1. 笔试题
1.1 实验拓扑
1.2 实验要求
-
公司A为小型销售公司,需要实现基本上网功能,蓝色部分为外网线,提供DHCP服务 DnsServer:114.114.114.114
-
帮助网管排查某一台计算机在某一台交换机的某个端口
2. 操作步骤
-
配置路由器相关的LAN侧接口IP地址
-
配置DHCP项,要求有PC1与PC2属不同网段 网关; 排除地址(200以后段); 租期8小时 DNS:114.114.114.114
-
配置路由器接口为PPPOE Client上网,启用端口PAT-NAT
-
PC1与PC2均可ping通www.baidu.com(配置AR1220默认路由)
-
帮助网管在多条线路中找到PC1; PC2所属交换机端口 (注,需写出关键命令原理,提示:基于ARP+MAC表项)
-
配置AR1220的远程登录服务(telnet)
3. 操作配置
3.1 配置IP地址
AR1220:
sysname PPPoE-clinet
interface GigabitEthernet0/0/0ip address 192.168.1.254 255.255.255.0
[PPPoE-clinet-Ethernet0/0/0]ip add^
Error: Unrecognized command found at '^' position.
//发现在e0/0/0口是无法配置ip地址!!!
//这是企业面试故意设置的坑!!!
//说明这不是三层接口,而是二层接口,是不能直接配置ip地址的要在vlanif上配置
interface Vlanif1ip address 192.168.2.254 255.255.255.0
3.2 配置DHCP
AR 1220:
dhcp enable
interface GigabitEthernet0/0/0 dhcp select interfacedhcp server excluded-ip-address 192.168.1.253 dhcp server lease day 0 hour 8 minute 0 dhcp server dns-list 114.114.114.114 interface Vlanif1dhcp select interfacedhcp server excluded-ip-address 192.168.2.253 dhcp server lease day 0 hour 8 minute 0 dhcp server dns-list 114.114.114.114
DHCP 配置成功!!!
3.3 配置PPPoE上网
你接下来是不是直接配置g0/0/1口了,在正常情况下是这样的,但是我们的要求是实现pppoe拨号上网,所以我们配置一个Dialer口更为合适
AR 1220:
interface Dialer1link-protocol pppppp chap user huaweippp chap password cipher huawei123ip address ppp-negotiatedialer user huaweidialer bundle 10dialer-group 100nat outbound 2000 address-group 1acl number 2000rule 5 permit any
AR-Internet:
interface GigabitEthernet0/0/0ip address 114.114.114.1 255.255.255.0 interface Virtual-Template1ppp authentication-mode chap remote address pool 1ppp chap user zymip address 100.1.1.1 255.255.255.0 ip pool 1gateway-list 100.1.1.1 network 100.1.1.0 mask 255.255.255.0
DNS.Server:
测试:
可以通过pppoe拨号上网!!!
3.4 DNS服务
测试:
成功访问www.baidu.com!!!
3.5 查找
AR 1220:
[PPPoE-clinet]lldp enable
SW1:
[SW1]lldp enable
SW2:
[SW2]lldp enable
AR 1220:
[PPPoE-clinet]dis lldp neighbor brief
Local Intf Neighbor Dev Neighbor Intf Exptime
GE0/0/0 SW1 GE0/0/1 112
Eth0/0/0 SW2 GE0/0/1
3.6 telnet配置
AR 1220:
aaa local-user zym password cipher zym123local-user zym privilege level 15local-user zym service-type telnet[PPPoE-clinet]user-interface vty 0 4
[PPPoE-clinet-ui-vty0-4]dis th
[V200R003C00]
#
user-interface con 0authentication-mode password
user-interface vty 0 4authentication-mode aaa
user-interface vty 16 20
#
测试:
<AR-internet>telnet 100.1.1.254Press CTRL_] to quit telnet modeTrying 100.1.1.254 ...Connected to 100.1.1.254 ...Login authenticationUsername:zym
Password:----------------------------------------------------------------------------- User last login information: -----------------------------------------------------------------------------Access Type: Telnet IP-Address : 100.1.1.1 Time : 2024-06-17 11:14:46-08:00 -----------------------------------------------------------------------------
<PPPoE-clinet>
telnet远程访问成功!!!
以上是完整的实验配置,需要已经配置完成的实验拓扑三连斯沃!!!