Takhala tikugwiritsa ntchito zida za Huawei kwa nthawi yayitali . Posachedwapa ife ndipo powonjezera zida zatsopano, lingaliro lidawuka kuti ligawane mndandanda wamtundu wina kapena zosonkhanitsira zoyambira ndi zitsanzo.
Pali malangizo ambiri ofanana pa intaneti kwa ogwiritsa ntchito zida za Cisco. Komabe, kwa Huawei pali zolemba zingapo zotere ndipo nthawi zina muyenera kuyang'ana zomwe zili muzolemba kapena kuzitola m'nkhani zingapo. Tikukhulupirira kuti zikhala zothandiza, tiyeni tizipita!
M'nkhaniyi tifotokoza mfundo zotsatirazi:
Kugwirizana koyamba
Kulumikizana ndi switch kudzera pa mawonekedwe a console
Mwachikhazikitso, ma switch a Huawei amabwera popanda kukonzedweratu. Popanda fayilo yosinthira mu kukumbukira kwa switch, protocol ya ZTP (Zero Touch Provisioning) imayambitsidwa ikayatsidwa. Sitidzafotokozera mwatsatanetsatane makinawa, tidzangowona kuti ndi yabwino pogwira ntchito ndi zida zambiri kapena popanga kasinthidwe patali. Ndemanga ya ZTP .
Pakukhazikitsa koyambirira popanda kugwiritsa ntchito ZTP, kulumikizana kwa console kumafunika.
Ma parameter olumikizira (okhazikika)
Mtengo wotumizira: 9600
Chiwerengero cha data (B): 8
Parity bit: Palibe
Kuyimitsa (S): 1
Mayendedwe owongolera: Palibe
Pambuyo polumikiza, mudzawona pempho loti muyike mawu achinsinsi kuti mugwirizane ndi console.
Khazikitsani mawu achinsinsi olumikizirana ndi console
Mawu achinsinsi oyambira amafunikira pakulowa koyamba kudzera pa console.
Kodi mukufuna kupitiriza kuyiyika? [Y/N]: y
Khazikitsani mawu achinsinsi ndikusunga otetezeka!
Kupanda kutero simungathe kulowa kudzera pa console.
Chonde konzani mawu achinsinsi olowera (8-16)
Lowani Chinsinsi:
Tsimikizani Mawu Achinsinsi:
Ingokhazikitsani mawu achinsinsi, tsimikizirani ndipo mwamaliza! Mutha kusintha mawu achinsinsi ndi magawo ena otsimikizira pa doko la console pogwiritsa ntchito malamulo awa:
Chitsanzo chosintha mawu achinsinsi
dongosolo-mawonedwe
[~HUAWEI] User-interface console 0
[~HUAWEI-ui-console0] chizindikiro-mode password
[~HUAWEI-ui-console0] khazikitsani chizindikiro chachinsinsi chachinsinsi <password>
[*HUAWEI-ui-console0] chitani
Kukhazikitsa ma stacking (iStack)
Mukatha kupeza ma switches, mutha kukonza stack ngati kuli kofunikira. Huawei CE amagwiritsa ntchito ukadaulo wa iStack kuphatikiza masiwichi angapo kukhala chida chimodzi chomveka. The stack topology ndi mphete, i.e. Ndikoyenera kugwiritsa ntchito madoko 2 osachepera pa switch iliyonse. Kuchuluka kwa madoko kumatengera liwiro lomwe mukufuna kulumikizana pakati pa masiwichi omwe ali mu stack.
Mukamapanga stacking, ndi bwino kugwiritsa ntchito ma uplinks, omwe liwiro lake nthawi zambiri limakhala lalitali kuposa la madoko olumikizira zida zomaliza. Chifukwa chake, mutha kutulutsa zambiri ndi madoko ochepa. Komanso, pamitundu yambiri pali zoletsa kugwiritsa ntchito madoko a gigabit posungira. Ndikofunikira kugwiritsa ntchito madoko osachepera 10G.
Pali njira ziwiri zokhazikitsira zomwe zimasiyana pang'ono potsata masitepe:
-
Kukonzekera koyambirira kwa masiwichi kumatsatiridwa ndi kulumikizana kwawo kwakuthupi.
-
Choyamba, ikani ndi kulumikiza masiwichi kwa wina ndi mzake, ndiyeno sinthani kuti agwire ntchito mu stack.
