《CCNA内部培训PPT.ppt》由会员分享,可在线阅读,更多相关《CCNA内部培训PPT.ppt(380页珍藏版)》请在三一办公上搜索。
1、内部培训CCNA教材,目录,第一章 数据通信基本原理第二章 管理CISCO设备第三章 使用CDP和Telnet第四章 路由器的构造和启动第五章 交换机的基本配置第六章 VLAN的配置第七章 IP路由(static、rip、igrp、eigrp、ospf)第八章 访问列表第九章 NAT(网络地址转换)第十章 点到点连接第十一章 帧中继第十二章 ISDN技术第十三章 VPN技术第十四章 无线技术,标准化组织,国际标准化组织(ISO)电子电器工程师协会(IEEE)美国国家标准局(ANSI)电子工业协会(EIA/TIA)国际电信联盟(ITU)INTERNET架构委员会(IAB),标准化组织,在计算机网
2、络的发展过程中有许多国际标准化组织做出了重大的贡献,他们统一了网络的标准,使各个网络产品厂家生产的产品的可以相互通信,目前为网络的发展做出贡献的标准化组织有:ISO:制定了大型的标准,包括与INTERNET相关的标准,ISO提出了OSI参考模型,OSI参考模型描述了网络的工作原理,为计算机网络构建了一个易于理解的,清晰的层次模型IEEE:提供了网络硬件上的标准使各种不同网络硬件厂商生产的硬件设备相互通信,IEEE LAN标准是当今居于主导地位的LAN标准,它主要定了802.X协议族,期中802.3为以太网标准协议簇,802.4为令牌总线网(TOKEN BUS)标准,802.5为令牌环网(TOK
3、EN RING)标准,802.11为无线局域网(WLAN)标准.ANSI:是公司 政府 和期它组织成员组成的自愿组织,主要定义了光纤分布式数据接口FDDI的标准EIA/TIA:定义了网络连接线线缆,如:RS232 CAT5 HSSI V.24 同时还有线缆布放标准,如:568BITU:定义了作为广域边接的电信网络的标准;如:X.25 FRINTERNET架构委员会(Iab internet architectur board)下设工程任务委员去(IETF)研究任务委员会(IRTF),号码分配委员会(IANA)负责各种INTERNET,的标准的定义,是目前最具影响力和国 际标准化组织.,第章 数
4、据通信基本原理,一般通信的过程,Name,Address,传输层,数据链路层,物理层,网络层,上层数据,上层数据,TCP 头,数据,IP 头,数据,Frame头,表示层,应用层,会话层,段,包,比特,帧,PDU,封装数据,上层数据,IP+TCP+上层数据,Frame 头,TCP+上层数据,IP 头,上层数据,TCP 头,传输层,数据链路层,物理层,网络层,表示层,应用层,会话层,解封装数据,OSI 模式 概述,应用层(高),会话层,表示层,应用层,OSI 模式,数据流层,传输层,数据链路层,网络层,物理层,应用层(高),会话层,表示层,应用层,应用层作用,Telnet SMTPHTTP FTP
5、,用户接口,例子,应用层,Telnet SMTPHTTP FTP,JPEG,用户接口,数据表示加密等特殊处理过程,例子,表示层,应用层,应用层作用,TelnetHTTP,JPEG,保证不同应用间的数据区分,用户接口,数据表示加密等特殊处理过程,Operating System/Application Access Scheduling,例子,会话层,表示层,应用层,应用层作用,保证不同应用间的数据区分,用户接口,数据表示加密等特殊处理过程,传输层,数据链路层,网络层,物理层,例子,会话层,表示层,应用层,应用层作用,数据流层的作用,EIA/TIA-232V.35,例子,物理层,设备间接收或发送
6、比特流说明电压、线速和线缆等,802.3/802.2HDLC,EIA/TIA-232V.35,例子,数据流层的作用,数据链路层,物理层,将比特组合成字节进而组合成帧用MAC地址访问介质错误发现但不能纠正,设备间接收或发送比特流说明电压、线速和线缆等,802.3/802.2HDLC,EIA/TIA-232V.35,IPIPX,例子,数据流层的作用,网络层,数据链路层,物理层,将比特组合成字节进而组合成帧用MAC地址访问介质错误发现但不能纠正,设备间接收或发送比特流说明电压、线速和线缆等,提供路由器用来决定路径的逻辑寻址,TCPUDPSPX,802.3/802.2HDLC,EIA/TIA-232V
7、.35,IPIPX,例子,数据流层的作用,传输层,数据链路层,物理层,可靠或不可靠的数据传输数据重传前的错误纠正,将比特组合成字节进而组合成帧用MAC地址访问介质错误发现但不能纠正,设备间接收或发送比特流说明电压、线速和线缆等,网络层,提供路由器用来决定路径的逻辑寻址,TCPUDPSPX,802.3/802.2HDLC,EIA/TIA-232V.35,IPIPX,表示层,应用层,会话层,例子,数据流层的作用,可靠或不可靠的数据传输数据重传前的错误纠正,将比特组合成字节进而组合成帧用MAC地址访问介质错误发现但不能纠正,设备间接收或发送比特流说明电压、线速和线缆等,传输层,数据链路层,物理层,网
8、络层,提供路由器用来决定路径的逻辑寻址,PDU,PDU(protocol data unit):每一层使用自己层的协议和别的系统的对应层相互通信,协议层的协议在对等层之间交换的信息叫协议数据单元。上层:messagetransport layer:segmentNetwork layer:packetData-link layer:FramePhysical layer:bit,数据传输过程中的帧结构和包结构,Data,A,A,Ethernet,B,B,From,LAN,Frame,Relay,to,WAN,to,LAN,Data,Data,Data,Data,Fram relay,Data,
9、Ethernet,Data,数据传输过程中,帧结构在改变,但是包结构不改变,第二章 交换机和路由器简单配置,配置方式,EXEC模式,用户模式对交换机和路由器的有限操作命令提示符为 主机名,主要有两个命令模式提供命令键入.,模式一:,EXEC模式(续),特权(或enabled)模式对交换机和路由器更深入的操作有配置和监视权力是进入其它配置模式的前提命令提示符为 主机名#,模式二(也是最常用的模式):,Catalyst 2950 Switch启动界面,-System Configuration Dialog-At any point you may enter a question mark?fo
10、r help.Use ctrl-c to abort configuration dialog at any prompt.Default settings are in square brackets.Continue with configuration dialog?yes/no:yesEnter IP address:ip_addressEnter IP netmask:ip_netmaskWould you like to enter a default gateway address?yes:yesIP address of the default gateway:ip_addre
11、ssEnter a host name:host_nameEnter enable secret:secret_passwordWould you like to configure a Telnet password?yes yesEnter Telnet password:telnet_passwordWould you like to enable as a cluster command switch?noEnter cluster name:cls_name,Logging In to the Switch and Entering the Enable Password,Confi
