收藏
下载资源下载资源 加入VIP,免费下载

H3C S512052PWiNet交换机基础配置.docx

上传人:b****7 文档编号:23535578 上传时间:2023-05-18 格式:DOCX 页数:13 大小:16.26KB
下载 相关 举报
H3C S512052PWiNet交换机基础配置.docx_第1页
第1页 / 共13页
H3C S512052PWiNet交换机基础配置.docx_第2页
第2页 / 共13页
H3C S512052PWiNet交换机基础配置.docx_第3页
第3页 / 共13页
H3C S512052PWiNet交换机基础配置.docx_第4页
第4页 / 共13页
H3C S512052PWiNet交换机基础配置.docx_第5页
第5页 / 共13页
点击查看更多>>
下载资源
资源描述

H3C S512052PWiNet交换机基础配置.docx

《H3C S512052PWiNet交换机基础配置.docx》由会员分享,可在线阅读,更多相关《H3C S512052PWiNet交换机基础配置.docx(13页珍藏版)》请在冰豆网上搜索。

H3C S512052PWiNet交换机基础配置.docx

H3CS512052PWiNet交换机基础配置

H3CS5120-52P-WiNet交换机基础配置

配置console口登录验证密码

system-view

[H3C]user-interfaceaux0

[H3C-ui-aux0]authentication-modepassword

[H3C-ui-aux0]setauthenticationpasswordcipher123456

[H3C-ui-aux0]userprivilegelevel3

 

配置console口登录验证用户和密码

system-view

[H3C]user-interfaceaux0

[H3C-ui-aux0]authentication-modescheme

[H3C-ui-aux0]quit

[H3C]local-useradmin

[H3C-luser-admin]passwordcipher123456

[H3C-luser-admin]authorization-attributelevel3

[H3C-luser-admin]service-typeterminal

 

配置telnet远程验证登录密码

system-view

[H3C]telnetserverenable

[H3C]user-interfacevty0

[H3C-ui-vty0]authentication-modepassword

[H3C-ui-vty0]setauthenticationpasswordcipher123456

[H3C-ui-vty0]userprivilegelevel3

 

配置telnet远程登录验证用户和密码

system-view

[H3C]telnetserverenable

[H3C]user-interfacevty0

[H3C-ui-vty0]authentication-modescheme

[H3C]local-userh3c

[H3C-luser-h3c]passwordcipherh3c

[H3C-luser-h3c]authorization-attributelevel3

[H3C-luser-h3c]service-typetelnet

 

配置ssh远程登录验证用户和密码

system-view

#生成SSH公钥

[H3C]public-keylocalcreatersa

#生成SSH密钥

[H3C]public-keylocalcreatedsa

#开启ssh服务

[H3C]sshserverenable

#配置同时在线5个VTY用户界面视图

[H3C]user-interfacevty04

#SSH用户登录界面认证方式为AAA认证

[H3C-ui-vty0-4]authentication-modescheme

#远程用户登录协议为SSH(默认情况下系统支持)

[H3C-ui-vty0-4]protocolinboundssh

[H3C-ui-vty0-4]quit

#创建一个本地用户user01

[H3C]local-useruser01

#设置加密密码为123456

[H3C-luser-user01]passwordcipher123456

#开启ssh服务类型

[H3C-luser-user01]service-typessh

#设置用户命令访问级别为3

[H3C-luser-user01]authorization-attributelevel3

[H3C]sshuseruser01service-typestelnetauthentication-typepassword  

# 配置SSH用户client001的服务类型为Stelnet,认证方式为password认证。

(此步骤可以不配置)

 

配置web登录验证

system-view

[H3C]local-useradmin

[H3C-luser-admin]service-typetelnet

[H3C-luser-admin]authorization-attributelevel3

[H3C-luser-admin]passwordcipher123456

[H3C]displaywebusers    #查看web登录用户

 

