一、实验目的及拓扑
拓扑结构如下:
二、基础配置
(一)按拓扑所示配置接口IP地址(此处省略.....)
(二)按拓扑所示配置BGP路由,其中AS2中的三个路由器使用router-id建立路由,并启用ospf路由,其余AS1和AS3使用接口建立路由(此处省略......)
三、详细配置及其效果
(一)R2去往9.9.9.0时,使用R1这条路径并保证任何情况下都走R1
1、在R6上配置
#
bgp 2
router-id 6.6.6.6
peer 1.1.1.1 as-number 2
peer 1.1.1.1 connect-interface LoopBack0
peer 3.3.3.3 as-number 2
peer 3.3.3.3 connect-interface LoopBack0
peer 10.1.46.4 as-number 3
peer 10.1.56.5 as-number 3
#
ipv4-family unicast
undo synchronization
network 9.9.9.0 255.255.255.0
peer 1.1.1.1 enable
peer 1.1.1.1 reflect-client
peer 1.1.1.1 next-hop-local
peer 3.3.3.3 enable
peer 3.3.3.3 reflect-client
peer 3.3.3.3 next-hop-local
peer 10.1.46.4 enable
peer 10.1.56.5 enable
#
2、修改来自R1的路由协议优先值全部改为100
[R2-bgp]peer 10.1.12.1 preferred-value 100
[R2-bgp]dis bgp routing-table
BGP Local router ID is 2.2.2.2
Status codes: * - valid, > - best, d - damped,
h - history, i - internal, s - suppressed, S - Stale
Origin : i - IGP, e - EGP, ? - incomplete
Total Number of Routes: 2
Network NextHop MED LocPrf PrefVal Path/Ogn
*> 9.9.9.0/24 10.1.12.1 100 2i
* 10.1.23.3 0 2i
3、也可单独针对来自R1的9.9.9.0/24这个路由进行设置
#
bgp 1
router-id 2.2.2.2
peer 10.1.12.1 as-number 2
peer 10.1.23.3 as-number 2
#
ipv4-family unicast
undo synchronization
peer 10.1.12.1 enable
peer 10.1.12.1 route-policy R1 import
peer 10.1.12.1 preferred-value 100
peer 10.1.23.3 enable
#
route-policy R1 permit node 10
if-match ip-prefix 1
apply preferred-value 200
#
route-policy R1 permit node 20
#
ip ip-prefix 1 index 10 permit 9.9.9.0 24
#
4、最终还是route-policy起效
Network NextHop MED LocPrf PrefVal Path/Ogn
*> 9.9.9.0/24 10.1.12.1 200 2i
* 10.1.23.3 0 2i
(二)将R3发给R2的9.9.9.0的weight修改为50,使用route-policy实现
#
route-policy R3 permit node 10
if-match ip-prefix 1
apply preferred-value 50
#
route-policy R3 permit node 20
#
#
bgp 1
router-id 2.2.2.2
peer 10.1.12.1 as-number 2
peer 10.1.23.3 as-number 2
#
ipv4-family unicast
undo synchronization
peer 10.1.12.1 enable
peer 10.1.12.1 route-policy R1 import
peer 10.1.12.1 preferred-value 100
peer 10.1.23.3 enable
peer 10.1.23.3 route-policy R3 import
#
Total Number of Routes: 2
Network NextHop MED LocPrf PrefVal Path/Ogn
*> 9.9.9.0/24 10.1.12.1 200 2i
* 10.1.23.3 50 2i
(三)R6去往2.2.2.0通过R3走,通过修改到达IBGP邻居地址的IGP度量值实现,并要求R6到达R1的loopback0接口的路由保持不变
<R6>dis bgp routing-table
BGP Local router ID is 6.6.6.6
Total Number of Routes: 3
Network NextHop MED LocPrf PrefVal Path/Ogn
*>i 2.2.2.0/24 1.1.1.1 0 100 0 1i
* i 3.3.3.3 0 100 0 1i
*> 9.9.9.0/24 0.0.0.0 0 0 i
[R6]dis ip routing-table 1.1.1.1
Destination/Mask Proto Pre Cost Flags NextHop Interface
