实验要求:实现全网互通,按规定设置路由通过路径
R1
[R1]display current-configuration
#
sysname R1
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
#
interface Ethernet0/0/1
#
interface Serial0/0/0
link-protocol ppp
#
interface Serial0/0/1
link-protocol ppp
#
interface Serial0/0/2
link-protocol ppp
#
interface Serial0/0/3
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 12.1.1.1 255.255.255.0
#
interface GigabitEthernet0/0/1
#
interface GigabitEthernet0/0/2
#
interface GigabitEthernet0/0/3
#
wlan
#
interface NULL0
#
interface LoopBack0
ip address 1.1.1.1 255.255.255.255
#
bgp 100
router-id 1.1.1.1
peer 2.2.2.2 as-number 100
peer 2.2.2.2 connect-interface LoopBack0
#
ipv4-family unicast
undo synchronization
network 1.1.1.1 255.255.255.255
network 12.1.1.0 255.255.255.0
peer 2.2.2.2 enable
#
ospf 1 router-id 1.1.1.1
area 0.0.0.0
network 1.1.1.1 0.0.0.0
network 12.1.1.1 0.0.0.0
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
R2
[R2]display current-configuration
#
sysname R2
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
#
interface Ethernet0/0/1
#
interface Serial0/0/0
link-protocol ppp
#
interface Serial0/0/1
link-protocol ppp
#
interface Serial0/0/2
link-protocol ppp
#
interface Serial0/0/3
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 12.1.1.2 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 28.1.1.2 255.255.255.0
#
interface GigabitEthernet0/0/2
ip address 23.1.1.2 255.255.255.0
#
interface GigabitEthernet0/0/3
#
wlan
#
interface NULL0
#
interface LoopBack0
ip address 2.2.2.2 255.255.255.255
#
bgp 100
router-id 2.2.2.2
peer 1.1.1.1 as-number 100
peer 1.1.1.1 connect-interface LoopBack0
peer 3.3.3.3 as-number 200
peer 3.3.3.3 ebgp-max-hop 255
peer 3.3.3.3 connect-interface LoopBack0
peer 8.8.8.8 as-number 300
peer 8.8.8.8 ebgp-max-hop 255
peer 8.8.8.8 connect-interface LoopBack0
#
ipv4-family unicast
undo synchronization
network 1.1.1.1 255.255.255.255
network 2.2.2.2 255.255.255.255
network 3.3.3.3 255.255.255.255
network 8.8.8.8 255.255.255.255
network 12.1.1.0 255.255.255.0
network 23.1.1.0 255.255.255.0
network 28.1.1.0 255.255.255.0
peer 1.1.1.1 enable
peer 1.1.1.1 next-hop-local
peer 3.3.3.3 enable
peer 3.3.3.3 route-policy as import
peer 8.8.8.8 enable
peer 8.8.8.8 route-policy as export
#
ospf 1 router-id 2.2.2.2
area 0.0.0.0
network 2.2.2.2 0.0.0.0
network 12.1.1.2 0.0.0.0
#
route-policy med permit node 10
apply cost + 50
#
route-policy as permit node 10
apply as-path 123 123 123 additive
#
route-policy as permit node 20
apply as-path 111 222 333 444 additive
#
ip route-static 3.3.3.3 255.255.255.255 23.1.1.3
ip route-static 8.8.8.8 255.255.255.255 28.1.1.8
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
R3
[R3]display current-configuration
#
sysname R3
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
#
interface Ethernet0/0/1
#
interface Serial0/0/0
link-protocol ppp
#
interface Serial0/0/1
link-protocol ppp
#
interface Serial0/0/2
link-protocol ppp
#
interface Serial0/0/3
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 36.1.1.3 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 35.1.1.3 255.255.255.0
