Of sub net= 2(12)-2=6 170.18.1.96 No Of Hosts=16-2=14

PDF created with pdfFactory Pro trial version www.pdffactory.com

IP Private IP

Public IP

Virtual IP

Real IP

Private IP A B C

10.0.0.0 10.255.255.255 172.16.0.0 172.31.255.255 192.168.0.0 192.168.255.255 Public Ip ‫ﺟﻤﯿﻊ اﻻرﻗﺎم ﺧﻼف اﻟﺴﺎﺑﻖ ﺗﻌﺘﺒﺮ‬ VLSM (Variable Length Subnet Mask)

200.1.1.0 ‫ أﺟﮭﺰة‬٥٤

‫ أﺟﮭﺰة‬١٠

‫ أﺟﮭﺰة‬٧٠

200.1.1.0 200.1.1.128 200.1.1.192 200.1.1.224 200.1.1.240

‫ أﺟﮭﺰة‬٢٠

/25 /26 /27 /28 /30

200.1.1.244

PDF created with pdfFactory Pro trial version www.pdffactory.com

Implementing VLSM Networks

The next step is to create a VLSM table. Figure 3.4 shows you the table used in creating a VLSM network. The reason we use this table is so we donâ&#x20AC;&#x2122;t accidentally overlap networks.

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (4) Introduction to the Cisco IOS Router IOS

(Internet Making Operating System)

Hard Ware Components of Router 1234-

processor Configure Register Interface Memory

1- Processor ‫ﺒﺭﻭﺴﻴﺴﻭﺭ‬ 2-Configure Register Set of Instruction which determine the router tasks 3-Interface Console For local login and make configuration Auxiliary For Remote login and make configuration Ethernet To connect LAN devices Serial To connect Wan devices 4-Memory RAM ROM FLASH NVRAM A- RAM \ Working Area of router B- Rom \ 1- Post : (Power on self test) For check hardware components 2- Boot Strap : To Copy aversion of O.S from flash To Copy aversion for configuration register from nvram to ram C- Flash \ O.S D- NVRAM \ Configuration Register What Happen When Router To Be ON ? POST \Check H\W Boot Strap \ O.S _______________________RAM Configuration Register________ROM

PDF created with pdfFactory Pro trial version www.pdffactory.com

‫ﺛﻢ ﯾﺒﺪأ اﻟﺠﮭﺎز اﻟﻌﻤﻞ‬

Router Model

Con Aux VTY

Router > USER

Enable

Router # USER

Config terminal

Disable

Router(Confg )# USER

Ctrl+Z

User Model ‫ھﻮ ﻣـــــــــــــــــــــــــﻮد إﻓﺘﺘــــــــــــــﺎﺣــــــــــﻲ‬ User Privilege Show copy ,paste , save , cut Configure Mode ‫ﯾﺘﻢ ﻋﻤﻞ ﻋﻠﻲ ﻛﻞ ﺣﺎﺟﺔ ﻋﻠﯿﺔ‬ #Show Run Configure Register ‫ﺑﯿﻌﺮﺿﻠﻲ ال‬ Password ‫ﻹدﺧﺎل ﻛﻠﻤﺔ ﺳﺮ ﻋﻠﻲ اﻟﺮوﺗﺮ ﯾﻜﻮن ﻛﻤﺎ ﯾﻠﻲ‬

PDF created with pdfFactory Pro trial version www.pdffactory.com

‫وﻟﻌﻤﻞ ﻛﻠﻤﺔ ﺳﺮ اﻛﺜﺮ أﻣﺎﻧﺎ ﻣﺸﻔﺮة ﯾﺘﻢ ﻛﺘﺎﺑﺔ اﻷﻣﺮ اﻟﺘﺎﻟﻲ‬

‫وﻟﻌﻤﻞ ﺑﺎﻧﺮ ﯾﺘﻢ ﻛﺘﺎﺑﺔ اﻷﻣﺮ اﻟﺘﺎﻟﻲ‬ ‫وﻟﺤﻔﻆ اﻟﺸﻐﻞ اﻟﺬي ﺗﻢ ﻋﻤﻠﺔ ﻋﻠﻲ اﻟﺮوﺗﺮ ﯾﺘﻢ ﻛﺘﺎﺑﺔ اﻷﻣﺮ اﻟﺘﺎﻟﻲ‬ ‫وﻹﻇﮭﺎر ﺟﻤﯿﻊ اواﻣﺮ ال ‪Show‬ﺑﺎﻷﻣﺮ اﻟﺘﺎﻟﻲ‬

‫‪PDF created with pdfFactory Pro trial version www.pdffactory.com‬‬

CLI Prompts Interfaces

Router(config)#interface ? A sync A sync interface BVI Bridge-Group Virtual Interface Chunnel interface Dialer interface Fast Ethernet Fast Ethernet IEEE 802.3

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (5) IP Routing Select best path Routing protocol ( address path 1- Update between neighbors 2- Fill Routing table 3- Contain routing table 4- Select best path based on metric Metric \ for same network use load balance

Routing Protocol Dynamic

Static

Default

Dynamic IGP(Interior gate way protocol) Distance vector Line state hybrid RIP IGRP OSPF ISIS EIGRP EGP

