Kafin mu shiga cikin abubuwan da ake amfani da su na VLAN, ina rokon ku da ku dakata da wannan bidiyo, ku danna alamar da ke can kasan kusurwar hagu inda aka ce Networking consultant, ku shiga shafinmu na Facebook ku yi like da shi a can. Sai ku koma kan bidiyon ku danna alamar Sarki dake can kasa dama dama domin yin subscribing din mu na YouTube channel dinmu. Kullum muna kara sabbin shirye-shirye, yanzu wannan ya shafi kwas din CCNA, sannan munyi shirin fara wani darasin bidiyo na CCNA Security, Network+, PMP, ITIL, Prince2 da buga wadannan kayatattun silsila a tasharmu.
Don haka, a yau za mu yi magana game da tushen VLAN kuma mu amsa tambayoyi 3: menene VLAN, me yasa muke buƙatar VLAN da yadda ake daidaita shi. Ina fatan bayan kallon wannan koyaswar bidiyo za ku sami damar amsa duk tambayoyin guda uku.
Menene VLAN? VLAN gajarta ce don cibiyar sadarwar yanki ta kama-da-wane. Daga baya a cikin wannan koyawa za mu dubi dalilin da yasa wannan hanyar sadarwa ta zama kama-da-wane, amma kafin mu matsa zuwa VLANs, muna buƙatar fahimtar yadda maɓalli ke aiki. Za mu yi bitar wasu tambayoyin da muka tattauna a darussan da suka gabata.
Da farko, bari mu tattauna menene Domain Rikici da yawa. Mun san cewa wannan tashar tashar jiragen ruwa 48 tana da wuraren karo 48. Wannan yana nufin cewa kowane ɗayan waɗannan tashoshin jiragen ruwa, ko na'urorin da ke da alaƙa da waɗannan tashoshin jiragen ruwa, suna iya sadarwa da wata na'ura ta wata tashar daban ta hanyar zaman kanta ba tare da shafar juna ba.
Duk tashar jiragen ruwa 48 na wannan canjin yanki ne na yanki na Watsa shirye-shirye. Wannan yana nufin cewa idan an haɗa na'urori da yawa zuwa tashoshin jiragen ruwa da yawa kuma ɗaya daga cikinsu yana watsa shirye-shirye, zai bayyana a duk tashoshin da sauran na'urorin ke haɗa su. Wannan shine ainihin yadda maɓalli ke aiki.
Kamar mutane suna zaune a daki daya kusa da juna, sai daya daga cikinsu ya fadi wani abu da karfi sai kowa ya ji. Duk da haka, wannan ba shi da wani tasiri - yayin da mutane ke fitowa a cikin ɗakin, ƙarar sautin zai zama kuma waɗanda ke wurin ba za su kara jin juna ba. Irin wannan yanayi ya taso tare da kwamfutoci - yawancin na'urori suna haɗa su zuwa cibiyar sadarwa guda ɗaya, mafi girma "ƙara" na watsa shirye-shiryen ya zama, wanda ba ya ƙyale sadarwa mai tasiri.
Mun san cewa idan ɗaya daga cikin waɗannan na'urori an haɗa shi zuwa cibiyar sadarwar 192.168.1.0/24, duk sauran na'urori suna cikin cibiyar sadarwa iri ɗaya. Dole ne kuma a haɗa maɓalli zuwa cibiyar sadarwa mai adireshin IP iri ɗaya. Amma a nan sauyawa, a matsayin na'urar OSI Layer 2, na iya samun matsala. Idan na'urori biyu suna haɗe zuwa hanyar sadarwa ɗaya, za su iya sadarwa cikin sauƙi da kwamfutocin juna. Bari mu ɗauka cewa kamfaninmu yana da “mugun mutum”, ɗan hacker, wanda zan zana a sama. A ƙasa akwai kwamfuta ta. Don haka abu ne mai sauqi ga wannan hacker ya shiga cikin kwamfuta ta domin kwamfutocin mu na sadarwa iri daya ne. Matsalar kenan.
