基础配置

用的c7200-adventerprisek9-mz.151-4.M2.bin

- R1

conf t

int f0/0

ip add 202.100.1.1 255.255.255.0

no shu

int l0

ip add 1.1.1.1 255.255.255.0

- R2

conf t

int f0/0

ip add 202.100.1.2 255.255.255.0

no shu

int l0

ip add 2.2.2.2 255.255.255.0

- CA server

hostname CA

conf t

int f0/0

ip add 202.100.1.100 255.255.255.0

no shu

int l0

ip add 100.100.100.100 255.255.255.0

- R1

ip route 0.0.0.0 0.0.0.0 202.100.1.2

-R2

ip route 0.0.0.0 0.0.0.0 202.100.1.1

- 设置时间-3台

conf t

clock timezone GMT +8

clock set 22:00:00 Dec 24 2017

show clock

cisco router架设ca服务器

conf t

ip http server

ip domain name maotai.com

crypto pki server CA

issuer-name cn=CA.maotai.com,ou=maotaisec,o=maotai,l=beijing,c=cn,e=admin@maotai.com

lifetime certificate 180

no shu

- 查看根证书(自签名证书)

show crypto pki server

r1 2生成公私钥对

conf t

crypto key generate rsa modulus 1024 label R1-key

crypto key generate rsa modulus 1024 label R2-key

r1使用sepc协议在线申请证书

- 填写到证书服务器的地址和自己的信息

crypto pki trustpoint CA

 enrollment url http://202.100.1.100:80

 subject-name cn=R1.maotai.com,ou=maotaisec,o=maotai

 revocation-check crl


- 开始提交申请

1,通过secp协议联系到了证书服务器

2,将Ca证书下载到了本地

3,将Ca证书做了hash

R1(config)#crypto pki authenticate CA #回车做了已上三件事

Certificate has the following attributes:

       Fingerprint MD5: A76CA339 2E96CB3A 57B6F963 80D53D04

      Fingerprint SHA1: E7128D47 37C013DB A634A016 1BD2B674 0BE48333

此时应该将ca证书的hash发给ca管理员,去核对ca证书是否是真实的. 确认后yes


- R1收到了根证书, 查看根证书

R1#show crypto pki certificates

CA Certificate

  Status: Available

  Certificate Serial Number (hex): 01

  Certificate Usage: Signature

  Issuer:

    cn=CA.maotai.com

    ou=maotaisec

    o=maotai

    l=beijing

    c=cn

    e=admin@maotai.com

  Subject:

    cn=CA.maotai.com

    ou=maotaisec

    o=maotai

    l=beijing

    c=cn

    e=admin@maotai.com

  Validity Date:

    start date: 22:02:23 GMT Dec 24 2017

    end   date: 22:02:23 GMT Dec 23 2020

  Associated Trustpoints: CA

###############################################3

R2操作获取CA证书-通过离线方式(不通过在线sepc协议)

crypto key generate rsa modulus 1024 label R2-key

- r2填写信息

crypto pki trustpoint CA

 enrollment terminal

 subject-name cn=R2.maotai.com,ou=maotaisec,o=maotai

 revocation-check none

- ca导出ca证书 发给r2

R3(config)#crypto pki export CA pem terminal

% The specified trustpoint is not enrolled (CA).

% Only export the CA certificate in PEM format.

