当前位置:文档之家 › S12500配置案例_带备注讲解

S12500配置案例_带备注讲解

  • 格式:pdf
  • 大小:174.12 KB
  • 文档页数:30

下载文档原格式

  / 30

合集下载

10-可靠性配置举例-H3C_S12500_VRRP典型配置举例

10-可靠性配置举例-H3C_S12500_VRRP典型配置举例

H3C S12500 VRRP典型配置举例Copyright © 2014 杭州华三通信技术有限公司版权所有,保留一切权利。

非经本公司书面许可,任何单位和个人不得擅自摘抄、复制本文档内容的部分或全部,并不得以任何形式传播。

本文档中的信息可能变动,恕不另行通知。

目录1 简介 (1)2 配置前提 (1)3 VRRP单备份组配置举例 (1)3.1 组网需求 (1)3.2 配置思路 (2)3.3 使用版本 (2)3.4 配置注意事项 (2)3.5 配置步骤 (2)3.6 验证配置 (4)3.7 配置文件 (5)4 VRRP多备份组配置举例 (6)4.1 组网需求 (6)4.2 配置思路 (7)4.3 使用版本 (7)4.4 配置注意事项 (8)4.5 配置步骤 (8)4.6 验证配置 (11)4.7 配置文件 (14)5 VRRP负载均衡模式配置举例 (16)5.1 组网需求 (16)5.2 配置思路 (17)5.3 使用版本 (17)5.4 配置注意事项 (17)5.5 配置步骤 (18)5.5.1 Device A的配置 (18)5.5.2 Device B的配置 (19)5.5.3 Device C的配置 (20)5.5.4 验证配置 (21)5.5.5 配置文件 (27)6 相关资料 (28)1 简介本文档介绍VRRP的配置举例。

2 配置前提本文档不严格与具体软、硬件版本对应,如果使用过程中与产品实际情况有差异,请参考相关产品手册,或以设备实际情况为准。

本文档中的配置均是在实验室环境下进行的配置和验证,配置前设备的所有参数均采用出厂时的缺省配置。

如果您已经对设备进行了配置,为了保证配置效果,请确认现有配置和以下举例中的配置不冲突。

本文档假设您已了解VRRP、STP和IPsec特性。

3 VRRP单备份组配置举例3.1 组网需求如图1所示,Host A所在网络的出口处部署了两台网关设备。

现要求使用VRRP主备备份功能,将这两台设备组成一台虚拟路由器,作为Host A的缺省网关。

H3C S12500新一代核心交换机

H3C S12500新一代核心交换机
节 A 点
Port0 R Port1 R Port2 R
•多个交换平面构成一个统一的交换网 多个交换平面构成一个统一的交换网 •真正的无阻塞交换 真正的无阻塞交换 •多级交换网,理论上容量可无限扩展 多级交换网, 多级交换网 •可以平滑扩展支持40G, 100G端口 可以平滑扩展支持40G, 100G端口 可以平滑扩展支持

11
S12500- S12500-业界最高端核心交换机
产品简介: 产品简介: H3C S12500是H3C公司面向下一代数据中心设计的核 心交换产品,采用先进的CLOS多级矩阵交换架构和转 发机制,提供持续带宽升级能力。支持未来40GE和 100GE以太网标准。 产品定位: 产品定位: 数据中心,高性能计算,大企业的核心, 面向高密度万兆、和超高密度千兆的应用 产品形态: 产品形态: S12508(8个业务槽),S12518(18个业务槽) 每槽位可以支持48口千兆(光/电),4/8/32口万兆

8
H3C统一交换架构数据中心的演进策略 统一交换架构数据中心的演进策略
传统DC技术特点: 传统 技术特点: 技术特点 万兆交换平台 三网分离 LAN FC SAN Infiniband 设备内集中式缓存 弹性架构1.0 弹性架构 接入设备 产品组合 9500/S75E 5600/5500
1
数据业务爆炸性增长
18 目前每18个月 的数据量就相 当于原有数据 的总和,数据 量正呈献爆炸 式提升
300 互联网的英文 网页数达到 300多亿,中 文网页数达到 100~150亿
200 Google目前 收录近200亿 英文网页;百 度的中文 待解决的问题 有1000万
电源出风口
电源进线模块 机箱出风口 风扇框

