配置ip
s3
interface LoopBack 0
ip address 172.17.1.3 32
interface g1/0/1
port link-mode route
ip address 10.20.35.1 30
quit
s4
interface LoopBack 0
ip address 172.17.1.4 32
interface g1/0/1
port link-mode route
ip address 10.20.46.1 30
quit
s5
interface LoopBack 0
ip address 172.17.1.5 32
interface g1/0/1
port link-mode route
ip address 10.20.35.2 30
interface g1/0/3
port link-mode route
ip address 10.20.56.1 30
interface g1/0/2
port link-mode route
ip address 10.20.15.1 30
quit
s6
interface LoopBack 0
ip address 172.17.1.6 32
interface g1/0/1
port link-mode route
ip address 10.20.46.2 30
interface g1/0/3
port link-mode route
ip address 10.20.56.2 30
interface g1/0/2
port link-mode route
ip address 10.20.26.1 30
quit
CE1
interface LoopBack 0
ip address 172.17.1.1 32
interface g0/0
ip address 10.20.12.1 30
interface g5/0
ip address 100.20.11.2 24
interface g0/2
ip address 10.20.15.2 30
quit
CE2
interface LoopBack 0
ip address 172.17.1.2 32
interface g0/0
ip address 10.20.12.2 30
interface g0/2
ip address 10.20.26.2 30
interface g5/1
ip address 100.20.22.2 24
quit
PE3
interface LoopBack 0
ip address 172.16.1.11 32
interface g5/0
ip address 100.20.11.1 24
interface g5/1
ip address 100.20.22.1 24
interface g0/2
ip address 100.10.91.2 30
interface g0/0
ip address 100.10.112.1 30
PE4
interface LoopBack 0
ip address 172.16.1.12 32
interface g0/2
ip address 100.10.102.2 30
interface g0/0
ip address 100.10.112.2 30
interface s1/0
ip address 100.30.25.1 30
CE5
interface s1/0
ip address 100.30.25.2 30
配置mstp+ vrrp+ trunk+联动
s1
vlan 20
vlan 10
port g1/0/1
interface range g1/0/2 g1/0/4
port link-type trunk
port trunk permit vlan 10 20
quit
stp mode mstp
stp region-configuration
region-name H3C
revision-level 1
instance 10 vlan 10
instance 20 vlan 20
active region-configuration
quit
s2
vlan 10
vlan 20
port g1/0/1
interface range g1/0/2 g1/0/4
port link-type trunk
port trunk permit vlan 10 20
quit
stp mode mstp
stp region-configuration
region-name H3C
revision-level 1
instance 10 vlan 10
instance 20 vlan 20
active region-configuration
quit
s3
vlan 10
vlan 20
quit
interface range g1/0/2 g1/0/3 g1/0/4 g1/0/5
port link-type trunk
port trunk permit vlan 10 20
quit
stp mode mstp
stp region-configuration
region-name H3C
revision-level 1
instance 10 vlan 10
instance 20 vlan 20
active region-configuration
quit
stp instance 10 root primary
stp instance 20 root secondary
s4
vlan 10
vlan 20
quit
interface range g1/0/2 g1/0/3 g1/0/4 g1/0/5
port link-type trunk
port trunk permit vlan 10 20
quit
stp mode mstp
stp region-configuration
region-name H3C
revision-level 1
instance 10 vlan 10
instance 20 vlan 20
active region-configuration
quit
stp instance 20 root primary
stp instance 10 root secondary
VRRP
S3
interface vlan 10
ip address 10.30.1.252 24
quit
interface vlan 20
ip address 10.30.2.252 24
quit
interface vlan 10
vrrp vrid 10 virtual-ip 10.30.1.254
vrrp vrid 10 priority 120
vrrp vrid 10 preempt-mode delay 100
quit
interface vlan 20
vrrp vrid 20 virtual-ip 10.30.2.254
quit
track 10 interface g1/0/1
delay negative 10
interface vlan 10
vrrp vrid 10 track 10 priority reduced 30
quit
s4
interface vlan 10
ip address 10.30.1.253 24
quit
interface vlan 20
ip address 10.30.2.253 24
quit
interface vlan 10
vrrp vrid 10 virtual-ip 10.30.1.254
quit
interface vlan 20
vrrp vrid 20 virtual-ip 10.30.2.254
vrrp vrid 20 priority 120
vrrp vrid 20 preempt-mode delay 100
quit
track 20 interface g1/0/1
delay negative 10
interface vlan 20
vrrp vrid 20 track 20 priority reduced 30
quit
trunk
s1
vlan 90
vlan 100
quit
interface range g1/0/2 g1/0/4
port link-type trunk
port trunk permit vlan 10 20
quit
interface g1/0/1
port link-type hybrid
port hybrid vlan 90 100 untagged
quit
s2
vlan 90
vlan 100
quit
interface range g1/0/2 g1/0/4
port link-type trunk
port trunk permit vlan 10 20
quit
interface g1/0/1
port link-type hybrid
port hybrid vlan 90 100 untagged
s3
interface range g1/0/2 g1/0/3 g1/0/4
port link-type trunk
port trunk permit vlan 10 20
s4
interface range g1/0/2 g1/0/3 g1/0/4
port link-type trunk
port trunk permit vlan 10 20
部署联动机制+bfd监测
s3
track 10 interface g1/0/1
delay negative 10
interface vlan 10
vrrp vrid 10 track 10 priority reduce 30
quit
bfd echo-source-ip 33.33.33.33
