摘要: 随着网络技术的发展,互联网正影响着各个领域的企业。企业局域网的建设是企业走向信息化发展的必经之路。模拟搭建大型企业局域网可以在条件有限的环境下研究这一意义重大的课题。企业局域网的要求概括起来可归纳为四点:高效、稳定、安全、可扩展。基于以上这四点的企业局域网需求,本次课题决定采用基于三层网络构架的拓扑结构。利用思科模拟器来呈现整个企业局域网的环境,采用思科的路由交换系统来配置整个企业的局域网。本设计采用了OSPF(开放最短路径优先)协议作为主要的路由协议,使企业局域网互通。同时,随着网络的发展,IPV6的技术必将在不久的未来应用在网络上,本设计也部分采用了IPV6的技术,利用网络地址转换技术实现了IPV6与IPV4的互通。为了确保安全有序,在设计中采用虚拟局域网技术、虚拟专用网络、访问控制列表等技术来分割网络、加强安全性。9678
关键词: 企业局域网;网络层次化;虚拟局域网;IPV6;访问控制列表
Large enterprise internal network construction Design and Implementation
Abstract: With the development of network technology, the Internet is affecting all areas of business. The construction of enterprise LAN is the only way that enterprise can development by exploiting information technology. Simulation of building large enterprise LAN environment can study this great significant topic under the limited conditions.
The requirements of the enterprise LAN can be summed up in four points: efficiency, stabilization, security, and ability to scale. Based on these four requirements of the enterprise LAN, the project decided to use the topological structure which is based on the three-tier network architecture. The project uses Cisco simulator to render the entire enterprise LAN environment, and uses the Cisco IOS to configure the enterprise LAN. This design uses the OSPF (Open Shortest Path First) protocol as the main routing protocol to make enterprise LAN interworking. Meanwhile, with the development of the network, IPV6 technology will be applied on the network in the near future, the design also partly use the IPv6 technology, and using the network address translation technology to achieve the interoperability of IPv6 and IPv4. To ensure the security and order, we also use the virtual LAN technology, virtual private networks, access control lists and other technology in the design to split the network and strengthen security.
Keywords: Enterprise LAN; network hierarchy; VLAN; IPV6; ACL
目 录
摘要 i
Abstract i
目 录 iii
1 绪论 1
1.1 课题的目的和意义 1
1.2 局域网设计目标 2
2 企业局域网需求分析 3
2.1 网络拓扑结构需求分析 3
2.2 带宽需求分析 3
2.3 企业未来发展需求 4
2.4 性能需求分析 4
2.5 安全需求分析 4
3 关键技术 5
3.1 NAT技术 5
3.2 路由技术 5
3.3 VPN技术 5
3.4 VLAN技术 6
3.5 交换技术 6
3.6 STP技术 7
3.7 PVST技术 7
3.8 DHCP技术 7
3.9 ACL技术 8