Idan na kasance cikin gudanarwar gudanarwa kuma wannan sabon mutumin zai iya samun damar fayiloli akan kwamfuta ta, ba zai yi kyau ba ko kaɗan. Tabbas komfutata tana da Firewall da ke ba da kariya daga barazanar da yawa, amma ba zai yi wahala mai hacker ya tsallake ta ba.
Haɗari na biyu da ke akwai ga duk wanda ke memba na wannan yanki na watsa shirye-shiryen shine cewa idan wani yana da matsala game da watsa shirye-shiryen, wannan tsangwama zai shafi wasu na'urori akan hanyar sadarwa. Kodayake ana iya haɗa dukkan tashoshin 48 zuwa runduna daban-daban, gazawar runduna ɗaya zai shafi sauran 47, wanda ba shine abin da muke buƙata ba.
Don magance wannan matsalar muna amfani da manufar VLAN, ko cibiyar sadarwa ta gida mai kama da juna. Yana aiki a sauƙaƙe, yana rarraba wannan babban tashar tashar jiragen ruwa 48 zuwa ƙananan maɓalli da yawa.
Mun san cewa subnets suna raba babbar hanyar sadarwa zuwa ƙananan cibiyoyin sadarwa da yawa, kuma VLANs suna aiki ta irin wannan hanya. Yana raba tashar tashar jiragen ruwa 48, alal misali, zuwa maɓalli 4 na tashoshin jiragen ruwa 12, kowannensu wani ɓangare ne na sabuwar hanyar sadarwa da aka haɗa. A lokaci guda, zamu iya amfani da tashar jiragen ruwa 12 don gudanarwa, tashar jiragen ruwa 12 don wayar tarho na IP, da sauransu, wato, raba maɓalli ba ta jiki ba, amma a hankali, kusan.
Na ware mashigai shuɗi uku a saman maɓalli don cibiyar sadarwar VLAN10 mai shuɗi, kuma na ba da tashoshin ruwan lemu guda uku don VLAN20. Don haka, duk wani zirga-zirga daga daya daga cikin wadannan tashoshin ruwan shudi, zai je sauran tashoshin ruwan shudi ne kawai, ba tare da ya shafi sauran tashoshin wannan canjin ba. Hakazalika za a rarraba zirga-zirgar ababen hawa daga tashoshin ruwan lemu, wato, kamar muna amfani da maɓallan jiki daban-daban guda biyu. Don haka, VLAN hanya ce ta raba mai sauyawa zuwa maɓalli da yawa don cibiyoyin sadarwa daban-daban.
Na zana maɓalli guda biyu a saman, a nan muna da halin da ake ciki inda a gefen hagu kawai tashar jiragen ruwa mai launin shuɗi don cibiyar sadarwa ɗaya ke haɗa, kuma a dama - kawai tashar jiragen ruwa na orange don wata hanyar sadarwa, kuma waɗannan masu sauyawa ba su haɗa juna ta kowace hanya. .
Bari mu ce kuna son amfani da ƙarin tashoshin jiragen ruwa. Bari mu yi tunanin cewa muna da gine-gine guda 2, kowanne yana da ma'aikatan gudanarwa na kansa, da kuma tashar jiragen ruwa na orange guda biyu na ƙananan canji ana amfani da su don gudanarwa. Don haka, muna buƙatar waɗannan tashoshin jiragen ruwa da za a haɗa su da duk tashoshin ruwan lemu na sauran maɓalli. Halin yana kama da tashar jiragen ruwa mai shuɗi - duk tashar jiragen ruwa na shuɗi na sama dole ne a haɗa su zuwa wasu tashar jiragen ruwa masu launi iri ɗaya. Don yin wannan, muna buƙatar haɗa waɗannan maɓalli guda biyu a cikin jiki daban-daban tare da layin sadarwa daban; a cikin adadi, wannan shine layin tsakanin korayen tashar jiragen ruwa guda biyu. Kamar yadda muka sani, idan maɓallai guda biyu suna haɗin jiki, muna samar da kashin baya, ko akwati.