% CA certificate:

-----BEGIN CERTIFICATE-----

MIIC0zCCAjygAwIBAgIBATANBgkqhkiG9w0BAQQFADB9MR8wHQYJKoZIhvcNAQkB

FhBhZG1pbkBtYW90YWkuY29tMQswCQYDVQQGEwJjbjEQMA4GA1UEBxMHYmVpamlu

ZzEPMA0GA1UEChMGbWFvdGFpMRIwEAYDVQQLEwltYW90YWlzZWMxFjAUBgNVBAMT

DUNBLm1hb3RhaS5jb20wHhcNMTcxMjI0MTQwMjIzWhcNMjAxMjIzMTQwMjIzWjB9

MR8wHQYJKoZIhvcNAQkBFhBhZG1pbkBtYW90YWkuY29tMQswCQYDVQQGEwJjbjEQ

MA4GA1UEBxMHYmVpamluZzEPMA0GA1UEChMGbWFvdGFpMRIwEAYDVQQLEwltYW90

YWlzZWMxFjAUBgNVBAMTDUNBLm1hb3RhaS5jb20wgZ8wDQYJKoZIhvcNAQEBBQAD

gY0AMIGJAoGBAOA2917GGO8huAJ9uxfxCjlEEG3y4GyGF+oEl5tuCpWA0LncOOiI

C9l5QrheebQ/lX4bEej1ZEtfQd8IHJf/3s4VC3t0tqG0GoXIF0ESFVB8WKVQ8jam

xV5h4GHH2P3hQdaz/4lNtwxoutoHMRV2bcJXLLXDIBpx1ajp3hM2dzOvAgMBAAGj

YzBhMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgGGMB8GA1UdIwQYMBaA

FBg3p/6/o/qljWcZRgBBqOtRjDXKMB0GA1UdDgQWBBQYN6f+v6P6pY1nGUYAQajr

UYw1yjANBgkqhkiG9w0BAQQFAAOBgQDGu/cxyC7uKxucQgn+vTc943O1M9mIrMn1

BMvRRYr1E9r0wtxPhfxqj6Op0A8rsvg0Y5Gufi3ePwOLOOqBAMJwb3ZfgYGLTTsv

xbLusphV3km6ooWYXWXrNqkNfJaIuZlzFdPVjc4GIVHZ/A9KPILTkB/HYZ8S2goF

JLDTdVgxgg==

-----END CERTIFICATE-----

- R2导入ca证书

R2(config)#crypto pki authenticate CA

Enter the base 64 encoded CA certificate.

End with a blank line or the word "quit" on a line by itself

-----BEGIN CERTIFICATE-----

MIIC0zCCAjygAwIBAgIBATANBgkqhkiG9w0BAQQFADB9MR8wHQYJKoZIhvcNAQkB

FhBhZG1pbkBtYW90YWkuY29tMQswCQYDVQQGEwJjbjEQMA4GA1UEBxMHYmVpamlu

ZzEPMA0GA1UEChMGbWFvdGFpMRIwEAYDVQQLEwltYW90YWlzZWMxFjAUBgNVBAMT

DUNBLm1hb3RhaS5jb20wHhcNMTcxMjI0MTQwMjIzWhcNMjAxMjIzMTQwMjIzWjB9

MR8wHQYJKoZIhvcNAQkBFhBhZG1pbkBtYW90YWkuY29tMQswCQYDVQQGEwJjbjEQ

MA4GA1UEBxMHYmVpamluZzEPMA0GA1UEChMGbWFvdGFpMRIwEAYDVQQLEwltYW90

YWlzZWMxFjAUBgNVBAMTDUNBLm1hb3RhaS5jb20wgZ8wDQYJKoZIhvcNAQEBBQAD

gY0AMIGJAoGBAOA2917GGO8huAJ9uxfxCjlEEG3y4GyGF+oEl5tuCpWA0LncOOiI

C9l5QrheebQ/lX4bEej1ZEtfQd8IHJf/3s4VC3t0tqG0GoXIF0ESFVB8WKVQ8jam

xV5h4GHH2P3hQdaz/4lNtwxoutoHMRV2bcJXLLXDIBpx1ajp3hM2dzOvAgMBAAGj

YzBhMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgGGMB8GA1UdIwQYMBaA

FBg3p/6/o/qljWcZRgBBqOtRjDXKMB0GA1UdDgQWBBQYN6f+v6P6pY1nGUYAQajr

UYw1yjANBgkqhkiG9w0BAQQFAAOBgQDGu/cxyC7uKxucQgn+vTc943O1M9mIrMn1

BMvRRYr1E9r0wtxPhfxqj6Op0A8rsvg0Y5Gufi3ePwOLOOqBAMJwb3ZfgYGLTTsv

xbLusphV3km6ooWYXWXrNqkNfJaIuZlzFdPVjc4GIVHZ/A9KPILTkB/HYZ8S2goF

JLDTdVgxgg==

-----END CERTIFICATE-----

Certificate has the following attributes:

       Fingerprint MD5: A76CA339 2E96CB3A 57B6F963 80D53D04

      Fingerprint SHA1: E7128D47 37C013DB A634A016 1BD2B674 0BE48333

% Do you accept this certificate? [yes/no]:

r1开始申请证书

R1(config)#crypto pki enroll CA

Dec 24 14:19:57.251: CRYPTO_PKI:  Certificate Request Fingerprint MD5: 7D4A4E77 273B7C8F 17474A9A 32F6E9FB

Dec 24 14:19:57.255: CRYPTO_PKI:  Certificate Request Fingerprint SHA1: 73F0386E F104BD45 13103E06 0BB3ABE3 69B5C22A

- ca颁发证书

CA#crypto pki server CA info request

CA#crypto pki server CA grant 1

R1#show crypto pki certificates

Dec 24 14:29:02.983: %PKI-6-CERTRET: Certificate received from Certificate Authority

R1#show crypto pki certificates

r2开始申请证书

- 到处自己的 个人信息+r2公钥,发给ca

R2(config)#crypto pki enroll CA

% Start certificate enrollment .. 

% The subject name in the certificate will include: cn=R2.maotai.com,ou=maotaisec,o=maotai

% The subject name in the certificate will include: R2

% Include the router serial number in the subject name? [yes/no]: no

% Include an IP address in the subject name? [no]: no

Display Certificate Request to terminal? [yes/no]: yes

Certificate Request follows:

MIIBsTCCARoCAQAwUDEPMA0GA1UEChMGbWFvdGFpMRIwEAYDVQQLEwltYW90YWlz

ZWMxFjAUBgNVBAMTDVIyLm1hb3RhaS5jb20xETAPBgkqhkiG9w0BCQIWAlIyMIGf

MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCqzJU62/bMuGxotd9cmvOQW5ftehsp

aLxQkjoE1RHgLof6KAgsRVpilNoZJJ/MMFWnJh87xyouWbU5BdHJq8zsiUT3yw9X

QOAg6goU35Av535it2J1zrYWLVL5YxtuY+iVxIt2SAjuhRdYOFyXc+qf0I3GRVAH

GI/Q5sQiMWQA0wIDAQABoCEwHwYJKoZIhvcNAQkOMRIwEDAOBgNVHQ8BAf8EBAMC

BaAwDQYJKoZIhvcNAQEFBQADgYEAKsa1DjloOMfaAqAGJ4/p/a/09IDoK9aiFSt+

RQ4Td5Dz+A+mvTBXeoUkL9hYThQvAd6h62dOh6BBLXYw10Tl3LVyodW+Dc/RSO3m

1liR8D1Ij7v9Ha94AbtfDFm2S45fi6383B/1qMmlsufcpH7r6Q1uEO0fthgo01A9

GUF8ABg=

---End - This line not part of the certificate request---

- ca导入r2的申请

CA#crypto pki server CA request pkcs10 terminal

PKCS10 request in base64 or pem

% Enter Base64 encoded or PEM formatted PKCS10 enrollment request.

% End with a blank line or "quit" on a line by itself.

