VLAN间路由器实验:使用路由器的主接口
1.场景说明
公司现有4个部门,每个部门有4个终端
有1台二层交换机,1台路由器
终端都连接再交换机上,每个部门挂画一个VLAN
交换机上联路由器,通过路由器的接口让所有终端之间都可以互通| 部门 | 网段 | 网关IP | VLAN号 | VLAN名称描述 |
|---|---|---|---|---|
| 部门1 | 192.168.1.0/24 | 192.168.1.254 | 11 | BuMen1 |
| 部门2 | 192.168.2.0/24 | 192.168.2.254 | 12 | BuMen2 |
| 部门3 | 192.168.3.0/24 | 192.168.3.254 | 13 | BuMen3 |
| 部门4 | 192.168.4.0/24 | 192.168.4.254 | 14 | BuMen4 |
2.配置ASW1
[Huawei]sys ASW1
[ASW1]undo info-center enable
#-- 创建VLAN
[ASW1]vlan batch 11 to 14
[ASW1]vlan 11
[ASW1-vlan11]description BuMen1
[ASW1-vlan11]vlan 12
[ASW1-vlan12]description BuMen2
[ASW1-vlan12]vlan 13
[ASW1-vlan13]description BuMen3
[ASW1-vlan13]vlan 14
[ASW1-vlan14]description BuMen4
#-- VLAN11
[ASW1]int GigabitEthernet 0/0/3
[ASW1-GigabitEthernet0/0/3]p l a
[ASW1-GigabitEthernet0/0/3]p d v 11
[ASW1-GigabitEthernet0/0/3]int g0/0/4
[ASW1-GigabitEthernet0/0/4]p l a
[ASW1-GigabitEthernet0/0/4]p d v 11
[ASW1-GigabitEthernet0/0/4]int g0/0/1
[ASW1-GigabitEthernet0/0/1]p l a
[ASW1-GigabitEthernet0/0/1]p d v 11
#-- VLAN12
[ASW1-GigabitEthernet0/0/1]int g0/0/7
[ASW1-GigabitEthernet0/0/7]p l a
[ASW1-GigabitEthernet0/0/7]p d v 12
[ASW1-GigabitEthernet0/0/7]int g0/0/9
[ASW1-GigabitEthernet0/0/9]p l a
[ASW1-GigabitEthernet0/0/9]p d v 12
[ASW1-GigabitEthernet0/0/9]int g0/0/10
[ASW1-GigabitEthernet0/0/10]p l a
[ASW1-GigabitEthernet0/0/10]p d v 12
#-- VLAN13
[ASW1-GigabitEthernet0/0/10]int g0/0/13
[ASW1-GigabitEthernet0/0/13]p l a
[ASW1-GigabitEthernet0/0/13]p d v 13
[ASW1-GigabitEthernet0/0/13]int g0/0/15
[ASW1-GigabitEthernet0/0/15]p l a
[ASW1-GigabitEthernet0/0/15]p d v 13
[ASW1-GigabitEthernet0/0/15]int g0/0/16
[ASW1-GigabitEthernet0/0/16]p l a
[ASW1-GigabitEthernet0/0/16]p d v 13
#-- VLAN14
[ASW1-GigabitEthernet0/0/16]int g0/0/19
[ASW1-GigabitEthernet0/0/19]p l a
[ASW1-GigabitEthernet0/0/19]p d v 14
[ASW1-GigabitEthernet0/0/19]int g0/0/21
[ASW1-GigabitEthernet0/0/21]p l a
[ASW1-GigabitEthernet0/0/21]p d v 14
[ASW1-GigabitEthernet0/0/21]int g0/0/22
[ASW1-GigabitEthernet0/0/22]p l a
[ASW1-GigabitEthernet0/0/22]p d v 14检查
3.配置AR1
<Huawei>sys
[Huawei]sys AR1
[AR1]int g0/0/0
[AR1-GigabitEthernet0/0/0]ip addr 192.168.1.254 24
[AR1-GigabitEthernet0/0/0]int g0/0/1
[AR1-GigabitEthernet0/0/1]ip addr 192.168.2.254 24
[AR1-GigabitEthernet0/0/1]int g0/0/2
[AR1-GigabitEthernet0/0/2]ip addr 192.168.3.254 24
[AR1-GigabitEthernet0/0/2]int g1/0/0
[AR1-GigabitEthernet1/0/0]ip addr 192.168.4.254 244.测试
5.通信原理
路由器把所有PC都PING一遍之后
路由器
[AR1]dis arp
IP ADDRESS MAC ADDRESS EXPIRE(M) TYPE INTERFACE VPN-INSTANCE
