update

2025-11-19 22:23:58 +03:00
parent 1043ab1285
commit f8a49510d8
8 changed files with 175 additions and 82 deletions
--- a/INTERNET.md
+++ b/INTERNET.md
@@ -0,0 +1,7 @@
 enable
 configure terminal
 interface e0/0
 ip address 1.1.1.1 255.255.255.0
 no shutdown
 end
 write memory
--- a/ISP.md
+++ b/ISP.md
@@ -0,0 +1,15 @@
 enable
 configure terminal
 interface e0/0
 ip address 55.55.55.106 255.255.255.252
 no shutdown
 interface e0/1
 ip address 192.168.10.1 255.255.255.248
 no shutdown
 interface e0/2
 ip address 1.1.1.2 255.255.255.0
 no shutdown
 ip route 10.10.0.0 255.255.0.0 55.55.55.105
 ip route 10.10.5.0 255.255.255.0 192.168.10.2
 end
 write memory
--- a/R-DarkStore.md
+++ b/R-DarkStore.md
@@ -0,0 +1,32 @@
 enable
 configure terminal
 interface e0/0
 no ip address
 no shutdown
 interface e0/1
 no ip address
 no shutdown
 interface e0/0.30
 encapsulation dot1Q 30
 ip address 10.10.3.1 255.255.255.0
 interface e0/0.40
 encapsulation dot1Q 40
 ip address 10.10.4.1 255.255.255.0
 interface e0/1.60
 encapsulation dot1Q 60
 ip address 10.10.6.1 255.255.255.0
 interface e0/2
 ip address 55.55.55.105 255.255.255.252
 no shutdown
 ip route 0.0.0.0 0.0.0.0 55.55.55.106
 ip access-list standard NAT_ACL
 permit 10.10.0.0 0.0.255.255
 interface e0/0
 ip nat inside
 interface e0/1
 ip nat inside
 interface e0/2
 ip nat outside
 ip nat inside source list NAT_ACL interface e0/2 overload
 end
 write memory
--- a/45
+++ b/45
@@ -22,6 +22,9 @@
 VLAN 30 (Logistics → PCL-1, PCL-2, PCL-3, PCL-4)
 VLAN 40 (Storage → PCS-1…4)
 VLAN 60 (DS-Servers → Portal, File Server)
 >>Публичная подсеть: 55.55.55.104/30
 55.55.55.105 → R-Darkstore
 55.55.55.106 → ISP (gateway)
 ❗ IT (10) и Management (20) — в головном офисе, не настраиваются в Darkstore. 
 !Обновлённые задачи для Darkstore!
 SW1/2/3-Darkstore поддерживают только VLAN 30, 40, 60 (и только те, что подключены к конкретному коммутатору).
@@ -33,4 +36,44 @@ VLAN 60 → 10.10.6.1
 Сервера в DS:
 Portal → 10.10.6.10
 FS → 10.10.6.20
-(возможно, другие — но по умолчанию хватит)
+
 R-Darkstore
 ├─ e0/0 ↔ SW1-Darkstore e0/0
 ├─ e0/1 ↔ SW2-Darkstore e0/0
 ├─ e0/2 ↔ ISP e0/0
 └─ e0/3 ↔ WAN e0/1
 ISP 
 ├─ e0/0 ↔ R-Darkstore e0/2
 ├─ e0/1 ↔ R-HQ e0/0
 └─ e0/2 ↔ INTERNET e0/0
 SW1-Darkstore
 ├─ e0/1 ↔ SW3-Darkstore e0/0
 ├─ e0/2 → PCL-3        (VLAN 30)
 ├─ e0/3 → PCL-4        (VLAN 30)
 ├─ e1/0 → PCS-3        (VLAN 40)
 └─ e1/1 → PCS-4        (VLAN 40)
 SW3-Darkstore
 ├─ e0/0 ← от SW1
 ├─ e0/1 → PCL-1        (VLAN 30)
 ├─ e0/2 → PCL-2        (VLAN 30)
 ├─ e0/3 → PCS-1        (VLAN 40)
 └─ e1/0 → PCS-2        (VLAN 40)
 -------------------------------------
 🏢 Darkstore — адресное пространство: 10.10.0.0/16
 VLAN 30 — Logistics (PCL) → 10.10.3.0/24, шлюз: 10.10.3.1
 PCL-1 : 10.10.3.13 | Логистика
 PCL-2 : 10.10.3.14 | Логистика
 PCL-3 : 10.10.3.11 | Логистика
 PCL-4 : 10.10.3.12 | Логистика
 -------------------------------------
 VLAN 40 — Storage (PCS) → 10.10.4.0/24, шлюз: 10.10.4.1
 PCS-1 : 10.10.4.13 | Склад
 PCS-2 : 10.10.4.14 | Склад
 PCS-3 : 10.10.4.11 | Склад
 PCS-4 : 10.10.4.12 | Склад
 -------------------------------------
 VLAN 60 — DS-Servers → 10.10.6.0/24, шлюз: 10.10.6.1
 Portal : 10.10.6.10 | Портал
 FSC : 10.10.6.20 | Файловый сервер
 -------------------------------------
--- a/SW1-Darkstore.md
+++ b/SW1-Darkstore.md
@@ -1,87 +1,40 @@
 enable
 configure terminal
 ! Включаем маршрутизацию !