MIIBsTCCARoCAQAwUDEPMA0GA1UEChMGbWFvdGFpMRIwEAYDVQQLEwltYW90YWlz

ZWMxFjAUBgNVBAMTDVIyLm1hb3RhaS5jb20xETAPBgkqhkiG9w0BCQIWAlIyMIGf

MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCqzJU62/bMuGxotd9cmvOQW5ftehsp

aLxQkjoE1RHgLof6KAgsRVpilNoZJJ/MMFWnJh87xyouWbU5BdHJq8zsiUT3yw9X

QOAg6goU35Av535it2J1zrYWLVL5YxtuY+iVxIt2SAjuhRdYOFyXc+qf0I3GRVAH

GI/Q5sQiMWQA0wIDAQABoCEwHwYJKoZIhvcNAQkOMRIwEDAOBgNVHQ8BAf8EBAMC

BaAwDQYJKoZIhvcNAQEFBQADgYEAKsa1DjloOMfaAqAGJ4/p/a/09IDoK9aiFSt+

RQ4Td5Dz+A+mvTBXeoUkL9hYThQvAd6h62dOh6BBLXYw10Tl3LVyodW+Dc/RSO3m

1liR8D1Ij7v9Ha94AbtfDFm2S45fi6383B/1qMmlsufcpH7r6Q1uEO0fthgo01A9

GUF8ABg=

% Enrollment request pending, reqId=2

- ca为r2颁发证书,将证书发给r2

CA#crypto pki server CA grant 2

% Granted certificate:

MIIClTCCAf6gAwIBAgIBAzANBgkqhkiG9w0BAQQFADB9MR8wHQYJKoZIhvcNAQkB

FhBhZG1pbkBtYW90YWkuY29tMQswCQYDVQQGEwJjbjEQMA4GA1UEBxMHYmVpamlu

ZzEPMA0GA1UEChMGbWFvdGFpMRIwEAYDVQQLEwltYW90YWlzZWMxFjAUBgNVBAMT

DUNBLm1hb3RhaS5jb20wHhcNMTcxMjI0MTQzMDUzWhcNMTgwNjIyMTQzMDUzWjBQ

MQ8wDQYDVQQKEwZtYW90YWkxEjAQBgNVBAsTCW1hb3RhaXNlYzEWMBQGA1UEAxMN

UjIubWFvdGFpLmNvbTERMA8GCSqGSIb3DQEJAhYCUjIwgZ8wDQYJKoZIhvcNAQEB

BQADgY0AMIGJAoGBAKrMlTrb9sy4bGi131ya85Bbl+16GylovFCSOgTVEeAuh/oo

CCxFWmKU2hkkn8wwVacmHzvHKi5ZtTkF0cmrzOyJRPfLD1dA4CDqChTfkC/nfmK3

YnXOthYtUvljG25j6JXEi3ZICO6FF1g4XJdz6p/QjcZFUAcYj9DmxCIxZADTAgMB

AAGjUjBQMA4GA1UdDwEB/wQEAwIFoDAfBgNVHSMEGDAWgBQYN6f+v6P6pY1nGUYA

QajrUYw1yjAdBgNVHQ4EFgQUyjgMlXltwkGnklUtJlfoPfXtlEMwDQYJKoZIhvcN

AQEEBQADgYEArEIc54rZVAWTxb3Ve1SJulQhcJEQCO3OI1DeloSlCcpaojYq0P6t

F+ZpBnobsfEboFovOO9H4h6CSXqoo/RuoTnAiWMxJu0FnD8UC5rXk5wY8NXHX5/2

jaLBtlzhDR9aL1p9LMGb0Lj64hcvmCgWfSlqaTjDSWLNEPpcrs1GQVk=

- r2将自己的证书导入

R2(config)#crypto pki import CA certificate 

Enter the base 64 encoded certificate.

