华为sr-mpls te手动隧道模型配置案例

yenggd2024-04-21 10:08

NE1(pe1)

ip vpn-instance vpn

ipv4-family

route-distinguisher 100:100

tnl-policy p1 //把vpn实例引入到定义的p1策略中的te隧道

vpn-target 1:1 export-extcommunity

vpn-target 1:1 import-extcommunity

mpls lsr-id 1.1.1.1

mpls

mpls te //开mpls te功能

explicit-path te1 //定义显示标签路径,一条线各sid+SRGB过去对端,这里如何定义,ce的数据包就怎么走。

next sid label 16200 type prefix //先到中间的net2(P)设备

next sid label 16400 type prefix //再到对端net4(pe2)设备

segment-routing //全局开户段路由功能

interface Ethernet1/0/0

undo shutdown

ip binding vpn-instance vpn //绑定对端ce实例

ip address 192.168.0.1 255.255.255.0

undo dcn

undo dcn mode vlan

interface Ethernet1/0/1

undo shutdown

ip address 10.0.12.1 255.255.255.0

undo dcn

undo dcn mode vlan

interface Ethernet1/0/2

undo shutdown

ip address 10.0.13.1 255.255.255.0

undo dcn mode vlan

interface LoopBack0

ip address 1.1.1.1 255.255.255.255

ospf prefix-sid index 100 //自己本设备的node sid标签

interface Tunnel1                  //和对端pe2建立隧道

ip address unnumbered interface LoopBack0   //借用自己的loop地址

tunnel-protocol mpls te             //指定隧道协议

destination 4.4.4.4               //对端pe地址

mpls te signal-protocol segment-routing     //选择sr协议

mpls te tunnel-id 1              //本地有效

mpls te path explicit-path te1          //手工指定前面指定的显示路径,用于配合下面的隧道负载分担。

(如果有控制器这里就这样配:mpls te pce delegate 托管给pce server)

interface NULL0

bgp 100

peer 2.2.2.2 as-number 100

peer 2.2.2.2 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 2.2.2.2 enable

ipv4-family vpnv4   //全网建立vpnv4的bgp邻居

policy vpn-target

peer 2.2.2.2 enable

ipv4-family vpn-instance vpn

peer 192.168.0.2 as-number 65001

ospf 1

opaque-capability enable   //开ospf10类lsa功能

segment-routing mpls    //开段路由标签分发功能

segment-routing global-block 16000 23999   //定义SRGB范围

area 0.0.0.0

network 0.0.0.0 255.255.255.255

mpls-te enable     //开启TE功能

undo dcn

tunnel-policy p1   //定义策略,假设有2条路实现负载分担

tunnel select-seq sr-te load-balance-number 2

NE2(P)

mpls lsr-id 2.2.2.2

mpls

mpls te

segment-routing

interface Ethernet1/0/1

undo shutdown

ip address 10.0.12.2 255.255.255.0

undo dcn

undo dcn mode vlan

interface Ethernet1/0/2

undo shutdown

ip address 10.0.24.2 255.255.255.0

undo dcn mode vlan

interface Ethernet1/0/3

undo shutdown

undo dcn mode vlan

interface LoopBack0

ip address 2.2.2.2 255.255.255.255

ospf prefix-sid index 200

interface NULL0

bgp 100

peer 1.1.1.1 as-number 100

peer 1.1.1.1 connect-interface LoopBack0

peer 4.4.4.4 as-number 100

peer 4.4.4.4 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 1.1.1.1 enable

peer 4.4.4.4 enable

ipv4-family vpnv4

undo policy vpn-target

peer 1.1.1.1 enable

peer 1.1.1.1 reflect-client

peer 4.4.4.4 enable

peer 4.4.4.4 reflect-client

ospf 1

opaque-capability enable

segment-routing mpls

segment-routing global-block 16000 23999

area 0.0.0.0

network 0.0.0.0 255.255.255.255

mpls-te enable

undo dcn

NE4(PE2)