S12500 IPv6地址配置举例

S12500 IPv6地址配置举例
3.4.1 Switch A的配置··························································································································2 3.4.2 Switch B的配置··························································································································3 3.4.3 Host的配置 ································································································································ 3 3.5 验证配置 ··············································································································································· 4 3.6 配置文件 ··············································································································································· 6 4 相关资料 ··············································································································································· 7

S12500配置案例_带备注讲解

S12500配置案例_带备注讲解

# policy-based-route ram_rp_v2131 permit node 100
if-match acl 2001 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2132 permit node 5 if-match acl 3101 # policy-based-route ram_rp_v2132 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2132 permit node 100 if-match acl 2003 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2133 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2133 permit node 100 if-match acl 2004 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2134 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2134 permit node 100 if-match acl 2005 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2135 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2135 permit node 100 if-match acl 2006 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2136 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2136 permit node 100 if-match acl 2007 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2137 permit node 10

S12500 MDC典型配置举例

S12500 MDC典型配置举例

H3C S12500 MDC配置举例Copyright © 2013 杭州华三通信技术有限公司版权所有,保留一切权利。

非经本公司书面许可,任何单位和个人不得擅自摘抄、复制本文档内容的部分或全部,并不得以任何形式传播。

本文档中的信息可能变动,恕不另行通知。

目录1 简介 (1)2 配置前提 (1)3 使用限制 (1)4 MDC配置举例(独立运行模式) (1)4.1 组网需求 (1)4.2 使用版本 (2)4.3 配置注意事项 (2)4.4 配置步骤 (3)4.5 验证配置 (6)4.6 配置文件 (8)5 MDC配置举例(IRF模式) (10)5.1 组网需求 (10)5.2 配置思路 (11)5.3 使用版本 (12)5.4 配置注意事项 (12)5.5 配置步骤 (14)5.6 验证配置 (18)5.7 配置文件 (21)6 相关资料 (24)1 简介本文介绍了将S12500设备划分为多个MDC的典型配置举例。

MDC(Multitenant Devices Context,多租户设备环境)是H3C自主研发的网络设备虚拟化技术,可以实现将一台物理设备划分为多台逻辑设备,每台逻辑设备就称为一台MDC。

每台MDC拥有自己专属的软硬件资源,独立运行,独立转发。

对于用户来说,每台MDC就是一台独立的设备。

2 配置前提本文档中的配置均是在实验室环境下进行的配置和验证,配置前设备的所有参数均采用出厂时的缺省配置。

如果您已经对设备进行了配置,为了保证配置效果,请确认现有配置和以下举例中的配置不冲突。

本文假设您已了解MDC特性。

3 使用限制•仅内存为4GB的主控板支持创建MDC。

•设备配置IRF增强功能(IRF中最多可以支持4台成员设备)后,不能再创建MDC;设备创建MDC后,也不能再配置IRF增强功能。

4 MDC配置举例(独立运行模式)4.1 组网需求如图1所示,某公司将S12500设备分配给三个部门:信息技术部、财务部和市场部共同使用。

06 S12500最佳实践配置V1.3

06 S12500最佳实践配置V1.3


9
S12500业务板概述
S12500业务板命名的含义:
LSTM1XP8LEC1
A B C D E F G
LSTM1 – S12500单板模块前缀,LST1为成品板前缀 第A位 – “X”表示是10GE接口,”G”表示是GE接口 第B位 – “P”表示是光接口,“T”表示是电接口 第C位数字 – 表示端口数量,可能是一位或2位数字 第D位 – “L”表示端口线速无收敛比,R表示有收敛比 第E位 – “E”表示采用特定的包处理芯片 第F位 – “B”表示标准型规格,“C”表示增强型规格 第G位 – 用于区分OEM品牌标识,“1”表示H3C品牌 EC增强型规格单板比EB标准型规格单板具有更大的规格容量,ARP,MAC, IPV6,组播,L3 MPLS VPN,ACL等都有较大提升。 EC增强型规格单板支持L2 MPLS VPN,EB标准型规格单板不支持,但同时都 支持L3 MPLS VPN功能。

10
使能IPv6 ACL功能配臵

增强型单板(EC类单板)若要支持IPv6 ACL,需要使能 后才能使用;

在系统模式下配臵:
[S12500]acl ipv6 enable

标准型单板(EB类单板)无需配臵,默认支持IPv4自定 义ACL和IPv6 ACL; 用户如需将两台设备配臵成IRF,那么这两台设备的IPv6 acl配臵必须一致。

