HCIP第四次作业

实验图：

 实验要求：

1.R4为ISP，所连接的所有物理接口为公有网段，任意指定IP即可
2.R1-2-3 构建一个星型结构的MGRE结构，其中R1为中心点，假设R1的公有IP为固定地址
3.R1-5-6 构建另一个全连网状的MGRE网络，其中R1/R5为中心区域
4.使用OSPF实现整个私有网络的互通，同时所有的PC可以正常访问R4的环回

实验步骤：

1.IP地址分配：

pc地址

设备	地址	网关
PC1	192.168.1.2/24	192.168.1.1/24
PC2	192.168.2.2/24	192.168.2.1/24
PC3	192.168.3.2/24	192.168.3.1/24
PC4	192.168.4.2/24	192.168.4.1/24
PC5	192.168.5.2/24	192.168.5.1/24

路由

设备	接口	地址
R1	G0/0/1	14.1.1.1/24
	G0/0/2	41.1.1.1/24
R2	G0/0/1	24.1.1.2/24
R3	G0/0/1	34.1.1.3/24
R4	G0/0/0	41.1.1.4/24
	G0/0/1	14.1.1.4/24
	G0/0/2	45.1.1.4/24
	G4/0/0	46.1.1.4/24
	G4/0/1	34.1.1.4/24
	G4/0/2	24.1.1.4/24
	loopback0	4.4.4.4/24
R5	G0/0/1	45.1.1.5/24
R6	G0/0/1	46.1.1.6/24

2.配置IP地址：

R1:

 R2: 

R3:

R4:

 R5:

R6:

 

3.配置缺省路由：

R1:

 

R2:

R3:

 

R5:

 R6: 

 

4.nat配置

R1:

[R1]acl 2000

[R1-acl-basic-2000]rule 1 permit source any 

[R1]int g 0/0/1
[R1-GigabitEthernet0/0/1]nat outbound 2000

 R2:

[R2]acl 2000
[R2-acl-basic-2000]rule 1 permit source any 

[R2]int g 0/0/1  
[R2-GigabitEthernet0/0/1]nat outbound 2000

 R3:

[R3]acl 2000   
[R3-acl-basic-2000]rule 1 permit source any 
[R3]int g0/0/1  
[R3-GigabitEthernet0/0/1]nat outbound 2000

 R5:

[R5]acl 2000   
[R5-acl-basic-2000]rule 1 permit source any 
[R5]int g0/0/1
[R5-GigabitEthernet0/0/1]nat outbound 2000

 R6:

 [R6]acl 2000  
[R6-acl-basic-2000]rule 1 permit source any 
[R6]int g 0/0/1   
[R6-GigabitEthernet0/0/1]nat outbound 2000

 

5. R1-2-3构建MGRE环境，R1-5-6 构建另一个全连网状的MGRE网络

R1:

[R1]interface Tunnel0/0/0
[R1-Tunnel0/0/0]ip address 10.1.1.1 24
[R1-Tunnel0/0/0]tunnel-protocol gre p2mp
[R1-Tunnel0/0/0]source 41.1.1.1
[R1-Tunnel0/0/0]ospf network-type broadcast
[R1-Tunnel0/0/0]nhrp entry multicast dynamic
[R1-Tunnel0/0/0]nhrp network-id 100

[R1-Tunnel0/0/0]nhrp entry 10.1.2.1 14.1.1.1 register

[R1]int Tunnel 0/0/1
[R1-Tunnel0/0/1]ip ad 10.1.2.1 24
[R1-Tunnel0/0/1]tunnel-protocol gre p2mp 
[R1-Tunnel0/0/1]source 14.1.1.1
[R1-Tunnel0/0/1]nhrp entry multicast dynamic   
[R1-Tunnel0/0/1]nhrp network-id 101  
[R1-Tunnel0/0/1]nhrp entry 10.1.2.2 45.1.1.5 register

 R2:

[R2]int Tunnel 0/0/0
[R2-Tunnel0/0/0]ospf network-type broadcast 

[R2-Tunnel0/0/0]ospf dr-priority 0

[R2]int Tunnel 0/0/0
[R2-Tunnel0/0/0]ip ad 10.1.1.2 24     
[R2-Tunnel0/0/0]tunnel-protocol gre p2mp  
[R2-Tunnel0/0/0]source g0/0/1
[R2-Tunnel0/0/0]nhrp entry 10.1.1.1 41.1.1.1 register  
[R2-Tunnel0/0/0]nhrp network-id 100
 

R3:

[R3]int Tunnel 0/0/0
[R3-Tunnel0/0/0]ip ad 10.1.1.3 24   
[R3-Tunnel0/0/0]tunnel-protocol gre p2mp   
[R3-Tunnel0/0/0]source g0/0/1 
[R3-Tunnel0/0/0]nhrp entry 10.1.1.1 41.1.1.1 register 
[R3-Tunnel0/0/0]nhrp network-id 100
 

R5:

[R5]int Tunnel 0/0/1
[R5-Tunnel0/0/1]ip ad 10.1.2.2 24 
[R5-Tunnel0/0/1]tunnel-protocol gre p2mp 
[R5-Tunnel0/0/1]source 45.1.1.5
[R5-Tunnel0/0/1]nhrp entry multicast dynamic 
[R5-Tunnel0/0/1]nhrp network-id 101
[R5-Tunnel0/0/1]nhrp entry 10.1.2.1 14.1.1.1 register
 

R6:

[R6]int tu 0/0/1
[R6-Tunnel0/0/1]ip ad 10.1.2.3 24 
[R6-Tunnel0/0/1]tunnel-protocol gre p2mp 
[R6-Tunnel0/0/1]source g0/0/1  
[R6-Tunnel0/0/1]nhrp entry 10.1.2.1 14.1.1.1 register 
[R6-Tunnel0/0/1]nhrp entry 10.1.2.2 45.1.1.5 register     
[R6-Tunnel0/0/1]nhrp network-id 101

6.使用ospf实现私网互通

R1:

 R2:

R3:

 

 R5:

 

R6:

 

7.测试