单个交换机的VLAN的划分

关于单个交换机的VLAN的搭建<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />

一: 实现的目标

1. 了解VLAN的含义及用途。

  VLAN是覆盖面积相对狭小的几台计算机和设备相连的的网络。

   VLAN 可以隔离广播域，实现部分网络的安全。如:销售部和财务部之间划分VLAN可以实现销售部不能直接访问财务部的内部网络，从而实现两个部门的安全性。

   VLAN 方便管理，有利于以后网络拓扑的变化。

2. VLAN的配置

3. VLAN的管理

4. VLAN的应用

 

二．单个交换机划分VLAN拓扑结构

<?xml:namespace prefix = v ns = "urn:schemas-microsoft-com:vml" />

三．实验过程

  1.使用平行线连接交换机和pc。

  2. 配置pc的ip地址

PC                 IP       接口

Pc0            192.168.1.2    fa0/1

Pc1            192.168.1.3    fa0/2

Pc2            192.168.1.4    fa0/3

Pc3            192.168.1.5    fa0/4

Pc4            192.168.1.6    fa0/5

Pc5            192.168.1.7    fa0/6

Pc6            192.168.1.8    fa0/7

 3.在交换机上配置VLAN

    1．建立VLAN

   Switch # vlan database

   Switch<vlan>#vlan 2 name xiaoshuo

   Switch<vlan>#vlan 3 name gongguan

   Switch<vlan>#vlan 4 name caiwu

   Switch<vlan>#end

  2.pc加入vlan

Switch#conf t

Switch<config>#int fa0/1

Switch<config-if>#switchport access vlan 2

Switch<config>#int fa0/2

Switch <config-if>#switchport access vlan2

Switch<config-if>#end

Switch#conf t

Switch<config>#int fa0/3

Switch <config-if>#switchport access vlan3

Switch<config-if>#end

Switch#conf t

Switch<config>#int fa0/4

Switch <config-if>#switchport access vlan3

Switch<config-if>#end

Switch#conf t

Switch<config>#int fa0/5

Switch <config-if>#switchport access vlan4

Switch<config-if>#end

Switch#conf t

Switch<config>#int fa0/6

Switch <config-if>#switchport access vlan4

Switch<config-if>#end

Switch#conf t

Switch<config>#int fa0/7

Switch <config-if>#switchport access vlan4

Switch<config-if>#end

 3.检测pc0和pc2之间的ping是否通信

  Vlan2与vlan2之间能否通信

 

  Pinging 192.168.1.3 with 32 bytes of data:

 

Reply from 192.168.1.3: bytes=32 time=90ms TTL=128

Reply from 192.168.1.3: bytes=32 time=40ms TTL=128

Reply from 192.168.1.3: bytes=32 time=30ms TTL=128

Reply from 192.168.1.3: bytes=32 time=40ms TTL=128

 

Ping statistics for 192.168.1.3:

    Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 30ms, Maximum = 90ms, Average = 50ms

,

Vlan2与vlan3之间能否通信

 

PC>ping 192.168.1.4

 

Pinging 192.168.1.4 with 32 bytes of data:

 

Request timed out.

Request timed out.

Request timed out.

Request timed out.

 

Ping statistics for 192.168.1.4:

    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),

 

Vlan2与vlan4之间能否通信

PC>ping 192.168.1.6

 

Pinging 192.168.1.6 with 32 bytes of data:

 

Request timed out.

Request timed out.

Request timed out.

Request timed out.

 

Ping statistics for 192.168.1.6:

    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),

 

PC>

四．总结

  1.VLAN可以隔离广播域，保证子网内部的安全。

  2.vlan 可以划分与站点的位置无关，它可以是相当性质的站点的集合。

  3.方便日后的管理。

 

转载于:https://blog.51cto.com/hulun/466684