公司局域网分为员工办公区域和无线网络区域,拓扑如下图:
| 设备 | VLAN | 接口地址 |
| 汇聚交换机 | VLAN 10 | 192.168.10.1/24 |
| VLAN 20 | 192.168.20.1/24 | |
| VLAN 172 | 172.16.1.2/30 |
<Huawei>(1)[Huawei]sysname (2)[RA]vlan (3) 10 20 172[RA]interface GigabitEthernet 0/0/2[RA-GigabitEthernet0/0/2]port link-type trunk[RA-GigabitEthernet0/0/2]port trunk allow-pass (4)[RA-GigabitEthernet0/0/2](5)[RA]interface GigabitEthernet 0/0/3[RA-GigabitEthernet0/0/3]port link-type (6)[RA-GigabitEthernet0/0/3]port trunk allow-pass vlan 20[RA-GigabitEthernet0/0/3]quit[RA]interface GigabitEthernet 0/0/1[RA-GigabitEthernet0/0/1]port link-type (7)[RA-GigabitEthernet0/0/1]port default vlan 172[RA-GigabitEthernet0/0/1]quit[RA]interface (8)[RA-Vlanif172]ip address 172.16.1.2 (9)[RA-Vlanif172](10)[RA]ip route-static 0.0.0.0 0.0.0.0 (11)
[RA]time-range ACL 9:00 (1) 17:00 working-day[RA-acl-adv-3000]rule deny ip source 192.168.10.0 0.0.0.255 destination 0.0.0.0 255.255.255.255(2)[RA-acl-adv-3000]quit[RA]interface GigabitEthernet 0/0/1[RA-GigabitEthernet0/0/1]traffic-filter (3) acl 3000
答案:
问题一:
(1)system-view
(2)RA
(3)batch
(4)vlan 10
(5)quit
(6)trunk
(7)access
(8)Vlanif 172
(9)30
(10)quit
(11)172.16.1.1
问题二:
C.60
(1)隐藏SSID (2)无线接入加密 (3)设置MAC地址黑名单 (4)无线认证技术
问题三:
(1)to
(2)time-range ACL
(3)outbound
