企业局域网设计毕业论文

ailaopo8
2 ℃
2020-04-28

整理文档很辛苦，赏杯茶钱您下走！

还剩 ... 页未读，继续阅读 >>

免费阅读已结束，点击下载阅读编辑剩下 ... 页

阅读已结束，您可以下载文档离线阅读编辑

资源描述

摘要I摘要本设计方案是关于小型企业局域网的设计，设计方案分为三个模块：交换模块、Internet接入模块、远程访问模块。根据各部门职能不同把交换模块划分为不同的VLAN，从而减少了广播冲突提高了传输效率，通过部署ACL限制用户的访问，有效地保护敏感数据，提高了网络安全性。借助三层交换机的路由功能，可以实现各VLAN间数据包高速转发，解决VLAN之间的传输瓶颈。Internet接入模块功能主要通过路由器来实现，它的作用主要是建立外网和企业网的正常通信。使企业网的用户访问Internet同时Internet用户能在一定程度上访问企业网。通过配置NAT(NetAddressTranslation)，不仅是企业网用户可以访问Internet，而且对外隐藏企业网内部地址，从而实现地址保护。远程访问模块是针对移动用户设计的。通过VPN（VirtualPrivateNetwork）技术可以在公共网络的两个端点间建立一条逻辑连接，使在外办公人员可以通过Internet访问公司内部网，极大地提高了办公效率，同时免去了高昂的专线租用费用。关键字：企业局域网、虚拟局域网、网络地址转换AbstractIIAbstractThisdesignproposalisaboutthedesignofsmallbusinesslocalareanetwork,whichisdividedintothreemodules:switchingmodule,Internetaccessmodule,remoteaccessmodule.AccordingtothefunctionsofdifferentdepartmentsdivideswitchingmoduleintodifferentVLAN,thusreducingthebroadcastconflictandimprovingtransmissionefficiency,throughthedeploymentofACLlimituser'saccesstoasub-network,Protectthesensitivedataeffectiveandimprovenetworksecurity.WiththeroutingfunctionofLayer3Switchrouting,eachVLANcanbeachievedthehigh-speedpacketforwarding,solvingthetransmissionbottleneck.Internetaccessmodulefunctionsprimarilyachievedthroughtherouter,whichfunctionismainlytheroleofnetworksandenterprisenetworksoutsidethenormalcommunicationwithinthegateway.ThenenterprisenetworkuserscanaccessInternetwhileInternetuserscanaccessthecorporatenetworktosomeextent.ByconfiguringNAT(NetAddressTranslation),notonlytheenterprisenetworkuserscanaccesstheInternet,butalsoachievedtheprotectionofaddressbyhidingtheinternalcorporatenetworkaddress.RemoteAccessModuleisdesignedformobileusers.ItcouldestablishalogicalconnectioninthetwoendpointsofpublicnetworksthroughtheVPN(VirtualPrivateNetwork)technology,sothatstaffcanaccessthecorporatenetworkovertheInternet,greatlyimprovedtheofficeefficiencywhileeliminatingthehighcostofleasedline.Keywords:EnterpriseLAN,VLAN,NAT目录III目录摘要.............................................................IABSTRACT..........................................................II目录...........................................................III第一章引言......................................................11.1课题的背景.................................................11.2国内外企业局域网建设现状...................................11.3企业局域网建设的目标与意义.................................2第二章可行性研究和需求分析........................................42.1技术可行性.................................................42.1.1NAT技术...............................................42.1.2VLAN技术..............................................52.1.3三层交换技术..........................................52.1.4ACL技术...............................................52.2需求分析...................................................62.2.1带宽性能需求..........................................62.2.2网络安全需求..........................................62.2.3应用服务需求..........................................62.3设计所需环境...............................................72.3.1硬件要求..............................................72.3.2软件要求..............................................7第三章系统设计方案................................................83.1系统设计原则...............................................83.1.1实用性................................................83.1.2安全性................................................83.1.3可扩充性..............................................83.1.4可管理性..............................................8目录IV3.1.5高性能价格比..........................................93.2网络设备选型...............................................93.3系统总体设计和拓扑结构.....................................93.3.1系统总体设计方案.....................................103.3.2VLAN划分和IP地址规划................................12第四章交换模块...................................................144.1核心层交换机配置..........................................144.1.1设置核心交换机名称...................................144.1.2启动三层交换机的路由功能.............................144.1.3核心交换机接口设置...................................144.1.4创建服务器群VLAN7....................................154.1.5配置静态路由.........................................154.1.6默认路由配置.........................................164.2汇聚层交换机配置..........................................164.2.1设置交换机名称.......................................164.2.2配置G0/1接口........................................174.2.3创建VLAN10-40........................................174.2.4为各VLAN分配IP地址.................................174.2.5将端口划入各个VLAN中................................184.2.6启动3560交换机路由功能..............................184.2.7默认路由设置.........................................194.3DHCP设置..................................................194.3.1配置3560为DHCP服务器...............................204.3.2配置客户端自动获取IP.................................21第五章INTERNET接入模块...........................................225.1路由器基本参数配置........................................235.2设置路由器R-2811-A各接口参数.............................245.2.1路由器F0/0接口配置..................................255.2.2路由器F0/1接口配置..................................25目录V5.2.3验证路由器接口IP配置................................255.3NAT设置...................................................265.3.1设置路由器NAT.......