#
interface GigabitEthernet0/0/2
ip address 34.1.1.3 255.255.255.0
#
interface GigabitEthernet0/0/3
ip address 23.1.1.3 255.255.255.0
#
wlan
#
interface NULL0
#
interface LoopBack0
ip address 3.3.3.3 255.255.255.255
#
bgp 200
router-id 3.3.3.3
peer 2.2.2.2 as-number 100
peer 2.2.2.2 ebgp-max-hop 255
peer 2.2.2.2 connect-interface LoopBack0
peer 4.4.4.4 as-number 200
peer 4.4.4.4 connect-interface LoopBack0
peer 5.5.5.5 as-number 400
peer 5.5.5.5 ebgp-max-hop 255
peer 5.5.5.5 connect-interface LoopBack0
peer 6.6.6.6 as-number 300
peer 6.6.6.6 ebgp-max-hop 255
peer 6.6.6.6 connect-interface LoopBack0
#
ipv4-family unicast
undo synchronization
network 1.1.1.1 255.255.255.255
network 2.2.2.2 255.255.255.255
network 3.3.3.3 255.255.255.255
network 4.4.4.4 255.255.255.255
network 5.5.5.5 255.255.255.255
network 6.6.6.6 255.255.255.255
network 23.1.1.0 255.255.255.0
network 34.1.1.0 255.255.255.0
network 35.1.1.0 255.255.255.0
network 36.1.1.0 255.255.255.0
peer 2.2.2.2 enable
peer 4.4.4.4 enable
peer 4.4.4.4 next-hop-local
peer 5.5.5.5 enable
peer 6.6.6.6 enable
peer 6.6.6.6 route-policy as export
#
ospf 1 router-id 3.3.3.3
area 0.0.0.1
network 3.3.3.3 0.0.0.0
network 34.1.1.3 0.0.0.0
#
route-policy as permit node 10
apply as-path 321 345 456 additive
#
ip route-static 2.2.2.2 255.255.255.255 23.1.1.2
ip route-static 5.5.5.5 255.255.255.255 35.1.1.5
ip route-static 6.6.6.6 255.255.255.255 36.1.1.6
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
R4
[R4]display current-configuration
#
sysname R4
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
#
interface Ethernet0/0/1
#
interface Serial0/0/0
link-protocol ppp
#
interface Serial0/0/1
link-protocol ppp
#
interface Serial0/0/2
link-protocol ppp
#
interface Serial0/0/3
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 34.1.1.4 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 45.1.1.4 255.255.255.0
#
interface GigabitEthernet0/0/2
#
interface GigabitEthernet0/0/3
#
wlan
#
interface NULL0
#
interface LoopBack0
ip address 4.4.4.4 255.255.255.255
#
bgp 200
router-id 4.4.4.4
peer 3.3.3.3 as-number 200
peer 3.3.3.3 connect-interface LoopBack0
peer 5.5.5.5 as-number 400
peer 5.5.5.5 ebgp-max-hop 255
peer 5.5.5.5 connect-interface LoopBack0
#
ipv4-family unicast
undo synchronization
network 3.3.3.3 255.255.255.255
network 4.4.4.4 255.255.255.255
network 5.5.5.5 255.255.255.255
network 34.1.1.0 255.255.255.0
network 45.1.1.0 255.255.255.0
peer 3.3.3.3 enable
peer 3.3.3.3 next-hop-local
peer 5.5.5.5 enable
#
ospf 1 router-id 4.4.4.4
area 0.0.0.1
network 4.4.4.4 0.0.0.0
network 34.1.1.4 0.0.0.0
area 0.0.0.4
#
ip route-static 5.5.5.5 255.255.255.255 45.1.1.5
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
R5
[R5]display current-configuration
#
sysname R5
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
#
interface Ethernet0/0/1
#
interface Serial0/0/0
link-protocol ppp
#
interface Serial0/0/1
link-protocol ppp
#
interface Serial0/0/2
link-protocol ppp
#
interface Serial0/0/3
