使用华三模拟器架构网络的实验

Hello Ojox / 2024-10-23 / 原文

为了记一点一些常用的配置命令

拓扑图如下:

image

  • 网络架构一般以防火墙为出口,不再需要在防火墙前面部署路由器。
  • lldp默认是关闭的,需要在sys层使用「lldp global enable」开启。
  • 设备堆叠需要防止脑裂,不可低于2跟堆叠线。
  • dhcp在全局设置开启后,需要在端口上应用地址池的IP才生效。
  • 二层端口聚合和三层端口聚合需要先设置物理端口类型
点击查看三层聚合端口示例 
[Firewall.A]display current-configuration interface Route-Aggregation 
#
interface Route-Aggregation23
 description up.link.route-----
 ip address 10.24.10.2 255.255.255.0
 link-aggregation mode dynamic
 manage ping inbound
 manage ping outbound
#
return
[Firewall.A]dis cu int g 1/0/23
#
interface GigabitEthernet1/0/23
 port link-mode route
 description up.link.route-----
 combo enable copper
 port link-aggregation group 23
#
return
点击查看二层聚合端口示例 
[Firewall.A]display current-configuration interface Bridge-Aggregation 
#
interface Bridge-Aggregation1
 description AG.irf.link.line-----
 port link-type trunk
 port trunk permit vlan all
 link-aggregation mode dynamic
#
return
[Firewall.A]dis cu int g1/0/21
#
interface GigabitEthernet1/0/21
 port link-mode bridge
 description dl.link.trust-----
 port link-type trunk
 port trunk permit vlan all
 combo enable copper
 port link-aggregation group 1
#
return
[Firewall.A]
  • irf堆叠需先关闭物理端口,不然会报错。
  • 任何堆叠都需先配置后接线,避免影响网络稳定
点击查看防火墙的配置文件 
<Firewall.A>display cu 
#
 version 7.1.064, Alpha 7164
#
 sysname Firewall.A
#
context Admin id 1
#
 telnet server enable
#
 irf mac-address persistent timer
 irf auto-update enable
 undo irf link-delay
 irf member 1 priority 21
 irf member 2 priority 1
 irf member 1 description fw.2-----
#
 dhcp enable
#
 lldp global enable
#
 xbar load-single
 password-recovery enable
 lpu-type f-series
#              
vlan 1
#
vlan 101
#
vlan 255
 description manager.lan-----
#
irf-port 1/2
 port group interface GigabitEthernet1/0/0
 port group interface GigabitEthernet1/0/10
#
irf-port 2/1
 port group interface GigabitEthernet2/0/0
 port group interface GigabitEthernet2/0/10
#
dhcp server ip-pool vlan255
 gateway-list 192.168.255.1
 network 192.168.255.0 mask 255.255.255.0
 expired day 1 hour 0 minute 1
 forbidden-ip-range 192.168.255.1 192.168.255.11
#
dhcp server ip-pool work.101
 network 192.168.101.0 mask 255.255.255.0
 expired day 1 hour 0 minute 1
 forbidden-ip-range 192.168.101.1 192.168.101.11
#
interface Bridge-Aggregation1
 description AG.irf.link.line-----
 port link-type trunk
 port trunk permit vlan all
 link-aggregation mode dynamic
#
interface Route-Aggregation23
 description up.link.route-----
 ip address 10.24.10.2 255.255.255.0
 link-aggregation mode dynamic
 manage ping inbound
 manage ping outbound
#
interface NULL0
#
interface LoopBack1
 ip address 192.168.254.1 255.255.255.255
#
interface Vlan-interface101
 description work.101.lan-----
 ip address 192.168.101.1 255.255.255.0
 manage ping inbound
 manage ping outbound
#
interface Vlan-interface255
 description manager.lan-----
 ip address 192.168.255.1 255.255.255.0
 manage ping inbound
#
interface GigabitEthernet1/0/1
 port link-mode route
 description ---manager.port---
 combo enable copper
 ip address 192.168.56.10 255.255.255.0
 manage http inbound
 manage https inbound
 manage ping inbound
#
interface GigabitEthernet1/0/2
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/3
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/4
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/5
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/6
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/7
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/8
 port link-mode route
 combo enable copper
#              
interface GigabitEthernet1/0/9
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/11
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/12
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/13
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/14
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/15
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/16
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/17
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/18
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/19
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/20
 port link-mode route
 combo enable copper
#
interface GigabitEthernet1/0/23
 port link-mode route
 description up.link.route-----
 combo enable copper
 port link-aggregation group 23
#
interface GigabitEthernet2/0/1
 port link-mode route
 description ---manager.port---
 combo enable copper
#
interface GigabitEthernet2/0/2
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/3
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/4
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/5
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/6
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/7
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/8
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/9
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/11
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/12
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/13
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/14
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/15
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/16
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/17
 port link-mode route
 combo enable copper
#              
interface GigabitEthernet2/0/18
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/19
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/20
 port link-mode route
 combo enable copper
#
interface GigabitEthernet2/0/23
 port link-mode route
 description up.link.route-----
 combo enable copper
 port link-aggregation group 23
#
interface GigabitEthernet1/0/21
 port link-mode bridge
 description dl.link.trust-----
 port link-type trunk
 port trunk permit vlan all
 combo enable copper
 port link-aggregation group 1
#
interface GigabitEthernet1/0/22
 port link-mode bridge
 description dl.link.trust-----
 port link-type trunk
 port trunk permit vlan all
 combo enable copper
 port link-aggregation group 1
#
interface GigabitEthernet2/0/21
 port link-mode bridge
 description dl.link.trust-----
 port link-type trunk
 port trunk permit vlan all
 combo enable copper
 port link-aggregation group 1
#
interface GigabitEthernet2/0/22
 port link-mode bridge
 description dl.link.trust-----
 port link-type trunk
 port trunk permit vlan all
 combo enable copper
