VLAN综合实验
(一)实验要求:
1、按照图示配置IP地址
2、PC2属于Vlan10,PC3属于Vlan20,PC4属于Vlan30
3、要求通过配置接口类型为Hybrid,实现Vlan20和 Vlan30 都可以访问 Vlan10,但是Vlan20和Vlan30之间不能互相访问
(二)实验top:
(三)实验思路:
(1)配置VLAN
(a)创建VLAN
(b)配置VLAN属性
(2)下放地址
(b)配地子接口IP地址、接口网关、开启802.1q功能、开启广播
(b)配地池地址、接口网关
(四)实验步骤:
(1)配置VLAN
(a)创建VLAN
命令:
1、[SW]vlan batch 2 to 6
2、[SW]vlan batch 2 3 4 5 6
SW1:
[SW1]vlan 2
[SW1-vlan2]vlan 3
[SW1-vlan3]vlan 4
[SW1-vlan4]vlan 5
[SW1-vlan5]vlan 6
SW2:
[SW2]vlan batch 2 to 6
SW3:
[SW3]vlan batch 2 to 6
检测:
(b)配置VLAN属性
更改接口类型、放行vlan、撕标签(untagged)
命令:
更改接口类型:[SW]port link-type 类型
access口放行vlan:[SW接口号]port default vlan序号
trunk口放行vlan:[SW接口号]port 接口类型 allow-pass vlan号
定义PVID(hybrid口放行vlan):[SW接口]port hybrid PVID号
撕标签:[SW接口号]port hybrid untagged vlan号
带标签:[SW接口号]port hybrid tagged vlan号
批量进入端口配置
1、[SW]int range g0/0/1 to g0/0/4
2、[SW]port-group group-member GigabitEthernet 0/0/2 to GigabitEthernet 0/0/4
SW1:
[SW1]int g0/0/1
[SW1-GigabitEthernet0/0/1]port link-type access
[SW1-GigabitEthernet0/0/1]port default vlan 2
[SW1-GigabitEthernet0/0/1]int g0/0/2
[SW1-GigabitEthernet0/0/2]port hybrid untagged vlan 3 4 5 6
[SW1-GigabitEthernet0/0/2]port hybrid pvid vlan 3
[SW1-GigabitEthernet0/0/2]int g0/0/3
[SW1-GigabitEthernet0/0/3]port link-type trunk
[SW1-GigabitEthernet0/0/3]port trunk allow-pass vlan 2 3 4 5 6
[SW1-GigabitEthernet0/0/3]int g0/0/4
[SW1-GigabitEthernet0/0/4]port hybrid tagged vlan 2
SW2:
[SW2]int g0/0/1
[SW2-GigabitEthernet0/0/1]port link-type access
[SW2-GigabitEthernet0/0/1]port default vlan 2
[SW2-GigabitEthernet0/0/1]int g0/0/2
[SW2-GigabitEthernet0/0/2]port hybrid pvid vlan 4
[SW2-GigabitEthernet0/0/2]port hybrid untagged vlan 3 4 5 6
[SW2-GigabitEthernet0/0/2]int g0/0/3
[SW2-GigabitEthernet0/0/3]port link-type trunk
[SW2-GigabitEthernet0/0/3]port trunk allow-pass vlan 2 3 4 5 6
[SW2-GigabitEthernet0/0/3]int g0/0/4
[SW2-GigabitEthernet0/0/4]port link-type trunk
[SW2-GigabitEthernet0/0/4]port trunk allow-pass vlan 2 3 4 5 6
SW3:
[SW3]int g0/0/1
[SW3-GigabitEthernet0/0/1]port hybrid pvid vl 5
[SW3-GigabitEthernet0/0/1]port hybrid untagged vl 3 to 5
[SW3-GigabitEthernet0/0/1]int g0/0/2
[SW3-GigabitEthernet0/0/2]port hybrid pvid vl 6
[SW3-GigabitEthernet0/0/2]port hybrid untagged vl 3 to 4 6
[SW3-GigabitEthernet0/0/2]int g0/0/3
[SW3-GigabitEthernet0/0/3]port link-type trunk
[SW3-GigabitEthernet0/0/3]port trunk allow-pass vl 2 to 6
(2)下放地址
(a)配地子接口IP地址、接口网关、开启802.1q功能、开启广播
配置命令(顺序不能反)
[]int g0/0/0.1 创建子接口
[GigabitEthernet0/0/0.1]IP add192.168.2.254 24
[GigabitEthernet0/0/0.1]dot1q termination vid 2 //vid 2把接口划分给vlan2(把地址给vlan2)
[GigabitEthernet0/0/0.1]arp broadcast enable 开启arp广播
[R1]int g0/0/0
[R1-GigabitEthernet0/0/0]ip add 192.168.1.254 24
[R1]int g0/0/0.2
[R1-GigabitEthernet0/0/0.2]ip add 192.168.2.254 24
[R1-GigabitEthernet0/0/0.2]arp broadcast en
(b)配地池地址、接口网关
子接口管理打标签的vlan:下放打标签地址vlan时进入子接口下放(0/0/0.0)
物理口管理不打标签的vlan: 下放不打标签地址vlan时进入物理口下放(0/0/0)
[R]IP pool 地址名
[地址池]network …… 掩码 ……
[地址池]gateway-list 一般用地址最后一个IP地址
[地址池]dns-list 8.8.8.8 114.114.114.114
[接口]dhcp select global
R1:
[R1]dhcp enable
[R1]ip poo aa
[R1-ip-pool-aa]network 192.168.1.0 mask 24
[R1-ip-pool-aa]gateway-list 192.168.1.254
[R1-ip-pool-aa]dns
[R1-ip-pool-aa]dns-list 8.8.8.8 114.114.114.114
[R1-ip-pool-aa]int g0/0/0
[R1-GigabitEthernet0/0/0]dhcp select global
[R1]dhcp enable
[R1]int g0/0/0
[R1-GigabitEthernet0/0/0]dhcp select global
[R1]ip poo bb
[R1-ip-pool-bb]net 192.168.2.0 mask 24
[R1-ip-pool-bb]gat 192.168.2.254
[R1-ip-pool-bb]dns 8.8.8.8 114.114.114.114
[R1-ip-pool-bb]int g0/0/0.2
[R1-GigabitEthernet0/0/0.2]dh sel glo
PC1:
PC2:
PC3:
PC4:
PC5:
PC6:
其中PC2可以访问PC4/PC5/PC6
PC4可以访问PC6;PC5不能访问PC6
669
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
