XX大学计算机科学与技术学院计算机网络课程设计报告——校园网构建方案的设计和实现专业班级：学生姓名：学号：指导教师：日期：一．设计任务及要求1.任务：某高校现有三个地理位置分离的分校区，每个校区入网信息点有2000多个，现准备通过教科网接入因特网。

而从教科网只申请到4个C类网络（222.191.1.0-222.191.4.0）,为了安全，要求每个分校区的学生公寓子网和教师子网不在同一个广播域。

同时，学校有若干台应用服务器，同时对内和对外提供web等网络服务。

设计网络构建方案并实施该校园网络。

2.要求：(1) 根据具体情况，完成需求分析(2) 列出实验所需设备，完成网络拓扑结构图(3) 完成各项设备的具体配置(4) 调试运行二．基本思路及相关理论1.基本思路：(1)由于每个校区入网信息点有2000多个，C类网络无法满足该数量级的主机地址需求，因此在三个校区以及服务器区中使用B类私网地址172.16.0.0。

(2)由于校园网内使用的是私网地址，所以需要在边界路由器上配置网络地址转换（NAT），校园网内主机访问外网时使用动态地址转换，内网服务器使用静态地址转换来给外网提供服务。

(3)由于每个校区入网信息点有2000多个，若手动为每台主机配置ip地址，那么工程量是极大的，而且主机的添加与删除对网络的影响也较大。

为了解决这一问题，并且便于网络管理，需要配置DHCP服务。

(4)任务要求每个分校区的学生公寓子网和教师子网不在同一个广播域，那么使用VLAN技术来满足这一要求，创建两个VLAN，分别是VlanStudent和VlanTeacher。

(5)使用三层交换机来实现VlanStudent和VlanTeacher之间的通信，使用路由器来实现不同校区之间的通信。

(6)配置DNS服务器给校园网内的WEB Server和提供域名解析，给用户提供人性化的服务。

2.相关理论：(1)ip的层次结构、寻址方案以及每种类别的ip地址所能提供的最大主机数(2)子网划分的原理及步骤(3)可变长子网掩码（VLSM）对ip地址利用率的最大化(4)vlan技术分隔广播域(5)三层交换机实现VLAN间路由(6)动态路由协议OSPF实现路由汇聚，提供不同校区间的路由(7)使用命令default-information originate来向OSPF域中注入默认路由(8)主机跨网段请求DNS服务的实现三．方案设计（网络设备和拓扑结构）四．网络的具体配置(1)三个校区以及服务器区的接入层交换机提供足够多的以太网接口，使用默认配置即可。

