實驗拓撲:
實驗要求:
① 使用者的閘道器配置在核心交換機
② 企業內網劃分多個vlan ,減少廣播域大小,提高網路穩定性
sw4:
[sw4]int e0/0/2
[sw4-ethernet0/0/2]port link-type access
[sw4-ethernet0/0/2]port default vlan 10
[sw4]int gi0/0/1
[sw4-gigabitethernet0/0/1]port link-type trunk
[sw4-gigabitethernet0/0/1]port trunk allow-pass vlan 10 999
匯聚sw2:
[sw2]vlan batch 10 20 999
info: this operation may take a few seconds. please wait
for a moment...done.
[sw2]port-g g gi0/0/1 to gi0/0/2 e0/0/1
[sw2-port-group]port link-type trunk
[sw2-gigabitethernet0/0/1]port link-type trunk
[sw2-gigabitethernet0/0/2]port link-type trunk
[sw2-ethernet0/0/1]port link-type trunk
[sw2-port-group]port trunk allow-pass vlan 10 20 999
[sw2-gigabitethernet0/0/1]port trunk allow-pass vlan 10 20 999
[sw2-gigabitethernet0/0/2]port trunk allow-pass vlan 10 20 999
[sw2-ethernet0/0/1]port trunk allow-pass vlan 10 20 999
核心sw1:
[sw1]int gi0/0/1
[sw1-gigabitethernet0/0/1]port link-type trunk
[sw1-gigabitethernet0/0/1]port trunk allow-pass vlan 10 20 999
[sw1-gigabitethernet0/0/1]int gi0/0/2
[sw1-gigabitethernet0/0/2]port link-type trunk
[sw1-gigabitethernet0/0/2]port trunk allow-pass vlan 200 999
[sw1-gigabitethernet0/0/2]qu
[sw1]inte***ce vlanif 10
[sw1-vlanif10]ip address 192.168.10.1 24
[sw1-vlanif10]qu
[sw1]int vlanif 20
[sw1-vlanif20]ip address 192.168.20.1 24
[sw1-vlanif20]qu
[sw1]int vlanif 200
[sw1-vlanif200]ip address 192.168.200.1 24
sw5:
[huawei]int e0/0/2
[huawei-ethernet0/0/2]port link-type access
[huawei-ethernet0/0/2]int e0/0/1
[huawei-ethernet0/0/1]port link-type trunk
[huawei-ethernet0/0/1]port trunk allow-pass vlan 20
③ 所有裝置,在任何位置都可以被telnet遠端管理 所有裝置
以sw4為例:
[sw4]vlan 999
[sw4-vlan999]qu
[sw4]inte***ce vlanif 999
[sw4-vlanif999]ip address 192.168.255.4 24
[sw4-vlanif999]qu
[sw4]aaa
[sw4-aaa]local-user hcnp password cipher hcnp123 privilege level 3
info: add a new user.
[sw4-aaa]qu
[sw4]user-inte***ce vty 0 4
[sw4-ui-vty0-4]authentication-mode aaa
④ 出口配置nat 先配置三層介面
⑤ 所有使用者均為自動獲取ip位址
[sw1]ip pool vlan_10
info:it's successful to create an ip address pool.
[sw1-ip-pool-vlan_10]gateway-list 192.168.10.1
[sw1-ip-pool-vlan_10]network 192.168.10.0 mask 24
[sw1-ip-pool-vlan_10]dns-list 8.8.8.8
[sw1-ip-pool-vlan_10]qu
[sw1]ip pool vlan_20
info:it's successful to create an ip address pool.
[sw1-ip-pool-vlan_20]network 192.168.20.1 mask 24
[sw1-ip-pool-vlan_20]dns-list 8.8.8.8
[sw1-ip-pool-vlan_20]qu
[sw1]inte***ce vlanif 10
[sw1]dhcp enable
info: the operation may take a few seconds. please wait
for a moment.done.
[sw1]inte***ce vlanif 10
[sw1-vlanif10]dhcp select global
[sw1-vlanif10]qu
[sw1]inte***ce vlanif 20
[sw1-vlanif20]dhcp select global
⑥ 企業總部和分支採用ppp 廣域網鏈路連線。並採用chap對鏈路做認證。 介面使用s4/0/0
⑦ 企業總部和分支採用ospf 路由協議連線。
r1:出口
三層網路架構
三層網路架構是採用層次化架構的三層網路。三層網路架構採用層次化模型設計,即將複雜的網路設計分成幾個層次,每個層次著重於某些特定的功能,這樣就能夠使乙個複雜的大問題變成許多簡單的小問題。三層網路架構設計的網路有三個層次 核心層 網路的高速交換主幹 匯聚層 提供基於策略的連線 接入層 將工作站接入網路 ...
HCIP三層架構實驗
拓撲設計 實驗要求 內網ip位址172.16.00 16 合理分配 sw1 2之間互為備份 vrrp stp vlan trunk均使用 所有pc通過dhcp獲取ip位址 子網劃分 172.16.1.0 24 vlan1 172.16.2.0 24 vlan2 ethtruck的配置 sw1 int...
華為eNSP 三層交換配置
sw2 vlan batch 10 20 建立vlan10 20 sw2 int e0 0 2 sw2 ethernet0 0 2 port link type access 設定access sw2 ethernet0 0 2 port default vlan 10 將介面放到vlan中 sw2...