Menene bambanci tsakanin na yau da kullun da na VLAN? Ba babban bambanci ba ne. Lokacin da kuka sayi sabon canji, ta tsohuwa, ana saita duk tashoshin jiragen ruwa a yanayin VLAN kuma suna cikin hanyar sadarwa iri ɗaya, wanda aka keɓance VLAN1. Shi ya sa idan muka haɗa kowace na'ura zuwa tashar jiragen ruwa guda ɗaya, ta ƙare ta haɗa da duk sauran tashoshin jiragen ruwa saboda duk tashoshin 48 na VLAN1 iri ɗaya ne. Amma idan muka saita blue ports don yin aiki akan hanyar sadarwar VLAN10, tashar ruwan orange akan hanyar sadarwar VLAN20, da koren tashar jiragen ruwa akan VLAN1, zamu sami maɓalli daban-daban guda uku. Don haka, yin amfani da yanayin hanyar sadarwa mai kama-da-wane yana ba mu damar haɗa ƙungiyoyin tashoshin jiragen ruwa zuwa takamaiman cibiyoyin sadarwa, raba watsa shirye-shirye zuwa sassa, da ƙirƙirar subnets. A wannan yanayin, kowane tashar jiragen ruwa na takamaiman launi yana cikin hanyar sadarwa daban. Idan blue tashar jiragen ruwa aiki a kan 3 cibiyar sadarwa da kuma orange tashar jiragen ruwa aiki a kan 192.168.1.0 cibiyar sadarwa, sa'an nan duk da guda IP address, ba za a haɗa da juna, saboda za su kasance a hankali a cikin daban-daban switches. Kuma kamar yadda muka sani, maɓalli daban-daban na jiki ba sa sadarwa da juna sai dai idan an haɗa su ta hanyar hanyar sadarwa ta gama gari. Don haka muna ƙirƙira subnets daban-daban don VLANs daban-daban.
Ina so in ja hankalin ku ga gaskiyar cewa manufar VLAN ta shafi masu sauyawa ne kawai. Duk wanda ya saba da ka'idojin encapsulation kamar .1Q ko ISL ya san cewa ba masu amfani da hanyar sadarwa ko kwamfuta ba su da VLANs. Lokacin da kuka haɗa kwamfutarka, alal misali, zuwa ɗaya daga cikin tashoshin jiragen ruwa masu shuɗi, ba za ku canza komai a cikin kwamfutar ba, duk canje-canje suna faruwa ne kawai a matakin OSI na biyu, matakin sauyawa. Lokacin da muka saita tashoshin jiragen ruwa don yin aiki tare da takamaiman hanyar sadarwa na VLAN10 ko VLAN20, mai sauyawa yana ƙirƙirar bayanan VLAN. Yana "rikodi" a cikin ƙwaƙwalwar ajiyarsa cewa tashar jiragen ruwa 1,3 da 5 na VLAN10 ne, tashar jiragen ruwa 14,15 da 18 wani ɓangare ne na VLAN20, kuma ragowar tashar jiragen ruwa da ke cikin VLAN1. Don haka, idan wasu zirga-zirgar ababen hawa suka samo asali daga tashar shuɗi 1, yana zuwa tashar jiragen ruwa 3 da 5 na VLAN10 iri ɗaya kawai. Maɓallin yana duba bayanansa kuma ya ga cewa idan zirga-zirga ta fito daga ɗaya daga cikin tashoshin ruwan lemu, ya kamata ta je tashar jiragen ruwa na VLAN20 kawai.
