某企業(yè)網核心為。交換機配置:三層核心+防火墻。" />

日本免费全黄少妇一区二区三区-高清无码一区二区三区四区-欧美中文字幕日韩在线观看-国产福利诱惑在线网站-国产中文字幕一区在线-亚洲欧美精品日韩一区-久久国产精品国产精品国产-国产精久久久久久一区二区三区-欧美亚洲国产精品久久久久

  1. 首頁 > 云知道 > >

交換機配置:三層核心+防火墻

云知道


三層的出口連接防火墻的內口 三層核心交換機最好別用VLAN1連接防火墻內口 ??赡軙驗镮P;重定向問題導致內網訪問外網速度奇慢??!具體事例及解決辦法如下:Word>某企業(yè)網核心為4506,接入基本為2950系列 。核心有一塊X;4548;GB&nbs p;-RJ業(yè)務板,其中48口上聯(lián)到防火墻,其他下聯(lián)到客戶端 ??蛻舳司W關指向核心交換機,上網速度奇慢 。指向防火墻則速度正常,防火墻地址為172.16.1.1;核心配置如下:
core_switch#show;run
Building;configuration...
Current;configuration;:;6061;bytes
!
version;12.1
no;service;pad
service;timestamps;debug;uptime
service;timestamps;log;uptime
no;service;password-encryption
service;compress-config
!
hostname;core_switch
!
enable;secret;5;$1$21p4$rcisbziyY7iFWx0w7jm6d.
enable;password;kindy
!
vtp;mode;transparent
ip;subnet-zero
!
spanning-tree;extend;system-id
!
!
vlan;2
name;vlan2
!
interface;GigabitEthernet1/1
!
interface;GigabitEthernet1/2
!
interface;GigabitEthernet2/1
description;To;ZXC
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
interface;GigabitEthernet2/2
description;To;HYS-310
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
interface;GigabitEthernet2/3
description;To;HYS-303
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
interface;GigabitEthernet2/4
description;To;PGZ
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
interface;GigabitEthernet2/5
description;To;WLZ
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
interface;GigabitEthernet2/6
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
interface;GigabitEthernet3/1
description;To;BACK_24
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
interface;GigabitEthernet3/2
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
interface;GigabitEthernet3/3
!
interface;GigabitEthernet3/4
!
interface;GigabitEthernet3/5
!
interface;GigabitEthernet3/6
!
interface;GigabitEthernet4/1
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
....
........!
interface;GigabitEthernet4/47
switchport;trunk;encapsulation;dot1q
switchport;mode;trunk
!
interface;GigabitEthernet4/48
!
interface;Vlan1
ip;address;172.16.1.121;255.255.255.0
!
interface;Vlan2
ip;address;172.16.2.1;255.255.255.0
!
ip;classless
ip;route;0.0.0.0;0.0.0.0;172.16.1.1
no;ip;http;server
!
!
!
line;con;0
password;******
login
stopbits;1
line;vty;0;4
password;******
login
!
end--------------------------------------------因為上面的配置是把防火墻的內口直接接如了三層核心的VLAN1內,所以出現(xiàn)訪問外網速度奇慢的現(xiàn)象 。。解決辦法如下:1、關閉VLAN;1的重定向功能int;vlan;1
no;ip;redirects2、將防火墻的內網線接如核心的其他VLAN

    推薦閱讀