track 20 bfd echo interface vlan-interface 20 remote ip 10.30.2.253 local ip 10.30.2.252
interface vlan 20
vrrp vrid 20 track 20 switchover
quit
s4
track 20 interface g1/0/1
delay negative 10
interface vlan 20
vrrp vrid 20 track 20 priority reduce 30
quit
bfd echo-source-ip 44.44.44.44
track 10 bfd echo interface vlan-interface 10 remote ip 10.30.1.252 local ip 10.30.1.253
interface vlan 10
vrrp vrid 10 track 10 switchover
quit
部署链路聚合
s3
interface Bridge-Aggregation 34
link-aggregation mode dynamic
quit
interface g1/0/3
port link-aggregation group 34
quit
interface g1/0/5
port link-aggregation group 34
quit
interface Bridge-Aggregation 34
port link-type trunk
port trunk permit vlan all
undo port trunk permit vlan 1
quit
s4
interface Bridge-Aggregation 34
link-aggregation mode dynamic
quit
interface g1/0/3
port link-aggregation group 34
quit
interface g1/0/5
port link-aggregation group 34
quit
interface Bridge-Aggregation 34
port link-type trunk
port trunk permit vlan all
undo port trunk permit vlan 1
quit
部署rip
s3
rip
version 2
undo summary
network 10.20.35.0 0.0.0.3
network 10.30.1.0 0.0.0.255
network 10.30.2.0 0.0.0.255
network 172.17.0.0
quit
s4
rip
version 2
undo summary
network 10.20.46.0 0.0.0.3
network 10.30.2.0 0.0.0.255
network 10.30.1.0 0.0.0.255
network 172.17.1.4 0.0.0.0
quit
s5
rip
version 2
undo summary
network 10.20.35.0 0.0.0.3
network 10.20.56.0 0.0.0.3
network 10.20.15.0 0.0.0.3
network 172.17.0.0
quit
s6
rip
version 2
undo summary
network 10.20.46.0 0.0.0.3
network 10.20.56.0 0.0.0.3
network 10.20.26.0 0.0.0.3
network 172.17.0.0
quit
CE1
rip
version 2
undo summary
network 10.20.15.0 0.0.0.3
network 10.20.12.0 0.0.0.3
network 172.17.0.0
default-route originate
quit
CE2
rip
version 2
undo summary
network 10.20.12.0 0.0.0.3
network 10.20.26.0 0.0.0.3
network 172.17.0.0
default-route originate
quit
部署OSPF
PE3
ip route-static 0.0.0.0 0 100.20.11.2
ip route-static 0.0.0.0 0 100.20.22.2
ospf 10 router-id 172.16.1.11
area 10
interface g0/0
ospf 10 area 10
quit
ospf 10
default-route-advertise
quit
PE4
ospf 10 router-id 172.16.1.12
area 10
interface g0/0
ospf 10 area 10
interface s1/0
ospf 10 area 10
quit
CE5
ospf 10
area 10
interface s1/0
ospf 10 area 10
interface g0/2.9
ospf 10 area 10
interface g0/2.10
ospf 10 area 10
quit
CE1
ip route-static 0.0.0.0 0 100.20.11.1
rip
default-route originate
quit
CE2
ip route-static 0.0.0.0 0 100.20.22.1
rip
default-route originate
quit
部署单臂路由
S13
vlan 10
vlan 20
vlan 90
port g1/0/1
vlan 100
port g1/0/3
interface g1/0/2
port link-type trunk
port trunk permit vlan all
undo port trunk permit vlan 1
quit
interface range g1/0/1 g1/0/3
port link-type hybrid
port hybrid vlan 10 20 untagged
CE5
interface g0/2.9
ip address 10.30.9.254 24
vlan-type dot1q vid 90
interface g0/2.10
ip address 10.30.10.254 24
vlan-type dot1q vid 100
quit
部署浮动路由
CE1
nqa entry admin wan1
type icmp-echo
destination ip 100.10.10.3
next-hop ip 100.20.11.1
frequency 100
reaction 1 checked-element probe-fail threshold-type consecutive 3 action-type trap-only
quit
nqa schedule admin wan1 start-time now lifetime forever
track 1 nqa entry admin wan1 reaction 1
quit
ip route-static 0.0.0.0 0 100.20.11.1 track 1
ip route-static 0.0.0.0 0 10.20.12.2 preference 70
CE2
nqa entry admin wan2
type icmp-echo
destination ip 100.10.10.3
next-hop ip 100.20.22.1
frequency 100
reaction 1 checked-element probe-fail threshold-type consecutive 3 action-type trap-only
quit
nqa schedule admin wan2 start-time now lifetime forever
track 1 nqa entry admin wan2 reaction 1
quit
ip route-static 0.0.0.0 0 100.20.22.1 track 1
ip route-static 0.0.0.0 0 10.20.12.1 preference 70
部署NAT
CE1
acl advanced 3000
rule 5 permit ip source 10.30.0.0 0.0.0.255
rule 15 deny ip source any
quit
nat address-group 1
address 100.20.11.3 100.20.11.10
quit
interface g5/0
nat outbound 3000 address-group 1
quit
CE2
acl advanced 3000
rule 5 permit ip source 10.30.0.0 0.0.0.255
rule 15 deny ip source any
quit
nat address-group 1
address 100.20.22.3 100.20.22.10
quit
interface g5/1
nat outbound 3000 address-group 1
quit
CE5
acl advanced 3000
rule 15 permit ip source 10.30.0.0 0.0.255.255
rule 20 deny ip
quit
interface s1/0
nat outbound 3000
quit
扫一扫
382
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