IGP

EGP

IGP Autonomo us system

Autonomo us system

1- Dynamic Protocol 1- RIP 1-Distance vector family 2-Metric = no of hops EX

172.16.0 172.16.0

192.16.0 172.16.0

192.16.0

S1 E0

S0 E0

192.16.0

B ‫ﺑﺎﻟﻨﺴﺒﺔ ﻟﻠﻨﻘﻄﺔ‬ 10.0.0.0

11.0.0.0

PDF created with pdfFactory Pro trial version www.pdffactory.com

12.0.0.0

Code C C R R R

Network 11.0.0.0 192.168.0.0 172.16.0.0 10.0.0.0 12.0.0.0

Metric 0 0 0 1 1

Next Hop 172.16.0.1 192.168.0.2

Code C C R R R

Network 12.0.0.0 192.168.0.0 11.0.0.0 172.16.0.0 10.0.0.0

Metric 0 0 1 1 2

Next Hop 192.16.0.1 192.16.0.1 172.16.0.1

Update time Maximum number of hops

Out going interface

E0 S0 S1 S1 S0 C ‫ﺑﺎﻟﻨﺴﺒﺔ ﻟﻠﻨﻘﻄﺔ‬ Out going interface

E0 S1 S1 S1 S1

30 sec 15

Solve Problem Of Routing Loop 1- Split Horizon Update ‫ﻻ اﺳﺘﻌﻤﻞ اي‬Interface ‫ ﻋﻦ اﻟﺸﺒﻜﺔ اﺑﻌﺘﺔ ﻋﻠﻲ‬Update ‫ﯾﻌﻨﻲ ﻟﻤﺎ اﺑﻌﺖ‬ ‫ وﻟﻜﻦ ﯾﻤﻜﻦ اﺳﺘﻘﺒﺎﻟﺔ ﻣﻦ ﻋﻠﻲ اي‬Interface ‫ﻋﻦ ھﺬة اﻟﺸﺒﻜﺔ ﻣﻦ ﻋﻠﻲ ﻧﻔﺲ ال‬ ‫ أﺧﺮ‬Interface 2- Poisons Trigger Update ‫ ﺛﺎﻧﯿﺔ ﻟﻠﺘﻌﺪﯾﻞ وﻟﻤﻦ اﺑﻌﺖ‬٣٠ ‫ﯾﻌﻨﻲ ﻟﻤﺎ اﻟﺸﺒﻜﺔ ﺗﻘﻊ ﻣﺎ اﺳﺘﻨﺎش ﻣﺪة‬ ‫ ﻓﻲ ﻧﻔﺲ اﻟﻠﺤﻈﺔ‬Update ‫ال‬ 3- Hold Down Timer (180 sec) ‫اﻧﺘﻈﺮ ﻓﺘﺮة زﻣﻨﯿﺔ ﻣﻌﯿﻨﺔ ﻟﻜﻲ ﺗﻘﻮم اﻟﺸﺒﻜﺔ اﻟﻤﻔﺼﻮﻟﺔ او ﻟﻜﻲ ﯾﺒﺤﺚ اﻟﺮاوﺗﺮ اﻟﻤﺘﺼﻞ‬ ‫ﺑﮭﺎ ﻓﻘﻂ ﻋﻦ ﻃﺮﯾﻖ اﺧﺮ ﻟﻠﻮﺻﻮل‬ 4-Flush Time (240 sec) x ‫ او ﺗﺮﺳﻞ اي راوﺗﺮ ﻣﻌﻠﻮﻣﺎت ﻋﻦ ﻃﺮﯾﻖ اﺧﺮ ﻟﻠﻮﺻﻮل ل‬x ‫ﻓﺘﺮة زﻣﻨﯿﺔ أﺧﺮي ﻟﻜﻲ ﺗﻘﻮم‬ Administrative Distance (AD Priority)

PDF created with pdfFactory Pro trial version www.pdffactory.com

C 0 Static 1 EIGRP 90 IGRP 100 OSPF 110 ISIS 115 RIP 120 ١٢٠ ‫ أﻋﻠﻲ ﻣﻦ‬١ ‫أﻗﻞ ﻓﻲ اﻟﺮﻗﻢ ﯾﻌﻨﻲ ال‬Priority ‫اﻷﻋﻠﻲ ﻓﻲ ال‬ RIP V1 RIP V2 Distance vector Distance vector Maximum hop count of 15 Maximum hop count of 15 No support for VLSM Supports VLSM networks Update broad cast Multi cast Class full 8/16/28 Class less Authonication No Authonication yes No support for discontinuous networks

No support for discontinuous networks

Configuration RIP

2- Interior Gateway Routing Protocol (IGRP) 1- Distance vector family

PDF created with pdfFactory Pro trial version www.pdffactory.com

2- Maximum no of hops =255 3- Class full 8/16/24 4- Cisco Protocol 5- Waste in the same autonomous system ‫ﻻ ﯾﻌﻤﻞ ﺳﻮي ﺑﯿﻦ روﺗﺮﯾﻦ ﻣﻦ ﻧﻮع ﺳﯿﺴﻜﻮ‬ ‫ﺣﺴﺎب اﻟﻤﺘﺮك ﻋﻦ ﻃﺮﯾﻖ‬ 1- Band width (B.W) 2- Delay 3- Loading 4- Reliability 5- Max Transmission Unit (MTU) Metric = equation =*** Administrative Distance 100

120 RIP

Update Hold Down Time Flush Time

30 Sec RIP 180 Sec RIP 240 Sec RIP

(AD)

90 sec 280 sec 630 sec

Configuration RIP

Rip ‫ ﺑﺪﻻ ﻣﻦ‬IGRP ‫ وﻟﻜﻦ ﯾﺘﻢ وﺿﻊ‬Rip ‫ﻧﻔﺲ ال‬

2- Static Protocol Configured Manually By Administrator #ip route (DA) (MASK) ( Out Going/ next hop) AD Ex \ #ip route (192.168.0.0) (255.255.255.0) ( 50/10.0.0.2) 140 ‫ ﻟﯿﻜﻮن اﻗﻞ ﻓﻲ اﻻوﻟﻮﯾﺔ‬١٤٠ ‫ وﺗﻢ وﺿﻌﺔ ب‬١ ‫ب‬Default ‫ ﻓﺎرﻏﺎ ﺳﯿﺘﻢ أﺧﺬ ال‬AD ‫ﻟﻮ ﺗﺮك‬

