企业综合实战五
要求
地址规划
| 源设备名称 | 设备接口 | IP****地址 |
|---|---|---|
| R1 | F0/0 | 192.168.0.2/30 |
| F0/1 | 100.0.0.1/28 | |
| F1/0 | 192.168.0.6/30 | |
| S0/1/0 | 101.0.0.1/28 | |
| Loopback 0 | 1.1.1.1/32 | |
| R2 | F0/0 | 192.168.0.14/30 |
| F0/1 | 192.168.0.1/30 | |
| S0/1/0 | 192.168.0.9/30 | |
| Loopback 0 | 2.2.2.2/32 | |
| R3 | F0/0 | 192.168.0.13/30 |
| F0/1 | 192.168.0.17/30 | |
| Loopback 0 | 3.3.3.3/32 | |
| R4 | F0/0 | 192.168.0.18/30 |
| F0/1 | 192.168.0.21/30 | |
| E1/0 | 192.168.0.25/30 | |
| Loopback 0 | 4.4.4.4/32 | |
| R5 | F0/0 | 192.168.0.22/30 |
| F0/1 | 192.168.0.5/30 | |
| S0/1/0 | 192.168.0.10/30 | |
| E1/1 | 192.168.0.29/30 | |
| Loopback 0 | 5.5.5.5/32 | |
| R6 | S0/0/0 | 201.0.0.2/28 |
| F0/0 | 192.168.0.1/30 | |
| RouterA | S0/1/0 | 100.0.0.2/28 |
| F0/0 | 101.0.0.2/28 | |
| S0/0/0 | 200.1.1.1/30 | |
| RouterB | F0/0 | 114.114.114.113/29 |
| F0/1 | 200.1.1.5/30 | |
| S0/0/0 | 200.1.1.2/30 | |
| RouterC | F0/0 | 200.1.1.6/30 |
| S0/0/0 | 201.0.0.1/28 | |
| S3-A | F0/1 | 192.168.0.26/30 |
| VLAN 2 | 192.168.2.254/24 | |
| VLAN 4 | 192.168.4.254/24 | |
| VLAN 900 | 192.168.100.1/25 | |
| VLAN 99 | 192.168.99.1/24 | |
| S3-B | F0/1 | 192.168.0.30/30 |
| VLAN 3 | 192.168.3.254/24 | |
| VLAN 5 | 192.168.5.254/24 | |
| VLAN 900 | 192.168.100.2/25 | |
| S3-C | VLAN 10 | 192.168.10.1/24 |
| F0/24 | 192.168.0.2/30 | |
| S2-A | Vlan900 | 192.168.100.3/25 |
| S2-B | Vlan900 | 192.168.100.4/25 |
| S2-C | Vlan20 | 192.168.20.253/24 |
| www.baidu.com | Fa0 | 192.168.99.99/24 |
| DHCP-Server | Fa0 | 192.168.99.100/24 |
| www.qq.com | Fa0 | 192.168.10.10/24 |
| PC4 | Fa0 | 192.168.2.1/24 |
基础配置
根据以上地址规划表完成所有设备的IP和主机名的配置,同时配置使能加密口令和VTY口令为:cisco,telnet的登陆用户名为:admin。所有ospf进程ID为1;所有标准ACL的编号为1。
项目需求
本地登录
enable secret cisco
username admin password cisco
line vty 0 4
login local
end
wr
命令查看
单个接口查看
(config-if)#do sh ip int b
保存命令
copy running-config startup-config 或者write
1、路由器R1需求
基本功能:
根据拓扑和地址规划表完成IP的配置。
路由功能:
配置OSPF、静态路、默认路由、浮动默认路由、NAT;默认路由重分发到OSPF中;出去的默认路由有两条,其中从R1的S0/1/0口出去的默认路由管理距离为150;只允许网段192.168.2.0、3.0、4.0、5.0和192.168.99.0访问外网;NAT公网地址池的名称为nei,IP为100.0.0.1-9;只允外网访问北京baidu公司www.baidu.com服务器的80端口;回环口作为OSPF的router-id;调试使得全网互通。
代码部分:
Router>en
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#hostname R1
R1(config)# line vty 0 4
R1(config-line)# login local
R1(config-line)# exit
R1(config)# enable secret cisco
R1(config)# username admin password cisco
R1(config)# int f0/0
R1(config-if)# ip add 192.168.0.2 255.255.255.252
R1(config-if)# no shutdown
R1(config-if)#
R1(config-if)# int f0/1
R1(config-if)# ip add 100.0.0.1 255.255.255.240
R1(config-if)# no shutdown
R1(config-if)#
R1(config-if)# int f1/0
R1(config-if)# ip add 192.168.0.6 255.255.255.252
R1(config-if)# no shutdown
R1(config-if)#
R1(config-if)# int s0/1/0
R1(config-if)# ip add 101.0.0.1 255.255.255.240
R1(config-if)# no shutdown
%LINK-5-CHANGED: Interface Serial0/1/0, changed state to down
R1(config-if)#
R1(config-if)#int loopback 0
R1(config-if)# ip add 1.1.1.1 255.255.255.255
R1(config-if)# ex
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up
%LINK-5-CHANGED: Interface FastEthernet1/0, changed state to up
%LINK-5-CHANGED: Interface Loopback0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback0, changed state to up
R1(config)#exi
R1(config)#exit
R1#
%SYS-5-CONFIG_I: Configured from console by console
R1# tconf
R1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
R1(config)# ip route 0.0.0.0 0.0.0.0 101.0.0.2 150
R1(config)# ip route 0.0.0.0 0.0.0.0 100.0.0.2
R1(config)# route ospf 1
R1(config-router)# router-id 1.1.1.1
R1(config-router)# network 1.1.1.1 0.0.0.0 area 0
R1(config-router)# network 192.168.0.0 0.0.0.3 area 0
R1(config-router)# network 192.168.0.4 0.0.0.3 area 0
