0 basic takes you to configure Ensp/Cisco simulator or physical machine experimental case: tutorial on the design and establishment of small enterprise Intranet network

Dongtian company needs to build an internal Intranet network. The company has a branch and a headquarters, which are interconnected by routers. The network segments of branch 1 are 192.168.1.0/24 and the network segments of headquarters are 199.112.1.0/24 and 200.122.1.0/24. DNS, DHCP, WEB, EMAIL and FTP servers are required to be set in the company's network scheme. Ordinary users in the branch network are required to dynamically obtain IP addresses and can visit each other, and two different sites are set on the same WEB server, so that users can access different sites with different names, Moreover, users can use the EMAIL server in the network to send and receive mail in the internal network. Considering the cost, the company plans to use Windows Server as the server. In order to verify the feasibility of the network, the network administrator needs to establish the network in the form of simulated network in the laboratory.

2, Demand analysis

Ordinary users in the branch network are required to dynamically obtain IP addresses and can visit each other;

Set up two different sites on the same WEB server so that users can access different sites with different names;

Users can use the EMAIL server in the network to send and receive mail in the internal network;

Use Windows Server as the server;

The establishment of the network is realized in the form of analog network in the laboratory;

Complete the configuration of all servers of the working group, DNS and DHCP are configured on the same server, and WEB, EMAIL and FTP are configured on the same server; All servers are in the headquarters network;

Reasonably allocate IP addresses for each network;

Realize the configuration of router and switch;

Test all network connectivity and the server is working correctly.

3, Scheme 1: Cisco complementary graph construction

(please refer to scheme 2 if it is on the physical machine. Scheme 1 only realizes successful communication in the simulator configuration)

Scheme 1: configure on the simulator (if it is on the physical machine, please refer to scheme 2)

PC configuration: (take Ensp as an example)

4, Scheme 1 basic communication configuration (Cisco command)

4.1: some common commands

Delete static route command: no ip route       
View interface configuration: show ip interface   
Switch configuration:show running-config      
Renamed: hostname

4.2: complete basic configuration command

LSW1: 
-----establish VLAN
sw1>enable 14
sw1#conf t
sw1(config)#vlan 2
sw1(config-if)#exit
sw1(config)#vlan 3
sw1(config-if)#exit
sw1(config)#vlan 6
sw1(config-if)#exit
----VLAN to configure IP
sw1(config)#interface vlan 2
sw1(config-if)#ip address 199.112.1.1 255.255.255.0
sw1(config-if)#no shut
sw1(config)#interface vlan 3
sw1(config-if)#ip address 200.122.1.1 255.255.255.0
sw1(config-if)#no shut
sw1(config)#interface vlan 6
sw1(config-if)#ip address 192.168.3.2 255.255.255.0
sw1(config-if)#no shut
----port configuration
sw1(config)#int f0/2
sw1(config-if)#switchport mode access 
sw1(config-if)#switchport access vlan 2
sw1(config-if)#no shut 
sw1(config-if)#exit
sw1(config)#int f0/3
sw1(config-if)#switchport mode access 
sw1(config-if)#switchport access vlan 3
sw1(config-if)#no shut 
sw1(config-if)#exit
sw1(config)#int f0/4
sw1(config-if)#switchport mode access 
sw1(config-if)#switchport access vlan 6
sw1(config-if)#no shut 
sw1(config-if)#exit
----Turn on the routing function of the layer 3 switch
sw1#ip routing
----------------This is the of two servers-------------------
sw1(config)#int f0/5
sw1(config-if)#switchport mode access 
sw1(config-if)#switchport access vlan 6
sw1(config-if)#no shut 
sw1(config-if)#exit
sw1(config)#int f0/6
sw1(config-if)#switchport mode access 
sw1(config-if)#switchport access vlan 6
sw1(config-if)#no shut 
sw1(config-if)#exit
sw1(config)#exit

LSW2:
-----establish VLAN
sw1>enable 14
sw1#conf t
sw1(config)#vlan 4
sw1(config-if)#exit
sw1(config)#vlan 5
sw1(config-if)#exit
----VLAN to configure IP
sw1(config)#interface vlan 4
sw1(config-if)#ip address 192.168.5.2 255.255.255.0
sw1(config-if)#no shut
sw1(config)#interface vlan 5
sw1(config-if)#ip address 192.168.1.1 255.255.255.0
sw1(config-if)#no shut
----port configuration
sw1(config)#int f0/1
sw1(config-if)#switchport mode access 
sw1(config-if)#switchport access vlan 4
sw1(config-if)#no shut 
sw1(config-if)#exit
sw1(config)#int f0/2
sw1(config-if)#switchport mode access 
sw1(config-if)#switchport access vlan 5
sw1(config-if)#no shut 
sw1(config-if)#exit
----Turn on the routing function of the layer 3 switch
sw1#ip routing

