CN115174301A - Campus network based on MSTP + VRRP networking technology - Google Patents
Campus network based on MSTP + VRRP networking technology Download PDFInfo
- Publication number
- CN115174301A CN115174301A CN202210846972.7A CN202210846972A CN115174301A CN 115174301 A CN115174301 A CN 115174301A CN 202210846972 A CN202210846972 A CN 202210846972A CN 115174301 A CN115174301 A CN 115174301A
- Authority
- CN
- China
- Prior art keywords
- network
- layer
- campus
- campus network
- core
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000005516 engineering process Methods 0.000 title claims abstract description 18
- DWSYCUKCNSVBRA-UHFFFAOYSA-N 4-(5-methylsulfonyltetrazol-1-yl)phenol Chemical compound CS(=O)(=O)C1=NN=NN1C1=CC=C(C=C1)O DWSYCUKCNSVBRA-UHFFFAOYSA-N 0.000 title claims abstract description 14
- 101710167643 Serine/threonine protein phosphatase PstP Proteins 0.000 title claims abstract description 14
- 230000006855 networking Effects 0.000 title claims abstract description 11
- 239000010410 layer Substances 0.000 claims abstract description 38
- 239000012792 core layer Substances 0.000 claims abstract description 19
- 238000004891 communication Methods 0.000 claims abstract description 12
- 230000002776 aggregation Effects 0.000 claims abstract description 5
- 238000004220 aggregation Methods 0.000 claims abstract description 5
- 238000013519 translation Methods 0.000 claims abstract description 4
- 238000012423 maintenance Methods 0.000 abstract description 3
- 238000013461 design Methods 0.000 description 5
- 238000007726 management method Methods 0.000 description 4
- 238000000034 method Methods 0.000 description 3
- 239000013307 optical fiber Substances 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 1
- 239000003086 colorant Substances 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000002474 experimental method Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000002955 isolation Methods 0.000 description 1
- 238000005457 optimization Methods 0.000 description 1
- 230000010355 oscillation Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2854—Wide area networks, e.g. public data networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4604—LAN interconnection over a backbone network, e.g. Internet, Frame Relay
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
- H04L12/4675—Dynamic sharing of VLAN information amongst network nodes
- H04L12/4683—Dynamic sharing of VLAN information amongst network nodes characterized by the protocol used
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
- H04L61/256—NAT traversal
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Small-Scale Networks (AREA)
Abstract
The invention discloses a campus network based on MSTP + VRRP networking technology, which divides each region in the campus network based on a virtual local area network and performs link aggregation on important regions; the campus network routers perform network address translation according to NAT technology, filter routing information according to ACL policy, and establish a neighbor relation between the routers by means of OSPF protocol; the campus network is integrally of a three-layer network architecture; the core layer is provided with at least two core switches and a DHCP relay server, heartbeat exchange and main-standby redundancy are carried out among the core switches according to a VRRP protocol, and the DHCP relay server allocates IP addresses for the access layer equipment; the convergence layer supports three-layer network switching technology and VLAN, and shares the overhead of multiple spanning trees with the core layer; the access layer adopts two modes of wired communication and wireless communication and is configured with an MSTP protocol. The campus network is adopted in the invention, and the campus network is managed in a layered mode, so that the economy, the safety, the stability, the redundancy and the easy maintenance of the network are ensured.
Description
Technical Field
The invention relates to the technical field of communication, in particular to a campus network based on an MSTP + VRRP networking technology.
Background
With the development and progress of the times, the network multimedia technology of schools is gradually diversified, and many schools propose the purpose of establishing smart campuses. To build a fully functional smart campus, basic network planning and application of the school must be done. However, in domestic schools, the problems of network congestion, examination paper leakage, trouble in equipment configuration, difficulty in network export and the like of a campus network caused by unreasonable network planning and application earlier stage generally exist. The intelligent design of the campus network is different from the general office building and residential building, but has special requirements. Therefore, the campus network needs to ensure the practicability, economy, advancement, openness, reliability, stability, safety, confidentiality, maintainability and maintainability during network planning.
Disclosure of Invention
In order to achieve the purpose, the scheme of the invention combines the technologies of VLAN, eth-trunk, OSPF, NAT, DHCP, MSTP + VRRP, SSH remote login, ACL strategy, python programming implementation and the like with the campus network, and adopts a hierarchical network architecture to design the campus network, thereby ensuring the advancement of the campus network.
