console口登录配置
sys
vlan 100
sys
interface Vlanif 100
ip address 192.168.100.20 255.255.248.0
配置telnet 登陆
[quidway]user-interface vty 0 4
[quidway-aux0]authentication-mode {none|password|scheme} //设置登录的验证方法。none是不要验证,password是密码验证,scheme是服务器验证。
[quidway-aux0]set authentication password {cipher|simple} 123456 //当上面的模式为 paaword时,设置验证的密码。simple是明文密码。
[quidway-aux0]user privilege level 2 //设置从AUX登录后可以访问的命令级别为2级,默认是1级。
[quidway-aux0]protocol inbund {all |ssh|telnet} //设置交换机支持的协议
[quidway-aux0]screen-length 30 //设置一屏显示30行命令
[quidway-aux0]history-command max-size 20 //设置历史命令缓冲区最多存放20条命令
[quidway-aux0]idle-timeout 6 //设置超时时间为6分钟
(3)超级用户密码(用户级别) [quidway]super password level 3 {cipher|simper} 123456 //设置低级别用户到高级别用户切换的密码 注意:命令行级别分为:0,1,2,3 共四级。 访问级(0级):用于网络诊断等功能的命令。包括ping ,tracert,telnet等。 监控级(1级):用于系统维护、业务故障诊断等功能命令。包括debugging\erminal等命令。执和地该级别的命令结果不能被保存到配置文件中。 系统级(2级):用于业务配置的命令。包括路由等网络层次的命令,用于向用户提供网络服务。 管理级(3级):关系到系统的基本运行、系统支撑模块功能的命令,这些命令对业务的支持,最后级别。 默认:console口的命令登录级别为3, telnet 方式的级别为0。 配置端口为access模式 interface GigabitEthernet 0/0/1 port link-type access quit interface GigabitEthernet 0/0/2 port link-type access quit interface GigabitEthernet 0/0/3 port link-type access quit interface GigabitEthernet 0/0/4 port link-type access quit interface GigabitEthernet 0/0/5 port link-type access quit interface GigabitEthernet 0/0/6 port link-type access quit interface GigabitEthernet 0/0/7 port link-type access quit interface GigabitEthernet 0/0/8 port link-type access quit interface GigabitEthernet 0/0/9 port link-type access quit interface GigabitEthernet 0/0/10 port link-type access quit interface GigabitEthernet 0/0/11 port link-type access quit interface GigabitEthernet 0/0/12 port link-type access quit interface GigabitEthernet 0/0/13 port link-type access quit interface GigabitEthernet 0/0/14 port link-type access quit interface GigabitEthernet 0/0/15 por t link-type access quit interface GigabitEthernet 0/0/16 port link-type access quit interface GigabitEthernet 0/0/17 port link-type access quit interface GigabitEthernet 0/0/18 port link-type access quit interface GigabitEthernet 0/0/19 port link-type access quit interface GigabitEthernet 0/0/20 port link-type access quit interface GigabitEthernet 0/0/21 port link-type access quit interface GigabitEthernet 0/0/22 port link-type access quit interface GigabitEthernet 0/0/23 port link-type access quit interface GigabitEthernet 0/0/24 port link-type access quit 将端口加入到vlan中 vlan 1 port GigabitEthernet 0/0/1 quit vlan 1 port GigabitEthernet 0/0/2 quit vlan 1 port GigabitEthernet 0/0/3 quit vlan 1 port GigabitEthernet 0/0/4 quit vlan 2 port GigabitEthernet 0/0/5 quit vlan 3 port GigabitEthernet 0/0/6 quit vlan 4 port GigabitEthernet 0/0/7 quit vlan 5 port GigabitEthernet 0/0/8 quit vlan 6 port GigabitEthernet 0/0/9 quit vlan 7 port GigabitEthernet 0/0/10 quit vlan 8 port GigabitEthernet 0/0/11 quit vlan 9 port GigabitEthernet 0/0/12 quit vlan 10 port GigabitEthernet 0/0/13 quit vlan 11 port GigabitEthernet 0/0/14 quit vlan 12 port GigabitEthernet 0/0/15 quit vlan 13 port GigabitEthernet 0/0/16 quit vlan 14 port GigabitEthernet 0/0/17 quit vlan 15 port GigabitEthernet 0/0/18 quit vlan 16 port GigabitEthernet 0/0/19 port GigabitEthernet 0/0/20 port GigabitEthernet 0/0/21 port GigabitEthernet 0/0/22 port GigabitEthernet 0/0/23 port GigabitEthernet 0/0/24 quit mux-vlan 启用SUB-VLNA system-view vlan 100 aggregate-vlan access-vlan 1 to 16 使能super-VLAN的接口VLANIF100上的VLAN间Proxy ARP功能。(这条不配不能互访) system-view interface vlanif100 arp-proxy inter-sub-vlan-proxy enable 配置单播静态路由(这条配完后才能上) system-view ip route-static 183.62.196.0 255.255.255.224 192.168.100.100 ip route-static 0.0.0.0 0.0.0.0 10.10.10.1 配置接口的环路检测功能,并且在环路消失后5秒钟内恢复网络 示例: stp loop-protection 启动当前接口的环路保护功能 loopback-detect enable 用来使能接口的环路检测功能 loopback-detect action shutdown 用来配置接口的环路检测处理动作 loopback-detect recovery-time 5 用来配置环路消失后接口的恢复时间 sy int g0/0/1 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/2 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/3 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/4 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/5 stp loop-protection loopback-detect enable lo opback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/6 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/7 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 qui int g0/0/8 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/9 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/5 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/11 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/12 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/13 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/14 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/15 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/16 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/17 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/18 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/19 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/20 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/21 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/22 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/23 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit int g0/0/24 stp loop-protection loopback-detect enable loopback-detect action shutdown loopback-detect recovery-time 5 quit 配置所有接口环路检测周期为2秒 sy loopback-detect packet-interval 2 quit 配置三层的SNMP让深信服跨VLAN识别MAC地址。 snmp-agent sys-info version all snmp-agent community read comaccess 设置外部设备取SNMP为只读权限 保存配置 save
Copyright © 2019-2025 51dongshi.net 版权所有
违法及侵权请联系:TEL:177 7030 7066 E-MAIL:11247931@qq.com 本站由北京市万商天勤律师事务所王兴未律师提供法律服务
