Shulou(Shulou.com)06/02 Report--

A little bit of today's self-study class, .

It is a comprehensive small experiment, the content involved includes what we have learned before, in fact, it is not very difficult, but the whole process is careful, although the teacher usually taught us how to check, in order to keep making films, we have to write it down at the same time. There are no big problems in the whole process, right?

Help command:

CDP-cisco discovery protocol, Cisco Discovery Protocol

Show cdp neighbor; / / executes in privileged mode to discover the physical connection link information between this device and neighboring devices

Request:

1. Devices with the same VLAN should communicate with each other, and devices with different VLAN should communicate with each other.

2. The network of × × background area is the internal network, and the network of the purple background area is the external network.

The public network accesses the internal network using HSRP configuration, and the internal network accesses the external network using floating static routes.

3. For the division of each VALN, please refer to the figure. The address field used by each VLAN is: 192.168.room.9 VLAN 24, where the * sign is the VLAN number.

4. The gateway address of each VLAN is configured as 192.168.room.254swap 24. If HSRP is used, the gateway is configured as 192.168.room250.

5. The configuration requirements of the root switch of each VLAN:

(1) the root of SW1:VLAN/10/20/30

(2) the root of SW2:VLAN40/50/60

6. Gateway configuration of each VLAN:

(1) Gateway of SW1:VLAN10/20

(2) Gateway of SW2:VLAN60

(3) Gateway of SW3:VLAN30/40

(4) the gateway of SW4:VLAN50.

7. Two links between neighboring switches are configured to form Ethernet channels.

Give a brief description of the idea and what each part contains:

one。 Intranet configuration

1. Create the corresponding vlan that needs to pass in the cascade switch SW-1,SW-2,SW-3,SW-4,SW-5,SW-6,SW-7, and add all the corresponding ports to the corresponding VLAN.

two。 Set the ports on all switches that are interconnected with the switch to trunk

3. Because there are backup dual links in SW-6,SW-7, it is necessary to do Ethernet channel (bundled link)-- port-channel

Command: for example, SW-6

SW6 (config) # interface range f0ram 1pm f1max 1

SW6 (config-if) # channel_group 6 mode on (6 is the group number and can be written at will within the range

SW6 (config) # interface pory_channel 6 (enter the group number)

SW6 (config-if) # switchport mode trunk (switch port made into trunk)

4. Configure the port of R1 with IP, and then use R1 as the DHCP server of all intranets

R1 (config) # service DHCP starts the DHCP service

R1 (config) # ip dhcp pool vlan10 create dhcp server name

R1 (config) # network 192.168. 10.0 255.255.255.0 target network segment

R1 (config) # default_route 192.168.10.250 virtual network segment (virtual gateway is directly configured here because the private network needs to do HSRP hot backup)

R1 (config) # dns_server 10.10.10.10 domain name

5. SW1 creates vlan 10-60 with IP and virtual gateway

SW1 (config) # interface vlan 10

SW1 (config-vlan) # ip address 192.168.10.251 255.255.255.0

SW1 (config-vlan) # standby 10 ip 192.168.10.250 configure a virtual gateway

6. Use SW1 as the core exchange of vlan 10J20, SW3 as the core exchange of vlan 30,40, SW2 as the core exchange of vlan 60, and SW4 as the core exchange of vlan 50

SW1 (config) # interface vlan 10

SW1 (config-vlan) # standby 10 priority 105 sets the priority. The default priority is 100. the higher the priority, the better.

SW1 (config-vlan) # standby 10 preemit preemption Port

SW1 (config-vlan) # standby 10 track f0ap1 link tracking. When the priority route fails, the priority is automatically reduced by ten, and the backup route is enabled.

7. Use SW1 as the root exchange of vlan 10 and 20, and SW2 as the root exchange of vlan 40, 50 and 60.

SW1 (config) # spanning_tree vlan 10 priority 4096 (this value can only be a multiple of 4096)

8. Routing information protocols (that is, protocols that routers learn from each other) are configured on R2.

R2 (config) # route rip

R2 (config) # version 2

R2 (config) # no aotu_summary

R2 (config) # network 192.168.60.254 (the network segment must be connected directly behind the network)

It should be noted here that R2 connects the internal network to the external network. When configuring routing protocols, directly connected links can never be configured with external network segments (security).

9. The routing function is enabled in SW1,SW2,SW3,SW4, and routing information protocols (that is, protocols that routers learn from each other) are configured.

Because both router rip and ip route (static routing) require next-hop network segments, add the same vlan between switches for connectivity, such as SW1

First create vlan 12 between SW1 and SW 2, with IP,192.168.12.1 / 192.168.12.2 as the next hop link

SW1 (config) # ip routing enables routing

SW1 (config) # route rip

SW1 (config) # version 2

SW1 (config) # no aotu_summary

SW1 (config) # network 192.168.10.0 (the network segment must be connected directly behind the network)

SW1 (config) # network 192.168.20.0

SW1 (config) # network 192.168.12.0

10. R2 is connected to the external network, so it needs to obtain all the routing entries of the external network and send them to the internal routes through the routing information protocol.

R2 (config) # ip route 0.0.0.0 0.0.0.0 100.10.10.2 (public network connection port IP)

two。 External network configuration

1. Configure the port of the public network with an IP address.

two。 Configure the virtual gateway on the R1PowerR2 connected to the server and start HSRP

3. R1, R2, R3 configure routing information protocols with each other, and learn routing entries from each other

three。 Configure redistribution on router R2, where the internal network is connected to the external network, to send the acquired route entries to all internal routes

R2 (config) # route rip

R2 (config) # redistribute static

Configure inside,outside on the port.

Ports connected to the external network are configured with outside

R2 (config) # interface g0and0

R2 (config-ip) # ip nat outside

Configure traffic of interest

R2 (config) # access_list 1 permit 192.168.0.0 0.0.255.255 (means that the two segments cannot be changed when they match)

Configure PNAT

R2 (config) # ip nat inside source list 1 interface g0swap 0 (this port is a port connected to the external network)

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.