1、配置IP地址
R1
R2
R3
R4
R5
R6
2、缺省路由
[R1]ip route-static 0.0.0.0 0 12.1.1.2
[R1]ip route-static 0.0.0.0 0 13.1.1.2
[R2]ip route-static 0.0.0.0 0 23.1.1.1
[R3]ip route-static 0.0.0.0 0 24.1.1.1
[R5]ip route-static 0.0.0.0 0 34.1.1.1
[R6]ip route-static 0.0.0.0 0 32.1.1.1
3、访问R4环回需要配置NAT
[R1]acl 2000
[R1-acl-basic-2000]rule 1 permit source any
[R1]interface g0/0/2
[R1-GigabitEthernet0/0/2]nat outbound 2000
[R1]interface g0/0/1
[R1-GigabitEthernet0/0/1]nat outbound 2000
[R2]acl 2000
[R2-acl-basic-2000]rule 1 permit source any
[R2]interface g0/0/0
[R2-GigabitEthernet0/0/0]nat outbound 2000
[R3]acl 2000
[R3-acl-basic-2000]rule 1 permit source any
[R3]interface g0/0/0
[R3-GigabitEthernet0/0/0]nat outbound 2000
[R5]acl 2000
[R5-acl-basic-2000]rule 1 permit source any
[R5]interface g0/0/0
[R5-GigabitEthernet0/0/0]nat outbound 2000
[R6]acl 2000
[R6-acl-basic-2000]rule 1 permit source any
[R6]interface g0/0/0
[R6-GigabitEthernet0/0/0]nat outbound 2000
4、R1-2-3 构建一个星型结构的MGRE结构,其中R1为中心点,假设R1的公有IP为固定地址
R1
[R1]interface Tunnel 0/0/0
[R1-Tunnel0/0/0]ip address 10.1.1.1 24
[R1-Tunnel0/0/0]tunnel-protocol gre p2mp
[R1-Tunnel0/0/0]source 12.1.1.1
[R1-Tunnel0/0/0]nhrp entry multicast dynamic
[R1-Tunnel0/0/0]nhrp network-id 100
R2
[R2]interface Tunnel 0/0/0
[R2-Tunnel0/0/0]ip address 10.1.1.2 24
[R2-Tunnel0/0/0]tunnel-protocol gre p2mp
[R2-Tunnel0/0/0]source G0/0/0
[R2-Tunnel0/0/0]nhrp entry 10.1.1.1 12.1.1.1 register
[R2-Tunnel0/0/0]nhrp network-id 100
R3
[R3]interface Tunnel 0/0/0
[R3-Tunnel0/0/0]ip address 10.1.1.3 24
[R3-Tunnel0/0/0]tunnel-protocol gre p2mp
[R3-Tunnel0/0/0]source g0/0/0
[R3-Tunnel0/0/0]nhrp entry 10.1.1.1 12.1.1.1 register
[R3-Tunnel0/0/0]nhrp network-id 100
5、R1-5-6 构建另一个全连网状的MGRE网络,其中R1,R5均为中心区域
R1
[R1]interface Tunnel 0/0/1
[R1-Tunnel0/0/1]ip address 11.1.1.1 24
[R1-Tunnel0/0/1]tunnel-protocol gre p2mp
[R1-Tunnel0/0/1]source 13.1.1.1
[R1-Tunnel0/0/1]nhrp entry multicast dynamic
[R1-Tunnel0/0/1]nhrp network-id 101
[R1-Tunnel0/0/1]nhrp entry 11.1.1.2 34.1.1.2 register
[R1-Tunnel0/0/1]nhrp entry 11.1.1.3 32.1.1.2 register
R5
[R5]interface Tunnel 0/0/1
[R5-Tunnel0/0/1]ip address 11.1.1.2 24
[R5-Tunnel0/0/1]tunnel-protocol gre p2mp
[R5-Tunnel0/0/1]source 34.1.1.2
[R5-Tunnel0/0/1]nhrp entry multicast dynamic
[R5-Tunnel0/0/1]nhrp network-id 101
[R5-Tunnel0/0/1]nhrp entry 11.1.1.1 13.1.1.1 register
[R5-Tunnel0/0/1]nhrp entry 11.1.1.3 32.1.1.2 register
R6
[R6]interface Tunnel 0/0/1
[R6-Tunnel0/0/1]ip address 11.1.1.3 24
[R6-Tunnel0/0/1]tunnel-protocol gre p2mp
[R6-Tunnel0/0/1]source 32.1.1.2
[R6-Tunnel0/0/1]nhrp network-id 101
[R6-Tunnel0/0/1]nhrp entry 11.1.1.1 13.1.1.1 register
[R6-Tunnel0/0/1]nhrp entry 11.1.1.2 34.1.1.2 register
6、使用OSPF实现整个私有网络的互通
R1
[R1]ospf 1 router-id 1.1.1.1
[R1-ospf-1]area 0
[R1-ospf-1-area-0.0.0.0]network 192.168.1.0 0.0.0.255
[R1-ospf-1-area-0.0.0.0]network 10.1.1.0 0.0.0.255
[R1-ospf-1-area-0.0.0.0]network 11.1.1.0 0.0.0.255
R2
[R2]ospf 1 router-id 2.2.2.2
[R2-ospf-1]area 0
[R2-ospf-1-area-0.0.0.0]network 192.168.2.0 0.0.0.255
[R2-ospf-1-area-0.0.0.0]network 10.1.1.0 0.0.0.255
R3
[R3]ospf 1 router-id 3.3.3.3
[R3-ospf-1]area 0
[R3-ospf-1-area-0.0.0.0]network 192.168.3.0 0.0.0.255
[R3-ospf-1-area-0.0.0.0]network 10.1.1.0 0.0.0.255
R5
[R5]ospf 1 router-id 5.5.5.5
[R5-ospf-1]area 0
[R5-ospf-1-area-0.0.0.0]network 192.168.4.0 0.0.0.255
[R5-ospf-1-area-0.0.0.0]network 11.1.1.0 0.0.0.255
R6
[R6]ospf 1 router-id 6.6.6.6
[R6-ospf-1]area 0
[R6-ospf-1-area-0.0.0.0]network 192.168.5.0 0.0.0.255
[R6-ospf-1-area-0.0.0.0]network 11.1.1.0 0.0.0.255
修改接口为broadcast
[R1-Tunnel0/0/0]ospf network-type broadcast
[R1-Tunnel0/0/1]ospf network-type broadcast
[R2-Tunnel0/0/0]ospf network-type broadcast
[R3-Tunnel0/0/0]ospf network-type broadcast
[R5-Tunnel0/0/1]ospf network-type broadcast
[R6-Tunnel0/0/1]ospf network-type broadcast
不让R2、R3参与DR/BDR选举,修改其接口优先级
[R2-Tunnel0/0/0]ospf dr-priority 0
[R3-Tunnel0/0/0]ospf dr-priority 0
OSPF邻居表如图
7、实验结果
R1可访问R4(ISP)的环回,其他路由器均可
R2访问R5的PC
R6访问R3的PC
219
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