R1(config-router)# default-information originate
R1(config-router)#exi
R1(config-router)#exit
R1(config)# ip route 192.168.2.0 255.255.255.0 192.168.0.1
R1(config)# ip route 192.168.4.0 255.255.255.0 192.168.0.1
R1(config)# ip access-list standard 1
R1(config-std-nacl)# 10 permit 192.168.2.0 0.0.0.255
R1(config-std-nacl)# 20 permit 192.168.4.0 0.0.0.255
R1(config-std-nacl)# 30 permit 192.168.3.0 0.0.0.255
R1(config-std-nacl)# 40 permit 192.168.5.0 0.0.0.255
R1(config-std-nacl)# 50 permit 192.168.99.0 0.0.0.255
R1(config-std-nacl)# 60 deny any
R1(config-std-nacl)#exi
R1(config-std-nacl)#exit
R1(config)# ip nat pool nei 100.0.0.1 100.0.0.9 netmask 255.255.255.240
R1(config)# ip nat inside source list 1 pool nei overload
R1(config)# ip nat inside source static tcp 192.168.99.99 80 100.0.0.10 80
R1(config)#
R1(config)# int f0/1
R1(config-if)# ip nat outside
R1(config-if)# int s0/1/0
R1(config-if)# ip nat outside
R1(config-if)#
R1(config-if)# int f0/0
R1(config-if)# ip nat inside
R1(config-if)# int f1/0
R1(config-if)# ip nat inside
R1(config-if)#
R1(config-if)#
2、路由器R2需求
基本功能:
根据拓扑和地址规划表完成IP的配置。
路由功能:
配置OSPF路由协议(Router-id:2.2.2.2),使全网互通。
代码部分:
Router>en
Router# conf ter
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)# hostname R2
R2(config)# line vty 0 4
R2(config-line)# login local
R2(config-line)# exit
R2(config)# enable secret cisco
R2(config)# username admin password cisco
R2(config)# int f0/0
R2(config-if)# ip add 192.168.0.14 255.255.255.252
R2(config-if)# no shutdown
R2(config-if)#
R2(config-if)# int f0/1
R2(config-if)# ip add 192.168.0.1 255.255.255.252
R2(config-if)# no shutdown
R2(config-if)#
R2(config-if)# int s0/1/0
R2(config-if)# ip add 192.168.0.9 255.255.255.252
R2(config-if)# no shutdown
%LINK-5-CHANGED: Interface Serial0/1/0, changed state to down
R2(config-if)#
R2(config-if)# int loopback 0
R2(config-if)# ip add 2.2.2.2 255.255.255.255
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up
%LINK-5-CHANGED: Interface Loopback0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback0, changed state to up
R2(config-if)#exit
R2(config)# route ospf 1
R2(config-router)# router-id 2.2.2.2
R2(config-router)# network 2.2.2.2 0.0.0.0 area 0
R2(config-router)# network 192.168.0.12 0.0.0.3 area 0
R2(config-router)# network 192.168.0.0 0.0.0.3 area 0
R2(config-router)# network 192.168.0.8 0.0.0.3 area 0
R2(config-router)#exit
R2(config)# int s0/1/0
R2(config-if)# ip ospf cost 1
R2(config-if)#
R2(config-if)#
R2(config-if)#end
R2#
%SYS-5-CONFIG_I: Configured from console by console
R2#wr
Building configuration...
[OK]
R2#
3、路由器R3需求
基本功能
根据拓扑和地址规划表完成IP的配置。
路由功能
配置OSPF路由协议(Router-id:3.3.3.3),使全网互通。
代码部分
Router>en
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#hostname R3
R3(config)# line vty 0 4
R3(config-line)# login local
R3(config-line)# exit
R3(config)# enable secret cisco
R3(config)# username admin password cisco
R3(config)#
R3(config)# int f0/0
R3(config-if)# ip add 192.168.0.13 255.255.255.252
R3(config-if)# no shutdown
R3(config-if)#
R3(config-if)# int f0/1
R3(config-if)# ip add 192.168.0.17 255.255.255.252
R3(config-if)# no shutdown
R3(config-if)#
R3(config-if)# int loopback 0
R3(config-if)# ip add 3.3.3.3 255.255.255.255
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up
%LINK-5-CHANGED: Interface Loopback0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback0, changed state to up
R3(config-if)#exi
R3(config-if)#exit
R3(config)# route ospf 1
R3(config-router)#router-id 3.3.3.3
R3(config-router)#network 192.168.0.12 0.0.0.3 area 0
R3(config-router)#network 192.168.0.16 0.0.0.3 area 0
R3(config-router)#
R3(config-router)#end
R3#
%SYS-5-CONFIG_I: Configured from console by console
R3#wr
Building configuration...
