一、完成上机实验后,将提升以下实战能力:
1. 能够掌握链路聚合的作用及相关配置
2. 能够掌握VLAN的相关部署及配置
3. 能够掌握三层交换机配置虚拟三层接口的前提条件及配置
4. 能够掌握DHCP服务相关配置
5. 能够掌握静态路由相关配置
二、上机实验部分:
实验拓扑:
实验需求:
1.按照图示配置IP地址
2.在SW1和SW2之间配置链路聚合增加链路带宽,提高可靠性
3.PC5和PC6属于VLAN10, PC7和PC8属于VLAN20
4.SW1和SW2属于二层交换机,SW3为三层交换机(VLAN100用于对接R4),在交换机之间相连的链路放行相关VLAN(不允许放行所有VLAN)
5.SW3作为DHCP服务器,配置两个地址池,分别为192.168.1.0/24网段和192.168.2.0/24网段网关分别为192.168.1.254和192.168.2.254,dns统一为114.114.114.114;分别排除地址段192.168.1.1-192.168.10和192.168.2.1-192.168.2.10
6.在R4上配置静态路由,使其有到达各个部门的路由,在R3上配置默认路由,使其全网互通
7.在R4上配置Telnet服务使两个部门都能登录到R4
环境基本配置说明:
设备IP地址与角色:
Telnet****账户密码:
账 户:huayu
密 码:123456.com
实验步骤:
1.按照图示配置IP地址
[R4]int L0
[R4-LoopBack0]ip add 100.1.1.1 32
[R4]int g0/0
[R4-GigabitEthernet0/0]ip add 172.16.1.1 30
[SW3]vlan 10
[SW3-vlan10]vlan 20
[SW3-vlan20]vlan 100
[SW3-vlan100]exit
[SW3]int vlan 10
[SW3-Vlan-interface10]ip add 192.168.1.254 24
[SW3-Vlan-interface10]int vlan 20
[SW3-Vlan-interface20]ip add 192.168.2.254 24
[SW3-Vlan-interface20]int vlan 100
[SW3-Vlan-interface100]ip add 172.16.1.2 30
2.在SW1和SW2之间配置链路聚合增加链路带宽,提高可靠性
[SW1]int Bridge-Aggregation 1
[SW1]int range g1/0/3 to g1/0/4
[SW1-if-range]port link-aggregation group 1
[SW2]int Bridge-Aggregation 1
[SW2]int range g1/0/3 to g1/0/4
[SW2-if-range]port link-aggregation group 1
配置完后发现已有链路聚合
[SW2-if-range]dis link-aggregation verbose
Loadsharing Type: Shar -- Loadsharing, NonS -- Non-Loadsharing
Port Status: S -- Selected, U -- Unselected, I -- Individual
Port: A -- Auto port, M -- Management port, R -- Reference port
Flags: A -- LACP_Activity, B -- LACP_Timeout, C -- Aggregation,
D -- Synchronization, E -- Collecting, F -- Distributing,
G -- Defaulted, H -- Expired
Aggregate Interface: Bridge-Aggregation1
Aggregation Mode: Static
Loadsharing Type: Shar
Management VLANs: None
Port Status Priority Oper-Key
GE1/0/3(R) S 32768 1
GE1/0/4 S 32768 1
3.配置所有vlan,以及端口类型
[SW1]vlan 20
[SW1-vlan20]name jishu
[SW1]vlan 10
[SW1-vlan10]name caiwu
[SW1-vlan10]port g1/0/1
[SW1-vlan10]port g1/0/2
[SW1]int Bridge-Aggregation 1
[SW1-Bridge-Aggregation1]port link-type trunk
Configuring GigabitEthernet1/0/3 done.
Configuring GigabitEthernet1/0/4 done.
[SW1-Bridge-Aggregation1]port trunk permit vlan 10 20
Configuring GigabitEthernet1/0/3 done.
Configuring GigabitEthernet1/0/4 done.
[SW1]int g1/0/5
[SW1-GigabitEthernet1/0/5]port link-type trunk
[SW1-GigabitEthernet1/0/5]port trunk permit vlan 10 20
[SW2]vlan 10
[SW1-vlan10]name caiwu
[SW2-vlan10]vlan 20
[SW1-vlan20]name jishu
[SW2-vlan20]port g1/0/1
[SW2-vlan20]port g1/0/2
[SW2]int Bridge-Aggregation 1
[SW2-Bridge-Aggregation1]port link-type trunk
Configuring GigabitEthernet1/0/3 done.
Configuring GigabitEthernet1/0/4 done.
[SW2-Bridge-Aggregation1]port trunk permit vlan 10 20
Configuring GigabitEthernet1/0/3 done.
Configuring GigabitEthernet1/0/4 done.
