ensp 公司组网拓扑图

qiu丘2025-03-22 18:29

一、生产区交换要求

D-1

复制代码 
[d1]vlan batch 21 22 100
[d1]interface Eth-Trunk 0
[d1-Eth-Trunk0]trunkport GigabitEthernet 0/0/1 to 0/0/2

[d1]int g 0/0/23
[d1-GigabitEthernet0/0/23]port link-type trunk                     //链路类型设为trunk模式
[d1-GigabitEthernet0/0/23]port trunk allow-pass vlan 21 to 22 100  //放通vlan 21 22 100
[d1]int g 0/0/24
[d1-GigabitEthernet0/0/24]port link-type trunk
[d1-GigabitEthernet0/0/24]port trunk allow-pass vlan 21 to 22 100
[d1]interface Eth-Trunk 0
[d1-Eth-Trunk0]port link-type trunk
[d1-GigabitEthernet0/0/22]po t all v 21 22 100

---------配置

实例映射
[d1]stp region-configuration  
[d1-mst-region] region-name sc
[d1-mst-region] instance 1 vlan 21 to 22
[d1-mst-region] instance 2 vlan 23 100
[d1-mst-region] active region-configuration

配置主从根
[d1]stp instance 0 root primary
[d1]stp instance 1 root primary
[d1]stp instance 2 root secondary

配置master和backup
[d1]interface vlanif 21
[d1-Vlanif21]ip add 10.1.21.1 24  //真实IP
[d1-Vlanif21]vrrp vrid 21 virtual-ip 10.1.21.254  //虚拟IP
[d1-Vlanif21]vrrp vrid 21 priority 120            //优先级
[d1-Vlanif21]vrrp vrid 21 preempt-mode timer delay 20  //抢占延时
[d1-Vlanif21]vrrp vrid 21 track interface GigabitEthernet 0/0/3 reduced 15
[d1-Vlanif21]vrrp vrid 21 track interface GigabitEthernet 0/0/4 reduced 15


[d1]interface Vlanif 22                          
[D1-Vlanif22]ip add 10.1.22.1 24
[d1-Vlanif22]vrrp vrid 22 virtual-ip 10.1.22.254

D-2

复制代码 
[d2]vlan batch 21 22 23 100
[d2]interface Eth-Trunk 0
[d2-Eth-Trunk0]trunkport GigabitEthernet 0/0/1 to 0/0/2
[d2]int g0/0/23
[d2-GigabitEthernet0/0/23]po li t
[d2-GigabitEthernet0/0/23]port t all v 21 22 100
[d2]int g0/0/24
[d2-GigabitEthernet0/0/24]port link-type trunk
[d2-GigabitEthernet0/0/24]port trunk  allow-pass vlan 21 22 100
[d2]interface Eth-Trunk 0
[d2-Eth-Trunk0]po li tr
[d2-GigabitEthernet0/0/22]po t all v 21 22 100
[D2]int g0/0/22
[D2-GigabitEthernet0/0/22]po li t
[D2-GigabitEthernet0/0/22]po t all v 23 100


-----------配置

实例映射
[d2]stp region-configuration
[d2-mst-region] region-name sc
[d2-mst-region] instance 1 vlan 21 to 22
[d2-mst-region] instance 2 vlan 23 100
[d2-mst-region] active region-configuration

配置主从根
[d2]stp instance 2 root primary
[d2]stp instance 0 root secondary 
[d2]stp instance 1 root secondary

配置master和backup
[d2]interface Vlanif 21
[d2-Vlanif21]ip add 10.1.21.2 24
[d2-Vlanif21]vrrp vrid 21 virtual-ip 10.1.21.254

[d2]int Vlanif 22
[d2-Vlanif22]ip add 10.1.22.2 24
[d2-Vlanif22]vrrp vrid 22 virtual-ip 10.1.22.254
[D2-Vlanif22]vrrp vrid 22 priority 120
[d2-Vlanif22]vrrp vrid 22 preempt-mode timer delay 20
[d2-Vlanif22]vrrp vrid 22 track interface GigabitEthernet 0/0/3 reduced 15
[d2-Vlanif22]vrrp vrid 22 track interface GigabitEthernet 0/0/4 reduced 15

