已阅读5页,还剩33页未读, 继续免费阅读
版权说明:本文档由用户提供并上传,收益归属内容提供方,若内容存在侵权,请进行举报或认领
文档简介
思科4506全网络配置方案1. 网络拓扑2. 配置文档中心机房配置2台Catalyst4506,互为冗余备份,通过一台PIX525防火墙连接互联网。接入交换机配置Catalyst3750/3560,每台接入交换机配置2条TRUNK端口,分别连接到核心交换机。整个网络部署9个Vlan,Vlan1为管理vlan,其余8个Vlan为用户Vlan。每个用户Vlan分配一个C类ip地址段,其中x.x.x.1为网关,x.x.x.1-x.x.x.99保留为手动ip配置,x.x.x.100-x.x.x.254作为dhcp动态分配的Vlan用户使用。设备名称管理ip备注Sw4500-1Sw4500-2192.168.2013Pixfirewall00网管服务器01Ban10Ban21Ban32Vlan id网关子网掩码Dhcp地址范围备注1281-99网络设备管理地址200-254地址段1300-254地址段2400-254地址段500-254地址段600-254地址段1700-254地址段2800-254地址段900-254设备(1) 主核心交换机Catalyst4506配置。SW4500-1#SW4500-1#wr tBuilding configuration.Current configuration : 9687 bytes!version 12.2no service padservice timestamps debug uptimeservice timestamps log uptimeno service password-encryptionservice compress-config!hostname SW4500-1配置设备名称!boot-start-markerboot system flash bootflash:cat4500-ipbase-mz.122-31.SGA6.bin配置系统启动参数boot-end-marker!enable secret cisco配置特权模式口令!no aaa new-modelip subnet-zerono ip domain-lookupip host fw 00ip host sw2 配置主机名与ip的关联,主要用于管理ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 0ip dhcp excluded-address 00 26Dhcp分配地址中除去的ip段!ip dhcp pool vlan2 network dns-server 0 default-router lease 0 8为Vlan2配置的地址池,包含dns、网关信息。!ip dhcp pool vlan3 network dns-server 0 default-router lease 0 8! ip dhcp pool vlan4 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan5 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan6 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan7 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan8 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan9 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan10 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan1 network 28 dns-server 0 default-router lease 0 8!power redundancy-mode redundant配置电源为冗余模式no file verify auto!spanning-tree mode pvstspanning-tree extend system-idspanning-tree vlan 1-10 priority 24576配置生成树的优先级!vlan internal allocation policy ascending!interface GigabitEthernet1/1!interface GigabitEthernet1/2!interface GigabitEthernet2/1 description LinkToSW4500-2 switchport trunk encapsulation dot1q switchport mode trunk配置端口为trunk模式,trunk用于交换机之间的互联。Description后为注释信息。! interface GigabitEthernet2/2 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet2/3 switchport mode trunk!interface GigabitEthernet2/4 switchport mode trunk!interface GigabitEthernet2/5 switchport mode trunk!interface GigabitEthernet2/6 switchport mode trunk!interface GigabitEthernet2/7 switchport mode trunk!interface GigabitEthernet2/8 switchport mode trunk!interface GigabitEthernet2/9 switchport mode trunk!interface GigabitEthernet2/10 switchport mode trunk!interface GigabitEthernet2/11 switchport mode trunk!interface GigabitEthernet2/12 switchport mode trunk!interface GigabitEthernet2/13 switchport mode trunk!interface GigabitEthernet2/14 switchport mode trunk!interface GigabitEthernet2/15 switchport mode trunk!interface GigabitEthernet2/16 switchport mode trunk! interface GigabitEthernet2/17 switchport mode trunk!interface GigabitEthernet2/18 switchport mode trunk!interface GigabitEthernet3/1 description LinkToFirewall switchport mode access spanning-tree portfast配置端口为access模式,连接pc的端口需配置为access模式,启用生成树快速转发,通过switchport access vlan 【x】划分到相应的vlan,不配置此条命令时端口为vlan1!interface GigabitEthernet3/2 switchport mode access spanning-tree portfast!interface GigabitEthernet3/3 description Cisco net manager switchport mode access spanning-tree portfast!interface GigabitEthernet3/4 switchport mode access spanning-tree portfast!interface GigabitEthernet3/5 switchport mode access spanning-tree portfast!interface GigabitEthernet3/6 switchport mode access spanning-tree portfast!interface GigabitEthernet3/7 switchport mode access spanning-tree portfast!interface GigabitEthernet3/8 switchport mode access spanning-tree portfast!interface GigabitEthernet3/9 switchport mode access spanning-tree portfast!interface GigabitEthernet3/10 switchport mode access spanning-tree portfast!interface GigabitEthernet3/11 switchport mode access spanning-tree portfast!interface GigabitEthernet3/12 switchport mode access spanning-tree portfast!interface GigabitEthernet3/13 switchport mode access spanning-tree portfast!interface GigabitEthernet3/14 switchport mode access spanning-tree portfast!interface GigabitEthernet3/15 switchport mode access spanning-tree portfast!interface GigabitEthernet3/16 switchport mode access spanning-tree portfast!interface GigabitEthernet3/17 switchport mode access spanning-tree portfast!interface