配置全局路由表和VRF路由表之间的路由泄漏
1、拓扑图
2、R1配置
R1#sho run
Building configuration... Current configuration : 1360 bytes
!
upgrade fpd auto
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
logging message-counter syslog
!
no aaa new-model
ip source-route
no ip icmp rate-limit unreachable
ip cef
!
!
!
!
no ip domain lookup
ip vrf R1
rd 1:1
!
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
memory-size iomem 0
archive
log config
hidekeys
!
!
!
!
!
ip tcp synwait-time 5
!
!
!
!
interface FastEthernet0/0
ip vrf forwarding R1
ip address 1.1.12.1 255.255.255.0
duplex auto
speed auto
!
interface FastEthernet0/1
ip vrf forwarding R1
ip address 10.1.1.1 255.255.255.0
duplex auto
speed auto
!
router bgp 10
no synchronization
bgp router-id 1.1.1.1
bgp log-neighbor-changes
no auto-summary
!
address-family ipv4 vrf R1
neighbor 1.1.12.2 remote-as 20
neighbor 1.1.12.2 activate
no synchronization
network 10.1.1.0 mask 255.255.255.0
exit-address-family
!
ip forward-protocol nd
no ip http server
no ip http secure-server
!
!
!
!
!
!
!
!
!
control-plane
!
!
!
mgcp fax t38 ecm
!
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
login
!
end
R1配置
3、R2配置
R2#sho run
Building configuration... Current configuration : 1780 bytes
!
upgrade fpd auto
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
logging message-counter syslog
!
no aaa new-model
ip source-route
no ip icmp rate-limit unreachable
ip cef
!
!
!
!
no ip domain lookup
ip vrf R2
rd 2:2
import ipv4 unicast map R3
!
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
memory-size iomem 0
archive
log config
hidekeys
!
!
!
!
!
ip tcp synwait-time 5
!
!
!
!
interface FastEthernet0/0
ip vrf forwarding R2
ip address 1.1.12.2 255.255.255.0
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 1.1.23.2 255.255.255.0
duplex auto
speed auto
!
interface FastEthernet1/0
ip address 10.1.2.1 255.255.255.0
duplex half
!
router bgp 20
bgp router-id 2.2.2.2
bgp log-neighbor-changes
neighbor 1.1.23.3 remote-as 30
!
address-family ipv4
neighbor 1.1.23.3 activate
no auto-summary
no synchronization
network 10.1.1.0 mask 255.255.255.0
network 10.1.2.0 mask 255.255.255.0
exit-address-family
!
address-family ipv4 vrf R2
neighbor 1.1.12.1 remote-as 10
neighbor 1.1.12.1 activate
no synchronization
exit-address-family
!
ip forward-protocol nd
ip route 10.1.1.0 255.255.255.0 FastEthernet0/0
no ip http server
no ip http secure-server
!
!
!
!
ip prefix-list 1 seq 5 permit 10.1.3.0/24
ip prefix-list 1 seq 10 permit 10.1.2.0/24
!
!
!
!
route-map R3 permit 10
match ip address prefix-list 1
!
!
!
control-plane
!
!
!
mgcp fax t38 ecm
!
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
login
!
end
R2配置
4、R3配置
R3#sho run
Building configuration... Current configuration : 1269 bytes
!
upgrade fpd auto
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R3
!
boot-start-marker
boot-end-marker
!
logging message-counter syslog
!
no aaa new-model
ip source-route
no ip icmp rate-limit unreachable
ip cef
!
!
!
!
no ip domain lookup
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
memory-size iomem 0
archive
log config
hidekeys
!
!
!
!
!
ip tcp synwait-time 5
!
!
!
!
interface FastEthernet0/0
ip address 10.1.3.1 255.255.255.0
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 1.1.23.3 255.255.255.0
duplex auto
speed auto
!
router bgp 30
bgp router-id 3.3.3.3
bgp log-neighbor-changes
neighbor 1.1.23.2 remote-as 20
!
address-family ipv4
neighbor 1.1.23.2 activate
no auto-summary
no synchronization
network 10.1.3.0 mask 255.255.255.0
exit-address-family
!
ip forward-protocol nd
no ip http server
no ip http secure-server
!