1.1.1.1/32 OSPF 10 1 D 10.1.16.1 GigabitEthernet0/0/0
1、修改Cost值为10
[R6-GigabitEthernet0/0/0]ospf cost 10
2、保障R6至R1环回口路由不变
[R3-GigabitEthernet0/0/2]ospf cost 20
[R1-GigabitEthernet0/0/2]ospf cost 20
3、路由已改变
[R6]dis bgp routing-table
Total Number of Routes: 3
Network NextHop MED LocPrf PrefVal Path/Ogn
*>i 2.2.2.0/24 3.3.3.3 0 100 0 1i
* i 1.1.1.1 0 100 0 1i
*> 9.9.9.0/24 0.0.0.0 0 0 i
(四)在R2上通告192.168.2.0路由,将R6从R1这边学到此路由的localpre改为160,从R3这边学到次路由的localpre改为360。在R6上配置
<R6>dis bgp routing-table
BGP Local router ID is 6.6.6.6
Total Number of Routes: 5
Network NextHop MED LocPrf PrefVal Path/Ogn
*>i 2.2.2.0/24 3.3.3.3 0 100 0 1i
* i 1.1.1.1 0 100 0 1i
*> 9.9.9.0/24 0.0.0.0 0 0 i
*>i 192.168.2.0 3.3.3.3 0 100 0 1i
* i 1.1.1.1 0 100 0 1i
1、在R6上设置:
#
bgp 2
router-id 6.6.6.6
peer 1.1.1.1 as-number 2
peer 1.1.1.1 connect-interface LoopBack0
peer 3.3.3.3 as-number 2
peer 3.3.3.3 connect-interface LoopBack0
peer 10.1.46.4 as-number 3
peer 10.1.56.5 as-number 3
#
ipv4-family unicast
undo synchronization
network 9.9.9.0 255.255.255.0
peer 1.1.1.1 enable
peer 1.1.1.1 route-policy R1 import
peer 3.3.3.3 enable
peer 3.3.3.3 route-policy R3 import
peer 3.3.3.3 reflect-client
peer 3.3.3.3 next-hop-local
peer 10.1.46.4 enable
peer 10.1.56.5 enable
#
route-policy R1 permit node 10
if-match ip-prefix 1
apply local-preference 160
#
route-policy R1 permit node 20
#
route-policy R3 permit node 10
if-match ip-prefix 1
apply local-preference 360
#
route-policy R3 permit node 20
#
ip ip-prefix 1 index 20 permit 192.168.2.0 24
#
2、结果展示:
[R6]dis bgp routing-table
Total Number of Routes: 4
Network NextHop MED LocPrf PrefVal Path/Ogn
*>i 2.2.2.0/24 3.3.3.3 0 100 0 1i
* i 1.1.1.1 0 100 0 1i
*> 9.9.9.0/24 0.0.0.0 0 0 i
*>i 192.168.2.0 3.3.3.3 0 360 0 1i
(五)在R3上将R2发来的2.2.2.0和192.168.2.0的路由的起源属性改为“?”,使R3去往这些网段使用R1
1、在R3上配置
#
bgp 2
router-id 3.3.3.3
peer 6.6.6.6 as-number 2
peer 6.6.6.6 connect-interface LoopBack0
peer 10.1.23.2 as-number 1
#
ipv4-family unicast
undo synchronization
peer 6.6.6.6 enable
peer 6.6.6.6 next-hop-local
peer 10.1.23.2 enable
peer 10.1.23.2 route-policy R2 import
#
route-policy R2 permit node 10
if-match ip-prefix 1
apply origin incomplete
#
route-policy R2 permit node 20
#
ip ip-prefix 1 index 10 permit 192.168.2.0 24
ip ip-prefix 1 index 20 permit 2.2.2.0 24
#
2、结果展示
[R3-bgp]dis bgp routing-table
Total Number of Routes: 4
Network NextHop MED LocPrf PrefVal Path/Ogn
*>i 2.2.2.0/24 1.1.1.1 0 100 0 1i
* 10.1.23.2 0 0 1?
*>i 9.9.9.0/24 6.6.6.6 0 100 0 i
*> 192.168.2.0 10.1.23.2 0 0 1?
