130958992-Webmin-Squid-Firewall-Servidor-DHCP-Delay-Pools.pdf

M�� E�� P�� C�� D�� S��

Ma��a� I��a�� W�� S�� F�� S�� DHCP � D�� P��

1

M��e�� de Ed�cac�� D��ecc�� de S��e�a�� Ma�ce�� P��ce � E��e�� Re�� Re��

W�� E��e ��a� ��e�e c�� de��a�a�� e� �� de ad��ad��e� de �ed de� ��a�a

C��

I�� C��. C�� . T�d� �� e��e�� e a��a a� ��f��a�e � �a�d�a�e ��e e� ��a�a ��e. L� �� S�� 2.7. Se ��e� e��cac��e� ��e �� e��a� �� f�� c��c� � ��a ��b�e ��e�e��ac�� a�a e��e ��.

�C�� ? Web�� e� �a �e��a��e��a ��e ��a�� a�a c��f��a� ��e�� e��d�� ed�a��e ��a ��

��. ��. P�� . ��. E� a�b�� ca�� debe�� ab�� e� �a�e�ad�� d�� a �a ��e��e d��ecc�� eb:

��://�e��c��.��e�c�e�a.��ca�:10000 ��://172.16.0.1:10000 N�� 1: 1: �e ��ede e��a� �a �e��c�� de ��b�e e�c��b�e�d� �a d��ecc�� de � ed. N�� 2: 2: ��e ��e �e ��a e� ��c�� HTTPS �a�a ��a c��e�� e��a.

P��a de ��e�� a Web�� ://�e��c��.��e�c�e�a.��ca�:10000/ E� ��a��e de��aca� ��e �� e�e�� c��f��ad� e� ��e�� e��ad�� eb �� a��a� (��a�e e� c��f��ac�� de �� a��a�e��e) debe a��e�a��e a �a ��a de �e�ce�c��e� de �� e� �� de ��e�� e��d�� 172.16.0.1� �a�a ��e �e �ea��ce �a c��e�� a��e��e.

2


W�� E��e ��a� ��e�e c�� de��a�a�� e� �� de ad��ad��e� de �ed de� ��a�a

C��

I�� C��. C�� . T�d� �� e��e�� e a��a a� ��f��a�e � �a�d�a�e ��e e� ��a�a ��e. L� �� S�� 2.7. Se ��e� e��cac��e� ��e �� e��a� �� f�� c��c� � ��a ��b�e ��e�e��ac�� a�a e��e ��.

�C�� ? Web�� e� �a �e��a��e��a ��e ��a�� a�a c��f��a� ��e�� e��d�� ed�a��e ��a ��

��. ��. P�� . ��. E� a�b�� ca�� debe�� ab�� e� �a�e�ad�� d�� a �a ��e��e d��ecc�� eb:

��://�e��c��.��e�c�e�a.��ca�:10000 ��://172.16.0.1:10000 N�� 1: 1: �e ��ede e��a� �a �e��c�� de ��b�e e�c��b�e�d� �a d��ecc�� de � ed. N�� 2: 2: ��e ��e �e ��a e� ��c�� HTTPS �a�a ��a c��e�� e��a.

P��a de ��e�� a Web�� ://�e��c��.��e�c�e�a.��ca�:10000/ E� ��a��e de��aca� ��e �� e�e�� c��f��ad� e� ��e�� e��ad�� eb �� a��a� (��a�e e� c��f��ac�� de �� a��a�e��e) debe a��e�a��e a �a ��a de �e�ce�c��e� de �� e� �� de ��e�� e��d�� 172.16.0.1� �a�a ��e �e �ea��ce �a c��e�� a��e��e.

2


P��a P��c��a� de Web�� ://�e��c��.��e�c�e�a.��ca�:10000/

F�� B�� Pa�a �ace� ��a c��a de �e��a�d� de �a c��f��ac�� de S��d (� de c�a��e� �e��c�� d��d�a�), �� d�� a� a�a��ad� Web�� > C��a de Se��dad. Se�ecc��a�� e� ��d�� a �e��a�da� e� e��e ca�� P�� S��d� � �e�ecc��a�� e� de�� d��de �e �a a ��a�da� e� a�c�� de �e��a�d�. U�a b�e�a ��c�� e� �De�ca��a� e� �a�e�ad�� de�ca��a� e� a�c�� a ��e�� e�� de ��aba�� (� �e�b��).

Web�� > C��a de Se��dad de A�c�� de C��f��ac�� 3


Web�� > C��a de Se��dad de A�c�� de C��f��ac��

P�� S�� La �e�� de S��d ��ada e� �a 2.7. Se ��e� e��cac��e� ��e �� e��a� �� f�� c��c� � ��a ��b�e ��e�e��ac�� a�a e��e ��.

�Q�� ? S��d e� �� Se��d�� I��e��ed�a�� (P��) ��e ��e�e ��c��ad� �� e�a de cac��. U� �� e� ��a �e��a��e��a ��e ac��a a c��a de ��e��ed�a�� e��e d�� ede�; e� ��e�� ca ��, e��e I��e��e� � ��e��a �ed ��ca�.

S�� : ● S��d ��c��a �� e��c�� de P�� e ��a �e��c��e� HTTP, HTTP, HTTPS � FTP a e�� e �ece��a� accede� a I��e��e� � a �� e� ��ee �a f��c��a��dad de cac�� e��ec�a��ad� e� e� c�a� a��ace�a de f��a ��ca� �a� ��a� c��ada� �ec�e��e�e��e �� a��. ● S��d ��ede �e� c��f��ad� �a�a �e� ��ad� ��ad� c�� a��a�e��e ��a��a�e��e de �a�e�a ��e �a� c��e��e� �� e��ada� de�� de� �� c��f��ac�� de� de� �ad� de� c��e��e, � �ab��a��e��e �� e e� �� c��e��e c��ca de �� e��e�c�a. De ��d� ��edef��d� S��d ��a e� ��e�� 3128 �a�a a�e�de� �e��c��e�, �� e�ba�� e ��ede e��ec�f�ca� ��e �� a�a e� c�a��e� �� e�� d��b�e � b�e� ��e �� a�a e� �a�� e�� d��b�e� a �a �e�.

