diff --git a/INTERNET.md b/INTERNET.md new file mode 100644 index 0000000..00dd272 --- /dev/null +++ b/INTERNET.md @@ -0,0 +1,7 @@ +enable +configure terminal +interface e0/0 + ip address 1.1.1.1 255.255.255.0 + no shutdown +end +write memory \ No newline at end of file diff --git a/ISP.md b/ISP.md new file mode 100644 index 0000000..c128836 --- /dev/null +++ b/ISP.md @@ -0,0 +1,15 @@ +enable +configure terminal +interface e0/0 + ip address 55.55.55.106 255.255.255.252 + no shutdown +interface e0/1 + ip address 192.168.10.1 255.255.255.248 + no shutdown +interface e0/2 + ip address 1.1.1.2 255.255.255.0 + no shutdown +ip route 10.10.0.0 255.255.0.0 55.55.55.105 +ip route 10.10.5.0 255.255.255.0 192.168.10.2 +end +write memory \ No newline at end of file diff --git a/R-DarkStore.md b/R-DarkStore.md index e69de29..9f5fe68 100644 --- a/R-DarkStore.md +++ b/R-DarkStore.md @@ -0,0 +1,32 @@ +enable +configure terminal +interface e0/0 + no ip address + no shutdown +interface e0/1 + no ip address + no shutdown +interface e0/0.30 + encapsulation dot1Q 30 + ip address 10.10.3.1 255.255.255.0 +interface e0/0.40 + encapsulation dot1Q 40 + ip address 10.10.4.1 255.255.255.0 +interface e0/1.60 + encapsulation dot1Q 60 + ip address 10.10.6.1 255.255.255.0 +interface e0/2 + ip address 55.55.55.105 255.255.255.252 + no shutdown +ip route 0.0.0.0 0.0.0.0 55.55.55.106 +ip access-list standard NAT_ACL + permit 10.10.0.0 0.0.255.255 +interface e0/0 + ip nat inside +interface e0/1 + ip nat inside +interface e0/2 + ip nat outside +ip nat inside source list NAT_ACL interface e0/2 overload +end +write memory \ No newline at end of file diff --git a/Readme b/Readme index a815e2c..3ab4c64 100644 --- a/Readme +++ b/Readme @@ -22,6 +22,9 @@ VLAN 30 (Logistics → PCL-1, PCL-2, PCL-3, PCL-4) VLAN 40 (Storage → PCS-1…4) VLAN 60 (DS-Servers → Portal, File Server) +>>Публичная подсеть: 55.55.55.104/30 +55.55.55.105 → R-Darkstore +55.55.55.106 → ISP (gateway) ❗ IT (10) и Management (20) — в головном офисе, не настраиваются в Darkstore. !Обновлённые задачи для Darkstore! SW1/2/3-Darkstore поддерживают только VLAN 30, 40, 60 (и только те, что подключены к конкретному коммутатору). @@ -33,4 +36,44 @@ VLAN 60 → 10.10.6.1 Сервера в DS: Portal → 10.10.6.10 FS → 10.10.6.20 -(возможно, другие — но по умолчанию хватит) \ No newline at end of file + +R-Darkstore +├─ e0/0 ↔ SW1-Darkstore e0/0 +├─ e0/1 ↔ SW2-Darkstore e0/0 +├─ e0/2 ↔ ISP e0/0 +└─ e0/3 ↔ WAN e0/1 +ISP +├─ e0/0 ↔ R-Darkstore e0/2 +├─ e0/1 ↔ R-HQ e0/0 +└─ e0/2 ↔ INTERNET e0/0 +SW1-Darkstore +├─ e0/1 ↔ SW3-Darkstore e0/0 +├─ e0/2 → PCL-3 (VLAN 30) +├─ e0/3 → PCL-4 (VLAN 30) +├─ e1/0 → PCS-3 (VLAN 40) +└─ e1/1 → PCS-4 (VLAN 40) +SW3-Darkstore +├─ e0/0 ← от SW1 +├─ e0/1 → PCL-1 (VLAN 30) +├─ e0/2 → PCL-2 (VLAN 30) +├─ e0/3 → PCS-1 (VLAN 40) +└─ e1/0 → PCS-2 (VLAN 40) + +------------------------------------- +🏢 Darkstore — адресное пространство: 10.10.0.0/16 +VLAN 30 — Logistics (PCL) → 10.10.3.0/24, шлюз: 10.10.3.1 +PCL-1 : 10.10.3.13 | Логистика +PCL-2 : 10.10.3.14 | Логистика +PCL-3 : 10.10.3.11 | Логистика +PCL-4 : 10.10.3.12 | Логистика +------------------------------------- +VLAN 40 — Storage (PCS) → 10.10.4.0/24, шлюз: 10.10.4.1 +PCS-1 : 10.10.4.13 | Склад +PCS-2 : 10.10.4.14 | Склад +PCS-3 : 10.10.4.11 | Склад +PCS-4 : 10.10.4.12 | Склад +------------------------------------- +VLAN 60 — DS-Servers → 10.10.6.0/24, шлюз: 10.10.6.1 +Portal : 10.10.6.10 | Портал +FSC : 10.10.6.20 | Файловый сервер +------------------------------------- diff --git a/SW1-Darkstore.md b/SW1-Darkstore.md index decc2f9..77d1b4e 100644 --- a/SW1-Darkstore.md +++ b/SW1-Darkstore.md @@ -1,87 +1,40 @@ enable configure terminal - -! Включаем маршрутизацию ! -ip routing - -! Создаём VLAN vlan 30 name Logistics vlan 40 name Storage -vlan 60 - name DS-Servers - -! Настройка access-портов для пользователей interface e0/2 description PCL-3 - Logistics switchport mode access switchport access vlan 30 no shutdown - interface e0/3 description PCL-4 - Logistics switchport mode access switchport access vlan 30 no shutdown - interface e1/0 