0
0

华为ENSP综合实验:eth-trunk、vlan底层、vrrp负载分担、MSTP、DHCP中继

提示:文章写完后,目录可以自动生成,如何生成可参考右边的帮助文档

文章目录

前言

这个实验我尝试过很多次,在MSTP配置在整个拓扑图出现环路情况,不能正常获取到地址,开始以为是ensp系统bag,但经过多次排查后发现是MSTP配置问题,现在 实验步骤如下:

实验结果:PC1、PC2数据往LSW1走、PC3、PC4数据往LSW2走,当LW1设备g0/0/4断开,则切换到LW2上,PC1、PC2从LSW2路径走,往DHCP获取地址。当LW2设备g0/0/4链路断开,PC3、PC4能从LSW1链路走,往DHCP获取地址,具体配置如下(局域网dhcp服务器配置及负载分担)

1、eth-trunk配置:

  1. LSW1:
  2. sy
  3. un in en  (关闭信息提示)
  4. interface Eth-Trunk1
  5.  port link-type trunk
  6.  port trunk allow-pass vlan 2 to 4094
  7.  trunkport g 0/0/1 to 0/0/3  加入端口
  9. LSW2:
  10. sy
  11. un in en  (关闭信息提示)
  12. interface Eth-Trunk1
  13.  port link-type trunk
  14.  port trunk allow-pass vlan 2 to 4094
  15.  trunkport g 0/0/1 to 0/0/3

2、vlan二层配置:

  1. LSW1:
  2. vlan batch 10 20 30 40 100
  3. int g0/0/4
  4. port link-type access
  5. port default vlan 100
  6. int g0/0/5
  7. port link-t trunk
  8. port trunk allow-p vlan 10 20 
  9. int g0/0/6
  10. port link-t trunk
  11. port trunk allow-p vlan 30 40 
  13. LSW2:
  14. vlan batch 10 20 30 40 101
  15. int g0/0/4
  16. port link-type access
  17. port default vlan 101
  18. int g0/0/5
  19. port link-t trunk
  20. port trunk allow-p vlan 10 20 
  21. int g0/0/6
  22. port link-t trunk
  23. port trunk allow-p vlan 30 40 
  25. JIERU1:
  26. sy
  27. un in en
  28. vlan batch 10 20 30 40 
  29. int g0/0/1
  30. port link-t trunk
  31. port trunk allow-p vlan 10 20 
  32. int g0/0/2
  33. port link-t trunk
  34. port trunk allow-p vlan 10 20 
  35. int g0/0/3
  36. port link-type access
  37. port default vlan 10
  38. int g0/0/4
  39. port link-type access
  40. port default vlan 20
  42. JIERU2:
  43. sy
  44. un in en
  45. vlan batch 10 20 30 40 
  46. int g0/0/1
  47. port link-t trunk
  48. port trunk allow-p vlan 30 40 
  49. int g0/0/2
  50. port link-t trunk
  51. port trunk allow-p vlan 30 40 
  52. int g0/0/3
  53. port link-type access
  54. port default vlan 30
  55. int g0/0/4
  56. port link-type access
  57. port default vlan 40

3、MSTP配置:

  1. LSW1:
  2. stp enable
  3. stp region-configuration
  4.  region-name 1
  5.  instance 1 vlan 10 20
  6.  instance 2 vlan 30 40
  7.  active region-configuration
  8. stp instance 1 root primary  主根桥
  9. stp instance 2 root secondary  备用根桥
  11. LSW2:
  12. stp enable
  13. stp region-configuration
  14.  region-name 1
  15.  instance 1 vlan 10 20
  16.  instance 2 vlan 30 40
  17.  active region-configuration
  18. stp instance 1 root secondary
  19. stp instance 2 root primary
  21. JIERU1:
  22. stp enable
  23. stp region-configuration
  24.  region-name 1
  25.  instance 1 vlan 10 20
  26.  instance 2 vlan 30 40
  27.  active region-configuration
  29. JIERU2:
  30. stp enable
  31. stp region-configuration
  32.  region-name 1
  33.  instance 1 vlan 10 20
  34.  instance 2 vlan 30 40
  35.  active region-configuration

