HCIP之PPP协议(PAP认证,CHAP认证)、GRE、MGRE综合实验

歪歪驴2024-07-25 8:35

实验过程

一、IP配置

r1\]interface Serial 4/0/0 \[r1-Serial4/0/0\]ip ad 15.1.1.1 24 \[r1\]interface GigabitEthernet 0/0/0 \[r1-GigabitEthernet0/0/0\]ip ad 192.168.1.1 24 r2\]interface Serial 4/0/0 \[r2-Serial4/0/0\]ip ad 25.1.1.2 24 \[r2\]interface GigabitEthernet 0/0/0 \[r2-GigabitEthernet0/0/0\]ip ad 192.168.2.1 24 \[r3\]interface Serial 4/0/0 \[r3-Serial4/0/0\]ip ad 35.1.1.3 24 \[r3\]interface GigabitEthernet 0/0/0 \[r3-GigabitEthernet0/0/0\]ip ad 192.168.3.1 24 \[r4\]interface GigabitEthernet 0/0/0 \[r4-GigabitEthernet0/0/0\]ip ad 45.1.1.4 24 \[r4\]interface GigabitEthernet 0/0/1 \[r4-GigabitEthernet0/0/1\]ip ad 192.168.4.1 24 \[r5\]interface Serial 4/0/1 \[r5-Serial4/0/1\]ip ad 15.1.1.5 24 \[r5\]interface Serial 3/0/1 \[r5-Serial3/0/1\]ip ad 25.1.1.5 24 \[r5\]interface Serial 4/0/0 \[r5-Serial4/0/0\]ip ad 35.1.1.5 24 \[r5\]interface GigabitEthernet 0/0/0 \[r5-GigabitEthernet0/0/0\]ip ad 45.1.1.5 24 二、缺省路由 \[r1\]ip route-static 0.0.0.0 0 15.1.1.5 \[r2\]ip route-static 0.0.0.0 0 25.1.1.5 \[r3\]ip route-static 0.0.0.0 0 35.1.1.5 \[r4\]ip route-static 0.0.0.0 0 45.1.1.5 三、R1与R5之间的PAP认证 主认证方 \[r5\]aaa \[r5-aaa\]local-user wangdaye password cipher wdy12345 Info: Add a new user. \[r5-aaa\]local-user wangdaye service-type ppp \[r5\]interface Serial 4/0/1 \[r5-Serial4/0/1\]ppp authentication-mode pap 被认证方 \[r1\]interface Serial 4/0/0 \[r1-Serial4/0/0\]ppp pap local-user wangdaye password cipher wdy12345 \[r1-Serial4/0/0\]shutdown \[r1-Serial4/0/0\]undo shutdown 四、R2和R5的CHAP认证 主认证方 \[r5\]interface Serial 3/0/1 \[r5-Serial3/0/1\]ppp authentication-mode chap 被认证方 \[r2\]interface Serial 4/0/0 \[r2-Serial4/0/0\]ppp chap user wangdaye \[r2-Serial4/0/0\]ppp chap password cipher wdy12345 \[r2-Serial4/0/0\]shutdown \[r2-Serial4/0/0\]undo shutdown 五、更改R3和R5之间的链路协议 \[r3\]interface Serial 4/0/0 \[r3-Serial4/0/0\]display th \[V200R003C00

