650) this. width = 650; "src =" http://www.bkjia.com/uploads/allimg/131227/055614D55-0.png "title =" cisco.png "/>
650) this. width = 650; "src =" http://www.bkjia.com/uploads/allimg/131227/0556141032-1.png "title =" topological configuration .png "/>
Basic topology of an enterprise:
Idea: 1) configure the aggregation layer and access layer first, and then configure the core layer and route
2) SW5 SW6 SW7 SW8 configure the port trunk mode, bind the port, and create vtp.
3) configure the vlan addresses on SW5 and SW6, and configure basic vrrp and Spanning Tree configurations.
4) configure the port address of the core layer and the OSPF route.
5) ping the Internet to test and simulate faults.
6) This is only part of it. If a branch can access each other through the Intranet of the company through vpn, this case is just a microcosm.
Step 1: Configure R5 R6 R7 R8 trunk
R5 and R6:
Conf ter
Int range f0/1-4 // configure the trunk mode for multiple ports
Sw trunk en do
Sw mode trunk
Int range f0/3-4
Channel-gr 1 mode on // port bundling for Load Balancing
End
R7 and R8:
Conf ter
In range f0/14-15
Sw trunk en do
Sw mode trunk
R5:
Vlan da // create a vlan
Vtp domain myvtp // create a vlan domain name to synchronize R5, R6, R7, and R8vlan
Vlan 10
Vlan 20
Vlan 30
Vlan 40
End
R7:
Conf ter
Int f0/1
Sw acc vlan 10 // port binding
Int f0/2
Sw acc vlan 20
End
R8:
Conf ter
Int f0/1
Sw acc vlan 30
Int f0/2
Sw acc vlan 40
Exit
2) configure the addresses of each vlan, configure vrrp, and set the priority.
R5:
Conf ter
Int vlan 10
Ip add 192.168.10.252 255.255.255.0
No shu
Vrrp 10 ip address 192.168.10.254 // create a vrrp. The target ip address is a virtual gateway.
Vrrp 10 pri 150 // set the priority
Vrrp 10 pre // sets Preemption
Exit
Int vlan 20
Ip add 192.168.255.252 255.255.255.0
No shu
Vrrp 20 ip address 192.168.255.254
Vrrp 20 pri 150
Vrrp 20 pre
Exit
Int vlan 30
Ip add 192.168.30.252 255.255.255.0
No shu
Vrrp 30 ip address 192.168.30.254
Vrrp 30 pri 100
Vrrp 30 pre
Exit
Int vlan 40
Ip add 192.168.40.252 255.255.255.0
No shu
Vrrp 40 ip address 192.168.40.254
Vrrp 40 pri 100
Vrrp 40 pre
Exit
Span vlan 10 pri 4096 // create spanning tree to achieve priority of vlan10-20 In R5, supplemented by vlan30-40 In R5
Span vlan 20 pri 4096
Span vlan 30 pri 8192
Span vlan 40 pri 8192
Exit
R6:
Conf ter
Int vlan 10
Ip add 192.168.10.253 255.255.255.0
No shu
Vrrp 10 ip address 192.168.10.254
Vrrp 10 pri 100
Vrrp 10 pre
Exit
Int vlan 20
Ip add 192.168.255.253 255.255.255.0
No shu
Vrrp 20 ip address 192.168.255.254
Vrrp 20 pri 100
Vrrp 20 pre
Exit
Int vlan 30
Ip add 192.168.30.253 255.255.255.0
No shu
Vrrp 30 ip address 192.168.30.254
Vrrp 30 pri 150
Vrrp 30 pre
Exit
Int vlan 40
Ip add 192.168.40.253 255.255.255.0
No shu
Vrrp 40 ip address 192.168.40.254
Vrrp 40 pri 150
Vrrp 40 pre
Exit
Span vlan 10 pri 8192 // create spanning tree to achieve priority of vlan10-20 in R6 supplemented by vlan30-40 in R6
Span vlan 20 pri 8192
Span vlan 30 pri 4096
Span vlan 40 pri 4096
Exit
3) configure the IP address of the core layer port and enable OSPF for declaration.
