TALLER DE SEGURIDA

D DE PUERTOS

INTEGRANTES:

MIGUEL GALECIO

MANSSURJHONATA

N RUIZ REZABALA

IVAN ALVARAD

O ALLENDE

PROFESOR

TALLER DE SEGURIDAD DE PUERTOS PARA UNA ENTIDAD BANCARIA

Se ha considerado para este proyecto la adquisición de los siguientes recursos:

1 Switch Core WS-C3560-24PS 5 Switch WS-C2960-24TT

Se ha implementado el siguiente diseño que incluye la interconexión troncalizada, con protocolo Spanning Tree para redundancia de los switch.La edificación donde se implementó cuenta con las siguientes características:

4 pisos Planta Baja: Donde serán debidamente atendidos los clientes, brindándoles

una atención personalizada y eficaz. Primer Piso: Corresponde al mezzanine, el cual cuenta con una infraestructura

amplia para la mejor comodidad y atención en el área de servicio al cliente. Segundo Piso: Conformado por el Dpto. de RRHH y los servicios de Préstamos

Bancarios. Tercer Piso: Conformado por un avanzado departamento de tecnología y

departamento de sistemas el cual día a día corroboran y evitan que no existan ataques perjudiciales que afecten a los clientes y la empresa como tal.

En el diseño se han implementado las siguientes VLAN. VLAN 99: Utilizada para la administración de los switches. VLAN 100: Transmisión de Voz

Otras VLAN fueron implementadas para los siguientes departamentos detallados a continuación:

VLAN 10: Departamento de Cajas VLAN 11: Departamento de Servicio al Cliente VLAN 12: Préstamos Bancarios VLAN 13: Recursos Humanos VLAN 14: Tecnología y Sistemas

TALLER DE SEGURIDA

D DE PUERTOS

INTEGRANTES:

MIGUEL GALECIO

MANSSURJHONATA

N RUIZ REZABALA

IVAN ALVARAD

O ALLENDE

PROFESOR

CONFIGURACIONES REALIZADAS EN SWITCHESSWITCH WSCORE L3 3560Current configuration : 1335 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname WSCORE_L3!!!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!!!!!!!!!!!!spanning-tree mode rapid-pvst!!!!interface FastEthernet0/1!interface FastEthernet0/2!interface FastEthernet0/3!interface FastEthernet0/4!interface FastEthernet0/5!interface FastEthernet0/6!interface FastEthernet0/7!interface FastEthernet0/8!interface FastEthernet0/9!

interface FastEthernet0/10!interface FastEthernet0/11!interface FastEthernet0/12!interface FastEthernet0/13!interface FastEthernet0/14!interface FastEthernet0/15!interface FastEthernet0/16!interface FastEthernet0/17!interface FastEthernet0/18!interface FastEthernet0/19!interface FastEthernet0/20!interface FastEthernet0/21!interface FastEthernet0/22!interface FastEthernet0/23!interface FastEthernet0/24!interface GigabitEthernet0/1 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet0/2 switchport trunk encapsulation dot1q switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.1 255.255.255.0!ip classless!!!!!

!!line con 0!line aux 0!line vty 0 4 password cisco login!!!End

SWITCH WSACCES_1 2960 24TT

Current configuration : 3450 bytesversion 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryptionhostname wsaccess_1enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691spanning-tree mode rapid-pvstinterface FastEthernet0/1 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/3 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/4 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !

interface FastEthernet0/5 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/6 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/7 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/8 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/9 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/10 description TECNOLOGIA Y SISTEMAS switchport access vlan 14 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/11 description TECNOLOGIA Y SISTEMAS / IMPRESORA switchport access vlan 14 switchport port-security mac-address sticky !interface FastEthernet0/12 description LIBRE shutdown!

interface FastEthernet0/13 description LIBRE shutdown!interface FastEthernet0/14 description LIBRE shutdown!interface FastEthernet0/15 description LIBRE shutdown!interface FastEthernet0/16 description LIBRE shutdown!interface FastEthernet0/17 description LIBRE shutdown!interface FastEthernet0/18 description LIBRE shutdown!interface FastEthernet0/19 description LIBRE shutdown!interface FastEthernet0/20 description LIBRE shutdown!interface FastEthernet0/21 description LIBRE shutdown!interface FastEthernet0/22 description LIBRE shutdown!interface FastEthernet0/23 description LIBRE shutdown!interface FastEthernet0/24 switchport mode trunk!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2

switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.14 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15 login!!end

SWITCH 2960 WSACCES_2

wsaccess_2#sh running-config Building configuration...

