1.控制路由的发布:通过路由策略对发布的路由进行过滤,只发布满足条件的路由
2.控制路由的接收:通过路由策略对接收的路由进行过滤,只接收满足条件的路由
3.控制路由的引入:通过路由策略控制从其他路由协议引入的路由条目,只有满足条件的路由才会被引入
STP(Spanning Tree Protocol)是生成树协议的英文缩写,可应用于计算机网络中树形拓扑结构建立,主要作用是防止网桥网络中的冗余链路形成环路工作。
VRRP即虚拟路由器冗余协议。
利用VRRP,一组路由器协同工作,但只有一个处于Master状态,处于该状态的路由器承担实际的数据流量转发任务。在一个VRRP组内的多个路由器接口公用一个虚拟IP地址,该地址被作为局域网所有主机的缺省网管地址。
VRRP决定哪个路由器是Master,Master路由器负责接受发送至网管的数据包并进行转发,以及响应PC对于其网管IP地址的ARP请求。
Backup路由器侦听Master路由器的状态,并在Msater路由器发生故障时,接替其工作,从而保证业务流量的平滑切换。
链路聚合是把两台设备之间的多条物理链路聚合在一起,当做一条逻辑链路来使用,以实现出/入流量吞吐量在各成员端口的负荷分担。
采用链路聚合技术可以在不进行硬件升级的条件下,通过将多个物理接口捆绑为一个逻辑接口,来达到增加链路带宽的目的。在实现增大带宽目的的同时,链路聚合采用备份链路的机制,可以有效的提高设备之间链路的可靠性。
链路聚合包含两种模式:手动负载均衡模式和静态LACP(Link Aggregation Control Protocol)模式。
NAT:对1P数据报文中的IP地址进行转换,是一种在现网中被广泛部署的技术,一般部署在网络出口设备,例如路由器或防火墙上。
通过私有地址的使用结合NAT技术,可以有效节约公网IPv4地址。
AR1
acl number 2000
rule 5 deny source 192.168.10.220 0
rule 6 deny source 192.168.20.252 0
rule 10 permit source 192.168.20.0 0.0.0.255
rule 15 permit source 192.168.10.0 0.0.0.255
rule 20 permit
acl number 2001
rule 5 permit
rule 10 permit source 192.168.0.0 0.0.255.255
#
acl number 3000
rule 5 deny tcp source 192.168.10.0 0.0.0.255 destination 172.16.1.2 0 destinat
ion-port eq ftp
rule 10 deny tcp source 192.168.20.0 0.0.0.255 destination 172.16.1.2 0 destina
tion-port eq ftp
rule 15 permit tcp source 192.168.30.0 0.0.0.255 destination 172.16.1.2 0 desti
nation-port eq ftp
rule 20 deny tcp source 192.168.30.0 0.0.0.255 destination 172.16.1.2 0 destina
tion-port eq www
rule 25 permit tcp destination-port eq www
#
ip pool vlan40
gateway-list 192.168.40.254
network 192.168.40.0 mask 255.255.255.0
dns-list 202.1.1.1
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
local-user admin service-type http
#
interface Dialer1
link-protocol ppp
ppp chap user liuwei
ppp chap password cipher %$%$0.q9Tr-^t@g)bpIiRu]P,/xb%$%$
ip address ppp-negotiate
dialer user liuwei
dialer bundle 1
nat outbound 2001
#
interface Dialer2
link-protocol ppp
ppp chap user liuwei2
ppp chap password cipher %$%$O5,AD0ouU)O#]t=yTfpG,.]~%$%$
ip address ppp-negotiate
dialer user liuwei2
dialer bundle 2
nat outbound 2001
#
interface GigabitEthernet0/0/0
ip address 192.168.11.1 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 192.168.13.1 255.255.255.0
dhcp select global
#
interface GigabitEthernet0/0/2
ip address 192.168.31.1 255.255.255.0
#
interface GigabitEthernet6/0/0
ip address 172.16.1.1 255.255.255.0
traffic-filter outbound acl 3000
#
interface GigabitEthernet6/0/1
pppoe-client dial-bundle-number 1
#
interface GigabitEthernet6/0/2
pppoe-client dial-bundle-number 2
#
interface GigabitEthernet6/0/3
ip address 192.168.17.1 255.255.255.0
#
interface LoopBack0
ip address 1.1.1.1 255.255.255.0
