Ishni bajarish tartibi
4.3-rasmda ko’rsatilgan topologiya bo’yicha LSW1, LSW2 kommutatorlar
uchun asosiy konfiguratsiyalarni sozlang.
4.3-rasm. Tadqiqot qilinayotgan tarmoq tuzilishi
LSW1 kommutatorga nom beramiz va IP manzilni sozlaymiz.
system-view
[Huawei]sysname LSW1
[LSW1]vlan 5
[LSW1-vlan5]description **vlan_mgmt**
[LSW1-vlan5]int vlan5
[LSW1-Vlanif5]description **vlan_mgmt**
[LSW1-Vlanif5]ip address 192.168.1.1 24
[LSW1-Vlanif5]display this
#
interface Vlanif5
description **vlan_mgmt**
ip address 192.168.1.1 255.255.255.0
#
[LSW1-Vlanif5]
quit
Konsol portga parol qo’yamiz. Autentifikatsiya sifatida AAA dan
foydalanamiz.
[LSW1]user-interface console 0
[LSW1-ui-console0]authentication-mode aaa
[LSW1-ui-console0]idle-timeout 15
[LSW1-ui-console0]display this
#
user-interface con 0
authentication-mode aaa
idle-timeout 15 0
user-interface vty 0 4
#
Return
[LSW1-ui-console0]quit
VTY virtual terminalini sozlaymiz.
[LSW1]user-interface vty 0 4
[LSW1-ui-vty0-4]authentication-mode aaa
[LSW1-ui-vty0-4]protocol inbound telnet
[LSW1-ui-vty0-4]idle-timeout 15
[LSW1-ui-vty0-4]display this
#
user-interface con 0
authentication-mode aaa
idle-timeout 15 0
user-interface vty 0 4
authentication-mode aaa
idle-timeout 15 0
#
Return
[LSW1-ui-vty0-4]
quit
Telnet serverini sozlaymiz.
[LSW1]telnet server enable
[LSW1]aaa
[LSW1-aaa]local-user consolelsw1 password cipher
password privilege level 15
[LSW1-aaa]display this
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
local-user consolelsw1 password cipher VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user consolelsw1 privilege level 15
#
return
[LSW1-aaa]local-user consolelsw1 service-type terminal
[LSW1-aaa]quit
[LSW1]quit
quit
Username:consolelsw1
Password:
system-view
Foydalanuvchi kirish ma'lumotlarini sozlaymiz.
[LSW1]aaa
[LSW1-aaa]display this
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
local-user consolelsw1 password cipher VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user consolelsw1 privilege level 15
local-user consolelsw1 service-type terminal
#
Return
[LSW1-aaa]local-user telnetlsw1 password cipher
password privilege level 15
[LSW1-aaa]local-user telnetlsw1 service-type telnet
[LSW1-aaa]display this
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
local-user telnetlsw1 password cipher
VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user telnetlsw1 privilege level 15
local-user telnetlsw1 service-type telnet
local-user consolelsw1 password cipher
VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user consolelsw1 privilege level 15
local-user consolelsw1 service-type terminal
#
Return
[LSW1-aaa]
quit
[LSW1]display current-configuration
#
sysname LSW1
#
vlan batch 5
#
cluster enable
ntdp enable
ndp enable
#
drop illegal-mac alarm
#
diffserv domain default
#
drop-profile default
#
vlan 5
description **vlan_mgmt**
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
local-user telnetlsw1 password cipher
VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user telnetlsw1 privilege level 15
local-user telnetlsw1 service-type telnet
local-user consolelsw1 password cipher
VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user consolelsw1 privilege level 15
local-user consolelsw1 service-type terminal
#
interface Vlanif1
#
interface Vlanif5
description **vlan_mgmt**
ip address 192.168.1.1 255.255.255.0
user-interface con 0
authentication-mode aaa
idle-timeout 15 0
user-interface vty 0 4
authentication-mode aaa
idle-timeout 15 0
#
Return
[LSW1]interface GigabitEthernet 0/0/1
[LSW1-GigabitEthernet0/0/1]port link-type access
[LSW1-GigabitEthernet0/0/1]port default vlan 5
[LSW1-GigabitEthernet0/0/1]display this
#
interface GigabitEthernet0/0/1
port link-type access
port default vlan 5
#
return
[LSW1-GigabitEthernet0/0/1]quit
[LSW1]
quit
Endi ikkinchi kimmutator qurilmasini sozlashni boshlaymiz. LSW2
kommutatorga nom beramiz va IP manzilni sozlaymiz.
clock datetime 12:03:22 2022-01-15
system-view
[Huawei]sysname LSW2
[LSW2]vlan 5
[LSW2-vlan5]description **vlan_mgmt**
[LSW2-vlan5]display this
#
vlan 5
description **vlan_mgmt**
#
Return
[LSW2-vlan5]int vlan5
[LSW2-Vlanif5]description **vlan_mgmt**
[LSW2-Vlanif5]ip address 192.168.1.2 24
[LSW2-vlanif5]quit
Konsol portga parol qo’yamiz. Autentifikatsiya sifatida AAA dan
foydalanamiz.
