NO. 26 May 20 12 • Price Free • www.networkset.net

r
k

First Arabic Magazine For Networks

:cLhjjii \jn Jnho jjj-Qj

REAL

Co

K PROTECTION

ity Solution

Active Directory

Administrative Center

Sudo Command

Super user do

Network Scanning

I" mm £L — —

„' '—I mm.

22 oe Da

ie at)

°° °0 OD

a i rl i tr\ II jLoldJI jj_c JbaJUl

Upgrading and Downgrading
CISCO Access Points

OJpJlJI cLcj-llu fQA^UI

U j9p O_oq t i in ^

j.! A ? ' 1 OlQ-bJ* u"

vbi ji uo

folsJI olfij

(jilaj ^-*j UJ^& A f 3 J ^Wj*^ ^llill J-^ u^j ^j^^ (JjAji Jc- 4 all j AjjAaII <ja e_ij*ji Lq SjIc
cLjIjI^-joj cilLoj <ja Las djl^ikj cLjIjI^juj <ja ^aLkjuoVl e<VjA aLl^jLo (_gjt ULi^-lj CjI£jjoJI ^Jlc

Jb Jc jia^jU Jjlj Cjbl^ill ^ Ja c^UaJ ^ <jIa^JIj jaVI J A-jllc Cjbl^ji l*UaJ ^ ^£Ja j CCIE

Ujj]La c_flljLjJal (J?J)\ JA ^ jil 4-* ji*-A]li I ^Jjoij ^-S jjoj ^AjI jikj AjLa j!»-a U^jLojjV I jLa! jA

UJ^ J 1 *^ ^^*JJ AL«J J J^ ^ J J^ J>^l W^J .^Ujl*^

Igic IjlLau jjS^ ^kll jl Ij^ujj Jacl Vj iil cjl U^SI Ijjf^l f*j5£i ,^*j>J

jj) <ja (iUUi (jc j 4 AjjLi Lajs (SLU2j (jcj 4 Ajjiai Uua ciljic » jc (JLuoj Lajjc ( . \\ uiaJI ^ jj La ? La La jj

! ! !? <1 -a^Jl cIa dj^j^ajj ^Llla dli ala (Ja ( " I Loj3 dllacLa » i* LajS i " ^ *<~- Laj t ^ \'ia\\ Uaj3j 4Jnluj£l
i Vvn'n <_j.il Ui (j^Ull SJieLu* Je jJllS JJC CjI jLaj CCNA S^l^ jA 4£ial (jjlll <_£j ijfr* CjIjU Ui

.(J ^ ^ "jVI u * ■) Jc LgJalLjl (j-a (JILaJI I^A J a£a a > a jjoi j Ujlicl i ■ lie. I Lg A e^A (jj^kVI S^cLuia

^ '-^ cs^ j^^y J° ^1 ^UVl jSijj jjj^jU j^Aj t> J^i J&\ cS^XkA\

LAj ^Hail Jt ale t-_ajjoba dla>^al (Jjj <«lll jLailuiVi j 4JlaiVI Jc. 4jL^V! J <iLjaC.Vi (3^^"'
1 g tjfil ^^cLoilj jJj^.Vl S^cLoia Jc jjlS '-'•'< LiU SiLg-iuall e^A jSj J jJ ,CCNA o^l$-" jA

CCNA tuJ > jjL Alp l^^ljj jV! ^ CA^1\ J >U ^ <jSj ^

a]Loj j Lr iA C5 S1jj J <Lj jj JUa J£ jju ^1 jVI ,r jiaJl Jj 4jIjSJI J 6JJA9JI (jjJall ^j^u < Ijj Ajjjj

^ill ^LJI <j£jj jA oIjaaj JUj iil Aj>j] IjjI 4j£jI V Ulj AA\ Jj^jj jjj^II jjklllj L-J jLoVb jI^jj!

c^IUa U jfklj 6j! j^l ^ jjj^II iwu iili 5 <jjU^j < 3^LiVl c> cjj^jI Ua Ulj lijL^ VjS ^ll^SjSl Jlj^j

cIjI jS j]j IjSjV ^ Ij^. jj jx-^kxi (j^J IjA ^aj 4->LJl laA e-ljj La Ij^sjI Ujiklj <A\\ lA j jj - jjjJa

^iSaol jLo Jc jjj j - ^ o (j^Jj ^Aj^.1 (JjLujj Jc jjj ^JJ <aK (j* JJ^I ji ^Aj^.1 j^j Lajjc UU^t

? jjjUII <aUJ ^^k^ jj£ jC JkjJj Aj^jj^ajll (JjL j-o (J^i IjA ^j^sUj Vj Laj ^Sl\ Ij^-J Ijj^s ^JaSa

Q) NetworkSet

www.networkset.net <jx, y*~~ Sl^i^jLq duj&& Slu^^i^JI SlKjq NetworkSet SlKjq

II 6 J ml

* *

cLLoidl pJLa oJ-lC ■ ■ " Jl -LLC.,o

44

^^^^^

^^^^^

a — £jj ii q : ^j-Lq — II ^Ij-^k^/l ^ t q^VII

JjXtLojjjI (jl Q tr> : qI I (£9^ug ( ^ j jMjqI J^Sjjo

KJI

3

® NetworkSet

Issue 26 -May/ 2012

Active Directory Administrative Center - 5

l$Lu ^Li^U^fl aa\ ^Loj IDS & IPS Jl 3u>j£ijl ^Lo - 10

3< i.^i II AjjXO J-q-£ (J^Ijjo - 1 2

Sudo command: Super user do- 15

Upgrading and Dwngrading CISCO Access Points - 19
virtualization Technology Jl ^1 n ^oJLc. <_JI Ja^o - 25

3ll^LL^JI JL^ftl- 30

; 1^ r 1 ii7< - 32

forinet 2L£ y£i J >j>qj - 35

VOIP Jl J^l 4>o .*■?<».*. 3jl^jJ .-.IjUA. ^^j^ - 41

IPoE 5 PPPoE Js^s^s^ - 46

4

QjNetworkSet

Issue 26 -May/ 2012

(ADAC) J^ojJaj

Active Directory Administrative Center

Identification

jJI AJLb < s >qLlu

YEMEN

linn mi

Jjqjlj LqaIc LuLSJj l^LIqj ADAC _JI ojjuq LL&9

Domain) JbjdL jol^Lo ^Jl 2US>j Server _U
S)jla£ dLu^j ^>1aaJI ^>q ^9 ♦ (Controller
Li^jlg t Server Manager _ll Feature
SUa^ S>J ^1 ADAC _ll aiL^I QIaaJI ^>
Enterprise dJUJI ^IjIa^L ^^Jg Windows 7
3iL2al asu buJa I.L&9 , Professional , Ultimate

• RSAT _ll

Jjjq ilnill SjqJ^j^/I ^lc I iflKlg LLsi^j IjI l9ih

j^Mlui Server 2008 9 Server 2003

JjlLiJJ 2LLlJ ojIJ Jat I9*jlKL^j I^jI* ^HiAJI

j^^^ ^ (Active Directory) <u.v.n
♦ Active Directory Users And Computers _ll
Windows Server 2008 R2 ^

k , Windows Server 2008

Active Directory 1
Administrative Center

I

_ll ^ Jg^gn Ig^n ADAC _ll ^Jl J

9^ ^ic 9 # Administrative Tools

<jx ojLx ADAC _ll (jl ih^Mluj oj9^JI

♦♦

cLol£ OjLcl JLLqJI J l lnl ^lc J-Q-SLJ (J I cL^lfi *lic

Active Directory _ll ojJoj ^ cu a\s*«\ Lo 1^9
ojx LLo l-jUoIj ^111 Users And Computers

^jq^jlJI Jjdidlg ojIj^I A<**i\\ ^IjJjq ^lc Ji^j

Active Directory _ll £j>Ja cu 09^9^
fjLoIll 9i^ Ldl 9I Administrative Center
Active _ll lJJ SiL^^L LaJa) ♦ (ADAC)
^9 . (Directory Users And Computers

^ ojUr ADAC _ll 0' li* J^^J 0 1 Q^aaJI

_ll SjlIqj ^lc LjLj) JjCLLflJ GUI S^OQnlJ Sjfc^lg

_ll ^lc L21J ,09^ ^jI^jl^j ^1 (^Iaaj PowerShell

jjolgl ^Jl SjloLLII ^ij jO^jIj LujLjI ^yfc ADAC
djaAidLj jqLlEJJ (Cmdlets) _IL Jijslj Lai 9I Sju^j

♦ 3 «jiUnii

Windows Server 2008

Jaaa oa^l^lo ADAC —II <jl Jg£luj Qaa R2

I*j Windows 7 ^ ^19^0 Liajig W2K8 R2

_|| Lu^j ^| q.U?..>. ^ 9 . RSAT _ll .Iilgjl diiLal
Jlo a£jL*j JjL^iu anh'.L Jajij o>i^I ^Jl ADAC

Windows® 2000, Windows Server 2003,
i Windows Server 2008, or Windows Vista
iiiljl^l ^lc ADAC _ll Jjla^u Liijl
Standard t ^9 W2K8 R2

# uko Enterprise c Datacenter

5

Issue 26 -May/ 2012

^9 ♦ Computer OU LoJ 9 User OU _ll Jio

ilijl jO^Hj SLlajlI^uj oJ^gJ jLoliJ cLoLlal { j<^^\\
LlU^g jLojJI cU2i^ ^Jl jjoIujjq J < mi i JjqLszUL

La£ Add Navigation Node ^ jnill £j>la ^

*oj (jjog Sjlajl^jjlII oJ^gJI .1 Vig ojQtrJI
Liu I J^^LLaj9 < < cLlJx jogjAjjjcdl jjJI ^Jx jiLLII

L^loL^I ^licg t L&jjq L-tj^JL X _ll cLoMx jj ^Jx

List View _ll ^ ^^i^ Tabs _ll !>l* ^ jinloj

♦♦ ♦♦

Ja£ ^>1aaJI ^9 ♦ Tree View _ll ^ L^ilg

OUs —II ^uio (jl^ 9I ■■ *j ■ ojLcj 9I ouLcl
o J9 ^J| ^ AD AC _ll ^ AiLiiAJI

>(M >«» J>1^** 54rv-:« » Owriwp

iteKtPasswwd

. QjQt^l 1 ^lc^fl (JJLAjJI ^Q^Qfl II X —II JJ

Getting _ll 2LajI£ 0^" Jli^JI Jju^j ^

^>JI ^ j^aJI X _ll jj ^ Started

** ^ f ^ « *

3jqMx Jjaxg Add Content jj ^lc JoAJaJI

, f «jlU^ II ^q7^q II ^Jx

ddLAJib (JX cLoIx OjJaj HI |OAQJ ADAC II Liftg

^ j^^aJI jJolcdl (jgLuij ^ ^Ulg Domain _ll

♦♦ ♦♦♦♦♦♦

Active Directory Users And Computers _ll

jLaJI ^lx jq^qaII j-k^fl Tap _ll <J Lc jiiULig *

.tj^jn II jJajjaJI (jgLoj jtVifl II Lj*iic (jg^ini

♦♦ ♦♦

Active Directory Users And Computers _ll

♦ djJHJI QJQi^ll Lo£

®Q Global search

v.- ^. :, -.^ ^

Lj jLllII ^i£ 9 . Lljjl^i 0' o^Ai ^ SubOU _ll O^J
jaijl List View f^l ^> ^^Jl SJLijkl

tjjjui OU 9I Domain _ll ,o^i ^ ^Ig 3>o
^ OU _ll 2llqj& 111 u 2a>siju 1 j ADAC _ll 9

^LqjjJ^j I^Ving l<T>75?nigj jcIj SubOU —llg ^^^^

(j^jx ^9 * Windows Start Menu _U cuLi^q
JaaJI 9 J^lg OU _ll jLill Aix c List View _IJ

j^jj La LojIj ^<<^t |j « Iqq..«^< LLLqx *iic

Objects iiiQjl^ ^ix ^9^1 LLILqxI

—II ^i) OUS ^1*1^*" ^1^9 (J-0 dXjXLLQ9

M^ru^ll .-.I ^ 3 IIJI^^IIJ :; .. <0 l^,nnmain

6

Issue 26 -May/ 2012

assword , Add to group , Disable , Move

£1 ^y&g , Delete , Properties

♦♦

jjJLj Uc.X II g| jjLjjiLj SjlIx j£UI 9I p A^LlOA II

^piiu Ja5lj i^'< Properties jLlllg jjaj^l

(j^^ oAiLi LLqLqI ^IqjLaJ i^JJj JjQ^/I

♦♦

Active Directory Users And _ll ^ ojg^aJI
. aJliJl 5j9^Jl J11a^9 v Computers

I

I

j.^»q|| u^'i.^^q . (JjlajJI ^icl Tasks jj
Active _ll u^<^ Sbiu^JI J^Ja ^h: 2LLqI^ j^tv;

Directory Users And Computers
mslA .-Aji.^ki ^11*9 c Tabs Jiii ^ jdi&j

j^qio 9I jLojlJI ^Jl cLojLS dxLla^/g A^k.^W

(^IajlJI 2L212JI ^ Add Section ^ Uo.v>ii

^9 *A^k*s\ II ^ ol^^ j-kl HI j<Til^jg ♦ ^99^

♦♦

_ll &^ ^ K * ; (jgL^j 9A9 Extensions

Active Directory Users _ll ^ Sj^^aJI Tabs

♦♦

^ir J^iuJI ^>1ajq cUMii ^9 And Computers

♦ ADAC —II ghlnfl jfliA r> \Q-NQn j,cll (j^^l.^^ II
(jjQ c j inl ir o jx 9I jirur (jx lIl^j Jjqjlj Ajp LqaIc

Active Dfreeto... <

LU

Obbal Search

r i nn Miti(hitt*1jWiirtir1irTii 1

(~~ UBi^hnbiiiiiM^i^Q-fMrdjcndavlvnwirri
<#■*! WAV «4 flrrk

-LCU

^^l'* XjQ.yy II { k | _U| ^JxQ OJJ3 jjj

MRU) Most-Recently Used) _ll
^LLa ^'^1 ^ ADAC _IL LoJ L.ai£ ^9
Joj>^JI (^aj breadcrumb bar L^uJ i^U

^ 1 1 o7 I I 1 Uv I I ^jjQX ^jjJXLJ ^JjQJLJ ^aJI ^ I « *s\c\*t I I

jLoaJI HI 9^9 Windows Explorer _U

^qIj jl JIaaJI ^9 .vt^^H Object _U M*L£
j^lk ^lc 'Uq.aIi ^jjJo <jx Domain _ll Sjuq^l
breadcrumb _IL ^ Ia^ 9I ^JLu^lJI Jo-^iJI
(jx (J_l£jq OU jLujq jj^j ^jl (J^qio 9I c bar

3jlaaJI jo^^I 9 I LDAP _ll jUq 2ulK

♦ Sj9^JI ^ La^ distinguished Name

Dgtihi tiij Ji l
lMS'rf|l|.J , _a**JTll3

MA- /-":■
|l*«-TT

t

41

1**

**.
{Ml
r:w.

f:-v.

