资源描述
实验拓扑及配置说明
注:以下蓝色字体部分是设备进行相应配置后自动生成的提示信息或日志信息。
(一) S2328G配置步骤及配置说明:
Ruijie>en \\进入特权层
Ruijie#conf \\进入全局配置层
Enter configuration commands, one per line. End with CNTL/Z.
Ruijie(config)#host S23 \\配置主机名为S23
S23(config)#vlan 10 \\创建VLAN10并命名为renshi
S23(config-vlan)#name renshi
S23(config-vlan)#vlan 20 \\创建VLAN20并命名为caiwu
S23(config-vlan)#name caiwu
S23(config-vlan)#vlan 100 \\创建VLAN100并命名为guanli
S23(config-vlan)#name guanli
S23(config-vlan)#exi
S23(config)#int ran f 0/1-10 \\将1-10口划入VLAN10
S23(config-if-range)#sw acc vl 10
S23(config-if-range)#int ran f 0/11-20 \\将11-20口划入VLAN20
S23(config-if-range)#sw acc vl 20
S23(config-if-range)#exi
S23(config)#spanning-tree \\开启生成树,防止环路
Enable spanning-tree.
*Dec 10 16:58:24: %SPANTREE-5-TOPOTRAP: Topology Change Trap for instance 0.
*Dec 10 16:58:39: %SPANTREE-5-TOPOTRAP: Topology Change Trap.
S23(config)#span mo rstp \\配置生成树的模式为RSTP
S23(config)#int ran f 0/1-24 \\在用户接口1-24开启bpduguard和portfast
S23(config-if-range)#span bpduguard enable
S23(config-if-range)#span portfast
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
%Warning: portfast should only be enabled on ports connected to a single
host. Connecting hubs, switches, bridges to this interface when portfast is
enabled,can cause temporary loops.
S23(config-if-range)#exi
S23(config)#int gi 0/25 \\将25口设置为TRUNK口,并进行描述
S23(config-if-GigabitEthernet 0/25)#sw mo tru
S23(config-if-GigabitEthernet 0/25)#des link_to_S57-G0/1
S23(config-if-GigabitEthernet 0/25)#exi
S23(config)#int vla 100 \\配置S23的管理IP为172.16.100.1
S23(config-if-VLAN 100)#ip add 172.16.100.1 255.255.255.0
S23(config-if-VLAN 100)#exi
*Dec 10 17:01:18: %LINK-3-UPDOWN: Interface VLAN 100, changed state to up.
*Dec 10 17:01:18: %LINEPROTO-5-UPDOWN: Line protocol on Interface VLAN 100, changed state to up.
S23(config)#ip def 172.16.100.254 \\配置S23的缺省网关
S23(config)#ena sec lev 15 0 ruijie \\配置特权密码为ruijie
S23(config)#line vty 0 4 \\配置telnet密码为ruijie
S23(config-line)#password 0 ruijie
S23(config-line)#exi \\退到上一层
S23(config)#service pass \\将telnet密码进行加密
S23(config)#end \\退到特权层
*Dec 10 17:04:41: %SYS-5-CONFIG_I: Configured from console by console
S23#wr \\保存配置
Building configuration...
[OK]
以下为S23的配置信息:
S23#sh run
Building configuration...
Current configuration : 3323 bytes
!
version RGOS 10.2(5), Release(67430)(Fri Oct 23 17:54:38 CST 2009 -ngcf49)
!
!
!
vlan 1
!
vlan 10
name renshi
!
vlan 20
name caiwu
!
vlan 100
name guanli
!
!
service password-encryption
!
!
ip default-gateway 172.16.100.254
!
!
enable secret 5 $1$yLhr$Bq1s9tzwt26qs7sy
!
!
!
!
spanning-tree
spanning-tree mode rstp
hostname S23
interface FastEthernet 0/1
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/2
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/3
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/4
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/5
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/6
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/7
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/8
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/9
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/10
switchport access vlan 10
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/11
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/12
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/13
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/14
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/15
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/16
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/17
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/18
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/19
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/20
switchport access vlan 20
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/21
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/22
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/23
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/24
spanning-tree bpduguard enable
spanning-tree portfast
!
interface GigabitEthernet 0/25
switchport mode trunk
description link_to_S57-G0/1
!
interface GigabitEthernet 0/26
!
interface VLAN 100
ip address 172.16.100.1 255.255.255.0
no shutdown
!
!
line con 0
line vty 0 4
login
password 7 06142b0a251c17
!
!
end
S23#
(二) S5750配置步骤及配置说明:
Ruijie>en \\进入特权层
Ruijie#conf \\进入全局配置层
Enter configuration commands, one per line. End with CNTL/Z.