Koyaya, kwamfutar ba ta san komai game da waɗannan VLANs ba. Lokacin da muka haɗa maɓalli 2, an kafa akwati tsakanin korayen tashar jiragen ruwa. Kalmar "trunk" tana dacewa da na'urorin Cisco kawai; sauran masana'antun na'urorin cibiyar sadarwa, irin su Juniper, suna amfani da kalmar Tag tashar jiragen ruwa, ko "tagged tashar jiragen ruwa". Ina ganin sunan Tag port ya fi dacewa. Lokacin da zirga-zirga ta samo asali daga wannan hanyar sadarwa, gangar jikin tana watsa shi zuwa duk tashar jiragen ruwa na canji na gaba, wato, muna haɗa maɓallan tashar jiragen ruwa 48 guda biyu kuma muna samun tashar tashar jiragen ruwa 96 guda ɗaya. A lokaci guda kuma, idan muka aika da zirga-zirga daga VLAN10, sai ta zama tamba, wato, ana ba da lakabin da ke nuna cewa an yi shi ne kawai don tashar jiragen ruwa na VLAN10. Canji na biyu, bayan ya karɓi wannan zirga-zirgar, ya karanta alamar kuma ya fahimci cewa wannan zirga-zirga ce ta musamman don hanyar sadarwar VLAN10 kuma yakamata ku je tashar jiragen ruwa mai shuɗi kawai. Hakazalika, zirga-zirgar "orange" na VLAN20 an yiwa alama alama don nuna cewa an ƙaddara ta zuwa tashar jiragen ruwa na VLAN20 akan sauyawa na biyu.
Mun kuma ambaci encapsulation kuma a nan akwai hanyoyi guda biyu na encapsulation. Na farko shine .1Q, wato, lokacin da muka tsara akwati, dole ne mu samar da encapsulation. Ƙa'idar encapsulation .1Q buɗaɗɗen ma'auni ne wanda ke bayyana hanyar yin alamar zirga-zirga. Akwai wata yarjejeniya da ake kira ISL, Inter-Switch link, wanda Cisco ya kirkira, wanda ke nuna cewa zirga-zirga na wani takamaiman VLAN ne. Duk masu sauyawa na zamani suna aiki tare da ka'idar .1Q, don haka lokacin da kuka ɗauki sabon sauyawa daga cikin akwatin, ba kwa buƙatar amfani da kowane umarnin rufewa, saboda ta tsohuwa ana aiwatar da shi ta hanyar .1Q. Don haka, bayan ƙirƙirar akwati, rufewar zirga-zirga yana faruwa ta atomatik, wanda ke ba da damar karanta alamun.
Yanzu bari mu fara kafa VLAN. Bari mu ƙirƙiri hanyar sadarwa wacce za a sami switches 2 da na'urori masu ƙarewa guda biyu - kwamfutoci PC1 da PC2, waɗanda za mu haɗa su da igiyoyi don canza #0. Bari mu fara da ainihin saituna na Basic Kanfigareshan sauya.
Don yin wannan, danna maɓallin kunnawa kuma je zuwa wurin dubawar layin umarni, sannan saita sunan mai watsa shiri, kiran wannan switch sw1. Yanzu bari mu matsa zuwa saitunan kwamfuta ta farko kuma saita adreshin IP na 192.168.1.1 da subnet mask 255.255. 255.0. Babu buƙatar adireshin ƙofa na tsoho saboda duk na'urorin mu suna kan hanyar sadarwa ɗaya. Bayan haka, za mu yi haka don kwamfuta ta biyu, muna ba ta adireshin IP 192.168.1.2.
Yanzu bari mu koma kwamfuta ta farko zuwa ping kwamfuta ta biyu. Kamar yadda kuke gani, ping ɗin ya yi nasara saboda waɗannan kwamfutoci biyun suna haɗe da maɓalli ɗaya kuma suna cikin cibiyar sadarwa iri ɗaya ta hanyar tsoho VLAN1. Idan yanzu muka kalli hanyoyin musanya masu canzawa, zamu ga cewa duk tashoshin FastEthernet daga 1 zuwa 24 da kuma tashoshin GigabitEthernet guda biyu an saita su akan VLAN #1. Koyaya, irin wannan wadatar wuce kima ba a buƙata, don haka muna shiga cikin saitunan canzawa kuma shigar da umarnin vlan don duba bayanan cibiyar sadarwar kama-da-wane.
Za ka ga a nan sunan cibiyar sadarwar VLAN1 da gaskiyar cewa duk tashar jiragen ruwa na wannan cibiyar sadarwa. Wannan yana nufin cewa za ku iya haɗawa zuwa kowane tashar jiragen ruwa kuma duk za su iya "magana" da juna saboda suna cikin hanyar sadarwa iri ɗaya.
