两个园区校园网的配置,某化工厂ENSP配置

已于 2022-10-13 08:20:55 修改
阅读量2.5k 收藏 34
点赞数 1
分类专栏: 集成ENSP 文章标签: p2p gnu sql
于 2022-06-19 08:48:34 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/ngc2244/article/details/125239640
版权

目录

实验:

二.添了一根线 

 实验2:

 连接外网:

 两个园区的连接:

配置服务器

交换机配置命令

配置交换机的G接口

int g0/0/0

description To_SW-2              //非自动协商模式

undo negotiation auto            全双工模式

speed 100                               配置速度100Mbs

恢复初始设置

reset saved-configuration       选择Y

reboot                                      重启。  选择Y

交换机自带生成树协议,若不小心关掉了

stp enable                                重启

链路聚合

int g0/0/0

Eth-Trunk 1                           接口添加到链路聚合组1

OSPF:

ospf 1

area 1

network 网络地址 反掩码

1、接入层交换机与核心交换机通过Eth-trunk组网保证可靠性;
2、每个部门业务划分到一个vlan中,部门间的业务在核心层上通过vlanif三层互通;

链路聚合:

链路聚合一般部署在核心节点,以便提高整个网络的数据吞吐量。链路聚合能够提高链路带宽,增强网络冗余性、可用性,支持负载分担。

[Huawei]interface Eth-Trunk 1         /创建一个聚合1
[Huawei-Eth-Trunk1]q                  /退出端口
[Huawei]interface Eth0/0/1	      /进入端口E0/0/1  
[Huawei-Ethernet0/0/1]eth-trunk 1     /将该端口加入聚合1

 如果我们需要将两个交换机之间的链路设为TRUNK,就需要进入聚合1中进行配置:

[Huawei]interface  Eth-Trunk 1	
[Huawei-Eth-Trunk1]port link-type trunk

DHCP

 RS2:

dhcp enable

int vlanif 13

dhcp select relay

dhcp relay server-ip 192.168.100.200

删除地址池

<AR2>reset ip pool name [PC2] used
[AR2]undo ip policy-based-route [refresh-time]
[AR2]undo ip pool [PC2]

删除接口配置

[AR2-GigabitEthernet0/0/0]undo dhcp select global 

一、reset saved-configuration

输入命令后会出现:

This will delete the configuration in the flash memory.

The device configuratio

ns will be erased to reconfigure.

Are you sure? (y/n)[n]:

这时输入y

二、reboot

输入命令后会出现:

Info: The system is comparing the configuration, please wait.

Warning: All the configuration will be saved to the next startup configuration.

Continue ? [y/n]:

这时输入n

系统会继续提示:

System will reboot! Continue ? [y/n]:

这时输入y,重启

三、输入上述两个命令后,路由器恢复出厂设置

display ip int brief 

display vlan命令用来查看所有VLAN的相关信息。

display interface vlanif命令用来查看VLANIF接口的状态信息、配置信息和统计信息

E接口

(11条消息) eNSP上部署DHCP服务_梦回西游戏天真~的博客-CSDN博客_ensp交换机dhcp

(11条消息) 华为ensp模拟校园网/企业网实例(精品拓扑图)_legenndary的博客-CSDN博客_ensp拓扑图

(11条消息) 使用eNSP搭建一个局域网_weixin_45154474的博客-CSDN博客_ensp构建局域网

(11条消息) [毕设分享]基于华为eNSP的校园网设计和仿真模拟_アルジャーノン的博客-CSDN博客_华为ensp中小型网络毕业设计

感谢!!:

(11条消息) DHCP服务中继--交换机和路由器配置_wishy blog的博客-CSDN博客_dhcp在交换机还是路由器中配置(15条消息) DNS服务器配置_欢欢李的博客-CSDN博客_enspdns域名访问配置(11条消息) DHCP服务中继--交换机和路由器配置_wishy blog的博客-CSDN博客_dhcp在交换机还是路由器中配置

实验:

 二层LSW2:

1.划分VLAN

vlan bach 100 101

2.划入端口

int e0/0/0

un sh

port type-link access

port default vlan 100

quit

3.设置trunk

int e0/0/3

port type-link trunk

port trunk allow-pass vlan all

no sh

汇聚层LSW1

1.划分vlan,注意下层vlan不要分配IP,由DHCP池分

2.设置端口类型

3.开启DHCP池,VLAN设置从池中取地址

DHCP为路由器的接口的IP服务

 

路由器配置:

路由器接口设置IP

开启DHCP

设置IP池

设置静态路由

目的IP是VLAN,吓一跳是LSW1的接口

二.添了一根线 

 

二层,划分VLAN,划入端口

设置TRUNK

 <Huawei>sys
Enter system view, return user view with Ctrl+Z.
[Huawei]undo info-center enable
Info: Information center is disabled.
[Huawei]sysname LSW3

[LSW3]vlan batch 102 103
Info: This operation may take a few seconds. Please wait for a moment...done.

[LSW3]int e0/0/1
[LSW3-Ethernet0/0/1]port link-type access
[LSW3-Ethernet0/0/1]port default vlan 102
[LSW3-Ethernet0/0/1]q
[LSW3]int e0/0/2
[LSW3-Ethernet0/0/2]port link-type access
[LSW3-Ethernet0/0/2]port default vlan 103
[LSW3-Ethernet0/0/2]q


[LSW3]int e0/0/3
[LSW3-Ethernet0/0/3]port link-type trunk

[LSW3-Ethernet0/0/3]port trunk allow-pass vlan all
[LSW3-Ethernet0/0/3]q

把LSW3重命名为了RS1

RS1的操作:

设置g0/0/2为Trunk

划分VLAN 102,103,

开启HDCP

设置VLAN 102,103的地址从地址池中取

 

 <LSW1>sys
Enter system view, return user view with Ctrl+Z.
[LSW1]sysname RS1


[RS1]int g0/0/2
[RS1-GigabitEthernet0/0/2]port link-type trunk
[RS1-GigabitEthernet0/0/2]port trunk allow-pass vlan all
[RS1-GigabitEthernet0/0/2]quit


[RS1]vlan batch 102 103
Info: This operation may take a few seconds. Please wait for a moment...done.