 port link-aggregation group 1
#
interface GigabitEthernet1/0/0
 description irf.link.line-----
 combo enable fiber
#
interface GigabitEthernet1/0/10
 description irf.link.line-----
 combo enable fiber
#
interface GigabitEthernet2/0/0
 description irf.link.line-----
 combo enable fiber
#
interface GigabitEthernet2/0/10
 description irf.link.line-----
 combo enable fiber
#
security-zone name Local
#
security-zone name Trust
 import interface Vlan-interface101
 import interface Bridge-Aggregation1 vlan 1 to 4094
 import interface GigabitEthernet1/0/21 vlan 1 to 4094
 import interface GigabitEthernet1/0/22 vlan 1 to 4094
 import interface GigabitEthernet2/0/21 vlan 1 to 4094
 import interface GigabitEthernet2/0/22 vlan 1 to 4094
#
security-zone name DMZ
#
security-zone name Untrust
 import interface GigabitEthernet1/0/23
 import interface GigabitEthernet2/0/23
 import interface Route-Aggregation23
#
security-zone name Management
 import interface GigabitEthernet1/0/1
 import interface Vlan-interface255
#
 scheduler logfile size 16
#
line class aux
 user-role network-operator
#              
line class console
 user-role network-admin
#
line class tty
 user-role network-operator
#
line class vty
 user-role network-operator
#
line aux 0 1
 user-role network-operator
#
line con 0 1
 user-role network-admin
#
line vty 0 4
 authentication-mode scheme
 user-role network-admin
#
line vty 5 63
 user-role network-operator
#
 ip route-static 0.0.0.0 0 10.24.10.1
#
acl advanced 3000
 rule 0 permit ip
#
domain system
#
 aaa session-limit ftp 16
 aaa session-limit telnet 16
 aaa session-limit ssh 16
 domain default enable system
#
role name level-0
 description Predefined level-0 role
#
role name level-1
 description Predefined level-1 role
#
role name level-2
 description Predefined level-2 role
#
role name level-3
 description Predefined level-3 role
#              
role name level-4
 description Predefined level-4 role
#
role name level-5
 description Predefined level-5 role
#
role name level-6
 description Predefined level-6 role
#
role name level-7
 description Predefined level-7 role
#
role name level-8
 description Predefined level-8 role
#
role name level-9
 description Predefined level-9 role
#
role name level-10
 description Predefined level-10 role
#
role name level-11
 description Predefined level-11 role
#
role name level-12
 description Predefined level-12 role
#
role name level-13
 description Predefined level-13 role
#
role name level-14
 description Predefined level-14 role
#
user-group system
#
local-user admin class manage
 password hash $h$6$/2HTkQ7/4pVvQOzQ$wCCF5SH0CWKK5Rc9O7xw4EvSEzI+wnVt0D6jB7COr+rpavxPfLstSRx9BhEdl79czRfsJiWeVZ9hO8EBvwjpGQ==
 service-type telnet terminal http https
 authorization-attribute user-role level-3
 authorization-attribute user-role network-admin
 authorization-attribute user-role network-operator
#
 session dual-active enable
 session dual-active create-mode hash
 session dual-active transparent udp enable
#              
 ip http enable
 ip https enable
#
security-policy ip
 rule 1 name GuideSecPolicy
  action pass
  source-zone Trust
  destination-zone Untrust
#
return
<Firewall.A>
点击查看核心交换机的配置文件 
<Sw.A>dis cu 
#
 version 7.1.070, Alpha 7170
#
 sysname Sw.A
#
 irf mac-address persistent timer
 irf auto-update enable
 undo irf link-delay
 irf member 1 priority 32
 irf member 2 priority 1
#
 lldp global enable
#
 system-working-mode standard
 xbar load-single
 password-recovery enable
 lpu-type f-series
#
vlan 1
#
vlan 101
#
vlan 255
#              
irf-port 1/2
 port group interface Ten-GigabitEthernet1/0/49
 port group interface Ten-GigabitEthernet1/0/50
#
irf-port 2/1
 port group interface Ten-GigabitEthernet2/0/49
 port group interface Ten-GigabitEthernet2/0/50
#
 stp global enable
#
interface Bridge-Aggregation1
 description up.link.firewall-----
 port link-type trunk
 port trunk permit vlan all
 link-aggregation mode dynamic
#
interface Bridge-Aggregation10
 description down.link.cp.switch-----
 port link-type trunk
 port trunk permit vlan all
 link-aggregation mode dynamic
#
interface NULL0
#
interface FortyGigE1/0/53
 port link-mode bridge
#
interface FortyGigE1/0/54
 port link-mode bridge
#
interface FortyGigE2/0/53
 port link-mode bridge
#
interface FortyGigE2/0/54
 port link-mode bridge
#
interface GigabitEthernet1/0/1
 port link-mode bridge
 combo enable fiber
 shutdown
#
interface GigabitEthernet1/0/2
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/3
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/4
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/5
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/6
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/7
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/8
 port link-mode bridge
 combo enable fiber
#              
interface GigabitEthernet1/0/9
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/10
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/11
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/12
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/13
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/14
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/15
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/16
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/17
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/18
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/19
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/20
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/21
 port link-mode bridge
 description up.link.firewall-----
 port link-type trunk
 port trunk permit vlan all
 combo enable fiber
 port link-aggregation group 1
#
interface GigabitEthernet1/0/22
 port link-mode bridge
 description up.link.firewall-----
 port link-type trunk
 port trunk permit vlan all
 combo enable fiber
 port link-aggregation group 1
#
interface GigabitEthernet1/0/23
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/24
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/25
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/26
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/27
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/28
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/29
 port link-mode bridge
 combo enable fiber
#              
interface GigabitEthernet1/0/30
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/31
