一個具體的網絡規劃

公司新搬了地方，新地方的網絡進行了從新規劃，在搬家期間，參與了相關的規劃和實施過程，讓我受益非淺，現摘錄以下：公司現有PC數量近500臺，服務器的數量有近20臺，新廠爲增長網絡的穩定性和易管理性，在原有的基礎上採購了兩臺CISCO 3750(核心層)，10臺CISCO CE500(樓間層)，28臺3COM(桌面層)的桌面型交換機，2臺CISCO 2600，須要實現的要求以下：

　　１：兩臺3750做爲核心交換，堆疊．

　　２：網絡劃分爲7個VLAN，其中分爲默認區(192.168.88.x)，服務器網段(192.168.42.x)，辦公區(192.168.40.x 192.168.43.x)，製造區(192.168.41.x)，無線區(192.168.44.x)和其它區(192.168.46.x)．

　　３：各個網段中客戶端的IP經過服務器DHCP分配．

　　４：服務器段裏的服務器接入3750以實1G的接入速度．

　　５：辦公區中電腦之前安裝有多臺打印服務器，網段爲42.x，爲了簡化客戶端操做，需在樓間層CE500上設置其它的桌面交換機分屬不一樣的網段．

　　６：各個辦公區的電腦經過域服務器的用戶名驗證經Watch Guard防火牆控制其上網權限，由於有外廠客戶訪問，因此設置無線區實現無限制的外網鏈接．可是由交換機控制其不能進行內網訪問．

網絡結構圖

Ce500 設置圖

DHCP

no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname 3750stack
!
enable password cisc0!no aaa new-modelswitch 1 provision ws-c3750g-24tsswitch 2 provision ws-c3750g-24tsvtp mode transparentip subnet-zeroip routingip dhcp relay information trust-all!!!!no file verify autospanning-tree mode pvstspanning-tree extend system-id!vlan internal allocation policy ascending!vlan 2name server!vlan 3name mfga!vlan 4name mfgb!vlan 5name office!vlan 6name internet!vlan 7name wireless!interface GigabitEthernet1/0/1description B Zone connect to 3com number 1switchport access vlan 4spanning-tree portfast!interface GigabitEthernet1/0/2description B Zone connect to 3com number 2switchport access vlan 4spanning-tree portfast!interface GigabitEthernet1/0/3description B Zone connect to 3com number 3switchport access vlan 4spanning-tree portfast!interface GigabitEthernet1/0/4description B Zone connect to 3com number 4switchport access vlan 4spanning-tree portfast!interface GigabitEthernet1/0/5description B Zone connect to 3com number 5switchport access vlan 4spanning-tree portfast!interface GigabitEthernet1/0/6description B Zone connect to 3com number 6switchport access vlan 4spanning-tree portfast!interface GigabitEthernet1/0/7!interface GigabitEthernet1/0/8!interface GigabitEthernet1/0/9!interface GigabitEthernet1/0/10!interface GigabitEthernet1/0/11description connect to CE500 Vlan for testswitchport trunk encapsulation dot1qswitchport mode trunk!interface GigabitEthernet1/0/12!interface GigabitEthernet1/0/13description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/14description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/15description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/16description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/17description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/18description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/19description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/20description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/21description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/22description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/23description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/24description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet1/0/25description D Zone connect to CE500switchport access vlan 3spanning-tree portfast!interface GigabitEthernet1/0/26description D Zone connect to CE500switchport access vlan 3spanning-tree portfast!interface GigabitEthernet1/0/27description D Zone connect to CE500switchport access vlan 3spanning-tree portfast!interface GigabitEthernet1/0/28description D Zone connect to CE500switchport access vlan 3spanning-tree portfast!interface GigabitEthernet2/0/1description connect to internetswitchport access vlan 6spanning-tree portfast!interface GigabitEthernet2/0/2!interface GigabitEthernet2/0/3!interface GigabitEthernet2/0/4!interface GigabitEthernet2/0/5!interface GigabitEthernet2/0/6switchport access vlan 3!interface GigabitEthernet2/0/7switchport access vlan 7!interface GigabitEthernet2/0/8switchport access vlan 7!interface GigabitEthernet2/0/9description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/10description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/11description connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/12description connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/13description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/14description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/15description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/16description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/17description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/18description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/19description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/20description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/21description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/22description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/23description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/24description C Zone connect to serverswitchport access vlan 2spanning-tree portfast!interface GigabitEthernet2/0/25description connect to A Zone CE500switchport trunk encapsulation dot1qswitchport mode trunk!interface GigabitEthernet2/0/26switchport access vlan 4!interface GigabitEthernet2/0/27switchport access vlan 4!interface GigabitEthernet2/0/28switchport access vlan 4!interface Vlan1ip address 192.168.88.2 255.255.255.0!interface Vlan2description Server networkip address 192.168.42.2 255.255.255.0ip helper-address 192.168.42.21!interface Vlan3description D Zone F/2/3/4ip address 192.168.41.2 255.255.255.0ip helper-address 192.168.42.21!interface Vlan4description B Zone officeip address 192.168.43.2 255.255.255.0ip helper-address 192.168.42.21!interface Vlan5description A Zone officeip address 192.168.40.2 255.255.255.0ip helper-address 192.168.42.21!interface Vlan6ip address 192.168.46.2 255.255.255.0ip access-group qq out!interface Vlan7description wirelessip address 192.168.44.2 255.255.255.0ip helper-address 192.168.42.21!ip classlessip route 0.0.0.0 0.0.0.0 192.168.46.11ip route 10.2.8.0 255.255.255.0 192.168.42.11ip route 192.168.0.0 255.255.255.0 192.168.42.1no ip http server