#
ospf 1 router-id 1.1.1.1
default-route-advertise always
area 0.0.0.0
network 1.1.1.0 0.0.0.255
network 172.16.1.0 0.0.0.255
network 192.168.11.0 0.0.0.255
network 192.168.13.0 0.0.0.255
network 192.168.17.0 0.0.0.255
#
rip 1
#
ip route-static 0.0.0.0 0.0.0.0 Dialer1
ip route-static 0.0.0.0 0.0.0.0 Dialer2
AR3
ip pool vlan30
gateway-list 192.168.30.254
network 192.168.30.0 mask 255.255.255.0
excluded-ip-address 192.168.30.253
dns-list 6.6.6.6
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher huawei
local-user admin service-type http
#
interface GigabitEthernet0/0/0
ip address 192.168.13.2 255.255.255.0
#
interface GigabitEthernet0/0/1
#
interface GigabitEthernet0/0/1.30
dot1q termination vid 30
ip address 192.168.30.254 255.255.255.0
arp broadcast enable
dhcp select global
#
interface GigabitEthernet0/0/1.40
dot1q termination vid 40
ip address 192.168.40.254 255.255.255.0
arp broadcast enable
dhcp select relay
dhcp relay server-ip 192.168.13.1
#
interface GigabitEthernet0/0/2
ip address 192.168.31.2 255.255.255.0
#
interface GigabitEthernet4/0/0
ip address 192.168.37.1 255.255.255.0
#
interface LoopBack0
ip address 3.3.3.3 255.255.255.0
#
ospf 1 router-id 3.3.3.3
import-route rip 1
area 0.0.0.0
network 3.3.3.0 0.0.0.255
network 192.168.13.0 0.0.0.255
#
rip 1
undo summary
version 2
network 192.168.30.0
network 192.168.40.0
network 192.168.37.0
import-route ospf 1
#
ip route-static 0.0.0.0 0.0.0.0 192.168.13.1
SW1
stp region-configuration
region-name huawei
instance 1 vlan 10 30
instance 2 vlan 20 40
active region-configuration
#
interface Vlanif10
ip address 192.168.10.254 255.255.255.0
dhcp select interface
dhcp server excluded-ip-address 192.168.10.221 192.168.10.253
dhcp server dns-list 114.114.114.114
#
interface Vlanif11
ip address 192.168.11.2 255.255.255.0
#
interface Vlanif30
ip address 192.168.30.254 255.255.255.0
dhcp select interface
dhcp server dns-list 8.8.8.8
#
interface Eth-Trunk1
port link-type trunk
port trunk allow-pass vlan 2 to 4094
mode lacp-static
max active-linknumber 2
#
interface Eth-Trunk2
mode lacp-static
#
interface GigabitEthernet0/0/1
port link-type access
port default vlan 11
#
interface GigabitEthernet0/0/2
port link-type trunk
port trunk allow-pass vlan 10 20 30 40
#
interface GigabitEthernet0/0/3
port link-type access
port default vlan 10
#
interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 10 20 30 40
#
interface GigabitEthernet0/0/5
eth-trunk 1
#
interface GigabitEthernet0/0/6
eth-trunk 1
#
interface GigabitEthernet0/0/7
eth-trunk 1
#
interface LoopBack0
ip address 2.2.2.2 255.255.255.0
#
ospf 1 router-id 2.2.2.2
area 0.0.0.0
network 192.168.11.0 0.0.0.255