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/32
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/33
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/34
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/35
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/36
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/37
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/38
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/39
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/40
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/41
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/42
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/43
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/44
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/45
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/46
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/47
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/48
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/1
 port link-mode bridge
 combo enable fiber
 shutdown
#
interface GigabitEthernet2/0/2
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/3
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/4
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/5
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/6
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/7
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/8
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/9
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/10
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/11
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/12
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/13
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/14
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/15
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/16
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/17
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/18
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/19
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/20
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/21
 port link-mode bridge
 description up.link.firewall-----
 port link-type trunk
 port trunk permit vlan all
 combo enable fiber
 port link-aggregation group 1
#
interface GigabitEthernet2/0/22
 port link-mode bridge
 description up.link.firewall-----
 port link-type trunk
 port trunk permit vlan all
 combo enable fiber
 port link-aggregation group 1
#
interface GigabitEthernet2/0/23
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/24
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/25
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/26
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/27
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/28
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/29
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/30
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/31
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/32
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/33
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/34
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/35
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/36
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/37
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/38
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/39
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/40
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/41
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/42
 port link-mode bridge
 combo enable fiber
#              
interface GigabitEthernet2/0/43
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/44
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/45
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/46
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/47
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet2/0/48
 port link-mode bridge
 combo enable fiber
#
interface M-GigabitEthernet0/0/0
#
interface Ten-GigabitEthernet1/0/51
 port link-mode bridge
 description down.link.cp.switch-----
 port link-type trunk
 port trunk permit vlan all
 combo enable fiber
 port link-aggregation group 10
#
interface Ten-GigabitEthernet1/0/52
 port link-mode bridge
 combo enable fiber
#
interface Ten-GigabitEthernet2/0/51
 port link-mode bridge
 combo enable fiber
#
interface Ten-GigabitEthernet2/0/52
 port link-mode bridge
 description down.link.cp.switch-----
 port link-type trunk
 port trunk permit vlan all
 combo enable fiber
 port link-aggregation group 10
#
interface Ten-GigabitEthernet1/0/49
 description irf.link.line-----
 combo enable fiber
#
interface Ten-GigabitEthernet1/0/50
 description irf.link.line-----
 combo enable fiber
#
interface Ten-GigabitEthernet2/0/49
 description irf.link.line-----
 combo enable fiber
#
interface Ten-GigabitEthernet2/0/50
 description irf.link.line-----
 combo enable fiber
#
 scheduler logfile size 16
#
line class aux 
 user-role network-operator
#
line class console
 user-role network-admin
#
line class tty
 user-role network-operator
#
line class vty
 user-role network-operator
#
line aux 0 1
 user-role network-operator
#
line con 0 1
 user-role network-admin
#
line vty 0 63
 user-role network-operator
#
radius scheme system
 user-name-format without-domain
#              
domain system
#
 domain default enable system
#
role name level-0
 description Predefined level-0 role
#
role name level-1
 description Predefined level-1 role
#
role name level-2
 description Predefined level-2 role
#
role name level-3
 description Predefined level-3 role
#
role name level-4
 description Predefined level-4 role
#
role name level-5
 description Predefined level-5 role
#
role name level-6
 description Predefined level-6 role
#
role name level-7
 description Predefined level-7 role
#
role name level-8
 description Predefined level-8 role
#
role name level-9
 description Predefined level-9 role
#
role name level-10
 description Predefined level-10 role
#
role name level-11
 description Predefined level-11 role
#
role name level-12
 description Predefined level-12 role
#
role name level-13
 description Predefined level-13 role
#              
role name level-14
 description Predefined level-14 role
#
user-group system
#
return
<Sw.A>