V

b
B

HtttfatM4f QtAf fee p^j
Vta^mriu hm -i-whi -zrtf

=1

L l>)or: ti^T^rjr'Wr'

"T5SRS~

-■■ i»' -.1 .. . j -

■ 3 *r

(J I J^Mj (J I gJL^li-LLJ ^JL5L0 Jir^WI LjjLl^l 1AJX9

joLiiAJIg c Summary Panel ^^jlIIIJI 2LajI£

^ La^ Task Panel _ll 2LAil£ ^ ^jJoj a^L^JI

♦♦ ♦♦

■o.t^TniQ II (jx (jnMio LU jjlJoj ^y^9 cLlJLLII qjqi^II

L Active CHrecto.. £

I LU

LABS-IT w

1

-|u -|®

t Wat™

* 1

1 -™

1 1

UH

1 L —

HO

log V'

r /u-r-iiiri J

^ic LuLlLI ,jl ^ajq ^yjl joLiLoJlg sami
Reset Jia Tasks _lf ^ j.^.«h

7

Issue 26 -May/ 2012

£liu J^l Jjq Queries ^??ml ^lc Uo^h 3

o,\ni 19 a^ijI ♦ Llj |09aj ^Ul cUjq^jlJI JLqx^/I LLlLc
dill pLij (jig p<^l/jr \Q ^jLl^j „ p<..«oM i

^ oj^^aji uiooai oearcn ^lc jillii ^>^aaji

♦♦

JLLqJI J 1 1 ni ^jLc JjqjIlj ^-^9 ojj^jq jjLsla

p^~u..>^ Enabled ^>J.

^ jLa£ L^jI ^>1ax)9 Locked aE!**

Convert To LDAP ^ 0^*9 1

LDAP _ll Ja^ ^l>i |ol jjiluib Jlnff7,.i^
oj^JI ^ La£ JliaJI Jjl^uj ^ ((LADP Syntax

I lt*Mt LZ*T M-f JW/ TYTt«. hcfc

J±J

(j,^ ^7..,^n Jl£ Domain _ll ^ a^ii ^9

♦♦ ♦♦

(jgLoj Job Title ^9 sami ^o^M o nil <>jaJI
2LjLL^ dJLnjL^ J 9^ iiiLo^bLcJI (Jjq Ajjjdg . Admin
^JUJI J^jI>JI ^Jl ^jLlUI LDAP ^iLqM^I

http://technetmicrosoft.com/en-us/

♦ Iibrary/aa996205-aspx

Jax ^^IaaJI ^>q Normal View _ll ^£9

♦♦

Global Search twvRud

Tasks

□ |

f 1 [gun

Itarc Ivpc | Owafflar

j.' j Art

8

Issue 26 -May/ 2012

Netw

Magazine

rkSet

First Arabic Magazine for Networks

v>6 fouftUuq Li_S2_o CU\J_cl £j6
Q^^^''o Qjjj_c cLL^o UqI cLijI J-oJ-luIq jjqJaJ

clLoLuj q ; hv'i - foulq jLiiuJI

i"il ^1 i'i \l I £j_0-3 l_LLUl_U H Q l i -S c CUJiLcl fO j_2l

Issue 26 -May/ 2012

IDS & IPS Jl onJail main

c c

I /nil i Q

•••

^ Ml III

<L»La^JI

♦♦

^ui ^laj^aui aibiiji ajuUji aiLJi

♦

I^Jg^j Lljlo £5 9 ^Ul *U^I ^j^j aUUJI dJbJI

<JX I cLSLu^g cUjL^-qI 9ft LAjI £9lH ItlA JJLAJL09

♦♦

Su^Luagj oj9^ o*i&9 LjIaJI

IrtttrnH

IDS

Switch

/ \

La pi op

100 0 1 1QQQ19

101 1 ?3

(jJ LjIaJI J9JX 9I JiiiJI dxjjjj (j I Lioila <J9^ * " 1 1. \ 19

IDS jqUoj J 9 I ^ 1984 ,oL: o>o J 9 I ojjgloj

1-Q9JJJ9 jjg kliogj-Li 9I jjgjjL&l ^q^qci 9^9 1 986 joLc

1hni9.ll dJgGlj joJ ^Q>^Qci Jglijl ^9^ JliLoJI lAiL

* * * ♦♦*♦♦*

(jx jgAj 9^9 "il <<■*<! I . .I.^> ^9 |qL^ cq-'-^q" II (jg^

c Liu^gLog c |QS Jl "aa!^ IPS Jl rtnhil

I

S IDS Jlc^Lo

ojLc 9A intrusion detection system 9I IDS Jl

tliLujgjjLaJI ■ il a ajlliIij q ■ l^>" ^jln^> follaj (_yc

lILloIjUI (Jjq ^^-« < « JLjjI J Mil (Jjq SL^LiUI jjx
Joflfl . I j-i o II J ■ KVII _lc djLujLuj^l dlaJag j^jZig djJj
^lujl&l LuLua^i ^Iaj Rules ,jl£ bLalcl .JJjg
^Jl iLL^^Li Lan^ AiLLlLj J)9^j Lai L9AJ LlIjIjxI 9I

(jlAjjJIg ^LjjgjjiJI (jx 4I1LQ9I5LQ (JQ^I iliLiLu ACI9S

ijIiuQ j9^j ^Ulg ^9^jLq J1j ^liJI Signature

j09oj^ cul joUolll lAiL julsjIjq (jUg iliLjUJI ojxLo

♦ **«■

9^ cU |QQn iLq Jlii iliLtigjjLfiJI Ia^ oL^jI JjJli oJj (jL

.JJL ^ ^Jaiij ^£9 .a*.<ii ^1 ^jjtf^ detection

♦♦t

^Jl (j-jgjjLiJI J^J IjI jjlqjLajI ^9^ IjLq j^I |oMl-J9

0i ^91 ,oi5Li o' e^i J 1 ^ 1 ^ 2L ?^ 1 5 2< : A "

1

OJJ j^AJI utJJ o-^goll

10

Issue 26 -May/ 2012

132.1 63.0.2

192,168.0.1

Modern^
Ruler

ethl

Hub

IPS
elh2 10 001

192 169.0.3

v —

$ IPS JI^La

Intrusion Prevention 9I IPS Jl
(Jjq ojQhfl ^LLuij 9^9 Systems

jogiL L^^iiLjg 29I Detection , nnKH
Prevention 2LLl5lq J*i Sjj linllj
IU Sjl^JI ^LU Drop Ja£ Jl*

♦♦ ♦ ♦♦ ♦♦ ♦ ♦♦ ^ 1

10.0.0.2

liJjLflljliJ IPS JjQ-fcj J iy nil joliij ^lc cUju^Ij jOJ j-19 kl1.Q9.uj 9^ Lift joUojJI (j I ^-SLq J^Mj Lo£g

ill** I I **

JLjjL |09aj (j I LAjI jgih^nng cLSlLoj <jl gj^Laj 9^ jh^ II LlLfiljUJ SuL^L-j^fl cLqjjJo 9^ Lz^jI OJJLA-1L09

t * # 111

ojjJLa (j^^ J SjlLoSLj l-lclq A09 jjgJjLb ojjfc^lg jjg ringni £cjoIjj LojLuj lZjj^a Lo£ l!jIjjqjjujjJI oAAJ l^jL^lg
9A9 Snort ^tjj £joLjj-j Vinilg cjlajiag-ll o*iAj jogiLj ^Ul £loIjjJI <jjq j 1 *K II ili.i^Qn lIijjIj^I ^lc

oAifc JIaJ LojIj ^l^-jI LjI Iflihg (jiKqi 1 1 19 rinQmg^jLo cLoJajl ^lc d 1 nrm (J^^ j jAuOjoJI ^g*ino ^qLjj-j
diLa^L jL^JI 4— il mKoI (Jjq lj 1 i's iMImTnil^g ^hjh tliljIiJ J-a£jg Ijnniin (jii^gn I dalVil ^Luli^l

^jqLjjjJI J^-jIj liAAg ojjlLi Rules Jjla^j LAjI gjhTnilg ^-jKq ^jqIjjjJI Isthg (JjqII LaJig^ ^Jl

♦ ♦^Jlg ju\q-\ (Jjq ojJl^jg 3Com <jjq ojjU^lg q<..«<^.* <jjo ojJl^l lJLL&2> 1*1^ ojja£ Lz^jI ^yki jjgJjL&JI Lol

S oji31^^l OAifc £lgjl J^Jail J 9-^ cUJjCLgJI p <V<jl ..m ^jLojI

Jjjq j<..^..^t 2tuoLi <LjjLj O'j^ 9' ^'wH9J Lr^ ^^^99 (oUolll 1 Module ^IjjIi ' Vi< **

and 2800 3800 1841 S>J ^ ^HJI Module Jl

11

® NetworkSet

Issue 26 -May/ 2012

yLbliu

in ii ii in

EGYPT

ahmedsultan@ciscawy.com

J ^-0 *K inill (jjiiu ^Jx )9^9%J ojjl^J <UgU^ J nnQM jQ^J 9I dJ)Lo SjlLxq S^ini lLLLLqj ^/ LLq (Jjq

tj^su ^9 culx c Iq;-'" II Joii irj^ j ■ '""I d^LiULc lil&a alji^l a ax Jijxj ,jl jjq^/I ■ -dlalj (jL^I

Penetration Testers Jl 9I ^Ijii^l LiaJ .uqj j^fl la* LIU a^IaaJI J>jsu ji ajp oL*2l

J 1 9ni7 II djalojlg cK inill q^q^qq II ojJl^^l jjx <-QjJLi <jl ^/gl ds>j\\Q II 3<i.?«M jLlL^I Jjqx Jjx

♦ jli^JI ililj^lll jKjQ 2Lflj5LO cLuLJ ^Jx 1,1 nl jlrt^ J£ ^Jx O J^^aJI illLo^lLII ^Jl djLfcill ^i) J-uOJ

^-jlgnir (jni I Pg^gjaJLo a^ulii! gnio Jjqx <jx di^i^ju Lqajx , 2<« AM Jjqx lILLq jIIqIj J£

gnlQ II SjlLoSLI cUjjlLJUJ JjJjjQ iliMj A^i^J Lfrio 1 jglbjoJI (jlajjLlI - i^n ^Jx cUjjjJalLLQ J^IjjQ ^jJI (J^Jg

^ S^lg J£ ^>x A*^r. Qxj Network Scanning, Port Scanning and Vulnerability Scanning

Network Scanning - 1

Ja£ s.a.<i iualUI ^Jiij&Aj aj.idl TCP ■ .'U.^-.i

la 9I Three-Way Handshake

AjaaJI j9auo ,euiij2 J9^9J9>dl jajufi ^ jjj^^l

:JI AajSLa Liajlg Flags

JL^u^l laaJ SYN

JL^uI^Jxj^U ACK

JLJI ^ ^LiUiii JI-jjI Ja&j ^9£j PSH

oj£ljJI i 0 jUaljl (j9^

Stack Jl oj^lj J ^aiJa iIlrjj URG

a Lo iJjju ojjiij J jollaj 5 II

Jja£ ale 9A L^jJI JLlo <-i>BI (ji/l ■ -JJoJI I Jul JAAJ9

f Laul JajJ Ctrl+C jijji ^Jx Uo.^ii >;. . j^i

JL^u^l *L^il ^ilk aix r >^" FIN
ACK ^^liJI _j -iui' ^Jx £ : ,oli jl uoj 9
i_JJq (_Ix dxAl9AJL jii^l Jij^JI l_l^-> (jl (jl

flAj^l

Jj^Ja ^> JL^ttl ^L3lj)( p-t^-tn RST

j.k^/1 <-QjJaJI (Jjq d^lgjoJI jUoIjI ^jgj A^lg

|y o pi ^qVoo jL^JI JjL 3xjjlq ^VKq 1

2Lfij5Lo (jlajAj SL^ijlilJ JjqLIj ^jjJjq Jjqx cLj JQirtn^
4I1I9JI a^L liJJj Jjqx jai-19 LJL^ cL^glLaJI ojj&^I

^jL^jqJI ^qLjjjJI L&jj&j2j|g ^loaJI

Angry IP Scanner
cu2 gninll ^qI>j ^il5Li PING Sweep

<jl «i_bj^ 9I ^lluq» SjujjlIIj L^LLslo LlLLslo Jjq-5lj

djQilg Sweep 2<« AM JjqI£ ^nio Ja5Lj iluciB lILjI
(JX SxlajQ 9I OJiL^^I lUijL^ I jl dXJJLaJ

JO9H-I (JjQ 9^ ihtin ^9jl£lqJI jI^-n IIq ^UJU SJLuJJ JLujI
SJLjjJI ^lc Jj-lb JQ9H-1 ^ ^Ivnllg jjJI JL-ujLj

192.168.1.0/24 aiiAU J^t aIt JLLq

Scan Goto Commands Favorites

Tools Help

IP Range: 19216811

to 1921681255

IP Range *

Hostname: Ahmed Sultan

,tlP (

Netmask ▼

& Start

IP

Ping

Hostname

Ports [0+]

#19216812

0 ms

Reception

[n/s]

#19216811

0 ms

[n/a]

[ri^s]

#192168111

4 ms

[n/a]

[n/s]

#192168.1100

0 ms

Instructor

[n/s]

©192.168.1254

D ms

[n/a]

[n/s]

« S # i f

(Uc jI ^jJljL^JI 09^i 0' ^• ' t ' l 3 ojj^^l

^jJLf ^9 fe 11 ^ J 1 ^ |Q ^ T '"J

t>o jkl a^9J ^IJaJ ! <ul ^ ^kix

L^JMA (Jjq ^jlJoIujI ^lljljJI i ilh i-bMkj (Jjiil 5xjjJ^

12

® NetworkSet

Issue 26 -May/ 2012

<jl oIIslq RST _j JinTniflll jL^JI Jj IjI

Xmas Scan - 3

J-lS1llLqJI jL^JI (JjQ

|^H| FIN, URG PUSH

^Hl ^ No Response

Attacker Server

10.0.0.6 Port tsopen iacx0 . 8:23

Attacker

10,00.6

■

Server

10.0,0.8:23

: FIN Scan -4

FIN gMiJI JLlujI joIj (j^iJI (Jjq ^9lll

J in7nlQ II jL^JI (JjQ JjJI jl tVTifg

Attacker
10.0.0.6

Server

Port is open 10.0.0.8:23

^91ilq jL^JI

Other Scanning Techniques

: (TCP Connect (Full Open Scan - 1

ICMP Jl J9^9J9j-j (J9^j (j I (j'sq 1 LBjLj 4I1I0 LaixQ
-j ^ I ^ ili^L JLjjI £jjJ^ (jx culc JLlL^/L J09BJ

SYN Flag

SYN Packet + Port (n)

SYN/ACKPatket

^ •*•»■ ***+iini«»ffff||| If II »IIIIIIH«MllliM«4 ItlflfflllMmffM I *■

ACK + RST

^Mi cUjul ^lc jjJI pLi IjI cULJI oAiL ^

SYN /ACK

ililgh^ i^oL jL&^JI Jfl^ 19 £$1Lq l!jj9jJI (jl oLLslq
jL^JI (jl Jjjx cul (^^19 jIjI IjI dUL^gj 9I JL^j^fl

(Stealth Scan (Half-open Scan - 2

ihnn 1 ilhll JLjjI ^Isloj ihnn JL^j^/I < Lnj joIj £ 9III I Aft ^£>

JL^j^I J^< ; ^9 djJx JjJI jh?t 19

^9^1 aJLJI

SYN (Port 80)

