kjh00n의 기록저장소

PVST 실습 본문

보안 장비 운용

PVST 실습

kjh00n 2025. 1. 24. 17:15 

PC1
ip 10.10.10.1 255.255.255.0 10.10.10.254

PC2
ip 10.10.20.1 255.255.255.0 10.10.20.254

PC3
ip 10.10.10.2 255.255.255.0 10.10.10.254

PC4
ip 10.10.20.2 255.255.255.0 10.10.20.254

R4
conf t
vlan 10
name v10
vlan 20
name v20
exit
int fa 3/0
switchport mode access
switchport access vlan 10
int fa 3/1
switchport mode access
switchport access vlan 20
int fa 3/2
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/12
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/13
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005

R5
conf t
vlan 10
name v10
vlan 20
name v20
exit
int fa 3/0
switchport mode access
switchport access vlan 10
int fa 3/1
switchport mode access
switchport access vlan 20
int fa 3/2
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/12
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/13
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005

R2
conf t
vlan 10
name v10
vlan 20
name v20
exit
int fa 3/11
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/12
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/13
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/15
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005

R3
conf t
vlan 10
name v10
vlan 20
name v20
exit
int fa 3/11
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/12
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/13
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/14
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005

R1
conf t
vlan 10
name v10
vlan 20
name v20
exit
int fa 3/14
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int fa 3/15
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,1002-1005
int vlan 10
ip addr 10.10.10.254 255.255.255.0
no shu
int vlan 20
ip addr 10.10.20.254 255.255.255.0
no shu

Root Switch가 R1일 때의 통신 경로

 

VLAN 10이 R2에 Root Switch / VLAN 10이 R3에 Secondary Switch / VLAN 20이 R3에 Root Switch / VLAN 20이 R2에 Secondary Switch일 때의 통신경로

R2

spanning-tree vlan 10 root primary
spanning-tree vlan 20 root secondary

R3

spanning-tree vlan 20 root primary
spanning-tree vlan 10 root secondary

추가해주면 위 사진의 통신경로가 설정된다

'보안 장비 운용' 카테고리의 다른 글

이중화 (Redundancy)  (0) 2025.01.24
로드 밸런싱  (0) 2025.01.24
UTM을 VPN으로 사용하기 (Remote Access VPN) 간단 실습  (0) 2025.01.24
VPN 실습  (0) 2025.01.23
VPN  (0) 2025.01.23
'보안 장비 운용' Related Articles more