Advantages 1- Secure 2- No Over Head Disadvantages 1- No adaptation ‫ﻏﯿﺮ ﻣﺘﻜﯿﻒ‬ ‫ﯾﻌﻨﻲ ﯾﻘﻮم ﺑﺎﻹرﺳﺎل وﻣﻠﻮش دﻋﻮة اﻟﺪﻧﯿﺎ ﺑﯿﺤﺼﻞ ﻓﯿﮭﺎ اﯾﺔ‬ 2-High over Head to administration ‫ﺗﺴﺒﺐ ﺻﺪاع ﻟﻠﻤﺪﯾﺮ ﺑﺴﺒﺐ اﻻرﺳﺎل ﻛﻞ ﺷﻮﯾﺔ‬ 2-

PDF created with pdfFactory Pro trial version www.pdffactory.com

3- Default Protocol (Special case from static) #ip route (0.0.0.0) (0.0.0.0) ( Out Going/ next hop) AD Way of last request ‫ﻧﻘﻄﺔ اﻟﻤﻼز اﻷﺧﯿﺮ‬

Default

ISP

Static

Cyber

# IP default network

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (6) Enhanced IGRP (EIGRP) And Open Shortest Path First (OSPF) Disadvantages of Distance Vector Family 1- Limited max no of hobs 2- Repodic update (30.90) 3- No Technology over view

OSPF 123456-

Link State Family Classless No Of Hobs=∞ Update at First OF Waste Every Change Metric =10(8)/BW 3 Table A- Neighbors B- Topology Table C- Route Table Iam router A I don’t see you

Iam router B I see you I Will start conversation iam

Hello

Sorry I Will start conversation iam

THIS is DBD ACK DBD Message

THIS is DBD ACK

E 8 5

7 0

C 3 0

5 0

B 8 0

PDF created with pdfFactory Pro trial version www.pdffactory.com

B/80 C/100 D/50

C/30 A/80

B/30 C/70 A/100 A/150 D/170 E/85

E D/85

Disadvantages Of OSPF” Unlimited Max No Of Hops 1- Over Head On BW ‫ﺑﺴﺒﺐ أن ﻋﺪد اﻟﺮوﺗﺮ ﻻﻧﮭﺎﺋﻲ‬ 2- Processor ‫ﺗﺴﺒﺐ إرھﺎق ﻟﻠﺒﺮوﺳﯿﺴﻮر‬ Logical Area ‫اﻟﻌﻼج ﻋﻦ ﻃﺮﯾﻖ‬ ‫ﯾﺘﻢ ﺗﻘﺴﯿﻢ اﻟﺸﺒﻜﺔ اﻟﻲ ﻋﺪة أﺟﺰاء ﻣﻨﻔﺼﻠﺔ‬

OSPF Technology 1- Point to point 2- Point to multi point 3- NBMA “No Broadcast multi access ‫ﻣﺠﻤﻮﻋﺔ ﻣﻦ اﻟﺮاوﺗﺮ ﻧﺘﺼﻠﺔ ﻣﻊ ﺑﻌﻀﮭﺎ اﻟﺒﻌﺾ ﺑﻮاﺳﻄﺔ‬ Switch , Hub , Bridge DR (Designated Router “King” BDR ( Backup Decimated Router) ‫اﻟﻜﻨﺞ اﻟﻤﺴﺎﻋﺪ‬ Configuration RIP

#int Loob Back 0 # no shut down #Ip address ( ) (

) Priority ‫ ﻧﺎﺧﺬ اﻷﻋﻠﻲ ﻓﻲ‬-١ Router id -٢

A- Router ID Command B- Virtual Address C- Physical Address ‫ﻧﻨﻈﺮ ﻓﻲ اﻟﻤﺴﺄﻟﺔ وﻧﺄﺧﺬ اي ﺟ ﺰء ﯾﺘﻜ ﻮن ﻣ ﻦ أﺟﮭ ﺰة ﺑﯿ ﻨﮭﻢ ﺳ ﻮﯾﺘﺶ ﻣ ﺜﻼ ﺛ ﻢ‬ ‫ ﻋﻠﻄ ﻮل ﯾﺒﻘ ﻲ ھﯿﻨ ﺎﻓﺲ ﺑﯿ ﺔ اﻣ ﺎ‬Physical ‫ﻧﺎﺧﺬ اﺣﺪ اﻟﺮوﺗﺮات اذا ﻛﺎن ﻟ ﺔ‬ Dr ‫ وﯾ ﺪﺧﻞ ﺑﯿ ﺔ واﻻﻋﻠ ﻲ ﯾﺒﻘ ﻲ‬Physical ‫ ﯾ ﺴﯿﺐ‬Virtual ‫اذا ﻛﺎن ﻟ ﺔ‬ ‫ ﻓ ﻲ ﺷ ﺒﻜﺔ‬Druthers ‫ ﯾﻜ ﻮن‬BDR ‫ وﻣﻤﻜ ﻦ ﯾﺒﻘ ﻲ ال‬BDR ‫واﻟﺜ ﺎﻧﻲ‬ ‫أﺧﺮي‬

PDF created with pdfFactory Pro trial version www.pdffactory.com

DR 172.16.0

10.0.0.1 172.16.0 BDR 15.0.0.2 Loop Back

10.0.0.2

190.19.0 .1 Loop BDR

20.0.0.2

Content of Hello Message 1- Hello Time 2- Hello Dead Time 3- Priority 4- Router id 5- DR 6- BDR 7- Neighbors Configuration OSPF

#router OSPF #NETWORK (IP) (WILD MASK) AREA ( ) #NETWORK (IP) (WILD MASK) AREA ( ) Wild mask=255-mask Ex\ 192.168.0.0/26 255.255.255.255-255.255.255.192=0.0.0.63

PDF created with pdfFactory Pro trial version www.pdffactory.com

#show ip route #show ip route ospf #show ip ospf neighbor #show ip ospf topology Data communication equipment