查看防火墙之间使的堆叠端口

<Firewall.A>display irf configuration 
 MemberID NewID    IRF-Port1                     IRF-Port2
 1        1        disable                       GigabitEthernet1/0/0          
                                                 GigabitEthernet1/0/10         
 2        2        GigabitEthernet2/0/0          disable                       
                   GigabitEthernet2/0/10                                       

<Firewall.A>display irf link 
Member 1
 IRF Port  Interface                             Status
 1         disable                               --    
 2         GigabitEthernet1/0/0                  UP    
           GigabitEthernet1/0/10                 UP    
Member 2
 IRF Port  Interface                             Status
 1         GigabitEthernet2/0/0                  UP    
           GigabitEthernet2/0/10                 UP    
 2         disable                               --

查看防火墙的聚合端口

[Firewall.A]display link-aggregation verbose 
Loadsharing Type: Shar -- Loadsharing, NonS -- Non-Loadsharing 
Port Status: S -- Selected, U -- Unselected, I -- Individual 
Port: A -- Auto port 
Flags:  A -- LACP_Activity, B -- LACP_Timeout, C -- Aggregation, 
        D -- Synchronization, E -- Collecting, F -- Distributing,  
        G -- Defaulted, H -- Expired

Aggregate Interface: Bridge-Aggregation1
Creation Mode: Manual
Aggregation Mode: Dynamic
Loadsharing Type: Shar
System ID: 0x8000, 50f5-6dbb-0100
Local: 
  Port             Status  Priority Oper-Key  Flag
--------------------------------------------------------------------------------
  GE1/0/21         S       32768    2         {ACDEF}
  GE1/0/22         S       32768    2         {ACDEF}
  GE2/0/21         S       32768    2         {ACDEF}
  GE2/0/22         S       32768    2         {ACDEF}
Remote: 
  Actor            Partner Priority Oper-Key  SystemID               Flag   
--------------------------------------------------------------------------------
  GE1/0/21         4       32768    1         0x8000, 50f5-a9d6-0300 {ACDEF}
  GE1/0/22         1       32768    1         0x8000, 50f5-a9d6-0300 {ACDEF}
  GE2/0/21         3       32768    1         0x8000, 50f5-a9d6-0300 {ACDEF}
  GE2/0/22         6       32768    1         0x8000, 50f5-a9d6-0300 {ACDEF}