VLAN/CEVLAN PVC
------------------------------------------------------------------------------
192.168.1.254 00e0-fcf5-2e30 I - GE0/0/0
192.168.1.1 5489-985a-7cda 13 D-0 GE0/0/0
192.168.1.2 5489-9876-3571 20 D-0 GE0/0/0
192.168.2.254 00e0-fcf5-2e31 I - GE0/0/1
192.168.2.1 5489-98d5-0ac5 13 D-0 GE0/0/1
192.168.2.2 5489-98f2-389b 20 D-0 GE0/0/1
192.168.3.254 00e0-fcf5-2e32 I - GE0/0/2
192.168.3.1 5489-9864-5f94 14 D-0 GE0/0/2
192.168.3.2 5489-9848-6460 20 D-0 GE0/0/2
192.168.4.254 00e0-fcf6-2e30 I - GE1/0/0
192.168.4.1 5489-9826-1fe3 14 D-0 GE1/0/0
192.168.4.2 5489-9869-3ba0 20 D-0 GE1/0/0
------------------------------------------------------------------------------
Total:12 Dynamic:8 Static:0 Interface:4 交换机
[ASW1]dis mac-add
MAC address table of slot 0:
-------------------------------------------------------------------------------
MAC Address VLAN/ PEVLAN CEVLAN Port Type LSP/LSR-ID
VSI/SI MAC-Tunnel
-------------------------------------------------------------------------------
5489-985a-7cda 11 - - GE0/0/3 dynamic 0/-
00e0-fcf5-2e31 12 - - GE0/0/7 dynamic 0/-
5489-9876-3571 11 - - GE0/0/4 dynamic 0/-
00e0-fcf5-2e32 13 - - GE0/0/13 dynamic 0/-
5489-9848-6460 13 - - GE0/0/16 dynamic 0/-
00e0-fcf6-2e30 14 - - GE0/0/19 dynamic 0/-
00e0-fcf5-2e30 11 - - GE0/0/1 dynamic 0/-
5489-9869-3ba0 14 - - GE0/0/22 dynamic 0/-
5489-98f2-389b 12 - - GE0/0/10 dynamic 0/-
5489-98d5-0ac5 12 - - GE0/0/9 dynamic 0/-
5489-9864-5f94 13 - - GE0/0/15 dynamic 0/-
5489-9826-1fe3 14 - - GE0/0/21 dynamic 0/-
-------------------------------------------------------------------------------
Total matching items on slot 0 displayed = 12 整个通信流程
以PC1 PING PC3为例
PC>ping 192.168.2.1
Ping 192.168.2.1: 32 data bytes, Press Ctrl_C to break
Request timeout!
From 192.168.2.1: bytes=32 seq=2 ttl=127 time=78 ms
From 192.168.2.1: bytes=32 seq=3 ttl=127 time=93 ms
From 192.168.2.1: bytes=32 seq=4 ttl=127 time=63 ms
From 192.168.2.1: bytes=32 seq=5 ttl=127 time=62 ms
--- 192.168.2.1 ping statistics ---
5 packet(s) transmitted
4 packet(s) received
20.00% packet loss
round-trip min/avg/max = 0/74/93 ms
PC>tracert 192.168.2.1
traceroute to 192.168.2.1, 8 hops max
(ICMP), press Ctrl+C to stop
1 192.168.1.254 47 ms 31 ms 47 ms #--第一跳给网关
2 192.168.2.1 94 ms 78 ms 94 ms #--第二条给目的IP地址
PC>arp -a
Internet Address Physical Address Type
192.168.1.254 00-E0-FC-F5-2E-30 dynamic #--学习到网关的地址PC>arp -a
Internet Address Physical Address Type
192.168.2.254 00-E0-FC-F5-2E-31 dynamic #PC3也学习到了自己的网关