Networks Basic 5

# Networks Basic 5 ## Практика 5 ### 1) Настройка оборудования - Сконфигурировал Switch ![](https://i.imgur.com/z17qign.png) ![](https://i.imgur.com/A8NAIsC.png) - Установил Бридж-порты ![](https://i.imgur.com/g7jwXpQ.png) ![](https://i.imgur.com/FGEqmG3.png) - Настройка Фаерволла ![](https://i.imgur.com/vSGr1NF.png) - Зашел на pfSense ![](https://i.imgur.com/079Ycs4.png) ![](https://i.imgur.com/UyeniJV.png) ![](https://i.imgur.com/L4quAcL.png) ![](https://i.imgur.com/1M3Cv8z.png) - Windows7 подключена к интернету ![](https://i.imgur.com/ynmbkzK.png) - Настройка Debian ![](https://i.imgur.com/JmzCWLG.png) ![](https://i.imgur.com/eFHAgUU.png) - Настройка KALI-MITM ![](https://i.imgur.com/2SYDIzX.png) ![](https://i.imgur.com/mYvei9s.png) ### 2) Начало атаки arpspoof ![](https://i.imgur.com/vTCU0YK.png) ![](https://i.imgur.com/PReHoV0.png) ![](https://i.imgur.com/zPgBZA0.png) ### 3) Защита от атак ![](https://i.imgur.com/cdKEBuY.png) - Защита работает ![](https://i.imgur.com/thif2ij.png) ![](https://i.imgur.com/WNK1a9e.png) ### 4) DHCP атака ![](https://i.imgur.com/hdKngg5.png) ![](https://i.imgur.com/oAKHDUw.png) ![](https://i.imgur.com/1GsyjdG.png) - Защита от атаки работает ![](https://i.imgur.com/U0HzZNF.png) ### 5) Заполнение ip адресов ![](https://i.imgur.com/XkQdsYH.png) ![](https://i.imgur.com/mCcfBzU.png) ### 6) Атака macof ![](https://i.imgur.com/3JbLNyy.png) ![](https://i.imgur.com/r2i8qlZ.png) - Таблица mac адресов переполнена ![](https://i.imgur.com/iiIkyBd.png) - Пинг работает плохо из-за атаки ![](https://i.imgur.com/DI1QqOD.png) - Port Security ![](https://i.imgur.com/ZH0Ybpf.png) - Прослушивание Vlan через бридж в KALI-MITM ![](https://i.imgur.com/7M2uiYK.png) ![](https://i.imgur.com/gWKR4RJ.png) ### 7) VLAN Hopping - Начало атаки ![](https://i.imgur.com/O8Ltew2.png) ![](https://i.imgur.com/5VbBMhr.png) - Интерфейс e0/1 в режиме транка, соответственно можно препрыгнуть в другие VLAN’ы ![](https://i.imgur.com/iagKHJR.png) ![](https://i.imgur.com/aPurPGY.png) ### 8) Mac Spoofing атака ![](https://i.imgur.com/Lp3N2lx.png) - Защита ``` 1. enable 2. conf t 3. interface range e0/1-3 4. switchport mode access 5. switcport port-security 6. switcport port-security maximum 1 7. switcport port-security violation restrict ``` ### 9) Access List ![](https://i.imgur.com/v8bFEMx.png)