HCIP之PPP协议(PAP认证,CHAP认证)、GRE、MGRE综合实验

歪歪驴2024-07-25 8:35

实验过程

一、IP配置

r1\]interface Serial 4/0/0 \[r1-Serial4/0/0\]ip ad 15.1.1.1 24 \[r1\]interface GigabitEthernet 0/0/0 \[r1-GigabitEthernet0/0/0\]ip ad 192.168.1.1 24 r2\]interface Serial 4/0/0 \[r2-Serial4/0/0\]ip ad 25.1.1.2 24 \[r2\]interface GigabitEthernet 0/0/0 \[r2-GigabitEthernet0/0/0\]ip ad 192.168.2.1 24 \[r3\]interface Serial 4/0/0 \[r3-Serial4/0/0\]ip ad 35.1.1.3 24 \[r3\]interface GigabitEthernet 0/0/0 \[r3-GigabitEthernet0/0/0\]ip ad 192.168.3.1 24 \[r4\]interface GigabitEthernet 0/0/0 \[r4-GigabitEthernet0/0/0\]ip ad 45.1.1.4 24 \[r4\]interface GigabitEthernet 0/0/1 \[r4-GigabitEthernet0/0/1\]ip ad 192.168.4.1 24 \[r5\]interface Serial 4/0/1 \[r5-Serial4/0/1\]ip ad 15.1.1.5 24 \[r5\]interface Serial 3/0/1 \[r5-Serial3/0/1\]ip ad 25.1.1.5 24 \[r5\]interface Serial 4/0/0 \[r5-Serial4/0/0\]ip ad 35.1.1.5 24 \[r5\]interface GigabitEthernet 0/0/0 \[r5-GigabitEthernet0/0/0\]ip ad 45.1.1.5 24 二、缺省路由 \[r1\]ip route-static 0.0.0.0 0 15.1.1.5 \[r2\]ip route-static 0.0.0.0 0 25.1.1.5 \[r3\]ip route-static 0.0.0.0 0 35.1.1.5 \[r4\]ip route-static 0.0.0.0 0 45.1.1.5 三、R1与R5之间的PAP认证 主认证方 \[r5\]aaa \[r5-aaa\]local-user wangdaye password cipher wdy12345 Info: Add a new user. \[r5-aaa\]local-user wangdaye service-type ppp \[r5\]interface Serial 4/0/1 \[r5-Serial4/0/1\]ppp authentication-mode pap 被认证方 \[r1\]interface Serial 4/0/0 \[r1-Serial4/0/0\]ppp pap local-user wangdaye password cipher wdy12345 \[r1-Serial4/0/0\]shutdown \[r1-Serial4/0/0\]undo shutdown 四、R2和R5的CHAP认证 主认证方 \[r5\]interface Serial 3/0/1 \[r5-Serial3/0/1\]ppp authentication-mode chap 被认证方 \[r2\]interface Serial 4/0/0 \[r2-Serial4/0/0\]ppp chap user wangdaye \[r2-Serial4/0/0\]ppp chap password cipher wdy12345 \[r2-Serial4/0/0\]shutdown \[r2-Serial4/0/0\]undo shutdown 五、更改R3和R5之间的链路协议 \[r3\]interface Serial 4/0/0 \[r3-Serial4/0/0\]display th \[V200R003C00