端口组删除后,组内成员配臵不会改变。

15
用户登录权限控制

配臵ACL,控制VTY用户界面访问权限,提高设备 管理的安全性; 推荐使用HWTACACS服务器对登录用户进行认证、 授权,计费;


HWTACACS服务器故障,可以采用本地帐号进行 设备管理。

H3C S12500R-48Y8C 交换路由器硬件描述说明书

H3C S12500R-48Y8C交换路由器硬件描述新华三技术有限公司资料版本:6W100-20230315Copyright © 2023 新华三技术有限公司及其许可者版权所有,保留一切权利。

未经本公司书面许可,任何单位和个人不得擅自摘抄、复制本书内容的部分或全部,并不得以任何形式传播。

除新华三技术有限公司的商标外,本手册中出现的其它公司的商标、产品标识及商品名称,由各自权利人拥有。

由于产品版本升级或其他原因,本手册内容有可能变更。

H3C保留在没有任何通知或者提示的情况下对本手册的内容进行修改的权利。

本手册仅作为使用指导,H3C尽全力在本手册中提供准确的信息,但是H3C并不确保手册内容完全没有错误,本手册中的所有陈述、信息和建议也不构成任何明示或暗示的担保。

1.1 环境保护本产品符合关于环境保护方面的设计要求,产品的存放、使用和弃置应遵照相关国家法律、法规要求进行。

前言H3C S12500R-48Y8C交换路由器硬件描述介绍了S12500R-48Y8C交换路由器的产品外观、产品型号及系统特征、可插拔部件及适配情况、产品指示灯以及散热系统等内容。

前言部分包含如下内容:•读者对象•本书约定•资料意见反馈1.1 读者对象本手册主要适用于如下工程师:•网络规划人员•现场技术支持与维护人员•负责网络配置和维护的网络管理员1.2 本书约定1. 命令行格式约定格式意义粗体命令行关键字(命令中保持不变、必须照输的部分)采用加粗字体表示。

斜体命令行参数(命令中必须由实际值进行替代的部分)采用斜体表示。

[ ] 表示用“[ ]”括起来的部分在命令配置时是可选的。

{ x | y | ... }表示从多个选项中仅选取一个。

[ x | y | ... ]表示从多个选项中选取一个或者不选。

{ x | y | ... } *表示从多个选项中至少选取一个。

[ x | y | ... ] *表示从多个选项中选取一个、多个或者不选。

华三官网_S12500系列VLAN配置

目录
1 VLAN ················································································································································· 1-1 1.1 VLAN简介··········································································································································1-1 1.1.1 VLAN概述 ·······························································································································1-1 1.1.2 VLAN原理 ·······························································································································1-2 1.1.3 VLAN划分 ·······························································································································1-3 1.1.4 协议规范 ·································································································································1-3 1.2 配置VLAN基本属性 ···························································································································1-3 1.3 配置VLAN接口基本属性····················································································································1-4 1.3.1 VLAN接口简介························································································································1-4 1.3.2 配置VLAN接口基本属性 ·········································································································1-4 1.3.3 VLAN接口配置举例·················································································································1-5 1.4 配置基于端口的VLAN ·······················································································································1-6 1.4.1 基于端口的VLAN简介 ·············································································································1-6 1.4.2 配置基于Access端口的VLAN ·································································································1-8 1.4.3 配置基于Trunk端口的VLAN····································································································1-9 1.4.4 配置基于Hybrid端口的VLAN ································································································1-10 1.4.5 基于端口的VLAN典型配置举例 ····························································································1-11 1.5 配置基于MAC的VLAN·····················································································································1-13 1.5.1 基于MAC的VLAN简介 ··········································································································1-13 1.5.2 配置基于MAC的VLAN ··········································································································1-14 1.5.3 基于MAC的VLAN典型配置举例····························································································1-15 1.6 基于协议的VLAN配置 ·······················································································································1-1 1.6.1 基于协议的VLAN简介 ·············································································································1-1 1.6.2 配置基于协议的VLAN·············································································································1-1 1.6.3 基于协议的VLAN典型配置举例 ······························································································1-2 1.7 配置基于IP子网的VLAN ···················································································································1-5 1.7.1 基于IP子网的VLAN简介·········································································································1-5 1.7.2 配置基于IP子网的VLAN ·········································································································1-5 1.7.3 基于IP子网的VLAN典型配置举例 ···························································································1-7 1.8 VLAN显示和维护·······························································································································1-9

