Haesale re sebelisa lisebelisoa tsa Huawei ka nako e telele . Haufinyane tjena re 'me ha u eketsa lisebelisoa tse ncha, ho ile ha hlaha khopolo ea ho arolelana mofuta o itseng oa lenane la tlhahlobo kapa pokello ea litlhophiso tsa motheo ka mehlala.
Ho na le litaelo tse ngata tse tšoanang inthaneteng bakeng sa basebelisi ba lisebelisoa tsa Cisco. Leha ho le joalo, bakeng sa Huawei ho na le lingoloa tse joalo tse fokolang 'me ka linako tse ling u tlameha ho batla tlhahisoleseling litokomaneng kapa ho li bokella ho tsoa lingoloeng tse' maloa. Re tšepa hore e tla ba molemo, ha re eeng!
Sehloohong re tla hlalosa lintlha tse latelang:
Khokahano ea pele
Ho hokela ho switjha ka sebopeho sa console
Ka mokhoa o ikhethileng, li-switches tsa Huawei li tla ntle le tlhophiso ea pele. Ntle le faele ea tlhophiso mohopolong oa switch, protocol ea ZTP (Zero Touch Provisioning) e qala ha e buletsoe. Re ke ke ra hlalosa mochine ona ka botlalo, re tla hlokomela feela hore o bonolo ha o sebetsa le lisebelisoa tse ngata kapa o etsa tlhophiso ka thōko. Tlhahlobo ea ZTP .
Bakeng sa ho seta ha pele ntle le ho sebelisa ZTP, ho hlokahala khokahano ea console.
Liparamente tsa khokahanyo (tse tloaelehileng)
Sekhahla sa phetisetso: 9600
Lethathamo la lintlha (B): 8
Parity bit: Ha ho letho
Stop bit (S): 1
Mokhoa oa ho laola phallo: Ha ho letho
Kamora ho hokela, o tla bona kopo ea ho beha phasewete bakeng sa khokahano ea console.
Beha phasewete bakeng sa khokahano ea console
Ho hlokahala password ea pele bakeng sa ho kena ha pele ka console.
Na o batla ho e seta? [Y/N]: y
Beha phasewete mme u e boloke e bolokehile!
Ho seng joalo u ke ke ua khona ho kena ka console.
Ka kopo, lokisa password ea ho kena (8-16)
Kenya phasewete:
Netefatsa Phasewete:
Beha phasewete feela, e netefatse mme o qetile! Joale o ka fetola phasewete le liparamente tse ling tsa netefatso boema-kepeng ba console u sebelisa litaelo tse latelang:
Mohlala oa ho fetola password
pono-tsamaiso
[~HUAWEI] user-interface console 0
[~HUAWEI-ui-console0] password ea mokhoa oa netefatso
[~HUAWEI-ui-console0] seta "cipher" ea netefatso <password>
[*HUAWEI-ui-console0] iketse
Ho theha stacking (iStack)
Ka mor'a ho fumana li-switches, u ka lokisa stack haeba ho hlokahala. Huawei CE e sebelisa theknoloji ea iStack ho kopanya li-switches tse ngata ho sesebelisoa se le seng se utloahalang. The topology ea stack ke lesale, i.e. Ho khothalletsoa ho sebelisa bonyane li-port tse 2 ho switjha ka 'ngoe. Palo ea likou e itšetlehile ka lebelo le lakatsehang la ho sebelisana pakeng tsa li-switches ka har'a stack.
Ha ho etsoa stacking, ho eletsoa ho sebelisa li-uplinks, tseo lebelo la tsona hangata le leng holimo ho feta la likoung tsa ho hokahanya lisebelisoa tsa ho qetela. Ka hona, o ka fumana ts'ebetso e eketsehileng ka likou tse fokolang. Hape, bakeng sa mefuta e mengata ho na le lithibelo mabapi le tšebeliso ea likou tsa gigabit bakeng sa stacking. Ho khothalletsoa ho sebelisa bonyane likou tsa 10G.
Ho na le likhetho tse peli tsa ho seta tse fapaneng hanyane ka tatellano ea mehato:
-
Tlhophiso ea pele ea li-switches tse lateloang ke khokahano ea tsona ea 'mele.
-
Ntlha ea pele, kenya le ho hokahanya li-switches ho tse ling, ebe u li lokisetsa hore li sebetse ka har'a stack.
