爱快酒店多业务网络配置案例

027101

场景说明:
1.      业务流量包括酒店内部办公网络、WiFi、视频监控、VoIP语音、客房IPTV;2.      所有不同业务流量使用不同VLAN区分;
3.      所有网络设备使用单独的VLAN和网段进行管理;
4.      单独LAN2口镜像WAN口所有流量用于对接网监设备;
5.      使用DHCP SNOOPING防止非法DHCP服务器影响;
6.      客房使用W6双频面板AP,前面板有线接口连接电视机用于播放IPTV;
7.      IPTV直播业务使用组播流;
8.      前台WiFi使用不同SSID和VLAN ID来区分客人和办公网络;
9.      核心交换机做三层转发,客户端通过核心交换机DHCP relay功能获取由爱快路由分配的IP地址。

图片[1]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

爱快路由相关配置

图片[2]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

图片[3]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

图片[4]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

图片[5]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

图片[6]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

图片[7]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

图片[8]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

图片[9]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

图片[10]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

图片[11]-爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr

华为核心交换机配置 

!Software Version V200R010C00SPC600
#
sysname hexin-SW
#
vlan batch 10 30 50 80 110 255
#
authentication-profile name default_authen_profile
authentication-profile name dot1x_authen_profile
authentication-profile name mac_authen_profile
authentication-profile name portal_authen_profile
authentication-profile name dot1xmac_authen_profile
authentication-profile name multi_authen_profile
#
igmp-snooping enable
#
telnet server enable
#
lldp enable
#
dhcp enable
#
radius-server template default
#
pki realm default
certificate-check none                  
#
acl number 2000
rule 5 permit source 239.3.3.1 0
rule 10 permit source 239.3.3.20
rule 15 permit source 239.3.3.30
rule 20 permit source 239.3.3.40
rule 25 permit source 239.3.3.50
rule 30 permit source 239.3.3.60
rule 35 permit source 239.3.3.70
rule 40 permit source 239.3.3.80
rule 45 permit source 239.3.3.90
rule 50 permit source 239.3.3.100
rule 55 permit source 239.3.3.110
rule 60 permit source 239.3.3.120
rule 65 permit source 239.3.3.130
rule 70 permit source 239.3.3.140
rule 75 permit source 239.3.3.150
rule 80 permit source 239.3.3.160
rule 85 permit source 239.3.3.170
rule 90 permit source 239.3.3.180
rule 95 permit source 239.3.3.190
rule 100 permit source239.3.3.20 0
rule 105 permit source239.3.3.21 0
rule 110 permit source239.3.3.22 0
rule 115 permit source239.3.3.23 0
rule 120 permit source239.3.3.24 0
rule 125 permit source239.3.3.25 0
rule 130 permit source239.3.3.26 0
rule 135 permit source239.3.3.27 0
rule 140 permit source239.3.3.28 0
rule 145 permit source239.3.3.29 0
rule 150 permit source239.3.3.30 0
#
free-rule-template name default_free_rule
#
portal-access-profile name portal_access_profile
#
vlan 10
description public
vlan 30
description insider
vlan 50
name TEL
vlan 80
name IPTV
multicast drop-unknown
igmp-snooping enable
igmp-snooping version 3                  
igmp-snooping querier enable
igmp-snooping group-policy 2000
vlan 110
name CAM
vlan 255
description Mange
#
aaa
authentication-scheme default
authentication-scheme radius
  authentication-mode radius
authorization-scheme default
accounting-scheme default
local-aaa-user password policyadministrator
  password expire 0
domain default                           
  authentication-scheme radius
  radius-server default
domain default_admin
  authentication-scheme default
local-user admin passwordirreversible-cipher$1a$84>b@LFZ<#$d]<_83dOTFC$XA~V=Qh3--p.$J\i@Yy1%$22*:_@$
local-user admin privilege level15
local-user admin service-typetelnet terminal ssh ftp x25-pad http
#
interface Vlanif1
#
interface Vlanif10
ip address 10.10.1.254255.255.254.0
dhcp select relay
dhcp relay server-ip 10.255.0.1
#
interface Vlanif30
ip address 10.30.0.254255.255.255.0
dhcp select relay
dhcp relay server-ip 10.255.0.1
#
interface Vlanif50
ip address 192.168.5.1255.255.255.0
#
interface Vlanif80                        
ip address 10.8.8.1255.255.255.0
dhcp select relay
dhcp relay server-ip 10.255.0.1
#
interface Vlanif110
ip address 192.168.110.1255.255.255.0
dhcp select relay
dhcp relay server-ip 10.255.0.1
#
interface Vlanif255
ip address 10.255.0.2255.255.255.0
#
interface MEth0/0/1
#
interface GigabitEthernet0/0/1
port link-type hybrid
port hybrid pvid vlan 80
port hybrid untagged vlan 80
#
interface GigabitEthernet0/0/2
port link-type trunk
port trunk allow-pass vlan 2 to4094
stp edged-port enable
#                                         
interface GigabitEthernet0/0/3
port default vlan 30
stp edged-port enable
#
interface GigabitEthernet0/0/4
port default vlan 30
stp edged-port enable
#
interface GigabitEthernet0/0/5
port default vlan 30
stp edged-port enable
#
interface GigabitEthernet0/0/6
port default vlan 30
stp edged-port enable
#
interface GigabitEthernet0/0/7
port default vlan 110
stp edged-port enable
#
interface GigabitEthernet0/0/8
port default vlan 110
stp edged-port enable
#                                         
interface GigabitEthernet0/0/9
port default vlan 110
stp edged-port enable
#
interface GigabitEthernet0/0/10
port default vlan 50
stp edged-port enable
#
interface GigabitEthernet0/0/11
port default vlan 50
stp edged-port enable
#
interface GigabitEthernet0/0/12shwo
port default vlan 50
stp edged-port enable
#
interface GigabitEthernet0/0/13
port link-type access
port default vlan 50
#
interface GigabitEthernet0/0/14
port link-type access
port default vlan 50
stp edged-port enable                    
#
interface GigabitEthernet0/0/15
port link-type access
port default vlan 50
#
interface GigabitEthernet0/0/16
port link-type access
port default vlan 50
#
interface GigabitEthernet0/0/17
port link-type trunk
port trunk allow-pass vlan 2 to4094
#
interface GigabitEthernet0/0/18
port link-type trunk
port trunk allow-pass vlan 2 to4094
#
interface GigabitEthernet0/0/19
port link-type trunk
port trunk allow-pass vlan 2 to4094
#
interface GigabitEthernet0/0/20
port link-type trunk                     
port trunk allow-pass vlan 2 to4094
#
interface GigabitEthernet0/0/21
port link-type trunk
port trunk allow-pass vlan 2 to4094
#
interface GigabitEthernet0/0/22
port link-type trunk
port trunk allow-pass vlan 2 to4094
#
interface GigabitEthernet0/0/23
port link-type trunk
port trunk allow-pass vlan 2 to4094
#
interface GigabitEthernet0/0/24
port link-type trunk
port trunk allow-pass vlan 2 to4094
#
interface GigabitEthernet0/0/25
port link-type trunk
port trunk allow-pass vlan 2 to4094
#
interface GigabitEthernet0/0/26
#                                         
interface GigabitEthernet0/0/27
port default vlan 110
#
interface GigabitEthernet0/0/28
port default vlan 110
#
interface NULL0
#
ip route-static 0.0.0.0 0.0.0.0 10.255.0.1
#
snmp-agent
snmp-agent local-engineid 800007DB037858603EC7F0
snmp-agent community read cipher%^%#s.uh"^_4#O2/jHCNyzb<yrQ0&E@V#DurOIAOONh%$vFR/Xp1=/<(66Hl.6e>xL{tYaTp@L:sk|"6U=jF%^%#
snmp-agent sys-info version v2c
undo snmp-agent sys-info version v3
#
user-interface con 0
authentication-mode aaa
user-interface vty 0 4
authentication-mode aaa
protocol inbound telnet
user-interface vty 16 20
#
dot1x-access-profile name dot1x_access_profile
#
mac-access-profile name mac_access_profile
#
Return