[RS1]dhcp en
[RS1]int vlanif 102
[RS1-Vlanif102]ip add 192.168.102.1 24
[RS1-Vlanif102]dhcp select global
[RS1-Vlanif102]dhcp select relay
[RS1-Vlanif102]dhcp relay server-ip 192.168.11.2
[RS1-Vlanif102]q


[RS1]int vlanif 103
[RS1-Vlanif103]ip add 192.168.103.1 24
[RS1-Vlanif103]dhcp select global
[RS1-Vlanif103]dhcp select relay
[RS1-Vlanif103]dhcp relay server-ip 192.168.11.2
[RS1-Vlanif103]q

AR1

为VLAN102,103配置地址池

新增静态路由 

 

 

 [AR1]ip pool v102
[AR1-ip-pool-v102]network 192.168.102.0 mask 24
Error:Please delete the network section first.
[AR1-ip-pool-v102]gateway-list 192.168.102.1
[AR1-ip-pool-v102]dns-list 8.8.8.8
[AR1-ip-pool-v102]q

[AR1]ip pool v103
[AR1-ip-pool-v103]network 192.168.103.0 mask 24
[AR1-ip-pool-v103]gateway-list 192.168.103.1
[AR1-ip-pool-v103]dns-list 8.8.8.8
[AR1-ip-pool-v103]q
 

[AR1]ip route-static 192.168.102.0 24 192.168.11.1
[AR1]ip route-static 192.168.103.0 24 192.168.11.1

 

 实验2:

1.划分vlan
SW1:
2.vlan划入端口,打开端口
3.trunk端口设置

 [Huawei]sysname SW1
[SW1]vlan batch 100 101
Info: This operation may take a few seconds. Please wait for a moment...done.
[SW1]int e0/0/1
[SW1-Ethernet0/0/1]un sh
Info: Interface Ethernet0/0/1 is not shutdown.
[SW1-Ethernet0/0/1]port link-type access
[SW1-Ethernet0/0/1]port default vlan 100
[SW1-Ethernet0/0/1]q
[SW1]int e0/0/1
[SW1-Ethernet0/0/1]port link-type access
[SW1-Ethernet0/0/1]port default vlan 100
[SW1-Ethernet0/0/1]q

[SW1]int e0/0/2
[SW1-Ethernet0/0/1]port link-type access
[SW1-Ethernet0/0/1]port default vlan 101
[SW1-Ethernet0/0/1]q
[SW1]int e0/0/3
[SW1-Ethernet0/0/3]port link-type trunk
[SW1-Ethernet0/0/3]port trunk allow-pass vlan all
[SW1-Ethernet0/0/3]q
[SW1]int e0/0/4
[SW1-Ethernet0/0/4]port link-type trunk
[SW1-Ethernet0/0/4]port trunk allow-pass vlan all
[SW1-Ethernet0/0/4]q

SW2同理

[SW2]int e0/0/1
[SW2-Ethernet0/0/1]un sh
Info: Interface Ethernet0/0/1 is not shutdown.
[SW2-Ethernet0/0/1]port link-type access
[SW2-Ethernet0/0/1]port default vlan 102
[SW2-Ethernet0/0/1]q
[SW2]int e0/0/2
[SW2-Ethernet0/0/2]un sh
Info: Interface Ethernet0/0/2 is not shutdown.
[SW2-Ethernet0/0/2]port link-type access
[SW2-Ethernet0/0/2]port default vlan 103
[SW2-Ethernet0/0/2]q
[SW2]int e0/0/3
[SW2-Ethernet0/0/3]port link-type trunk
[SW2-Ethernet0/0/3]port trunk allow-pass vlan all
[SW2-Ethernet0/0/3]q
[SW2]int e0/0/4
[SW2-Ethernet0/0/4]port link-type trunk
[SW2-Ethernet0/0/4]port trunk allow-pass vlan all
[SW2-Ethernet0/0/4]q
[SW2]display interface vlanif

三层RS1

1.划分valn

 [RS1]vlan batch 100 101 102 103 11
Info: This operation may take a few seconds. Please wait for a moment...done.

2.汇聚链路
[RS1]int eth-trunk 1
[RS1-Eth-Trunk1]mode lacp
[RS1-Eth-Trunk1]q

3.端口划入汇聚链路,RS1并设优先级
[RS1]int g0/0/4
[RS1-GigabitEthernet0/0/4]eth-trunk 1
Info: This operation may take a few seconds. Please wait for a moment...done.
[RS1-GigabitEthernet0/0/4]q
[RS1]int g0/0/5
[RS1-GigabitEthernet0/0/5]eth-trunk 1
Info: This operation may take a few seconds. Please wait for a moment...done.
[RS1-GigabitEthernet0/0/5]q
[RS1]lacp priority 100

4.设置TRUNK

[RS1]int eth-trunk 1
[RS1-Eth-Trunk1]port link-type trunk
[RS1-Eth-Trunk1]port trunk allow-pass vlan all
[RS1-Eth-Trunk1]int g0/0/1
[RS1-GigabitEthernet0/0/1]port link-type trunk
[RS1-GigabitEthernet0/0/1]port trunk allow-pass vlan all
[RS1-GigabitEthernet0/0/1]q

[RS1]int g0/0/3
[RS1-GigabitEthernet0/0/3]port link-type trunk
[RS1-GigabitEthernet0/0/3]port trunk allow-pass vlan all
[RS1-GigabitEthernet0/0/3]q
 

5. 新增的vlan划入端口

[RS1]int g0/0/2
[RS1-GigabitEthernet0/0/2]port link-type access
[RS1-GigabitEthernet0/0/2]port default vlan 11
[RS1-GigabitEthernet0/0/2]un sh
Info: Interface GigabitEthernet0/0/2 is not shutdown.
[RS1-GigabitEthernet0/0/2]quit

5.vlan设置IP地址

[RS1]int vlanif 100
[RS1-Vlanif100]ip add 192.168.100.1 24
[RS1-Vlanif100]q
[RS1]int vlanif 101
[RS1-Vlanif101]ip add 192.168.101.1 24
[RS1-Vlanif101]q
[RS1]int vlanif 102
[RS1-Vlanif102]ip add 192.168.102.1 24
[RS1-Vlanif102]q
[RS1]int vlanif 103
[RS1-Vlanif103]ip add 192.168.103.1 24
[RS1-Vlanif103]q
[RS1]int vlanif 11
[RS1-Vlanif11]ip add 192.168.11.1 24
[RS1-Vlanif11]q

RS2同理:


[RS2]vlan batch 12 100 101 102 103
Info: This operation may take a few seconds. Please wait for a moment...done.


