开始基础配置
r1:
system-view
sysname r1
interface g0/0/0
ip address 12.1.1.1 24
quit
interface loopback 0
ip address 1.1.1.1 32
r2:
saytem-view
sysname r2
interface g0/0/0
ip address 12.1.1.2 24
quit
interface g0/0/1
ip address 23.1.1.1 24
quit
interface loopback 0
ip address 2.2.2.2 32
r3:
system-view
sysname r3
interface g0/0/0
ip address 23.1.1.2 24
quit
interface f0/0/1
ip address 35.1.1.1 24
quit
interface g0/0/2
ip address 34.1.1.1 24
quit
interface loopack 0
ip address 3.3.3.3 32
r4:
system-view
sysname r4
interface g0/0/0
ip address 34.1.1.2 24
quit
interface g0/0/1
ip address 47.1.1.1 24
quit
interface loopback 0
ip address 4.4.4.4 32
r5:
systam-view
sysname r5
interface g0/0/0
ip address 35.1.1.2 24
quit
interface g0/0/1
ip address 56.1.1.1 24
quit
interface loopback 0
ip address 5.5.5.5 32
r6:
system-view
sysname r6
interface g0/0/0
ip address 67.1.1.1 24
quit
interface g0/0/1
ip address 56.1.1.2 24
quit
interface g0/0/2
ip address 68.1.1.1 24
quit
interface loopback 0
ip address 6.6.6.6 32
r7:
systam-view
sysname r7
interface g0/0/0
ip address 47.1.1.2 24
quit
interface g0/0/1
ip address 67.1.1.2 24
quit
interface loopback 0
ip address 7.7.7.7 32
r8:
system-view
sysname r8
interface g0/0/0
ip address 68.1.1.2 24
quit
interface g0/0/1
ip address 89.1.1.1 24
quit
interface loopback 0
ip address 8.8.8.8 32
r9:
system-view
sysname r9
interface g0/0/0
ip address 89.1.1.2 24
quit
interface loopback 0
ip address 9.9.9.9 32
r2~r7开始配rip 1 version 2
r2:
rip1
version 2
network 2.0.0.0(环回)
network 23.0.0.0(网段)
displyay this(查看rip配置)
r3:
rip1
version 2
network 3.0.0.0
network 23.0.0.0
network 34.0.0.0
network 35.0.0.0
r4:
rip1
version 2
network 4.0.0.0
network 34.0.0.0
network 47.0.0.0
r5:
rip 1
version 2
network 5.0.0.0
network 35.0.0.0
network 56.0.0.0
r6:
rip 1
version 2
network 6.0.0.0
network 56.0.0.0
network 67.0.0.0
network 68.0.0.0?
r7:
rip 1
version 2
network 7.0.0.0
network 67.0.0.0
network 47.0.0.0
r8 r9 开始配rip1 version 1
r8:
rip 1
version1
network 8.0.0.0
network 68.0.0.0
network 89.0.0.0
r9:
rip1
version 1
network 9.0.0.0
network 89.0.0.0
先测试一下2到7,3到7是否可通
display ip route-table(查看路由表)
r2:
ping 7.7.7.7
r3:
ping 7.7.7.7
ripv1和ripv2兼容性问题 ripv1和ripv2不能互相访问
解决方案:在r8直接写对端的版本号和对端链接端口的版本号
r8:
interface g0/0/0
rip version 2
现在内网和外网都可以通了=全网可达
开始控制选路
要求:3访问7走5,6 ,不走4
思想:把好路径改差
方法:在控制层面(3到7为数据层面,7到3为控制层面)方向增加度量值(在r4的(g0/0/1)入接口增加度量值),使用偏移列表
r4:
acl 2000
rule permit source 7.7.7.7 0.0.0.0(已经抓取了7.7.7.7的环回)
quit
开始使用偏移列表
interface g0/0/1
rip metricin 2000 4(原有基础上增加4)
控制选路后接下来要让所有设备访问外网
在r2上下放缺省路由
r2:
ip route-static 0.0.0.0 0 12.1.1.1(在边界路由器上写一条缺省路由指向运营商)
rip 1
default-route originate(下放缺省路由)
下放缺省路由后查看内部所有路由器有没有拿到这个缺省路由
r5:
display ip route-table
r9:
display ip route-table
拿到后上外网
r2:
acl 2000
rule permit source any(抓取所有流量,让所有流量都可以上外网)
interface g0/0/0
nat outbound 2000(连接外网所有接口)
上面实现全网可达
下面实现r1远程登录r2实际登陆r9
打开r9的远程登录
r9:
user-interface vty 0 4(vty表示虚拟链路,0 4表示0 1 2 3 4 允许5个人同时登录)
authentication-mode password
123
nat技术
r2:
interface g0/0/0(进入连接公网的外网接口)
nat server protocol tcp global 12.1.1.3(公网地址) 23 (tcp的23是远程登录)inside 89.1.1.2 23
r1:
telnet 12.1.1.3
123
实验结束