Kutsatira zochita za zosankhazi ndi motere:
Kutsatizana kwa zochita pazosankha ziwiri zosinthira masinthidwe
Tiyeni tilingalire njira yachiwiri (yaitali) pokhazikitsa stack. Kuti muchite izi muyenera kuchita zotsatirazi:
-
Tikukonzekera ntchito poganizira nthawi yomwe ingatheke. Timapanga zochitika zingapo.
-
Timapanga unsembe ndi chingwe kugwirizana masiwichi.
-
Konzani magawo oyambira oyambira pa master switch:
[~HUAWEI] stack
3.1. Timakonza magawo omwe tikufuna
#
membala 1 nambala X - pomwe X ndiye ID yatsopano yosinthira pamndandanda. Kufikira, ID = 1
ndipo pa master switch mutha kusiya ID yokhazikika.
#
membala 1 patsogolo 150 - sonyezani zofunikira. Sinthani ndi chachikulu
choyambirira chidzaperekedwa kwa master switch of the stack. Mtengo wofunika kwambiri
kusakhulupirika: 100.
#
membala wambiri { membala-id | onse} domain - perekani Domain ID ya stack.
Mwachikhazikitso, domain ID sinatchulidwe.
#
Chitsanzo:
dongosolo-mawonedwe
[~HUAWEI] sysname SwitchA
[HUAWEI] chitani
[~SwitchA] kupaka
[~SwitchA-stack] membala 1 patsogolo 150
[SwitchA-stack] membala 1 domain 10
[SwitchA-stack] kusiya
[SwitchA] chitani
3.2 Kukonza mawonekedwe a doko la stacking (chitsanzo)
[~SwitchA] mawonekedwe stack-doko 1/1[SwitchA-Stack-Port1/1] doko membala-gulu mawonekedwe 10ge 1/0/1 mpaka 1/0/4
Chenjezo: Mukamaliza kasinthidwe,
1.Mawonekedwe (10GE1/0/1-1/0/4) adzasinthidwa kukhala stack mode ndi kukonzedwa ndi
port crc-statistics imayambitsa cholakwika-pansi lamulo ngati kasinthidwe kulibe.
2.Mawonekedwe (ma) akhoza kupita Zolakwika-Pansi (crc-statistics) chifukwa palibe kasinthidwe kotseka pamalo olumikizirana.Pitirizani? [Y/N]: y
[SwitchA-Stack-Port1/1] chitani
[~SwitchA-Stack-Port1/1] obwereza
Kenako, muyenera kusunga kasinthidwe ndikuyambitsanso switch:
sungani
Chenjezo: Zosintha zamakono zidzalembedwera ku chipangizochi. Pitirizani? [Y/N]: y
kuyambiransoko
Chenjezo: Dongosolo lidzayambiranso. Pitirizani? [Y/N]: y
4. Zimitsani madoko kuti musanjike pa master switch (chitsanzo)
[~SwitchA] mawonekedwe stack-doko 1/1
[*SwitchA-Stack-Port1/1] shutdown
[*SwitchA-Stack-Port1/1] chitani
5. Konzani chosinthira chachiwiri mu staki mofananiza ndi yoyamba:
dongosolo-mawonedwe
[~HUAWEI] sysname Kusintha B
[*HUAWEI] chitani
[~SwitchB] kupaka
[~SwitchB-stack] membala 1 patsogolo 120
[*SwitchB-stack] membala 1 domain 10
[*SwitchB-stack] stack membala 1 renumber 2 cholowa-config
Chenjezo: Kusintha kwa stack kwa membala ID 1 kudzakhala cholowa kwa membala ID 2
chipangizo ikayambiranso. Pitirizani? [Y/N]: y
[*SwitchB-stack] kusiya
[*SinthaB] chitani
Kukonza madoko a stacking. Chonde dziwani kuti ngakhale lamulo "stack membala 1 renumber 2 cholowa-configβ, ID ya membala mu kasinthidwe imagwiritsidwa ntchito ndi mtengo "1" wa SwitchB.
Izi zimachitika chifukwa ID ya membala wa switchyo idzasinthidwa pokhapokha kuyambiranso ndipo zisanachitike kusinthako kumakhalabe ndi membala-id yofanana ndi 1. Parameter "nhaka-configβ zimangofunika kuti mutatha kuyambiranso kusintha, zosintha zonse zimasungidwa kwa membala 2, womwe udzakhala wosinthira, chifukwa ID yake ya membala yasinthidwa kuchoka pamtengo 1 kupita ku mtengo wa 2.
