Cisco router 1 ´ë¿Í 3 ´ëÀÇ ½ºÀ§Ä¡·Î ±¸¼ºÇÑ ³×Æ®¿÷ÀÔ´Ï´Ù..(°í°ß ºÎŹµå¸³´Ï´Ù.)
1대의 라우터와 3대의 스위치를 이용하여
네트웍을 구성하였습니다.
다소 부족한 면이 있는 시스템입니다.
좋은 수정의견 있으시면 부탁좀 드립니다.
제온프로
Cisco Router and Switch
DHCP,DNS,NAT,VLAN,TRUNK,VTPconfiguration
Router : Cisco 2911 - 1대
Switch: Cisco ws-c2960 - 3대
1.SWITCH-A config
SW-A(config)#enable password cisco
SW-A(config)#enable secret cisco1
SW-A(config)#line vty 0 4
SW-A(config-line)#login local
SW-A(config-line)#exit
SW-A(config)#inter vlan 10
SW-A(config-if)#ip add 172.20.61.2 255.255.255.0
SW-A(config-if)#no shutdown
SW-A(config-if)#exit
SW-A(config)#ip default-gateway 172.20.61.1
SW-A(config)#inter range fa0/1 – 24
SW-A(config-if)#Switchport mode access
SW-A(config-if)#switchport access vlan 10
SW-A(config-if)#Exit
SW-A(config)#Inter Gi 1/1
SW-A(config-if)#switchport mode trunk
SW-A(config)#Inter Gi 1/2
SW-A(config-if)#switchport mode trunk
SW-A(config-if)#end
SW-A#WR
SW-A#reload
2.SWITCH-B config
SW-B(config)#enable password cisco
SW-B(config)#enable secret cisco1
SW-B(config)#line vty 0 4
SW-B(config-line)#login local
SW-B(config-line)#exit
SW-B(config)#inter vlan 20
SW-B(config-if)#ip add 172.20.62.2 255.255.255.0
SW-B(config-if)#no shutdown
SW-B(config-if)#exit
SW-B(config)#ip default-gateway 172.20.62.1
SW-B(config)#inter range fa0/1 – 24
SW-B(config-if)#Switchport mode access
SW-B(config-if)#switchport access vlan 20
SW-B(config-if)#Exit
SW-B(config)#Inter Gi 1/1
SW-B(config-if)#switchport mode trunk
SW-B(config)#Inter Gi 1/2
SW-B(config-if)#switchport mode trunk
SW-B(config-if)#end
SW-B#WR
SW-B#reload
3.SWITCH-C config
SW-C(config)#enable password cisco
SW-C(config)#username cisco password cisco
SW-C(config)#service password-encryption
SW-C(config)#line vty 0 4
SW-C(config-line)#login local
SW-C(config-line)#exit
SW-C(config)#inter vlan 30
SW-C(config-if)#ip add 172.20.63.2 255.255.255.0
SW-C(config-if)#no shutdown
SW-C(config-if)#exit
SW-C(config)#ip default-gateway 172.20.63.1
SW-C(config)#inter range fa0/1 – 24
SW-C(config-if)#Switchport mode access
SW-C(config-if)#switchport access vlan 30
SW-C(config-if)#Exit
SW-C(config)#Inter Gi 1/1
SW-C(config-if)#switchport mode trunk
SW-C(config-if)#end
SW-C#WR
SW-C#reload
4.ROUTER VTP config
Router(config)#inter Gi0/0
Router(config-if)#ip add 172.20.60.1 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#int Gi0/0.10
Router(config-subif)#encapsulation dot1Q 10
Router(config-subif)#ip add 172.20.61.1 255.255.255.0
Router(config-subif)#exit
Router(config)#int Gi0/0.20
Router(config-subif)#encapsulation dot1Q 20
Router(config-subif)#ip add 172.20.62.1 255.255.255.0
Router(config-subif)#exit
Router(config-if[
5.DHCP,DNS config
Router(config)#ip dhcp poolvlan10
Router(config-dhcp)#network 172.20.61.0 255.255.255.0
Router(config-dhcp)#default-router 172.20.61.1
Router(config-dhcp)#dns-server 172.20.60.1
Router(config-dhcp)#exit
Router(config)#ip dhcp excluded-address 172.20.61.200 172.20.61.254
Router(config-dhcp)#exit
Router(config)#ip dhcp pool vlan20
Router(config-dhcp)#network 172.20.62.0 255.255.255.0
Router(config-dhcp)#default-router 172.20.62.1
Router(config-dhcp)#dns-server 172.20.60.1
Router(config-dhcp)#exit
Router(config)#ip dhcp excluded-address 172.20.62.200 172.20.62.254
Router(config-dhcp)#exit
Router(config)#ip dhcp pool vlan30
Router(config-dhcp)#network 172.20.62.0 255.255.255.0
Router(config-dhcp)#default-router 172.20.63.1
Router(config-dhcp)#dns-server 172.20.60.1
Router(config-dhcp)#exit
Router(config)#ip dhcp excluded-address 172.20.63.200 172.20.63.254
Router(config-dhcp)#end
Router#wr
6. Router NAT configuration
#1.It is a local network192.168.0.1/24.- inside
Router(config)#interface FastEthernet0/1
Router(config-if)#ip address 192.168.0.1 255.255.255.0
Router(config-if)#ip nat inside
#2.Outside network is 172.20.64.30/24 and default gateway is 172.20.64.1
Router(config)#interface FastEthernet0/0
Router(config-if)#ip address 172.20.64.30 255.255.255.0
Router(config-if)#ip nat outside
Router(config)#ip route 0.0.0.0 0.0.0.0 172.20.64.1
#3.PAT (Port Address Translation)config
AllLocal Network go out through 172.20.64.30 to Internet.
