单臂路由
拓扑图
1.交换机的配置
1.1 创建vlan
创建vlan10和20:
[Huawei]vlan batch 10 201.2 端口的配置
将 GE 0/0/1 划入 vlan10, GE 0/0/2 划入 vlan20,以 GE 0/0/2 为例
GE 0/0/1
[Huawei]interfvace GigabitEthernet 0/0/1
[Huawei-GigabitEthernet0/0/1]port link-type access
[Huawei-GigabitEthernet0/0/1]port default vlan 10GE 0/0/2
[Huawei]interfvace GigabitEthernet 0/0/2
[Huawei-GigabitEthernet0/0/2]port link-type access
[Huawei-GigabitEthernet0/0/2]port default vlan 20查看VLAN
display vlan
....
10 common UT:GE0/0/1(U) GE0/0/4(U)
20 common UT:GE0/0/2(U) GE0/0/5(U)将端口GE 0/0/3类型改为trunk,并且允许vlan2 3 通过:
[Huawei]interface GigabitEthernet 0/0/3
[Huawei-GigabitEthernet0/0/3]port link-type trunk
[Huawei-GigabitEthernet0/0/3]port trunk allow-pass vlan 10 20查看vlan
[Huawei]display vlan
.....
10 common UT:GE0/0/1(U) GE0/0/4(U) TG:GE0/0/3(U)
20 common UT:GE0/0/2(U) GE0/0/5(U) TG:GE0/0/3(U)退出并保存配置,注意在使用save并选择Y后按下回车键保存
2. 路由器的配置
注意:如上图中的接口0/0/0.1为物理0/0/0的逻辑接口,通过配置逻辑接口,并且将此逻辑接口的ip地址设置为pc的网关地址,此时就可以保证vlan间进行通信
0/0/0.1配置
[Huawei]interface Ethernet 0/0/0.1
[Huawei-Ethernet0/0/0.1]dot1q termination vid 10
[Huawei-Ethernet0/0/0.1]ip address 192.168.10.254 24开启ARP广播
说明如果终结子接口未配置arp broadcast enable,一不能主动发送arp广播报文,二会直接将IP报文丢弃不进行转发。
[Huawei-Ethernet0/0/0.1]arp broadcast enable查看配置
[Huawei-Ethernet0/0/0.1]
display this
# interface Ethernet0/0/0.1
dot1q termination vid 10
ip address 192.168.10.254 255.255.255.0
0/0/0.2配置
[Huawei]interface Ethernet 0/0/0.2
[Huawei-Ethernet0/0/0.2]dot1q termination vid 20
[Huawei-Ethernet0/0/0.2]ip address 192.168.20.254 24开启ARP广播
[Huawei-Ethernet0/0/0.2]arp broadcast enable查看配置
[Huawei-Ethernet0/0/0.2]display this
# interface Ethernet0/0/0.2
dot1q termination vid 20
ip address 192.168.20.254 255.255.255.0dotlq termination vid 10此命令的含义:因为路由器不能处理带vlan标签的数据帧,通过此命令可以使进入此接口的数据帧摘掉vlan标签,同时从此接口发出的数据帧会打上vlan10标签,同样dotlq termination vid 20是同样的道理。
3.PC网络配置
PC1配置
PC2配置
4.实验验证
在PC1上ping PC2
路由器路由表
三层交换机实现VLAN间通信
GigabitEthernet 0/0/1配置为vlan10 A端口 vlanif 192.168.10.254/24
GigabitEthernet 0/0/2配置为vlan20 A端口 vlanif 192.168.20.254/24
- 交换机的配置
将上图中的PC1划入vlan10,将PC2划入vlan20
GigabitEthernet 0/0/1配置为vlan10 A端口
[Huawei]interface GigabitEthernet 0/0/1
[Huawei-GigabitEthernet0/0/1]port link-type access
[Huawei]vlan 10 [Huawei-vlan10]port GigabitEthernet 0/0/1GigabitEthernet 0/0/2配置为vlan20 A端口
[Huawei]interface GigabitEthernet 0/0/2
[Huawei-GigabitEthernet0/0/2]port link-type access
[Huawei]vlan 20
[Huawei-vlan20]port GigabitEthernet 0/0/2查看vlan
[Huawei]display vlan
The total number of vlans is : 3
--------------------------------------------------------------------------------
...
10 common UT:GE0/0/1(U)
20 common UT:GE0/0/2(U) 配置vlanif:
vlanif介绍:
vlanif相当于将交换机的物理地址改变为逻辑地址,配置ip地址后此时三层交换机就有了路由功能,每个vlan的vlanif相当于vlan的网关,此时不同vlan不同网段就可以进行数据的转发
vlan10接口配置
?