[d2]int Vlanif 23
[d2-Vlanif23]ip add 10.1.23.254 24

A-1

复制代码 
[a1]vlan batch 21 22 100
[a1]int g0/0/23
[a1-GigabitEthernet0/0/23]port link-type trunk
[a1-GigabitEthernet0/0/23]port trunk allow-pass vlan 21 22 100
[a1]int g 0/0/24
[a1-GigabitEthernet0/0/24]port link-type trunk
[a1-GigabitEthernet0/0/24]port trunk allow-pass vlan 21 22 100

[a1]port-group group-member GigabitEthernet 0/0/1 to GigabitEthernet 0/0/22
[a1-port-group]port link-type access
[a1-port-group]port default vlan 21

---------配置
[a1]stp region-configuration
[a1-mst-region] region-name sc
[a1-mst-region] instance 1 vlan 21 to 22
[a1-mst-region] instance 2 vlan 23 100
[a1-mst-region] active region-configuration

配置边缘接口
[a1]port-group group-member g 0/0/1 to g 0/0/22
[a1-port-group]stp edged-port enable

BPDU保护
[a1]stp bpdu-protection

A-2

复制代码 
[a2]vlan batch 21 22 100
[a2]int g 0/0/23
[a2-GigabitEthernet0/0/23]port link-type trunk 
[a2-GigabitEthernet0/0/23]port trunk allow-pass vlan 21 22 100

[a2]int g 0/0/24
[a2-GigabitEthernet0/0/24]port link-type trunk 
[a2-GigabitEthernet0/0/24]port trunk allow-pass vlan 21 22 100

[a2]port-group group-member GigabitEthernet 0/0/1 to GigabitEthernet 0/0/22
[a2-port-group]port link-type access 
[a2-port-group]port default vlan 22


---------配置
[a2]stp region-configuration
[a2-mst-region] region-name sc
[a2-mst-region] instance 1 vlan 21 to 22
[a2-mst-region] instance 2 vlan 23 100
[a2-mst-region] active region-configuration

边缘接口配置
[a2]port-group group-member g 0/0/1 to g 0/0/22
[a2-port-group]stp edged-port enable

BPDU保护
[a2]stp bpdu-protection

D-3

复制代码 
[a3]vlan batch 23 100
[D3]int g0/0/24
[a3-GigabitEthernet0/0/24]port link-type trunk
[a3-GigabitEthernet0/0/24]port trunk allow-pass vlan 23 100

[a3]port-group group-member GigabitEthernet 0/0/1 to GigabitEthernet 0/0/23
[a3-port-group]port link-type access
[a3-port-group]port default vlan 23

D-3配置

复制代码 
[a3]stp enable
[a3]stp region-configuration
[a3-mst-region]region-name sc
[a3-mst-region]instance 1 vlan 21 22
[a3-mst-region]instance 2 vlan 23 100
[a3-mst-region]active region-configuration  //激活

边缘接口配置
[a3]port-group group-member g0/0/1 to g 0/0/23
[a3-port-group]stp edged-port enable

BPDU保护
[a3]stp bpdu-protection

二、办公区配置要求

D-5

复制代码 
[D5]vlan batch 11 to 16 100
[D5]int e 0
[D5-Eth-Trunk0]trunkport GigabitEthernet 0/0/1 to 0/0/2
[D5]port-group group-member GigabitEthernet 0/0/23 to GigabitEthernet 0/0/24 Eth
-Trunk 0
[D5-port-group]port link-type trunk 
[D5-GigabitEthernet0/0/23]port link-type trunk 
[D5-GigabitEthernet0/0/24]port link-type trunk 
[D5-Eth-Trunk0]port link-type trunk
[D5-port-group]port trunk allow-pass vlan 11 to 16 100
[D5-GigabitEthernet0/0/23]port trunk allow-pass vlan 11 to 16 100
[D5-GigabitEthernet0/0/24]port trunk allow-pass vlan 11 to 16 100
[D5-Eth-Trunk0]port trunk allow-pass vlan 11 to 16 100

