1.允許telnet(遠程登錄)
允許華為交換機能telnet,設置密碼為Admin@168
telnet server enable
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user huawei password cipher Admin@168
local-user huawei privilege level 15
local-user huawei service-type telnet terminal
local-user admin password cipher Admin@168
local-user admin service-type http
#
user-interface con 0
authentication-mode password
set authentication password cipher Admin@168
user-interface vty 0 4
protocol inbound telnet
authentication-mode aaa
user-interface vty 16 20
#
華為S5720S交換機遠程登錄
telnet server enable
aaa
authentication-scheme default
authentication-scheme radius
authentication-mode radius
authorization-scheme default
accounting-scheme default
local-aaa-user password policy administrator
password expire 0
domain default
authentication-scheme radius
radius-server default
domain default_admin
authentication-scheme default
local-user admin password irreversible-cipher Admin@168
local-user admin privilege level 15
local-user admin service-type terminal http
local-user huawei password irreversible-cipher Admin@168
local-user huawei privilege level 15
local-user huawei service-type telnet terminal
user-interface con 0
authentication-mode password
set authentication password cipher Admin@168
user-interface vty 0 4
protocol inbound telnet
authentication-mode aaa
user-interface vty 16 20
2.防止arp攻擊
arp anti-attack gateway-duplicate enable
arp anti-attack rate-limit enable
arp-miss anti-attack rate-limit enable
3.在交換機上配置DHCP Server
vlan 2008的網關地址是172.32.16.254,DHCP地址池中排除172.32.16.200~252、172. 32.16.253、DHCP的地址租約是1小時、DNS的地址是172.32.16.1
vlan batch 2006 to 2010
ip pool vlan 2008
gateway-list 172. 32.16.254
network 172. 32.16.0 mask 255.255.255.0
excluded-ip-address 172. 32.16.200 172. 32.16.253
lease day 0 hour 1 minute 0
dns-list 172. 32.16.1
#
interface Vlanif2002
ip address 172.18.92.254 255.255.255.0
dhcp select global
#
4.配置靜態路由
ip route-static 0.0.0.0 0.0.0.0 172. 32.16.253
ip route-static 172.32.16.0 255.255.255.0 172. 32.16.252
閱讀更多 明晨隨風 的文章