Za mu canza wannan yanayin, don yin wannan, da farko za mu ƙirƙiri hanyoyin sadarwa na zamani guda biyu, wato ƙara VLAN10. Don ƙirƙirar cibiyar sadarwar kama-da-wane, yi amfani da umarni kamar "lambar cibiyar sadarwar vlan".
Kamar yadda kake gani, lokacin ƙoƙarin ƙirƙirar hanyar sadarwa, tsarin ya nuna saƙo tare da jerin umarnin daidaitawar VLAN waɗanda ke buƙatar amfani da wannan aikin:
fita - yi amfani da canje-canje da saitunan fita;
suna - shigar da sunan VLAN na al'ada;
a'a - soke umarnin ko saita shi azaman tsoho.
Wannan yana nufin cewa kafin shigar da umarnin ƙirƙirar VLAN, dole ne ku shigar da umarnin suna, wanda ke kunna yanayin sarrafa suna, sannan ku ci gaba da ƙirƙirar sabuwar hanyar sadarwa. A wannan yanayin, tsarin yana nuna cewa za'a iya sanya lambar VLAN a cikin kewayon daga 1 zuwa 1005.
Don haka yanzu mun shigar da umarnin don ƙirƙirar lambar VLAN 20 - vlan 20, sannan mu ba shi suna ga mai amfani, wanda ke nuna wace irin hanyar sadarwa ce. A cikin yanayinmu, muna amfani da sunan umarnin Ma'aikata, ko hanyar sadarwa don ma'aikatan kamfani.
Yanzu muna buƙatar sanya takamaiman tashar jiragen ruwa zuwa wannan VLAN. Mun shigar da yanayin saitin sauyawa int f0/1, sannan mu canza tashar jiragen ruwa zuwa yanayin samun dama da hannu ta amfani da umarnin samun damar yanayin switchport sannan mu nuna ko wane tashar jiragen ruwa ya kamata a canza zuwa wannan yanayin - wannan shine tashar jiragen ruwa na cibiyar sadarwar VLAN10.
Mun ga cewa bayan wannan launi na haɗin haɗin tsakanin PC0 da sauyawa, launi na tashar jiragen ruwa, ya canza daga kore zuwa orange. Zai sake juya kore da zaran saitunan saitunan sun fara aiki. Bari mu yi kokarin ping na biyu kwamfuta. Ba mu yi wani canje-canje ga saitunan cibiyar sadarwar don kwamfutocin ba, har yanzu suna da adiresoshin IP na 192.168.1.1 da 192.168.1.2. Amma idan muka yi ƙoƙarin yin ping PC0 daga PC1 na kwamfuta, babu abin da zai yi aiki, domin yanzu waɗannan kwamfutoci suna cikin cibiyoyin sadarwa daban-daban: na farko zuwa VLAN10, na biyu zuwa VLAN1 na asali.
Bari mu koma wurin sauyawa kuma mu saita tashar jiragen ruwa ta biyu. Don yin wannan, zan ba da umarnin int f0/2 kuma in sake maimaita matakan guda ɗaya don VLAN 20 kamar yadda na yi lokacin daidaita hanyar sadarwar da ta gabata.
Mun ga cewa a yanzu ƙananan tashar jiragen ruwa, wanda kwamfuta ta biyu ke haɗa shi, ita ma ta canza launinta daga kore zuwa orange - 'yan dakiku kaɗan kafin canje-canjen a cikin saitunan ya fara aiki kuma ya sake komawa kore. Idan muka sake fara pinging na biyun, babu abin da zai yi aiki, domin har yanzu kwamfutocin suna cikin cibiyoyin sadarwa daban-daban, PC1 ce kawai ke cikin VLAN1, ba VLAN20 ba.
Don haka, kun raba maɓalli ɗaya na zahiri zuwa maɓalli na hankali guda biyu daban-daban. Ka ga yanzu kalar tashar ta canza daga lemu zuwa kore, tashar tana aiki, amma har yanzu ba ta amsa ba saboda na wata hanyar sadarwa ce ta daban.