[RS2]int eth-trunk 1
[RS2-Eth-Trunk1]mode lacp
[RS2-Eth-Trunk1]q


[RS2]int g0/0/4
[RS2-GigabitEthernet0/0/4]eth-trunk 1
Info: This operation may take a few seconds. Please wait for a moment...done.
[RS2-GigabitEthernet0/0/4]q


[RS2]int g0/0/5
[RS2-GigabitEthernet0/0/5]eth-trunk 1
Info: This operation may take a few seconds. Please wait for a moment...done.
[RS2-GigabitEthernet0/0/5]q


[RS2]int eth-trunk 1
[RS2-Eth-Trunk1]port link-type trunk
[RS2-Eth-Trunk1]port trunk allow-pass vlan all
[RS2-Eth-Trunk1]q
[RS2]int g0/0/1
[RS2-GigabitEthernet0/0/1]port link-type trunk
[RS2-GigabitEthernet0/0/1]port trunk allow-pass vlan all
[RS2-GigabitEthernet0/0/1]q
[RS2]int g0/0/3
[RS2-GigabitEthernet0/0/3]port link-type trunk
[RS2-GigabitEthernet0/0/3]port trunk allow-pass vlan all
[RS2-GigabitEthernet0/0/3]q


[RS2]int g0/0/2
[RS2-GigabitEthernet0/0/2]port link-type access
[RS2-GigabitEthernet0/0/2]port default vlan 12
[RS2-GigabitEthernet0/0/2]un sh
Info: Interface GigabitEthernet0/0/2 is not shutdown.
[RS2-GigabitEthernet0/0/2]q


[RS2]int vlanif 100
[RS2-Vlanif100]ip add 192.168.100.1 24
[RS2-Vlanif100]q
[RS2]int vlanif 101
[RS2-Vlanif101]ip add 192.168.101.1 24
[RS2-Vlanif101]q
[RS2]int vlanif 102
[RS2-Vlanif102]ip add 192.168.102.1 24
[RS2-Vlanif102]q
[RS2]int vlanif 103
[RS2-Vlanif103]ip add 192.168.103.1 24
[RS2-Vlanif103]q

[RS2]int vlanif 12
[RS2-Vlanif12]ip add 192.168.12.1 24
[RS2-Vlanif12]q

路由器IP地址设置

[R1]int g0/0/0
[R1-GigabitEthernet0/0/0]ip add 192.168.11.2 24
[R1-GigabitEthernet0/0/0]q
[R1]int g0/0/1
[R1-GigabitEthernet0/0/1]ip add 192.168.12.2 24
[R1-GigabitEthernet0/0/1]q

 DHCP设置:

三层RS1

地址池设置:

[RS1]dhcp enable
Info: The operation may take a few seconds. Please wait for a moment.done.


[RS1]ip pool v100
Info:It's successful to create an IP address pool.
[RS1-ip-pool-v100]gateway-list 192.168.100.1
[RS1-ip-pool-v100]network 192.168.100.0 mask 24
[RS1-ip-pool-v100]excluded-ip-address 192.168.100.100 192.168.100.253
[RS1-ip-pool-v100]q


[RS1]ip pool v101
Info:It's successful to create an IP address pool.
[RS1-ip-pool-v101]gateway-list 192.168.101.1
[RS1-ip-pool-v101]network 192.168.101.0 mask 24
[RS1-ip-pool-v101]excluded-ip-address 192.168.101.100 192.168.101.253
[RS1-ip-pool-v101]q


[RS1]ip pool v102
Info:It's successful to create an IP address pool.
[RS1-ip-pool-v102]gateway-list 192.168.102.1
[RS1-ip-pool-v102]network 192.168.102.0 mask 24
[RS1-ip-pool-v102]excluded-ip-address 192.168.102.100 192.168.102.253
[RS1-ip-pool-v102]q


[RS1]ip pool v103
Info:It's successful to create an IP address pool.
[RS1-ip-pool-v103]gateway-list 192.168.103.1
[RS1-ip-pool-v103]network 192.168.103.0 mask 24
[RS1-ip-pool-v103]excluded-ip-address 192.168.103.100 192.168.103.253
[RS1-ip-pool-v103]q

#错误
[RS1] interface V100
[RS1-Vlanif100]dhcp select global
[RS1-Vlanif100]q
[RS1]interface V100
[RS1-Vlanif100]undo dhcp select global
[RS1-Vlanif100]q

使用地址池:

正确
[RS1]int vlanif 100
[RS1-Vlanif100]dhcp select global
[RS1-Vlanif100]q
[RS1]int vlanif 101
[RS1-Vlanif101]dhcp select global
[RS1-Vlanif101]q
[RS1]int vlanif 102
[RS1-Vlanif102]dhcp select global
[RS1-Vlanif102]q
[RS1]int vlanif 103
[RS1-Vlanif103]dhcp select global
[RS1-Vlanif103]q

 

 

