B-核心交换机-1-C-06-CSW-RGS6250-01U40

标签：USE 06 description NO TFGigabitEthernet interface shutdown 01U40 RGS6250

设备编码：SHDXYQB4-108-C-06-CSW-RGS6250-M1-01U40_37
带外地址：10.30.0.41

hostname SHDXYQB4-108-C-06-CSW-RGS6250-M1-01U40_37

#ACL
ip access-list extended 2000
10 permit ip host 10.30.0.136 any
15 permit ip host 10.30.0.137 any
1000 deny ip any any
list-remark For SNMP
#SSH
ip access-list extended 2001
10 permit ip 192.168.0.0 0.0.7.255 any
15 permit ip 192.168.8.0 0.0.7.255 any
20 permit ip 192.168.120.0 0.0.0.255 any
25 permit ip 10.254.181.0 0.0.0.255 any
30 permit ip 10.252.134.0 0.0.1.255 any
35 permit ip 10.10.0.0 0.0.0.127 any
40 permit ip 10.30.0.0 0.0.1.255 any
45 permit ip 10.243.72.0 0.0.0.255 any
1000 deny ip any any
list-remark For_SSH_Login
#

no vrf global-vrf
!
vrf definition NET-manage
description For_NetworkManage
rd 1:1
address-family ipv4
exit-address-family
address-family ipv6
exit-address-family
exit

interface m0
description For_management
vrf forwarding NET-manage
ip address 10.30.0.41 255.255.254.0

创建vlan
vlan range 200 300-302
199

配置静态路由
ip route vrf NET-manage 0.0.0.0 0.0.0.0 10.30.1.254

开启lldp
lldp enable
lldp management-address-tlv 10.30.0.41

开启ntp
ntp server vrf NET-manage 10.30.1.254 source Mgmt 0

系统本地时间：
◼ 设置网络设备硬件时间与 NTP 服务器的时间同步，同步网络上设备的时间，保证网络设
备得到正确的时间。
◼ 参考配置： ntp update-calendar
ntp server vrf NET-manage 10.30.1.254 source mgmt 0 prefer

配置时区
clock timezone beijing +8 0

开启svi应用的acl
svi acl enable
svi router-acls enable

关闭telnet
no enable services telnet-server

关闭web
no enable services web-server

SNMP 配置

snmp-server system-shutdown
snmp-server host 10.30.1.240 traps version 2c Ragga0ck3rd0M
snmp-server community 7 06343f04281442240e415809713f view GNCVIEW ro 65

snmp-server trap-source mgmt 0
snmp-server user yundiao SNMPGROUP v3 auth sha yundiao*&COC2016 priv aes128 yundiao*&COC2016
snmp-server group SNMPGROUP v3 priv read default write default access 2000
snmp-server host 10.10.0.136 vrf NET-manage traps version 2c priv yundiao
snmp-server host 10.10.0.137 vrf NET-manage traps version 2c priv yundiao
snmp-server host 10.10.0.136 traps version 3 priv yundiao
snmp-server host 10.10.0.137 traps version 3 priv yundiao
snmp-server enable traps
snmp-server community yundiao*&COC2016 ro 2000

#五元组

load-balance-profile ruijie
ipv4 field dst-ip src-ip l4-dst-port l4-src-port protocol src-port
ipv6 field dst-ip l4-dst-port l4-src-port protocol src-ip src-port

#避免hash极化
hash-disturb XX

#针对聚合组调用
aggregateport load-balance enhanced profile ruijie

#login#
!
ip ssh cipher-mode ctr
ip ssh hmac-algorithm sha1-96 sha1
ip ssh version 2
ip ssh access-class 2001
no service timestamps debug
no service timestamps log
logging userinfo
logging buffered 1048576
logging file flash:LOG
logging flash interval 1
logging trap warnings
logging server 10.10.0.136 vrf NET-manage udp-port 5000 level warnings
logging server 10.10.0.137 vrf NET-manage udp-port 5000 level warnings

#
!
vty
!
line vty 0 9
exec-timeout 10 0
session-timeout 10
transport input ssh
access-class 2001 in
logging synchronous
login local
width 256

账号密码配置l
!
username sdnadmin password Pr@ject2018
username sdnadmin privilege 15
username openstackadmin password Pr@ject2018
username openstackadmin privilege 15
username COC_operator password shixun@2023
username COC_operator privilege 15
username COC_monitor password shixun@2023
username COC_monitor privilege 1
username yundiao_read password shixun@2023
username yundiao_read privilege 1

#vlan描述#
!
vlan 300
description For_Storage_Outside
!
vlan 301
description For_Compute_Inside
!
vlan 302
description For_Ceph_Inside
!
#

配置 M - lag
vap domain 1
no fast-convergence
recover up-delay 120 none-vap 60
priority 10
data-sync local 1.1.1.5 neighbor 1.1.1.6
peer-keepalive local 1.1.1.1 neighbor 1.1.1.2
dual-active auto recovery
!
#peer-link

interface HundredGigabitEthernet 0/55
description PT:SHDXYQB4-108C-06-CSW-RGS6250-01U37:10.30.0.42.100GE0/55.M-LAG_PeerLink
carrier-delay up 2 down 0
port-group 255 mode active
!
interface HundredGigabitEthernet 0/56
description PT:SHDXYQB4-108C-06-CSW-RGS6250-01U37:10.30.0.42.100GE0/56.M-LAG_PeerLink
carrier-delay up 2 down 0
port-group 255 mode active
!