(六)在R4上通告4.4.4.0,在R5上通告5.5.5.0,要求R6访问5.5.5.0时优先使用R4,R6访问4.4.4.0时优先使用R5,通过med属性实现,在R6上实现配置
1、在R6上配置
#
bgp 2
router-id 6.6.6.6
peer 1.1.1.1 as-number 2
peer 1.1.1.1 connect-interface LoopBack0
peer 3.3.3.3 as-number 2
peer 3.3.3.3 connect-interface LoopBack0
peer 10.1.46.4 as-number 3
peer 10.1.56.5 as-number 3
#
ipv4-family unicast
undo synchronization
network 9.9.9.0 255.255.255.0
peer 1.1.1.1 enable
peer 1.1.1.1 route-policy R1 import
peer 3.3.3.3 enable
peer 3.3.3.3 route-policy R3 import
peer 3.3.3.3 reflect-client
peer 3.3.3.3 next-hop-local
peer 10.1.46.4 enable
peer 10.1.46.4 route-policy R4 import
peer 10.1.56.5 enable
peer 10.1.56.5 route-policy R5 import
#
#
route-policy R4 permit node 10
if-match ip-prefix 4
apply cost 40
#
route-policy R4 permit node 20
if-match ip-prefix 5
apply cost 30
#
route-policy R4 permit node 30
#
route-policy R5 permit node 10
if-match ip-prefix 4
apply cost 30
#
route-policy R5 permit node 20
if-match ip-prefix 5
apply cost 40
#
route-policy R5 permit node 30
#
ip ip-prefix 1 index 20 permit 192.168.2.0 24
ip ip-prefix 4 index 10 permit 4.4.4.0 24
ip ip-prefix 5 index 10 permit 5.5.5.0 24
#
2、结果验证
[R6-bgp]dis bgp routing-table
Total Number of Routes: 7
Network NextHop MED LocPrf PrefVal Path/Ogn
*>i 2.2.2.0/24 1.1.1.1 0 100 0 1i
*> 4.4.4.0/24 10.1.56.5 30 0 3i
* 10.1.46.4 40 0 3i
*> 5.5.5.0/24 10.1.46.4 30 0 3i
* 10.1.56.5 40 0 3i
*> 9.9.9.0/24 0.0.0.0 0 0 i
*>i 192.168.2.0 3.3.3.3 0 360 0 1?
(七)R2访问4.4.4.0时通过R1,访问5.5.5.0时通过R3,使用AS-PATH属性实现,分别在R1和R3上实现
原有情况
<R2>dis bgp routing-table
Network NextHop MED LocPrf PrefVal Path/Ogn
*> 2.2.2.0/24 0.0.0.0 0 0 i
*> 4.4.4.0/24 10.1.12.1 100 2 3i
* 10.1.23.3 0 2 3i
*> 5.5.5.0/24 10.1.12.1 100 2 3i
* 10.1.23.3 0 2 3i
*> 9.9.9.0/24 10.1.12.1 200 2i
* 10.1.23.3 50 2i
*> 192.168.2.0 0.0.0.0 0 0 i
配置思路:使R1传送4.4.4.0时的ASPATH的路劲为2、3,传送5.5.5.0时的ASPATH路径为2、2、3;使R3传送5.5.5.0时的ASPATH路径为2、3,传送4.4.4.0时的ASPATH的路劲为2、2、3
R1上配置
#
bgp 2
router-id 1.1.1.1
peer 6.6.6.6 as-number 2
peer 6.6.6.6 connect-interface LoopBack0
peer 10.1.12.2 as-number 1
#
ipv4-family unicast
undo synchronization
peer 6.6.6.6 enable
peer 6.6.6.6 next-hop-local
peer 10.1.12.2 enable
peer 10.1.12.2 route-policy aspath export
#
#
route-policy aspath permit node 10
if-match ip-prefix 5
apply as-path 2 additive
#
route-policy aspath permit node 30
#
ip ip-prefix 5 index 10 permit 5.5.5.0 24
R3上配置
#
route-policy R2 permit node 10
if-match ip-prefix 1
apply origin incomplete
#
route-policy R2 permit node 20
#
route-policy aspath permit node 10
if-match ip-prefix 4
apply as-path 2 additive
#
route-policy aspath permit node 30
#
ip ip-prefix 1 index 10 permit 192.168.2.0 24
ip ip-prefix 1 index 20 permit 2.2.2.0 24
ip ip-prefix 4 index 10 permit 4.4.4.0 24
#
#
bgp 2
router-id 3.3.3.3
peer 6.6.6.6 as-number 2
peer 6.6.6.6 connect-interface LoopBack0
peer 10.1.23.2 as-number 1
#
ipv4-family unicast
undo synchronization
peer 6.6.6.6 enable
peer 6.6.6.6 next-hop-local
peer 10.1.23.2 enable
peer 10.1.23.2 route-policy R2 import
peer 10.1.23.2 route-policy aspath export
#
结果验证
<R2>dis bgp routing-table
Total Number of Routes: 8
Network NextHop MED LocPrf PrefVal Path/Ogn
*> 2.2.2.0/24 0.0.0.0 0 0 i
*> 4.4.4.0/24 10.1.12.1 0 2 3i
* 10.1.23.3 0 2 2 3i
*> 5.5.5.0/24 10.1.23.3 0 2 3i
* 10.1.12.1 0 2 2 3i
*> 9.9.9.0/24 10.1.12.1 200 2i
* 10.1.23.3 50 2i
*> 192.168.2.0 0.0.0.0 0 0 i