一.实验拓扑
二.实验需求
1.R6为ISP,接口IP地址均为公有地址,该设备只能配置IP地址,之后不能再对其进行任何配置
2.R1-R5为局域网,私有IP地址192.168.1.0,请合理分配
3.R1、R2、R4各有两个环回IP地址,R5、R6各有一个环回地址,所有路由器上的环回均代表连接客户的接口
4.R3下面的两台PC通过OHCP自动获取IP地址
5.选路最佳,路由表尽量小,避免环路
6.R1-R5均可以访问R6环回
7.在R1上配置telnet服务,使R6能通过R5的公有地址telnet到R1上
8.R4与R5正常通过1000M链路,故障时通过100M链路
三.实验分析、思路、步骤及操作
1.配置IP地址
(1)配置R1的IP地址
[R1-GigabitEthernet0/0/0]ip address 192.168.1.1 30
[R1-GigabitEthernet0/0/1]ip address 192.168.1.5 30
[R1-LoopBack0]ip address 192.168.1.33 28
[R1-LoopBack1]ip address 192.168.1.49 28
(2)配置R2的IP地址
[R2-GigabitEthernet0/0/0]ip address 192.168.1.2 30
[R2-GigabitEthernet0/0/1]ip address 192.168.1.9 30
[R2-LoopBack0]ip address 192.168.1.65 28
[R2-LoopBack1]ip address 192.168.1.81 28
(3)配置R3的IP地址
[R3-GigabitEthernet0/0/0]ip address 192.168.1.6 30
[R3-GigabitEthernet0/0/1]ip address 192.168.1.13 30
[R3-GigabitEthernet0/0/2]ip address 192.168.1.97 27
(4)配置R4的IP地址
[R4-GigabitEthernet0/0/0]ip address 192.168.1.10 30
[R4-GigabitEthernet0/0/1]ip address 192.168.1.14 30
[R4-GigabitEthernet0/0/2]ip address 192.168.1.17 30
[R4-GigabitEthernet4/0/0]ip address 192.168.1.21 30
[R4-LoopBack0]ip address 192.168.1.129 28
[R4-LoopBack1]ip address 192.168.1.145 28
(5)配置R5的IP地址
[R5-GigabitEthernet0/0/0]ip address 192.168.1.18 30
[R5-GigabitEthernet0/0/1]ip address 12.0.0.1 24
[R5-GigabitEthernet0/0/2]ip address 192.168.1.22 30
[R5-LoopBack0]ip address 192.168.1.161 27
(6)配置R6的IP地址
[R6-GigabitEthernet0/0/0]ip address 12.0.0.2 24
[R6-LoopBack0]ip address 1.1.1.1 24
2.配置DHCP协议,使R3下的两台PC能自动获取IP地址
(1)配置地址池
[R3]dhcp enable
[R3]ip pool aa
[R3-ip-pool-aa]network 192.168.1.96 mask 27
[R3-ip-pool-aa]gateway-list 192.168.1.97
[R3-ip-pool-aa]dns-list 8.8.8.8
(2)下发网关
[R3-GigabitEthernet0/0/2]dhcp select global
3.配置静态路由,使内网全通
(1)配置R1的静态路由
[R1]ip route-static 192.168.1.64 27 192.168.1.2
[R1]ip route-static 192.168.1.8 30 192.168.1.2
[R1]ip route-static 192.168.1.128 27 192.168.1.2
[R1]ip route-static 192.168.1.128 27 192.168.1.6
[R1]ip route-static 192.168.1.16 30 192.168.1.2
[R1]ip route-static 192.168.1.16 30 192.168.1.6
[R1]ip route-static 192.168.1.160 27 192.168.1.2
[R1]ip route-static 192.168.1.160 27 192.168.1.6
[R1]ip route-static 192.168.1.20 30 192.168.1.2
[R1]ip route-static 192.168.1.20 30 192.168.1.6
[R1]ip route-static 192.168.1.12 30 192.168.1.6
[R1]ip route-static 192.168.1.96 27 192.168.1.6
(2)配置R2的静态路由
[R2]ip route-static 192.168.1.128 27 192.168.1.10
[R2]ip route-static 192.168.1.16 30 192.168.1.10
[R2]ip route-static 192.168.1.160 27 192.168.1.10
[R2]ip route-static 192.168.1.20 30 192.168.1.10
[R2]ip route-static 192.168.1.12 30 192.168.1.10
[R2]ip route-static 192.168.1.96 27 192.168.1.10
[R2]ip route-static 192.168.1.96 27 192.168.1.1
[R2]ip route-static 192.168.1.4 30 192.168.1.1
[R2]ip route-static 192.168.1.32 27 192.168.1.1
(3)配置R3的静态路由
[R3]ip route-static 192.168.1.32 27 192.168.1.5
[R3]ip route-static 192.168.1.0 30 192.168.1.5
[R3]ip route-static 192.168.1.64 27 192.168.1.5
[R3]ip route-static 192.168.1.64 27 192.168.1.14
[R3]ip route-static 192.168.1.8 30 192.168.1.14
