|
| 关于作者 |
 |
|
|
|
姓名: 大萝卜
职业: 听人说,技术支持是IT业最鸡肋的职业,于是我便开始郁闷起来!
个性签名: 我以为我们同属于/30,Ping出Timed out才明白处于不同的Vlan。我尝试着用爱做为Route,并用Traceroute来验证,可是Netstat的Syn_received结果让我无比伤心。于是我选择了deny any和deny ip any any,但是我心里一直期待着Vpn那天的到来,请将我放在你的Acl之内。
Mailto:bxz1981#gmail.com
|
|
|
| 我的分类 |
|
|
|
|
|
|
|
3550 without using "ip default-network"
|
Switch(config)#int vl 1
Switch(config-if)#ip ?
Interface IP configuration subcommands:
access-group Specify access control for packets
accounting Enable IP accounting on this interface
address Set the IP address of an interface
authentication authentication subcommands
bandwidth-percent Set EIGRP bandwidth limit
bgp BGP interface commands
broadcast-address Set the broadcast address of an interface
cef Cisco Express Fowarding interface commands
cgmp Enable/disable CGMP
dhcp Configure DHCP parameters for this interface
directed-broadcast Enable forwarding of directed broadcasts
dvmrp DVMRP interface commands
hello-interval Configures IP-EIGRP hello interval
helper-address Specify a destination address for UDP broadcasts
hold-time Configures IP-EIGRP hold time
igmp IGMP interface commands
irdp ICMP Router Discovery Protocol
load-sharing Style of load sharing
local-proxy-arp Enable local-proxy ARP
mask-reply Enable sending ICMP Mask Reply messages
mrm Configure IP Multicast Routing Monitor tester
mroute-cache Enable switching cache for incoming multicast packets
mtu Set IP Maximum Transmission Unit
multicast IP multicast interface commands
ospf OSPF interface commands
pim PIM interface commands
policy Enable policy routing
probe Enable HP Probe support
proxy-arp Enable proxy ARP
rarp-server Enable RARP server for static arp entries
redirects Enable sending ICMP Redirect messages
rgmp Enable/disable RGMP
rip Router Information Protocol
route-cache Enable fast-switching cache for outgoing packets
sap Session Advertisement Protocol interface commands
sdr Session Directory Protocol interface commands
security DDN IP Security Option
split-horizon Perform split horizon
summary-address Perform address summarization
unnumbered Enable IP processing without an explicit address
unreachables Enable sending ICMP Unreachable messages
urd Configure URL Rendezvousing
vrf VPN Routing/Forwarding parameters on the interface
wccp WCCP interface commands
Switch(config-if)#ip policy ?
route-map Policy route map
Switch(config-if)#ip policy route-map test
Switch(config-if)#
2d10h: %L3TCAM-3-SIZE_CONFLICT: PBR requires enabling extended routing
Switch(config-if)#exit
Switch(config)#sdm ?
prefer Config TCAM and ASIC RAM size. Warning: need to reset switch for
configuration to take effect.
Switch(config)#sdm pre ?
access multicast and qos/acl bias, drop unicast
extended-match Using extended match for unicast routing
routing unicast bias, drop qos/acl
vlan vlan bias, drop routing
<cr>
Switch(config)#sdm pre ext
Switch(config)#sdm pre extended-match ?
<cr>
Switch(config)#sdm pre extended-match
Changes to the running SDM preferences have been stored, but cannot take effect
until the next reload.
Use 'show sdm prefer' to see what SDM preference is currently active.
Switch(config)#exit
Switch#sh s
2d10h: %SYS-5-CONFIG_I: Configured from console by consoledm prefer
The current template is the default template.
The selected template optimizes the resources in
the switch to support this level of features for
8 routed interfaces and 1K VLANs.
number of unicast mac addresses: 5K
number of igmp groups: 1K
number of qos aces: 1K
number of security aces: 1K
number of unicast routes: 8K
number of multicast routes: 1K
The template stored for use after the next reload
is the default extended-match template.