End with a blank line or the word "quit" on a line by itself

MIIClTCCAf6gAwIBAgIBAzANBgkqhkiG9w0BAQQFADB9MR8wHQYJKoZIhvcNAQkB

FhBhZG1pbkBtYW90YWkuY29tMQswCQYDVQQGEwJjbjEQMA4GA1UEBxMHYmVpamlu

ZzEPMA0GA1UEChMGbWFvdGFpMRIwEAYDVQQLEwltYW90YWlzZWMxFjAUBgNVBAMT

DUNBLm1hb3RhaS5jb20wHhcNMTcxMjI0MTQzMDUzWhcNMTgwNjIyMTQzMDUzWjBQ

MQ8wDQYDVQQKEwZtYW90YWkxEjAQBgNVBAsTCW1hb3RhaXNlYzEWMBQGA1UEAxMN

UjIubWFvdGFpLmNvbTERMA8GCSqGSIb3DQEJAhYCUjIwgZ8wDQYJKoZIhvcNAQEB

BQADgY0AMIGJAoGBAKrMlTrb9sy4bGi131ya85Bbl+16GylovFCSOgTVEeAuh/oo

CCxFWmKU2hkkn8wwVacmHzvHKi5ZtTkF0cmrzOyJRPfLD1dA4CDqChTfkC/nfmK3

YnXOthYtUvljG25j6JXEi3ZICO6FF1g4XJdz6p/QjcZFUAcYj9DmxCIxZADTAgMB

AAGjUjBQMA4GA1UdDwEB/wQEAwIFoDAfBgNVHSMEGDAWgBQYN6f+v6P6pY1nGUYA

QajrUYw1yjAdBgNVHQ4EFgQUyjgMlXltwkGnklUtJlfoPfXtlEMwDQYJKoZIhvcN

AQEEBQADgYEArEIc54rZVAWTxb3Ve1SJulQhcJEQCO3OI1DeloSlCcpaojYq0P6t

F+ZpBnobsfEboFovOO9H4h6CSXqoo/RuoTnAiWMxJu0FnD8UC5rXk5wY8NXHX5/2

jaLBtlzhDR9aL1p9LMGb0Lj64hcvmCgWfSlqaTjDSWLNEPpcrs1GQVk=

% Router Certificate successfully imported

- r2查看自己的证书

R2#show crypto pki certificates

Certificate

  Status: Available

  Certificate Serial Number (hex): 03

  Certificate Usage: General Purpose

  Issuer:

    cn=CA.maotai.com

    ou=maotaisec

    o=maotai

    l=beijing

    c=cn

    e=admin@maotai.com

  Subject:

    Name: R2

    hostname=R2

    cn=R2.maotai.com

    ou=maotaisec

    o=maotai

  Validity Date:

    start date: 22:30:53 GMT Dec 24 2017

    end   date: 22:30:53 GMT Jun 22 2018

  Associated Trustpoints: CA 

CA Certificate

  Status: Available

  Certificate Serial Number (hex): 01

  Certificate Usage: Signature

  Issuer:

    cn=CA.maotai.com

    ou=maotaisec

    o=maotai

    l=beijing

    c=cn

    e=admin@maotai.com

  Subject:

    cn=CA.maotai.com

    ou=maotaisec

    o=maotai

    l=beijing

    c=cn

    e=admin@maotai.com

  Validity Date:

    start date: 22:02:23 GMT Dec 24 2017

    end   date: 22:02:23 GMT Dec 23 2020

  Associated Trustpoints: CA

配置ipsec lantolan vpn(默认使用证书认证)

- r1

ip access-list extended vpn

 permit ip 1.1.1.0 0.0.0.255 2.2.2.0 0.0.0.255

crypto isakmp policy 10

crypto ipsec transform-set cisco esp-des esp-md5-hmac

crypto map cisco 10 ipsec-isakmp

 match address vpn

 set transform-set cisco

 set peer 202.100.1.2

interface FastEthernet0/0

 crypto map cisco

- r2

ip access-list extended vpn

 permit ip 2.2.2.0 0.0.0.255 1.1.1.0 0.0.0.255

crypto isakmp policy 10

crypto ipsec transform-set cisco esp-des esp-md5-hmac

crypto map cisco 10 ipsec-isakmp

 match address vpn

 set transform-set cisco

 set peer 202.100.1.1

interface FastEthernet0/0

 crypto map cisco


- ca吊销r2的证书

CA#crypto pki server CA revoke 0x3

% Certificate 03 succesfully revoked.