Aggregate Interface: Route-Aggregation23
Creation Mode: Manual
Aggregation Mode: Dynamic
Loadsharing Type: Shar
System ID: 0x8000, 50f5-6dbb-0100
Local: 
  Port             Status  Priority Oper-Key  Flag
--------------------------------------------------------------------------------
  GE1/0/23         U       32768    1         {ACG}
  GE2/0/23         U       32768    1         {ACG}
Remote: 
  Actor            Partner Priority Oper-Key  SystemID               Flag   
--------------------------------------------------------------------------------
  GE1/0/23         0       32768    0         0x8000, 0000-0000-0000 {EF}
  GE2/0/23         0       32768    0         0x8000, 0000-0000-0000 {EF}

查看防火墙的lldp

[Firewall.A]dis lld n list 
Chassis ID : * -- -- Nearest nontpmr bridge neighbor
             # -- -- Nearest customer bridge neighbor
             Default -- -- Nearest bridge neighbor
Local Interface Chassis ID      Port ID                         System Name     
GE1/0/1         OJOX-WUJIE-14X  0a00-2700-0005                  -
GE1/0/1         50f5-6dbb-0100  50f5-6dbb-010e                  Firewall.A
GE1/0/21        50f5-a9d6-0300  GigabitEthernet2/0/21           Sw.A
GE1/0/22        50f5-a9d6-0300  GigabitEthernet1/0/22           Sw.A
GE2/0/1         50f5-6dbb-0100  50f5-6dbb-0106                  Firewall.A
GE2/0/1         OJOX-WUJIE-14X  0a00-2700-0005                  -
GE2/0/21        50f5-a9d6-0300  GigabitEthernet1/0/21           Sw.A
GE2/0/22        50f5-a9d6-0300  GigabitEthernet2/0/22           Sw.A

查看核心交换机的堆叠端口

<Sw.A>display irf configuration 
 MemberID NewID    IRF-Port1                     IRF-Port2
 1        1        disable                       Ten-GigabitEthernet1/0/49     
                                                 Ten-GigabitEthernet1/0/50     
 2        2        Ten-GigabitEthernet2/0/49     disable                       
                   Ten-GigabitEthernet2/0/50                                   

<Sw.A>display irf link 
Member 1
 IRF Port  Interface                             Status
 1         disable                               --    
 2         Ten-GigabitEthernet1/0/49             UP    
           Ten-GigabitEthernet1/0/50             UP    
Member 2
 IRF Port  Interface                             Status
 1         Ten-GigabitEthernet2/0/49             UP    
           Ten-GigabitEthernet2/0/50             UP    
 2         disable                               --

查看核心交换机的聚合端口

<Sw.A>display link v
<Sw.A>display link verbose 
Loadsharing Type: Shar -- Loadsharing, NonS -- Non-Loadsharing 
Port Status: S -- Selected, U -- Unselected, I -- Individual 
Port: A -- Auto port, M -- Management port, R -- Reference port 
Flags:  A -- LACP_Activity, B -- LACP_Timeout, C -- Aggregation, 
        D -- Synchronization, E -- Collecting, F -- Distributing, 
        G -- Defaulted, H -- Expired 

Aggregate Interface: Bridge-Aggregation1
Creation Mode: Manual
Aggregation Mode: Dynamic
Loadsharing Type: Shar
Management VLANs: None
System ID: 0x8000, 50f5-a9d6-0300
Local: 
  Port                Status   Priority Index    Oper-Key               Flag
  GE1/0/21            S        32768    3        1                      {ACDEF}
  GE1/0/22            S        32768    1        1                      {ACDEF}
  GE2/0/21            S        32768    4        1                      {ACDEF}
  GE2/0/22            S        32768    6        1                      {ACDEF}
Remote: 
  Actor               Priority Index    Oper-Key SystemID               Flag   
  GE1/0/21            32768    150      2        0x8000, 50f5-6dbb-0100 {ACDEF}
  GE1/0/22            32768    23       2        0x8000, 50f5-6dbb-0100 {ACDEF}
  GE2/0/21(R)         32768    22       2        0x8000, 50f5-6dbb-0100 {ACDEF}
  GE2/0/22            32768    151      2        0x8000, 50f5-6dbb-0100 {ACDEF}