GigabitEthernet3/18 switchport mode access spanning-tree portfast!interface GigabitEthernet3/19 switchport mode access spanning-tree portfast!interface GigabitEthernet3/20 switchport mode access spanning-tree portfast!interface GigabitEthernet3/21 switchport mode access spanning-tree portfast! interface GigabitEthernet3/22 switchport mode access spanning-tree portfast!interface GigabitEthernet3/23 switchport mode access spanning-tree portfast!interface GigabitEthernet3/24 switchport mode access spanning-tree portfast!interface GigabitEthernet3/25 switchport mode access spanning-tree portfast!interface GigabitEthernet3/26 switchport mode access spanning-tree portfast!interface GigabitEthernet3/27 switchport mode access spanning-tree portfast!interface GigabitEthernet3/28 switchport mode access spanning-tree portfast!interface GigabitEthernet3/29 switchport mode access spanning-tree portfast!interface GigabitEthernet3/30 switchport mode access spanning-tree portfast!interface GigabitEthernet3/31 switchport mode access spanning-tree portfast!interface GigabitEthernet3/32 switchport mode access spanning-tree portfast!interface GigabitEthernet3/33! interface GigabitEthernet3/34!interface GigabitEthernet3/35!interface GigabitEthernet3/36!interface GigabitEthernet3/37!interface GigabitEthernet3/38!interface GigabitEthernet3/39!interface GigabitEthernet3/40!interface GigabitEthernet3/41 switchport trunk encapsulation dot1q switchport mode trunk配置端口为trunk模式,trunk用于交换机之间的互联。!interface GigabitEthernet3/42 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet3/43 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet3/44 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet3/45 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet3/46 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet3/47 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet3/48 switchport trunk encapsulation dot1q switchport mode trunk! interface Vlan1 ip address 28 standby 1 ip standby 1 preempt配置Vlan1的ip地址,hsrp地址。其中standby ip为该网段用户的网关,默认standby的优先级为100。(另一台catalyst4506的优先级配置为95,所以本交换机为“active”。!interface Vlan2 ip address standby 1 ip standby 1 preempt!interface Vlan3 ip address standby 1 ip standby 1 preempt!interface Vlan4 ip address standby 1 ip standby 1 preempt!interface Vlan5 ip address standby 1 ip standby 1 preempt!interface Vlan6 ip address standby 1 ip standby 1 preempt!interface Vlan7 ip address standby 1 ip standby 1 preempt!interface Vlan8 ip address standby 1 ip standby 1 preempt!interface Vlan9 ip address standby 1 ip standby 1 preempt!ip route 00配置默认路由,指向pix防火墙ip http server!snmp-server community public-nm ROsnmp-server community private-nm RWsnmp-server chassis-id snmp-server enable traps snmp authentication linkdown linkup coldstart warmstartsnmp-server enable traps ttysnmp-server enable traps fru-ctrlsnmp-server enable traps entitysnmp-server enable traps flash insertion removalsnmp-server enable traps cpu thresholdsnmp-server enable traps vtpsnmp-server enable traps vlancreatesnmp-server enable traps vlandeletesnmp-server enable traps envmon fan shutdown supply temperature statussnmp-server enable traps port-securitysnmp-server enable traps rfsnmp-server enable traps config-copysnmp-server enable traps configsnmp-server enable traps hsrpsnmp-server enable traps ipmulticastsnmp-server enable traps mac-notification change move thresholdsnmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-messagesnmp-server enable traps bridge newroot topologychangesnmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistencysnmp-server enable traps syslogsnmp-server enable traps vlan-membershipsnmp-server host 01 public-nm 配置snmp网管,cisco works需要此配置!control-plane!line con 0 stopbits 1line vty 0 4 password cisco login配置telnet用户的口令!endSW4500-1# sh cdp nei此命令用于查看思科交换机的连接信息Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge S - Switch, H - Host, I - IGMP, r - Repeater, P - PhoneDevice ID Local Intrfce Holdtme Capability Platform Port IDSW4500-2 Gig 2/1 136 R S I WS-C4506 Gig 2/1bangonglou2 Gig 3/48 162 S I WS-C3750G Gig 1/0/23bangonglou1 Gig 3/47 126 S I WS-C3750G Gig 1/0/23SW4500-1#sw2登陆到另一台Catalyst4506交换机Trying sw2 (). OpenUser Access VerificationPassword: 输入telnet口令:ciscoSW4500-2en进入特权模式Password: 特权模式口令:ciscoSW4500-2#wr t显示当前配置信息Building configuration.Current configuration : 9011 bytes以下配置与Catalyst-1相同或相对应!version 12.2no service padservice timestamps debug uptimeservice timestamps log uptimeno service password-encryptionservice compress-config!hostname