Letoto la liketso bakeng sa likhetho tsena ke tse latelang:
Tatelano ea liketso bakeng sa tse peli switjha stacking dikgetho
Ha re nahaneng ka khetho ea bobeli (e telele) ea ho theha stack. Ho etsa sena o hloka ho etsa tse latelang:
-
Re rera mosebetsi re nahanela nako ea ho theoha e ka bang teng. Re theha tatellano ea liketso.
-
Re kenya le ho hokahanya ha cable ea li-switch.
-
Lokisa li-parameter tsa motheo tsa stack bakeng sa master switch:
[~HUAWEI] stack
3.1. Re lokisa li-parameter tseo re li hlokang
#
setho sa stack 1 nomoro ea X - moo X e leng switjha ID e ncha ka har'a stack. Kamehla, ID = 1
'me bakeng sa sesebelisoa sa master u ka siea ID ea kamehla.
#
setho sa stack 1 ntho e tlang pele 150 - supa tse tlang pele. Fetola ka kholo ka ho fetisisa
ntho e tlang pele e tla abeloa ho master switch ea stack. Boleng ba pele
kamehla: 100.
#
setho sa stack { setho-id | kaofela } domain - abela Domain ID bakeng sa stack.
Ka ho sa feleng, domain ID ha e hlalosoe.
#
Mohlala:
pono-tsamaiso
[~HUAWEI] sysname SwitchA
[HUAWEI] iketse
[~SwitchA] stack
[~SwitchA-stack] setho sa stack 1 ntho e tlang pele 150
[SwitchA-stack] setho sa stack 1 domain 10
[SwitchA-stack] tlohela
[SwitchA] iketse
3.2 Ho hlophisa sebopeho sa port stacking (mohlala)
[~SwitchA] interface stack-port 1/1[SwitchA-Stack-Port1/1] segokanyimmediamentsi sa sebolokigolo sa sehlopha 10ge 1/0/1 ho 1/0/4
Tlhokomeliso: Kamora hore tlhophiso e phethe,
1.The interface(s) (10GE1/0/1-1/0/4) e tla fetoleloa ho stack mode mme e hlophisoe le
port crc-statistics e baka phoso-down taelo haeba tlhophiso e le sieo.
2.Sehokelo(s) se ka ya Error-Down (crc-statistics) hobane ha ho na tlhophiso ya ho tima ho mahokela.O tswelapele? [Y/N]: y
[SwitchA-Stack-Port1/1] iketse
[~SwitchA-Stack-Port1/1] khutlele
Ka mor'a moo, o hloka ho boloka tlhophiso ebe o qala switch hape:
Pholosa
Tlhokomeliso: Tokiso ea hajoale e tla ngolloa sesebelisoa. Na u batla ho tsoela pele? [Y/N]: y
logon
Tlhokomeliso: Sistimi e tla qala hape. Na o tswelapele? [Y/N]: y
4. Tima likou bakeng sa ho stacking ho master switch (mohlala)
[~SwitchA] interface stack-port 1/1
[*SwitchA-Stack-Port1/1] koala
[*SwitchA-Stack-Port1/1] iketse
5. Lokisa switjha ea bobeli ho stack ka papiso le ea pele:
pono-tsamaiso
[~HUAWEI] sisname FetolaB
[*HUAWEI] iketse
[~SwitchB] stack
[~SwitchB-stack] setho sa stack 1 ntho e tlang pele 120
[*SwitchB-stack] setho sa stack 1 domain 10
[*SwitchB-stack] setho sa stack 1 renumber 2 lefa-config
Tlhokomeliso: Litlhophiso tsa stack tsa ID 1 ea setho li tla fuoa lefa ho ID 2 ea setho
ka mor'a hore sesebelisoa se tsosolose. Na o tswelapele? [Y/N]: y
[*SwitchB-stack] tlohela
[*SwitchB] iketse
Ho lokisa likou bakeng sa stacking. Ka kopo hlokomela hore le hoja taelo "setho sa stack 1 renumber 2 lefa-config”, ID ea setho ho tlhophiso e sebelisoa ka boleng ba "1" bakeng sa SwitchB.
Sena se etsahala hobane ID ea setho ea switch e tla fetoloa feela kamora ho qala bocha mme pele ho moo switch e ntse e na le ID ea setho e lekanang le 1. Paramethara "lefa-config” e hlokahala feela e le hore kamora ho qala sesebelisoa bocha, litlhophiso tsohle tsa li-stack li boloketsoe setho sa 2, e tla ba switch, hobane ID ea setho sa eona e fetotsoe ho tloha ho boleng ba 1 ho ea ho boleng ba 2.