#show controller s0 #int s0 #clock rate 64000

EIGRP 1- Hybrid 2- Class less 3- Non periodic update 4- Maximum no of hops =224 5- Cisco protocol 6- Metric is calculated by 1- Band width (B.W) 2- Delay 3- Loading 4- Reliability 5- Max Transmission Unit (MTU)

7- Ip, ipx, apple rolk ‫ ﯾﺠﺐ ﻋﻨﺪ ﻛﺘﺎﺑﺔ اﻟﺠﻤﻠﺔ اﻟﺘﺎﻟﯿﺔ‬/ ‫ﻣﻠﺤﻮﻇﺔ‬ #No Auto Summery Topology Table 20

PDF created with pdfFactory Pro trial version www.pdffactory.com

FD \ Feasible Distance ‫اﻟﻤﺴﺎﻓﺔ ﺑﯿﻦ اﻟﺮاوﺗﺮ اﻷول واﻟﺸﺒﻜﺔ اﻟﻠﻲ اﻧﺎ راﯾﺤﺎ‬ RD \ Reported Distance ‫اﻟﻤﺴﺎﻓﺔ إﻟﻲ اﻟﺸﺒﻜﺔ ﺑﻌﺪ اول ھﻮب‬ Success \ ‫اﻷﻗﻞ ﻓﻲ‬FD Feasible Success \ SUCCESS ‫ ﻟﻞ‬FD ‫ ﻟﺔ اﻗﻞ ﻣﻦ‬Reported distance ‫ﯾﺠﺐ أن ﯾﻜﻮن‬ Network FD 40 74 50 52

RD 20 Success FS 22 35 FS2 42 --

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (7) Layer 2 Switching Switch \ Mac “Media Access Control”

48 bit (vendor+ serial)

1- Address Learning ‫ ﻋﻦ ﻃﺮﯾﻖ ارﺳﺎل اﻟﻲ ﺟﻤﯿﻊ اﻷﺟﮭﺰة وﻛﻞ ﺟﮭﺎز ﯾﺠﺪ ﻧﻔﺴﺔ‬address ‫ﺗﻘﻮم ﺑﻌﻤﻠﯿﺔ ﺗﻌﻠﻢ‬ ‫ﻣﺘﻮاﻓﻖ ﻣﻊ اﻟﺮﻗﻢ ﯾﻌﺎود ﺑﺎﻟﺮد ﻋﻠﻲ اﻟﺮﺋﯿﺴﻲ‬ 2- Filter / Forward Decision 3- Avoiding loop Mac int 1 E0 2 E1 3 E2 4 E3 E0

E3 E

Duplex \ full duplex Speed Broadcast domain &collision domain

Hub \ 1 Broad cast 1 collision domain Switch \ 1 BC & Collision domain=no of ports Router \ isolate BC & CD

PDF created with pdfFactory Pro trial version www.pdffactory.com

1 BC 4 CD EX

9CD 1 BC EX

2 BC 12 CD

Load Balance Based on Packet Per packet

Based On Destination Per destination

‫ ﯾﻘﻮم ﺑﺎﻟﺘﻮزﯾﻊ ﻋﻠﻲ ﻛﻼ اﻟﻤﺴﺎرﯾﻦ ﺑﺎﻟﺘﺴﺎوي‬Based on Packet ‫ﻓﻲ ﺣﺎﻟﺔ‬ y‫وﻣﺴﺎر اﺧﺮ ﻟﻞ‬x ‫أﻣﺎ ﻓﻲ اﻟﺤﺎﻟﺔ اﻟﺜﺎﻧﯿﺔ ﯾﻤﻜﻦ ﻋﻤﻞ ﻣﺴﺎر ﻟﻜﻼ اﻟﻤﺴﺎرﯾﻦ ﻣﺴﺎر ﻟﻞ‬

PDF created with pdfFactory Pro trial version www.pdffactory.com

1- Equal Path ‫ ﻣﺴﺎرات‬٤ ‫اﻟﻨﻮع دة ﻛﻞ اﻟﺒﺮوﺗﻮﻛﻮﻻت ﺑﺘﻌﻤﻠﺔ ﻟﺤﺪ‬ ‫ ﻣﺴﺎرات ﻋﻦ ﻃﺮﯾﻖ‬٦ ‫ ﯾﻤﻜﻦ زﯾﺎدﺗﺔ اﻟﻲ‬/ ‫ﻣﻠﺤﻮﻇﺔ‬ Router (confg-route) #ip max path6 2- Non Equal Path IGRP & EIGRP Cisco Protocol #variance2 (‫ اﻗﻞ ﻣﯿﺘﺮك‬+‫=اﻟﻨﺎﺗﺞ‬٢ * ‫اﻟﻤﻌﺎدﻟﺔ ﻛﺎﻟﺘﺎﻟﻲ )اﻗﻞ ﻣﯿﺘﺮك‬ EX 25 0 15 0 10

١٥٠=٥٠+١٠٠=٥٠*٢

Passive Interface data‫ ﻓﻘﻂ وﻻ ﯾﺮﺳﻞ ال‬Update ‫ﯾﺴﺘﻘﺒﻞ ال‬ Router(confg)#ints0 Router(confg-if)#passive interface int ‫ﺑﺎﺳﯿﻒ ﻋﻠﻲ ﻛﻞ ال‬S0 ‫ﻓﻲ ھﺬة اﻟﺤﺎﻟﺔ ﻋﻤﻞ‬