RS2做配置
[RS2]ip pool v100
Info:It's successful to create an IP address pool.
[RS2-ip-pool-v100]gateway-list 192.168.100.1
[RS2-ip-pool-v100]network 192.168.100.0 mask 24
[RS2-ip-pool-v100]excluded-ip-address 192.168.100.250 192.168.100.253
[RS2-ip-pool-v100]excluded-ip-address 192.168.100.2 192.168.100.100
[RS2-ip-pool-v100]q

excluded-ip-address 192.168.104.250 192.168.104.253

excluded-ip-address 192.168.104.2 192.168.104.100

excluded-ip-address 192.168.105.250 192.168.105.253

excluded-ip-address 192.168.105.2 192.168.105.100

excluded-ip-address 192.168.106.250 192.168.106.253

excluded-ip-address 192.168.106.2 192.168.106.100

excluded-ip-address 192.168.107.250 192.168.107.253

excluded-ip-address 192.168.107.2 192.168.107.100


[RS2]ip pool v102
Info:It's successful to create an IP address pool.
[RS2-ip-pool-v102]gateway-list 192.168.102.1
[RS2-ip-pool-v102]network 192.168.102.0 mask 24
[RS2-ip-pool-v102]excluded-ip-address 192.168.102.2 192.168.102.100
[RS2-ip-pool-v102]excluded-ip-address 192.168.102.250 192.168.102.253
[RS2-ip-pool-v102]q


[RS2]ip pool v101
Info:It's successful to create an IP address pool.
[RS2-ip-pool-v101]gateway-list 192.168.101.1
[RS2-ip-pool-v101]network 192.168.101.0 mask 24
[RS2-ip-pool-v101]excluded-ip-address 192.168.101.2 192.168.101.100
[RS2-ip-pool-v101]excluded-ip-address 192.168.101.250 192.168.101.253
[RS2-ip-pool-v101]q


[RS2]ip pool v103
Info:It's successful to create an IP address pool.
[RS2-ip-pool-v103]gateway-list 192.168.103.1
[RS2-ip-pool-v103]network 192.168.103.0 mask 24
[RS2-ip-pool-v103]excluded-ip-address 192.168.103.2 192.168.103.100
[RS2-ip-pool-v103]excluded-ip-address 192.168.103.250 192.168.103.253
[RS2-ip-pool-v103]q



[RS2]dhcp en
Info: The operation may take a few seconds. Please wait for a moment.done.


[RS2]int vlanif 100
[RS2-Vlanif100]dhcp select global
[RS2-Vlanif100]q
[RS2]int vlanif 101
[RS2-Vlanif101]dhcp select global
[RS2-Vlanif101]q
[RS2]int vlanif 102
[RS2-Vlanif102]dhcp select global
[RS2-Vlanif102]q
[RS2]int vlanif 103
[RS2-Vlanif103]dhcp select global
[RS2-Vlanif103]q

将RS1的端口关掉,看备份的RS2有用没

 [RS1]int g0/0/1
[RS1-GigabitEthernet0/0/1]shut

[RS1]int g0/0/3
[RS1-GigabitEthernet0/0/3]shut
[RS1-GigabitEthernet0/0/3]q

由于通过RS1 分配的地址是 2-100,253-255

通过RS2分配的地址是 100-250

所以加了个RC5,PC5划入V103

 

是RS2分配的地址

OSPF:

RS1:

[RS1]ospf 1
[RS1-ospf-1]area 0
[RS1-ospf-1-area-0.0.0.0]network 192.168.100.1 0.0.0.255
[RS1-ospf-1-area-0.0.0.0]network 192.168.101.1 0.0.0.255
[RS1-ospf-1-area-0.0.0.0]network 192.168.102.1 0.0.0.255
[RS1-ospf-1-area-0.0.0.0]network 192.168.103.1 0.0.0.255
[RS1-ospf-1-area-0.0.0.0]network 192.168.11.1 0.0.0.255
[RS1-ospf-1-area-0.0.0.0]q
[RS1-ospf-1]q

RS2:

[RS2]ospf 1
[RS2-ospf-1]area 0
[RS2-ospf-1-area-0.0.0.0]network 192.168.100.1 0.0.0.255
[RS2-ospf-1-area-0.0.0.0]network 192.168.101.1 0.0.0.255
[RS2-ospf-1-area-0.0.0.0]network 192.168.102.1 0.0.0.255
[RS2-ospf-1-area-0.0.0.0]network 192.168.103.1 0.0.0.255
[RS2-ospf-1-area-0.0.0.0]network 192.168.12.1 0.0.0.255
[RS2-ospf-1-area-0.0.0.0]q
[RS2-ospf-1]q

R1:

[R1]ospf 1
[R1-ospf-1]area 0
[R1-ospf-1-area-0.0.0.0]network 192.168.11.1 0.0.0.255
[R1-ospf-1-area-0.0.0.0]network 192.168.12.1 0.0.0.255
[R1-ospf-1-area-0.0.0.0]q
[R1-ospf-1]q

 

 连接外网:

 AR1:

[AR1]int g0/0/0
[AR1-GigabitEthernet0/0/0]ip add 192.168.1.2 24
[AR1-GigabitEthernet0/0/0]q
[AR1]int g0/0/1
[AR1-GigabitEthernet0/0/1]ip add 12.1.1.1 24
[AR1-GigabitEthernet0/0/1]q
[AR1]q

R1:

[R1]int g0/0/2
[R1-GigabitEthernet0/0/2]ip add 192.168.1.1 24

R1:

[R1]ospf 1
[R1-ospf-1]area 0
[R1-ospf-1-area-0.0.0.0]network 192.168.1.1 0.0.0.255
[R1-ospf-1-area-0.0.0.0]q

 

AR1配置静态路由:

[AR1]ip route-static 192.168.11.0 24 192.168.1.1
[AR1]ip route-static 192.168.12.0 24 192.168.1.1
[AR1]ip route-static 192.168.100.0 24 192.168.1.1
[AR1]ip route-static 192.168.101.0 24 192.168.1.1
[AR1]ip route-static 192.168.102.0 24 192.168.1.1
[AR1]ip route-static 192.168.103.0 24 192.168.1.1

[AR1]ip route-static 0.0.0.0 0  12.1.1.2

 

 