[R3]ip route-static 192.168.1.128 27 192.168.1.14
[R3]ip route-static 192.168.1.16 30 192.168.1.14
[R3]ip route-static 192.168.1.160 27 192.168.1.14
[R3]ip route-static 192.168.1.20 30 192.168.1.14
(4)配置R4的静态路由
[R4]ip route-static 192.168.1.96 27 192.168.1.13
[R4]ip route-static 192.168.1.4 30 192.168.1.13
[R4]ip route-static 192.168.1.32 27 192.168.1.13
[R4]ip route-static 192.168.1.32 27 192.168.1.9
[R4]ip route-static 192.168.1.0 30 192.168.1.9
[R4]ip route-static 192.168.1.64 27 192.168.1.9
[R4]ip route-static 192.168.1.160 27 192.168.1.18
[R4]ip route-static 192.168.1.160 27 192.168.1.22
(5)配置R5的静态路由
[R5]ip route-static 192.168.1.128 27 192.168.1.17
[R5]ip route-static 192.168.1.128 27 192.168.1.21
[R5]ip route-static 192.168.1.12 30 192.168.1.17
[R5]ip route-static 192.168.1.12 30 192.168.1.21
[R5]ip route-static 192.168.1.96 27 192.168.1.17
[R5]ip route-static 192.168.1.96 27 192.168.1.21
[R5]ip route-static 192.168.1.4 30 192.168.1.17
[R5]ip route-static 192.168.1.4 30 192.168.1.21
[R5]ip route-static 192.168.1.32 27 192.168.1.17
[R5]ip route-static 192.168.1.32 27 192.168.1.21
[R5]ip route-static 192.168.1.0 30 192.168.1.17
[R5]ip route-static 192.168.1.0 30 192.168.1.21
[R5]ip route-static 192.168.1.64 27 192.168.1.17
[R5]ip route-static 192.168.1.64 27 192.168.1.21
[R5]ip route-static 192.168.1.8 30 192.168.1.17
[R5]ip route-static 192.168.1.8 30 192.168.1.21
4.配置防环,避免环路
[R1]ip route-static 192.168.1.32 27 NULL 0
[R2]ip route-static 192.168.1.64 27 NULL 0
[R4]ip route-static 192.168.1.128 27 NULL 0
5.配置静态缺省,使公网全通
[R1]ip route-static 0.0.0.0 0 192.168.1.2
[R1]ip route-static 0.0.0.0 0 192.168.1.6
[R2]ip route-static 0.0.0.0 0 192.168.1.10
[R3]ip route-static 0.0.0.0 0 192.168.1.14
[R4]ip route-static 0.0.0.0 0 192.168.1.18
[R4]ip route-static 0.0.0.0 0 192.168.1.22
[R5]ip route-static 0.0.0.0 0 12.0.0.2
6.配置Easy IP技术,使私网与外网连通
[R5]acl 2000
[R5-acl-basic-2000]rule permit source 192.168.1.0 0.0.0.255
[R5-GigabitEthernet0/0/1]nat outbound 2000
7.在R1上配置远程登录服务器
[R1]telnet sever enable //开启远程登录服务器
[R1]aaa
[R1-aaa]local-user wangdaye password cipher wdy12345 privilege level 15
[R1-aaa]local-user wangdaye service-type telnet
[R1]user-interface vty 0 4
[R1-ui-vty0-4]authentication-mode aaa
8.将远程登录服务器发布到公网上去,使R6能通过公有地址登录到R1上
[R5-GigabitEthernet0/0/1]nat server protocol tcp global current-interface 23 inside 192.168.1.1 23
9.更改百兆电路优先级,使的千兆电路故障时走百兆电路
[R4]ip route-static 0.0.0.0 0 192.168.1.22 preference 66
[R5]ip route-static 192.168.1.128 27 192.168.1.21 preference 66
[R5]ip route-static 192.168.1.12 30 192.168.1.21 preference 66
[R5]ip route-static 192.168.1.96 27 192.168.1.21 preference 66
[R5]ip route-static 192.168.1.4 30 192.168.1.21 preference 66
[R5]ip route-static 192.168.1.32 27 192.168.1.21 preference 66
[R5]ip route-static 192.168.1.0 30 192.168.1.21 preference 66
[R5]ip route-static 192.168.1.64 27 192.168.1.21 preference 66
[R5]ip route-static 192.168.1.8 30 192.168.1.21 preference 66
10.测试
扫一扫
2468
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
