|
| |
|
|
RouterOS Devices Management System
Konečný, Jakub ; Novotný, Tomáš (referee) ; Hájek, Josef (advisor)
This bachelor's thesis describes a design and an implementation of an information system for management control and remote configuration of devices running MikroTik's RouterOS system. Primary purpose of the system is managing all compatible devices at one place. Within each device you can modify its DNS and DHCP settings, create or edit static DNS records and static routes. System is written in PHP using Nette Framework and MySQL database.
|
|
|
Application for batch management of Mikrotik network devices
Kloda, Tomáš ; Frolka, Jakub (referee) ; Krajsa, Ondřej (advisor)
The goal of the thesis is to describe and develop web application for large-scale management of MikroTik network devices. The theoretical part describes RouterOS operating system. This work also describes communication through MikroTik API service. Next section includes brief description of tools, which were used for the web application development. The practical part describes development and realization of the web application. The web application is intended for Linux based operating systems.
|
|
|
Queue Management in Network Active Elements
Pancák, Matej ; Kubánková, Anna (referee) ; Koton, Jaroslav (advisor)
This thesis is mainly focused on efficiency of data handling on active network elements and monitoring of transmission speeds in real and testing networks. The purpose of this work is to create and implement algorithm which is able to reorganize list of Mangle rules. The purpose of this optimization is to raise data processing efficiency and decrease communication delay as main QoS parameter. The result of the work is series of measurements in order to confirm the effect of optimizations on the transmission and other parameters.
|
|
|
Detection and mitigation of cyber attacks at local area networks
Racka, Jan ; Lieskovan, Tomáš (referee) ; Gerlich, Tomáš (advisor)
The bachelor thesis is focused on the detection and mitigation of flood attacks in local area networks. The thesis can be divided into two parts. In the theoretical part, first flooding attacks are described. Then, the problem of attack detection is discussed in depth, including the implemented detection methods. Subsequently, the classification of detection tools by location is discussed and examples of detection tools are given. The last theoretical section is devoted to network mapping methods and topology detection tools. In the practical part, the design of the IDS and the test network is discussed. The network consists of three end devices namely: the IDS, the victim and the attacker. A Mikrotik router is used to ensure connectivity between all the devices. The IDS has been implemented in Python and is composed of individual modules that extend its functionality. The most important module is the detection module, which contains detection methods against SYN Flood, UDP Flood, ICMP Flood attacks and one universal comprehensive method against all flood attacks. The ARP Scan module allowed the IDS to map the network and use ARP queries to detect the presence of endpoint devices in the network. The learning module made it easier to set up rules for each detection method by monitoring network traffic over a period of time. It then determines appropriate rule values from the detected data. The SSH module provided IDS with the ability to proactively respond to attacks and disconnect the attacker from the rest of the network. ARP Scans also use the SSH module to discover information about guests. The IDS has been tested in both virtual and real environments. The results show that the developed detection methods work and the IDS can stop the attack in a reasonable time. ARP Scanning was also tested and was able to detect new guests on average in the first pass. The effect of IDS on communication was also monitored and found to be minimal.
|
|
|
Quality of services and experience qualify for next generation networks
Vaněk, Jiří ; Horváth, Tomáš (referee) ; Grenar, David (advisor)
The thesis sums up the traffic parameters for the evaluation of next-generation access networks. There are mentioned parameters for service quality management and parameters for measuring the quality of experience. The EU regulation on High Speed Internet in the Czech Republic is analyzed. The practical part compares the results between the implementation of the quality management of services and without implementation. Also there is comparing theoretical and practical transmission rates of physical ports. Part of the thesis is a questionnaire focused on the quality of experience of the video sequence.
|
|
| |
|
| |
|
|
Implementation and Security of IPv6 Protocol in the Company
Hensl, Jaroslav ; Sedlák, Petr (referee) ; Ondrák, Viktor (advisor)
This Master's thesis is focused on the IPv6 protocol implementation in a business environment. The thesis theoretically describes parts of the protocol which are then used in a real environment with respect to maximal compatibility and security. The thesis deals with hardware components, router configuration on FreeBSD OS, and switch configuration with RouterOS. The thesis also proposes how to monitor the network.
|
|
|
Roaming in WiFi networks
Labuda, Adam ; Číka, Petr (referee) ; Krajsa, Ondřej (advisor)
This work deals with roaming issues in the WiFi network. Takes options from a 802.11 standard view. Factory setting options for fast roaming from CISCO and MikroTik. It proposes to measure and test these networks.
|
guest ::