[~SwitchB] mawonekedwe stack-doko 1/1
[*SwitchB-Stack-Port1/1] doko membala-gulu mawonekedwe 10ge 1/0/1 mpaka 1/0/4
Chenjezo: Mukamaliza kasinthidwe,
1.Mawonekedwe (10GE1/0/1-1/0/4) adzasinthidwa kukhala stack
mode ndi kukonzedwa ndi port crc-statistics imayambitsa cholakwika-pansi lamulo ngati kasinthidwe
kulibe.
2.Mawonekedwe (ma) amatha kupita Zolakwika-Pansi (crc-statistics) chifukwa palibe kasinthidwe kotseka pa
malumikizidwe.
Pitirizani? [Y/N]: y
[*SwitchB-Stack-Port1/1] chitani
[~SwitchB-Stack-Port1/1] obwereza
Yambitsaninso SwitchB
sungani
Chenjezo: Zosintha zamakono zidzalembedwera ku chipangizochi. Pitirizani? [Y/N]: y
kuyambiransoko
Chenjezo: Dongosolo lidzayambiranso. Pitirizani? [Y/N]: y
6. Yambitsani madoko a stacking pa master switch. Ndikofunikira kukhala ndi nthawi yolola madoko kuyambiranso kosinthira B kusanamalizidwe, chifukwa ngati muwayatsa pambuyo pake, sinthani B idzayambiranso.
[~SwitchA] mawonekedwe stack-doko 1/1
[~SwitchA-Stack-Port1/1] sintha kutseka
[*SwitchA-Stack-Port1/1] chitani
[~SwitchA-Stack-Port1/1] obwereza
7. Onani momwe stack ikuyendera ndi lamulo "chiwonetsero chazithunzi"
Chitsanzo lamulo linanena pambuyo kasinthidwe zolondola
chiwonetsero chazithunzi
---------------------------
Udindo wa MemberID MAC Wofunika Kwambiri Mtundu wa Chipangizo Kufotokozera
---------------------------
+1 Mbuye 0004-9f31-d520 150 CE6850-48T4Q-EI
2 Standby 0004-9f62-1f40 120 CE6850-48T4Q-EI
---------------------------
+ ikuwonetsa chida chomwe mawonekedwe owongolera amakhala.
8. Sungani masinthidwe a stack ndi lamulo "sungani" Kukonzekera kwatha.
ΠΈ Mutha kuyang'ananso tsamba la Huawei.
Kukhazikitsa mwayi
Pamwambapa tidagwiritsa ntchito kulumikizana kwa console. Tsopano tiyenera kulumikiza mwanjira yathu (stack) kudzera pa netiweki. Kuti muchite izi, pamafunika mawonekedwe (amodzi kapena angapo) okhala ndi adilesi ya IP. Nthawi zambiri, posinthira, adilesi imaperekedwa ku mawonekedwe mu VLAN yoyang'anira kapena ku doko lodzipatulira loyang'anira. Koma apa, ndithudi, chirichonse chimadalira kugwirizana kwa topology ndi cholinga chogwiritsira ntchito chosinthira.
