S6720 核心交换配置实战
来源:互联网 发布:node.js 编译 编辑:程序博客网 时间:2024/06/01 19:13
sy
sysname heixin
创建VLAN
vlan 2
description to sanL
vlan 3
description to DAP
vlan 4
description to AP
vlan 5
description to MJKQ
vlan 6
description yo ZL
vlan 8
description to 18
interface Vlanif1
ip address 1.1.1.1 255.255.255.0
interface Vlanif2
ip address 192.168.2.1 255.255.255.0
dhcp select global
interface Vlanif3
ip address 192.168.3.1 255.255.255.0
dhcp select global
interface Vlanif4
ip address 192.168.4.1 255.255.255.0
dhcp select global
interface Vlanif5
ip address 192.168.5.1 255.255.255.0
dhcp select global
interface Vlanif6
ip address 192.168.1.1 255.255.255.0
dhcp select global
interface Vlanif7
ip address 192.168.6.2 255.255.255.0
interface Vlanif8
ip address 192.168.8.1 255.255.255.0
dhcp select global
DHCP配置
dhcp enable
dhcp server database enable
ip pool vlan2
gateway-list 192.168.2.1
network 192.168.2.0 mask 255.255.255.0
excluded-ip-address 192.168.2.2 192.168.2.25
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan3
gateway-list 192.168.3.1
network 192.168.3.0 mask 255.255.255.0
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan4
gateway-list 192.168.4.1
network 192.168.4.0 mask 255.255.255.0
excluded-ip-address 192.168.4.2 192.168.4.15
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan5
gateway-list 192.168.5.1
network 192.168.5.0 mask 255.255.255.0
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan6
gateway-list 192.168.1.1
network 192.168.1.0 mask 255.255.255.0
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan8
gateway-list 192.168.8.1
network 192.168.8.0 mask 255.255.255.0
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
interface GigabitEthernet0/0/1
description to FW
arp learning multicast enable
port link-type access
port default vlan 7
Port-group DQHJ
Group-member dongqu 0/0/47 to gigabitethernet 0/0/48
description to
port link-type trunk
port trunk allow-pass vlan 2 to 8 1
Port-group XC
Group-member gigabitethernet 0/0/3 to gigabitethernet 0/0/7
port link-type access
port default vlan 2
Port-group XC1
Group-member gigabitethernet 0/0/30 to gigabitethernet 0/0/31
port link-type access
port default vlan 3
Port-group AP
Group-member gigabitethernet 0/0/12 to gigabitethernet 0/0/13
Group-member gigabitethernet 0/0/36 to gigabitethernet 0/0/37
port link-type access
port default vlan 4
Port-group MJ
Group-member gigabitethernet 0/0/14 to gigabitethernet 0/0/15
port link-type access
port default vlan 5
Port-group JK
Group-member gigabitethernet 0/0/16 to gigabitethernet 0/0/17
Group-member gigabitethernet 0/0/8 to gigabitethernet 0/0/9
port link-type access
port default vlan 6
Port-group FWQ
Group-member gigabitethernet 0/0/18 to gigabitethernet 0/0/28
port link-type access
port default vlan 2
Port-group ZHGL
Group-member gigabitethernet 0/0/32 to gigabitethernet 0/0/35
port link-type access
port default vlan 8
VLAN间不通信设置
acl 3030
rule 5 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.2.0 0.0.0.255
rule 10 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.4.0 0.0.0.255
traffic classifier CW
if-match acl 3030
traffic behavior CW
deny
traffic policy CW
classifier CW behavior CW
interface g0/0/10
traffic-policy CW inbound
MAC 绑定
arp static 192.168.2.1 08e8-4ffd-7933
arp static 192.168.2.254 98be-9443-b10a
arp static 192.168.2.253 98be-9443-ad72
默认路由
ip route-static 0.0.0.0 0.0.0.0 192.168.6.1
配置SSH
本地RSA密钥对
rsa local-key-pair create
2048
13186069527 18958012580 xie
aaa
local-user admin password cipher Admin@123
local-user admin service-type ssh telnet
local-user admin privilege level 7
user-interface vty 0 4
authentication-mode aaa
protocol inbound all
save
sysname heixin
创建VLAN
vlan 2
description to sanL
vlan 3
description to DAP
vlan 4
description to AP
vlan 5
description to MJKQ
vlan 6
description yo ZL
vlan 8
description to 18
interface Vlanif1
ip address 1.1.1.1 255.255.255.0
interface Vlanif2
ip address 192.168.2.1 255.255.255.0