-----实例映射
[D5]stp region-configuration
[D5-mst-region]region-name bg
[D5-mst-region]instance 2 vlan 14 15 16 100
[D5-mst-region]active region-configuration

-----主从根
[D5]stp instance 1 root primary 
[D5]stp instance 0 root primary	
[D5]stp instance 2 root secondary

-----配置vrrp
[D5]interface Vlanif 11
[D5-Vlanif11]ip add 10.1.11.1 24
[D5-Vlanif11]vrrp vrid 11 virtual-ip 10.1.11.254
[D5-Vlanif11]vrrp vrid 11 priority 120
[D5-Vlanif11]vrrp vrid 11 preempt-mode timer delay 20
[D5-Vlanif11]vrrp vrid 11 track interface GigabitEthernet 0/0/3 reduced 15
[D5-Vlanif11]vrrp vrid 11 track interface GigabitEthernet 0/0/4 reduced 15

[D5]interface Vlanif 12
[D5-Vlanif12]ip add 10.1.12.1 24
[D5-Vlanif12]vrrp vrid 12 virtual-ip 10.1.12.254
[D5-Vlanif12]vrrp vrid 12 priority 120
[D5-Vlanif12]vrrp vrid 12 preempt-mode timer delay 20
[D5-Vlanif12]vrrp vrid 12 track interface GigabitEthernet 0/0/3 reduced 15
[D5-Vlanif12]vrrp vrid 12 track interface GigabitEthernet 0/0/4 reduced 15

[D5]interface Vlanif 13
[D5-Vlanif13]ip add 10.1.13.1 24
[D5-Vlanif13]vrrp vrid 13 virtual-ip 10.1.13.254
[D5-Vlanif13]vrrp vrid 13 priority 120
[D5-Vlanif13]vrrp vrid 13 preempt-mode timer delay 20
[D5-Vlanif13]vrrp vrid 13 track interface GigabitEthernet 0/0/3 reduced 15
[D5-Vlanif13]vrrp vrid 13 track interface GigabitEthernet 0/0/4 reduced 15

[D5]interface Vlanif 14
[D5-Vlanif14]ip add 10.1.14.1 24
[D5-Vlanif14]vrrp vrid 14 virtual-ip 10.1.14.254

[D5]interface Vlanif 15
[D5-Vlanif15]ip add 10.1.15.1 24
[D5-Vlanif15]vrrp vrid 15 virtual-ip 10.1.15.254

[D5]interface Vlanif 16
[D5-Vlanif16]ip add 10.1.16.1 24
[D5-Vlanif16]vrrp vrid 16 virtual-ip 10.1.16.254

D-6

复制代码 
[D6]vlan batch 11 to 16 100
[D6]int e 0
[D6-Eth-Trunk0]trunkport GigabitEthernet 0/0/1 to 0/0/2
[D6]port-group group-member GigabitEthernet 0/0/23 to GigabitEthernet 0/0/24 Eth
-Trunk 0
[D6-port-group]port link-type trunk 
[D6-GigabitEthernet0/0/23]port link-type trunk 
[D6-GigabitEthernet0/0/24]port link-type trunk 
[D6-Eth-Trunk0]port link-type trunk
[D6-port-group]port trunk allow-pass vlan 11 to 16 100
[D6-GigabitEthernet0/0/23]port trunk allow-pass vlan 11 to 16 100
[D6-GigabitEthernet0/0/24]port trunk allow-pass vlan 11 to 16 100
[D6-Eth-Trunk0]port trunk allow-pass vlan 11 to 16 100

-----实例映射
[D6]stp region-configuration
[D6-mst-region]region-name bg
[D6-mst-region]instance 2 vlan 14 15 16 100
[D6-mst-region]active region-configuration