Specifically, the invention provides the following technical scheme,
the campus network based on the MSTP + VRRP networking technology divides each region in the campus based on the virtual local area network and performs link aggregation on important regions; the campus network routers perform network address translation according to the NAT technology, filter routing information according to an ACL strategy, and establish a neighbor relation between the routers by means of an OSPF protocol; the campus network is integrally of a three-layer network architecture and is divided into a core layer, a convergence layer and an access layer; the core layer is provided with at least two core switches and a DHCP relay server, heartbeat exchange and main-standby redundancy are carried out among the core switches according to a VRRP protocol, and the DHCP relay server allocates IP addresses for the access layer equipment; the convergence layer supports three-layer network switching technology and VLAN, and shares the overhead of multiple spanning trees with the core layer; the access layer adopts two modes of wired communication and wireless communication and is configured with an MSTP protocol.
Preferably, the campus network switch and router are also configured with SSH protocol, and complete remote login in cooperation with third-party module paramiko of python.
Preferably, the instances of the two core switches of the core layer are in reverse order of priority.
The campus network has the following advantages:
1) The three-layer network architecture model is adopted to carry out layered planning on the whole network, so that the network architecture is standard and complete, and the problem of disordered construction of original old network equipment is avoided;
2) The MSTP + VRRP is used for carrying out backup redundancy and the like on the switch and the route, so that the stability and the redundancy of the campus network are increased, the fault tolerance rate is improved, and the network teaching and learning networking can not be influenced due to the damage of one core;
3) The teachers and the students can be guaranteed to surf the internet in each area of the campus through a wired and wireless networking mode, and the workload of laying and burying the wires is reduced; the http server is configured, so that the outside of the school can also know the teaching condition in the school and download corresponding teaching data, and the problem that the school and parents believe asymmetry is solved;
4) The administrative region also realizes safe configuration, so that the electronic data and property of the school are guaranteed;
5) The Python programming makes the network operation and maintenance more convenient, relieves the pressure of network administrators, and improves the stability of campus networks.
Drawings
Fig. 1 is a network topology diagram of a school park network in an embodiment of the present invention.
Detailed Description
The technical scheme of the invention is further explained by combining the drawings and the embodiment.
Taking a middle school as an example, the school is a national key first-level school, and it is necessary for the school to have a complete campus network. The campus information distribution point area mainly comprises a teaching building, an art building, an experiment building, a library, an information center, an administrative building, a gymnasium, a dining room, a student dormitory and a teacher apartment.
1. Logical network design
The campus network is integrally planned based on a Virtual Local Area Network (VLAN), and by isolating the broadcast domain, the network overhead can be reduced, and the spread of local area network attack and configuration access control can be effectively prevented. The VLAN is combined with the campus information point distribution to perform logic network area division, and link aggregation (eth-trunk) is performed on important areas. In campus planning, link aggregation can be set for important areas such as administrative buildings and information centers, vlan access ss trunk interfaces are configured at the same time, and link binding is configured between two core switches. The routers in the campus network perform network address translation according to the NAT technology, filter routing information according to the ACL strategy, and establish a neighbor relation between the routers according to the OSPF protocol. And the campus network switch and the router are also provided with SSH protocols and are matched with a third-party module paramiko of python to complete remote login.
As shown in fig. 1, the campus network has a three-layer network architecture, which includes a core layer, a convergence layer and an access layer, each layer has its specific function, so as to simplify the network and facilitate later-stage layer maintenance.
The core layer is mainly responsible for the main network communication of the whole network, has high requirements on equipment, and simultaneously has manageability, fault tolerance, adaptability, redundancy and low delay. The core layer is provided with at least two core switches and a DHCP relay server, heartbeat exchange and main-standby redundancy are carried out between the core switches according to a VRRP protocol, and the DHCP relay server allocates IP addresses for the access layer equipment. The example priorities of the two core switches of the core layer are reversed.
The convergence layer is connected with the core layer and the access layer and provides convergence \ transmission \ management \ distribution processing of data for the access layer. The convergence layer supports three-layer network switching technology and VLAN, and shares the overhead of multiple spanning trees with the core layer. The convergence layer can not only reduce the load of core layer equipment, but also realize network isolation and improve redundancy.
The access layer is connected with the workstation or the terminal so as to enable the workstation or the terminal to be accessed to the local network segment. The access layer reduces the number of workstations in the same network segment and can also bring high-speed bandwidth to the terminals and the workgroup. The access layer integrally adopts two communication modes of wired communication and wireless communication and is configured with an MSTP protocol. MSTP facilitates rapid STP convergence by designing an edge port at the access stratum. The access layer configures a DHCP relay server of a school as a trusted server so as to avoid network interruption caused by the fact that other illegal DHCP distribution addresses enable the terminal to receive illegal IP addresses.