4


● Of�ece �a ��b��dad de e��ab�ece� �e��a� de c�� de acce��. E�� e��e e��ab�ece� ��ca� de acce�� e� f��a ce��a��ada, ��f�ca�d� �a ad��ac�� de ��a �ed. ● S��d e�� c��e�� a�b�� e� ��a�a d�� e��e�, ��e �e e�ca��a de �a b��eda de ��b�e� de d��. C�a�d� S��d �e e�ec��a, ��d�ce �� e�� c��f��ab�e de ��ce�� d�� e��e�, � cada �� de e�� ea��a �� a b��eda e� DNS. De e��e ��d�, �e �ed�ce �a ca��dad de ��e�� e �a cac�� debe e��e�a� a e��a� b��eda� DNS. ● S��d �� debe �e� ��ad� c�� P�� a�a ��c�� c�� SMTP, POP3, TELNET, SSH, IRC, e�c.

C�� S�� E� acce�� a �a ��e�fa� �eb de S��d �e �ace de�de �a ��a ��e�fa� de Web��, �a�a accede� a e��a ��ede�: 1.

S� e��a� e� e� �e��d�� ede� �ace� c��c ��b�e e� �c�� de "Se��c��" e� e� e�c��. S� e��a� de�de �� e�� c��ec�ad� a �a �ed de� c�� e��, debe�: Ab�� a�e�ad�� e� �a ba��a de d��ecc��e� e�c��b�� "�e��c��.��e�c�e�a.��ca�:10000" (�� c��a�). Da� �a ��de� de ��a� �a ��a � e� �a�e�ad�� debe��a �a��a� ��a ad�e��e�c�a, a �a ��e �e��de� ��e e�� de ac�e�d� � dec�de� c��a� ��a�d� e� c��e��d�. D��e a� a�a��ad� �Se��d��e�� f��a��e��e a �S��d �Se��d�� P��.

2.

Se��d��e� > S��d � Se��d�� P��

C�� S��

5

M��e�� de Ed�cac�� D��ecc�� de S��e�a�� Ma�ce�� P��ce � E��e�� Re��

/��/�� E� ��.�� e c��e�e �a

L�� a�c�� d��de �e e�c�e��a ��da �a c��f��ac�� de S��d e�� e� �a ��a �a �a�� de e��e d��ec�� e�c��a�� e� a�c�� de �e�� a�� c��f��ac�� de S��d.

O�� > E��ad�� de A�c��

M�� P�� T�� T�� U� �� a��a�e��e c��b��a �� e��d�� c�� NAT (Ne�� Add�e�� T�a��a��) de �a�e�a ��e �a� c��e��e� �� e��ada� de�� de� �� c��f��ac�� a��e de� c��e��e, � �ab��a��e��e �� e e� �� c��e��e c��ca de �� e��e�c�a. E��e e� e� �� de �� e ��a� �� eed��e� de �e��c�� de I��e��e� (ISP). E� �� ad�c��a� cada e�� debe �e� c��f��ad� �a��a��e��e.

6


Se��d��e� > S��d � Se��d�� P�� > P�e�� T�aba�� e� Red

P�� T�� (R�� S��) La �ed��ecc�� de ��e�� e�a �� a�e� �� a��e e� ��e�� e��d��, ��e� de e��a c��f��ac�� de�e�de�� a ��a��a�e�c�a de �a c��e�� e��e �� c��e��e� � e� S��d. N��a�� a�b�� e �� e de�ac��a e� �ed��ecc��a��e�� a��c� de ��e��, �e b��a�� a ��ea e� e� a�c�� <��ab�e�.��.��e�> c��e��d�e��e a �a cade�a PREROUTING de �a �ab�a NAT. La ��ea a c��de�a� e� �a ��e��e:

# F�� HTTP �� S�� A PREROUTING �� 0 �� 80 �� REDIRECT �� 3128 E��a ��e ca�b�a� ��da �a ��a�ec��a de �� a��e�e� c�� de�� a� ��e�� 80 �ac�a e� ��e�� 3128 d��de �e�� ad��ad�� e�� SQUID.

7


Se��d��e� > S��d � Se��d�� P�� > C��f��ac�� de� Red��ecc��a��e�� de P�e�� Te��e�d� e� c�e��a �� e��e�� c��de�e� ��e de �� ea��a��e e��e �ed��ecc��a��e�� de� ��f�c� �ac�a ��d, e��e �� d��a c�� c�� aba��. N� �e ad��a��a �a cac��, �a��c� �e f��a��a� URL� �� a� de�� e��cc��e� ��e ��d��a�� a��ca� ��a�d� ��e��a� ACL��. D��ec��a e� e� <��d.c��f��> ��e f��a e� ��d� de ��aba�� e� ��e�� (� ��e��) d��de e�c�c�a �a� �e��c��e�.

�� 3128 ��

C�� W�� Se ��a�a cac�� eb a �a cac�� e a��ace�a d�c��e�� eb (e� dec��, ��a�, ��e�e�, e�c��e�a) �a�a �ed�c�� e� a�c�� de ba�da c��d�, �a ca��a de �� e��d��e� � e� �e�a�d� e� �a de�ca��a. U� cac�� eb a��ace�a c��a� de �� d�c��e�� e �a�a� �� , de f��a ��e ��b��e��e� �e��c��e� ��ede� �e� �e��d�da� �� e� �� cac��, �� e c��e� c�e��a� c��d�c��e�.

8


Se��d��e� > S��d � Se��d�� P�� > O�c��e� de Cac��

A�� B�� . ��a ��dad e� Web�� e� e� a�a��ad�

Pa�a e�� e��e

S�� S�� > L�� .

D�� C�� De�de e� a�c�� <��d.c��f��> �a d��ec��a ��e def��e �a ca��dad de �e��a �ea� ded�cada �a�a a��ace�a� �� da�� c��ad��, e� �a ��e��e:

�� 8 MB

Se��d��e� > S��d � Se��d�� P�� > U�� de Me��a 9


O�� Pa��e�� cac�e_��a�, ��ce��a�e de �� de� a�c�� de ��e�ca�b�� de� ��e�a ��e�a�� a�a �a cac��

�� 90 �� 95 Ta�a�� a�a �� b�e�� a a��ace�a� e� �a cac�e.

�� 10240 MB Pa��a� ��e c��e��a� c�e�� ca�ac�e�e� �� debe� a��ace�a��e e� cac�e.