description PCS-3 - Storage switchport mode access switchport access vlan 40 no shutdown - interface e1/1 description PCS-4 - Storage switchport mode access switchport access vlan 40 no shutdown - -! Trunk-порты ! interface e0/0 description To R-Darkstore switchport trunk encapsulation dot1q switchport mode trunk - switchport trunk allowed vlan 30,40,60 + switchport trunk allowed vlan 30,40 no shutdown - interface e0/1 - description To SW2-Darkstore - switchport trunk encapsulation dot1q - switchport mode trunk - switchport trunk allowed vlan 30,40,60 - no shutdown - -interface e1/1 description To SW3-Darkstore switchport trunk encapsulation dot1q switchport mode trunk switchport trunk allowed vlan 30,40 no shutdown - end -write memory - - -// ! Результат ! -Switch#show interfaces trunk - -Port Mode Encapsulation Status Native vlan -Et0/0 on 802.1q trunking 1 -Et0/1 on 802.1q trunking 1 -Et1/1 on 802.1q trunking 1 - -Port Vlans allowed on trunk -Et0/0 30,40,60 -Et0/1 30,40,60 -Et1/1 30,40 - -Port Vlans allowed and active in management domain -Et0/0 30,40,60 -Et0/1 30,40,60 -Et1/1 30,40 - -Port Vlans in spanning tree forwarding state and not pruned -Et0/0 none -Et0/1 none -Et1/1 none \ No newline at end of file +write memory \ No newline at end of file diff --git a/SW2-Darkstore.md b/SW2-Darkstore.md index 94798dc..01911af 100644 --- a/SW2-Darkstore.md +++ b/SW2-Darkstore.md @@ -1,32 +1,32 @@ -• enable -• configure terminal - -• vlan 30 -• name Logistics -• vlan 40 -• name Storage -• vlan 60 -• name DS-Servers - -• interface e0/1 -• description Portal - DS-Servers -• switchport mode access -• switchport access vlan 60 - -• interface e0/2 -• description FileServer - DS-Servers -• switchport mode access -• switchport access vlan 60 - -• interface e0/0 -• description To R-Darkstore -• switchport mode trunk -• switchport trunk allowed vlan 30,40,60 - -• interface e0/1 -• description To SW1-Darkstore -• switchport mode trunk -• switchport trunk allowed vlan 30,40,60 - -• end -• write +enable +configure terminal +vlan 30 + name Logistics +vlan 40 + name Storage +vlan 60 + name DS-Servers +interface e0/1 + description Portal - DS-Servers + switchport mode access + switchport access vlan 60 + no shutdown +interface e0/2 + description FileServer - DS-Servers + switchport mode access + switchport access vlan 60 + no shutdown +interface e0/0 + description To R-Darkstore + switchport trunk encapsulation dot1q + switchport mode trunk + switchport trunk allowed vlan 60 + no shutdown +interface e0/3 + description To SW1-Darkstore + switchport trunk encapsulation dot1q + switchport mode trunk + switchport trunk allowed vlan 30,40,60 + no shutdown +end +write memory \ No newline at end of file diff --git a/SW3-Darkstore.md b/SW3-Darkstore.md index e69de29..46d451b 100644 --- a/SW3-Darkstore.md +++ b/SW3-Darkstore.md @@ -0,0 +1,34 @@ +enable +configure terminal +vlan 30 + name Logistics +vlan 40 + name Storage +interface e0/1 + description PCL-1 - Logistics + switchport mode access + switchport access vlan 30 + no shutdown +interface e0/2 + description PCL-2 - Logistics + switchport mode access + switchport access vlan 30 + no shutdown +interface e0/3 + description PCS-1 - Storage + switchport mode access + switchport access vlan 40 + no shutdown +interface e1/0 + description PCS-2 - Storage + switchport mode access + switchport access vlan 40 + no shutdown +interface e0/0 + description To SW1-Darkstore + switchport trunk encapsulation dot1q + switchport mode trunk + switchport trunk allowed vlan 30,40 + no shutdown +end +write memory \ No newline at end of file diff --git a/VPCS-Portal.md b/VPCS-Portal.md new file mode 100644 index 0000000..0bc959f --- /dev/null +++ b/VPCS-Portal.md @@ -0,0 +1,9 @@ +ip 10.10.6.10 255.255.255.0 10.10.6.1 + +VPCS> ping 10.10.6.1 + +10.10.6.1 icmp_seq=1 timeout +84 bytes from 10.10.6.1 icmp_seq=2 ttl=255 time=0.457 ms +84 bytes from 10.10.6.1 icmp_seq=3 ttl=255 time=0.493 ms +84 bytes from 10.10.6.1 icmp_seq=4 ttl=255 time=0.461 ms +84 bytes from 10.10.6.1 icmp_seq=5 ttl=255 time=0.444 ms \ No newline at end of file