interface Serial4/0/0

link-protocol ppp

ip address 35.1.1.3 255.255.255.0

return

r3-Serial4/0/0\]link-protocol hdlc \[r5\]interface Serial 4/0/0 \[r5-Serial4/0/0\]link-protocol hdlc 六、R1、R2、R3 构建一个MGRE环境 R1: \[r1\]interface Tunnel 0/0/0 \[r1-Tunnel0/0/0\]ip ad 10.1.1.1 24 \[r1-Tunnel0/0/0\]tunnel-protocol gre p2mp \[r1-Tunnel0/0/0\]nhrp network-id 100 R2: \[r2\]interface Tunnel 0/0/0 \[r2-Tunnel0/0/0\]ip ad 10.1.1.2 24 \[r2-Tunnel0/0/0\]tunnel-protocol gre p2mp \[r2-Tunnel0/0/0\]source Serial 4/0/0 \[r2-Tunnel0/0/0\]nhrp network-id 100 \[r2-Tunnel0/0/0\]nhrp entry 10.1.1.1 15.1.1.1 register R3 \[r3\]interface Tunnel 0/0/0 \[r3-Tunnel0/0/0\]ip ad 10.1.1.3 24 \[r3-Tunnel0/0/0\]tunnel-protocol gre p2mp \[r3-Tunnel0/0/0\]source Serial 4/0/0 \[r3-Tunnel0/0/0\]nhrp network-id 100 \[r3-Tunnel0/0/0\]nhrp entry 10.1.1.1 15.1.1.1 register 七、R1与R4GRE配置 R1 \[r1\]interface Tunnel 0/0/1 \[r1-Tunnel0/0/1\]ip ad 10.1.2.1 24 \[r1-Tunnel0/0/1\]tunnel-protocol gre \[r1-Tunnel0/0/1\]source 15.1.1.1 \[r1-Tunnel0/0/1\]destination 45.1.1.4 R4 \[r4\]interface Tunnel 0/0/1 \[r4-Tunnel0/0/1\]ip ad 10.1.2.4 24 \[r4-Tunnel0/0/1\]tunnel-protocol gre \[r4-Tunnel0/0/1\]source 45.1.1.4 \[r4-Tunnel0/0/1\]destination 15.1.1.1 八、RIP传递路由 \[r1\]rip \[r1-rip-1\]v 2 \[r1-rip-1\]undo s \[r1-rip-1\]undo summary \[r1-rip-1\]network 192.168.1.0 \[r1-rip-1\]network 10.0.0.0 \[r2\]rip \[r2-rip-1\]version 2 \[r2-rip-1\]undo summary \[r2-rip-1\]network 192.168.2.0 \[r2-rip-1\]network 10.0.0.0 \[r3\]rip \[r3-rip-1\]version 2 \[r3-rip-1\]undo su \[r3-rip-1\]network 192.168.3.0 \[r3-rip-1\]network 10.0.0.0 \[r4\]rip \[r4-rip-1\]v 2 \[r4-rip-1\]undo summary \[r4-rip-1\]network 192.168.4.0 \[r4-rip-1\]network 10.0.0.0 打开伪广播关闭rip水平分割 \[r1\]interface Tunnel 0/0/0 \[r1-Tunnel0/0/0\]nhrp entry multicast dynamic \[r1-Tunnel0/0/0\]undo rip split-horizon \[r2\]interface tun 0/0/0 \[r2-Tunnel0/0/0\]undo rip split-horizon \[r3\]interface t 0/0/0 \[r3-Tunnel0/0/0\]undo rip split-horizon 九、NAT配置 \[r1\]acl 2000 \[r1-acl-basic-2000\]rule permit source 192.168.1.0 0.0.0.255 \[r1\]interface Serial 4/0/0 \[r1-Serial4/0/0\]nat outbound 2000 \[r2\]acl 2000 \[r2-acl-basic-2000\]rule permit source 192.168.2.0 0.0.0.255 \[r2\]interface Serial 4/0/0 \[r2-Serial4/0/0\]nat outbound 2000 \[r3\]acl 2000 \[r3-acl-basic-2000\]rule permit source 192.168.3.0 0.0.0.255 \[r3\]interface Serial 4/0/0 \[r3-Serial4/0/0\]nat outbound 2000 \[r4\]acl 2000 \[r4-acl-basic-2000\]rule permit source 192.168.4.0 0.0.0.255 \[r4-acl-basic-2000\]q \[r4\]interface GigabitEthernet 0/0/0 \[r4-GigabitEthernet0/0/0\]nat outbound 2000 实验结果测试 查看配置完的nhrp表 ![](https://i-blog.csdnimg.cn/direct/f166fa6af2d746baa74c4ab4783e65a4.png) ping通测试 ![](https://i-blog.csdnimg.cn/direct/c7b240f376b548678db46314a96c3535.png) ![](https://i-blog.csdnimg.cn/direct/e94c8da58cc1490ba94f9bb00ac89a35.png) **学习之路无终点,知识海洋无尽头,但你的努力,将照亮你的前行之路!**

相关推荐
lph0092 分钟前
mqtt broker (mosquitto)创建服务器、订阅与发布
运维·服务器
maosheng114611 分钟前
HCIP中mgre的练习题
网络
by————组态17 分钟前
睿控(Ricon)组态
运维·前端·物联网·信息可视化·组态·组态软件
酒醉的胡铁18 分钟前
uniapp运行到鸿蒙证书配置
服务器·uni-app·harmonyos
汉克老师23 分钟前
GESP2025年9月认证C++二级真题与解析(单选题1-8)
网络·循环结构·表达式·gesp二级·gesp2级·双重循环
戈壁老孙31 分钟前
使用Nginx实现动态后端服务切换:一套配置管理多环境
运维·nginx
weixin_4624462337 分钟前
ubuntu真机安装tljh jupyterhub支持跨域iframe
linux·运维·ubuntu
AI科技星41 分钟前
光子的几何起源与量子本质:一个源于时空本底运动的统一模型
服务器·人工智能·线性代数·算法·机器学习
米羊1211 小时前
关于 免杀(上)
网络·安全
a41324471 小时前
在CentOS系统上挂载硬盘到ESXi虚拟机
linux·运维·centos
热门推荐
01GitHub 镜像站点02Linux下V2Ray安装配置指南03AI 规范驱动开发“三剑客”深度对比:Spec-Kit、Kiro 与 OpenSpec 实战指南04Labelme从安装到标注:零基础完整指南05Claude Code Skills 实用使用手册06UV安装并设置国内源07网站改了域名,如何查找?082025年大语言模型技术全景报告09安娜的档案(Anna’s Archive) 镜像网站/国内最新可访问入口(持续更新)10百度网盘偷偷给电脑“降频”?