返回
怎样用sniffer监听交换机数据包(how to monitor switch packets with sniffer)

怎样用sniffer监听交换机数据包(how to monitor switch packets with sniffer)

ID:9294356

大小:38.50 KB

页数:14页

时间:2018-04-26

怎样用sniffer监听交换机数据包(how to monitor switch packets with sniffer)_第1页
怎样用sniffer监听交换机数据包(how to monitor switch packets with sniffer)_第2页
怎样用sniffer监听交换机数据包(how to monitor switch packets with sniffer)_第3页
怎样用sniffer监听交换机数据包(how to monitor switch packets with sniffer)_第4页
怎样用sniffer监听交换机数据包(how to monitor switch packets with sniffer)_第5页
资源描述:

《怎样用sniffer监听交换机数据包(how to monitor switch packets with sniffer)》由会员上传分享,免费在线阅读,更多相关内容在教育资源-天天文库

1、怎样用Sniffer监听交换机数据包(HowtomonitorswitchpacketswithSniffer)HowtomonitorgatewaypacketswithSnifferThe2009-09-17InanEthernetenvironment,communicationbetweentwoworkstationsisnotinterceptionbyathirdparty.Insomecases,wemightneedtodosuchalistening,suchasprotocolanalysis,trafficanalysis,intrusiondetec

2、tion.Forthispurpose,wecansettheSPANoftheCiscoswitch(SwitchedPortAnalyzerswitchingPortAnalyzer),ortheearly"Portmirroring"and"monitoringPort"feature.Thelisteningobjectcanbeoneormoreswitchports,ortheentireVLAN.Iftheport("sourceport")ortheport("targetport")tolistenonisonthesameswitch,wejustneed

3、toconfiguretheSPAN;Ifyouarenotonthesameswitch,youneedtoconfigureRSPAN(RemoteSPAN).DifferentswitcheshavedifferentrestrictionsonSPAN,suchasthesourceportsandtargetportsinthe2900XLswitchesmustbeinthesameVLAN,someswitchesdonotsupportRSPAN,andsoon,seethedevicedocumentation.WhenconfiguringSPAN,wen

4、eedtoprovidetheparametersthataresourceorVLANandtargetports.4000/6000CatOSswitches:Setspan6/176/19//span:thesourceportis6/17andthetargetportis6/192950/3550/4000ios/6000iosswitch:Monitorsession1local//SPANThemonitorsession1sourceinterface(sourceinterface)iseitherthesameoraVLANMonitorsession1d

5、estinationinterface(destinationinterface2900/3500xlexchange:Interface(interface):thernet0/19//targetportPortmonitor:the1900switch:(orusethemenu[M]Monitoring)Monitor-portmonitored0/17//sourceports(port0/17and0/18)Monitor-portmonitored0/18Monitor-portport0/19//targetportMonitor-port//startmon

6、itoringWhenconfiguringRSPAN,wefirstdefineaVLANtypethatisRSPAN.OnordinaryVLANifthesourcehostandthetargethostareonthesameswitch,theydon'tneedtopasstheTRUNKunicastcommunicationbetweentootherswitches,RSPANVLANneedsontheTRUNKforwardsuchcommunication,toensurethatmonitoringmachinetolistento.Onthes

7、ourceswitch,youneedtosetthelisteningportorVLANtoforwardtraffictotheRSPANVLAN(ifyouarerunninganIOSswitch,youneedtosetupanotherportasareflectionport);Onthetargetswitch,youneedtosetthemessageinRSPANVLANtothetargetportoftheconnectionmonitorhost.IOSswitches,s

当前文档最多预览五页,下载文档查看全文

此文档下载收益归作者所有

当前文档最多预览五页,下载文档查看全文
温馨提示:
1. 部分包含数学公式或PPT动画的文件,查看预览时可能会显示错乱或异常,文件下载后无此问题,请放心下载。
2. 本文档由用户上传,版权归属用户,天天文库负责整理代发布。如果您对本文档版权有争议请及时联系客服。
3. 下载前请仔细阅读文档内容,确认文档内容符合您的需求后进行下载,若出现内容与标题不符可向本站投诉处理。
4. 下载文档时可能由于网络波动等原因无法下载或下载错误,付费完成后未能成功下载的用户请联系客服处理。