SYN * ACK b>
RST

1C.C D 2 2342

Port is open

Sheela

10.0.0.3:8C

)aa jl oQiLo Lu* SYN/ACK -j Ji£I^dl jL^I jj IjI

JL^j^/I |qLcljI jIIVmI ^09 ^9*l£lo 0J9AJ jI^-n Hq ^r)7no iIjj9±JI
(jl J-lq JLaj^ll ^L^j^I RST JLajjL J-ljjjqJIjL^ II L^Lp

JjjJJjqJI jL^JI 9A (JJQ J in7nlfl II jli^JI 1 A.^i7<^

:^IUI aJLJI

4»

SYN (Port SO)

BUI

10.0.0.2:2342

Port is closed

Sheela

1O.C.0.3S0

13

® NetworkSet

Issue 26 -May/ 2012

* ♦ ♦
A^lg (Jjq idjL^ ^Jl Jg^jJI JgK 1 ni cLjLa (Jjlaj^/I

POrt JjQX (JjO AJ^ jL£ idjjjg AiLLoJI oAifc (JjQ

cLoAiJIg An i oil jOjqj ^yfc cL^jLlj (J9^ (i^-" Scan

(JjQ ^9lil 1*1^ JjQX |dj9 LlJL^ cUlc QjQ^Qfl II
^Aj^s.^iIq A0I9III £jjJjO 4I1I9JI (^JJ-b (JX ^mIQ II

J < n 1 1 q % 3^j^ j 4 ^aJI s^qTA* oIjI Nmap SIjI

d i oqhij Sjk^lg Lk^jl cdg jjolgl jhni (jx ojLlc ^y&g

♦ ♦♦♦♦ ♦ ♦ | * A " II** *♦♦ I

£ f

jW\Y\g ojJi^l cLcqq^o 9I (JJL5LQ ^lc AoLLoJI
■AnloJI jOjqj SJjufc ^lc (J9^j ^Ul (jn^nll Sj^jlu
dude Jjo&j ^jlll SjQJ-a II jo-tulg ^9*1 no

•ioLLdJI ^jjJjQ JjQX AJX OJJ&LLaJI S^JLLJ II J *N n 1 1 JLLq

192.168*1*2 0>9^JI^

Startin
2012-04
NSE: Lo
N5E: Sc
Initiat
Scannin
Complet
total h
Initiat
Complet
0.11s e
Initiat
Scannin
Discove
Discove
Discove
Discove
Discove
Discove
Discove

g Nmap 5 . 6
-04 12;2G
aded 92 sc
ript Pre-s
ing ARP Pi
g 192. 16S.
ed ARP Pin
osts)

ing Parall
ed Paralle
lapsed
ing 5YN St
g 192. 16S.
red open p
red open p
red open p
red open p
red open p
red open p
red open p

1TEST5 ( http://nmap.org ) at
Egypt Standard Time
ripts for scanning,
canning .

ng Scan at 12:20
1.2 [1 port]

g Scan at 12:20., 9.26s elapsed (1

el DNS resolution of 1 host, at 12:20
1 DNS -escluticn c- 1 host, at 12:28,

ealth Scan at 12:28
1.2 [1889 ports]
ort 445/tcp on 192.16S.1.2
ort 139/tcp on 192.168.1.2
ort 33S9/tcp on 192.168.1.2
ort 554 /tcp on 192.16S.1.2
ort 135/tcp on 192.168.1.2
ort 2S69/tcp on 192.16S.1.2
ort 18243/tcp on 192.168.1.2

: SujliJI 2ULJI

Vulnerability Scanning - 3

' oa*IaJI i hi nil i qLIll^I SJj^jjo J-^g ojjl^I SJ^jjoJI
|OjaqJI L&io L^jIj^I < -Lui^ ' oaJaJI J^Loj ^Jaslx

Jl^Lj (JaJI l-ljA^JI Lfrlog ^^O'^ ihiii iJjgjJLoJIg
ihijj II oAiL < * *«< £jqIj_j j^nil dalnn^l 4I109

Nessus 9A

j^i^q ^mui JaIj ji a< : AM

Attacker
10.0.0,6

Server

Port is closed 10,0,0,8:23

£ £ £

(jl 9I jiJ iijj9_j ^lc JL^j^I JLujI cujjjiij |OQn 1 L^ljL^g

NULL Scan -5

^9^1 aJLJI

TCP Packet whh NO Flag S*t

Mo Response

I ,

Attacker

Server

Port is open 10.0.0.8:23

JL&^JI ^JLLILg ^9jlLq l!jj9±JI <jl oLLslq IAi^ jj J-uoj joJ I Jl

_ ♦♦ ♦

aijiui ajLJi

TCP Packet with NO Flag Se:

* •

Attacker
10.0.0,6

R5T/ACK

Port is closed

Server
10,0,0.8:23

£ £ £

(jl 9I j-kl l!jj9_j i^Jx JL^j^I JLujI cLjj^Lj 109AJ I<t>i 1 ^9

Port Scanning - 2

£ ^ # £

Ojj&^f| dLQjSLQQ A<t*t\ \ JjqLIj ^jjJjQ JjQJLj tHiAQ (jl A5LJ

^ii jl^l £0521119 jLjlL^^{ 4I109JI (jL^ cL^qVoq II

joLbJicj oj^IaJI jo^g ^JLslqJI Sxjj^j J1a SI nnlnl
^qIj ^/ ^Ul J nnln7ll (Jjq ojjlc ... 9 jQA^IlliaJI J iynii II

J

14

Issue 26 -May/ 2012

- 1

LsJMii (Jjq obi

J 9^1 (jl gJL^Loj
^Jx (JJLC Vlnlfl

root ^Jl ^II^j ^LuiiL |Q9£j o' JjL^iiUI (qL&j

root password . ilh i

S SUdO Jlo (jjiil Jjlgjl idllL Ja - 2

switch user ^iaj 9^9 su ^q2I Mia \xA*

SU ^HJI £j>Ja Jx rOOt ^1 ,Mmn 1 J92J ^

^i^m.^ j< ^1 o : U7..r t ^| ^HJLg -root

JjjiLi Lq L2ijI ^JQa joUoUI ^lx *Llu Lq Jssu <j\ 9 root

jL^ilL ^9 roles, and authorization

ljo«U7 t .i , ^| Log cU Iqoqo 1 (jl lgc«U7 tt i , Log jjqjjujjJI

S su jol J^l sudo Ja - 3

SUdO J Mil (Jjq Llojlg CU9JLC9 cuIJjljQjq LqALq JU
(JjQ Jabi^l (J-U9 0L5LLOJ 9 SU jjqI .\fm (jl ^jJoIloj
lIUIaj jLaliLg Lfcj^f SUdO 9A cUjJx^IjJqj cu^g

(jiJI etc/sudoers/ 0 flnn configuration file

ViSUdO >02l JMii JiQ cdj^liLLl jQQ^J jl o^U7. gj

^ jO^uJI cUjIIaI >I : Uq. <u2 jiiil la^A ^JUJLg

♦jllI clLslq ajp Lq

jac (jx ojbx team Jl (J9^.\ a,t>,,< 3^ <jl ^

(JQ^Ifi ,(jjL52jQ P^jIj (JX (JjJqi nlfl I) jljij^/l (JjO

Oracle database team, and Unix Mio lUIL*
Jl g^JLj »a<^3 Administrators team

JjlAiIllJI joLLqjI JjUO (JJL5LQ p^ali (JX JqImIO U9^J

privilege cu^^La <uaJ J9IJ 9 ^LjUJI axloi 9I

cULi ,djJx JjQ-SLj (jaJI ^nh7l) 9I Hall I IjbL ^Jx

Jl lILLLoJ (JjJI jOJ^jLoftJI (j-olilJ II 9I Jl

JjlIj^IJU root 9^ J : q^" ,oll^ ^ JjL^^LdJI

Jl .oUoj

Lq cdliiiiQ dJI Jjl^IU I Jl ^UoUl Jx JjJgi^Q

1 JJalLLQ I) 9J& OJnl5? I) jjQ (J I J lA^J gJ IqjLaJJ (Ji&fi

lIUaJ Jh^ I) IJul £jJLaj cuJx L-i^j (jAJI 0^9

■oAJ-^I (Jjq j mi II do K ^Lula J Lola I 1 nK i IAC/n
^L^jgAa (jIjoj ^Jl jJaLLoJI jjQ L^jjLXg L&jjLXg
JjL^^LdJI Jl dliLoj root 0' l^J ojli Jajl LLa <ja

,J m.^Tnin I) ^Jx tliLu^LaJI oAiL ^jgJi ^ Lolo

printers ^ root jjLpM^ ^jop <ul

^Jx cGLL^Ma^9 JjjLsJI j I) (JjQ dXQQ^Q I

(jjjLsdl jiin.iVinifll) (Jjq clcqo^o I hard disks

MIq dJull^JI ^ d HjIlq IjI cdbJI oIl J1q

Lr> 1I9 Ijll ^Ml^I culx (jjog 1 jj-loLq II Jjq lajsu

• jo^^/l Jjq Ll>lx9 hard disks

£2>

Make a sawoU'ch.

S0OO !

What? make
it vcxk5elf.

/

/

oiaJ aj)9J l^iL (jic cLajLo SUdO oj^i

♦ ♦♦

15

® NetworkSet

Issue 26 -May/ 2012

S sudo package
S sudo configuration file ^ JjAaUl ^ 5

^ 9 cui lHj^LaszUI culilj ,09^1 ^ ob^L ^liJI JAaM £1aj>oI 9^ visudo JMii <ja 09^J ^

: ^JlUl* lxlLoJI la* ^ entry Jl^i
Username/groups servername = (users commands can be run as) commands

Username/group

(JjQ dXQfl^O (JX OjLlX ^yL (^Ulg grOUp 9I Jjolg^/I OAA Ainlj ^0 A^LuaJ JnlQ l I) |P nil <JX OjLx Q(T>0

wheel'A JIjo p ..Il i jx L&jjuojL] LlJLB */♦ cuLLlaLj jogiij group culll Aic cul Jo^^ (j m.iVinifl II

Smith, Mohamed, Ahmed, V-samba, V-apache

Servername

^Ulg (ALL) LfrijL^j t n<*i Jlgji^l L-iicl Lift ^yfcg entry Ldulc ^11 1 hi toIjUAi ^ill ^IjjdjjuoJI ^Iflnil

j<ii ^iWj entry Iaa o 1 (i 1 J^J'

file £dii ^i?* S^afch JermiiwJ yelp

Sudoers allows particular users to run various commands a &
## the root user,, without needing the root password.
##

## Examples are provided at the bottom of the file for collections
## of related commands, which can then be delegated out to particula
users or groups.

This file must be edited with the "visudo" command.
Host Aliases

ft Groups of machines. You may prefer to use hostnames (perhaps using
## wildcards for entire domains) or IP addresses instead,

# Host Alias FILE SERVERS = fsl ri fs2

# Host"AUas HAIL SERVERS = smtp P sntp2

## User Aliases

These aren't often necessary A as yo
UU (ie, from files, LDAP P HIS, etc) in

rather than U5ERALIA5

# userAlias admins = j smith, miken

can use regular groups

his file - just use ^groupname

f# Command Aliases
7etc/sudoers.tmp M 107 L p 3531C

La^jH ^Ul ^!>Uiai]l <ull£ <u£ ,0!; ^.Ulg SUdo ^liJI .nloll

16

® NetworkSet

Issue 26 -May/ 2012

Commands

^JliJI o' 1^ p'-^-i; Mohamed ,09^ ^ mount ^HJI y>W ^ Mohamed

<jx JIqmiI) (J9*1j jjq^I Ann (jl ljJjI I jig cU dinIM) jjjoJI daK <jx cUIq.im joUoill ^90 in SUdO mount :

♦ dju^/l <dio2l ^>L^j Lai ^Uj J*Li NOPASSWD 9^9 entry ^Haii lIL cu^liJI >^JI <uil£

: oIj^I ^911 cdio^l (j2i5Lj gjQ j^lg

Mohamed ALL=(ALL) ALL -1

joUoj ^lc root Jjjq >;-^l cul (jl SUdO A5Lj cuIIj jjqI (jLi jqLSJI gjJoL^iJ aa^jq p .%V?..i/»H <jl LlLLslq I.L&9

Mohamed ALL= /usr/sbin/visudo, /usr/sbin/mount - 2
Mohamed ALL= NOPASSWD: /usr/sbin/visudo, /usr/sbin/mount - 3

file £d»l View Search Terminal Help

root ALL-(ALL)

ALL

## Allows members of the 'ays' group to run networking, software,
## service management apps and more,

# ^sys ALL = NETWORKING p SOFTWARE, SERVICES, STORAGE, DELEGATING,
SSES, LOCATE, DRIVERS

## Allows people in group wheel to run all commands

# Wheel ALL- (ALL) ALL

PROCE

## Same thing without a password

# %wheel ALL=(ALL) NOPASSWD: ALL

## Allows memhers of the users group to mount and unmount the
## cdrom as root

# g ausers ALL=/sbin/mount /mnt/cdrom, /sbin/umount /mnt/cdrom

tdown this system

## Allows members of the users group to shu
# g dusers localhost=/sbin/shutdown -h now

hikal ALL=(ALL) ALL

ahmed A L L= / u s r / s bin/ visudo f /usr/sbin/mount
mohamed ALL= NOPASSWD: /usr/sbin/visud

-- INSERT --

■

17

S> NetworkSet

OLiu ill ll Jl^o

Magazine

^ NetworkSet

Q nn *Vi q Qjjj-C Olrio Jqt

i' iIA, i ill II JL3-0 O^O

TIT

oo^pJ cmj-c fqpiu) Jql

■ ■

Q i i Qi H q a iqIqII ^|q_oJ|

Wiki,NetworkSet

6j_3 Ojjj-C cLcqjjjq_o Jql
If* ; ill ll Jl 7 o \jJ> cuojclqILq q

Qjqj^illq Q II mill i jjaLb foaiLO

Issue 26 -May/ 2012

Upgrading and
Downgrading CISCO
Access Points

Identification

U in i O II J^U

j**! i^K I I ■ p tna ^ jiwa J J ^ I I

EGYPT

^Jl Standalone ^^Jl ^ ^ili^j gnm^l Jjg^U
^ (J .«<oii j 53^^) jjul^LJ 2bkbJ) jj aj Lightweight

downgrade 9 upgrade ^ULn:

Cisco Aironet 1250
Cisco Aironet 1240
Cisco Aironet 1230
Cisco Aironet 1200
Cisco Aironet 1130
Cisco Aironet 1100

AG Series Access Points
AG Series Access Points
AG Series Access Points
Series Access Points
AG Series Access Points
Series Access Points

^ 21 lightweight J^aj ^ Ja*j 2 0)^21 9

oAA (Jjsx |p£Aj jJgjUS II <j9^-| 0' 9 J^9J-^ J 9-?9

|Qjlf) , i 1 1 (j i hci i II JjQ-sU jL&^JI Jg-^j (j I o « g
jcxj (JJjq 9 jL^JI £gil Lsllj lIUj 9 Jjh lh7og

JjqVi II cLlLqx ^Qnn 9 jLl^JI (jr i Jjq Vil) I.L&J g£

9 Upgrade JjoLUqJI ^Jl .%jk\«\\ j^aIII ^

Downgrade Jl Lol

Cisco Aironet 1250 AG jl** jlo Ha J aLali - 9
^HJI j<.mi oljj ^Ul 9 Series Access Points

1

2.4-GHz radio antenna

4

5-GHi radio antenna

I

Module slnl 0 < 2- 4 -GHz radio module show n )