IK-J35 POE交换机配置 

#
versionPS5024-PWR-EIR005
#
sysnameJ35-1
#
lldp enable
#
dhcp-snooping
#
ip route0.0.0.0 0.0.0.0 10.255.0.1 metric 60
#
stp domain-configuration
stp instance0 vlan 1 to 4094
activatedomain-configuration
#
radius scheme system
#
domain system
#
local-user admin
passwordcipher TGT7O'\G->R30M7YYP^Q4!!!
service-typeweb
#
igmp-snooping
version 3
drop-unknown
#
vlan 1
#
vlan 10
#
vlan 30
#
vlan 80
igmp-snooping enable
#
vlan 255
#
port-group-vlan 1
#
interface vlan-interface 255
ip address10.255.0.11 255.255.255.0
#
interface GigabitEthernet1/0/1
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#            
interface GigabitEthernet1/0/2
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/3
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/4
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/5
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poeenable   
#
interface GigabitEthernet1/0/6
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/7
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/8
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/9
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/10
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/11
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/12
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/13
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/14
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/15
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/16
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/17
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/18
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/19
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/20
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/21
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/22
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
port trunkpvid vlan 255
poe enable
#
interface GigabitEthernet1/0/23
port link-type trunk
port trunkpermit vlan 1 10 30 80 255
dhcp-snooping trust
#
interface GigabitEthernet1/0/24
portlink-type trunk
port trunkpermit vlan 1 10 30 80 255
dhcp-snooping trust
#
interface GigabitEthernet1/0/25
#
interface GigabitEthernet1/0/26
#
interface GigabitEthernet1/0/27
#
interface GigabitEthernet1/0/28
#
user-interface aux 0
user-interface vty 0
setauthentication password cipher TGT7O'\G->R30M7YYP^Q4!!!
user-interface vty 1
setauthentication password cipher TGT7O'\G->R30M7YYP^Q4!!!
#
return

© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
杂七杂八
喜欢就支持一下吧
点赞1 分享
admin的头像-咖啡先生Coffee丶Mr
史上最全最佳啪啪啪姿势,真人真图演示哦!你值得学习、拥有!-咖啡先生Coffee丶Mr
史上最全最佳啪啪啪姿势,真人真图演示哦!你值得学习、拥有!
史上最全最佳啪啪啪姿势,真人真图演示哦!你值得学习、拥有!
5年前 16W+
编译 Lean 大神的 OpenWrt (x86_x64) 固件教程汇总-咖啡先生Coffee丶Mr
编译 Lean 大神的 OpenWrt (x86_x64) 固件教程汇总
编译 Lean 大神的 OpenWrt (x86_x64) 固件教程汇总
4年前 1.1W+
Proxmox VE(PVE)虚拟机使用img引导启动-咖啡先生Coffee丶Mr
Proxmox VE(PVE)虚拟机使用img引导启动
Proxmox VE(PVE)虚拟机使用img引导启动
4年前 8705
v2-ui,一个全新的多协议多用户 v2 面板-咖啡先生Coffee丶Mr
v2-ui,一个全新的多协议多用户 v2 面板
v2-ui,一个全新的多协议多用户 v2 面板
4年前 6205
人人商城小程序与公众号数据不同步解决方案-咖啡先生Coffee丶Mr
人人商城小程序与公众号数据不同步解决方案
人人商城小程序与公众号数据不同步解决方案
5年前 4865
BT宝塔7.0.3开心版(专业版破解)安装-咖啡先生Coffee丶Mr
BT宝塔7.0.3开心版(专业版破解)安装
BT宝塔7.0.3开心版(专业版破解)安装
5年前 4652
相关推荐
史上最全最佳啪啪啪姿势,真人真图演示哦!你值得学习、拥有!-咖啡先生Coffee丶Mr
史上最全最佳啪啪啪姿势,真人真图演示哦!你值得学习、拥有!
史上最全最佳啪啪啪姿势,真人真图演示哦!你值得学习、拥有!
5年前 16W+
v2-ui,一个全新的多协议多用户 v2 面板-咖啡先生Coffee丶Mr
v2-ui,一个全新的多协议多用户 v2 面板
v2-ui,一个全新的多协议多用户 v2 面板
4年前 6205
字幕通-一款绝版Vlogo视频字幕神器-咖啡先生Coffee丶Mr
字幕通-一款绝版Vlogo视频字幕神器
字幕通-一款绝版Vlogo视频字幕神器
4年前 3401
爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr
爱快酒店多业务网络配置案例
爱快酒店多业务网络配置案例
4年前 2710
阿里云国际站域名备案需要转移到国内-咖啡先生Coffee丶Mr
阿里云国际站域名备案需要转移到国内
阿里云国际站域名备案需要转移到国内
5年前 2501
评论 抢沙发
头像
欢迎您留下宝贵的见解!
提交
头像

昵称

取消
昵称

请填写用户信息:

  • 昵称(必填)
  • 邮箱(必填)
表情
[aoman][baiyan][bishi][bizui][cahan][ciya][dabing][daku][deyi][doge][fadai][fanu][fendou][ganga][guzhang][haixiu][hanxiao][zuohengheng][zhuakuang][zhouma][zhemo][zhayanjian][zaijian][yun][youhengheng][yiwen][yinxian][xu][xieyanxiao][xiaoku][xiaojiujie][xia][wunai][wozuimei][weixiao][weiqu][tuosai][tu][touxiao][tiaopi][shui][se][saorao][qiudale][se][qinqin][qiaoda][piezui][penxue][nanguo][liulei][liuhan][lenghan][leiben][kun][kuaikule][ku][koubi][kelian][keai][jingya][jingxi][jingkong][jie][huaixiao][haqian][aini][OK][qiang][quantou][shengli][woshou][gouyin][baoquan][aixin][bangbangtang][xiaoyanger][xigua][hexie][pijiu][lanqiu][juhua][hecai][haobang][caidao][baojin][chi][dan][kulou][shuai][shouqiang][yangtuo][youling]
代码

请输入代码:

确认
图片
默认头像
vue编译报错Node Sass could not find a binding for your current environment: OS X 64-bit with Node.js-咖啡先生Coffee丶Mr
291人已阅读
vue编译报错Node Sass could not find a binding for your current e...
TOP1
vue第一个代码-咖啡先生Coffee丶Mr
vue第一个代码
2年前247人已阅读
TOP2
HTML5点播m3u8(hls)格式视频-咖啡先生Coffee丶Mr
HTML5点播m3u8(hls)格式视频
2年前480人已阅读
TOP3
前端html5自适应全屏图代码及样式-咖啡先生Coffee丶Mr
前端html5自适应全屏图代码及样式
2年前254人已阅读
TOP4
爱快酒店多业务网络配置案例-咖啡先生Coffee丶Mr
爱快酒店多业务网络配置案例
4年前2710人已阅读
TOP5
字幕通-一款绝版Vlogo视频字幕神器-咖啡先生Coffee丶Mr
字幕通-一款绝版Vlogo视频字幕神器
4年前3401人已阅读
TOP6