[OK]
R3#
4、路由器R4需求
基本功能
根据拓扑和地址规划表完成IP的配置。
路由功能
配置OSPF路由协议(Router-id:4.4.4.4),并使全网互通。
代码部分
Router>EN
Router#conf ter
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#hostname R4
R4(config)# line vty 0 4
R4(config-line)# login local
R4(config-line)# exit
R4(config)# enable secret cisco
R4(config)# username admin password cisco
R4(config)#
R4(config)# int f0/0
R4(config-if)# ip add 192.168.0.18 255.255.255.252
R4(config-if)# no shutdown
R4(config-if)#
R4(config-if)# int f0/1
R4(config-if)# ip add 192.168.0.21 255.255.255.252
R4(config-if)# no shutdown
R4(config-if)#
R4(config-if)# int e1/0
R4(config-if)# ip add 192.168.0.25 255.255.255.252
R4(config-if)# no shutdown
R4(config-if)#
R4(config-if)# int loopback 0
R4(config-if)# ip add 4.4.4.4 255.255.255.255
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up
%LINK-5-CHANGED: Interface Ethernet1/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1/0, changed state to up
%LINK-5-CHANGED: Interface Loopback0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback0, changed state to up
R4(config-if)#exit
R4(config)# route ospf 1
R4(config-router)# router-id 4.4.4.4
R4(config-router)# network 4.4.4.4 0.0.0.0 area 0
R4(config-router)# network 192.168.0.16 0.0.0.3 area 0
R4(config-router)# network 192.168.0.20 0.0.0.3 area 0
R4(config-router)# network 192.168.0.24 0.0.0.3 area 1
R4(config-router)#exit
R4(config)#
R4(config)# int f0/1
R4(config-if)# ip ospf cost 100
R4(config-if)#end
R4#
%SYS-5-CONFIG_I: Configured from console by console
R4#wr
Building configuration...
[OK]
R4#
5、路由器R5需求
基本功能
根据拓扑和地址规划表完成IP的配置。
路由功能
配置OSPF路由协议(Router-id:5.5.5.5),使全网互通。
代码部分
Router>
Router>
Router>
Router>en
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#hostname R5
R5(config)# line vty 0 4
R5(config-line)# login local
R5(config-line)# exit
R5(config)# enable secret cisco
R5(config)# username admin password cisco
R5(config)#
R5(config)# int f0/0
R5(config-if)# ip add 192.168.0.22 255.255.255.252
R5(config-if)# no shutdown
R5(config-if)#
R5(config-if)# int f0/1
R5(config-if)# ip add 192.168.0.5 255.255.255.252
R5(config-if)# no shutdown
R5(config-if)#
R5(config-if)# int s0/1/0
R5(config-if)# ip add 192.168.0.10 255.255.255.252
R5(config-if)# no shutdown
R5(config-if)#
R5(config-if)# int e1/1
R5(config-if)# ip add 192.168.0.29 255.255.255.252
R5(config-if)# no shutdown
R5(config-if)#
R5(config-if)# int loopback 0
R5(config-if)# ip add 5.5.5.5 255.255.255.255
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up
%LINK-5-CHANGED: Interface Serial0/1/0, changed state to up
%LINK-5-CHANGED: Interface Ethernet1/1, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1/1, changed state to up
%LINK-5-CHANGED: Interface Loopback0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback0, changed state to up
R5(config-if)#exit
R5(config)# router ospf 1
R5(config-router)# router 5.5.5.5
R5(config-router)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1/0, changed state to up
R5(config-router)#
R5(config-router)#
R5(config-router)# network 5.5.5.5 0.0.0.0 area 0
R5(config-router)# network 192.168.0.20 0.0.0.3 area 0
R5(config-router)# network 192.168.0.4 0.0.0.3 area 0
R5(config-router)# network 192.168.0.8 0.0.0.3 area 0
R5(config-router)# network 192.168.0.28 0.0.0.3 area 1
R5(config-router)#end
R5#
%SYS-5-CONFIG_I: Configured from console by console
R5#wr
Building configuration...
[OK]
R5#
00:13:51: %OSPF-5-ADJCHG: Process 1, Nbr 2.2.2.2 on Serial0/1/0 from LOADING to FULL, Loading Done
6、路由器R6需求
基本功能:
根据拓扑和地址规划表完成IP的配置。
路由功能:
配置RIP、默认路由、路由重分发、NAT;只允许网段192.168.2.0和192.168.10.0访问外网;NAT转换不采用创建地址池的方式而是直接使用S0/0/0口,只允外网访问广州QQ公司www.qq.com服务器的80端口;调试使得全网互通。
代码部分
Router>
Router>
Router>en
Router#
Router#
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#hostname R6
R6(config)# line vty 0 4
R6(config-line)# login local
R6(config-line)# exit
R6(config)# enable secret cisco
R6(config)# username admin password cisco
R6(config)#
R6(config)# int s0/0/0
R6(config-if)# ip add 201.0.0.2 255.255.255.240
R6(config-if)# no shutdown
%LINK-5-CHANGED: Interface Serial0/0/0, changed state to down
R6(config-if)#
R6(config-if)# int f0/0
R6(config-if)# ip add 192.168.0.1 255.255.255.252
R6(config-if)# no shutdown
R6(config-if)#
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
R6(config-if)#exi
R6(config-if)#exit
R6(config)# ip route 0.0.0.0 0.0.0.0 201.0.0.1
R6(config)# route rip
R6(config-router)# network 192.168.0.0
R6(config-router)# version 2
R6(config-router)# no auto-summary
R6(config-router)# default-information originate
R6(config-router)#exit
R6(config)#
R6(config)# ip access-list standard 1
R6(config-std-nacl)# 10 permit 192.168.2.0 0.0.0.255
R6(config-std-nacl)# 20 permit 192.168.10.0 0.0.0.255
R6(config-std-nacl)#exit
R6(config)# ip nat inside source list 1 interface s0/0/0
R6(config)# ip nat inside source static tcp 192.168.10.10 80 201.0.0.10 80
R6(config)#exit
R6#
%SYS-5-CONFIG_I: Configured from console by console
R6#conf t
Enter configuration commands, one per line. End with CNTL/Z.