创建VLAN

system-view

[H3C]vlan10

[H3C-vlan10]portGigabitEthernet1/0/1toGigabitEthernet1/0/10

[H3C-vlan10]quit

[H3C]interfaceVlan-interface10

[H3C-Vlan-interface10]ipaddress192.168.10.1255.255.255.0

[H3C-Vlan-interface10]quit

##显示与维护

[H3C]displayvlan

[H3C]displayvlan10

[H3C]displayvlanall

[H3C]displayinterfaceVlan-interface10

[H3C]undovlan20    #删除VLAN

 

配置DHCP地址

##创建VLAN并分配地址

system-view

[H3C]vlan10

[H3C-vlan10]portGigabitEthernet1/0/1toGigabitEthernet1/0/5

[H3C-vlan10]quit

[H3C]interfaceVlan-interface10

[H3C-Vlan-interface10]ipaddress192.168.10.1255.255.255.0

[H3C-Vlan-interface10]quit

##启动DHCP功能

[H3C]dhcpenable

##定义DHCP实例名称、地址池、网关地址、DNS、租期、排除自动获取地址

[H3C]dhcpserverip-poolvlan10

[H3C-dhcp-pool-vlan10]network192.168.10.0mask255.255.255.0

[H3C-dhcp-pool-vlan10]gateway-list192.168.10.1

[H3C-dhcp-pool-vlan10]dns-list192.168.10.254192.168.10.250

[H3C-dhcp-pool-vlan10]expiredday5

[H3C]dhcpserverforbidden-ip 192.168.10.1192.168.10.10

 

 

配置DHCP中继代理

##创建DHCP中继组2 并配置DHCP服务器192.168.20.20

system-view

[H3C]dhcpenable

[H3C]dhcprelayserver-group2ip192.168.20.20

##配置VLAN10和VLAN20工作在DHCP中继模式,并指定DHCP中继组2

[H3C]interfaceVlan-interface10

[H3C-Vlan-interface10]dhcpselectrelay

[H3C-Vlan-interface10]dhcprelayserver-select2

[H3C-Vlan-interface10]quit     

[H3C]interfaceVlan-interface20  

[H3C-Vlan-interface20]dhcpselectrelay

[H3C-Vlan-interface20]dhcprelayserver-select2

[H3C-Vlan-interface20]quit

 

 

创建默认静态出口路由

system-view

[H3C]iproute-static 0.0.0.00.0.0.0192.168.10.254       #添加静态路由

[H3C]undoiproute-static 0.0.0.00.0.0.0192.168.10.254  #删除静态路由

##显示与维护

[H3C]displayiprouting-table

 

ARP绑定

[H3C]arpstatic192.168.10.11b888-e33c-c11d        #绑定IP和MAC

[H3C]undoarpstatic192.168.10.11b888-e33c-c11d   #解绑IP和MAC

[H3C]displayarp

 

关闭端口

system-view

[H3C]interfaceGigabitEthernet1/0/1

[H3C-GigabitEthernet1/0/1]shutdown

##显示与维护

[H3C]displaycurrent-configuration

 

开启端口

system-view

[H3C]interfaceGigabitEthernet1/0/1

[H3C-GigabitEthernet1/0/1]undoshutdown

##显示与维护

[H3C]displaycurrent-configuration

 

设置端口速率

system-view

[H3C]interfaceGigabitEthernet1/0/1

[H3C-GigabitEthernet1/0/1]speed100   #设置端口速率为100M

[H3C-GigabitEthernet1/0/1]undospeed  #取消端口速率,默认是auto自动协商

##显示与维护

[H3C]displayinterfaceGigabitEthernet1/0/2 brief

 

Qos端口限速

system-view

[H3C]interfaceGigabitEthernet1/0/1

[H3C-GigabitEthernet1/0/1]qoslrinboundcir2048   #入站速率限制1024kbps(下载速度2M)

[H3C-GigabitEthernet1/0/1]qoslroutboundcir1024  #出站速率限制1024kbps(上传速度1M)

[H3C-GigabitEthernet1/0/1]quit

##显示与维护

[H3C]displayqoslrinterfaceGigabitEthernet1/0/1

 