AR1:
sw1(config)#int f1/0
sw1(config-if)#ip address 192.168.3.1 255.255.255.0
sw1(config-if)#no shut 
sw1(config-if)#exit
sw1(config)#int f1/1
sw1(config-if)#ip address 148.1.1.1 255.255.255.0
sw1(config-if)#no shut 
sw1(config-if)#exit

AR2:
sw1(config)#int f1/0
sw1(config-if)#ip address 192.168.5.1 255.255.255.0
sw1(config-if)#no shut 
sw1(config-if)#exit
sw1(config)#int f1/1
sw1(config-if)#ip address 148.1.1.2 255.255.255.0
sw1(config-if)#no shut 
sw1(config-if)#exit

4.3: static routing configuration

AR1 routing table:

AR1 configuration command:

ip route 192.168.1.0 255.255.255.0 192.168.5.1
ip route 192.168.5.0 255.255.255.0 148.1.1.2
ip route 199.112.1.0 255.255.255.0 192.168.3.2
ip route 200.122.1.0 255.255.255.0 192.168.3.2

AR2 routing table:

AR2 configuration command:

ip route 192.168.1.0 255.255.255.0 192.168.5.2
ip route 192.168.3.0 255.255.255.0 148.1.1.1
ip route 199.112.1.0 255.255.255.0 192.168.3.1
ip route 200.122.1.0 255.255.255.0 192.168.3.1

LSW1 routing table:

Switch LSW1 configuration command:

ip route 148.1.1.0 255.255.255.0 192.168.3.1
ip route 192.168.1.0 255.255.255.0 192.168.5.1
ip route 192.168.5.0 255.255.255.0 148.1.1.1

LSW2 routing table:

Switch LSW2 configuration command:

ip route 148.1.1.0 255.255.255.0 192.168.5.1
ip route 192.168.3.0 255.255.255.0 148.1.1.2
ip route 199.112.1.0 255.255.255.0 192.168.3.1
ip route 200.122.1.0 255.255.255.0 192.168.3.1

4.4: delete port from VLAN (instance)

Switch # configure terminal     ! Enter global configuration mode

Switch (config)# no vlan 10    ! Delete entire VLAN

Switch (config)# interface fastethernet 0/5 ! Enter the interface configuration mode of FastEthernet 0 / 5

Switch(config-if)# no    switchport    access    vlan   ! Remove the fastethernet 0/5 port from the VLAN.

Switch (config-if)ctrl^Z  Back to root command

Swicth #show vlan

4.5: router serial port connection (example)

!Corresponding serial port configuration code:

RA1(config)#int serial 1/2

RA1(config-if)#ip address 148.1.1.1 255.255.255.0

RA1(config-if)#clock rate 64000

RA1(config-if)#bandwith 512

RA1(config-if)#no shutdown



RA2(config)#int serial 1/2

RA2(config-if)#ip address 148.1.1.2 255.255.255.0

RA2(config-if)#clock rate 64000

RA2(config-if)#bandwith 512

RA2(config-if)#no shutdown

4, Screenshot of successful configuration of scenario 1 (Cisco)

PC2->PC0,PC2->sever1,PC2->PC1

5, Scheme I construction of Ensp complementary graph

(excluding server, 192.168.3.0 network segment is proposed for the server)

PC configuration: (ditto)

6, Scheme 1 basic communication configuration (Ensp command)

6.1: basic configuration of layer 3 switches LSW1 and LSW2

LSW1:

After configuration, you can check the connectivity between PC1 and PC2: (the figure shows the result of Ping PC1 - > PC2)

LSW2:

6.2: basic configuration of router AR1 and AR2

AR1:

AR2:

6.3: static routing configuration

AR1:

AR2:

LSW1:

LSW2:

7, Screenshot of successful configuration of scheme 1 (Ensp)

7.1: screenshot of successful communication

PC1->PC3

PC3->PC1

PC1->PC2

PC2->PC3

7.2: routing table of router and switch

7.3: some common query / delete commands

undo ip route-static 0.0.0.0(IP address) 0.0.0.0(Subnet mask) Delete static route command

ip route-static Destination segment mask next hop

display ip int brief View interface ip address

display current-configuration Displays the current profile

display ip routing-table View routing table

8, Scheme 2 Cisco topology diagram construction (if it is on the physical machine, please refer to scheme 2. Scheme 1 only realizes successful communication in the simulator configuration)

8.1: equipment required

5 pcs (with network card configured and windows 7 / 8 and Windows Server 2008 operating system installed), 2 Cisco layer 2 switches, 2 routers, through line and cross line.