R1:
Conf te
Int lo 0
Ip add 8.8.8.8 255.255.255.0
No shu
Int f0/0
Ip add 202.106.0.2 255.255.255.252
No shu
R2:
Conf ter
Int f1/0
Ip add 202.106.0.1 255.255.255.252
No shu
Int f0/0
Ip add 192.168.15.2 255.255.255.0
No shu
Int f0/1
Ip add 192.168.16.2 255.255.255.0
No shu
Exit
Router OS 100
Default-information originate // implement default route decentralization
Net 192.168.15.0 0.0.0.255 ar 0
Net 192.168.16.0 0.0.0.255 ar 0
Exit
Ip route 0.0.0.0 0.0.0.0 f1/0
R3:
Conf ter
Int f0/3
No sw
Ip add 192.168.15.1 255.255.255.0
No shu
Int f0/1
No sw
Ip add 192.168.13.2 255.255.255.0
No shu
Int f0/2
No sw
Ip add 192.168.14.2 255.255.255.0
No shu
Router OS 100
Net 192.168.255.0.0.255 ar 0
Net 192.168.14.0 0.0.0.255 ar 0
Net 192.168.15.0 0.0.0.255 ar 0
R4:
Conf ter
Int f0/1
No sw
Ip add 192.168.23.2 255.255.255.0
No shu
Int f0/2
No sw
Ip add 192.168.24.2 255.255.255.0
No shu
Int f0/4
No sw
Ip add 192.168.16.1 255.255.255.0
No shu
Exit
Router OS 100
Net 192.168.23.0 0.0.0.255 ar 0
Net 192.168.24.0 0.0.0.255 ar 0
Net 192.168.16.0 0.0.0.255 ar 0
R5:
Conf ter
Int f0/5
No sw
Ip add 192.168.13.1 255.255.255.0
No shu
Int f0/6
No sw
Ip add 192.168.23.1 255.255.255.0
No shu
Router OS 100
Net 192.168.255.0.0.255 ar 0
Net 192.168.23.0 0.0.0.255 ar 0
Net 192.168.10.0 0.0.255 ar 1
Net 192.168.20.0 0.0.255 ar 1
Net 192.168.30.0 0.0.0.255 ar 1
Net 192.168.40.0 0.0.255 ar 1
R6:
Conf ter
Int f0/5
No sw
Ip add 192.168.14.1 255.255.255.0
No shu
Int f0/6
No sw
Ip add 192.168.24.1 255.255.255.0
No shu
Exit
Router OS 100
Net 192.168.14.0 0.0.0.255 ar 0
Net 192.168.24.0 0.0.0.255 ar 0
Net 192.168.10.0 0.0.255 ar 1
Net 192.168.20.0 0.0.255 ar 1
Net 192.168.30.0 0.0.0.255 ar 1
Net 192.168.40.0 0.0.255 ar 1
4) Port NAT
R2:
Conf ter
Int f0/0
Ip nat inside
Int f0/1
Ip nat inside
Int f1/0
Ip nat outside
Exit
Access-list 1 permit 192.168.0.0. 0.0.63.255 // extract the Intranet acl
Ip nat inside source list 1 int f1/0 overload // Intranet to the Internet
5) test and Fault Simulation
A) set the IP address of the PC on the vpc.
PC1: ip 192.168.10.2 192.168.10.254 24
PC2: ip 192.168.20.2 192.168.255.254 24
PC3: ip 192.168.30.2 192.168.30.254 24
PC4: ip 192.168.40.2 192.168.40.254 24
B) ping 8.8.8.8 ON THE PC1-4 respectively.
C) disconnect R3, R4, R5, and R6 from the simulation fault and ping 8.8.8.8 on PC4.
6) commands used
Show run
Show vrrp B view the active/standby status in vrrp
Show vrrp all view vrrp Configuration
Show vlan-sw B view vlan
Show ip route
Tracert ip PC route tracking
Sh PC viewing Configuration
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