华三官网_S12500系列QinQ配置


表1-2 QinQ 配置任务简介
配置任务
配置基本QinQ功能
配置灵活QinQ功能
配置添加外层VLAN Tag的策略 配置内外层VLAN Tag中802.1p优先级的映射关系
配置VLAN Tag的TPID值
说明 必选 两者至少选其一 可选
详细配置 1.3 1.4.1 1.4.2 1.5
1.1.3 QinQ的报文结构
如 图 1-2 所示,QinQ报文在运营商网络中传输时带有双层VLAN Tag: • 内层 VLAN Tag:为用户的私网 VLAN Tag,对应图中的 Customer VLAN Tag;。依靠该 Tag
在私网中传送 QinQ 报文。 • 外层 VLAN Tag:为运营商分配给用户的公网 VLAN Tag,对应图中的 Service VLAN Tag。依
1.1.4 QinQ的实现方式
QinQ 的实现方式可分为以下两种: 1. 基本QinQ 基本 QinQ 是基于端口方式实现的。当端口上配置了基本 QinQ 功能后,不论从该端口收到报文是 否带有 VLAN Tag,设备都会为该报文打上本端口缺省 VLAN 的 Tag: • 如果收到的是带有 VLAN Tag 的报文,该报文就成为带双 Tag 的报文; • 如果收到的是不带 VLAN Tag 的报文,该报文就成为带有本端口缺省 VLAN Tag 的报文。 2. 灵活QinQ 灵活 QinQ 是基于端口与 VLAN 相结合的方式实现的,它对 QinQ 的功能进行了扩展,是对 QinQ 的一种更灵活的实现。灵活 QinQ 除了能实现所有基本 QinQ 的功能外,对于从同一个端口收到的 报文,还可以根据 VLAN 的不同进行不同的操作,包括: • 为匹配流分类的报文添加外层 VLAN Tag。 • 根据报文内层 VLAN 的 802.1p 优先级标记外层 VLAN 的 802.1p 优先级。 通过使用灵活 QinQ 技术,在能够隔离运营商网络和用户网络的同时,又能够提供丰富的业务特性 和更加灵活的组网能力。

H3C S9500ES12500系列交换机上ACGIPS插卡MQC引流典型配置

H3C S9500E&S12500系列交换机上ACG&IPS插卡MQC引流典型配置一、组网需求:某客户购买了两块SecBlade IPS插卡部署在S95E交换机上,为内网提供攻击检测和安全防护,两台交换机运行在IRF模式,外网用户访问服务器的流量经过IPS插卡,内部服务器互访的流量不上IPS插卡,并且两块插卡能实现主备,当其中一块插卡故障以后业务可以迅速切换到另一块插卡。

二、组网图:如上图所示:两台S9505E交换机堆叠,每台交换机上插一块IPS插卡,内部服务器网关部署在交换机上,服务器互访的流量不经过IPS插卡,外部用户防范服务器的流量正常情况下经过IPS-1,当IPS-1故障以后,流量经过IPS-2。