SW4500-2!boot-start-markerboot system flash bootflash:cat4500-ipbase-mz.122-31.SGA6.binboot-end-marker!enable secret 5 $1$qdQu$9POGVGQrtfz7hMOiRKf/k.!no aaa new-modelip subnet-zerono ip domain-lookupip host sw1 ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 9ip dhcp excluded-address 0ip dhcp excluded-address 00 26!ip dhcp pool vlan2 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan3 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan4 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan5 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan6 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan7 network dns-server 0 default-router lease 0 8! ip dhcp pool vlan8 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan9 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan10 network dns-server 0 default-router lease 0 8!ip dhcp pool vlan1 network 28 dns-server 0 default-router lease 0 8!power redundancy-mode redundantno file verify auto!spanning-tree mode pvstspanning-tree extend system-idspanning-tree vlan 1-10 priority 28672!vlan internal allocation policy ascending!interface GigabitEthernet1/1!interface GigabitEthernet1/2!interface GigabitEthernet2/1 description LINkToSW4500-1 switchport trunk encapsulation dot1q switchport mode trunk!interface GigabitEthernet2/2!interface GigabitEthernet2/3!interface GigabitEthernet2/4!interface GigabitEthernet2/5!interface GigabitEthernet2/6!interface GigabitEthernet2/7!interface GigabitEthernet2/8!interface GigabitEthernet2/9!interface GigabitEthernet2/10!interface GigabitEthernet2/11!interface GigabitEthernet2/12!interface GigabitEthernet2/13! interface GigabitEthernet2/14!interface GigabitEthernet2/15!interface GigabitEthernet2/16!interface GigabitEthernet2/17!interface GigabitEthernet2/18!interface GigabitEthernet3/1 description LinkToFirewall switchport mode access spanning-tree portfast!interface GigabitEthernet3/2 switchport mode access spanning-tree portfast!interface GigabitEthernet3/3 description Cisco net manager switchport mode access spanning-tree portfast!interface GigabitEthernet3/4 switchport mode access spanning-tree portfast!interface GigabitEthernet3/5 switchport mode access spanning-tree portfast!interface GigabitEthernet3/6 switchport mode access spanning-tree portfast!interface GigabitEthernet3/7 switchport mode access spanning-tree portfast!interface GigabitEthernet3/8 switchport mode access spanning-tree portfast!interface GigabitEthernet3/9 switchport mode access spanning-tree portfast!interface GigabitEthernet3/10 switchport mode access spanning-tree portfast!interface GigabitEthernet3/11 switchport mode access spanning-tree portfast!interface GigabitEthernet3/12 switchport mode access spanning-tree portfast!interface GigabitEthernet3/13 switchport mode access spanning-tree portfast!interface GigabitEthernet3/14 switchport mode access spanning-tree portfast!interface GigabitEthernet3/15 switchport mode access spanning-tree portfast!interface GigabitEthernet3/16 switchport mode access spanning-tree portfast!interface GigabitEthernet3/17 switchport mode access spanning-tree portfast!interface GigabitEthernet3/18 switchport mode access spanning-tree portfast!interface GigabitEthernet3/19 switchport mode access spanning-tree portfast!interface GigabitEthernet3/20 switchport mode access spanning-tree portfast! interface GigabitEthernet3/21 switchport mode access spanning-tree portfast!interface GigabitEthernet3/22 switchport mo
温馨提示
- 1. 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。图纸软件为CAD,CAXA,PROE,UG,SolidWorks等.压缩文件请下载最新的WinRAR软件解压。
- 2. 本站的文档不包含任何第三方提供的附件图纸等,如果需要附件,请联系上传者。文件的所有权益归上传用户所有。
- 3. 本站RAR压缩包中若带图纸,网页内容里面会有图纸预览,若没有图纸预览就没有图纸。
- 4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
- 5. 人人文库网仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对用户上传分享的文档内容本身不做任何修改或编辑,并不能对任何下载内容负责。
- 6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
- 7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。
最新文档
- GB/T 15473-2025核电厂安全级静止式蓄电池充电器、逆变器和不间断电源系统的鉴定
- 森林灭火知识培训方案课件
- 森林消防装备维护保养课件
- 4.3.2发生在肺内的气体交换 解码呼吸的“动力之源”肺与外界的气体交换课件(内嵌视频)人教版(2024)七年级生物下册
- 桥梁知识培训资料课件
- 2025年高校化学实验岗位招聘考试备考策略与热点解析
- 2025年注册验船师资格考试(B级练习题)能力提高训练题及答案一
- 2025年茶艺师初级笔试核心考点复习
- 2025年财务管理岗位招聘面试宝典预测题解析与实战案例
- 2025年公务员行政职业能力测试全真模拟卷
- 园区光纤施工方案
- 技师、高级技师职业资格鉴定申请表
- 人格障碍教学课件-人格障碍
- 高中开学军训期间主题班会课件《高一新生入学目标与纪律管理主题班会》
- 小学六年级美术《木版画》课件
- 检验指导书SIP样板
- 广西壮族自治区瑶药材质量标准第一卷
- GB 35574-2017热电联产单位产品能源消耗限额
- 催化重整装置大赛题库(技师、高级技师)
- 意外伤害急救常识及绷带包扎法课件
- 硫酸法钛白生产工艺操作规程
评论
0/150
提交评论