[SW2]int g1/0/5
[SW2-GigabitEthernet1/0/5]port link-type trunk
[SW2-GigabitEthernet1/0/5]port trunk permit vlan 10 20
[SW3]int g1/0/3
[SW3-GigabitEthernet1/0/1]port link-type trunk
[SW3-GigabitEthernet1/0/1]port trunk permit vlan 10 20
[SW3-GigabitEthernet1/0/1]int g1/0/2
[SW3-GigabitEthernet1/0/2]port link-type trunk
[SW3-GigabitEthernet1/0/2]port trunk permit vlan 10 20
[SW3]vlan 100
[SW3-vlan100]port g1/0/3
4.SW3作为DHCP服务器,配置两个地址池,分别为192.168.1.0/24网段和192.168.2.0/24网段网关分别为192.168.1.254和192.168.2.254,dns统一为114.114.114.114;分别排除地址段192.168.1.1-192.168.10和192.168.2.1-192.168.2.10**
[SW3]dhcp enable
[SW3]dhcp
[SW3]dhcp server ip-pool 1
[SW3-dhcp-pool-1]network 192.168.1.0 24
[SW3-dhcp-pool-1]gateway-list 192.168.1.254
[SW3-dhcp-pool-1]dns-list 114.114.114.114
[SW3]dhcp server ip-pool 2
[SW3-dhcp-pool-2]network 192.168.2.0 24
[SW3-dhcp-pool-2]gateway-list 192.168.2.254
[SW3-dhcp-pool-2]dns-list 114.114.114.114
[SW3]dhcp server forbidden-ip 192.168.1.1 192.168.1.10
[SW3]dhcp server forbidden-ip 192.168.2.1 192.168.2.10
5.在R4上配置静态路由,使其有到达各个部门的路由,在R3上配置默认路由,使其全网互通
[R4]ip route-static 192.168.1.0 24 172.16.1.2
[R4]ip route-static 192.168.2.0 24 172.16.1.2
[SW3]ip route-static 0.0.0.0 0 172.16.1.1
6.在R4上配置Telnet服务使两个部门都能登录到R4
[R4]telnet server enable
[R4]local-user huayu class manage
New local user added.
[R4-luser-manage-huayu]password simple 123456.com
[R4-luser-manage-huayu]service-type telnet
[R4-luser-manage-huayu]authorization-attribute user-role level-15
[R4]line vty 0 4
[R4-line-vty0-4]authentication-mode scheme
<H3C>telnet 100.1.1.1
Trying 100.1.1.1 ...
Press CTRL+K to abort
Connected to 100.1.1.1 ...
******************************************************************************
* Copyright (c) 2004-2021 New H3C Technologies Co., Ltd. All rights reserved.*
* Without the owner's prior written consent, *
* no decompiling or reverse-engineering shall be allowed. *
******************************************************************************
Login: huayu
Password: 123456.com
实验结果
dhcp获取的ip地址
PC5pingR4的环回口测试连通性
<H3C>ping 100.1.1.1
Ping 100.1.1.1 (100.1.1.1): 56 data bytes, press CTRL_C to break
56 bytes from 100.1.1.1: icmp_seq=0 ttl=254 time=1.014 ms
56 bytes from 100.1.1.1: icmp_seq=1 ttl=254 time=1.145 ms
56 bytes from 100.1.1.1: icmp_seq=2 ttl=254 time=1.090 ms
56 bytes from 100.1.1.1: icmp_seq=3 ttl=254 time=0.817 ms
56 bytes from 100.1.1.1: icmp_seq=4 ttl=254 time=1.152 ms
--- Ping statistics for 100.1.1.1 ---
5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss
round-trip min/avg/max/std-dev = 0.817/1.044/1.152/0.124 ms
<H3C>%Sep 26 14:39:41:833 2024 H3C PING/6/PING_STATISTICS: Ping statistics for 100.1.1.1: 5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss, round-trip min/avg/max/std-dev = 0.817/1.044/1.152/0.124 ms.
vlan划分以及ip地址
[SW3]dis ip interface brief
*down: administratively down
(s): spoofing (l): loopback
Interface Physical Protocol IP address/Mask VPN instance Description
MGE0/0/0 down down -- -- --
Vlan10 up up 192.168.1.254/24 -- --
Vlan20 up up 192.168.2.254/24 -- --
Vlan100 up up 172.16.1.2/30 -- --
10 VLAN 0010 caiwu BAGG1(U) GE1/0/1(U) GE1/0/2(U)
GE1/0/3(U) GE1/0/4(U) GE1/0/5(U)
20 VLAN 0020 jishu BAGG1(U) GE1/0/3(U) GE1/0/4(U)
GE1/0/5(U)
<SW1>
10 VLAN 0010 caiwu BAGG1(U) GE1/0/3(U) GE1/0/4(U)
GE1/0/5(U)
20 VLAN 0020 jishu BAGG1(U) GE1/0/1(U) GE1/0/2(U)
GE1/0/3(U) GE1/0/4(U) GE1/0/5(U)
<SW2>
10 VLAN 0010 GE1/0/1(U) GE1/0/2(U)
20 VLAN 0020 GE1/0/1(U) GE1/0/2(U)
100 VLAN 0100 GE1/0/3(U)
[SW3]
dhcp信息
[SW3]dis dhcp server pool
Pool name: 1
Network: 192.168.1.0 mask 255.255.255.0
dns-list 114.114.114.114
expired day 1 hour 0 minute 0 second 0
gateway-list 192.168.1.254
IP-in-use threshold 100
Pool name: 2
Network: 192.168.2.0 mask 255.255.255.0
dns-list 114.114.114.114
expired day 1 hour 0 minute 0 second 0
gateway-list 192.168.2.254
IP-in-use threshold 100
telnet用户信息
[R4]display local-user class manage
Device management user huayu:
State: Active
Service type: Telnet
User group: system
Bind attributes:
Authorization attributes:
Work directory: flash:
User role list: level-15, network-operator
Password control configurations:
Password complexity: username checking
Total 1 local users matched.