(2)汇聚层交换机的配置a.校区一的三层交换机的配置如下：Building configuration...Current configuration : 1868 bytes!version 12.2no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname Switch!ip dhcp excluded-address 172.16.3.254ip dhcp excluded-address 172.16.7.254!ip dhcp pool VlanStudentnetwork 172.16.0.0 255.255.252.0default-router 172.16.3.254dns-server 172.16.48.30ip dhcp pool VlanTeachernetwork 172.16.4.0 255.255.252.0default-router 172.16.7.254dns-server 172.16.48.30ip routing!interface FastEthernet0/1no switchportno ip addressduplex autospeed autoshutdown!interface FastEthernet0/2!interface FastEthernet0/3!interface FastEthernet0/4interface FastEthernet0/5!interface FastEthernet0/6!interface FastEthernet0/7!interface FastEthernet0/8!interface FastEthernet0/9!interface FastEthernet0/10!interface FastEthernet0/11!interface FastEthernet0/12!interface FastEthernet0/13!interface FastEthernet0/14!interface FastEthernet0/15!interface FastEthernet0/16!interface FastEthernet0/17!interface FastEthernet0/18!interface FastEthernet0/19!interface FastEthernet0/20!interface FastEthernet0/21!interface FastEthernet0/22no switchportip address 172.16.48.1 255.255.255.252 duplex autospeed auto!interface FastEthernet0/23switchport access vlan 3switchport mode accessinterface FastEthernet0/24switchport access vlan 2switchport mode access!interface GigabitEthernet0/1!interface GigabitEthernet0/2!interface Vlan1no ip addressshutdown!interface Vlan2ip address 172.16.3.254 255.255.252.0!interface Vlan3ip address 172.16.7.254 255.255.252.0!router ospf 100log-adjacency-changesnetwork 172.16.0.0 0.0.3.255 area 0network 172.16.4.0 0.0.3.255 area 0network 172.16.48.0 0.0.0.3 area 0!ip classless!line con 0line vty 0 4login!endb.校区二的三层交换机的配置如下：Building configuration...Current configuration : 1888 bytes!version 12.2no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption!hostname Switch!ip dhcp excluded-address 172.16.23.254 ip dhcp excluded-address 172.16.19.254 !ip dhcp pool VlanStudentnetwork 172.16.16.0 255.255.252.0default-router 172.16.19.254dns-server 172.16.48.30ip dhcp pool VlanTeachernetwork 172.16.20.0 255.255.252.0default-router 172.16.23.254dns-server 172.16.48.30ip routing!no ip domain-lookup!interface FastEthernet0/1no switchportno ip addressduplex autospeed auto!interface FastEthernet0/2!interface FastEthernet0/3!interface FastEthernet0/4!interface FastEthernet0/5!interface FastEthernet0/6!interface FastEthernet0/7!interface FastEthernet0/8!interface FastEthernet0/9!interface FastEthernet0/10!interface FastEthernet0/11!interface FastEthernet0/12!interface FastEthernet0/13interface FastEthernet0/14!interface FastEthernet0/15!interface FastEthernet0/16!interface FastEthernet0/17!interface FastEthernet0/18!interface FastEthernet0/19!interface FastEthernet0/20!interface FastEthernet0/21!interface FastEthernet0/22no switchportip address 172.16.48.5 255.255.255.252 duplex autospeed auto!interface FastEthernet0/23switchport access vlan 3switchport mode access!interface FastEthernet0/24switchport access vlan 2switchport mode access!interface GigabitEthernet0/1!interface GigabitEthernet0/2!interface Vlan1no ip addressshutdown!interface Vlan2ip address 172.16.19.254 255.255.252.0 !interface Vlan3ip address 172.16.23.254 255.255.252.0router ospf 100log-adjacency-changesnetwork 172.16.16.0 0.0.3.255 area 0network 172.16.20.0 0.0.3.255 area 0network 172.16.48.4 0.0.0.3 area 0!ip classless!line con 0line vty 0 4login!endc.校区三的三层交换机的配置如下：Current configuration : 1888 bytes!version 12.2no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption!hostname Switch!ip dhcp excluded-address 172.16.35.254ip dhcp excluded-address 172.16.39.254!ip dhcp pool VlanStudentnetwork 172.16.32.0 255.255.252.0default-router 172.16.35.254dns-server 172.16.48.30ip dhcp pool VlanTeachernetwork 172.16.36.0 255.255.252.0default-router 172.16.39.254dns-server 172.16.48.30ip routing!no ip domain-lookup!interface FastEthernet0/1no switchportno ip addressduplex autospeed autointerface FastEthernet0/2!interface FastEthernet0/3!interface FastEthernet0/4!interface FastEthernet0/5!interface FastEthernet0/6!interface FastEthernet0/7!interface FastEthernet0/8!interface FastEthernet0/9!interface FastEthernet0/10!interface FastEthernet0/11!interface FastEthernet0/12!interface FastEthernet0/13!interface FastEthernet0/14!interface FastEthernet0/15!interface FastEthernet0/16!interface FastEthernet0/17!interface FastEthernet0/18!interface FastEthernet0/19!interface FastEthernet0/20!interface FastEthernet0/21!interface FastEthernet0/22no switchportip address 172.16.48.9 255.255.255.252duplex autospeed auto!interface FastEthernet0/23switchport access vlan 3switchport mode access!interface FastEthernet0/24switchport access vlan 2switchport mode access!interface GigabitEthernet0/1!interface GigabitEthernet0/2!interface Vlan1no ip addressshutdown!interface Vlan2ip address 172.16.35.254 255.255.252.0 !interface Vlan3ip address 172.16.39.254 255.255.252.0 !router ospf 100log-adjacency-changesnetwork 172.16.32.0 0.0.3.255 area 0 network 172.16.36.0 0.0.3.255 area 0 network 172.16.48.8 0.0.0.3 area 0!ip classless!line con 0line vty 0 4login!end(3)核心层路由器的配置a.