-----主从根
[D6]stp instance 2 root primary 
[D6]stp instance 1 root secondary 
[D6]stp instance 0 root secondary

-----配置vrrp
[D6]interface Vlanif 11
[D6-Vlanif11]ip add 10.1.11.2 24	
[D6-Vlanif11]vrrp vrid 11 virtual-ip 10.1.11.254

[D6]interface Vlanif 12
[D6-Vlanif12]ip add 10.1.12.2 24	
[D6-Vlanif12]vrrp vrid 11 virtual-ip 10.1.12.254

[D6]interface Vlanif 13
[D6-Vlanif13]ip add 10.1.13.2 24	
[D6-Vlanif13]vrrp vrid 11 virtual-ip 10.1.13.254

[D6]interface Vlanif 14
[D6-Vlanif14]ip add 10.1.14.2 24	
[D6-Vlanif14]vrrp vrid 14 virtual-ip 10.1.14.254
[D6-Vlanif14]vrrp vrid 14 priority 120
[D6-Vlanif14]vrrp vrid 14 preempt-mode timer delay 20
[D6-Vlanif14]vrrp vrid 14 track interface GigabitEthernet 0/0/3 reduced 15
[D6-Vlanif14]vrrp vrid 14 track interface GigabitEthernet 0/0/4 reduced 15

[D6]interface Vlanif 15
[D6-Vlanif15]ip add 10.1.15.2 24	
[D6-Vlanif15]vrrp vrid 15 virtual-ip 10.1.15.254
[D6-Vlanif15]vrrp vrid 15 priority 120
[D6-Vlanif15]vrrp vrid 15 preempt-mode timer delay 20
[D6-Vlanif15]vrrp vrid 15 track interface GigabitEthernet 0/0/3 reduced 15
[D6-Vlanif15]vrrp vrid 15 track interface GigabitEthernet 0/0/4 reduced 15

[D6]interface Vlanif 16
[D6-Vlanif16]ip add 10.1.16.2 24	
[D6-Vlanif16]vrrp vrid 16 virtual-ip 10.1.16.254
[D6-Vlanif16]vrrp vrid 16 priority 120
[D6-Vlanif16]vrrp vrid 16 preempt-mode timer delay 20
[D6-Vlanif16]vrrp vrid 16 track interface GigabitEthernet 0/0/3 reduced 15
[D6-Vlanif16]vrrp vrid 16 track interface GigabitEthernet 0/0/4 reduced 15

A-4

复制代码 
[A4]vlan batch 11 to 16 100

[A4-GigabitEthernet0/0/23]port link-type trunk
[A4-GigabitEthernet0/0/23]port trunk allow-pass vlan 11 to 16 100
[A4-GigabitEthernet0/0/24]port link-type trunk
[A4-GigabitEthernet0/0/24]port trunk allow-pass vlan 11 to 16 100

[A4]port-group group-member g0/0/3 to g0/0/5
[A4-port-group]port link-type access
[A4-port-group]port default vlan 11         //财务部

[A4]port-group group-member g0/0/6 to g0/0/10
[A4-port-group]port link-type access
[A4-port-group]port default vlan 12         //销售部

[A4]port-group group-member g0/0/11 to g0/0/15
[A4-port-group]port link-type access
[A4-port-group]port default vlan 13         //后勤部

-----实例映射
[A4]stp region-configuration
[A4-mst-region]region-name bg
[A4-mst-region]instance 2 vlan 14 15 16 100
[A4-mst-region]active region-configuration

-----配置边缘接口
[A4]port-group group-member g0/0/3 to g0/0/15
[A4-port-group]stp edged-port enable

bpdu保护
[A4]stp bpdu-protection

A-5

复制代码 
[A5]vlan batch 11 to 16 100
[A5-GigabitEthernet0/0/23]port link-type trunk
[A5-GigabitEthernet0/0/23]port trunk allow-pass vlan 11 to 16 100
[A5-GigabitEthernet0/0/24]port link-type trunk
[A5-GigabitEthernet0/0/24]port trunk allow-pass vlan 11 to 16 100