R6(config)# int s0/0/0
R6(config-if)# ip nat outside
R6(config-if)# int f0/0
R6(config-if)# ip nat inside
R6(config-if)#end
R6#
%SYS-5-CONFIG_I: Configured from console by console
R6#wr
Building configuration...
[OK]
R6#
7、路由器RouterA需求
基本功能:
根据拓扑和地址规划表完成IP的配置。
路由功能:
配置OSPF、ACL;本路由器作为ISP的边界路由器,要求禁止A、B、C三类的私有网段进入到ISP网络;调试使得全网互通。
代码部分
Router>
Router>
Router>en
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#hostname RouterA
RouterA(config)#line vty 0 4
RouterA(config-line)#login local
RouterA(config-line)# exit
RouterA(config)# enable secret cisco
RouterA(config)# username admin password cisco
RouterA(config)# int s0/1/0
RouterA(config-if)#ip add 101.0.0.2 255.255.255.240
RouterA(config-if)# no shutdown
RouterA(config-if)#
%LINK-5-CHANGED: Interface Serial0/1/0, changed state to up
RouterA(config-if)#exit
RouterA(config)# int f0/0
RouterA(config-if)# ip add 100.0.0.2 255.255.255.240
RouterA(config-if)# no shutdown
RouterA(config-if)#
RouterA(config-if)# int s0/0/0
RouterA(config-if)# ip add 200.1.1.1 255.255.255.252
RouterA(config-if)# no shutdown
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
%LINK-5-CHANGED: Interface Serial0/0/0, changed state to down
RouterA(config-if)#e
%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1/0, changed state to up
xit
RouterA(config)# route ospf 1
RouterA(config-router)#network 100.0.0.0 0.0.0.15 area 0
RouterA(config-router)# network 101.0.0.0 0.0.0.15 area 0
RouterA(config-router)# network 200.1.1.0 0.0.0.3 area 0
RouterA(config-router)#exo
RouterA(config-router)#exit
RouterA(config)# ip access-list standard 1
RouterA(config-std-nacl)#10 deny 10.0.0.0 0.255.255.255
RouterA(config-std-nacl)#20 deny 172.16.0.0 0.15.255.255
RouterA(config-std-nacl)#30 deny 192.168.0.0 0.0.255.255
RouterA(config-std-nacl)#40 permit any
RouterA(config-std-nacl)#exit
RouterA(config)# int f0/0
RouterA(config-if)# ip access-group 1 in
RouterA(config-if)# int s0/1/0
RouterA(config-if)# ip access-group 1 in
RouterA(config-if)#exi
RouterA(config-if)#exit
RouterA(config)#end
RouterA#
%SYS-5-CONFIG_I: Configured from console by console
RouterA#
RouterA#wr
Building configuration...
[OK]
RouterA#
8、路由器RouterB需求
基本功能:
根据拓扑和地址规划表完成IP的配置。
路由功能:
配置OSPF;调试使得全网互通。
代码部分
Router>en
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#hostname RouterB
RouterB(config)#line vty 0 4
RouterB(config-line)#login local
RouterB(config-line)# exit
RouterB(config)# enable secret cisco
RouterB(config)# username admin password cisco
RouterB(config)#
RouterB(config)# int f0/0
RouterB(config-if)# ip add 114.114.114.113 255.255.255.248
RouterB(config-if)# no shutdown
RouterB(config-if)#
RouterB(config-if)# int f0/1
RouterB(config-if)# ip add 200.1.1.5 255.255.255.252
RouterB(config-if)# no shutdown
RouterB(config-if)#
RouterB(config-if)# int s0/0/0
RouterB(config-if)# ip add 200.1.1.2 255.255.255.252
RouterB(config-if)# no shutdown
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up
RouterB(config-if)#
%LINK-5-CHANGED: Interface Serial0/0/0, changed state to up
RouterB(config-if)#exit
RouterB(config)# route ospf 1
RouterB(config-router)# network 114.114.114.112 0.0.0.7 area 0
RouterB(config-router)# network 200.1.1.4 0.0.0.3 area 0
RouterB(config-router)# network 200.1.1.0 0.0.0.3 area 0
RouterB(config-router)#exit
RouterB(config)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/0/0, changed state to up
00:22:23: %OSPF-5-ADJCHG: Process 1, Nbr 200.1.1.1 on Serial0/0/0 from LOADING to FULL, Loading Done
RouterB(config)#end
RouterB#
%SYS-5-CONFIG_I: Configured from console by console
RouterB#wr
Building configuration...