4、虚拟地址及vrrp配置:

  1. LSW1:
  2. interface Vlanif10
  3.  ip address 10.1.1.254 255.255.255.0
  4.  vrrp vrid 1 virtual-ip 10.1.1.1  vrrp虚拟网关
  5.  vrrp vrid 1 priority 120  vrrp优先级(越大越优先)
  6.  vrrp vrid 1 track interface GigabitEthernet0/0/4 reduced 50  端口监视
  7. interface Vlanif20
  8.  ip address 20.1.1.254 255.255.255.0
  9.  vrrp vrid 2 virtual-ip 20.1.1.1
  10.  vrrp vrid 2 priority 120
  11.  vrrp vrid 2 track interface GigabitEthernet0/0/4 reduced 50
  12. interface Vlanif30
  13.  ip address 30.1.1.254 255.255.255.0
  14.  vrrp vrid 3 virtual-ip 30.1.1.1
  15. ip address 40.1.1.254 255.255.255.0
  16.  vrrp vrid 4 virtual-ip 40.1.1.1
  17. int vlanif 100
  18. ip address 100.1.1.1 24
  20. LSW2:
  21. interface Vlanif10
  22.  ip address 10.1.1.253 255.255.255.0
  23.  vrrp vrid 1 virtual-ip 10.1.1.1
  24. interface Vlanif20
  25.  ip address 20.1.1.253 255.255.255.0
  26.  vrrp vrid 2 virtual-ip 20.1.1.1
  27. interface Vlanif30
  28.  ip address 30.1.1.253 255.255.255.0
  29.  vrrp vrid 3 virtual-ip 30.1.1.1
  30.  vrrp vrid 3 priority 120
  31.  vrrp vrid 3 track interface GigabitEthernet0/0/4 reduced 50
  32. interface Vlanif40
  33.  ip address 40.1.1.253 255.255.255.0
  34.  vrrp vrid 4 virtual-ip 40.1.1.1
  35.  vrrp vrid 4 priority 120
  36.  vrrp vrid 4 track interface GigabitEthernet0/0/4 reduced 50
  37. interface vlanif 101
  38. ip address 101.1.1.1 24

5、配置dhcp服务器、dhcp中继、dhcp snooping、静态路由策略:

