BGP综合实验
1.实验要求
1,AS1存在两个环回,一个地址为192.168.1.0/24该地址不能在任何协议中宣告
AS3中存在两个环回,一个地址为192.168.2.0/24该地址不能在任何协议中宣告,最终要求这两个环回可以互相通讯
2,整个AS2的Ip地址为172.16.0.8/16,请合理划分
3,AS间的骨干链路IP地址随意定制
4,使用BGP协议让整个网络所有设备的环回可以互相访问
5,减少路由条目数量,避免环路出现
2.实验拓扑
3.实验步骤
1.基于192.16.0.0/16地址规划
环回地址
R1:1.1.1.1 24
192.168.1.1 24
R2:172.16.1.2 32
R3:172.16.1.3 32
R4:172.16.1.4 32
R5:172.16.1.5 32
R6:172.16.1.6 32
R7:172.16.1.7 32
R8:8.8.8.8 32
192.168.2.1 24
业务网段
业务网段:
R1:12.0.0.0 24
R2-R3:172.16.0.0 30
R2-R4:172.16.0.8 30
R3-R4:172.16.0.4 30
R5-R6:172.16.0.12 30
R6-R7:172.16.0.16 30
R7-R4:172.16.0.20 30
R7-R8:78.0.0.0 24
R1:
R2:
R3:
R4:
R5:
R6:
R7:
R8:
2.在AS2中进行OSPF宣告
R2:
area 0.0.0.0
network 172.16.0.0 0.0.255.255
R3:
[r3-ospf-1-area-0.0.0.0]net 172.16.0.0 0.0.255.255
R4:
[r4-ospf-1-area-0.0.0.0]net 172.16.0.0 0.0.255.255
R5:
[r5-ospf-1-area-0.0.0.0]net 172.16.0.0 0.0.255.255
R6:
[r6-ospf-1-area-0.0.0.0]net 172.16.0.0 0.0.255.255
R7:
[r7-ospf-1-area-0.0.0.0]net 172.16.0.0 0.0.255.255
测试是否可达
3.启动BGP并相互建邻
R1:
r1]bgp 1
[r1-bgp]peer 12.0.0.2 as-number 2
R2:
bgp 64512
router-id 2.2.2.2
confederation id 2
confederation peer-as 64513
peer 12.0.0.1 as-number 1
peer 172.16.1.3 as-number 64512
peer 172.16.1.3 connect-interface LoopBack0
peer 172.16.1.5 as-number 64513
peer 172.16.1.5 connect-interface LoopBack0
peer 172.16.1.5 ebgp-max-hop 10
R3:
bgp 64512
router-id 3.3.3.3
confederation id 2
peer 172.16.1.2 as-number 64512
peer 172.16.1.2 connect-interface LoopBack0
peer 172.16.1.4 as-number 64512
peer 172.16.1.4 connect-interface LoopBack0
R4:
bgp 64512
confederation id 2
confederation peer-as 64513
peer 172.16.1.3 as-number 64512
peer 172.16.1.3 connect-interface LoopBack0
peer 172.16.1.7 as-number 64513
peer 172.16.1.7 connect-interface LoopBack0
peer 172.16.1.7 ebgp-max-hop 10
R5:
bgp 64513
router-id 5.5.5.5
confederation id 2
confederation peer-as 64512
peer 172.16.1.2 as-number 64512
peer 172.16.1.2 ebgp-max-hop 10
peer 172.16.1.2 connect-interface LoopBack0
peer 172.16.1.6 as-number 64513
peer 172.16.1.6 connect-interface LoopBack0
R6:
bgp 64513
router-id 6.6.6.6
confederation id 2
peer 172.16.1.5 as-number 64513
peer 172.16.1.5 connect-interface LoopBack0
peer 172.16.1.7 as-number 64513
peer 172.16.1.7 connect-interface LoopBack0
R7:
bgp 64513
router-id 7.7.7.7
confederation id 2
confederation peer-as 64512
peer 78.0.0.2 as-number 3
peer 172.16.1.4 as-number 64512
peer 172.16.1.4 ebgp-max-hop 10
peer 172.16.1.4 connect-interface LoopBack0
peer 172.16.1.6 as-number 64513
peer 172.16.1.6 connect-interface LoopBack0
4.r1进行宣告
(1)
r1-bgp]network 12.0.0.0 24
(2)
在R2上查看BGP表发现学到R1的业务网段是优的,但是R3和R5上学到的却是不优的,所以需要修改下一跳IP地址
[R2-bgp]peer 172.16.1.3 next-hop-local
[R2-bgp]peer 172.16.1.5 next-hop-local
(3)
在R3和R6上写反射器
[R3-bgp]peer 172.16.1.4 reflect-client
[R6-bgp]peer 172.16.1.7 reflect-client
5.在R8上宣告业务网段,并在R7上修改下一跳
net 78.0.0.0 24
[R7-bgp]peer 172.16.1.4 next-hop-local
[R7-bgp]peer 172.16.1.6 next-hop-local
6.在R2上宣告聚合后的用户接口网路
[R2]ip route-static 172.16.0.0 21 NULL 0
[R2]bgp 64512
[R2-bgp]network 172.16.0.0 21
在R7上宣告聚合后的用户接口网路
[R7]ip route-static 172.16.0.0 21 NULL 0
[R7]bgp 64513
[R7-bgp]network 172.16.0.0 21
7.给两个固定环回搭建虚拟隧道
[r1-Tunnel0/0/0]display this
[V200R003C00]
#
interface Tunnel0/0/0
ip address 192.168.3.1 255.255.255.0
tunnel-protocol gre
source 10.0.0.1
destination 78.0.0.2
[r8-Tunnel0/0/0]display this
[V200R003C00]
#
interface Tunnel0/0/0
ip address 192.168.3.2 255.255.255.0
tunnel-protocol gre
source 78.0.0.2
destination 10.0.0.1
8.在r1和r8上写个静态控制流量方向
[r1]ip route-static 192.168.2.0 24 192.168.3.2
[r8]ip route-static 192.168.1.0 24 192.168.3.1