华为mstp、vrrp、ospf、isis、bgp等综合一起排错

最终实现左边私网和右边私网全部ping通

SW1

vlan batch 12 34

stp region-configuration //mstp配置

region-name test

instance 12 vlan 12

instance 34 vlan 34

active region-configuration

interface GigabitEthernet0/0/3

port link-type trunk

port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/4

port link-type trunk

port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/10

port link-type access

port default vlan 12

interface GigabitEthernet0/0/11

port link-type access

port default vlan 12

SW2

vlan batch 12 34

stp region-configuration

region-name test

instance 12 vlan 12

instance 34 vlan 34

active region-configuration

interface GigabitEthernet0/0/3

port link-type trunk

port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/4

port link-type trunk

port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/10

port link-type access

port default vlan 34

interface GigabitEthernet0/0/11

port link-type access

port default vlan 34

SW3

vlan batch 12 to 13 34

stp instance 12 root primary //设置为主根

stp instance 34 root secondary //设置为备根

stp region-configuration

region-name test

instance 12 vlan 12

instance 34 vlan 34

active region-configuration

interface Vlanif12

ip address 192.168.12.3 255.255.255.0

vrrp vrid 1 virtual-ip 192.168.12.254 //vrrp配置

vrrp vrid 1 priority 150

interface Vlanif13

ip address 10.0.13.3 255.255.255.0

interface Vlanif34

ip address 192.168.34.3 255.255.255.0

vrrp vrid 2 virtual-ip 192.168.34.254

interface MEth0/0/1

interface GigabitEthernet0/0/1

port link-type access

port default vlan 13

interface GigabitEthernet0/0/2

interface GigabitEthernet0/0/3

port link-type trunk

port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/4

port link-type trunk

port trunk allow-pass vlan 12 34

ip route-static 0.0.0.0 0.0.0.0 10.0.13.1

SW4

vlan batch 12 14 34

stp instance 12 root secondary

stp instance 34 root primary

stp region-configuration

region-name test

instance 12 vlan 12

instance 34 vlan 34

active region-configuration

interface Vlanif12

ip address 192.168.12.4 255.255.255.0

vrrp vrid 1 virtual-ip 192.168.12.254

interface Vlanif14

ip address 10.0.14.4 255.255.255.0

interface Vlanif34

ip address 192.168.34.4 255.255.255.0

vrrp vrid 2 virtual-ip 192.168.34.254

vrrp vrid 2 priority 150

interface MEth0/0/1

interface GigabitEthernet0/0/1

interface GigabitEthernet0/0/2

port link-type access

port default vlan 14

interface GigabitEthernet0/0/3

port link-type trunk

port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/4

port link-type trunk

port trunk allow-pass vlan 12 34

ip route-static 0.0.0.0 0.0.0.0 10.0.14.1

R1

interface GigabitEthernet0/0/0

ip address 10.0.12.1 255.255.255.0

interface GigabitEthernet0/0/1

ip address 10.0.13.1 255.255.255.0

interface GigabitEthernet0/0/2

ip address 10.0.14.1 255.255.255.0

interface LoopBack0

ip address 10.0.1.1 255.255.255.255

bgp 100

router-id 10.0.1.1

peer 10.0.2.2 as-number 100

peer 10.0.2.2 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

import-route static //导入静态,刚好静态通过ip route-static查看只有12、34段

peer 10.0.2.2 enable

peer 10.0.2.2 next-hop-local

ospf 1 router-id 10.0.1.1

area 0.0.0.0

network 10.0.1.1 0.0.0.0

