BGP&ISIS高级路由期末考试案例分享-接单中

于 2024-12-11 10:35:14 发布
阅读量444 收藏 1
点赞数 8
分类专栏: 考试题 文章标签: 网络 ensp 华为ensp 华为 BGP ISIS 路由策略
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.youkuaiyun.com/weixin_45650628/article/details/144392738
版权

  1. 配置路由器LOOPBACK1地址,AR1使用1.1.1.1/32,AR2使用2.2.2.2/32,AR3使用3.3.3.3/32,AR4使用4.4.4.4/32。配置路由器之间的互联接口地址,AR1和AR3之间使用13.1.1.0/30,AR2和AR3之间使用23.1.1.0/30,AR3和AR4之间使用34.1.1.0/30。AR1的GE0/0/1使用10.1.1.1/24网段,AR1的GE0/0/2使用20.1.1.1/24网段,AR2的GE0/0/1使用30.1.1.1/24网段,PC1配置10.1.1.2/24,PC2配置20.1.1.2/24,PC3配置30.1.1.2/24 
  2. 在AR1上GE0/0/1配置接口traffic-policy,禁止PC2访问PC1.  
  3. AS200自治域使用ISIS路由协议联通各路由器LOOPBACK地址,使用LOOPBACK地址建立IBGP连接。所有设备使用IS-IS进程号100,仅工作在Leve-2,区域号为86.0931,开销类型为wide。各设备的system id使用环回口1进行映射,如AR1的IP是1.1.1.1,其system id为0010.0100.1001。
  4. AR3和AR4配置静态路由,使用LOOPBACK地址建立EBGP链接。
  5. AR3上需要学习到10.1.1.0/24,20.1.1.0/24,30.1.1.0/24的路由。
  6. 在AR4的bgp邻居关系上配置路由策略,实现PC3无法访问AR4的LOOPBACK地址,PC1和PC2可以PING通AR4的LOOPBACK地址。
$ 18812668402 $ 我在

[AR1]
[AR1]un in en 
Info: Information center is disabled.
[AR1]
[AR1]sys AR1
[AR1]
[AR1]isis 100
[AR1-isis-100]
[AR1-isis-100]net 86.0931.0010.0100.1001.00
[AR1-isis-100]
[AR1-isis-100]is-level level-2
Info: IS Level Changed, Resetting ISIS...
[AR1-isis-100]
[AR1-isis-100]cost-style wide
Info: Cost style changed, Resetting ISIS...
[AR1-isis-100]
[AR1-isis-100]inte g0/0/1
[AR1-GigabitEthernet0/0/1]
[AR1-GigabitEthernet0/0/1]ip ad 10.1.1.254 24
[AR1-GigabitEthernet0/0/1]
[AR1-GigabitEthernet0/0/1]isis en 100
[AR1-GigabitEthernet0/0/1]
[AR1-GigabitEthernet0/0/1]inte g0/0/2
[AR1-GigabitEthernet0/0/2]
[AR1-GigabitEthernet0/0/2]ip ad 20.1.1.254 24
[AR1-GigabitEthernet0/0/2]
[AR1-GigabitEthernet0/0/2]isis en 100
[AR1-GigabitEthernet0/0/2]
[AR1-GigabitEthernet0/0/2]inte g0/0/0
[AR1-GigabitEthernet0/0/0]
[AR1-GigabitEthernet0/0/0]ip ad 13.1.1.2 30 
[AR1-GigabitEthernet0/0/0]
[AR1-GigabitEthernet0/0/0]isis en 100
[AR1-GigabitEthernet0/0/0]
[AR1-GigabitEthernet0/0/0]inte loop1
[AR1-LoopBack1]
[AR1-LoopBack1]ip ad 1.1.1.1 32 
[AR1-LoopBack1]
[AR1-LoopBack1]isis en 100
[AR1-LoopBack1]
[AR1]traffic classifier 1
[AR1-classifier-1]if-match acl 2000
[AR1-classifier-1]qu
[AR1]traffic behavior 1
[AR1-behavior-1]deny 
[AR1-behavior-1]q
[AR1]traffic policy 1
[AR1-trafficpolicy-1]classifier 1 behavior 1
[AR1-trafficpolicy-1]q
[AR1]acl 2000
[AR1-acl-basic-2000]ru pe so 20.1.1.0 0.0.0.255
[AR1-acl-basic-2000]inte g0/0/1
[AR1-GigabitEthernet0/0/1]traffic-policy 1 inbound 
[AR1-GigabitEthernet0/0/1]traffic-policy 1 outbound 

The device is running!