12、guration Modes:Global configuration mode wg_sw_a#configure terminalwg_sw_a(config)#Interface configuration modewg_sw_a(config)#interface e0/1wg_sw_a(config-if)#,Configuring the Switch,Sets the local identity for the switch,Configuring Switch Identification,配置交换机的管理IP地址SW2950(config)#interface vlan 1
13、SW2950(config-if)#no shutdown配置交换机的网关Switch(config)#ip default-gateway ip address例如:,Configuring the Switch IP Address,Showing Switch Initial Startup Status,wg_sw_a#show version,Displays the configuration of the system hardware,software version,names and sources of configuration files,and boot image
14、s,wg_sw_a#show running-configuration,Displays the switchs current active configuration file,wg_sw_a#show interfaces,Displays statistics for all interfaces configured on the switch,Switch show version Command,sw2950#show versionCisco Internetwork Operating System Software IOS(tm)C2950 Software(C2950-
15、I6Q4L2-M),Version 12.1(14)EA1a,RELEASE SOFTWARE(fc1)Copyright(c)1986-2003 by cisco Systems,Inc.Compiled Tue 02-Sep-03 03:33 by antoninoImage text-base:0 x80010000,data-base:0 x805C0000ROM:Bootstrap program is CALHOUN boot loadersw2950 uptime is 1 minuteSystem returned to ROM by power-onSystem image
16、file is flash:/c2950-i6q4l2-mz.121-14.EA1a.bincisco WS-C2950-24(RC32300)processor with 20710K bytes of memory.Last reset from system-resetRunning Standard Image24 FastEthernet/IEEE 802.3 interface(s)32K bytes of flash-simulated non-volatile configuration memory.Base ethernet MAC Address:00:0F:72:DB:
17、4E:C0Motherboard serial number:FOC0813Y1H6Configuration register is 0 xF,sw2950#show interfaces fastEthernet 0/1FastEthernet0/1 is down,line protocol is down(notconnect)Hardware is Fast Ethernet,address is 000f.72db.4ec1(bia 000f.72db.4ec1)MTU 1500 bytes,BW 10000 Kbit,DLY 1000 usec,reliability 255/2
18、55,txload 1/255,rxload 1/255 Encapsulation ARPA,loopback not set Keepalive set(10 sec)Auto-duplex,Auto-speed input flow-control is off,output flow-control is off ARP type:ARPA,ARP Timeout 04:00:00 Last input never,output 00:14:53,output hang never-More-,Switch show interfaces Command,路由器的简单配置任何时侯按Ct
19、rl+C推出对话模式,Router#setup-System Configuration Dialog-Continue with configuration dialog?yes/no:yesAt any point you may enter a question mark?for help.Use ctrl-c to abort configuration dialog at any prompt.Default settings are in square brackets.Basic management setup configures only enough connectivi
20、tyfor management of the system,extended setup will ask youto configure each interface on the systemWould you like to enter basic management setup?yes/no:no,出厂时的缺省配置,Setup Interface Summary,First,would you like to see the current interface summary?yes:InterfaceIP-AddressOK?Method Status ProtocolBRI0u
21、nassignedYES unset administratively down downBRI0:1unassignedYES unset administratively down downBRI0:2unassignedYES unset administratively down downEthernet0unassignedYES unset administratively down downSerial0unassignedYES unset administratively down down,Interfaces Found During Startup,Setup Init
22、ial Global Parameters,Configuring global parameters:Enter host name Router:wg_ro_c The enable secret is a password used to protect access to privileged EXEC and configuration modes.This password,after entered,becomes encrypted in the configuration.Enter enable secret:cisco The enable password is use
