目录
一、计划任务书
二、实训任务完成文档
三、任务完成过程
四、实验拓扑图
4.1VLAN配置
4.2 端口状态配置
五、以太网配置
六、IP业务配置
七、路由配置
九、SSH服务
R1的ssh配置
远程登录测试
实训总结
一、计划任务书
https://download.csdn.net/download/m0_46161304/35502261
二、实训任务完成文档
https://download.csdn.net/download/m0_46161304/35502611
成品实验及完整拓扑图
https://download.csdn.net/download/m0_46161304/35515375
三、任务完成过程
课题名称: 网络故障诊断与测试
设计内容:掌握网络管理的主要功能,熟悉一般网络故障诊断与排除的方法;
- 掌握常见网络诊断测试工具使用方法、熟悉物理层故障诊断与排除思路和步骤。
- 掌握交换机常见故障诊断与排除方法、能够排除典型的交换机故障。
- 掌握网络层一般故障解决的方法和步骤、能够对以太网中常见的故障进行诊断与排除。
- 了解服务器常见的故障现象和解决方法、能够进行简单的数据备份与回复。
技术条件或要求: 交换机、路由器、安装有windows server和华为ensp软件的计算机。
四、实验拓扑图
4.1VLAN配置
在实验结构图中核心交换机与各个交换机进行创建VLAN,并划分VLAN区域。
交换机VLAN的创建
[SW1]vlan 10 [SW1-vlan10]description FA [SW1]vlan 20 [SW1-vlan20]description PM [SW1]vlan 100 [SW1-vlan100]description SW-MGMT [SW1]vlan 201 [SW1-vlan201]description SW1-R1 [SW1]interface G0/0/24 [SW1-GigabitEthernet0/0/24]port link-type access [SW1-GigabitEthernet0/0/24]port default vlan 201 [SW2] [SW2]vlan 90 [SW2-vlan90]description DC [SW2]vlan 100 [SW2]-vlan100]description SW-MGMT [SW2]port-group 1 [SW2-port-group-1]group-member Gi0/0/1 to Gi0/0/10 [SW2-port-group-1]port link-type access [SW2-port-group-1]port default vlan 90 [SW3] [SW3]vlan 10 [SW3-vlan10]description FA [SW3]vlan 20 [SW3-vlan20]description PM [SW3]vlan 100 [SW3-vlan100]description SW-MGMT [SW3]port-group 1 [SW3-port-group-1]group-member Eth0/0/1 to Eth0/0/20 [SW3-port-group-1]port link-type access [SW3-port-group-1]port default vlan 10 [SW4] [SW4]vlan 10 [SW4-vlan10]description FA [SW4]vlan 20 [SW4-vlan20]description PM [SW4]vlan 100 [SW4-vlan100]description SW-MGMT [SW4]port-group 1 [SW4-port-group-1]port link-type access [SW4-port-group-1]port default vlan 20
其他交换机VLAN创建
4.2 端口状态配置
在核心交换机和各个交换机分配端口状态,放行VLAN和划分VLAN。
SW1交换机端口状态
其他交换机的端口状态
五、以太网配置
创建Trunk链路,实现交换机之间的互连及VLAN的互通,配置Eth-Trunk,提高核心交换机宽带,配置STP,提高各部门网络与核心网络健壮性。
[SW1]int g0/0/1 [SW1-GigabitEthernet0/0/1]port link-type trunk [SW1-GigabitEthernet0/0/1]port trunk allow-pass vlan 10 20 100 [SW1]int g0/0/2 [SW1-GigabitEthernet0/0/2]port link-type trunk [SW1-GigabitEthernet0/0/2]port trunk allow-pass vlan 10 20 100 [SW1]int Eth-Trunk 1 [SW1-Eth-Trunk1]port link-type trunk [SW1-Eth-Trunk1]port trunk allow-pass vlan 100 [SW1]int gi0/0/21 [SW1-GigabitEthernet0/0/21]eth-trunk 1 [SW1]int gi0/0/22 [SW1-GigabitEthernet0/0/22]eth-trunk 1 [SW1]stp enable [SW1]stp mode rstp [SW1]stp priority 4096 [SW2]int