 接着在各个模块配置静态路由

[R1]ip route-static 12.1.1.0 24 192.168.1.2

[R1]ip route-static 200.1.1.0 24 192.168.1.2

[RS1]ip route-static 0.0.0.0 0 192.168.11.2

[RS2]ip route-static 0.0.0.0 0 192.168.12.2

配置NAT:

[AR1]acl 2000
[AR1-acl-basic-2000]rule permit source 192.168.0.0  0.0.255.255
[AR1-acl-basic-2000]int g0/0/1
[AR1-GigabitEthernet0/0/1]nat outbound 2000
[AR1-GigabitEthernet0/0/1]q

 

 

 

 两个园区的连接:

 右边:

[AR1]int g0/0/2
[AR1-GigabitEthernet0/0/2]ip add 192.168.2.2 24
[AR1-GigabitEthernet0/0/2]q

[R2]int g0/0/2
[R2-GigabitEthernet0/0/2]ip add 192.168.2.1 24
[R2-GigabitEthernet0/0/2]q

[R2]ospf 1
[R2-ospf-1]area 0
[R2-ospf-1-area-0.0.0.0]network 192.168.2.1 0.0.0.255
[R2-ospf-1-area-0.0.0.0]q

<AR1>sys
Enter system view, return user view with Ctrl+Z.
[AR1]ip route-static 192.168.13.0 24 192.168.2.1
[AR1]ip route-static 192.168.14.0 24 192.168.2.1
[AR1]ip route-static 192.168.104.0 24 192.168.2.1
[AR1]ip route-static 192.168.105.0 24 192.168.2.1
[AR1]ip route-static 192.168.106.0 24 192.168.2.1
[AR1]ip route-static 192.168.107.0 24 192.168.2.1
[AR1]q

 接着在各个模块配置静态路由
[R2]ip route-static 12.1.1.0 24 192.168.2.2
[R2]ip route-static 200.1.1.0 24 192.168.2.2
[RS3]ip route-static 0.0.0.0 0 192.168.13.2
[RS4]ip route-static 0.0.0.0 0 192.168.14.2
 

配置OSPF:

[AR1]ospf 1
[AR1-ospf-1]area 0
[AR1-ospf-1-area-0.0.0.0]network 192.168.1.2 0.0.0.255
[AR1-ospf-1-area-0.0.0.0]network 192.168.2.2 0.0.0.255
[AR1-ospf-1-area-0.0.0.0]q
[AR1-ospf-1]q 

不允许PC8,PC9访问互联网

先删掉以前的

[AR1]int g0/0/1
[AR1-GigabitEthernet0/0/1]undo nat outbound 2000
[AR1-GigabitEthernet0/0/1]q
[AR1]undo acl 2000
[AR1]dis acl all
 

[AR1]acl 2000
[AR1-acl-basic-2000]rule permit source 192.168.1.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.2.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.11.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.12.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.13.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.14.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.100.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.101.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.102.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.103.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.104.0 0.0.0.255
[AR1-acl-basic-2000]rule permit source 192.168.107.0 0.0.0.255
[AR1-acl-basic-2000]int g0/0/1
[AR1-GigabitEthernet0/0/1]
[AR1-GigabitEthernet0/0/1]nat outbound 2000
[AR1-GigabitEthernet0/0/1]q

验证:

配置VVRP
[RS1]int vlanif 100
[RS1-Vlanif100]vrrp vrid 10 virtual-ip 192.168.100.254 
[RS1-Vlanif100]vrrp vrid 10 priority 110
[RS1-Vlanif100]vrrp vrid 10 preempt-mode timer delay 3
[RS1-Vlanif100]vrrp vrid 10 authentication-mode md5 campus
[RS1-Vlanif100]q
[RS1]int vlanif 101
[RS1-Vlanif101]vrrp vrid 1 virtual-ip 192.168.101.254
[RS1-Vlanif101]vrrp vrid 1 priority 110
[RS1-Vlanif101]vrrp vrid 1 preempt-mode timer delay 3
[RS1-Vlanif101]vrrp vrid 1 authentication-mode md5 campus
[RS1-Vlanif101]q
[RS1]int vlanif 102
[RS1-Vlanif102]vrrp vrid 2 virtual-ip 192.168.102.254
[RS1-Vlanif102]vrrp vrid 2 priority 90
[RS1-Vlanif102]vrrp vrid 2 preempt-mode timer delay 3
[RS1-Vlanif102]vrrp vrid 2 authentication-mode md5 campus
[RS1-Vlanif102]q
[RS1]int vlanif 103
[RS1-Vlanif103]vrrp vrid 3 virtual-ip 192.168.103.254
[RS1-Vlanif103]vrrp vrid 3 priority 90
[RS1-Vlanif103]vrrp vrid 3 preempt-mode timer delay 3
[RS1-Vlanif103]vrrp vrid 3 authentication-mode md5 campus
[RS1-Vlanif103]q

RS2

[RS2]int vlanif 100
[RS2-Vlanif100]vrrp vrid 10 virtual-ip 192.168.100.254
[RS2-Vlanif100]vrrp vrid 10 priority 90
[RS2-Vlanif100]vrrp vrid 10 preempt-mode timer delay 3
[RS2-Vlanif100]vrrp vrid 10 authentication-mode md5 campus
[RS2-Vlanif100]q
[RS2]int vlanif 101
[RS2-Vlanif101]vrrp vrid 1 virtual-ip 192.168.101.254
[RS2-Vlanif101]vrrp vrid 1 priority 90
[RS2-Vlanif101]vrrp vrid 1 preempt-mode timer delay 3
[RS2-Vlanif101]vrrp vrid 1 authentication-mode md5 campus
[RS2-Vlanif101]q
[RS2]int vlanif 102
[RS2-Vlanif102]vrrp vrid 2 virtual-ip 192.168.102.254 
[RS2-Vlanif102]vrrp vrid 2 priority 110
[RS2-Vlanif102]vrrp vrid 2 preempt-mode timer delay 3
[RS2-Vlanif102]vrrp vrid 2 authentication-mode md5 campus
[RS2-Vlanif102]q
[RS2]int vlanif 103
[RS2-Vlanif103]vrrp vrid 3 virtual-ip 192.168.103.254
[RS2-Vlanif103]vrrp vrid 3 priority 110
[RS2-Vlanif103]vrrp vrid 3 preempt-mode timer delay 3
[RS2-Vlanif103]vrrp vrid 3 authentication-mode md5 campus
[RS2-Vlanif103]q

