論文標準WORD格式排版 50頁

1 摘要
摘 要：“基于Cisco技術的某學校網絡規(guī)劃設計與實現(xiàn)”，在這個設計中用到了Cisco的交換與路由技術、Cisco的安全技術等等。
基于Cisco技術的某學校網絡規(guī)劃設計與實現(xiàn)是完成一個學校的網絡通信，用有限的資金最優(yōu)的完成網絡通信問題。學校的幾個主要地方都可以在內部進行通信也可以和外部進行通信。在這個設計中分成了三個層次，最上面是核心層，用的是千兆的帶寬；其次是分布層，用的是百兆的帶寬；最下面是接入層，在接入層中針對不同的用戶需求，用不同的帶寬，但以十兆為大多數(shù)。每個不同的層次有不同的功能，核心層在學校的中心機房，主要負責這個學校的網絡維護，內部網絡與外部網絡的通信，提供高的可靠性，提供冗余鏈路等等；分布層是網絡核心層和接入層之間的分界點，這一層主要功能實現(xiàn)如策略、安全、VLAN、路由間的重分布，靜態(tài)和動態(tài)路由選擇協(xié)議之間的劃分，介質翻譯等等；接入層是為用戶提供對網絡中的本地網段的訪問，對分布層的訪問控制和策略進行支持，建立獨立的沖突域等等。
在這個設計中最重要也是最關鍵的是Cisco公司的交換機和路由器進行配置，在配置時是按照設計時的層次來的這樣可以減少出錯并且能更加的體現(xiàn)每一層次的特點、功能。加在遠程訪問路由器后面的PIX防火墻是Cisco公司著名的軟硬件結合的專用安全設備，所有流經PIX的數(shù)據(jù)都必須接受嚴格而全面的檢驗，檢驗內容包括數(shù)據(jù)的源和目標地址、TCP隨機序列號、TCP端口號和附加標志等，只有滿足特定條件的數(shù)據(jù)才能穿過這道防火墻。
在網絡規(guī)劃和設計過程中，從完成拓撲到最后的測試都非常順利。
關鍵詞：Cisco 核心層 分布層 接入層 PIX防火墻

2 Abstract
Abstract: "Based on Cisco technology in a school network design and implementation " In this design used in the Cisco exchange and routing technology、Cisco's security technology, and so on.
Based on Cisco technology in a school network planning 、design and implementation of a complete communications network of schools, with limited funds to complete the optimal network communications. Several schools are the main places in the internal communication can and external communications. In the design carved into three levels, the top of the core layer, with the gigabit bandwidth; Secondly, the distribution layer, the 100M is the bandwidth; Access is the lowermost layer, access layer for different needs of users with different bandwidth. But for the majority of advances.，each different levels have different functions, the core layer in the center of the school room, primarily responsible for the maintenance of the school network, the internal network and external communications network to provide high reliability, provide redundant links, and so on. Distribution of the core layer is the network layer and the access layer boundaries, This layer of the main functions of achieving such as strategy, security, VLAN, the re-routing distribution, Static and dynamic routing agreement between the division and medium interpreters; Access layer is to provide users of the network of local network visit to the distribution layer of access control and support strategy, the establishment of an independent conflict-domain, and so on.
In this design the most important and most crucial is Cisco's switches and routers configured It was in accordance with the design of the level of such errors can be reduced and can be more a reflection of the characteristics of each level. Added to the Remote Access Router behind Cisco PIX firewall is a well-known software company with special security set up equipment, all the data flowing through PIX had to be rigorous and comprehensive testing, test data including the source and destination addresses, TCP random sequence, TCP port, and additional signage. only by meeting specific conditions of this data across firewalls. Network planning and design process, from the completion of the final topology of the tests are very smoothly.
Keyword: core layer distribution layer access layer PIX Firewall


3 目錄
1 摘要 1
2 Abstract 2
3 目錄 4
4 引言 6
4.1 如今的網絡社會 6
4.2 本課題的目的 6
4.3 關于Cisco 6
5 用戶需求分析 8
5.1 網絡需求分析 8
5.2 資金預算 8
6 網絡系統(tǒng)的建議方案 9
6.1 網絡主干 9
6.2 教學樓的接入 11
6.3 圖書館的接入 11
6.4 辦公樓的接入 11
6.5 學生機房的接入 11
6.6 學生宿舍的聯(lián)網 12
6.7 PIX防火墻 12
6.8 Cisco 2610 遠程訪問路由器 12
6.9 網絡管理 13
7 網絡總體設計方案 14
7.1 網絡拓撲 14
7.2 VLAN及IP地址規(guī)劃 14
8 交換模塊設計 16
8.1 訪問層交換服務的實現(xiàn)－配置訪問層交換機 16
8.1.1 設置交換機名稱 17
8.1.2 設置交換機的加密使能口令 17
8.1.3 設置登錄虛擬終端線時的口令 18
8.1.4 設置終端線超時時間 19
8.1.5 設置禁用IP地址解析特性 20
8.1.6 設置啟用消息同步特性 21
8.1.7 配置訪問層交換機jxl的管理IP、默認網關 22
8.1.8 端口雙工配置 24
8.1.9 端口速度 24
8.1.10 設置快速端口 25
8.1.11 配置訪問層交換機jxl的主干道端口 26
8.1.12 配置其余的訪問層交換機 27
8.2 分布層交換服務的實現(xiàn)－配置分布層交換機 28
8.2.1 配置分布層交換機jxq 的基本參數(shù) 28
8.2.2 配置分布層交換機jxq 的管理IP、默認網關 29
8.2.3 配置分布層交換機jxq的VLAN 29
8.2.4 配置分布層交換機jxq 的端口基本參數(shù) 30
8.2.5 配置分布層交換機jxq..