A.搭建环境:
1.HCL Cloud Lab 5.0.0
2.Oracle VM VirtualBox 6.0.14
3.Windows 10操作系统
4.本地以太网卡:Realtek PCIe GbE Family Controller(IP:192.168.8.10)
5.TP-LINK无线路由器(路由器IP:192.168.8.1)
B.网络拓扑图:
C.设备配置:
1.Host-Internet:(本地连接)
NIC:Realtek PCIe GbE Family Controller → R-A:GE_0/0
2.R-A:(路由器)
R-A:GE_0/0 → SW-A:XGE_0/50
<H3C>sys //进入系统视图
[H3C]sysname R-A //修改设备名称
[R-A]interface GigabitEthernet 0/0 //进入端口管理视图
[R-A-GigabitEthernet0/0]ip address 192.168.8.200 255.255.255.0 //配置端口IP地址(和本地链接一个网段)
[R-A-GigabitEthernet0/0]qu //退出端口管理视图
[R-A]dns server 114.114.114.114 //配置DNS服务器地址
[R-A]ip route-static 0.0.0.0 0 192.168.8.1 //配置默认静态路由测试:
[R-A]ping 192.168.8.10
Ping 192.168.8.10 (192.168.8.10): 56 data bytes, press CTRL+C to break
56 bytes from 192.168.8.10: icmp_seq=0 ttl=128 time=0.000 ms
56 bytes from 192.168.8.10: icmp_seq=1 ttl=128 time=0.000 ms
56 bytes from 192.168.8.10: icmp_seq=2 ttl=128 time=0.000 ms
56 bytes from 192.168.8.10: icmp_seq=3 ttl=128 time=1.000 ms
56 bytes from 192.168.8.10: icmp_seq=4 ttl=128 time=1.000 ms
[R-A]ping 192.168.8.1
Ping 192.168.8.1 (192.168.8.1): 56 data bytes, press CTRL+C to break
56 bytes from 192.168.8.1: icmp_seq=0 ttl=64 time=1.000 ms
56 bytes from 192.168.8.1: icmp_seq=1 ttl=64 time=0.000 ms
56 bytes from 192.168.8.1: icmp_seq=2 ttl=64 time=1.000 ms
56 bytes from 192.168.8.1: icmp_seq=3 ttl=64 time=0.000 ms
56 bytes from 192.168.8.1: icmp_seq=4 ttl=64 time=2.000 ms
[R-A]ping 114.114.114.114
Ping 114.114.114.114 (114.114.114.114): 56 data bytes, press CTRL+C to break
56 bytes from 114.114.114.114: icmp_seq=0 ttl=87 time=35.000 ms
56 bytes from 114.114.114.114: icmp_seq=1 ttl=90 time=35.000 ms
56 bytes from 114.114.114.114: icmp_seq=2 ttl=78 time=35.000 ms
56 bytes from 114.114.114.114: icmp_seq=3 ttl=81 time=34.000 ms
56 bytes from 114.114.114.114: icmp_seq=4 ttl=81 time=37.000 ms
[R-A]ping www.baidu.com
Ping www.baidu.com (220.181.38.150): 56 data bytes, press CTRL+C to break
56 bytes from 220.181.38.150: icmp_seq=0 ttl=53 time=20.000 ms
56 bytes from 220.181.38.150: icmp_seq=1 ttl=53 time=20.000 ms
56 bytes from 220.181.38.150: icmp_seq=2 ttl=53 time=20.000 ms
56 bytes from 220.181.38.150: icmp_seq=3 ttl=53 time=21.000 ms
56 bytes from 220.181.38.150: icmp_seq=4 ttl=53 time=20.000 ms
小结:此时路由器已经可以PING通TP-LINK路由器(192.168.8.1),本地连接(192.168.8.10),外网DNS服务器(114.114.114.114),外网网站(www.baidu.com)
3.SW-A:(交换机)
SW-A:XGE_0/50 → GE_0/1
<H3C>sys //进入系统视图
[H3C]sysname SW-A //修改设备名称
[SW-A]vlan 10 //创建vlan10
[SW-A-vlan10]port GigabitEthernet 1/0/1 to GigabitEthernet 1/0/10 //将1-10端口划入vlan10
[SW-A-vlan10]vlan 20 //创建vlan20
[SW-A-vlan20]port GigabitEthernet 1/0/11 to GigabitEthernet 1/0/20 //将11-20端口划入vlan20
[SW-A-vlan20]vlan 100 //创建vlan100(业务数据通道)
[SW-A-vlan100]interface vlan 100 //进入vlan100管理视图
[SW-A-Vlan-interface100]ip address 10.1.100.2 255.255.255.0 //配置vlan100的IP地址
