当前位置:网站首页>Rip notes [rip message security authentication, increase of rip interface measurement]
Rip notes [rip message security authentication, increase of rip interface measurement]
2022-07-05 04:47:00 【Purer than pure passers-by】
Catalog
RIP Message security authentication [ The experimental diagram is as follows ]
rip Increase in interface metrics
RIP Message security authentication [ The experimental diagram is as follows ]
Basic configuration
First, complete the interface ip To configure [R3 It simulates the spam message of the attacker , These messages are a burden for the link, including equipment , but rip However, it is impossible to identify whether these messages are garbage messages, so it is impossible to intercept them , For these garbage messages rip Other devices in the will still be loaded into the routing table . It's not hard to imagine if R3 The garbage message of is generated in batch , Its impact on the whole network ]:
R1:
[Huawei]interface GigabitEthernet 0/0/0
[Huawei-GigabitEthernet0/0/0]ip address 192.168.1.1 24
[Huawei-GigabitEthernet0/0/0]q
[Huawei]interface LoopBack 0
[Huawei-LoopBack0]ip address 1.1.1.1 24
[Huawei]rip
[Huawei-rip-1]network 192.168.1.0
[Huawei-rip-1]network 1.0.0.0
R2
[Huawei]interface GigabitEthernet 0/0/0
[Huawei-GigabitEthernet0/0/0]ip address 192.168.1.2 24
[Huawei-GigabitEthernet0/0/0]q
[Huawei]interface LoopBack 0
[Huawei-LoopBack0]ip address 2.2.2.2 24
[Huawei-LoopBack0]q
[Huawei]rip
[Huawei-rip-1]version 2
[Huawei-rip-1]network 192.168.1.0
[Huawei-rip-1]network 2.0.0.0
R3
[Huawei]interface GigabitEthernet 0/0/0
[Huawei-GigabitEthernet0/0/0]ip address 192.168.1.3 24
[Huawei-GigabitEthernet0/0/0]q
[Huawei]interface LoopBack 0
[Huawei-LoopBack0]ip address 3.3.3.3 24
[Huawei-LoopBack0]q
[Huawei]interface LoopBack 1
[Huawei-LoopBack1]ip address 4.4.4.4 24
[Huawei-LoopBack1]q
[Huawei]interface LoopBack 2
[Huawei-LoopBack2]ip address 5.5.5.5 24
[Huawei-LoopBack2]q
[Huawei]rip
[Huawei-rip-1]version 2
[Huawei-rip-1]network 192.168.1.0
[Huawei-rip-1]network 3.0.0.0
[Huawei-rip-1]network 4.0.0.0
[Huawei-rip-1]network 5.0.0.0
Now the basic configuration has been completed , see R1 The routing table of verifies whether the above idea is accurate , You can see R1 There is R3 All garbage messages , This is undoubtedly a burden for the equipment .
RIP authentication
R1【 among simple It is the authentication method of the message : Plaintext Authentication ; That is, the authentication password is clear text in message transmission , Verification diagram 1-5;
plain It means that the configuration file is in clear text , It can be done by dis th View the configuration information to get password information , Verification diagram 1-6】
[Huawei]interface GigabitEthernet 0/0/0
[Huawei-GigabitEthernet0/0/0]rip authentication-mode simple plain 123
chart 1-5【Src: primary ip Address ;Authentication: authentication ;Password: password 】
chart 1-6[ It can be seen that the configuration is clear text and will plain Switch to cipher It turns the configuration file into ciphertext ]
Now let's look at R2 The routing table for , According to the above idea, now R2 The routing table cannot be viewed 1.1.1.0/24 Of :
Sure enough R1 Of 1.1.1.0/24 Not in R2 In the routing table of , So just for R2 Also on the configuration RIP Verification is enough :
R2:
[Huawei]interface GigabitEthernet 0/0/0
[Huawei-GigabitEthernet0/0/0]rip authentication-mode simple plain 123
Now look at R2 The routing table for 【 You can see R2 There's no more R3 Garbage message 】
rip Increase in interface metrics
【 Use the above experiment to complete , here R2 On the routing table 1.1.1.0/24 The measure of is 1】
R2:
matching 1.1.1.0/24 The routing entry for :
[Huawei]acl 2000
[Huawei-acl-basic-2000]rule 5 permit source 1.1.1.0 0.0.0.255
[Huawei-acl-basic-2000]q
Configuration code , by 1.1.1.0/24 Routing increases 1 Measures
[Huawei]interface g0/0/0
[Huawei-GigabitEthernet0/0/0]rip metricin 2000 2
see R1 The routing table for 【 You can see 1.0.0.0/24 The measure of the entry has become 3】:
边栏推荐
- 函数(易错)
- [groovy] closure (closure parameter binding | curry function | rcurry function | ncurry function | code example)
- How to carry out "small step reconstruction"?
- 次小生成树
- 函數(易錯)
- Neural network and deep learning Chapter 1: introduction reading questions
- 介绍汉明距离及计算示例
- [crampon programming] lintcode decoding Encyclopedia - 872 termination process
- level18
- Burpsuite grabs app packets
猜你喜欢
Web开发人员应该养成的10个编程习惯
[popular science] basic knowledge of thermal design: heat dissipation analysis of 5g optical devices
指针函数(基础)
Sword finger offer 04 Search in two-dimensional array
[groovy] closure (Introduction to closure class closure | this, owner, delegate member assignment and source code analysis)
【acwing】240. food chain
Label exchange experiment
10 programming habits that web developers should develop
Solutions and answers for the 2021 Shenzhen cup
SQL set operation
随机推荐
xss注入
[AI bulletin 20220211] the hard core up owner has built a lidar and detailed AI accelerator
How to carry out "small step reconstruction"?
次小生成树
【科普】热设计基础知识:5G光器件之散热分析
线上故障突突突?如何紧急诊断、排查与恢复
windows下Redis-cluster集群搭建
Live broadcast preview | container service ack elasticity prediction best practice
[ideas] 2021 may day mathematical modeling competition / May Day mathematical modeling ideas + references + codes
计组笔记(1)——校验码、原补码乘除计算、浮点数计算
Flutter tips: various fancy nesting of listview and pageview
Uncover the seven quirky brain circuits necessary for technology leaders
Séparation et combinaison de la construction du système qualité
猿人学第一题
包 类 包的作用域
Wenet: E2E speech recognition tool for industrial implementation
函数(易错)
Invalid bound statement (not found) in idea -- problem solving
Leetcode hot topic Hot 100 day 33: "subset"
Number theoretic function and its summation to be updated