TALLER DE SEGURIDA
D DE PUERTOS
INTEGRANTES:
MIGUEL GALECIO
MANSSURJHONATA
N RUIZ REZABALA
IVAN ALVARAD
O ALLENDE
PROFESOR
TALLER DE SEGURIDAD DE PUERTOS PARA UNA ENTIDAD BANCARIA
Se ha considerado para este proyecto la adquisición de los siguientes recursos:
1 Switch Core WS-C3560-24PS 5 Switch WS-C2960-24TT
Se ha implementado el siguiente diseño que incluye la interconexión troncalizada, con protocolo Spanning Tree para redundancia de los switch.La edificación donde se implementó cuenta con las siguientes características:
4 pisos Planta Baja: Donde serán debidamente atendidos los clientes, brindándoles
una atención personalizada y eficaz. Primer Piso: Corresponde al mezzanine, el cual cuenta con una infraestructura
amplia para la mejor comodidad y atención en el área de servicio al cliente. Segundo Piso: Conformado por el Dpto. de RRHH y los servicios de Préstamos
Bancarios. Tercer Piso: Conformado por un avanzado departamento de tecnología y
departamento de sistemas el cual día a día corroboran y evitan que no existan ataques perjudiciales que afecten a los clientes y la empresa como tal.
En el diseño se han implementado las siguientes VLAN. VLAN 99: Utilizada para la administración de los switches. VLAN 100: Transmisión de Voz
Otras VLAN fueron implementadas para los siguientes departamentos detallados a continuación:
VLAN 10: Departamento de Cajas VLAN 11: Departamento de Servicio al Cliente VLAN 12: Préstamos Bancarios VLAN 13: Recursos Humanos VLAN 14: Tecnología y Sistemas
TALLER DE SEGURIDA
D DE PUERTOS
INTEGRANTES:
MIGUEL GALECIO
MANSSURJHONATA
N RUIZ REZABALA
IVAN ALVARAD
O ALLENDE
PROFESOR
CONFIGURACIONES REALIZADAS EN SWITCHESSWITCH WSCORE L3 3560Current configuration : 1335 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname WSCORE_L3!!!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!!!!!!!!!!!!spanning-tree mode rapid-pvst!!!!interface FastEthernet0/1!interface FastEthernet0/2!interface FastEthernet0/3!interface FastEthernet0/4!interface FastEthernet0/5!interface FastEthernet0/6!interface FastEthernet0/7!interface FastEthernet0/8!interface FastEthernet0/9!
interface FastEthernet0/10!interface FastEthernet0/11!interface FastEthernet0/12!interface FastEthernet0/13!interface FastEthernet0/14!interface FastEthernet0/15!interface FastEthernet0/16!interface FastEthernet0/17!interface FastEthernet0/18!interface FastEthernet0/19!interface FastEthernet0/20!interface FastEthernet0/21!interface FastEthernet0/22!interface FastEthernet0/23!interface FastEthernet0/24!interface GigabitEthernet0/1 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet0/2 switchport trunk encapsulation dot1q switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.1 255.255.255.0!ip classless!!!!!
!!line con 0!line aux 0!line vty 0 4 password cisco login!!!End
SWITCH WSACCES_1 2960 24TT
Current configuration : 3450 bytesversion 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryptionhostname wsaccess_1enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691spanning-tree mode rapid-pvstinterface FastEthernet0/1 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/3 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/4 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !
interface FastEthernet0/5 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/6 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/7 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/8 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/9 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/10 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/11 description TECNOLOGIA Y SISTEMAS / IMPRESORA switchport access vlan 14 switchport port-security mac-address sticky !interface FastEthernet0/12 description LIBRE shutdown!
interface FastEthernet0/13 description LIBRE shutdown!interface FastEthernet0/14 description LIBRE shutdown!interface FastEthernet0/15 description LIBRE shutdown!interface FastEthernet0/16 description LIBRE shutdown!interface FastEthernet0/17 description LIBRE shutdown!interface FastEthernet0/18 description LIBRE shutdown!interface FastEthernet0/19 description LIBRE shutdown!interface FastEthernet0/20 description LIBRE shutdown!interface FastEthernet0/21 description LIBRE shutdown!interface FastEthernet0/22 description LIBRE shutdown!interface FastEthernet0/23 description LIBRE shutdown!interface FastEthernet0/24 switchport mode trunk!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2
switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.14 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15 login!!end
SWITCH 2960 WSACCES_2
wsaccess_2#sh running-config Building configuration...