�� ? �� .��.��.�� Ta�a�� e de�ea�� e �e��a �a cac�e e� e� d��c�

�� /��/��/�� 700 16 256 # 700MB de cac�e c�� 16 d��ec�� b��d��ad�� 256 ��e�e� cada �� Cada c�a�� e ac��a��a e� cac�e. # \.��$ a�c�� de� �� ZIP # 0 ��e�� a�a c��de�a� �� a�c�� c�� f�e�c� e��e�ad� e� ��. # 50% de ��e�� a�a c��de�a� �� a�c�� c�� f�e�c�. # 1440 ��e�� a�a c��de�a� �� a�c�� c�� f�e�c� e��e�ad� e� ��.

�� .��$ 0 50% 1440 # ^f�� c��

�� : 0 50% 1440

L�� E�� (B��) E� �e�� de e�e�� c�� e ��a��a�� e� de ��a� ��a�c�a, c�� e� ��d�e�� a�a��a� e� ��f�c� de S��d � e� e��a b��c��a �a ��e c��a�� e� �e�e�ad�� de ��f��e�. � �e�d� � e� D��ec��a ��e def��e d��de �e a��ace�a�a� �� e�e�� de� c��a��e�� de �a cac�e de ��d

�� /��/��/��/��.�� D��ec��a ��e ��d�ca� d��de �e ��a�da e� �� de �e��

�� /��/��/��/��.��

10


�e��d��e� > Ge�e�ad�� de I�f��e� de A�� de S��d

�e��d��e� > Ge�e�ad�� de I�f��e� de A�� de S��d

11


Ge�e�ad�� de I�f��e� de A�� de S��d > L��a de ��f��e� �a �e�e�ad��

Ge�e�ad�� de I�f��e� de A�� de S��d, ��a de �� f��e.

L�� C�� A�� La� �e��a� ACL �� L�� C�� A�� ede� �e� de �a�� . S� f��a��dad e� def�� c�� de e�e�e�� e a��da��, �� ade�a��e a def�� a� �e��a� de acce��. E� ��e�� e�� c�� ad��ad��e� �� a ��ced�d�, e� �� de ��a ��dad, ��e S��d de�e de b��da� �e��c�� deb�d� a ��a �a�a c��fecc�� de �a� ACL�. E� �ca��e� �a �e��a��e��a �� 12


��e��a �e��a�e� de e��, a��e �� e��e e� �a� a�ab�e. E� a�� d��de �e �ace d�f�c�� e��a �a�ea. Le� de�a�� a�� T��, �a�a ��e�e�� b�e�a�: ○

○

A�e��a��e de �� e�e�� b�e��. P�� e�e��, �� e�e�� d�� ACL� def��e�d� �� de NIC (d��ec��a ARP). N��ca �e�e�� a MAC, �� e� �a ��a ACL, �� e� ACL� d�fe�e��e�. Se ��d�ce �� c��a��e�� a��a� � e� �e��c�� ede de�e�e��e. S� �e def��e ��a ��a de d��, �� a� e� d�� c��a� � �� bd�� de� �� d��. E�e��, .��e.c�� a��.��e.c��. E��a� d�� def��c��e� �� c��a��b�e� e��e ��, � ��a�� a � �a ��a.

La ��a�� de �a� ACL� e� �a ��e��e:

�� [�� ] [��] [�a��e��] [��] T�� ACL �� R�� D�� IP �� (��e). ��a ��a d��ecc�� 192.168.1.0/24 �� de ��a d��ecc�� 192.168.1.10 192.168.1.20 ��a� �� a�c�� e��e�� (�a�b�� de �e�� a��) d��de e�� a ��a de d��ecc��e� �� 4B�� /��/��/4BTT.��

R�� D�� (� e�� ). ��a ��a d��ecc�� .��.�� de ��a d��ecc�� .��.�� .��.��.�� .��.��

R�� E�� R�� D�� D�� (�e�� a�� a� ��e��) E� �a��e�� de�ac��a �a ��c�� ca�e �e��e ��

R�� E�� R�� URL (U��f�� Re��ce L�ca�� a� ��e��) Se ��a� �a�a def�� e�� a�ab�a� c�a�e �� /��/��/��.�� 13


R�� R�� URL �� E�� R�� S��e �a�a def�� de a�c�� a�a �a de�ca��a �� /��/��/��.��

R�� T�� (��) Se ��a� �a� ��c�a�e� de �� d�a� e� ��, � e� f��a�� de ��a de 00:00 a 24:00 �� MTWHF 09:00�18:00

R�� (ARP) S��e �a�a f��a� �� d��ecc�� MAC (�ed�a acce�� c��) �a�b�� c��c�da c�� ID de Ha�d�a�e. P�ede� ��a� e� c��a�d� GETMAC �a�a a�e��a��a de�de e� P�� de W��d��. �� 09:00:2�:23:45:67

R�� P�� e a��a� de �a� �a�e�a ��e ��de�� c��b��a�d� �a� ��a� de c�� de acce��. La� �e��cc��e� �� e �ace� e� dec��: �� (� �� ) � �� (� ��) �� . A �� . S�� . �� . P�� ad�, �a�

R�� P�� (��) �� c��c�de c�� a ac� �e��e e� acce�� NO c��c�de c�� a ac� �e��e e� acce�� !��

R�� D�� (��) �� c��c�de c�� a ac� de��e�a e� acce�� NO c��c�de c�� a ac� de��e�a e� acce�� !�� N��: �a�a a�ba� �e��a� �e ��ede c��a� �� de ��a ac� �� !�� !�� 14


O�� C�a�d� S��d debe ��a� �� e��a�e de e�� ace a ��a�� de ��a ��a e��ec�a� �a�a cada �� de e��. U�a de �a� ��e�a� c��a� ��e ��e��a�� ace� e� ��e�� e��d��e� f�e ca�b�a� e� �d��a e� e�� e��a�e�. La d��ec��a ��e def��e e� ��e ca��e�a �e b��ca�a� �� a�c�� de d�c�a� ��a� �eb e� �a ��e��e: �� /��/��/��/��/S��

O�� > E��ad�� de A�c��: e��_d��ec�� /��/��a�e/��d/e��/S�a�� L�� ec��e� a�e�� e��a�� e��a�d� ��Y �� e d�� a e��e d��ec��, ��d�e ��d�f�ca� e� �e��a�e de e�� a �� ?�. La �e��e��a e�, ��. F�e �� e ��c��. Le� de�a�� e� c�d�� de ��e�� a�c�� a�a e� �e��a�e de e�� de �acce�� de�e�ad��.