Eth-Trunk 1 [SW2-Eth-Trunk1]port link-type trunk [SW2-Eth-Trunk1]port trunk allow-pass vlan 100 [SW2]int gi0/0/21 [SW2-GigabitEthernet0/0/21]eth-trunk 1 [SW2]int gi0/0/22 [SW2-GigabitEthernet0/0/22]eth-trunk 1 [SW3]int g0/0/1 [SW3-GigabitEthernet0/0/1]port link-type trunk [SW3-GigabitEthernet0/0/1]port trunk allow-pass vlan 10 20 100 [SW3]int g0/0/2 [SW3-GigabitEthernet0/0/2]port link-type trunk [SW3-GigabitEthernet0/0/2]port trunk allow-pass vlan 10 20 100 [SW3]stp enable [SW3]stp mode rstp [SW3]port-group 1 [SW3-port-group-1]stp edged-port enable [SW4]int g0/0/1 [SW4-GigabitEthernet0/0/1]port link-type trunk [SW4-GigabitEthernet0/0/1]port trunk allow-pass vlan 10 20 100 [SW4]int g0/0/2 [SW4-GigabitEthernet0/0/2]port link-type trunk [SW4-GigabitEthernet0/0/2]port trunk allow-pass vlan 10 20 100 [SW4]stp enable [SW4]stp mode rstp [SW4]port-group 1 [SW4-port-group-1]stp edged-port enable
核心交换机VLAN端口配置信息
查看Eth-Trunkd端口状态
其他交换机端口状态
(1) SW3和SW4的端口状态
(2)RSTP生成树协议端口状态
(3)RSTP协议配置状态
六、IP业务配置
配置IP池子,开启DHCP服务,为各部门PC自动分配IP
配置IP和查看IP池子是否生效 [SW1]int vlanif 10 [SW1-Vlanif10]ip add 192.168.10.1 24 [SW1-Vlanif10]q [SW1]int vlanif 20 [SW1-Vlanif20]ip add 192.168.20.1 24 [SW1-Vlanif20]q [SW1]int vlanif 100 [SW1-Vlanif100]ip add 192.168.100.1 24 [SW1-Vlanif100]q [SW1]int vlanif 201 [SW1-Vlanif201]ip add 10.1.1.1 30 [SW1]dhcp enable [SW1]int vlanif 20 [SW1-Vlanif20]dhcp select interface [SW1-Vlanif20]dhcp server dns-list 192.168.90.100 [SW2]int vlanif 90 [SW2-Vlanif90]ip add 192.168.90.1 24 [SW2-Vlanif90]q [SW2]int vlanif 100 [SW2-Vlanif100]ip add 192.168.100.2 24 [SW2-Vlanif100]q [SW3]int vlanif 100 [SW3-Vlanif100]ip add 192.168.100.3 24 [SW3-Vlanif100]q [SW4]int vlanif 100 [SW4-Vlanif100]ip add 192.168.100.4 24 [SW4-Vlanif100]q [R1]int g0/0/0 [R1-GigabitEthernet0/0/0]ip add 16.16.16.16 24 [R1]int g0/0/1 [R1-GigabitEthernet0/0/1]ip add 10.1.1.2 30 [R2]int g0/0/0 [R2-GigabitEthernet0/0/0]ip add 16.16.16.1 24
查看VLANIF20接口IP地址池信息
七、路由配置
R1路由配置
[R1]ospf 10 [R1-ospf-10]area 0 [R1-ospf-10-area-0.0.0.0]network 10.1.1.0 0.0.0.3 [R1-ospf-10-area-0.0.0.0]q [R1-ospf-10]default-route-advertise always [R1-ospf-10]q
SW1路由配置
[SW1]ospf 10 [SW1-ospf-10]area 0 [SW1-ospf-10-area-0.0.0.0]network 10.1.1.0 0.0.0.3 [SW1-ospf-10-area-0.0.0.0]network 192.168.10.0 0.0.0.255 [SW1-ospf-10-area-0.0.0.0]network 192.168.20.0 0.0.0.255 [SW1-ospf-10-area-0.0.0.0]network 192.168.100.0 0.0.0.255