!
!
!
!
!
!
!
!
control-plane
!
!
!
mgcp fax t38 ecm
!
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
login
!
end
R3配置
5、华三全局路由表和VRF之间路由泄漏配置(写静态路由然后分别重分布到全局路由和VRF路由)
[H3C]dis current-configuration
#
version 7.1.064, Release 0427P22
#
sysname H3C
#
ip vpn-instance R2
route-distinguisher 2:2
#
system-working-mode standard
xbar load-single
password-recovery enable
lpu-type f-series
#
vlan 1
#
interface NULL0
#
interface GigabitEthernet0/0
port link-mode route
combo enable copper
ip binding vpn-instance R2
ip address 1.1.12.2 255.255.255.0
#
interface GigabitEthernet0/1
port link-mode route
combo enable copper
ip address 1.1.23.2 255.255.255.0
#
bgp 20
router-id 2.2.2.2
peer 1.1.23.3 as-number 30
#
address-family ipv4 unicast
import-route static
peer 1.1.23.3 enable
#
ip vpn-instance R2
peer 1.1.12.1 as-number 10
#
address-family ipv4 unicast
import-route static
peer 1.1.12.1 enable
#
scheduler logfile size 16
#
ip route-static 1.1.1.0 24 vpn-instance R2 1.1.12.1
ip route-static vpn-instance R2 3.3.3.0 24 GigabitEthernet0/1 1.1.23.3
#
return
[H3C]dis ip routing-table protocol static Summary count : 1 Static Routing table status : <Active>
Summary count : 1 Destination/Mask Proto Pre Cost NextHop Interface
1.1.1.0/24 Static 60 0 1.1.12.1 GE0/0 Static Routing table status : <Inactive>
Summary count : 0
[H3C]dis ip routing-table protocol bgp Summary count : 1 BGP Routing table status : <Active>
Summary count : 1 Destination/Mask Proto Pre Cost NextHop Interface
3.3.3.0/24 BGP 255 0 1.1.23.3 GE0/1 BGP Routing table status : <Inactive>
Summary count : 0
[H3C]dis ip routing-table vpn-instance R2 protocol static Summary count : 1 Static Routing table status : <Active>
Summary count : 1 Destination/Mask Proto Pre Cost NextHop Interface
3.3.3.0/24 Static 60 0 1.1.23.3 GE0/1 Static Routing table status : <Inactive>
Summary count : 0
[H3C]dis ip routing-table vpn-instance R2 protocol bgp Summary count : 1 BGP Routing table status : <Active>
Summary count : 1 Destination/Mask Proto Pre Cost NextHop Interface
1.1.1.0/24 BGP 255 0 1.1.12.1 GE0/0 BGP Routing table status : <Inactive>
Summary count : 0
[H3C]
参考链接:
配置全局路由表和VRF路由表之间的路由泄漏(无下一跳)
https://www.cisco.com/c/zh_cn/support/docs/ip/ip-routing/200158-Configure-Route-Leaking-between-Global-a.html
在Cisco IOS XE上配置VRF泄漏
https://www.cisco.com/c/zh_cn/support/docs/ip/ip-routing/216541-vrf-configuration-examples-on-ios-xe.html
在 Cisco Nexus 交换机上配置 VRF 路由泄漏
https://www.cisco.com/c/zh_cn/support/docs/ios-nx-os-software/nx-os-software/213908-configure-vrf-route-leak-on-nexus.html
配置全局路由表和VRF路由表之间的路由泄漏的更多相关文章
- mycat 配置全局表
在已配置全局序列号的基础上 1.schema.xml <table name="hf_ctrlorder_split_config" primaryKey="HF_ ...
- Linux配置全局jdk
Linux配置全局jdk 1.确保相应文件夹下有apache-tomcat和jdk的压缩文件 注意:jdk文件必须为适应Linux版本的文件 (如果已经有了相应文件,可以跳过以下第2-3个步骤) 2. ...
- maven配置全局的jdk和配置局部的jdk
配置全局的jdk需要修改maven的setting.xml文件 <profile> <id>jdk17</id> <activation> <ac ...