15


�e��a�e de acce�� de�e�ad� �e��a��ad�

C�DIGO HTML <META HTTP�EQUIV="C��T��" CONTENT="��/��; ��=��8859�1"> A�� D�� <�� ="6" ��="��" ��="��">A�� D��
<�� ="2" ��="��" ��="��"> M�� URL: %U
S� �� A�� R�� I�� .

<��>P�� :

C�� I��
E��
E��
A��
M��.��
E�� E��
G�� T��
W��
R�� A�� E��

16


I�� L�� G�� N�� A��
��90.��.�� B�� C��

E� �� I��, �� .
P�� .

<��>R�� . R��

A��

17


�� <META HTTP�EQUIV="C��T��" CONTENT="��/��; ��=��8859�1"> IPEM N� 168 "DIEGO DE ROJAS"
ACCESO DENEGADO

E� URL ��

M�� URL: %U
H� �� :

A�� D��.
L�� &��;� �� . C�� A�� R�� .

T�� REDES SOCIALES, �� "F��", "T��" � "G��+", �� :

H�� R�� S��:
<�4 ALIGN= "MIDDLE" >
09:20�09:30 � 1� RECREO TURNO MA�ANA



13:05�13:20 � HORARIO DE ALMUER�O

14:40�14:50 � 1� RECREO TURNO TARDE



18


<��> <��> <��> <� ��="��:[email protected]"> <��> <� ��="��:N�L��V��AD��M�M��@��.��">E�� R��
A�� R��
<� ��="��:[email protected]">IPEM N� 168 "D�� R��"
V�� G�� B�� C��
<��> <� ��="��:N�L��V��AD��M�M��@��.��"> <��> <�� ="3" ��= "MIDDLE"> <�� > <��> <��><� ��="��://��.��/"> <��><� ��="��://��.��/"> <��><� ��="��://��.��/">

F�� B�� ://d�c�.��e.c��/��e�e�?��=��%3A%2F%2Fd��fe�.�eb��.c��%2F��%2F��b%2FWeb��% 2FE�%2FSERVIDOR_PROXY_SQUID.d�c ��://e�.��d�.��/Ma��a�e��L�CAS/d�c��ab�e��f��e�a��/d�c��ab�e��f��e�a��/#1 ��://ad��ad��e�.ed�ca�e�.e�/��/��de�.��/P��_cac�%C3%A9_�_f��ad��_�eb:_��d ��://b��a.�e�/b�d�.��?�IdN��c�a=2284 ��://��2.��a�a��d��.�e�/�eb/c��dad/ba�e�de�c��c��e��/� /��/Ba�e%20de%20C��c��e��/Se��d��+P�� ://��.��e.c��/��d/��d27/c��e��.�� ://��.��d�cac�e.��/ 19


C�� F�� L�� U� c��af�e�� (f��e�a�� e� ��) e� ��a �a��e de �� e�a � ��a �ed ��e e�� d��e�ada �a�a b��ea� e� acce�� a��ad�, �e��e�d� a� �� e�� c��cac��e� a��ada�.

IPT�� E� ��a �e��a��e��a� ��e �e c��e ��b�e �e�f��e�, e� f�a�e�� de a��e�ac�� de �a��e�e� de L�� 2.4.�� 2.6.�. Se ��a�a de ��a ��d�f�cac�� a��e de �� edece��, ��c�a��, � �e ��a �a�a c��a� e� f��ad� de �a��e�e�, ��ad�cc�� de d��ecc��e� de �ed � �a��ac�� de �a��e�e�. La ba�e de da�� de �e�f��e� ��ede �e� a��e�ada �� a �e��a��e��a ��ab�e�. C�a�d� e� e�� e �e��c�a e��a� �ab�a� �e �ac�a�. A� ca��a��e e� ��c�e� ��e�a�e��e ��a ��a, a ca�� de ��ab�e�, ��e��e a e�c��b�� a� cade�a� (� �e�� e ��e�e) e� �a� �ab�a�. E��a e� �a e��c��a de �a ba�e de da�� e� c�e��.

Tab�a

F��c��

F��e�

F��ad� �a��e�e�

Na�

de

T�ad�cc�� de d��ecc��e� de �ed (Ne�� Add�e�� T�a��a��)

Ma��e

20

N��b�e de �a Cade�a

F��c�� de �a cade�a

FORWARD

F��a� �a��e�e� �ac�a ��a� NIC

INPUT

F��a� �a��e�e� ��e ��e�a� a� f��e�a��

OUTPUT

F��a� �a��e�e� ��e �a��e� de� f��e�a��

PREROUTING

La ��ad�cc�� de d��ecc��e� �e ��d�ce a��e� de� e��a��e��. Fac��a �a ��a��f��ac�� de �a d��ecc�� IP de de�� a�a ��e �ea c��a��b�e c�� a �ab�a de e��a��e�� de� �e��d�� de �e��dad. Se ��a c�� NAT de �a d��ecc�� IP de de��, �a�b�� c��c�da c�� NAT de de�� DNAT.

POSTROUTING

La ��ad�cc�� c��e ��e�� de� e��a��e��. E�� e e��ea c�a�d� �� f�e �ece�a�� d�f�ca� �a d��ecc�� IP de de�� e� e� PREROUTING.

OUTPUT

T�ad�cc�� de d��ecc��e� de �ed �a�a �� a��e�e� �e�e�ad�� e� f��e�a��.

PREROUTING POSTROUTING OUTPUT INPUT FORWARD

M�d�f�cac�� de� b�� a�� f �e��ce� de� �a��e�e TCP, a��e� de� e��a��e��.


E� ��e��a e��e��e�c�a c�� ad��ad��e� de �ed c�ee�� e e� f��ad� de �a��e�e� e� de ��a� ��a�c�a �� a�a �a �e��dad de� ��e�a, �� a�a ��b��a� ��a c��e�� a I��e��e� de ca��dad. Pa�a ��a� �a f��c��a��dad de�eada �e�a�a�e�� c�� ce��a� � ab�� e��, de�ca��a� � �e�� e� ��f�c� de �a��e�e� IP. Ma�� a �a �b�a...

�C�� ?

21


22


De e��e a��, �� e�e�a �� e ��ceda e� �a �ab�a F��e�, e� �a�� de �� a��e�e �� e��a �ab�a �e de�c��be e� e� ��e��e d�a��a�a.

