三层交换机s5500-28P:vlan1port1-2 192.168.0.1管理用 vlan2port 3-12192.168.30.1服务器用 vlan3port13-22192.168.20.1计算机用 vlan4port23-24192.168.10.1路由防火墙用 二层交换机s5120-52P作为接入层连电脑,port48上联三层交换机的port22口.
port1-2还是作为管理用可以WEB登陆到交换机.
请教各位大侠如何配置这两台交换机,给出详细步骤.
答案 三层交换机s5500-28P: sys !
建立管理用户 local-user admin pass ci admin level 3 service tel !
建立需要的VLAN
vlan1 desmanage port e1/0/1 to e1/0/2 vlan2 desserver port e1/0/3 to e1/0/12 vlan3 des pc porte1/0/13to e1/0/22 vlan4 desroute_link porteq/0/23toe1/0/24 intevlan-inte1 ip add 192.168.0.1 255.255.255.0 undo sh
inte vlan-inte 2 ip add 192.168.30.1 255.255.255.0 undo sh intevlan-inte3 ip add 192.168.20.1 255.255.255.0 undo sh inte vlan-inte 4 ip add 192.168.10.1 255.255.255.0 undo sh inte e1/0/22 port link-type trunk port trunk permit vlan all ip route-static 0.0.0.0 0.0.0.0x.x.x.x(Router的IP地址) dhcp server ip-pool1 network 192.168.30.0 mask 255.255.255.0
gateway-list 192.168.30.1 dns-list 61.177.7.1 221.228.255.1 ( DNS 的 IP ) dhcp server ip-pool 2 network 192.168.20.0 mask255.255.255.0 gateway-list 192.168.20.1 dns-list 61.177.7.1 221.228.255.1 ( DNS 的 IP ) dhcp server ip-pool 3 network 192.168.10.0 mask 255.255.255.0 gateway-list 192.168.10.1 dns-list 61.177.7.1 221.228.255.1 ( DNS 的 IP ) !
禁止DHCP不分配以下地址 dhcp server forbidden-ip 192.168.10.1 dhcp server forbidden-ip 192.168.20.1 dhcp server forbidden-ip 192.168.30.1 !VTY线路启用认证
user-interface vty 0 4 authentication-modescheme 二层交换机s5120-52P !
建立管理用户 local admin pass ci admin level 3 service tel !
建立VLAN vlan1 porte1/0/1toe1/0/2 vlan 2 vlan 3 vlan 4 inte e1/0/48