[Huawei]interface Vlanif 10
[Huawei-Vlanif10]ip address 192.168.10.254 24vlan20接口配置
[Huawei]interface Vlanif 20
[Huawei-Vlanif20]ip address 192.168.20.254 24查看配置ip
[Huawei-Vlanif20]display this
# interface Vlanif20
ip address 192.168.20.254 255.255.255.0查看路由表
[Huawei]display ip routing-tablePC1配置
PC2配置
2. 实验结果
实现不同VLAN间相互访问并访问外网
目的:实现不同VLAN间互相访问并且可以访问外网
三层交换机+路由器+宽带
网络拓扑图
本实验使用一台PC模拟为外网主机
PC主机
外网PC主机:192.168.2.2/24 网关:192.168.2.1
PC1-V10:192.168.10.2/24 网关:192.168.10.1
PC2-V20:192.168.20.2/24 网关:192.168.20.1
R1路由器
Ethernet 0/0/0: 192.168.1.1/24
Ethernet 0/0/1: 192.168.1.2/24
静态路由
ip route-static 192.168.10.0 255.255.255.0 192.168.1.254
ip route-static 192.168.20.0 255.255.255.0 192.168.1.254
LSW3交换机
GE 0/0/1 Vlan10 Vlanif:192.168.10.254/24
GE 0/0/2 Vlan20 Vlanif:192.168.20.254/24
GE 0/0/3 Vlan1 Vlanif:192.168.1.254/24
静态路由:
[Huawei]ip route-static 0.0.0.0 0.0.0.0 192.168.1.1
1.交换机的配置
1.1 创建vlan
创建vlan10和20:
[Huawei]vlan batch 10 201.2 端口的配置
将 GE 0/0/1 划入 vlan10, GE 0/0/2 划入 vlan20,以 GE 0/0/2 为例
GE 0/0/1
[Huawei]interfvace GigabitEthernet 0/0/1
[Huawei-GigabitEthernet0/0/1]port link-type access
[Huawei-GigabitEthernet0/0/1]port default vlan 10GE 0/0/2
[Huawei]interfvace GigabitEthernet 0/0/2
[Huawei-GigabitEthernet0/0/2]port link-type access
[Huawei-GigabitEthernet0/0/2]port default vlan 20查看VLAN
display vlan
....
10 common UT:GE0/0/1(U) GE0/0/4(U)
20 common UT:GE0/0/2(U) GE0/0/5(U)配置vlanif1的ip为192.168.1.254
[Huawei]interface Vlanif 1
[Huawei-Vlanif1]ip address 192.168.1.254 24查看vlanif ip
[Huawei-Vlanif1]display this
#
interface Vlanif1
ip address 192.168.1.254 255.255.255.0
#
return配置vlanif10的ip为192.168.10.254
[Huawei]interface Vlanif 10
[Huawei-Vlanif1]ip address 192.168.10.254 24配置vlanif20的ip为192.168.20.254
[Huawei]interface Vlanif 20
[Huawei-Vlanif1]ip address 192.168.20.254 24静态路由配置
[Huawei]ip route-static 0.0.0.0 0.0.0.0 192.168.1.1查看路由表
[Huawei]display ip routing-table
2. 路由器的配置
注意:如上图中的接口0/0/0.1为物理0/0/0的逻辑接口,通过配置逻辑接口,并且将此逻辑接口的ip地址设置为pc的网关地址,此时就可以保证vlan间进行通信
0/0/0配置
[Huawei]interface Ethernet 0/0/1
[Huawei-Ethernet0/0/1]ip address 192.168.1.1 24查看配置
[Huawei-Ethernet0/0/0]display this
#
interface Ethernet0/0/1
ip address 192.168.1.1 255.255.255.00/0/1配置
[Huawei]interface Ethernet 0/0/1
[Huawei-Ethernet0/0/1]ip address 192.168.2.1 24查看配置
[Huawei-Ethernet0/0/1]display this
#
interface Ethernet0/0/1
ip address 192.168.2.1 255.255.255.0静态路由配置
ip route-static 192.168.10.0 255.255.255.0 192.168.1.254
ip route-static 192.168.20.0 255.255.255.0 192.168.1.254保存配置
3.PC网络配置
PC1配置
PC2配置
4.验证
PC1访问PC2
PC1访问外网主机
PC2访问外网
外网访问PC1