[OK]
RouterB#
9、路由器RouterC需求
基本功能:
根据拓扑和地址规划表完成IP的配置。
路由功能:
配置OSPF、ACL;本路由器作为ISP的边界路由器,要求禁止A、B、C三类的私有网段进入到ISP网络;调试使得全网互通。
代码部分
Router>en
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)# hostname RouterC
RouterC(config)# line vty 0 4
RouterC(config-line)# login local
RouterC(config-line)# exit
RouterC(config)# enable secret cisco
RouterC(config)# username admin password cisco
RouterC(config)# int f0/0
RouterC(config-if)# ip add 200.1.1.6 255.255.255.252
RouterC(config-if)# no shutdown
RouterC(config-if)#
RouterC(config-if)# int s0/0/0
RouterC(config-if)# ip add 201.0.0.1 255.255.255.240
RouterC(config-if)# no shutdown
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
RouterC(config-if)#
%LINK-5-CHANGED: Interface Serial0/0/0, changed state to up
RouterC(config-if)#
RouterC(config-if)#exit
RouterC(config)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/0/0, changed state to up
router ospf 1
RouterC(config-router)# network 200.1.1.4 0.0.0.3 area 0
RouterC(config-router)# network 201.0.0.0 0.0.0.15 area 0
RouterC(config-router)#exi
RouterC(config-router)#exit
RouterC(config)# access-list 1 deny 10.0.0.0 0.255.255.255
RouterC(config)# access-list 1 deny 172.16.0.0 0.15.255.255
RouterC(config)# access-list 1 deny 192.168.0.0 0.0.255.255
RouterC(config)# access-list 1 permit any
RouterC(config)#exi
RouterC(config)# int s0/0/0
RouterC(config-if)# ip access-group 1 in
RouterC(config-if)#exit
RouterC(config)#end
RouterC#
%SYS-5-CONFIG_I: Configured from console by console
RouterC#wr
Building configuration...
[OK]
RouterC#
10、交换机S3-A需求
基本功能:
根据拓扑和地址规划表完成IP的配置。
路由功能:
配置OSPF、默认路由、DHCP中继;连接终端接口定为被动接口;调试使得全网互通。
交换功能:
配置两个棵生成树,分别为VLAN2和VLAN4,VLAN3和VLAN5;其中本交换机作为vlan2和vlan4构成的生成树的根网桥(优先级为4096);作为VLAN3和VLAN5构成的生成树的备份网桥(优先级为默认值);所有封装trunk的接口都要修剪,只放行相关VLAN。
提示:本模拟器没有mstp协议,就用默认已开启的pvst协议,实现的原理与MSTP类似,但不用认为太复杂,多用?号查找命令,在spanning-tree命令中找答案。最后使得PC0的数据路径转发为PC0->S2-A->S3-A路径转发;使得PC2的数据路径转发为PC2->S2-B->S3-A路径转发。
代码部分:
Switch>en
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#hostname S3
S3(config)#hostname S3-A
S3-A(config)#int f0/1
S3-A(config-if)#no switchport
S3-A(config-if)#ip add 192.168.0.26 255.255.255.252
S3-A(config-if)#no shutdown
S3-A(config-if)#exit
S3-A(config)#vlan 2
S3-A(config-vlan)#vlan 3
S3-A(config-vlan)#vlan 4
S3-A(config-vlan)#vlan 5
S3-A(config-vlan)#vlan 99
S3-A(config-vlan)#vlan 900
S3-A(config-vlan)#exit
S3-A(config)#int vlan 2
S3-A(config-if)#ip add 192.168.2.254 255.255.255.0
S3-A(config-if)#int vlan 4
S3-A(config-if)#ip address 192.168.4.254 255.255.255.0
S3-A(config-if)#int Vlan99
S3-A(config-if)#ip address 192.168.99.1 255.255.255.0
S3-A(config-if)#int Vlan900
S3-A(config-if)#ip add 192.168.100.1 255.255.255.0
S3-A(config-if)#exit
S3-A(config)#router ospf 1
S3-A(config-router)#network 192.168.0.24 0.0.0.3 area 1
S3-A(config-router)#network 192.168.2.0 0.0.0.255 area 1
S3-A(config-router)#network 192.168.4.0 0.0.0.255 area 1
S3-A(config-router)#network 192.168.99.0 0.0.0.255 area 1
S3-A(config-router)#network 192.168.100.0 0.0.0.127 area 1
S3-A(config-router)#do show run
S3-A(config-router)#do show run
Building configuration...
