环境信息

  • 由于普通的家庭路由器仅支持单网段NAT,为了模拟多站点、多网段的真实环境,此次实验将使用一台Windows Server 2016虚拟机来实现多网段NAT;

计算机名

虚拟网卡

IP地址

角色

 

RRAS

External

192.168.1.100

 

NAT服务器

Internal - 192.168.11.0/24

192.168.11.254

Internal - 192.168.12.0/24

192.168.12.254

Client01

Internal - 192.168.11.0/24

192.168.11.1

客户端

Client02

Internal - 192.168.12.0/24

192.168.12.1

客户端

1.  配置虚拟交换机

1.   打开“Hyper-V Manager”,点击“Virtual Switch Manager…”;

wKioL1g9O_iCFr5ZAACgCKZpSH0522.png-wh_50

2.   选择“Internal”,点击“Create Virtual Switch”创建内部虚拟交换机;

wKiom1g9O_jBVyisAABXE1y7XVg092.png-wh_50

3.   输入虚拟交换机名称“Internal - 192.168.11.0/24”,选择“Internal network”,点击“Apply”;

wKioL1g9O_miMcVeAACL3o0E4VY554.png-wh_50

4.   使用同样的方法继续创建内部虚拟交换机“Internal - 192.168.12.0/24”,点击“OK”;

wKiom1g9O_nz4y8bAAB7ia_k7nk701.png-wh_50

2.  配置虚拟网卡

1.   打开“Settings for RRAS on LYNN-PC”,选择“Network Adapter”,点击“Add”添加虚拟网卡;

wKioL1g9O_qCLSJ2AACRIUTdsVI214.png-wh_50

2.   选择之前创建的虚拟交换机“Internal - 192.168.11.0/24”,点击“Apply”;

wKioL1g9O_rSA5cFAAC4NeLv3A0667.png-wh_50

3.   使用同样的方法继续添加虚拟网卡“Internal - 192.168.12.0/24”,点击“OK”;

wKiom1g9O_vDU11pAAC_YzNLCy4901.png-wh_50

4.   为虚拟网卡“Internal - 192.168.11.0/24”配置IP地址“192.168.11.254”、子网掩码“255.255.255.0”、默认网关和DNS服务器留空,此网卡将作为192.168.11.0/24网段的网关;

wKiom1g9O_viGGFEAAAfXHlXy2g234.png-wh_50

5.   为虚拟网卡“Internal - 192.168.12.0/24”配置IP地址“192.168.12.254”、子网掩码“255.255.255.0”、默认网关和DNS服务器留空,此网卡将作为192.168.12.0/24网段的网关;

wKiom1g9PN6giqS7AAAfyBozmzs477.png-wh_50

3.  安装路由和远程访问

1.   打开“Server Manager”,点击“Add roles and features”;

wKiom1g9PN6TzM5aAADgzRJEwdE480.png-wh_50

2.   点击“Next”;

wKioL1g9PN_jw4RrAABlDU8QFKg629.png-wh_50

3.   点击“Next”;

wKioL1g9PODgJ5--AABSdqaYPOY596.png-wh_50

4.   点击“Next”;

wKiom1g9POCzjuznAABc82Gm-Qg823.png-wh_50

5.   勾选“Remote Access”,点击“Next”;

wKiom1g9POGQONM7AACldmbxI3k172.png-wh_50

6.    点击“Next”;

wKioL1g9POKSj_uwAAB_FTbQ88U364.png-wh_50

7.   点击“Next”;

wKioL1g9POOCGJGTAACA01gX5N4728.png-wh_50

8.   勾选“Routing”;

wKioL1g9PT_CrbZBAAB88wqB7L8914.png-wh_50

9.   点击“Add Features”;

wKiom1g9PT-DQtyCAAByq7hDevg987.png-wh_50

10.点击“Next”;

wKioL1g9PVKjDzxCAABUjWcO7zI200.png-wh_50

11.点击“Next”;

wKiom1g9PVLyYaB8AABgAeJoDaA506.png-wh_50

12.点击“Next”;

wKioL1g9PVOwgGqGAACVH5s4PUk284.png-wh_50

13.点击“Install”开始安装路由和远程访问;

wKioL1g9PVaCJ-lIAABtlgWA5mc562.png-wh_50

14.正在安装路由和远程访问;

wKiom1g9PVfxltAbAACTjzePJhw441.png-wh_50

15.路由和远程访问安装完成,点击“Close”;

wKiom1g9PVqwxGNqAACRs9m3Ovw070.png-wh_50

4.  配置NAT

1.   点击“Start”,打开“Windows Administrative Tools”-“Routing and Remote Access”;

wKioL1g9PV-TDPpdAAGjaWq39cI613.png-wh_50

2.   右击“RRAS (local)”,点击“Configure and Enable Routing and Remote Access”;

wKioL1g9PWOyUkoyAABIAV9zA8U253.png-wh_50

3.   点击“Next”;

wKiom1g9PWOCahkSAADOVAbMqfw032.png-wh_50

4.   选择“Custom configuration”,点击“Next”;

wKiom1g9PWTSLv8sAAAzDq2Ux9A951.png-wh_50

5.   勾选“NAT”,点击“Next”;

wKiom1g9PgviF1eFAAAgertZ0gA240.png-wh_50

6.   点击“Finish”;

wKioL1g9PgyCkJKCAADf6NGL1T0149.png-wh_50

7.   点击“Start service”启动路由和远程访问服务;

wKiom1g9Pg2yLT2aAAC9gNYne1Q877.png-wh_50

8.   正在启动路由和远程访问服务;

wKioL1g9Pg-T1FiGAACvy2ZHIl4976.png-wh_50

9.   展开“RRAS (local)”-“IPv4”,右击“NAT”,点击“New Interface…”添加接口;

wKiom1g9PhPgJImwAABARvkaV_0048.png-wh_50

10.选择外部虚拟网卡接口“Ethernet”,点击“OK”;

wKioL1g9PhSh6E3cAAA8XTa7fOk333.png-wh_50

11.选择“Public interface connected to the Internet”,勾选“Enable NAT on this interface”,点击“OK”;

wKiom1g9PhSBS_vQAAAbBWkyvvU434.png-wh_50

12.使用同样的方法继续添加内部虚拟网卡接口“Internal – 192.168.11.0 24”,点击“OK”;

wKioL1g9PhWBa69OAAAVOgcIQL8870.png-wh_50

13.点击“OK”;

wKiom1g9Phny5tDVAAAYrlJgNSw304.png-wh_50

14.使用同样的方法继续添加内部虚拟网卡接口“Internal - 192.168.12.0 24”;

wKioL1g9Ph3Qv7IGAAA2YPVzIQk545.png-wh_50

5.  测试网络连通性

1.   客户端“Client01”的IP地址是“192.168.11.1”、子网掩码是“255.255.255.0”、默认网关是“192.168.11.254”;

wKiom1g9Ph-ByTbhAACgaJRqi7Q331.png-wh_50

2.   客户端“Client02”的IP地址是“192.168.12.1”、子网掩码是“255.255.255.0”、默认网关是“192.168.12.254”;

wKioL1g9PiKgE6enAAD3dfaXbw0501.png-wh_50

3.   经测试,192.168.11.0/24网段和192.168.12.0/24网段都能够通过NAT服务器实现互通访问和公网访问;

wKioL1g9PiaSNq-JAAFXmubRBuo360.png-wh_50

wKiom1g9PinAzBJ9AAD7EeGUP_Y585.png-wh_50