network 2.2.2.0 0.0.0.255
area 0.0.0.1
network 192.168.10.0 0.0.0.255
network 192.168.20.0 0.0.0.255
network 192.168.30.0 0.0.0.255
#
ip route-static 0.0.0.0 0.0.0.0 192.168.11.1
SW8
vlan batch 10 17 20 30 40
#
stp instance 0 priority 4096
stp instance 1 root secondary
stp instance 2 root primary
#
stp region-configuration
region-name huawei
instance 1 vlan 10 30
instance 2 vlan 20 40
active region-configuration
#
interface Vlanif17
ip address 192.168.17.2 255.255.255.0
#
interface Vlanif20
ip address 192.168.20.254 255.255.255.0
dhcp select interface
dhcp server dns-list 114.114.114.114
#
interface Vlanif40
ip address 192.168.40.254 255.255.255.0
dhcp select interface
dhcp server dns-list 8.8.8.8
#
interface Eth-Trunk1
port link-type trunk
port trunk allow-pass vlan 2 to 4094
mode lacp-static
max active-linknumber 2
#
interface GigabitEthernet0/0/1
port link-type access
port default vlan 17
#
interface GigabitEthernet0/0/3
eth-trunk 1
#
interface GigabitEthernet0/0/4
eth-trunk 1
#
interface GigabitEthernet0/0/5
port link-type access
port default vlan 20
#
interface GigabitEthernet0/0/6
port link-type trunk
port trunk allow-pass vlan 10 20 30 40
#
interface GigabitEthernet0/0/7
eth-trunk 1
#
interface GigabitEthernet0/0/8
port link-type trunk
port trunk allow-pass vlan 10 20 30 40
interface LoopBack0
ip address 4.4.4.4 255.255.255.0
#
ospf 1 router-id 4.4.4.4
area 0.0.0.0
network 192.168.17.0 0.0.0.255
network 4.4.4.0 0.0.0.255
area 0.0.0.1
network 192.168.10.0 0.0.0.255
network 192.168.20.0 0.0.0.255
network 192.168.40.0 0.0.0.255
#
ip route-static 0.0.0.0 0.0.0.0 192.168.17.1
SW3
vlan batch 10 20 30 40
#
stp region-configuration
region-name huawei
instance 1 vlan 10 30
instance 2 vlan 20 40
active region-configuration
#
interface Ethernet0/0/1
port link-type trunk
port trunk allow-pass vlan 2 to 4094
#
interface Ethernet0/0/2
port link-type trunk
port trunk allow-pass vlan 2 to 4094
#
interface Ethernet0/0/3
port link-type access
port default vlan 10
stp edged-port enable
#
interface Ethernet0/0/4
port link-type access
port default vlan 20
#
interface Ethernet0/0/5
port link-type access
port default vlan 30
SW4
vlan batch 10 15 to 16 20 30 40
#
stp region-configuration
region-name huawei
instance 1 vlan 10 30
instance 2 vlan 20 40
active region-configuration
#
interface Ethernet0/0/1
port link-type access
port default vlan 40
#
interface Ethernet0/0/2
port link-type trunk
port trunk allow-pass vlan 10 20
#
interface Ethernet0/0/3
port link-type access
port default vlan 10
#
interface Ethernet0/0/4
port link-type access
port default vlan 20
#
interface GigabitEthernet0/0/1
port link-type trunk
port trunk allow-pass vlan 2 to 4094
