IT评测·应用市场-qidao123.com技术社区

标题: 小型园区网实验作业 [打印本页]
作者: 宝塔山    时间: 2025-4-7 03:28
标题: 小型园区网实验作业

 
拓扑搭建:


 
实验需求:

1、按照图示的VLAN及IP地点需求,完成相关配置
2、要求SW1为VLAN 2/3的主根及网关
       SW2 为VLAN 20/30 的主根及主网关
    SW1和SW2互为备份
3、可以使用super vlan
4、上层通过静态路由协议完成数据通信过程
5、AR1为企业出口路由器
6、要求全网可达
 
需求分析:

1.生成树与网关设置:让 SW1 成为 VLAN 2/3 的主根及主网关,意味着在生成树协议(STP)中,SW1 在 VLAN 2/3 内优先级最高,且作为这两个 VLAN 内主机的默认网关 。使 SW2 成为 VLAN 20/30 的主根及主网关,原理同 SW1 在 VLAN 2/3 的设置 。SW1 和 SW2 互为备份,即当主根交换机出现故障时,备份交换机能迅速接替工作,需通过配置 STP 的备份机制(如设置符合的优先级、根路径开销等)来实现 。
2.路由配置:接纳静态路由协议,在路由器 AR1 及相关设备上配置路由条目,确保不同网段(包罗企业内部 VLAN 网段、与 ISP 连接网段)间数据可以或许准确转发 。
3.企业出口设置:将 AR1 配置为企业出口路由器,需设置 NAT(网络地点转换)功能,使企业内部私有 IP 地点可以或许转换为合法公网 IP 地点,实现与 ISP 网络及外部网络的通信。
 
配置命令:

  1. AR1:
  2. int g 0/0/1
  3. ip address  10.0.11.2 30
  4. int g 0/0/2
  5. ip address 10.0.12.2 30
  6. q
  7. ping 10.0.11.1
  9. ping 10.0.12.1
  11. ospf 1
  12. a 0
  13. network 10.0.11.2 0.0.0.0
  14. network 10.0.12.2 0.0.0.0
  15. q
  16. ip route-static 0.0.0.0 0 202.1.1.2
  17. ospf 1
  18. default-route-advertise
  19. q
  20. acl 2000
  21. rule permit source 10.0.0.0 0.0.255.255
  22. interface g 0/0/0
  23. nat outbound 2000
  27. ISP:
  28. sys
  29. interface g 0/0/0
  30. ip address  202.1.1.2 30
  31. q
  32. interface LoopBack 0
  33. ip address 100.100.100 32
  34. q
  38. LSW1:
  39. vlan batch 2 3 20 30
  40. interface Eth-Trunk 0
  41. trunkport g 0/0/1 to 0/0/2
  42. port link-type trunk
  43. port trunk allow-pass vlan 2 3 20 30
  44. q
  45. int g 0/0/3
  46. port link-type trunk
  47. port trunk allow-pass vlan 2 3 20 30
  48. int g 0/0/4
  49. port link-type trunk
  50. port trunk allow-pass vlan 2 3 20 30
  51. q
  52. display vlan
  53. stp enable
  54. stp mode mstp
  55. stp region-configuration
  56. region-name aa
  57. revision-level 100
  58. instance 1 vlan 2 3
  59. instance 2 vlan 20 30
  60. active region-configuration
  61. dispaly stp brief
  62. stp instance 1 root primary
  63. stp instance 2 root secondary
  64. dispaly stp brief
  65. interface Eth-Trunk 0
  66. q
  67. int g 0/0/3
  68. stp root-protection
  69. q
  70. interface Vlanif 2
  71. ip address 10.0.2.1 24
  72. vrrp vrid 1virtual-ip 10.0.2.254
  73. vrrp vrid 1 priority 120
  74. vrrp vrid 1 preempt-mode timer delay 20
  75. vrrp vrid 1 track interface g 0/0/5 reduced 30
  76. q
  77. interface Vlanif 2
  78. display this
  79. q
  80. interface Vlanif 3
  81. ip address 10.0.3.1 24
  82. vrrp vrid 1 virtual-ip 10.0.3.254
  83. vrrp vrid 1 priority 120
  84. vrrp vrid 1 preempt-mode timer delay 20
  85. vrrp vrid 1 track interface g 0/0/5 reduced 30
  86. display this
  87. interface Vlanif 20
  88. ip address 10.0.20.1 24
  89. vrrp vrid 1 virtual-ip 10.0.20.254
  90. int v 30
  91. ip address 10.0.30.1 24
  92. vrrp vrid 1 virtual-ip 10.0.30.254
  93. q
  94. display vrrp brief
  95. dhcp enable
  96. ip pool vlan 2
  97. network 10.0.2.0 mask 24
  98. gateway-list 10.0.2.254
  99. dns-list 8.8.8.8
  100. undo network
  101. network 10.0.2.0 mask 25
  102. undo gateway-list 10.0.2.254
  103. network 10.0.2.0 mask 25
  104. gateway-list 10.0.2.100
  105. interface vlanif 2
  106. vrrp vrid 1 virtual-ip 10.0.2.100
  107. q
  108. interface Vlanif 2
  109. dhcp select global
  110. q
  111. vlan 11
  112. q
  113. interface g 0/0/5
  114. port link-type access
  115. port default vlan 11
  116. q
  117. interface Vlanif 11
  118. ip address 10.0.11.1 30
  119. q
  120. ospf 1
  121. area 0
  122. network 10.0.2.1 0.0.0.0
  123. network 10.0.3.1 0.0.0.0
  124. network 10.0.11.1 0.0.0.0
  125. network 10.0.20.1 0.0.0.0
  126. network 10.0.30.1 0.0.0.0
  127. q
  128. silent-interface Vlanif 2
  129. silent-interface Vlanif 3
  130. silent-interface Vlanif 20
  131. silent-interface Vlanif 30
  132. vlan 13
  133. q
  134. interface Eth-Trunk 0
  135. port trunk allow-pass vlan 13
  136. dis this
  137. interface Vlanif 13
  138. ip address 10.0.13.1 30
  139. ospf 1
  140. network 10.0.13.1 0.0.0.0
  141. q
  145. LSW2:
  146. vlan batch 2 3 20 30
  147. interface Eth-Trunk 0
  148. trunkport g 0/0/1 to 0/0/2
  149. port link-type trunk
  150. port trunk allow-pass vlan 2 3 20 30
  151. q
  152. int g 0/0/3
  153. port link-type trunk
  154. port trunk allow-pass vlan 2 3 20 30
  155. int g 0/0/4
  156. port link-type trunk
  157. port trunk allow-pass vlan 2 3 20 30
  158. q
  159. stp enable
  160. stp mode mstp
  161. stp region-configuration
  162. region-name aa
  163. revision-level 100
  164. instance 1 vlan 2 3
  165. instance 2 vlan 20 30
  166. active region-configuration
  167. stp instance 1 root secondary
  168. stp instance 2 root primary
  169. interface Vlanif 2
  170. ip address 10.0.2.2 24
  171. vrrp vrid 1 virtual-ip 10.0.2.254
  172. q
  173. interface Vlanif 3
  174. ip address 10.0.3.2 24
  175. vrrp vrid 1 virtual-ip 10.0.3.254
  176. interface Vlanif 20
  177. ip address 10.0.20.2 24
  178. vrrp vrid 1 virtual-ip 10.0.20.254
  179. vrrp vrid 1 priority 120
  180. vrrp vrid 1 preempt-mode timer delay 20
  181. vrrp vrid 1 track interface g 0/0/5 reduced 30
  182. int v 30
  183. ip address 10.0.30.1 24
  184. vrrp vrid 1 virtual-ip 10.0.30.254
  185. display vrrp brief
  186. undo network
  187. network 10.0.2.128 mask 25
  188. vlan 12
  189. q
  190. int g 0/0/5
  191. po li a
  192. po de v 12
  193. q
  194. interface Vlanif 12
  195. ip address 10.0.12.1 30
  196. ospf 1
  197. area 0
  198. network 10.0.2.2 0.0.0.0
  199. network 10.0.3.2 0.0.0.0
  200. network 10.0.30.2 0.0.0.0
  201. network 10.0.12.1 0.0.0.0
  202. q
  203. silent-interface Vlanif 2
  204. silent-interface Vlanif 3
  205. silent-interface Vlanif 20
  206. silent-interface Vlanif 30
  207. vlan 13
  208. q
  209. interface Eth-Trunk 0
  210. po t alk
  211. po t al v 13
  212. q
  213. interface Vlanif 13
  214. ip address 10.0.13.2 30
  215. q
  216. ospf 1
  217. network 10.0.13.2 0.0.0.0
  218. q
  219. stp instance 0 root secondary
  220. ping 10.0.13.1
  225. LSW3:
  226. vlan batch 2 3 20 30
  227. interface g 0/0/1
  228. port link-type access
  229. port default vlan 2
  230. int g 0/0/2
  231. port link-type access
  232. port default vlan 3
  233. q
  234. int g 0/0/3
  235. port link-type trunk
  236. port trunk allow-pass vlan 2 3 20 30
  237. int g 0/0/4
  238. port link-type trunk
  239. port trunk all v 2 3 20 30
  240. q
  241. stp enable
  242. stp mode mstp
  243. stp region-configuration
  244. region-name aa
  245. revision-level 100
  246. instance 1 vlan 2 3
  247. instance 2 vlan 20 30
  248. active region-configuration
  249. display this
  250. int g 0/0/1
  251. stp edged-port enable
  255. LSW4:
  256. vlan batch 2 3 20 30
  257. interface g 0/0/1
  258. port link-type access
  259. port default vlan 20
  260. int g 0/0/2
  261. port link-type access
  262. port default vlan 30
  263. int g 0/0/3
  264. port link-type trunk
  265. port trunk allow-pass vlan 2 3 20 30
  266. int g 0/0/4
  267. port link-type trunk
  268. port trunk all v 2 3 20 30
  269. q
  270. stp enable
  271. stp mode mstp
  272. stp region-configuration
  273. region-name aa
  274. revision-level 100
  275. instance 1 vlan 2 3
  276. instance 2 vlan 20 30
  277. active region-configuration
复制代码
 
