CS3695/M6-109 Lab 8-NPS02 VOIP Sniffing Ver. 8 Rev. 0

Similar documents
Motorola TEAM WSM - Cisco Unified Communications Manager Express (CME) Integration

Brest. Backup : copy flash:ppe_brest1 running-config

Configurazione Rete VoIP

Configurazione Rete VoIP

Case Study 1: Registering IP Phones with a remote Call

Lab Configuring Syslog and NTP (Instructor Version)

ADTRAN SBC and Cisco Call Manager Express SIP Trunk Interoperability

Simple MPLS network topology for Dynamips/Olive

and 2, implemented With Cisco Unified Border Control Element (CUBE)

Lab Configure Local AAA on Cisco Router

Configuring Fax Pass-Through

Lab 7: Firewalls Stateful Firewalls and Edge Router Filtering

Lab 5.3.9b Managing Router Configuration Files Using TFTP

Configuring Voice and Data Support on VWIC3s

Lab 2.1 Configure CME using the CLI and Cisco IP Communicator

How To Configure A Cisco Router With A Cio Router

CCNA Exploration 4.0: ESwitching Basic Switching / Wireless PT Practice SBA. Switch S1 S1#sh ru Building configuration...

Configuration Professional: Site to Site IPsec VPN Between Two IOS Routers Configuration Example

Ejemplo de configuración de punta a punta SBC en un Cisco 7600 Series Router

Integrated Data and Voice Services for ISDN PRI Interfaces on Multiservice Access Routers

LAN-Cell to Cisco Tunneling

EarthLink Business SIP Trunking. Cisco CUCM 9.1 with CUBE Customer Configuration Guide

Validated Integrations: CUCM 10.x with xic version 4.0 SU-6 (support included for all 4.0 SU s) Version 4.08

IDT / Net2phone SIP Trunking Configuration Guide for Cisco Business Edition 3000 (BE3000) Release with Cisco Unified Border Element Release 8.8.

SIP Trunking Configuration Guide for Cisco Unified Communications Manager (CUCM) Version with Cisco Unified Border Element (CUBE)

- Basic Voice over IP -

Skills Assessment Student Training (Answer Key)

TotalCloud Phone System

Lab Configure Syslog on AP

Quality of Service and Bandwidth Management Configuration

Proposal for implementation of VoIP at XYZ hospital.

Session Title: Exploring Packet Tracer v5.3 IP Telephony & CME. Scenario

PT Activity: Configure Cisco Routers for Syslog, NTP, and SSH Operations

IPSec. User Guide Rev 2.2

Cisco Media Monitoring Feature - Remote Data Collection with Web Services Management Agent

Managing and Configuring Cisco VoIP Devices

Sprint SIP Toll Free: Connecting Cisco Unified Customer Voice Portal 8.5 via the Cisco Unified Border Element 8.8 using SIP

Felix Rohrer. PT Activity 7.5.3: Troubleshooting Wireless WRT300N. Topology Diagram

Juniper Networks WX Series Large. Integration on Cisco

BRI to PRI Connection Using Data Over Voice

Table of Contents. Cisco Using the Cisco IOS Firewall to Allow Java Applets From Known Sites while Denying Others

Network Diagram Scalability Testbed and Configuration Files

The Cisco IOS Firewall feature set is supported on the following platforms: Cisco 2600 series Cisco 3600 series

Implementing Cisco Unified Communications Voice over IP and QoS v8.0 (CVOICE v8.0) Version: Demo. Page <<1/8>>

NATIONAL SECURITY AGENCY Ft. George G. Meade, MD

Cisco Routers and Switches

Configuring a Cisco 2509-RJ Terminal Router

Using a Sierra Wireless AirLink Raven X or Raven-E with a Cisco Router Application Note

System Components PBX Model. Configuration Tasks

Configuring the Cisco Secure PIX Firewall with a Single Intern

Configuring Basic Broadband Internet Access

Configuring the MNLB Forwarding Agent

Deployment Guidelines for QoS Configuration in DSL Environment

Lab Configure Basic AP Security through IOS CLI

One-Step Lockdown with Cisco SDM

ICND IOS CLI Study Guide (CCENT)

Configuring Modem Transport Support for VoIP

6.0. Getting Started Guide

Connect the Host to attach to Fast Ethernet switch port Fa0/2. Configure the host as shown in the topology diagram above.