Module slot 1 (5-GHat radio module shown)

3

LED*

6

PC cable sccurily slot

(Jjq l1lLi9_i (j»'"»<^l ojmVl gjQ LilLoL5Lj 9I lILjIj-iIj a\c,

JjQ-5Ll ihfll 9I (J I <-OJ-5LJ (jl AJ^f L^JJLC 9I

9^lOJUaJ ^fi jliL^JI >hfl I Pgj di)J_$LQ jOJLJ 9 jL3l2jl dUfl
JOAJ (jX OJJJJjO "LAP" 3 «l< II j iVo'i'n CLL1J9JO |Q-ujl (jjO

AIR-LAP1252AG- Jjj^ ^ La£ lightweight
<j£ Sjisia "BR" 9I "AP" an"KII ^jIsj 9 E-K9
La£ autonomous 9I Standalone 9! IOS JoaUI
AIR- 9 AIR-AP1242AG-X-K9 0^9^' ^

BR1310G-X-K9

o^U?..i" q<..,^..i (jja "inji !j <^fl ojiL^I i—JLc 9

Lightweight 9 Standalone Jasj ^jl

Controller- Lo 9! lightweight £1^1 LaLo
ojii^l ^ AjalsLi ^Ul .-.!<.. mi ^ p ^"- ...» Based

Standalone ^^Jl Lol

^.l.xni f ^jbdi s^gji 9^ IOS 9I autonomous 9I

tligjuJI 9 ojjl^qJI lIjL^JjUI ^ii &a±1llu (jaJI 9 1 19J

duo p<^"; jiil jL^J cL^L^JI (jg^-j

^g^J g Cjljga y.t^.tC^fl jjx ojLjj SjlJLqI^^ IjJoj g

juv^iA/nj Lightweight ^Jl Standalone La^r^l

SJ-LuJQ jL^jI 1 JLc tlilox I ,\ <T> I q oAjJ^ cLuIjjuq

19

QjNetworkSet

Issue 26 -May/ 2012

ElMimfi.iid riiii' | mi

FV Edit Fwmat Vkhx He%>

^ ^gjiiui ^ Telnet ^Lajl J:°""; ,oi

Management>Telnet-SSH ^ojUI J!^

jJgjTW II ililjlAcI 19AI9J (jjQ a^LUL joiS

TFTP JLojI J£^( ^ 9I Ja*j Jggjjli
Cisco IOS- Jj9^UI obi £aLj}±]I ^Iiu

LlIjj ^Ul ^jIjUUI ^ ^Ul 9 to-LWAPP

♦♦ ♦♦♦♦♦♦

I

* i /

10.9. 4.131, CISCO, CliSCO, ClJCQ

■ AP IP address, Telnet
username, Telnet
password, enable password

■ Hardware-specific file
image \

■DNS not mandatory when
using the utility, mandatory
when using WCS

[||[4 S I 3 1 1, Ml

dm. \ u*th\ 3 ***r

if tf> *d**n

MM

C'HiWlosiirQljfv^l^ - ~~ 3

E- | BmMHi|

(jjo ji£l cu lxlLq goiaj (j I o^u?..«~« IP File SjLUI -

(JjQ jl^l SjlSjjJ |09£U tllljO^J (jilnKI (JjO Jjl^^f IP
(J9^_l lXlLqJI lAA 9 4I1B9JI (j 1 1 0 I ***** I9-J (jiImKI

(jilnKI (J^ 9 ^jLkJI J^nl II (JJJ Lo£ tXt ^l^-J

>^ 69^ >^ £^9^ ^9^

♦♦ ♦♦ ♦♦

lUiL enable 5^9 9 telnet jjo^L 9 .a^jl 9 IP <j'9^

ap-ip-address : te]net-username.te]tiet-usei-pass\vord T enable-password
a p- ip -a dd ress ,te 1 n et-use rna me , te Inet-us e r-p as svvo rd , e n ab 1 e-pa s s\v ord

y'"'^ J 4\r\\\ II IOS (LLllLJ Jjla^Ij jO-S

u^lidl TFTP 9 lIL iL^liJI .IlLi^j

jQj j^l TFTP jjqjjuj ^lqLjjj (Jjla^Ij jO-Q 9 1 ^qLjjjJLj

start J**^l 9 ai^iUI Jill

oijj^ui jiAJbajLSjiJi

• 1 r 4 r j. ii*d :-*» •v/fir' 1- •• — ■*.—» nvijt -n so (hi ft"

LWAPP ^1 IOS Ch> Jj9^UI

5^9 ^Jl Standalone AP Jjo^j gJol^

^jJa Upgrade Ja£ (jl Lightweight AP

♦♦

9 CISCO lOS-to- LWAPP Jj9^UI obi IaaaJ

j 9 ^lj9 ^ Jasu j±sua ^xjlj^j
(jja WCS j "j ' ■ ■ ' pi '^"■■■j ■ 3 '*■!■ 11 ciiLijJaJI 9

♦♦ ♦♦

* ♦♦ j

CLI jjolg^l cL^gjQ pl t^V.^I 1 daJLllI LqI 9

»»

GUI cLujjqJI <-jl;9-II ^^^'q pi djuljJI Lq| 9

£1^9 ^Jl IOS 2^9 (JJ3 iIiJ-19-l (jilnK^jl (J-IQ^7l 9

^HJI jiglj 0> Aili LWAPP

JiLl ^/ tljj «Q J < j.«..t<^|l J 'P"n |oLHj Cj9^ 0' ^9'

JA 12.3(7) ij*.

^LkxoUl (jjo (jo^j <j I WCS jiijjjjj UjLj

J£'^l 3.1

J£2I ^ 3.1

o«U7..« « /j >i i \< Console , q jI^xI ^LuL^jqI

Ajji .dJ jj dJ»L2i^L autonomous g^igJI Ja^lII

Layer 3 LWAPP laHi

5J

Gku SyitBins

Campdry: 'Cisco Systems
Ffe Vftrsien: 4.1.10Q.1332
Date Created: (K/OS/iflOS 06:17
See: 2.9^ MP

Upgrade Tool

v3.2

?j rr,1 linn wt tunrn r , mrri ff no j> rir< ftt^fiiManltumliTi.iJM^IiJ iimli 1 ml.

nllMiiniiniliil h> 1V iwwn m«h pc-.if» «^Jf um

J

Upgrade Tool

■flit 1 04:CCi^3G b&W>^L«kI14wieA: rut, br-irtj r*£ns l*>: r*±.o <3 is in aehin di-titl* snstj

SjJllJI /'iIqU^ II 1 ^2 \ tQ t ^j*i**t<*$\ 2jl2jU 9

^rj^ptj-^-liflj^jJ^. FwA | pQ^ BT - KtOrifiltD ilVliftfl PS"Br- IO«C

^IrCFROIO-S-tFDOWfi L Lro sto-LocgI cn Interface IktilPadjol. ri-orcBd rtdta to up
fiV&-&-LJ0CClrOC=r.SrSftI5r;P: Lpiei^ to hsst 255 r 255, 255.265 ita-trsd - CLI iruu^ed

"A. LW: -b -LliW.liD : [nierfacn lk:Vi1SEodk,Dl . chtrcnJ U? ad^imst^dtj vslb *»"

KLIrCPHUIO^Kmnm: tin* priAecal <n Int*rfjc* DstllPfdl t)l, c^ts^ tfl^iu \n <itm
M.HflFP-5-CHflHtn: LUPPP chnnsisdl itote to CfG

sa u*P-5-CHSfCED: UHflPP ****** st^i:^ Ll. fi>#l

HUVP-a-CHOHTll: LUPPP ct-^r^t «t«t* U» UP
XLIhK-3-LPinm: InterfoDO Datliffadlc.], c^o-«cd ilete ts ^

JlLW*P-3^a_[C^lTEl^LTlTLCGt Re.=eiuEd HP SysiDj IP ffclai-flis (255 . 255,255 ^255} rjanflBJura^.Lan T

-r-.|- - r -.-i ••- - r. - r. r ~L :. - - • -i — - •. >

a.Xr»:-3-i.J > J)CH , ii Ir--t*rf *s* PatiViMltel, e*wted i.o

^l^cmrJKP-^-UHEW: Lim ^fiVKil InwrF*e* PstilRMliol, ehtnged Htwu w up

>

T

:lT;*J5:bi:iQ:6o

0 6 r (SO h DO m DD f

Enable' REG 1

* ** *♦ ~ 7
^ij (j9^-i (jl 9 l^«"«^> LlGj^j ^Ul 9 SLuaiijj II

pL^-ul ^ J£^/l ^ >l9jiKil "subnet

♦♦

dJjjg iIaj jolio-j SLkjjjj (jj'9ri *^JJ^ 9 SjlSjUI 3 1 Lox

20

QjNetworkSet

Issue 26 -May/ 2012

9 ^JgjiiUl ^ ^ Iajj ,<u Lightweight AP u Jj^iu a±su iLojUl JUISI ^

** * ^ s ******* # ♦

■ 1 1 i ■ * I i ■
CISCO

Wiroloss Control System

Add iirtonofflom Access Points"

f 44 l-H-mit Ttp-t htm lrf"o

3

3

*

TitM'rinml

■ ■■■■

L*£ id on

Limited standalone AP support
starting with v4,2 WCS

wcs -■■ aj-iiui aLijkji

9^ Wireless Control System >q>ju*i
9 a : <i...N» a<..r.n ^ jabdi i0 i^i a ji

♦ ♦♦

IP ArJdn«5 Type Status

10,9,4.133 Autonomous AP Acld'jd iucc-Jiilu ly to WCS

J

«j

□ nam™ J*™*

LP

Ml* la; tt-JQiv

Ty#r Hotel

Itr DHf SUUf J*™'

JtadiE
thahui.

l~l to H:l7iH:b9:lf

:<M Lfl.'J.-*.] Jl

».••..; •:

Otm* *

♦♦ ♦♦

9 Linux Red hat Jio ^ijnj,.,,n jLolo

Windows Server

JliiLIal joj *iEi cuJLj (JaJI 9 4*2 jIa^^I ^jjq

LsllL J910II (j^<>; j$^9 gjQ standalone

jjdjjulJI IAiL J Mil (jjo L^jjI jI joj dul Laj 9
upgrade IaLlSjj LlIq 9 ^LLosdl (j^lj L^Jx <jl L*ojI gjJaluxji QjLo

JLajI£JI joB joj Configuration > Access Points ^ J^jJL jo£ WCS jjqjju^J 2Uojl5jJ( Jbiu^Ji ^

^Go ,oj Autonomous AP^L^L^G^JIjL^^^I

OK |OJ /^i 19-j y^*^ j Lqjq L^jjx 9 j9jjqJI ~t\*%\< 9 ^ « 1 |j.i..i<^l ljLjLlj JLiuL ^00

Configure > Migration ^ LWAP ^Jl cOjlSjj Laujp gJol^ ^Ij^j y-^Vf' ^ WCS ^>5lLi 0' J >?^

GO 9 Add Template _j jo£ joj template

\n\\\c JjqjlII Ajp / .111

Conlrollcn
CDfitraller Ternclates
Cftflfifl Crabpt

Access Points

Access Point Templates

Migration Templates

Chakcppinbs

Add Templflte.-

v CO

- Seledr 3 mmma nd

Delete Templates
View Micnatpn Rtport
View Cgment Status

Migration! Template > Template 'Migrate*

f.rnr r-j-1

tl|iqrailr Up-llDirt

H«4jin AP HouNam*

DNS MUrtS'r
Don**-. Namo
( u-iitrullrr UMinlv

us-tr H jit*
it tp nniAiU

TflF Svrvnr IP 1
Fil* P*h
hi* Njn-rt

C nft£i-l

H.ijr^tt

fjEnabkd

□ Eh«4l*d

□ En-sbkd

10 :*.4 Lu

15 -9<* 29

in 9* to

T

You cmi ■jpp'i' this- tarrfWp to convert Che ]OS*Pr rnerMqod &> WCS or by •mporbng the fric cjrttar^rtg [OS KF mtVrmMrtwn ir»* wen torm-ri

if

21

QjNetworkSet

Issue 26 -May/ 2012

^ytonomcui AF Jit

■ ."ii.vr.l

|f I

1. 44 ill

■i*J I'" - r, .. ... ?

Once added lo WGS,
standalone AP can be
convened to LWAPP using a
template

**

Convert -oj L^ajjj

jJgjIi^JL JLtOJ^L WCS I nl

lLi^j (J .«..t<Sfi « 9 TFTP server _» J : joj

jQtlQJ (JJLLJ 3 ilil ill JQ^IA gjQ J iQ^Vll i jOgjij jQJ

II* iN-Jilir h h S^lm Prc-grr-..

IB 1* 1J]

ft

r tfMiJ?.WI L!» »JT H bL:IMj IIM.kl) tlZ^ii mnLirwl

*

slhM iljgj^ ale 9 SULosJI 1 1 lIIj iM

clLqx lILlLc i La i Loj

♦ ♦♦

♦ ♦

IOS ^1 LWAPP ^>o Jj^UI

^ .1^1523 oasu Downgrade Ja£ <jl Standalone AP ^Jl Lightweight AP ^ LhJ Jj^^lll gjoi^

Mode -j; 2 9 i

♦ ♦ ♦♦ ♦ * ♦ t e

ale ^fl lIU J jo-u 9 djLfl ojq^qq I) S^nii II JjlL^j -q7 i (j I <x I iq Vi aIc AJ^f cULQ jJgjIlSJL Jo^iiQ l2j J jg J ( j.»..«<^)l (J^f

Mjjq 1 250 . Vi J9-J (jiiin<^l £jLLo jb?. 1 Llj^aj La^Lo *i^gj (J*UI 9 mode jjJI ^lc Uo.^fl 9 txhkAxj ojLcI

i

*MVK £ ETmEPSET 1

6

1

E)t

pouur c^nn^L'ior i -56 VDC

3

Console port (RJ-45)

2

Ethcrficl ppri (RJ*45)

4

MOPE button

InFr-i-iirf Prntcif**! [1! i'/DP) Pr'fif rffl-m

General

JJKJ

Youcangel IP sprigs dSTfTicd-sulcroAcdly f p?Ji nelwail- snapcils
iNs cnpdbit^ Dlhefwise^ jjou need to ask ynu nrlwnk admrcli^cr; \a

f~ C blan-an IPadries: siiamalK.jlj.'
f* Usei ihefnlDwng IP addies:

IP«h**B- | To ilT

Si^ielrnask

0 z

I 5S5 . 295 »S 5"

[: flail g-Hcv.,>,

r

Lse Ihe^DlDmng D^Ij sctsti addiessei

Prewired DNS ssvbi:

AA-intfiE DN5 server.