8.2: IP address planning

The network segment of the IP address of the headquarters PC is 199.112.1.0/24. The IP address of one PC used in the experiment is 199.112.1.2 and the gateway is 199.112.1.1. The server is in the 200.122.1.0/24 network segment. The IP addresses of the two servers are 200.122.1.3 and 200.122.1.4 respectively, and the gateway is 200.122.1.1. The serial port IP addresses of the two routers are in the 1.1.1.0/24 network segment, which are 1.1.1.1 and 1.1.1.2 respectively.

The network segment of the IP address of the branch PC: 192.168.1.0/24, and the branch PC automatically obtains the IP address.

8.3: network topology

8.4: topology description

The headquarters includes one PC and two servers. The PC is under the 199.112.1.0/24 network segment, the IP address is 199.112.1.2 and the gateway is 199.112.1.1. The server is in the 200.122.1.0/24 network segment. The IP addresses of the two servers are 200.122.1.3 and 200.122.1.4 respectively, and the gateway is 200.122.1.1. The two routers are connected through the serial port, the serial port IP address is in the 1.1.1.0/24 network segment, and the host is directly connected with the Fastethernet port of the router. The experimental router adopts dynamic routing. The network segment of the IP address of the branch PC: 192.168.1.0/24. The branch PC can automatically obtain the IP address within the scope through the DHCP protocol of the server. The server with IP address 200.122.1.3 is configured with DHCP/DNS protocol, and the server with IP address 200.122.1.4 is configured with WEB/Email/FTP protocol.

8.5: physical machine configuration process (Cisco physical machine)

9, Cisco physical machine communication success demonstration

(here, static IP is used when testing the link, and the successful communication of dynamic allocation of IP address will be shown later)

9, References

[1]Xie Xiren.Computer network (6th Edition)[M].Beijing: Electronic Industry Press.2014.

[2]Huawei Technology Co., Ltd.Huawei ICT Certification series: HCNP Routing switching experiment guide[M].Beijing: People's Posts and Telecommunications Press, 2014.

[3] AndrewS. Tanenbaum,Computer Networks(fifth Edition)[M].Prentice-Hall Inc,2011.

10, Q & A

Q: Unknown errors often occur when configuring routers and switches.

A: View and delete redundant configuration information on the device.

Q: When configuring a switch interface, you cannot set an IP address for the interface.

A: After the port mode is changed to route, configure the IP or set the IP address through the logical VLAN. First set the IP address for the VLAN, and then configure the physical port under the VLAN.

Q: After the router and switch are configured, the host cannot be connected.

A: Check the router and switch configuration, test the network through ping and tracert commands, and modify the IP address, routing and other configurations. Turn on the routing function of layer 3 switch: ip routing. Turn off your firewall.

11, Summary

For the basic link problem, since only two Fas ports of the router in the computer room are available, the Serial is not considered in the initial design, but the cross network segment is realized through the layer-3 switch + router. It can be realized after correctly configuring the static routing of the layer-3 switch and router on the simulator, However, when the tracert command is used in the laboratory, it can not be traced from the headquarters PC to the branch PC according to the forwarding rules of the initially designed extension diagram. During this period, it also tried two different cross network segment methods of the three-layer switch: assigning IP to VLAN and single arm routing. Also try to change the mode of the port: the port in access mode can only pass through one VLAN, that is, the VLAN where the port is located. trunk mode ports can pass through multiple VLANs. When using layer-3 switches, you need to turn on its routing function, because the most basic difference between layer-2 and layer-3 switches is that layer-3 switches have routing function and can be regarded as network layer devices (of course, they can also be used as layer-2). The layer-2 switch is a device in the data link layer and does not have routing function. Finally, due to the limited Debug time, the design method is changed, the Serial port is used to connect the router, and the second extension diagram of the scheme is realized by dynamic routing.

I would also like to thank team members yj, cx, xn, by and ll for their hard work.

Attachment: server protocol configuration

Please refer to the following articles for server protocol configuration:

0 basic teach you to configure DHCP, DNS, WEB, EMAIL, HTTP, FTP protocol experimental case: small enterprise Intranet network design and construction tutorial (II) to be updated

Tags: computer networks dhcp cisco eNSP

Posted on Thu, 11 Nov 2021 00:22:19 -0500 by sbcwebs

Programmer Help