Configuring PEAP / LDAP based authentication using FreeRADIUS on Debian Sarge and Cisco AP1200, with WPA2 AES encryption

Cisco IOS Voice Gateway PBX Interoperability: Avaya 8500 Communications Manager 2.1 to T1 QSIG with H.323

Cisco 2621 Gateway-PBX Interoperability: Lucent/Avaya Definity G3si V7 PBX with Cisco CallManager Using T1 PRI NI-2 for an H.

Implementing Cisco IOS Unified Communications (IIUC)

Cisco CCNA Optional Semester 4 Labs Wide Area Networking LAB 1 T1 TSU WAN LINK OVERVIEW - Instructor Guide (Estimated time: 30 minutes)

Basic Router Configuration Using Cisco Configuration Professional

How To Configure A Cisco Vpn On A Cell Phone With A Pkv On A Safd On A Pv On An Asda On A Network With A Network On A Pc Or Ipv On The Ipv (Svv

APNIC Members Training Course Security workshop. 2-4 July, Port Vila Vanuatu. In conjunction with PACNOG 4

Basic Router Configuration

Virtual Private Network Setup

Table of Contents. Cisco Configuring IPSec Cisco Secure VPN Client to Central Router Controlling Access

Configuring Devices for Use with Cisco Configuration Professional (CCP) 2.5

Elastix Server VoIP Intercom Setup Guide

Configuring EtherChannel and 802.1Q Trunking Between Catalyst L2 Fixed Configuration Switches and Catalyst Switches Running CatOS

Configuring Basic Broadband Internet Access

Enabling Management Protocols: NTP, SNMP, and Syslog

Cisco VoIP CME Labs by Michael T. Durham

HIPAA Compliance Use Case

Network Security 2. Module 6 Configure Remote Access VPN

P and FTP Proxy caching Using a Cisco Cache Engine 550 an

Dramatically simplifying voice and data networking HOW-TO GUIDE. Bundle Quick Start Guide

Mediatrix 4404 Step by Step Configuration Guide June 22, 2011

Telnet, Console and AUX Port Passwords on Cisco Routers Configuration Example

Objectives. Background. Required Resources. CCNA Security

VoIP Lab: Cisco CallManager Express, Temporary Work Instructions

Lab 5.5 Configuring Logging

ICND1 Lab Guide Interconnecting Cisco Networking Devices Part 1 Version 2.0. Labs powered by

VoIP Intercom and Elastix Server

Lab Creating a Network Map using CDP Instructor Version 2500

Savvius Insight Initial Configuration

Chapter 8 Lab B: Configuring a Remote Access VPN Server and Client

Introducing Cisco Voice and Unified Communications Administration Volume 1

Cisco Configuration Professional Quick Start Guide

Implementing Cisco IOS Telephony and Unified Communications Express (IITUCX)

Integra Telecom SIP Trunking: Connecting Cisco Unified Communications Manager 8.5(1) via the Cisco Unified Border Element using SIP

ISE TACACS+ Configuration Guide for Cisco NX-OS Based Network Devices. Secure Access How-to User Series

Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

Lab Introductory Lab 1 - Getting Started and Building Start.txt

Using Two-Factor Authentication Configuration to Combat Cybersecurity Threats

Transcription:

Background For this lab, we will be analyzing some Wireshark capture files that were captured using the ARP Poisoning technique on Cisco VIOP (Voice Over IP) phones As this lab took special equipment (i.e. Cisco phones, etc.) I will explain how it was set up and worked but we won t have access to that equipment, just the capture file, for this lab. To capture the VOIP packets we used the same ARP Poisoning method as was done in the last lab, but this time the end hosts that were poisoned where the Cisco VOIP phones That placed us in the middle of their transmissions and allowed us to capture a copy of the packets. Note you could also have done this through the span port of the switch. A good reference for this is: http://everythingvoice.blogspot.de/2010/04/sniffing-and-eavesdropping-using.html Lab Overview: You will use Wireshark to open a network capture file (.pcap) and then use Wireshark s built in ability to replay them so that you can hear the conversations between the two people. Lab Procedures: 1. From Sakai, download the bankpin.pcap file to your laptop. 2. From your own laptop (or desktop) open Wireshark. Page 1

