实验需求
1.R2为LSP,其上只能配置IP地址
2.R1-R2之间为HDLC封装
3.R2-R3之间为PPP封装,pap认证,R2为主认证方
4.R2-R4之间为PPP封装,chap认证,R2为主认证方
5.R1、R2、R3构建MGRE环境,仅R1IP地址固定
6.内网使用RIP获取路由,所有pc可以互相访问,并且可访问R2的环回。
实验拓扑
实验分析
R1地址固定,即R1作为NHRP中心
使用RIP作为动态路由,但由于RIP的水平分割机制,无法完整更新路由表,需关闭水平分割
配置内容
- R1
sys
sys R1
int g0/0/0
ip add 192.168.1.1 24
q
int s4/0/0
link-protocol hdlc
y
ip add 12.1.1.1 24
q
ip route-static 0.0.0.0 0 12.1.1.2
acl 2000
rule 1 permit source any
q
int s4/0/0
nat outbound 2000
q
int tunnel0/0/0
ip add 10.1.1.1 24
tunnel-protocol gre p2mp
source 12.1.1.1
nhrp entry multicast dynamic
nhrp network-id 100
q
rip 1
version 2
network 192.168.1.0
network 10.0.0.0
q
int tunnel0/0/0
undo rip split-horizon
q
- R2
sys
sys R2
int lo0
ip add 100.1.1.1 24
q
int s3/0/0
link-protocol hdlc
y
ip add 12.1.1.2 24
q
int s3/0/1
ip add 23.1.1.2 24
q
int s4/0/1
ip add 24.1.1.2 24
q
aaa
local-user huawei password cipher huawei
local-user huawei service-type ppp
q
int s3/0/1
ppp auth pap
q
int s4/0/1
ppp auth chap
q
- R3
sys
sys R3
int g0/0/0
ip add 192.168.2.1 24
q
int s4/0/0
ip add 23.1.1.1 24
ppp pap local-user huawei password cipher huawei
shutdown
undo shutdown
q
ip route-static 0.0.0.0 0 23.1.1.2
acl 2000
rule 1 permit source any
q
int s4/0/0
nat outbound 2000
q
int tunnel0/0/0
ip add 10.1.1.3 24
tunnel-protocol gre p2mp
source s4/0/0
nhrp entry 10.1.1.1 12.1.1.1 register
nhrp network-id 100
q
rip 1
version 2
network 192.168.2.0
network 10.0.0.0
q
- R4
sys
sys R4
int g0/0/0
ip add 192.168.3.1 24
q
int s4/0/0
ip add 24.1.1.1 24
ppp chap user huawei
ppp chap password cipher huawei
shutdown
undo shutdown
q
ip route-static 0.0.0.0 0 24.1.1.2
acl 2000
rule 1 permit source any
q
int s4/0/0
nat outbound 2000
q
int tunnel0/0/0
ip add 10.1.1.4 24
tunnel-protocol gre p2mp
source s4/0/0
nhrp entry 10.1.1.1 12.1.1.1 register
nhrp network-id 100
q
rip 1
version 2
network 192.168.3.0
network 10.0.0.0
q
结果验证
324
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
