(1条消息) 接入层交换机 华为s5700 基本配置指南 sysname SH
接入层交换机 华为s5700 基本配置指南
sysname SH_QC_5700_office_core1 \\命名设备名 SH_QC_5700_office_core1
#
vlan batch 4 to 6 32 to 40 64 to 66 101 to106 128 to 132 1722 \\ 开启vlan 4到6 32到40 64到66 101 到106 128到132 1722
#
telnet server enable \\ 开启telnet 协议
#
lldp enable \\ 开启LLDP 协议
#
clock timezone UTC add 00:00:00
#
aaa \\开启AAA认证方式
authentication-scheme default \\ 验证方式默认及本地设备验证
authorization-scheme default \\ 验证方式默认及本地设备验证
accounting-scheme default \\验证方式默认及本地设备验证
domain default \\域默认
domain default_admin \\域默认admin
local-user admin password irreversible-cipher%#%#~+kJ-DrE5:KR[G7d4uv"m1''R'bk)4N/lnRE,Bl:R<O1+U6JzYLua}GOH!cV%#%# \\ 本地用户 admin 密码 加密显示
local-user admin service-type http \\本地用户 admin 服务类型 http 开启
local-user syadmin passwordirreversible-cipher%#%#w(P/"]v1$Q82YHS/edc1szm%#ku@6!Ghi'7=@V8P~mC(/fLzf.x6}K9Zc:aV%#%#
local-user syadmin privilege level 15 \\ 本地用户 syadmin 密码 加密显示
local-user syadmin service-type telnet ssh \\ 本地用户 syadmin 开启telnet ssh
local-user admin123 passwordirreversible-cipher %#%#G4!`O3<(-Z|%_mJqz/;Or)C%XF9wo&VKwiS.@<U*(}_r&yxr!2*z{xXJOlJG%#%#
local-user admin123 privilege level 15
local-user admin123 service-type telnet
#
interface Vlanif1
#
interface Vlanif4 \\ 开启vlan 4 三层地址
ipaddress 10.4.4.1 255.255.255.0 \\ 配置 vlan4 管理接口ip地址
#
interface Vlanif64 \\ 开启vlan 64 三层地址
#
interface GigabitEthernet0/0/1
portlink-type trunk \\配置 链路类型为trunk
porttrunk allow-pass vlan 2 to 4094 \\配置 trunk链路允许vlan2-4094 放行
#
interface GigabitEthernet0/0/2
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/3
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/4
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/5
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/6
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/7
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/8
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/9
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/10
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/11
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/12
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/13
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/14
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/15
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/16
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/17
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/18
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/19
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/20
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/21
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/22
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/23
portlink-type access
portdefault vlan 4
#
interface GigabitEthernet0/0/24
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface XGigabitEthernet0/0/1
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface XGigabitEthernet0/0/2
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface XGigabitEthernet0/0/3
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface XGigabitEthernet0/0/4
portlink-type trunk
porttrunk allow-pass vlan 2 to 4094
#
interface NULL0
#
ip route-static 0.0.0.0 0.0.0.0 10.4.4.254 \\默认路由 全部 丢给10.4.4.254
ip route-static 10.4.128.0 255.255.248.0 10.4.4.100 \\ 静态路由 10.4.128.0 /21 这个网段的地址 下一跳 为10.4.4.100
#
user-interface con 0 \\开启console 接口
authentication-mode password \\配置 console 密码
setauthentication password cipher $1a$ymyfX/I=7S$3};WQpWuARklHvJx~uaK(q.:>Fe`|=@~GB=a_QH%$
user-interface vty 0 4 \\ 开启vty 0-4 虚拟终端
authentication-mode aaa \\ 加密方式为aaa
protocol inbound all \\放行所有协议
user-interface vty 16 20 \\ 开启vty 16-20 虚拟终端
#
return