U� �a��e�e e��a � e� a�a��ad�. S� �� de�� e� e� �� e��d�� (� �� ca�), �e a�a��a� �a� �e��a� INPUT. S� e� �a��e�e �� e� de�ca��ad� ��e�a a� ��ce�� ca� de de��, e� a�a��ad� � e��ad� �a�a �e� e�c��ad� �� a� �e��a� OUTPUT. E� e� ca�� de ��e e� de�� de� �a��e�e f�e�a �� e a�a��a� �a� �e��a� FORWARD.

A�� . S� b�e� Web�� e ��a ��e�fa� de c��f��ac�� a�a e� f��e�a�� de L��, c�ee�� e e� �� e � f�c�� de e��e�de� �� aba�a�� d��ec�a�e��e ��b�e e� a�c�� de c��f��ac��. De�de �a ��e�fa� e� Web�� e� �a �ecc�� OTROS, accede�� a� �E��ad�� de a�c�� (��a� e� �� de Ja�a). Na�e�a�� a �a��a e� ��e��e a�c��.

23

/��/��.��.��


C�� e��e��e�c�a �e��a�, �e� ��e�� d�� f��a� de ��aba�a�. U�a de�ca��a� e��e a�c�� aba�a�� de�de ��a a��cac�� e�� de �e��ada �a ed�c��, ��b��a a� �e��d�� c�� a �ecc�� de �Ca��a� � De�ca��a��. Y �a ��a f��a �e��a ��a�d� d��ec�a�e��e �a �e��a��e��a �Ed��a�� de� a��e� �a�a.

P�� E� e��e �� a�a��ad� �ec��e�e�� d�� c��f��ac��e� a�a��a�d� �a ��a�� e��ca�d� ��e �e ��e�e�d�� ace� c�� cada ��ea. E� ��e� e�e�� de a�c�� ab�e�.��.��e� # ��c�� de �a ��a de �e��a� de �a cade�a MAGLE *�a��e :PREROUTING ACCEPT [0:0] :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] COMMIT # f�� de �a ��a de �e��a� de �a �ab�a MAGLE # E��a� def��c��e� e�� ac�a�, �a� c�a� c�� e�e� ��a� �a ��a�ac�� de� SO. # N��e� ��e �a ��ca �� defec�� de cada ��a de �a� cade�a� e� Ace��a� e� �a��e�e ��e �� c��c�da c�� a de �a� �e��a�. *f��e� :FORWARD ACCEPT [0:0] :INPUT ACCEPT [0:0] :OUTPUT ACCEPT [0:0] # De�ca�� SSH ��e �� ea de 172.16.0.10 24


�A INPUT �� c� �� c� ! �� 172.16.0.10 ��d�� 22 �� DROP #��ca �e�� c�e�� f�c� #Te��e�d� e� c�e��a ��e��a ��ca ��e��c��a de ��e�� a �� f��e� de ad��a� �e�� e�� c��e��e�, �ab�e�d� ��e �� d�� e�e� �� e��, a� ��c�� de �a �ab�a de f�� e�a�a�e�� a� ��e��e� ��ea��. #Pe�� c��e��e� de�de ��a �� de�e��ada �a�a ��d�� e�� A FORWARD �� c� �� 172.16.8.84 �� e��0 �� e��1 ��d�� 1:65535 �� ACCEPT �A FORWARD �� d� �� 172.16.8.84 �� e��0 �� e��1 ��d�� 1:65535 �� ACCEPT �A FORWARD �� c� �� 172.16.8.85 �� e��0 �� e��1 ��d�� 1:65535 �� ACCEPT �A FORWARD �� d� �� 172.16.8.85 �� e��0 �� e��1 ��d�� 1:65535 �� ACCEPT �A FORWARD �� c� �� 172.16.8.87 �� e��0 �� e��1 ��d�� 1:65535 �� ACCEPT �A FORWARD �� d� �� 172.16.8.87 �� e��0 �� e��1 ��d�� 1:65535 �� ACCEPT #De�e�a� Faceb�� A FORWARD �� c� �d 69.171.0.0/16 �� e��0 �� e��1 ��d�� 443 �� DROP �A FORWARD �� d� �d 69.171.0.0/16 �� e��0 �� e��1 ��d�� 443 �� DROP �A FORWARD �� c� �d 66.220.0.0/16 �� e��0 �� e��1 ��d�� 443 �� DROP �A FORWARD �� d� �d 66.220.0.0/16 �� e��0 �� e��1 ��d�� 443 �� DROP �A FORWARD �� c� �d 69.63.0.0/16 �� e��0 �� e��1 ��d�� 443 �� DROP �A FORWARD �� d� �d 69.63.0.0/16 �� e��0 �� e��1 ��d�� 443 �� DROP #P��ca de P�e�� A FORWARD �� c� ��d�� 0:52 �� e��0 �� e��1 �� DROP �A FORWARD �� d� ��d�� 0:52 �� e��0 �� e��1 �� DROP �A FORWARD �� c� ��d�� 53 �� e��0 �� e��1 �� ACCEPT �A FORWARD �� d� ��d�� 53 �� e��0 �� e��1 �� ACCEPT �A FORWARD �� c� ��d�� 54:79 �� e��0 �� e��1 �� DROP �A FORWARD �� d� ��d�� 54:79 �� e��0 �� e��1 �� DROP �A FORWARD �� c� ��d�� 80 �� e��0 �� e��1 �� ACCEPT �A FORWARD �� d� ��d�� 80 �� e��0 �� e��1 �� ACCEPT �A FORWARD �� c� ��d�� 81:442 �� e��0 �� e��1 �� DROP �A FORWARD �� d� ��d�� 81:442 �� e��0 �� e��1 �� DROP �A FORWARD �� c� ��d�� 443 �� e��0 �� e��1 �� ACCEPT �A FORWARD �� d� ��d�� 443 �� e��0 �� e��1 �� ACCEPT �A FORWARD �� c� ��d�� 444:65535 �� e��0 �� e��1 �� DROP �A FORWARD �� d� ��d�� 444:65535 �� e��0 �� e��1 �� DROP # O��a ��ca de ��e�� (�ec��e�dad� �� Ma�c� A�� de H��) # �a�e de��aca� ��e �� e� ��da� �a� �e��e� de� ��c�e� e��a� ��ea� �� a��da�. S�� ece�a��a� c�e��a� e��e��e�. �A FORWARD �� c� �� ! �d 172.16.0.2 �� e��0 �� e��1 �� REJECT ��e�ec�� c�� eac�ab�e ! ��d�� 80,53,443 �A FORWARD �� d� �� ! �d 172.16.0.2 �� e��0 �� e��1 �� REJECT ��e�ec�� c�� eac�ab�e ! ��d�� 80,53,443 �A FORWARD �� c� �� ! �d �e��0007.e��ca��.�e� �� e��0 �� e��1 �� REJECT ��e�ec�� c�� eac�ab�e ! ��d�� 80,53,443 �A FORWARD �� d� �� ! �d �e��0007.e��ca��.�e� �� e��0 �� e��1 �� REJECT ��e�ec�� c��eac�ab�e ! ��d�� 80,53,443 25


