A-A+
掌握ccnp知识:PBR策略路由的综合实验和图解
这个六个路由器共同完成的综合实验新增了一些比较基础的设置,方便大家掌握一些ccnp的知识,主要是PBR(策略路由),其中还包括nat的设置,企业如何连接到isp的设置。此实验企业连接到两家ISP,正常的时候企业访问internet一部分走上面的连接,一些走下面的连接,设置pbr时所有业务都通过一家ISP,这可能是因为该ISP业务比较多或者带宽更高。如果其中一家ISP失效,流量会通过另外一家ISP访问外网。恢复的话又会通过设置的pbr访问外网,这些都是应该熟练掌握的。
下面是各个路由器的配置:
- r2:
- no ip routing
- ip default-gateway 192.168.1.2
- in e0/0
- ip add 192.168.1.1 255.255.255.0
- no sh
- r3:
- no ip routing
- ip default-gateway 192.168.2.2
- in e0/1
- ip add 192.168.2.1 255.255.255.0
- no sh
- r1:
- in e0/0
- ip add 192.168.1.2 255.255.255.0
- no sh
- in e0/1
- ip add 192.168.2.2 255.255.255.0
- in e0/2
- ip add 192.168.3.1 255.255.255.0
- router ospf 1
- net 192.168.1.2 0.0.0.0 a 0
- net 192.168.2.2 0.0.0.0 a 0
- net 192.168.3.1 0.0.0.0 a 0
- ip route 0.0.0.0 0.0.0.0 192.168.3.2
- r4:
- in e0/0
- ip add 192.168.3.2 255.255.255.0
- no sh
- ip nat inside
- ip policy route-map gor6
- ip ospf 1 a 0
- in e0/1
- ip add 200.1.1.1 255.255.255.0
- no sh
- ip nat outside
- in e0/2
- ip add 200.1.2.1 255.255.255.0
- no sh
- access-list 1 permit 192.168.1.0 0.0.0.255
- access-list 1 permit 192.168.3.0 0.0.0.255
- access-list 2 permit 192.168.3.0 0.0.0.255
- access-list 2 permit 192.168.2.0 0.0.0.255
- access-list 4 permit 192.168.1.1
- ip nat inside source list 1 inter e0/1 overload
- ip nat inside source list 2 inter e0/2 overload
- www.luyouqiwang.com/14465
- route-map gor6 permit 10
- match ip add 4
- set ip next-hop 200.1.2.2
- ip route 0.0.0.0 0.0.0.0 200.1.1.2
- ip route 0.0.0.0 0.0.0.0 200.1.2.2
- r5:
- in e0/0
- ip add 200.1.1.2 255.255.255.0
- no sh
- in e0/1
- ip add 200.1.3.2 255.255.255.0
- no sh
- router ospf 1
- net 200.1.3.2 0.0.0.0 a 0
- redistribute connected sub
- r6:
- in e0/1
- ip add 200.1.2.2 255.255.255.0
- no sh
- in e0/0
- ip add 200.1.3.1 255.255.255.0
- redistribute connecten sub 重分发直连到ospf
验证命令:
show ip nat tran 查看nat转换条目
traceroute 路由跟踪命令
debug ip policy 查看pbr是否生效