【网络】交换机vlan典型配置

其他 2019-05-04 09:11:10 阅读次数: 0

在这里插入图片描述
如图所示:
为了避免广播报文泛滥和通信的安全性,某公司网络中使用VLAN技术来隔离部门间的二层流量。其中部门A使用VLAN 100,部门B使用VLAN 200。
(注:粉色区域是部门A,蓝色区域是部门B)
部门A的终端使用 192.168.1.0/24的网段,各终端的网关地址均为192.168.1.1
部门B的终端使用 192.168.2.0/24的网段,各终端的网关地址均为192.168.2.1
实现同一VLAN内的主机能够二层 互通,不同VLAN内的主机不能二层互通。
DeviceA作为部门A的网关,DeviceB作为部门B的网关

设备配置

首先我们配置终端电脑的IP:
Host A的IP为192.168.1.2 掩码 255.255.255.0 网关192.168.1.1
Host A的IP为192.168.2.2 掩码 255.255.255.0 网关192.168.2.1
Host A的IP为192.168.1.3 掩码 255.255.255.0 网关192.168.1.1
Host A的IP为192.168.2.3 掩码 255.255.255.0 网关192.168.2.1

接着我们配置Device A

<H3C>system-view
#进入系统视图
System View: return to User View with Ctrl+Z.
[H3C]vlan 100
#创建vlan 100
[H3C-vlan100]quit
#退出vlan100
[H3C]vlan  200
#创建vlan 200
[H3C-vlan200]quit
#退出vlan200
[H3C]interface  GigabitEthernet  1/0/1
#进入千兆端口 1/0/1
[H3C-GigabitEthernet1/0/1]port link-type access
#配置端口链路类型为access
[H3C-GigabitEthernet1/0/1]port access vlan  100
#配置端口的access vlan 为 100
[H3C-GigabitEthernet1/0/1]quit
#退出千兆端口 1/0/1
[H3C]interface  GigabitEthernet  1/0/2
#进入千兆端口 1/0/2
[H3C-GigabitEthernet1/0/2]port link-type access
#配置端口链路类型为access
[H3C-GigabitEthernet1/0/2]port access vlan  200
#配置端口的access vlan 为 200
[H3C-GigabitEthernet1/0/2]quit
#退出千兆端口 1/0/2
[H3C]interface  GigabitEthernet  1/0/3
#进入千兆端口 1/0/3
[H3C-GigabitEthernet1/0/3]port link-type trunk
#配置端口链路类型为Trunk
[H3C-GigabitEthernet1/0/3]port trunk  permit vlan  100 200
#配置端口trunk 允许通过的vlan 为100 和200
[H3C-GigabitEthernet1/0/3]quit
#退出千兆端口 1/0/3
[H3C]interface  Vlan-interface  100
#进入到vlan接口100中
[H3C-Vlan-interface100]ip address  192.168.1.1 24
#配置vlan接口100的IP地址为192.168.1.1 子网掩码长度为24

配置Device B

<H3C>system-view
#进入系统视图
System View: return to User View with Ctrl+Z.
[H3C]vlan 100
#创建vlan 100
[H3C-vlan100]quit
#退出vlan100
[H3C]vlan 200
#创建vlan 200
[H3C-vlan200]quit
#退出vlan200
[H3C]interface  GigabitEthernet  1/0/1
#进入千兆端口 1/0/1
[H3C-GigabitEthernet1/0/1]port link-type access
#配置端口链路类型为access
[H3C-GigabitEthernet1/0/1]port access  vlan  100
#配置端口的access vlan 为 100
[H3C-GigabitEthernet1/0/1]quit
#退出千兆端口 1/0/1
[H3C]interface  GigabitEthernet  1/0/2
#进入千兆端口 1/0/2
[H3C-GigabitEthernet1/0/2]port link-type access
#配置端口链路类型为access
[H3C-GigabitEthernet1/0/2]port access vlan  200
#配置端口链路类型为access
[H3C-GigabitEthernet1/0/2]quit
#退出千兆端口 1/0/2
[H3C]interface  GigabitEthernet  1/0/3
#进入千兆端口 1/0/3
[H3C-GigabitEthernet1/0/3]port link-type trunk
#配置端口链路类型为Trunk
[H3C-GigabitEthernet1/0/3]port trunk  permit vlan  100 200
#配置端口trunk 允许通过的vlan 为100 和200
[H3C-GigabitEthernet1/0/3]quit
#退出千兆端口 1/0/3
[H3C]interface  Vlan-interface  200
#进入到vlan接口200中
[H3C-Vlan-interface200]ip address  192.168.2.1 24
#配置vlan接口200的IP地址为192.168.2.1 子网掩码长度为24
[H3C-Vlan-interface200]

配置验证

在Host A ping 网关和 Host C


<H3C>ping 192.168.1.1
Ping 192.168.1.1 (192.168.1.1): 56 data bytes, press CTRL_C to break
56 bytes from 192.168.1.1: icmp_seq=0 ttl=255 time=2.000 ms
56 bytes from 192.168.1.1: icmp_seq=1 ttl=255 time=1.000 ms
56 bytes from 192.168.1.1: icmp_seq=2 ttl=255 time=1.000 ms
56 bytes from 192.168.1.1: icmp_seq=3 ttl=255 time=0.000 ms
56 bytes from 192.168.1.1: icmp_seq=4 ttl=255 time=0.000 ms