COMMIT *�a� :PREROUTING ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] �A POSTROUTING �� e��1 �� MASQUERADE # �ed��ecc��a c��e��e� HTTP a� P�� S��d �A PREROUTING �� c� �� c� �� e��0 ��d�� 80 �� REDIRECT �� 3128 COMMIT

B�� ://��.�e�f��e�.��/d�c��e��a��/��de�.��

26


S�� DHCP E� ��c�� de c��f��ac�� d��ca de �� (DHCP, D��a��c H�� C��f��a�� P��c��) e� �� e��da� IP d��e�ad� �a�a ��f�ca� �a ad��ac�� de �a c��f��ac�� de �ed de �� e� ��a �ed. Se ��e�e��a e� �� de �e��d��e� �a�a ad��a� �a a��ac�� d��ca de c��f��ac��e�. La� d��ecc��e� IP � �a�b�� a�ada� d��ecc��e� de Red, e� ��, �e a�� a� a cada ��e�fa� e� cada ��d� de �a �ed � debe �e� ��ca. La d��ecc�� IP �de��f�ca a� e�� a ��ca�a de ��b�ed �a ��b�ed a �a ��e �e��e�ece. DHCP �e��e a��a� d��ca�e��e ��a d��ecc�� IP a �� c��e��e a �a�� de �a ba�e de da�� de d��ecc��e� IP de� �e��d�� DHCP de �a �ed ��ca�. E� �a� �ede� TCP/IP, DHCP �ed�ce �a c��e��dad � ca��dad de ��aba�� ad��a�� a�a ��e� a c��f��a� �� e��.

S�� DHCP �� E� ��e�� e��d�� e�c��a�, e� �e��d�� DHCP e�� c��f��ad� �a�a b��da� d��ecc��e� IP d��ca�e��e e� e� �a�� 172.16.1.1 > 172.16.9.254�, �� e �� fac��a e��e�e��e �a �a�ea a� �� e�e� ��e a��a� �a��a��e��e cada e��. S�� e�ba��, �a� ��ac��e� e� �a� ��e debe�� c��a� e��e ��ce�� c�� a�� ec��. E� de ��dad dec��e a� �e��d�� DHCP ��e a��e a c�e��a ��e�fa� ��e��e �a ��a d��ecc�� IP, a�� e�e�� d�e�� d�fe�e�c�a�� ca�e��e c�� e��a d��ecc�� e� �� f��ad� de �a��e�e� (F��e�a��). Cada ��e�fa� de �ed c�e��a c�� a d��ecc�� f��ca, �a�b�� a�ada d��ecc�� MAC (Med�a Acce�� C�� C�� de Acce�� a� Med��). E� e� �e��d�� de �e��dad (TDSe��e�) e� ��a�ada ID de Ha�d�a�e. E��e �de��f�cad�� e� e� ��e �e ��a �a�a ��de� a��a� ��e��e �a ��a d��ecc�� IP a �a ��a ��e�fa�. De ��e��a e� ��e�� e��d��... �e�e�� a ��b��dad de accede� a �a� c��f��ac��e� de e��e �e��c�� de�de �a ��e�fa� �eb de Web�� ed��a�d� �� a�c�� de c��f��ac��e�, ��e e� e��e ca�� e ��a�a

/etc/dhcp3/dhcpd.conf.

En esta oportunidad no profundizaremos al explicar la sintaxis del archivo de configuración, solo mostraremos como asignar configuraciones estáticas a equipos de nuestra red desde la interfaz Web de Webmin. Nos dirigimos dentro del apartado Servidores al enlace correspondiente al Servidor DHCP.

27


Se��d��e� > Se��d�� DHCP E� �a �ecc�� de M��a� � G�� de M��a�, �ace�� c��c e� e� e��ace �A�ad�� a ��e�a ��a�

Se��d��e� > Se��d�� DHCP > A�ad�� a ��e�a �a��a

28


E� d��de e��ec�f�ca�e�� e� ��b�e ��e �e da�e�� a� ��e�� e��, e� e� e�e�� E��e�� NB�, c��a d��ecc�� de �a�d�a�e e�c��b�� e�a�a�d� de a �a�e� c�� e� �� :� (d�� ). S��e�d� c�� a �dea ��a� �� ab�� e�� a�c�� de c��f��ac�� e�c��a�e�� e��cad� e� �a ��e��e �ecc��: #Red L�ca� � d��de a��a�e�� e� �a�� de �a� �� e ��a�a� cada �� de �� de ��e��a �ed

�� 172.16.0.0 �� 255.255.0.0 � �� 172.16.0.1; �� "��.��"; �� 172.16.0.1; �� 172.16.1.1 172.16.9.254; � � # � a�� a��e�a�e�� a �� e dec�d��e�� e��a� �� e��ca. # e��e e� �� e�e��.

�� E��C�� :81:�3:1�:�6:�8; �� 172.16.8.84; �

29


DELAY POOLS L�� De�a�� P�� a a��e��a��a ��e �f�ece S��d �a�a e� c�� de� a�c�� de ba�da (�a�e �� aff�c ��a��); �� a de �a� �e��a��e��a� �� a��e� ��e ��e S��d. A �e�a� de e��, e�� c� d�c��e��ada� � c�� f�ec�e�c�a �� a� e��eada�. E� be�ef�c�� de e�� ad�ca e� ��e c��a� e� a�c�� de ba�da, �� ca��a� �e�a��dade� (�e�a�d� � de�a�) ��b�e �� b�e�� a�d�� de�de �a cac��. E� �e��a�e ��c��c� de P��, �� CACH� MISS e� c�a�d� e� �b�e�� b��cad� NO �e e�c�e��a e� �a �e��a cac�e � debe �e� de�ca��ad� de�de �� e��d�� e�� e� I��e��e�, � e� a�� d��de ac��a� �� e� de �e�a�d�. C��a�� a �� a��e��, �� CACH� HIT �c��e c�a�d� e� �b�e�� b��cad� SI e� e�c��ad� e� e��a �e��a ��e��ed�a.