Router(confg-if)#passive interface s0 ‫ﺑﺎﺳﯿﻒ ﻓﻲ ھﺬة اﻟﺤﺎﻟﺔ ﻓﻘﻂ‬S0 ‫ﻋﻤﻞ‬

Summarization Auto IGRP , EIGRP , RIP V2

Manual

#no auto Summery (igrp & eigrp & ripv2) 10.20.4.0/24 10.20.5.0/24 10.20.6.0/24 10.20.7.0/24 ‫ ﺑﺖ‬٨ ‫ ﻟﻠﺴﺎﺑﻖ ﻧﻘﻮم ﺑﻜﺘﺎﺑﺔ اﻟﻤﺘﺸﺎﺑﺔ )اﻟﻠﻲ ﺑﺎﻟﻮن اﻟﺰرق( اﻻول ﺛﻢ ﻛﺘﺎﺑﺔ اﻟﺒﺎﻗﻲ اﻟﻨﻈﺎم اﻟﺜﻨﺎﺋﻲ‬Summarize ‫ﻟﻌﻤﻞ‬ 10.20.00000100.00000000 10.20.00000101.00000000 10.20.00000110.00000000 10.20.00000111.00000000

PDF created with pdfFactory Pro trial version www.pdffactory.com

10.20.00000100.00000000 ====== 10.20.4.0/22 EX 10.30.00001000.00000000 10.30.00001001.00000000 10.30.00001010.00000000 10.30.00001011.00000000 10.30.00001000.000000000 =======10.30.8.0/22

EX 10.30.15.12 10.30.15.14 10.30.15.19 10.30.15.21 10.30.15.23 Solution 10.30.15.00001100 10.30.15.00001110 10.30.15.00010011 10.30.15.00010101 10.30.15.00010111 10.30.15.00000000 =========== 10.30.15.27

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (8) Virtual LANs (VLANs) Vlan 1 ‫اﻣﺎ اﻻﺳﺎﺳﯿﺔ ﻟﻠﺠﻤﯿﻊ ھﻲ‬vlan2,vlan3,… ‫ﯾﺘﻢ ﺗﻘﺴﯿﻢ اﻟﺸﺒﻜﺔ اﻟﻲ ﻣﺠﻤﻮﻋﺔ ﻣﻦ اﻟﺸﺒﻜﺎت اﻟﻮھﻤﯿﺔ وﺗﺘﺒﻊ اﻻﺳﻤﺎء ﺑﺪاﯾﺔ ﻣﻦ‬ 1- Dived B.C domain to Multiple B.C Domain 2- Enhance Security

How to Configure Virtual LAN ? 123-

configure Vlan Database configure vlan member configure v lan no of hobs

1- all devices default in vlan1 2- Any pc in vlan can be in a lot of vlan 3- each vlan in in different subnet

1 2

1-Trunk 2- Vlan2 & vlan2 3- Encapsulation (isl , IEEE I.Q)

‫ ﻻﺑﺪ ﻣﻦ ﺗﻮاﻓﺮ اﻟﺸﺮوط دي‬٢ ‫ ﯾﻜﻠﻢ‬١ ‫ﻋﻠﺸﺎن‬ ‫ﻃﺮﯾﻖ ﻣﺰدوج راﯾﺢ ﺟﺎي‬ ‫ان ﯾﻜﻮن اﻻﺛﻨﺎن ﻓﻲ ﻧﻔﺲ اﻟﺸﺒﻜﺔ اﻟﻮھﻤﯿﺔ‬

VTP Protocol 1- manage database of virtual LAN 2- enable us to add , delete , remove , virtual LAN information 3- send update every 5 minute

1\ VTY Domain Name

Vtp ‫ ﺑﺘﺎﻋﻲ وﺷﻐﺎل ﺑﺎل‬Domain ‫ﻻزم ﻛﻞ اﻟﺴﻮﯾﺘﺶ اﻟﻤﻮﺟﻮدة داﺧﻞ ال‬ vtp domain name ‫ﻻزم ﯾﻜﻮن ﻟﮭﺎ ﻧﻔﺲ ال‬

PDF created with pdfFactory Pro trial version www.pdffactory.com

2\ VTY Operating Modes 1- secure

ADD , REMOVE , UPDATE, DELETE ‫ وﻟﺔ اﻟﻘﺪرة ﻋﻠﻲ ﻋﻤﻞ‬update ‫ﯾﺴﺘﻘﺒﻞ اﻻ‬

2- CLIENT

‫ وﯾﻤﺮرة ﺑﺎﻟﻠﻲ ﺑﻌﺪة‬Update ‫ﯾﺘﺄﺛﺮ ﺑﺎل‬

3- Transparent

‫ وﯾﻐﯿﺮ ﻓﯿﺔ وﯾﺘﺄﺛﺮ ﺑﺔ وﻟﻜﻦ داﺧﻞ ﻣﻨﻄﻘﺘﺔ ﻓﻘﻂ وﯾﻤﺮرة ﺑﺪون اي ﺗﻐﯿﯿﺮ‬Update ‫ﯾﺴﺘﻘﺒﻞ ال‬

3\ VTY Password 4\ VTY Revision Number ‫اﻟﻜﺒﯿﺮ ﯾﺮوح ﻟﻠﺼﻐﯿﺮ‬

Revision no=4

Revision no=6

LAN Switch Type Permeable DA SA Type Data CRC 2

1- Store and forward ‫ﯾﻘﻮم ﺑﺘﺨﺰﯾﻦ اﻟﺪادا ﻛﺎﻣﻠﺔ وإرﺳﺎﻟﮭﺎ‬ 2- Cut Throw ‫ﯾﻘﻮم ﺑﻘﻄﻊ اﻟﺪادا وال‬Permeable ‫وارﺳﺎل اﻟﺒﺎﻗﻲ‬ 3- Modified Cut Throw ‫ﯾﻘﻮم ﺑﺈرﺳﺎل ﻣﻦ أول اﻟﺪادا‬

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (9) Managing a Cisco Internet work Configure Register

