载入中
自定义HTML载入中... loading
网络竞赛培训 总体总结 [原创 2008-06-15 22:26:28]  删除... 
字体变小 字体变大

查看更多精彩图片

 

4个vlan:      172.31.16.0      17.0   18.0         172.31.16.0 255.255.252.0
 
office    29用户        172.31.17.192 255.255.255.224 172.31.17.222/221  220                 40   办公室


network   120用户       172.31.17.0 255.255.255.128 172.31.17.126/125  124                 20 网络中心


computer  160用户       172.31.16.0 255.255.255.0 172.31.16.254/253  252                 10 计算机系


finance   32用户        172.31.17.128 255.255.255.192 172.31.17.190/189  188                 30 财务处


test      99

 


172.31.17.224 - 255

225-254


管理IP地址 (224-240)
Core1 = 172.31.17.225
Core2 = 172.31.17.226

Dis-1 = 172.31.17.227
Dis-2 = 172.31.17.228

Access-1 = 172.31.17.229
Access-2 = 172.31.17.230

7200 = 172.31.17.231

 


设备之间IP地址(172.31.17.240-255)

Dis-1   ---172.31.18.1/255.255.255.252------------------------------172.31.18.2/255.255.255.252-------   Dis-2


Dis-1   ---172.31.18.5/255.255.255.252------------------------------172.31.18.6/255.255.255.252-------   Core-1


Dis-1   ---172.31.18.9/255.255.255.252------------------------------172.31.18.10/255.255.255.252------   Core-2

 


Dis-2   ---172.31.18.13/255.255.255.252-----------------------------172.31.18.14/255.255.255.252------   Core-1


Dis-2   ---172.31.18.17/255.255.255.252-----------------------------172.31.18.18/255.255.255.252------   Core-2

 

 

Core-1  ---172.31.18.21/255.255.255.252-----------------------------172.31.18.22/255.255.255.252------   Core

-2

 

Core-1  ---172.31.18.25/255.255.255.252-----------------------------172.31.18.26/255.255.255.252------   7200


Core-2  ---172.31.18.29/255.255.255.252-----------------------------172.31.18.30/255.255.255.252------   7200

 

7200    ---60.6.238.2/255.255.255.224-------------------------------60.6.238.1/255.255.255.224--------    CNC

 

 

 

 


vlan  access  trunk   svi  vrrp  channel

 

 

 

 

 


1、VLAN


// DIS-1

Vlan data
  vlan 10 name office
  vlan 20 name network
  ...
  exit

 


// access-1
int f0/1
  sw ac vl 10
  sw mo ac

 

 

2、TRUNK

// dis-1
int f0/24
  sw mode trunk


// access-1
int f0/24
  sw mo trunk

 


3、SVI
// dis-1
int vlan 10
  ip addr 10.10.10.254 255.255.255.0

int vlan 20
  ip addr 10.20.20.254 255.255.255.0

 

// dis-2
int vlan 10
  ip addr 10.10.10.253 255.255.255.0
 
int vlan 20
  ip addr 10.20.20.253 255.255.255.0

 

 

4、VRRP

// dis-1
int vlan 10
  standby 10 ip 10.10.10.252
  standby 10 priority 150
  standby 10 preempt
  standby 10 track f0/23(上联接口) 60
  standby 10 track f0/22(上联接口) 60


// dis-2
int vlan 10
  standby 10 ip 10.10.10.252
  standby 10 priority 100
  standby 10 preempt
  standby 10 track f0/23 60
  standby 10 track f0/22 60

 

5、MSTP

// dis-1

Spanning-tree mode mstp
spanning-tree mst configuration
  name ccie
  revision 1
  instance 1 vlan 10,30,50
  instance 2 vlan 20,40,60


spanning-tree mst 1 root primary
spanning-tree mst 2 root secondary

 

// dis-2
spanning-tree mode mstp
spanning-tree mst configuration
  name ccie
  revision 1
  instance 1 vlan 10,30,50
  instance 2 vlan 20,40,60

spanning-tree mst 2 root primary
spanning-tree mst 1 root secondary

 


6、channel-group

// dis-1
int r f0/17 - 24
  shut
  sw mode trunk
  channel-group 1 mode on
  no shut

// dis-2
int r f0/17 - 24
  shut
  sw mo tr
  channel-group 1 mode on
  no shut

 

 

7、ospf

show ip int brief   查看直连接口IP

// core1
router os 1
  router-id 1.1.1.1
  netw x.x.x.x 0.0.0.0 area 0(宣告直连接口IP)
  netw y.y.y.y 0.0.0.0 area 0


show ip ospf neighbor


// dis-1
router os 1
  router-id 2.2.2.2
  netw x.x.x.x 0.0.0.0 area 0

 

// 7200 出口路由
router os 1
  router-id 5.5.5.5
  netw x.x.x.x 0.0.0.0 area 0
  default-information originate always   生成默认路由

 


8、NAT转换
int f0/0 内口
  ip nat inside

int f0/1 外口,连网通
  ip nat outside

int f0/2 外口,连电信
  ip nat outside

 

ip access-list extended CNC-ACL
  permit ip 10.10.0.0 0.0.255.255 60.6.238.0 0.0.0.255

ip access-list extended TELE-ACL
  permit ip 10.10.0.0 0.0.255.255 210.30.11.0 0.0.0.255


ip nat pool CNC-POOL 60.6.238.11 60.6.238.19 netmask 255.255.255.224
ip nat pool TELE-POOL 210.30.11.1 210.30.11.9 netmask 255.255.255.224

ip nat inside source list CNC-ACL pool CNC-POOL overload (端口复用  PAT)
ip nat inside source list TELE-ACL pool TELE-POOL overload

 


ip route 60.6.238.0 255.255.255.0 60.6.238.1    静态路由(通往网通)

ip route 0.0.0.0 0.0.0.0 210.30.11.1     主默认路由(通往电信)

ip route 0.0.0.0 0.0.0.0 60.6.238.1 60   备份默认路由(通往网通)

 


9、服务器NAT

WWW1: 10.99.99.99
WWW2: 10.99.99.100

 

ip nat inside source static 10.99.99.99 60.6.238.20
ip nat inside source static 10.99.99.100 60.6.238.20


ip nat inside source static tcp 10.99.99.99 80 60.6.238.20 80
ip nat inside source static tcp 10.99.99.100 80 60.6.238.20 80

 


FTP服务器: 10.99.99.98


ip nat inside source static tcp 10.99.99.98 21 60.6.238.20 21
ip nat inside source static tcp 10.99.99.98 20 60.6.238.20 20

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 


 

标签: CISCO 进入CISCO吧  
票数:
我顶
什么是“我顶”?
[收藏到我的网摘]
[推荐] | [评论] | [举报] | [打印]
点击数:    评论数:
本文章引用通告地址(TrackBack Ping URL)为:
本文章尚未被引用。
发表评论
大 名:
(不填写则显示为匿名者)
网 址:
(您的网址,可以不填)
标 题:
内 容:
请根据下图中的字符输入验证码:
(您的评论将有可能审核后才能发表)
和讯个人门户 v1.0 | 和讯部落 | 客服中心