- 通过Application配置全局的Context
我本来配置了全局变量,但是使用SharedPreferences时总是报空指针异常,报错如下: FATAL EXCEPTION: main Process: com.XXX.xxx, PID: 192 ...
- asp.net core webapi项目配置全局路由
0.目录 整体架构目录:ASP.NET Core分布式项目实战-目录 一.前言 在开发项目的过程中,我新创建了一个controller,发现vs会给我们直接在controller头添加前缀,比如[Ro ...
- SpringMVC配置全局日期转换器,处理日期转换异常
Spring 3.1.1使用Mvc配置全局日期转换器,处理日期转换异常链接地址: https://www.2cto.com/kf/201308/236837.html spring3.0配置日期转换可 ...
- asp.net mvc 3 配置全局错误处理 Web.config中设置CustomError
摘自: http://www.myexception.cn/web/1130191.html asp.net mvc 配置全局异常处理 Web.config中设置CustomError Web.con ...
- *** + Polipo 配置全局代理(Linux 版本)
转,原文:http://blog.csdn.net/jon_me/article/details/53525059 我本来是想查这个问题: How to start server and local ...
- linux 配置全局jdk环境
1.在usr/local下新建software文件夹(mkdir software),将下载的jdk和tomcat放在此文件夹下 2.解压 tar -xzvf jdk-8u191-linux-x64. ...
- eNSP——配置全局地址池的DHCP
原理: 拓扑图: 实验编址: 1.基本配置 2.配置全局地址池的DHCP Server 在R1上开启DHCP功能,使用ip pool命令创建一个全局地址池,名字自己定. 在全局地址池配置网段.掩码.租 ...
随机推荐
- 脚本之美│VBS 入门交互实战
目录 什么是 VBS 第一个 VBS 脚本 msgbox 语法 中文乱码 弹窗交互功能 表白恶搞 什么是 VBS VBS 是一种 Windows 脚本语言,全称是 Microsoft Visual B ...
- Xilinx XPM使用说明--XPM_MEMORY_SDPRAM
XPM_MEMORY_SDPRAM 参数化宏:简单的双端口RAM 介绍 此宏用于实例化简单双端口RAM.端口A用于从存储器执行写入操作,端口B可用于从存储器读取. 下面介绍XPM_MEMORY实例的基 ...
- Kotlin学习-基础知识点
一:基础要点 //常量定义 valval arg_a1: Int = 1 //变量定义varvar arg_a2 = 5 // 系统自动推断变量类型为Int备注:kotlin 定义变量必须给定初始 ...
- 【4】java之基础数据类型的包装类
一.认识包装类 java 在设计之初有一个基本原则:一切皆对象,一切的操作都基于对象,但是有一个矛盾,基本数据类型不是对象.为了符合于这种要求,最早使用人为的方式解决此问题,如下所示: class ...
- 关于centos8yum源失效问题
[CentOS8遇到错误]Error: Failed to download metadata for repo 'powertools'... 原因: CentOS Linux 8 已于 2021 ...
- C++调用C#DLL并调试
使用C++ 来调用C#DLL 并且调试程序 环境:使用VS studio 2019 C#项目的设置 1.C# -> 属性 -> 应用程序 -> 目标框架 ->.NET Fram ...
- sping入门介绍-bean标签的属性
bean标签的属性 1 .基础属性 <bean id="userDao" class="com.itheima.dao.impl.UserDaoImpl" ...
- 解决Idea 中Java编译器的版本自动变成1.5的问题
可在pom文件中加入以下配置: <build> <plugins> <plugin> <groupId>org.apache.maven.plugins ...
- appium:报错Message: Message: Parameters were incorrect. We wanted {"required":["value"]}
python版本3.7.4,selenium版本4.0.0,Appium-Python-Client版本2.0.0,报错见标题 别人给出的建议:https://blog.csdn.net/liangs ...
- .net core格式化响应数据(json驼峰格式)
//表格字段都是大写的 想要实现首字母小写(特定操作配置输出序列化选项)[HttpPost, ActionName("QueryAll")] public ActionResult ...