<Huawei>sys
Enter system view, return user view with Ctrl+Z.
[Huawei]
[Huawei]un in en 
Info: Information center is disabled.
[Huawei]
[Huawei]sys AR2
[AR2]
[AR2]isis 100
[AR2-isis-100]
[AR2-isis-100]net 86.0931.0020.0200.2002.00
[AR2-isis-100]
[AR2-isis-100]is-level level-2
Info: IS Level Changed, Resetting ISIS...
[AR2-isis-100]
[AR2-isis-100]cost-style wide
Info: Cost style changed, Resetting ISIS...
[AR2-isis-100]
[AR2-isis-100]inte g0/0/1
[AR2-GigabitEthernet0/0/1]
[AR2-GigabitEthernet0/0/1]ip ad 30.1.1.254 24
[AR2-GigabitEthernet0/0/1]
[AR2-GigabitEthernet0/0/1]isis en 100
[AR2-GigabitEthernet0/0/1]
[AR2-GigabitEthernet0/0/1]inte g0/0/0
[AR2-GigabitEthernet0/0/0]
[AR2-GigabitEthernet0/0/0]ip ad 23.1.1.2 30 
[AR2-GigabitEthernet0/0/0]
[AR2-GigabitEthernet0/0/0]isis en 100
[AR2-GigabitEthernet0/0/0]
[AR2-GigabitEthernet0/0/0]inte loop1
[AR2-LoopBack1]
[AR2-LoopBack1]ip ad 2.2.2.2 32 
[AR2-LoopBack1]
[AR2-LoopBack1]isis en 100
[AR2-LoopBack1]
[AR2-LoopBack1]
The device is running!

<Huawei>sys
Enter system view, return user view with Ctrl+Z.
[Huawei]
[Huawei]un in en 
Info: Information center is disabled.
[Huawei]
[Huawei]sys AR3
[AR3]
[AR3]isis 100
[AR3-isis-100]
[AR3-isis-100]net 86.0931.0030.0300.3003.00
[AR3-isis-100]
[AR3-isis-100]is-level level-2
Info: IS Level Changed, Resetting ISIS...
[AR3-isis-100]
[AR3-isis-100]cost-style wide
Info: Cost style changed, Resetting ISIS...
[AR3-isis-100]
[AR3-isis-100]inte g0/0/1
[AR3-GigabitEthernet0/0/1]
[AR3-GigabitEthernet0/0/1]ip ad 23.1.1.1 30
[AR3-GigabitEthernet0/0/1]
[AR3-GigabitEthernet0/0/1]isis en 100
[AR3-GigabitEthernet0/0/1]
[AR3-GigabitEthernet0/0/1]inte g0/0/0
[AR3-GigabitEthernet0/0/0]
[AR3-GigabitEthernet0/0/0]ip ad 13.1.1.1 30 
[AR3-GigabitEthernet0/0/0]
[AR3-GigabitEthernet0/0/0]isis en 100
[AR3-GigabitEthernet0/0/0]
[AR3-GigabitEthernet0/0/0]inte g0/0/2
[AR3-GigabitEthernet0/0/2]
[AR3-GigabitEthernet0/0/2]ip ad 34.1.1.2 30
[AR3-GigabitEthernet0/0/2]
[AR3-GigabitEthernet0/0/2]inte loop1
[AR3-LoopBack1]
[AR3-LoopBack1]ip ad 3.3.3.3 32 
[AR3-LoopBack1]
[AR3-LoopBack1]isis en 100
[AR3-LoopBack1]
[AR3-LoopBack1]ip route-sta 4.4.4.4 32 34.1.1.1
[AR3]
[AR3]bgp 200
[AR3-bgp]
[AR3-bgp]pe 4.4.4.4 as 100
[AR3-bgp]pe 4.4.4.4 con loop 1
[AR3-bgp]pe 4.4.4.4 eb	
[AR3-bgp]pe 4.4.4.4 ebgp-max-hop 255
[AR3-bgp]
[AR3]isis 100
[AR3-isis-100]im bgp 
[AR3-isis-100]im sta
The device is running!

<Huawei>sys
Enter system view, return user view with Ctrl+Z.
[Huawei]un in en 
Info: Information center is disabled.
[Huawei]sys AR4
[AR4]inte g0/0/0
[AR4-GigabitEthernet0/0/0]ip ad 34.1.1.1 30 
[AR4-GigabitEthernet0/0/0]inte loo1
[AR4-LoopBack1]ip ad 4.4.4.4 32
[AR4]ip route-static 3.3.3.3 32 34.1.1.2
[AR4]bgp 100
[AR4-bgp]pe 3.3.3.3 as 200
[AR4-bgp]pe 3.3.3.3 con loop1
[AR4-bgp]pe 3.3.3.3 eb 255
[AR4-bgp]net 4.4.4.4 32
[AR4]ip ip-prefix 1 pe 10.1.1.0 24
[AR4]ip ip-prefix 1 pe 20.1.1.0 24
[AR4]rou 1 pe no 10 
Info: New Sequence of this List.
[AR4-route-policy]if ip	
[AR4-route-policy]if ip-prefix 1
[AR4-route-policy]bgp 100
[AR4-bgp]pe 3.3.3.3 route-policy 1 im

做路由策略前

做路由策略后

pc1 不能ping 通 pc2

做mqc前后对比

评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

B站-白话聊网络

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值