目录
题目
需求(所要实现的功能):
(1)两个局域网基于6to4tunnel可达
(2)R1可以访问R3的环回
网络部署思路:
1、拓扑设计 -- IP地址规划
2、实施
【1】拓扑的搭建
【2】配置
「1」底层--所有节点拥有合法ip地址
(1)IPV4公网
AR2
AR3
AR4
(2)IPV4私网
AR1
AR2
[r2-GigabitEthernet0/0/1]int g0/0/0
[r2-GigabitEthernet0/0/0]ip add 192.168.0.2 30
(3)IPV6私网
AR1
AR2
AR4
AR5
「2」路由
(1) 公网路由可达
[r2]ip route-static 0.0.0.0 0 23.1.1.2
[r4]ip route-static 0.0.0.0 0 34.1.1.1
测试
(2)私网到公网的路由可达
AR1写一条到公网的缺省
[r1]ip route-static 0.0.0.0 0.0.0.0 192.168.0.2
AR2的接口ACL访问控制
[r2]ip route-static 192.168.1.0 24 192.168.0.1
[r2]acl 2000
[r2-acl-basic-2000]rule permit source 192.168.0.0 0.0.255.255
[r2-acl-basic-2000]int g0/0/1
[r2-GigabitEthernet0/0/1]nat outbound 2000
测试AR2到公网
(3)IPV6私网
AR1与AR2路由可达
[r1]ripng 1
[r1-ripng-1]int g0/0/0
[r1-GigabitEthernet0/0/0]ripng 1 enable
[r1-GigabitEthernet0/0/0]int l0
[r1-LoopBack0]ripng 1 enable
[r1-LoopBack0]int l1
[r1-LoopBack1]ripng 1 enable路由汇总
[r1-LoopBack1]int g0/0/0
[r1-GigabitEthernet0/0/0]ripng summary-address 2002:0101:0101:: 64
[r2]ripng 1
[r2-ripng-1]int g0/0/0
[r2-GigabitEthernet0/0/0]ripng 1 enable
[r2-GigabitEthernet0/0/0]int l0
[r2-LoopBack0]ripng 1 enable
测试AR1与AR2间路由可达
AR4与AR5路由可达
[r4]ospfv3
[r4-ospfv3-1]router-id 4.4.4.4
[r4-ospfv3-1]int g0/0/1
[r4-GigabitEthernet0/0/1]ospfv3 1 area 0
[r4-GigabitEthernet0/0/1]int l
[r4-GigabitEthernet0/0/1]int l0
[r4-LoopBack0]ospfv3 1 area 0
[r5]ospfv3
[r5-ospfv3-1]router-id 5.5.5.5
[r5-ospfv3-1]int g0/0/0
[r5-GigabitEthernet0/0/0]ospfv3 1 area 0
[r5-GigabitEthernet0/0/0]int l0
[r5-LoopBack0]ospfv3 1 area 0
测试AR4与AR5路由可达
RIPNG与OSPFV3之间路由可达
建立6to4 tunnel
[r2]int t0/0/0
[r2-Tunnel0/0/0]ipv6 enable
[r2-Tunnel0/0/0]ipv6 address 2002:0101:0101:1::1 64
[r2-Tunnel0/0/0]tunnel-protocol ipv6-ipv4 6to4
[r2-Tunnel0/0/0]source 23.1.1.1
[r2-Tunnel0/0/0]q
[r2]ipv6 route-static 2002:: 16 Tunnel 0/0/0[r4]int t0/0/0
[r4-Tunnel0/0/0]ipv6 enable
[r4-Tunnel0/0/0]ipv6 address 2002:2201:0102:1::1 64
[r4-Tunnel0/0/0]tunnel-protocol ipv6-ipv4 6to4
[r4-Tunnel0/0/0]source 34.1.1.2
[r4-Tunnel0/0/0]q
[r4]ipv6 route-static 2002:: 16 Tunnel 0/0/0
测试两者间是否可达