华为mpls vpn跨域方案A

跨域方案A原理(缺点是两个as如果有多个ce的话,要用多条的物理连接或子接口连接,不实用):

1、pe和P都和单域一样配置,只是asbr-pe配置不同

2、2个asbr-pe配置上面建立ip vpn-instance 实例

3、2个asbr-pe互联接口上一样要绑定vpn实例

3、2个asbr-pe在bgp的vpn实例中建立EBGP邻居

ipv4-fimary vpn-innstance a

peer XXX as //建立邻居

R1

ip vpn-instance a

ipv4-family

route-distinguisher 1:1

vpn-target 100:100 export-extcommunity

vpn-target 100:100 import-extcommunity

mpls lsr-id 1.1.1.1

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.12.1 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip binding vpn-instance a

ip address 10.0.17.1 255.255.255.0

ospf enable 2 area 0.0.0.0

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 1.1.1.1 255.255.255.255

bgp 100

peer 2.2.2.2 as-number 100

peer 2.2.2.2 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 2.2.2.2 enable

ipv4-family vpnv4

policy vpn-target

peer 2.2.2.2 enable

ipv4-family vpn-instance a

import-route ospf 2

ospf 1

area 0.0.0.0

network 0.0.0.0 255.255.255.255

ospf 2 vpn-instance a

import-route bgp

area 0.0.0.0

R2

mpls lsr-id 2.2.2.2

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.12.2 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip address 10.0.23.2 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 2.2.2.2 255.255.255.255

bgp 100

peer 1.1.1.1 as-number 100

peer 1.1.1.1 connect-interface LoopBack0

peer 3.3.3.3 as-number 100

peer 3.3.3.3 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 1.1.1.1 enable

peer 1.1.1.1 reflect-client

peer 3.3.3.3 enable

peer 3.3.3.3 reflect-client

ipv4-family vpnv4

undo policy vpn-target

peer 1.1.1.1 enable

peer 1.1.1.1 reflect-client

peer 3.3.3.3 enable

peer 3.3.3.3 reflect-client

ospf 1

area 0.0.0.0

network 0.0.0.0 255.255.255.255

R3:

ip vpn-instance a

ipv4-family

route-distinguisher 1:1

vpn-target 100:100 export-extcommunity

vpn-target 100:100 import-extcommunity

mpls lsr-id 3.3.3.3

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.23.3 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip binding vpn-instance a

ip address 10.0.34.3 255.255.255.0

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 3.3.3.3 255.255.255.255

bgp 100

peer 2.2.2.2 as-number 100

peer 2.2.2.2 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 2.2.2.2 enable

ipv4-family vpnv4

policy vpn-target

peer 2.2.2.2 enable

ipv4-family vpn-instance a

peer 10.0.34.4 as-number 200

ospf 1

area 0.0.0.0

network 0.0.0.0 255.255.255.255

R4

ip vpn-instance a

ipv4-family

route-distinguisher 1:1

vpn-target 100:100 export-extcommunity

vpn-target 100:100 import-extcommunity

mpls lsr-id 4.4.4.4

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip binding vpn-instance a

ip address 10.0.34.4 255.255.255.0

interface GigabitEthernet0/0/1

ip address 10.0.41.4 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 4.4.4.4 255.255.255.255

bgp 200

peer 10.10.10.10 as-number 200

peer 10.10.10.10 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 10.10.10.10 enable

ipv4-family vpnv4

policy vpn-target

peer 10.10.10.10 enable

ipv4-family vpn-instance a

peer 10.0.34.3 as-number 100

ospf 1

area 0.0.0.0

network 4.4.4.4 0.0.0.0

network 10.0.41.4 0.0.0.0

R7

router id 7.7.7.7

interface GigabitEthernet0/0/0

ip address 10.0.17.7 255.255.255.0

ospf enable 1 area 0.0.0.0

interface LoopBack0

ip address 7.7.7.7 255.255.255.255

ospf enable 1 area 0.0.0.0

ospf 1

area 0.0.0.0

R10

mpls lsr-id 10.10.10.10

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.41.10 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip address 10.0.111.10 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 10.10.10.10 255.255.255.255

bgp 200

peer 4.4.4.4 as-number 200

peer 4.4.4.4 connect-interface LoopBack0

peer 11.11.11.11 as-number 200

peer 11.11.11.11 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 4.4.4.4 enable

peer 11.11.11.11 enable

ipv4-family vpnv4

undo policy vpn-target

peer 4.4.4.4 enable

peer 4.4.4.4 reflect-client

peer 11.11.11.11 enable

peer 11.11.11.11 reflect-client

ospf 1

area 0.0.0.0

network 10.0.41.10 0.0.0.0

network 10.0.111.10 0.0.0.0

network 10.10.10.10 0.0.0.0

R11

ip vpn-instance a

ipv4-family

route-distinguisher 1:1

vpn-target 100:100 export-extcommunity

vpn-target 100:100 import-extcommunity

mpls lsr-id 11.11.11.11

mpls

mpls ldp

interface GigabitEthernet0/0/0

ip address 10.0.111.11 255.255.255.0

mpls

mpls ldp

interface GigabitEthernet0/0/1

ip binding vpn-instance a

ip address 10.0.112.1 255.255.255.0

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 11.11.11.11 255.255.255.255

bgp 200

peer 10.10.10.10 as-number 200

peer 10.10.10.10 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 10.10.10.10 enable

ipv4-family vpnv4

policy vpn-target

peer 10.10.10.10 enable

ipv4-family vpn-instance a

import-route ospf 2

ospf 1

area 0.0.0.0

network 10.0.111.11 0.0.0.0

network 11.11.11.11 0.0.0.0

ospf 2 vpn-instance a

import-route bgp

area 0.0.0.0

network 10.0.112.1 0.0.0.0

R12

interface GigabitEthernet0/0/0

ip address 10.0.112.2 255.255.255.0

interface GigabitEthernet0/0/1

interface GigabitEthernet0/0/2

interface NULL0

interface LoopBack0

ip address 12.12.12.12 255.255.255.255

ospf 1

area 0.0.0.0

network 10.0.112.2 0.0.0.0

network 12.12.12.12 0.0.0.0

相关推荐
明月看潮生几秒前
青少年编程与数学 02-003 Go语言网络编程 15课题、Go语言URL编程
开发语言·网络·青少年编程·golang·编程与数学
龙哥说跨境1 小时前
如何利用指纹浏览器爬虫绕过Cloudflare的防护?
服务器·网络·python·网络爬虫
懒大王就是我1 小时前
C语言网络编程 -- TCP/iP协议
c语言·网络·tcp/ip
Elaine2023911 小时前
06 网络编程基础
java·网络
海绵波波1072 小时前
Webserver(4.3)TCP通信实现
服务器·网络·tcp/ip
sanzk3 小时前
华为鸿蒙应用开发
华为·harmonyos
热爱跑步的恒川5 小时前
【论文复现】基于图卷积网络的轻量化推荐模型
网络·人工智能·开源·aigc·ai编程
云飞云共享云桌面6 小时前
8位机械工程师如何共享一台图形工作站算力?
linux·服务器·网络
音徽编程8 小时前
Rust异步运行时框架tokio保姆级教程
开发语言·网络·rust
ClkLog-开源埋点用户分析9 小时前
ClkLog企业版(CDP)预售开启,更有鸿蒙SDK前来助力
华为·开源·开源软件·harmonyos