三层交换机s5500-28P:vlan1 port 1-2 192.168.0.1 管理用
vlan2 port 3-12 192.168.30.1 服务器用
vlan3 port 13-22 192.168.20.1 计算机用
vlan4 port 23-24 192.168.10.1 路由防火墙用
二层交换机s5120-52P作为接入层连电脑,port48上联三层交换机的port22口。port1-2还是作为管理用可以WEB登陆到交换机。
请教各位大侠如何配置这两台交换机,给出详细步骤。
最佳答案 ( 回答者: wwwcxxlove )
三层交换机s5500-28P:
sys
!建立管理用户
local-user admin
pass ci admin
level 3
service tel
!建立需要的VLAN
vlan 1
des manage
port e1/0/1 to e1/0/2
vlan 2
des server
port e1/0/3 to e1/0/12
vlan 3
des pc
port e1/0/13 to e1/0/22
vlan 4
des route_link
port eq/0/23 to e1/0/24
inte vlan-inte 1
ip add 192.168.0.1 255.255.255.0
undo sh
inte vlan-inte 2
ip add 192.168.30.1 255.255.255.0
undo sh
inte vlan-inte 3
ip add 192.168.20.1 255.255.255.0
undo sh
inte vlan-inte 4
ip add 192.168.10.1 255.255.255.0
undo sh
inte e1/0/22
port link-type trunk
port trunk permit vlan all
ip route-static 0.0.0.0 0.0.0.0 x.x.x.x(Router的IP地址)
dhcp server ip-pool 1
network 192.168.30.0 mask 255.255.255.0
gateway-list 192.168.30.1
dns-list 61.177.7.1 221.228.255.1(DNS的IP)
dhcp server ip-pool 2
network 192.168.20.0 mask 255.255.255.0
gateway-list 192.168.20.1
dns-list 61.177.7.1 221.228.255.1(DNS的IP)
dhcp server ip-pool 3
network 192.168.10.0 mask 255.255.255.0
gateway-list 192.168.10.1
dns-list 61.177.7.1 221.228.255.1(DNS的IP)
!禁止DHCP不分配以下地址
dhcp server forbidden-ip 192.168.10.1
dhcp server forbidden-ip 192.168.20.1
dhcp server forbidden-ip 192.168.30.1
!VTY线路启用认证
user-interface vty 0 4
authentication-mode scheme
二层交换机s5120-52P
!建立管理用户
local admin
pass ci admin
level 3
service tel
!建立VLAN
vlan 1
port e1/0/1 to e1/0/2
vlan 2
vlan 3
vlan 4
inte e1/0/48
port link-type trunk
port trunk permit vlan all
inte vlan-inte 1
ip add 192.168.0.2 255.255.255.0
undo sh
ip route-static 0.0.0.0 0.0.0.0 192