3. Under File menu Open the pcap file you downloaded earlier (bankpin.pcacp) 4. From within the packet capture, you will need to look for an RTP packet. Select (highlight) one of those RTP packets and choose from the menu on top of Wireshark Telephony, then RTP and finally Stream Analysis 5. Now choose Player Page 2

6. Then Choose Decode 7. Now the voice streams should be visible 8. Choose both streams selection box and then click on the Play button and you should here the conversation between the bank and it s customer. In particular, list for the account and PIN number 9. Deliverables: Please enter the bank account and PIN number via Assignments button in Sakai. Page 3

Appendix A Cisco Phone Appliance Config File C1861#show run Building configuration... Current configuration : 2999 bytes Last configuration change at 13:56:14 UTC Wed Jan 29 2014 version 15.1 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption hostname C1861 boot-start-marker boot-end-marker enable secret 4 eaop83n/avy2eas2tg7jbhlcx5t8h39e3gwbetdw5sy no aaa new-model mmi polling-interval 60 no mmi auto-configure no mmi pvc mmi snmp-timeout 180 crypto pki token default removal timeout 0 dot11 syslog ip source-route ip cef ip dhcp excluded-address 192.168.50.1 192.168.50.10 ip dhcp pool VOICE network 192.168.50.0 255.255.255.0 default-router 192.168.50.1 option 150 ip 192.168.50.1 no ipv6 cef multilink bundle-name authenticated voice-card 0 license udi pid C1861-SRST-C-F/K9 sn FTX1219Z04R username root password 0 root interface FastEthernet0/0 Page 4

shutdown duplex auto speed auto interface Integrated-Service-Engine0/0 shutdown interface FastEthernet0/1/0 interface FastEthernet0/1/1 interface FastEthernet0/1/2 interface FastEthernet0/1/3 interface FastEthernet0/1/4 interface FastEthernet0/1/5 interface FastEthernet0/1/6 interface FastEthernet0/1/7 interface FastEthernet0/1/8 interface Vlan1 ip address 192.168.50.1 255.255.255.0 ip forward-protocol nd ip http server no ip http secure-server control-plane voice-port 0/0/0 voice-port 0/0/1 Page 5

voice-port 0/0/2 voice-port 0/0/3 voice-port 0/1/0 voice-port 0/1/1 voice-port 0/1/2 voice-port 0/1/3 voice-port 0/4/0 auto-cut-through signal immediate input gain auto-control description Music On Hold Port mgcp profile default telephony-service max-ephones 10 max-dn 30 ip source-address 192.168.50.1 port 2000 cnf-file location flash: cnf-file perphone time-zone 23 time-format 24 date-format dd-mm-yy max-conferences 4 gain -6 transfer-system full-consult create cnf-files version-stamp Jan 01 2002 00:00:00 ephone-dn 10 dual-line number 1000 label Lab Phone 1 name Lab Phone 1 ephone-dn 20 dual-line number 2000 label Lab Phone 2 name Lab Phone 2 ephone 1 device-security-mode none mac-address 000B.BEB3.7395 speed-dial 1 2000 label "Dial Lab Phone 2" Page 6

type 7940 button 1:10 ephone 2 device-security-mode none mac-address 000B.BEB3.72E0 speed-dial 1 1000 label "Dial Lab Phone 1" type 7940 button 1:20 line con 0 no modem enable line aux 0 line 2 no activation-character no exec transport preferred none transport input all transport output lat pad telnet rlogin lapb-ta mop udptn v120 ssh line vty 0 4 password Cisco login transport input all line vty 5 15 password Cisco login transport input all monitor session 1 source interface Fa0/1/0 monitor session 1 destination interface Fa0/1/7 Page 7

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information