Mgre实验

最新推荐文章于 2024-10-07 22:56:58 发布

MorningStar_cao

最新推荐文章于 2024-10-07 22:56:58 发布

阅读量90

点赞数

分类专栏： IP 文章标签：网络

本文链接：https://blog.csdn.net/MorningStar_cao/article/details/126907187

版权

IP 专栏收录该内容

5 篇文章 0 订阅

订阅专栏

1.规划IP地址

<Huawei>sys
[Huawei]int g0/0/0
[Huawei-GigabitEthernet0/0/0]ip add 192.168.1.2 24
[Huawei-GigabitEthernet0/0/0]int s1/0/0
[Huawei-Serial1/0/0]ip add 15.1.1.1 24
[Huawei]dis ip int b

<Huawei>sys
[Huawei]int g0/0/0
[Huawei-GigabitEthernet0/0/0]ip add 192.168.2.2 24
[Huawei-GigabitEthernet0/0/0]int s2/0/0
[Huawei-Serial2/0/0]ip add 25.1.1.1 24
[Huawei]dis ip int b

<Huawei>sys
[Huawei]192.168.3.2 24
[Huawei-GigabitEthernet0/0/0]int s2/0/1
[Huawei-Serial2/0/1]ip add 35.1.1.1 24
[Huawei-Serial2/0/1]int g0/0/0
[Huawei-GigabitEthernet0/0/0]ip add 192.168.3.2 24
[Huawei]dis ip int b
[Huawei]dis ip int b

<Huawei>sys
[Huawei]int g0/0/0
[Huawei-GigabitEthernet0/0/0]ip add 192.168.4.2 24
[Huawei]int g0/0/1
[Huawei-GigabitEthernet0/0/1]ip add 45.1.1.1 24

<Huawei>sys
[Huawei]int s2/0/0
[Huawei-Serial2/0/0]ip add 15.1.1.2 24
[Huawei-Serial2/0/0]int s3/0/0
[Huawei-Serial3/0/0]ip add 25.1.1.2 24
[Huawei-Serial3/0/0]int s3/0/1
[Huawei-Serial3/0/1]ip add 35.1.1.2 24
[Huawei-Serial3/0/1]int g0/0/0
[Huawei-GigabitEthernet0/0/0]ip add 45.1.1.2 24
[Huawei]dis ip int b

r1与r5pap配置

认证r5

<Huawei>SYS
Enter system view, return user view with Ctrl+Z.
[Huawei]aaa
[Huawei-aaa]local-user zz password cipher changan
Info: Add a new user.
[Huawei-aaa]local-user zz service-type ppp
[Huawei-aaa]int s2/0/0
[Huawei-Serial2/0/0]link-protocol ppp
[Huawei-Serial2/0/0]ppp authentication-mode pap

认证r1

[Huawei-Serial1/0/0]ppp pap local-user zz password cipher changan
[Huawei-Serial1/0/0]ping 15.1.1.2
  PING 15.1.1.2: 56  data bytes, press CTRL_C to break
    Reply from 15.1.1.2: bytes=56 Sequence=1 ttl=255 time=130 ms
    Reply from 15.1.1.2: bytes=56 Sequence=2 ttl=255 time=20 ms
    Reply from 15.1.1.2: bytes=56 Sequence=3 ttl=255 time=20 ms
    Reply from 15.1.1.2: bytes=56 Sequence=4 ttl=255 time=20 ms
    Reply from 15.1.1.2: bytes=56 Sequence=5 ttl=255 time=20 ms

对 r1 r5双向认证

r5
<Huawei>sys
Enter system view, return user view with Ctrl+Z.
[Huawei]int s2/0/0
[Huawei-Serial2/0/0]ppp pap lo	
[Huawei-Serial2/0/0]ppp pap local-user zz password ci changan
[Huawei-Serial2/0/0]
r1
Huawei-aaa]local-user zz password cipher changan
Info: Add a new user.
[Huawei-aaa]int s1/0/0
[Huawei-Serial1/0/0]ppp au	
[Huawei-Serial1/0/0]ppp authentication-mode pap
[Huawei-Serial1/0/0]

对r2 r5进行chap认证

[Huawei-Serial2/0/0]ppp chap password ci change
[Huawei-Serial2/0/0]
[Huawei-Serial3/0/0]ppp pap loc	
[Huawei-Serial3/0/0]ppp pap local-user zz password ci change
[Huawei-Serial3/0/0]

进行测试

r3 r5 进行封装

[Huawei-Serial3/0/1]link-protocol hdlc
[Huawei-Serial2/0/1]link-protocol hdlc

配置NGRE

[Huawei]int t0/0/0
[Huawei-Tunnel0/0/0]ip ad 10.1.1.1 24
[Huawei-Tunnel0/0/0]tu	
[Huawei-Tunnel0/0/0]tunnel-protocol gre p2mp
[Huawei-Tunnel0/0/0]nhrp net	
[Huawei-Tunnel0/0/0]nhrp network-id 200

其他路由器如上

构建完成

3、构建r1-r4的GRE环境

[R1]int Tunnel 0/0/1

[R1-Tunnel0/0/1]ip add 20.1.1.1 24

[R1-Tunnel0/0/1]tunnel-protocol gre

[R1-Tunnel0/0/1]source 15.1.1.1

[R1-Tunnel0/0/1]destination 45.1.1.2

[r4]int t0/0/1

[r4-Tunnel0/0/1]ip add 20.1.1.2 24

[r4-Tunnel0/0/1]tunnel-protocol gre

[r4-Tunnel0/0/1]source 45.1.1.1

[r4-Tunnel0/0/1]destination 15.1.1.2

五、配置rip。实现全网可达

[r1]int t0/0/0

[r1-Tunnel0/0/0]undo rip split-horizon

可以访问R5上的环回

在边界路由上配置NAT

[R1]acl 2000   
[R1-acl-basic-2000]rule permit source 192.168.1.0 0.0.0.255
[R1]interface Serial 4/0/0
[R1-Serial1/0/0]nat outbound 2000

对其余的设备完成配置

最后完成要求

MorningStar_cao

关注

0
点赞
踩
1

收藏

觉得还不错? 一键收藏
0
评论
复制链接

分享到 QQ

分享到新浪微博

扫一扫

专栏目录