Bari mu yi canje-canje a cikin da'irar mu - cire haɗin PC1 daga maɓallin farko kuma mu haɗa shi zuwa maɓalli na biyu, sannan mu haɗa su da kansu da kebul.
Domin kulla alaka a tsakanin su, zan shiga cikin saitin canji na biyu kuma in kirkiro VLAN10, na ba ta suna Management, wato management network. Sannan zan kunna yanayin shiga kuma in saka cewa wannan yanayin na VLAN10 ne. Yanzu kalar tashoshin jiragen ruwa da ake haɗa na'urorin ta hanyar su ya canza daga lemu zuwa kore saboda an daidaita su akan VLAN10. Yanzu muna buƙatar ƙirƙirar akwati tsakanin duka masu sauyawa. Duk waɗannan tashoshin jiragen ruwa sune Fa0/2, don haka kuna buƙatar ƙirƙirar akwati don tashar Fa0/2 na farkon sauyawa ta amfani da umarnin akwati na yanayin switchport. Haka kuma dole ne a yi don sauyawa na biyu, bayan haka an kafa akwati a tsakanin waɗannan tashoshin biyu.
Yanzu idan ina son yin ping PC1 daga kwamfuta ta farko komai zai yi kyau, saboda haɗin PC0 da switch #0 shine hanyar sadarwa ta VLAN10, tsakanin switch #1 da PC1 shima VLAN10 ne, kuma duka biyun suna haɗa su da akwati. .
Don haka, idan na'urori suna kan VLAN daban-daban, to ba a haɗa su da juna, amma idan suna kan hanyar sadarwa ɗaya ne, to ana iya musayar zirga-zirga a tsakanin su kyauta. Bari mu yi ƙoƙari mu ƙara ƙarin na'ura guda ɗaya zuwa kowane canji.
A cikin saitunan cibiyar sadarwa na PC2 da aka ƙara, zan saita adireshin IP zuwa 192.168.2.1, kuma a cikin saitunan PC3, adireshin zai zama 192.168.2.2. A wannan yanayin, tashoshin da waɗannan kwamfutocin biyu ke haɗa su za a sanya su Fa0/3. A cikin saitunan maɓalli #0 za mu saita yanayin Access kuma mu nuna cewa an yi nufin wannan tashar jiragen ruwa don VLAN20, kuma za mu yi haka don sauyawa #1.
Idan na yi amfani da ikon shiga vlan 20 na switchport access vlan 20, kuma har yanzu ba a ƙirƙiri VLAN10 ba, tsarin zai nuna kuskure kamar "Access VLAN ba ya wanzu" saboda an saita masu sauyawa don yin aiki tare da VLANXNUMX kawai.
Bari mu ƙirƙiri VLAN20. Ina amfani da umarnin "show VLAN" don duba bayanan cibiyar sadarwar kama-da-wane.
Kuna iya ganin cewa tsohuwar hanyar sadarwa ita ce VLAN1, wacce aka haɗa tashar Fa0/4 zuwa Fa0/24 da Gig0/1, Gig0/2. Lambar VLAN 10, mai suna Management, an haɗa shi zuwa tashar jiragen ruwa Fa0/1, kuma lambar VLAN 20, mai suna VLAN0020 ta tsohuwa, tana haɗa zuwa tashar jiragen ruwa Fa0/3.
A ka'ida, sunan cibiyar sadarwa ba shi da mahimmanci, babban abu shi ne cewa ba a maimaita shi ba don cibiyoyin sadarwa daban-daban. Idan ina son canza sunan cibiyar sadarwar da tsarin ke sanyawa ta tsohuwa, Ina amfani da umarnin vlan 20 da kuma sanya ma'aikata suna. Zan iya canza wannan suna zuwa wani abu dabam, kamar IPphones, kuma idan muka buga adireshin IP 192.168.2.2, zamu iya ganin cewa sunan VLAN ba shi da ma'ana.