CLASES DE DELAY POOLS CLASE 1 E� De�a� P�� c�a�e 1 def��e ��a ��ca e��c��a de c�� (e� ��e��a ab��acc�� a��e). E��e ��a e� �� de� ca�a� de �a�e�a ��ba� �� a� c�� a� �� c��e��e� ��e��a�e��e � c�� e�� def��da ��ca�e��e �a LAN. E� e� �� c��c� �e �ab�a de �a def��c�� de �� c� �� . E��a e� �a ��c�� d�cada �� ed de�ea ��a� e� a�c�� de ba�da ��e ��a S��d, �� a� c�� e��ea� �� a��. E��e �� e��e dec�� "�� , �� , �� " E�e��: �� 1 131072/131072

Internet

|

▼ ┌──────┐ | | |~~~~~~| | | | Pool |

└──────┘ / /

/ / /

/

☺

☺

\

Hosts

\ \

\ \

☺

\

☺

CLASE 2 E��e e� �� De�a� c�a�e 1 c�� c�� 256 De�a� P�� c�a�e 2 ��b��d��ad�� a� ��e��. E� �� c��c� �� 256 �� . E� ��e��a ab��acc�� a��e ��c��a� � 256 �a��e� �ec��da�� a��e��ad�� e� �a��e ��c��a�. C�� e��e De�a� e� ��b�e c��a� e� ca�a� ��e ��a� 256 c��e��e�. E� �� 2 �e��e def�� a�c�� de ba�da ��ba� � �� e �� cada ��a��. E��e �� e �e��e dec�� "�� ". E�e��: �� 1 131072/131072 8192/8192 30


Internet

|

▼ ┌──────┐ | | |~~~~~~| | | | Pool |

────────└──────┘──────── / / /

/

\ \ \

/ /

\ \ \

┌──────┐

┌──────┐

┌──────┐

┌──────┐

| | |~~~~~~| | | | Pool |

| | |~~~~~~| | | | Pool |

| | |~~~~~~| | | | Pool |

| | |~~~~~~| | | | Pool |

└──────┘

└──────┘

└──────┘

└──────┘

☺

☺

☺

☺

Hosts

CLASE 3 E��e e� �� De�a� P�� c�a�e 1 c�� 256 De�a� P�� c�a�e 2 � 65536 De�a� P�� de c�a�e 3 ��b��d��ad�� a e��e. E� ��e� ��c��c� �� , 256 �� , � 65536 �� . E�� e��ad� �a�a �a�e�a� �a a��ac�� de a�c�� de ba�da e� � ede� c�a�e B. E� �� 3 �e �e��e def�� a�c�� de ba�da ��ba�, �� e �� cada ��b�ed, � �� e �� cada ��a��. E��e �� e �e��e dec�� "�a� �� a�c�� de ba�da d��b�e de 1 Mb�� de ��f�c� de ��e��e�, �e�� cada ��b�ed �� ede ��a� �� de 128�b��, � cada ��a�� d��d�a� �� ede ��a� �� de 64�b��". E�e��: �� 1 131072/131072 16384/16384 8192/8192

S�� C��e�c�� a�a e��e�a� �a� ��edade� de �a� De�a� P�� e� e� a�c�� de c��f��ac�� <��d.c��f> P��e�� def�� a ca��dad de P��e� a ��a� �a ca��dad de De�a� P�� a ��a�.

31

�� N, d��de N e� > 0 � �e��e�e��a


E�e��: �� 3

D�� La c�a�e de� De�a� P�� e e��ec�f�ca c�� a d��ec��a de�a�_c�a��, �a ��e��e e� �� a�� e��ca.

�� N C d��de N e� > 0 � �e��e�e��a e� �de��f�cad�� C �e��e�e��a �a c�a�e (��ede �e� 1, 2 � 3)

E�e��:

# e� De�a� P�� e�� 1 �e�� c�a�e 3 �� 1 3 # e� De�a� P�� e�� 2 �e�� c�a�e 1 �� 2 1 # e� Da�a� P�� e�� 3 �e�� c�a�e 2 �� 3 2

D�� Pe��e �e�ac��a� �� c�� a ACL e��ec�f�ca � a�� a��a� �� a ��a de�e��ada c��d�c��. E� ��a� a �a� �e��a� de acce�� de S��d, � de �a ��a f��a e� �ece�a�� def�� e��a�e��e �a� AC�� P��e� �a�a ��e�� def�� e �e��e � �e de��e�a e� acce��.

�� E�e��: # �e �e��e e� acce�� a� �� 1 a ��d�� e�� e e�� def��d�� a ac� <� �ca��e�>

D�� 1 ��

P�� P�� R�� L�� a��e�� de cada De�a� P�� e def��e� �� ed�� de �a d��ec��a de�a�_�a�a�e�e��, c��a ��a�� e� �a ��e��e.

�� /�� [ ��/�� [��/�� L�� a��e� de �a�e � ��e �� dad�� e� B��e�. P�� e�de �� de �ace� �a c��e�� e��ec��a de Kb�� (�a�� e� ��e �e ��de �a �e��c�dad de ��eed��e� de I��e��e�) a B��e�.

