Article directory
foreword
There are really too many things recently, so I will make another post in my busy schedule
keep loving, go to mountains and seas
Cisco Packet Tracer
Cisco Packet Tracer is an auxiliary learning tool released by Cisco, which provides a network simulation environment for beginners learning Cisco network courses to design, configure, and troubleshoot network faults. Users can directly use the drag and drop method on the graphical user interface of the software to establish a network topology, and provide detailed processing of data packets traveling in the network, and observe the real-time operation of the network. This tool can be used to learn IOS configuration and exercise troubleshooting capabilities .
Project Requirements Analysis
Project Introduction
With the continuous development of random computers and computer networks, resources in the Internet have become more and more abundant. People can obtain various resources through the Internet, and use the Internet to realize multimedia education, information exchange, and information management. With the continuous development of computer networks, higher requirements are also put forward for the establishment of campus networks. How to build a high-speed, reliable, and expandable campus computer network to adapt to and meet the school's various needs for computer network communication has become a problem that every school needs to consider and think about.
Therefore, this project will specifically analyze the functions that the campus network should realize, combine the needs of schools and students, and design a safe and reliable networking solution through Cisco Packet Tracer software to realize the sharing of network information resources of the entire campus system, and In terms of network services, it satisfies functions such as dividing different network areas, realizing information sharing in the same network area, and authorization information sharing in different network areas.
project requirements
According to the project design plan and objectives, this project should meet the following requirements:
1. The campus network is divided into 5 areas, including teaching building area, student dormitory area, administrative building area, library area and server area in the campus network.
2. Different regions are divided by different VLANs. Computers in the same department are interconnected by Layer 2 switches. Communications between different departments are forwarded by Layer 3 core switches. Traffic accessing the public network needs to pass through BGP and ISP routers. .
3. Considering the large number of students, and students often use their own computers to connect to the school network, it is not so appropriate to perform static network configuration. Here, DHCP will be used to dynamically configure the student dormitory area, teaching building area, and administrative building area. IP address, and for the library area, the IP address will be configured in a static manner.
4. Configure the NAT address translation protocol in the egress router, so that any host in the campus network can access the host in the public network through the egress route.
project design
Design overview
The campus network is mainly divided into five areas, namely the student dormitory area, the teaching building area, the administrative building area, the library area and the server area in the campus network. The communication between the same area uses the 2950-24 switch as a layer 2 switch for traffic forwarding, the communication between different areas uses the 3560-24PS switch as a layer 3 switch for traffic forwarding, and the 3560-24PS switch is selected at the core layer of the network to copy the entire The traffic of the intranet of the campus network is forwarded, and the communication between the intranet and the intranet is carried out by connecting the 1841 edge router.
Since the number of students who need to access and use the network in the student dormitory is the largest, when dividing the IP address, we take out the last 3 digits of the network number of the C-class IP address and use it as the host number to divide the IP address, so that the student dormitory area The number of available IPs reaches a respectable 2046, while the number of available IPs divided by default in other regions is 254.
Distribution of school business departments
During the design process of the project, we assume that the distribution of business departments in the campus network and the corresponding number of hosts are as follows:
Division of VLANs
According to the different departments and the number of hosts in the campus network, the VLAL of the project is divided as follows
Equipment required for the project
The equipment information needed to build the campus network in the project is as follows:
It should be noted that since there are 2046 IP addresses that can be allocated in the student dormitory area, each 2950-24 switch can only connect to 23 computers (one port is reserved for Because of the interconnection of switches), so in fact, far more than three 2950-24 switches are needed in the student dormitory area. In the design of the project plan, in order to facilitate the simulation of the network topology, we only simulated two dormitories, each The dormitory is equipped with a switch, and the switch in each dormitory is only connected to two computers, and the switch used to connect the dormitory computers is connected through the Trunk port.
At the same time, in the actual network design, the campus network should also contain FTP servers, DNS servers, and WWW servers for displaying school webpages on the external network, etc. In this simulation experiment, for the sake of simplicity, only DHCP is enabled. Servers are used to assign dynamic IP addresses.
Static IP Address Description
In order to simulate the actual Internet environment more realistically, some hosts or servers in this project adopt the static IP address configuration method, and the configured IP addresses are as follows:
Network system design
Network Topology
According to the project requirements and the relevant content in the project design plan, we first use the Cisco Packet Tracer Student simulator to draw the network topology diagram as follows. For the hosts that use the DHCP dynamic IP address configuration, the IP address is not identified, and the hosts with the static IP address are already configured. Identify the IP address
VTP protocol configuration
After drawing the network topology diagram, we first configure the VTP protocol of the core router to manage and adjust VLANs, enable the VTP service on the core router, and configure it as a VTP server: then we configure the VTP protocol in the interface switches of each business
area Enable the VTP service and configure the VTP client, that is, configure the following on Switch1, Switch2, Switch3, Switch4, and Switch5:
Then configure frame relay on the core switch, declare that the switch port trunk link encapsulation protocol is 802.11q, and Configure the connected ports between switches to dot1q encapsulation
VLAN configuration
Create corresponding VLANs on the core switch and perform port division:
Configure Switch1 for the student dormitory area:
Configure Switch6 for the student dormitory area:
Configure Switch7 for the student dormitory area:
Similarly configure the teaching building area, administrative building area, library area, and server area Interface switch, set the port connected to the switch as the trunk port, and the port directly connected to the computer as the access port, and configure the corresponding VLAN:
Configuration of DHCP service
First find the configuration page of the DHCP server, select the DHCP configuration in Services, open the DHCP service and create the corresponding DHCP address pool, and configure the initial IP, default gateway, and number of available IPs for each address pool: the configured interface is displayed as
follows :
Then configure the core switch, enable the DHCP service and request an IP address from 192.168.5.2
NAT configuration
Add the WIC-2T module to the Border router and the ISP router respectively, and then configure the NAT protocol on the router
Network Connectivity Test
First check the IP addresses of PC0, PC1, PC2, and PC3 in the student dormitory area, and you can see that they are all correctly assigned IP addresses through the DHCP service: Then use PC0 (192.168.8.2) as an example to perform internal communication in the student dormitory area (VLAN1
) Ping test:
through PC0 (192.168.8.2) for student dormitory area (VLAN1) and teaching building area (VLAN2) ping test for PC4 (192.168.1.4):
through PC0 (192.168.8.2) for student dormitory area (VLAN1) and administrative building area (VLAN2) Ping test of PC6 (192.168.3.2) in the building area (VLAN3):
Through the above example tests, it can be seen that the same or different VLANs can communicate with each other, and the hosts configured with DHCP to dynamically obtain addresses have obtained correct IP addresses. Both VLAN and DHCP configuration are correct.
Next, we use PC0 (192.168.8.2) to conduct a ping test between the student dormitory area (VLAN1) and PC10 (223.1.1.10) in the external network area to check whether the NAT configuration is correct:
It can be seen that the internal network and external network can be pinged correctly, and the NAT protocol configuration is correct.
Network Topology Map Resources
Relevant resources have been uploaded to Baidu Netdisk
Link: https://pan.baidu.com/s/1en6u34ZfZ33fib6-Bz6iWg
Extraction code: qwer
netdisk resources have been updated, for your reference only~
postscript
If you still have questions, please leave a comment