一、实验拓扑
二、实验需求
三、实验思路
四、实验步骤
1、创建VLAN2/3/4/5/6,PC1和PC3划入VLAN2
[sw1]vlan batch 2 3 4 5 6
[sw1]int e0/0/3
[sw1-Ethernet0/0/3]port link-type access
[sw1-Ethernet0/0/3]port default vlan 2
[sw1-Ethernet0/0/3]int e0/0/5
[sw1-Ethernet0/0/5]port link-type access
[sw1-Ethernet0/0/5]port default vlan 2
2、SW1与SW2间配置trunk干道,所有流量通过均标记
[sw1-Ethernet0/0/2]port link-type trunk
[sw1-Ethernet0/0/2]port trunk allow-pass vlan all
[sw2-Ethernet0/0/2]port link-type trunk
[sw2-Ethernet0/0/2]port trunk allow-pass vlan all
3、PC2/4/5/6配置为混杂模式
PC2可访问PC4/5/6
[sw1-Ethernet0/0/4]port hybrid pvid vlan 3
[sw1-Ethernet0/0/4]port hybrid untagged vlan 3 to 6
PC4不可访问PC5和PC6
[sw1-Ethernet0/0/6]port hybrid pvid vlan 4
[sw1-Ethernet0/0/6]port hybrid untagged vlan 3 4
PC5不可访问PC6
[sw2]vlan batch 2 3 4 5 6
[sw2-Ethernet0/0/1]port hybrid pvid vlan 5
[sw2-Ethernet0/0/1]port hybrid untagged vlan 3 5
PC6
[sw2-Ethernet0/0/3]port hybrid pvid vlan 6
[sw2-Ethernet0/0/3]port hybrid untagged vlan 3 6
4、创建虚拟子接口,负责vlan2,PC2/4/5/6去往网关不标记,由物理接口负责
[router]int g0/0/0.1
[router-GigabitEthernet0/0/0.1]dot1q termination vid 2
[router-GigabitEthernet0/0/0.1]ip add 192.168.1.1 24
[router-GigabitEthernet0/0/0.1]arp broadcast enable
[SW1-GigabitEthernet0/0/1]port link-type hybrid
[SW1-GigabitEthernet0/0/1]port hybrid untagged 3 to 6
5、dhcp获取地址
[R1]dhcp enable
[R1]ip pool v2
[R1-ip-pool-v2]gateway-list 192.168.1.1
[R1-ip-pool-v2]network 192.168.1.0 mask 24
[R1-ip-pool-v2]q
[R1]int g0/0/0.1
[R1-GigabitEthernet0/0/0.1]dhcp select global
[R1-GigabitEthernet0/0/0.1]q
[R1]ip pool v3456
[R1-ip-pool-v2]gateway-list 192.168.2.1
[R1-ip-pool-v2]network 192.168.2.0 mask 24
[R1]int g0/0/0
[R1-GigabitEthernet0/0/0]dhcp select global