Aggregate Interface: Bridge-Aggregation10
Creation Mode: Manual
Aggregation Mode: Dynamic
Loadsharing Type: Shar
Management VLANs: None
System ID: 0x8000, 50f5-a9d6-0300
Local: 
  Port                Status   Priority Index    Oper-Key               Flag
  XGE1/0/51           U        32768    2        2                      {ACG}
  XGE2/0/52           U        32768    5        2                      {ACG}
Remote: 
  Actor               Priority Index    Oper-Key SystemID               Flag   
  XGE1/0/51           32768    0        0        0x8000, 0000-0000-0000 {EF}
  XGE2/0/52           32768    0        0        0x8000, 0000-0000-0000 {EF}

查看核心交换机的端口lldp

[Sw.A]display lld n l
Chassis ID : * -- -- Nearest nontpmr bridge neighbor
             # -- -- Nearest customer bridge neighbor
             Default -- -- Nearest bridge neighbor
Local Interface Chassis ID      Port ID                         System Name     
GE1/0/21        50f5-6dbb-0100  GigabitEthernet2/0/21           Firewall.A
GE1/0/22        50f5-6dbb-0100  GigabitEthernet1/0/22           Firewall.A
XGE1/0/49       50f5-a9d6-0300  Ten-GigabitEthernet2/0/49       Sw.A
XGE1/0/50       50f5-a9d6-0300  Ten-GigabitEthernet2/0/50       Sw.A
GE2/0/21        50f5-6dbb-0100  GigabitEthernet1/0/21           Firewall.A
GE2/0/22        50f5-6dbb-0100  GigabitEthernet2/0/22           Firewall.A
XGE2/0/49       50f5-a9d6-0300  Ten-GigabitEthernet1/0/49       Sw.A
XGE2/0/50       50f5-a9d6-0300  Ten-GigabitEthernet1/0/50       Sw.A

工程文件下载:

https://www.123684.com/s/mqaAjv-N1XGh

https://www.123865.com/s/mqaAjv-N1XGh

https://www.123pan.com/s/mqaAjv-N1XGh

使用华三模拟器架构网络的实验更多相关文章

今日报告-66

设置Windows10暂停更新3000天

AQS公平锁的流程

AMD锐龙7 7800X3D网游专项测试:竟比i9-13900KS强了15%

常用总线技术基本参数对比

探索图像数据中的隐藏信息:语义实体识别和关系抽取的奇妙之旅

设置Chrome浏览器自动升级

JavaScript – 小技巧 Tips

Winform无边框窗体实现拖动

STM32基础(一)

技术人的修炼---九五小庞

vue自定义事件用法及$emit

ODOO 科目配置4

sqlite 触发器 c#

postgresql在插入数据后怎么获取自增id

EF Core 的基本使用

error: failed to push some refs to 'https://github.com/*******/********.github.io.git'

欧拉降幂

编程语言能力对比

基于机器视觉的小车轨迹控制软件界面展示

随机推荐

命令拼接技巧

Fiddler抓包Android7以内版本

SD NAND 与 SPI NAND

C语言中的编译过程详解

step7 V5.x上的SCL

yolo --- 核心思想

【游记】CCPC 济南 2024 游记

AJAX & AXIOS-2024/11/1

验证码处理在自动化测试中的应用

一些学科笑话

NOIP2024模拟赛20 & 11.1 小记

20241101 数据结构与算法期中机试收获

Java,启动!

什么是IT技术

即将到来!

2024/11/1日 日志 关于JavaScript简介&引入方式 以及基础语法的学习

舍得-时间-工作是人的一生最重要的事情-自己要有私房钱-人的一生最重要的事情是书写自己的人生

2.TiUP 部署 DM 集群

原型模式的C++实现

python bytecode解析

热门话题

Ethernaut Level 11: Elevator Attack and Blockchain Interaction

快速部署开源spug运维平台的Docker安装指南

驱动调试之printk的原理与使用

计算机思维模型及其应用

华为云发布代码大模型PanGu-Coder2,实现高效代码生成

Linux多硬盘数据存储和分区操作

构建高可用架构: 分层冗余与自动故障转移

LoRA:高效调参的大语言模型适应方法

《分布式系统的基本原理及互联网分层架构的本质》

Hadoop写流程解析

Java架构师的系统架构设计方法论中的规范要点

使用observeDOM解决BetterScroll插件在移动端无法滑动的问题

互联网一致性架构设计实践

高并发系统架构与水平扩展

混合应用的崛起:跨平台开发取代原生应用

  穗舟网 (www.seizhou.com)

本站除标明"本站原创"外所有文章版权归创作人所有,本站不承担任何法律责任和连带责任,如有冒犯请直接联系,我们将立即予以纠正并致歉。

Powered by WordPress  ·  v1.0.0-alpha