Easy IP 配置

Easy IP 配置
4.1 问题
4.2 方案
搭建实验环境,如图-1所示。

在这里插入图片描述
图-1

4.3 步骤
实现此案例需要按照如下步骤进行。
1)pc配置

PC-1:
  10.1.1.1
  255.255.255.0
  10.1.1.254
PC-2:
  10.1.2.1
  255.255.255.0
  10.1.2.254
PC-3:
  10.1.3.78
  255.255.255.0
  10.1.3.254

2)sw配置

[SW]vlan batch 10 20 30 66
[SW]interface gi0/0/1
[SW-GigabitEthernet0/0/1]port link access 
[SW-GigabitEthernet0/0/1]port default vlan  10
[SW-GigabitEthernet0/0/1]quit
[SW]interface GigabitEthernet 0/0/2
[SW-GigabitEthernet0/0/2]port link access
[SW-GigabitEthernet0/0/2]port default vlan  30 
[SW-GigabitEthernet0/0/2]quit
[SW]interface GigabitEthernet 0/0/3
[SW-GigabitEthernet0/0/3]port default vlan  66
[SW-GigabitEthernet0/0/3]quit
[SW]interface GigabitEthernet 0/0/4
[SW-GigabitEthernet0/0/4]port default vlan  20
[SW-GigabitEthernet0/0/4]quit

[SW]interface Vlanif  10
[SW-Vlanif10]ip address 10.1.1.254 24
[SW-Vlanif10]quit
[SW]interface Vlanif  20
[SW-Vlanif20]ip address 10.1.2.254 24
[SW-Vlanif20]quit
[SW]interface Vlanif  30
[SW-Vlanif30]ip address 10.1.3.254 24
[SW-Vlanif30]quit
[SW]interface Vlanif  66
[SW-Vlanif6]ip address 10.1.66.1 24
[SW-Vlanif6]quit
[SW]ip route-static 0.0.0.0  0 10.1.66.254

3)AR1配置

[R1]interface GigabitEthernet 0/0/0
[R1-GigabitEthernet0/0/0]ip address 10.1.66.254 24
[R1-GigabitEthernet0/0/0]quit
[R1]interface GigabitEthernet 0/0/1
[R1-GigabitEthernet0/0/1]ip address  100.1.1.1 24
[R1-GigabitEthernet0/0/1]quit
[R1]ip route-static  0.0.0.0 0   100.1.1.2
[R1]ip route-static  10.1.1.0 24 10.1.66.1
[R1]ip route-static  10.1.2.0 24 10.1.66.1
[R1]ip route-static  10.1.3.0 24 10.1.66.1

4)AR2配置

[R2]interface GigabitEthernet 0/0/0
[R2-GigabitEthernet0/0/0]ip address 200.1.1.254 24
[R2-GigabitEthernet0/0/0]quit
[R2]interface GigabitEthernet 0/0/1
[R2-GigabitEthernet0/0/1]ip address  100.1.1.2 24
[R2-GigabitEthernet0/0/1]quit

5)server配置

Server-1:
  200.1.1.1
  255.255.255.0
  200.1.1.254

6)AR1配置NAT (配置ACL)

[R1]acl 2000
[R1-acl-basic-2000]rule 10 permit  source  10.1.1.0 0.0.0.255
[R1-acl-basic-2000]rule 20 permit  source  10.1.2.1 0.0.0.254
[R1-acl-basic-2000]rule 30 deny    source  10.1.3.78 0.0.0.0
[R1-acl-basic-2000]rule 40 permit  source  10.1.3.0 0.0.0.255
[R1-acl-basic-2000]quit
[R1]interface GigabitEthernet 0/0/1
[R1-GigabitEthernet0/0/1]nat outbound 2000
[R1]display  nat outbound
 NAT Outbound Information:
 --------------------------------------------------------------------------
 Interface                     Acl     Address-group/IP/Interface      Type
 --------------------------------------------------------------------------
 GigabitEthernet0/0/1         2000                      100.1.1.1    easyip  
 --------------------------------------------------------------------------
  Total : 1

4)PC1/2/3测试与Server-1的互通性,如图-10所示
在这里插入图片描述
在这里插入图片描述
在这里插入图片描述

图-10
分享方法
根据终端设备配置ACL,然后再边界设备设置NAT

版权声明:本文为qq_36963043原创文章,遵循CC 4.0 BY-SA版权协议,转载请附上原文出处链接和本声明。