#
interface GigabitEthernet0/0/2
port link-type trunk
port trunk allow-pass vlan 2 to 4094
SW6
vlan batch 30 40
#
interface Ethernet0/0/1
port link-type access
port default vlan 30
#
interface Ethernet0/0/2
port link-type access
port default vlan 40
#
interface Ethernet0/0/3
port link-type trunk
port trunk allow-pass vlan 30 40
#
ip route-static 0.0.0.0 0.0.0.0 192.168.31.2
SW7
vlan batch 37 100 to 101
#
interface Vlanif37
ip address 192.168.37.2 255.255.255.0
#
interface Vlanif100
ip address 192.168.100.254 255.255.255.0
dhcp select interface
dhcp server dns-list 114.114.114.114
#
interface Vlanif101
ip address 192.168.101.254 255.255.255.0
dhcp select interface
dhcp server dns-list 8.8.8.8
#
interface GigabitEthernet0/0/1
port link-type access
port default vlan 37
#
interface GigabitEthernet0/0/2
port link-type access
port default vlan 100
#
interface GigabitEthernet0/0/3
port link-type access
port default vlan 101
#
rip 1
undo summary
version 2
network 192.168.100.0
network 192.168.101.0
network 192.168.37.0
#
ip route-static 0.0.0.0 0.0.0.0 192.168.37.1
AR4
ip pool pppoe2
gateway-list 201.1.1.254
network 201.1.1.0 mask 255.255.255.0
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher huawei
local-user admin service-type http
local-user liuwei2 password cipher huawei
local-user liuwei2 service-type ppp
#
interface Virtual-Template2
ppp authentication-mode chap
remote address pool pppoe2
ip address 201.1.1.254 255.255.255.0
#
interface GigabitEthernet0/0/0
pppoe-server bind Virtual-Template 2
#
interface GigabitEthernet0/0/1
ip address 212.1.1.1 255.255.255.0
#
interface LoopBack0
ip address 9.9.9.9 255.255.255.0
#
rip 1
undo summary
version 2
network 9.0.0.0
network 201.1.1.0
network 200.1.1.0
network 212.1.1.0
AR6
ip pool pppoe
gateway-list 200.1.1.254
network 200.1.1.0 mask 255.255.255.0
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher huawei
local-user admin service-type http
local-user liuwei password cipher huawei
local-user liuwei service-type ppp
#
interface Virtual-Template1
ppp authentication-mode chap
remote address pool pppoe
ip address 200.1.1.254 255.255.255.0
#
interface GigabitEthernet0/0/0
pppoe-server bind Virtual-Template 1
#
interface GigabitEthernet0/0/2
ip address 212.1.1.2 255.255.255.0
#
interface LoopBack0
ip address 8.8.8.8 255.255.255.0
#
rip 1
undo summary
version 2
network 8.0.0.0
network 212.1.1.0
network 200.1.1.0
network 202.1.1.0
我想在Ruby中创建一个用于开发目的的极其简单的Web服务器(不,不想使用现成的解决方案)。代码如下:#!/usr/bin/rubyrequire'socket'server=TCPServer.new('127.0.0.1',8080)whileconnection=server.acceptheaders=[]length=0whileline=connection.getsheaders想法是从命令行运行这个脚本,提供另一个脚本,它将在其标准输入上获取请求,并在其标准输出上返回完整的响应。到目前为止一切顺利,但事实证明这真的很脆弱,因为它在第二个请求上中断并出现错误:/usr/b
