实验 trunk配置
拓扑:
实验步骤
(1) 配置各路由器相应地址,以备测试
R1(config)#interface f0/0
R1(config-if)#ip ad 192.168.0.1 255.255.255.0
R1(config-if)#no shut
R2 R3 R4 配置类似与R1
(2) 交换机配置
Switch(config)#hostname sw1
sw1(config)#vlan 2
sw1(config-vlan)#vlan 3
sw1(config-vlan)#exit
sw1(config)#interface F0/1
sw1(config-if)#switchport mode access
sw1(config-if)#switchport access vlan 2
sw1(config-if)#inter f0/2
sw1(config-if)#sw mode ac
sw1(config-if)#sw ac vlan 3
SW2配置:
Switch(config)#hostname SW2
SW2(config)#vlan 2
SW2(config-vlan)#vlan 3
SW2(config-vlan)#exit
SW2(config)#interface f0/1
SW2(config-if)#sw mod ac
SW2(config-if)#sw ac vlan 2
SW2(config-if)#interface f0/2
SW2(config-if)#sw mode ac
SW2(config-if)#sw ac vlan 3
TRUNK配置
sw1(config)#interface f0/3
sw1(config-if)#switchport trunk encapsulation dot1q
sw1(config-if)#switchport mode trunk
sw2(config)#interface f0/3
sw2(config-if)#switchport trunk encapsulation dot1q
sw2(config-if)#switchport mode trunk //接口配置成trunk
实验测试;
R1与R3 R2与R4 都属于同一VLAN 可以相互通信
R1>en
R1#ping 192.168.0.3 //R1 与R3 测试是否通信
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.0.3, timeout is 2 seconds:
!!!!!
r2#ping 192.168.0.4
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.0.4, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 66/88/94 ms
r2#
SW2#show interfaces f0/3 switchport
Name: Fa0/3
Switchport: Enabled
Administrative Mode: trunk
Operational Mode: trunk //当前接口trunk模式
Administrative Trunking Encapsulation: dot1q
Operational Trunking Encapsulation: dot1q
Negotiation of Trunking: On
配置 trunk allowed
sw1(config)#interface f0/3
sw1(config-if)#switchport trunk allowed vlan 2,200 //f0/3链路只允许vlan 2 200数据通过,则R1 R3可以通信,R2 R4不可以通信
R1#ping 192.168.0.3
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.0.3, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 65/81/94 ms
R1#
r2#ping 192.168.0.4
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.0.4, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
r2#
配置native VLAN
sw1(config)#interface f0/3
sw1(config-if)#switchport trunk native vlan 2
sw2(config)#interface f0/3
sw2(config-if)#switchport trunk native vlan 2
sw1(config)#do show inter tr
Port Mode Encapsulation Status Native vlan
Fa0/3 on 802.1q trunking 2
//可以看到trunk链路的native vlan 改为2了
调试
当2个交换机native VLAN不一样时会出现什么后果。
sw1(config)#interface f0/3
sw1(config-if)#switchport trunk native vlan 2
sw1(config-if)#
SW2(config)#interface f0/3
SW2(config-if)#switchport TRunk native vlan 3
SW2(config-if)#
%CDP-4-NATIVE_VLAN_MISMATCH: Native VLAN mismatch discovered on FastEthernet0/3 (2), with SW2 FastEthernet0/3 (3).
R1#ping 192.168.0.4 //测试r1与r4是否可以通信
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.0.4, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 78/87/94 ms
R1#
原因:S1的f0/3接口的native vlan 是 vlan 2,来自vlan 2的数据原封不动的从f0/3接口发送到sw 2上,sw2的f0/3接口的native vlan 是 vlan 3,sw2收到一个没有经过封装的数据帧后认为这个帧应该是vlan 3的数据帧,发送r4,从r4返回r1也是类似的