一、拓扑图
二、环回接口及rid配置
三、各AS区域的配置
各rid就用 x.x.x.x
R2
R3
R4
R5
R6
R7
三、BGP(EBGP、IBGP、联邦、反射)
R1
bgp 1
router-id 1.1.1.1
peer 12.0.0.2 as-number 2
ipv4-family unicast
undo synchronization
network 10.1.1.0 255.255.255.0
peer 12.0.0.2 enable
R2
bgp 64512
router-id 2.2.2.2
confederation id 2
confederation peer-as 64513
peer 3.3.3.3 as-number 64512 —联邦内建邻要写上联邦AS号
peer 3.3.3.3 connect-interface LoopBack0
peer 5.5.5.5 as-number 64513
peer 5.5.5.5 ebgp-max-hop 255
peer 5.5.5.5 connect-interface LoopBack0
peer 12.0.0.1 as-number 1
aggregate 172.16.0.0 255.255.248.0 detail-suppressed
network 172.16.0.0 255.255.248.0
network 172.16.0.0 255.255.255.252
network 172.16.0.12 255.255.255.252
network 172.16.2.0 255.255.255.0
peer 3.3.3.3 next-hop-local
peer 5.5.5.5 next-hop-local
]ip route-static 172.16.0.0 21 null0
R3
bgp 64512
router-id 3.3.3.3
confederation id 2
peer 2.2.2.2 as-number 64512
peer 2.2.2.2 connect-interface LoopBack0
peer 4.4.4.4 as-number 64512
peer 4.4.4.4 connect-interface LoopBack0
network 172.16.0.0 255.255.255.252
network 172.16.0.4 255.255.255.252
network 172.16.3.0 255.255.255.0
peer 2.2.2.2 enable
peer 2.2.2.2 reflect-client
peer 2.2.2.2 next-hop-local
peer 4.4.4.4 enable
peer 4.4.4.4 reflect-client
peer 4.4.4.4 next-hop-local
R4
bgp 64512
router-id 4.4.4.4
confederation id 2
confederation peer-as 64513
peer 3.3.3.3 as-number 64512
peer 3.3.3.3 connect-interface LoopBack0
peer 7.7.7.7 as-number 64513
peer 7.7.7.7 ebgp-max-hop 255
peer 7.7.7.7 connect-interface LoopBack0
network 172.16.0.4 255.255.255.252
network 172.16.0.8 255.255.255.252
network 172.16.4.0 255.255.255.0
peer 3.3.3.3 next-hop-local
peer 7.7.7.7 next-hop-local
R5
bgp 64513
router-id 5.5.5.5
confederation id 2
confederation peer-as 64512
peer 2.2.2.2 as-number 64512
peer 2.2.2.2 ebgp-max-hop 255
peer 2.2.2.2 connect-interface LoopBack0
peer 6.6.6.6 as-number 64513
peer 6.6.6.6 connect-interface LoopBack0
network 172.16.0.12 255.255.255.252
network 172.16.0.16 255.255.255.252
network 172.16.5.0 255.255.255.0
peer 2.2.2.2 next-hop-local
peer 6.6.6.6 next-hop-local
R6
bgp 64513
router-id 6.6.6.6
confederation id 2
peer 5.5.5.5 as-number 64513
peer 5.5.5.5 connect-interface LoopBack0
peer 7.7.7.7 as-number 64513
peer 7.7.7.7 connect-interface LoopBack0
network 172.16.0.16 255.255.255.252
network 172.16.0.20 255.255.255.252
network 172.16.6.0 255.255.255.0
peer 5.5.5.5 reflect-client
peer 5.5.5.5 next-hop-local
peer 7.7.7.7 reflect-client
peer 7.7.7.7 next-hop-local
R7
bgp 64513
router-id 7.7.7.7
confederation id 2
confederation peer-as 64512
peer 4.4.4.4 as-number 64512
peer 4.4.4.4 ebgp-max-hop 255
peer 4.4.4.4 connect-interface LoopBack0
peer 6.6.6.6 as-number 64513
peer 6.6.6.6 connect-interface LoopBack0
peer 78.0.0.8 as-number 3
network 172.16.0.0 255.255.248.0
network 172.16.0.8 255.255.255.252
network 172.16.0.20 255.255.255.252
network 172.16.7.0 255.255.255.0
peer 4.4.4.4 next-hop-local
peer 6.6.6.6 next-hop-local
peer 78.0.0.8 next-hop-local
aggregate 172.16.0.0 21 detail-suppressed
ip route-static 172.16.0.0 21 null0
R8
bgp 3
router-id 8.8.8.8
peer 78.0.0.7 as-number 2
network 11.1.1.0 255.255.255.0
peer 78.0.0.7 enable
四、解决R1/R8类似于私网段不可再公网中出现的问题使用VPN技术
R1
interface Tunnel0/0/0
ip address 192.168.0.1 255.255.255.252
tunnel-protocol gre
source 10.1.1.1
destination 11.1.1.1
[r1]ip route-static 192.168.2.0 24 192.168.0.2
R8
interface Tunnel0/0/0
ip address 192.168.0.2 255.255.255.252
tunnel-protocol gre
source 11.1.1.1
destination 10.1.1.1
[r8]ip route-static 192.168.1.0 24 192.168.0.1
该过程中会出现联邦EBGP对等体关系的设备上进行指定时出错这样的问题,是因为先配置了 R2和R5的邻居关系导致,解决方法:先删除现有的邻居关系再指定对等体