BGP策略实验

BGP策略实验

一.拓扑：

二.实验要求：

1.使用PreVa1策略，确保R4通过R2到达192.168.10.0/24
2.使用AS_Path策略，确保R4通过R3到达192.168.11.0/24
3.配置MED策略，确保R4通过R3到达192.168.12.0/24
4.使用Local Preference策略，确保R1通过R2到达192.168.1.0/24
5.使用Local Preference策略，确保R1通过R3到达192.168.2.0/24
6.配置负载均衡，确保R1通过R2和R3到达192.168.3.0/24
7.使用As策略，AS 500不接受任何始发于AS 123的路由
8.使用自定义Community策略，确保192.168.3.0/24路由不会被发布到AS 500
9.IBGP使用环回接口建邻，EBGP使用物理接口建邻
10.修改AS 123中 的用户网段为Broadcast,方便后续在BGP中宣告
11.BGP宣告路由时，仅宣告24网段的用户路由

三.实验步骤：

1. 配置IP
2. 配置BGP
3. 进行路由宣告
4. 配置策略

四.配置

R1

[R1]int g0/0/0
[R1-GigabitEthernet0/0/0]ip add 12.0.0.1 24
[R1-GigabitEthernet0/0/0]int g0/0/1
[R1-GigabitEthernet0/0/1]ip add 13.0.0.1 24
[R1-GigabitEthernet0/0/1]int g0/0/2
[R1-GigabitEthernet0/0/2]ip add 15.0.0.1 24
[R1-GigabitEthernet0/0/2]int l 0
[R1-LoopBack0]ip add 1.1.1.1 32
[R1-LoopBack0]int l 0
[1-LoopBack0]ip add 192.168.100.1 24

R2

[R2]int g0/0/0
[R2-GigabitEthernet0/0/0]ip add 24.0.0.2 24
[R2-GigabitEthernet0/0/0]int g0/0/01
[R2-GigabitEthernet0/0/1]ip add 12.0.0.2 24
[R2-GigabitEthernet0/0/1]int l 0
[R2-LoopBack0]ip add 2.2.2.2 32
[R2-LoopBack0]int l 1
[R2-LoopBack1]ip add 192.168.20.1 24
[R2-LoopBack1]ospf network-type broadcast 

R3

[R3]int g0/0/0
[R3-GigabitEthernet0/0/0]ip add 34.0.0.3 24
[R3-GigabitEthernet0/0/0]int g0/0/1
[R3-GigabitEthernet0/0/1]ip add 13.0.0.3 24
[R3-GigabitEthernet0/0/1]int l 0
[R3-LoopBack0]ip add 3.3.3.3 32
[R3-LoopBack0]int l 1
[R3-LoopBack1]ip add 192.168.30.1 24
[R3-LoopBack1]ospf network-type broadcast 

R4

[R4]int g0/0/0
[R4-GigabitEthernet0/0/0]ip add 24.0.0.4 24
[R4-GigabitEthernet0/0/0]int g0/0/1
[R4-GigabitEthernet0/0/1]ip add 34.0.0.4 24
[R4-GigabitEthernet0/0/1]int l 0
[R4-LoopBack0]ip add 192.168.1.1 24
[R4-LoopBack0]int l 1
[R4-LoopBack1]ip add 192.168.2.1 24
[R4-LoopBack1]int  l2
[R4-LoopBack2]ip add 192.168.3.1 24

R5

[R5]int g0/0/0
[R5-GigabitEthernet0/0/0]ip add 15.0.0.5 24
[R5-GigabitEthernet0/0/0]int g0/0/1
[R5-GigabitEthernet0/0/1]int l 0
[R5-LoopBack0]ip add 192.168.10.1 24
[R5-LoopBack0]int  l 1
[R5-LoopBack1]ip add 192.168.11.1 24
[R5-LoopBack1]int  l 2
[R5-LoopBack2]ip add 192.168.12.1 24

AS

[R1]ospf 1 router-id 1.1.1.1
[R1-ospf-1]area 0
[R1-ospf-1-area-0.0.0.0]network 1.1.1.1 0.0.0.0
[R1-ospf-1-area-0.0.0.0]network 192.168.100.1 0.0.0.0
[R1-ospf-1-area-0.0.0.0]network 12.0.0.1 0.0.0.0
[R1-ospf-1-area-0.0.0.0]network 13.0.0.1 0.0.0.0

[R2]ospf 1 router-id 2.2.2.2
[R2-ospf-1]area 0
[R2-ospf-1-area-0.0.0.0]network 12.0.0.2 0.0.0.0
[R2-ospf-1-area-0.0.0.0]network 2.2.2.2 0.0.0.0
[R2-ospf-1-area-0.0.0.0]network 192.168.20.1 0.0.0.0	

[R3]ospf 1 router-id 3.3.3.3
[R3-ospf-1]area 0
[R3-ospf-1-area-0.0.0.0]network 13.0.0.3 0.0.0.0
[R3-ospf-1-area-0.0.0.0]network 3.3.3.3 0.0.0.0
[R3-ospf-1-area-0.0.0.0]network 192.168.30.1 0.0.0.0

配置BGP

[R1]bgp 123
[R1-bgp]router-id 1.1.1.1
[R1-bgp]peer 15.0.0.5 as-number 500
[R1-bgp]peer 2.2.2.2 as-number 123
[R1-bgp]peer 2.2.2.2 connect-interface LoopBack 0
[R1-bgp]peer 2.2.2.2 next-hop-local	
[R1-bgp]peer 3.3.3.3 as-number 123
[R1-bgp]peer 3.3.3.3 connect-interface LoopBack 0
[R1-bgp]peer 3.3.3.3 next-hop-local

