1. Experimental requirements
1. R6 can only configure IP address for ISP, R1-5 loopback is a private network segment
2. R1/4/5 is the result of fully connected MGRE, R1/2/3 is a star topology, and R1 is the center Site
3. All private network segments can communicate with each other, and the private network segments use the OSPF protocol to complete
2. Experimental topology
3. Experimental process
1. Configure the IP address (after the configuration is complete, check the IP to see if there is a mismatch)
2. Configure routing (first implement intercommunication with the public network and configure default routing)
3. To establish GRE, the entire topology can be divided into a GRE and an MGRE.
4. Configure OSPSF to enable private network intercommunication
R6:
1.配置IP地址 <Huawei> <Huawei>sys [Huawei]sysname R6 [R6]interface G0/0/0 [R6-GigabitEthernet0/0/0]ip address 16.1.1.2 24//配置R6接口IP [R6-GigabitEthernet0/0/0]int g0/0/1 [R6-GigabitEthernet0/0/1]ip address 26.1.1.2 24 [R6-GigabitEthernet0/0/1]int g0/0/2 [R6-GigabitEthernet0/0/2]ip address 36.1.1.2 24 [R6-GigabitEthernet0/0/2]int g4/0/0 [R6-GigabitEthernet4/0/0]ip address 46.1.1.2 24 [R6-GigabitEthernet4/0/0]int g4/0/1 [R6-GigabitEthernet4/0/1]ip address 56.1.1.2 24 [R6-GigabitEthernet4/0/1]int g4/0/2 [R6-GigabitEthernet4/0/2]ip address 61.1.1.2 24 [R6]interface LoopBack 0 [R6-LoopBack0]ip address 6.6.6.6 24//配置环回接口IPR1:
1.配置IP地址 <Huawei>sys [Huawei]sys R1 [R1]int g0/0/0 [R1-GigabitEthernet0/0/0]ip address 16.1.1.1 24//配置R1接口IP [R1-GigabitEthernet0/0/0]int g0/0/1 [R1-GigabitEthernet0/0/1]ip address 61.1.1.1 24 [R1]interface LoopBack 0 [R1-LoopBack0]IP address 192.168.1.1 24//配置环回接口IP 2.配置缺省路由(使公网互通) [R1]ip route-static 0.0.0.0 0 16.1.1.2//配置缺省路由 [R1]ip route-static 0.0.0.0 0 61.1.1.2//负载均衡 3.配置R1/2/3的MGRE(R1为中心站点) [R1]interface Tunnel 0/0/0//创建虚拟接口 [R1-Tunnel0/0/0]ip address 10.1.1.1 24//配置接口IP [R1-Tunnel0/0/0]tunnel-protocol gre p2mp//修改类型为点到多点,对该虚拟接口发出的包添加新的包头,使其通过真实的物理接口进行发送 [R1-Tunnel0/0/0]source 16.1.1.1//新包头中的源IP(因为该IP固定) [R1-Tunnel0/0/0]nhrp entry multicast dynamic //目标IP通过nhrp服务器自动获取,其他路由器会在本设备中的nhrp服务器中注册目标IP,本地就能通过其注册的IP自动生成新包头的目标IP(若为nhrp服务端,此处不需要加register,也能激活自身对注册端的伪广播功能) [R1-Tunnel0/0/0]nhrp network-id 100//服务半径 4.