Boot Filed

‫ ﻋﻨﺪ وﺟﻮد‬Trouble Shoot ‫ﻋﻨﺪ ﺗﻨﺰﯾﻞ ﺳﻮﻓﺖ ووﯾﺮ ﺟﺪﯾﺪ‬

Rem Monitor=0 Boot RAM =1

RAM ‫ اﻟﻲ ال‬NVRAM ‫ ﻣﻦ ال‬Configure register ‫اﻟﺮاوﺗﺮ ھﯿﺮوح ﯾﺤﻤﻞ‬ ‫ وﺿﻌﮭﺎ ﻓﻲ اﻟﺮوﺗﺮ‬O.S ‫ وروح ﺣﻤﻞ ﻧﺴﺨﺔ ﻣﻦ‬NVRAM ‫ﻃﻨﺶ ال‬

0 1 2

‫ = ﺻﻔﺮ‬٧ ‫ﻟﻮ اﻟﺒﺖ رﻗﻢ‬ ١ = ٧ ‫ﻟﻮ اﻟﺒﺖ رﻗﻢ‬

TFTP Server For Making Backup For IOS & Configuration File Sufficient Memory File Naming & IP Full Access #copy flash tftp ios.exe #copy start tftp config - Setup mode - Limited ios from rom

CDP (Cisco Discovery Protocol) Layer 2 protocol Multicast Update(1 minute) Hold down time (120 sec) Cisco protocol - information about the neighboor - hostname - vergin ios &platform - interface - IPS #show CDP Neighbors ‫ﻣﻌﻠﻮﻣﺎت ﻋﻦ ﻛﻞ اﻟﺠﯿﺮان ﻣﺎﻋﺪا ال اي ﺑﻲ‬ #Show CDP Neighbors Details

PDF created with pdfFactory Pro trial version www.pdffactory.com

‫ اي ﺑﻲ‬+ ‫ﻣﻌﻠﻮات ﻛﺎﻣﻠﺔ ﻋﻦ اﻟﺠﯿﺮان‬ # Show CDP Neighbors interface # No CDP Run # CDP RUN #CDP Enable #No CDP enable

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (10) Managing Traffic with

it is asset of instruction applied to the interface to make packet filtering. 1- Standard 2- Extended 3- Named 1- Standard Check source address only

(Config)#Access list (1-99) (PERMIT \ DENY) (SA) (Wild Mask) SA Can be for (network- subnet- host- any) for host 10.0.0.0 0.0.0.0 or host 10.0.0.1 - for any 0.0.0.0 255.255.255.255

-by default access list (all hosts and network is denied) - (deny all)(permit any) - sequential - one access list - per one interface - per one direction - per one protocol (ip , ipx) in

ou t

172.16.0.0/18 E0

PDF created with pdfFactory Pro trial version www.pdffactory.com

Config

192.168.0.0/26

#Access- list 7 deny 192.168.0.0 #Access-list 7 Permit Any

0.0.0.63

#Int E1 #IP Access Group 7 in Config #Access- list 7 deny 192.168.0.0 #Access-list 7 deny all #Int E1 #IP Access Group 7 in

0.0.0.63

2- Extended Check source address &destination address &protocol #Access-list (100-199) (permit \deny) (SA)(Wild DA)(condition eq) EX

B 200.16.0.0/28 C 172.16.0.0/8 E0 E1

D 10.0.0.0/8

A 192.168.0.0/ 24

A ‫ﻋﻠﻲ اﻟﺸﺒﻜﺔ‬Telnet ‫ ﻣﻦ ﻋﻤﻞ‬B ‫اﻟﺸﺒﻜﺔ‬ ‫ ﻋﻨﺪ ﻣﻨﻊ‬-١ #Access-list 110 Deny TCP 200.16.0.0 0.0.0.15 192.168.0.0 0.0.0.255 eq 23 #Access-list 110 permit any any #int e1 #ip access-group 110 in A ‫ل‬Send Mail ‫ﻣﻦ ﻋﻤﻞ‬D ‫ ﻋﻨﺪ ﻣﻨﻊ‬-٢ #Access-list 110 Deny TCP 10.0.0.0.0 0.255.255.255 192.168.0.0 0.0.0.255 EQ 25 #Access-list 110 permit any any #int e1 #ip access-group 110 in B&D ‫ﻋﻠﻲ‬Send mail &telnet ‫ﻣﻦ ﻋﻤﻞ‬A ‫ ﻋﻨﺪ ﻣﻨﻊ‬-٣ #Access-list 110 Deny TCP 192.168.0.0 0.0.0255 200.16.0.0 0.0.0.15 eq 25 #Access-list 110 Deny TCP 192.168.0.0 0.0.0255 200.16.0.0 0.0.0.15 eq 23

PDF created with pdfFactory Pro trial version www.pdffactory.com

#Access-list 110 Deny TCP 10.0.0.0 0.255.255.255 eq 25 #Access-list 110 Deny TCP 10.0.0.0 0.255.255.255 eq 25 #Access-list 110 permit any any #int e0 #ip access-group 110 in

Another Solution

#Access-list 110 Deny TCP 192.168.0.0 0.0.0255 any eq 25 #Access-list 110 Deny TCP 192.168.0.0 0.0.0255 any eq 23 #Access-list 110 permit any any #int S1 #ip access-group 110 Out

3- Named #Access-list (standard \extended) Ali

#Acess-ali------------------------------

PDF created with pdfFactory Pro trial version www.pdffactory.com

Chapter (11) Wide Area Networking Protocols WAN Technology 1- leased line 2- circuits switching 3- Packet switching.

