Radius serverini sozlash




Download 0.66 Mb.
Sana09.08.2022
Hajmi0.66 Mb.
#25164
Bog'liq
Radius serverini sozlash (1)
Aziz

RADIUS SERVERINI SOZLASH

Reja:


  1. Cisco packet tracer dasturi ishga tushirish.

  2. Quyida keltirilgan topologiya qurilishi.

  3. Qurilgan topologiya testlab ko`rilishi.

Korporativ tarmoqlarda tarmoq administratori tarmoqdagi barcha qurilmalarni masofadan boshqarishi yoki biron bir tizimga masofadan turib xavfsiz ulanishini ta`minlab berishda RADIUS serverdan foydalaniladi.


Odatda RADIUS serverini AAA (autentifikatsiya, avtorizatsiya,akkount)serveri deb ham ataladi.
RADIUS server ikki xil protokol orqali ishlaydi:

  • radius;

  • tacacs.

Ushbu protokollarning qiyosiy tahlili quyidagicha:



RADIUS

TACACS

Protokol

UDP
1812/1645
autentifikatsiya
1813/1646 akkount

TCP/49

Shifrlash

Faqat parolni shifrlaydi

To`liq shifrlaydi

Xususiya
tlari

Ochiq standart

CISCO standarti
asosida ishlab chiqilgan




1-rasm.Tarmoqning umummiy strukturasi.
1. Router_1 ga quyidagi buyruqlar ketma-ketlgi kiritiladi.

Router#conf t


Router(config)#int fa 0/0
Router(config-if)#no shut
Router(config-if)#ip address 192.168.1.1 255.255.255.0
Router(config)#ip dhcp pool vl1
Router(dhcp-config)#network 192.168.1.0 255.255.255.0
Router(dhcp-config)#default-router 192.168.1.1
Router(dhcp-config)#dns-server 8.8.8.8
Router(dhcp-config)#exit
Router(config)#username admin secret 123
Router(config)#enable secret 123
Router(config)#aaa new-model
Router(config)#aaa authentication login default group radius local
Router(config)#radius-server host 192.168.1.5 key 123
Router(config)#line vty 0 4
Router(config-line)#transport input all
Router(config-line)#login authentication default
Router(config-line)#exit (routerdan radius serverni sozlash jarayoni)








Download 0.66 Mb.




Download 0.66 Mb.