HCIP第二天实验

最新推荐文章于 2024-07-24 12:06:26 发布
最新推荐文章于 2024-07-24 12:06:26 发布
阅读量148 收藏 2
点赞数
分类专栏: HCIP 文章标签: 网络协议
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/m0_59760462/article/details/120287766
版权

 

IP地址划分:

R1

G0/0/0 192.168.1.1/24             S4/0/0     15.1.1.1/24

R2

G0/0/0 192.168.2.1/24             S4/0/0     25.1.1.1/24

R3

G0/0/0 192.168.2.1/24             S4/0/0     35.1.1.1/24

R4

G0/0/0 192.168.2.1/24             S4/0/0     45.1.1.1/24

R5

S3/0/0     15.1.1.2/24               S3/0/1     25.1.1.1/24

G0/0/2    35.1.1.1/24               S4/0/1     45.1.1.1/24

1.R1与R5间使用ppp的pap认证,5为主认证

        在R5上建立PAP认证用户

aaa                
 local-user r5tor1 password cipher r5tor1
 local-user r5tor1 service-type ppp

        在R5接口上开启PAP认证

interface Serial3/0/0
 link-protocol ppp
 ppp authentication-mode pap 
 ip address 15.1.1.2 255.255.255.0 

        在R1接口上配置PAP认证信息

interface Serial4/0/0
 link-protocol ppp
 ppp pap local-user r5tor1 password cipher r5tor1
 ip address 15.1.1.1 255.255.255.0 

2. R2与R5间使用ppp的chap认证,R5为主认证:

        R5上配置ppp认证用户

aaa 
 local-user r5tor1 service-type ppp
 local-user r5tor2 password cipher r5tor2

        接口上配置chap认证认

interface Serial3/0/1
 link-protocol ppp
 ppp authentication-mode chap 
 ip address 25.1.1.2 255.255.255.0 

        在R2接口上配置chap认证信息

interface Serial4/0/0
 link-protocol ppp
 ppp chap user r5tor2
 ppp chap password cipher r5tor2
 ip address 25.1.1.1 255.255.255.0 

3.R4与R5间使用HDLC封装:

[r4-Serial4/0/0]link-protocol hdlc 
Warning: The encapsulation protocol of the link will be changed. Continue? [Y/N]:y

[r5-Serial4/0/1]link-protocol hdlc 
Warning: The encapsulation protocol of the link will be changed. Continue? [Y/N]:y

4.R1 R2 R4 配置MGRE环境 R1为中心节点:

        R1配置MGRE

interface Tunnel0/0/0
 ip address 192.168.10.1 255.255.255.0 
 tunnel-protocol gre p2mp
 source 15.1.1.1
 nhrp entry multicast dynamic
 nhrp network-id 100

        R2配置MGRE

 interface Tunnel0/0/0
 ip address 192.168.10.2 255.255.255.0 
 tunnel-protocol gre p2mp
 source Serial4/0/0
 nhrp network-id 100
 nhrp entry 192.168.10.1 15.1.1.1 register       

        R4配置MGRE

interface Tunnel0/0/0
 ip address 192.168.10.3 255.255.255.0 
 tunnel-protocol gre p2mp
 source Serial4/0/0
 nhrp network-id 100
 nhrp entry 192.168.10.1 15.1.1.1 register

验证MGRE:

<r1>dis nhrp peer all 
------------------------------------------------------------------------------- 
Protocol-addr   Mask  NBMA-addr       NextHop-addr    Type         Flag         
------------------------------------------------------------------------------- 
192.168.10.3    32    45.1.1.1        192.168.10.3    dynamic      route tunnel 
------------------------------------------------------------------------------- 
Tunnel interface: Tunnel0/0/0
Created time    : 01:05:55
Expire time     : 01:54:05
------------------------------------------------------------------------------- 
Protocol-addr   Mask  NBMA-addr       NextHop-addr    Type         Flag         
------------------------------------------------------------------------------- 
192.168.10.2    32    25.1.1.1        192.168.10.2    dynamic      route tunnel 
------------------------------------------------------------------------------- 
Tunnel interface: Tunnel0/0/0
Created time    : 01:05:42
Expire time     : 01:54:18

Number of nhrp peers: 2

R1 R3 为点到点GRE:

        R1配置GRE

interface Tunnel0/0/1
 ip address 192.168.20.1 255.255.255.0 
 tunnel-protocol gre
 source 15.1.1.1
 destination 35.1.1.1

        R3配置GRE

interface Tunnel0/0/1
 ip address 192.168.20.2 255.255.255.0 
 tunnel-protocol gre
 source 35.1.1.1
 destination 15.1.1.1

配置RIP全内网可达:

R1配置rip

rip 1
 undo summary
 version 2
 network 192.168.1.0
 network 192.168.10.0
 network 192.168.20.0

R2配置rip

rip 1
 undo summary
 version 2
 network 192.168.2.0
 network 192.168.10.0

R3配置rip

rip 1
 undo summary
 version 2
 network 192.168.3.0
 network 192.168.20.0

R4配置rip

rip 1
 undo summary
 version 2
 network 192.168.4.0
 network 192.168.10.0

验证RIP:

<r1>dis ip routing-table protocol rip 
Route Flags: R - relay, D - download to fib
------------------------------------------------------------------------------
Public routing table : RIP
         Destinations : 3        Routes : 3        

RIP routing table status : <Active>
         Destinations : 3        Routes : 3

Destination/Mask    Proto   Pre  Cost      Flags NextHop         Interface

    192.168.2.0/24  RIP     100  1           D   192.168.10.2    Tunnel0/0/0
    192.168.3.0/24  RIP     100  1           D   192.168.20.2    Tunnel0/0/1
    192.168.4.0/24  RIP     100  1           D   192.168.10.3    Tunnel0/0/0

RIP routing table status : <Inactive>
         Destinations : 0        Routes : 0

个路由器配置

R1

[V200R003C00]
#
 sysname r1
#
 board add 0/4 2SA 
#
 snmp-agent local-engineid 800007DB03000000000000
 snmp-agent 
#
 clock timezone China-Standard-Time minus 08:00:00
#
portal local-server load flash:/portalpage.zip
#
 drop illegal-mac alarm
#
 wlan ac-global carrier id other ac id 0
#
 set cpu-usage threshold 80 restore 75
#
dhcp enable
#
acl name nat-acl 2000  
 rule 10 permit source 192.168.1.0 0.0.0.255 
#
ip pool r1
 gateway-list 192.168.1.1 
 network 192.168.1.0 mask 255.255.255.0 
 lease day 0 hour 1 minute 0 
 dns-list 114.114.114.114 8.8.8.8 
#
aaa 
 authentication-scheme default
 authorization-scheme default
 accounting-scheme default
 domain default 
 domain default_admin 
 local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
 local-user admin service-type http
#
firewall zone Local
 priority 15
#
 nat address-group 2 15.1.1.3 15.1.1.5
#
interface Serial4/0/0
 link-protocol ppp
 ppp pap local-user r5tor1 password cipher %$%$N!R^1n*3jMlk:xJ4t<IP,0]J%$%$
 ip address 15.1.1.1 255.255.255.0 
 nat outbound 2000 address-group 2 
#
interface Serial4/0/1
 link-protocol ppp
#
interface GigabitEthernet0/0/0
 ip address 192.168.1.1 255.255.255.0 
 dhcp select global
#
interface GigabitEthernet0/0/1
#
interface GigabitEthernet0/0/2
#
interface NULL0
#
interface Tunnel0/0/0
 ip address 192.168.10.1 255.255.255.0 
 rip authentication-mode md5 usual cipher %$%$-;ISO6Tnm8$rQnFsG>J~W(Ga%$%$
 undo rip split-horizon
 tunnel-protocol gre p2mp
 source 15.1.1.1
 nhrp entry multicast dynamic
 nhrp network-id 100
#
interface Tunnel0/0/1
 ip address 192.168.20.1 255.255.255.0 
 tunnel-protocol gre
 source 15.1.1.1
 destination 35.1.1.1
#
rip 1
 undo summary
 version 2
 network 192.168.1.0
 network 192.168.10.0
 network 192.168.20.0
#
ip route-static 0.0.0.0 0.0.0.0 15.1.1.2
#
user-interface con 0
 authentication-mode password
user-interface vty 0 4
user-interface vty 16 20
#
wlan ac
#
return

