華為交換機(jī)配置VLAN間路由

VLAN技術(shù)是把一個物理的LAN在邏輯上劃分成多個廣播域,VLAN內(nèi)的主機(jī)可以直接通信,VLAN間的主機(jī)無法互通。如此,廣播報文就被限制在一個VLAN內(nèi),同時也提高了網(wǎng)絡(luò)安全性。VLAN id 取值 0~4095,可配置值為0~4094,0和4095為保留值。

Access接口是用來連接主機(jī)或終端的接口。


按部門劃分VLAN

同一網(wǎng)段內(nèi),劃分了不同VLAN,VLAN間是無法進(jìn)行通信的。

VLAN間路由

實(shí)驗(yàn)拓?fù)?/b>


VLAN間通信


主機(jī)配置

PC1


PC2



PC3


SW2

#

<Huawei>u t m

Info: Current terminal monitor is off.

<Huawei>system-view

Enter system view, return user view with Ctrl+Z.

[Huawei]sys SW2

[SW2]vlan 10

[SW2-vlan10]description R&D? ?? ?//給VLAN打標(biāo)簽(如研發(fā)部門R&D)

[SW2-vlan10]vlan 20

[SW2-vlan20]description Market

[SW2-vlan20]quit

[SW2]inter e0/0/2

[SW2-Ethernet0/0/2]port link-type access

[SW2-Ethernet0/0/2]port default vlan 10

[SW2-Ethernet0/0/2]quit

[SW2]interface e0/0/3

[SW2-Ethernet0/0/3]port link-type access

[SW2-Ethernet0/0/3]port default vlan 20

[SW2-Ethernet0/0/3]inter e0/0/1

[SW2-Ethernet0/0/1]port link-type trunk

[SW2-Ethernet0/0/1]port trunk allow-pass vlan 10 20

#?

SW3

#

<Huawei>u t m

Info: Current terminal monitor is off.

<Huawei>sys

<Huawei>system-view

Enter system view, return user view with Ctrl+Z.

[Huawei]sys SW3s

[SW3s]sys SW3

[SW3]vlan 10

[SW3-vlan10]dest

[SW3-vlan10]desc

[SW3-vlan10]description R@D

[SW3-vlan10]vlan 20

[SW3-vlan20]desc

[SW3-vlan20]description market

[SW3-vlan20]description Market

[SW3-vlan20]quit

[SW3]inter e0/0/2

[SW3-Ethernet0/0/2]port link-type access

[SW3-Ethernet0/0/2]port default vlan 10

[SW3-Ethernet0/0/2]inter e0/0/3

[SW3-Ethernet0/0/3]port link-type access

[SW3-Ethernet0/0/3]port default vlan 20

[SW3-Ethernet0/0/3]inter e0/0/1

[SW3-Ethernet0/0/1]port link-type trunk

[SW3-Ethernet0/0/1]port trunk all

[SW3-Ethernet0/0/1]port trunk allow-pass vlan 10 20

[SW3-Ethernet0/0/1]quit

#

SW1

#

<Huawei>u t m

Info: Current terminal monitor is off.

<Huawei>sys

<Huawei>system-view

Enter system view, return user view with Ctrl+Z.

[Huawei]sys SW1

[SW1]vlan 10

[SW1-vlan10]description R&D

[SW1-vlan10]vlan 20

[SW1-vlan20]description Market

[SW1-vlan20]quit

[SW1]inter g0/0/1

[SW1-GigabitEthernet0/0/1]port link-type trunk

[SW1-GigabitEthernet0/0/1]port trunk-all

[SW1-GigabitEthernet0/0/1]port trunk all

[SW1-GigabitEthernet0/0/1]port trunk allow-pass vlan 10 20

[SW1-GigabitEthernet0/0/1]port trunk allow-pass vlan all

[SW1-GigabitEthernet0/0/1]port trunk allow-pass vlan all

[SW1-GigabitEthernet0/0/1]quit

[SW1]inter g0/0/2

[SW1-GigabitEthernet0/0/2]port link-type trunk

[SW1-GigabitEthernet0/0/2]port trunk all

[SW1-GigabitEthernet0/0/2]port trunk allow-pass vlan all

[SW1-GigabitEthernet0/0/2]

#

配置完成,ping測試一下


PC3 ping PC1


PC2 ping PC4
最后編輯于
?著作權(quán)歸作者所有,轉(zhuǎn)載或內(nèi)容合作請聯(lián)系作者
【社區(qū)內(nèi)容提示】社區(qū)部分內(nèi)容疑似由AI輔助生成,瀏覽時請結(jié)合常識與多方信息審慎甄別。
平臺聲明:文章內(nèi)容(如有圖片或視頻亦包括在內(nèi))由作者上傳并發(fā)布,文章內(nèi)容僅代表作者本人觀點(diǎn),簡書系信息發(fā)布平臺,僅提供信息存儲服務(wù)。

友情鏈接更多精彩內(nèi)容