华三OSPF引入静态路由应用路由策略配置试验

一,实验拓扑

华三OSPF引入静态路由应用路由策略配置试验
华三OSPF引入静态路由应用路由策略配置试验

二,实验目的

  • 本实验旨在掌握华三设备上配置OSPF引入静态路由并应用路由策略的方法,实现对路由发布的精确控制
  • 实现R3,R5可以与R2正常通信,R4无法能与R2正常通信

三,试验步骤

  • 配置R1,R2 Ospf区域Area0
    • 路由器R1 ,R2具体配置如下:
#
 version 7.1.064, Release 0427P22
#
 sysname R1
#
ospf 1 router-id 10.1.1.254
 import-route direct
 import-route static route-policy 1
 area 0.0.0.0
  network 10.1.1.0 0.0.0.255
#
 system-working-mode standard
 xbar load-single
 password-recovery enable
 lpu-type f-series
#
vlan 1
#
interface Serial1/0
#
interface Serial2/0
#
interface Serial3/0
#
interface Serial4/0
#
interface NULL0
#
interface GigabitEthernet0/0
 port link-mode route
 combo enable copper
 ip address 192.168.1.2 255.255.255.0
#
interface GigabitEthernet0/1
 port link-mode route
 combo enable copper
 ip address 192.168.2.2 255.255.255.0
#
interface GigabitEthernet0/2
 port link-mode route
 combo enable copper
 ip address 192.168.3.2 255.255.255.0
#
interface GigabitEthernet5/0
 port link-mode route
 combo enable copper
 ip address 10.1.1.1 255.255.255.0
#
interface GigabitEthernet5/1
 port link-mode route
 combo enable copper
#
interface GigabitEthernet6/0
 port link-mode route
 combo enable copper
#
interface GigabitEthernet6/1
 port link-mode route
 combo enable copper
#
route-policy 1 permit node 1
 if-match ip address prefix-list 1
#
 ip prefix-list 1 index 1 permit 172.16.1.0 24
 ip prefix-list 1 index 2 permit 172.16.3.0 24
 ip prefix-list 1 index 3 deny 172.16.2.0 24
#
 scheduler logfile size 16
#
line class aux
 user-role network-operator
#
line class console
 user-role network-admin
#
line class tty
 user-role network-operator
#
line class vty
 user-role network-operator
#
line aux 0
 user-role network-operator
#
line con 0
 user-role network-admin
#
line vty 0 63
 user-role network-operator
#
 ip route-static 172.16.1.0 24 192.168.1.1
 ip route-static 172.16.2.0 24 192.168.2.1
 ip route-static 172.16.3.0 24 192.168.3.1
#
domain system
#
 domain default enable system
#
role name level-0
 description Predefined level-0 role
#
role name level-1
 description Predefined level-1 role
#
role name level-2
 description Predefined level-2 role
#
role name level-3
 description Predefined level-3 role
#
role name level-4
 description Predefined level-4 role
#
role name level-5
 description Predefined level-5 role
#
role name level-6
 description Predefined level-6 role
#
role name level-7
 description Predefined level-7 role
#
role name level-8
 description Predefined level-8 role
#
role name level-9
 description Predefined level-9 role
#
role name level-10
 description Predefined level-10 role
#
role name level-11
 description Predefined level-11 role
#
role name level-12
 description Predefined level-12 role
#
role name level-13
 description Predefined level-13 role
#
role name level-14
 description Predefined level-14 role
#
user-group system
#
return
#
 version 7.1.064, Release 0427P22
#
 sysname R2
#
ospf 1 router-id 10.1.1.253
 area 0.0.0.0
  network 10.1.1.0 0.0.0.255
#
 system-working-mode standard
 xbar load-single
 password-recovery enable
 lpu-type f-series
#
vlan 1
#
interface Serial1/0
#
interface Serial2/0
#
interface Serial3/0
#
interface Serial4/0
#
interface NULL0
#
interface GigabitEthernet0/0
 port link-mode route
 combo enable copper
#
interface GigabitEthernet0/1
 port link-mode route
 combo enable copper
#
interface GigabitEthernet0/2
 port link-mode route
 combo enable copper
#
interface GigabitEthernet5/0
 port link-mode route
 combo enable copper
 ip address 10.1.1.2 255.255.255.0
#
interface GigabitEthernet5/1
 port link-mode route
 combo enable copper
#
interface GigabitEthernet6/0
 port link-mode route
 combo enable copper
#
interface GigabitEthernet6/1
 port link-mode route
 combo enable copper
#
 scheduler logfile size 16
#
line class aux
 user-role network-operator
#
line class console
 user-role network-admin
#
line class tty
 user-role network-operator
#
line class vty
 user-role network-operator
#
line aux 0
 user-role network-operator
#
line con 0
 user-role network-admin
#
line vty 0 63
 user-role network-operator
#
domain system
#
 domain default enable system
#
role name level-0
 description Predefined level-0 role
#
role name level-1
 description Predefined level-1 role
#
role name level-2
 description Predefined level-2 role
#
role name level-3
 description Predefined level-3 role
#
role name level-4
 description Predefined level-4 role
#
role name level-5
 description Predefined level-5 role
#
role name level-6
 description Predefined level-6 role
#
role name level-7
 description Predefined level-7 role
#
role name level-8
 description Predefined level-8 role
#
role name level-9
 description Predefined level-9 role
#
role name level-10
 description Predefined level-10 role
#
role name level-11
 description Predefined level-11 role
#
role name level-12
 description Predefined level-12 role
#
role name level-13
 description Predefined level-13 role
#
role name level-14
 description Predefined level-14 role
#
user-group system
#
return
  • R3,r4,r5配置静态路由(回程路由)
#
 ip route-static 0.0.0.0 0 192.168.1.2
#
  • 在R1配置静态路由
#
 ip route-static 172.16.1.0 24 192.168.1.1
 ip route-static 172.16.2.0 24 192.168.2.1
 ip route-static 172.16.3.0 24 192.168.3.1
#
  • 配置路由索引地址前缀列表
#
 ip prefix-list 1 index 1 permit 172.16.1.0 24
 ip prefix-list 1 index 2 permit 172.16.3.0 24
 ip prefix-list 1 index 3 deny 172.16.2.0 24
#
  • 在策略路由中应用索引
#
route-policy 1 permit node 1
if-match ip address prefix-list 1
#

验证配置

  • 1. 查看Router A的OSPF路由表
查看Router A的OSPF路由表
查看Router A的OSPF路由表
  • 2.查看路由策略应用情况
查看路由策略应用情况
查看路由策略应用情况
  • Ping测试R3到10.1.1.2通信正常
  • Ping测试R4到10.1.1.2通信无法正常通信被拒绝

留下评论

您的邮箱地址不会被公开。 必填项已用 * 标注