-----vlan规划
[A5]port-group group-member GigabitEthernet 0/0/3 to GigabitEthernet 0/0/5
[A5-port-group]port link-type access
[A5-port-group]port default vlan 14         //业务部

[A5]port-group group-member GigabitEthernet 0/0/6 to GigabitEthernet 0/0/10
[A5-port-group]port link-type access
[A5-port-group]port default vlan 15         //运维部

[A5]port-group group-member GigabitEthernet 0/0/11 to GigabitEthernet 0/0/15
[A5-port-group]port link-type access
[A5-port-group]port default vlan 16         //研发部

-----实例映射
[A5]stp region-configuration
[A5-mst-region]region-name bg
[A5-mst-region]instance 2 vlan 14 15 16 100
[A5-mst-region]active region-configuration

-----配置边缘接口
[A5]port-group group-member g 0/0/3 to g0/0/15
[A5-port-group]stp edged-port enable
-----bpdu保护
[A5]stp bpdu-protection

三、服务器配置要求

C-1

复制代码 
[C1]vlan batch 31 to 35 100
[C1]interface Eth-Trunk 0
[C1-Eth-Trunk0]trunkport GigabitEthernet 0/0/1 to 0/0/2
[C1]port-group group-member GigabitEthernet 0/0/22 to GigabitEthernet 0/0/23 Eth
-Trunk 0
[C1-port-group]port link-type trunk
[C1-port-group]port trunk allow-pass vlan 31 to 35 100

-----实例映射
[C1]stp region-configuration 
[C1-mst-region]region-name fwq	
[C1-mst-region]instance 1 vlan 31 33 100
[C1-mst-region]instance 2 vlan 32 34 35
[C1-mst-region]active region-configuration 

-----主从根
[C1]stp instance 0 root primary
[C1]stp instance 1 root primary	
[C1]stp instance 2 root secondary

-----配置vrrp
[C1]interface Vlanif 31
[C1-Vlanif31]ip add 10.1.31.1 24	
[C1-Vlanif31]vrrp vrid 31 virtual-ip 10.1.31.254	
[C1-Vlanif31]vrrp vrid 31 priority 120
[C1-Vlanif31]vrrp vrid 31 preempt-mode timer delay 20	
[C1-Vlanif31]vrrp vrid 31 track interface GigabitEthernet 0/0/24 reduced 30


[C1-Vlanif31]int vl 32
[C1-Vlanif32]ip add 10.1.32.1 24
[C1-Vlanif32]vrrp vrid 32 virtual-ip 10.1.32.254

C-2

复制代码 
[C2]vlan batch 31 to 35 100

[C2]interface Eth-Trunk 0
[C2-Eth-Trunk0]trunkport GigabitEthernet 0/0/1 to 0/0/2
[C2]port-group group-member GigabitEthernet 0/0/22 to GigabitEthernet 0/0/23 Eth
-Trunk 0
[C2-port-group]port link-type trunk
[C2-port-group]port trunk allow-pass vlan 31 to 35 100

-----实例映射
[C2]stp region-configuration 
[C2-mst-region]region-name fwq	
[C2-mst-region]instance 1 vlan 31 33 100
[C2-mst-region]instance 2 vlan 32 34 35
[C2-mst-region]active region-configuration

-----主从根
[C2]stp instance 2 root primary
[C2]stp instance 1 root secondary 
[C2]stp instance 0 root secondary

D-3

复制代码 
[D3]vlan batch 31 to 35 100
[D3]interface Eth-Trunk 0	
[D3-Eth-Trunk0]trunkport GigabitEthernet 0/0/1 to 0/0/2
[D3]port-group group-member GigabitEthernet 0/0/23 to GigabitEthernet 0/0/24 Eth
-Trunk 0
[D3-port-group]port link-type trunk
[D3-port-group]port trunk allow-pass vlan 31 to 35 100