interface AggregatePort 255
description PT:SHDXYQB4-108C-06-CSW-RGS6250-01U37:10.30.0.42.BAGG255
no mac-address-learning
switchport mode trunk
peer-link
!
====
#MAD

interface TFGigabitEthernet 0/47
description pT:SHDXYQB4-108C-06-CSW-RGS6250-01U37:10.30.0.42.10GE0/47_M-LAG KeepA1ive
no switchport
port-group 254 mode active
interface TFGigabitEthernet 0/48
description pT:SHDXYQB4-108C-06-CSW-RGS6250-01U37:10.30.0.42.10GE0/48_M-LAG KeepA1ive
no switchport
port-group 254 mode active
!
interface AggregatePort 254
description pT:SHDXYQB4-108C-06-CSW-RGS6250-01U37:10.30.0.42.BAGG254
no switchport
ip add 1.1.1.1 255.255.255.252
vap error-down except
!
vlan 4094
name vap
interface vlan 4094
description For_VAP
ip add 1.1.1.5 255.255.255.252

====
第一步：检测心跳链路状态
test#show vap keepalive
Keepalive peer 1.1.1.2
Message HELLO send 38899
Message HELLO recv 38899
第二步：检测 Peerlink 链路状态
test#show vap peer-link
Peer-link AggregatePort 255 is UP
HundredGigabitEthernet 0/55 is UP
HundredGigabitEthernet 0/56 is UP
第三步：检测MLAG数据同步状态
test#show vap data-sync
Local 1.1.1.5, role master
priority: 5
device mac: 7042.d3a4.51f6
Peer 1.1.1.6, connected
priority: 4
device mac: 7042.d3a4.51ff
MLAG 状态正常情况下将能看到跨设备链路聚合状态
test#show vap
Vap domain: 1, Dev id: 1, Mac: 7042.d3a3.f7cb
Vap groups: 11
Vap 1
Local AggregatePort 1 is UP
HundredGigabitEthernet 0/49 is UP
HundredGigabitEthernet 0/50 is UP
Remote AggregatePort 1 is UP
HundredGigabitEthernet 0/49 is UP
HundredGigabitEthernet 0/50 is UP
Vap 11
Local AggregatePort 11 is UP
TenGigabitEthernet 0/1 is UP
Remote AggregatePort 11 is UP
TenGigabitEthernet 0/1 is UP
====

配置下联接口
!
interface HundredGigabitEthernet 0/49
escription dT:SHDXYQB4-108C-07-ASW-RGS6250-01U40.10.30.0.43.100GE0/49
carrier-delay up 2 down 0
port-group 255 mode active
!
interface HundredGigabitEthernet 0/50
escription dT:SHDXYQB4-108C-07-ASW-RGS6250-01U37.10.30.0.44.100GE0/49
carrier-delay up 2 down 0
port-group 255 mode active
!

interface AggregatePort 11
description dT:SHDXYQB4-108-C-07_C-07-ASW-RGS6250-M2-01U40_37.10.30.0.43/10.30.0.44.Bagg1
switchport mode trunk
switchport mode trunk
switchport trunk allowed vlan only 199 200 300 301 302
vap 1
!

配置上联接口
!
interface TFGigabitEthernet 0/1
escription uT:SHDXYQB4-108-C-09-BSW-RGS6250-01U31.X.X.X.X.10G.YY
carrier-delay up 2 down 0
port-group 255 mode active
!

interface AggregatePort 1
description uT:SHDXYQB4-108-C-09-BSW-RGS6250-01U31..X.X.X.X.Bagg??
switchport mode trunk
switchport mode trunk
switchport trunk allowed vlan only 199 200 300 301 302

!
=====
show lldp neb br | in tf 0/1
返回接口为10G.YY
show arp | in tf 0/1
返回BSW的IP地址为X.X.X.X
=====
!
interface TFGigabitEthernet 0/2
description NO-USE
shutdown
!
interface TFGigabitEthernet 0/3
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/4
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/5
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/6
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/7
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/8
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/9
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/10
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/11
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/12
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/13
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/14
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/15
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/16
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/17
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/18
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/19
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/20
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/21
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/22
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/23
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/24
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/25
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/26
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/27
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/28
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/29
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/30
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/31
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/32
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/33
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/34
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/35
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/36
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/37
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/38
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/39
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/40
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/41
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/42
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/43
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/44
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/45
description NO-USE
shutdown
！
interface TFGigabitEthernet 0/46
description NO-USE
shutdown
！
interface HundredGigabitEthernet 0/51
description NO-USE
shutdown
!
interface HundredGigabitEthernet 0/52
description NO-USE
shutdown
!
interface HundredGigabitEthernet 0/53
description NO-USE
shutdown
!
interface HundredGigabitEthernet 0/54
description NO-USE
shutdown
!

标签：USE,06,description,NO,TFGigabitEthernet,interface,shutdown,01U40,RGS6250
From： https://www.cnblogs.com/ataoist/p/18054765

B-核心交换机-1-C-06-CSW-RGS6250-01U40

相关文章

赞助商

阅读排行