R1#clear crypto isa

R1#clear crypto sa

r1 2还是能通,为何呢?

r1有crl缓存

R1#show crypto pki crls

CRL Issuer Name:

    cn=CA.maotai.com,ou=maotaisec,o=maotai,l=beijing,c=cn,e=admin@maotai.com

    LastUpdate: 22:02:23 GMT Dec 24 2017

    NextUpdate: 04:02:23 GMT Dec 25 2017

    Retrieved from CRL Distribution Point:

      ** CDP Not Published - Retrieved via SCEP

 CRL DER is 326 bytes

 CRL is stored in parsed CRL cache

Parsed CRL cache current size is 326 bytes

Parsed CRL cache maximum size is 65536 bytes


- r1清除cls缓存,强行刷新

R1(config)#crypto pki crl request CA

R1(config)#end

R1#show crypto pki crls

CRL Issuer Name:

    cn=CA.maotai.com,ou=maotaisec,o=maotai,l=beijing,c=cn,e=admin@maotai.com

    LastUpdate: 22:39:54 GMT Dec 24 2017

    NextUpdate: 04:39:54 GMT Dec 25 2017

    Retrieved from CRL Distribution Point:

      ** CDP Not Published - Retrieved via SCEP

 CRL DER is 348 bytes

 CRL is stored in parsed CRL cache

Parsed CRL cache current size is 674 bytes

Parsed CRL cache maximum size is 65536 bytes


- 再次测试发现不同了

R1#clear crypto isa

R1#clear crypto sa

R1#ping 2.2.2.2 so lo0 re 1000

Type escape sequence to abort.

Sending 1000, 100-byte ICMP Echos to 2.2.2.2, timeout is 2 seconds:

Packet sent with a source address of 1.1.1.1 

Dec 24 14:42:53.619: %CRYPTO-5-IKMP_INVAL_CERT: Certificate received from 202.100.1.2 is bad: CA request failed!.

Dec 24 14:42:53.623: %CRYPTO-6-IKMP_MODE_FAILURE: Processing of Main mode failed with peer at 202.100.1.2.

Dec 24 14:42:55.207: %CRYPTO-4-IKMP_BAD_MESSAGE: IKE message from 202.100.1.2 failed its sanity check or is malformed.

解决缓存

1, ocrl 在线获取crl(思科ios不支持)

2, 本地不缓存

R1(config)#crypto pki trustpoint CA

R1(ca-trustpoint)#crl cache none

[svc]cisco ipsec使用证书认证的更多相关文章

  1. tomcat 配置客户端证书认证

    在完成配置客户端证书认证后,浏览器以https访问服务器的时候,会提示选择证书,之后,服务器端会验证证书.也就意味着只有拥有有效证书的客户端才能打开该网站. 以下是具体的配置过程. 1. 在服务器端生 ...

  2. 不同服务器之间使用svn钩子post-commit同步代码遇到的证书认证问题.md

    遇到的问题,以下其他问题都是因解决这个问题引申出来的问题 VisualSVN hooks自动同步更新到web服务器 错误信息如下: Error validating server certificat ...

  3. QT https post请求(QNetworkRequest要设置SSL证书,而SSL证书认证有三种,实测成功)

    以VS开发为例.因为https访问需要用到SSL认证,而QT默认是不支持SSL认证,所以在使用之前必须先做一些准备工作: 需要安装OpenSSL库: 1.首先打开http://slproweb.com ...

