PT 实验 3.5.3.2 VLAN 配置故障排除(教师版)

PT 练习 3.5.3:V LAN配置故障排除(教师版)

拓扑图

地址表

设备接口IP地址子网掩码默认网关

S1S1VLAN

56VLAN 192.168.56.11 255.255.255.0 不适用

S2S2VLAN

56VLAN 192.168.56.12 255.255.255.0 不适用

S3S3VLAN

56VLAN 192.168.56.13 255.255.255.0 不适用

PC1PC1NIC网卡192.168.10.21 255.255.255.0 192.168.10.1 PC2PC2NIC网卡192.168.20.22 255.255.255.0 192.168.20.1 PC3PC3NIC网卡192.168.20.23 255.255.255.0 192.168.30.1 PC4PC4NIC网卡192.168.10.24 255.255.255.0 192.168.10.1 PC5PC5NIC网卡192.168.20.25 255.255.255.0 192.168.20.1 PC6PC6NIC网卡192.168.30.26 255.255.255.0 192.168.30.1

端口分配(交换机2 和 3)

端口分配网络

Fa0/1 – 0/5VLAN 56 – Management&Native 192.168.56.0/24

Fa0/6 – 0/10 VLAN 30 – Guest(Default) 192.168.30.0/24

Fa0/11 – 0/17 VLAN 10 – Faculty/Staff 192.168.10.0/24

Fa0/18 – 0/24 VLAN 20 – Students 192.168.20.0/24

学习目标

?找出网络错误并改正

?记录改正后的网络

简介

在本练习中,您将练习对配置错误的 VLAN 环境进行故障排除。最初给出的网络有错误。您的目标是找出并纠正配置中的所有错误,建立端到端的连接。您最终的配置应当符合拓扑图和地址表。除enable secret口令设置为class 外,其它所有口令均设置为cisco。

任务 1:找出网络错误并改正

当所有错误都得到更正后,属于相同 VLAN 的 PC 之间应该可以相互 ping 通。另外,S1、S2 和 S3应该能够相互 ping 通。

S1 错误:

vlan 10

name Faculty/Staff

vlan 20

name Students

vlan 30

name Guest(Default)

vlan 56

name Management&Native

!用户往往会忘记在一些交换机上创建某个特定的 VLAN,尤其对没有端口属于该 VLAN 的交换机更是如此。show vlan命令可揭示此问题。

!

interface FastEthernet0/1

switchport trunk native vlan 56

interface FastEthernet0/2

switchport trunk native vlan 56

!忘记此命令导致本征 VLAN 不匹配。交换机上会随之发生错误。结果造成 VLAN 56 的数据无法正确在交换机之间传递。

S2 错误:

interface FastEthernet0/1

switchport mode trunk

!不小心将这些端口配置为接入端口可能导致运行出错。该端口被配置为 VLAN 1 的接入端口(默认),但该中继的本征 VLAN 是 56,因此会导致 VLAN 56 的流量被发送到 VLAN 1。show interfaces trunk 命令可揭示这一点。

!

interface Vlan1

no ip address

!默认 VLAN 被配置为管理 VLAN。如果在中继链路上犯的错误没有得到纠正,那么该地址能够被用户访问。而这样的配置是错误的。

!

interface Vlan56

ip address 192.168.56.12 255.255.255.0

no shutdown

!没有配置正确的管理 VLAN,IP 地址设置在了默认 VLAN 上。 show ip interface brief 命令可揭示此问题。

S3 错误:

vlan 56

name Management&Native

!没有配置管理 VLAN。当为 VLAN 配置了 SVI 时,用户往往会误以为该 VLAN 已经存在。

!

interface FastEthernet0/6

switchport access vlan 30

interface FastEthernet0/11

switchport access vlan 10

interface FastEthernet0/18

switchport access vlan 20

!

!端口没有分配给各自所属的 VLAN。这一点很明显,因为连接到此交换机的所有主机都能相互访问对方,原因就是它们都在默认 VLAN 中。通过 show vlan 命令即可发现此问题。

!

interface Vlan56

ip address 192.168.56.13 255.255.255.0

no shutdown

!如果没有 IP 地址,便无法通过管理 VLAN 访问此设备。通过 show ip interface brief 命令即可明显察觉缺少此命令。

任务 2:记录改正后的网络

交换机 1

hostname S1

no ip domain-lookup

enable secret class

!

vlan 10,20,30,56

!

interface FastEthernet0/1

switchport trunk native vlan 56

switchport mode trunk

no shutdown

!

interface FastEthernet0/2

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/3

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/4

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/5

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/6

shutdown

!

!<省略部分输出- S1 上的其余端口都为关闭状态> !

!

interface Vlan56

ip address 192.168.56.11 255.255.255.0 no ip route-cache

!

line con 0

password cisco

login

line vty 0 4

no login

line vty 5 15

password cisco

login

!

end

交换机 2

hostname S2

no ip domain-lookup

enable secret cisco

!

vlan 10,20,30,56

!

interface FastEthernet0/1

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/2

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/3

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/4

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/5

switchport trunk native vlan 56 switchport mode trunk

!

interface FastEthernet0/6 switchport access vlan 30

switchport mode access

!

interface FastEthernet0/7

switchport access vlan 30

switchport mode access

!

interface FastEthernet0/8

switchport access vlan 30

switchport mode access

!

interface FastEthernet0/9

switchport access vlan 30

switchport mode access

!

interface FastEthernet0/10

switchport access vlan 30

switchport mode access

!

interface FastEthernet0/11

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/12

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/13

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/14

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/15

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/16

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/17

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/18

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/19

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/20

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/21

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/22

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/23

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/24

switchport access vlan 20

switchport mode access

!

!

!

interface Vlan56

ip address 192.168.56.12 255.255.255.0 !

line con 0

password cisco

login

line vty 0 4

password cisco

login

line vty 5 15

password cisco

login

!

end

交换机 3

hostname S3

no ip domain-lookup

enable secret class

!

vlan 10,20,30,56

!

interface FastEthernet0/1

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/2

switchport trunk native vlan 56

switchport mode trunk

!

interface FastEthernet0/3

switchport trunk native vlan 56 switchport mode trunk

!

interface FastEthernet0/4

switchport trunk native vlan 56 switchport mode trunk

!

interface FastEthernet0/5

switchport trunk native vlan 56 switchport mode trunk

!

interface FastEthernet0/6

switchport access vlan 30

switchport mode access

spanning-tree portfast

!

interface FastEthernet0/7

switchport access vlan 30

switchport mode access

spanning-tree portfast

!

interface FastEthernet0/8

switchport access vlan 30

switchport mode access

spanning-tree portfast

!

interface FastEthernet0/9

switchport access vlan 30

switchport mode access

spanning-tree portfast

!

interface FastEthernet0/10

switchport access vlan 30

!

interface FastEthernet0/11

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/12

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/13

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/14

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/15

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/16

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/17

switchport access vlan 10

switchport mode access

!

interface FastEthernet0/18

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/19

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/20

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/21

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/22

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/23

switchport access vlan 20

switchport mode access

!

interface FastEthernet0/24

switchport access vlan 20

switchport mode access

!

interface Vlan56

ip address 192.168.56.13 255.255.255.0 !

line con 0

password cisco

login

line vty 0 4

password cisco

login

line vty 5 15

password cisco

login

!

end

相关文档
最新文档