Technical documentation
发布日期:2022-05-06 浏览次数:1912 来源:崔志鹏
HCIE Datacom学习重点技术-MPLS-VPN HUB-SOPKE经典模型
WOLFLAB HCIE培训讲师崔志鹏 CCIE#64969 HCIE#15621提供技术编写
联系WOLFLAB网站客服获取HCIE Datacom学习资料,QQ:2569790740
场景一:站点之间不能访问,都可以访问总部
场景二:站点之间可以访问,但是需要经过总部
设计思路:
@在AR1和AR5之间搞两个子接口;
@把这两个子接口划入到不同的VRF中;
@让一个VRF只用作接收分部的路由,一个VRF发送路由;
@AR1和AR5通过子接口建立两个EBGP邻居关系;
@合理规划RT值实现需求;
R1配置
ip vpn-instance A-EX
ipv4-family
route-distinguisher 4:4
vpn-target 1:1 export-extcommunity
#
ip vpn-instance A-IM
ipv4-family
route-distinguisher 1:1
vpn-target 2:2 import-extcommunity
interface GigabitEthernet0/0/0.1
dot1q termination vid 10
ip binding vpn-instance A-IM
ip address 1.1.15.1 255.255.255.0
arp broadcast enable
#
interface GigabitEthernet0/0/0.2
dot1q termination vid 20
ip binding vpn-instance A-EX
ip address 1.1.51.1 255.255.255.0
arp broadcast enable
bgp 1234
router-id 1.1.1.1
peer 2.2.2.2 as-number 1234
peer 2.2.2.2 connect-interface LoopBack0
#
ipv4-family unicast
undo synchronization
undo peer 2.2.2.2 enable
#
ipv4-family vpnv4
policy vpn-target
peer 2.2.2.2 enable
#
ipv4-family vpn-instance A-EX
peer 1.1.51.5 as-number 500
peer 1.1.51.5 allow-as-loop
#
ipv4-family vpn-instance A-IM
peer 1.1.15.5 as-number 500
R5配置
interface GigabitEthernet0/0/0.1
dot1q termination vid 10
ip address 1.1.15.5 255.255.255.0
arp broadcast enable
#
interface GigabitEthernet0/0/0.2
dot1q termination vid 20
ip address 1.1.51.5 255.255.255.0
arp broadcast enable
bgp 500
router-id 5.5.5.5
peer 1.1.15.1 as-number 1234
peer 1.1.51.1 as-number 1234
#
ipv4-family unicast
undo synchronization
network 5.5.5.5 255.255.255.255
peer 1.1.15.1 enable
peer 1.1.51.1 enable
R7 tracert R6效果图如下:
R7 tracert R5效果图如下:
R6 tracert R7效果图如下:
官方微信:17316362402,可加HCIP Datacom学习群
WOLF-LAB沃尔夫提供免费基础课学习视频+资料+模拟器,联系客服获取