Current configuration : 2856 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname wsaccess_2!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!!!!spanning-tree mode rapid-pvst!interface FastEthernet0/1 description DPTO. RRHH / JEFE switchport access vlan 13
switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/3 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/4 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/5 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/6 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/7 description DPTO. RRHH / IMPRESORA switchport access vlan 13 switchport port-security mac-address sticky !
interface FastEthernet0/8 description LIBRE shutdown!interface FastEthernet0/9 description LIBRE shutdown!interface FastEthernet0/10 description LIBRE shutdown!interface FastEthernet0/11 description LIBRE shutdown!interface FastEthernet0/12 description LIBRE shutdown!interface FastEthernet0/13 description LIBRE shutdown!interface FastEthernet0/14 description LIBRE shutdown!interface FastEthernet0/15 description LIBRE shutdown!interface FastEthernet0/16 description LIBRE shutdown!interface FastEthernet0/17 description LIBRE shutdown!interface FastEthernet0/18 description LIBRE shutdown!
interface FastEthernet0/19 description LIBRE shutdown!interface FastEthernet0/20 description LIBRE shutdown!interface FastEthernet0/21 description LIBRE shutdown!interface FastEthernet0/22 description LIBRE shutdown!interface FastEthernet0/23 switchport mode trunk!interface FastEthernet0/24 switchport mode trunk!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2 switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.13 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15
login!!end
wsaccess_2#
SWITCH WSACCES_3 2960
Current configuration : 3155 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname wsaccess_3!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!!!!spanning-tree mode rapid-pvst!interface FastEthernet0/1 description PRESTAMOS BANCARIOS / JEFA switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/3 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/4 description PRESTAMOS BANCARIOS switchport access vlan 12
switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/5 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/6 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/7 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/8 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/9 description PRESTAMOS BANCARIOS / IMPRESORA switchport access vlan 12 switchport port-security mac-address sticky !interface FastEthernet0/10 description LIBRE shutdown!interface FastEthernet0/11 description LIBRE shutdown!interface FastEthernet0/12 description LIBRE shutdown!interface FastEthernet0/13 description LIBRE
shutdown!interface FastEthernet0/14 description LIBRE shutdown!interface FastEthernet0/15 description LIBRE shutdown!interface FastEthernet0/16 description LIBRE shutdown!interface FastEthernet0/17 description LIBRE shutdown!interface FastEthernet0/18 description LIBRE shutdown!interface FastEthernet0/19 description LIBRE shutdown!interface FastEthernet0/20 description LIBRE shutdown!interface FastEthernet0/21 description LIBRE shutdown!interface FastEthernet0/22 description LIBRE shutdown!interface FastEthernet0/23 description LIBRE shutdown!interface FastEthernet0/24 switchport mode trunk!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2 switchport mode trunk!
interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.12 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15 login!!End
SWITCH WSACCES_4 2960
Current configuration : 3295 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname wsaccess_4!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!!!!spanning-tree mode rapid-pvst!interface FastEthernet0/1 description SERVICIO AL CLIENTE / JEFE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description SERVICIO AL CLIENTE switchport access vlan 11
switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/3 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/4 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/5 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/6 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/7 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/8 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/9 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2
switchport port-security mac-address sticky !interface FastEthernet0/10 description SERVICIO AL CLIENTE / IMPRESORA switchport access vlan 11 switchport port-security mac-address sticky !interface FastEthernet0/11 description LIBRE shutdown!interface FastEthernet0/12 description LIBRE shutdown!interface FastEthernet0/13 description LIBRE shutdown!interface FastEthernet0/14 description LIBRE shutdown!interface FastEthernet0/15 description LIBRE shutdown!interface FastEthernet0/16 description LIBRE shutdown!interface FastEthernet0/17 description LIBRE shutdown!interface FastEthernet0/18 description LIBRE shutdown!interface FastEthernet0/19 description LIBRE shutdown!interface FastEthernet0/20 description LIBRE shutdown!interface FastEthernet0/21 description LIBRE shutdown!
interface FastEthernet0/22 description LIBRE shutdown!interface FastEthernet0/23 description LIBRE shutdown!interface FastEthernet0/24 switchport mode trunk!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2 switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.11 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15 login!!End
SWITCH WSACESS_5 2960
Current configuration : 3743 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname wsaccess_5!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!
!!!spanning-tree mode rapid-pvst!interface FastEthernet0/1 description DPTO. CAJA / JEFA switchport access vlan 10 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/3 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/4 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/5 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/6 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/7 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/8 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/9 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky
!interface FastEthernet0/10 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/11 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/12 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/13 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/14 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/15 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/16 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/17 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/18 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/19 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !
interface FastEthernet0/20 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/21 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/22 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/23 description LIBRE shutdown!interface FastEthernet0/24 description LIBRE shutdown!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2 switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.10 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15 login!!End
Departamento Tecnología y Sistemas
Departamento de RRHH
Departamento de Préstamos Bancarios
Departamento de Servicio al Cliente