网络配置综合实验(2)

2019-03-22 19:03

R1(config-vlan)#vlan name CWB

R1(config)#vlan 12

R1(config-vlan)#vlan name RLZYB 配置三层交换机vlan接口： R1(config)#interface vlan 10 R1(config-vlan)#no shutdown

R1(config-vlan)#ip address 172.16.2.30 255.255.255.0 R1(config)#interface vlan 11 R1(config-vlan)#no shutdown

R1(config-vlan)#ip address 172.16.2.62 255.255.255.0 R1(config)#interface vlan 12 R1(config-vlan)#no shutdown

R1(config-vlan)#ip address 172.16.2.94 255.255.255.0 配置DHCP地址池：

R1(config)#ip dhcp excluded-address 172.16.2.30//把网关排除出地址池 R1(config)#ip dhcp excluded-address 172.16.2.62 R1(config)#ip dhcp excluded-address 172.16.2.94 R1(config)#ip dhcp pool pool10

R1(dhcp-config)#network 172.16.2.0 255.255.255.224//分配行政部网段地址 R1(dhcp-config)#default-router 172.16.2.30

R1(dhcp-config)#dns-server 172.16.2.229 //这个是我们dns服务器的地址 R1(config)#ip dhcp pool pool11

R1(dhcp-config)#network 172.16.2.32 255.255.255.224//分配财务部网段地址 R1(dhcp-config)#default-router 172.16.2.62

R1(dhcp-config)#dns-server 172.16.2.229 //这个是我们dns服务器的地址 R1(config)#ip dhcp pool pool10

R1(dhcp-config)#network 172.16.2.64 255.255.255.224//分配人力资源部网段地址 R1(dhcp-config)#default-router 172.16.2.94

R1(dhcp-config)#dns-server 172.16.2.229 //这个是我们dns服务器的地址

（2）三层交换机R2的配置配置路由协议： R2(config)#router ospf 1

R2(config-router)#router-id 2.2.2.2

R2(config-router)#network 23.1.1.2 0.0.0.0 area 0 R2(config-router)#network 172.16.2.0 0.0.0.255 area 0 R2(config-router)#redistribute static subnets R2(config-router)#redistribute connected subnets 配置下联端口

R2(config)#int fa1/0/1

R2(config-if)# switchport encaps dot1q R2(config-if)# switchport mode trunk 配置vlan信息： R2(config)#vlan 13

R2(config-vlan)#vlan name CGB R2(config)#vlan 14

R2(config-vlan)#vlan name HCB R2(config)#vlan 15

R2(config-vlan)#vlan name SCB R2(config)#vlan 16

R2(config-vlan)#vlan name SERVER 配置三层交换机vlan接口： R2(config)#interface vlan 13 R2(config-vlan)#no shutdown

R2(config-vlan)#ip address 172.16.2.158 255.255.255.0 R2(config)#interface vlan 14 R2(config-vlan)#no shutdown

R2(config-vlan)#ip address 172.16.2.190 255.255.255.0

R2(config)#interface vlan 15 R2(config-vlan)#no shutdown

R2(config-vlan)#ip address 172.16.2.222 255.255.255.0 R2(config)#interface vlan 16 R2(config-vlan)#no shutdown

R2(config-vlan)#ip address 172.16.2.254 255.255.255.0

配置DHCP地址池：

R2 (config)#ip dhcp excluded-address 172.16.2.158//把网关排除出地址池 R2(config)#ip dhcp excluded-address 172.16.2.190 R2(config)#ip dhcp excluded-address 172.16.2.222 R2(config)#ip dhcp excluded-address 172.16.2.254 R2(config)#ip dhcp pool pool13

R2(dhcp-config)#network 172.16.2.128 255.255.255.224//分配行政部网段地址 R2(dhcp-config)#default-router 172.16.2.158

R2(dhcp-config)#dns-server 172.16.2.229 //这个是我们dns服务器的地址 R2(config)#ip dhcp pool pool14

R2(dhcp-config)#network 172.16.2.160 255.255.255.224//分配财务部网段地址 R2(dhcp-config)#default-router 172.16.2.190

R2(dhcp-config)#dns-server 172.16.2.229 //这个是我们dns服务器的地址 R2(config)#ip dhcp pool pool15

R2(dhcp-config)#network 172.16.2.192 255.255.255.224//分配人力资源部网段地址 R2(dhcp-config)#default-router 172.16.2.222

R2(dhcp-config)#dns-server 172.16.2.229 //这个是我们dns服务器的地址 R2(config)#ip dhcp pool pool16

R2(dhcp-config)#network 172.16.2.224 255.255.255.224//分配人力资源部网段地址 R2(dhcp-config)#default-router 172.16.2.254

R2(dhcp-config)#dns-server 172.16.2.229 //这个是我们dns服务器的地址配置ACL：

R2(config)#access-list 100 permit ip 172.16.2.0 0.0.0.127 any

R2(config)#interface fa0/0

R2(config-if)#ip access-group 100 out 配置默认路由

R2(config)#ip route 0.0.0.0 0.0.0.0 12.1.1.1

（3）SW1的配置将交换机端口划分到VLAN SW1(config)# int range fastEthernet 0/1 – 7 SW1(config-if)# switchport mode access SW1(config-if)# switchport access vlan 10 SW1(config)# int range fastEthernet 0/8 – 14 SW1(config-if)# switchport mode access SW1(config-if)# switchport access vlan 11 SW1(config)# int range fastEthernet 0/15 – 21 SW1(config-if)# switchport mode access SW1(config-if)# switchport access vlan 12 配置交换机的上联接口

SW1(config)# int range fastEthernet 0/24 SW1(config-if)# switchport mode trunk

（4）SW2的配置

将交换机端口划分到VLAN SW2(config)# int range fastEthernet 0/1 – 7 SW2(config-if)# switchport mode access SW2(config-if)# switchport access vlan 13 SW2(config)# int range fastEthernet 0/8 – 14 SW2(config-if)# switchport mode access SW2(config-if)# switchport access vlan 14 SW2(config)# int range fastEthernet 0/15 – 21 SW2(config-if)# switchport mode access SW2(config-if)# switchport access vlan 15

SW2(config)# int range fastEthernet 0/22 – 23 SW2(config-if)# switchport mode access SW2(config-if)# switchport access vlan 16 配置交换机的上联接口：

SW2(config)# int range fastEthernet 0/24 SW2(config-if)# switchport mode trunk

（5）防火墙的配置

启用防火墙结口VLAN config terminal interface vlan 10 no shutdown nameif inside security-level 100

ip address 12.1.1.1 255.255.255.0 interface vlan 20 no shutdown nameif outside security-level 0

ip address 10.4.110.12 255.255.255.0 end

write memory 配置防火墙端口 config terminal interface Ethernet0/0 no shutdown

switchport access vlan 10

共4页:

网络配置综合实验(2).doc 将本文的Word文档下载到电脑下载失败或者文档不完整，请联系客服人员解决！

下载这篇word文档