Hello,你是说你做通了,但是现在的现象是2网段能ping通1网段,但不能访问么?
我先把我实验配置你给看看,路由器我用的2611实物。拓扑:
R-H3C 10.10.10.1
|
R-2611 10.10.10.10
| |
N1 N2 192.168.10.x 192.168.1.x
Router#sh run
Building configuration...
Current configuration : 776 bytes
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
ip subnet-zero
ip cef
!
!
no ip domain lookup
!
ip audit po max-events 100
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Ethernet0/0
ip address 10.10.10.10 255.255.255.0
ip nat outside
half-duplex
!
interface Ethernet0/1
ip address 192.168.1.1 255.255.255.0 secondary
ip address 192.168.10.201 255.255.255.0
ip nat inside
half-duplex
!
ip nat inside source list 1 interface Ethernet0/0 overload
ip http server
no ip http secure-server
ip classless
ip route 0.0.0.0 0.0.0.0 10.10.10.1
!
!
access-list 1 permit any
!
!
!
!
!
!
line con 0
line aux 0
line vty 0 4
!
!
end
Router#
你把你配置抓上来看看吧,可能是做ACL的问题。
R1(conf)#int fa0/0.100 (创建个子接口)
R1(conf-subit)#enea do 100 (100为VLAN 直)
R1(conf-subit)#ip add 192.168.1.1 255.255.255.0 (为PC机的网关)
R1(conf)# int fa0/0
R1(conf-if)#no shutdown (总接口启动IP)
S1(swith)#vlan da
(swithvlan)#vlan 100
S1(conf)#int fa0/24
S1(conf—if)#sw mo tr (启动)
S1(conf—if)#sw tr en do (并封装)
S1(conf)#int fa0/1
S1(conf—if)#sw acc vlan 100 (把端口+++入到vlan 100)
vlan间路由
做一个端口映射应该就可以了,将1.1网段的WEB服务器的端口映射出来,应该就可以了。
加我百度HI详解
内容全部来源于网络收集,如有侵权,请联系网站删除:QQ:24596024