 ip routing
 ! Создаём VLAN
 vlan 30
 name Logistics
 vlan 40
 name Storage
 vlan 60
 name DS-Servers
 ! Настройка access-портов для пользователей
 interface e0/2
 description PCL-3 - Logistics
 switchport mode access
 switchport access vlan 30
 no shutdown
 interface e0/3
 description PCL-4 - Logistics
 switchport mode access
 switchport access vlan 30
 no shutdown
 interface e1/0
 description PCS-3 - Storage
 switchport mode access
 switchport access vlan 40
 no shutdown
 interface e1/1
 description PCS-4 - Storage
 switchport mode access
 switchport access vlan 40
 no shutdown
 ! Trunk-порты !
 interface e0/0
 description To R-Darkstore
 switchport trunk encapsulation dot1q
 switchport mode trunk
- switchport trunk allowed vlan 30,40,60
+ switchport trunk allowed vlan 30,40
 no shutdown
 interface e0/1
 description To SW2-Darkstore
 switchport trunk encapsulation dot1q
 switchport mode trunk
 switchport trunk allowed vlan 30,40,60
 no shutdown
 interface e1/1
 description To SW3-Darkstore
 switchport trunk encapsulation dot1q
 switchport mode trunk
 switchport trunk allowed vlan 30,40
 no shutdown
 end
 write memory
 // ! Результат !
 Switch#show interfaces trunk
 Port        Mode             Encapsulation  Status        Native vlan
 Et0/0       on               802.1q         trunking      1
 Et0/1       on               802.1q         trunking      1
 Et1/1       on               802.1q         trunking      1
 Port        Vlans allowed on trunk
 Et0/0       30,40,60
 Et0/1       30,40,60
 Et1/1       30,40
 Port        Vlans allowed and active in management domain
 Et0/0       30,40,60
 Et0/1       30,40,60
 Et1/1       30,40
 Port        Vlans in spanning tree forwarding state and not pruned
 Et0/0       none
 Et0/1       none
 Et1/1       none
--- a/SW2-Darkstore.md
+++ b/SW2-Darkstore.md
@@ -1,32 +1,32 @@
-•	enable
+enable
-•	configure terminal
+configure terminal
-
+vlan 30
-•	vlan 30
+ name Logistics
-•	name Logistics
+vlan 40
-•	vlan 40
+ name Storage
-•	name Storage
+vlan 60
-•	vlan 60
+ name DS-Servers
-•	name DS-Servers
+interface e0/1
-
+ description Portal - DS-Servers
-•	interface e0/1
+ switchport mode access
-•	description Portal - DS-Servers
+ switchport access vlan 60
-•	switchport mode access
+ no shutdown
-•	switchport access vlan 60
+interface e0/2
-
+ description FileServer - DS-Servers
-•	interface e0/2
+ switchport mode access
-•	description FileServer - DS-Servers
+ switchport access vlan 60
-•	switchport mode access
+ no shutdown
-•	switchport access vlan 60
+interface e0/0
-
+ description To R-Darkstore
-•	interface e0/0
+ switchport trunk encapsulation dot1q
-•	description To R-Darkstore
+ switchport mode trunk
-•	switchport mode trunk
+ switchport trunk allowed vlan 60
-•	switchport trunk allowed vlan 30,40,60
+ no shutdown
-
+interface e0/3
-•	interface e0/1
+ description To SW1-Darkstore
-•	description To SW1-Darkstore
+ switchport trunk encapsulation dot1q
-•	switchport mode trunk
+ switchport mode trunk
-•	switchport trunk allowed vlan 30,40,60
+ switchport trunk allowed vlan 30,40,60
-
+ no shutdown
-•	end
+end
-•	write
+write memory
--- a/SW3-Darkstore.md
+++ b/SW3-Darkstore.md
@@ -0,0 +1,34 @@
 enable
 configure terminal
 vlan 30
 name Logistics
 vlan 40
 name Storage
 interface e0/1
 description PCL-1 - Logistics
 switchport mode access
 switchport access vlan 30
 no shutdown
 interface e0/2
 description PCL-2 - Logistics
 switchport mode access
 switchport access vlan 30
 no shutdown
 interface e0/3
 description PCS-1 - Storage
 switchport mode access
 switchport access vlan 40
 no shutdown
 interface e1/0
 description PCS-2 - Storage
 switchport mode access
 switchport access vlan 40
 no shutdown
 interface e0/0
 description To SW1-Darkstore
 switchport trunk encapsulation dot1q
 switchport mode trunk
 switchport trunk allowed vlan 30,40
 no shutdown
 end
 write memory
--- a/VPCS-Portal.md
+++ b/VPCS-Portal.md
@@ -0,0 +1,9 @@
 ip 10.10.6.10 255.255.255.0 10.10.6.1
 VPCS> ping 10.10.6.1
 10.10.6.1 icmp_seq=1 timeout
 84 bytes from 10.10.6.1 icmp_seq=2 ttl=255 time=0.457 ms
 84 bytes from 10.10.6.1 icmp_seq=3 ttl=255 time=0.493 ms
 84 bytes from 10.10.6.1 icmp_seq=4 ttl=255 time=0.461 ms
 84 bytes from 10.10.6.1 icmp_seq=5 ttl=255 time=0.444 ms