单臂路由的作用就是一台路由器允许多个vlan互相通信
缺省情况下,终结子接口没有使能ARP广播功能
注意:交换机内部不存在不带tag标签的数据帧报文,内部流动的数据帧始终是带有标签的。数据帧从外部设备流入交换机内部叫接受数据包过程,而从交换机内部流出到外部设备叫做发送数据包过程。
access/trunk/hybrid端口接收数据包:
①不带vlan tag的数据帧:打上端口pvid,如果缺省pvid在vlan允许列表中的话送入交换机的转发进程,查找MAC表找到相应的接口,否则丢弃。
②带vlan tag:access口的处理过程:如果vlan tag=pvid,允许通过进入交换机内部,否则丢弃数据包;trunk口和hybrid口处理过程:如果vlan tag在允许访问vlan列表则进入交换机转发数据帧,否则丢弃。
access/trunk/hybrid端口发送数据包:
①不带vlan tag的数据帧:不可能出现。
② 带vlan tag的数据帧:
access口的处理过程是如果将tag剥离转发出去,其中access口只处理与自己pvid相对应的数据帧,其他即使意外收到其他vlan的数据帧也不会处理;
trunk口处理过程是如果vlan tag =pvid,剥离tag转发出去,如果vlan tag =/ pvid,直接转发出去;
hybrid口处理过程是如果该vlan在本端口配置的属性是untag,则剥离tag进行转发,如果属性是tag,则直接发送。
另,hybrid口在端口为tag和untag两种不同情况:
hybrid 端口配置 : port hybrid tagged vlan 2 4
port hybrid untagged vlan 3 5
接收:不带标签的打上该端口的pvid的vlan号转发;带标签的查看该帧所带vlan号是否在以上命令行,如果是vlan 3,出现转发,如果是vlan6,没有出现而丢弃。
发送:对于taggde定义的帧直接转发出去,不做修改;对于untagged定义的帧,剥离tag转发,由带标签状态改为不带标签状态。
对于tagged和untagged定义的帧,只有在发送的时候才有剥离和不剥离的区别,而对于接收到的帧只会起判断数据帧是否通过的作用。
实验步骤1.基础配置,配置路由子接口
<Huawei>system-view
[Huawei]un in en
[Huawei]sysname r1
[r1]interface g0/0/0.1
[r1-GigabitEthernet0/0/0.1]ip add 192.168.10.254 24
[r1-GigabitEthernet0/0/0.1]dot1q termination vid 10 #剥离pvid重新设置
[r1-GigabitEthernet0/0/0.1]arp broadcast enable #使能arp广播
[r1-GigabitEthernet0/0/0.1]quit
[r1]interface g0/0/0.2
[r1-GigabitEthernet0/0/0.2]ip add 192.168.20.254 24
[r1-GigabitEthernet0/0/0.2]dot1q termination vid 20
[r1-GigabitEthernet0/0/0.2]arp broadcast enable
[r1-GigabitEthernet0/0/0.2]quit
[r1]interface g0/0/0.3
[r1-GigabitEthernet0/0/0.3]ip add 192.168.30.254 24
[r1-GigabitEthernet0/0/0.3]dot1q termination vid 30
[r1-GigabitEthernet0/0/0.3]arp bro
[r1-GigabitEthernet0/0/0.3]arp broadcast enable
2.划分vlan,设置link-type
<Huawei>system-view
[Huawei]un in en
[Huawei]sysname s2
[s2]vlan batch 10 20
[s2]vlan 10
[s2-vlan10]description hr
[s2-vlan10]interface g0/0/2
[s2-GigabitEthernet0/0/2]port link-type access
[s2-GigabitEthernet0/0/2]port default vlan 10
[s2-GigabitEthernet0/0/2]quit
[s2]vlan 20
[s2-vlan20]description market
[s2-vlan20]interface g0/0/3
[s2-GigabitEthernet0/0/3]port link-type access
[s2-GigabitEthernet0/0/3]port default vlan 20
[s2-GigabitEthernet0/0/3]interface g0/0/1
[s2-GigabitEthernet0/0/1]port link-type trunk
[s2-GigabitEthernet0/0/1]port trunk allow-pass vlan all
<Huawei>
<Huawei>system-view
Enter system view, return user view with Ctrl+Z.
[Huawei]un in en
Info: Information center is disabled.
