BGP实验2
一.IP划分以及配置:
IP划分:
可以看出有三个AS大区所以先将网段一分为三然后,AS二中也有俩个私有as所以还 需要再把as2的ip一分为二
as 1:172.16.0.0 18
as 2:172.16.64.0 18
as 3:172.16.128.0 18
as1:
骨干链路:172.16.0.0 30
as 2:
as 64512:172.16.64.0 19
骨干链路:172.16.64.0 30
172.16.64.4 30
172.16.64.8 30
172.16.64.12 30
as 64513:172.16.96.0 19
骨干链路:172.16.96.0 30
172.16.96.4 30
as 3:
骨干链路:172.16.128.0 30
配置:
-----R1-----
[r1]interface GigabitEthernet 0/0/0
[r1-GigabitEthernet0/0/0]ip address 172.16.0.1 30
[r1]interface LoopBack 0
[r1-LoopBack0]ip address 10.1.1.1 24
[r1]interface LoopBack 1
[r1-LoopBack1]ip address 192.168.1.1 24
-----R2-----
[r2]interface g 0/0/0
[r2-GigabitEthernet0/0/0]ip address 172.16.0.2 30
[r2]interface GigabitEthernet 0/0/1
[r2-GigabitEthernet0/0/1]ip address 172.16.64.5 30
[r2]interface GigabitEthernet 0/0/2
[r2-GigabitEthernet0/0/2]ip address 172.16.64.2 30
[r2]interface LoopBack 0
[r2-LoopBack0]ip address 2.2.2.2 24-----R3-----
[r3]interface GigabitEthernet 0/0/0
[r3-GigabitEthernet0/0/0]ip address 172.16.64.6 30
[r3-GigabitEthernet0/0/0]interface GigabitEthernet 0/0/1
[r3-GigabitEthernet0/0/1]ip address 172.16.64.9 30
[r3]interface LoopBack 0
[r3-LoopBack0]ip address 3.3.3.3 24-----R4-----
[r4]interface g 0/0/0
[r4-GigabitEthernet0/0/0]ip address 172.16.64.10 30
[r4-GigabitEthernet0/0/0]interface g 0/0/1
[r4-GigabitEthernet0/0/1]ip address 172.16.64.13 30[r4]interface LoopBack 0
[r4-LoopBack0]ip address 4.4.4.4 24-----R5-----
[r5]interface g 0/0/0
[r5-GigabitEthernet0/0/0]ip address 172.16.64.1 30[r5-GigabitEthernet0/0/0]interface g 0/0/1
[r5-GigabitEthernet0/0/1]ip address 172.16.96.6 30[r5]interface LoopBack 0
[r5-LoopBack0]ip address 5.5.5.5 24-----R6-----
[r6]interface g 0/0/0
[r6-GigabitEthernet0/0/0]ip address 172.16.96.5 30[r6-GigabitEthernet0/0/0]interface g 0/0/1
[r6-GigabitEthernet0/0/1]ip address 172.16.96.2 30[r6]interface LoopBack 0
[r6-LoopBack0]ip address 6.6.6.6 24-----R7-----
[r7]interface GigabitEthernet 0/0/0
[r7-GigabitEthernet0/0/0]ip address 172.16.96.1 30
[r7-GigabitEthernet0/0/0]interface GigabitEthernet 0/0/1
[r7-GigabitEthernet0/0/1]ip address 172.16.64.14 30[r7-GigabitEthernet0/0/1]interface GigabitEthernet 0/0/2
[r7-GigabitEthernet0/0/2]ip address 172.16.128.1 30[r7]interface LoopBack 0
[r7-LoopBack0]ip address 7.7.7.7 24-----R8-----
[r8]interface g 0/0/0
[r8-GigabitEthernet0/0/0]ip address 172.16.128.2 30
[r8]interface LoopBack 0
[r8-LoopBack0]ip address 11.1.1.1 24
[r8]interface LoopBack 1
[r8-LoopBack1]ip address 192.168.2.1 24
二.使用BGP协议使所有环回都能访问
想要使用BGP协议必须要有对应的路由所以在AS2区域中我们使用ospf协议使AS2区域的设备互通,然后在AR1与AR2,AR7与AR8身上使用静态的的方式使1.1.1.1与2.2.2.2 ,7.7.7.7与8.8.8.8互通。
配置ospf:
-----AR2-----
[r2]ospf 1 router-id 2.2.2.2
[r2-ospf-1]area 0[r2-ospf-1-area-0.0.0.0]network 172.16.0.2 0.0.0.0
[r2-ospf-1-area-0.0.0.0]network 172.16.64.5 0.0.0.0