Advanced.

am

Eancsl

TFTP server 9I SolarWinds free TFTP server Jio
Iaa cd lIIljIj ^ ^1 Ja5u ja£ joj recomnnended by Cisco

" yla 10.0.0.30 - 10.0.0.2 Jbudl

o i U7../; 9 TFTP jjdjjulJLj ^j^LkJI .iKq II i^sc.Xq ^ j
25d.-c1250-k9w7-taM24 Jio ;<i.nm 509^ ^>q L^Lla^j

JALtar

22

Issue 26 -May/ 2012

Cisco Aironet 1 250 Series Access Point

Eipand Ail i coiu
Lalesl Reie-a-ses

12.4.1 Qb*JDA3<GD)
All Rfli*as*S
12L4
12 4JY
12 4JDA
12 4JA

Release 12.4.25tJ-JAl ED

Release r*tf*s fer 124{25<ivai

r Me In J arm alum

Rctooie&aSE

VilRLLCSS LAIi

t1HO-iflw7-UiM24-25d JA1 lar

1S-AUG-»I r

wntaad

A«|g cxr

c1200-k9w7-tar*default for a 1200 series access point
c1 1 30-k9w7-tar*default for an 1 1 30 series access point
c1240-k9w7-tar*default for a 1240 series access point
c1 250-k9w7-tar*default for a 1 250 series access point

(LLloLII (jL^jQ jLlL^I gjQ TFTP £jQI_1J_1 (JjLAjIlLJ jQA jCJ
J 1 9 nil jQ*1C gjQ JJQ I Ifl^ IL hliJ )9-J (J^9
<UL^ ^Qfi Lq p^jll y-ll dl^LLU t -LS J Lift 9 illijftJ (j.t..»<^fl

L-i^j cuLo POE jjx SiLbJU (jAijo^ cKinil) JjL£

' (° 9 ^jL^-« j-lc ^LoL^JI J-Ej |Q<mj u"n jQni ^pl.t Vint)

3750X 9^ SjIoslII oAtrJ (jVi iQnt JJoijI 9
*L>*£]I JjL^iu ^IjjlcI *LLjI mode jj ^ J^a^l

j a Vi ^yLi ^Lutj ^j9jMj 9I (jgjjlic oJjqJ iliijgj (j.«*.»<Sl f

LED J^LJ^J y <N' ^il^Ij^Q

23

Issue 26 -May/ 2012

TFTP 9 Console <LiiLii ^dJj ^jl^ 9 LuLla^j a^...:n ^ ^ j^ji ^

Tftpd32 by Ph. Jounin

Cliirent Directory IQATF TP-Rod*

Server interface 1 1 0,3,4,10

Tflp Server | Tftp Client

Sysbg server | Log

viewei

1

peer 1

file

slaft time

I progress

bytes

10.9.4.133:49237

k

<c1240 k9w7 ta .

1H44:OB

3%

520192

3"

C1240 k<Jw7-tar.default to 10.9.4.133

File size : 55500B0
5201 92 Bytes sent 28839 Bytes/

Controller CLI -'■ iujlUl aSjiiaJI

TFTP server

^JLUI l-iI^I jOJ CLI j >gjVt<[ I Sju^UI ciuLjJgJI ^lc Jg^jJL

♦♦ ♦♦

24

Issue 26 -May/ 2012

virtualization Technology Jl

Pill II (II

EGYPT

^1

«™ I.^U.OMI oIa Jib ■-.!<.. Ml ,oJLc , _lx Ji lsllj o' LLd£ LolU (ViJWIg 0 niln2l

Senior System Engineer ♦♦ ♦ ** w ♦ I w w ♦♦ \s W V «♦

^ ^bd jju^ J£*u JuLiw JilSJ JLiill jdbdl ^fl .M<;AH O^A^JI

llllllllllllllllllllllllllllllll Switch or) <>] ajIaUI ^ ^2 . LalajLLog LaijLu^g Lai^u /M< ; .MI

^LqLqI ^j^^io ^1 jjq ajJjL^iJI i^qIqXvii ^L: ^ (Router or NIC or Cable

♦Uifl jJ^Hj IjLoi) JLlLIXII L^aJaHUI Lfcjl $ lIUj . ni<

♦♦♦♦♦♦♦ ♦♦

ljL^jjIj <jx j-lqju iliL^jjUl J pQ ; (J^9 A^lg j;?9j <jjjLuj^/I cLlLAjJI L^jIjjqjjluj JiJj

♦ iIiljjuQjaJIg Ll^9 ljt<?ll ^0 (Jj-^l

0*

i .A

u b w» t *j

lo u

3^>j ^UU ^^idl ^ a^j^JI ^ ojjuqjq VMware 2£>i (jZl

^^^HBPjE^^B^^v H ^ tip? 11 1 p9 m ^oJix

Jj^qj LojIo ihiin c\ 1 1 1 Vi II
Cisco JloajLL^lJI

VMware ^Ijjqjj^j Jib Ja50J Nexus 1000£jl1Aj Switch Jasu ^qI£

VMware L^ilg ^KiAJI ^jIa5lq J% & Firewall Router Ja5u ^uqLS ^^ll ^^^9

VShield

Ll^9 I9HUI ^0 iliKini II L-^gjQ K 1 1 2L^H iliLEL^ oax ^jjq SLLloLu ^uIaj 1 9^ Ijll LULEjq 09^!

VMware ^ir ^

25

Issue 26 -May/ 2012

d 1 I 1 Vt II LjL^g lj«<7fl iljKlnl I) gjQ JjQ-5LII L-jgXujI (jr fl OjJLL^ dlnl'l I <LjL1i2j cLJjL^lJI l!jL^LiUI (J I Ljj^j La£

( Switch - Router - NIC - Firewall - Cable ) jlittl ^9-1 Mio

ojjJji SjLA^gJ) ililjjbj II JiJj jjg <"tng..« <jx ojLx ^yfc LojI ShiqqIo jjlx ~«l *iq<^ II oAA J-£ SjJLplJI

^juj^I CHJ <9>JI (^9^

Ll"J HP I i"n! 1 1

tdaptn-L

cLlLl^j dS ini I

♦♦♦♦♦♦ ♦♦ ^ ^ |

d inifi^ dS i mi I

Iu-lLJ p 1 i

7

N

VMware Host <uk jl^l ^ui ^j^SaJl Ah^i o' 6^ ©j 1 ^ ^'r 7 " ^' > >jl**jJI ^ ■-■»<;■*■" 5 >£i>

(_£jJLa Switch 3 ^ '"'"^ lIIj^Lj lIIi^j^ dJLO

^jKJL J~~" ajlLl^j ^Lij9J9 Switch Ja£ ,<uj VMware host J ^Uaj ^9

Cable ^^jjia ^ (jSjLaaJI Switch J^IaJI jijJu.iJLj ^LJI

JL JLLaLo 09^9 Virtual Machine Jl LL JLoLLII Jj^luJI JuJiijl vmware host Jl ^ ,oj
^AjliJI jdLaJL JLaj^l Virtual Machine Jl ^LIAjg ^a^gil ^9^1 host

jL^l ^ju^

Vmware ESXi Jl ^^Ic ^^Lpa 0 »^^n j^-- 11 j"j . 0 SwU» ^jKJL JjIIj J*aLa Switch
^Ul djua^gJl ^Ljj9jJI J Mi. <jja Virtual Machine JL J-^"- ^ya^g Switch ixLc Jaaj ,09^9 host

Virtual Machine Jl ^ Sj9^9aJI iLuajagJl ^19^19 3u

Virtual IVl

VI Hual rj wo rk

VI r 1

I awllt:lm*

Adaptors

r--J 9 t-K/v*^* r ^ 1

SjLLplJI aiiAJI ^ (j^jliJl ,oJLaJL Virtual Machine Jl jLajl ^gkJ J^ii

ji^l Jac 0^*9 Virtual Machine ^ ^jgij ^9^9
VMware a±z "■'<■■■■" ^^£^(1 ^1 ^Lqj^II 5Aa

26

Issue 26 -May/ 2012

Vir T i i, il I I I it ti H ■!
rn.K 1 ~-h 1 nt*-

< I I | ■ I r

per virl i

VirTiJ.il -.wile li pc:»rl~. F >c-r I it

\fiw T i ii i I ',wllc ti lion's pt*r *,wil( li

Virtual switches per host

LJplinks per virtual switch

Uplinks per host
Vir 1 1 ji 1 1 -.witc I

port groups per hosi

f^yslcal gIOOO Ethernet
host

apters

**hyskzal B

m Ethernet adaptors

■r host

Physical
host

1DD Ethernet

JVl .i k I

-4

u rn Nil

IOI6

5 1 3

32 ( maxl m u m t ested >

20 (maximum tested)

( m ax I m lj m c

: jli^j Vmware ESXI Host JI air ^jgliJI ^ 9J ^

■ VM Network - 1
VM Kernel - 2

ij£ 5jL£ : VM Network

VM JI L&j J^qIj ^Ul .ijgj^JI

^l ^9j£JI ojL£ : VMkernel
SAN and ISCSI JL L&JMi^ (y> J*alj
and VMotion and Management

Virtual Machine ^ju J^jjjg Host VMware

VMware ^ ^Liu^l flop!

(Virtual Stander Switch (VSS - 1
(Virtual Distributed switch(VDS - 2

Virtual Stander Switch

lg jjqjjuj (jg/f nio ^lc JjQ-5Li Switch <jx ojLlc gA

vCii".

-.-fHiL :

( ■ny.it:iil/Vlr rural Sw^U:h

VSS ,1

27

QjNetworkSet

Issue 26 -May/ 2012

Virtual Disturbed Switch

Virtual Machine J£ Jju J^jjjgVMware Hosts ^^jqjj^j 3^ ^ Ja*j Switch ojLs

let wo i

i — i

VDS m» gi'^Q*! QJQi^

(j olidl gl ^jliJI ^> Jg^l ^ o^liJI Lq ^ VMware ^ Switch £1^2 u — ; lxu>5lj i^a

VDS Jl I9A9 (^-jIIJI £9iLI HqIa^juajI *iic o^x ajlgi gjJ^JLj a^g-j

Virtual Machine J£ iu J ^19 Switch J^ajg ^I^jju^j o^ix ^59!^ ^ Ja*j Switch jl I9A9
^Jx ojaiLII >t5LJ9 VMware ^LJJ^q ) HA and Vmotion Jl a±l

SjLfl *i^9j SjlIx Jjq-slj ^211 jjqjjuaJI cdL^ ^IjjqjjuaJI (jju Virtual Machine Jiilj

Switch jjl£5 ^1 £Hhj o- 1 ^ a* o^ 1 Virtual Machine Jl (VDS) Jl

JjJg Switch dhnilg-j JjQJLj I^K l^jIjjqjjulJI AjA^JIjjqjjulJI ^Jl jOjAoJI jjojjuajJI (JjQ <Lj cLLaLoJI

Lo^iis <u2 Virtual stander switch Jl ^ ^9^1 ^l^i^l iULi ^ J 5JLJI
C>i)^j^ lAIH* Switch ^1 jl^9>iJ>jbjju*j ^Jl JSiijg Jg^/l^jju^JI ^>q Virtual Machine J£lij

Switch jo^l ^^iilj Ja5Lj jognj ^2i5LlJI ) £jL£JL JL^j^I Jx Virtual Machine . fmQ?1 JUbJI Ijj& ^

VSS Jl (JX VDS Jl £gj (JjO illlnMQnlll ^ II j_^f| l2jIjJUQjQ-II (j^O « Lu^jl ^9^

Network Policy - 1

Primary and Secondary Vlan - 2

Net flow - 3

Port mirroring - 4

28

® NetworkSet

Issue 26 -May/ 2012

juHjlEiJI /m< ; .*.h VLAN JL cui.ii ^ 9 Switch's Jl ^> 04*9^' ^ VLAN o^i
HA and Load Balance for Network Ja*J L&Lq jLxlL^j ^Ulg Network Team cU^ll ^9.;

oa^9 ^EjlE^JI jjqjjulJI (jr i ^nin^ l2jjL£ <jjo jI^Lj J-^-u <jl (J*n q i ^ q^^JI Switch <jl <jx ojLlc ^yfcg

JjKJI 9 I Switch 9I JjjKJI ^ aKiliiQ ^9 cULi ^ a^laj 1^9 Switch jI^L SlL^lo Jjg^JI

L^il ajsu 9 Switch IAi3ij aLolo VM <jl jjIIj Lq ^J 1 ^ ^ c^^ 1 Switch Ja*j ♦ ^yk^JI

ESX Server

a^LIljo cwuLgUI clL^JI julij 0' cliiiJI cU^LUI cbuLLdl up ^ IjI A^Jo

www.vmnrian.nrie

Vmware cl^jJLi ^LLII ^jllll jl^JI LJaJg j<- ojl - « ililnnQni ^lc jiJ JLiLo lIILLl <J9^! <-&9^i

29

Issue 26 -May/ 2012

oiclinJI

SjLCLLoJI jLLQ^fl JJX ili^L^J^fl ^JLlHj (JX

£ £

£ £

^lx LULfijQ ^i) 1 QJJZlluJ ili^/Loj^/l cLq.\ Vfnlfl II

jjo AJAsd\ a^$j ( Satellite Orbits ) ^

j(Ul >aiUI la*

ft

1

w

MEO

GEO

Satellite
Orbits

HAPs

r

Altitude
(km)

35,786

1 5,000

5000

0

Upper Van Allen belt

LowerVan Allen belt

MEO

LEO

Earth surface

li^ I I jnKI I ^ J^.Tt I I OklA ^ »/°vQ *»

Orbits jLmI ^uiiujibLo^jliJUl^idl^

JLiilujLj jQ^£j c cLj^aj ililh^o <jx ojLx jLoo^/l

A±SU |CJ LAj-L^jg CUJL5L0 dUulQjl ililh^fl (JjQ OjLljl

£ £ f

•oLj^fl oAfli (jiig (jjiil djuiojl "■lU^rt oL^jLj LlJLujI

£ £ 6

. ^1 j^l .fiJI J^lii^ ^L^u^l9

♦♦

♦♦

(jx ililh^Q II (jju L^LoglsLoJI JjLlj jo-u

£ £

^LaiJI ^aill ^1 ^LLJI JLujL aW>aJI aI^aJI
jLoB^I pgsu ""^ (a Uplink) tuLoaj ■ Lo l-iag

( satellite Transponder) ajlcLLqJI

£

(jlaj^l ^Jx JLlqIuj^II ^Jl LfcJLujjjg SJ-lq1lllqJI

( a Downlink) SLlL^JI oAil ^^jg

program mlng

« ource DBS
provider
broadcast
center

30

Issue 26 -May/ 2012

Satellites in geostationary orbit

(Geostationary Earth Orbit (GEO
i9£i> KM 35,863 jIjjq tucLLaJI jLlo^I l-ia

joLa^^l jjl Lai Jrpni^l Jgia ^lc (jlaj^l ^hni

^piiu (jiaj^/l j9^j Geostationary jl^o

** * * t **

GEO jLclSI (j I iji&j I.L&9 j9^ij (j^j^l LqaIc Jlcj_ujJI

>U»»« (Jjq L_ujii ^B^jqJI (j-anj ^JLlj cLlcLLu^JI

******

* u^j^l

cUJa^J ^h5? 1 (jlaj^l (JX OA5LJ (J I GEO JjQ-Q jLLcu

****** f * **

♦^j^l gtk^J gJj Lu>*i** JJLll

(j*OJ^/l ^hnl (JX C^LlLcJI tl&J GEO L-t^JLX (JjQ

Lo_£ ojLli^fl 4I109 jjALj 9 ojLli^/l 1 q3l!q - -lllj 1 Lqjq

dL^l9J ^l^luj^/l J^A ^99^ j^jjQ jjoiUI gigjQ (j I

broadcasting SjLii^

. ^ur.^il signals

(Low Earth Orbit (LEO
1500^1 500 ^bil^^^jljk^U^^GEOjb^^uhJ^

I^JI l_JLJJ-Q LEO JJQ-Q (J I (jL jLLaj >hnlll ^Jl 1 7 1 n 11 dJ&ijgjO illJU ^S-LJ^f cGI Lo_£ >hnlll ^^fi jTciQ I K

f ♦*** ! ** f * ******** ♦ f **

LEO jUlqI ♦ GEO jjclq Lslo cLjjLILq jjl^LLII (Jjqj (j^LqAjI Llo (Ja*oaI J'sm 19 cu^ia ojLliI ^hy ; (jiaj^fl