Ruijie(config)#hostname S57 \\配置主机名为S57
S57(config)#vlan 10 \\创建VLAN10并命名为renshi
S57(config-vlan)#name renshi
S57(config-vlan)#vlan 20 \\创建VLAN20并命名为caiwu
S57(config-vlan)#name caiwu
S57(config-vlan)#vlan 100 \\创建VLAN100并命名为guanli
S57(config-vlan)#name guanli
S57(config-vlan)#int vlan 10 \\配置VLAN10的IP地址,作为VLAN10用户的网关
S57(config-if-VLAN 10)#ip add 172.16.10.254 255.255.255.0
S57(config-if-VLAN 10)#int vlan 20 \\配置VLAN20的IP地址,作为VLAN20用户的网关
S57(config-if-VLAN 20)#ip add 172.16.20.254 255.255.255.0
S57(config-if-VLAN 20)#int vlan 100 \\配置VLAN100的IP地址,作为VLAN100的网关(设备的网关)
S57(config-if-VLAN 100)#ip add 172.16.100.254 255.255.255.0
S57(config-if-VLAN 100)#exi
S57(config)#int gi 0/1 \\将1口设置为TRUNK口,并进行描述
S57(config-if-GigabitEthernet 0/1)#sw mo tru
*Dec 10 17:16:44: %LINEPROTO-5-UPDOWN: Line protocol on Interface VLAN 10, changed state to up
*Dec 10 17:16:44: %LINEPROTO-5-UPDOWN: Line protocol on Interface VLAN 20, changed state to up
*Dec 10 17:16:44: %LINEPROTO-5-UPDOWN: Line protocol on Interface VLAN 100, changed state to up
S57(config-if-GigabitEthernet 0/1)#des link_to_S23-G0/25
S57(config-if-GigabitEthernet 0/1)#int gi 0/24 \\将24口设置为路由口,并配置IP地址为10.0.0.1,并进行描述
S57(config-if-GigabitEthernet 0/24)#no sw
S57(config-if-GigabitEthernet 0/24)#ip add 10.0.0.1 255.255.255.0
S57(config-if-GigabitEthernet 0/24)#des link_to_R1-F0/0
S57(config-if-GigabitEthernet 0/24)#exi
S57(config)#ip rou 0.0.0.0 0.0.0.0 gi 0/24 10.0.0.2 \\配置默认路由
S57(config)#end
*Dec 10 17:20:00: %SYS-5-CONFIG_I: Configured from console by console
S57#wr \\保存配置
Building configuration...
[OK]
以下为S57的配置信息:
S57#sh run
Building configuration...
Current configuration : 3323 bytes
!
version RGOS 10.2(5), Release(67430)(Fri Oct 23 17:54:38 CST 2009 -ngcf49)
!
!
!
vlan 1
!
vlan 10
name renshi
!
vlan 20
name caiwu
!
vlan 100
name guanli
!
!
!
!
hostname S57
interface GigabitEthernet 0/1
switchport mode trunk
description link_to_S23-G0/25
!
interface GigabitEthernet 0/2
!
interface GigabitEthernet 0/3
!
interface GigabitEthernet 0/4
!
interface GigabitEthernet 0/5
!
interface GigabitEthernet 0/6
!
interface GigabitEthernet 0/7
!
interface GigabitEthernet 0/8
!
interface GigabitEthernet 0/9
!
interface GigabitEthernet 0/10
!
interface GigabitEthernet 0/11
!
interface GigabitEthernet 0/12
!
interface GigabitEthernet 0/13
!
interface GigabitEthernet 0/14
!
interface GigabitEthernet 0/15
!
interface GigabitEthernet 0/16
!
interface GigabitEthernet 0/17
!
interface GigabitEthernet 0/18
!
interface GigabitEthernet 0/19
!
interface GigabitEthernet 0/20
!
interface GigabitEthernet 0/21
!
interface GigabitEthernet 0/22
!
interface GigabitEthernet 0/23
!
interface GigabitEthernet 0/24
no switchport
ip address 10.0.0.1 255.255.255.0
description link_to_R1-F0/0
!
!
!
interface VLAN 10
ip address 172.16.10.254 255.255.255.0
no shutdown
!
interface VLAN 20
ip address 172.16.20.254 255.255.255.0
no shutdown
!
interface VLAN 100
ip address 172.16.100.254 255.255.255.0
no shutdown
!
!
ip route 0.0.0.0 0.0.0.0 GigabitEthernet 0/24 10.0.0.2
!
!
!
!
!
line con 0
line vty 0 4
login
!
!
end
S57#
(三) RSR20配置步骤及配置说明:
Ruijie>en \\进入特权层
Ruijie#conf \\进入全局配置层
Enter configuration commands, one per line. End with CNTL/Z.
Ruijie(config)#hos R1 \\配置主机名为R1
R1(config)#ena sec lev 15 ruijie \\配置特权密码为ruijie
R1(config)#line vty 0 4 \\配置telnet密码为ruijie
R1(config-line)#pass ruijie
R1(config-line)#exi
R1(config)#serv pass \\配置telnet密码加密
R1(config)#int f 0/0 \\配置F 0/0口IP为10.0.0.2,并进行描述
R1(config-if-FastEthernet 0/0)#ip add 10.0.0.2 255.255.255.0
R1(config-if-FastEthernet 0/0)#des link_to_S57-G0/24
R1(config-if-FastEthernet 0/0)#exi
R1(config)#int f 0/1 \\配置F 0/0口IP为10.0.0.2,并进行描述
R1(config-if-FastEthernet 0/1)#ip add 1.1.1.2 255.255.255.0
R1(config-if-FastEthernet 0/1)#des link_to_CNII
R1(config-if-FastEthernet 0/1)#exi
\\配置到S57上各个VLAN的回指路由
R1(config)#ip rou 172.16.10.0 255.255.255.0 f 0/0 10.0.0.1
R1(config)#ip rou 172.16.20.0 255.255.255.0 f 0/0 10.0.0.1
R1(config)#ip rou 172.16.100.0 255.255.255.0 f 0/0 10.0.0.1
\\配置到外网的默认路由
R1(config)#ip rou 0.0.0.0 0.0.0.0 f 0/1 1.1.1.1
\\配置访问控制列表ACL1,这里只允许172.16.10.0/24网段通过
R1(config)#access-list 1 permit 172.16.10.0 0.0.0.255
R1(config)#int f 0/0 \\指定F 0/0为NAT的内网口
R1(config-if-FastEthernet 0/0)#ip nat inside
R1(c
展开阅读全文
浙ICP备2021020529号-1 | 浙B2-20240490 
