日韩黑丝制服一区视频播放|日韩欧美人妻丝袜视频在线观看|九九影院一级蜜桃|亚洲中文在线导航|青草草视频在线观看|婷婷五月色伊人网站|日本一区二区在线|国产AV一二三四区毛片|正在播放久草视频|亚洲色图精品一区

搜索
分享

CISCO 3750G VLAN配置實(shí)例

 昵稱6537642 2011-03-21
CISCO 3750G VLAN配置實(shí)例 收藏
網(wǎng)絡(luò)環(huán)境:防火墻->3750G->VLAN->PC
配置目的:3750G上按端口劃分VLAN,各VLAN間可互訪、可上外網(wǎng),各VLAN的PC由Windows 2003 Server的DHCP分配。為測試只設(shè)了三個(gè)VLAN,多個(gè)VLAN也同樣劃分即可。
參數(shù):3750G上,VLAN1 IP:123.123.0.11, VLAN2 IP:192.168.0.254, VLAN3 IP:192.168.2.254
2003 Server 位于VLAN1  IP:123.123.0.4、網(wǎng)關(guān):123.123.0.11
防火墻內(nèi)網(wǎng)卡IP:123.123.0.254
3750G中端口VLAN劃分、IP地址指定、VLAN路由、默認(rèn)網(wǎng)關(guān)、靜態(tài)路由等大多數(shù)參數(shù)都可以用CISCO Network Assistant管理工具來設(shè)置,但啟用DHCP功能,DHCP中繼、指定DHCP服務(wù)器地址、VLAN的ip helper-address地址(紅色部分)需進(jìn)入終端管理中設(shè)置。
DHCP服務(wù)器中,在DHCP中增加123.123.0.0、192.168.0.0、192.168.2.0三個(gè)作用域,并分別設(shè)置好分配給PC的路由為各VLAN IP,DNS為外網(wǎng)的DNS。
注意:DHCP的網(wǎng)關(guān)必須是所在VLAN的IP地址;防火墻中增加123.123.0.0  0.0.0.0、192.168.0.0  0.0.0.0的回指路由,增加123.123.0.0、192.168.0.0的上網(wǎng)NAT設(shè)置等讓該網(wǎng)段可上網(wǎng),
 
 
 
具體配置如下:
show run
Building configuration...
 
Current configuration : 3334 bytes
!
version 12.2
service config
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname Switch3750G
!
enable secret 5 $1$Imhn$8cgG7/eYcVQhnSzDFt1x10
!
no aaa new-model
switch 1 provision ws-c3750g-24ts-1u
system mtu routing 1500
ip subnet-zero
ip routing                                                         ;啟用IP路由功能,使VLAN間能互訪
ip dhcp relay information trust-all     ;啟用DHCP轉(zhuǎn)發(fā)功能,配置時(shí)需在終端中執(zhí)行Service DHCP打開DHCP功能
!
ip dhcp-server 123.123.0.4                        ;指定外部DHCP服務(wù)器地址
!
!
no file verify auto
spanning-tree mode pvst
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
interface GigabitEthernet1/0/1
 switchport access vlan 2
 switchport mode access
 switchport port-security
 switchport port-security aging time 2
 switchport port-security violation restrict
 switchport port-security aging type inactivity
 macro description cisco-desktop
 spanning-tree portfast
 spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/2
 switchport mode access
 spanning-tree portfast
!
switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/4
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/5
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/6
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/7
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/8
 switchport mode access
 spanning-tree portfast
interface GigabitEthernet1/0/9
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/10
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/11
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/12
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/13
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/14
 switchport mode access
!
interface GigabitEthernet1/0/15
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/16
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/17
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/18
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/19
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/20
spanning-tree portfast
!
interface GigabitEthernet1/0/21
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/22
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/23
 switchport access vlan 3
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/24
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/25
!
interface GigabitEthernet1/0/26
interface GigabitEthernet1/0/27
!
interface GigabitEthernet1/0/28
!
interface Vlan1                                     ;VLAN1定義
 ip address 123.123.0.11 255.255.255.0
!
interface Vlan2                                     ;VLAN1定義
 ip address 192.168.0.254 255.255.255.0
 ip helper-address 123.123.0.4
!
interface Vlan3                                     ;VLAN1定義
 ip address 192.168.2.254 255.255.255.0
 ip helper-address 123.123.0.4
!
router rip
!
ip default-gateway 123.123.0.254           ;網(wǎng)絡(luò)網(wǎng)關(guān)地址,外網(wǎng)路由器的內(nèi)網(wǎng)卡地址
ip classless
ip route 0.0.0.0 0.0.0.0 123.123.0.254   ;上外網(wǎng)的靜態(tài)路由
ip http server
!
!
!
!
line con 0
line vty 0 4
 password
login
 length 0
line vty 5 15
 password
 login
 length 0
!
end
 
Switch3750G#
 
本文來自CSDN博客,轉(zhuǎn)載請(qǐng)標(biāo)明出處:http://blog.csdn.net/azhi11111111/archive/2009/12/29/5099549.aspx

    本站是提供個(gè)人知識(shí)管理的網(wǎng)絡(luò)存儲(chǔ)空間,所有內(nèi)容均由用戶發(fā)布,不代表本站觀點(diǎn)。請(qǐng)注意甄別內(nèi)容中的聯(lián)系方式、誘導(dǎo)購買等信息,謹(jǐn)防詐騙。如發(fā)現(xiàn)有害或侵權(quán)內(nèi)容,請(qǐng)點(diǎn)擊一鍵舉報(bào)。
    轉(zhuǎn)藏 分享 獻(xiàn)花(0

    0條評(píng)論

    發(fā)表

    請(qǐng)遵守用戶 評(píng)論公約

    類似文章 更多