23、d when you do not specify an enable secret password,with some older software versions,and some boot images.Enter enable password:sanfran The virtual terminal password is used to protect access to the router over a network interface.Enter virtual terminal password:sanjose Configure SNMP Network Manag
24、ement?no:,Setup Initial Protocol Configurations,Configure LAT?yes:no Configure AppleTalk?no:Configure DECnet?no:Configure IP?yes:Configure IGRP routing?yes:no Configure RIP routing?no:Configure CLNS?no:Configure IPX?no:Configure Vines?no:Configure XNS?no:Configure Apollo?no:,Setup Interface Paramete
25、rs,BRI interface needs isdn switch-type to be configured Valid switch types are:0 none.Only if you dont want to configure BRI.1 basic-1tr6.1TR6 switch type for Germany2 basic-5ess.AT mask is/24Do you want to configure Serial0 interface?no:,Setup Script Review and Use,The following configuration comm
26、and script was created:hostname Routerenable secret 5$1$/CCk$4r7zDwDNeqkxFO.kJxC3G0enable password sanfranline vty 0 4password sanjoseno snmp-server!no appletalk routingno decnet routingip routingno clns routingno ipx routingno vines routingno xns routingno apollo routingisdn switch-type basic-5ess,
27、interface BRI0shutdownno ip address!interface Ethernet0no shutdownno mop enabled!interface Serial0shutdownno ip addressend0 Go to the IOS command prompt without saving this config.1 Return back to the setup without saving this config.2 Save this configuration to nvram and exit.Enter your selection 2
28、:,Logging In to the Router,You can abbreviate a command to the fewest characters that make a unique character string.,Router User-Mode Command List,wg_ro_c?Exec commands:access-enable Create a temporary Access-List entry atmsig Execute Atm Signalling Commands cd Change current device clear Reset fun
29、ctions connect Open a terminal connection dir List files on given device disable Turn off privileged commands disconnect Disconnect an existing network connection enable Turn on privileged commands exit Exit from the EXEC help Description of the interactive help system lat Open a lat connection lock
30、 Lock the terminal login Log in as a particular user logout Exit from the EXEC-More-,wg_ro_c#?Exec commands:access-enable Create a temporary Access-List entry access-profile Apply user-profile to interface access-template Create a temporary Access-List entry bfe For manual emergency modes setting cd
31、 Change current directory clear Reset functions clock Manage the system clock configure Enter configuration mode connect Open a terminal connection copy Copy from one file to another debug Debugging functions(see also undebug)delete Delete a file dir List files on a filesystem disable Turn off privi
32、leged commands disconnect Disconnect an existing network connection enable Turn on privileged commands erase Erase a filesystem exit Exit from the EXEC help Description of the interactive help system-More-,You can complete a command string by entering the unique character string,then pressing the Ta
33、b key.,Router Privileged-Mode Command List,帮助机制,上下文关联帮助,错误信息提示,指出所输入交换机命令的错误所在,以便于修改或纠正.,可以重新调出以前运行过的命令,用来再次运行、查看或修改.,之前命令保存区,提供命令清单和与特定命令相关联的参数.,路由上下文帮助,Router#clok,Translating CLOK,%Unknown command or computer name,or unable to find computer address,Router#,clear clock,Router#,%Incomplete command.