--- Ping statistics for 192.168.1.1 ---
5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss
round-trip min/avg/max/std-dev = 0.000/0.800/2.000/0.748 ms
<H3C>%Apr 16 22:00:09:543 2019 H3C PING/6/PING_STATISTICS: Ping statistics for 192.168.1.1: 5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss, round-trip min/avg/max/std-dev = 0.000/0.800/2.000/0.748 ms.
ping 192.168.1.3
Ping 192.168.1.3 (192.168.1.3): 56 data bytes, press CTRL_C to break
56 bytes from 192.168.1.3: icmp_seq=0 ttl=255 time=4.000 ms
56 bytes from 192.168.1.3: icmp_seq=1 ttl=255 time=2.000 ms
56 bytes from 192.168.1.3: icmp_seq=2 ttl=255 time=1.000 ms
56 bytes from 192.168.1.3: icmp_seq=3 ttl=255 time=1.000 ms
56 bytes from 192.168.1.3: icmp_seq=4 ttl=255 time=1.000 ms

--- Ping statistics for 192.168.1.3 ---
5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss
round-trip min/avg/max/std-dev = 1.000/1.800/4.000/1.166 ms
<H3C>%Apr 16 22:00:12:244 2019 H3C PING/6/PING_STATISTICS: Ping statistics for 192.168.1.3: 5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss, round-trip min/avg/max/std-dev = 1.000/1.800/4.000/1.166 ms.

在Host B ping 网关 和 Host D

<H3C>ping  192.168.2.1
Ping 192.168.2.1 (192.168.2.1): 56 data bytes, press CTRL_C to break
56 bytes from 192.168.2.1: icmp_seq=0 ttl=255 time=2.000 ms
56 bytes from 192.168.2.1: icmp_seq=1 ttl=255 time=1.000 ms
56 bytes from 192.168.2.1: icmp_seq=2 ttl=255 time=1.000 ms
56 bytes from 192.168.2.1: icmp_seq=3 ttl=255 time=1.000 ms
56 bytes from 192.168.2.1: icmp_seq=4 ttl=255 time=1.000 ms

--- Ping statistics for 192.168.2.1 ---
5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss
round-trip min/avg/max/std-dev = 1.000/1.200/2.000/0.400 ms
<H3C>%Apr 16 22:01:20:717 2019 H3C PING/6/PING_STATISTICS: Ping statistics for 192.168.2.1: 5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss, round-trip min/avg/max/std-dev = 1.000/1.200/2.000/0.400 ms.

<H3C>ping  192.168.2.3
Ping 192.168.2.3 (192.168.2.3): 56 data bytes, press CTRL_C to break
56 bytes from 192.168.2.3: icmp_seq=0 ttl=255 time=3.000 ms
56 bytes from 192.168.2.3: icmp_seq=1 ttl=255 time=3.000 ms
56 bytes from 192.168.2.3: icmp_seq=2 ttl=255 time=1.000 ms
56 bytes from 192.168.2.3: icmp_seq=3 ttl=255 time=2.000 ms
56 bytes from 192.168.2.3: icmp_seq=4 ttl=255 time=1.000 ms

--- Ping statistics for 192.168.2.3 ---
5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss
round-trip min/avg/max/std-dev = 1.000/2.000/3.000/0.894 ms
<H3C>%Apr 16 22:01:25:242 2019 H3C PING/6/PING_STATISTICS: Ping statistics for 192.168.2.3: 5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss, round-trip min/avg/max/std-dev = 1.000/2.000/3.000/0.894 ms.

配置命令

Device A

system-view
#
vlan 100
#
quit
#
vlan  200
#
quit
#
interface  GigabitEthernet  1/0/1
#
port link-type access
#
port access vlan  100
#
quit
#
interface  GigabitEthernet  1/0/2
#
port link-type access
#
port access vlan  200
#
quit
#
interface  GigabitEthernet  1/0/3
#
port link-type trunk
#
port trunk  permit vlan  100 200
#
quit
#
interface  Vlan-interface  100
#
ip address  192.168.1.1 24

Device B

system-view
#
vlan 100
#
quit
#
vlan  200
#
quit
#
interface  GigabitEthernet  1/0/1
#
port link-type access
#
port access vlan  100
#
quit
#
interface  GigabitEthernet  1/0/2
#
port link-type access
#
port access vlan  200
#
quit
#
interface  GigabitEthernet  1/0/3
#
port link-type trunk
#
port trunk  permit vlan  100 200
#
quit
#
interface  Vlan-interface  200
#
ip address  192.168.2.1 24

猜你喜欢

转载自blog.csdn.net/qq_43017750/article/details/89342949
今日推荐
面壁智能发布 Eurux-8x22B 开源大模型 —— 堪称「理科状元」
开源日报 | 谷歌扶持鸿蒙上位;开源Rabbit R1;Docker加持的安卓手机;微软的焦虑和野心;海尔电器把开放平台关了
中国码农的“35岁魔咒”
蘭雅 CorelDRAW 插件 2024.5.1 国际劳动节版,免费下载
Arc Browser for Windows 1.0 正式 GA
90后程序员开发视频搬运软件、不到一年获利超 700 万,结局很刑!
周排行
【转】spring中对控制反转和依赖注入的理解
tms webcore 安装和使用
java程序员进阶相关书籍
SpringMVC接受请求参数、
如何保存训练好的机器学习模型
MyEclipse、Eclipse设置项目JDK的三个地方
商超行业微信小程序开发定制一般多少钱 (行业技术人员解读)
Markdown编辑器语言——30分钟入门到到精通
Linux系统下MongoDB的简单安装与基本操作
Power Strings
每日归档
更多
2024-05-07(14)
2024-05-06(40)
2024-05-05(0)
2024-05-04(7)
2024-05-03(19)
2024-05-02(0)
2024-05-01(4)
2024-04-30(1)
2024-04-29(40)
2024-04-28(0)

代码天地 © 2018 codetd.com

境外服务器   最新电视剧2022