[r2-ospf-1-area-0.0.0.0]network 172.16.64.2 0.0.0.0
[r2-ospf-1-area-0.0.0.0]network 2.2.2.2 0.0.0.255-----AR3-----
[r3]ospf 1 router-id 3.3.3.3
[r3-ospf-1]area 0
[r3-ospf-1-area-0.0.0.0]network 3.3.3.3 0.0.0.255
[r3-ospf-1-area-0.0.0.0]network 172.16.64.6 0.0.0.0[r3-ospf-1-area-0.0.0.0]network 172.16.64.9 0.0.0.0
-----AR4------
[r4]ospf 1 router-id 4.4.4.4
[r4-ospf-1]area 0
[r4-ospf-1-area-0.0.0.0]network 172.16.64.10 0.0.0.0[r4-ospf-1-area-0.0.0.0]network 172.16.64.13 0.0.0.0
[r4-ospf-1-area-0.0.0.0]network 4.4.4.4 0.0.0.255
-----AR5-----
[r5]ospf 1 router-id 5.5.5.5
[r5-ospf-1]area 0
[r5-ospf-1-area-0.0.0.0]network 172.16.96.6 0.0.0.0
[r5-ospf-1-area-0.0.0.0]network 172.16.64.1 0.0.0.0[r5-ospf-1-area-0.0.0.0]network 5.5.5.5 0.0.0.255
-----AR6-----
[r6]ospf 1 router-id 6.6.6.6
[r6-ospf-1]area 0
[r6-ospf-1-area-0.0.0.0]network 172.16.96.5 0.0.0.0[r6-ospf-1-area-0.0.0.0]network 172.16.96.2 0.0.0.0
[r6-ospf-1-area-0.0.0.0]network 6.6.6.6 0.0.0.255-----AR7-----
[r7]ospf 1 router-id 7.7.7.7
[r7-ospf-1]area 0
[r7-ospf-1-area-0.0.0.0]network 172.16.96.1 0.0.0.0[r7-ospf-1-area-0.0.0.0]network 172.16.64.14 0.0.0.0
[r7-ospf-1-area-0.0.0.0]network 172.16.128.1 0.0.0.0
[r7-ospf-1-area-0.0.0.0]network 7.7.7.7 0.0.0.255
配置完成后R7可以ping通R2
BGP配置:
AR1与AR2,AR8与AR7采用直连建邻
/虽然AR2在AS64512中但也属于公共的AS2所以需要使用confederation去宣告
-----AR1-----
[r1]bgp 1
[r1-bgp]router-id 1.1.1.1
[r1-bgp]peer 172.16.0.2 as-number 2------AR2-----
[r2]bgp 65512
[r2-bgp]router-id 2.2.2.2[r2-bgp]confederation id 2
[r2-bgp]peer 172.16.0.1 as-number 1------AR8-----
[r8]bgp 3
[r8-bgp]router-id 8.8.8.8
[r8-bgp]peer 172.16.128.1 as-number 2------AR7------
[r7]bgp 65513
[r7-bgp]router-id 7.7.7.7
[r7-bgp]confederation id 2
[r7-bgp]peer 172.16.128.2 as-number 3
----- AS 64512-----
AR2:
[r2]bgp 64512
[r2-bgp]peer 3.3.3.3 as-number 64512
[r2-bgp]peer 3.3.3.3 connect-interface LoopBack 0AS3:
[r3]bgp 64512
[r3-bgp]router-id 3.3.3.3
[r3-bgp]peer 2.2.2.2 as-number 64512
[r3-bgp]peer 2.2.2.2 connect-interface LoopBack 0
[r3-bgp]peer 2.2.2.2 next-hop-local
[r3-bgp]peer 4.4.4.4 as-number 64512
[r3-bgp]peer 4.4.4.4 connect-interface LoopBack 0
[r3-bgp]peer 4.4.4.4 next-hop-localAS4:
[r4]bgp 64512
[r4-bgp]confederation id 2
[r4-bgp]peer 3.3.3.3 as-number 64512
[r4-bgp]peer 3.3.3.3 connect-interface LoopBack 0
----- AS 64513-----
AR5:
[r5]bgp 64513
[r5-bgp]router-id 5.5.5.5
[r5-bgp]peer 6.6.6.6 as-number 64513
[r5-bgp]peer 6.6.6.6 connect-interface LoopBack 0[r5-bgp]confederation id 2
AR6:
[r6]bgp 64513
[r6-bgp]router-id 6.6.6.6
[r6-bgp]peer 5.5.5.5 as-number 64513
[r6-bgp]peer 5.5.5.5 connect-interface LoopBack 0
[r6-bgp]peer 5.5.5.5 next-hop-local
[r6-bgp]peer 7.7.7.7 as-number 64512
[r6-bgp]peer 7.7.7.7 connect-interface LoopBack 0
[r6-bgp]peer 7.7.7.7 next-hop-localAR7:
[r7-bgp]router-id 7.7.7.7
[r7-bgp]peer 6.6.6.6 as-number 64513
[r7-bgp]peer 6.6.6.6 connect-interface LoopBack 0
AS64512与AS64513之间建立EBGP对等体
----- AS 64512-----
AR2:
[r2]BGP 64512
[r2-bgp]confederation peer-as 64513
[r2-bgp]peer 5.5.5.5 as 64513
[r2-bgp]peer 5.5.5.5 connect-interface LoopBack 0
[r2-bgp]peer 5.5.5.5 ebgp-max-hopAR4:
[r4]bgp 64512
[r4-bgp]confederation id 2
[r4-bgp]confederation peer-as 64513
[r4-bgp]peer 7.7.7.7 as-number 64513
[r4-bgp]peer 7.7.7.7 connect-interface LoopBack 0
[r4-bgp]peer 7.7.7.7 ebgp-max-hop----- AS 64513-----
AR5:
[r5]BGP 64513
[r5-bgp]confederation id 2
[r5-bgp]confederation peer-as 64512
[r5-bgp]peer 2.2.2.2 as-number 64512
[r5-bgp]peer 2.2.2.2 connect-interface LoopBack 0
[r5-bgp]peer 2.2.2.2 ebgp-max-hopAR7:
[r7]bgp 64513
[r7-bgp]confederation peer-as 64512
[r7-bgp]peer 4.4.4.4 as-number 64512
[r7-bgp]peer 4.4.4.4 connect-interface LoopBack 0
[r7-bgp]peer 4.4.4.4 ebgp-max-hop
宣告网段:
----- AR2-----
[r2]bgp 64512
[r2-bgp]network 172.16.0.2 30
[r2-bgp]network 172.16.64.5 30
[r2-bgp]network 172.16.64.2 30[r2-bgp]network 2.2.2.2 24
----- AR3-----
[r3]bgp 64512
[r3-bgp]network 172.16.64.6 30
[r3-bgp]network 172.16.64.9 30
[r3-bgp]network 3.3.3.3 24----- AR4-----
[r4]bgp 64512
[r4-bgp]network 172.16.64.10 30
[r4-bgp]network 172.16.64.13 30
[r4-bgp]network 4.4.4.4 24----- AR5-----
[r5]bgp 64513
[r5-bgp]network 172.16.96.6 30
[r5-bgp]network 172.16.64.1 30
[r5-bgp]network 5.5.5.5 24----- AR6-----
[r6]bgp 64513
[r6-bgp]network 172.16.96.5
[r6-bgp]network 172.16.96.5 30
[r6-bgp]network 172.16.96.2 30
[r6-bgp]network 6.6.6.6 24----- AR7-----
[r7]bgp 64513
[r7-bgp]network 172.16.96.1 30
[r7-bgp]network 172.16.64.14 30
[r7-bgp]network 172.16.128.1 30
[r7-bgp]network 7.7.7.7 24------ AR1-----
[r1]bgp 1
[r1-bgp]network 172.16.0.1 30
[r1-bgp]network 1.1.1.1 24
----- AR8-----[r8]BGP 3
[r8-bgp]network 172.16.128.2 30[r8-bgp]network 8.8.8.8 24
配置反射器:
----- AR3-----
[r3]bgp 65512
[r3-bgp]peer 4.4.4.4 reflect-client
[r3-bgp]peer 2.2.2.2 reflect-client----- AR6-----
[r6]bgp 65513
[r6-bgp]peer 5.5.5.5 reflect-client
[r6-bgp]peer 7.7.7.7 reflect-client
看一下路由器bgp的网段
最后让192.168.1.1和192.168.2.1不能宣告的两个网段互相ping通
[r1]ip route-static 192.168.2.0 255.255.255.0 172.16.0.2
[r2]ip route-static 192.168.2.0 255.255.255.0 172.16.64.6
[r3]ip route-static 192.168.2.0 255.255.255.0 172.16.64.10
[r4]ip route-static 192.168.2.0 255.255.255.0 172.16.64.14
[r7]ip route-static 192.168.2.0 255.255.255.0 172.16.128.2
//
[r2]ip route-static 192.168.1.0 255.255.255.0 172.16.0.1
[r3]ip route-static 192.168.1.0 255.255.255.0 172.16.64.5
[r4]ip route-static 192.168.1.0 255.255.255.0 172.16.64.9
[r7]ip route-static 192.168.1.0 255.255.255.0 172.16.64.13
[r8]ip route-static 192.168.1.0 255.255.255.0 172.16.128.1
就完成了