Current configuration : 2856 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname wsaccess_2!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!!!!spanning-tree mode rapid-pvst!interface FastEthernet0/1 description DPTO. RRHH / JEFE switchport access vlan 13

switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/3 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/4 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/5 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/6 description DPTO. RRHH / DESKTOP switchport access vlan 13 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/7 description DPTO. RRHH / IMPRESORA switchport access vlan 13 switchport port-security mac-address sticky !

interface FastEthernet0/8 description LIBRE shutdown!interface FastEthernet0/9 description LIBRE shutdown!interface FastEthernet0/10 description LIBRE shutdown!interface FastEthernet0/11 description LIBRE shutdown!interface FastEthernet0/12 description LIBRE shutdown!interface FastEthernet0/13 description LIBRE shutdown!interface FastEthernet0/14 description LIBRE shutdown!interface FastEthernet0/15 description LIBRE shutdown!interface FastEthernet0/16 description LIBRE shutdown!interface FastEthernet0/17 description LIBRE shutdown!interface FastEthernet0/18 description LIBRE shutdown!

interface FastEthernet0/19 description LIBRE shutdown!interface FastEthernet0/20 description LIBRE shutdown!interface FastEthernet0/21 description LIBRE shutdown!interface FastEthernet0/22 description LIBRE shutdown!interface FastEthernet0/23 switchport mode trunk!interface FastEthernet0/24 switchport mode trunk!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2 switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.13 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15

login!!end

wsaccess_2#

SWITCH WSACCES_3 2960

Current configuration : 3155 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname wsaccess_3!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!!!!spanning-tree mode rapid-pvst!interface FastEthernet0/1 description PRESTAMOS BANCARIOS / JEFA switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/3 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/4 description PRESTAMOS BANCARIOS switchport access vlan 12

switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/5 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/6 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/7 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/8 description PRESTAMOS BANCARIOS switchport access vlan 12 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/9 description PRESTAMOS BANCARIOS / IMPRESORA switchport access vlan 12 switchport port-security mac-address sticky !interface FastEthernet0/10 description LIBRE shutdown!interface FastEthernet0/11 description LIBRE shutdown!interface FastEthernet0/12 description LIBRE shutdown!interface FastEthernet0/13 description LIBRE

shutdown!interface FastEthernet0/14 description LIBRE shutdown!interface FastEthernet0/15 description LIBRE shutdown!interface FastEthernet0/16 description LIBRE shutdown!interface FastEthernet0/17 description LIBRE shutdown!interface FastEthernet0/18 description LIBRE shutdown!interface FastEthernet0/19 description LIBRE shutdown!interface FastEthernet0/20 description LIBRE shutdown!interface FastEthernet0/21 description LIBRE shutdown!interface FastEthernet0/22 description LIBRE shutdown!interface FastEthernet0/23 description LIBRE shutdown!interface FastEthernet0/24 switchport mode trunk!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2 switchport mode trunk!

interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.12 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15 login!!End

SWITCH WSACCES_4 2960

Current configuration : 3295 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname wsaccess_4!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!!!!spanning-tree mode rapid-pvst!interface FastEthernet0/1 description SERVICIO AL CLIENTE / JEFE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description SERVICIO AL CLIENTE switchport access vlan 11

switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/3 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/4 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/5 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/6 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/7 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/8 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/9 description SERVICIO AL CLIENTE switchport access vlan 11 switchport voice vlan 100 switchport port-security maximum 2

switchport port-security mac-address sticky !interface FastEthernet0/10 description SERVICIO AL CLIENTE / IMPRESORA switchport access vlan 11 switchport port-security mac-address sticky !interface FastEthernet0/11 description LIBRE shutdown!interface FastEthernet0/12 description LIBRE shutdown!interface FastEthernet0/13 description LIBRE shutdown!interface FastEthernet0/14 description LIBRE shutdown!interface FastEthernet0/15 description LIBRE shutdown!interface FastEthernet0/16 description LIBRE shutdown!interface FastEthernet0/17 description LIBRE shutdown!interface FastEthernet0/18 description LIBRE shutdown!interface FastEthernet0/19 description LIBRE shutdown!interface FastEthernet0/20 description LIBRE shutdown!interface FastEthernet0/21 description LIBRE shutdown!

interface FastEthernet0/22 description LIBRE shutdown!interface FastEthernet0/23 description LIBRE shutdown!interface FastEthernet0/24 switchport mode trunk!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2 switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.11 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15 login!!End

SWITCH WSACESS_5 2960

Current configuration : 3743 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname wsaccess_5!enable secret 5 $1$mERr$wneVGuZWQHdrtaOrGYA691!

!!!spanning-tree mode rapid-pvst!interface FastEthernet0/1 description DPTO. CAJA / JEFA switchport access vlan 10 switchport voice vlan 100 switchport port-security maximum 2 switchport port-security mac-address sticky !interface FastEthernet0/2 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/3 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/4 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/5 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/6 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/7 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/8 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/9 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky

!interface FastEthernet0/10 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/11 description DPTO. CAJA / DESKTOP switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/12 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/13 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/14 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/15 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/16 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/17 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/18 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/19 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !

interface FastEthernet0/20 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/21 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/22 description DPTO. CAJA / IMPRESORA switchport access vlan 10 switchport port-security mac-address sticky !interface FastEthernet0/23 description LIBRE shutdown!interface FastEthernet0/24 description LIBRE shutdown!interface GigabitEthernet1/1 switchport mode trunk!interface GigabitEthernet1/2 switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan99 ip address 172.16.99.10 255.255.255.0!ip default-gateway 172.16.99.1!!line con 0!line vty 0 4 password cisco loginline vty 5 15 login!!End

Departamento Tecnología y Sistemas

Departamento de RRHH

Departamento de Préstamos Bancarios

Departamento de Servicio al Cliente

Departamento de Caja