The selected template optimizes the resources in
the switch to support this level of features for
8 routed interfaces and 1K VLANs.
number of unicast mac addresses: 5K
number of igmp groups: 1K
number of qos aces: 1K
number of security aces: 1K
number of unicast routes: 4K
number of multicast routes: 1K
Switch#reload
System configuration has been modified. Save? [yes/no]: no
Proceed with reload? [confirm]
2d10h: %SYS-5-RELOAD: Reload requestedBase ethernet MAC Address: 00:0b:5f:b4:e6:00
Xmodem file system is available.
The password-recovery mechanism is enabled.
Initializing Flash...
flashfs[0]: 7 files, 1 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 15998976
flashfs[0]: Bytes used: 8532480
flashfs[0]: Bytes available: 7466496
flashfs[0]: flashfs fsck took 20 seconds.
...done Initializing Flash.
Boot Sector Filesystem (bs installed, fsid: 3
Loading "flash:c3550-i5q3l2-mz.121-22.EA5.bin"...############################################### ################################################## ################################################## ################################################## ################################################## ################################################## ################################################## ################################################## ################################################## ################################################## ##########
File "flash:c3550-i5q3l2-mz.121-22.EA5.bin" uncompressed and installed, entry point: 0x3000
executing...
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco Internetwork Operating System Software
IOS (tm) C3550 Software (C3550-I5Q3L2-M), Version 12.1(22)EA5, RELEASE SOFTWARE (fc1)
Copyright (c) 1986-2005 by cisco Systems, Inc.
Compiled Wed 13-Jul-05 23:51 by antonino
Image text-base: 0x00003000, data-base: 0x00844614
Initializing flashfs...
flashfs[1]: 7 files, 1 directories
flashfs[1]: 0 orphaned files, 0 orphaned directories
flashfs[1]: Total bytes: 15998976
flashfs[1]: Bytes used: 8532480
flashfs[1]: Bytes available: 7466496
flashfs[1]: flashfs fsck took 9 seconds.
flashfs[1]: Initialization complete.
...done Initializing flashfs.
POST: CPU Buffer Tests : Begin
POST: CPU Buffer Tests : End, Status Passed
POST: CPU Interface Tests : Begin
POST: CPU Interface Tests : End, Status Passed
POST: Switch Core Tests : Begin
POST: Switch Core Tests : End, Status Passed
POST: CPU Interface 2nd Stage Tests : Begin
POST: CPU Interface 2nd Stage Tests : End, Status Passed
POST: CAM Subsystem Tests : Begin
POST: CAM Subsystem Tests : End, Status Passed
POST: Ethernet Controller Tests : Begin
POST: Ethernet Controller Tests : End, Status Passed
POST: Loopback Tests : Begin
POST: Loopback Tests : End, Status Passed
cisco WS-C3550-24 (PowerPC) processor (revision G0) with 65526K/8192K bytes of memory.
Processor board ID CHK0647W1PV
Last reset from warm-reset
Bridging software.
Running Layer2/3 Switching Image
Ethernet-controller 1 has 12 Fast Ethernet/IEEE 802.3 interfaces
Ethernet-controller 2 has 12 Fast Ethernet/IEEE 802.3 interfaces
Ethernet-controller 3 has 1 Gigabit Ethernet/IEEE 802.3 interface
Ethernet-controller 4 has 1 Gigabit Ethernet/IEEE 802.3 interface
24 FastEthernet/IEEE 802.3 interface(s)
2 Gigabit Ethernet/IEEE 802.3 interface(s)
The password-recovery mechanism is enabled.
384K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 00:0B:5F:B4:E6:00
Motherboard assembly number: 73-5700-09
Power supply part number: 34-0966-02
Motherboard serial number: CAT06460APN
Power supply serial number: LIT063500RL
Model revision number: G0
Motherboard revision number: A0
Model number: WS-C3550-24-SMI
System serial number: CHK0647W1PV
--- System Configuration Dialog ---
Would you like to enter the initial configuration dialog? [yes/no]:
% Please answer 'yes' or 'no'.
Would you like to enter the initial configuration dialog? [yes/no]: no
Press RETURN to get started!
