最终实现左边私网和右边私网全部ping通
SW1
vlan batch 12 34
stp region-configuration //mstp配置
region-name test
instance 12 vlan 12
instance 34 vlan 34
active region-configuration
interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 12 34
interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 12 34
interface GigabitEthernet0/0/10
port link-type access
port default vlan 12
interface GigabitEthernet0/0/11
port link-type access
port default vlan 12
SW2
vlan batch 12 34
stp region-configuration
region-name test
instance 12 vlan 12
instance 34 vlan 34
active region-configuration
interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 12 34
interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 12 34
interface GigabitEthernet0/0/10
port link-type access
port default vlan 34
interface GigabitEthernet0/0/11
port link-type access
port default vlan 34
SW3
vlan batch 12 to 13 34
stp instance 12 root primary //设置为主根
stp instance 34 root secondary //设置为备根
stp region-configuration
region-name test
instance 12 vlan 12
instance 34 vlan 34
active region-configuration
interface Vlanif12
ip address 192.168.12.3 255.255.255.0
vrrp vrid 1 virtual-ip 192.168.12.254 //vrrp配置
vrrp vrid 1 priority 150
interface Vlanif13
ip address 10.0.13.3 255.255.255.0
interface Vlanif34
ip address 192.168.34.3 255.255.255.0
vrrp vrid 2 virtual-ip 192.168.34.254
interface MEth0/0/1
interface GigabitEthernet0/0/1
port link-type access
port default vlan 13
interface GigabitEthernet0/0/2
interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 12 34
interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 12 34
ip route-static 0.0.0.0 0.0.0.0 10.0.13.1
SW4
vlan batch 12 14 34
stp instance 12 root secondary
stp instance 34 root primary
stp region-configuration
region-name test
instance 12 vlan 12
instance 34 vlan 34
active region-configuration
interface Vlanif12
ip address 192.168.12.4 255.255.255.0
vrrp vrid 1 virtual-ip 192.168.12.254
interface Vlanif14
ip address 10.0.14.4 255.255.255.0
interface Vlanif34
ip address 192.168.34.4 255.255.255.0
vrrp vrid 2 virtual-ip 192.168.34.254
vrrp vrid 2 priority 150
interface MEth0/0/1
interface GigabitEthernet0/0/1
interface GigabitEthernet0/0/2
port link-type access
port default vlan 14
interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 12 34
interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 12 34
ip route-static 0.0.0.0 0.0.0.0 10.0.14.1
R1
interface GigabitEthernet0/0/0
ip address 10.0.12.1 255.255.255.0
interface GigabitEthernet0/0/1
ip address 10.0.13.1 255.255.255.0
interface GigabitEthernet0/0/2
ip address 10.0.14.1 255.255.255.0
interface LoopBack0
ip address 10.0.1.1 255.255.255.255
bgp 100
router-id 10.0.1.1
peer 10.0.2.2 as-number 100
peer 10.0.2.2 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
import-route static //导入静态,刚好静态通过ip route-static查看只有12、34段
peer 10.0.2.2 enable
peer 10.0.2.2 next-hop-local
ospf 1 router-id 10.0.1.1
area 0.0.0.0
network 10.0.1.1 0.0.0.0
network 10.0.12.1 0.0.0.0
ip route-static 192.168.12.0 255.255.255.0 10.0.13.3
ip route-static 192.168.12.0 255.255.255.0 10.0.14.4 preference 70
ip route-static 192.168.34.0 255.255.255.0 10.0.13.3 preference 70
ip route-static 192.168.34.0 255.255.255.0 10.0.14.4
//让12和34段的回去的包走原来出去的路径回包,源进源出
R2
isis 1
cost-style wide
network-entity 49.0001.0000.0000.0002.00
import-route ospf 1 level-1 //右边和r3建立的是级别1,这里导入ospf必须选择级别1
interface GigabitEthernet0/0/0
ip address 10.0.12.2 255.255.255.0
interface GigabitEthernet0/0/1
ip address 10.0.23.2 255.255.255.0
isis enable 1
isis circuit-level level-1 //只和右边r3建立的是级别1,所以不让这个口发级别2的包出
interface LoopBack0
ip address 10.0.2.2 255.255.255.255
isis enable 1
bgp 100
router-id 10.0.2.2
peer 10.0.1.1 as-number 100
peer 10.0.1.1 connect-interface LoopBack0
peer 10.0.3.3 as-number 100
peer 10.0.3.3 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
peer 10.0.1.1 enable
peer 10.0.1.1 reflect-client
peer 10.0.3.3 enable
peer 10.0.3.3 reflect-client
ospf 1 router-id 10.0.2.2
import-route isis 1
area 0.0.0.0
network 10.0.2.2 0.0.0.0
network 10.0.12.2 0.0.0.0
R3
dhcp enable
ip pool test
gateway-list 192.168.56.254
network 192.168.56.0 mask 255.255.255.0
excluded-ip-address 192.168.56.6
dns-list 192.168.1.1
isis 1
is-level level-1
cost-style wide
network-entity 49.0001.0000.0000.0003.00
firewall zone Local
priority 15
interface GigabitEthernet0/0/0
interface GigabitEthernet0/0/1
ip address 10.0.23.3 255.255.255.0
isis enable 1
interface GigabitEthernet0/0/2.35 //用子接口
dot1q termination vid 35
ip address 10.0.35.3 255.255.255.0
arp broadcast enable
dhcp select global
interface LoopBack0
ip address 10.0.3.3 255.255.255.255
isis enable 1
bgp 100
router-id 10.0.3.3
peer 10.0.2.2 as-number 100
peer 10.0.2.2 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
import-route static //导入静态,刚好静态通过ip route-static查看只有56段
peer 10.0.2.2 enable
peer 10.0.2.2 next-hop-local
ip route-static 192.168.56.0 255.255.255.0 10.0.35.5
SW5
vlan batch 35 56
dhcp enable
interface Vlanif35
ip address 10.0.35.5 255.255.255.0
interface Vlanif56
ip address 192.168.56.254 255.255.255.0
dhcp select relay //中继R3上面的dhcp地址池
dhcp relay server-ip 10.0.35.3
interface GigabitEthernet0/0/2
port link-type trunk
port trunk allow-pass vlan 35
interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 56
ip route-static 0.0.0.0 0.0.0.0 10.0.35.3
SW6
vlan batch 56
interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 56
interface GigabitEthernet0/0/10
port link-type access
port default vlan 56
interface GigabitEthernet0/0/11
port link-type access
port default vlan 56