项目需求:
如下图所示是一个包含三层网络结构(核心层,汇聚层和接入层)的网络拓扑。
配置需求
配置如上拓扑:
- 在ensp中照着拓扑图连接设备
- 网络设备RT,CoreSW1,CoreSW2,AccessSW1,AccessSW2配置ssh登录,用户名为python,密码为123456
- coresw1和coresw2相连的接口,做eth-trunk链路捆绑
- 创建两个mstp实例,其中vlan10属于实例10,vlan20属于实例vlan20,coresw1为实例10的根桥,coresw2为实例20的根桥
- 采用ospf进行路由
- RT通过ospf发布默认路由
- CoreSW1,CoreSW2实现vrrp
CoreSW1,CoreSW2上配置vrrp,为vlan99、vlan10、vlan20提供vrrp服务。其中:
- Vlan99的虚拟网关地址为192.168.99.254、vlan10的虚拟网关地址为172.16.10.1、vlan20的虚拟网关地址为172.16.20.1
- CoreSW1为vlan99、vlan10的虚拟主路由器,CoreSW2为vlan99,vlan10的备份主路由器
- CoreSW2为vlan20的虚拟主路由器,CoreSW1为vlan20的备份主路由器
云配置如下:
- 全网ping通,ping通结果截图:
- ssh登录上述网络设备截图:
实施过程参考:
拓扑配置-AccessSW1:
sysname AccessSW1
#
vlan batch 10 20 99
#
stp edged-port default
#
cluster enable
ntdp enable
ndp enable
#
undo nap slave enable
#
drop illegal-mac alarm
#
diffserv domain default
#
stp region-configuration
region-name HUAWEI
revision-level 12
instance 10 vlan 10
instance 20 vlan 20
active region-configuration
#
acl number 3000
rule 10 permit ip source 192.168.99.0 0.0.0.255 destination 192.168.99.10 0
rule 20 deny ip
#
drop-profile default
#
vlan 99
description GuanLi
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
local-user python password simple 123456
local-user python privilege level 15
local-user python service-type ssh
#
interface Vlanif1
#
interface Vlanif99
ip address 192.168.99.10 255.255.255.0
#
interface MEth0/0/1
#
interface Ethernet0/0/1
port link-type access
port default vlan 99
#
interface Ethernet0/0/2
#
interface Ethernet0/0/3
#
interface Ethernet0/0/4
#
interface Ethernet0/0/5
#
interface Ethernet0/0/6
#
interface Ethernet0/0/7
#
interface Ethernet0/0/8
#
interface Ethernet0/0/9
#
interface Ethe