R2

[V200R003C00]
#
 sysname r2
#
 board add 0/4 2SA 
#
 snmp-agent local-engineid 800007DB03000000000000
 snmp-agent 
#
 clock timezone China-Standard-Time minus 08:00:00
#
portal local-server load flash:/portalpage.zip
#
 drop illegal-mac alarm
#
 wlan ac-global carrier id other ac id 0
#
 set cpu-usage threshold 80 restore 75
#
dhcp enable
#
acl name nat-acl 2000  
 rule 10 permit source 192.168.2.0 0.0.0.255 
#
ip pool r2
 gateway-list 192.168.2.1 
 network 192.168.2.0 mask 255.255.255.0 
 lease day 0 hour 1 minute 0 
 dns-list 114.114.114.114 8.8.8.8 
#
aaa 
 authentication-scheme default
 authorization-scheme default
 accounting-scheme default
 domain default 
 domain default_admin 
 local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
 local-user admin service-type http
#
firewall zone Local
 priority 15
#
 nat address-group 2 25.1.1.3 25.1.1.4
#
interface Serial4/0/0
 link-protocol ppp
 ppp chap user r5tor2
 ppp chap password cipher %$%$1}%~,SD\yWFoIKV*YU)U,.(D%$%$
 ip address 25.1.1.1 255.255.255.0 
 nat outbound 2000 address-group 2 
#
interface Serial4/0/1
 link-protocol ppp
#
interface GigabitEthernet0/0/0
 ip address 192.168.2.1 255.255.255.0 
 dhcp select global
#
interface GigabitEthernet0/0/1
#
interface GigabitEthernet0/0/2
#
interface NULL0
#
interface Tunnel0/0/0
 ip address 192.168.10.2 255.255.255.0 
 rip authentication-mode md5 usual cipher %$%$`:nf-r)h@X+!_p!%xIOOW,W`%$%$
 tunnel-protocol gre p2mp
 source Serial4/0/0
 nhrp network-id 100
 nhrp entry 192.168.10.1 15.1.1.1 register
#
rip 1
 undo summary
 version 2
 network 192.168.2.0
 network 192.168.10.0
#
ip route-static 0.0.0.0 0.0.0.0 25.1.1.2
#
user-interface con 0
 authentication-mode password
user-interface vty 0 4
user-interface vty 16 20
#
wlan ac
#
return

R3

V200R003C00]
#
 sysname r3
#
 board add 0/4 2SA 
#
 snmp-agent local-engineid 800007DB03000000000000
 snmp-agent 
#
 clock timezone China-Standard-Time minus 08:00:00
#
portal local-server load flash:/portalpage.zip
#
 drop illegal-mac alarm
#
 wlan ac-global carrier id other ac id 0
#
 set cpu-usage threshold 80 restore 75
#
dhcp enable
#
acl name nat-acl 2000  
 rule 10 permit source 192.168.3.0 0.0.0.255 
#
ip pool r3
 gateway-list 192.168.3.1 
 network 192.168.3.0 mask 255.255.255.0 
 lease day 0 hour 1 minute 0 
 dns-list 114.114.114.114 8.8.8.8 
#
aaa 
 authentication-scheme default
 authorization-scheme default
 accounting-scheme default
 domain default 
 domain default_admin 
 local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
 local-user admin service-type http
#
firewall zone Local
 priority 15
#
 nat address-group 2 35.1.1.3 35.1.1.4
#
interface Serial4/0/0
 link-protocol ppp
#
interface Serial4/0/1
 link-protocol ppp
#
interface GigabitEthernet0/0/0
 ip address 192.168.3.1 255.255.255.0 
 dhcp select global
#
interface GigabitEthernet0/0/1
 ip address 35.1.1.1 255.255.255.0 
 nat outbound 2000 address-group 2 
#
interface GigabitEthernet0/0/2
#
interface NULL0
#
interface Tunnel0/0/0
 rip authentication-mode md5 usual cipher %$%$.oT/Fl6=U4wKN\!-gKR>W--'%$%$
#
interface Tunnel0/0/1
 ip address 192.168.20.2 255.255.255.0 
 tunnel-protocol gre
 source 35.1.1.1
 destination 15.1.1.1
#
rip 1
 undo summary
 version 2
 network 192.168.3.0
 network 192.168.20.0
#
ip route-static 0.0.0.0 0.0.0.0 35.1.1.2
#
user-interface con 0
 authentication-mode password
user-interface vty 0 4
user-interface vty 16 20
#
wlan ac
#
return

