天天看點
傳回

實戰ISA2004+三層交換機實作多VLAN互通(20130327修正部分錯誤)

ISA2004+三層交換機實作多VLAN通信        使用裝置:

        ISA2004伺服器一台

        華為三層交換機一台

        伺服器多

台電腦多台

IP設定:

規劃将原來四個廠區網絡合并更改後為:

VLAN1:192.168.1.0/24

VLAN2:192.168.2.0/24

VLAN3:192.168.3.0/24

VLAN4:192.168.4.0/24

要求使用同一個域伺服器,檔案伺服器,實作資源工享.通過同一個出口上網,而且可以管控所有網段的電腦上網.

ISA:

内:192.168.100.250

外:30.1.1.1(用于ADSL拔号)

IA2004内網卡設定.

交換機配置(裝置為華為3600EI版):

<S3600>sys

System View: return to User View with Ctrl+Z.

[S3600]undo vlan all

This may delete all static VLAN except the VLAN kept by protocol, the voice VLAN

, the default VLAN, the management VLAN and the remote probe VLAN.

Are you sure?[Y/N]:y

Please wait... Done.

[S3600]vlan 11

[S3600-vlan11]description VLAN1

[S3600-vlan11]port ethernet 1/0/1 ethernet 1/0/2

[S3600-vlan11]vlan 12

[S3600-vlan12]port ethernet 1/0/3

[S3600-vlan12]vlan 13

[S3600-vlan13]port ethernet 1/0/4

[S3600-vlan13]vlan 14

[S3600-vlan14]port

[S3600-vlan14]vlan 11

[S3600-vlan11]inte vlan 11

[S3600-Vlan-interface11]

%Apr 2 02:43:21:968 2000 S3600 L2INF/5/VLANIF LINK STATUS CHANGE:- 1 -

Vlan-interface11: is UP

[S3600-Vlan-interface11]ip addr 192.168.1.254 255.255.255.0

%Apr 2 02:44:22:098 2000 S3600 IFNET/5/UPDOWN:- 1 -Line protocol on the interfa

ce Vlan-interface11 is UP

[S3600-Vlan-interface11]vlan 12

[S3600-vlan12]inte vlan 12

[S3600-Vlan-interface12]ip addr 192.168.2.254 255.255.255.0

[S3600-Vlan-interface12]vlan 13

[S3600-vlan13]inte vlan 13

[S3600-Vlan-interface13]ip addr 192.168.3.254 255.255.255.0

[S3600-Vlan-interface13]vlan 14

[S3600-vlan14]inte vlan 14

[S3600-Vlan-interface14]ip addr 192.168.4.254 255.255.255.0

[S3600-Vlan-interface14]vlan 100

[S3600-vlan100]inte vlan 100

[S3600-Vlan-interface100]ip addr 192.168.100.254 255.255.255.0

[S3600-Vlan-interface100]ip route-static 0.0.0.0 0.0.0.0 192.168.0.250

[S3600]save

在ISA上的反向路由可以用,route -p add 指令加進去

例如 route -p add 192.168.1.0 mask 255.255.255.0 192.168.1.254

    route -p add 192.168.2.0 mask 255.255.255.0 192.168.2.254

修正,應該是

    route -p add 192.168.1.0 mask 255.255.255.0 192.168.0.254

    route -p add 192.168.2.0 mask 255.255.255.0 192.168.0.254

多謝,博友@huqiliu指出問題.

(要指向那個網段的網關).

本文轉自 tao61 部落格,原文連結:     http://blog.51cto.com/tao61/147108      如需轉載請自行聯系原作者

網絡虛拟化 網絡模拟問題 網絡裝置網絡模拟 網絡裝置網絡模拟問題 網絡 網絡帶寬
上一篇: 挂羊頭,賣狗肉的《1/2的魔法》
下一篇: 使用Docx4j操作PPT指南系列(一)

繼續閱讀