Router(config)#ip access-list standard NAT
Router(config-std-nac1)permit192.168.0.0 0.0.0.255
Router(config-std-nac1)exit
Router(config)#ip nat inside source list NAT interface FastEthernet0/0 overload
#4.Port forwarding
# Outside172.20.64.30 àlocal network 192.168.1.100 FTP portAccess.
Router(config)#ip nat inside source static tcp 192.168.0.100 21 210.64.128.121 21
# 80 port forwading for 192.168.0.100
Router(config)#ip nat inside source static tcp 192.168.0.100 80 210.64.128.121 80
# Remort desktop fort forwarding for 192.168.0.100
Router(config)#ip nat inside source static tcp 192.168.0.100 3389 210.64.128.121 3389
Router(config)#end
Router#wr
Router#reload
À§ ±¸¼ºÃ³·³ µÇ¾îÀÖÀ¸¸é °¢ VLAN°£ ¶ó¿ìÆÃÀ» À§Çؼ Ç×»ó ¶ó¿ìÅ͸¦ °ÅÃÄ¾ß Çϱ⠶§¹®¿¡ ºñÈ¿À²ÀûÀΰÍÀ¸·Î ¾Ë°í Àְŵç¿ä.
¿¹·Î, ½ºÀ§Ä¡ 3¹øÀÌ ½ºÀ§Ä¡ 2¹øÀÇ VLANÀ¸·Î Á¢±Ù(´Ù¸¥ ³×Æ®¿öÅ©ID)ÇÏ·Á¸é ½ºÀ§Ä¡ 3 -> ½ºÀ§Ä¡2 -> ½ºÀ§Ä¡1 -> ¶ó¿ìÅÍ -> ½ºÀ§Ä¡ 1 -> ½ºÀ§Ä¡ 2 ¼øÀ¸·Î À̵¿ÇØ¾ß Çϱ⠶§¹®¿¡
±×¸¸ Å µô·¹ÀÌ°¡ ¹ß»ý Çϰŵç¿ä.
¶ó¿ìÅÍ ¹Ø¿¡ ¹éº» ½ºÀ§Ä¡¸¦ µÎ½Ã°Å³ª, °£´ÜÇÏ°Ô ¶ó¿ìÅÍÀÇ ÀÌ´õ³Ý ÀÎÅÍÆäÀ̽º¸¦ ´Ã¸®½Ã´Â ¹æ¾ÈÀ¸·Î ÇϽô °Íµµ ÁÁÀ» °Í °°½À´Ï´Ù.
±×³É °³ÀÎÀûÀÎ ÀÇ°ßÀÔ´Ï´Ù ^^
Áß°£¿¡ µÎ´Â ¹æ¹ýÀ» ÇØ¾ß ÇÒ °Í °°³×¿ä.. ½ºÀ§Ä¡¸¦ ±â°¡ Æ÷Æ®¸¸ »ç¿ëÇÏ·Á°í ÇÏ´Ù º¸´Ï Àú·¸°Ô 1·Ä·Î Ç߳׿ä..
2911¶ó¿ìÅÍ´Â ±âº» ±â°¡ºø ÀÎÅÍÆäÀ̽ºÀÌ°í ÀûÀýÇÏ°Ô Á¶ÇÕÇØ º¸½Ã¸é ±¸¼ºÀº µÇ°Ú³×¿ä.