[~SwitchB] interface stack-port 1/1
[*SwitchB-Stack-Port1/1] segokanyimmediamentsi sa sebolokigolo sa sehlopha 10ge 1/0/1 ho 1/0/4
Tlhokomeliso: Kamora hore tlhophiso e phethe,
1.Sehokelo (s) (10GE1/0/1-1/0/4) se tla fetoleloa ho stack
mode 'me e lokisoe ka port crc-statistics trigger error-down command haeba tlhophiso e etsa joalo.
ha e eo.
2.Sehokelo(s) se ka theoha Error-Down (crc-statistics) hobane ha ho na tlhophiso ea ho koala
likarolo.
Na u batla ho tsoela pele? [Y/N]: y
[*SwitchB-Stack-Port1/1] iketse
[~SwitchB-Stack-Port1/1] khutlele
Qala hape SwitchB
Pholosa
Tlhokomeliso: Tokiso ea hajoale e tla ngolloa sesebelisoa. Na u batla ho tsoela pele? [Y/N]: y
logon
Tlhokomeliso: Sistimi e tla qala hape. Na o tswelapele? [Y/N]: y
6. Numella likou tsa stacking ho master switch. Ho bohlokoa ho ba le nako ea ho nolofalletsa likou pele ho qala bocha B ho phetheloa, hobane haeba u li bulela ka mor'a moo, switjha B e tla qala hape.
[~SwitchA] interface stack-port 1/1
[~SwitchA-Stack-Port1/1] etsolla ho koala
[*SwitchA-Stack-Port1/1] iketse
[~SwitchA-Stack-Port1/1] khutlele
7. Sheba tšebetso ea stack ka taelo “ponts'o stack"
Mohlala oa tlhahiso ea taelo ka mor'a tlhophiso e nepahetseng
ponts'o stack
——————————————————————————
MemberID Karolo ea MAC ea Bohlokoa Mofuta oa Sesebelisoa Tlhaloso
——————————————————————————
+1 Monghali 0004-9f31-d520 150 CE6850-48T4Q-EI
2 Standby 0004-9f62-1f40 120 CE6850-48T4Q-EI
——————————————————————————
+ e bonts'a sesebelisoa moo sebopeho sa taolo se kentsoeng se lula teng.
8. Boloka tlhophiso ea stack ka taelo “Pholosa" Ho seta ho felile.
и U ka boela ua sheba webosaete ea Huawei.
Ho theha phihlello
Ka holimo re sebelitse ka khokahano ea console. Hona joale re hloka ho hokela ka tsela e itseng ho switjha (stack) ka marang-rang. Ho etsa sena, e hloka sebopeho (e le 'ngoe kapa ho feta) e nang le aterese ea IP. Ka tloaelo, bakeng sa switjha, aterese e abeloa sebopeho ho VLAN ea tsamaiso kapa boema-kepe bo ikemetseng ba taolo. Empa mona, ha e le hantle, ntho e 'ngoe le e' ngoe e itšetlehile ka topology ea khokahanyo le morero o sebetsang oa phetoho.
Mohlala oa tlhophiso ea aterese bakeng sa sebopeho sa VLAN 1:
[~HUAWEI] sehokelo vlan 1
[~HUAWEI-Vlanif1] ip aterese 10.10.10.1 255.255.255.0
[~HUAWEI-Vlanif1] iketse
O ka qala ka ho hlaka Vlan mme oa e fa lebitso, mohlala:
[~Switch] leqepheng la 1
[*Switch-vlan1] lebitso TEST_VLAN (lebitso la VLAN ke boikhethelo)
Ho na le hack e nyane ea bophelo mabapi le ho reha mabitso - ngola mabitso a meaho e utloahalang ka litlhaku tse kholo (ACL, Route-map, ka linako tse ling mabitso a VLAN) ho etsa hore ho be bonolo ho li fumana faeleng ea tlhophiso. U ka e kenya tšebeletsong 😉
Kahoo, re na le VLAN, joale re e "lula" boema-kepeng bo bong. Bakeng sa khetho e hlalositsoeng ka mohlala, sena ha se hlokahale, hobane likou tsohle li ho VLAN 1 ka mokhoa oa kamehla. Haeba re batla ho lokisa boema-kepe ho VLAN e 'ngoe, sebelisa litaelo tse nepahetseng:
Tokiso ea boema-kepe ka mokhoa oa phihlello:
[~Switch] Setšoantšo sa 25GE 1/0/20
[~Switch-25GE1/0/20] phihlello ea mofuta oa sehokelo sa port
[~Switch-25GE1/0/20] phihlello ea boema-kepe vlan 10
[~Switch-25GE1/0/20] iketse
Tokiso ea boema-kepe ka mokhoa oa kutu:
[~Switch] Setšoantšo sa 25GE 1/0/20[~Switch-25GE1/0/20] kutu ea mofuta oa sehokelo
[~Switch-25GE1/0/20] port trunk pvid vlan 10 - hlakisa VLAN ea tlhaho (liforeimi ho VLAN ena li ke ke tsa ba le tag sehloohong)
[~Switch-25GE1/0/20] port trunk allow-pass vlan 1 ho 20 - lumella feela li-VLAN tse nang le li-tag ho tloha ho 1 ho isa ho 20 (mohlala)
[~Switch-25GE1/0/20] iketse
Re hlophisitse ho theha li-interfaces. Ha re feteleng ho tlhophiso ea SSH.