The MSTP + VRRP configuration can realize flow load balance and network redundancy, and on the basis, the optimization technology related to the STP can be configured to accelerate STP convergence, so that the purpose of reducing STP oscillation is achieved.
2. Physical network design
First, an integrated wiring system is designed. Specifically, the method comprises the following steps: and the working area subsystem provides a standard RJ45 information outlet through an information socket and uniformly distributes six twisted pairs to jump to a desktop of the personal terminal through a jumper. In the horizontal subsystem, the information points adopt six types of twisted-pair wiring, and the wiring standard generally adopts a star topology structure. And the vertical subsystem is used for connecting the horizontal subsystem to a vertical trunk line of the management subsystem, and the indoor data trunk adopts single-mode optical fibers. The equipment room and the management subsystem adopt different colors to mark and distinguish the horizontal cables, the trunk cables and the equipment terminal points connected on the distribution frame, and the distribution frame is configured redundantly. And the building group subsystem connects weak current equipment of each building network to the information center through outdoor single-mode optical fibers.
Secondly, information point design. Specifically, the method comprises the following steps: except students' dormitory, other buildings all adopt wired communication mode, namely every classroom, office, electronic reading room, computer lab, meeting room, classroom dormitory, etc. all set up the information point according to the computer quantity, and the information point redundancy sets up. For students' dormitories, due to the need of school management, dormitory buildings do not allocate information points to the students to surf the internet, so that each dormitory needs to be provided with a wireless AP and the information points needed by the wireless AP.
Thirdly, selecting the type of the equipment. Specifically, the method comprises the following steps: the router is selected as AR2240, and has the characteristics of high availability and high performance. S5700 is selected for two core switches of the core layer, and VRRP heartbeat exchange and main-standby redundancy are carried out while high-speed forwarding data are kept. Convergence layer and access layer switches employ S3700. The access controller selects AC6605, adopts a networking mode of side hanging on the core layer, and completes wireless networking by configuring a thin AP. The wireless access point employs the AP3030 to configure AC + AP wireless networking technology.
The above is a specific embodiment of the present invention, but the scope of the present invention should not be limited thereto. Any changes or substitutions which can be easily made by those skilled in the art within the technical scope of the present invention disclosed herein shall be covered by the protection scope of the present invention, and therefore the protection scope of the present invention shall be subject to the protection scope defined by the appended claims.
Claims (3)
1. The campus network based on the MSTP + VRRP networking technology is characterized in that the campus network divides each region in a campus based on a virtual local area network and performs link aggregation on important regions; the campus network routers perform network address translation according to NAT technology, filter routing information according to ACL policy, and establish a neighbor relation between the routers by means of OSPF protocol;
the campus network is integrally of a three-layer network architecture and is divided into a core layer, a convergence layer and an access layer; the core layer is provided with at least two core switches and a DHCP relay server, heartbeat exchange and main-standby redundancy are carried out among the core switches according to a VRRP protocol, and the DHCP relay server allocates IP addresses for the access layer equipment; the convergence layer supports three-layer network switching technology and VLAN, and shares the overhead of multiple spanning trees with the core layer; the access layer adopts two modes of wired communication and wireless communication and is configured with an MSTP protocol.
2. The campus network of claim 1 wherein the campus network switches and routers are further configured with SSH protocols and cooperate with python's third party module paramiko to perform telnet.