Abu na ƙarshe da nake so in faɗi shine manufar Gudanarwa IP, wanda muka yi magana game da shi a darasi na ƙarshe. Don yin wannan muna amfani da umarnin int vlan1 kuma shigar da adireshin IP 10.1.1.1 da subnet mask 255.255.255.0 sannan kuma ƙara umarnin rufewa. Mun sanya IP Management ba don duka sauyawa ba, amma don tashoshin VLAN1 kawai, wato, mun sanya adireshin IP ɗin da ake sarrafa cibiyar sadarwar VLAN1. Idan muna so mu sarrafa VLAN2, muna buƙatar ƙirƙirar madaidaicin dubawa don VLAN2. A cikin yanayinmu, akwai tashoshin jiragen ruwa na VLAN10 masu launin shuɗi da tashoshi na VLAN20 na orange, waɗanda suka dace da adiresoshin 192.168.1.0 da 192.168.2.0.
VLAN10 dole ne ya sami adiresoshin da ke cikin kewayo guda domin na'urorin da suka dace su iya haɗawa da shi. Dole ne a yi irin wannan saitin don VLAN20.
Wannan taga layin umarni na sauyawa yana nuna saitunan dubawa don VLAN1, wato, VLAN na asali.
Domin saita Gudanarwar IP don VLAN10, dole ne mu ƙirƙiri int vlan 10, sannan mu ƙara adireshin IP 192.168.1.10 da mashin subnet 255.255.255.0.
Don saita VLAN20, dole ne mu ƙirƙiri int vlan 20, sa'an nan kuma ƙara adireshin IP 192.168.2.10 da subnet mask 255.255.255.0.
Me yasa hakan ya zama dole? Idan kwamfutar PC0 da tashar tashar wuta ta hagu ta sama ta canji #0 tana cikin hanyar sadarwa ta 192.168.1.0, PC2 tana cikin cibiyar sadarwar 192.168.2.0 kuma tana haɗe da tashar tashar VLAN1 ta asali, wacce ke cikin cibiyar sadarwar 10.1.1.1, to PC0 ba zai iya kafawa ba. sadarwa tare da wannan canji ta hanyar ka'idar SSH saboda suna cikin cibiyoyin sadarwa daban-daban. Don haka, don PC0 don sadarwa tare da sauyawa ta hanyar SSH ko Telnet, dole ne mu ba shi damar shiga. Wannan shine dalilin da ya sa muke buƙatar sarrafa hanyar sadarwa.
Ya kamata mu iya ɗaure PC0 ta amfani da SSH ko Telnet zuwa adireshin IP na VLAN20 da kuma yin kowane canje-canje da muke buƙata ta hanyar SSH. Don haka, Gudanarwar IP yana da mahimmanci musamman don daidaitawa VLANs, saboda kowane cibiyar sadarwa mai kama-da-wane dole ne ya sami ikon sarrafa kansa.
A cikin bidiyon na yau, mun tattauna batutuwa da yawa: saitunan canzawa na asali, ƙirƙirar VLANs, sanya tashoshin jiragen ruwa na VLAN, sanya IP Gudanarwa don VLANs, da daidaita kututtuka. Kada kuji kunya idan baku fahimci wani abu ba, wannan dabi'a ce, domin VLAN wani batu ne mai sarkakiya kuma mai fadi wanda zamu dawo a darasi na gaba. Ina ba da tabbacin cewa da taimakona za ku iya zama masters na VLAN, amma abin da ke cikin wannan darasi shi ne in bayyana muku tambayoyi guda 3: menene VLANs, me yasa muke buƙatar su da kuma yadda ake daidaita su.
Na gode da kasancewa tare da mu. Kuna son labaran mu? Kuna son ganin ƙarin abun ciki mai ban sha'awa? Goyon bayan mu ta hanyar ba da oda ko ba da shawara ga abokai, Rangwamen 30% ga masu amfani da Habr akan keɓaɓɓen analogue na sabar matakin shigarwa, wanda mu muka ƙirƙira muku: (akwai tare da RAID1 da RAID10, har zuwa 24 cores kuma har zuwa 40GB DDR4).
Dell R730xd sau 2 mai rahusa? Nan kawai a cikin Netherlands! Dell R420 - 2x E5-2430 2.2Ghz 6C 128GB DDR3 2x960GB SSD 1Gbps 100TB - daga $99! Karanta game da
source: www.habr.com