(jjaUl djJLc (J9^j

Footprint

Footprint

(Medium Earth Orbit (MEO
MEO jUai 0' I** £^ 69* J^9^ I8OOO9 jlio^ 8000 Chi ^ J 1 -" £^ MEO ja£

<j La£ uUL 8 ^Jl 2 o±J Lo J^l ililjIiJ JUi^j jLa£2l oAa 09^- ^A.Ujll ^ LEO jLa£2 aajLIlo

Jjgia (Jjqj ; cul MEO jjclo l_j9jl£ (Jjq» LEO jLclqI (Jjq dihsl dnhio dflJ <jb jIIaj MEO jLlo

♦♦ ** ** ** •»♦*«♦**♦*♦*

d q 1 ojLiil 9 jplill

31

® NetworkSet

Issue 26 -May/ 2012

^3

: l_jLl^JI mi

Build Your Own Security Lab

Michael Gregg : LiuJb
Wiley Publishing : ^idJI jb

Aaiifl 459 : tliLa-a^aJI ja£

2008: jl^yi&iui

^ llj *J>I^qJI ^ "■-*>"*» LqaIc
^ogi ^Ljl^j LojjXt *£^b£oJI

♦ ♦♦♦♦♦♦♦ ♦ I ♦ ♦♦♦

♦♦ ♦♦ ♦

•C7

dJLJal *oJ LJL^ (j±&3 Ol''^ *

32

® NetworkSet

Issue 26 -May/ 2012

a n \^v..i 0 II ^ 0 m Jljl j_s_qJI ^j^^ A"

source Jl ^^Ju^ ^Lu^aAJI ^jLo^loJI^
♦^^±£9 ^.il^-oJI -'Uft^i code

SujJaiJI ^ i .>>l^ 0 II ^.j ..II :4 J-l^-oJI
^J| cLoLi^l Jj^/^S^-j^jjJLj J) I U^i-o
^ TCP 5 ICMP JLo 1^%^ (3>J^
o^lj Josu Ju£ ^Ul£ 3 L* j±L 9 HTTP
3uoa£IoJI ^LlIqIJI^ PingJI Mlo Jjl^l
.Port Scanning ^.i Suo^l^ioJI

cLl^LLJI (m7 jj^jl^llJI jjo (JjoLsllj : 5 J-L^iJI

Sl^jjiJI ojIjI^ routingJI ^X^^j-h

U^^l duojMJI JjI^j^I :6 J A II

♦Lg^jJ^j ^1 JjIajj^UI^ J^l >LkMJ
jLlq jjl^A^ (3>l^ {-a (JjoLslju :7 <J II

^ ft I V ^ 0 1 1 J^jlj^jlII^ j 1 1 ft.^tVll

(J^slj ^^Ul cLoj^J^JI ^1 J3j ^ ' J *8 J II

SpywaresJI^ TrojansJI^ VirusesJI L$j
.aii-pJI ^ol y±l\ ujtLh y±L$ WormsJI^
j^ijV^i^ <LjLq_2i <^liAjS J-Qjiij :9 (J-l^-qJI

♦ (^llJ^jI^JI

ol ilil^l ^qju ft »< ^jjIlj :1 0 Jo^a-oJI

.((IDS Systems *'~< : ^ ^l >ii^l

^.ii 2 qj^Juaiq II J^jJ^aJI ^b^j :1 1 ^ ft II

♦♦

LfcjjL^jQft, "«l ftlj V-k^fl J 1 iftc"

^y^l^j 1 1 r J v> l j » lv< I I ft Ljj-^Lij Lq^

♦♦

a n ^ V . . 1 0 1 1 ^joIjjJI^ ilil^J^fl L_licl ^l ^l

.Google books

♦ ♦♦

F XJ duQ,

^3 > 1 UV II ^^b^jQ « II ^jjlJI

3.^9 (Ji<nn 1 1 O0^,l ^-jLl^JI t ^ I q9 II

♦ * -

♦♦

(JJQ Jil d^^jQ |oLc J<n1 j <>£-l9

.ai-Ll^9 LT 1 ' ^OJAllll 3I ^J^ l/Snlll
(Jjj±La11jQ (JiiilJ clLq^L l-jLI^JI Of.\j£ 3<Q J

(j-j jJI ^j^K .v«Sl I M t 0 q cSJLjLlJI ^.^ft II >
tP& '^^J IT Jl JjLlujLljLj SLajiLQ ^o^jaJ
J;;-' ^^ic Lbjl cdJLUl J^aiJI (jjQ paJI

0^ oj'^iji o-jUI oaL^ij^l JliJI

(^^ j « ft^'Vll J3 J ^ « So^aLkJI ^jLual^o-ll
I \ </k^ j_jLuJI J »^ft H ^Jl ojjIiLjjQ dj^^UI
£-9*^9 0 1 1 ^jllI^j (J.^ jjo lc«

♦♦ ♦♦

^aJJ SuojMJI ^jLo^LsloJI
3 pJa jl -jlll^J-j Sllqjl^ ^Jl J3j ^ 1 J : 2 (J-l^-oJI

l_jjL^JLII ^.i ^ qjAXuLqJI SLoIjlLoJI J «q^«Vll

♦♦

d.iLbl ^j.i< < J Mj^ J^j_LjftJI cLqJ^ijI L^-L.i) Lq-j

VMware Jl^ ^ jA^fl ^jI^I^ ^ol >dl ^1

X L

33

Issue 26 -May/ 2012

Issue 17

Magazine

I Netw rkSet

First Arabic Magazine For Networks

Magazine

NetWftrkSet

<-!T!RK_ VC'JR CHOICE

Cisco Systems #

-_n_^jl'il yjj _U j L_J

Cisco Extreme

InTlljlnWi g tjL£jJJjJJ

■^j- SI. i.i ill Jl S-_i'«il (jl t^j-SI mil (^jluuijuluJI

ZigBe-_iit*_j

iwuiw.net worbset. net

h_iw-_)I2 ■ Fr»e ■ WmmiUHlllim

MQ.M MlHtl201_ - En* ■ wwjHtlMKH-lwl

NaU WHIJ012 - f-t ■ umillWIllMUlU

NetWork Set

First Arabic Magazine For Networks

T Server ,ojIA ^ydl ^lii'i ,J-n ^— ______

1 1 ri 1 1 1 1

///MM

(JuI____iijlI_ |oL__u _jGi____jI

1 K 1. 1 1 Jjjajjjj |J i n ^.j-i I j 3 II i a -i 1 1 g| ■ nln i l i ji ^n-i l

NetWork Set

NetworkSet S__Jj_

Migration or update ?
,l ts your choice

HP — Liujj— iajAA

NetWork Set

First Arabic Magazine For Networks

/J

Samba S
Series

» Server

s ■»

Access Point
Modes in
Wireless
Cisco Network

t_i\J_3_^_--_| ^jjojUI

Windows _>erv eytackur.

tJi__c__ljl___l <■ .TiJI <_y0___ d__voJ

» Troubleshooting Ji -ici$i asA
ft com pT IA djaJaLoJ las _

Bidirectional Forwarding Detection (8FD)

34

&NetworkSet

Issue 26 -May/ 2012

v9jljJI <*\ Q i iVi

Fortinet oj&ii a,^.^>7«^

Fortinet

selrazek@fortiserv.net

iiiii ii in

■111! II I II

EGYPT

<LlllqLLqJI ^JLUL^ Ll^^ 1^ *<? II jK?

♦♦♦ ♦ I ♦♦ ♦ * ♦♦♦♦

For?iC«?*3D0A

■ 3 *

(j-ol 0^4^ ^-qJIx^ cr^LJ J j^i^o ^-J ^-J

♦♦

oajIj <LjL£jq 2uaL^9 "'«■■■' ll l >jjqLj^ JjLq^J-slqJI
l-j LSiysuLa §\ ^ol_c J < ill j Sl^-lAJI j_^b JjLqj^JI^

•«UTM»

ISP» J^j >Lj)fl JjLqjA jI^joI <jx, ij^L^ioJI JjLS jAJI^
.^oJLsJI ^^jLlllq ^Jx. ajlo^^JI ~«l ^ 11^ »

Sunnyvale, SLLjajo ^ — y/ 1 >" 3L^ >J ±JI jJLq ^Ej

.Calif

Ken Xie SlJ^jI^j 2000 ^ ^ b

S IJLj I ll ..1 II ^gj l ft l 7 II j I J^J Iq {J'« ||q (JjJjjJ^qJI

.« >hH3^ 2l£ jAJ l±Ij Aiu L^sllj < oj«NetScreen

l2j ill I Lg-u±JLujLj J-Lq J-LJ ^j-Jj^.i) c " « ~ Lq LqjIj£

f.

jAJ Miojo 65^ oU ^'^l " 2

••i<jl 0 II ^^Lujjq ^ I r, 2LjjU£
.Jj^ ^ nSf ^ *ij^ i<..i II U^..i i" - 3

35

&NetworkSet

Issue 26 -May/ 2012

r

GROWTH

1. Extend
UTM

leadership
with n ew
terhnnlnnv

■ ■ Forti

I

Firewal

2010

2014

OJ t QQ II l— ll Q nl II Jj^J ^^JLUI J^A^JI

,".Kj .7.1 I 2 LlajUqJI ^Jj^iJI (jjQ J Aid

Product

Firewall

IPSec
VPN

Anti
Virus

(Flow)

IPS
(HTTP)

FG-
200B

5 Gbps

2.5
Gbps

200
Mbps

650
Mbps

FG-
300C

8 Gbps

4.5
Gbps

550
Mbps

1.2
Gbps

FG-

16

S

1.2

2.5

600C

Gbps

Gbps

Gbps

Gbps

FG-
1000C

20Gbps

40
Gbps

SGbps

16
Gbps

1.5
Gbps

3.5
Gbps

FG-
1240B

(44
Gbps

w/
AMC)

(18.5
Gbps
w/
AMC)

1.5
Mbps

5

Gbps

iiij ^j^iJ o^xmJI Su^Lxi^l «fortigate»

♦♦ ♦ i ♦ ♦ ♦♦ aii t ** t ** i ♦♦ii ♦ ♦♦ ♦♦

^JJ 9 & rQ ^ n i l^.m i <i\|<»»ll ^1 il nji i Um II n ^>..< «

S Q ^ Q p J QJL I "\\^ ~JJ Q I I ^LLjI i^A J-LJ

UTM Jl J^A^ Alt ^ ^1 SlLqIII^JI J^LJI (>Q

(jjQ UaLjI L^JLq^L ^ <j .v» 1 1 2LjLq^ J 0 .viVl J_j
DMZ JL

a^I3% ~.in. .uvii ^^ic ai y.y.o &Core network

♦^jLLJI

♦♦ ♦

: S^AjlLqjLII J)j U 11^ lZljl^ ^^-jj^-q £aj dJjLLo -

J^JjjJjO Jj^ (J_£ (J I u 1 9 q 1 ^JjqKTo lIjLq j_k |OAEj ^/

^ WAN

Acceleration

VPN

Firewall .■^. J '>v^

.nttvlrusS

IPS

Web Filtering

Wt

Application Control

Headquarters

FortiGate

Headquarters

^Jl J^^Ju \ilnTll c 3>kJI ol A^J LLa

a c\\<"j cLLq K 7 o o a^I^ <LoaA L^Jl A «« ^ (jjQ lHjI^lqjq

ojIj^[9 j i-Q II 1 1 dJ^_uj^ ^Ij^/1 <M7 i (^-ILc- o m^l^ J_qI

♦♦ ♦♦

ft oJIjI (j 1 in 1 ^> V 1 L^JMA (jjQ p^Ej dloA (JMA ^jjo i*in

36

® NetworkSet

Issue 26 -May/ 2012

I 1

(j-o-uoj lIIlq^JI (j-aiu Lq^_q_c a<j .Vi II ^|

lILlqI^UI j5jjq *LLjI ^JI^jLkl ^1 j-ub cLLqL^JI SuLq^JI
>A9d cHJ5^-"^ ^Tmol l ^[9 (>q

VPN Jl (^jO Sli^iLoJI

J^jjJI 3Ub i^uit-.j J.^Aj IPSEC VPN - 1

l^io J£ sites 2 chH

^jjJa ^ ^ jLc >J£fo£ jL^i 0-0 Lfro h Vini l LJajl
l-j ^-ojjxjLq L^-J (_>aLkJI agent (Jl l-jll^-uIJ

♦ forticlient

J^AaJI 3Ub J.^Aj ^| ^ SSL-VPN - 2

3 Lluj^ (jjQ j^I <iJLL^9 JjLj^jq ^1 \9 1 ^ <jjQ
^li^j Mi* SSL-VPN ^ J^aD
HTTPS protocol ,RDRSSH,telnet and

.etc

L2TP - 3

PPTP - 4

^1 <jl r\ \^ 3uU^ (jl^i^j ^ 4 5 3 (Jjq o^J^
^9 plain text oj^^ J_l£jLuj9 Jjjj^j rinK ii
^iihTmig encryption Jl <cl^jl ^ ^ ^1 a^^j
l^J CLI J MA ^ configuration J^ Joiii

cjljI jliLti^)/! ^I^jI (jjq ^^I^ GUI interface

(jjQ j y< A^J lILI J ££9 (3 ,1 r D ' * * O J * JJ_QjQ

.vpn Jl (jjq ^^Ul lii* (j^ixbiij *M^sJI

1

Antispam/
Antivirus

r

^I^jI (>q ^ ^[9 JjLu^^jiJI ^Ic <jL£uj J^lj |03-oj

Jl ^.i U£ sjgnature L7 lc l*Lb infection Jl
signature or web or ^.i ,~n^i ^1 ^Lc J < A ^ . ips
♦ fortigaurd dd^ Jjimpll application category

c

aslj (jx. ^ < 1 ilj ^-Lc J^AaJI (3jjoLj^

1

Application
Control

r

^AALulJ ^^Ul^ UtlTI Jl ."Atj<es A^l
^.i^jJLoJI n i 1 UVll J£ jVl o J_oSLl

d 1 C, Sj^L^JI -LllL^ ^_Lc j-k^fl J^JjQ "J Ji)

1

Web
Filtering

r

JMA 0-0 ^JLJ^JI ^I^Q JA^i jlii J^iLJ |Q5-OJ

JjLc^qj^jq ^ I ^- ~ clIAIaj 3Jj_kjQ JjLjLlj ojx^LE

jijj LuojI^ ^.iS I5-0JI (jjQ 3J.XU cLl^IA L^-Lq oj^^9 J^
J) I ^- Liojl (jiLojg <L^L^JI -i ^ I ^jlqJI ^1 l-l^JI
SlLqJI ol^ "fi" ^jj_Lj j j_2ljq ^-q^jq ^1.09 L^JLq^L 2L1o
J5AJJI o^-oj Lo J^ ^Ic J^l£ Vi J^3Lj ^05^5^