[LSW2]user-interface console 0
[LSW2-ui-console0]authentication-mode aaa
[LSW2-ui-console0]idle-timeout 15
[LSW2-ui-console0]display this
#
user-interface con 0
authentication-mode aaa
idle-timeout 15 0
user-interface vty 0 4
#
return
[LSW2-ui-console0]quit
VTY virtual terminalini sozlaymiz.
[LSW2]user-interface vty 0 4
[LSW2-ui-vty0-4]authentication-mode aaa
[LSW2-ui-vty0-4]protocol inbound telnet
[LSW2-ui-vty0-4]idle-timeout 15
[LSW2-ui-vty0-4]quit
Telnet serverni sozlaymiz.
[LSW2]telnet server enable
[LSW2]aaa
[LSW2-aaa]display this
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
local-user consolelsw2 password cipher
VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user consolelsw2 privilege level 15
local-user consolelsw2 service-type terminal
#
return
[LSW2-aaa]local-user telnetlsw2 password cipher
password privilege level 15
[LSW2-aaa]local-user telnetlsw2 service-type telnet
[LSW2-aaa]display this
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
local-user telnetlsw2 password cipher VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user telnetlsw2 privilege level 15
local-user telnetlsw2 service-type telnet
local-user consolelsw2 password cipher VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user consolelsw2 privilege level 15
local-user consolelsw2 service-type terminal
#
return
Foydalanuvchi kirish ma'lumotlarini sozlaymiz.
[LSW2]aaa
[LSW2-aaa]local-user consolelsw2 password cipher
password privilege level 15
[LSW2-aaa]local-user consolelsw2 service-type terminal
[LSW2-aaa]quit
[LSW2]quit
quit
Username:
consolelsw2
Password:
system-view
[LSW2]aaa
[LSW2-aaa]display this
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password simple admin
local-user admin service-type http
local-user consolelsw2 password cipher
VY^NCQZ_aQ5NZPO3JBXBHA!!
local-user consolelsw2 privilege level 15
local-user consolelsw2 service-type terminal
#
return
[LSW2-aaa]
quit
[LSW2]interface GigabitEthernet 0/0/1
[LSW2-GigabitEthernet0/0/1]port link-type access
[LSW2-GigabitEthernet0/0/1]port default vlan 5
[LSW2-GigabitEthernet0/0/1]quit
[LSW2]ping 192.168.1.2
PING 192.168.1.2: 56 data bytes, press CTRL_C to break
Reply from 192.168.1.2: bytes=56 Sequence=1 ttl=255 time=390 ms
Reply from 192.168.1.2: bytes=56 Sequence=2 ttl=255 time=20 ms
Reply from 192.168.1.2: bytes=56 Sequence=3 ttl=255 time=1 ms
Reply from 192.168.1.2: bytes=56 Sequence=4 ttl=255 time=10 ms
Reply from 192.168.1.2: bytes=56 Sequence=5 ttl=255 time=1 ms
--- 192.168.1.2 ping statistics ---
5 packet(s) transmitted
5 packet(s) received
0.00% packet loss
round-trip min/avg/max = 1/84/390 ms
[LSW2]ping 192.168.1.1
PING 192.168.1.1: 56 data bytes, press CTRL_C to break
Reply from 192.168.1.1: bytes=56 Sequence=1 ttl=255 time=280 ms
Reply from 192.168.1.1: bytes=56 Sequence=2 ttl=255 time=30 ms
Reply from 192.168.1.1: bytes=56 Sequence=3 ttl=255 time=50 ms
Reply from 192.168.1.1: bytes=56 Sequence=4 ttl=255 time=40 ms
Reply from 192.168.1.1: bytes=56 Sequence=5 ttl=255 time=10 ms
--- 192.168.1.1 ping statistics ---
5 packet(s) transmitted
5 packet(s) received
0.00% packet loss
round-trip min/avg/max = 10/82/280 ms
telnet 192.168.1.2
Trying 192.168.1.2 ...
Press CTRL+K to abort
Connected to 192.168.1.2 ...
Login authentication
Username:telnetlsw2
Password:
Info: The max number of VTY users is 5, and the number
of current VTY users on line is 1.
The current login time is 2022-01-15 15:26:00.
display current-configuration
save
quit
Username:
consolelsw1
Password:
save
Do'stlaringiz bilan baham: |