[R2]bgp 123
[R2-bgp]router-id 2.2.2.2
[R2-bgp]peer 24.0.0.4 as-number 400
[R2-bgp]peer 1.1.1.1 as-number 123
[R2-bgp]peer 1.1.1.1 connect-interface LoopBack 0
[R2-bgp]peer 1.1.1.1 next-hop-local
[R2-bgp]peer 3.3.3.3 as-number 123
[R2-bgp]peer 3.3.3.3 connect-interface LoopBack 0
[R2-bgp]peer 3.3.3.3 next-hop-local

[R3]bgp 123
[R3-bgp]router-id 3.3.3.3
[R3-bgp]peer 34.0.0.4 as-number 400
[R3-bgp]peer 1.1.1.1 as-number 123
[R3-bgp]peer 1.1.1.1 connect-interface LoopBack  0
[R3-bgp]peer 1.1.1.1 next-hop-local
[R3-bgp]peer 2.2.2.2 as-number 123
[R3-bgp]peer 2.2.2.2 connect-interface LoopBack 0
[R3-bgp]peer 2.2.2.2 
[R3-bgp]peer 2.2.2.2 next-hop-local

[R4]bgp 400
[R4-bgp]router-id 4.4.4.4
[R4-bgp]peer 24.0.0.2 as-number 123
[R4-bgp]peer 34.0.0.3 as-number 123

[R5]bgp 500
[R5-bgp]router-id 5.5.5.5
[R5-bgp]peer 15.0.0.1 as-number 123

进行路由宣告

[R4-bgp]network 192.168.1.0 24
[R4-bgp]network 192.168.2.0 24
[R4-bgp]network 192.168.3.0 24

[R5-bgp]network 192.168.11.0 24
[R5-bgp]network 192.168.10.0 24
[R5-bgp]network 192.168.12.0 24

[R1]bgp 123
[R1-bgp]network 192.168.20.0 24	
[R1-bgp]network 192.168.30.0 24
[R1-bgp]network 192.168.100.0 24
---R2,R3同上

配置策略

[R4]ip ip-prefix aa permit 192.168.10.0 24
[R4]route-policy aa permit node 10
Info: New Sequence of this List.
[R4-route-policy]if-match ip-prefix aa
[R4-route-policy]apply preferred-value 100
[R4]route-policy aa permit node 20
Info: New Sequence of this List.
[R4-route-policy]q
[R4]bgp 400
[R4-bgp]peer 24.0.0.2 route-policy aa import 

[R4]ip ip-prefix bb permit 192.168.11.0 24
[R4]route-policy aa permit node 15
Info: New Sequence of this List.
[R4-route-policy]if-match ip-prefix bb
[R4-route-policy]apply as-path 123 123 500 overwrite 
Warning: The AS-Path lists of routes to which this route-policy is applied will 
be overwritten. Continue? [Y/N]y
[R4-route-policy]q

[R2]ip ip-prefix aa permit 192.168.12.0 24
[R2]route-policy aa permit node 10
Info: New Sequence of this List.
[R2-route-policy]if-match ip-prefix aa
[R2-route-policy]apply cost 100
[R2-route-policy]apply cost 200
[R2-route-policy]q
[R2]route-policy aa permit node 20
Info: New Sequence of this List.
[R2-route-policy]q
[R2]bgp 123
[R2-bgp]peer 24.0.0.4 route-policy aa export 

[R3]ip ip-prefix aa permit 192.168.12.0 24
[R3]route-policy aa permit node 10
Info: New Sequence of this List.
[R3-route-policy]if-match ip-prefix aa
[R3-route-policy]apply cost 20
[R3]route-policy aa permit node 20
Info: New Sequence of this List.
[R3-route-policy]q
[R3]bgp 123
[R3-bgp]peer 34.0.0.4 route-policy aa export 

[R1]ip ip-prefix aa permit 192.168.1.0 24
[R1]ip ip-prefix bb permit 192.168.2.0 24
[R1]route-policy aa permit node  10
Info: New Sequence of this List.
[R1-route-policy]if-match ip-prefix aa
[R1-route-policy]apply local-preference 200
[R1-route-policy]q
[R1]route-policy aa permit node 20
Info: New Sequence of this List.
[R1-route-policy]q
[R1]route-policy bb permit node 10
Info: New Sequence of this List.
[R1-route-policy]if-match ip-prefix bb
[R1-route-policy]apply local-preference 200
[R1]route-policy bb permit node 20
Info: New Sequence of this List.
[R1-route-policy]q
[R1]bgp 123
[R1-bgp]peer 2.2.2.2 route-policy aa import 
[R1-bgp]peer 3.3.3.3 route-policy bb  import 

[R1]bgp 123
[R1-bgp]maximum load-balancing 2

[R5]ip as-path-filter 1 deny ^123$
[R5]ip as-path-filter 1 permit .*
[R5]bgp 500
[R5-bgp]peer 15.0.0.1 as-path-filter 1 import 

[R1]ip ip-prefix cc permit 192.168.3.0 24
[R1-route-policy]q
[R1]route-policy aa permit node 15
Info: New Sequence of this List.
[R1-route-policy]if-match ip-prefix cc
[R1-route-policy]apply community no-export
[R1-route-policy]q
[R1]route-policy bb permit node 15
Info: New Sequence of this List.
[R1-route-policy]if-match ip-prefix
[R1-route-policy]if-match ip-prefix cc
[R1-route-policy]apply community no-export