辽东学院自编教材网络应用与安全实验指导书宁芳露编(信息管理与信息系统专业)信息技术学院2011年7月1姓名:学号:班级:专业:信息管理与信息系统层次:本科2011年7月2目录实验一扫描技术..........................................................................................................................................1实验二网络攻击与监听...............................................................................................................................6实验三ARP攻击与欺骗.............................................................................................................................11一、实验目的...............................................................................................................................................11二、实验内容...............................................................................................................................................11三、实验步骤...............................................................................................................................................11四、实验结果及分析..................................................................................................................................14实验四(1)应用服务器的搭建---一、实验目的..............................................................................................................................................15二、课前准备练习......................................................................................................................................15三、实验内容和要求.....................................................................................................错误!未定义书签。实验四(2)应用服务器的搭建---FTP配置.......................................................................................16实验五交换技术........................................................................................................................................17实验六(1)路由技术-静态路由.............................................................................................................18一、实验目的..............................................................................................................................................18二、实验要求..............................................................................................................................................18三、实验内容..............................................................................................................................................18四、实验结果及分析..................................................................................................................................18实验六(2)路由技术—动态路由................................................................................错误!未定义书签。实验七广域网技术.......................................................................................................错误!未定义书签。1实验一扫描技术实验类型:验证型实验课时:2指导教师:时间:2011年月日课次:第节教学周次:第周实验分室:实验台号:实验员:一、实验目的1.了解扫描的作用。2.掌握扫描器、协议分析软件的使用方法。二、实验内容1.Nmap扫描器的使用2.Ethereal数据包捕获工具的使用三、实验步骤说明1.Nmap扫描器的使用由于Nmap的使用需要用到WinPcap,所有先安装WinPcap。再将Nmap文件夹拷到D盘下。在开始-运行中输入cmd,启动cmd.exe。C:\DocumentsandSettings\Administratord:D:\cdnmapD:\nmapnmap(以下是Nmap用法的详细说明)Nmap4.00()Usage(使用方法):nmap[ScanType(s)][Options]{targetspecification}TARGETSPECIFICATION(目标说明):Canpasshostnames,IPaddresses,networks,etc.Ex:scanme.nmap.org,microsoft.com/24,192.168.0.1;10.0.0-255.1-254-iLinputfilename:Inputfromlistofhosts/networks-iRnumhosts:Chooserandomtargets--excludehost1[,host2][,host3],...:Excludehosts/networks--excludefileexclude_file:ExcludelistfromfileHOSTDISCOVERY(主机扫描):2-sL:ListScan-simplylisttargetstoscan-sP:PingScan-gonofurtherthandeterminingifhostisonline-P0:Treatallhostsasonline--skiphostdiscovery-PS/PA/PU[portlist]:TCPSYN/ACKorUDPdiscoverytogivenports-PE/PP/PM:ICMPecho,timestamp,andnetmaskrequestdiscoveryprobes-n/-R:NeverdoDNSresolution/Alwaysresolve[default:sometimes]--dns-serversserv1[,serv2],...:SpecifycustomDNSservers--system-dns:UseOS'sDNSresolverSCANTECHNIQUES(扫描策略):-sS/sT/sA/sW/sM:TCPSYN/Connect()/ACK/Window/Maimonscans-sN/sF/sX:TCPNull,FIN,andXmasscans--scanflagsflags:CustomizeTCPscanflags-sIzombiehost[:probeport]:Idlescan-sO:IPprotocolscan-bftprelayhost:FTPbouncescanPORTSPECIFICATIONANDSCANORDER(端口说明及扫描顺序):-pportranges:OnlyscanspecifiedportsEx:-p22;-p1-65535;-pU:53,111,137,T:21-25,80,139,8080-F:Fast-Scanonlytheportslistedinthenmap-servicesfile)-r:Scanportsconsecutively-don'trandomizeSERVICE/VERSIONDETECTION(服务/版本探测):-sV:Probeopenportstodetermineservice/versioninfo--version-intensitylevel:Setfrom0(light)to9(tryallprobes)--version-light:Limittomostlikelyprobes(intensity2)--version-all:Tryeverysingleprobe(intensity9)--version-trace:Showdetailedversionscanactivity(fordebugging)OSDETECTION(操作系统探测):-O:EnableOSdetection--osscan-limit:LimitOSdetectiontopromisingtargets--osscan-guess:GuessOSmoreaggressively3TIMINGANDPERFORMANCE(时间和性能):-T[0-5]:Settimingtemplate(higherisfaster)--min-hostgroup/max-hostgroupsize:Parallelhostscangroupsizes--min-parallelism/max-para