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 56.1.1.5 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 35.1.1.5 255.255.255.0
#
interface GigabitEthernet0/0/2
ip address 45.1.1.5 255.255.255.0
#
interface GigabitEthernet0/0/3
#
wlan
#
interface NULL0
#
interface LoopBack0
ip address 5.5.5.5 255.255.255.255
#
bgp 400
router-id 5.5.5.5
peer 3.3.3.3 as-number 200
peer 3.3.3.3 ebgp-max-hop 255
peer 3.3.3.3 connect-interface LoopBack0
peer 4.4.4.4 as-number 200
peer 4.4.4.4 ebgp-max-hop 255
peer 4.4.4.4 connect-interface LoopBack0
peer 6.6.6.6 as-number 300
peer 6.6.6.6 ebgp-max-hop 255
peer 6.6.6.6 connect-interface LoopBack0
#
ipv4-family unicast
undo synchronization
network 3.3.3.3 255.255.255.255
network 4.4.4.4 255.255.255.255
network 5.5.5.5 255.255.255.255
network 6.6.6.6 255.255.255.255
network 35.1.1.0 255.255.255.0
network 36.1.1.0 255.255.255.0
network 45.1.1.0 255.255.255.0
peer 3.3.3.3 enable
peer 4.4.4.4 enable
peer 6.6.6.6 enable
#
ip route-static 3.3.3.3 255.255.255.255 35.1.1.3
ip route-static 4.4.4.4 255.255.255.255 45.1.1.4
ip route-static 6.6.6.6 255.255.255.255 56.1.1.6
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
R6
[R6]display current-configuration
#
sysname R6
#
acl number 2001
rule 5 permit source 1.1.1.1 0
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
#
interface Ethernet0/0/1
#
interface Serial0/0/0
link-protocol ppp
#
interface Serial0/0/1
link-protocol ppp
#
interface Serial0/0/2
link-protocol ppp
#
interface Serial0/0/3
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 67.1.1.6 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 56.1.1.6 255.255.255.0
#
interface GigabitEthernet0/0/2
ip address 36.1.1.6 255.255.255.0
#
interface GigabitEthernet0/0/3
#
wlan
#
interface NULL0
#
interface LoopBack0
ip address 6.6.6.6 255.255.255.255
#
bgp 300
router-id 6.6.6.6
peer 3.3.3.3 as-number 200
peer 3.3.3.3 ebgp-max-hop 255
peer 3.3.3.3 connect-interface LoopBack0
peer 5.5.5.5 as-number 400
peer 5.5.5.5 ebgp-max-hop 255
peer 5.5.5.5 connect-interface LoopBack0
peer 7.7.7.7 as-number 300
peer 7.7.7.7 connect-interface LoopBack0
peer 8.8.8.8 as-number 300
peer 8.8.8.8 connect-interface LoopBack0
#
ipv4-family unicast
undo synchronization
network 1.1.1.1 255.255.255.255
network 3.3.3.3 255.255.255.255
network 5.5.5.5 255.255.255.255
network 6.6.6.6 255.255.255.255
network 7.7.7.7 255.255.255.255
network 8.8.8.8 255.255.255.255
network 36.1.1.0 255.255.255.0
network 56.1.1.0 255.255.255.0
network 67.1.1.0 255.255.255.0
peer 3.3.3.3 enable
peer 5.5.5.5 enable
peer 7.7.7.7 enable
peer 7.7.7.7 next-hop-local
peer 8.8.8.8 enable
peer 8.8.8.8 next-hop-local
#
ospf 1 router-id 6.6.6.6
area 0.0.0.2
network 6.6.6.6 0.0.0.0
network 67.1.1.6 0.0.0.0
#
route-policy local permit node 10
apply local-preference 1000
#
ip route-static 3.3.3.3 255.255.255.255 36.1.1.3
ip route-static 5.5.5.5 255.255.255.255 56.1.1.5
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
R7
[R7]display current-configuration
#
sysname R7
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
#
interface Ethernet0/0/1
#
interface Serial0/0/0
link-protocol ppp