1- Leased Line 1- fitted B.W 2- Up to mega byte per second Link Synchronous ‫ ﻟﻮ واﺣﺪ ﺳﺮع اﻟﺘﺎﻧﻲ ﯾﺒﻄﺄ ﺷﻮﯾﺔ وﻟﻮ ﻗﻠﻞ ﯾﻘﻮﻟﺔ ﺳﺮع ﺷﻮﯾﺔ‬clock rate ‫ﯾﺘﻔﻘﻮ ﻋﻠﻲ‬

Asynchronous

Encapsulation 1- HDLC (High layer data link control) - Layer 2 protocol - Simple protocol

vendor ‫ﻣﻦ ﻧﻔﺲ ال‬2 device ‫ﯾﺸﺘﻐﻞ ﺑﯿﻦ‬ synchronous ‫ﻻزم ﯾﺸﺘﻐﻞ‬

PDF created with pdfFactory Pro trial version www.pdffactory.com

1- PPP (Point to Point protocol)

Adv \ vendor ‫ ﯾﺸﺘﻐﻞ ﺑﯿﻦ اي ﻧﻮع ﻣﻦ ا ل‬-١ Asyn‫او‬Sync ‫ ﯾﺸﺘﻐﻞ‬-٢ NCP HDLC ICP

NCP \\ for manage packet transfer LCD \\ LCD ‫ ﻓﻲ ال‬ppp 1234-

looped line direction error detection compression (predicator- stack) authentication

Pap

Chap

1- Pap Sender

User name

receivers

password Accept

deny

2 way hand shake Not secure ( text , not encryption )

3- Chap

Challenge

User name password Accept

deny

3 way handshake Secure encrypted

PDF created with pdfFactory Pro trial version www.pdffactory.com

‫ﻗﻮة ال‬

2 \ Circuit Switched - fixed bandwidth - developed by telephone company ‫أﻗﺪر اﻛﻠﻢ اﻛﺘﺮ ﻣﻦ روﺗﺮ ﻓﻲ ﻧﻔﺲ اﻟﻮﻗﺖ‬ Isdn Switch

establish circuit \ data transfer Terminal circuit TE1

NT2

NT 1

Telecom

TE1 TE2

TE2

ISDN ‫راوﺗﺮ ﺑﯿﻔﮭﻢ‬

/ ISDN ‫ ﻻﯾﻔﮭﻢ‬pc ‫راوﺗﺮ او‬

Block Box NT2

NT2

Encapsulation Protocol (HDLC, PPP) 3 \ Packet Switched Frame relay Tanta

Cairo

FR FR

So.1 \ PVC1 Cairo 30.0.0.1 delci 16 Alex So.2 \ PVC2 Cairo 20.0.0.1 delci 17

PDF created with pdfFactory Pro trial version www.pdffactory.com

PVC1 \ Perment virtal circuit Delci \ Data link control interface identifier

Delci \\

Frame Relay Identifier LM \ Local Management interface

PVC ‫ﯾﺤﺪد ﺣﺎﻟﺔ‬

Active, net active, delayed Point to point \pvc \ delci Point to multi point \ pvc \delci (split horizon )

Natting (Network Address Translation) Static Dynamic Over Load

1- Static # Ip net source static 10.0.0.1 200.0.0.2 # Ip net source static 10.0.0.2 200.0.0.3

2- Dynamic #ip Nat pool (Ali) (200.0.0.2) (200.0.0.5) network (255.255.255.0) #ip Nat inside source list 7 pool Ali

3- Over Load ‫ﻣﯿﺰﺗﮭﺎ ﻟﻮ ﻋﻨﺪي اي ﺑﻲ رﯾﻞ واﺣﺪ ﻓﻘﻂ ھﻲ اﻟﻮﺣﯿﺪة اﻟﻠﻲ اﻗﺪر اﺳﺘﻌﻤﻠﮭﺎ‬ Ip Nat inside source list 7 200.0.0.1 over load

Cisco Model high band width Redundant

PDF created with pdfFactory Pro trial version www.pdffactory.com

‫ﻫﺎﻡ ﻟﺤﻞ‬

‫ﺍﻝ ‪Pass 4 Sure‬‬

‫‪ -١‬ﻟﻮ ﻋﺎﻳﺰ اﻋﺮف ال ‪ int‬اﻟﻠﻲ اﻟﻤﺎك ﺑﺘﺎﻋﺔ دة ‪...........‬ھﻮ اﻳﺔ‬ ‫‪Show Mac address table‬‬

‫‪ -٢‬ﻟﻮ ﻋﺎﻳﺰ اﻋﺮف ﻣﯿﻦ اﻟﺒﻮرت اﻟﻠﻲ ﺷﻐﺎﻟﺔ ‪Trunk‬‬ ‫‪Show interface trunk‬‬

‫‪ -٣‬ﻟﻮ ﻋﺎﻳﺰ اﻋﺮف ﻧﻮع اﻟﺮاوﺗﺮ اﻟﻤﺘﺼﻞ ﺑﯿﺎ ﻣﺒﺎﺷﺮة‬

‫‪Show cdp neighbors‬‬ ‫واﻋﺮف ﻧﻮﻋﺔ ﻣﻦ اﻟﺨﺎﻧﺔ اﻟﻠﻲ اﺳﻤﮭﺎ ‪platform‬‬

‫‪ -٤‬ﻟﻮ ﻋﺎﻳﺰ اﻋﺮف ﻣﯿﻦ ھﻮ ‪Root Bridge‬‬

‫‪ -١‬ھﺎﻗﻮﻟﺔ ‪ Show spanning tree‬ھﺎﯾﻌﺮﺿﻠﻲ ال ‪ Mac‬ﺑﺘﺎع ‪root bridge‬‬ ‫‪ -٢‬ﺑﻮاﺳﻄﺔ ‪ Show Mac address table‬ھﺄﻋﺮف ﻣﯿﻦ ال ‪interface‬إﻟﻲ اﻟﻤﺎك دة‬ ‫‪ -٣‬ﺑﻮاﺳﻄﺔ ال ‪ show cdp neighbor‬ھﺄﻋﺮف ال ‪ int‬دة ﻣﺘﺼﻞ ﺑﻤﯿﻦ ﺑﺎﻟﻀﺒﻂ‬