[Huawei]sysname s3
[s3]vlan 30
[s3-vlan30]description manger
[s3-vlan30]interface g0/0/3
[s3-GigabitEthernet0/0/3]port link-type access
[s3-GigabitEthernet0/0/3]port default vlan 30
[s3-GigabitEthernet0/0/3]interface g0/0/1
[s3-GigabitEthernet0/0/1]port link-type trunk
[s3-GigabitEthernet0/0/1]port trunk allow-pass vlan all
The device is running!
<Huawei>
<Huawei>system-view
[Huawei]un in en
[Huawei]sysname s1
[s1]vlan batch 10 20 30
[s1]interface g0/0/2
[s1-GigabitEthernet0/0/2]port link-type trunk
[s1-GigabitEthernet0/0/2]port trunk all
[s1-GigabitEthernet0/0/2]port trunk allow-pass vlan all
[s1-GigabitEthernet0/0/2]interface g0/0/3
[s1-GigabitEthernet0/0/3]port link-type trunk
[s1-GigabitEthernet0/0/3]port trunk allow-pass vlan all
[s1-GigabitEthernet0/0/3]interface g0/0/1
[s1-GigabitEthernet0/0/1]port link-type trunk
[s1-GigabitEthernet0/0/1]port trunk allow-pass vlan all
[s1-GigabitEthernet0/0/1]quit
3.检查测试:
[r1]display ip interface brief #查看接口摘要信息
*down: administratively down
^down: standby
(l): loopback
(s): spoofing
The number of interface that is UP in Physical is 5
The number of interface that is DOWN in Physical is 1
The number of interface that is UP in Protocol is 4
The number of interface that is DOWN in Protocol is 2
Interface IP Address/Mask Physical Protocol
GigabitEthernet0/0/0 unassigned up down
GigabitEthernet0/0/0.1 192.168.10.254/24 up up
GigabitEthernet0/0/0.2 192.168.20.254/24 up up
GigabitEthernet0/0/0.3 192.168.30.254/24 up up
GigabitEthernet0/0/1 unassigned down down
NULL0 unassigned up up(s)
[r1]display ip routing-table #查看路由表
Route Flags: R - relay, D - download to fib
------------------------------------------------------------------------------
Routing Tables: Public
Destinations : 13 Routes : 13
Destination/Mask Proto Pre Cost Flags NextHop Interface
127.0.0.0/8 Direct 0 0 D 127.0.0.1 InLoopBack0
127.0.0.1/32 Direct 0 0 D 127.0.0.1 InLoopBack0
127.255.255.255/32 Direct 0 0 D 127.0.0.1 InLoopBack0
192.168.10.0/24 Direct 0 0 D 192.168.10.254 GigabitEthernet
0/0/0.1
192.168.10.254/32 Direct 0 0 D 127.0.0.1 GigabitEthernet
0/0/0.1
192.168.10.255/32 Direct 0 0 D 127.0.0.1 GigabitEthernet
0/0/0.1
192.168.20.0/24 Direct 0 0 D 192.168.20.254 GigabitEthernet
0/0/0.2
192.168.20.254/32 Direct 0 0 D 127.0.0.1 GigabitEthernet
0/0/0.2
192.168.20.255/32 Direct 0 0 D 127.0.0.1 GigabitEthernet
0/0/0.2
192.168.30.0/24 Direct 0 0 D 192.168.30.254 GigabitEthernet
0/0/0.3
192.168.30.254/32 Direct 0 0 D 127.0.0.1 GigabitEthernet
0/0/0.3
192.168.30.255/32 Direct 0 0 D 127.0.0.1 GigabitEthernet
0/0/0.3
255.255.255.255/32 Direct 0 0 D 127.0.0.1 InLoopBack0
使用pc1ping其他vlan的主机
PC>ping 192.168.30.1
Ping 192.168.30.1: 32 data bytes, Press Ctrl_C to break
Request timeout!
From 192.168.30.1: bytes=32 seq=2 ttl=127 time=125 ms
From 192.168.30.1: bytes=32 seq=3 ttl=127 time=140 ms
From 192.168.30.1: bytes=32 seq=4 ttl=127 time=125 ms
From 192.168.30.1: bytes=32 seq=5 ttl=127 time=125 ms
--- 192.168.30.1 ping statistics ---
5 packet(s) transmitted
4 packet(s) received
20.00% packet loss
round-trip min/avg/max = 0/128/140 ms
说明实验很成功,完美实现了单臂路由。但是对于单臂路由有利有弊。
优点是能够减少链路的数量
缺点是存在单点故障
713
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
