OSPF Multiarea
Area 10 totally stub area
Area 30 totally nssa area
sábado, 25 de marzo de 2017
domingo, 19 de marzo de 2017
BGP ebgp Multihop , next-hop-self Route-reflector
BGP ebgp multi-hop, Route reflector , next-hop-self
R1
router bgp 100
bgp log-neighbor-changes
neighbor 192.168.10.1 remote-as 100
router ospf 1
network 1.1.1.0 0.0.0.255 area 0
network 192.168.10.0 0.0.0.3 area 0
R2
router bgp 100
bgp log-neighbor-changes
neighbor 192.168.10.2 remote-as 100
neighbor 192.168.10.2 route-reflector-client
neighbor 192.168.10.5 remote-as 100
neighbor 192.168.10.5 route-reflector-client
router ospf 1
network 2.2.2.0 0.0.0.255 area 0
network 192.168.10.0 0.0.0.3 area 0
network 192.168.10.4 0.0.0.3 area 0
R3
R3#sh run | sec bgp
router bgp 100
bgp log-neighbor-changes
neighbor 192.168.10.6 remote-as 100
neighbor 192.168.10.6 route-reflector-client
neighbor 192.168.10.10 remote-as 100
neighbor 192.168.10.10 route-reflector-client
network 3.3.3.0 0.0.0.255 area 0
network 192.168.10.4 0.0.0.3 area 0
network 192.168.10.8 0.0.0.3 area 0
R4#sh run | sec bgp
router bgp 100
bgp log-neighbor-changes
network 1.1.1.0 mask 255.255.255.0
network 2.2.2.0 mask 255.255.255.0
network 3.3.3.0 mask 255.255.255.0
network 4.4.4.0 mask 255.255.255.0
network 192.168.10.0 mask 255.255.255.252
network 192.168.10.4 mask 255.255.255.252
network 192.168.10.8 mask 255.255.255.252
neighbor 5.5.5.5 remote-as 200
neighbor 5.5.5.5 ebgp-multihop 2
neighbor 5.5.5.5 update-source Loopback0
neighbor 192.168.10.9 remote-as 100
neighbor 192.168.10.9 next-hop-self
router ospf 1
network 4.4.4.0 0.0.0.255 area 0
network 192.168.10.8 0.0.0.3 area 0
R5
router bgp 200
bgp log-neighbor-changes
network 5.5.5.0 mask 255.255.255.0
network 6.6.6.0 mask 255.255.255.0
network 172.16.11.0 mask 255.255.255.252
neighbor 4.4.4.4 remote-as 100
neighbor 4.4.4.4 ebgp-multihop 2
neighbor 4.4.4.4 update-source Loopback0
neighbor 172.16.11.2 remote-as 200
neighbor 172.16.11.2 next-hop-self
router eigrp 1
network 5.5.5.0 0.0.0.255
network 172.16.11.0 0.0.0.3
miércoles, 15 de marzo de 2017
DMVPN IPSEC
SPOKE1
crypto isakmp policy 10
encr aes
authentication pre-share
group 5
crypto isakmp key cisco123 address 0.0.0.0
crypto ipsec transform-set TSET esp-aes esp-sha-hmac
crypto ipsec profile cisco
set security-association lifetime seconds 900
set transform-set TSET
interface Loopback0
ip address 1.1.1.1 255.255.255.0
interface Tunnel0
ip address 192.168.0.1 255.255.255.0
no ip redirects
ip nhrp map 192.168.0.3 200.0.0.9
ip nhrp map multicast 200.0.0.9
ip nhrp network-id 100
ip nhrp nhs 192.168.0.3
ip ospf network broadcast
ip ospf priority 0
tunnel source Ethernet0/0
tunnel mode gre multipoint
tunnel protection ipsec profile cisco
HUB
====
crypto isakmp policy 10
encr aes
authentication pre-share
group 5
crypto isakmp key cisco123 address 0.0.0.0
crypto ipsec transform-set TSET esp-aes esp-sha-hmac
crypto ipsec profile cisco
set security-association lifetime seconds 900
set transform-set TSET
interface Loopback0
ip address 3.3.3.3 255.255.255.0
interface Tunnel0
ip address 192.168.0.3 255.255.255.0
no ip redirects
ip nhrp map multicast dynamic
ip nhrp map multicast 200.0.0.9
ip nhrp network-id 100
ip ospf network broadcast
ip ospf priority 10
tunnel source Ethernet0/0
tunnel mode gre multipoint
tunnel protection ipsec profile cisco
Suscribirse a:
Entradas (Atom)