配置本地端口镜像

system-view

[H3C]mirroring-group1local

[H3C]mirroring-group1mirroring-portGigabitEthernet1/0/1toGigabitEthernet1

/0/5both  #配置源端口镜像(被监控端口)

[H3C]mirroring-group1monitor-portGigabitEthernet1/0/6 #配置目的端口镜像(监控端口)

##显示与维护

[H3C]displaymirroring-group1

[H3C]displaymirroring-groupall

[H3C]undomirroring-group1mirroring-portGigabitEthernet1/0/3both  #删除源端口镜像

[H3C]undomirroring-group1monitor-portGigabitEthernet1/0/6       #删除目的端口镜像

 

两台H3C S5120交换机配置端口Trunk

(实现相同VLAN互访,H3CS5120属于二层交换机,所以,不能实现不同VLAN 相互访问)

第一台H3CSW01配置如下:

##配置VLAN10和VLAN20

system-view

[H3CSW01]vlan10

[H3CSW01-vlan10]portGigabitEthernet1/0/1toGigabitEthernet1/0/5

[H3CSW01-vlan10]quit

[H3CSW01-Vlan-interface10]ipaddress192.168.10.1255.255.255.0

[H3CSW01]vlan20

[H3CSW01-vlan20]portGigabitEthernet1/0/6toGigabitEthernet1/0/10

[H3CSW01-vlan20]quit

[H3CSW01]interfaceVlan-interface20

[H3CSW01-Vlan-interface20]ipaddress192.168.20.1255.255.255.0

[H3CSW01-Vlan-interface20]quit

[H3CSW01]displayvlanall

##1/0/24端口开启trunk

[H3CSW01]interfaceGigabitEthernet1/0/24

[H3CSW01-GigabitEthernet1/0/24]portlink-typetrunk

[H3CSW01-GigabitEthernet1/0/24]porttrunkpermitvlanall

[H3CSW01-GigabitEthernet1/0/24]quit

[H3CSW01]displaycurrent-configurationinterfaceGigabitEthernet1/0/24

 

第二台H3CSW02配置如下:

##配置VLAN10和VLAN20

system-view

[H3CSW02]vlan10

[H3CSW02-vlan10]portGigabitEthernet1/0/1toGigabitEthernet1/0/5

[H3CSW02-vlan10]quit

[H3CSW02-Vlan-interface10]ipaddress192.168.10.1255.255.255.0

[H3CSW02]vlan20

[H3CSW02-vlan20]portGigabitEthernet1/0/6toGigabitEthernet1/0/10

[H3CSW02-vlan20]quit

[H3CSW02]interfaceVlan-interface20

[H3CSW02-Vlan-interface20]ipaddress192.168.20.1255.255.255.0

[H3CSW02-Vlan-interface20]quit

[H3CSW02]displayvlanall

##1/0/24端口开启trunk

[H3CSW02]interfaceGigabitEthernet1/0/24

[H3CSW02-GigabitEthernet1/0/24]portlink-typetrunk

[H3CSW02-GigabitEthernet1/0/24]porttrunkpermitvlanall

[H3CSW02-GigabitEthernet1/0/24]quit

[H3CSW02]displaycurrent-configurationinterfaceGigabitEthernet1/0/24

 

 

两台H3C S5120交换机配置链路聚合(二层静态链路聚合)

第一台H3CSW01配置如下:

##配置VLAN10 和VLAN20

system-view

[H3CSW01]vlan10

[H3CSW01-vlan10]portGigabitEthernet1/0/1toGigabitEthernet1/0/5

[H3CSW01-vlan10]quit

[H3CSW01-Vlan-interface10]ipaddress192.168.10.1255.255.255.0

[H3CSW01]vlan20

[H3CSW01-vlan20]portGigabitEthernet1/0/6toGigabitEthernet1/0/10

[H3CSW01-vlan20]quit

[H3CSW01]interfaceVlan-interface20

[H3CSW01-Vlan-interface20]ipaddress192.168.20.1255.255.255.0

[H3CSW01-Vlan-interface20]quit

[H3CSW01]displayvlanall

##创建二层聚合接口1

[H3CSW01]interfaceBridge-Aggregation1

[H3CSW01-Bridge-Aggregation1]quit

##分别将端口GigabitEthernet1/0/11至GigabitEthernet1/0/13加入到聚合组1中

[H3CSW01]interfaceGigabitEthernet1/0/11

[H3CSW01-GigabitEthernet1/0/11]portlink-aggregationgroup1

[H3CSW01-GigabitEthernet1/0/11]quit

[H3CSW01]interfaceGigabitEthernet1/0/12

[H3CSW01-GigabitEthernet1/0/12]portlink-aggregationgroup1

[H3CSW01-GigabitEthernet1/0/12]quit

[H3CSW01]interfaceGigabitEthernet1/0/13

[H3CSW01-GigabitEthernet1/0/13]portlink-aggregationgroup1

[H3CSW01-GigabitEthernet1/0/13]quit

##配置二层聚合接口1为Trunk端口,并允许所有VLAN报文通过

[H3CSW01]interfaceBridge-Aggregation1

[H3CSW01-Bridge-Aggregation1]portlink-typetrunk

[H3CSW01-Bridge-Aggregation1]porttrunkpermitvlanall

##显示与维护

[H3CSW01]displaylink-aggregationmember-port

[H3CSW01]displaylink-aggregation summary

[H3CSW01]displaylink-aggregation verbose

 

*****第二台H3CSW02配置跟第一台H3CSW02一样*****

 

 

两台H3C S5120交换机配置链路聚合(二层动态链路聚合)

第一台H3CSW01配置如下:

##配置VLAN10 和VLAN20

system-view

[H3CSW01]vlan10

[H3CSW01-vlan10]portGigabitEthernet1/0/1toGigabitEthernet1/0/5

[H3CSW01-vlan10]quit

[H3CSW01-Vlan-interface10]ipaddress192.168.10.1255.255.255.0

[H3CSW01]vlan20

[H3CSW01-vlan20]portGigabitEthernet1/0/6toGigabitEthernet1/0/10

[H3CSW01-vlan20]quit

[H3CSW01]interfaceVlan-interface20

[H3CSW01-Vlan-interface20]ipaddress192.168.20.1255.255.255.0

[H3CSW01-Vlan-interface20]quit

[H3CSW01]displayvlanall

##创建二层聚合接口1并配置该接口为动态聚合模式

[H3CSW01]interfaceBridge-Aggregation1

[H3CSW01-Bridge-Aggregation1]link-aggregationmodedynamic

[H3CSW01-Bridge-Aggregation1]quit

##分别将端口GigabitEthernet1/0/11至GigabitEthernet1/0/13加入到聚合组1中

[H3CSW01]interfaceGigabitEthernet1/0/11

[H3CSW01-GigabitEthernet1/0/11]portlink-aggregationgroup1

[H3CSW01-GigabitEthernet1/0/11]quit

[H3CSW01]interfaceGigabitEthernet1/0/12

[H3CSW01-GigabitEthernet1/0/12]portlink-aggregationgroup1

[H3CSW01-GigabitEthernet1/0/12]quit

[H3CSW01]interfaceGigabitEthernet1/0/13

[H3CSW01-GigabitEthernet1/0/13]portlink-aggregationgroup1

[H3CSW01-GigabitEthernet1/0/13]quit

##配置二层聚合接口1为Trunk端口,并允许所有VLAN报文通过

[H3CSW01]interfaceBridge-Aggregation1

[H3CSW01-Bridge-Aggregation1]portlink-typetrunk

[H3CSW01-Bridge-Aggregation1]porttrunkpermitvlanall

##显示与维护

[H3CSW01]displaylink-aggregationmember-port

[H3CSW01]displaylink-aggregation summary

[H3CSW01]displaylink-aggregation verbose

 

*****第二台H3CSW02配置跟第一台H3CSW02一样*****

展开阅读全文
相关资源
猜你喜欢
相关搜索

当前位置:首页 > 解决方案 > 学习计划

copyright@ 2008-2022 冰豆网网站版权所有

经营许可证编号:鄂ICP备2022015515号-1