相信在某些情況下,單位既有的防火牆可能無法被替換,在這樣的情況下我們可以使用UniFi Switch作為L3 Swicth嗎?答案是可以的!那些UniFi Switch 具備Layer 3 Routing功能?例如USW-PRO、USW-Aggregation-Pro、USW-Enterprise等系列都可以,詳細規格可參閱UI官方網站.
本次範例採用UCK-G2-PLUS、USW-Pro-48、ER-X進行實作,實作前請先確認UniFi Network application升級到 V5.13.9或更新的版本.
打開Network application \ SETTINGS \ Networks \ Create New Network,輸入Network NameNetwork Name,Router選擇USW-Pro-48,輸入所需的Gateway IP/Subnet,VLAN ID等參數.
本次範例建立VLAN 155及166兩個VLAN,UniFi Switch啟用Layer 3 Routing功能後會自動建立一個Inter-VLAN routing的Network(VLAN 4040),Layer 3 Switch在這個Network的IP預設為10.255.253.2.
*當環境中有多台Layer 3 Switch時可能改變.
在USW-Pro-48可以看到有一條預設路由網10.255.253.1送,介面的來源IP為10.255.253.2.
在Router上創建VLAN Virtual Interface (VIF),VLAN ID 4040,IP位址10.255.253.1.
設定靜態路由把Layer 3 Switch上的網段指向10.255.253.2.
將電腦連接到USW-Pro-48的VLAN 155介面,電腦確實取的192.168.155.0/24網段IP.
經測試電腦可以ping到預設閘道192.168.155.1.
經測試電腦可以ping到另一個網段的預設閘道192.168.166.1.
經測試電腦可以ping到中華電信的DNS168.95.1.1.
透過tracet確認封包經由USW-Pro-48(192.168.155.1)>ER-X(10.255.253.1)最後連上網際網路...
凱文科技,是您UniFi解決方案的不二選擇喔!
Kevin Wang
TEL : 0908081815
Mail : kevin@kevin-tech.com.tw
Great article! It's helpful to know that UniFi Switches like USW-PRO, USW-Aggregation-Pro, and USW-Enterprise can be used as Layer 3 switches when a UniFi Gateway is not available. This is a great option for those looking to integrate UniFi hardware into their existing network infrastructure. For anyone needing further assistance with networking or related assignments, Python Programming Assignment Help by MyAssignmentHelp can provide expert support to help you with coding, troubleshooting, and optimization tasks in your projects. Keep up the good work!