交换机版本:Comware Software, Version 5.20, Release 1238P08IPS插卡版本:i-Ware software, Version 1.10, Ess 2110P10三、配置步骤:交换机上关键配置:#acsei server enable //通过acsei协议对插卡进行时间同步和状态检测,实现主备切换#acl number 3001 //匹配上插卡的流量description Match-ALL-Addressrule 0 permit ipacl number 3002 //匹配上插卡的流量,用于备份description Match-ALL-Addressrule 0 permit ipacl number 3004 //内网互访的流量不上插卡description Match-Internal-Flowrule 0 permit ip destination 192.168.14.0 0.0.0.255rule 5 permit ip destination 192.168.15.0 0.0.0.255rule 10 permit ip destination 192.168.16.0 0.0.0.255rule 15 permit ip destination 192.168.17.0 0.0.0.255rule 20 permit ip destination 192.168.18.0 0.0.0.255#acl number 4000 //匹配广播、组播和ARP报文description Match-Multicast-Broadcast-ARPrule 0 permit dest-mac 0100-0000-0000 ff00-0000-0000rule 5 permit dest-mac ffff-ffff-ffff ffff-ffff-ffffrule 10 permit type 0806 ffff#vlan 1001 to 1008#vlan 4000 //用于IRF的BFD MAD检测description Mad-Detection#traffic classifier Internal-Flow-1 operator andif-match acl 3004traffic classifier Multicast-Broadcast-ARP operator andif-match acl 4000traffic classifier All-Address-1 operator andif-match acl 3001if-match forwarding-layer route //仅将三层转发流量引流traffic classifier All-Address-2 operator andif-match acl 3002if-match forwarding-layer route#traffic behavior Deny-Multicast-Broadcast-ARPfilter denytraffic behavior Redirect-To-IPS-1redirect interface Ten-GigabitEthernet1/4/0/1traffic behavior Redirect-To-IPS-2redirect interface Ten-GigabitEthernet2/4/0/1traffic behavior Allowfilter permit#qos policy Deny-Multicast-Broadcast-ARP //本地产生的组播、广播和ARP报文不上插卡classifier Multicast-Broadcast-ARP behavior Deny-Multicast-Broadcast-ARPqos policy DOWN_STREAMclassifier Multicast-Broadcast-ARP behavior Allow //广播等报文不上插卡classifier All-Address-1 behavior Redirect-To-IPS-1 //流量先上IPS-1classifier All-Address-2 behavior Redirect-To-IPS-2 //IPS-1故障后上IPS-2qos policy UP_STREAMclassifier Multicast-Broadcast-ARP behavior Allowclassifier Internal-Flow-1 behavior Allow //内网互访流量不上插卡classifier All-Address-1 behavior Redirect-To-IPS-1classifier All-Address-2 behavior Redirect-To-IPS-2#interface Vlan-interface1001ip address 192.168.11.254 255.255.255.0#interface Vlan-interface1002ip address 192.168.12.254 255.255.255.0#interface Vlan-interface1004ip address 192.168.14.254 255.255.255.0#interface Vlan-interface1005ip address 192.168.15.254 255.255.255.0#interface Vlan-interface1006ip address 192.168.16.254 255.255.255.0#interface Vlan-interface1007ip address 192.168.17.254 255.255.255.0#interface Vlan-interface1008ip address 192.168.18.254 255.255.255.0#interface Vlan-interface4000 //BFD MAD检测VLANmad bfd enablemad ip address 200.0.0.1 255.255.255.252 chassis 1mad ip address 200.0.0.2 255.255.255.252 chassis 2#interface GigabitEthernet1/2/0/17 //专用于MAD检测的端口,关闭STPport access vlan 4000stp disable#interface GigabitEthernet2/2/0/17port access vlan 4000stp disable#接口上下发MQC:#interface GigabitEthernet1/2/0/1port access vlan 1004qos apply policy UP_STREAM inbound#interface GigabitEthernet1/2/0/2port access vlan 1001qos apply policy DOWN_STREAM inbound#interface GigabitEthernet2/2/0/1port access vlan 1008qos apply policy UP_STREAM inbound#interface GigabitEthernet2/2/0/2port access vlan 1002qos apply policy DOWN_STREAM inbound#S95E与IPS插卡接口配置:#interface Ten-GigabitEthernet1/4/0/1port link-type trunkport trunk permit vlan 1 1001 to 1008 //必须允许VLAN 1通过,否则跨框重定向报文不生效stp disableqos apply policy Deny-Multicast-Broadcast-ARP inbound //防止本地产生的组播、广播、ARP报文从内敛口转发到插卡,S95E&S12500对于本机发出的协议报文,用MQC在outbound方向不能过滤,会导致环路,ospf邻居down等问题,所以需要在inbound方向过滤mac-address max-mac-count 0#interface Ten-GigabitEthernet2/4/0/1port link-type trunkport trunk permit vlan 1 1001 to 1008stp disableqos apply policy Deny-Multicast-Broadcast-ARP inboundmac-address max-mac-count 0#acsei server //配置acsei时间参数,一般保持默认即可acsei timer clock-sync 1 //配置插卡同步时间的间隔,单位分钟,默认5分钟acsei timer monitor 1 //配置对插卡的监控时间间隔,单位是秒,默认5秒#irf-port 1/1port group interface GigabitEthernet1/2/0/15port group interface GigabitEthernet1/2/0/16#irf-port 2/2port group interface GigabitEthernet2/2/0/15port group interface GigabitEthernet2/2/0/16#IPS插卡相关配置(两快IPS插卡的配置一样):1.去使能OAA ACFP Client。

  1. 1、下载文档前请自行甄别文档内容的完整性,平台不提供额外的编辑、内容补充、找答案等附加服务。
  2. 2、"仅部分预览"的文档,不可在线预览部分如存在完整性等问题,可反馈申请退款(可完整预览的文档不适用该条件!)。
  3. 3、如文档侵犯您的权益,请联系客服反馈,我们会尽快为您处理(人工客服工作时间:9:00-18:30)。