34、,Router#,set Set the time and date,Router#,%Incomplete command.,Router#,hh:mm:ss Current Time,Router#,clock set 19:56:00,%Incomplete command.,Router#,clock set 19:56:00?,Day of the month,MONTH Month of the year,Router#,clock set 19:56:00 04 8,%Invalid input detected at the marker,Router#,clock set 1
35、9:56:00 04 August,%Incomplete command.,Router#,clock set 19:56:00 04 August?,Year,Command PromptingSyntax CheckingCommand Prompting,show version Command,wg_ro_a#show versionCisco Internetwork Operating System Software IOS(tm)2500 Software(C2500-JS-L),Version 12.0(3),RELEASE SOFTWARE(fc1)Copyright(c)
36、1986-1999 by cisco Systems,Inc.Compiled Mon 08-Feb-99 18:18 by phanguyeImage text-base:0 x03050C84,data-base:0 x00001000ROM:System Bootstrap,Version 11.0(10c),SOFTWAREBOOTFLASH:3000 Bootstrap Software(IGS-BOOT-R),Version 11.0(10c),RELEASE SOFTWARE(fc1)wg_ro_a uptime is 20 minutesSystem restarted by
37、reloadSystem image file is flash:c2500-js-l_120-3.bin(output omitted)-More-Configuration register is 0 x2102,(一行中长字串会自动滚卷).,光标移动到命令行的开始位置.,光标移动到命令行的结束位置.,回移一个单词,下移一个字符.,回移一个字符.,下移一个单词,使用增强的编辑命令,删除当前字符,Router$value for customers,employees,and partners.,Ctrl-P or Up arrow,调出最近(前一)使用过的命令,Ctrl-N or Down
38、 arrow,调出更近使用过的命令,Router show history,显示命令保存区内容,Router terminal history size lines,设置命令缓冲区大小,查看之前用过的命令,Viewing the Configuration,show running-config and show startup-config Commands,wg_ro_c#show startup-configUsing 1359 out of 32762 bytes!version 12.0!-More-,wg_ro_c#show running-configBuilding confi
39、guration.Current configuration:!version 12.0!-More-,In NVRAM,In RAM,Displays the current and saved configuration,Overview of Router Modes,基本实验操作,WisdomenableWisdom#configure terminal Wisdom(config)#no ip domain-lookup Wisdom(config)#line console 0Wisdom(config-line)#logging synchronous Wisdom(config
40、-line)#no exec-timeout Wisdom(config-line)#password ciscoWisdom(config-line)#loginWisdom(config-line)#exitWisdom(config)#line vty 0 4Wisdom(config-line)#logging synchronous Wisdom(config-line)#no exec-timeout Wisdom(config-line)#password ciscoWisdom(config-line)#loginWisdom(config-line)#endWisdom#co
41、nfigure terminalWisdom(config)#enable secret ciscoWisdom(config)#endWisdom#service password-encryption/手工加密,不再显示明文密码,保存配置,wg_ro_c#wg_ro_c#copy running-config startup-configDestination filename startup-config?Building configurationwg_ro_c#,Copies the current configuration to NVRAM,保存命令Copy running-co