#
interface Serial0/0/1
link-protocol ppp
#
interface Serial0/0/2
link-protocol ppp
#
interface Serial0/0/3
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 78.1.1.7 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 67.1.1.7 255.255.255.0
#
interface GigabitEthernet0/0/2
#
interface GigabitEthernet0/0/3
#
wlan
#
interface NULL0
#
interface LoopBack0
ip address 7.7.7.7 255.255.255.255
#
bgp 300
router-id 7.7.7.7
peer 6.6.6.6 as-number 300
peer 6.6.6.6 connect-interface LoopBack0
peer 8.8.8.8 as-number 300
peer 8.8.8.8 connect-interface LoopBack0
#
ipv4-family unicast
undo synchronization
network 7.7.7.7 255.255.255.255
network 67.1.1.0 255.255.255.0
network 78.1.1.0 255.255.255.0
peer 6.6.6.6 enable
peer 8.8.8.8 enable
#
ospf 1 router-id 7.7.7.7
area 0.0.0.2
network 7.7.7.7 0.0.0.0
network 67.1.1.7 0.0.0.0
network 78.1.1.7 0.0.0.0
#
route-policy lop permit node 10
apply local-preference 222
#
route-policy as permit node 10
apply as-path 111 222 333 additive
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
R8
[R8]display current-configuration
#
sysname R8
#
acl number 2000
rule 5 permit source 1.1.1.1 0
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher OOCM4m($F4ajUn1vMEIBNUw#
local-user admin service-type http
#
firewall zone Local
priority 16
#
interface Ethernet0/0/0
#
interface Ethernet0/0/1
#
interface Serial0/0/0
link-protocol ppp
#
interface Serial0/0/1
link-protocol ppp
#
interface Serial0/0/2
link-protocol ppp
#
interface Serial0/0/3
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 28.1.1.8 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 78.1.1.8 255.255.255.0
#
interface GigabitEthernet0/0/2
#
interface GigabitEthernet0/0/3
#
wlan
#
interface NULL0
#
interface LoopBack0
ip address 8.8.8.8 255.255.255.255
#
bgp 300
router-id 8.8.8.8
peer 2.2.2.2 as-number 100
peer 2.2.2.2 ebgp-max-hop 255
peer 2.2.2.2 connect-interface LoopBack0
peer 6.6.6.6 as-number 300
peer 6.6.6.6 connect-interface LoopBack0
peer 7.7.7.7 as-number 300
peer 7.7.7.7 connect-interface LoopBack0
#
ipv4-family unicast
undo synchronization
network 2.2.2.2 255.255.255.255
network 6.6.6.6 255.255.255.255
network 7.7.7.7 255.255.255.255
network 8.8.8.8 255.255.255.255
network 28.1.1.0 255.255.255.0
network 78.1.1.0 255.255.255.0
peer 2.2.2.2 enable
peer 6.6.6.6 enable
peer 6.6.6.6 next-hop-local
peer 7.7.7.7 enable
peer 7.7.7.7 next-hop-local
#
ospf 1 router-id 8.8.8.8
area 0.0.0.2
network 8.8.8.8 0.0.0.0
network 78.1.1.8 0.0.0.0
#
route-policy as permit node 10
if-match acl 2000
apply as-path 111 222 333 additive
#
route-policy as permit node 20
#
route-policy as permit node 30
apply as-path 111 444 777 999 additive
#
ip route-static 2.2.2.2 255.255.255.255 28.1.1.2
#
user-interface con 0
idle-timeout 0 0
user-interface vty 0 4
user-interface vty 16 20
#
return
实验总结
此实验对新手来说有些难度,时间长难注意错误,步骤多难差错,所以最好采用分段是操作,先到各个路由器上配置接口地址以及自身的环回地址,再实现各自区域间的OSPF连接,最后再用BGP实现各区域间的连接,每步做完查一下,发现错误及时改正。
在设置优先级的时候,此4个优先级调整中第一个最难,不要到R8和R6上配置优先级,因为即使配置也会发现R7到R1的通信依旧是按照原路径通信,具体为何可在R6上输入display ip routing-table得知,R6到R1也是要经过R8的,所以我们要在R2上配置优先级。