RS3:

[RS3]int vlanif 104
[RS3-Vlanif104]vrrp vrid 4 virtual-ip 192.168.104.254 
[RS3-Vlanif104]vrrp vrid 4 priority 110
[RS3-Vlanif104]vrrp vrid 4 preempt-mode timer delay 3
[RS3-Vlanif104]vrrp vrid 4 authentication-mode md5 campus

[RS3-Vlanif104]q
[RS3]int vlanif 105
[RS3-Vlanif105]vrrp vrid 5 virtual-ip 192.168.105.254
[RS3-Vlanif105]vrrp vrid 5 priority 110
[RS3-Vlanif105]vrrp vrid 5 preempt-mode timer delay 3
[RS3-Vlanif105]vrrp vrid 5 authentication-mode md5 campus
[RS3-Vlanif105]q
[RS3]int vlanif 106
[RS3-Vlanif106]vrrp vrid 6 virtual-ip 192.168.106.254
[RS3-Vlanif106]vrrp vrid 6 priority 90
[RS3-Vlanif106]vrrp vrid 6 preempt-mode timer delay 3
[RS3-Vlanif106]vrrp vrid 6 authentication-mode md5 campus
[RS3-Vlanif106]q
[RS3]int vlanif 107
[RS3-Vlanif107]vrrp vrid 7 virtual-ip 192.168.107.254
[RS3-Vlanif107]vrrp vrid 7 priority 90
[RS3-Vlanif107]vrrp vrid 7 preempt-mode timer delay 3
[RS3-Vlanif107]vrrp vrid 7 authentication-mode md5 campus
[RS3-Vlanif107]q

RS4

[RS4]int vlanif 104
[RS4-Vlanif104]vrrp vrid 4 virtual-ip 192.168.104.254 
[RS4-Vlanif104]vrrp vrid 4 priority 90
[RS4-Vlanif104]vrrp vrid 4 preempt-mode timer delay 3
[RS4-Vlanif104]vrrp vrid 4 authentication-mode md5 campus
[RS4-Vlanif104]q
[RS4]int vlanif 105
[RS4-Vlanif105]vrrp vrid 5 virtual-ip 192.168.105.254 
[RS4-Vlanif105]vrrp vrid 5 priority 90
[RS4-Vlanif105]vrrp vrid 5 preempt-mode timer delay 3
[RS4-Vlanif105]vrrp vrid 5 authentication-mode md5 campus
[RS4-Vlanif105]q
[RS4]int vlanif 106
[RS4-Vlanif106]vrrp vrid 6 virtual-ip 192.168.106.254 
[RS4-Vlanif106]vrrp vrid 6 priority 110
[RS4-Vlanif106]vrrp vrid 6 preempt-mode timer delay 3
[RS4-Vlanif106]vrrp vrid 6 authentication-mode md5 campus
[RS4-Vlanif106]q
[RS4]int vlanif 107
[RS4-Vlanif107]vrrp vrid 7 virtual-ip 192.168.107.254
[RS4-Vlanif107]vrrp vrid 7 priority 110
[RS4-Vlanif107]vrrp vrid 7 preempt-mode timer delay 3
[RS4-Vlanif107]vrrp vrid 7 authentication-mode md5 campus
[RS4-Vlanif107]q

配置服务器

DNS,WEB

  

 [SW5-vlan4]q
[SW5]vlan 4
[SW5-vlan4]q
[SW5]int e0/0/1
[SW5-Ethernet0/0/1]port link-type access
[SW5-Ethernet0/0/1]port default vlan 4
[SW5-Ethernet0/0/1]un sh
Info: Interface Ethernet0/0/1 is not shutdown.
[SW5-Ethernet0/0/1]q
[SW5]int e0/0/2
[SW5-Ethernet0/0/2]port link-type access
[SW5-Ethernet0/0/2]port default vlan 4
[SW5-Ethernet0/0/2]un sh
Info: Interface Ethernet0/0/2 is not shutdown.
[SW5-Ethernet0/0/2]q

[SW5]int e0/0/3
[SW5-Ethernet0/0/3]port link-type trunk
[SW5-Ethernet0/0/3]port trunk allow-pass vlan all
[SW5-Ethernet0/0/3]q
[SW5]q

[RS1]vlan 4
[RS1-vlan4]q
[RS1]int vlanif 4
[RS1-Vlanif4]ip add 192.168.4.254 24
[RS1-Vlanif4]q
[RS1]int g0/0/6
[RS1-GigabitEthernet0/0/6]port link-type trunk
[RS1-GigabitEthernet0/0/6]port trunk allow-pass vlan all
[RS1-GigabitEthernet0/0/6]q

[RS1]ospf 1
[RS1-ospf-1]area 0
[RS1-ospf-1-area-0.0.0.0]network 192.168.4.254 0.0.0.255
[RS1-ospf-1-area-0.0.0.0]q
[RS1-ospf-1]q

[RS1]ip pool v100
[RS1-ip-pool-v100]dns-list 192.168.4.2
[RS1-ip-pool-v100]q
[RS1]ip pool v101
[RS1-ip-pool-v101]dns-list 192.168.4.2
[RS1-ip-pool-v101]q
[RS1]ip pool v102
[RS1-ip-pool-v102]dns-list 192.168.4.2
[RS1-ip-pool-v102]q
[RS1]ip pool v103
[RS1-ip-pool-v103]dns-list 192.168.4.2
[RS1-ip-pool-v103]q