Re hlahisa feela sete e hlokahalang ea litaelo:
Ho fana ka lebitso ho switjha
pono-tsamaiso
[~HUAWEI] sysname SSH Server
[*HUAWEI] iketse
Ho hlahisa linotlolo
[~SSH Server] rsa local-key-pair theha // Hlahisa moamoheli oa lehae oa RSA le lipara tsa linotlolo tsa seva.
Lebitso la bohlokoa e tla ba: SSH Server_Host
Mefuta e mengata ea boholo ba linotlolo tsa sechaba ke (512 ~ 2048).
TLHOKOMELISO: Ho theha paramente ea bohlokoa ho tla nka nakoana.
Kenya likotoana ho modulus [default = 2048] : 2048
[*SSH Server] iketse
Ho theha sebopeho sa VTY
[~SSH Server] user-interface vty 0 4
[~SSH Server-ui-vty0-4] netefatso-mokgwa aaa
[SSH Server-ui-vty0-4] boemo ba litokelo tsa mosebedisi 3
[SSH Server-ui-vty0-4] protocol e kenang ssh
[*SSH Server-ui-vty0-4] tlohela
Theha mosebelisi oa lehae "client001" 'me u mo lokisetse netefatso ea password
[Seva ea SSH] aaa[Seva ea SSH-aaa] local-user client001 password irreversible-cipher
[Seva ea SSH-aaa] mosebelisi oa lehae001 boemo ba 3
[Seva ea SSH-aaa] local-user client001 service-type ssh
[Seva ea SSH-aaa] tlohela
[Seva ea SSH] ssh user client001 password ea mofuta oa netefatso
Ho kenya tshebetsong tshebeletso ya SSH ho switjha
[~SSH Server] Seva ea stelnet e thusa[*SSH Server] iketse
Taba ea ho qetela: ho theha tšebeletso-tupe bakeng sa mosebelisi oa bareki001
[~SSH Server] ssh user client001 mofuta oa tšebeletso ea stelnet[*SSH Server] iketse
Ho seta ho felile. Haeba u entse ntho e 'ngoe le e' ngoe ka nepo, u ka hokela ho switjha ka marang-rang a lehae mme u tsoele pele ho sebetsa.
Lintlha tse ling mabapi le ho theha SSH li ka fumanoa litokomaneng tsa Huawei - и .
Ho lokisa litlhophiso tsa sistimi ea mantlha
Sebakeng sena re tla sheba palo e nyane ea li-block tsa litaelo tse fapaneng bakeng sa ho theha likarolo tse tsebahalang haholo.
