本文承自:https://qiuhualin.blog.csdn.net/article/details/123070089?spm=1001.2014.3001.5502
AR9
sysname AR9
#
board add 0/4 2SA
#
snmp-agent local-engineid 800007DB03000000000000
snmp-agent
#
clock timezone China-Standard-Time minus 08:00:00
#
portal local-server load portalpage.zip
#
drop illegal-mac alarm
#
set cpu-usage threshold 80 restore 75
#
acl number 2000
rule 5 permit source 220.202.0.1 0.0.15.254
acl number 2001
rule 5 permit source 220.202.0.0 0.0.15.254
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
local-user admin service-type http
#
firewall zone Local
priority 15
#
interface Serial4/0/0
link-protocol ppp
ppp chap user XGang
ppp chap password cipher %$%$)G_'*9cuYVQY#9ShXnq+,Au)%$%$
ip address 176.0.29.2 255.255.255.252
#
interface Serial4/0/1
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 10.0.109.9 255.255.255.0
ospf network-type p2p
#
interface GigabitEthernet0/0/1
ip address 10.0.129.9 255.255.255.0
ospf network-type p2p
#
interface GigabitEthernet0/0/2
#
interface NULL0
#
interface LoopBack0
ip address 9.9.9.9 255.255.255.255
#
bgp 65202
peer 11.11.11.11 as-number 65202
peer 11.11.11.11 connect-interface LoopBack0
peer 176.0.29.1 as-number 65001
#
ipv4-family unicast
undo synchronization
network 220.201.7.70 255.255.255.255
network 220.201.7.71 255.255.255.255
network 220.201.7.72 255.255.255.255
network 220.201.7.73 255.255.255.255
network 220.201.7.74 255.255.255.255
network 220.201.7.75 255.255.255.255
network 220.201.7.76 255.255.255.255
network 220.201.7.77 255.255.255.255
network 220.201.7.78 255.255.255.255
network 220.201.7.79 255.255.255.255
network 220.201.8.80 255.255.255.255
network 220.201.8.81 255.255.255.255
network 220.201.8.82 255.255.255.255
network 220.201.8.83 255.255.255.255
network 220.201.8.84 255.255.255.255
network 220.201.8.85 255.255.255.255
network 220.201.8.86 255.255.255.255
network 220.201.8.87 255.255.255.255
network 220.201.8.88 255.255.255.255
network 220.201.8.89 255.255.255.255
peer 11.11.11.11 enable
peer 11.11.11.11 next-hop-local
peer 11.11.11.11 advertise-community
peer 176.0.29.1 enable
peer 176.0.29.1 route-policy fabu export
peer 176.0.29.1 advertise-community
#
ospf 1 router-id 10.9.9.9
filter-policy route-policy jujue import
import-route bgp route-policy btoo
area 0.0.0.0
network 9.9.9.9 0.0.0.0
network 10.0.109.0 0.0.0.255
network 10.0.129.0 0.0.0.255
#
route-policy fabu permit node 10
if-match acl 2000
apply cost 50
apply community 202:1
#
route-policy fabu permit node 20
if-match acl 2001
apply cost 100
apply community 202:2
#
route-policy btoo permit node 10
if-match community-filter 100
apply cost 10
apply tag 100
#
route-policy btoo permit node 20
if-match community-filter 120
apply cost 20
apply tag 100
#
route-policy jujue deny node 10
if-match tag 100
#
route-policy jujue permit node 10000
#
ip community-filter 100 permit :1
ip community-filter 120 permit :2
#
user-interface con 0
authentication-mode password
user-interface vty 0 4
user-interface vty 16 20
#
wlan ac
#
return
AR10
sysname AR10
#
board add 0/1 1GEC
board add 0/2 1GEC
board add 0/3 1GEC
board add 0/4 1GEC
#
snmp-agent local-engineid 800007DB03000000000000
snmp-agent
#
clock timezone China-Standard-Time minus 08:00:00
#
portal local-server load portalpage.zip
#
drop illegal-mac alarm
#
set cpu-usage threshold 80 restore 75
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
local-user admin service-type http
#
firewall zone Local
priority 15
#
interface GigabitEthernet0/0/0
ip address 10.0.109.10 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 10.0.110.10 255.255.255.0
ospf network-type p2p
#
interface GigabitEthernet0/0/2
ip address 20.0.107.2 255.255.255.252
ospf network-type p2p
#
interface GigabitEthernet1/0/0
ip address 20.0.108.2 255.255.255.252
ospf network-type p2p
#
interface GigabitEthernet2/0/0
#
interface GigabitEthernet3/0/0
#
interface GigabitEthernet4/0/0
#
interface NULL0
#
ospf 1 router-id 10.10.10.10
area 0.0.0.0
network 10.0.109.0 0.0.0.255
network 10.0.110.0 0.0.0.255
area 0.0.0.1
network 20.0.107.0 0.0.0.3
network 20.0.108.0 0.0.0.3
#
user-interface con 0
authentication-mode password
user-interface vty 0 4
user-interface vty 16 20
