한방매뉴얼

---

#1일차_20240126
네트워크 명령어 및 IP
ipconfig
192.168.0.201
255.255.255.0
192.168.0.1
192.168.0.99
168.126.63.1

ping 192.68.0.1
42억9천4백9십6만7천2백9십6 개이다.
5클래스로 나눔
IP : 0 ~ 255 256*256*256*256 = ?

---

#2일차_20240126
라우터 연결(IP는 항상 변경된다!!!)
config t
hostname Australia
interface FastEthernet0/0
ip address 222.222.222.254 255.255.255.0
no shutdown
exit
interface Serial1/0
ip address 2.2.2.2 255.255.255.252
no shutdown
exit
ip route
ip route 111.111.111.0 255.255.255.0 2.2.2.1
config t
hostname Korea
interface FastEthernet0/0
ip address 222.222.222.254 255.255.255.0
no shutdown
exit
interface Serial1/0
ip address 2.2.2.2 255.255.255.252
no shutdown
exit
netstat 명령어
tcp6 0 0 222.222.222.1:80 111.111.111.1:52034 ESTABLISHED -
포트주소
0 ~ 65535 사용 : 65536개
서버용 포트 : 20,21,22,23,25,53,80,110,143,443,445,3306,5900,... (1024)
IP 변경시 반드시 체크하고 넘어가야 할 내용들
1. 아이피를 변경한다
sudo nano /etc/netplan/00-installer-config.yaml
2. 아이피를 적용한다
sudo netplan apply
3. 아이피를 확인한다
ip addr
4. ping으로 외부 통신을 확인한다
ping 168.126.63.1
GNS3에서 외부와 통신하기
NAT로 변경(정해진 값)
220.87.199.59 > 192.168.0.221 > [NAT] > 10.0.2.15
10.0.2.15
255.255.255.0
10.0.2.2

---

#3일차_20240126
ping공격 차단
sysctl -w net.ipv4.icmp_echo_ignore_all = 1
서버에서 차단 성공
라우터 차단
access-list 1 deny 100.100.100.1 255.255.255.255
access-list 1 permit any
리눅스 프로그램 설치
sudo apt update
sudo apt upgrade
dpkg -l telnetd
dpkg -l apache2 mysql-server php
sudo apt -y install xinetd telnetd
cd /etc/xinetd.d
touch telnet
service telnet
{
disable = no
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/sbin/in.telnetd
log_on_failuer += USERID
}
sudo apt -y install openssh-server
sudo apt -y install xrdp
#DNS nslookup st.au
sudo apt -y install bind9 bind9utils
cd /etc/bind
cat /etc/bind/named.conf.options
nano /etc/bind/named.conf.options
dnssec-validation auto; >
systemctl restart named
systemctl enable named
systemctl status named
cat /etc/resolv.conf
nano /etc/resolv.conf
nameserver 222.222.222.1
cat /etc/bind/named.default-zones
nano /etc/bind/named.default-zones
zone "" IN {
type master;
file "/etc/bind/st.au.zone";
};
named-checkconf
cd /etc/bind
touch st.au.zone
nano st.au.zone
www IN A 222.222.222.1
ftp IN A 222.222.222.1
mail IN A 222.222.222.1
named-checkzone st.au.zone st.au
sudo apt -y install sendmail
sudo apt -y install dovecot-pop3d
sudo apt -y install dovecot-imapd
sudo apt -y install lamp-server^
dpkg -l
linux
apache2
mysql8.0
php8.1
sudo apt -y install lrzsz 파일 전송프로그램
sudo apt -y install unzip 압축프로그램 해제
sudo apt -y install vsftpd
cat /etc/vsftpd.conf
sudo nano /etc/vsftpd.conf
sudo apt -y install proftpd
sudo apt -y install nfs-kernel-server
sudo apt -y install samba samba-common smbclient cifs-utils
sudo apt -y install lftp
sudo apt -y install isc-dhcp-server
sudo apt -y install squid
sudo apt -y install roundcube
nano /etc/apache2/conf-enable/roundcube.conf
ip addr
cat /etc/resolv.conf
ping 168.126.63.1
netstat -ant
sudo apt -y install net-tools
#4일차_20240126
#5일차_20240126

---

참고사이트
1.
2.
3.