eNSP网络拓扑
实验中有2个业务VLAN,分别是vlan 10和vlan 20。
规划vlan10从接入交换机走左边的核心交换机到出口;vlan20从接入交换机走右边的核心到出口。
两台核心交换机做VRRP实现虚拟网关冗余功能。
当链路出现问题时,路由自动切换,减少影响网络时间。
具体IP参数规划如下图:
左边核心core1配置:
[core1]dis cu //查看运行配置
#
sysname core1
#
vlan batch 2 10 20 //批量创建VLAN
#
stp instance 1 root primary //设置实例优先级为主
stp instance 2 root secondary //设置实例优先级为备
#
stp region-configuration //MSTP实例配置,此配置需复制到所有交换机上面。
region-name HW //区域名称,须一致
revision-level 1 //区域级别,须一致
instance 1 vlan 10 //实例关联VLAN
instance 2 vlan 20 //实例关联VLAN
active region-configuration //激活区域
#
interface Vlanif2
ip address 10.0.0.2 255.255.255.252 //上联IP
#
interface Vlanif10 //业务VLAN,核心1的主VLAN,优先级要较高
ip address 172.16.10.253 255.255.255.0
vrrp vrid 10 virtual-ip 172.16.10.254 //配置虚IP
vrrp vrid 10 priority 150 //配置优先级,大优,默认100.
vrrp vrid 10 track interface GigabitEthernet0/0/1 reduced 60 //端口跟踪
#
interface Vlanif20 //业务VLAN
ip address 172.16.20.253 255.255.255.0
vrrp vrid 20 virtual-ip 172.16.20.254
#
interface Eth-Trunk1 //聚合口,提高链路可靠性
port link-type trunk
port trunk allow-pass vlan 10 20
#
interface GigabitEthernet0/0/1
description To-up
port link-type access
port default vlan 2
#
interface GigabitEthernet0/0/2
port link-type trunk
port trunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/5
eth-trunk 1
#
interface GigabitEthernet0/0/6
eth-trunk 1
#
ip route-static 0.0.0.0 0.0.0.0 10.0.0.1 //默认路由指向出口
#
return
[core1]
右边核心core2配置:
[core2]dis cu
#
sysname core2
#
vlan batch 3 10 20
#
stp instance 1 root secondary //核心2交换机实例1备
stp instance 2 root primary //核心1交换机实例2主
#
stp region-configuration //配置MSTP跟CORE1的配置一样
region-name HW
revision-level 1
instance 1 vlan 10
instance 2 vlan 20
active region-configuration
#
interface Vlanif3
ip address 20.0.0.2 255.255.255.252
#
interface Vlanif10 //主要配置在CORE1上面已经配置好了
ip address 172.16.10.252 255.255.255.0
vrrp vrid 10 virtual-ip 172.16.10.254
#
interface Vlanif20 //调整好优先级,做好端口跟踪
ip address 172.16.20.252 255.255.255.0
vrrp vrid 20 virtual-ip 172.16.20.254
vrrp vrid 20 priority 150 //调整优先级为150,优先级高于CORE1
vrrp vrid 20 track interface GigabitEthernet0/0/1 reduced 60 //端口跟踪
#
interface Eth-Trunk1
port link-type trunk
port trunk allow-pass vlan 10 20
#
interface GigabitEthernet0/0/1
description to_up
port link-type access
port default vlan 3
#
interface GigabitEthernet0/0/2
port link-type trunk
port trunk allow-pass vlan 10 20
#
interface GigabitEthernet0/0/5
eth-trunk 1
#
interface GigabitEthernet0/0/6
eth-trunk 1
#
ip route-static 0.0.0.0 0.0.0.0 20.0.0.1 //默认路由指向出口
#
return
[core2]
底部接入交换机配置:
<JR1>dis cu
#
sysname JR1
#
vlan batch 10 20
#
stp region-configuration
region-name HW
revision-level 1
instance 1 vlan 10
instance 2 vlan 20
active region-configuration
#
interface Ethernet0/0/1
port link-type trunk
port trunk allow-pass vlan 10 20
#
interface Ethernet0/0/2
port link-type trunk
port trunk allow-pass vlan 10 20
#
interface Ethernet0/0/3
description to_vlan10
port link-type access
port default vlan 10
#
interface Ethernet0/0/4
description to_vlan20
port link-type access
port default vlan 20
#
interface Ethernet0/0/5
port link-type access
port default vlan 10
#
return
<JR1>
查看各协议状态
接入交换机的MSTP状态
实例1中,端口1是root,端口2是替代丢弃状态,其他端口是指定端口转发状态
实例2中,端口1是替代丢弃状态,端口2是root,其他端口转发。
core1的MSTP与VRRP状态
core2的MSTP与VRRP状态
VRRP优先级范围0-255,其中0和255不可用。
优先级为0表示退出VRRP组,优先级为255表示虚IP为物理口IP且为MASTER
由于篇幅问题,故障链路切换就不截图复制,实验亲测有效。
华为VRP平台命令
1. 关闭控制台信息输出
<JR1>undo terminal trapping
2. 创建聚合口
[core1]int Eth-Trunk 1
[core1-GigabitEthernet0/0/5]eth-trunk 1 //加入端口
[core1-GigabitEthernet0/0/6]eth-trunk 1
[core1]dis trunkmembership eth-trunk 1 //查看
3. 设备恢复出厂设置
<core2>reset saved-configuration //先Y再N再Y
4. 批量创建VLAN
vlan batch 20 30 //同时创建vlan 20和 30
5. 端口改ACCESS口
int e0/0/3
port link-type access
port default vlan 10
6. 同时进入多个端口
[JR1]port-group group-member eth 0/0/1 to e0/0/2
7. 查看端口vlan
[JR1]dis port vlan
8. List item
扫一扫
2404
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