Current configuration : 1682 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
hostname S3-A
ip routing
spanning-tree mode pvst
interface FastEthernet0/1
no switchport
ip address 192.168.0.26 255.255.255.252
duplex auto
speed auto
!
interface FastEthernet0/2
!
interface FastEthernet0/3
!
interface FastEthernet0/4
!
interface FastEthernet0/5
!
interface FastEthernet0/6
!
interface FastEthernet0/7
!
interface FastEthernet0/8
!
interface FastEthernet0/9
!
interface FastEthernet0/10
!
interface FastEthernet0/11
!
interface FastEthernet0/12
!
interface FastEthernet0/13
!
interface FastEthernet0/14
!
interface FastEthernet0/15
!
interface FastEthernet0/16
!
interface FastEthernet0/17
!
interface FastEthernet0/18
!
interface FastEthernet0/19
!
interface FastEthernet0/20
!
interface FastEthernet0/21
!
interface FastEthernet0/22
!
interface FastEthernet0/23
!
interface FastEthernet0/24
!
interface GigabitEthernet0/1
!
interface GigabitEthernet0/2
!
interface Vlan1
no ip address
shutdown
!
interface Vlan2
ip address 192.168.2.254 255.255.255.0
!
interface Vlan4
ip address 192.168.4.254 255.255.255.0
!
interface Vlan99
ip address 192.168.99.1 255.255.255.0
!
interface Vlan900
ip address 192.168.100.1 255.255.255.0
!
router ospf 1
log-adjacency-changes
network 192.168.0.24 0.0.0.3 area 1
network 192.168.2.0 0.0.0.255 area 1
network 192.168.4.0 0.0.0.255 area 1
network 192.168.99.0 0.0.0.255 area 1
network 192.168.100.0 0.0.0.255 area 1
!
ip classless
!
ip flow-export version 9
!
!
!
!
!
!
!
line con 0
!
line aux 0
!
line vty 0 4
login
!
!
!
end
S3-A(config-router)#passive-interface vlan 2
S3-A(config-router)#passive-interface vlan 4
S3-A(config-router)#passive-interface vlan 99
S3-A(config-router)#exit
S3-A(config)#spanning-tree ?
mode Spanning tree operating mode
portfast Spanning tree portfast options
vlan VLAN Switch Spanning Tree
S3-A(config)#spanning-tree vl
S3-A(config)#spanning-tree vlan 2,4 ?
priority Set the bridge priority for the spanning tree
root Configure switch as root
<cr>
S3-A(config)#spanning-tree vlan 2,4 pro
S3-A(config)#spanning-tree vlan 2,4 pri
S3-A(config)#spanning-tree vlan 2,4 priority ?
<0-61440> bridge priority in increments of 4096
S3-A(config)#spanning-tree vlan 2,4 priority 4096
S3-A(config)#spa
S3-A(config)#spanning-tree vlan
S3-A(config)#spanning-tree vlan 3,5 ?
priority Set the bridge priority for the spanning tree
root Configure switch as root
<cr>
S3-A(config)#spanning-tree vlan 3,5
S3-A(config)#enable secret cisco
S3-A(config)#username admin password cisco
S3-A(config)#line vty 0 4
S3-A(config-line)#login local
S3-A(config-line)#end
S3-A#wr
%SYS-5-CONFIG_I: Configured from console by console
Building configuration...
[OK]
S3-A#
S3-A(config)#int range g0/1,f0/23-24
S3-A(config-if-range)#sw
S3-A(config-if-range)#switchport tr
S3-A(config-if-range)#switchport trunk e
S3-A(config-if-range)#switchport trunk encapsulation do
S3-A(config-if-range)#switchport trunk encapsulation dot1q
S3-A(config-if-range)#sw mo trunk
S3-A(config-if-range)#switchport trunk allowed vla
S3-A(config-if-range)#switchport trunk allowed vlan 2-5,99,900
S3-A(config-if-range)#do sh run
S3-A(config-if)#int f0/2
S3-A(config-if)#sw ac vl 99
S3-A(config-if)#exi
S3-A#conf t
Enter configuration commands, one per line. End with CNTL/Z.
S3-A(config)#enable secret cisco
S3-A(config)#username admin password cisco
S3-A(config)#line vty 0 4
S3-A(config-line)#login local
S3-A(config-line)#end
S3-A#wr
%SYS-5-CONFIG_I: Configured from console by console
Building configuration...
[OK]
S3-A#conf t
Enter configuration commands, one per line. End with CNTL/Z.
S3-A(config)#int vlan 2
S3-A(config-if)#ip he
S3-A(config-if)#ip hel
S3-A(config-if)#ip help
S3-A(config-if)#ip helper-address 192.168.99.100
S3-A(config-if)#int vlan 4
S3-A(config-if)#ip hel
S3-A(config-if)#ip help
S3-A(config-if)#ip helper-address 192.168.99.100
S3-A(config-if)#exi
S3-A(config-if)#exit
11、交换机S3-B需求
基本功能:
根据拓扑和地址规划表完成IP的配置。
路由功能:
配置OSPF、DHCP中继;连接终端接口定为被动接口;调试使得全网互通。
交换功能:
配置两个棵生成树,分别为VLAN2和VLAN4,VLAN3和VLAN5;其中本交换机作为vlan3和vlan5构成的生成树的根网桥(优先级为4096);作为VLAN2和VLAN4构成的生成树的备份网桥(优先级为默认值);所有封装trunk的接口都要修剪,只放行相关VLAN。
**提示:****本模拟器没有mstp协议,就用默认已开启的pvst协议,实现的原理与MSTP类似,但不用认为太复杂,多用?号查找命令,在spanning-tree命令中找答案。最后使得PC1的数据路径转发为PC1->S2-A->S3-B;使得PC3的数据路径转发为PC3->S2-B->S3-B。
代码部分
Switch>
Switch>en
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#hostname S3-B
S3-B(config)#int f0/1
S3-B(config-if)#no sw
S3-B(config-if)#no switchport
S3-B(config-if)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to down
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up
S3-B(config-if)#ip add 192.168.0.30 255.255.255.252
S3-B(config-if)#no shu
