本書以"理實一體化”"做中學,學中做”"理論知識夠用�,技能為主”為教學理念,以構(gòu)建中小型企業(yè)網(wǎng)絡(luò)工程為背景���,采用項目化教學模式����,通過任務(wù)驅(qū)動的形式展開講解���。全書以華為設(shè)備為核心����,詳細介紹了交換機����、路由器等網(wǎng)絡(luò)設(shè)備的配置與管理操作命令,緊密結(jié)合實際工程場景�,幫助學生掌握網(wǎng)絡(luò)搭建的核心技能。每個項目均設(shè)計為具體任務(wù)���,學生通過完成從網(wǎng)絡(luò)規(guī)劃�����、設(shè)備配置到故障排查等一系列任務(wù)�,逐步提升對網(wǎng)絡(luò)架構(gòu)的全面理解和實踐動手能力。書中內(nèi)容注重實用性與可操作性���,圖文并茂���,語言通俗易懂,既適合課堂教學�,也便于學生自學。本書旨在培養(yǎng)學生在真實工作環(huán)境中解決實際問題的能力�����,為其未來從事網(wǎng)絡(luò)工程相關(guān)工作奠定堅實基礎(chǔ)����。
邵云娜����,女,副教授�����,高級工程師,高級技師����,網(wǎng)絡(luò)工程師,技師����,浙江安防職業(yè)技術(shù)學院教師,主要研究方向為計算機網(wǎng)絡(luò)和信息安全���。兩次獲校級教學能力比賽二�、三等獎���,榮獲"十佳教師”�����、"青年骨干教師”等稱號�����,課程被評為"百堂精彩一課”����。主持市廳級課題4項、橫向課題1項�,發(fā)表SCI論文2篇、北大核心1篇�,申請專利3項、軟著5項并成功轉(zhuǎn)化1項����。多次為政府、企業(yè)提供技術(shù)培訓(xùn)和評審服務(wù)�,參與溫州市中職技能大賽裁判等工作。著作方向計算機網(wǎng)絡(luò)技術(shù)和計算機基礎(chǔ)����,主編教材4本,其中1本獲浙江省"十四五”重點教材立項�����,建設(shè)在線開放課程2門�����。
項目 1 認識局域網(wǎng)··········································································································1
任務(wù) 1 局域網(wǎng)基礎(chǔ)知識··································································································2
1.1.1 了解局域網(wǎng)···································································································2
1.1.2 理解網(wǎng)絡(luò)拓撲結(jié)構(gòu)··························································································5
1.1.3 理解網(wǎng)絡(luò)體系結(jié)構(gòu)··························································································9
1.1.4 理解 IP 地址和子網(wǎng)劃分················································································.16
任務(wù) 2 網(wǎng)絡(luò)工程規(guī)劃與設(shè)計·························································································.25
1.2.1 設(shè)計思路···································································································.25
1.2.2 方案實現(xiàn)···································································································.28
項目 2 搭建辦公網(wǎng)絡(luò)····································································································.31
任務(wù) 1 交換機基礎(chǔ)知識·······························································································.32
2.1.1 認識交換機································································································.32
2.1.2 通過 Console 端口配置交換機·········································································.34
2.1.3 使用 Telnet 方式登錄交換機···········································································.36
2.1.4 使用 eNSP 網(wǎng)絡(luò)仿真平臺···············································································.38
任務(wù) 2 搭建部門網(wǎng)絡(luò)··································································································.42
2.2.1 按部門劃分 VLAN 隔離辦公網(wǎng)絡(luò) ····································································.42
2.2.2 采用交換機級聯(lián)實現(xiàn)跨交換機同部門的連通 ······················································.46
2.2.3 實現(xiàn)不同部門之間的網(wǎng)絡(luò)連通 ········································································.49
2.2.4 使用 DHCP 分配 IP 地址 ···············································································.52
任務(wù) 3 提高網(wǎng)絡(luò)冗余性·······························································································.56
2.3.1 使用端口鏈路聚合技術(shù)增加網(wǎng)絡(luò)帶寬 ·······························································.56
2.3.2 啟用生成樹協(xié)議解決冗余鏈路引起的環(huán)路問題 ···················································.59
2.3.3 使用堆疊技術(shù)增加網(wǎng)絡(luò)帶寬···········································································.64
項目 3 搭建園區(qū)網(wǎng)絡(luò)····································································································.68
任務(wù) 1 認識路由器·····································································································.69
3.1.1 路由器基礎(chǔ)知識··························································································.69
3.1.2 配置路由器子接口實現(xiàn) VLAN 間的通信 ···························································.71
任務(wù) 2 使用靜態(tài)路由實現(xiàn)園區(qū)網(wǎng)絡(luò)的互聯(lián)·······································································.73
3.2.1 使用靜態(tài)路由實現(xiàn)網(wǎng)絡(luò)互聯(lián)···········································································.73
3.2.2 使用默認路由實現(xiàn)全網(wǎng)互聯(lián)···········································································.75