配置R1/4/5的MGRE [R1]interface Tunnel 0/0/1//创建虚拟接口 [R1-Tunnel0/0/1]ip address 10.1.2.1 24//配置接口IP [R1-Tunnel0/0/1]tunnel-protocol gre p2mp//修改类型为点到多点,对该虚拟接口发出的包添加新的包头,使其通过真实的物理接口进行发送 [R1-Tunnel0/0/1]source 61.1.1.1//新包头中的源IP(R1/4/5全连,因此源IP为本地真实接口IP) [R1-Tunnel0/0/1]nhrp entry multicast dynamic //目标IP通过nhrp服务器自动获取,其他路由器会在本设备中的nhrp服务器中注册目标IP,本地就能通过其注册的IP自动生成新包头的目标IP(若为nhrp服务端,此处不需要加register,也能激活自身对注册端的伪广播功能) 5.配置OSPF(实现私网互通) [R1]ospf 1 router-id 1.1.1.1//启动OSPF并配置router-id(该id只具有本地意义) [R1-ospf-1]area 0//划分为区域0 [R1-ospf-1-area-0.0.0.0]network 10.1.1.1 0.0.0.0//宣告路由接口 [R1-ospf-1-area-0.0.0.0]network 10.1.2.1 0.0.0.0 [R1-ospf-1-area-0.0.0.0]network 192.168.1.1 0.0.0.0 [R1]interface Tunnel 0/0/0 [R1-Tunnel0/0/0]ospf network-type broadcast //OSPF在tunnel口上默认的工作方式是p2p(点到点),但该tunnel为点到多点,因此需修改工作方式为broadcast [R1]interface Tunnel 0/0/1 [R1-Tunnel0/0/1]ospf network-type broadcastR2:
1.配置IP地址 <Huawei>sys [Huawei]sys R2 [R2]int g0/0/0 [R2-GigabitEthernet0/0/0]ip address 26.1.1.1 24//配置R2接口IP [R2]interface LoopBack 0 [R2-LoopBack0]ip address 192.168.2.1 24//配置环回接口IP 2.配置缺省路由(使公网互通) [R2]ip route-static 0.0.0.0 0 26.1.1.2 3.配置R1/2/3的MGRE(R1为中心站点) [R2]interface Tunnel0/0/0//创建虚拟接口 [R2-Tunnel0/0/0]ip address 10.1.1.2 24//配置虚拟接口IP [R2-Tunnel0/0/0]tunnel-protocol gre p2mp//修改类型为点到多点,对该虚拟接口发出的包添加新的包头,使其通过真实的物理接口进行发送 [R2-Tunnel0/0/0]source g0/0/0//新包头的源IP(由于该接口IP可变,因此通过源接口获取源IP) [R2-Tunnel0/0/0]nhrp entry 10.1.1.1 16.1.1.1 register 目标IP通过nhrp服务端R1进行注册(register:在nhrp服务器中注册,若此处未加register,R1将无法获取到前往R2的新包头目标IP。 register含有两种功能:一种是让对方自动生产到自己的map,二种是让激活自己到对方的伪广播功能) 4.配置OSPF(实现私网互通) [R2]ospf 1 router-id 2.2.2.2 [R2-ospf-1]area 0 [R2-ospf-1-area-0.0.0.0]network 10.1.1.2 0.0.0.0 [R2-ospf-1-area-0.0.0.0]network 192.168.2.1 0.0.0.0 [R2]interface Tunnel 0/0/0 [R2-Tunnel0/0/0]ospf network-type broadcast //OSPF在tunnel口上默认的工作方式是点到点,但该tunnel为点到多点,因此需修改工作方式为broadcast [R2-Tunnel0/0/0]ospf dr-priority 0//由于R2与R3没有伪广播功能,因此R2与R3不能建立邻居关系,因此R2与R3在进行DR/BDR选举时,选举对象数量会不同,导致选举结果不统一,因此需修改R2与R3的DR优先级,使两者都放弃选举,使得二者选举结果相同,是的数据库统一,最终实现全网可达)R3:
1.配置IP地址 <Huawei>sys [Huawei]sys R3 [R3]int g0/0/0 [R3-GigabitEthernet0/0/0]ip address 36.1.1.1 24//配置R3接口IP [R3]interface LoopBack 0 [R3-LoopBack0]ip address 192.168.3.1 24//配置环回接口IP 2.配置缺省路由(使公网互通) [R3]ip route-static 0.0.0.0 0 36.1.1.2 3.配置R1/2/3的MGRE [R3]interface Tunnel 0/0/0 [R3-Tunnel0/0/0]ip address 10.1.1.3 24 [R3-Tunnel0/0/0]tunnel-protocol gre p2mp [R3-Tunnel0/0/0]source g0/0/0 [R3-Tunnel0/0/0]nhrp entry 10.1.1.1 16.1.1.1 register 4.