1 实验要求
1 AS1存在两个换回,一个地址为192.168.1.0/24该地址不能在任何协议中宣告。 AS3中存在两个环回,一个地址为192.168.2.0/24该地址不能在任何协议中宣告,最终要求这两个环回可以互相通讯。
2 整个AS2的IP地址为 172.16.0.0/16请合理划分。
3 AS之间的骨干链路IP地址随意定制。
4使用BGP协议让整个网络所有设备的环回可以互相访问
5减少路由条目数量,避免环回
2 实验思路
首先规划好AS2的IP地址,然后先配置IP地址。其次在对AS2区域运行OSPF协议,让其可以进行区域内可达。接着开始配置BGP协议,配置的时候记得解决出现的问题。例如下一跳错误,TTL值只有1,或者peer的对象不统一等等。使其整个网络可以互通,最后开始建立tunnel隧道,通过tunnel隧道让两个AS内部的内网可以互相访问。
3 实验过程
1 IP地址规划
172.16.0.0 16
172.16.0.0 19(骨干)
172.16.0.0 30
172.16.0.4 30
172.16.0.8 30
172.16.0.12 30
172.16.0.16 30
172.16.0.20 30
172.16.32.0 19(AS2环回)
172.16.32.0 24
172.16.33.0 24
172.16.34.0 24
172.16.35.0 24
172.16.36.0 24
172.16.37.0 24
172.16.64.0 19
172.16.96.0 19
172.16.128.0 19
172.16.160.0 19
192.16.192.0 19
172.16.224.0 19
R1 -R2:12.0.0.0 24(骨干)
R7-R9:79.0.0.0 24 (骨干)
2 配置IP地址
R1
[r1]interface GigabitEthernet0/0/0
[r1-GigabitEthernet0/0/0] ip address 12.0.0.1 255.255.255.0
[r1]interface LoopBack0
[r1-LoopBack0] ip address 192.168.1.1 255.255.255.0
[r1]interface LoopBack1
[r1-LoopBack1] ip address 1.1.1.1 255.255.255.0
R2
[r2]interface GigabitEthernet0/0/0
[r2-GigabitEthernet0/0/0] ip address 12.0.0.2 255.255.255.0
[r2]interface GigabitEthernet0/0/1
[r2-GigabitEthernet0/0/1] ip address 172.16.0.1 255.255.255.252
[r2]interface GigabitEthernet0/0/2
[r2-GigabitEthernet0/0/2] ip address 172.16.0.5 255.255.255.252
[r2]interface LoopBack0
[r2-LoopBack0] ip address 172.16.32.1 255.255.255.0
R3
[r3]interface GigabitEthernet0/0/0
[r3-GigabitEthernet0/0/0] ip address 172.16.0.2 255.255.255.252
[r3]interface GigabitEthernet0/0/1
[r3-GigabitEthernet0/0/1] ip address 172.16.0.9 255.255.255.252
[r3]interface LoopBack0
[r3-LoopBack0] ip address 172.16.33.1 255.255.255.0
R4
[r4]interface GigabitEthernet0/0/0
[r4-GigabitEthernet0/0/0] ip address 172.16.0.10 255.255.255.252
[r4]interface GigabitEthernet0/0/1
[r4-GigabitEthernet0/0/1] ip address 172.16.0.13 255.255.255.252
[r4]interface LoopBack0
[r4-LoopBack0] ip address 172.16.34.1 255.255.255.0
R5
[r5]interface GigabitEthernet0/0/0
[r5-GigabitEthernet0/0/0] ip address 172.16.0.6 255.255.255.252
[r5]interface GigabitEthernet0/0/1
[r5-GigabitEthernet0/0/1] ip address 172.16.0.17 255.255.255.252
[r5]interface LoopBack0
[r5-LoopBack0] ip address 172.16.35.1 255.255.255.0
R6
[r6]interface GigabitEthernet0/0/0
[r6-GigabitEthernet0/0/0] ip address 172.16.0.18 255.255.255.252
[r6]interface GigabitEthernet0/0/1
[r6-GigabitEthernet0/0/1] ip address 172.16.0.18 255.255.255.252
[r6]interface LoopBack0
[r6-LoopBack0] ip address 172.16.36.1 255.255.255.0
R7
[r7]interface GigabitEthernet0/0/0
[r7-GigabitEthernet0/0/0] ip address 172.16.0.22 255.255.255.252
[r7]interface GigabitEthernet0/0/1
[r7-GigabitEthernet0/0/1]ip address 172.16.0.14 255.255.255.252
[r7]interface GigabitEthernet0/0/2
[r7-GigabitEthernet0/0/2] ip address 79.0.0.1 255.255.255.0
[r7]interface LoopBack0]
[r7-LoopBack0] ip address 172.16.37.1 255.255.255.0
R9
[r9]interface GigabitEthernet0/0/0
[r9-GigabitEthernet0/0/0] ip address 79.0.0.2 255.255.255.0
[r9]interface LoopBack0
[r9-LoopBack0]ip address 192.168.2.1 255.255.255.0
[r9]interface LoopBack1
[r9-LoopBack1] ip address 9.9.9.9 255.255.255.0
3 配置OSPF环境
R2
ospf 1
area 0.0.0.0
network 172.16.0.0 0.0.255.255
R3
ospf 1
area 0.0.0.0
network 172.16.0.0 0.0.255.255
R4
ospf 1
area 0.0.0.0
network 172.16.0.0 0.0.255.255
R5
ospf 1
area 0.0.0.0
network 172.16.0.0 0.0.255.255