网络编程套接字网络编程基础知识理解源`IP`地址和目的`IP`地址理解源MAC地址和目的MAC地址认识端口号理解端口号和进程ID理解源端口号和目的端口号认识`TCP`协议认识`UDP`协议网络字节序socket编程接口`sockaddr``UDP`网络程序服务器端代码逻辑:需要用到的接口服务器端代码`udp`客户端代码逻辑`udp`客户端代码`TCP`网络程序服务器代码逻辑多个版本服务器单进程版本多进程版本多线程版本线程池版本服务器端代码客户端代码逻辑客户端代码TCP协议通讯流程TCP协议的客户端/服务器程序流程三次握手(建立连接)数据传输四次挥手(断开连接)TCP和UDP对比网络编程基础知识
是否可以在不实际下载文件的情况下检查文件是否存在?我有这么大的(~40mb)文件,例如:http://mirrors.sohu.com/mysql/MySQL-6.0/MySQL-6.0.11-0.glibc23.src.rpm这与ruby不严格相关,但如果发件人可以设置内容长度就好了。RestClient.get"http://mirrors.sohu.com/mysql/MySQL-6.0/MySQL-6.0.11-0.glibc23.src.rpm",headers:{"Content-Length"=>100} 最佳答案
我在这方面尝试了很多URL,在我遇到这个特定的之前,它们似乎都很好:require'rubygems'require'nokogiri'require'open-uri'doc=Nokogiri::HTML(open("http://www.moxyst.com/fashion/men-clothing/underwear.html"))putsdoc这是结果:/Users/macbookair/.rvm/rubies/ruby-2.0.0-p481/lib/ruby/2.0.0/open-uri.rb:353:in`open_http':404NotFound(OpenURI::HT
深度学习12.CNN经典网络VGG16一、简介1.VGG来源2.VGG分类3.不同模型的参数数量4.3x3卷积核的好处5.关于学习率调度6.批归一化二、VGG16层分析1.层划分2.参数展开过程图解3.参数传递示例4.VGG16各层参数数量三、代码分析1.VGG16模型定义2.训练3.测试一、简介1.VGG来源VGG(VisualGeometryGroup)是一个视觉几何组在2014年提出的深度卷积神经网络架构。VGG在2014年ImageNet图像分类竞赛亚军,定位竞赛冠军;VGG网络采用连续的小卷积核(3x3)和池化层构建深度神经网络,网络深度可以达到16层或19层,其中VGG16和VGG
(本文是网络的宏观的概念铺垫)目录计算机网络背景网络发展认识"协议"网络协议初识协议分层OSI七层模型TCP/IP五层(或四层)模型报头以太网碰撞路由器IP地址和MAC地址IP地址与MAC地址总结IP地址MAC地址计算机网络背景网络发展 是最开始先有的计算机,计算机后来因为多项技术的水平升高,逐渐的计算机变的小型化、高效化。后来因为计算机其本身的计算能力比较的快速:独立模式:计算机之间相互独立。 如:有三个人,每个人做的不同的事物,但是是需要协作的完成。 而这三个人所做的事是需要进行协作的,然而刚开始因为每一台计算机之间都是互相独立的。所以前面的人处理完了就需要将数据
安全产品安全网关类防火墙Firewall防火墙防火墙主要用于边界安全防护的权限控制和安全域的划分。防火墙•信息安全的防护系统,依照特定的规则,允许或是限制传输的数据通过。防火墙是一个由软件和硬件设备组合而成,在内外网之间、专网与公网之间的界面上构成的保护屏障。下一代防火墙•下一代防火墙,NextGenerationFirewall,简称NGFirewall,是一款可以全面应对应用层威胁的高性能防火墙,提供网络层应用层一体化安全防护。生产厂家•联想网御、CheckPoint、深信服、网康、天融信、华为、H3C等防火墙部署部署于内、外网编辑额,用于权限访问控制和安全域划分。UTM统一威胁管理(Un
Linux操作系统——网络配置与SSH远程安装完VMware与系统后,需要进行网络配置。第一个目标为进行SSH连接,可以从本机到VMware进行文件传送,首先需要进行网络配置。1.下载远程软件首先需要先下载安装一款远程软件:FinalShell或者xhell7FinalShellxhell7FinalShell下载:Windows下载http://www.hostbuf.com/downloads/finalshell_install.exemacOS下载http://www.hostbuf.com/downloads/finalshell_install.pkg2.配置CentOS网络安装好
在神经网络方面,我完全是个初学者。我整天都在与ruby-fann和ai4r搏斗,不幸的是我没有任何东西可以展示,所以我想我会来到StackOverflow并询问这里的知识渊博的人。我有一组样本——每天都有一个数据点,但它们不符合我能够找出的任何明确模式(我尝试了几次回归)。不过,我认为看看是否有任何方法可以仅从日期预测future的数据会很好,而且我认为神经网络将是生成希望表达这种关系的函数的好方法.日期是DateTime对象,数据点是十进制数,例如7.68。我一直在将DateTime对象转换为float,然后除以10,000,000,000得到一个介于0和1之间的数字,我一直在将
我有一个nokigiri网络抓取工具,它发布到我试图发布到heroku的数据库。我有一个sinatra应用程序前端,我想从数据库中获取它。我是Heroku和Web开发的新手,不知道处理此类问题的最佳方法。我是否必须将上传到数据库的网络爬虫脚本放在sinatra路由下(如mywebsite.com/scraper),并让它变得如此模糊以至于没有人访问它?最后,我想让sinatra部分成为一个从数据库中提取的restapi。感谢大家的参与 最佳答案 您可以采用两种方法。第一个是通过控制台使用herokurunYOURCMD运行scrap