  4. APK安装时的过滤方式:包名白名单、证书认证

    1.定义一些全局变量,文件位置: Build.java (frameworks\base\core\java\android\os) /** * 包管理方式名称<br> * whiteli ...

  5. JAVA中SSL证书认证通讯

    JAVA中SSL证书认证通讯 SSL通讯服务端 /******************************************************************** * 项目名称 ...

  6. Https握手协议以及证书认证

    1. 什么是https Https = http + 加密 + 认证 https是对http的安全强化,在http的基础上引入了加密和认证过程.通过加密和认证构建一条安全的传输通道.所以https可以 ...

  7. UIWebView 跳过HTTPS证书认证

    UIWebView跳过证书认证 在UIWebView中加入如下代码即可(Error Domain=NSURLErrorDomain Code=-1202) //跳过证书验证 @interface NS ...

  8. QT https post请求(QNetworkRequest要设置SSL证书,而SSL证书认证有三种)

    因为https访问需要用到SSL认证,而QT默认是不支持SSL认证,所以在使用之前必须先做一些准备工作: 需要安装OpenSSL库: 1.首先打开http://slproweb.com/product ...

  9. SSL通信-忽略证书认证错误

    .NET的SSL通信过程中,使用的证书可能存在各种问题,某种情况下可以忽略证书的错误继续访问.可以用下面的方式跳过服务器证书验证,完成正常通信. 1.设置回调属性ServicePointManager ...

随机推荐

  1. 【树莓派】制作树莓派所使用的img镜像(二)

    树莓派制作的镜像,需要如何使用,这里直接引用目前树莓派官方的文章,不再重复描述: 参考:http://shumeipai.nxez.com/2013/08/31/usb-image-tool.html ...

  2. Service 隔离

         最近开发了两个App,其中一个App为另一个App提供服务(Service),但要求不允许其他的App使用此服务,一开始的想法是能在API的设计上进行过滤,后来想想此方法不是很安全,被别人反 ...

  3. 高德地图引入库错误std::string::find_first_of(char const*, unsigned long, unsigned long) const"

    一:std:编译器错误解决 二:错误提示 "std::string::find_first_of(char const*, unsigned long, unsigned long) con ...

  4. PHP 自学之路-----XML编程(Dom技术)

    上一节,讲了Xml文件基本语法及元素,实体及Dtd约束技术,下面就正式进入PHP的Xml编程 使用PHP技术对Xml文件进行操作 常用的有以下三种技术: 1.PHP dom 2.PHP结合XPath操 ...

  5. 微信小程序 - promise(get\post)

    部分源码来自于http://www.wxapp-union.com/home.php?mod=space&uid=17761,就是小程序社区 , 参考以及借鉴一些类似cnblog,csdn上的 ...

  6. JavaScript二(第一个js程序)

    一.<script>xxxx</script>标签解析 1.charset :可选,表示通过src属性指定的字符集,由于大多数浏览器忽略它,所以很少有人用它2.defer:可选 ...

  7. jquery.dataTables动态列

    jquery.dataTables  版本1.10.7 直接上代码: 0.table <table id="popReportTable"> <thead> ...

  8. 笔试题之java基础

    Java基础部分 基础部分的顺序:基本语法,类相关的语法,内部类的语法,继承相关的语法,异常的语法,线程的语法,集合的语法,io 的语法,虚拟机方面的语法,其他.有些题来自网上搜集整理,有些题来自传智 ...

  9. linux安装JDK环境,JDK6.0即java 1.6.0

    下载 (1)更改权限:# chmod 755 jdk-1.6.0_23-linux-i586.rpm.bin 执行安装:# ./ jdk-1.6.0_23-linux-i586.rpm.bin 此步完 ...

  10. exception PLS-00403: expression 'V_END' cannot be used as an INTO-target of a SELECT/FETCH statement

      exception PLS-00403: expression 'V_END' cannot be used as an INTO-target of a SELECT/FETCH stateme ...