R6
ospf 1
area 0.0.0.0
network 172.16.0.0 0.0.255.255
R7
ospf 1
area 0.0.0.0
network 172.16.0.0 0.0.255.255
4 配置BGP环境
R1
bgp 1
peer 12.0.0.2 as-number 2 ----进行指定对等体
ipv4-family unicast
undo synchronization
network 1.1.1.0 255.255.255.0 ---在BGP进行网段的宣告
peer 172.16.32.1 enable
R2
bgp 64512
confederation id 2 ---指明公有AS号是2
confederation peer-as 64513 声明内部联邦的邻居的AS号为64513
peer 12.0.0.1 as-number 1 ---手工指定建立对等体
peer 172.16.33.1 as-number 64512
peer 172.16.33.1 connect-interface LoopBack0
peer 172.16.35.1 as-number 64513
peer 172.16.35.1 ebgp-max-hop 255
peer 172.16.35.1 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
peer 12.0.0.1 enable
peer 172.16.33.1 enable
peer 172.16.33.1 next-hop-local ---用于修改路由的下一跳
peer 172.16.35.1 enable
peer 172.16.35.1 next-hop-local
R3
bgp 64512
confederation id 2
peer 172.16.32.1 as-number 64512
peer 172.16.32.1 connect-interface LoopBack0
peer 172.16.34.1 as-number 64512
peer 172.16.34.1 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
network 172.16.64.0 255.255.255.0
peer 172.16.32.1 enable
peer 172.16.32.1 reflect-client
peer 172.16.34.1 enable
peer 172.16.34.1 next-hop-local
R4
bgp 64512
confederation id 2
confederation peer-as 64513
peer 172.16.33.1 as-number 64512
peer 172.16.33.1 connect-interface LoopBack0
peer 172.16.37.1 as-number 64513
peer 172.16.37.1 ebgp-max-hop 255
peer 172.16.37.1 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
network 10.0.0.0 255.255.255.0
peer 172.16.33.1 enable
peer 172.16.37.1 enable
peer 172.16.37.1 next-hop-local
R5
bgp 64513
confederation id 2
confederation peer-as 64512
peer 172.16.32.1 as-number 64512
peer 172.16.32.1 ebgp-max-hop 255
peer 172.16.32.1 connect-interface LoopBack0
peer 172.16.36.1 as-number 64513
peer 172.16.36.1 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
peer 172.16.32.1 enable
peer 172.16.36.1 enable
peer 172.16.36.1 next-hop-local
R6
bgp 64513
confederation id 2
confederation peer-as 64512
peer 172.16.35.1 as-number 64513
peer 172.16.35.1 connect-interface LoopBack0
peer 172.16.37.1 as-number 64513
peer 172.16.37.1 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
peer 172.16.35.1 enable
peer 172.16.35.1 reflect-client
peer 172.16.35.1 next-hop-local
peer 172.16.37.1 enable
R7
confederation id 2
confederation peer-as 64512
peer 79.0.0.2 as-number 3
peer 172.16.34.1 as-number 64512
peer 172.16.34.1 ebgp-max-hop 255
peer 172.16.34.1 connect-interface LoopBack0
peer 172.16.36.1 as-number 64513
peer 172.16.36.1 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
peer 79.0.0.2 enable
peer 172.16.34.1 enable
peer 172.16.34.1 next-hop-local
peer 172.16.36.1 enable
peer 172.16.36.1 next-hop-local
R9
bgp 3
peer 79.0.0.1 as-number 2
ipv4-family unicast
undo synchronization
network 9.0.0.0
peer 79.0.0.1 enable
5 配置tunnel环境
前提:必须在边界路由器上配置相应的缺省路由,以及需要用到的路由
AS1
ip route-static 192.168.2.0 255.255.255.0 192.168.3.2
AS3
ip route-static 192.168.1.0 255.255.255.0 192.168.3.1
R1:
interface Tunnel0/0/0
ip address 192.168.3.1 255.255.255.0
tunnel-protocol gre
source 1.1.1.1
destination 9.9.9.9
R9
interface Tunnel0/0/0
ip address 192.168.3.2 255.255.255.0
tunnel-protocol gre
source 9.9.9.9
destination 1.1.1.1
4 实验结果截图(部分)
5 实验总结
通过本次实验,我理解了BGP协议的重要性。BGP是互联网中用于自治系统间路由的重要协议。通过本次协议我更加理解了BGP协议的工作原理和配置命令。在实验过程中,我也遇到了各种各样的问题:例如路由不可达,邻居建立失败,以及各种各样的问题。通过老师讲的案例来慢慢分析,最终解决了这些文通。让我解决问题的能力得到了提升