1. Ho beha nako ea tsamaiso le ho e hokahanya ka NTP.
Ho hlophisa nako sebakeng sa heno ho switch, o ka sebelisa litaelo tse latelang:
nako ea nako ea oache {kenya | tlosa}
nako ea nako ea oache [ UTC ] HH:MM:SS YYYY-MM-DD
Mohlala oa ho beha nako sebakeng sa heno
nako ea nako ea oache MSK eketsa 03:00:00
nako ea nako ea oache 10:10:00 2020-10-08
Ho hokahanya nako ka NTP le seva, kenya taelo e latelang:
ntp unicast-server [ tlhahiso nomoro | netefatso-keyid senotlolo-id | mohlodi-sefahleho mofuta oa sebopeho
Taelo ea mohlala bakeng sa kamahanyo ea nako ka NTP
ntp unicast-server 88.212.196.95
iketse
2. Ho sebetsa ka sesebelisoa, ka linako tse ling u hloka ho lokisa bonyane tsela e le 'ngoe - tsela ea kamehla kapa tsela ea kamehla. Ho theha litsela, sebelisa taelo e latelang:
ip tsela-static ip-aterese { mask | mask-length } { nexthop-aterese | segokanyimmediamentsi sa sebolokigolo nomoro [ nexthop-aterese ] }
Mohlala oa taelo ea ho theha litsela:
pono-tsamaiso
ip tsela-static 0.0.0.0 0.0.0.0 192.168.0.1
iketse
3. Ho lokisa mokhoa oa ho sebetsa oa protocol ea Spanning-Tree.
Ho sebelisa sesebelisoa se secha ka nepo marang-rang a teng, ke habohlokoa ho ela hloko khetho ea mokhoa oa ho sebetsa oa STP. Hape, ho ka ba molemo ho e hlophisa hang-hang. Ha re na ho lula mona nako e telele, hobane ... Sehlooho se pharalletse haholo. Re tla hlalosa feela mekhoa ea ts'ebetso ea protocol:
mokhoa oa stp { stp | qala | mstp | vbst } - ka taelo ena re khetha mokhoa oo re o hlokang. Mokhoa oa kamehla: MSTP. Hape ke mokhoa o khothaletsoang oa ts'ebetso ho li-switches tsa Huawei. Ho na le khokahano ea morao-rao le RSTP.
Mohlala:
pono-tsamaiso
stp mode mstp
iketse
4. Mohlala oa ho theha sekepe sa switjha ho hokahanya sesebelisoa sa ho qetela.
Ha re shebeng mohlala oa ho hlophisa boema-kepe ba phihlello ho sebetsa sephethephethe ho VLAN10
[SW] segokanyimmediamentsi sa sebolokigolo 10ge 1/0/3
[SW-10GE1/0/3] phihlello ea mofuta oa sehokelo sa port
[SW-10GE1/0/3] port default vlan 10
[SW-10GE1/0/3] stp edged-port thusa
[*SW-10GE1/0/3] tlohela
Ela hloko taelo "stp edged-port thusa” — e o lumella ho potlakisa ts'ebetso ea phetoho ea boema-kepe ho ea sebakeng sa ho fetisa. Leha ho le joalo, ha ua lokela ho sebelisa taelo ena likoung tse hokahaneng le li-switch tse ling.
Hape, taelo "stp bpdu-sefa se thusa".
5. Mohlala oa ho theha Port-Channel ka mokhoa oa LACP bakeng sa ho hokahanya le li-switch kapa li-server tse ling.
Mohlala:
[SW] interface eth-trunk 1[SW-Eth-Trunk1] kutu ea mofuta oa sehokelo
[SW-Eth-Trunk1] port trunk allow-pass vlan 10
[SW-Eth-Trunk1] mokhoa oa lacp-static (kapa u ka sebelisa lacp-matla)
[SW-Eth-Trunk1] tlohela
[SW] segokanyimmediamentsi sa sebolokigolo 10ge 1/0/1
[SW-10GE1/0/1] eth-Trunk 1
[SW-10GE1/0/1] tlohela
[SW] segokanyimmediamentsi sa sebolokigolo 10ge 1/0/2
[SW-10GE1/0/2] eth-Trunk 1
[*SW-10GE1/0/2] tlohela
Ha re lebale ka “iketse” ebe re sebetsa ka sebopeho eth-trunk 1.
U ka sheba boemo ba sehokelo se kopaneng ka taelo "bonts'a eth-trunk".
Re hlalositse lintlha tsa mantlha tsa ho theha li-switches tsa Huawei. Ha e le hantle, u ka khona ho teba le ho feta sehloohong 'me lintlha tse' maloa ha li hlalosoe, empa re lekile ho bontša litaelo tse ka sehloohong, tse ratoang haholo bakeng sa ho seta ha pele.
Re tšepa hore "manual" ena e tla u thusa ho theha li-switches tsa hau kapele.
Hape ho tla ba monate haeba u ngola litlhalosong litaelo tseo u nahanang hore ha li eo sehloohong, empa li ka boela tsa nolofatsa tlhophiso ea li-switch. Joalo ka mehla, re tla thabela ho araba lipotso tsa hau.
Source: www.habr.com