dhcp select global
interface Vlanif3
ip address 192.168.3.1 255.255.255.0
dhcp select global
interface Vlanif4
ip address 192.168.4.1 255.255.255.0
dhcp select global
interface Vlanif5
ip address 192.168.5.1 255.255.255.0
dhcp select global
interface Vlanif6
ip address 192.168.1.1 255.255.255.0
dhcp select global
interface Vlanif7
ip address 192.168.6.2 255.255.255.0
interface Vlanif8
ip address 192.168.8.1 255.255.255.0
dhcp select global
DHCP配置
dhcp enable
dhcp server database enable
ip pool vlan2
gateway-list 192.168.2.1
network 192.168.2.0 mask 255.255.255.0
excluded-ip-address 192.168.2.2 192.168.2.25
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan3
gateway-list 192.168.3.1
network 192.168.3.0 mask 255.255.255.0
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan4
gateway-list 192.168.4.1
network 192.168.4.0 mask 255.255.255.0
excluded-ip-address 192.168.4.2 192.168.4.15
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan5
gateway-list 192.168.5.1
network 192.168.5.0 mask 255.255.255.0
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan6
gateway-list 192.168.1.1
network 192.168.1.0 mask 255.255.255.0
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
ip pool vlan8
gateway-list 192.168.8.1
network 192.168.8.0 mask 255.255.255.0
dns-list 211.137.130.3 221.11.1.67 221.11.1.68
interface GigabitEthernet0/0/1
description to FW
arp learning multicast enable
port link-type access
port default vlan 7
Port-group DQHJ
Group-member dongqu 0/0/47 to gigabitethernet 0/0/48
description to
port link-type trunk
port trunk allow-pass vlan 2 to 8 1
Port-group XC
Group-member gigabitethernet 0/0/3 to gigabitethernet 0/0/7
port link-type access
port default vlan 2
Port-group XC1
Group-member gigabitethernet 0/0/30 to gigabitethernet 0/0/31
port link-type access
port default vlan 3
Port-group AP
Group-member gigabitethernet 0/0/12 to gigabitethernet 0/0/13
Group-member gigabitethernet 0/0/36 to gigabitethernet 0/0/37
port link-type access
port default vlan 4
Port-group MJ
Group-member gigabitethernet 0/0/14 to gigabitethernet 0/0/15
port link-type access
port default vlan 5
Port-group JK
Group-member gigabitethernet 0/0/16 to gigabitethernet 0/0/17
Group-member gigabitethernet 0/0/8 to gigabitethernet 0/0/9
port link-type access
port default vlan 6
Port-group FWQ
Group-member gigabitethernet 0/0/18 to gigabitethernet 0/0/28
port link-type access
port default vlan 2
Port-group ZHGL
Group-member gigabitethernet 0/0/32 to gigabitethernet 0/0/35
port link-type access
port default vlan 8
VLAN间不通信设置
acl 3030
rule 5 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.2.0 0.0.0.255
rule 10 permit ip source 192.168.3.0 0.0.0.255 destination 192.168.4.0 0.0.0.255
traffic classifier CW
if-match acl 3030
traffic behavior CW
deny
traffic policy CW
classifier CW behavior CW
interface g0/0/10
traffic-policy CW inbound
MAC 绑定
arp static 192.168.2.1 08e8-4ffd-7933
arp static 192.168.2.254 98be-9443-b10a
arp static 192.168.2.253 98be-9443-ad72
默认路由
ip route-static 0.0.0.0 0.0.0.0 192.168.6.1
配置SSH
本地RSA密钥对
rsa local-key-pair create
2048
13186069527 18958012580 xie
aaa
local-user admin password cipher Admin@123
local-user admin service-type ssh telnet
local-user admin privilege level 7
user-interface vty 0 4
authentication-mode aaa
protocol inbound all
save
0 0
- S6720 核心交换配置实战
- Cisco 4503 核心交换配置实例
- 交换分区实战
- 核心路由器的交换矩阵设计
- 用核心交换机实现三层交换
- 三层交换配置
- 三层交换配置常用命令
- 帧中继交换配置
- 如何配置交换分区
- Spring Cloud 核心综合实战
- 实战:oracle 分区交换-归档数据
- struts 2 核心配置
- 中文分词核心配置
- struts2核心配置
- gruntjs核心--配置任务
- [BT_coreConfig]蓝牙核心配置
- Maven仓库核心配置
- Maven仓库核心配置
- poj1163The Triangle(DP)
- hdu2005第几天?
- JAVA 继承、方法重写、多态学习笔记
- 新闻发布网页-1
- 天梯匹配系统 - 简单实现
- S6720 核心交换配置实战
- android开发那些事儿(五)-通用流行框架大全
- CodeForces 659A Round House
- ToolBar的使用
- 教你如何用Circleimageview十秒钟写出万能视频的Android圆形控件适配器
- 周赛Problem 1025: Hkhv love spent money(RMQ)
- Reasons for feature scaling
- SparkStreaming0nHDFS实战
- 如何用Visio2013画状态转换图