L^cI^-jL Jj^L^JI JjLo-^i^ (jjQ cLjLq^JJ ^ojA

JigySLQ $.&Iq Jil signature ^ J^iiii^5^i SiLLLkoJl

dl&iu (^Ul Lq JAAJ CUJ_C ULLJ9 l^LqJX^JI ^l^-jl (jjQ

^b^U cLj.ii I jjq J_o_5Lj lIJJa^. L^Jjq <c jjq

jxc ojLj l^JLLl ^LS IjI^ ^jq^JI traffic JJ ,UII

^.i J^iii A « ^ « IaiL JjLqj^JI ^jjq Iai2^ j_ljl5Lj

.signature JJ ^U-lj a^j <oJ <juI 3UL^

37

&NetworkSet

Issue 26 -May/ 2012

i

Firewall

LJ

Antispam App Ct

Traffic Shaping

k

Virtual
Appliance/
Virtual

Domains

1

r

domains Jl <jjq aaslI z±±* ^j^iJl c:.- rA "
diJL^V-DOMS or virtual domains l_j J> jsuIa

jl&2> ji^l caul ^ a^I^JI jjo JjqLslG ^LjI

L0JUQ9 3ujUi^)f^ Sl^^xJI ojLj u 2 J3 j^uii\ I * V-LANS ^1 ^imni .i^JI domain J[

Gpbs throughput 480jjq

V-DOMS or JL Jijsu La 5 I 3u^l>L^M

La ^1 ^ox-^j Ajl ^tp. virtual domains
J^aLI Sujliol ou- V-DOMS 3000 6* -j>*j

IPV6^

fortimanager&fortianalyzer ^■■^g" c>£oj -

(_Lj-"j'3

♦ M I ♦ I

FortiGate-5000 Series Blades

HI*!**

r ,-, "h-*-h. h ,:"

^ 1 hi

ISP JL Jijiu Lo 3 \ ^ yLS2\ ± 9 y*~

40Gpbs throughput ^Ic cjlLq Ji^Vi rn^ j^jLlJI

V-DOMS 300 -
IPV6-

cLlujLLj cLojLlJI ^l^j^fl (jjQ (j I j^J LL* (3^5

Lg-J JJ^^J dJ_Q_ll oAJh J-LL^ ^-Jj^iJI (jjQ cLLlSZjQ cLLfi

Service provider
FortiGate-5000 series chassis-based

38

&NetworkSet

Issue 26 -May/ 2012

FortiGate-3240C

J-ua jj^I^ tIj-09 ^.09 < nl?^ o J) 1 1 hi 1 900 (jjQ

"il n 1 1 UVll ft.\^«..n ^Lll JjIaj J-^UI jl^^lj djJj^l

APTS or l-j jjljLq ^.1*9 j^I^ ^5 ^ ^KiAJl^

Advanced Persistent Threats
16 aiL^L 10-GbE J£ ports 12 <uaJ
Ji^j ^ erJLUL^ 1-GBE I4L0 J£ ports
SlLqJI oajz Lr L ports Jl jjx. ^^i cLoli^ J^^jLi

FortiGate-3140B

GbE&12ports«1 IOL^LoJ^ ports 10 (>o os^t

«GbE

large enterprises

3950B&3810A&3240C&3140B
FortiGate-3040B

«10GbE»&10 «lGbE» 8 cv* 65^4
Gbps throughput 40

FortiSwitch-5000 Series Blades

<3-lj load balancing &traffic routing J^su p$su
Gbps - 300 J^j Sl^j^ij ^j^iJI

full duplex

cLc jjjllj layer 2 ^^Lu-uq ^ i ^« J-o-^-j ^9-^

GbE fabric &1 GbE backplane 1 0
Fabric channels 3ULi SlJLUI L^^J^iUJI
static mode layer-2 link aggregation-802.3ad 1

802.1 qVLANAS
802.1 S multiple spaning tree protocol

FortiGate-3950B

Gbps throughput 120 ^jLc <jlLo J^^j

J^su J£ ports 12 ojo (jl Lol

\ 3 d*C&3 Ports 104 ^1 10-GbE^

1-GbE

I 111

■ ^ Ti I 1 I U V n ^jMjJ J > nV..i 0 II pi J^f I j-ij^

L^jlo9 a 1 0 c v . . 1 0 1 1 Lla3 I^-L^j-I)^ lIIjL^LlL^I^

FortiGate-3810A

JLo C$>l-£]I ISP Jl JjQ L^jI ^

39506^^5^1
throughput ^.i (>c^j ^o^ii j -qMi^^I

39

® NetworkSet

Issue 26 -May/ 2012

Small business

FortiGate-100D

FiiiPirineT

* * * **** AAAA

■ 1 1 ■ ■■ m ivvvwvvv

FortiGate-80C/CM

FortiGate-60C

FortiGate-1240B

Gbps firewall throughput 44
GbE SFP& 12 GbE interfaces 24

FortiGate-1000C

mmmmmmmmmmmm

. . • **** • ****** ****** ***** • *+*» * * *** * * ***

******** ****** HtMM»tl»ttltit4tlt»»tM »»««*•»•«*•

■ me::::: iimbm

Medium enterprises

AiLKtfLI 240B&1 000c

FortiGate-600C

FortiGate-40C

F^RTinEF

• 7 » mTU •

• • *

> « *

• • •

• * • 4 4

FortiGate-20C

F-ERTinET

FortiGate-300C

F:..HnnEr

v* ♦*•**

FortiGate-200B/200B-POE

F=I = RTinET

****

1ttttttttttt ^—

40

NetworkSet

i>"!!ll

SYRIA

Issue 26 - JVlctv / 2012

• a< ; Aii ^ VOIP Jl o^Ui - 2

^Q,1 VfnlLj lILIIIj ^oLlEJI (J<q <K jnl II j_L£ l— i^i^n I)

^jj>-5 cj^-II oJ^_^SU gj .^^11 o jLc LU SIjI

VOIP Jl J-SUlla c^i ^^JL^j ^1 ol^l

^i 3J9 , cLojLSJI ojJLqJI ^i Ig j c fcfiJjaju .i^-uj ^^-U^

j_LcLi (JjjLlqJJ SIjI jj^j -oJ <JL^

J_Lb.il LI LsLiioj JL^j^/I 3pl_oS* ^Jjq djj-aJLl lILjJ

Ig-Ljp lIU^/ cLlLq£-II olgJ dLLil^JL^I oljl ^JjLjLlU (jl

♦ d-QJ ji^l ^jLjU ^J-C J_l__l__-J -if) nl

VOIP Jl J^Lii^JI J^J obi A^A^i - 3

^i ojLc j-i^Ij VOIP J-SLIuq J__\ SLlLqx.

^I^xAJL StuaLi. £*l >j 5 3W L$_ti <cLj ^1 ^Lo^fl

^1 pIj^Ij ^LIU , NetlQ 31 J JLLag

3 U-uJ^I (J^<> J ( ^J-C l-JLL^J (jl l-L^J l-J^I J^fl Od^ pLILqI

: Lqj-lllq

I AM II ^ n t^l 0l jfr ^ t^t..il ^jjl a

3jbl oj^kl .lLc ,ol VLAN J£ <_Jx. 5 I WAN Jl 5 I

S Call Management JLaj^l

La

^-0 Q I uJjQ l!1|Ij_J Jj^J JLuJjl ^ «<Q ; J„-fc •

S (JL^j^fl oj^i 3j^i& j_j <JL__>

cLlAjL^JI l— il qJL^qJI (J_lslqj jIj-o ^Ju-j jj-Sj Lq j_Lc

"i ■•>■"<!.■ voip l^jlLc 31 u, 5 i a< : .-?.ii ^

a^aLaJI LiUI os* 'fl'; 0 "" A5LJ J<I v.qII ^ jjla^JI

dL^-LioJI / Jx- oJ^a.^eJI lIiLLuIoIJI / -2Lj I jlp^ Lq^
pLulil (jtiQ^ (JLLq-II lILI *o Ail ^-Qr) m» lILI jJ ,

. VOIP Jl cyaliJI aLloI ^Ul JaLsUI ^

33^1 ^ QOS Jl 3lu^L1 Jjl5i£j - 1

whip ii j : o j, a nn.q m..^u j^a-^^.ui

(jljl^JI chH 6±i >^J' ^ 3u^»LaJI Jjjuu

lj-U3JI d^SjJ^ (jl dj-L^jJI Ol^ J-SLJ A 1 i-LuJ 1 LSl^uJg

f

oi^ lIjljLuJI (jjQ ^-Lcl cLj^J^I LgJ cL^uzal

(J^^jj-j jjX- Oa^l^ cLqjj^ J_Lb.il LLo-ii Ai dJI-^JI
Jl ^^^j^ pldaJLiiL L^jI Lf-b^ijlg , VOIPJI

c>o IEEE 802.1p Jl ^^9X & IEEE 802.1q
DSCP Jl Su^l^ Jj^iu £Q -^il >lJJ Tag J^l

. l-jIjJ^jJI ct J_c

41

Issue 26 -May/ 2012

a| LLlLc. ^oIj L^J VOIPJI tojJaj Jia

aiiAJI * W oiU£ ^j>b o-^ (cOj bottlenecks

Jl^ LAN Jl zAZiJh JiJj Ao.^ii kAsu 3 J^Lii^JI
3.^^ ^ggjQ (JjLlu ^>la (jjQ ^oju 1*1^3 ♦WAN
Jl J^jI^j ^ic JIij^ajLJI o-o ^iL^j Lq LLjJ Ji*

J[g^-a II Jj^l (jjo 3 Q UjUA. II oJo^.i WAN

dugjJLJI lIjLu^ jjAajq / ujLloj cL^Lk cLlujL^ 3JT

. )±LSUn VOIP Jl lJLli usn£ - 5
^ ^ VOIPJI ^li^

20 jjuLo Jitter Jl Jo** o9^i 6' cr*f4»
5 80o^Lo DelayJI Jajlo65^Ju'ct*^ " •

o ,^ 1 ^ lIj^-u^ o ^.Lc ^ 1 1 cLljLj ^JJjQ 1 80

L ^J-C VOIP Jl (JjjLl.5 jL-LSjQ ^J-C jjll^J •

• PESQ ^l Sili^

OJJ j^AJI ujrJJ o-^goll

42

Issue 26 -May/ 2012

□

|Lfl£

N + 9 CCNA J^Lig ■"■<<■ ^...'.^n

■h

i

!i!giii«m

jjXJXJI OEJULU pSDJJl

jion i'iQgi inn

♦ 16Mbps ^ j-L^ij

( J_jj_LJ^ iji'ijiU oJU^LIlO ^Q^JLQg ^1 lAc^ .>> n 1

J Laid I ^LU ^LLj aKiLojfolA JaJ$ .^U^l jbJj ^
o jLjj^9 ^j>> dJilA (jjQ »^""'" (Jj^j ^o-^J LLljI tiJJ j J-q-slI^

ajjJ ^Ul p^UaJJ 3 \ ^^inio Static ip jjaj o'

♦ ♦♦ ♦ "*VH *t ♦ ♦ ♦

11

New Hotspot User

General Limits Statistics

OK

Server;

Lancd

Maine: NetworkSet

Password: 101012

Re™

Address: P|19Z168. 10.12
MAC Address: l~|

Profile: |default
Raiea: Tf
Email:

enT

Copy

disabled

Static ip

User <oj hotspot ^ ip ^Jj 3^5UL ^LJ^

Jl join

65^1 6' Static ip ^ 3^^'

:2uojiJI jij ^liJI Pool

43

&NetworkSet

Issue 26 -May/ 2012

•J QutvtLut

Smple Glaus: Herface Queues Queue Tme Queue T^ea

♦ |[ DO Reset Cetrten 00 Reset H Garten

= Nam* TupttArit frw jMpiU plwd HwDowr

St*„*k 1921651012 IH 2$fr

• Simple Cjutut < MttworfcStf, 192.166 J012>

Advanced

Traffic

Tcti

Tatd batistes

T«0Mjw. |1» JWi ji-J, ^ *

Mir I** \\D 3 ^ ~~ Zl t * i ''*

▼ Tiiw

; £ cur j*i

Cm*

Dtodbti

Copy

:Clock Jl l±Ia£q System Su^jLE ^ NTP J^^jqjj J^>l* 6^ SlcL^JI ^ a^LLj :LULj

13 NTP Client

Mode:

Primary NTP Server:

£3

unicast

31

1 1 52.43,244. 1S

OK

Cancel

Secondary NTP Server: |0000

Apply

Enable

Disable

[disabled"

synchronized

New Schedule
Name:

El Clock

o

Time DST
Date

: 1 13:53:42

4*Lu 24

Time Zone: |+E[}:DD

O DST .Active

OK

Cancel

Apply

12SK

OK

Start Date: | Hay/25/301 2 £*jtj
Start Time: 1 13:00:00 lyjLJl ^jtill 3^

Cancel

Apply

Interval: |1d 00:00:00
On Event:

*****

Disable

/queue simple

set NetworkSet mm-limit=1024DDD/12BDDD

Comment

Copy

Remove

|disabled

cd , System ^UjLq ^ Scheduler liLbL :LsjI*

LllJLQ^UI (jl j-L^jjJI £jQ cLCj_ujJI j 19YI «^ I U 0 II JIlqqJ 1^ ~«

: Lij^^/I 3UUJ (JjjLu-l^ /*i ij<..>M

1 d LLlI£ ," VJ <..,ii Ajidj o>L£ l^j Interval JJ .

♦ (,) SLL^Lo ^ I Comma SioMslj #o^-Lq-qj jnn ^'tMifl ojx- S-iLb^f

Scheduler u * j SULq^I 31^ >uJI ^ . . ^ ^ yUq

dJL^JJ LgjJox- &lLog£ j-jj-j Lq^ ojLJJL cLcjjjjJI cllxi jj_^J^ jAI

♦♦

(5jAl ojjo JAaj Lq jJx^9 j-q^lloJI (jjq jAjLllqJI J-uai i j (jl -La j ^j-SJ profile Jl ^jj-La ^jx. ^J^jjj! ^jAl 2L£jjJ^ lIJJLL^

* * ♦ ♦

<jl JjqLj Ldj^j^jLoJI j-Q^uxi JIiI^l^qJI (jjQ j ; '< 11^ j; H LiULLfcQ SL^LoJI (jjQ jjjlII 11a ^.i ^o< I LLjaJ Lo Iaa

,^<*i.\( Al ^.ij a£ (j^S-J (jl ^ i QJLjg <Lu^j_qJI LU ^ Luj (jl dJL^^f ^.ij ^jlLc ^>^cl U *i

44

con/a / h% _ \\/la\T

Netw

Magazine

rkSet

First Arabic Magazine for Networks

v>6 (DuftUuq Hslq lLUU_cI £uq
cucuCLiiJ_o CUJJ-C cLLp_o vJql Qjjl j o ' ml Q jjqJqj

qJLoLuu q ; kw'i - £uulg jLlllLH

OL^LlL^HI Aj-o-^ i_LLul_u nol'i^o cLulLcl ro La

■ ■ ■ ■■■■ ■■ ■ . . <f

45

&NetworkSet

Issue 26 -May/ 2012

& © Q

-j>AaJI i <i

J^,liHUAWEI DATACOM Engineer
9 CCNA XCNP.MCPojLui
lJ aLi. . Atempo Time Navigator

. Oj_l±LiLj yl yCj-lJ LJ jiiXLi {j-ijC

mabroukianas@gmail.com

UmiSIIIIIIBIIlMIII

DNS ???