42、nfig startup-config=write,Sets the local identity or message for the accessed router or interface,配置路由器主机名等参数,配置路由器的密码,两条常用的命令,Router(config)#line console 0Router(config-line)#exec-timeout 0 0,Router(config)#line console 0Router(config-line)#logging synchronous,阻止会话退出,使光标还原到原来的位置,重新显示被覆盖的命里,Unique a
43、ddressing allows communication between end stations.Path choice is based on destination address.Location is represented by an address,IP地址规划,主机通信对IP地址的要求,1、网络中IP地址必须唯一2、在一个交换网络中主机必须有相同的网络号才能通信3、在不同的交换网络中(用路由器分开的网络),主机不能有相同的网络号,IP寻址,IP 地址分类,不带子网的IP寻址,带子网的IP寻址(这里的子网掩码为24位),子网地址,子网掩码,二进制子网掩码子网掩码只能有这9个数
44、字,Subnets not in usethe default,没有子网的子网掩码缺省子网掩码,Network number extended by eight bits,有子网的子网掩码,有子网的子网掩码(续),Network number extended by ten bits,划分子网的几个捷径:,1.你所选择的子网掩码将会产生多少个子网?:2的x次方-2(x代表掩码位,即2进制为1的部分)2.每个子网能有多少主机?:2的y次方-2(y代表主机位,即2进制为0的部分)3.有效子网是?:有效子网号=256-10进制的子网掩码4.每个子网的广播地址是?:广播地址=下个子网号-15.每个子网
45、的有效主机分别是?:忽略子网内全为0和全为1的地址剩下的就是有效主机地址.最后有效1个主机地址=下个子网号-2(即广播地址-1),子网划分,Other subnets,申请到一段C类地址,将这段地址分配给网络中的主机,要求有5个子网,每个子网最少有20台主机,地址分配的步骤:1、确定网络的主机位n,利用32-n算出网络位,然后算出子网掩码2、根据子网掩码,确定每段IP地址的范围,配置路由器IP地址,wg_ro_c#configure terminalwg_ro_c(config)#interface ethernet 0wg_ro_c(config-if)#wg_ro_c(config-if)
46、#no shutdownwg_ro_c(config-if)#exit,show interfaces,Router#show interfacesEthernet0 is up,line protocol is up Hardware is Lance,address is 00e0.1e5d.ae2f(bia 00e0.1e5d.ae2f)MTU 1500 bytes,BW 10000 Kbit,DLY 1000 usec,rely 255/255,load 1/255 Encapsulation ARPA,loopback not set,keepalive set(10 sec)ARP
47、 type:ARPA,ARP Timeout 04:00:00 Last input 00:00:07,output 00:00:08,output hang never Last clearing of show interface counters never Queueing strategy:fifo Output queue 0/40,0 drops;input queue 0/75,0 drops 5 minute input rate 0 bits/sec,0 packets/sec 5 minute output rate 0 bits/sec,0 packets/sec 81
48、833 packets input,27556491 bytes,0 no buffer Received 42308 broadcasts,0 runts,0 giants,0 throttles 1 input errors,0 CRC,0 frame,0 overrun,1 ignored,0 abort 0 input packets with dribble condition detected 55794 packets output,3929696 bytes,0 underruns 0 output errors,0 collisions,1 interface resets
49、0 babbles,0 late collision,4 deferred 0 lost carrier,0 no carrier 0 output buffer failures,0 output buffers swapped out,接口的几种状态诊断的步骤,检查串口,Router#show interface serial 0Serial0 is up,line protocol is up Hardware is HD64570 MTU 1500 bytes,BW 64 Kbit,DLY 20000 usec,rely 255/255,load 1/255 Encapsulation
50、 HDLC,loopback not set,keepalive set(10 sec)Last input 00:00:09,output 00:00:04,output hang never Last clearing of show interface counters never Input queue:0/75/0(size/max/drops);Total output drops:0 Queueing strategy:weighted fair Output queue:0/1000/64/0(size/max total/threshold/drops)Conversatio