R4

[V200R003C00]
#
 sysname r4
#
 board add 0/4 2SA 
#
 snmp-agent local-engineid 800007DB03000000000000
 snmp-agent 
#
 clock timezone China-Standard-Time minus 08:00:00
#
portal local-server load flash:/portalpage.zip
#
 drop illegal-mac alarm
#
 wlan ac-global carrier id other ac id 0
#
 set cpu-usage threshold 80 restore 75
#
dhcp enable
#
acl name nat-acl 2000  
 rule 10 permit source 192.168.4.0 0.0.0.255 
#
ip pool r4
 gateway-list 192.168.4.1 
 network 192.168.4.0 mask 255.255.255.0 
 lease day 0 hour 1 minute 0 
 dns-list 114.114.114.114 8.8.8.8 
#
aaa 
 authentication-scheme default
 authorization-scheme default
 accounting-scheme default
 domain default 
 domain default_admin 
 local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
 local-user admin service-type http
#
firewall zone Local
 priority 15
#
 nat address-group 2 45.1.1.3 45.1.1.4
#
interface Serial4/0/0
 link-protocol hdlc
 ip address 45.1.1.1 255.255.255.0 
 nat outbound 2000 address-group 2 
#
interface Serial4/0/1
 link-protocol ppp
#
interface GigabitEthernet0/0/0
 ip address 192.168.4.1 255.255.255.0 
 dhcp select global
#
interface GigabitEthernet0/0/1
#
interface GigabitEthernet0/0/2
#
interface NULL0
#
interface Tunnel0/0/0
 ip address 192.168.10.3 255.255.255.0 
 rip authentication-mode md5 usual cipher %$%$M7;f=k0#ZBRzl>O``|e@W1R;%$%$
 tunnel-protocol gre p2mp
 source Serial4/0/0
 nhrp network-id 100
 nhrp entry 192.168.10.1 15.1.1.1 register
#
rip 1
 undo summary
 version 2
 network 192.168.4.0
 network 192.168.10.0
#
ip route-static 0.0.0.0 0.0.0.0 45.1.1.2
#
user-interface con 0
 authentication-mode password
user-interface vty 0 4
user-interface vty 16 20
#
wlan ac
#
return

R5

[V200R003C00]
#
 sysname r5
#
 board add 0/3 2SA 
 board add 0/4 2SA 
#
 snmp-agent local-engineid 800007DB03000000000000
 snmp-agent 
#
 clock timezone China-Standard-Time minus 08:00:00
#
portal local-server load flash:/portalpage.zip
#
 drop illegal-mac alarm
#
 wlan ac-global carrier id other ac id 0
#
 set cpu-usage threshold 80 restore 75
#
aaa 
 authentication-scheme default
 authorization-scheme default
 accounting-scheme default
 domain default 
 domain default_admin 
 local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
 local-user admin service-type http
 local-user r5tor1 password cipher %$%$KRbh@Ow)VJ2C=NLHTnC0M2XY%$%$
 local-user r5tor1 service-type ppp
 local-user r5tor2 password cipher %$%$r)yf0fy_j)|Z^c!x^ZT0R&p&%$%$
#
firewall zone Local
 priority 15
#
interface Serial3/0/0
 link-protocol ppp
 ppp authentication-mode pap 
 ip address 15.1.1.2 255.255.255.0 
#
interface Serial3/0/1
 link-protocol ppp
 ppp authentication-mode chap 
 ip address 25.1.1.2 255.255.255.0 
#
interface Serial4/0/0
 link-protocol hdlc
#
interface Serial4/0/1
 link-protocol hdlc
 ip address 45.1.1.2 255.255.255.0 
#
interface GigabitEthernet0/0/0
#
interface GigabitEthernet0/0/1
#
interface GigabitEthernet0/0/2
 ip address 35.1.1.2 255.255.255.0 
#
interface NULL0
#
interface LoopBack0
 ip address 5.5.5.5 255.255.255.0 
#
user-interface con 0
 authentication-mode password
user-interface vty 0 4
user-interface vty 16 20
#
wlan ac
#
return

