1、交换,Cisco三层模型交换机基本配置VLANVTP,Cisco三层模型,Cisco三层模型,接入层 Layer 2 Switching,最终用户被许可接入网络的点分布层 Layer 3 Switching,访问层设备的汇聚点核心层 Layer 2/Layer 3 Switching 高速交换背板,不进行任何过滤,因为会影响转发速度。,核心层的两种设计,全互联,核心层的两种设计,星形设计,交换机基本配置,选择接口 interface module/number interface range type module/number ,type module/number interface ra
2、nge type module/first-number last-number 设定端口速率 speed 10 | 100 | 1000 | auto,交换机基本配置,端口模式 duplext half | full | auto设置IP地址 int vlan 1 ip address ip_address netmask Vlan 1是默认管理Vlan,VLAN,概述设置VLAN的作用 广播包控制 安全 地理位置无关性划分VLAN的方法 静态 动态,VLAN,Trunk,VLAN,两种tag类型 ISL802.1Q,VLAN,实现VLAN 的2 个步骤: 创建VLAN 把交换机端口分配给V
3、LAN两种VLAN 的定义 active VLAN transit VLAN,VLAN,创建VLAN vlan database vlan vlan_id name VLAN_name 为交换机端口分配VLAN interface module/port switchport mode access switchport access vlan vlan_id察看VLAN信息 show vlan show vlan brief,VTP,起因,VTP,VTP 的3 种模式 服务器模式(server mode) 客户模式(client mode) 透明模式(transparent mode) VT
4、P Pruning,VTP,配置VTP管理域 vtp domain domain_name配置VTP模式 vtp server | client | transparent配置VTP口令 vtp password password,VTP,设置Trunk int module/port switchport mode trunk switchport trunk encapsulation isl | dot1q察看VTP信息 show vtp status show interface trunk show interface switchport,VTP,VTP Pruning 在VTP
5、Server上: vtp pruning在VTP Client上: interface type mod/num switchport trunk pruning vlan add | except | none | remove vlan-list,VLAN间路由选择,外部路由处理器 也叫单臂路由(One-Armed Routing) 或Router on a Stick内部路由处理器 配有RSM(路由交换模块)的Catalyst 5000系列交换机 配有MSM(多层交换模块)或MSFC(多层交换特性卡)的Catalyst 6000/6500系列交换机,单臂路由,Cisco 4500 int
6、erface f0.10 encap dot1q 10 ip add 172.16.10.1 255.255.255.0 interface f0.20 encap dot1q 20 ip add 172.16.20.1 255.255.255.0,内部路由处理器,3层接口配置 interface module/port no switchport ip address ip_address maskSVI接口配置 Switched Virtual Lans interface vlan vlan_id no shutdown ip address ip_address mask,单臂路由实例
7、,拓朴 VLAN 1:管理VLAN 211.68.1.0 VLAN 2:PC 2 211.68.2.0 VLAN 3:PC 3、PC 4、PC 5 211.68.3.03550-1:VTP Server,单臂路由实例,4500 interface f0/0 no shutdown interface f0/0.1 encap dot1q 1 ip add 211.68.1.1 255.255.255.0 interface f0/0.2 encap dot1q 2 ip add 211.68.2.1 255.255.255.0 interface f0/0.3 encap dot1q 3 ip
8、 add 211.68.3.1 255.255.255.0,单臂路由实例,3550-1 vlan database vtp server vtp domain bit vtp password cisco vlan 2 name Tea vlan 3 name Stu int f0/1 switchport mode access switchport access vlan 2,单臂路由实例,3550-1 int f0/2 switchport mode access switchport access vlan 3 int f0/12 switchport mode trunk switc
9、hport trunk encap dot1q int f0/12 switchport mode trunk switchport trunk encap dot1q,单臂路由实例,3550-2 int f0/12 switchport mode trunk switchport trunk encap dot1q int f0/1 switchport mode access switchport access vlan 3 int f0/2 switchport mode access switchport access vlan 3,带RSM模块的Catalyst 5500配置实例,拓
10、朴 Cat 1:原Vlan 1,改为Vlan 2VLAN Vlan 1:172.16.100.0 Vlan 2:172.16.120.0,带RSM模块的Catalyst 5500配置实例,Cat 1 show running显示现有配置,地址172.16.100.51 ping 172.16.100.52(Cat2的地址) 修改sc0的地址为172.16.120.4show module session :进入RSM模块 exit port:返回到Cat 1,带RSM模块的Catalyst 5500配置实例,RSM interface Vlan 1 ip address 172.16.100.100 255.255.255.0 no shutinterface Vlan 2 ip address 172.16.120.100 255.255.255.0 no shut,带RSM模块的Catalyst 5500配置实例,Cat1 show ip route clear ip route all set ip route 0.0.0.0 172.16.120.100 ping 172.16.100.52,