interface Serial4/0/0

link-protocol ppp

ip address 35.1.1.3 255.255.255.0

return

r3-Serial4/0/0\]link-protocol hdlc \[r5\]interface Serial 4/0/0 \[r5-Serial4/0/0\]link-protocol hdlc 六、R1、R2、R3 构建一个MGRE环境 R1: \[r1\]interface Tunnel 0/0/0 \[r1-Tunnel0/0/0\]ip ad 10.1.1.1 24 \[r1-Tunnel0/0/0\]tunnel-protocol gre p2mp \[r1-Tunnel0/0/0\]nhrp network-id 100 R2: \[r2\]interface Tunnel 0/0/0 \[r2-Tunnel0/0/0\]ip ad 10.1.1.2 24 \[r2-Tunnel0/0/0\]tunnel-protocol gre p2mp \[r2-Tunnel0/0/0\]source Serial 4/0/0 \[r2-Tunnel0/0/0\]nhrp network-id 100 \[r2-Tunnel0/0/0\]nhrp entry 10.1.1.1 15.1.1.1 register R3 \[r3\]interface Tunnel 0/0/0 \[r3-Tunnel0/0/0\]ip ad 10.1.1.3 24 \[r3-Tunnel0/0/0\]tunnel-protocol gre p2mp \[r3-Tunnel0/0/0\]source Serial 4/0/0 \[r3-Tunnel0/0/0\]nhrp network-id 100 \[r3-Tunnel0/0/0\]nhrp entry 10.1.1.1 15.1.1.1 register 七、R1与R4GRE配置 R1 \[r1\]interface Tunnel 0/0/1 \[r1-Tunnel0/0/1\]ip ad 10.1.2.1 24 \[r1-Tunnel0/0/1\]tunnel-protocol gre \[r1-Tunnel0/0/1\]source 15.1.1.1 \[r1-Tunnel0/0/1\]destination 45.1.1.4 R4 \[r4\]interface Tunnel 0/0/1 \[r4-Tunnel0/0/1\]ip ad 10.1.2.4 24 \[r4-Tunnel0/0/1\]tunnel-protocol gre \[r4-Tunnel0/0/1\]source 45.1.1.4 \[r4-Tunnel0/0/1\]destination 15.1.1.1 八、RIP传递路由 \[r1\]rip \[r1-rip-1\]v 2 \[r1-rip-1\]undo s \[r1-rip-1\]undo summary \[r1-rip-1\]network 192.168.1.0 \[r1-rip-1\]network 10.0.0.0 \[r2\]rip \[r2-rip-1\]version 2 \[r2-rip-1\]undo summary \[r2-rip-1\]network 192.168.2.0 \[r2-rip-1\]network 10.0.0.0 \[r3\]rip \[r3-rip-1\]version 2 \[r3-rip-1\]undo su \[r3-rip-1\]network 192.168.3.0 \[r3-rip-1\]network 10.0.0.0 \[r4\]rip \[r4-rip-1\]v 2 \[r4-rip-1\]undo summary \[r4-rip-1\]network 192.168.4.0 \[r4-rip-1\]network 10.0.0.0 打开伪广播关闭rip水平分割 \[r1\]interface Tunnel 0/0/0 \[r1-Tunnel0/0/0\]nhrp entry multicast dynamic \[r1-Tunnel0/0/0\]undo rip split-horizon \[r2\]interface tun 0/0/0 \[r2-Tunnel0/0/0\]undo rip split-horizon \[r3\]interface t 0/0/0 \[r3-Tunnel0/0/0\]undo rip split-horizon 九、NAT配置 \[r1\]acl 2000 \[r1-acl-basic-2000\]rule permit source 192.168.1.0 0.0.0.255 \[r1\]interface Serial 4/0/0 \[r1-Serial4/0/0\]nat outbound 2000 \[r2\]acl 2000 \[r2-acl-basic-2000\]rule permit source 192.168.2.0 0.0.0.255 \[r2\]interface Serial 4/0/0 \[r2-Serial4/0/0\]nat outbound 2000 \[r3\]acl 2000 \[r3-acl-basic-2000\]rule permit source 192.168.3.0 0.0.0.255 \[r3\]interface Serial 4/0/0 \[r3-Serial4/0/0\]nat outbound 2000 \[r4\]acl 2000 \[r4-acl-basic-2000\]rule permit source 192.168.4.0 0.0.0.255 \[r4-acl-basic-2000\]q \[r4\]interface GigabitEthernet 0/0/0 \[r4-GigabitEthernet0/0/0\]nat outbound 2000 实验结果测试 查看配置完的nhrp表 ![](https://i-blog.csdnimg.cn/direct/f166fa6af2d746baa74c4ab4783e65a4.png) ping通测试 ![](https://i-blog.csdnimg.cn/direct/c7b240f376b548678db46314a96c3535.png) ![](https://i-blog.csdnimg.cn/direct/e94c8da58cc1490ba94f9bb00ac89a35.png) **学习之路无终点,知识海洋无尽头,但你的努力,将照亮你的前行之路!**

相关推荐
少妇的美梦17 小时前
logstash教程
运维
chen94518 小时前
k8s集群部署vector日志采集器
运维
chen94518 小时前
aws ec2部署harbor,使用s3存储
运维
白帽黑客沐瑶1 天前
【网络安全就业】信息安全专业的就业前景(非常详细)零基础入门到精通,收藏这篇就够了
网络·安全·web安全·计算机·程序员·编程·网络安全就业
christine-rr1 天前
linux常用命令(4)——压缩命令
linux·服务器·redis
東雪蓮☆1 天前
深入理解 LVS-DR 模式与 Keepalived 高可用集群
linux·运维·服务器·lvs
qq_264220891 天前
LVS负载均衡群集和LVS+Keepalived群集
运维·负载均衡·lvs
树码小子1 天前
Java网络编程:(socket API编程:TCP协议的 socket API -- 回显程序的服务器端程序的编写)
java·网络·tcp/ip
乌萨奇也要立志学C++1 天前
【Linux】进程概念(二):进程查看与 fork 初探
linux·运维·服务器
雨落Liy1 天前
Nginx 从入门到进阶:反向代理、负载均衡与高性能实战指南
运维·nginx·负载均衡
热门推荐
01GitHub 镜像站点02UV 工具安装与国内镜像源配置指南03Claude Code 平替:OpenAI发布 Codex CLI ,GPT-5 国内直接使用0446个Nano-banana 精选提示词,持续更新中05UV安装并设置国内源06A股预测还能更准?开源大模型Kronos带你跑通预测+回测全流程07conda中设置镜像地址(附所有可换的地址)08保姆级教程:手把手教你用Dify实现完美多轮对话(附Chatflow和提示词)09KGG转MP3工具|非KGM文件|解密音频10Spec-Kit 使用指南