m0_59760462
关注
  • 0
    点赞
  • 2
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
HCIP第二天笔记内容
07-10
HCIP第二天笔记内容
hcip静态综合实验.docx
07-05
"HCIP静态综合实验" HCIP(Huawei Certified ICT Professional)是华为公司推出的ICT(Information and Communication Technology)认证项目,旨在验证ICT专业人士的技能和知识。HCIP静态综合实验HCIP认证中的一...
hcip第二天实验
m0_64365851的博客
07-19 74
除去给定的100.1.1.0/24剩下的七个网段由192.168.0.0/24划分所得。(r1环回192.168.0.0/30。4.R4上dhcp服务启用。
HCIP 第二天实验
wochenwei的博客
07-07 173
基本配置 R1 [r1-LoopBack0]ip ad 172.16.1.1 24 [r1-LoopBack1]ip ad 172.16.2.1 24 [r1-LoopBack2]ip ad 172.16.3.1 24 [r1-GigabitEthernet0/0/1]ip ad 15.0.0.1 24 [r1-GigabitEthernet0/0/0]ip ad 12.0.0.1 24 R2 [r2-LoopBack0]ip ad 2.0.0.1 24 [r2-GigabitEthernet0/0/0]i
HCIP第二天实验(网络类型)
wada64的博客
12-31 135
【代码】HCIP第二天实验(网络类型)
HCIP第二天实验(RIP实验
weixin_53283555的博客
07-06 259
HCIP第二天实验(RIP实验
HCIP第二天综合实验
qq_45476645的博客
07-18 100
HCIP第二天综合实验
HCIP第二天RIP实验
Unraveled的博客
07-08 84
HCIP RIP实验
HCIP第二天静态实验
StriverNumber1的博客
01-04 298
HCIP 静态实验 一、写实验第一步,先划分IP,本题按照要求2配置IP 192.168.1.0/27—骨干链路 192.168.1.0/30 192.168.1.4/30 192.168.1.8/30 192.168.1.12/30 192.168.1.16/30 192.168.1.20/30 192.168.1.24/30 192.168.1.28/30 192.168.1.32/27—R1 192.168.1.32/28 192.168.1.48/28 192.168.1.64/27—R2 192
HCIP第二天实验网络类型实验报告
m0_63615831的博客
01-01 133
[在这里插入图片描述](https://img-blog.csdnimg.cn/3d2d7f1eb29e494eaaf47bf21f36f29e.png。
hcip第一天实验报告
yueyuefei0928的博客
07-08 176
进行ip配置。
HCIP第二天内容,广域网技术
11-04
HCIP第二天内容,广域网的基本知识,自己总结,希望帮助到你,网络中级的课程,里面包含了升级内容,全网最全,都是免费,不要外传,希望你认真学习,成为资深的网络中级工程师,工资翻倍,加油加油,卷死同行。
HCIP第十二天笔记内容
07-24
以上就是关于HCIP第十二天笔记中涉及的网络知识,包括路由反射器、联邦机制以及BGP选路原则的详细解释。这些技术在构建大型、复杂网络中起着至关重要的作用,确保路由信息的有效传播和网络的稳定运行。
HCIP,BGP配置实验
08-11
BGP配置实验
【计算机网络】三次握手、四次挥手
m0_64280569的博客
07-23 691
问:三次握手 四次挥手TCP 连接过程是 3 次握手,终止过程是 4 次挥手。
springboot+webSocket对接chatgpt
jiandanyou的博客
07-24 948
/ 如果websocket连接还没断开就关闭了窗口,后台server端会抛异常。// 所以增加监听窗口关闭事件,当窗口关闭时,主动去关闭websocket连接。// 判断当前浏览器是否支持WebSocket,是则创建WebSocket。// 关闭WebSocket连接。// 连接发生错误的回调方法。// 连接成功建立的回调方法。// 接收到消息的回调方法。// 连接关闭的回调方法。// 将消息显示在网页上。// 建立连接的方法。
基于NSGA-II的智能车辆换道轨迹规划与优化_查云飞.caj
最新发布
07-31
基于NSGA-II的智能车辆换道轨迹规划与优化_查云飞
chromedriver-mac-x64_122.0.6261.111.zip
07-31
chromedriver-mac-x64_122.0.6261.111.zip
hcip实验100 综合实验
11-05
HCIP实验100是华为认证网络专家(Huawei Certified IP Professional)培养计划的一部分,是其可供选择的实验之一。综合实验的目的是为了让学员在真实的网络环境中应用所学知识和技能,通过解决实际问题来提升他们的...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值