  1. DHCP服务器:
  2. sy
  3. un in en
  4. sys DHCP
  5. dhcp enable  开启服务
  6. ip pool 10
  7.  gateway-list 10.1.1.1  
  8.  network 10.1.1.0 mask 255.255.255.0 
  9.  excluded-ip-address 10.1.1.253 10.1.1.254 
  10.  dns-list 8.8.8.8 
  11. #
  12. ip pool 20
  13.  gateway-list 20.1.1.1 
  14.  network 20.1.1.0 mask 255.255.255.0 
  15.  excluded-ip-address 20.1.1.253 20.1.1.254 
  16.  dns-list 8.8.8.8 
  17. #
  18. ip pool 30
  19.  gateway-list 30.1.1.1 
  20.  network 30.1.1.0 mask 255.255.255.0 
  21.  excluded-ip-address 30.1.1.253 30.1.1.254 
  22.  dns-list 8.8.8.8 
  23. #
  24. ip pool 40
  25.  gateway-list 40.1.1.1 
  26.  network 40.1.1.0 mask 255.255.255.0 
  27.  excluded-ip-address 40.1.1.253 40.1.1.254 
  28.  dns-list 8.8.8.8 
  30. interface GigabitEthernet0/0/0
  31.  ip address 100.1.1.2 255.255.255.0 
  32.  dhcp select global
  33. #
  34. interface GigabitEthernet0/0/1
  35.  ip address 101.1.1.2 255.255.255.0 
  36.  dhcp select global
  38. interface LoopBack0
  39.  ip address 5.5.5.5 255.255.255.0 
  40. #
  41. ip route-static 10.1.1.0 255.255.255.0 100.1.1.1
  42. ip route-static 10.1.1.0 255.255.255.0 101.1.1.1 preference 70
  43. ip route-static 20.1.1.0 255.255.255.0 100.1.1.1
  44. ip route-static 20.1.1.0 255.255.255.0 101.1.1.1 preference 70
  45. ip route-static 30.1.1.0 255.255.255.0 100.1.1.1 preference 70
  46. ip route-static 30.1.1.0 255.255.255.0 101.1.1.1
  47. ip route-static 40.1.1.0 255.255.255.0 100.1.1.1 preference 70
  48. ip route-static 40.1.1.0 255.255.255.0 101.1.1.1
  50. LSW1中继:
  51. dhcp en
  52. int v 10
  53. dhcp select relay
  54. dhcp relay server-ip 100.1.1.2
  55. int v 20
  56. dhcp select relay
  57. dhcp relay server-ip 100.1.1.2
  58. int v 30
  59. dhcp select relay
  60. dhcp relay server-ip 100.1.1.2
  61. int v 40
  62. dhcp select relay
  63. dhcp relay server-ip 100.1.1.2
  65. ip route-static 0.0.0.0 0 100.1.1.2
  67. LSW2中继:
  68. dhcp en
  69. int v 10
  70. dhcp select relay
  71. dhcp relay server-ip 101.1.1.2
  72. int v 20
  73. dhcp select relay
  74. dhcp relay server-ip 101.1.1.2
  75. int v 30
  76. dhcp select relay
  77. dhcp relay server-ip 101.1.1.2
  78. int v 40
  79. dhcp select relay
  80. dhcp relay server-ip 101.1.1.2
  82. ip route-static 0.0.0.0 0 101.1.1.2
  84. JIERU1 DHCP snooping配置:
  85. dhcp en
  86. dhcp snooping en
  87. vlan 10
  88.  dhcp snooping enable
  89. vlan 20
  90.  dhcp snooping enable
  91. int g/0/1 
  92. dhcp snooping enable
  93. dhcp snooping trusted
  94. int g0/0/2
  95.  dhcp snooping enable
  96.  dhcp snooping trusted
  98. JIERU2 DHCP snooping配置:
  99. dhcp en
  100. dhcp snooping en
  101. vlan 30
  102.  dhcp snooping enable
  103. vlan 40
  104.  dhcp snooping enable
  105. int g/0/1 
  106. dhcp snooping enable
  107. dhcp snooping trusted
  108. int g0/0/2
  109.  dhcp snooping enable
  110.  dhcp snooping trusted

配置完成:查看相关数据:

1、vrrp负载分担情况:

当断开LSW1g0/0/4端口时:

能完成自主切换主备。

当断开LSW2g0/0/4端口时:

也能进行主备切换。

2、查看PC获取地址情况:

均能获取地址,切访问到DHCP 回环网口5.5.5.5 实验完成

总结

这个实验结合了华为多种策略协议,适合做公司、部门内部网络规划,其中在在这个基础上可以添加ACL访问控制禁止部门互访,AC部署无线网络,也可以部署FTP、DNS、www服务器。在这个基础上可以增加多种网络元素,但也有不足之处,即没有做好核心部分下行的网络冗余及聚合链路的多样配置,当核心的下行接口故障,PC端则无法获取到地址,这个我目前还在寻找解决的方法,如有大神知晓,请留言相告,不胜感激。

标签: 华为 网络 网络协议
本文转载自: https://blog.csdn.net/m0_63775189/article/details/127590897
版权归原作者 学海0涯 所有, 如有侵权,请联系我们删除。
登录后发布评论

“华为ENSP综合实验:eth-trunk、vlan底层、vrrp负载分担、MSTP、DHCP中继”的评论:

还没有评论
关于作者
...
overfit同步小助手
文章同步
相关阅读

网络安全法-网络运行安全

使用selenium/drissionpage时如何阻止chrome自动跳转http到https

docker desktop 里部署的Open WebUI 管理员密码忘记了的处理方法

在ubuntu20.04中搭建onsite比赛运行环境

利用开源的低代码表单设计器FcDesigner高效管理和渲染复杂表单结构

Kafka学习笔记

【前端】浏览器输入url到页面呈现发生了什么?

文章导航
前言总结