与校区一相连的路由器Router1Building configuration...Current configuration : 825 bytes!version 12.4no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption!hostname Router!no ip domain-lookup!interface FastEthernet0/0ip address 172.16.48.2 255.255.255.252 duplex autospeed auto!interface FastEthernet0/1no ip addressduplex autospeed autoshutdown!interface Serial0/0/0ip address 172.16.48.26 255.255.255.252 clock rate 4000000!interface Serial0/0/1ip address 172.16.48.21 255.255.255.252 !interface Vlan1no ip addressshutdown!router ospf 100log-adjacency-changesnetwork 172.16.48.0 0.0.0.3 area 0network 172.16.48.20 0.0.0.3 area 0network 172.16.48.24 0.0.0.3 area 0!ip classless!line con 0exec-timeout 0 0logging synchronousline vty 0 4login!endb.与校区二相连的路由器Router2Building configuration...Current configuration : 825 bytes!version 12.4no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption!hostname Router!no ip domain-lookup!interface FastEthernet0/0ip address 172.16.48.6 255.255.255.252 duplex autospeed auto!interface FastEthernet0/1no ip addressduplex autospeed autoshutdown!interface Serial0/0/0ip address 172.16.48.25 255.255.255.252 !interface Serial0/0/1ip address 172.16.48.13 255.255.255.252 clock rate 4000000!interface Vlan1no ip addressshutdown!router ospf 100log-adjacency-changesnetwork 172.16.48.4 0.0.0.3 area 0network 172.16.48.24 0.0.0.3 area 0network 172.16.48.12 0.0.0.3 area 0ip classless!line con 0exec-timeout 0 0logging synchronousline vty 0 4login!endc.与校区三相连的路由器Router3Building configuration...Current configuration : 806 bytes!version 12.4no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption!hostname Router!no ip domain-lookup!interface FastEthernet0/0ip address 172.16.48.10 255.255.255.252 duplex autospeed auto!interface FastEthernet0/1no ip addressduplex autospeed autoshutdown!interface Serial0/0/0ip address 172.16.48.17 255.255.255.252 !interface Serial0/0/1ip address 172.16.48.14 255.255.255.252 !interface Vlan1no ip addressshutdownrouter ospf 100log-adjacency-changesnetwork 172.16.48.8 0.0.0.3 area 0network 172.16.48.12 0.0.0.3 area 0network 172.16.48.16 0.0.0.3 area 0!ip classless!line con 0exec-timeout 0 0logging synchronousline vty 0 4login!endd.校园网的出口路由器Router4Building configuration...Current configuration : 1836 bytes!version 12.4no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption!hostname Router!no ip domain-lookup!interface FastEthernet0/0ip address 172.16.79.254 255.255.240.0 ip nat insideduplex autospeed auto!interface FastEthernet0/1ip address 172.16.48.29 255.255.255.252 ip nat insideduplex autospeed auto!interface Serial0/0/0ip address 172.16.48.18 255.255.255.252ip nat insideclock rate 4000000!interface Serial0/0/1ip address 172.16.48.22 255.255.255.252ip nat insideclock rate 4000000!interface Serial0/2/0ip address 222.191.1.1 255.255.255.0ip nat outsideclock rate 4000000!interface Serial0/2/1no ip address!interface Vlan1no ip addressshutdown!router ospf 100log-adjacency-changesnetwork 172.16.48.16 0.0.0.3 area 0network 172.16.48.20 0.0.0.3 area 0network 172.16.64.0 0.0.15.255 area 0network 172.16.48.28 0.0.0.3 area 0network 222.191.1.0 0.0.0.255 area 0default-information originate!ip nat pool Campus 222.191.1.3 222.191.1.251 netmask 255.255.255.0 ip nat pool Campus1 222.191.2.1 222.191.2.254 netmask 255.255.255.0 ip nat inside source list 1 pool Campus overloadip nat inside source static 172.16.64.1 222.191.1.254ip nat inside source static 172.16.64.2 222.191.1.253ip nat inside source static 172.16.48.30 222.191.1.252ip classlessip route 0.0.0.0 0.0.0.0 222.191.1.2!access-list 1 permit 172.16.0.0 0.0.3.255access-list 1 permit 172.16.4.0 0.0.3.255access-list 1 permit anyaccess-list 1 permit 172.16.16.0 0.0.3.255access-list 1 permit 172.16.20.0 0.0.3.255access-list 1 permit 172.16.32.0 0.0.3.255access-list 1 permit 172.16.36.0 0.0.3.255 !line con 0exec-timeout 0 0logging synchronousline vty 0 4login!ende.外网的路由器Router5Building configuration...Current configuration : 635 bytes!version 12.4no service timestamps log datetime msecno service timestamps debug datetime msec no service password-encryption!hostname Router!no ip domain-lookup!interface FastEthernet0/0ip address 222.191.5.254 255.255.255.0duplex autospeed auto!interface FastEthernet0/1no ip addressduplex autospeed autoshutdown!interface Serial0/0/0ip address 222.191.1.2 255.255.255.0!interface Serial0/0/1no ip addressshutdown!interface Vlan1no ip addressshutdown!ip classless!line con 0exec-timeout 0 0logging synchronous line vty 0 4login!end(4)服务器的配置a.WEB服务器的配置如下：五.调试运行过程1.校区一ping校区二2.校区一ping校区三3.校区二ping外网主机4.校区三ping Web服务器5.校区三ping Ftp服务器6.外部主机ping内网Web服务器7.外部主机ping内网Ftp服务器六．调试过程中出现的问题及相应解决办法1.问题：在网络规划中要使用DHCP服务来自动给主机分配ip地址，但是主机请求DHCP服务的数据包是广播包，无法跨越路由器。