00:00:37: %SPANTREE-5-EXTENDED_SYSID: Extended SysId enabled for type vlan
00:00:42: %SYS-5-RESTART: System restarted --
Cisco Internetwork Operating System Software
IOS (tm) C3550 Software (C3550-I5Q3L2-M), Version 12.1(22)EA5, RELEASE SOFTWARE (fc1)
Copyright (c) 1986-2005 by cisco Systems, Inc.
Compiled Wed 13-Jul-05 23:51 by antonino
00:00:42: %SNMP-5-COLDSTART: SNMP agent on host Switch is undergoing a cold start
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/5, changed state to up
00:00
Switch>:45: %LINK-3-UPDOWN: Interface FastEthernet0/8, changed state to up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/9, changed state to up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/10, changed state to up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/24, changed state to up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/4, changed state to up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to
Switch>up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/7, changed state to up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/11, changed state to up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/12, changed state to up
00:00:45: %LINK-3-UPDOWN: Interface FastEthernet0/13, changed state to up
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/5, changed state to up
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/8, changed state to down
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/9, changed state to up
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/10, changed state to up
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/24, changed state to up
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to down
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/2, changed state to down
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/3, changed state to down
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/4, changed state to down
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to down
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/12, changed state to down
00:00:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/13, changed state to down
00:00:47: %LINK-3-UPDOWN: Interface FastEthernet0/2, changed state to up
00:00:47: %LINK-3-UPDOWN: Interface FastEthernet0/3, changed state to up
00:00:47: %LINK-5-CHANGED: Interface Vlan1, changed state to administratively down
00:00:48: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/8, changed state to up
00:00:48: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan1, changed state to down
00:00:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up
00:00:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/2, changed state to up
00:00:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/3, changed state to up
00:00:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/4, changed state to up
00:00:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up
00:00:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/7, changed state to up
00:00:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/11, changed state to up
00:00:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/12, changed state to up
00:00:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/13, changed state to up
Switch>en
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#int vl 1
Switch(config-if)#ip policy route-map test
Switch(config-if)#exit
Switch(config)#ip local
Switch(config)#ip local route-map test
^
% Invalid input detected at '^' marker.
Switch(config)#ip local policy
Switch(config)#ip local policy route-map test
Switch(config)#route-map test
Switch(config-route-map)#set ip nex
Switch(config-route-map)#set ip next-hop 10.1.1.2
Switch(config-route-map)#exit
Switch(config)#int vl 10
Switch(config-if)#ip add 10.1.1.1 255.255.255.0
Switch(config-if)#no sh
Switch(config-if)#^Z
Switch#
00:04:07: %SYS-5-CONFIG_I: Configured from console by console
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#int fa0/1
Switch(config-if)#sw acc vl 10
Switch(config-if)#no sh
Switch(config-if)#
AccSrv-Rack01#r1
Trying R1 (1.1.1.1, 2001)... Open
R1>en
R1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
R1(config)#int e0/0
R1(config-if)#ip add 10.1.1.2 255.255.255.0
R1(config-if)#no sh
R1(config-if)#
AccSrv-Rack01#1
[Resuming connection 1 to sw1 ... ]
00
Switch(config-if)#do ping 10.1.1.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.1.1.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/202/1000 ms
Switch(config-if)#
AccSrv-Rack01#2
[Resuming connection 2 to r1 ... ]
R1(config-if)#int lo0
R1(config-if)#ip add 100.1.1.2 255.255.255.0
R1(config-if)#
AccSrv-Rack01#1
[Resuming connection 1 to sw1 ... ]
Switch(config-if)#do ping 100.1.1.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 100.1.1.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/4 ms
Switch(config-if)#
|
|
|
发表于: 2006-08-15,修改于: 2006-08-15 14:20 已浏览916次,有评论2条
推荐
投诉
|
|
|
|
网友评论 |
|
本站网友 | 时间:2006-08-16 08:11:21 IP地址:221.208.173.★ |
|
|
|
|
|
本站网友 | 时间:2006-09-05 09:17:48 IP地址:211.76.97.★ |
|
|
|
|
|
| |
|
Copyright © 2001-2006 ChinaUnix.net All Rights Reserved
感谢所有关心和支持过ChinaUnix的朋友们
页面生成时间:0.35155 京ICP证041476号
|
|
