bxm's IT Story

개인#1 - VLAN, VRRP, Load Sharing, OSPF 본문

Network/Extreme Network

개인#1 - VLAN, VRRP, Load Sharing, OSPF

bxmsta9ram 2022. 3. 31. 13:18

## 호스트 네임 변경 ##

HeadOffice_BB-1]

config snmp sysName HeadOffice_BB-1

HeadOffice_BB-2]

config snmp sysName HeadOffice_BB-2

HeadOffice_Distribution_Switch]

config snmp sysName HeadOffice_Distribution_Switch

Branch_BB-1]

config snmp sysName Branch_BB-1

Branch_BB-2]

config snmp sysName Branch_BB-2

Branch_Distribution_Switch]

config snmp sysName Branch_Distribution_Switch

## Load Sharing ##

HeadOffice_BB-1]

enable sharing 8 grouping 8-9
show port sharing

HeadOffice_BB-2]

enable sharing 8 grouping 8-9
show port sharing

Branch_BB-1]

enable sharing 8 grouping 8-9
show port sharing

Branch_BB-2]

enable sharing 8 grouping 8-9
show port sharing

## VLAN & Tagging ##

HeadOffice_BB-1]

config vlan Default delete ports all // Default 할당 포트 전부 해제

// VLAN_172_20, VLAN_172_30, VLAN_100 생성
create vlan VLAN_172_20 tag 20
config vlan VLAN_172_20 ipaddress 172.16.20.251/24

config vlan VLAN_172_20 add ports 8, 11 tagged

create vlan VLAN_172_30 tag 30
config vlan VLAN_172_30 ipaddress 172.16.30.251/24

config vlan VLAN_172_30 add ports 8, 11 tagged

create vlan VLAN_100 tag 100
config vlan VLAN_100 ipaddress 100.1.1.1/24

config vlan VLAN_100 add port 10 tagged

show vlan

enable ipforwarding vlan VLAN_172_20
enable ipforwarding vlan VLAN_172_30
enable ipforwarding vlan VLAN_100


// VRRP 설정
create vrrp vlan VLAN_172_20 vrid 1
config vrrp vlan VLAN_172_20 vrid 1 priority 110
config vrrp vlan VLAN_172_20 vrid 1 add 172.16.20.254

create vrrp vlan VLAN_172_30 vrid 2
config vrrp vlan VLAN_172_30 vrid 2 priority 110
config vrrp vlan VLAN_172_30 vrid 2 add 172.16.30.254

enable vrrp

show vrrp

HeadOffice_BB-2]

config vlan Default delete ports all // Default 할당 포트 전부 해제

// VLAN_172_20, VLAN_172_30, VLAN_200 생성
create vlan VLAN_172_20 tag 20
config vlan VLAN_172_20 ipaddress 172.16.20.252/24

config vlan VLAN_172_20 add ports 8, 11 tagged

create vlan VLAN_172_30 tag 30
config vlan VLAN_172_30 ipaddress 172.16.30.252/24

config vlan VLAN_172_30 add ports 8, 11 tagged

create vlan VLAN_200 tag 200
config vlan VLAN_200 ipaddress 200.1.1.1/24

config vlan VLAN_200 add port 10 tagged

show vlan

enable ipforwarding vlan VLAN_172_20
enable ipforwarding vlan VLAN_172_30
enable ipforwarding vlan VLAN_200

// VRRP 설정
create vrrp vlan VLAN_172_20 vrid 1
config vrrp vlan VLAN_172_20 vrid 1 add 172.16.20.254


create vrrp vlan VLAN_172_30 vrid 2
config vrrp vlan VLAN_172_30 vrid 2 add 172.16.30.254

enable vrrp

show vrrp

HeadOffice_Distribution_Switch]

config vlan Default delete ports all

create vlan VLAN_172_20 tag 20
config vlan VLAN_172_20 add port 1 untagged
config vlan VLAN_172_20 add port 11-12 tagged

create vlan VLAN_172_30 tag 30
config vlan VLAN_172_30 add port 2 untagged
config vlan VLAN_172_30 add port 11-12 tagged

 

show vlan

HeadOffice_2F_Security_Team]

ip 172.16.20.1 255.255.255.0 172.16.20.254        // VRRP : VLAN_172_20 Gateway

show ip

HeadOffice_3F_Network_Team]

ip 172.16.30.1 255.255.255.0 172.16.30.254        // VRRP : VLAN_172_30 Gateway

show ip

 

## HeadOffice LAN Ping Test

HeadOffice_2F_Security_Team]

ping 172.16.20.251   // HeadOffice_BB-1호기

ping 172.16.20.254   // VRRP Gateway

ping 172.16.30.1​   // HeadOffice_3F_Network_Team

Branch_BB-1]

config vlan Default delete ports all // Default 할당 포트 전부 해제

// VLAN_192_20, VLAN_192_30, VLAN_100 생성
create vlan VLAN_192_20 tag 120
config vlan VLAN_192_20 ipaddress 192.168.20.251/24

config vlan VLAN_192_20 add ports 8, 11 tagged

create vlan VLAN_192_30 tag 130
config vlan VLAN_192_30 ipaddress 192.168.30.251/24

config vlan VLAN_192_30 add ports 8, 11 tagged

create vlan VLAN_100 tag 100
config vlan VLAN_100 ipaddress 100.1.1.2/24

config vlan VLAN_100 add port 10 tagged

enable ipforwarding vlan VLAN_192_20
enable ipforwarding vlan VLAN_192_30
enable ipforwarding vlan VLAN_100