[RS2]ip pool v100
[RS2-ip-pool-v100]dns-list 192.168.4.2
[RS2-ip-pool-v100]q
[RS2]ip pool v101
[RS2-ip-pool-v101]dns-list 192.168.4.2
[RS2-ip-pool-v101]q
[RS2]ip pool v102
[RS2-ip-pool-v102]dns-list 192.168.4.2
[RS2-ip-pool-v102]q
[RS2]ip pool v103
[RS2-ip-pool-v103]dns-list 192.168.4.2
[RS2-ip-pool-v103]q
[RS2]q

[RS3]dhcp en
[RS3]ip pool v104
[RS3-ip-pool-v104]dns-list 192.168.4.2
[RS3-ip-pool-v104]q
[RS3]ip pool v105
[RS3-ip-pool-v105]dns-list 192.168.4.2
[RS3-ip-pool-v105]q
[RS3]ip pool v106
[RS3-ip-pool-v106]dns-list 192.168.4.2
[RS3-ip-pool-v106]q
[RS3]ip pool v107
[RS3-ip-pool-v107]dns-list 192.168.4.2
[RS3-ip-pool-v107]q
[RS3]q

[RS4]ip pool v104
[RS4-ip-pool-v104]dns-list 192.168.4.2
[RS4-ip-pool-v104]q
[RS4]ip pool v105
[RS4-ip-pool-v105]dns-list 192.168.4.2
[RS4-ip-pool-v105]q
[RS4]ip pool v106
[RS4-ip-pool-v106]dns-list 192.168.4.2
[RS4-ip-pool-v106]q
[RS4]ip pool v107
[RS4-ip-pool-v107]dns-list 192.168.4.2
[RS4-ip-pool-v107]q

测试是否配置成功:

 PC1 ping花花化工

 

 配FPT服务器

图的更改:

 

 

TELNET:

[RS1]aaa      进入3A的配置模式
[RS1-aaa]local-user me privilege level 15
Info: Add a new user.
[RS1-aaa]local-user me password cipher mima
[RS1-aaa]q
[RS1]user-interface vty 0 4     交换机最多可以允许五个人同时在线进到交换机里去配置命令
[RS1-ui-vty0-4]
[RS1-ui-vty0-4]authentication-mode aaa        启用3A认证
[RS1-ui-vty0-4]q
[RS1]q

RS2通过telnet进入到RS1

 [RS2]aaa
[RS2-aaa]local-user me privilege level 15
Info: Add a new user.
[RS2-aaa]local-user me password cipher mima
[RS2-aaa]q
[RS2]user-interface vty 0 4
[RS2-ui-vty0-4]authentication-mode aaa
[RS2-ui-vty0-4]q

[R1]aaa
[R1-aaa]local-user me privilege level 15
Info: Add a new user.
[R1-aaa]local-user me password cipher mima
[R1-aaa]q
[R1]user-interface vty 0 4
[R1-ui-vty0-4]authentication-mode aaa
[R1-ui-vty0-4]q

[RS3]aaa
[RS3-aaa]local-user me privilege level 15
Info: Add a new user.
[RS3-aaa]local-user me password cipher mima
[RS3-aaa]q
[RS3]user-interface vty 0 4
[RS3-ui-vty0-4]authentication-mode aaa
[RS3-ui-vty0-4]q

[RS4]aaa
[RS4-aaa]local-user me privilege level 15
[RS4-aaa]local-user me password cipher mima
[RS4-aaa]q
[RS4]user-interface vty 0 4
[RS4-ui-vty0-4]authentication-mode aaa
[RS4-ui-vty0-4]q

[R2]aaa
[R2-aaa]local-user me privilege level 15
Info: Add a new user.
[R2-aaa]local-user me password cipher mima
[R2-aaa]q
[R2]user-interface vty 0 4
[R2-ui-vty0-4]authentication-mode aaa
[R2-ui-vty0-4]q

