准备工作:

WIN10添加双网卡:内网:192.168.46.10/24 外网:10.10.10.20/24

外网web服务器一台

内网客户端一台

目的:通过添加静态路由,使双网卡主机能够同时访问内网与外网

Windows双网卡下同时访问内外网_外网

根据拓扑配置对应的IP地址

外网web服务器

nmcli connection modify ens33 ipv4.method manual ipv4.addresses 100.100.1.2/30 ipv4.gateway ''

Windows双网卡下同时访问内外网_内网_02

GW:

#
interface GigabitEthernet0/0/0
ip address 100.100.1.1 255.255.255.252 
 nat outbound 2000
# 
interface GigabitEthernet0/0/1
 ip address 20.20.20.1 255.255.255.252 
#
acl number 2000  
 rule 5 permit source 192.168.46.0 0.0.0.255 
#
ip route-static 0.0.0.0 0.0.0.0 100.100.1.2
#配置回程路由
ip route-static 192.168.46.0 255.255.255.0 20.20.20.2

SW3:

#
ip pool vlan20
 gateway-list 192.168.46.254
 network 192.168.46.0 mask 255.255.255.0
#
ip pool vlan10
 gateway-list 10.10.10.254
 network 10.10.10.0 mask 255.255.255.0
#
interface Vlanif10
 ip address 10.10.10.254 255.255.255.0
#
interface Vlanif20
 ip address 192.168.46.254 255.255.255.0
#
interface Vlanif100
 ip address 20.20.20.2 255.255.255.252
#
interface MEth0/0/1
#
interface GigabitEthernet0/0/1
 port link-type access
 port default vlan 100
#
interface GigabitEthernet0/0/2
 port link-type trunk
 port trunk allow-pass vlan 10 20
#
ip route-static 0.0.0.0 0.0.0.0 20.20.20.1

sw1:

interface GigabitEthernet0/0/1
 port link-type trunk
 port trunk allow-pass vlan 10 20
#
interface GigabitEthernet0/0/22
 port link-type access
 port default vlan 20
#
interface GigabitEthernet0/0/23
 port link-type access
 port default vlan 10
#
interface GigabitEthernet0/0/24
 port link-type access
 port default vlan 10
#

双网卡PC配置(内网其他PC均为自动获取IP):

Windows双网卡下同时访问内外网_外网_03

测试到网关的连通性

外网web服务器:

Windows双网卡下同时访问内外网_内网_04

内网PC:

Windows双网卡下同时访问内外网_内网_05

双网卡主机:

Windows双网卡下同时访问内外网_内网_06

在双网卡主机上配置Windows路由策略,使其能够同时访问外网与内网

#外网路由
route add 0.0.0.0 mask 0.0.0.0 192.168.46.254
#内网路由
route add 10.10.10.20 mask 255.255.255.0 10.10.10.254

Windows双网卡下同时访问内外网_内网_07

访问外网web服务器,状态正常

Windows双网卡下同时访问内外网_外网_08

测试与内网其他主机通讯

Windows双网卡下同时访问内外网_双网卡_09

Windows双网卡下同时访问内外网_外网_10