Chitsanzo cha kasinthidwe ka adilesi ya mawonekedwe a VLAN 1:
[~HUAWEI] mawonekedwe vlan 1
[~HUAWEI-Vlanif1] ip adilesi 10.10.10.1 255.255.255.0
[~HUAWEI-Vlanif1] chitani
Mutha kupanga Vlan momveka bwino ndikuyipatsa dzina, mwachitsanzo:
[~Sinthani] gawo 1
[*Sintha-vlan1] dzina TEST_VLAN (Dzina la VLAN ndilosankha)
Pali kuthyolako pang'ono kwa moyo pamatchulidwe - lembani mayina azinthu zomveka mu zilembo zazikulu (ACL, Route-map, nthawi zina mayina a VLAN) kuti zikhale zosavuta kuzipeza mufayilo yosinthira. Mutha kuyigwiritsa ntchito π
Chifukwa chake, tili ndi VLAN, tsopano "tiifika" padoko lina. Kwa njira yomwe yafotokozedwa mu chitsanzo, izi sizofunikira, chifukwa ma switch onse ali mu VLAN 1 mwachisawawa. Ngati tikufuna kukonza malo mu VLAN ina, gwiritsani ntchito malamulo oyenerera:
Kukonzekera kwa doko munjira yofikira:
[~Sinthani] Chithunzi cha 25GE 1/0/20
[~Switch-25GE1/0/20] port link-type access
[~Switch-25GE1/0/20] port access vlan 10
[~Switch-25GE1/0/20] chitani
Kukonzekera kwa Port mu thunthu mode:
[~Sinthani] Chithunzi cha 25GE 1/0/20[~Switch-25GE1/0/20] port link-mtundu wa thunthu
[~Switch-25GE1/0/20] port trunk pvid vlan 10 - tchulani VLAN yakubadwa (mafelemu mu VLAN iyi sadzakhala ndi tag pamutu)
[~Switch-25GE1/0/20] port trunk allow-pass vlan 1 mpaka 20 - lolani ma VLAN okha okhala ndi ma tag kuyambira 1 mpaka 20 (mwachitsanzo)
[~Switch-25GE1/0/20] chitani
Takonza zokhazikitsa zolumikizirana. Tiyeni tipitirire ku kasinthidwe ka SSH.
Timangopereka malamulo ofunikira:
Kupereka dzina ku switch
dongosolo-mawonedwe
[~HUAWEI] sysname SSH Server
[*HUAWEI] chitani
Kupanga makiyi
[~SSH Seva] rsa local-key-pair pangani // Pangani gulu la RSA lapafupi ndi makiyi awiri a seva.
Dzina lofunika lidzakhala: SSH Server_Host
Kukula kwa makiyi a anthu ambiri ndi (512 ~ 2048).
ZINDIKIRANI: Kupanga magulu awiriwa kudzatenga kanthawi kochepa.
Lowetsani ma bits mu modulus [default = 2048] : 2048
[*SSH Seva] chitani
Kukhazikitsa mawonekedwe a VTY
[~SSH Seva] mawonekedwe ogwiritsa vty 0 4
[~SSH Server-ui-vty0-4] kutsimikizira-njira aaa
[SSH Server-ui-vty0-4] mwayi wogwiritsa ntchito 3
[SSH Server-ui-vty0-4] protocol inbound ssh
[*SSH Server-ui-vty0-4] kusiya
Pangani wogwiritsa ntchito "client001" ndikukhazikitsa mawu achinsinsi kwa iye
[Seva ya SSH] AAA[Seva ya SSH-aaa] local-user client001 password yosasinthika-cipher
[Seva ya SSH-aaa] local-user client001 level 3
[Seva ya SSH-aaa] local-user client001 service-type ssh
[Seva ya SSH-aaa] kusiya
[Seva ya SSH] ssh user client001 mtundu wachinsinsi wachinsinsi
Kutsegula ntchito ya SSH pa switch
[~SSH Seva] stelnet seva imathandiza[*SSH Seva] chitani
Kukhudza komaliza: kukhazikitsa service-tupe kwa kasitomala kasitomala001
[~SSH Seva] ssh user client001 service-type stelnet[*SSH Seva] chitani
Kukonzekera kwatha. Ngati mwachita zonse moyenera, mutha kulumikizana ndi chosinthira kudzera pa netiweki yakomweko ndikupitiliza kugwira ntchito.
Zambiri pakukhazikitsa SSH zitha kupezeka muzolemba za Huawei - ΠΈ .
Kukonza zokonda zoyambira
Mu chipikachi tiwona zingapo zingapo zamitundu yosiyanasiyana zamalamulo zokhazikitsa zinthu zodziwika kwambiri.