S3-B(config-if)#no shutdown
S3-B(config-if)#exi
S3-B(config-if)#exit
S3-B(config)#vlan 2
S3-B(config-vlan)#vlan 3
S3-B(config-vlan)#vlan 4
S3-B(config-vlan)#vlan 5
S3-B(config-vlan)#vlan 99
S3-B(config-vlan)#vlan 900
S3-B(config-vlan)#exi
S3-B(config-vlan)#exit
S3-B(config)#int vlan 3
S3-B(config-if)#
%LINK-5-CHANGED: Interface Vlan3, changed state to up
S3-B(config-if)#ip add 192.168.3.254 255.255.255.0
S3-B(config-if)#int vlan 5
S3-B(config-if)#
%LINK-5-CHANGED: Interface Vlan5, changed state to up
ip add 192.168.5.254 255.255.255.0
S3-B(config-if)#ip add 192.168.5.254 255.255.255.0
S3-B(config-if)#int vlan 900
S3-B(config-if)#
%LINK-5-CHANGED: Interface Vlan900, changed state to up
S3-B(config-if)#ip add 192.168.100.2 255.255.255.128
S3-B(config-if)#exi
S3-B(config-if)#exit
S3-B(config)#rou
S3-B(config)#router os
S3-B(config)#router ospf 1
S3-B(config-router)#net
S3-B(config-router)#network 192.168.0.20 0.0.0.3 a
S3-B(config-router)#network 192.168.0.20 0.0.0.3 area 1
S3-B(config-router)#ne
S3-B(config-router)#net
S3-B(config-router)#network 192.168.3.0 0.0.0.255 ar
S3-B(config-router)#network 192.168.3.0 0.0.0.255 area 1
S3-B(config-router)#network 192.168.5.0 0.0.0.255 area 1
S3-B(config-router)#network 192.168.100.0 0.0.0.127 area 1
S3-B(config-router)#pas
S3-B(config-router)#passive-interface vla
S3-B(config-router)#passive-interface vlan 3
S3-B(config-router)#vlan 5
S3-B(config-vlan)#exi
S3-B(config-vlan)#exit
S3-B(config)#rou
S3-B(config)#router os
S3-B(config)#router ospf 1
S3-B(config-router)#pas
S3-B(config-router)#passive-interface vlan 5
S3-B(config-router)#exi
S3-B(config-router)#exit
S3-B(config)#spa
S3-B(config)#spanning-tree vl
S3-B(config)#spanning-tree vlan 3,5 pr
S3-B(config)#spanning-tree vlan 3,5 priority 4096
S3-B(config)#spanning-tree vlan 2,4
S3-B(config)#
S3-B(config)#int range g0/1,f0/23-24
S3-B(config-if-range)#switchport trunk encapsulation do
S3-B(config-if-range)#switchport trunk encapsulation dot1q
S3-B(config-if-range)#switchport mode trunk
S3-B(config-if-range)#switchport trunk allowed vlan 2-5,99,900
S3-B(config-if-range)#end
S3-B#conf t
Enter configuration commands, one per line. End with CNTL/Z.
S3-B(config)#int f0/2
S3-B(config-if)#sw acc vlan 99
S3-B(config-if)#exit
S3-B>en
S3-B#conf ter
Enter configuration commands, one per line. End with CNTL/Z.
S3-B(config)#enable secret cisco
S3-B(config)#username admin password cisco
S3-B(config)#line vty 0 4
S3-B(config-line)#login local
S3-B(config-line)#end
S3-B#wr
S3-B#conf t
Enter configuration commands, one per line. End with CNTL/Z.
S3-B(config)#int vlan 3
S3-B(config-if)#ip help
S3-B(config-if)#ip helper-address
S3-B(config-if)#ip helper-address 192.168.99.100
S3-B(config-if)#int vlan 5
S3-B(config-if)#ip helper-address 192.168.99.100
S3-B(config-if)#
12、交换机S3-C需求
基本功能:
根据拓扑和地址规划表完成IP的配置。
路由功能:
配置RIP;连接终端接口定为被动接口;调试使得全网互通。
代码部分:
hostname S3-C
line vty 0 4
login local
exit
enable secret cisco
username admin password cisco
int f0/24
no switchport
ip add 192.168.0.2 255.255.255.252
ex
vlan 2
vlan 10
int vlan 10
ip add 192.168.10.1 255.255.255.0
int vlan 2
ip add 192.168.2.254 255.255.255.0
int f0/2
sw trunk encapsulation dot1q
sw mo tr
int f0/1
sw acc vlan 10
router rip
network 192.168.0.0
network 192.168.10.0
network 192.168.2.0
version 2
no auto-summary
passive-interface vlan 2
passive-interface vlan 10
13、交换机S2-A至S2-C需求
根据网络拓扑配置相应的VLAN,把相应的接口加入VLAN,所有的trunk接口都要修剪,只放行相关VLAN。创建管理VLAN使得本交换机可以进行远程管理。
S2-A
Switch>en
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#hostname S2-A
S2-A(config)#vlan 2
S2-A(config-vlan)#vlan 3
S2-A(config-vlan)#vlan 4
S2-A(config-vlan)#vlan 5
S2-A(config-vlan)#vlan 900
S2-A(config-vlan)#exit
S2-A(config)#int vlan 900
S2-A(config-if)#ip add 192.168.100.3 255.255.255.128
S2-A(config-if)#exit
S2-A(config)#ip default-gateway 192.168.100.1
S2-A(config)#int range f0/23-24
S2-A(config-if-range)#sw mo tr
S2-A(config-if-range)#sw mo trunk
S2-A(config-if-range)#sw tr
S2-A(config-if-range)#sw trunk all
S2-A(config-if-range)#sw trunk allowed val
S2-A(config-if-range)#sw trunk allowed vla
S2-A(config-if-range)#sw trunk allowed vlan 2-5,900
S2-A(config-if-range)#exi
S2-A(config-if-range)#exit
S2-A(config)#int f0/1
S2-A(config-if)#sw ac vl 2
S2-A(config-if)#int f0/3
S2-A(config-if)#sw ac vl 3
S2-A(config-if)#ex
S2-A(config)#
S2-A(config)#spanning-tree vlan 2,4
S2-A(config)#sp
S2-A(config)#spanning-tree v
S2-A(config)#spanning-tree vlan 3,5
S2-A(config)#enable secret cisco
S2-A(config)#username admin password cisco
S2-A(config)#line vty 0 4
S2-A(config-line)#login local
S2-A(config-line)#end
S2-A#wr
%SYS-5-CONFIG_I: Configured from console by console
Building configuration...
