User needs:
- User isolation: IT-VLAN10, HR-VLAN20;
- The host address is obtained through DHCP: it can be tested by manually configuring the address;
- The gateway is deployed at the aggregation layer;
- The gateway can be backed up: redundant (VRRP) to load according to different VLANs;
- Aggregation switch interconnection link: redundant bundling-eth-trunk, dynamic bundling-LACP;
- The second-layer gateway cannot have sub-optimal paths MSTP: LSW01-VLAN10 main root-VLAN20 backup root, LSW02: VLAN20 main root-VLAN20 backup root;
- OSPF core network route learning is based on OSPF-area0, and the server area is deployed in area 1;
- Internal users of the company can access the internet: ISP redundancy is required, ISP01 – active, ISP02 – standby;
- Company server area - build a WEB server that can be accessed by users through the Internet;
- ISP01 users are required to use ISP01 resolution address for access; ISP02 users are required to use ISP02 resolution address for access;
The network topology is as follows:
1. Enterprise network planning, design and implementation
Subnet design:
- VLAN10 address: 192.168.10.0/24, GW 192.168.10.254
- Aggregation three-layer address aggregation 01 192.168.1