配置OSPF(实现私网互通) [R3]ospf 1 router-id 3.3.3.3 [R3-ospf-1]area 0 [R3-ospf-1-area-0.0.0.0]network 10.1.1.3 0.0.0.0 [R3-ospf-1-area-0.0.0.0]network 192.168.3.1 0.0.0.0 [R3]interface Tunnel 0/0/0 [R3-Tunnel0/0/0]ospf network-type broadcast [R3-Tunnel0/0/0]ospf dr-priority 0//由于R2与R3没有伪广播功能,因此R2与R3不能建立邻居关系,因此R2与R3在进行DR/BDR选举时,选举对象数量会不同,导致选举结果不统一,因此需修改R2与R3的DR优先级,使两者都放弃选举,使得二者选举结果相同,是的数据库统一,最终实现全网可达)R4:
1.配置IP地址 <Huawei>sys [Huawei]sys R3 [R3]int g0/0/0 [R3-GigabitEthernet0/0/0]ip address 36.1.1.1 24//配置R3接口IP [R3]interface LoopBack 0 [R3-LoopBack0]ip address 192.168.3.1 24//配置环回接口IP 2.配置缺省路由(使公网互通) [R4]ip route-static 0.0.0.0 0 46.1.1.2 3.配置R1/4/5的MGRE [R4]interface Tunnel 0/0/0 //创建虚拟接口 [R4-Tunnel0/0/0]ip address 10.1.2.2 24//配置虚拟接口IP [R4-Tunnel0/0/0]tunnel-protocol gre p2mp //修改类型为点到多点,对该虚拟接口发出的包添加新的包头,使其通过真实的物理接口进行发送 [R4-Tunnel0/0/0]source 46.1.1.1 //新包头中的源IP(R1/4/5全连,因此源IP为本地真实接口IP) [R4-Tunnel0/0/0]nhrp entry 10.1.2.1 61.1.1.1 register [R4-Tunnel0/0/0]nhrp entry 10.1.2.3 56.1.1.1 register//R4须同时在R1,R5中进行IP注册 4.配置OSPF(实现私网互通) [R4]ospf 1 router-id 4.4.4.4 [R4-ospf-1]area 0 [R4-ospf-1-area-0.0.0.0]network 10.1.2.2 0.0.0.0 [R4-ospf-1-area-0.0.0.0]network 192.168.4.1 0.0.0.0 [R4]interface Tunnel 0/0/0 [R4-Tunnel0/0/0]ospf network-type broadcast //OSPF在tunnel口上默认的工作方式是p2p(点到点),但该tunnel为点到多点,因此需修改工作方式为broadcastR5:
1.配置IP地址 <Huawei>sys [Huawei]sys R5 [R5]int g0/0/0 [R5-GigabitEthernet0/0/0]ip address 56.1.1.1 24//配置R5接口IP [R5]interface LoopBack 0 [R5-LoopBack0]ip address 192.168.5.1 24//配置环回接口IP 2.配置缺省路由(使公网互通) [R5]ip route-static 0.0.0.0 0 56.1.1.2 3.配置R1/4/5的MGRE [R5]interface Tunnel 0/0/0 [R5-Tunnel0/0/0]ip address 10.1.2.3 24 [R5-Tunnel0/0/0]tunnel-protocol gre p2mp [R5-Tunnel0/0/0]source 56.1.1.1 [R5-Tunnel0/0/0]nhrp entry 10.1.2.1 61.1.1.1 register //在R1中进行IP注册(注:本处由于R4已在5中注册过,因此R5不需要再在R4中进行IP注册) [R5-Tunnel0/0/0]nhrp entry multicast dynamic //此处开启动态伪广播的原因是:R4在R5处注册过,因此R4能对R5进行伪广播功能,但是R5没在R4中进行注册,因此R5不会对R4开启伪广播功能,必须将R5的动态伪广播功能打开才能使R5对R4开启伪广播功能) 4.配置OSPF(实现私网互通) [R5]ospf 1 router-id 5.5.5.5 [R5-ospf-1]area 0 [R5-ospf-1-area-0.0.0.0]network 10.1.2.3 0.0.0.0 [R5-ospf-1-area-0.0.0.0]network 192.168.5.1 0.0.0.0 //由于R1/4/5为全连,因次本网段不需要修改DR优先级 [R5]interface Tunnel 0/0/0 [R5-Tunnel0/0/0]ospf network-type broadcast //OSPF在tunnel口上默认的工作方式是p2p(点到点),但该tunnel为点到多点,因此需修改工作方式为broadcast
4. Experimental results
1. Public network interworking
2. Private network communication