network 10.0.12.1 0.0.0.0

ip route-static 192.168.12.0 255.255.255.0 10.0.13.3

ip route-static 192.168.12.0 255.255.255.0 10.0.14.4 preference 70

ip route-static 192.168.34.0 255.255.255.0 10.0.13.3 preference 70

ip route-static 192.168.34.0 255.255.255.0 10.0.14.4

//让12和34段的回去的包走原来出去的路径回包,源进源出

R2

isis 1

cost-style wide

network-entity 49.0001.0000.0000.0002.00

import-route ospf 1 level-1 //右边和r3建立的是级别1,这里导入ospf必须选择级别1

interface GigabitEthernet0/0/0

ip address 10.0.12.2 255.255.255.0

interface GigabitEthernet0/0/1

ip address 10.0.23.2 255.255.255.0

isis enable 1

isis circuit-level level-1 //只和右边r3建立的是级别1,所以不让这个口发级别2的包出

interface LoopBack0

ip address 10.0.2.2 255.255.255.255

isis enable 1

bgp 100

router-id 10.0.2.2

peer 10.0.1.1 as-number 100

peer 10.0.1.1 connect-interface LoopBack0

peer 10.0.3.3 as-number 100

peer 10.0.3.3 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 10.0.1.1 enable

peer 10.0.1.1 reflect-client

peer 10.0.3.3 enable

peer 10.0.3.3 reflect-client

ospf 1 router-id 10.0.2.2

import-route isis 1

area 0.0.0.0

network 10.0.2.2 0.0.0.0

network 10.0.12.2 0.0.0.0

R3

dhcp enable

ip pool test

gateway-list 192.168.56.254

network 192.168.56.0 mask 255.255.255.0

excluded-ip-address 192.168.56.6

dns-list 192.168.1.1

isis 1

is-level level-1

cost-style wide

network-entity 49.0001.0000.0000.0003.00

firewall zone Local

priority 15

interface GigabitEthernet0/0/0

interface GigabitEthernet0/0/1

ip address 10.0.23.3 255.255.255.0

isis enable 1

interface GigabitEthernet0/0/2.35 //用子接口

dot1q termination vid 35

ip address 10.0.35.3 255.255.255.0

arp broadcast enable

dhcp select global

interface LoopBack0

ip address 10.0.3.3 255.255.255.255

isis enable 1

bgp 100

router-id 10.0.3.3

peer 10.0.2.2 as-number 100

peer 10.0.2.2 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

import-route static //导入静态,刚好静态通过ip route-static查看只有56段

peer 10.0.2.2 enable

peer 10.0.2.2 next-hop-local

ip route-static 192.168.56.0 255.255.255.0 10.0.35.5

SW5

vlan batch 35 56

dhcp enable

interface Vlanif35

ip address 10.0.35.5 255.255.255.0

interface Vlanif56

ip address 192.168.56.254 255.255.255.0

dhcp select relay //中继R3上面的dhcp地址池

dhcp relay server-ip 10.0.35.3

interface GigabitEthernet0/0/2

port link-type trunk

port trunk allow-pass vlan 35

interface GigabitEthernet0/0/4

port link-type trunk

port trunk allow-pass vlan 56

ip route-static 0.0.0.0 0.0.0.0 10.0.35.3

SW6

vlan batch 56

interface GigabitEthernet0/0/4

port link-type trunk

port trunk allow-pass vlan 56

interface GigabitEthernet0/0/10

port link-type access

port default vlan 56

interface GigabitEthernet0/0/11

port link-type access

port default vlan 56

相关推荐
(:满天星:)6 小时前
第31篇:块设备与字符设备管理深度解析(基于OpenEuler 24.03)
linux·运维·服务器·网络·centos
小陶来咯6 小时前
【仿muduo库实现并发服务器】Acceptor模块
运维·服务器
爱莉希雅&&&6 小时前
shell编程之awk命令详解
linux·服务器·git
笑稀了的野生俊6 小时前
在服务器中下载 HuggingFace 模型:终极指南
linux·服务器·python·bash·gpu算力
小扎仙森7 小时前
关于服务器宝塔转移wordperss子比主题问题
运维·服务器
小小小糖果人7 小时前
Linux云计算基础篇(5)
linux·运维·服务器
野蛮人6号8 小时前
虚拟机网络编译器还原默认设置后VMnet8和VMnet1消失了
网络·vmware·虚拟机网络编译器·vmnet8消失
scuter_yu8 小时前
主流零信任安全产品深度介绍
运维·网络·安全
KENYCHEN奉孝8 小时前
Rust征服字节跳动:高并发服务器实战
服务器·开发语言·rust
江苏思维驱动智能研究院有限公司8 小时前
Sophos 网络安全:全球领先的自适应安全解决方案提供商
网络·安全·web安全