# policy-based-route ram_rp_v2131 permit node 100
if-match acl 2001 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2132 permit node 5 if-match acl 3101 # policy-based-route ram_rp_v2132 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2132 permit node 100 if-match acl 2003 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2133 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2133 permit node 100 if-match acl 2004 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2134 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2134 permit node 100 if-match acl 2005 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2135 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2135 permit node 100 if-match acl 2006 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2136 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2136 permit node 100 if-match acl 2007 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2137 permit node 10
if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2137 permit node 100 if-match acl 2008 apply next-hop **.**.1.132 # policy-based-route ram_rp_v2138 permit node 10 if-match acl 3000 apply next-hop **.**.1.2 # policy-based-route ram_rp_v2138 permit node 100 if-match acl 2009 apply next-hop **.**.1.132 # nqa entry imclinktopologypleaseignore ping type icmp-echo destination ip **.**.1.254 frequency 270000 # nqa schedule imclinktopologypleaseignore ping start-time now lifetime 630720000 # interface Bridge-Aggregation2 description TO-园区 port link-type trunk undo port trunk permit vlan 1 port trunk permit vlan 2002 undo stp enable # interface Bridge-Aggregation3 description TO-数据一区 S68 port link-type trunk undo port trunk permit vlan 1 port trunk permit vlan 2010 to 2011 2101 to 2161 2402 4001 link-aggregation mode dynamic # interface NULL0 # interface Vlan-interface2001 description TO-防火墙 ip address **.**.1.129 255.255.255.128 # interface Vlan-interface2002 description TO-园区 ip address **.**.1.26 255.255.255.248 # interface Vlan-interface2010 description 管理 ip address **.**.2.254 255.255.255.0
# interface Vlan-interface2011
description TO-数据一区 ip address **.**.1.1 255.255.255.248 # interface Vlan-interface2131 ip address **.254.1.254 255.255.255.0 ip policy-based-route ram_rp_v2131 # interface Vlan-interface2132 ip address **.254.2.254 255.255.255.0 ip policy-based-route ram_rp_v2132 # interface Vlan-interface2133 ip address **.254.3.254 255.255.255.0 ip policy-based-route ram_rp_v2133 # interface Vlan-interface2134 ip address **.254.4.126 255.255.255.128 ip policy-based-route ram_rp_v2134 # interface Vlan-interface2135 ip address **.254.4.254 255.255.255.128 ip policy-based-route ram_rp_v2135 # interface Vlan-interface2136 ip address **.254.5.126 255.255.255.128 ip policy-based-route ram_rp_v2136 # interface Vlan-interface2137 ip address **.254.5.254 255.255.255.128 ip policy-based-route ram_rp_v2137 # interface Vlan-interface2138 ip address **.254.6.254 255.255.255.0 ip policy-based-route ram_rp_v2138 # interface Vlan-interface4000 description 无线 ip address **.**.100.254 255.255.255.0 # interface Vlan-interface4094 description BFD mad bfd enable mad ip address **.**.255.129 255.255.255.252 member 1 mad ip address **.**.255.130 255.255.255.252 member 2 # interface GigabitEthernet1/0/0/1 port link-mode bridge
name Vlan2138 ቤተ መጻሕፍቲ ባይዱ vlan 4000
description 无线 # vlan 4094
description BFD # irf-port 1/2
port group mdc 1 interface Ten-GigabitEthernet1/2/0/47 mode enhanced port group mdc 1 interface Ten-GigabitEthernet1/2/0/48 mode enhanced # irf-port 2/1 port group mdc 1 interface Ten-GigabitEthernet2/2/0/47 mode enhanced port group mdc 1 interface Ten-GigabitEthernet2/2/0/48 mode enhanced # stp instance 0 root primary stp global enable # dhcp server ip-pool 4000 gateway-list **.**.100.254 network **.**.100.0 mask 255.255.255.0 dns-list 219.146.1.66 202.102.152.3 8.8.8.8 # policy-based-route ram_rp_v2131 permit node 5 if-match acl 3100 # policy-based-route ram_rp_v2131 permit node 10 if-match acl 3000 apply next-hop **.**.1.2
[Core_S12504]disp cu #
version 7.1.045, Release 1135 # mdc Admin id 1 #
sysname Core_S12504 #