需求:R3在正常情况下从电信访问互联网,在电信故障后,切换至联通线路。
两个线路的内网源线路下一跳不同,因此使用route-map 来匹配不同下一跳内网源地址
测试:正常情况下
电信线路断掉
R3:
interface FastEthernet0/0
ip address 23.0.0.2 255.255.255.0
ip nat outside
interface FastEthernet1/0
ip address 13.0.0.2 255.255.255.0
ip nat outside
interface FastEthernet1/1
ip address 34.0.0.1 255.255.255.0
ip nat inside
ip route 0.0.0.0 0.0.0.0 13.0.0.1 当route-map使用匹配下一跳时 要用下一跳写法
ip route 0.0.0.0 0.0.0.0 23.0.0.1 2 配置备份缺省
ip nat inside source route-map dian interface FastEthernet1/0 overload
ip nat inside source route-map lian interface FastEthernet0/0 overload
access-list 1 permit 13.0.0.1 抓取下一跳地址
access-list 2 permit 23.0.0.1 抓取下一跳地址
route-map dian permit 10
match ip next-hop 1 //匹配下一跳地址
route-map lian permit 10
match ip next-hop 2 //匹配下一跳地址
也可以使用route-map匹配出接口来实现 (此方法不必使用acl)
R3:
interface FastEthernet0/0
ip address 23.0.0.2 255.255.255.0
ip nat outside
interface FastEthernet1/0
ip address 13.0.0.2 255.255.255.0
ip nat outside
interface FastEthernet1/1
ip address 34.0.0.1 255.255.255.0
ip nat inside
ip route 0.0.0.0 0.0.0.0 FastEthernet1/0 当route-map使用匹配出接口时 要用出接口写法
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 2 配置备份缺省
ip nat inside source route-map dian interface FastEthernet1/0 overload
ip nat inside source route-map lian interface FastEthernet0/0 overload
route-map dian permit 10
match interface FastEthernet1/0 //匹配出接口
route-map lian permit 10
match interface FastEthernet1/0 //匹配出接口
220
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