测试结果:

  1. PC1:
  2. ping 10.0.2.254
  4. ping  10.0.3.10
  6. ping 10.0.20.10
  8. ping 10.0.30.10
  10. ping 100.100.100.100
  12. AR1:
  13. ping 10.0.11.1
  15. ping 10.0.12.1
  17. LSW2:
  18. ping 10.0.13.1
复制代码
 

实验感悟:

        通过此次网络实验,收获颇丰。在VLAN与IP配置环节,准确规划与设置是网络有序通信的基石,任何疏漏都可能导致网络不通,这让我深知底子配置严谨性的关键。生成树与网关设置极具挑战,既要明确各交换机在不同VLAN中的主根与备份脚色,又要保障切换的实时性与稳固性。这不仅考验对生成树原理的明白,更需具备将理论转化为实际可靠配置的能力,让我对网络冗余备份机制有了更深刻认知。静态路由配置过程中,梳理各网段间的路径走向,准确设置路由条目,使我对网络层数据转发原理有了更透彻的领悟。而NAT配置实现内外网通信,仿佛搭建起一座连接企业与外部世界的桥梁,进一步拓宽了我对网络互联的认识。此次实验是理论与实践的深度交融,每一步配置都是对知识掌握水平的检验,每一次故障排查都是履历的积累。它不仅提升了我的实操能力,更让我学会从全局视角审阅网络架构,为未来在网络范畴的学习和工作筑牢根基。 
 

免责声明:如果侵犯了您的权益,请联系站长,我们会及时删除侵权内容,谢谢合作!更多信息从访问主页:qidao123.com:ToB企服之家,中国第一个企服评测及商务社交产业平台。



欢迎光临 IT评测·应用市场-qidao123.com技术社区 (https://dis.qidao123.com/) Powered by Discuz! X3.4