 

show vlan


// VRRP 설정
create vrrp vlan VLAN_192_20 vrid 3
config vrrp vlan VLAN_192_20 vrid 3 priority 110
config vrrp vlan VLAN_192_20 vrid 3 add 192.168.20.254

create vrrp vlan VLAN_192_30 vrid 4
config vrrp vlan VLAN_192_30 vrid 4 priority 110
config vrrp vlan VLAN_192_30 vrid 4 add 192.168.30.254

enable vrrp

show vrrp

Branch_BB-2]

config vlan Default delete ports all // Default 할당 포트 전부 해제

// VLAN_192_20, VLAN_192_30, VLAN_200 생성
create vlan VLAN_192_20 tag 120
config vlan VLAN_192_20 ipaddress 192.168.20.252/24

config vlan VLAN_192_20 add ports 8, 11 tagged

create vlan VLAN_192_30 tag 130
config vlan VLAN_192_30 ipaddress 192.168.30.252/24

config vlan VLAN_192_30 add ports 8, 11 tagged

create vlan VLAN_200 tag 200
config vlan VLAN_200 ipaddress 200.1.1.2/24

config vlan VLAN_200 add port 10 tagged


enable ipforwarding vlan VLAN_192_20
enable ipforwarding vlan VLAN_192_30
enable ipforwarding vlan VLAN_200

 

show vlan


// VRRP 설정
create vrrp vlan VLAN_192_20 vrid 3
config vrrp vlan VLAN_192_20 vrid 3 add 192.168.20.254

create vrrp vlan VLAN_192_30 vrid 4
config vrrp vlan VLAN_192_30 vrid 4 add 192.168.30.254

enable vrrp

show vrrp

Branch_Distribution_Switch]

config vlan Default delete ports all

create vlan VLAN_192_20 tag 120
config vlan VLAN_192_20 add port 1 untagged
config vlan VLAN_192_20 add port 11-12 tagged

create vlan VLAN_192_30 tag 130
config vlan VLAN_192_30 add port 2 untagged
config vlan VLAN_192_30 add port 11-12 tagged

 

show vlan

Branch_2F_Security_Team]

ip 192.168.20.1 255.255.255.0 192.168.20.254

show ip

Branch_3F_Network_Team]

ip 192.168.30.1 255.255.255.0 192.168.30.254

show ip

## Branch LAN Ping Test

Branch_2F_Security_Team]

ping 192.168.20.251   // Branch_BB-1호기

ping 192.168.20.252   // Branch_BB-2호기

ping 192.168.20.254   // VRRP Gateway

 

ping 192.168.30.1   // Branch_3F_Network_Team

## OSPF ##

Group1_BB_Switch1]

config ospf routerid 1.1.1.1
config ospf add vlan VLAN_172_20 area 0.0.0.0

config ospf add vlan VLAN_172_30 area 0.0.0.0
config ospf add vlan VLAN_100 area 0.0.0.0
enable ospf

Group1_BB_Switch2]

config ospf routerid 2.2.2.2
config ospf add vlan VLAN_172_20 area 0.0.0.0

config ospf add vlan VLAN_172_30 area 0.0.0.0
config ospf add vlan VLAN_200 area 0.0.0.0
enable ospf

Group2_BB_Switch1]

config ospf routerid 3.3.3.3
config ospf add vlan VLAN_192_20 area 0.0.0.0

config ospf add vlan VLAN_192_30 area 0.0.0.0
config ospf add vlan VLAN_100 area 0.0.0.0
enable ospf

Group1_BB_Switch1]

config ospf routerid 4.4.4.4
config ospf add vlan VLAN_192_20 area 0.0.0.0

config ospf add vlan VLAN_192_30 area 0.0.0.0
config ospf add vlan VLAN_200 area 0.0.0.0
enable ospf

 

## OSPF Neighbor 확인

show ospf nei

 

 

## HeadOffice_PC들과 Branch_PC 들간의 통신 확인
## 백본 이중화를 해놓았기에, 포트 연결 끊으며 Traceroute로 확인
## BB-1, BB-2, Distribution_Switch 간의 Loop 구조로 인해, STP 확인 (패킷)

## Load Sharing 설정을 해놓았기에, 백본간 포트 8번 또는 9번 포트 연결 끊어서 Load balancing 확인

 

 

'Network > Extreme Network' 카테고리의 다른 글

Extreme - Load Sharing, OSPF  (0) 2022.03.07
Extreme - VLAN 통신(VLAN 10, VLAN 20, ipforward)  (0) 2022.03.03
Fiber Channel, GBIC, SFP, SFP+ 정리  (0) 2022.01.03
'Network/Extreme Network' Related Articles more