[OK]
S2-A#
S2-B
Switch>EN
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#hostname S2-B
S2-B(config)#vlan 2
S2-B(config-vlan)#vlan 3
S2-B(config-vlan)#vlan 5
S2-B(config-vlan)#vlan 4
S2-B(config-vlan)#vlan 900
S2-B(config-vlan)#exi
S2-B(config-vlan)#exit
S2-B(config)#int vlan 900
S2-B(config-if)#
%LINK-5-CHANGED: Interface Vlan900, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan900, changed state to up
S2-B(config-if)#ip add 192.168.100.4 255.255.255.128
S2-B(config-if)#exi
S2-B(config-if)#exit
S2-B(config)#de
S2-B(config)#de
S2-B(config)#ip de
S2-B(config)#ip default-gateway 192.168.100.1
S2-B(config)#int ra
S2-B(config)#int range f0/23-24
S2-B(config-if-range)#sw mod tr
S2-B(config-if-range)#sw mod trunk
S2-B(config-if-range)#sw tru
S2-B(config-if-range)#sw trunk all
S2-B(config-if-range)#sw trunk allowed vlan 2-5,900
S2-B(config-if-range)#
S2-B(config-if-range)#int f0/1
S2-B(config-if)#sw ac vl 4
S2-B(config-if)#int f0/5
S2-B(config-if)#int f0/3
S2-B(config-if)#sw ac vl 5
S2-B(config-if)#exit
S2-B(config)#spa
S2-B(config)#spanning-tree vlan 2,4
S2-B(config)#spa
S2-B(config)#spanning-tree vlan 3,5
S2-B(config)#ex
S2-B(config)#exit
S2-B#
%SYS-5-CONFIG_I: Configured from console by console
S2-B#
S2-C
Switch>
Switch>en
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#hostname S2-C
S2-C(config)# line vty 0 4
S2-C(config-line)# login local
S2-C(config-line)# exit
S2-C(config)# enable secret cisco
S2-C(config)# username admin password cisco
S2-C(config)#exit
S2-C#
%SYS-5-CONFIG_I: Configured from console by console
S2-C#conf t
Enter configuration commands, one per line. End with CNTL/Z.
S2-C(config)# vlan 2
S2-C(config-vlan)# int vlan 2
S2-C(config-if)#
%LINK-5-CHANGED: Interface Vlan2, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan2, changed state to up
S2-C(config-if)# ip add 192.168.2.253 255.255.255.0
S2-C(config-if)#exit
S2-C(config)# ip default-gateway 192.168.2.254
S2-C(config)# int f0/24
S2-C(config-if)# sw mo tr
S2-C(config-if)# switchport trunk allowed vlan 2
S2-C(config-if)# int f0/1
S2-C(config-if)# sw acc vlan 2
S2-C(config-if)#exit
S2-C(config)#exi
S2-C(config)#exit
S2-C#
%SYS-5-CONFIG_I: Configured from console by console
S2-C#wr
Building configuration...
[OK]
S2-C#
14、DHCP-Server服务器需求
根据拓扑和地址规划表完成IP的配置;只配置DHCP功能,分配置192.168.2.0-5.0四个网段,DNS为:114.114.114.114。
15、www.baidu.com服务器需求
根据拓扑和地址规划表完成IP的配置;开启http功能。注:网页内容已配置好无需修改。
启用服务
16、www.qq.com服务器需求
根据拓扑和地址规划表完成IP的配置;开启http功能。注:网页内容已配置好无需修改。
17、DNS-Server服务器需求
根据拓扑和地址规划表完成IP的配置;开启并配置DNS功能,使得整网用户可以通过浏览器访问www.baidu.com和www.qq.com两个网站。
域名解析
18、PC0-PC3主机需求
通过DHCP自动获取该网络的IP地址和DNS地址,可以访问本公司全网网段,并能访问外网和www.qq.com网站。
19、PC4主机需求
配置IP地址和DNS地址,可以访问本公司全网网段,并能访问外网和www.baidu.com网站。