[SW-A-Vlan-interface100]interface vlan 10 //进入vlan10管理视图
[SW-A-Vlan-interface10]ip address 10.1.1.1 255.255.255.0 //配置vlan10的IP地址
[SW-A-Vlan-interface10]interface vlan 20 //进入vlan20管理视图
[SW-A-Vlan-interface20]ip address 10.1.2.1 255.255.255.0 //配置vlan20的IP地址
[SW-A-Vlan-interface20]interface Ten-GigabitEthernet 1/0/50 //进入端口管理视图
[SW-A-Ten-GigabitEthernet1/0/50]port link-type trunk //配置端口为trunk模式
[SW-A-Ten-GigabitEthernet1/0/50]port trunk permit vlan 10 20 100 //配置端口通过VLAN10、20、100
[SW-A-Ten-GigabitEthernet1/0/50]qu
[SW-A]ip route-static 0.0.0.0 0 10.1.100.1 //配置默认静态路由4.PC:(虚拟主机)
PC_1(IP:10.1.1.100;掩码:255.255.255.0;网关:10.1.1.1):GE_0/1 → SW-A:GE_0/1
PC_2(IP:10.1.2.100;掩码:255.255.255.0;网关:10.1.2.1):GE_0/1 → SW-A:GE_0/11
注:配置虚拟主机要启用“接口管理”,否则无法连通。
此时PC虚拟主机还无法通过网关访问外网数据,下一步配置路由器到交换机的业务通道,打通内网网关(10.1.1.1和10.1.2.1)与路由器之间的通信,实现PC虚拟主机访问外网数据业务。
5.配置路由器通道
[R-A]vlan 10 //创建vlan10
[R-A-vlan10]vlan 20 //创建vlan20
[R-A-vlan20]vlan 100 //创建vlan100
[R-A-vlan100]interface vlan 10
[R-A-Vlan-interface10]ip address 10.1.1.2 255.255.255.0
[R-A-Vlan-interface10]interface vlan 20
[R-A-Vlan-interface20]ip address 10.1.2.2 255.255.255.0
[R-A-Vlan-interface20]interface vlan 100
[R-A-Vlan-interface100]ip address 10.1.100.1 255.255.255.0
[R-A-Vlan-interface100]interface GigabitEthernet 0/1
[R-A-GigabitEthernet0/1]port link-type trunk
[R-A-GigabitEthernet0/1]port trunk permit vlan 10 20 100
[R-A-GigabitEthernet0/1]qu
[R-A]ip route-static 10.1.0.0 16 10.1.100.2 //业务数据回传通道
[R-A]acl number 2001 //建立访问规则
[R-A-acl-ipv4-basic-2001]rule 105 permit source 10.1.1.0 0.0.0.255 //允许指定的IP通过
[R-A-acl-ipv4-basic-2001]rule 110 permit source 10.1.2.0 0.0.0.255 //允许指定的IP通过
[R-A-acl-ipv4-basic-2001]interface GigabitEthernet 0/1
[R-A-GigabitEthernet0/0]nat outbound 2001 //根据访问规则,在外网端口出口方向设置地址转换
6.测试结果
PC_1:
[H3C]ping 114.114.114.114
Ping 114.114.114.114 (114.114.114.114): 56 data bytes, press CTRL_C to break
56 bytes from 114.114.114.114: icmp_seq=0 ttl=66 time=41.000 ms
56 bytes from 114.114.114.114: icmp_seq=1 ttl=75 time=35.000 ms
56 bytes from 114.114.114.114: icmp_seq=2 ttl=71 time=33.000 ms
56 bytes from 114.114.114.114: icmp_seq=3 ttl=67 time=35.000 ms
56 bytes from 114.114.114.114: icmp_seq=4 ttl=67 time=35.000 ms
PC_2:
[H3C]ping 114.114.114.114
Ping 114.114.114.114 (114.114.114.114): 56 data bytes, press CTRL_C to break
56 bytes from 114.114.114.114: icmp_seq=0 ttl=79 time=37.000 ms
56 bytes from 114.114.114.114: icmp_seq=1 ttl=83 time=36.000 ms
56 bytes from 114.114.114.114: icmp_seq=2 ttl=90 time=37.000 ms
56 bytes from 114.114.114.114: icmp_seq=3 ttl=81 time=35.000 ms
56 bytes from 114.114.114.114: icmp_seq=4 ttl=74 time=37.000 msD.总结:
路由器经本地连接连通外网,交换机通过TRUNK类型端口连接路由器,建立10.1.100.1作为交换机的网关,同时打通vlan10、20、100通道,使其可以互联互通。交换机建立10.1.100.2静态路由作为网关,打通路由器数据回传通道。交换机通过vlan10、20建立10.1.1.1及10.1.2.1内网网关,使PC_1和PC_2两台内网电脑通过各自网关通过逐层通道访问到外网数据。
本文含有隐藏内容,请 开通VIP 后查看