IPoE « PPPoE

♦♦

^JJj ^ jjUTTj Dial-up, -.K.~, ^ -a : <l...ll

SlJI ppp ADSL ^jJ

ADSL^. Alio JjJi (jji LgJ ^)QnlQ II OJ-L^JI Jill I

jjlo^U DHCPJ^^j^ IPoEAoiaji IPoE

. PPPoE^j 3 jj3l0.il ^j^li <>> j^ii

IPoe / nHnPpi^?...i <<uj
IPTV broadcast) .iij^ij^l y±c ^^j^idiJl
^£.±1 3jLc PPPoELol (services

Hish Speed ) ^LaJI v;;-^" ^ ^iij^)?!
) ^^ij^l J^5j 5> j >i£. ^Laj^l 5 (Internet

. (VoIP

♦

^Iojj-slII J^LLaJJI <LqjA ^o-jj-oU ^^.ujLuj^I J^j^UI

♦♦

(^ioj cLdjTnio JZJ sessionpLiuj

♦♦

3 ^ I ill 1 1 <^JJ (J^o^^JI ^ I C Ojh Inll I LgjQ nil

3^711 : >ijv.v« 0 n AuthenticationJ^ .1
of Jx5 (authenticated ) ^VimoN Su^

a^inill ^Jr, : Access control 3

* ♦♦

^Jl (J^^JI cLcjjuJ J_J Jj^Ii M-IjQ « LgJ Lq-S? Y m » 1

. lIIj-LIlqJI £jq J) fill Lo (jjjLul ^j-Lc-

(jl : (connection ) JLoj^I SllSI jjq .4

4>jlLl -i. u^fl 6jlLl1£1JI PPPoE^ IPoE

Ll^lcuJjjLiij IPoE^l^l ojjh plj^f <3_lI^LloJJ

(J^S^J^JjJI ligJ ^ nil *tj J^J (JjQ LqJ DHCP rOJ-uL

♦♦

.pi*. J < iii j IPoE connection pLLjI

broadband) jjLqjJJI ^oJ^q LJL^ ^^su

^LojiJI^j^^^jAiLlI >Li5Ju( service provider

AJ^J ^j-UI lIjIjQ jiJI dJjjaJLl ilJjTnlO J_SJ ^Qnll ^yLlI

c (Hish Speed Internet ) ^JLsdl ^; ^"

Ci±l\ c (VoIP ) J^^j^ ^L^ij^I

Lli^J 5JWII ^ (IPTV ) J^J jlj^fl >LC ^J^J^idUl

♦♦

0 ja£JI ^Jj jLlug ....( Video On HpmanH), JUII

L_> J-LO-C- l—>IjQ JjLJI (JjO djQjjk ^1 r>j a£j ^J-C

. Multiplay services

^^jidUl .iiJJ Sl^iIIL Multicast^ y& u^^i
^ (IPTV broadcast services) j^j>Lj^I >xc
05^ 6' ^ci^^ 1 ^Lo^iiJI JiJ) Unicast

^ii^^ U£ SuQjii JiJ Sll^LLoJI Bandwidth

.tlljJLiiuO (JjQ

TR-101

Si^ii j^i ADSL TR-101 (i^iLo

oj^iiioJI jjLqjJJI ( Ropology network)

IP OVer ^oLai ^^lil jqLi^JLJ-j

,oL5 ^Lk^lll^ c Ethernet (IPoE)encapsulation
^5%j^j_j (jjq aj^sJI extension J^su
dUQl^iO^Li c DHCPjUj Uj c LAN

broadband^U^UI Slsl^I^JI JL^S^I Sl^ii ^
a^iiVtll ^Iomi) j<.^h ^35j . ( network
♦ ADSL TR-101 (j^lla <-q >b (jjq jjj^o

46

® NetworkSet

Issue 26 -May/ 2012

(PPP Link Control Protocol (I nPpi^?...i .

PAP ) 5 I CHAP) ,^^^1 2uo>JI

u i£ ijj La^ 5 Authentication
jj j 1 1 Authentication J<>£. <oLi <LiJLj uo.>>n
Challenge Handshake^^aJu^ij Lo SjL^ t
t ^iJ j y±i . (Authentication Protocol (CHAP
Authentication ^^LoUl oS^j

Extensible Authentication aI^jljL (jyJ
^oIj SlLi^JI oiA ^.(Protocol (EAP

(Internet Protocol Control Protocol (IPCP

oiiiLii^j c link availability ^a^U SiU^g PPP

Active
Discovery
(PPPoE)

Link
Establishment
Session (PPP LCP)
Establishment

Authentication
(e.g.. EAP)

Address

Assignment
(IPCP)

+ Link
Keep-ANves Monitoring

PADI ( Sessional D+OxOOOO)

^FADO {Sessfon= ID* 0x00001

PADS {Specifies Sessioh-ID}

Configure Request

Configure- Aek

Success

IP-Add res s- Request

IP- Address- Ack

Data Transfer

Echo- Request

Echo-Reply

RADIUS

Server

PPP Link Establishment : 5PPP0E Session Establishment

f>*l± jL>j)/ hOStJJ 3i^al 5 5UI PPPoE^

hostjl ^Ul PPPoE

session initiationj broadcast requestJL^ jL
) ^ PPPoEjojI^ * ((PADI
^Lgijl sus;< j^aJJ a^ii^ 65^J (PADO

sessionj^j 5 <>3>sJI jLLLL hostjl .o$£j
^j^la ,ojLaJI L-iiaJLuj <. ( request (PADR
ox. (session (session identifiers jslo qu*i
Li^sjPADS) . PPP session ID) 3JUj

. sessionsLp J'j u 1 ''j"- 1 -?"

#Liul SlLi^o L±J Jr-- 1 Ai PPPoE ^Lai^i
^^LiuJI -aLi 5lL^ ^1 ol* ^ t PPP link

j 0 c?..tj,..i ^ ui Authentication

DHCP
Server

dJLujI^ 3 ^ I ill I l^-LuJ-J fO-uJj j^-uOJ dJj^..O J-iii

PPPOE^ ^Ul jl^JI ^ .^UaiJI

BRAS )Broadband Remote) J^£i session
Access Server . (BSR)Broadband Services
PPPoE^JjaiL^^L I Poe session^^j Router

. session
PPPoE^ <Lo jJLo 3
MIq 4 nodes 2^ JLajMJ PPP p.^?..^
^.q dJU^Tml (CM . (server) ^jLk^ (client)

LJU 4 ISO 3309 framingplAiLl^L y^p*
PPP connection J^sJ <j jJ^JI ^ ^jAidl
PPP over ATM (PPPoA) .aidi^Q media
• (PPP over SONET/SDH (POS 5 u PPPoE
4>q M^l y^ni i JL^ij^I Slqj^ ^ PPPoAol^

yZW ^j^ku^fl 5^ ^ c ADSI ^^ILqJI

j_Lc 5 £ i ili 1 1 ( - >Iojj-SlII ^1 j II jjLjlujjo J^jjJ

♦♦ ♦♦

multiservice access nodejio ^u^...^ au«.
digital subscriber line access^ t ((MSAN
( oLi5 >. edge router^ (multiplexer (DSLAM
.^.l^ ATM uplink^ ^jijujl &t>*z

5^ PPPoAJ — i ; 0 ii jj^ji ^ PPPoE

(^AJ PPPoE * oLjJ J<->-" ^ o^uo

BSR 5 (Residential Gateway (R"G/CPE
^ ^Hij #Lo*j^I . ((Aggregation Router

PPP

PPPoE

Ethernet

Ethernet

lOBaseT

xDSL

RADIUS

Server

DHCP

Etlherniet

Etriemet

xDSL

GigE

Ethernet — H«

I-

PPPvJ

PPP

PPPoE

Ethernet

Ethernet

GigE

GigE

— H

Ethe.-net

•I

ajj^AJia^l^l^jaiL^^L^ PPPoE session
PPPoE pLiuj (cOj c^l . session alivenessj
JjLuj jjj^ JjLlj ^jJa ox. connection
unique^A^J ^ SlI^^I oi^ c PPPoE
link connection 0 im.rLi ^oIj c LJl3. session ID

47

® NetworkSet

Issue 26 -May/ 2012

IP over Ethernet.4

Aaiaj . PPP encapsulation^ol^LLjl

<oJ . LAN^ HostsJJ IP^I^ thLisiJ
^jAl jj^5^5j^jji9 DHCPJ extension
Extensible Authentication Protocol J^^jj

. PPPoE

t Liijl ^ ■< ( _ 7 ic 5loLc ojiaJ ^"1 ; dlouil J <■•>■>!

DHCP,ojLL£ BSRJosj LoaIc IPoE session

Session
Establishment

Link

Establishment

Authentication

Address
Assignment
{DHCP)

RADIUS
Server

Link
Monitoring

DHCPOiscover

DH CP-Offer

DHCP-Request

DHCP-Ack

Data Transfer

RADIUS Request

RADIUS Reply

i i mi

♦♦

: IPoE session^Liuj M
PPPoE client^ sessioruLSuL p$su ^flPoE

^jJ oijJ ^JUJLg c PPPoe server^

♦♦

IP(jl3±c pi Aaa L-ia-i 4LdJjJ$ 4 unique ID

*lj""'T II lAjjSII

: ^ jT-v.^n Authetication J<>£. M
authenticationj^J ^ll^i >£i£jlPoE

ac.Aii p^"-.- c^U * CHAPjia 'ij--^"

aja^U c lj"->'iH JLajl ^ < ; J^a ^LooIslg

physical MSANJ_lS ^ jjLq^Islq^jj^j

^ MSAN node id <, slot) jA y&^w connectivity
Ethernet VLAN/ ^ ,i 0 i9i ^l (3^oj ^1 c( port

• DHCPL-iib cUjq ^jI ^jJI ATM VC

: IP ^ja^j H

DHCP,ojLk • IP^I^jx, o^sul broadcast^ilia

^Ul ^1 ^ client Jl ^jll^j

- ^ijv.v^ii AutheticationJ^ H

^Lo^JI Ja£ ^JjI^lJI Su^ ^ ^JuPPPoE

JaljTnll (^Jj-b OjLc^ id's 1 m) II ^Jl J^^^JLj <d

^jl^^j^LLjJIol^ JL^jjL PPPoE^jLk

3 Myt*t^\\ lu&h ^Radius

♦♦

: Jjjq lIjLq^J-sloJI

. . . .Iij ^lj)fl SlcVj c ADSL/ IPTV
cJlioJI Jiim c QoS^i ^jLLo- Marking

VOIP 3uo^ ^ Jj.^^M ^ ^ui ^ ^LIloJI (jLo

dJLo-c Iaaj c ^LJ_j sessionpLiuj ^ Lq ji

. Radius accounting

: IP (jl^ ^a^J M

IP J^j>j i^J>lilJJ AuthenticationJ^ >isu
PPPoEj IP (Control Protocol (IPCP

. client

: Session 3u£l jjq H
PPP keep-alive JjL^jj ^Ijjll^i ^jJa
.iijI^ Ijj Lq 3u£I jJ-JI 6^19 c((echo

.lie . dlaiAjQ^ SlgjLS Jl>i ^/ session
pLgij fu±^ t keepalives echos^ jj^uq j^-m*

. session

PPPoE cj^l >+3±sdi c>q 6t^l PPPoE^aJ

J_t >qJI JiajL * Ij^ *cLo>^ / L£ /—II lIuL 8 (-QJ-Ja->

3uo^ #L^jl5 o^iij #Liu^ processingojo
. IPoEjxi cy> /jj iu " 5^ Ux» PPP

Multicast ^ cLil^ PPPoE pLol >i^l
J^l 5^ (IPTV^^j^ilUl diJl . os-U^j

( gjLLaU multicast ur Lc I^li^ LUicI a^I5u

PPPnFpl ^ jV.v^H ^ ^AidJ ^il >LJI

pl^jj BSR jl^ c>o ^li^ju multicast JJ
cp^jjidUl Sj^Liuq J5J lIIjjlaIlq JiJ session

lIjIjjQ l^j3Lj (^-LJ^JJ 1 1 oLii) (35*0-^0-11 (J ' > » (JLtJjj

o^f ^LLJJI o^iu MSAN/DSLAM^Jj
(3jq PPPoE ^Loj li^ c Unique IDl^J session
ji 0 ov t .iV ^ U PcyJ SJ| ia/k ^ia<« multicast ^ j

a ^ :j oii ^lUMI ,-J< ; .vJI >n\< IPoE

48

Issue 26 -May/ 2012

s < i ^ broadcast >i ,o>. ^ Jioij ^L^UI a^I . ACKJL^ jL jlik<Jl ,ojLk ^d^ii
_9->iJ nHHP^ii -.nun Ji-ji. j. IP^LLc^j^ BSRo3*j 0? 6^J ^ l 5 JI • JL^'

. DHCP relays w o ^ 11^

: I PoE Session 3u£l^ IEI

Jaiu . Keep aliveSuJLS IP SuUs. p' ^" -' <Gl DHCP relay <>o 5a5li

J ' "^.)' * ' ? J .'. " jLaj^M aslc <2LQg RG j^^j LqaIslq . IP(JJ Iaa. j ■ ■ ^ " ^jl^Lj ,"i fig o.'.'.° ' Jjjjla o-c- ^iJJj
(jl <_>ajXfljBSR (_3l.i1 co JAa rt ojjlqJ j-^JI o ( _ y £ij ^q2j ^qJ I jj . BSR^Jj DHCP, ■ I U ^JjLjjjj jlj y ■ «

Jl oliAj pi ^" ■ ^iLJjg cL^j (^aLaJI Session IDt-j sLojjlo xjq 1. 1 i^jjj connection

. Ipv6 5 IPv4 J£il u;!-^'" IPoE 2 VLAN Ulu . VLAN

\PoE 3 PPPoE^ ajjUA .5

PPPoEJ^^j^ ^^ij 4 cyaj^l ^Uaill "■'<; ^ J IPoE 5 PPPoE^ Zjjlsus oLjJ J^^aJI ,oii)

. IPvb^j IPv4 t>3 MigrationJI u... ;j ^-.u ,.*n.\ ^11 sai.^vi. ^u^oii
<*jal^aJu4il <_>£aj jj t 5 i i9n ^jia ^ a-lclq 05^1 6' IPoEJJ ^Lq^iJJ DHCPJJ extension J^c aj

IPoE

PPPoE

cLll^LLJI

IPoljic ^o.^iit.ij c connectionless

J^PPP session identifier

Session^Liul

DHCP^o^ c£j>la oxTriggered
Discover

^Li^L login^j^ ^ Triggred
. EAP^I CHAP cPAP

^Jj7,vi Q ll AutheticationJ^x

^omi jjLLl^ c^isu) DHCP
( Radius^l.^TniL

Radius

Authentication ^qjI^

physical port ^ix DHCP
VC^I cVLAN

(login)J^iij ^L^l ^ix DHCP

IP (jljix ajjj^j

n^LUI jjajiU DHCP^LUa

LCP echo keep alive

dLLol^o Session

Point-to-multipoint

IPvb^J

rt^ft II ,U-»ft »

IPv4/IPv6 migration

2uo> J^J j^jL 8 aiL^i

LLl^IjI a£ a< : cr 1 ^ *AIIaj9 ^Lo^. ^AiU IPoE 5 PPPoEJjl^ij ^cuj Lo Uli.

.odJI A^JaAa dill e-lAt (j\ jAl f^uagja ( _ r o t o<ISII ^jj ^ ■ Q 1\j I j < ^

49

Magazine

Netw©rkSet

www.networbset.net