Home > Others

The Cisco3550EMI switch is used as an instance of the DHCP server project, and the cisco3550emidhcp

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

The Cisco3550EMI switch is used as an instance of the DHCP server project, and the cisco3550emidhcp

Configuration of Cisco3550EMI switch as an instance of DHCP server Engineering

Network Environment:

A 3550EMI switch is divided into three VLANs. vlan2 is the network where the server is located. It is named server, IP address segment is 192.168.2.0, subnet mask: 255.255.255.0, Gateway: 192.168.2.1, and Domain server is windows2000 advance server,

Also act as a DNS server. The IP address is 192.168.2.10, vlan3 is the network where client 1 is located, and the IP address segment is 192.168.3.0,

Subnet Mask: 255.255.255.0, Gateway: 192.168.3.1 named work01, vlan4 as the network of client 2,

Name work02, IP address segment 192.168.4.0, subnet mask: 255.255.255.0, Gateway: 192.168.4.1,

3550 as a DHCP server, Ports 1-8 are allocated to VLAN 2, ports 9-16 are divided into VLAN 3, and ports 17-24 are divided into VLAN 4.

DHCP server implementation functions:

Each VLAN retains 2-10 IP addresses regardless of configuration. For example, the IP address range of 192.168.2.0 is retained from 192.168.2.2 to 192.168.2.10.

The IP address segment of is not allocated.

Security requirements:

VLAN 3 and VLAN 4 are not allowed to access each other, but both can access the VLAN 2 where the server is located. The default access control list rule is to reject all packets.

The configuration command and steps are as follows:

Step 1: Create a VLAN:

Switch> en

Switch # VlanDatabase

Switch (Vlan)> Vlan2 Name server

Switch (Vlan)> Vlan3 Name work01

Switch (vlan)> Vlan 4 Name work02

Step 2: Set the vlan ip Address:

Switch # Config T

Switch (Config)> IntVlan 2

Switch (Config-vlan) IpAddress 192.168.2.1 255.255.255.0

Switch (Config-vlan) NoShut

Switch (Config-vlan)> IntVlan 3

Switch (Config-vlan) IpAddress 192.168.3.1 255.255.255.0

Switch (Config-vlan) NoShut

Switch (Config-vlan)> IntVlan 4

Switch (Config-vlan) IpAddress 192.168.4.1 255.255.255.0

Switch (Config-vlan) NoShut

Switch (Config-vlan) Exit

/* Note: Because the ports are not configured to VLAN2, 3, 4 at this time, each VLAN will be DOWN. After the ports are allocated to each VLAN, the VLAN will get up */

Step 3: Set port global Parameters

Switch (Config) InterfaceRange Fa 0/1-24

Switch (Config-if-range) SwitchportMode Access

Switch (Config-if-range) Spanning-treePortfast

Step 4: add the port to VLAN2, 3, 4

/* Add Port 1-8 to VLAN 2 */

Switch (Config) InterfaceRange Fa 0/1-8

Switch (Config-if-range) SwitchportAccess Vlan 2

/* Add Port 9-16 to VLAN 3 */

Switch (Config) InterfaceRange Fa 0/9-16

Switch (Config-if-range) SwitchportAccess Vlan 3

/* Add Port 17-24 to VLAN 4 */

Switch (Config) InterfaceRange Fa 0/17-24

Switch (Config-if-range) Switchport Access Vlan 4

Switch (Config-if-range) Exit

/* After this step, each VLAN will get up */

Configure 3550 as the DHCP server

/* Configure available address pools and corresponding parameters for VLAN 2. You need to set several address pools for several VLANs */

Switch (Config) IpDhcp Pool Test01

/* Set the allocable subnet */

Switch (Config-pool) Network192.168.2.0 255.255.255.0

/* Set the DNS server */

Switch (Config-pool) Dns-server192.168.2.10

/* Set the gateway for this subnet */

Switch (Config-pool) Default-router192.168.2.1

/* Configure the address pool and corresponding parameters used by VLAN3 */

Switch (Config) IpDhcp Pool Test02

Switch (Config-pool) Network192.168.3.0 255.255.255.0

Switch (Config-pool) Dns-server 192.168.2.10

Switch (Config-pool) Default-router192.168.3.1

/* Configure the address pool and corresponding parameters used by VLAN4 */

Switch (Config) IpDhcp Pool Test03

Switch (Config-pool) Network192.168.4.0 255.255.255.0

Switch (Config-pool) Dns-server192.168.2.10

Switch (Config-pool) Default-router 192.168.4.1

Step 6: Set DHCP to retain unassigned addresses

Switch (Config) IpDhcp Excluded-address 192.168.2.2 192.168.2.10

Switch (Config) Ip Dhcp Excluded-address 192.168.3.2 192.168.3.10

Switch (Config) Ip Dhcp Excluded-address 192.168.4.2 192.168.4.10

Step 7: Enable Routing

/* After a route is enabled, each VLAN host can access each other */

Switch (Config) IpRouting

Step 8: configure the access control list

Switch (Config) access-list103 permit ip 192.168.2.0 0.0.255 192.168.3.0 0.0.255

Switch (Config) access-list 103 permit ip 192.168.3.0 0.0.255 192.168.2.00.0.0.255

Switch (Config) access-list 103 permit udp any eq bootpc

Switch (Config) access-list 103 permit udp any eq tftp

Switch (Config) access-list 103 permit udp any eq bootpc any

Switch (Config) access-list 103 permit udp any eq tftp any

Switch (Config) access-list 104 permit ip 192.168.2.0 0.0.255 192.168.4.00.0.0.255

Switch (Config) access-list 104 permit ip 192.168.4.0 0.0.255 192.168.2.00.0.0.255

Switch (Config) access-list 104 permit udp any eq tftp any

Switch (Config) access-list 104 permit udp any eq bootpc any

Switch (Config) access-list 104 permit udp any eq bootpc any

Switch (Config) access-list 104 permit udp any eq tftp any

Step 9: Application access control list

& N bsp;/* apply the access control list to VLAN3 and VLAN 4. VLAN 2 is not required */

Switch (Config) Int Vlan 3

Switch (Config-vlan) ip access-group 103 out

Switch (Config-vlan) Int Vlan 4

Switch (Config-vlan) ip access-group 104 out

Step 10: end and save the configuration

Switch (Config-vlan) End

Switch # Copy Run Start

The above test and pass

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
wordpress the field what is difference between as and a2 instance of tiny dhcp server cisco dhcp server config centos dhcp server gui dhcp server netgear router

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More