E�e��:

�� 1 131072/232144 32


U� De�a� c�a�e 1. Se ��a� �� 1Mb/� de a�c�� de ba�da c�� fa�a� de de�ca��a de 2Mb. S�� e ��a e� a�c�� de ba�da ��e ��a e� ��a� �� a� c�� e d��b��e e� ca�a� e��e �� c��e��e�, �� c�a� da �a ��b��dad a c��d�c��e� de c��e�e�c�a �� e� a�c�� de ba�da e� ��d� ��e��. E�e��:

�� 1 131072/464288 16384/131072 U� De�a� c�a�e 2. Def��e ��e �e ��a�� 1Mb/� �a�a �a�e�ac�� c�� fa�a� de 4Mb �a�a ��a a��ac�� de� ca�a� a� ��, 256 c��e��e� de 128Kb/� c�� fa�a� de de�ca��a de 512Kb (e�� e�, ��ede� de�ca��a� 512Kb a ��d� �� e de e� ca�a� �� e�e� e� ��d��d�a� b�c�e� ��e��). E��e ��a�e e� �a�a ��a ��a��ac�� c�� a�� de�a�da� ��a ��a� ca��dad de ca�a�. A�� e� �e�� ca�� e ��e�e��a c�a�d� �a� 8 c��e��e� de�a�da�d� ��d� e� ca�a� a��ad� de f��a c��a. E�e��:

�� 1 131072/232144 16384/65536 8192/12800 U� De�a� c�a�e 3 c�� 1 Mb/� (131072B/�) e� ��a� �a�a �a�e�ac��, c�� a�a�� a�a ��fa�a� (b��) ��ba�e� de 2Mb (232144B��e�). Pa�a cada ��b�ed �e a��a �� ca�a� �� de 128Kb/� c�� a�a�� a�a ��fa�a� de 512Kb (65536B��e�) c�� a�c�� de ba�da �a�a cada �� de 64Kb/� (8192B/�) c�� a ��b��dad de ��fa�a� de de�ca��a� de 100Kb (12800B��e�). N��e ��e �� a��e� �a�a cada ��b�ed � �� e�cede� �� e� de ca�a� d��b�e �� a� �� de 4 c��e��e�. E� e��e ca�� e ��d�ce ��a c��d�c�� de c��e�e�c�a � e� ��e�� e ��c��a e� ca�a� e� e� ��e �� b��e�e. E� �� De�a� P�� c�a�e 2 � c�a�e 3 e� ��b�e de��ab��a� �� b�c�e�� e �� e de�ea ��a� c��ca�d� �1/�1 e� e� b�c�e� c��e��d�e��e. # a�� e� ca�a� a �� e� ��a �ed �� e ��ba�

�� 1 �1/�1 10000/200000

P�� R�� WEBMIN De�de �a ��e�fa� ��c��a� de� ��d�� S��d, accede�� a �P�� de Re�a�d��

33


Se��d��e� > S��d � Se��d�� P�� U��a�� e� ��, �A��e�a� �� e�� de �e�a�d��

Se��d��e� > S��d � Se��d�� P�� > P�� de �e�a�d�

C��e�a�� e� f��a�� c�� da�� e da�� a c��ac��.

34


Se��d��e� > S��d � Se��d�� P�� > P�� de �e�a�d� > A��e�a� P�� de Re�a�d� c�a�e de ��: "1 �A��e�a�" ��e a��e�ad� (�a�a c�a�e� 1, 2 � 3) : 56�b /�e��d�, 100 �b ��. L��e ��d��d�a� (�a�a �a� c�a�e� 2 � 3): I��ad� L��e de �ed (�a�a c�a�e 3): I��ad� NOTA: DEBIDO A QUE EL WEBMIN HACE UNA MALA CONVERSI�N DE LAS UNIDADES DE MEDIDA RECOMENDAMOS PRIMERO HACERLAS MANUALMENTE Y EXPRESARLAS DIRECTAMENTE EN BYTES.

35


Se��d��e� > S��d � Se��d�� P�� > P�� de �e�a�d� > A��e�a� P�� de Re�a�d�

Se��d��e� > S��d � Se��d�� P�� > P�� de �e�a�d� > A��e�a� P�� de Re�a�d� F��a��e��e �ace�� c��c e� c�ea�....

Se��d��e� > S��d � Se��d�� P�� > P�� de �e�a�d� > A��e�a� P�� de Re�a�d� E��a e� �a ��a �e��a��e, �e�� e� ��d�... 36


Se��d��e� > S��d � Se��d�� P�� > P�� de �e�a�d� A�� e�� e��ad�, debe�� a��a� �a� �e��a� de acce��. Hace�� c��c e� �a��e�a� ��a ACL ��e�a �a�a e��e ��

Se��d��e� > S��d � Se��d�� P�� > P�� de �e�a�d� > 1

37


A��e��e� ��a de "�e��" a "��ca��e�", ��e�� Sa� �a��

Se��d��e� > S��d � Se��d�� P�� > P�� de �e�a�d� Sa��a� ��e�a�e��e

38


Se��d��e� > S��d � Se��d�� P�� > P�� de �e�a�d� � c�� e�� e�e�� e��ad� ��e�� e� De�a� P��, e� ��e �e da�� acce�� a ��e��e� a cada �� de �� e� ��e��a �ed a ��a �e��c�dad de 56 �b��/�. A��e ��de�� a�b�� dec�a�a� e�� a c��f��ac�� e� �a �b�cac�� /e�c de�� de� a�c�� <��d.c��f> C�� d�� a� ��c�� e�� dec�a�a�e�� a ca��dad de P�� (�a�e�� e�e�� e �e a��a a ��e�� ca�� c�� c��e��e� de e��e 1�b��/� � 1.5 �b��/� dad�� e�� ISP) # dec�a�a�e�� 2 P�� a�a ca�� c�� e�� e� �� e�e�a� c�� e��cc��e� de �e��c�dad de�a�_�� 2 # dec�a�a�� e� ��e�e acce�� e� NO a cada �� de ��e�� de�a�_acce�� 1 a�� _ce� ��_NB Ve��e��NB ��_PC de�a�_acce�� 1 de�� !��_ce� !��_NB !Ve��e��NB !��_PC de�a�_acce�� 2 a�� ca��e� de�a�_acce�� 2 de�� !��ca��e� # a��a dec�� de ��e c�a�e �e�� cabe de��aca� ��e a� �e�� e�d�� acce�� e��cc�� a�� e c�� e�� ad� debe�� e� de c�a�e 1 de�a�_c�a�� 1 1 de�a�_c�a�� 2 2 # � a��a�� a��e�� c�� a� �e��c�dade� � �� a�a�� e �e�� e a��e� a ��e��a c��f��ac�� # e� ��e� de�a� e��a�� ad� ��b��ad� c�� 1/�1� 39


130958992-Webmin-Squid-Firewall-Servidor-DHCP-Delay-Pools.pdf

Recommend Documents

ACCESO DENEGADO

E� URL ���������� �� ��������� ���������

E� URL ��