ip vpn-instance vpn

ipv4-family

route-distinguisher 100:200

tnl-policy p1

vpn-target 1:1 export-extcommunity

vpn-target 1:1 import-extcommunity

mpls lsr-id 4.4.4.4

mpls

mpls te

explicit-path te1

next sid label 16200 type prefix

next sid label 16100 type prefix

segment-routing

interface Ethernet1/0/0

undo shutdown

ip binding vpn-instance vpn

ip address 192.168.1.1 255.255.255.0

undo dcn

undo dcn mode vlan

interface Ethernet1/0/1

undo shutdown

undo dcn

undo dcn mode vlan

interface Ethernet1/0/2

undo shutdown

ip address 10.0.24.4 255.255.255.0

undo dcn mode vlan

interface Ethernet1/0/3

undo shutdown

ip address 10.0.34.4 255.255.255.0

undo dcn mode vlan

interface LoopBack0

ip address 4.4.4.4 255.255.255.255

ospf prefix-sid index 400

interface Tunnel1

ip address unnumbered interface LoopBack0

tunnel-protocol mpls te

destination 1.1.1.1

mpls te signal-protocol segment-routing

mpls te tunnel-id 1

mpls te path explicit-path te1

interface NULL0

bgp 100

peer 2.2.2.2 as-number 100

peer 2.2.2.2 connect-interface LoopBack0

ipv4-family unicast

undo synchronization

peer 2.2.2.2 enable

ipv4-family vpnv4

policy vpn-target

peer 2.2.2.2 enable

ipv4-family vpn-instance vpn

peer 192.168.1.2 as-number 65002

ospf 1

opaque-capability enable

segment-routing mpls

segment-routing global-block 16000 23999

area 0.0.0.0

network 0.0.0.0 255.255.255.255

mpls-te enable

undo dcn

tunnel-policy p1

tunnel select-seq sr-te load-balance-number 2

查看:

tracert lsp segment-routing te Tunnel 1

查看标签计算分配情况

display tunnel-info all

查看所有的隧道

display ip routing-table vpn-instance vpn 22.1.1.1 verbose

查看到对端22.1.1.1走的是哪个隧道

查看用了策略后走的是te隧道,默认会走下面的be隧道

相关推荐
攻城狮在此2 小时前
华三中小型企业二层组网配置案例一(单ISP+单链路)
网络·华为
REDcker2 小时前
Nagle 算法与 TCP_NODELAY、TCP_CORK 详解
网络·tcp/ip·算法
Swift社区2 小时前
从手游到鸿蒙游戏:开发逻辑变了什么?
游戏·华为·harmonyos
熬夜的咕噜猫2 小时前
MySQL主从复制与读写分离
网络·数据库·mysql
key_3_feng3 小时前
鸿蒙系统ArkTS开发常见问题技术合集
华为·harmonyos
qq_553760323 小时前
Harmony OS 长按与滑动手势交互探秘
华为·harmonyos·鸿蒙
Chris _data4 小时前
S7-1500 常用工业通信协议详解与对比
运维·服务器·网络
zmj3203244 小时前
ISO/SAE 21434:2021(道路车辆 - 网络安全工程) 汇总
网络·安全·web安全·21434
IP老炮不瞎唠4 小时前
Scrapy 高效采集:优化方案与指南
网络·爬虫·python·scrapy·安全
zmj3203244 小时前
UNR -155 Annex 5提示的威胁及其编号
网络·安全·网络安全
热门推荐
012026年3月AI领域大事件:DeepSeek引领开源风暴02GitHub 镜像站点03Qwen3.5-Omni与Qwen3.6模型全面解析(含测评/案例/使用教程)04围棋-html版本05纯 HTML/CSS/JS 实现的高颜值登录页,还会眨眼睛!少女心爆棚!06Claude Code + GLM4.7 避坑指南:解决 Unable to connect to Anthropic services07让 Trae IDE 智能体 “读懂”文档 Excel+PDF+DOCX :mcp-documents-reader 工具使用指南08“wsl --install -d Ubuntu-22.04”下载慢,中国地区离线安装 Ubuntu 22.04 WSL方法(亲测2025年5月6日)09Mac 本地部署 OMLX + 通义千问 Qwen3.5-27B 保姆级教程10UV安装并设置国内源