1. Kukhazikitsa nthawi yadongosolo ndikuyigwirizanitsa kudzera pa NTP.
Kuti musinthe nthawi kwanuko pa switch, mutha kugwiritsa ntchito malamulo awa:
nthawi ya wotchi {onjezani | kuchotsa}
nthawi ya wotchi [ UTC ] HH:MM:SS YYYY-MM-DD
Chitsanzo chokhazikitsa nthawi kwanuko
nthawi ya wotchi MSK kuwonjezera 03:00:00
nthawi ya wotchi 10:10:00 2020-10-08
Kuti mulunzanitse nthawi kudzera pa NTP ndi seva, lowetsani lamulo ili:
ntp unicast-server [ Baibulo nambala | kutsimikizika-keyid key-id | gwero-mawonekedwe mawonekedwe-mtundu
Lamulo lachitsanzo la kulumikizana kwa nthawi kudzera pa NTP
ntp unicast-server 88.212.196.95
chitani
2. Kuti mugwire ntchito ndi chosinthira, nthawi zina muyenera kukonza njira imodzi - njira yokhazikika kapena njira yokhazikika. Kuti mupange njira, gwiritsani ntchito lamulo ili:
ip njira-static ip-adilesi {chigoba | kutalika kwa chigoba } { nexthop-address | mawonekedwe-mtundu wa mawonekedwe-nambala [ nexthop-address ] }
Lamulo lachitsanzo popanga njira:
dongosolo-mawonedwe
ip njira-static 0.0.0.0 0.0.0.0 192.168.0.1
chitani
3. Kukonza njira yogwiritsira ntchito protocol ya Spanning-Tree.
Kuti mugwiritse ntchito molondola chosinthira chatsopano pamaneti omwe alipo, ndikofunikira kulabadira kusankha kwa mawonekedwe a STP. Komanso, zingakhale bwino kukhazikitsa nthawi yomweyo. Sitikhala kuno kwa nthawi yayitali, chifukwa... Mutuwu ndi waukulu kwambiri. Tidzangofotokoza njira zogwirira ntchito za protocol:
stp mode { stp | rstp | mstp | vbst } - mu lamulo ili timasankha njira yomwe tikufuna. Njira yofikira: MSTP. Ndiwonso njira yovomerezeka yogwiritsira ntchito ma switch a Huawei. Pali kugwirizana kumbuyo ndi RSTP.
Chitsanzo:
dongosolo-mawonedwe
stp mode mstp
chitani
4. Chitsanzo chokhazikitsa doko losinthira kuti mulumikizane ndi chipangizo chomaliza.
Tiyeni tiwone chitsanzo cha kukonza doko lolowera kuti likonze magalimoto mu VLAN10
[SW] mawonekedwe 10ge 1/0/3
[SW-10GE1/0/3] port link-type access
[SW-10GE1/0/3] port default vlan 10
[SW-10GE1/0/3] stp edged-port yambitsani
[*SW-10GE1/0/3] kusiya
Mverani lamuloli "stp edged-port yambitsaniβ β imakupatsani mwayi wofulumizitsa njira yosinthira doko kupita kumalo otumizira. Komabe, simuyenera kugwiritsa ntchito lamuloli pamadoko omwe amalumikizidwa ndi masiwichi ena.
Komanso, lamulo "stp bpdu-sefa yambitsani".
5. Chitsanzo chokhazikitsa Port-Channel mu LACP mode kuti mugwirizane ndi zosintha zina kapena maseva.
Chitsanzo:
[SW] mawonekedwe eth-trunk 1[SW-Eth-Trunk1] port link-mtundu wa thunthu
[SW-Eth-Trunk1] port trunk allow-pass vlan 10
[SW-Eth-Trunk1] njira ya lacp-static (kapena mungagwiritse ntchito lacp-dynamic)
[SW-Eth-Trunk1] kusiya
[SW] mawonekedwe 10ge 1/0/1
[SW-10GE1/0/1] eth-Trunk 1
[SW-10GE1/0/1] kusiya
[SW] mawonekedwe 10ge 1/0/2
[SW-10GE1/0/2] eth-Trunk 1
[*SW-10GE1/0/2] kusiya
Tisayiwale za βchitaniβ ndiyeno timagwira ntchito ndi mawonekedwe eth-gulu 1.
Mutha kuwona momwe ulalo wophatikizidwa ndi lamulo "kuwonetsa eth-trunk".
Tidafotokozera mfundo zazikulu zakukhazikitsa ma switch a Huawei. Zachidziwikire, mutha kuzama mozama pamutuwu ndipo mfundo zingapo sizinafotokozedwe, koma tidayesa kuwonetsa malamulo akulu, otchuka kwambiri pakukhazikitsa koyambirira.
Tikukhulupirira kuti "buku"li likuthandizani kukhazikitsa masiwichi anu mwachangu.
Zidzakhalanso zabwino ngati mulemba mu ndemanga malamulo omwe mukuganiza kuti akusowa m'nkhaniyo, koma angapangitsenso kusintha kwa ma switch. Chabwino, monga nthawi zonse, tidzakhala okondwa kuyankha mafunso anu.
Source: www.habr.com