华为mpls vpn跨域方案A

跨域方案A原理(缺点是两个as如果有多个ce的话,要用多条的物理连接或子接口连接,不实用):

1、pe和P都和单域一样配置,只是asbr-pe配置不同

2、2个asbr-pe配置上面建立ip vpn-instance 实例

3、2个asbr-pe互联接口上一样要绑定vpn实例

3、2个asbr-pe在bgp的vpn实例中建立EBGP邻居

ipv4-fimary vpn-innstance a

peer XXX as //建立邻居

R1

ip vpn-instance a

ipv4-family

route-distinguisher 1:1

vpn-target 100:100 export-extcommunity

vpn-target 100:100 import-extcommunity

mpls lsr-id 1.1.1.1

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.12.1 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip binding vpn-instance a

ip address 10.0.17.1 255.255.255.0

ospf enable 2 area 0.0.0.0

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 1.1.1.1 255.255.255.255

bgp 100

peer 2.2.2.2 as-number 100

peer 2.2.2.2 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 2.2.2.2 enable

ipv4-family vpnv4

policy vpn-target

peer 2.2.2.2 enable

ipv4-family vpn-instance a

import-route ospf 2

ospf 1

area 0.0.0.0

network 0.0.0.0 255.255.255.255

ospf 2 vpn-instance a

import-route bgp

area 0.0.0.0

R2

mpls lsr-id 2.2.2.2

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.12.2 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip address 10.0.23.2 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 2.2.2.2 255.255.255.255

bgp 100

peer 1.1.1.1 as-number 100

peer 1.1.1.1 connect-interface LoopBack0

peer 3.3.3.3 as-number 100

peer 3.3.3.3 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 1.1.1.1 enable

peer 1.1.1.1 reflect-client

peer 3.3.3.3 enable

peer 3.3.3.3 reflect-client

ipv4-family vpnv4

undo policy vpn-target

peer 1.1.1.1 enable

peer 1.1.1.1 reflect-client

peer 3.3.3.3 enable

peer 3.3.3.3 reflect-client

ospf 1

area 0.0.0.0

network 0.0.0.0 255.255.255.255

R3:

ip vpn-instance a

ipv4-family

route-distinguisher 1:1

vpn-target 100:100 export-extcommunity

vpn-target 100:100 import-extcommunity

mpls lsr-id 3.3.3.3

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.23.3 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip binding vpn-instance a

ip address 10.0.34.3 255.255.255.0

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 3.3.3.3 255.255.255.255

bgp 100

peer 2.2.2.2 as-number 100

peer 2.2.2.2 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 2.2.2.2 enable

ipv4-family vpnv4

policy vpn-target

peer 2.2.2.2 enable

ipv4-family vpn-instance a

peer 10.0.34.4 as-number 200

ospf 1

area 0.0.0.0

network 0.0.0.0 255.255.255.255

R4

ip vpn-instance a

ipv4-family

route-distinguisher 1:1

vpn-target 100:100 export-extcommunity

vpn-target 100:100 import-extcommunity

mpls lsr-id 4.4.4.4

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip binding vpn-instance a

ip address 10.0.34.4 255.255.255.0

interface GigabitEthernet0/0/1

ip address 10.0.41.4 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 4.4.4.4 255.255.255.255

bgp 200

peer 10.10.10.10 as-number 200

peer 10.10.10.10 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 10.10.10.10 enable

ipv4-family vpnv4

policy vpn-target

peer 10.10.10.10 enable

ipv4-family vpn-instance a

peer 10.0.34.3 as-number 100

ospf 1

area 0.0.0.0

network 4.4.4.4 0.0.0.0

network 10.0.41.4 0.0.0.0

R7

router id 7.7.7.7

interface GigabitEthernet0/0/0

ip address 10.0.17.7 255.255.255.0

ospf enable 1 area 0.0.0.0

interface LoopBack0

ip address 7.7.7.7 255.255.255.255

ospf enable 1 area 0.0.0.0

ospf 1

area 0.0.0.0

R10

mpls lsr-id 10.10.10.10

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.41.10 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip address 10.0.111.10 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 10.10.10.10 255.255.255.255

bgp 200

peer 4.4.4.4 as-number 200

peer 4.4.4.4 connect-interface LoopBack0

peer 11.11.11.11 as-number 200

peer 11.11.11.11 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 4.4.4.4 enable

peer 11.11.11.11 enable

ipv4-family vpnv4

undo policy vpn-target

peer 4.4.4.4 enable

peer 4.4.4.4 reflect-client

peer 11.11.11.11 enable

peer 11.11.11.11 reflect-client

ospf 1

area 0.0.0.0

network 10.0.41.10 0.0.0.0

network 10.0.111.10 0.0.0.0

network 10.10.10.10 0.0.0.0

R11

ip vpn-instance a

ipv4-family

route-distinguisher 1:1

vpn-target 100:100 export-extcommunity

vpn-target 100:100 import-extcommunity

mpls lsr-id 11.11.11.11

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.111.11 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip binding vpn-instance a

ip address 10.0.112.1 255.255.255.0

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 11.11.11.11 255.255.255.255

bgp 200

peer 10.10.10.10 as-number 200

peer 10.10.10.10 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 10.10.10.10 enable

ipv4-family vpnv4

policy vpn-target

peer 10.10.10.10 enable

ipv4-family vpn-instance a

import-route ospf 2

ospf 1

area 0.0.0.0

network 10.0.111.11 0.0.0.0

network 11.11.11.11 0.0.0.0

ospf 2 vpn-instance a

import-route bgp

area 0.0.0.0

network 10.0.112.1 0.0.0.0

R12

interface GigabitEthernet0/0/0

ip address 10.0.112.2 255.255.255.0

interface GigabitEthernet0/0/1

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 12.12.12.12 255.255.255.255

ospf 1

area 0.0.0.0

network 10.0.112.2 0.0.0.0

network 12.12.12.12 0.0.0.0

相关推荐
Piko6147 小时前
H3C IRF2 堆叠实战:打造高可靠核心交换网络
运维·网络·笔记
在书中成长8 小时前
HarmonyOS 小游戏《对战五子棋》开发第5篇-五子棋GameConstants常量与类型定义最佳实践
华为·harmonyos
最爱老式锅包肉9 小时前
《HarmonyOS技术精讲-ArkWeb》桥接两岸:JSBridge原生与Web互调
前端·华为·harmonyos
茯苓gao9 小时前
嵌入式开发笔记:CANopen相关移位运算与通信协议术语详解
网络·嵌入式硬件·学习·信息与通信
万联WANFLOW9 小时前
SD-WAN 控制平面高可用怎么做?SDWAN 控制器挂了,全网会发生什么
运维·网络·分布式·架构
酱学编程10 小时前
【从零到一实现一个 AI Agent 框架 · 第四篇】04. 任务规划:拆解复杂目标 -
服务器·网络·数据库·人工智能
风行南方11 小时前
密码学之分组密码
网络·密码学
艾莉丝努力练剑12 小时前
OpenCode AI 编程:Ubuntu 24.04 环境安装与使用指南
linux·服务器·网络·人工智能·tcp/ip·ubuntu
最爱老式锅包肉13 小时前
《HarmonyOS技术精讲-Core Speech Kit(基础语音服务)》第3篇:语音合成——文本到自然语音的魔法
华为·harmonyos
●VON13 小时前
HarmonyKit | 鸿蒙新特性驱动:组件-工具-页面三层架构设计
华为·harmonyos·鸿蒙