ngc24
关注
  • 1
    点赞
  • 34
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
eNSP校园网(企业网)详细拓扑完整设计及相关配置文件资源包
05-28
1.三层交换机架构,内网、外网、B校区(子公司)三个区域 2.网络划分多个vlan 3交换机之间配置trunk,两台核心交换机链路捆绑 4.在两台核心交换机上配置MSTP-VRRP(多生成树协议) 5.部分主体交换机配置了OSPF协议 6.所有用户从DHCP服务器动态获取ip地址。 7.服务器的路由器配置nat地址转换。 8.防火墙配置服务器dmz区与内网的trust区域 9.出口路由器配置nat地址转换,并且公网包含两条主副出口 10.出口路由器配置ACL策略 (有意向了解的+Q 1320210031 获取拓扑设计图片,后自行思考是否购买资源。相关毕设咨询了解。)
ensp学习第五天ospf协议的作业
dameitfuk的博客
11-22 962
完成作业
2021-04-22
m0_56229717的博客
04-22 1257
题目要求 LSW1 ; r state BACKUP changed to MASTER, because of protocol timer expired. (Interface= Vlanif2, VrId=1, InetType=IPv4) [sw1-Vlanif2]vrrp Apr 22 2021 15:39:16-08:00 sw1 DS/4/DATASYNC_CFGCHANGE:OID 1.3.6.1.4.1.2011...
hcia第三天
weixin_74812361的博客
11-13 570
ip
静态路由实验(ENSP
qq_54354152的博客
08-16 1611
在学习HCIA的路上记录静态路由实验过程!
校园网设计与配置实例_ensp校园网络路由器配置,ensp校园网规划与设计
05-12
校园网设计与配置实例:内容包括系统总体的设计,系统组成,VLAN,IP划分,服务器设计,系统测试等整套方案
校园园区网络ensp实现
09-05
园区网络无处不在,包括工厂、政府机关、商场、写字楼、校园、公园等。园区网络作为园区的基础设施,是园区建设不可或缺的一部分,在日常办公、研发生产、运营管理...本次实验采用ensp实现,完成了校园园区网络的建造。
基于华为eNSP的中小企业办公园区/校园网络规划与设计
最新发布
10-18
在设计原则以及设计需求的前提下,对企业办公园区进行网络规划设计,其中分为两大部分,一部分是进行网络拓扑结构搭建,其中包括对设备及端口进行了相应的配置;另一部分是对整体、部分的网络功能进行相关的网络仿真...
基于eNSP搭建的企业网络搭建以及网络拓扑配置课程设计的方案
10-08
基于eNSP搭建的企业网络拓扑配置课程设计 具体课程要求如下: 设备:自由选择,尽量节省支出 1.实现全网互通(除FTP服务器之外) 2.在每台设备上配置telnet服务,方便远程管理。 3.由于预算有限需要在不更换设备的...
hcia第二天作业 静态路由
liuxir666的博客
07-21 1521
静态路由
eNSP NAT
weixin_46067990的博客
03-06 1764
NAT Server 原来的NAT转换只能是私网 先配置PC机: PC1: 192.168.1.3 192.168.1.1 PC2: 1.1.1.2 1.1.1.1 接着配置路由器: AR1: //配上网关的ip int g0/0/0 ip add 192.168.1.1 24 int g0/0/1 ip add 2.2.2.1 24 AR2: int g0/0/0 ip add 2.2.2.2 24 int g0/0/1 ip add 1.1.1.1 24 AR3:服务器,但是用路由器代替 sys
静态路由的原理和配置
白给超人的博客
06-14 692
目录路由路由器的工作原理路由表的形成路由器的工作过程静态路由与默认路由路由器转发数据包的封装过程从源主机到目标主机的转发过程所以能够将数据包转发到正确的目的地、并选择最佳路径的、用于不同网络之间的通信的设备,就是路由器。根据路由表转发数据接收数据包→查看目的地址→与路由表进行匹配找到转发端口→转发到该端口路由表是在路由器中维护的路由条目的集合。路由器根据路由表做路径选择。(1)主机1要发送数据包给主机2,因为IP地址不在同一网段,所以主机会将数据包发送给本网段的网关路由器。(跨网段通信,数据包丢给网关)(2
OSPF简单实验
weixin_62304542的博客
01-03 1045
OSPF的简单实验
DHCP中继实操 :配置命令及DHCP中继的作用
著名艺术家
06-29 1万+
这里DHCP中继的配置命令及DHCP中继的作用写目录标题一级目录 :DHCP中继的作用二级目录 :DHCP中继的实验配置三级目录 一级目录 :DHCP中继的作用 **DHCP中继(也叫做DHCP中继代理bai)是一个小程序du,其可以实现在不同子网zhi和物理网段之间处理和转发dhcp信息的dao功能。 如果DHCP客户机与DHCP服务器在同一个物理网段,则客户机可以正确地获得动态分配的ip地址。如果不在同一个物理网段,则需要DHCP Relay Agent(中继代理)。** 简单点来说;企业之中有很多部
hcia第六天
ZYC2022015223的博客
11-23 284
hcia第六天
HCIP实验(7)
HAHAHAHHAHAA的博客
07-20 208
OSPF的区域划分与路由优化
eNSP组网设计与配置实验
热门推荐
jabingu的博客
05-28 6万+
eNSP组网设计与配置实验 实验个人说明 实验报告 实验分析 (1)实验个人说明 eNSP组网设计与配置实验是我大学课程《计算机网络》的课程实验,学习了局域网的组件。而且是6次实验中唯一的一个创作性实验,前5个实验是验证性实验,个人觉得这个实验很有综合性,所以上传到网上供大家学习使用。实验中的代码配置都是个人原创。
Rip与不连续子网拓扑(小白基础实验)
晚风挽着浮云的博客
10-18 918
Rip与不连续子网拓扑 1:连接拓扑: 接下来我们配置 2:配置IP地址 AR1 Int g0/0/0 Ip add 10.0.12.1 24 AR2 Int g0/0/0 Ip add 10.0.12.254 24 Int s2/0/0 Ip add 192.168.23.1 24 AR3 Int s2/0/0 Ip add 192.168.23.254 24 Int s2/0/1 ...
计算机网络——高效校园网络设计与实现(华为模拟器eNSP实现)
Liwo4418的博客
07-08 3万+
实验要求:1、ISP所在两个接口为公有IP地址,公网范围;1.1.1.0/24代表整个互联网2、公网外为私有局域网,IP地址使用私有IP地址,自定义3、PC1—PC3通过DHCP获取IP地址;PC1和HTTP在VLAN2,PC2和PC3在VLAN34、ISP路由器只能进行IP地址配置,之后不得进行任何其他配置5、全网只有PC3可以TELNET登录AR2路由器6、PC1-PC3可以访问互联网中的PC4;PC4可以通过域名www.waishi.com访问http服务器通过大型园区网的设计与方案设计,实习完成后学
ensp 校园网 配置样例 下载
08-01
ensp是一种网络仿真平台,用于配置和管理网络设备。校园网是指连接学校内部网络系统的计算机网络。ensp校园网配置样例下载是指从网上下载ensp校园网配置示例。 下载ensp校园网配置样例可以帮助用户了解如何使用ensp平台配置校园网。通过下载配置示例,用户可以了解校园网的基本架构和设置。配置示例中通常包含网络设备的IP地址、子网掩码、网关、路由器等相关信息。 下载ensp校园网配置样例的步骤通常是:首先,用户需在网上搜索并找到ensp校园网配置样例的下载链接。然后,用户点击下载链接,等待下载完成。下载完成后,用户需要将配置示例导入ensp平台,并根据示例的指导进行校园网配置。 通过下载ensp校园网配置样例,用户可以学习到如何搭建和管理校园网,了解到校园网的网络设备间的连接方式、配置方法和管理技巧。这对于学校网络管理员和对校园网有兴趣的人来说都是非常有用的。它可以帮助用户更好地理解和熟悉校园网的运行原理,提高网络管理的效率和安全性。同时,下载ensp校园网配置样例也提供了一个便捷的学习和实践平台,使用户能够在虚拟环境中进行网络配置和管理的实践操作。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值