3. The campus network of claim 1 wherein the instances of the two core switches of the core layer are in reverse order of priority.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210846972.7A CN115174301A (en) | 2022-07-06 | 2022-07-06 | Campus network based on MSTP + VRRP networking technology |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210846972.7A CN115174301A (en) | 2022-07-06 | 2022-07-06 | Campus network based on MSTP + VRRP networking technology |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115174301A true CN115174301A (en) | 2022-10-11 |
Family
ID=83494800
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210846972.7A Pending CN115174301A (en) | 2022-07-06 | 2022-07-06 | Campus network based on MSTP + VRRP networking technology |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115174301A (en) |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102291313A (en) * | 2011-09-06 | 2011-12-21 | 北京星网锐捷网络技术有限公司 | Method, device and equipment for finding virtual router redundancy protocol (VRRP) network topology |
| CN102984057A (en) * | 2012-11-20 | 2013-03-20 | 中国舰船研究设计中心 | Multi-service integration dual-redundancy network system |
| CN105939226A (en) * | 2016-07-01 | 2016-09-14 | 浪潮集团有限公司 | Redundant network equipment based on layer 3 switch |
| CN107105038A (en) * | 2017-04-26 | 2017-08-29 | 江苏新和网络科技发展有限公司 | A kind of traffic police computer network system |
| CN111083114A (en) * | 2019-11-19 | 2020-04-28 | 宏图智能物流股份有限公司 | Logistics warehouse network safety system and construction method |
| CN113315834A (en) * | 2021-05-27 | 2021-08-27 | 长春工业大学 | Cloud platform of technical result transaction system |
| CN113315688A (en) * | 2021-05-27 | 2021-08-27 | 长春工业大学 | Converged network system sharing technical information platform |
| CN113497768A (en) * | 2021-05-31 | 2021-10-12 | 国网山东省电力公司滨州供电公司 | Method for scheduling soft exchange bearing network migration |
| CN114710388A (en) * | 2022-03-25 | 2022-07-05 | 江苏科技大学 | Campus network security architecture and network monitoring system |
-
2022
- 2022-07-06 CN CN202210846972.7A patent/CN115174301A/en active Pending
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102291313A (en) * | 2011-09-06 | 2011-12-21 | 北京星网锐捷网络技术有限公司 | Method, device and equipment for finding virtual router redundancy protocol (VRRP) network topology |
| CN102984057A (en) * | 2012-11-20 | 2013-03-20 | 中国舰船研究设计中心 | Multi-service integration dual-redundancy network system |
| CN105939226A (en) * | 2016-07-01 | 2016-09-14 | 浪潮集团有限公司 | Redundant network equipment based on layer 3 switch |
| CN107105038A (en) * | 2017-04-26 | 2017-08-29 | 江苏新和网络科技发展有限公司 | A kind of traffic police computer network system |
| CN111083114A (en) * | 2019-11-19 | 2020-04-28 | 宏图智能物流股份有限公司 | Logistics warehouse network safety system and construction method |
| CN113315834A (en) * | 2021-05-27 | 2021-08-27 | 长春工业大学 | Cloud platform of technical result transaction system |
| CN113315688A (en) * | 2021-05-27 | 2021-08-27 | 长春工业大学 | Converged network system sharing technical information platform |
| CN113497768A (en) * | 2021-05-31 | 2021-10-12 | 国网山东省电力公司滨州供电公司 | Method for scheduling soft exchange bearing network migration |
| CN114710388A (en) * | 2022-03-25 | 2022-07-05 | 江苏科技大学 | Campus network security architecture and network monitoring system |
Non-Patent Citations (1)
| Title |
|---|
| 李开丽: "职业院校校园网络设计及实现", 中国优秀硕士学位论文全文数据库 信息科技辑, no. 4, pages 1 - 46 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3681110B1 (en) | A region interconnect control using vrf tables across heterogeneous networks | |
| CN106899470A (en) | A kind of data acquisition network framework and planing method | |
| CN106850387A (en) | A kind of system and method for the virtual network networking for realizing multiple data centers | |
| CA2330385A1 (en) | Establishing connectivity in networks | |
| Tiso et al. | Designing Cisco network service architectures (ARCH): Foundation learning guide | |
| CN106936682A (en) | It is a kind of to specify the processing method and controller and supplier's edge device for turning originator | |
| CN107204909A (en) | Build system, the method and apparatus of power dispatch data network | |
| CN115955456A (en) | IPv 6-based enterprise campus network and networking method | |
| CN102891903A (en) | NAT (Network Address Translation) converting method and equipment | |
| CN101483606A (en) | Internal data switch control method for home gateway and home gateway therefor | |
| CN101238684A (en) | System for cluster managing in the Ethernet switch layer and the method thereof | |
| CN115766335A (en) | Networking system for sharing technical research result information | |
| CN101719857B (en) | Asymmetric PW-based VPLS network access method and asymmetric PW-based VPLS network access system | |
| Haiyan | Application of vlan and HSRP technology in the dual core campus network | |
| CN100579022C (en) | Method for managing bridging connection equipment | |
| US10944665B1 (en) | Auto-discovery and provisioning of IP fabric underlay networks for data centers | |
| CN115174301A (en) | Campus network based on MSTP + VRRP networking technology | |
| CN114338422B (en) | Middle-large enterprise network based on MPLS and realization method thereof | |
| CN202696647U (en) | Control system network architecture | |
| CN112291132A (en) | Network structure optimization method based on digital campus | |
| CN115175244A (en) | 5G router load sharing method and system | |
| CN107733850A (en) | Multicast partition method and system based on centralized Control framework | |
| CN102355424B (en) | A kind of method and system realizing MIM and VPLS intercommunication forwarding | |
| CN112104509A (en) | Configuration device and method of server | |
| Ma et al. | Campus Network Planning and Design |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |