档案
日志
相册
视频
分享
2007-07-11 | 实验报告
再次申明,本实验并非转载,包括实验拓扑设计,拓扑图绘制,路由配置,服务器配置,均由本人独立完成。
实验拓扑:
实验介绍:这是一个比较综合的实验,结合了网络和系统的一些技术。
网络方面:路由配的是OSPF多区域和RIP集成,采用了路由重分布,其中包括末梢区域,和非纯末梢区域。其中还运用了NAT负载均衡,单臂路由,交换机上运用了VLAN的划分。
系统方面:使用了微软的Active Directory,Exchange邮件系统,和Web服务
实验环境:所有拓扑图上能看见的都是虚拟设备,整个实验使用了一个真实局域网中的3台PC(每台内存1.G,CPU2.66GHz)。路由器和交换机使用的模拟软件是Dynamips,模拟的服务器用的软件是vmware。虚拟设备都桥接在真实设备上。
设备介绍:所有的路由器都是cisco 3600系列,交换机是cisco 3650. 服务器的操作系统是Windows Server 2003 Enterprise
实验说明:整个实验的路由部分配置的是OSPF多区域和RIP,包括stub区域和nssa区域,r1使用了nat,并且将内部主机vlan1(web服务器)的端口80映射为r1的s2/0的端口80,使内部的Web服务器能被外部主机访问。pc3是一台域控制器,域名为plmm.net同时也是所有外部主机的DNS服务器 pc4是plmm.net.的成员服务器,也是Exchange邮件服务器,为外部客户提供邮件服务,外部主机可以通过OWA,SMTP,POP3的方式访问Exchange.
路由交换配置:
SW
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname sw
!
boot-start-marker
boot-end-marker
!
!
memory-size iomem 5
no aaa new-model
ip subnet-zero
!
!
ip cef
!
!
no ftp-server write-enable
!
!
!
!
interface FastEthernet1/0
switchport access vlan 10
no ip address
!
interface FastEthernet1/1
switchport access vlan 20
no ip address
!
interface FastEthernet1/2
switchport mode trunk
no ip address
!
!
interface Vlan1
ip address 10.1.1.1 255.255.255.0
!
ip http server
ip classless
!
!
!
!
!
control-plane
!
!
line con 0
transport preferred all
transport output all
line aux 0
transport preferred all
transport output all
line vty 0 4
!
end
R1
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r1
!
boot-start-marker
boot-end-marker
!
!
memory-size iomem 5
no aaa new-model
ip subnet-zero
!
!
ip cef
!
!
no ftp-server write-enable
!
!
!
!
interface FastEthernet1/0
no ip address
duplex auto
speed auto
!
interface FastEthernet1/0.10
encapsulation dot1Q 10
ip address 192.168.10.1 255.255.255.0
ip nat inside
ip virtual-reassembly
!
interface FastEthernet1/0.20
encapsulation dot1Q 20
ip address 192.168.20.1 255.255.255.0
ip nat inside
ip virtual-reassembly
!
interface Serial2/0
ip address 200.2.2.1 255.255.255.252
ip nat outside
ip virtual-reassembly
serial restart-delay 0
!
router rip
network 200.2.2.0
!
ip http server
ip classless
!
!
ip nat inside source list 1 interface Serial2/0 overload
ip nat inside source list 2 interface Serial2/0 overload
ip nat inside source static tcp 192.168.10.10 80 200.2.2.1 80 extendable
!
access-list 1 permit 192.168.10.0 0.0.0.255
access-list 2 permit 192.168.20.0 0.0.0.255
!
!
control-plane
!
!
line con 0
transport preferred all
transport output all
line aux 0
transport preferred all
transport output all
line vty 0 4
!
end
R2
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r2
!
boot-start-marker
boot-end-marker
!
!
memory-size iomem 5
no aaa new-model
ip subnet-zero
!
!
ip cef
!
!
no ftp-server write-enable
!
!
!
!
interface Serial1/0
ip address 100.1.1.1 255.255.255.252
serial restart-delay 0
!
!
interface Serial2/0
ip address 200.2.2.2 255.255.255.252
serial restart-delay 0
!
interface Serial3/0
ip address 100.1.1.9 255.255.255.252
serial restart-delay 0
!
interface Serial3/1
no ip address
shutdown
serial restart-delay 0
!
router ospf 1
log-adjacency-changes
redistribute rip subnets metric 1000
network 100.1.1.0 0.0.0.255 area 0
!
router rip
redistribute ospf 1 metric 3
network 200.2.2.0
!
ip http server
ip classless
!
!
!
!
!
control-plane
!
!
line con 0
transport preferred all
transport output all
line aux 0
transport preferred all
transport output all
line vty 0 4
!
end
R3
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r3
!
boot-start-marker
boot-end-marker
!
!
memory-size iomem 5
no aaa new-model
ip subnet-zero
!
!
ip cef
!
!
no ftp-server write-enable
!
!
!
!
interface Serial1/0
ip address 50.1.1.1 255.255.255.252
serial restart-delay 0
!
interface Serial2/0
ip address 100.1.1.5 255.255.255.252
serial restart-delay 0
!
interface Serial3/0
ip address 100.1.1.10 255.255.255.252
serial restart-delay 0
!
router ospf 1
log-adjacency-changes
area 10 stub
network 50.1.1.0 0.0.0.255 area 10
network 100.1.1.0 0.0.0.255 area 0
!
ip http server
ip classless
!
!
!
!
!
control-plane
!
!
line con 0
transport preferred all
transport output all
line aux 0
transport preferred all
transport output all
line vty 0 4
!
end
R4
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r4
!
boot-start-marker
boot-end-marker
!
!
memory-size iomem 5
no aaa new-model
ip subnet-zero
!
!
ip cef
!
!
no ftp-server write-enable
!
!
!
!
interface Serial1/0
ip address 222.2.2.5 255.255.255.252
serial restart-delay 0
!
interface Serial2/0
ip address 100.1.1.6 255.255.255.252
serial restart-delay 0
!
interface Serial3/0
ip address 100.1.1.2 255.255.255.252
serial restart-delay 0
!
router ospf 1
log-adjacency-changes
network 100.1.1.0 0.0.0.255 area 0
network 222.2.2.0 0.0.0.255 area 20
!
ip http server
ip classless
!
!
!
!
!
control-plane
!
!
line con 0
transport preferred all
transport output all
line aux 0
transport preferred all
transport output all
line vty 0 4
!
end
R5
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r5
!
boot-start-marker
boot-end-marker
!
!
memory-size iomem 5
no aaa new-model
ip subnet-zero
!
!
ip cef
!
!
no ftp-server write-enable
!
!
!
!
interface Serial1/0
ip address 222.2.2.6 255.255.255.252
serial restart-delay 0
!
interface Serial1/1
ip address 88.8.8.5 255.255.255.0
serial restart-delay 0
!
interface Ethernet3/0
ip address 60.1.1.5 255.255.255.0
half-duplex
!
router ospf 1
log-adjacency-changes
redistribute rip metric 5000 subnets
network 60.1.1.0 0.0.0.255 area 20
network 222.2.2.0 0.0.0.255 area 20
!
router rip
redistribute ospf 1 metric 2
network 88.0.0.0
!
ip http server
ip classless
!
!
!
!
!
control-plane
!
!
line con 0
transport preferred all
transport output all
line aux 0
transport preferred all
transport output all
line vty 0 4
!
end
R6
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r6
!
boot-start-marker
boot-end-marker
!
!
memory-size iomem 5
no aaa new-model
ip subnet-zero
!
!
ip cef
!
!
no ftp-server write-enable
!
!
!
!
interface Serial1/0
ip address 50.1.1.2 255.255.255.252
serial restart-delay 0
!
interface Ethernet3/0
ip address 220.1.1.1 255.255.255.0
half-duplex
!
router ospf 1
log-adjacency-changes
area 10 stub
network 50.1.1.0 0.0.0.255 area 10
network 220.1.1.0 0.0.0.255 area 10
!
ip http server
ip classless
!
!
!
!
!
control-plane
!
!
line con 0
transport preferred all
transport output all
line aux 0
transport preferred all
transport output all
line vty 0 4
!
end
R7
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r7
!
boot-start-marker
boot-end-marker
!
!
memory-size iomem 5
no aaa new-model
ip subnet-zero
!
!
ip cef
!
!
no ftp-server write-enable
!
!
!
!
interface Serial2/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/1
ip address 88.8.8.7 255.255.255.0
serial restart-delay 0
!
router rip
network 88.0.0.0
!
ip http server
ip classless
!
!
!
!
!
control-plane
!
!
line con 0
transport preferred all
transport output all
line aux 0
transport preferred all
transport output all
line vty 0 4
!
end
实验心得:整个实验用时8个小时,其中的路由配置配置花了不到1个小时,服务器的安装和搭建花了两个小时,时间用的最多的是构思,绘制拓扑图,手工编辑net文件。多于的时间用于检验服务器的性能,和排错。其实那些需要configure的的地方都不难,无非是些命令,不记得也不要紧,cisco的ios系统支持tab键和“?”实在不记得也可以查手册。真正的高手是要会show,会debug,懂原理。只有会这些才能排错。服务器里的配置在图形界面完成,就更容易了,其中也需要明白原理,会用各种工具检验服务器的网络流量,硬件性能和负载。
分享
评论
想第一时间抢沙发么?