‫‪ -٥‬ﻟﻮ ﻋﻨﺪي ﺑﺎﻛﯿﺖ ال ‪ IP‬ﺑﺘﺎﻋﮫﺎ ﻣﺶ ﻣﻮﺟﻮد ﻋﻨﺪي ﻓﻲ ال‪LAN‬‬

‫ھﺄﻋﻤﻞ ‪Show cdp neighbor details‬واﻋﺮ اﻟﺮوﺗﺮ اﻟﻠﻲ اﻧﺎ ﻣﺘﺼﻞ ﺑﯿﺔ ﻣﺘﺼﻞ ﻋﻠﻲ اي اﻧﺘﺮﻓﯿﺲ ﻋﻨﺪي واﻗﻮل‬ ‫ھﺎﯾﺨﺮج ﻣﻦ اﻻﻧﺘﺮﻓﯿﺲ دة وﺧﻠﻲ ﺑﺎﻟﻚ ﻟﻮ ﻋﻨﺪي ‪ vlan‬داﺧﻠﯿﺔ وﺣﺎﺟﺎت ‪trunk‬ﯾﻌﻨﻲ ﻓﻲ ‪ vlan 1‬ھﺎﺗﺮوح ﻟﮭﺎ ھﻲ‬ ‫ﻛﻤﺎن‬

‫‪ – ٦‬ﻟﻮ ﻋﺎﻳﺰ اﻋﺮف ال ‪ default gate way‬اﻟﻠﻲ ھﺄﺧﺼﺼﺔ ﻟﮫﻮﺳﺖ ﻣﻌﯿﻦ‬

‫ھﺄﻗﻮﻟﺔ ‪ Show Vlan‬ھﺎﯾﻘﻮﻟﻲ ال ھﻮﺳﺖ دة ﻋﻀﻮ ﻓﻲ ‪ vlan‬ﻛﺎم واﻋﺮف اﻻي ﺑﻲ ﺑﺘﺎﻋﮫ واﻗﻮﻟﺔ ال ‪default‬‬ ‫ﺑﺘﺎﻋﺔ ﻣﻤﻜﻦ ﯾﻜﻮن ﻛﺎم‬

‫‪ -٧‬ﻟﻮ ﻋﻨﺪي ‪frame‬ﻟﺔ ‪source mac & destination mac‬‬

‫ھﺄﻗﻮﻟﺔ ‪ show Mac address table‬وﻣﻨﺔ ﻣﻌﺮﻓﺔ ‪ destination Mac‬ھﺄﻋﺮف ھﺎﯾﺮوح ﻷي اي‬ ‫‪ interface‬وﻟﻮ ﻣﺎﻟﺆش ﻓﻲ اﻟﻤﺎك ھﺎﯾﺒﻌﺘﺔ ﻟﻞ ﺗﺮﻧﻚ ‪vlan‬‬

‫‪ -٨‬ﻣﻦ أي ﺳﻮﻳﺘﺶ اﺳﺘﻘﺒﻞ ال ‪ switch‬ﺑﺘﺎﻋﻨﺎ أﺧﺮ ‪vlan information‬‬

‫ھﺄﻗﻮﻟﺔ ‪show vtp status‬وﻣﻦ اﺧﺮ ﺳﻄﺮ ھﺎﻻﻗﻲ اﻻي ﺑﻲ ھﺄﻗﻮﻟﺔ ‪show cdp neighbor details‬اﻋﺮف‬ ‫اﻻي ﺑﻲ دة ﺑﺘﺎع اﻧﮭﻲ ‪int‬‬

‫‪ -٩‬ﻟﻮ ﻗﺎﻟﻚ ﻓﯿﺔ ﺳﻮﻳﺘﺶ ﺷﻠﺘﺔ ﻋﻤﻠﺘﻠﺔ ﺻﯿﺎﻧﺔ وﺑﻌﺪﻳﻦ رﻛﺒﻨﺔ اﻳﺔ اﻟﻠﻲ ھﺎﻳﺤﺼﻞ‬

‫ھﺄﻗﻮﻟﺔ ھﺄﻛﺘﺐ ‪ show vip status‬واﺷﻮﻓﮭﻢ ﻟﮭﻢ ﻧﻔﺲ ‪ domain name‬وﻻ ﻷ وﺑﻌﺪﯾﻦ اﺷﻮف ال ‪revision‬‬ ‫‪no‬اﻟﻜﺒﯿﺮ ﻋﺄﻏﯿﺮ اﻟﺼﻐﯿﺮ ﯾﺒﻘﻲ زﯾﺔ‬

‫ﺗﻢ ﺑﺤﻤﺪ اﷲ‬ ‫ﻣﮫﻨﺪس ‪ /‬ﻋﻠﻲ ﻣﺨﺘﺎر ﻋﺒﺪة اﻟﺼﺒﺎغ‬ ‫ﻣﮫﻨﺪس ﺣﺎﺳﺒﺎت وﻧﻈﻢ ﺗﺤﻜﻢ أﻟﻲ‬

‫اﺗﻤﻨﻲ ان اﻛﻮن ﻗﺪ وﻓﻘﺖ ﻓﻲ‬ ‫ھﺬا اﻟﺸﺮح اﻟﻤﺘﻮاﺿﻊ‬ ‫ﳌﺰﻳﺪ ﻣﻦ ﺍﻻﺳﺘﻔﺴﺎﺭﺍﺕ ﻋﻦ ﺩﺭﺍﺳﺔ ﺳﻴﺴﻜﻮ ﻭﺑﺎﻗﻲ‬ ‫ﺍﻻﺟﺰﺍﺀ ﻣﺮﺍﺳﻠﱵ ﻋﻠﻲ ﺍﻟﺒﺎﳝﻴﻞ ﺍﳋﺎﺹ ﰊ‬

‫‪Themask2011@yahoo.com‬‬

‫‪PDF created with pdfFactory Pro trial version www.pdffactory.com‬‬