[D3]port-group group-member GigabitEthernet 0/0/3 to g0/0/5
[D3-port-group]port link-type access 	
[D3-port-group]port default vlan 31

[D3]port-group group-member GigabitEthernet 0/0/6 to g0/0/10
[D3-port-group]port link-type access 	
[D3-port-group]port default vlan 33

-----实例映射
[D3]stp region-configuration 
[D3-mst-region]region-name fwq	
[D3-mst-region]instance 1 vlan 31 33 100
[D3-mst-region]instance 2 vlan 32 34 35
[D3-mst-region]active region-configuration

-----配置边缘接口
[D3]port-group group-member GigabitEthernet 0/0/3 to g0/0/10
[D3-port-group]stp edged-port enable

-----bpdu保护
[D3]stp bpdu-protection

D-4

复制代码 
[D4]vlan batch 31 to 35 100
[D4]interface Eth-Trunk 0
[D4-Eth-Trunk0]trunkport GigabitEthernet 0/0/1 to 0/0/2
[D4]port-group group-member GigabitEthernet 0/0/23 to GigabitEthernet 0/0/24 Eth
-Trunk 0
[D4-port-group]port link-type trunk
[D4-port-group]port trunk allow-pass vlan 31 to 35 100

[D4]port-group group-member GigabitEthernet 0/0/3 to g0/0/5
[D4-port-group]port link-type access 
[D4-port-group]port default vlan 32


[D4]port-group group-member GigabitEthernet 0/0/6 to g0/0/10
[D4-port-group]port link-type access 
[D4-port-group]port default vlan 34

[D4]port-group group-member GigabitEthernet 0/0/11 to g0/0/20
[D4-port-group]port link-type access 
[D4-port-group]port default vlan 35


-----实例映射
[D4]stp region-configuration 
[D4-mst-region]region-name fwq	
[D4-mst-region]instance 1 vlan 31 33 100
[D4-mst-region]instance 2 vlan 32 34 35
[D4-mst-region]active region-configuration

-----配置边缘接口
[D4-port-group]port-group group-member GigabitEthernet 0/0/3 to g0/0/20
[D4-port-group]stp edged-port enable

-----bpdu保护
[D4]stp bpdu-protection
相关推荐
梅见十柒40 分钟前
UNIX网络编程笔记:网络协议
服务器·网络·c++·经验分享·笔记·网络协议·unix
m0_738754361 小时前
防火墙虚拟系统实验
运维·服务器·网络
weixin_307779132 小时前
AWS中通过Endpoint Security(如Amazon GuardDuty)与安全组、网络ACL联动实现协同防御
网络·安全·架构·云计算·aws
name_S562 小时前
尝试在软考65天前开始成为软件设计师-计算机网络
网络·学习·计算机网络
隔壁小查3 小时前
【计算机网络】网络简介
网络·计算机网络
萤火夜3 小时前
网络层之IP协议
服务器·网络·tcp/ip
Mazy.v3 小时前
FPGA 以太网通信(四)网络视频传输系统
网络·fpga开发·音视频
shenmu844 小时前
网络不可达
运维·服务器·网络
D-river4 小时前
【HTTP 传输过程中的 cookie】
网络·网络协议·http
Estrella-q6 小时前
深入理解Linux网络随笔(五):深度理解本机网络I/O
linux·运维·网络
热门推荐
01RAG 实践- Ollama+RagFlow 部署本地知识库02如何在WPS和Word/Excel中直接使用DeepSeek功能03DeepSeek各版本说明与优缺点分析04DeepSeek R1本地化部署 Ollama + Chatbox 打造最强 AI 工具05本地化部署AI知识库:基于Ollama+DeepSeek+AnythingLLM保姆级教程06从零安装 LLaMA-Factory 微调 Qwen 大模型成功及所有的坑07前端AI对话框项目实现08命令行方式将mysql数据库迁移到达梦数据库(全步骤)09本地部署DeepSeek教程(Mac版本)10苍穹外卖面试总结