#
wlan ac
#
return
AR11
sysname AR11
#
board add 0/4 2SA
#
snmp-agent local-engineid 800007DB03000000000000
snmp-agent
#
clock timezone China-Standard-Time minus 08:00:00
#
portal local-server load portalpage.zip
#
drop illegal-mac alarm
#
set cpu-usage threshold 80 restore 75
#
acl number 2000
rule 5 permit source 220.202.0.1 0.0.15.254
acl number 2001
rule 5 permit source 220.202.0.0 0.0.15.254
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
local-user admin service-type http
#
firewall zone Local
priority 15
#
interface Serial4/0/0
link-protocol ppp
ppp chap user XGang
ppp chap password cipher %$%$Nnz<<qUo1Gu5Cq!Y>$vK,Aty%$%$
ip address 176.0.114.2 255.255.255.252
#
interface Serial4/0/1
link-protocol ppp
#
interface GigabitEthernet0/0/0
ip address 10.0.110.11 255.255.255.0
ospf network-type p2p
#
interface GigabitEthernet0/0/1
ip address 10.0.112.11 255.255.255.0
ospf network-type p2p
#
interface GigabitEthernet0/0/2
#
interface NULL0
#
interface LoopBack0
ip address 11.11.11.11 255.255.255.255
#
bgp 65202
peer 9.9.9.9 as-number 65202
peer 9.9.9.9 connect-interface LoopBack0
peer 176.0.114.1 as-number 65001
#
ipv4-family unicast
undo synchronization
network 220.201.7.70 255.255.255.255
network 220.201.7.71 255.255.255.255
network 220.201.7.72 255.255.255.255
network 220.201.7.73 255.255.255.255
network 220.201.7.74 255.255.255.255
network 220.201.7.75 255.255.255.255
network 220.201.7.76 255.255.255.255
network 220.201.7.77 255.255.255.255
network 220.201.7.78 255.255.255.255
network 220.201.7.79 255.255.255.255
network 220.201.8.80 255.255.255.255
network 220.201.8.81 255.255.255.255
network 220.201.8.82 255.255.255.255
network 220.201.8.83 255.255.255.255
network 220.201.8.84 255.255.255.255
network 220.201.8.85 255.255.255.255
network 220.201.8.86 255.255.255.255
network 220.201.8.87 255.255.255.255
network 220.201.8.88 255.255.255.255
network 220.201.8.89 255.255.255.255
peer 9.9.9.9 enable
peer 9.9.9.9 next-hop-local
peer 9.9.9.9 advertise-community
peer 176.0.114.1 enable
peer 176.0.114.1 route-policy fabu export
peer 176.0.114.1 advertise-community
#
ospf 1 router-id 10.11.11.11
filter-policy route-policy jujue import
import-route bgp route-policy btoo
area 0.0.0.0
network 10.0.110.0 0.0.0.255
network 10.0.112.0 0.0.0.255
network 11.11.11.11 0.0.0.0
#
route-policy fabu permit node 10
if-match acl 2001
apply cost 50
apply community 202:2
#
route-policy fabu permit node 20
if-match acl 2000
apply cost 100
apply community 202:1
#
route-policy btoo permit node 10
if-match community-filter 120
apply cost 10
apply tag 100
#
route-policy btoo permit node 20
if-match community-filter 100
apply cost 20
apply tag 100
#
route-policy jujue deny node 10
if-match tag 100
#
route-policy jujue permit node 10000
#
ip community-filter 100 permit :1
ip community-filter 120 permit :2
#
user-interface con 0
authentication-mode password
user-interface vty 0 4
user-interface vty 16 20
#
wlan ac
#
return
AR12
sysname AR12
#
board add 0/1 1GEC
board add 0/2 1GEC
board add 0/3 1GEC
board add 0/4 1GEC
#
snmp-agent local-engineid 800007DB03000000000000
snmp-agent
#
clock timezone China-Standard-Time minus 08:00:00
#
portal local-server load portalpage.zip
#
drop illegal-mac alarm
#
set cpu-usage threshold 80 restore 75
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
local-user admin service-type http
#
firewall zone Local
priority 15
#
interface GigabitEthernet0/0/0
ip address 10.0.112.12 255.255.255.0
ospf network-type p2p
#
interface GigabitEthernet0/0/1
ip address 10.0.129.12 255.255.255.0
ospf network-type p2p
#
interface GigabitEthernet0/0/2
ip address 20.0.127.2 255.255.255.252
ospf network-type p2p
#
interface GigabitEthernet1/0/0
ip address 20.0.128.2 255.255.255.252
ospf network-type p2p
#
interface GigabitEthernet2/0/0
#
interface GigabitEthernet3/0/0
#
interface GigabitEthernet4/0/0
#
interface NULL0
#
ospf 1 router-id 10.12.12.12
area 0.0.0.0
network 10.0.112.0 0.0.0.255
network 10.0.129.0 0.0.0.255
area 0.0.0.1
network 20.0.127.0 0.0.0.3
network 20.0.128.0 0.0.0.3
#
user-interface con 0
authentication-mode password
user-interface vty 0 4
user-interface vty 16 20
#
wlan ac
#
return