任務(wù) 3 使用 VRRP 技術(shù)提高網(wǎng)絡(luò)的可靠性 ······································································.78
項目 4 實現(xiàn)區(qū)域網(wǎng)絡(luò)互聯(lián)·····························································································.82
任務(wù) 1 使用 RIP 實現(xiàn)區(qū)域網(wǎng)絡(luò)互聯(lián)················································································.83
4.1.1 認識 RIP ···································································································.83
4.1.2 使用 RIP 實現(xiàn)區(qū)域網(wǎng)絡(luò)互通···········································································.88
任務(wù) 2 使用 OSPF 協(xié)議實現(xiàn)區(qū)域網(wǎng)絡(luò)互聯(lián) ·······································································.92
4.2.1 認識 OSPF 協(xié)議 ··························································································.92
4.2.2 使用 OSPF 協(xié)議實現(xiàn)區(qū)域網(wǎng)絡(luò)互通 ··································································.99
任務(wù) 3 使用路由重分布實現(xiàn)多路由協(xié)議之間的網(wǎng)絡(luò)互聯(lián)·····················································106
4.3.1 RIP 與 OSPF 的路由雙向重分布······································································106
4.3.2 直連路由和靜態(tài)路由重分布到 OSPF 協(xié)議··························································110
項目 5 Internet 接入及網(wǎng)絡(luò)安全 ···················································································115
任務(wù) 1 訪問控制列表··································································································116
5.1.1 訪問控制列表基礎(chǔ)配置·················································································116
5.1.2 高級訪問控制列表配置·················································································126
5.1.3 復(fù)雜訪問控制列表配置·················································································132
任務(wù) 2 防火墻和 NAT·································································································139
5.2.1 防火墻基礎(chǔ)配置··························································································139
5.2.2 Basic NAT 配置···························································································149
5.2.3 NAPT 配置 ································································································154
5.2.4 NAT Server 配置 ·························································································157
任務(wù) 3 VPN 技術(shù)及應(yīng)用······························································································162
5.3.1 GRE 隧道應(yīng)用 ····························································································162
5.3.2 IPSec VPN 技術(shù) ··························································································172
項目 6 搭建無線局域網(wǎng)································································································183
任務(wù) 1 搭建企業(yè)無線網(wǎng)絡(luò)····························································································184
6.1.1 WLAN 基礎(chǔ)知識 ·························································································184
6.1.2 企業(yè) WLAN AC+AP 方式組網(wǎng) ········································································187
任務(wù) 2 WLAN 工勘····································································································194
6.2.1 信號衰減測試·····························································································194
6.2.2 現(xiàn)場工勘···································································································196
項目 7 中小型企業(yè)網(wǎng)安全架構(gòu)······················································································203
7.1 方案總體設(shè)計 ······································································································203
7.2 外網(wǎng)出口區(qū)·········································································································204
7.3 數(shù)據(jù)中心區(qū)·········································································································206
7.4 運維管理區(qū)·········································································································207
7.5 終端接入?yún)^(qū)·········································································································211
7.6 桌面云服務(wù)器區(qū) ···································································································213