SW2配置
[SW2]ospf 10 [SW2-ospf-10]area 0 [SW2-ospf-10-area-0.0.0.0]network 192.168.90.0 0.0.0.255 [SW2-ospf-10-area-0.0.0.0]network 192.168.100.0 0.0.0.255
SW3和SW4默认路由指向
[SW3]ip route-static 0.0.0.0 192.168.100.1 [SW4]ip route-static 0.0.0.0 192.168.100.1
八、ACL出口配置
[R1]acl 2000 [R1-acl-basic-2000]rule permit source 192.168.10.0 0.0.0.255 [R1-acl-basic-2000]rule permit source 192.168.20.0 0.0.0.255 [R1-acl-basic-2000]rule permit source 192.168.90.0 0.0.0.255 [R1-acl-basic-2000]q [R1]int g0/0/0 [R1-GigabitEthernet0/0/0]nat outbound 2000
九、SSH服务
R1的ssh配置
创建密钥[R1]rsa local-key-pair create
Input the bits in the modulus[default = 512]:1024
启动Stelnet服务
[R1]stelnet server enable
[R1]user-interface vty 0 4
创建vty用户界面
[R1-ui-vty0-4]authentication-mode aaa
[R1-ui-vty0-4]protocol inbound ssh
[R1-ui-vty0-4]q
创建用户
[R1]ssh user admin
[R1]ssh user admin authentication-type password
[R1]ssh user admin service-type stelnet
[R1]aaa
更改密码
[R1-aaa]local-user admin password cipher Huawei123
[R1-aaa]local-user admin service-type ssh
[R1-aaa]local-user admin privilege level 15
远程登录命令
[R1]ssh client first-time enable
[R1]stelnet 192.168.100.1
创建密钥[R1]rsa local-key-pair create Input the bits in the modulus[default = 512]:1024 启动Stelnet服务 [R1]stelnet server enable [R1]user-interface vty 0 4 创建vty用户界面 [R1-ui-vty0-4]authentication-mode aaa [R1-ui-vty0-4]protocol inbound ssh [R1-ui-vty0-4]q 创建用户 [R1]ssh user admin [R1]ssh user admin authentication-type password [R1]ssh user admin service-type stelnet [R1]aaa 更改密码 [R1-aaa]local-user admin password cipher Huawei123 [R1-aaa]local-user admin service-type ssh [R1-aaa]local-user admin privilege level 15 远程登录命令 [R1]ssh client first-time enable [R1]stelnet 192.168.100.1
SW1的ssh配置
创建密钥 [R1]rsa local-key-pair create Input the bits in the modulus[default = 512]:1024 启动Stelnet服务 [SW1]stelnet server enable [SW1]user-interface vty 0 4 创建vty用户界面 [SW1-ui-vty0-4]authentication-mode aaa [SW1-ui-vty0-4]protocol inbound ssh [SW1-ui-vty0-4]q 创建用户 [SW1]ssh user admin [SW1]ssh user admin authentication-type password [SW1]ssh user admin service-type stelnet [SW1]aaa 更改密码 [SW1-aaa]local-user admin password cipher Huawei123 [SW1-aaa]local-user admin service-type ssh [SW1-aaa]local-user admin privilege level 15 远程登录命令 [SW1]ssh client first-time enable [SW1]stelnet 16.16.16.16
远程登录测试
(1)自动获取IP
(2)PC端互Ping成功
(3)测试nat是否正常工作
(4)ssh服务测试
R1远程登录SW1
